\x00', 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/syz0\x00', 0x1ff) ioctl$KDDISABIO(r0, 0x4b37) write$binfmt_script(0xffffffffffffffff, &(0x7f00000003c0)=ANY=[@ANYBLOB], 0x0) fallocate(r1, 0x1, 0x0, 0x10000101) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'vcan0\x00'}) ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000140)={@empty, 0x71}) ioctl$EVIOCGMASK(0xffffffffffffffff, 0x80104592, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)}) r2 = socket(0x10, 0x0, 0x0) ioctl$sock_ifreq(r2, 0x89f0, &(0x7f0000000000)={"73697430000080000000000000000002", @ifru_ivalue=0x700000}) 11:10:00 executing program 7: socket(0x0, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) 11:10:00 executing program 5: socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) 11:10:00 executing program 4: setsockopt$l2tp_PPPOL2TP_SO_SENDSEQ(0xffffffffffffffff, 0x111, 0x3, 0x1, 0x4) r0 = socket$nl_generic(0x10, 0x3, 0x10) getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000240)={0x0, @loopback, @local}, &(0x7f0000000380)=0xc) bind$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0xf5, r1, 0x1, 0x0, 0x6, @broadcast=[0xff, 0xff, 0xff, 0xff, 0xff, 0xff]}, 0x14) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000340)={&(0x7f0000000080)={0x10, 0xf503}, 0xc, &(0x7f0000000280)={&(0x7f0000000500)=ANY=[@ANYBLOB="1800e9ff2700ebff070000d70a00003a000000007d5061e56860304c14727c5f8fb53d6d2c189d0c3b4b0d7c894d7dc2bcf0f2e127cb7dd7acf7e0a90f2e6ac0f984ac415c741543586575e42bf3190788c810772cf5d9633b89a9dcfb2e504eceeee12bc831ac21ad1fc2b829c7480e5cbf5c0d"], 0x1}, 0x1, 0x0, 0x0, 0x8001}, 0xfffffffffffffffc) clone(0x0, &(0x7f0000fbf000), &(0x7f0000001800), &(0x7f0000000180), &(0x7f0000001700)="05280c62c2524d92fd1b13220620c4e6bd8e6a24874054b4e5a1146999e20c8c4332af9c2130d3d6827f2b1ba8b4ebdd53a87f2d35ad98e3deb14aeb1a98917568a39acc8fd62dcc8ab6616b4f1561f2a927ff70aa541a0b70e51bdd283e7a0a2a86cd10868dea9434eb6fd2bff3f9e8d209bf439c3c5488796544605b01f5fa794fb3d7885ef23350786eb31ebe9873dee4003719b283c152a9a4cdccbe9892f07f5db48e0e1a1819bc314466afb1f097bc03db5f65cf948a6ed2d9972a6c2925cae831a5fd0cfab78245ab764abb62e8e5b0") mknod(&(0x7f00000000c0)='./file0\x00', 0x21040, 0x0) perf_event_open(&(0x7f0000940000)={0x2, 0x70, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = openat$zero(0xffffffffffffff9c, &(0x7f0000000480)='/dev/zero\x00', 0x2000, 0x0) setsockopt$packet_rx_ring(r2, 0x107, 0x5, &(0x7f00000004c0)=@req3={0x4db, 0x143b, 0x401, 0x80000000, 0x7, 0x1, 0x10000}, 0x1c) r3 = syz_open_dev$loop(&(0x7f0000000000)='/dev/loop#\x00', 0x0, 0x0) r4 = socket(0x0, 0x0, 0x0) setsockopt$inet_tcp_TCP_CONGESTION(r4, 0x6, 0xd, &(0x7f00000002c0)='scalable\x00', 0x9) r5 = perf_event_open(&(0x7f0000940000)={0x0, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6(0xa, 0x0, 0x0) syz_open_dev$adsp(&(0x7f0000000140)='/dev/adsp#\x00', 0x215e2ae2, 0x0) pipe(&(0x7f0000000300)) setsockopt$IP_VS_SO_SET_ADD(0xffffffffffffffff, 0x0, 0x482, &(0x7f00000001c0)={0x0, @local={0xac, 0x14, 0x14, 0xaa}, 0x0, 0x0, 'rr\x00'}, 0x2c) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)) getrandom(&(0x7f0000000400)=""/102, 0x66, 0x2) r6 = socket(0x0, 0x0, 0x0) getsockopt$sock_buf(r6, 0x1, 0x12, &(0x7f0000b56f40)=""/192, &(0x7f0000000040)=0xc0) ioctl$BLKTRACESETUP(r3, 0xc0481273, &(0x7f0000000040)={[], 0x766c, 0x9, 0x4, 0x401, 0xe34}) ioctl$BLKTRACESTART(r3, 0x1274, 0x0) r7 = dup(r5) ioctl$SIOCGIFHWADDR(r7, 0x8927, &(0x7f0000000200)) 11:10:00 executing program 7: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) [ 181.868923] relay: one or more items not logged [item size (56) > sub-buffer size (9)] 11:10:01 executing program 6: r0 = getpid() sched_setattr(r0, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x0, 0x3}, 0x0) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x0, 0x0) poll(&(0x7f00000001c0), 0x0, 0x80000000) ioctl$TCSETS(r1, 0x40045431, &(0x7f00003b9fdc)) ioctl$TIOCPKT(r1, 0x5420, &(0x7f0000000080)=0x61) read(r1, &(0x7f0000000040)=""/11, 0xffed) r2 = syz_open_pts(r1, 0x0) ioctl$TCXONC(r2, 0x5424, 0x0) 11:10:01 executing program 0: socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0xb0, 0x0, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14}}]}, 0x24}, 0x1}, 0x8050) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) 11:10:01 executing program 1: socket(0x1b, 0x80004, 0xeb0) r0 = socket(0xfffffffffffffffe, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r1 = openat$zero(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/zero\x00', 0x0, 0x0) ioctl$TIOCNOTTY(r1, 0x5422) r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)) 11:10:01 executing program 3: socket(0x0, 0x0, 0xfffffffffffffffb) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0xb0, 0x0, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x8050) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0xbb, &(0x7f0000000100)="295eee311f16") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) 11:10:01 executing program 2: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0x0, 0x7, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x0) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f") ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82) r2 = ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82) ioctl$LOOP_CTL_ADD(r1, 0x4c80, r2) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) 11:10:01 executing program 5: socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0xb0, 0x0, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14}}]}, 0x24}, 0x1}, 0x8050) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) 11:10:01 executing program 7: socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) 11:10:01 executing program 4: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0x0, 0x7, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x8050) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) 11:10:01 executing program 7: socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) 11:10:01 executing program 0: socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0xb0, 0x0, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14}}]}, 0x24}, 0x1}, 0x8050) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) [ 182.697177] relay: one or more items not logged [item size (56) > sub-buffer size (9)] 11:10:01 executing program 4: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0x0, 0x7, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x8050) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) 11:10:01 executing program 5: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0xb0, 0x0, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14}}]}, 0x24}, 0x1}, 0x8050) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) 11:10:01 executing program 3: socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000440)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=ANY=[@ANYBLOB="240000001800000000000000ffdbdf250200b0000300ff050011000008002200ac141418"], 0x24}, 0x1}, 0x8050) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) 11:10:01 executing program 1: r0 = socket(0x0, 0x0, 0x0) r1 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0) getsockopt$bt_hci(r0, 0x0, 0x3, &(0x7f00000001c0)=""/254, &(0x7f00000000c0)=0xffffffffffffff77) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1") ioctl$IOC_PR_CLEAR(r0, 0x401070cd, &(0x7f0000000300)={0x2f5852ef}) fcntl$dupfd(r2, 0x406, r2) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)) write$binfmt_misc(r1, &(0x7f0000000400)={'syz1', "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"}, 0xfe) ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82) 11:10:01 executing program 2: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=ANY=[@ANYBLOB="240000001800000000000000ffdbdf25020000070003ff0500110000080d000200ac1414"], 0x24}, 0x1}, 0x0) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f00000000c0)=0x8) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) 11:10:01 executing program 7: socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) 11:10:02 executing program 6: r0 = getpid() sched_setattr(r0, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x0, 0x3}, 0x0) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x0, 0x0) poll(&(0x7f00000001c0), 0x0, 0x80000000) ioctl$TCSETS(r1, 0x40045431, &(0x7f00003b9fdc)) ioctl$TIOCPKT(r1, 0x5420, &(0x7f0000000080)=0x61) read(r1, &(0x7f0000000040)=""/11, 0xffed) r2 = syz_open_pts(r1, 0x0) ioctl$TCXONC(r2, 0x80045440, 0x0) 11:10:02 executing program 4: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0x0, 0x7, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x8050) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) 11:10:02 executing program 7: socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) 11:10:02 executing program 5: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0x0, 0x7, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x0) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c80, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) 11:10:02 executing program 0: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0x0, 0x7, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x8050) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) 11:10:02 executing program 2: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0xfffffc39, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x10000000000, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0x0, 0xfffffffffffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) open(&(0x7f00000001c0)='./file0\x00', 0x100, 0x112) r1 = syz_open_dev$audion(&(0x7f0000000300)='/dev/audio#\x00', 0x4, 0x101100) ioctl$EVIOCGBITSW(r1, 0x80404525, &(0x7f0000000580)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0x0, 0x7, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x0) r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) prctl$setfpexc(0xc, 0x80000) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={"69000000000000000000000000000019"}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) 11:10:02 executing program 3: socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)=ANY=[@ANYBLOB="24000000180000000200b00000590e03ff050011000008000200ac14141836e2ab5210cbefa5d7cd71c6e6fc000000000000"], 0x24}, 0x1}, 0x8050) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) 11:10:02 executing program 1: r0 = socket(0x0, 0x0, 0x0) syz_mount_image$btrfs(&(0x7f0000000200)='btrfs\x00', &(0x7f0000000240)='./file0\x00', 0x4, 0x1, &(0x7f0000000280)=[{&(0x7f0000000400)="8e810cefb2dbd9253ee915c6e8c2b93aff45feb698e282532fb36a90ca0d146e9eebf9b4380d83dcb73b8ec30d3a6be587e42cb856f5c9790dff7751ce3c18f2259dc81d1e74b21f86ffd158f3e5f0f249d6c36c24672cd77efec04ba76c445de1bd45b7b1b556094ec79877e8121deba7196df6314dff8b2676ea701e1381c18d74636ed1fa85b70155ab32e500ffe3d913bd07ff933d9ebce556e9511e22636860edc37c262f5e689d5e2f257e1725f4d8db21cc285fff0b9e07bd865c7bb87b8a3bece311b56440ae34258fb2a7986b00fb61a1efbf60eda4a083f96d0a32effa031fb7540112275f80bcca", 0xed, 0x2656}], 0x100000, &(0x7f0000000300)={[{@usebackuproot='usebackuproot', 0x2c}, {@clear_cache='clear_cache', 0x2c}, {@space_cache_v1='space_cache=v1', 0x2c}, {@check_int_print_mask={'check_int_print_mask', 0x3d, 0x4}, 0x2c}, {@subvol={'subvol', 0x3d, '/dev/loop-control\x00'}, 0x2c}, {@compress_algo={'compress', 0x3d, 'lzo'}, 0x2c}, {@space_cache_v1='space_cache=v1', 0x2c}, {@max_inline={'max_inline', 0x3d, [0x33, 0x7f, 0x0, 0x39, 0x37, 0x74, 0x34, 0x39, 0x77]}, 0x2c}]}) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$TIOCGETD(r2, 0x5424, &(0x7f00000001c0)) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)) ioctl$SNDRV_TIMER_IOCTL_START(r2, 0x54a0) 11:10:02 executing program 5 (fault-call:6 fault-nth:0): r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/sys/net/ipv4/vs/secure_tcp\x00', 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/syz0\x00', 0x1ff) ioctl$KDDISABIO(r0, 0x4b37) write$binfmt_script(0xffffffffffffffff, &(0x7f00000003c0)=ANY=[@ANYBLOB], 0x0) fallocate(r1, 0x1, 0x0, 0x10000101) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'vcan0\x00'}) ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000140)={@empty, 0x71}) ioctl$EVIOCGMASK(0xffffffffffffffff, 0x80104592, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)}) socket(0x10, 0x0, 0x0) ioctl$sock_ifreq(0xffffffffffffffff, 0x0, &(0x7f0000000000)={"73697430000080000000000000000002", @ifru_ivalue}) 11:10:02 executing program 7: socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) 11:10:02 executing program 4 (fault-call:6 fault-nth:0): r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0x0, 0x7, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x8050) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) 11:10:02 executing program 2: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0x0, 0x7, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x0) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) syz_mount_image$bfs(&(0x7f00000000c0)='bfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000300)=[{&(0x7f0000000400)="bfe2eeee0d58b51cb080d81a614d71805782a6d1516b5d8fefa04e9dd4596fc35fc58cc7a5a5568b22ff0d03b5197199781d9ead97135a73b41469e4de8cc37e35bcc6910e9ccc8bd778e35b3049d59c62801df7fa1a4230023c03e4166410644c4e08e59cf78ae7049b070bef3d02d82126666cb2611fd70b7d040dcc9d3dfa8c", 0x81, 0x100000000}], 0x1000, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) 11:10:02 executing program 0: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0x0, 0x7, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x8050) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) 11:10:02 executing program 3: socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) ioctl$KVM_S390_UCAS_MAP(r0, 0x4018ae50, &(0x7f0000000380)={0x6, 0x5, 0x9}) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0xb0, 0x0, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x8050) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) 11:10:02 executing program 7: socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) [ 183.966984] FAULT_INJECTION: forcing a failure. [ 183.966984] name failslab, interval 1, probability 0, space 0, times 0 [ 183.978717] CPU: 0 PID: 11329 Comm: syz-executor5 Not tainted 4.18.0-rc4-next-20180711+ #4 [ 183.987122] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 183.996480] Call Trace: [ 183.999074] dump_stack+0x1c9/0x2b4 [ 184.002707] ? dump_stack_print_info.cold.2+0x52/0x52 [ 184.007894] ? should_fail.cold.4+0x5/0x11 [ 184.012114] should_fail.cold.4+0xa/0x11 [ 184.016160] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 184.021252] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 184.026775] ? event_sched_out.isra.100+0x18e/0xf10 [ 184.031776] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 184.037299] ? group_sched_in+0x17d/0x400 [ 184.041441] ? trace_hardirqs_on+0x10/0x10 [ 184.045665] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 184.051200] ? flexible_sched_in+0x121/0xc10 [ 184.055602] ? pinned_sched_in+0xc70/0xc70 [ 184.059832] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 184.064592] ? __should_failslab+0x8a/0x180 [ 184.068904] __should_failslab+0x124/0x180 [ 184.073134] should_failslab+0x9/0x14 [ 184.076921] kmem_cache_alloc+0x2af/0x760 [ 184.081064] ? jbd2__journal_start+0xb4/0xa80 [ 184.085550] jbd2__journal_start+0x1e7/0xa80 [ 184.089954] ? jbd2_write_access_granted.part.9+0x430/0x430 [ 184.095648] ? retint_kernel+0x10/0x10 [ 184.099526] __ext4_journal_start_sb+0x182/0x600 [ 184.104278] ? ext4_alloc_file_blocks+0x2e1/0xaf0 [ 184.109107] ? ext4_journal_abort_handle.isra.5+0x260/0x260 [ 184.114817] ? retint_kernel+0x10/0x10 [ 184.118690] ? ext4_alloc_file_blocks+0x292/0xaf0 [ 184.123523] ext4_alloc_file_blocks+0x2e1/0xaf0 [ 184.128184] ? retint_kernel+0x10/0x10 [ 184.132078] ? ext4_extent_block_csum_set+0x4a0/0x4a0 [ 184.137258] ? retint_kernel+0x10/0x10 [ 184.141128] ext4_fallocate+0x9f0/0x2320 [ 184.145174] ? __fget+0x4d5/0x740 [ 184.148612] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 184.153349] ? ext4_insert_range+0x13d0/0x13d0 [ 184.157914] ? lock_acquire+0x284/0x540 [ 184.161874] ? fsnotify_first_mark+0x350/0x350 [ 184.166453] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 184.171203] ? retint_kernel+0x10/0x10 [ 184.175081] ? ext4_insert_range+0x13d0/0x13d0 [ 184.179655] ? ext4_insert_range+0x13d0/0x13d0 [ 184.184218] vfs_fallocate+0x4b4/0x940 [ 184.188091] ksys_fallocate+0x56/0x90 [ 184.191882] __x64_sys_fallocate+0x97/0xf0 [ 184.196106] do_syscall_64+0x1b9/0x820 [ 184.199975] ? syscall_slow_exit_work+0x500/0x500 [ 184.204799] ? syscall_return_slowpath+0x5e0/0x5e0 [ 184.209710] ? syscall_return_slowpath+0x31d/0x5e0 [ 184.214622] ? prepare_exit_to_usermode+0x291/0x3b0 [ 184.219626] ? perf_trace_sys_enter+0xb10/0xb10 [ 184.224294] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 184.229133] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 184.234315] RIP: 0033:0x455e29 [ 184.237491] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 184.256656] RSP: 002b:00007fde778afc68 EFLAGS: 00000246 ORIG_RAX: 000000000000011d 11:10:03 executing program 5 (fault-call:6 fault-nth:1): r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/sys/net/ipv4/vs/secure_tcp\x00', 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/syz0\x00', 0x1ff) ioctl$KDDISABIO(r0, 0x4b37) write$binfmt_script(0xffffffffffffffff, &(0x7f00000003c0)=ANY=[@ANYBLOB], 0x0) fallocate(r1, 0x1, 0x0, 0x10000101) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'vcan0\x00'}) ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000140)={@empty, 0x71}) ioctl$EVIOCGMASK(0xffffffffffffffff, 0x80104592, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)}) socket(0x10, 0x0, 0x0) ioctl$sock_ifreq(0xffffffffffffffff, 0x0, &(0x7f0000000000)={"73697430000080000000000000000002", @ifru_ivalue}) [ 184.264351] RAX: ffffffffffffffda RBX: 00007fde778b06d4 RCX: 0000000000455e29 [ 184.271601] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000015 [ 184.278866] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 184.286126] R10: 0000000010000101 R11: 0000000000000246 R12: 0000000000000016 [ 184.293373] R13: 00000000004bbe4e R14: 00000000004c9368 R15: 0000000000000000 [ 184.459762] FAULT_INJECTION: forcing a failure. [ 184.459762] name failslab, interval 1, probability 0, space 0, times 0 [ 184.471051] CPU: 0 PID: 11368 Comm: syz-executor5 Not tainted 4.18.0-rc4-next-20180711+ #4 [ 184.479447] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 184.488781] Call Trace: [ 184.491352] dump_stack+0x1c9/0x2b4 [ 184.494964] ? dump_stack_print_info.cold.2+0x52/0x52 [ 184.500447] ? lock_release+0xa30/0xa30 [ 184.504411] ? do_raw_spin_trylock+0x1c0/0x1c0 [ 184.508983] should_fail.cold.4+0xa/0x11 [ 184.513039] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 184.518130] ? perf_event_update_userpage+0x7f4/0xd30 [ 184.523319] ? hrtimer_try_to_cancel+0x21c/0x670 [ 184.528065] ? lock_downgrade+0x8f0/0x8f0 [ 184.532198] ? native_apic_msr_write+0x5b/0x80 [ 184.536770] ? lapic_next_event+0x5a/0x90 [ 184.540904] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 184.546424] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 184.551165] ? retint_kernel+0x10/0x10 [ 184.555041] __should_failslab+0x124/0x180 [ 184.559261] should_failslab+0x9/0x14 [ 184.563054] __kmalloc+0x2c8/0x760 [ 184.566599] ? ext4_find_extent+0x775/0xa10 [ 184.570913] ext4_find_extent+0x775/0xa10 [ 184.575044] ? lock_acquire+0x1e4/0x540 [ 184.579002] ext4_ext_map_blocks+0x293/0x62e0 [ 184.583486] ? lock_release+0xa30/0xa30 [ 184.587455] ? ext4_find_delalloc_cluster+0xc0/0xc0 [ 184.592463] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 184.597985] ? start_this_handle+0x6b9/0x1260 [ 184.602471] ? lock_acquire+0x1e4/0x540 [ 184.606432] ? ext4_es_lookup_extent+0x42c/0xde0 [ 184.611175] ? lock_downgrade+0x8f0/0x8f0 [ 184.615313] ? lock_release+0xa30/0xa30 [ 184.619268] ? trace_hardirqs_on+0x10/0x10 [ 184.623483] ? lock_acquire+0x1e4/0x540 [ 184.627457] ? ext4_map_blocks+0x480/0x1b60 [ 184.631780] ? lock_release+0xa30/0xa30 [ 184.635748] ? check_same_owner+0x340/0x340 [ 184.640063] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 184.645584] ? ext4_es_lookup_extent+0x465/0xde0 [ 184.650321] ? rcu_note_context_switch+0x730/0x730 [ 184.655256] ? down_read+0xb5/0x1d0 [ 184.658869] ? ext4_map_blocks+0x480/0x1b60 [ 184.663171] ? jbd2__journal_start+0x162/0xa80 [ 184.667740] ? __down_interruptible+0x700/0x700 [ 184.672403] ? jbd2_write_access_granted.part.9+0x430/0x430 [ 184.678094] ? rcu_note_context_switch+0x730/0x730 [ 184.683016] ext4_map_blocks+0xe31/0x1b60 [ 184.687156] ? __ext4_journal_start_sb+0x18a/0x600 [ 184.692081] ? ext4_issue_zeroout+0x190/0x190 [ 184.696572] ext4_alloc_file_blocks+0x319/0xaf0 [ 184.701415] ? lock_release+0xa30/0xa30 [ 184.705377] ? ext4_extent_block_csum_set+0x4a0/0x4a0 [ 184.710553] ? retint_kernel+0x10/0x10 [ 184.714437] ext4_fallocate+0x9f0/0x2320 [ 184.718480] ? __fget+0x4d5/0x740 [ 184.721918] ? ext4_insert_range+0x13d0/0x13d0 [ 184.726493] ? kasan_check_write+0x14/0x20 [ 184.730723] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 184.735634] ? fsnotify+0xbac/0x14e0 [ 184.739421] ? lock_acquire+0x1e4/0x540 [ 184.743392] ? vfs_fallocate+0x72a/0x940 [ 184.747435] ? fsnotify_first_mark+0x350/0x350 [ 184.752014] ? lock_release+0xa30/0xa30 [ 184.755982] ? check_same_owner+0x340/0x340 [ 184.760304] ? __fget_light+0x2f7/0x440 [ 184.764262] ? rcu_note_context_switch+0x730/0x730 [ 184.769176] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 184.774704] ? __sb_start_write+0x17f/0x300 [ 184.779011] ? ext4_insert_range+0x13d0/0x13d0 [ 184.783591] vfs_fallocate+0x4b4/0x940 [ 184.787478] ksys_fallocate+0x56/0x90 [ 184.791260] __x64_sys_fallocate+0x97/0xf0 [ 184.795481] do_syscall_64+0x1b9/0x820 [ 184.799361] ? syscall_slow_exit_work+0x500/0x500 [ 184.804184] ? syscall_return_slowpath+0x5e0/0x5e0 [ 184.809092] ? syscall_return_slowpath+0x31d/0x5e0 [ 184.814000] ? prepare_exit_to_usermode+0x291/0x3b0 [ 184.819006] ? perf_trace_sys_enter+0xb10/0xb10 [ 184.823674] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 184.828516] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 184.833693] RIP: 0033:0x455e29 [ 184.836864] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 11:10:03 executing program 6: r0 = getpid() sched_setattr(r0, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x0, 0x3}, 0x0) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x0, 0x0) poll(&(0x7f00000001c0), 0x0, 0x80000000) ioctl$TCSETS(r1, 0x40045431, &(0x7f00003b9fdc)) ioctl$TIOCPKT(r1, 0x5420, &(0x7f0000000080)=0x61) read(r1, &(0x7f0000000040)=""/11, 0xffed) r2 = syz_open_pts(r1, 0x0) ioctl$TCXONC(r2, 0xc0045877, 0x0) 11:10:03 executing program 0: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0x0, 0x7, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x8050) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) 11:10:03 executing program 4: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0x0, 0x7, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x8050) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) 11:10:03 executing program 1: r0 = socket(0x0, 0x0, 0x0) r1 = perf_event_open(&(0x7f00000001c0)={0x7, 0x70, 0xffffffff, 0x8000, 0x1, 0x8, 0x0, 0x5, 0x10004, 0x4, 0x5, 0x31b, 0xffffffff, 0x8, 0x81, 0x6, 0x0, 0x1, 0x6, 0x3, 0x8, 0x3, 0xbc76, 0x61, 0xffffffffffffc3cd, 0x1fe, 0x8, 0x1000, 0x80, 0x8, 0x9, 0x37, 0x705, 0x6, 0x8, 0x7, 0x4, 0x100, 0x0, 0x8, 0x0, @perf_config_ext={0x689a, 0x3ff}, 0x18, 0x1, 0x5, 0x4, 0x100, 0x9, 0x38000}, 0x0, 0x0, 0xffffffffffffff9c, 0x2) write$binfmt_aout(r1, &(0x7f0000000400)={{0x10f, 0x8, 0x2, 0x3c8, 0xc9, 0x100, 0x4c, 0x6}, "0ea11975c72ec1bb4e36816f0fb8bb8e6ba5ad15272146fdcc1d7d99ad29d6c6da7fe4a6a7bcae25ec933613fc81a395392e1fb84f9cf69348ab4602768550a8acaf1540549b2d397cab0e47eaf3d1e9b550a8ffb10551e199550675964c54f05ca538bbe02cc498aa38fe0408425d67ad1ac94f20da664e65af504dfdd705ea95bd9e2784562a941b3e69e4c4f260f94e72d4255715ba7b44f8c7f2188099b5b27647d677664a1d059b72551dc50dc2ae2c3d17b270efee2ca82fade58dbade1afa87455327cd30e533", [[], [], [], []]}, 0x4ea) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) r3 = ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82) r4 = getpid() ptrace$setsig(0x4203, r4, 0x51, &(0x7f00000000c0)={0x13, 0x9, 0x6, 0x80}) ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, r3) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)) write$binfmt_aout(0xffffffffffffffff, &(0x7f0000000900)={{0x10f, 0x0, 0x3ff, 0x318, 0x196, 0x7, 0xb, 0x1}, "d2f6318bab9ded1d178c1a9d196ec6df83c752d493703408f44d20e8e048b92ee34e1dc7f73f789f73774fe9ac1c7d632767468125c8175dc3b8cf33798edad264db66899337d133947a7153392b0fea4d9c9dce4615e3f15fa63ed892d95464fbaaf20e9c0374de28138a5adfb00d255b13170c7f299e4fb4f3107c58485b0c09a49d36d8d5127f0dc98eb6fdb993305e7234912ed7feac5205706923da925f9a527abafbd7a94cf7e8041c395136a8b095578c7e85541cd4c95cd9ce00580cfdc31cae7ea8b2c38471"}, 0xea) 11:10:03 executing program 7: socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0x0, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) 11:10:03 executing program 3: socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=ANY=[@ANYBLOB="240000ffdbdf250200b0000003ff050011000008000200ac141418000000000000000000"], 0x24}, 0x1}, 0x8050) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) [ 184.856084] RSP: 002b:00007fde778afc68 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 184.863774] RAX: ffffffffffffffda RBX: 00007fde778b06d4 RCX: 0000000000455e29 [ 184.871030] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000015 [ 184.878300] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 184.885553] R10: 0000000010000101 R11: 0000000000000246 R12: 0000000000000016 [ 184.892803] R13: 00000000004bbe4e R14: 00000000004c9368 R15: 0000000000000001 11:10:03 executing program 0 (fault-call:7 fault-nth:0): sched_setaffinity(0x0, 0x8, &(0x7f0000000080)=0x1) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) r0 = memfd_create(&(0x7f0000000100)='dev ', 0x0) write(r0, &(0x7f0000000040)="16", 0x1) sendfile(r0, r0, &(0x7f0000001000), 0xffff) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) sendfile(r0, r0, &(0x7f0000000000), 0x100000) tkill(r1, 0x15) 11:10:03 executing program 5 (fault-call:6 fault-nth:2): r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/sys/net/ipv4/vs/secure_tcp\x00', 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/syz0\x00', 0x1ff) ioctl$KDDISABIO(r0, 0x4b37) write$binfmt_script(0xffffffffffffffff, &(0x7f00000003c0)=ANY=[@ANYBLOB], 0x0) fallocate(r1, 0x1, 0x0, 0x10000101) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'vcan0\x00'}) ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000140)={@empty, 0x71}) ioctl$EVIOCGMASK(0xffffffffffffffff, 0x80104592, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)}) socket(0x10, 0x0, 0x0) ioctl$sock_ifreq(0xffffffffffffffff, 0x0, &(0x7f0000000000)={"73697430000080000000000000000002", @ifru_ivalue}) 11:10:03 executing program 7: socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0x0, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) 11:10:03 executing program 4: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0x0, 0x7, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x8050) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c82, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) 11:10:03 executing program 2: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = dup2(r0, r0) ioctl$EVIOCGBITSW(r1, 0x80404525, &(0x7f0000000100)=""/189) ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000004c0)={0x6, {0x2, 0x4e21, @multicast1=0xe0000001}, {0x2, 0x4e21, @rand_addr=0x400}, {0x2, 0x4e22, @broadcast=0xffffffff}, 0xe0, 0x6, 0x0, 0xe85, 0x7, 0x0, 0x3, 0x3, 0x3}) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000400)=ANY=[@ANYBLOB="240000001800000000000000ffdbdf25020000070003ff050031000008000200ac1414183e992910d44b1b3ed3822d90a64063abbbd74061792df0663b86857c000400000001000014d8f8bfcf8fa9aa5cc2efa22ebbec46a41088cdcf461e220232799141c7b5213a1253e06deb75faa1e6f28d4c43891421b4815fe68a72fd6791094197e36c543996c5603c202345ee86fdc53da5f7f7b93400000000000000000000"], 0x24}, 0x1}, 0x0) r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f") r3 = ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, r3) ioctl$sock_inet6_tcp_SIOCOUTQNSD(r1, 0x894b, &(0x7f0000000380)) connect$llc(r0, &(0x7f0000000300)={0x1a, 0x0, 0x3e76, 0x743d, 0x100, 0xff, @random="e1544093f731"}, 0x10) poll(&(0x7f00000001c0)=[{r0, 0x608b}, {r2, 0x1088}, {r2, 0xc000}], 0x3, 0x401) ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000240)='/dev/zero\x00', 0x200, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) ioctl$LOOP_CTL_ADD(r1, 0x4c80, r3) setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4) 11:10:03 executing program 3: socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0xb0, 0x0, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x8050) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) setsockopt$packet_rx_ring(r0, 0x107, 0x5, &(0x7f0000000380)=@req={0x0, 0xd924, 0x1, 0x6}, 0x10) 11:10:03 executing program 1: r0 = socket(0x0, 0x0, 0x0) getsockopt$IP_VS_SO_GET_DAEMON(r0, 0x0, 0x487, &(0x7f0000000200), &(0x7f0000000240)=0x30) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r1 = openat$cgroup(0xffffffffffffff9c, &(0x7f00000000c0)='syz0\x00', 0x200002, 0x0) openat$cgroup_procs(r1, &(0x7f00000001c0)='cgroup.procs\x00', 0x2, 0x0) r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0x20) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)) [ 185.214002] FAULT_INJECTION: forcing a failure. [ 185.214002] name failslab, interval 1, probability 0, space 0, times 0 [ 185.226467] CPU: 1 PID: 11417 Comm: syz-executor5 Not tainted 4.18.0-rc4-next-20180711+ #4 [ 185.234869] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 185.244220] Call Trace: [ 185.246812] dump_stack+0x1c9/0x2b4 [ 185.250445] ? dump_stack_print_info.cold.2+0x52/0x52 [ 185.255643] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 185.260411] should_fail.cold.4+0xa/0x11 [ 185.264495] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 185.269618] ? update_stack_state+0x4af/0x690 [ 185.274118] ? trace_hardirqs_on+0x10/0x10 [ 185.278359] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 185.283380] ? bpf_prog_kallsyms_find+0xde/0x4c0 [ 185.288143] ? lock_acquire+0x1e4/0x540 [ 185.292119] ? is_bpf_text_address+0xae/0x170 [ 185.296619] ? lock_downgrade+0x8f0/0x8f0 [ 185.300769] ? lock_release+0xa30/0xa30 [ 185.304748] ? rcu_is_watching+0x8c/0x150 [ 185.308898] ? rcu_cleanup_dead_rnp+0x200/0x200 [ 185.313567] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 185.318334] __should_failslab+0x124/0x180 [ 185.322573] should_failslab+0x9/0x14 [ 185.326372] kmem_cache_alloc+0x47/0x760 [ 185.330436] ? depot_save_stack+0x127/0x470 [ 185.335229] ? __es_tree_search.isra.13+0x1ba/0x220 [ 185.340252] __es_insert_extent+0x305/0x1140 [ 185.344664] ? ext4_es_insert_extent+0x21c/0x7e0 [ 185.349420] ? ext4_es_free_extent+0x820/0x820 [ 185.354003] ? lock_release+0xa30/0xa30 [ 185.357991] ? kasan_check_write+0x14/0x20 [ 185.362228] ? do_raw_write_lock+0xbd/0x1b0 [ 185.366551] ext4_es_insert_extent+0x2ea/0x7e0 [ 185.371140] ? ext4_es_find_delayed_extent_range+0xd80/0xd80 [ 185.376946] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 185.381710] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 185.386494] ext4_ext_put_gap_in_cache+0x158/0x1f0 [ 185.391424] ? ext4_zeroout_es+0x160/0x160 [ 185.395661] ? ext4_ext_put_gap_in_cache+0xf/0x1f0 [ 185.400596] ext4_ext_map_blocks+0x2453/0x62e0 [ 185.405181] ? save_stack+0xa9/0xd0 [ 185.408805] ? ext4_find_delalloc_cluster+0xc0/0xc0 [ 185.413821] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 185.419359] ? start_this_handle+0x6b9/0x1260 [ 185.423863] ? lock_acquire+0x1e4/0x540 [ 185.427835] ? ext4_es_lookup_extent+0x42c/0xde0 [ 185.432590] ? lock_downgrade+0x8f0/0x8f0 [ 185.436737] ? lock_release+0xa30/0xa30 [ 185.440709] ? lock_acquire+0x1e4/0x540 [ 185.444689] ? ext4_map_blocks+0x480/0x1b60 [ 185.449008] ? lock_release+0xa30/0xa30 [ 185.452980] ? check_same_owner+0x340/0x340 [ 185.457300] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 185.462833] ? ext4_es_lookup_extent+0x465/0xde0 [ 185.467585] ? rcu_note_context_switch+0x730/0x730 [ 185.472514] ? down_read+0xb5/0x1d0 [ 185.476135] ? ext4_map_blocks+0x480/0x1b60 [ 185.480456] ? jbd2__journal_start+0x162/0xa80 [ 185.485034] ? __down_interruptible+0x700/0x700 [ 185.489707] ? jbd2_write_access_granted.part.9+0x430/0x430 [ 185.495416] ? rcu_note_context_switch+0x730/0x730 [ 185.500351] ext4_map_blocks+0xe31/0x1b60 [ 185.504498] ? __ext4_journal_start_sb+0x18a/0x600 [ 185.509429] ? ext4_issue_zeroout+0x190/0x190 [ 185.513922] ? ext4_ext_index_trans_blocks+0x11f/0x150 [ 185.519202] ? ext4_meta_trans_blocks+0x25f/0x310 [ 185.524045] ext4_alloc_file_blocks+0x319/0xaf0 [ 185.528713] ? lock_release+0xa30/0xa30 [ 185.532690] ? ext4_extent_block_csum_set+0x4a0/0x4a0 [ 185.537879] ? down_write+0x8f/0x130 [ 185.541590] ? ext4_fallocate+0x2fb/0x2320 [ 185.545821] ? down_read+0x1d0/0x1d0 [ 185.549537] ? lock_repin_lock+0x430/0x430 [ 185.553772] ? kasan_check_write+0x14/0x20 [ 185.558006] ext4_fallocate+0x9f0/0x2320 [ 185.562061] ? __fget+0x4d5/0x740 [ 185.565517] ? ext4_insert_range+0x13d0/0x13d0 [ 185.570099] ? kasan_check_write+0x14/0x20 [ 185.574332] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 185.579260] ? fsnotify+0xbac/0x14e0 [ 185.582973] ? lock_acquire+0x1e4/0x540 [ 185.586949] ? vfs_fallocate+0x72a/0x940 [ 185.591008] ? fsnotify_first_mark+0x350/0x350 [ 185.595590] ? lock_release+0xa30/0xa30 [ 185.599562] ? check_same_owner+0x340/0x340 [ 185.603881] ? __fget_light+0x2f7/0x440 [ 185.607850] ? rcu_note_context_switch+0x730/0x730 [ 185.612787] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 185.618324] ? __sb_start_write+0x17f/0x300 [ 185.622643] ? ext4_insert_range+0x13d0/0x13d0 [ 185.627221] vfs_fallocate+0x4b4/0x940 [ 185.631110] ksys_fallocate+0x56/0x90 [ 185.634909] __x64_sys_fallocate+0x97/0xf0 [ 185.639148] do_syscall_64+0x1b9/0x820 [ 185.643032] ? syscall_slow_exit_work+0x500/0x500 [ 185.647874] ? syscall_return_slowpath+0x5e0/0x5e0 [ 185.652801] ? syscall_return_slowpath+0x31d/0x5e0 [ 185.657730] ? prepare_exit_to_usermode+0x291/0x3b0 [ 185.662745] ? perf_trace_sys_enter+0xb10/0xb10 [ 185.667412] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 185.672257] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 185.677442] RIP: 0033:0x455e29 [ 185.680624] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 185.699901] RSP: 002b:00007fde778afc68 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 185.707630] RAX: ffffffffffffffda RBX: 00007fde778b06d4 RCX: 0000000000455e29 11:10:04 executing program 7: socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) [ 185.714896] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000015 [ 185.722163] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 185.729427] R10: 0000000010000101 R11: 0000000000000246 R12: 0000000000000016 [ 185.736691] R13: 00000000004bbe4e R14: 00000000004c9368 R15: 0000000000000002 11:10:04 executing program 4: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0x0, 0x7, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x8050) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x5450, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) 11:10:04 executing program 1: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) r2 = ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, r2) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) [ 185.917810] FAULT_INJECTION: forcing a failure. [ 185.917810] name failslab, interval 1, probability 0, space 0, times 0 [ 185.929110] CPU: 0 PID: 11463 Comm: syz-executor0 Not tainted 4.18.0-rc4-next-20180711+ #4 [ 185.937515] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 185.946862] Call Trace: [ 185.949451] dump_stack+0x1c9/0x2b4 [ 185.953079] ? dump_stack_print_info.cold.2+0x52/0x52 [ 185.958279] ? trace_hardirqs_on+0x10/0x10 [ 185.962525] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 185.968073] should_fail.cold.4+0xa/0x11 [ 185.972143] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 185.977259] ? find_get_entries_tag+0x1410/0x1410 [ 185.982115] ? trace_hardirqs_on+0x10/0x10 [ 185.986359] ? mntput_no_expire+0x18e/0xbc0 [ 185.990688] ? do_raw_spin_lock+0xc1/0x200 [ 185.994928] ? mnt_get_count+0x150/0x150 [ 185.998988] ? lock_acquire+0x1e4/0x540 [ 186.002950] ? fs_reclaim_acquire+0x20/0x20 [ 186.007271] ? lock_downgrade+0x8f0/0x8f0 [ 186.011413] ? check_same_owner+0x340/0x340 [ 186.015719] ? trace_hardirqs_on+0x10/0x10 [ 186.019949] ? rcu_note_context_switch+0x730/0x730 [ 186.024862] __should_failslab+0x124/0x180 [ 186.029094] should_failslab+0x9/0x14 [ 186.032876] kmem_cache_alloc_trace+0x2cb/0x780 [ 186.037529] ? _parse_integer+0x190/0x190 [ 186.041664] alloc_pipe_info+0x175/0x5a0 [ 186.045710] ? pipe_read+0x940/0x940 [ 186.049410] ? ksys_dup3+0x690/0x690 [ 186.053107] ? lock_release+0xa30/0xa30 [ 186.057064] ? pid_task+0x115/0x200 [ 186.060680] splice_direct_to_actor+0x6fc/0x8f0 [ 186.065349] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 186.070870] ? pipe_to_sendpage+0x400/0x400 [ 186.075185] ? do_splice_to+0x190/0x190 [ 186.079145] ? security_file_permission+0x1c2/0x230 [ 186.084148] ? rw_verify_area+0x118/0x360 [ 186.088282] do_splice_direct+0x2d4/0x420 [ 186.092420] ? splice_direct_to_actor+0x8f0/0x8f0 [ 186.097248] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 186.102768] ? __sb_start_write+0x17f/0x300 [ 186.107072] do_sendfile+0x62a/0xe20 [ 186.110771] ? do_compat_pwritev64+0x1c0/0x1c0 [ 186.115338] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 186.120857] ? _copy_from_user+0xdf/0x150 [ 186.125000] __x64_sys_sendfile64+0x15d/0x250 [ 186.129489] ? __ia32_sys_sendfile+0x2a0/0x2a0 [ 186.134069] do_syscall_64+0x1b9/0x820 [ 186.137950] ? finish_task_switch+0x1d3/0x870 [ 186.142427] ? syscall_return_slowpath+0x5e0/0x5e0 [ 186.147340] ? syscall_return_slowpath+0x31d/0x5e0 [ 186.152250] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 186.157249] ? prepare_exit_to_usermode+0x291/0x3b0 [ 186.162248] ? perf_trace_sys_enter+0xb10/0xb10 [ 186.166910] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 186.171737] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 186.176908] RIP: 0033:0x455e29 [ 186.180074] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 186.199251] RSP: 002b:00007ffaa7d3bc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 186.206939] RAX: ffffffffffffffda RBX: 00007ffaa7d3c6d4 RCX: 0000000000455e29 [ 186.214188] RDX: 0000000020000000 RSI: 0000000000000013 RDI: 0000000000000013 [ 186.221437] RBP: 000000000072bf48 R08: 0000000000000000 R09: 0000000000000000 [ 186.228687] R10: 0000000000100000 R11: 0000000000000246 R12: 0000000000000014 [ 186.235936] R13: 00000000004c1113 R14: 00000000004d1540 R15: 0000000000000000 11:10:05 executing program 6: r0 = getpid() sched_setattr(r0, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x0, 0x3}, 0x0) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x0, 0x0) poll(&(0x7f00000001c0), 0x0, 0x80000000) ioctl$TCSETS(r1, 0x40045431, &(0x7f00003b9fdc)) ioctl$TIOCPKT(r1, 0x5420, &(0x7f0000000080)=0x61) read(r1, &(0x7f0000000040)=""/11, 0xffed) r2 = syz_open_pts(r1, 0x0) ioctl$TCXONC(r2, 0x5414, 0x0) 11:10:05 executing program 5 (fault-call:6 fault-nth:3): r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/sys/net/ipv4/vs/secure_tcp\x00', 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/syz0\x00', 0x1ff) ioctl$KDDISABIO(r0, 0x4b37) write$binfmt_script(0xffffffffffffffff, &(0x7f00000003c0)=ANY=[@ANYBLOB], 0x0) fallocate(r1, 0x1, 0x0, 0x10000101) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'vcan0\x00'}) ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000140)={@empty, 0x71}) ioctl$EVIOCGMASK(0xffffffffffffffff, 0x80104592, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)}) socket(0x10, 0x0, 0x0) ioctl$sock_ifreq(0xffffffffffffffff, 0x0, &(0x7f0000000000)={"73697430000080000000000000000002", @ifru_ivalue}) 11:10:05 executing program 7: socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)) ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) 11:10:05 executing program 4: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0x0, 0x7, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x8050) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x5452, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) 11:10:05 executing program 3: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000540)=ANY=[@ANYBLOB="2400000018000000000007df1002e05fd80100b0000003ff050011000008000200ac141418"], 0x24}, 0x1}, 0x8050) ioctl$KVM_GET_CPUID2(r1, 0xc008ae91, &(0x7f0000000440)={0x5, 0x0, [{}, {}, {}, {}, {}]}) r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0) mq_getsetattr(r1, &(0x7f0000000580)={0x1, 0x2, 0x9, 0x3, 0x5, 0x10000, 0x9, 0x5}, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") sendfile(r1, r2, &(0x7f0000000240), 0x331) ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000001940)={'ip_vti0\x00', 0x0}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) bind$xdp(r0, &(0x7f0000000380)={0x2c, 0x1, r3, 0x1e, r1}, 0x10) 11:10:05 executing program 0 (fault-call:7 fault-nth:1): sched_setaffinity(0x0, 0x8, &(0x7f0000000080)=0x1) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) r0 = memfd_create(&(0x7f0000000100)='dev ', 0x0) write(r0, &(0x7f0000000040)="16", 0x1) sendfile(r0, r0, &(0x7f0000001000), 0xffff) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) sendfile(r0, r0, &(0x7f0000000000), 0x100000) tkill(r1, 0x15) 11:10:05 executing program 2: r0 = socket(0x0, 0x0, 0x0) r1 = syz_genetlink_get_family_id$ipvs(&(0x7f00000001c0)='IPVS\x00') sendmsg$IPVS_CMD_DEL_SERVICE(r0, &(0x7f0000000400)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10004000}, 0xc, &(0x7f0000000300)={&(0x7f0000000380)={0x68, r1, 0x0, 0x70bd2d, 0x25dfdbfe, {0x3}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x401}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x7fffffff}, @IPVS_CMD_ATTR_DEST={0x1c, 0x2, [@IPVS_DEST_ATTR_PORT={0x8, 0x2, 0x4e24}, @IPVS_DEST_ATTR_L_THRESH={0x8, 0x6, 0x8000}, @IPVS_DEST_ATTR_L_THRESH={0x8, 0x6, 0xf5}]}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x1}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x5}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x2}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x100000001}]}, 0x68}, 0x1, 0x0, 0x0, 0x40040}, 0x0) r2 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0x0, 0x7, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x0) r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0) socket$inet6(0xa, 0x80004, 0x5) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(r2, 0x40e, &(0x7f0000000480)=0x20000001) 11:10:05 executing program 7: socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)) ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) 11:10:05 executing program 1: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(r0, 0x0, &(0x7f0000000100)="295ee1") bind$nfc_llcp(r0, &(0x7f00000001c0)={0x27, 0x1, 0x1, 0x3, 0x4, 0x800, "2f9224fd3d538d3dd81a7dfa415acd559087c8b18481e42528efdabf5a62736cfb7b80b7ad192f5ee2a8b9e200d51016cbab9f14808bd8b3a58397bbdac6ce", 0x1f}, 0x60) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)) 11:10:05 executing program 4: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0x0, 0x7, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x8050) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c80, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) [ 186.470320] FAULT_INJECTION: forcing a failure. [ 186.470320] name failslab, interval 1, probability 0, space 0, times 0 [ 186.482145] CPU: 0 PID: 11483 Comm: syz-executor5 Not tainted 4.18.0-rc4-next-20180711+ #4 [ 186.490556] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 186.500594] Call Trace: [ 186.503191] dump_stack+0x1c9/0x2b4 [ 186.506828] ? dump_stack_print_info.cold.2+0x52/0x52 [ 186.512036] should_fail.cold.4+0xa/0x11 [ 186.516098] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 186.521194] ? visit_groups_merge+0x541/0x6c0 [ 186.525694] ? trace_hardirqs_on+0x10/0x10 [ 186.529930] ? kvm_clock_read+0x25/0x30 [ 186.533896] ? kvm_sched_clock_read+0x9/0x20 [ 186.538295] ? sched_clock+0x31/0x40 [ 186.541994] ? sched_clock_cpu+0x1b/0x180 [ 186.546136] ? __perf_event_task_sched_in+0x91d/0xbb0 [ 186.551308] ? lock_downgrade+0x8f0/0x8f0 [ 186.555447] ? visit_groups_merge+0x6c0/0x6c0 [ 186.559929] ? kasan_check_read+0x11/0x20 [ 186.564069] ? do_raw_spin_trylock+0x1c0/0x1c0 [ 186.568639] ? kasan_check_write+0x14/0x20 [ 186.572857] ? check_same_owner+0x340/0x340 [ 186.577165] ? rcu_note_context_switch+0x730/0x730 [ 186.582089] ? __perf_event_task_sched_in+0x24f/0xbb0 [ 186.587271] __should_failslab+0x124/0x180 [ 186.591499] should_failslab+0x9/0x14 [ 186.595291] __kmalloc+0x2c8/0x760 [ 186.598815] ? update_curr+0x200/0xc00 [ 186.602686] ? ext4_ext_map_blocks+0xede/0x62e0 [ 186.607338] ? ext4_find_extent+0x775/0xa10 [ 186.611652] ext4_find_extent+0x775/0xa10 [ 186.615787] ? trace_hardirqs_on+0x10/0x10 [ 186.620008] ext4_ext_map_blocks+0x293/0x62e0 [ 186.624497] ? do_raw_spin_trylock+0x1c0/0x1c0 [ 186.629062] ? ext4_find_delalloc_cluster+0xc0/0xc0 [ 186.634068] ? finish_task_switch+0x18a/0x870 [ 186.638550] ? preempt_notifier_register+0x200/0x200 [ 186.643636] ? lock_repin_lock+0x430/0x430 [ 186.647852] ? kasan_check_write+0x14/0x20 [ 186.652077] ? __schedule+0x884/0x1ed0 [ 186.655953] ? __sched_text_start+0x8/0x8 [ 186.660083] ? lock_acquire+0x1e4/0x540 [ 186.664053] ? lock_acquire+0x1e4/0x540 [ 186.668021] ? ext4_map_blocks+0x88b/0x1b60 [ 186.672331] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 186.677859] ? lock_release+0xa30/0xa30 [ 186.681815] ? check_same_owner+0x340/0x340 [ 186.686118] ? lock_downgrade+0x8f0/0x8f0 [ 186.690247] ? down_write+0x8f/0x130 [ 186.693951] ? ext4_map_blocks+0x88b/0x1b60 [ 186.698262] ? down_read+0x1d0/0x1d0 [ 186.701971] ext4_map_blocks+0x8f3/0x1b60 [ 186.706115] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 186.710862] ? ext4_issue_zeroout+0x190/0x190 [ 186.715346] ? __ext4_journal_start_sb+0x18a/0x600 [ 186.720264] ext4_alloc_file_blocks+0x319/0xaf0 [ 186.724918] ? lock_release+0xa30/0xa30 [ 186.728884] ? ext4_extent_block_csum_set+0x4a0/0x4a0 [ 186.734073] ? ext4_fallocate+0x9d0/0x2320 [ 186.738291] ext4_fallocate+0x9f0/0x2320 [ 186.742332] ? __fget+0x4d5/0x740 [ 186.745771] ? ext4_insert_range+0x13d0/0x13d0 [ 186.750342] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 186.755096] ? lock_acquire+0x1e4/0x540 [ 186.759065] ? vfs_fallocate+0x72a/0x940 [ 186.763107] ? lock_release+0xa30/0xa30 [ 186.767072] ? check_same_owner+0x340/0x340 [ 186.771386] ? __fget_light+0x2f7/0x440 [ 186.775353] ? rcu_note_context_switch+0x730/0x730 [ 186.780283] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 186.785807] ? __sb_start_write+0x17f/0x300 [ 186.790117] ? ext4_insert_range+0x13d0/0x13d0 [ 186.794692] vfs_fallocate+0x4b4/0x940 [ 186.798576] ksys_fallocate+0x56/0x90 [ 186.802365] __x64_sys_fallocate+0x97/0xf0 [ 186.806584] do_syscall_64+0x1b9/0x820 [ 186.810466] ? syscall_slow_exit_work+0x500/0x500 [ 186.815296] ? syscall_return_slowpath+0x5e0/0x5e0 [ 186.820214] ? syscall_return_slowpath+0x31d/0x5e0 [ 186.825146] ? prepare_exit_to_usermode+0x291/0x3b0 [ 186.830154] ? perf_trace_sys_enter+0xb10/0xb10 [ 186.834802] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 186.839637] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 186.844815] RIP: 0033:0x455e29 [ 186.847990] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 186.867153] RSP: 002b:00007fde778afc68 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 186.874841] RAX: ffffffffffffffda RBX: 00007fde778b06d4 RCX: 0000000000455e29 [ 186.882097] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000015 [ 186.889347] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 186.896595] R10: 0000000010000101 R11: 0000000000000246 R12: 0000000000000016 [ 186.903858] R13: 00000000004bbe4e R14: 00000000004c9368 R15: 0000000000000003 11:10:05 executing program 5 (fault-call:6 fault-nth:4): r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/sys/net/ipv4/vs/secure_tcp\x00', 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/syz0\x00', 0x1ff) ioctl$KDDISABIO(r0, 0x4b37) write$binfmt_script(0xffffffffffffffff, &(0x7f00000003c0)=ANY=[@ANYBLOB], 0x0) fallocate(r1, 0x1, 0x0, 0x10000101) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'vcan0\x00'}) ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000140)={@empty, 0x71}) ioctl$EVIOCGMASK(0xffffffffffffffff, 0x80104592, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)}) socket(0x10, 0x0, 0x0) ioctl$sock_ifreq(0xffffffffffffffff, 0x0, &(0x7f0000000000)={"73697430000080000000000000000002", @ifru_ivalue}) 11:10:05 executing program 3: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000680)=ANY=[@ANYBLOB="00ffdbdf250200b0000003a7ea832c7dff0500110000080002a98c5c0589a437c1e1e740ec7e7d45dcc23e2d2e53cb085dff7f2a417ce2a7685a42228b85a2186b7e22743e3c9a6a023c337682beca6b176e91c29da614b2c5c4ca995d4334ccb29d4c89b45f29cde5a396b24b2e9565f8719a621b5a0652426e6db4987b91e0a8afe5fd8ae80c17de922303f88f4970f798242c34eaa3bd05df814ff76e8e0d671feae2434954ddf2eea91d986bcf74aba43ad11f8ae319a423"], 0x24}, 0x1}, 0x8050) write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000440)={0x0, 0x18, 0xfa00, {0x1, &(0x7f0000000380)={0xffffffffffffffff}, 0x13f, 0x4}}, 0x20) write$RDMA_USER_CM_CMD_ACCEPT(r1, &(0x7f0000000480)={0x8, 0x120, 0xfa00, {0x0, {0x0, 0x0, "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", 0x43, 0x80000000, 0xffffffff, 0x9, 0x0, 0x8001, 0x6879e4d0}, r2}}, 0x128) r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0) getsockopt$inet_sctp_SCTP_MAXSEG(r1, 0x84, 0xd, &(0x7f0000000240)=@assoc_id=0x0, &(0x7f00000005c0)=0x4) setsockopt$inet_sctp6_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f0000000600)={0xc0000000000000, 0x0, 0x200, 0x3, 0xdad, 0x1, 0x1000, 0x6, r4}, 0x20) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) 11:10:05 executing program 7: socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)) ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) 11:10:05 executing program 1: r0 = socket(0x0, 0x0, 0x0) r1 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = syz_open_dev$vcsn(&(0x7f00000001c0)='/dev/vcs#\x00', 0x401, 0x8000) ioctl$KVM_GET_SREGS(r2, 0x8138ae83, &(0x7f0000000400)) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0) openat$full(0xffffffffffffff9c, &(0x7f0000000240)='/dev/full\x00', 0x8040, 0x0) ioctl(r1, 0x0, &(0x7f00000000c0)="348fd7dd158ef9c3f25c") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) restart_syscall() fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)) [ 187.065777] FAULT_INJECTION: forcing a failure. [ 187.065777] name failslab, interval 1, probability 0, space 0, times 0 [ 187.077179] CPU: 1 PID: 11528 Comm: syz-executor5 Not tainted 4.18.0-rc4-next-20180711+ #4 [ 187.085578] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 187.094925] Call Trace: [ 187.097513] dump_stack+0x1c9/0x2b4 [ 187.101144] ? dump_stack_print_info.cold.2+0x52/0x52 [ 187.106343] should_fail.cold.4+0xa/0x11 [ 187.110407] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 187.115598] ? do_raw_spin_unlock+0xa7/0x2f0 [ 187.120008] ? do_raw_spin_trylock+0x1c0/0x1c0 [ 187.124591] ? kasan_check_write+0x14/0x20 [ 187.128827] ? do_raw_spin_lock+0xc1/0x200 [ 187.133064] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 187.138601] ? __mark_inode_dirty+0x495/0x1550 [ 187.143190] ? __inode_attach_wb+0x13e0/0x13e0 [ 187.147775] ? kasan_check_read+0x11/0x20 [ 187.151925] ? do_raw_spin_unlock+0xa7/0x2f0 [ 187.156329] ? do_raw_spin_trylock+0x1c0/0x1c0 [ 187.160908] ? kasan_check_write+0x14/0x20 [ 187.165145] ? check_same_owner+0x340/0x340 [ 187.169464] ? __dquot_alloc_space+0x4b6/0x8c0 [ 187.174045] ? rcu_note_context_switch+0x730/0x730 [ 187.178981] __should_failslab+0x124/0x180 [ 187.183215] should_failslab+0x9/0x14 [ 187.187013] kmem_cache_alloc+0x2af/0x760 [ 187.191160] ? percpu_counter_add_batch+0xf2/0x150 [ 187.196097] ext4_mb_new_blocks+0x774/0x4740 [ 187.200512] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 187.205529] ? bpf_prog_kallsyms_find+0xde/0x4c0 [ 187.210290] ? ext4_discard_preallocations+0x13d0/0x13d0 [ 187.215735] ? lock_release+0xa30/0xa30 [ 187.219711] ? kasan_check_read+0x11/0x20 [ 187.223865] ? rcu_is_watching+0x8c/0x150 [ 187.228019] ? rcu_cleanup_dead_rnp+0x200/0x200 [ 187.232694] ? is_bpf_text_address+0xd7/0x170 [ 187.237192] ? kernel_text_address+0x79/0xf0 [ 187.241602] ? __kernel_text_address+0xd/0x40 [ 187.246093] ? unwind_get_return_address+0x61/0xa0 [ 187.251025] ? __save_stack_trace+0x8d/0xf0 [ 187.255358] ? save_stack+0xa9/0xd0 [ 187.258982] ? save_stack+0x43/0xd0 [ 187.262607] ? kasan_kmalloc+0xc4/0xe0 [ 187.266488] ? __kmalloc+0x14e/0x760 [ 187.270195] ? ext4_find_extent+0x775/0xa10 [ 187.274513] ? ext4_ext_map_blocks+0x293/0x62e0 [ 187.279179] ? ext4_map_blocks+0x8f3/0x1b60 [ 187.283494] ? ext4_alloc_file_blocks+0x319/0xaf0 [ 187.288331] ? ext4_fallocate+0x9f0/0x2320 [ 187.292561] ? vfs_fallocate+0x4b4/0x940 [ 187.296652] ? ksys_fallocate+0x56/0x90 [ 187.300630] ? __x64_sys_fallocate+0x97/0xf0 [ 187.305039] ? do_syscall_64+0x1b9/0x820 [ 187.309099] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 187.314466] ? __perf_event_task_sched_in+0x91d/0xbb0 [ 187.319653] ? lock_downgrade+0x8f0/0x8f0 [ 187.323806] ? visit_groups_merge+0x6c0/0x6c0 [ 187.328301] ? kasan_check_read+0x11/0x20 [ 187.332882] ? do_raw_spin_unlock+0xa7/0x2f0 [ 187.337286] ? do_raw_spin_trylock+0x1c0/0x1c0 [ 187.341870] ? kasan_check_write+0x14/0x20 [ 187.346101] ? check_same_owner+0x340/0x340 [ 187.350421] ? kasan_unpoison_shadow+0x35/0x50 [ 187.355003] ? kasan_kmalloc+0xc4/0xe0 [ 187.358891] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 187.363648] ? retint_kernel+0x10/0x10 [ 187.367548] ext4_ext_map_blocks+0x2dc0/0x62e0 [ 187.372141] ? ext4_find_delalloc_cluster+0xc0/0xc0 [ 187.377156] ? finish_task_switch+0x18a/0x870 [ 187.381650] ? preempt_notifier_register+0x200/0x200 [ 187.386753] ? lock_repin_lock+0x430/0x430 [ 187.391001] ? kasan_check_write+0x14/0x20 [ 187.395248] ? __schedule+0x884/0x1ed0 [ 187.399143] ? __sched_text_start+0x8/0x8 [ 187.403290] ? lock_acquire+0x25f/0x540 [ 187.407265] ? lock_acquire+0x1e4/0x540 [ 187.411236] ? ext4_map_blocks+0x88b/0x1b60 [ 187.415560] ? retint_kernel+0x10/0x10 [ 187.419450] ? lock_release+0xa30/0xa30 [ 187.423423] ? check_same_owner+0x340/0x340 [ 187.427841] ? lock_downgrade+0x8f0/0x8f0 [ 187.431991] ? down_write+0x8f/0x130 [ 187.435701] ? ext4_map_blocks+0x88b/0x1b60 [ 187.440022] ? down_read+0x1d0/0x1d0 [ 187.443741] ext4_map_blocks+0x8f3/0x1b60 [ 187.447894] ? ext4_issue_zeroout+0x190/0x190 [ 187.452390] ? ext4_alloc_file_blocks+0x2b3/0xaf0 [ 187.457234] ext4_alloc_file_blocks+0x319/0xaf0 [ 187.461905] ? lock_release+0xa30/0xa30 [ 187.465877] ? ext4_extent_block_csum_set+0x4a0/0x4a0 [ 187.471077] ext4_fallocate+0x9f0/0x2320 [ 187.475132] ? __fget+0x4d5/0x740 [ 187.478584] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 187.483342] ? ext4_insert_range+0x13d0/0x13d0 [ 187.487928] ? lock_acquire+0x25f/0x540 [ 187.491903] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 187.496657] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 187.501419] ? retint_kernel+0x10/0x10 [ 187.505303] ? ext4_insert_range+0x13d0/0x13d0 [ 187.509889] ? ext4_insert_range+0x13d0/0x13d0 [ 187.514469] vfs_fallocate+0x4b4/0x940 [ 187.518359] ksys_fallocate+0x56/0x90 [ 187.522159] __x64_sys_fallocate+0x97/0xf0 [ 187.526393] do_syscall_64+0x1b9/0x820 [ 187.530277] ? syscall_slow_exit_work+0x500/0x500 [ 187.535117] ? syscall_return_slowpath+0x5e0/0x5e0 [ 187.540042] ? syscall_return_slowpath+0x31d/0x5e0 [ 187.544993] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 187.550526] ? prepare_exit_to_usermode+0x291/0x3b0 [ 187.555541] ? perf_trace_sys_enter+0xb10/0xb10 [ 187.560206] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 187.565051] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 187.570231] RIP: 0033:0x455e29 [ 187.573412] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 187.592683] RSP: 002b:00007fde778afc68 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 187.600391] RAX: ffffffffffffffda RBX: 00007fde778b06d4 RCX: 0000000000455e29 [ 187.607653] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000015 11:10:06 executing program 6: r0 = getpid() sched_setattr(r0, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x0, 0x3}, 0x0) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x0, 0x0) poll(&(0x7f00000001c0), 0x0, 0x80000000) ioctl$TCSETS(r1, 0x40045431, &(0x7f00003b9fdc)) ioctl$TIOCPKT(r1, 0x5420, &(0x7f0000000080)=0x61) read(r1, &(0x7f0000000040)=""/11, 0xffed) r2 = syz_open_pts(r1, 0x0) ioctl$TCXONC(r2, 0x4020940d, 0x0) [ 187.614919] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 187.622181] R10: 0000000010000101 R11: 0000000000000246 R12: 0000000000000016 [ 187.629444] R13: 00000000004bbe4e R14: 00000000004c9368 R15: 0000000000000004 [ 187.659785] FAULT_INJECTION: forcing a failure. [ 187.659785] name failslab, interval 1, probability 0, space 0, times 0 [ 187.671122] CPU: 1 PID: 11539 Comm: syz-executor0 Not tainted 4.18.0-rc4-next-20180711+ #4 [ 187.679523] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 187.688870] Call Trace: [ 187.691461] dump_stack+0x1c9/0x2b4 [ 187.695100] ? dump_stack_print_info.cold.2+0x52/0x52 [ 187.700301] ? __kernel_text_address+0xd/0x40 [ 187.704813] should_fail.cold.4+0xa/0x11 [ 187.708884] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 187.713998] ? save_stack+0xa9/0xd0 [ 187.717626] ? save_stack+0x43/0xd0 [ 187.721249] ? kasan_kmalloc+0xc4/0xe0 [ 187.725138] ? kmem_cache_alloc_trace+0x152/0x780 [ 187.729979] ? alloc_pipe_info+0x175/0x5a0 [ 187.734215] ? splice_direct_to_actor+0x6fc/0x8f0 [ 187.739059] ? do_sendfile+0x62a/0xe20 [ 187.742948] ? __x64_sys_sendfile64+0x15d/0x250 [ 187.747621] ? do_syscall_64+0x1b9/0x820 [ 187.751682] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 187.757046] ? lock_acquire+0x1e4/0x540 [ 187.761016] ? percpu_ref_put_many+0x119/0x240 [ 187.765597] ? lock_downgrade+0x8f0/0x8f0 [ 187.769755] ? lock_acquire+0x1e4/0x540 [ 187.773727] ? fs_reclaim_acquire+0x20/0x20 [ 187.778051] ? lock_downgrade+0x8f0/0x8f0 [ 187.782196] ? lock_downgrade+0x8f0/0x8f0 [ 187.786346] ? check_same_owner+0x340/0x340 [ 187.790661] ? percpu_ref_put_many+0x131/0x240 [ 187.795262] ? rcu_note_context_switch+0x730/0x730 [ 187.800199] __should_failslab+0x124/0x180 [ 187.804443] should_failslab+0x9/0x14 [ 187.808246] __kmalloc+0x2c8/0x760 [ 187.811782] ? kmem_cache_alloc_trace+0x318/0x780 [ 187.816627] ? _parse_integer+0x190/0x190 [ 187.820775] ? alloc_pipe_info+0x2a8/0x5a0 [ 187.825011] alloc_pipe_info+0x2a8/0x5a0 [ 187.829074] ? pipe_read+0x940/0x940 [ 187.832791] ? ksys_dup3+0x690/0x690 [ 187.836508] ? lock_release+0xa30/0xa30 [ 187.840484] ? pid_task+0x115/0x200 [ 187.844114] splice_direct_to_actor+0x6fc/0x8f0 [ 187.848780] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 187.854316] ? pipe_to_sendpage+0x400/0x400 [ 187.858636] ? do_splice_to+0x190/0x190 [ 187.862605] ? security_file_permission+0x1c2/0x230 [ 187.867619] ? rw_verify_area+0x118/0x360 [ 187.871768] do_splice_direct+0x2d4/0x420 [ 187.875919] ? splice_direct_to_actor+0x8f0/0x8f0 [ 187.880766] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 187.886303] ? __sb_start_write+0x17f/0x300 [ 187.890624] do_sendfile+0x62a/0xe20 [ 187.894337] ? do_compat_pwritev64+0x1c0/0x1c0 [ 187.898925] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 187.904459] ? _copy_from_user+0xdf/0x150 [ 187.908606] __x64_sys_sendfile64+0x15d/0x250 [ 187.913100] ? __ia32_sys_sendfile+0x2a0/0x2a0 [ 187.917688] do_syscall_64+0x1b9/0x820 [ 187.921570] ? finish_task_switch+0x1d3/0x870 [ 187.926064] ? syscall_return_slowpath+0x5e0/0x5e0 [ 187.930990] ? syscall_return_slowpath+0x31d/0x5e0 [ 187.935916] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 187.940931] ? prepare_exit_to_usermode+0x291/0x3b0 [ 187.945943] ? perf_trace_sys_enter+0xb10/0xb10 [ 187.950608] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 187.955450] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 187.960632] RIP: 0033:0x455e29 [ 187.963809] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 187.983087] RSP: 002b:00007ffaa7d3bc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 187.990792] RAX: ffffffffffffffda RBX: 00007ffaa7d3c6d4 RCX: 0000000000455e29 [ 187.998055] RDX: 0000000020000000 RSI: 0000000000000013 RDI: 0000000000000013 11:10:06 executing program 5 (fault-call:6 fault-nth:5): r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/sys/net/ipv4/vs/secure_tcp\x00', 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/syz0\x00', 0x1ff) ioctl$KDDISABIO(r0, 0x4b37) write$binfmt_script(0xffffffffffffffff, &(0x7f00000003c0)=ANY=[@ANYBLOB], 0x0) fallocate(r1, 0x1, 0x0, 0x10000101) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'vcan0\x00'}) ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000140)={@empty, 0x71}) ioctl$EVIOCGMASK(0xffffffffffffffff, 0x80104592, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)}) socket(0x10, 0x0, 0x0) ioctl$sock_ifreq(0xffffffffffffffff, 0x0, &(0x7f0000000000)={"73697430000080000000000000000002", @ifru_ivalue}) [ 188.005318] RBP: 000000000072bf48 R08: 0000000000000000 R09: 0000000000000000 [ 188.012585] R10: 0000000000100000 R11: 0000000000000246 R12: 0000000000000014 [ 188.019847] R13: 00000000004c1113 R14: 00000000004d1540 R15: 0000000000000001 11:10:06 executing program 2: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r1 = openat$dsp(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/dsp\x00', 0x111400, 0x0) r2 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82) syz_open_dev$usbmon(&(0x7f00000002c0)='/dev/usbmon#\x00', 0x4, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, r2) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0x0, 0x7, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x0) memfd_create(&(0x7f00000000c0)='ip_vti0\x00', 0x2) r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000380)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) 11:10:06 executing program 4: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0x0, 0x7, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x8050) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0xc0189436, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) 11:10:06 executing program 7: socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) 11:10:06 executing program 0 (fault-call:7 fault-nth:2): sched_setaffinity(0x0, 0x8, &(0x7f0000000080)=0x1) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) r0 = memfd_create(&(0x7f0000000100)='dev ', 0x0) write(r0, &(0x7f0000000040)="16", 0x1) sendfile(r0, r0, &(0x7f0000001000), 0xffff) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) sendfile(r0, r0, &(0x7f0000000000), 0x100000) tkill(r1, 0x15) 11:10:06 executing program 4: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0x0, 0x7, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x8050) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4020940d, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) [ 188.225473] FAULT_INJECTION: forcing a failure. [ 188.225473] name failslab, interval 1, probability 0, space 0, times 0 [ 188.237412] CPU: 1 PID: 11566 Comm: syz-executor5 Not tainted 4.18.0-rc4-next-20180711+ #4 [ 188.245821] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 188.255167] Call Trace: [ 188.257739] dump_stack+0x1c9/0x2b4 [ 188.261354] ? dump_stack_print_info.cold.2+0x52/0x52 [ 188.266532] ? ext4_alloc_file_blocks+0x319/0xaf0 [ 188.271362] ? trace_hardirqs_on+0x10/0x10 [ 188.275594] should_fail.cold.4+0xa/0x11 [ 188.279661] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 188.284758] ? kasan_check_write+0x14/0x20 [ 188.288998] ? do_raw_spin_lock+0xc1/0x200 [ 188.293229] ? trace_hardirqs_off+0xd/0x10 [ 188.297458] ? trace_hardirqs_on+0x10/0x10 [ 188.301685] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 188.306434] ? retint_kernel+0x10/0x10 [ 188.310322] ? ext4_ext_map_blocks+0xede/0x62e0 [ 188.315001] ? kfree+0x124/0x260 [ 188.318369] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 188.323900] ? ext4_ext_map_blocks+0xfb2/0x62e0 [ 188.328556] __should_failslab+0x124/0x180 [ 188.332779] should_failslab+0x9/0x14 [ 188.336570] kmem_cache_alloc+0x47/0x760 [ 188.340620] ? lock_release+0xa30/0xa30 [ 188.344578] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 188.349586] ? ext4_es_can_be_merged+0x238/0x2a0 [ 188.354338] __es_insert_extent+0x305/0x1140 [ 188.358751] ? ext4_es_free_extent+0x820/0x820 [ 188.363320] ? lock_release+0xa30/0xa30 [ 188.367277] ? ext4_es_init_tree+0x70/0x70 [ 188.371509] ? kasan_check_write+0x14/0x20 [ 188.375728] ? do_raw_write_lock+0xbd/0x1b0 [ 188.380041] ext4_es_insert_extent+0x2ea/0x7e0 [ 188.384604] ? lock_release+0xa30/0xa30 [ 188.388573] ? ext4_es_find_delayed_extent_range+0xd80/0xd80 [ 188.394354] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 188.399884] ? ext4_find_delalloc_range+0x14b/0x1c0 [ 188.404883] ? ext4_ext_release+0x10/0x10 [ 188.409018] ? down_write+0x8f/0x130 [ 188.412720] ? ext4_map_blocks+0x88b/0x1b60 [ 188.417038] ? ext4_map_blocks+0xe61/0x1b60 [ 188.421343] ext4_map_blocks+0xb08/0x1b60 [ 188.425478] ? ext4_issue_zeroout+0x190/0x190 [ 188.429955] ? ext4_ext_index_trans_blocks+0x11f/0x150 [ 188.435226] ? ext4_meta_trans_blocks+0x25f/0x310 [ 188.440059] ext4_alloc_file_blocks+0x319/0xaf0 [ 188.444713] ? retint_kernel+0x10/0x10 [ 188.448591] ? ext4_extent_block_csum_set+0x4a0/0x4a0 [ 188.453762] ? down_write+0xa1/0x130 [ 188.457466] ? ext4_fallocate+0x2fb/0x2320 [ 188.461680] ? down_read+0x1d0/0x1d0 [ 188.465396] ? __f_unlock_pos+0x19/0x20 [ 188.469362] ext4_fallocate+0x9f0/0x2320 [ 188.473413] ? __fget+0x4d5/0x740 [ 188.476854] ? ext4_insert_range+0x13d0/0x13d0 [ 188.481430] ? kasan_check_write+0x14/0x20 [ 188.485657] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 188.490576] ? fsnotify+0xbac/0x14e0 [ 188.494285] ? lock_acquire+0x1e4/0x540 [ 188.498258] ? vfs_fallocate+0x72a/0x940 [ 188.502308] ? fsnotify_first_mark+0x350/0x350 [ 188.506873] ? lock_release+0xa30/0xa30 [ 188.510828] ? check_same_owner+0x340/0x340 [ 188.515137] ? __fget_light+0x2f7/0x440 [ 188.519107] ? rcu_note_context_switch+0x730/0x730 [ 188.524033] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 188.529559] ? __sb_start_write+0x17f/0x300 [ 188.533876] ? ext4_insert_range+0x13d0/0x13d0 [ 188.538456] vfs_fallocate+0x4b4/0x940 [ 188.542330] ksys_fallocate+0x56/0x90 [ 188.546118] __x64_sys_fallocate+0x97/0xf0 [ 188.550344] do_syscall_64+0x1b9/0x820 [ 188.554214] ? syscall_slow_exit_work+0x500/0x500 [ 188.559049] ? syscall_return_slowpath+0x5e0/0x5e0 [ 188.563969] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 188.569495] ? prepare_exit_to_usermode+0x291/0x3b0 [ 188.574506] ? perf_trace_sys_enter+0xb10/0xb10 [ 188.579162] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 188.583987] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 188.589161] RIP: 0033:0x455e29 [ 188.592339] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 188.611464] RSP: 002b:00007fde778afc68 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 188.619158] RAX: ffffffffffffffda RBX: 00007fde778b06d4 RCX: 0000000000455e29 [ 188.626420] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000015 [ 188.633685] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 188.640940] R10: 0000000010000101 R11: 0000000000000246 R12: 0000000000000016 [ 188.648192] R13: 00000000004bbe4e R14: 00000000004c9368 R15: 0000000000000005 11:10:07 executing program 3: r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000380)='/dev/full\x00', 0x200, 0x0) connect(r0, &(0x7f0000000440)=@in={0x2, 0x4e22, @remote={0xac, 0x14, 0x14, 0xbb}}, 0x80) socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0xb0, 0x0, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x8050) r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000001940)={'vlan0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) setsockopt$inet_MCAST_JOIN_GROUP(r1, 0x0, 0x2a, &(0x7f0000000500)={0x9, {{0x2, 0x4e21, @multicast2=0xe0000002}}}, 0x88) ioctl$SNDRV_CTL_IOCTL_TLV_WRITE(r1, 0xc008551b, &(0x7f00000004c0)={0x100000001, 0x28, [0x7, 0x368, 0xffffffff, 0x2, 0x10001, 0x3, 0x3ff, 0xff, 0x0, 0x7fff]}) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) 11:10:07 executing program 1: r0 = dup3(0xffffffffffffffff, 0xffffffffffffff9c, 0x80000) ioctl$RTC_WIE_OFF(r0, 0x7010) r1 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1") ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)) 11:10:07 executing program 5 (fault-call:6 fault-nth:6): r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/sys/net/ipv4/vs/secure_tcp\x00', 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/syz0\x00', 0x1ff) ioctl$KDDISABIO(r0, 0x4b37) write$binfmt_script(0xffffffffffffffff, &(0x7f00000003c0)=ANY=[@ANYBLOB], 0x0) fallocate(r1, 0x1, 0x0, 0x10000101) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'vcan0\x00'}) ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000140)={@empty, 0x71}) ioctl$EVIOCGMASK(0xffffffffffffffff, 0x80104592, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)}) socket(0x10, 0x0, 0x0) ioctl$sock_ifreq(0xffffffffffffffff, 0x0, &(0x7f0000000000)={"73697430000080000000000000000002", @ifru_ivalue}) 11:10:07 executing program 2: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f00000000c0)=ANY=[@ANYBLOB="240000001800000000000000ffdbdf25020010070003ff050011000008000200ac14141801b1d58523e8"], 0x24}, 0x1}, 0x0) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) 11:10:07 executing program 7: socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) [ 188.857053] FAULT_INJECTION: forcing a failure. [ 188.857053] name failslab, interval 1, probability 0, space 0, times 0 [ 188.868476] CPU: 0 PID: 11593 Comm: syz-executor5 Not tainted 4.18.0-rc4-next-20180711+ #4 [ 188.876878] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 188.886215] Call Trace: [ 188.888813] dump_stack+0x1c9/0x2b4 [ 188.892430] ? dump_stack_print_info.cold.2+0x52/0x52 [ 188.897606] should_fail.cold.4+0xa/0x11 [ 188.901666] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 188.906752] ? kasan_slab_free+0xe/0x10 [ 188.910716] ? kasan_check_read+0x11/0x20 [ 188.914846] ? do_raw_spin_unlock+0xa7/0x2f0 [ 188.919238] ? do_raw_spin_trylock+0x1c0/0x1c0 [ 188.923822] ? compat_start_thread+0x80/0x80 [ 188.928219] ? trace_hardirqs_on+0xd/0x10 [ 188.932363] ? _raw_spin_unlock_irq+0x27/0x70 [ 188.936841] ? finish_task_switch+0x1d3/0x870 [ 188.941319] ? finish_task_switch+0x18a/0x870 [ 188.945796] ? preempt_notifier_register+0x200/0x200 [ 188.950886] ? lock_repin_lock+0x430/0x430 [ 188.955105] ? check_same_owner+0x340/0x340 [ 188.959409] ? rcu_note_context_switch+0x730/0x730 [ 188.964327] __should_failslab+0x124/0x180 [ 188.968569] should_failslab+0x9/0x14 [ 188.972352] kmem_cache_alloc+0x2af/0x760 [ 188.976488] ? jbd2_buffer_abort_trigger+0x90/0x90 [ 188.981402] jbd2__journal_start+0x1e7/0xa80 [ 188.985799] ? jbd2_write_access_granted.part.9+0x430/0x430 [ 188.991491] ? retint_kernel+0x10/0x10 [ 188.995384] ? preempt_schedule_common+0x22/0x60 [ 189.000122] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 189.005649] __ext4_journal_start_sb+0x182/0x600 [ 189.010391] ? ext4_alloc_file_blocks+0x2e1/0xaf0 [ 189.015229] ? ext4_journal_abort_handle.isra.5+0x260/0x260 [ 189.020921] ? retint_kernel+0x10/0x10 [ 189.024793] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 189.030316] ext4_alloc_file_blocks+0x2e1/0xaf0 [ 189.034970] ? lock_release+0xa30/0xa30 [ 189.038931] ? ext4_extent_block_csum_set+0x4a0/0x4a0 [ 189.044106] ? down_write+0x8f/0x130 [ 189.047808] ? ext4_fallocate+0x2fb/0x2320 [ 189.052028] ? down_read+0x1d0/0x1d0 [ 189.055723] ? __f_unlock_pos+0x19/0x20 [ 189.059681] ext4_fallocate+0x9f0/0x2320 [ 189.063722] ? __fget+0x4d5/0x740 [ 189.067160] ? ext4_insert_range+0x13d0/0x13d0 [ 189.071727] ? kasan_check_write+0x14/0x20 [ 189.075944] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 189.080867] ? fsnotify+0xbac/0x14e0 [ 189.084567] ? lock_acquire+0x1e4/0x540 [ 189.088522] ? vfs_fallocate+0x72a/0x940 [ 189.092564] ? fsnotify_first_mark+0x350/0x350 [ 189.097148] ? lock_release+0xa30/0xa30 [ 189.101109] ? check_same_owner+0x340/0x340 [ 189.105416] ? __fget_light+0x2f7/0x440 [ 189.109371] ? rcu_note_context_switch+0x730/0x730 [ 189.114297] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 189.119818] ? __sb_start_write+0x17f/0x300 [ 189.124135] ? ext4_insert_range+0x13d0/0x13d0 [ 189.128710] vfs_fallocate+0x4b4/0x940 [ 189.132582] ksys_fallocate+0x56/0x90 [ 189.136364] __x64_sys_fallocate+0x97/0xf0 [ 189.140586] do_syscall_64+0x1b9/0x820 [ 189.144455] ? syscall_slow_exit_work+0x500/0x500 [ 189.149279] ? syscall_return_slowpath+0x5e0/0x5e0 [ 189.154893] ? syscall_return_slowpath+0x31d/0x5e0 [ 189.159805] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 189.165323] ? prepare_exit_to_usermode+0x291/0x3b0 [ 189.170319] ? perf_trace_sys_enter+0xb10/0xb10 [ 189.174970] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 189.179797] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 189.184966] RIP: 0033:0x455e29 [ 189.188134] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 189.207305] RSP: 002b:00007fde778afc68 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 189.214994] RAX: ffffffffffffffda RBX: 00007fde778b06d4 RCX: 0000000000455e29 [ 189.222244] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000015 [ 189.229493] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 189.236743] R10: 0000000010000101 R11: 0000000000000246 R12: 0000000000000016 [ 189.243992] R13: 00000000004bbe4e R14: 00000000004c9368 R15: 0000000000000006 11:10:08 executing program 5 (fault-call:6 fault-nth:7): r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/sys/net/ipv4/vs/secure_tcp\x00', 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/syz0\x00', 0x1ff) ioctl$KDDISABIO(r0, 0x4b37) write$binfmt_script(0xffffffffffffffff, &(0x7f00000003c0)=ANY=[@ANYBLOB], 0x0) fallocate(r1, 0x1, 0x0, 0x10000101) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'vcan0\x00'}) ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000140)={@empty, 0x71}) ioctl$EVIOCGMASK(0xffffffffffffffff, 0x80104592, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)}) socket(0x10, 0x0, 0x0) ioctl$sock_ifreq(0xffffffffffffffff, 0x0, &(0x7f0000000000)={"73697430000080000000000000000002", @ifru_ivalue}) 11:10:08 executing program 4: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0x0, 0x7, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x8050) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0xc020660b, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) 11:10:08 executing program 2: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0x0, 0x7, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x0) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) r2 = memfd_create(&(0x7f00000000c0)='#*nodev#\x00', 0x1) io_setup(0x81, &(0x7f00000001c0)=0x0) io_cancel(r3, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x3, 0x101, r1, &(0x7f0000000400)="07bf35d5a7fc3ebd318885fc9e8215f6309e9ab22b4459a3369248998963148f12c52bfec1112250d8389ee65d3b987183d17938af4e2824d5400fb797f558e8e4169ce0c55dab1feff8123046255717584b13ffabb3701154bcac55b8b963bc257f55469bf3b8a026c2e2e1018e595ab2874b0bfe0c044c81284e73e99642b65cb8c2a28b4ce66d97f3d181dedb551474ac5ff0cd39231fd309b0949eb92c16b7c43a5af1b14e35d0ddccf921e00c78922d197d", 0xb4, 0xfc, 0x0, 0x1, r2}, &(0x7f0000000380)) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) 11:10:08 executing program 7: socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0x0) [ 189.498437] FAULT_INJECTION: forcing a failure. [ 189.498437] name failslab, interval 1, probability 0, space 0, times 0 [ 189.509742] CPU: 0 PID: 11645 Comm: syz-executor0 Not tainted 4.18.0-rc4-next-20180711+ #4 [ 189.518142] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 189.527493] Call Trace: [ 189.530079] dump_stack+0x1c9/0x2b4 [ 189.533695] ? dump_stack_print_info.cold.2+0x52/0x52 [ 189.538878] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 189.543882] ? atime_needs_update+0x507/0x710 [ 189.548365] should_fail.cold.4+0xa/0x11 [ 189.552410] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 189.557491] ? touch_atime+0x103/0x320 [ 189.561365] ? __kernel_text_address+0xd/0x40 [ 189.565854] ? lock_release+0xa30/0xa30 [ 189.569813] ? __save_stack_trace+0x8d/0xf0 [ 189.574123] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 189.579643] ? shmem_file_read_iter+0x88a/0x1090 [ 189.584384] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 189.589388] ? ktime_get_coarse_real_ts64+0x243/0x3a0 [ 189.594560] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 189.600086] ? lock_acquire+0x1e4/0x540 [ 189.604043] ? fs_reclaim_acquire+0x20/0x20 [ 189.608359] ? lock_downgrade+0x8f0/0x8f0 [ 189.612494] ? timespec64_trunc+0x180/0x180 [ 189.616801] ? check_same_owner+0x340/0x340 [ 189.621107] ? rcu_note_context_switch+0x730/0x730 [ 189.626034] __should_failslab+0x124/0x180 [ 189.630255] should_failslab+0x9/0x14 [ 189.634036] __kmalloc+0x2c8/0x760 [ 189.637564] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 189.643087] ? touch_atime+0x103/0x320 [ 189.646956] ? iter_file_splice_write+0x25d/0x1010 [ 189.651870] iter_file_splice_write+0x25d/0x1010 [ 189.656610] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 189.661610] ? generic_file_splice_read+0x653/0x9a0 [ 189.666609] ? page_cache_pipe_buf_steal+0x610/0x610 [ 189.671703] ? rw_verify_area+0x118/0x360 [ 189.675850] ? page_cache_pipe_buf_steal+0x610/0x610 [ 189.680937] direct_splice_actor+0x128/0x190 [ 189.685331] splice_direct_to_actor+0x318/0x8f0 [ 189.689984] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 189.695507] ? pipe_to_sendpage+0x400/0x400 [ 189.699813] ? do_splice_to+0x190/0x190 [ 189.703768] ? security_file_permission+0x1c2/0x230 [ 189.708764] ? rw_verify_area+0x118/0x360 [ 189.712897] do_splice_direct+0x2d4/0x420 [ 189.717034] ? splice_direct_to_actor+0x8f0/0x8f0 [ 189.721862] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 189.727389] ? __sb_start_write+0x17f/0x300 [ 189.731697] do_sendfile+0x62a/0xe20 [ 189.735409] ? do_compat_pwritev64+0x1c0/0x1c0 [ 189.739982] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 189.745500] ? _copy_from_user+0xdf/0x150 [ 189.749633] __x64_sys_sendfile64+0x15d/0x250 [ 189.754111] ? __ia32_sys_sendfile+0x2a0/0x2a0 [ 189.758678] do_syscall_64+0x1b9/0x820 [ 189.762549] ? syscall_slow_exit_work+0x500/0x500 [ 189.767377] ? syscall_return_slowpath+0x5e0/0x5e0 [ 189.772290] ? syscall_return_slowpath+0x31d/0x5e0 [ 189.777208] ? prepare_exit_to_usermode+0x291/0x3b0 [ 189.782214] ? perf_trace_sys_enter+0xb10/0xb10 [ 189.786870] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 189.791712] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 189.796890] RIP: 0033:0x455e29 [ 189.800057] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 189.819233] RSP: 002b:00007ffaa7d3bc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 189.826935] RAX: ffffffffffffffda RBX: 00007ffaa7d3c6d4 RCX: 0000000000455e29 [ 189.834197] RDX: 0000000020000000 RSI: 0000000000000013 RDI: 0000000000000013 [ 189.841449] RBP: 000000000072bf48 R08: 0000000000000000 R09: 0000000000000000 11:10:08 executing program 6: r0 = getpid() sched_setattr(r0, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x0, 0x3}, 0x0) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x0, 0x0) poll(&(0x7f00000001c0), 0x0, 0x80000000) ioctl$TCSETS(r1, 0x40045431, &(0x7f00003b9fdc)) ioctl$TIOCPKT(r1, 0x5420, &(0x7f0000000080)=0x61) read(r1, &(0x7f0000000040)=""/11, 0xffed) r2 = syz_open_pts(r1, 0x0) ioctl$TCXONC(r2, 0x5418, 0x0) 11:10:08 executing program 3: socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000380)={0x10}, 0x845ac54, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0xb0, 0x0, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0xffffffffffffff83}, 0x1}, 0x8052) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) 11:10:08 executing program 1: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1") write$binfmt_script(r0, &(0x7f00000001c0)={'#! ', './file0', [{0x20, 'ip_vti0\x00'}, {0x20, ')'}, {0x20, 'nodevwlan0'}, {0x20}, {0x20, 'posix_acl_accesscgroupcvmnet1:)%nodev$('}, {0x20, '&'}], 0xa, "94fe3d6e84fce464f8994b420dfb8d813bd02d1775d8175435663eedca57f21af1f4fb8d38e2320e5481c9b1ae9a56440e568b0537f35d2c27fa534f8ea262ddec6b452e8cf55ae916fc6b7ddac150afc47cf20645a1820913a4bc7dd99d0d33300d73fdab6e9556c6599bd821efcc1832b7b628fb86a477f362f021065c2b6c0baef49671f4b90a7b8eedeaf3ee3bcbc80c40b53ddfa2de387de3ce363131c80de3ff0c"}, 0xf0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)) 11:10:08 executing program 4: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0x0, 0x7, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x8050) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x5421, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) [ 189.848704] R10: 0000000000100000 R11: 0000000000000246 R12: 0000000000000014 [ 189.855955] R13: 00000000004c1113 R14: 00000000004d1540 R15: 0000000000000002 11:10:08 executing program 7: socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0x0) [ 189.996800] FAULT_INJECTION: forcing a failure. [ 189.996800] name failslab, interval 1, probability 0, space 0, times 0 [ 190.008171] CPU: 0 PID: 11641 Comm: syz-executor5 Not tainted 4.18.0-rc4-next-20180711+ #4 [ 190.016576] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 190.025927] Call Trace: [ 190.028509] dump_stack+0x1c9/0x2b4 [ 190.032133] ? dump_stack_print_info.cold.2+0x52/0x52 [ 190.037328] should_fail.cold.4+0xa/0x11 [ 190.041397] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 190.046507] ? is_bpf_text_address+0xae/0x170 [ 190.050999] ? lock_downgrade+0x8f0/0x8f0 [ 190.055154] ? kasan_check_read+0x11/0x20 [ 190.059300] ? rcu_is_watching+0x8c/0x150 [ 190.063459] ? rcu_cleanup_dead_rnp+0x200/0x200 [ 190.068133] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 190.073164] ? bpf_prog_kallsyms_find+0xde/0x4c0 [ 190.077912] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 190.083455] ? add_transaction_credits+0x3f9/0xe90 [ 190.088386] ? check_same_owner+0x340/0x340 [ 190.092694] ? lock_downgrade+0x8f0/0x8f0 [ 190.096824] ? rcu_note_context_switch+0x730/0x730 [ 190.101741] __should_failslab+0x124/0x180 [ 190.105961] should_failslab+0x9/0x14 [ 190.109744] __kmalloc+0x2c8/0x760 [ 190.113272] ? ext4_find_extent+0x775/0xa10 [ 190.117579] ext4_find_extent+0x775/0xa10 [ 190.121711] ext4_ext_map_blocks+0x293/0x62e0 [ 190.126201] ? lock_release+0xa30/0xa30 [ 190.130180] ? save_stack+0xa9/0xd0 [ 190.133801] ? ext4_find_delalloc_cluster+0xc0/0xc0 [ 190.138810] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 190.144335] ? start_this_handle+0x6b9/0x1260 [ 190.148815] ? lock_acquire+0x1e4/0x540 [ 190.152774] ? ext4_es_lookup_extent+0x42c/0xde0 [ 190.157516] ? lock_downgrade+0x8f0/0x8f0 [ 190.161647] ? lock_release+0xa30/0xa30 [ 190.165605] ? quarantine_put+0x10d/0x1b0 [ 190.169746] ? lock_acquire+0x1e4/0x540 [ 190.173700] ? ext4_map_blocks+0x88b/0x1b60 [ 190.178007] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 190.183541] ? lock_release+0xa30/0xa30 [ 190.187500] ? check_same_owner+0x340/0x340 [ 190.191813] ? ext4_es_cache_extent+0x6f0/0x6f0 [ 190.196470] ? rcu_note_context_switch+0x730/0x730 [ 190.201383] ? down_write+0x8f/0x130 [ 190.205086] ? ext4_map_blocks+0x88b/0x1b60 [ 190.209403] ? down_read+0x1d0/0x1d0 [ 190.213104] ext4_map_blocks+0x8f3/0x1b60 [ 190.217238] ? ext4_issue_zeroout+0x190/0x190 [ 190.221716] ? current_time+0x131/0x1b0 [ 190.225669] ? timespec64_trunc+0x180/0x180 [ 190.229979] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 190.235504] ext4_alloc_file_blocks+0x319/0xaf0 [ 190.240165] ? lock_release+0xa30/0xa30 [ 190.244127] ? ext4_extent_block_csum_set+0x4a0/0x4a0 [ 190.249298] ? down_write+0x8f/0x130 [ 190.252999] ? ext4_fallocate+0x2fb/0x2320 [ 190.257234] ? down_read+0x1d0/0x1d0 [ 190.260941] ? ext4_fallocate+0x146d/0x2320 [ 190.265246] ? ext4_fallocate+0x1497/0x2320 [ 190.269560] ext4_fallocate+0x9f0/0x2320 [ 190.273608] ? __fget+0x4d5/0x740 [ 190.277049] ? ext4_insert_range+0x13d0/0x13d0 [ 190.281612] ? kasan_check_write+0x14/0x20 [ 190.285837] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 190.290758] ? fsnotify+0xbac/0x14e0 [ 190.294470] ? lock_acquire+0x1e4/0x540 [ 190.298446] ? vfs_fallocate+0x72a/0x940 [ 190.302502] ? lock_release+0xa30/0xa30 [ 190.306462] ? check_same_owner+0x340/0x340 [ 190.310763] ? __fget_light+0x2f7/0x440 [ 190.314721] ? rcu_note_context_switch+0x730/0x730 [ 190.319646] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 190.325171] ? __sb_start_write+0x17f/0x300 [ 190.329487] ? ext4_insert_range+0x13d0/0x13d0 [ 190.334067] vfs_fallocate+0x4b4/0x940 [ 190.337946] ksys_fallocate+0x56/0x90 [ 190.341736] __x64_sys_fallocate+0x97/0xf0 [ 190.345959] do_syscall_64+0x1b9/0x820 [ 190.349838] ? syscall_slow_exit_work+0x500/0x500 [ 190.354665] ? syscall_return_slowpath+0x5e0/0x5e0 [ 190.359579] ? syscall_return_slowpath+0x31d/0x5e0 [ 190.364492] ? prepare_exit_to_usermode+0x291/0x3b0 [ 190.369503] ? perf_trace_sys_enter+0xb10/0xb10 [ 190.374158] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 190.378988] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 190.384162] RIP: 0033:0x455e29 [ 190.387327] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 190.406496] RSP: 002b:00007fde778afc68 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 190.414891] RAX: ffffffffffffffda RBX: 00007fde778b06d4 RCX: 0000000000455e29 [ 190.422140] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000015 [ 190.429476] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 190.436726] R10: 0000000010000101 R11: 0000000000000246 R12: 0000000000000016 11:10:09 executing program 0 (fault-call:7 fault-nth:3): sched_setaffinity(0x0, 0x8, &(0x7f0000000080)=0x1) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) r0 = memfd_create(&(0x7f0000000100)='dev ', 0x0) write(r0, &(0x7f0000000040)="16", 0x1) sendfile(r0, r0, &(0x7f0000001000), 0xffff) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) sendfile(r0, r0, &(0x7f0000000000), 0x100000) tkill(r1, 0x15) 11:10:09 executing program 4: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0x0, 0x7, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x8050) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0xc0045877, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) 11:10:09 executing program 2: r0 = socket(0x0, 0x0, 0x0) r1 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) getsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0x10, &(0x7f0000000400)={{{@in=@loopback, @in=@rand_addr, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@local}, 0x0, @in6=@mcast2}}, &(0x7f0000000300)=0xe8) ioctl$TIOCGPGRP(0xffffffffffffff9c, 0x540f, &(0x7f0000000380)=0x0) lstat(&(0x7f0000000500)='./file0\x00', &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, 0x0}) r5 = geteuid() ioctl$TIOCGPGRP(0xffffffffffffff9c, 0x540f, &(0x7f00000005c0)=0x0) r7 = geteuid() ioctl$sock_SIOCGPGRP(r0, 0x8904, &(0x7f0000000600)=0x0) getsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0x10, &(0x7f0000000640)={{{@in=@remote, @in=@multicast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@local}, 0x0, @in6=@mcast2}}, &(0x7f0000000740)=0xe8) r11 = gettid() fcntl$getownex(r1, 0x10, &(0x7f0000000780)={0x0, 0x0}) sendmsg$nl_route(r0, &(0x7f00000007c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0xfffffffffffffffd}, 0xdc, &(0x7f00000000c0)={&(0x7f0000001980)=@bridge_getneigh={0x96cc, 0x1e, 0x100, 0x70bd2c, 0x25dfdbfe, {0x7, 0x0, 0x0, r2, 0x80, 0x8}, [@IFLA_NUM_TX_QUEUES={0x8, 0x1f, 0x808}, @IFLA_MASTER={0x8, 0xa, 0x1}, @IFLA_NET_NS_FD={0x8, 0x1c, r0}, @IFLA_TXQLEN={0x8, 0xd, 0x62b}, @IFLA_IF_NETNSID={0x8, 0x2e, 0x5}, @IFLA_NET_NS_FD={0x8, 0x1c, r0}, @IFLA_EXT_MASK={0x8, 0x1d, 0x10000}, @IFLA_VF_PORTS={0x9674, 0x18, [{0xc0, 0x1, [@typed={0xc, 0x7c, @u64=0x1}, @typed={0xc, 0x2e, @u64=0xbac5}, @generic="d6bbaa2055eb7fc3570524acdc63f2bc35ecd53b8f22167953f2171266f2badb883432ff9e84a3e6b5fa756caee08054affc72cffbcb4de6f65a94c962401894edb6e7416b8d6e75f9042b1cbded16f7876f0b7f57e8db6ee3a6345c6f5b02dd134348d5958fa0eec561b0097c157e153d7150501cc7b55f10f48e2c30ead9aabd72a3804e9ed976d299398163235e6615cf07064971ea50fdc26f9c84a2803b9a86"]}, {0x3890, 0x1, [@nested={0x144, 0x69, [@typed={0x4, 0x19}, @generic="9b6f04b3f522f4cfd2cffd6f383df1d85409b639b48b0a4f41567a8c468b3ec3b1f97752934f12d7114d925e82662753efc8f47975ae985e99cab3925f69248337502fc3735c", @typed={0x8, 0x2d, @pid=r3}, @typed={0x4, 0x36}, @generic="34aee65de0fa4f173a5053abd7768b54c0e38027c25ae4f66d916bc496c496f190c1cf7a1bbb45f926a1ba20799964a7ec619bb27ce12b214ebce5807a12954ccd0aff38f80f9d51c4a8c2b5ca0d89281f4154dae111c83d394b464b337137d8dffd9d368a5ea83092d36982445f860aad40dca46d72e2266737f2ae7adb23a06fc1b9557e41c81cf7e34fa9fc34ae541876a548d5189df82c71bf267c22240a714601c017ef5a65314bf470c9f5054b83f23a2075f68768eb6b5cc2f2bf848000c8596d9671c7c719af53bcbcae307c7987b066742f4b9e98636c8f389ce5eade7d5b80c15442"]}, @nested={0x1210, 0x67, [@generic="610710ab5e6115cf0dbc096edae3c0b0c8c2643df5832b7a4b27f4342f6e8c193fe0b096a225b9f2e65a9fd37992b4b46363de280c2779bd85b78f390cc0ba4f2c33ef76cf28241c6f20520cb7863140383145fb9849", @generic="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", @typed={0x8, 0x14, @u32=0x2}, @generic="4452da992190c25bb25fa25d60f8c3360de98276257592ee8d32e54348888afebe73506f9d8fe6c87178096b0be9ea76c20287ba76967bf898a520ab497b3f7f8c69ebc52fd757438b687d5bc2ea2c7d37b8d34215fff3c29cca045b0c026321657c3b1c06ef8a413217ea5e499fd0042cdb6ad4bafc292f9670a3787a3e1190fcb582e2c0c60c1b3662c0e26530b0f2fbf178852e4f6788e5f7edf71bdfabed8d6023bca8c0733a2efae6e8a577d25491ab7fc41a92babc5d41d5c0a3101198c2f028acb08a17ec8f1cd0779a0f0637a706e91c53c42af8ad31430d96dda0436866476804c0df818bc7b2af786e001d8d3752fb81", @generic="43309755db0d7c1bdda8d81237be91876c8e21b235f3b0da4cd1336c333886a4394cf7fd32d27b64073b3e8414dcf27f0870130dc2fd69e96daf5223b3206608b71e4f5cd8dca03a990d3407f60fb58da025f2d9331c8156030519d3b245cab4950a4d6efc08ca7a624f7a9e75a6c20cc0eeeb30897059861380cad2605e707c0b910754e06aac4bbeb9f2aaab722a90e5d02dbd01085506f514f610a20f2dcee47649056084924cd420e6f11b28401b7d8d7854f51fd0"]}, @generic="e9ce1101bd3df8cdc8ef5141b7bd1ce48da2a2ee2dcb52da7b21d67ef7b06a45199836fe4f5bf7b026c1d136d13641fb812c18c28e0fe2393249fa28e464cf9606d13d3a2cfa7da4db46c29f6a1b2a582511b6be90ce1f50f2288431e32f922d1c515f5bc2dca803", @nested={0xc, 0x8a, [@typed={0x8, 0x1f, @fd=r1}]}, @generic="ee009a4f9585d0d118800fdef8ad9d56523bb5812661ff6dcbb3eb48578cc83aea5d5b361c85dca70628c5ba620f11c6a8dd9e3a6375a17c143768ae67bf3fd764e5c69f1307954f3ea53234b9146e17fa63ef67624626e1f515fc133dcbe16f4d45746841266bc336067c77394087e26fe0d926e7f953b93661d10cef8c01c904a762fbf10feadde582e88456594136221384f0be9b", @nested={0x1358, 0x2c, [@generic="c43bf552f560e80ef365ec28da5f431a86beb7928cf28129cc27ba81af", @typed={0x8, 0x6f, @u32=0x800}, @generic="745bf5638c81bd95f4fbc6a91c3fa3717bee0ff411963895caa520bbd9cddc774752f8797baa563b55bf0195f6f02e31fb397e64a579df3abb0dfd35689f0f74065b99cb30874df8cb2a8ea53736c8f319429d6208c656d4a8a5e3c37092f4ae0c483528dbfbad12e95e97dc49d273e919dac80c359a80e3244613a269da7c05879ec052b3f53123fedcc74c87a387c94ede004472d5efde057a7c824d6b77f6b30be828e0af93bb978ae789b48c6cb2", @typed={0x8, 0x0, @u32=0x400}, @generic="d1b272f5b0df54b6ede6e54e2e174e815d370c7d3c6d049d8b3264bac95c039569b353fdb6ee04075cfdcae98d11fefc08bcf31084cdfded0eab9cd7bb9bc8017f24276df94ceedaaec164b04fee6c28bd53ddc3745210e0534cbe2dd13ccdc88b16e7142f4534eb3a5310cb2bd23f031f3b4ce1287197bb82c10fb3bc40de73b1aea0a1c39e8aa30307a5d93c6f83ff7511f327b713f582b3b6eef559c23893908a8df839043ad3ff14d0eeb78ab54c456f1019c50e9637344550d5ff363a73ab0ece1225791247aef1ff5f", @generic="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", @typed={0x8, 0xc, @uid=r4}, @typed={0x6c, 0x32, @binary="aed9a835cc645f5900d4cca121e736cfcb32f4c5f82f2ee7caf3f038c136e7377a504f5f7cba2a834aabd3df1988572cab24a7c86cfcce2ae552b4e26872a81f68d900647222567e976c3cd8d04f1f3c1c1bea8866390f5743564cce69cd046b143035783fca"}, @generic="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", @generic="149ef41a87cd6bff5210df1d0ec06acb1d869724b4a2a95d0158a518251baf2ac71fe19b02da67ec1c90476ac472b29a586cdb1084"]}, @generic="f8374f078a618628c1d3fa3861cadf1820e71d1d26cbf0e3c368cdb21ce89a63c60d6b786c48941aa658c72bef8b1af572b226f3c79f9b2d26", @nested={0x109c, 0x3c, [@generic="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", @generic="c6271db68b29ca249ef76504837c56b8a453b6c14e69d23c769f375f32a10f572e259777f4994ff43f832497099c971d8f1d2bcf53972b1ba08fe4fe28aef674ef8f8af0d6d65324c5", @typed={0x14, 0x7a, @ipv6=@remote={0xfe, 0x80, [], 0xbb}}, @typed={0x14, 0x59, @ipv6}, @typed={0x10, 0x44, @str='eth0bdev\x00'}, @typed={0x14, 0x6c, @ipv6=@local={0xfe, 0x80, [], 0xaa}}]}]}, {0x15d4, 0x1, [@generic="b421e6fffb72000e229f05e13d584d1e7abb91ecdf16a98058d802d6626fcd98a20e3d71ec7febd354d192adc1a640f8d55cad684ae3607966c584b20a9dbde142e6d95681c585717ad44e50fbef86f3c4d2523ced3cca89bb05a7e8346e29de68d9107546df3c314525e8ac606fdb1a7fe34687a00d794370ccfd4a0fd6288cd58358ca6e972ce66c4cc6a4b1c745c6d449a175a4368b0cd9e3793304500ce8", @nested={0x3e8, 0x25, [@generic="d62853cda6ae5eec6fdc646a9705a8abc55de790039f79bfa0f244661dd6cfdbe6a02615813dbcae7aad02221a52f20be047c04c0ca69c07d911197bb292c7053fc162c5a808f7974372095b5603205ac8c34ca765b0e316dadc92a2308b7fcffb00c43e647c96655a34f0299296c4004551090b28dafe1e334d7b00546574befdaad74fbc2d5798bb42d1c11c5982cb8f418b07f5f2e4b36c825a1d58e11662cf7a441e657e1698c7abfc2ea3061072dd32b134fd96", @typed={0x4, 0x7d}, @generic="f7c3f0fc6a05c849504c43b9f41c0cb10e6d3ad44ba6a6f11b52ebc7733cbfc53058775d574afa78d3977679659db74a355d63698fa492b92972337306f6a4ab83e89c42968cc56e50361913fe3bd3a1479a3eab40179aa71738974ef7a2b0984629af91828f0b43f1458a20eaed3d9ff448d844d1a11a7f57768837ff659fc368ea71ab4e901aeaf2faa74f1890ea3f7feb31936748de7a9a2af760e1dbc5908036ae05f83331158aa77ef274b4cdef6d6c3bae59b6caaaa029121cd0faa623224cd74f713f7bfa14dc4e4226f075fbc51a0acd6b2c237766ec0540", @generic="40c022044a9ddab59adafbfc96dbe4d3866516943aab0b50420cf1b0367fd0aeb928390bd771dc1cdfb546efe63fae06521968af6fe83e599adbfe0ee9f9edf2695e77b71e34c50c6c75ce5d8984557ea59e87d93ce3c8c5cec72393660059628a9d714aa034195f986011a6a19de45e7dbbf92e7c7fc7d1ea57fd9688ee19bbb7e7cf3a4b25838867a461476d76847733f0109747bd68fb580a96f75165", @typed={0x90, 0x6, @binary="7bd943e891f845935015fcfdafd4a1c923fa1cbe3f482beec895fdfe4d86265f87def1e47a3f502029f26c160a01f07047a508f5f18a9ee8193ed17308bdb68170d268dda1432bfb5ef0cb24d24300549eb007cef86d93088d1328c22f43d22fb052e86b9882579aff97edcd66346ad6fbc0d5406169ebbf4b84643da214425243b942a7aaadd75c8787"}, @typed={0x8, 0x6f, @uid=r5}, @generic="dc656b3f9af0efe0d61dcbf9123b8da723ce4548a1a8ead4953e6632d66b86cfd641a455449bfdf0afb65e39a6643bccd024d783bc06e1c05640abf69981481122379ab68ba5facaca2422a486f1cb75a3ba9029bbaa354aa88c676dee92b7e1cfef81105def1dfbf7e3a4d37bb36297a46f2cfe81cfe79315e0e2d6e7a1c16cff0bbbdc2236f06087e26a9a08ad98a565bfbdae7f80a1", @generic="ffb1ab81785afc477a9131924594e5d2762cebe0ebf25f333fb8703807a10a2d9ca7ac80e60ec43ea7a3b641f10e7859c49cf45c073dca6ec990912daefb19b805a0f8cb1ee2f0dbe8c96f74a22fcfd5276ea43b2fe8423d546e14b4e9cbcdfaaeabf8c653bf576d", @generic="b7acf7a178f6a216ad537cfec86aac46828f30a0f9211697"]}, @nested={0x1148, 0x67, [@generic="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", @generic="9e6453b593f5f501e8751b4e4a6a12149bca3fe58a3b5243898e147a469a826033bd1f58fd00cb1939d37e42507a2d83ca4026c187cf814c31fa6964e556597a8ad39b122db45bf4c4acdc124f8db6570596b4929863cd257793ec406d42399faa1e0c675e22bc25623ee003e27d78a1578347fbba5aae4ad56787f6bff6f1795a6b7c33ddd37629b445fedacafc", @generic="da2faf3259f2de06a05c1baaf9634f44fe05b85e865fe0887945c41761f7d4ba631af010a5c67dbf8c20c1cb21d35c2f95295a7bd76131b3f930c07a4c97498ce855d4e903933c4bb503417d74028df4bcdd707ee265f0eabbdb3d850ea94b52f3d1edabc2a14bdafaa33e560da5879a19ba4fbe61db23d4347dc6f3cb46b9ea24876f55434721e90d10dda7c3936ee1c813a30103ffba4d42ad3b0572bb0956e56910680adde3c5b3c51a68c6f2", @typed={0x8, 0x56, @ipv4=@multicast2=0xe0000002}]}]}, {0xe0, 0x1, [@nested={0xbc, 0x2b, [@typed={0x8, 0x8, @pid=r6}, @typed={0x8, 0x6d, @uid=r7}, @typed={0x8, 0x61, @fd=r1}, @generic="3e180d9321f3d8152fb25fc84b8c9774662da0983a91397adc85f1dd6a2d942b19bed6170cc578c191d0bb5f2115e1253256c96dc0ed933b3f1a90fb9309192820758fd32242f00dc0a57965b95afa1c44910028d6d0439af6d55261f6c726fa1e0f7db16384aae33ef50933c31a321d5717799ecac7b250632dd2328d485bdd3811a0912c1f8c7aa232c4abf5ca68716c5f5b49f9fc933726fefb0243"]}, @typed={0x8, 0x3e, @pid=r8}, @typed={0x18, 0x58, @str='/dev/loop-control\x00'}]}, {0x1e8, 0x1, [@typed={0xc4, 0x43, @binary="0f5224532893bc82ce90080e129bbf1359817eb4baa5d7d77b23592a88186ac9698a26b70e293e31da09adc6bc16e394da070353f062ea3484aa2c3495e2fad20c063c1336134d475f3cdd65da9463a33f09109917451fa50722470240ce4d9586fe26b897416a218599c1cd506e7adaeaf0547d1129a25ab48b443ebd27907d12f5791f1e72780cab70ab67704a2ed18dc675479b385babd45488c1c5ddfb4df9f7dff4af1d5d08fdd4d44dbfb00b5663b0849b10b32d2769771c5dcfd7"}, @generic="3bc9a9f1e994841c15405302b137f29d4c07c3f48fcdc927970795bad7215a2e463156be754fdbfcbf54067eddf95ae566a3645dc356407e6821a4b1abb0e22968ccd4bf06d14e6f0280e536f0f61509e94cc8917ea0610a68a9c25ed0fc9a362eb5fb7aad701d916648e19add5bb2ea52983695b5edd19fbcd2c16abe19e34e274ab08ff5d5a53ddb8f9645feecd8b6d2b9022d9ed9407b97789d31c6eed8ba325313417033a4", @nested={0x78, 0x12, [@typed={0x8, 0x58, @uid=r10}, @generic="e6a7e93cf3384eeba9e989b9fb913e06e7bd78d510e6c5f31f3a822959ff6f35c8d57cd0d11a4af1331692ab65cc768417f4803ffb32c80e4d9ccde5cb90c4b865e7555aa485f2adad3d8ad02724f327005df18029ade9c7e66c2907be", @typed={0xc, 0x13, @str='ppp1#\x00'}]}]}, {0x290c, 0x1, [@nested={0x90, 0x3d, [@generic="62328d959e074d4e2c2ba81321776310838fac1c1073874909d376c7050c57cd90d15c2cb1febe60a38942113cd6618677a04b6edf18d3a5613766fefe8fe6f798f347a9cb73341a85335224d4cab9bcfb2adb25e295e921a8d083a68b39f0da485a38e70db91848aec8f3097de4e2dd9f7a", @typed={0x4, 0x16}, @typed={0x14, 0x43, @ipv6=@mcast1={0xff, 0x1, [], 0x1}}]}, @nested={0x54, 0x5b, [@generic="4180ae27864e634e5f357e10f7568f1a2f8bcc15673dc2f7a795f534ef8e14123c3bd08bf5e4e319e0a661746c7191699d8c7d9991da8b0c5b0ed7aedf0774cd1c919e1e59a5fa1a55f681ed76a58cb9"]}, @generic="1c6f2deee5badea15cd319cca014bc3a4aaa688e82c338c554c2bf6d60c548480079344f7267a61a9efc3687879bd26b426cfb16d2af56aecf966f119f405071a0da0c82dd2db1fcd602b3eb264d9a5d63dd48901acfbc6bde44afcba26f1324c9580ab0aa40c82000c01b69d144828987b3385bc5c0cfc5e576a3b761364b2b107a46045b368a1076103362ba2a36d91511d4a35b4094c7f213a46f811d9d879fb4743ceb7c3c75074a010d4ca75c34ad538c445bf70b4dfa1d25e8bd", @nested={0x330, 0x61, [@generic="b0630b97004dd425ab0b33b4d62d97dc17f1f41bca1a1540dcfc4259751ed8f48bdadc3e54b6b7564761bb135027b8f57e971cfaac1c073a87a713a18c595cdd3e664bb6737e7878f89e9887ee54f0a777d9a4ebe6eb06f050dc55cd5af84750b9d502ba9f29d396e4ce5effe0371f0c02f457da0d7a4880a9cd3c233bc5d7560cc01798be890837ddc9e2ca138592a621f2866aa063c3707832af01727c73fa8f3af048ed80f871fa49f34c2c1da3fbae965f22b72071ad319ad4afbed5445f710287163fab3f1ea1d880535c29c65c6da3c132211bcdbf1c264eab04e2b7341260f2bd43277ed4ed9eb30323e215", @generic="157441662c8f86d22856fd17f335282000bbd1ded2527fec2b5d70048592279871c4b049fc9d18b4891797b4cc1149f1bd24e6b2fdf8f3ae29a5b29cfed9450830aef54a887a4c45bec646e74f1c1839b66c3c2dca2fc1d60a6100c1d76dd594f666e6fe4b8edf36618f2f8349249606edb62721bb92e534bf6fad0159bbbc2b676b582ca66d28be596b5bef0ecdeb096824f79e1867d94fc857783146c5cdb14dd01d174725a60bb8c785f227ee7a3abe", @generic="9d0d1be0c031c4ab41c7bd4ea8510d35c9f8ea2f9866b3d33741f8e41ee7be8a8cb41a2db1a65f148414f5e1132757901ce0f9ad5a5e810e259c5f208ee880bb78309c65b7687ac14e9679c22c942c574b472df74e5e44eb0315f0d81b", @typed={0xe4, 0x29, @binary="d9acccd761f11d0ae2cdc6f08793fb15fba25bfa2ceee72212aeed57e4582b7bbe24ed603e4184399dad67ea1422ee12062347167c55517f36cdd8891abe51354a3a3e217396bd2910d0e556349e38b188d1e02cf6b4ba24f69912ea38bcc65f60158b21b8d13d62988e278e358e86f5e4969869bb220f82eecfe3d1aa9313e48d6408031541ffd9a00eecf054b0d50e852c1867c04f968f40c33f93a61c75999fc71e26a512864deeea71ae1b290bfcfb9dbf09477ae1cbadc6492e799dd3df39354fbf2b62070a35815650ec6c366b90d50d79d2b160c7faa9dc786e"}, @typed={0x48, 0x61, @binary="2cf1634b662ae4eebcddd06a0a191525c8469021447b7be7e7b1ac50fbd2072b71214e176eecc35c2b4fdb34e3160c313cabba4d194db15a57829e648d1b47bca63f39fd"}]}, @generic="0f608e1f16aaa465c058273b616b0df6371ecfb739bc57e381e10608f52f8731b1875e6a3afaf3526810a8fdfc43c73923cbd82042a4dc3fb1583cab222a81ec89d7a952d3af086ace355646b7cd41d18c5f3bedc7475e06aa89ce338da91892e330fcc71a7440420c2f9b77194ef1168842e319227f4dbf9b246e7625cec229659930a5b5d54dc7ce183323aae05c1d83c7b926042b6174204ff46b20b48968aca0cb439e74b6ca7b6ee48449aec91db3fc384222de97e9f8856e0662a4fd600b022e824e0c0b", @generic="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", @nested={0x12c8, 0x71, [@generic="a2b1d2c67f7dcc856fea2f81473c87fb316055b241b5c3b2311067dbe58a4434558b93b4223a2d84d089b4e916bdbaef42eb1d4ece8070491ba86801331ef3fd6dbe13cbc9b1e8388c1fb0a92e19b0898b962cfaf9725be3416307506f4e108c345685e0f797eb87cad6864cfda0b57f7b1b7379e03cf677700141dd5120c398bf3c315503a04d939fa177a68223913c2ff4ba663af77db472da38996f20f140c8712bec2b7c8b0d06d85ad85255eec411e05e3b4398316f56e03e79e1f470fdfa352b31b7d6a146ba56659e0566b92703aff7", @typed={0x14, 0x61, @ipv6=@remote={0xfe, 0x80, [], 0xbb}}, @generic="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", @generic="69b008ca27db0bf5cc315dcc65904178890ef17b2e0df7a4e55e29a87b6dfba471f5662f91514bc67e55ce4444940748905f96f0cf784bfca31e948f935368318469c3ad", @generic="424911be84460245c7d29793e49d863762fa07b7594b63d45bef6c4db5294dbbe782540a903c21c94a6810df3d033534d82e22d13ae796eb40880d7c7b4f3d5a2f7500e80e811f3220f7bd4d58d77d7d2689070d72e7128d79021d7e1ad65ace238276b7975337965746a0a35ea916d5bc1fce5c154348100b0f7eee2c1c6a21dac2ad48923528f14646117b20999aa6b668738b3738335c79fb5f7b65ce7992e590372b4f3a06f77570e20af26b3361bf21d27febc5059865dde31ee11d2554b17ccb2439297f4779a834b275c316b14a534c426a7d31e592747cce7d02b28ac95beb23438ba346917253e872947581c33aabb6", @typed={0x80, 0x47, @binary="0d6dd7ee7d3e931fa0e3057b88acea43c25ca3d83f56d284e1d207b9bddf1bb21208f406290f6fc1b218c1c296ee171eefba9397815c67c216355e60e1199d495ab5e9d60aa4642d3236ba49d530d19c2359242890a23b8ac8da142b30b77f13a9477dd36be450f18e4f00d9972ce1139616ddf8a300b3502178f637"}, @typed={0x18, 0x20, @str='/dev/loop-control\x00'}, @typed={0xc, 0x3e, @u64=0xb338}]}, @generic="038b0af47b53c24442ae1fb2c43a3d0abd3f0cc6dc0abf6e8111dc68a7f0a4c57f5e1c003582c68430b6960aeee1f410be2173f052023d2f35796e4e3cf0bb48c9bd498141e6aefe69968d182505bd52f6c7656009a60eb555d5afb51ae05497502993348cbeadf95cbd638c04421f85d92dad4f4d71db05763ac1a843286a0ae0867e791ba18fc1341ab7e0e0755d0114b061c47adbbb846202ce816428e1a9130d5c6d6dec"]}, {0x7c, 0x1, [@typed={0x8, 0x92, @u32=0x7fff}, @generic="3b29cdf1e0eaaa3e187ae25ba8a0276d5774d31eac779b6293b287cb0393e0a8c6d3bd3e44784d947faf361e2753ffc1ee69c32f5e7b2b6ba2015b5666e9", @nested={0xc, 0x45, [@typed={0x8, 0x68, @ipv4=@dev={0xac, 0x14, 0x14, 0x16}}]}, @typed={0x8, 0xe, @ipv4}, @nested={0x1c, 0x6d, [@generic="6823084b4f4edb551a3cce91980acc41c1a689dd0d117bdf"]}]}, {0x18d0, 0x1, [@nested={0x1e8, 0x8a, [@typed={0xfc, 0x77, @binary="cc1de732c6108877a06a8ccb88adf59835f548bb4d4a1f9724d2c0cbb2e8b4060baa72fef422416f22243cab2ddf291b71aa0485bdb36addf59e2e2192d1d2c55e0c0df319ac2b5caef35fb39f79bdb09d1e4628a99340d44d9a761f95d1971823bcf53e8e09091ef7ea5ab638c45aca28b6d7c67bd25bc9b1f65b7356285c3d3ffe80df7e3fdc56a62565347a7e45c490bf0abcf0188886d500060e3cac9d9ef1b1bfd45b29b180f88dbf5d4508ec5b103f3cf43458f8a5f328fe1241f36d992cabdfffab4857cb4b9eef69da01c53c44059a163b2119b01e422eab906e762553719ab6a6cbb84581418618af8e9f68d08ba094b6"}, @generic="77b1d5b27bb299de8b856f1f64dcfa21c15e14e0ec65ee05b81160965178d4c3b4aa28cbd74f890057a4775a98b6f10f3cea521ee8b21e37cd8fda2995ff11226333e25e1f1e312c59a1e07df40cf05a983e67eb6a1413b8745c76a48031d2301a01ea2719008364be53741bd85eae2029e5eb9fb2c95d56c61c18b3a11b0d4b3e7dc387638811cca62e2d128724158433bbd7e2f2d044fdcc00329a965e2052b3a73a16963ff8217f15210c8a727cb1677e14136ba9198ad2efd85f9e49f10a87fd656b3b02c4cb45597c7b305d25e985ded23c2bbbd6c842ccd24d571f", @typed={0x8, 0x8c, @pid=r11}]}, @generic="58f49690c22b3fa5944ca6715ca4108fe7a4fd6cf2bbb0eaf6cfb91b935f28ad2093b4c2f783f1852096fa8e7ced674d84e5fa829692806276cc636830be73481718c80fb42e658c1ea16a4a8fc2bbbf3d5f8ac5a7392481afcfd85c1cea3b89ee2f75afc25955bbcdc2ccf9083da96ca86bed20d85e1c09e0d65c8f3cb409a9739ba6cc73d40f99b959070ec266f7f5d3f2eab09e8866d06801391b0dd5e28a306f7b28f1668da48376abb3ebc6f2010b2262dc69b3c495a20adaf34b47c2bbcf45135bd98f54f09640c53ecba0ca47ca4bde9daae403c23c46c82d6768", @generic="f4e2b39d2f95cded811d20f84e8b27d6e0e051296587f815c6c2ac508d3375c29bdef7b4d0425019504a93d65a6595b459fba5cd6ec8de96450c7bcc8555908875635ab1fba70cfb360bae4feb57cda04891c703eaf08bb1cc76fa39c444329922d4645c9858bca67c6679a452d723675a4674a023a48adf903c20f15b7a00407ee6a37536d98d513b6f6d120c9d1a00a005272b74f333475232ec5de438ca2e0780ce0d3e4d22c2f136f2e0b489cc5e1ec372a4c25e0ff15dd061a678580731bd44099850a69d9ef8db62b10de605ee6451d9470f98bafd245729a7f7b64c9a498a4d477dc77c0aff", @nested={0x2dc, 0x66, [@generic="d912b8aee9b5e116294eeb70af377d4f73425989595e7bcf8276f3a666b86a17254161741cae2fa81d63105a92b8c243f9a985c515f95d43afad862869d5f48ef3c964d02f72561d48d716fd336d0e11778853b1851e6b1a1677601886dbce96b4c0735154b387dead1141537f1bcef2bfc0b8cd", @generic="5159e0baab5b5b2661e921e9fc7d62a956b3302f18fdeb089fdfc839d7850198c501ea62a43dead95e2520cf5c0b5603cc3bbabdadb562fcab1df914c941e0aed9c532bcaf288917618da1c3ee265a67b054fda0e5272d78a00a4e7db15ba75f2362389566bc83ec42bdd1566d7655f84dec96d535631414339ccb657cca1d5f6651645fb8886a63ac6487a752668ebc337e268d8f7d9da30f8373cb11b6f777480d1f21dd5b5fd506b644aa5ac2756c51b20da763228fa9d0a4cac4d820d09af59a1e", @typed={0xa8, 0x95, @binary="066b7dcc3bc5af83e2e35fa4966e3df7e88fa162dbd117f31439c59979b385d4c27f6055fa3a78fe2c82aef46e75abd56ad4e82133d144337ab7d67f902bef5185cea255895310f7a43a3b3946113803bb48e58913a3b87768be5f7fe401ce1e1b9173d808989cd506311b0568b9a6ef24095b063e7c66e79ba8abe03f3c1a731ef8cbde848de6afb94a4740549ffeb9887864fb2b9cce9b45952e0ded7c98bb9e637814"}, @generic="221b4a2392dde46804ea0696763a8b3f8826d012b8aeb67b449e1c9267395678a1f9864a9889596f71bc4a85ab52ef41666d936429e2179ef0a11550df2264f726ad54e3a33625267938b7fc0bb5fbd7b9695ec8e830497891ace7b9b9bd0ab6a03d849a4b0f1d7ec2befa424dfc763989969b92495977846746d400509a58218b356dc31ef8f583084bb526c70d64519e408ef6cba39e1dc9397a2f7bdaf6143eddff7ceb78ed6e9ffe0bf70c2b7de103c0080a6aab9d2f81dbd14518f622b42f00bb6fe49d4f1be5957ba9f9b3d72e5095798370b8ef985301655cda210c6f25a85476297f038d7353d8a3273aaaefd0d0a247c5a2fdf6"]}, @nested={0x1240, 0x6e, [@generic="b40f85419aa50107b6ff26be1d42eba62ee8e0b0a3bfa8b34bd937365c813a9a54995d8f40765bccbbf050b70543bd7570f2f009c36f5d2facd9ca8f4cb5ea44bfd1423b0128367b0c620ea6b5f804c159f92e72120f0eec5f20c92e7484cfdb920690b0caf50b9f422320b71a", @typed={0x8, 0x37, @ipv4=@rand_addr=0x6}, @typed={0xc, 0x51, @str='ip_vti0\x00'}, @typed={0x14, 0x59, @ipv6=@ipv4={[], [0xff, 0xff], @broadcast=0xffffffff}}, @generic="194857b735f6680467169c3d93b7e8a9adeceafc6c1ccd298e1cf5bd92740a7cd733d1da01c3e720aca0d9e99517117d3421e90e16c869c555e8982324dd64f6d1a3332cd55bd3446ef2e564c50228e98790ab6640e9dd7ed406556e541341f62e2c7a4aa1930a0cdc8ed6db01b1facf41a4059eaba46bc3fd51b5dea45d2b19d9104f9bfbc54f5df10ee88fd0d4ad1aaef2c83f1ed2052c1bda90b3d0ad38413a5048d7ff71508afdca10f1aa913bd3585b49a766d4e1e3f8323b69fdda64a14bc86c5a30c2ff1b969e3d61335d19a68427eb5f51554496878a4882d44fe68873d8989cc2b0a1727d605a493e0e476ef7db", @generic="f350608c8f60", @typed={0x4, 0x4b}, @generic="bade7eee12fece432e709f5430ed976014cf409ea1626af7a09ca9a167759e3a7380506e4cc9d4a90b63975e7a6906185d50dbeb11cece790a9a4c362ce34dde1c2b6f938bbedf0885ca16e9c90f1290022eff7d57646186c0a51de8596a4cf4c30e531f390359a95b4e629b1577872b055cdd8340e837c6baceac60dba89aa1d0c339d8d4138ce77eec913fd3cdaafe80e2d13a09f4d0ff3765c6277c569ade1e262485dc6974fa38a7", @generic="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"]}]}, {0x22c, 0x1, [@generic="82aa18d625b0f9f487eaa8f74074ee06fd9f496bcc4870592d1e09079b16257bef101d3097bed4b6beef4f04d612568b0b0a7f78043fd0a8f59614e71acdd8ab63c31d06c89eb5912104d3807829f8c35d6e11c6a3b48745cdba20c8518a434d3cab61f5726f1402cda692800b9895dcc1d9e7e09f65f47a6f2d71cc4665d0822971971c13d00545377242a72493b8b6", @nested={0x130, 0x89, [@generic="50b03630583143e257440204e89e4b400e8705c7a39bef1f7fa4d7ad16209718faba4543f17f92d48403", @generic="7b3bada980d474e0fed61cd8f366cb80aed9d8b3d3813be8d8a75b1db1466aa17cc15541e50f474efc635b2c3fbd553f8b54c73dd94b1bd3ebb1b16d9ce9aaf8d2dcdf5517af13e2c7c9fd8943b7161c5311e4277b25456e3ef04670108d1f1e3142056f56e484f9af645dc00c855936478586d6e046249fb4e250bc6bfb91b2fb9a766a1962d00f7221d897214dc2b51db54f62884fe3cc2792d439821317ad", @typed={0x8, 0x15, @u32=0x401}, @typed={0x8, 0x91, @fd=r0}, @typed={0x4, 0x34}, @generic="d09ae71fc7f45da4fdc8d51c7bea6694d2f2f8320de932fa6aa314ba6e5a573c376e5cdd0a141e4d62d63966389d60b102726d1fde35be4c9b2265dfaf4ec4552b3ebd59a08a26d4421b50"]}, @nested={0x64, 0x7a, [@generic="0923645d32f8cfec2b84", @generic="f9de348bace825ce64cdc05321504580afe67e8f5510471c685ae44eeaba261dc35807d129de04daadd970d35bc5dc12732d3d4b477bb7d59c8d2c66957b33e7a753b69c5a0a4e46f597e6a52d", @typed={0x8, 0xc, @pid=r12}]}, @typed={0x4, 0x84}]}]}]}, 0x96cc}, 0x1}, 0x800) setsockopt$packet_add_memb(r0, 0x107, 0x1, &(0x7f00000001c0)={r9, 0x1, 0x6, @remote={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xbb}}, 0x10) r13 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r13, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00', r9}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) [ 190.443978] R13: 00000000004bbe4e R14: 00000000004c9368 R15: 0000000000000007 11:10:09 executing program 3: socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0xb0, 0x0, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x8050) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) fcntl$getown(r0, 0x9) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) 11:10:09 executing program 5: r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/sys/net/ipv4/vs/secure_tcp\x00', 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/syz0\x00', 0x1ff) ioctl$KDDISABIO(r0, 0x4b37) write$binfmt_script(0xffffffffffffffff, &(0x7f00000003c0)=ANY=[@ANYBLOB], 0x0) fallocate(r1, 0x1, 0x0, 0x10000101) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'vcan0\x00'}) ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000140)={@empty, 0x71}) ioctl$EVIOCGMASK(0xffffffffffffffff, 0x80104592, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)}) socket(0x10, 0x0, 0x0) ioctl$sock_ifreq(0xffffffffffffffff, 0x0, &(0x7f0000000000)={"73697430000080000000000000000002", @ifru_ivalue}) 11:10:09 executing program 7: socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0x0) 11:10:09 executing program 1: r0 = socket(0x0, 0x0, 0x0) r1 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1") ioctl$sock_inet_SIOCSIFFLAGS(r1, 0x8914, &(0x7f00000000c0)={'team_slave_1\x00', 0x800}) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) exit(0x3ff) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)) 11:10:09 executing program 4: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0x0, 0x7, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x8050) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x40049409, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) 11:10:09 executing program 4: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0x0, 0x7, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x8050) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x2, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) 11:10:09 executing program 2: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000400)=ANY=[@ANYBLOB="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"], 0x24}, 0x1}, 0x0) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) 11:10:09 executing program 7: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1") write$binfmt_script(r0, &(0x7f00000001c0)={'#! ', './file0', [{0x20, 'ip_vti0\x00'}, {0x20, ')'}, {0x20, 'nodevwlan0'}, {0x20}, {0x20, 'posix_acl_accesscgroupcvmnet1:)%nodev$('}, {0x20, '&'}], 0xa, "94fe3d6e84fce464f8994b420dfb8d813bd02d1775d8175435663eedca57f21af1f4fb8d38e2320e5481c9b1ae9a56440e568b0537f35d2c27fa534f8ea262ddec6b452e8cf55ae916fc6b7ddac150afc47cf20645a1820913a4bc7dd99d0d33300d73fdab6e9556c6599bd821efcc1832b7b628fb86a477f362f021065c2b6c0baef49671f4b90a7b8eedeaf3ee3bcbc80c40b53ddfa2de387de3ce363131c80de3ff0c"}, 0xf0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)) 11:10:09 executing program 6: r0 = getpid() sched_setattr(r0, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x0, 0x3}, 0x0) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x0, 0x0) poll(&(0x7f00000001c0), 0x0, 0x80000000) ioctl$TCSETS(r1, 0x40045431, &(0x7f00003b9fdc)) ioctl$TIOCPKT(r1, 0x5420, &(0x7f0000000080)=0x61) read(r1, &(0x7f0000000040)=""/11, 0xffed) r2 = syz_open_pts(r1, 0x0) ioctl$TCXONC(r2, 0xc0189436, 0x0) 11:10:09 executing program 3: socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000440)=ANY=[@ANYBLOB="240000001800000000000000ffdbdf250200cb0000f0371427e69e35403a55b764b103ff214568fa4b924dcd955ec1a76ad0f4759af7ab22e93f4cb1d04036f4106702a717035bed98c48b71dad6f47d245a26603434aae1add2240da0cc6b"], 0x24}, 0x1}, 0x8050) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) 11:10:09 executing program 4: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0x0, 0x7, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x8050) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x5460, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) 11:10:09 executing program 7: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1") write$binfmt_script(r0, &(0x7f00000001c0)={'#! ', './file0', [{0x20, 'ip_vti0\x00'}, {0x20, ')'}, {0x20, 'nodevwlan0'}, {0x20}, {0x20, 'posix_acl_accesscgroupcvmnet1:)%nodev$('}, {0x20, '&'}], 0xa, "94fe3d6e84fce464f8994b420dfb8d813bd02d1775d8175435663eedca57f21af1f4fb8d38e2320e5481c9b1ae9a56440e568b0537f35d2c27fa534f8ea262ddec6b452e8cf55ae916fc6b7ddac150afc47cf20645a1820913a4bc7dd99d0d33300d73fdab6e9556c6599bd821efcc1832b7b628fb86a477f362f021065c2b6c0baef49671f4b90a7b8eedeaf3ee3bcbc80c40b53ddfa2de387de3ce363131c80de3ff0c"}, 0xf0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)) 11:10:09 executing program 2: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0x0, 0x7, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x0) r1 = openat$full(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/full\x00', 0x40001, 0x0) ioctl$TUNSETNOCSUM(r1, 0x400454c8, 0x1) r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) [ 191.375512] FAULT_INJECTION: forcing a failure. [ 191.375512] name failslab, interval 1, probability 0, space 0, times 0 [ 191.386824] CPU: 1 PID: 11767 Comm: syz-executor0 Not tainted 4.18.0-rc4-next-20180711+ #4 [ 191.395220] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 191.404564] Call Trace: [ 191.407155] dump_stack+0x1c9/0x2b4 [ 191.410779] ? dump_stack_print_info.cold.2+0x52/0x52 [ 191.415971] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 191.420985] ? atime_needs_update+0x507/0x710 [ 191.425569] should_fail.cold.4+0xa/0x11 [ 191.429630] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 191.434726] ? touch_atime+0x103/0x320 [ 191.438620] ? lock_release+0xa30/0xa30 [ 191.442599] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 191.448136] ? shmem_file_read_iter+0x88a/0x1090 [ 191.452899] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 191.457920] ? ktime_get_coarse_real_ts64+0x243/0x3a0 [ 191.463123] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 191.468674] ? lock_acquire+0x1e4/0x540 [ 191.472654] ? fs_reclaim_acquire+0x20/0x20 [ 191.476977] ? lock_downgrade+0x8f0/0x8f0 [ 191.481131] ? timespec64_trunc+0x180/0x180 [ 191.485453] ? check_same_owner+0x340/0x340 [ 191.489778] ? debug_check_no_obj_freed+0x30b/0x595 [ 191.494791] ? rcu_note_context_switch+0x730/0x730 [ 191.499724] __should_failslab+0x124/0x180 [ 191.503961] should_failslab+0x9/0x14 [ 191.507759] __kmalloc+0x2c8/0x760 [ 191.511303] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 191.516840] ? touch_atime+0x103/0x320 [ 191.520727] ? iter_file_splice_write+0x25d/0x1010 [ 191.525663] iter_file_splice_write+0x25d/0x1010 [ 191.530423] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 191.535448] ? generic_file_splice_read+0x653/0x9a0 [ 191.540469] ? page_cache_pipe_buf_steal+0x610/0x610 [ 191.545580] ? rw_verify_area+0x118/0x360 [ 191.549727] ? page_cache_pipe_buf_steal+0x610/0x610 [ 191.554831] direct_splice_actor+0x128/0x190 [ 191.559242] splice_direct_to_actor+0x318/0x8f0 [ 191.563909] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 191.569445] ? pipe_to_sendpage+0x400/0x400 [ 191.573766] ? do_splice_to+0x190/0x190 [ 191.577743] ? security_file_permission+0x1c2/0x230 [ 191.582759] ? rw_verify_area+0x118/0x360 [ 191.586911] do_splice_direct+0x2d4/0x420 [ 191.591060] ? splice_direct_to_actor+0x8f0/0x8f0 [ 191.595905] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 191.601443] ? __sb_start_write+0x17f/0x300 [ 191.605765] do_sendfile+0x62a/0xe20 [ 191.609483] ? do_compat_pwritev64+0x1c0/0x1c0 [ 191.614068] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 191.619602] ? _copy_from_user+0xdf/0x150 [ 191.623754] __x64_sys_sendfile64+0x15d/0x250 [ 191.628249] ? __ia32_sys_sendfile+0x2a0/0x2a0 [ 191.632834] do_syscall_64+0x1b9/0x820 [ 191.636719] ? finish_task_switch+0x1d3/0x870 [ 191.641215] ? syscall_return_slowpath+0x5e0/0x5e0 [ 191.646141] ? syscall_return_slowpath+0x31d/0x5e0 [ 191.651072] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 191.656088] ? prepare_exit_to_usermode+0x291/0x3b0 [ 191.661104] ? perf_trace_sys_enter+0xb10/0xb10 [ 191.665771] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 191.670614] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 191.675799] RIP: 0033:0x455e29 [ 191.678980] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 191.698256] RSP: 002b:00007ffaa7d3bc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 191.705968] RAX: ffffffffffffffda RBX: 00007ffaa7d3c6d4 RCX: 0000000000455e29 [ 191.713233] RDX: 0000000020000000 RSI: 0000000000000013 RDI: 0000000000000013 11:10:10 executing program 0 (fault-call:7 fault-nth:4): sched_setaffinity(0x0, 0x8, &(0x7f0000000080)=0x1) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) r0 = memfd_create(&(0x7f0000000100)='dev ', 0x0) write(r0, &(0x7f0000000040)="16", 0x1) sendfile(r0, r0, &(0x7f0000001000), 0xffff) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) sendfile(r0, r0, &(0x7f0000000000), 0x100000) tkill(r1, 0x15) 11:10:10 executing program 7: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1") write$binfmt_script(r0, &(0x7f00000001c0)={'#! ', './file0', [{0x20, 'ip_vti0\x00'}, {0x20, ')'}, {0x20, 'nodevwlan0'}, {0x20}, {0x20, 'posix_acl_accesscgroupcvmnet1:)%nodev$('}, {0x20, '&'}], 0xa, "94fe3d6e84fce464f8994b420dfb8d813bd02d1775d8175435663eedca57f21af1f4fb8d38e2320e5481c9b1ae9a56440e568b0537f35d2c27fa534f8ea262ddec6b452e8cf55ae916fc6b7ddac150afc47cf20645a1820913a4bc7dd99d0d33300d73fdab6e9556c6599bd821efcc1832b7b628fb86a477f362f021065c2b6c0baef49671f4b90a7b8eedeaf3ee3bcbc80c40b53ddfa2de387de3ce363131c80de3ff0c"}, 0xf0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)) 11:10:10 executing program 4: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0x0, 0x7, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x8050) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x5451, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) 11:10:10 executing program 3: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x8000000000000, 0x100}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0xb0, 0x0, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x8050) r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f00000004c0)={'team0\x00'}) getsockopt$inet6_mreq(r1, 0x29, 0x15, &(0x7f00000005c0), &(0x7f0000000600)=0x14) getsockopt$inet_pktinfo(r1, 0x0, 0x8, &(0x7f0000000640)={0x0, @loopback, @rand_addr}, &(0x7f0000000680)=0xc) getsockname$packet(r1, &(0x7f00000008c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @broadcast}, &(0x7f0000000900)=0x14) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={"020000999346fd0a8da05000", r3}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) 11:10:10 executing program 2: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f00000000c0)=ANY=[@ANYBLOB="240000001800000000000000ffdbdf25020000070003ff050011000008000200ac141418bb34e486"], 0x24}, 0x1}, 0x0) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) 11:10:10 executing program 5: r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/sys/net/ipv4/vs/secure_tcp\x00', 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/syz0\x00', 0x1ff) ioctl$KDDISABIO(r0, 0x4b37) write$binfmt_script(0xffffffffffffffff, &(0x7f00000003c0)=ANY=[@ANYBLOB], 0x0) fallocate(r1, 0x10, 0x0, 0x10000101) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'vcan0\x00'}) ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000140)={@empty, 0x71}) ioctl$EVIOCGMASK(0xffffffffffffffff, 0x80104592, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)}) socket(0x10, 0x0, 0x0) ioctl$sock_ifreq(0xffffffffffffffff, 0x0, &(0x7f0000000000)={"73697430000080000000000000000002", @ifru_ivalue}) 11:10:10 executing program 1: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1") r2 = ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82) ioctl$LOOP_CTL_ADD(r1, 0x4c80, r2) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)) [ 191.720496] RBP: 000000000072bf48 R08: 0000000000000000 R09: 0000000000000000 [ 191.727764] R10: 0000000000100000 R11: 0000000000000246 R12: 0000000000000014 [ 191.735028] R13: 00000000004c1113 R14: 00000000004d1540 R15: 0000000000000003 11:10:10 executing program 4: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0x0, 0x7, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x8050) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0xc0045878, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) 11:10:10 executing program 7: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0x0, 0x7, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x8050) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c80, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) 11:10:10 executing program 2: r0 = shmget$private(0x0, 0x1000, 0x1080, &(0x7f0000ffe000/0x1000)=nil) shmctl$SHM_LOCK(r0, 0xb) r1 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0x0, 0x7, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x0) r2 = getpid() getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f00000000c0)={0x0, 0x0}, &(0x7f00000001c0)=0xc) getgroups(0x8, &(0x7f0000000300)=[0xee01, 0xee00, 0x0, 0xee01, 0x0, 0xee00, 0xffffffffffffffff, 0xffffffffffffffff]) setsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000380)={r2, r3, r4}, 0xc) r5 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r5, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) 11:10:10 executing program 3: socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)=ANY=[@ANYBLOB="248d99c72b95d1a7452b33200000001800b4ffc4c67747c000000000fff09903ff0500000000000000000000"], 0x24}, 0x1}, 0x8050) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) 11:10:10 executing program 1: r0 = socket(0x0, 0x0, 0x0) r1 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x18, 0xfa00, {0x1, &(0x7f0000000280)={0xffffffffffffffff}, 0x13f, 0x4}}, 0x20) write$RDMA_USER_CM_CMD_BIND(0xffffffffffffffff, &(0x7f0000000400)={0x14, 0x88, 0xfa00, {r3, 0x3c, 0x0, @ib={0x1b, 0x3, 0x8, {"9aedfa700a5ecf6c1c2367b7d6b05bd6"}, 0xc8d, 0x9, 0x7fff}}}, 0x90) fcntl$F_SET_FILE_RW_HINT(r1, 0x40e, &(0x7f00000001c0)=0x1) 11:10:10 executing program 6: r0 = getpid() sched_setattr(r0, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x0, 0x3}, 0x0) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x0, 0x0) poll(&(0x7f00000001c0), 0x0, 0x80000000) ioctl$TCSETS(r1, 0x40045431, &(0x7f00003b9fdc)) ioctl$TIOCPKT(r1, 0x5420, &(0x7f0000000080)=0x61) read(r1, &(0x7f0000000040)=""/11, 0xffed) r2 = syz_open_pts(r1, 0x0) ioctl$TCXONC(r2, 0x5410, 0x0) 11:10:10 executing program 4: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(r1, 0x80404525, &(0x7f0000000440)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0x0, 0x7, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x8050) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000140)={0xfffffffffffffffd}) r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0) ioctl$SCSI_IOCTL_PROBE_HOST(r1, 0x5385, &(0x7f0000000500)={0x1000, ""/4096}) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) ioctl$SNDRV_TIMER_IOCTL_CONTINUE(r1, 0x54a2) 11:10:10 executing program 5: r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/sys/net/ipv4/vs/secure_tcp\x00', 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/syz0\x00', 0x1ff) ioctl$KDDISABIO(r0, 0x4b37) write$binfmt_script(0xffffffffffffffff, &(0x7f00000003c0)=ANY=[@ANYBLOB], 0x0) fallocate(r1, 0xffffffffffffffe0, 0x0, 0x10000101) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'vcan0\x00'}) ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000140)={@empty, 0x71}) ioctl$EVIOCGMASK(0xffffffffffffffff, 0x80104592, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)}) socket(0x10, 0x0, 0x0) ioctl$sock_ifreq(0xffffffffffffffff, 0x0, &(0x7f0000000000)={"73697430000080000000000000000002", @ifru_ivalue}) 11:10:10 executing program 7: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0x0, 0x7, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x8050) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c80, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) [ 192.626402] FAULT_INJECTION: forcing a failure. [ 192.626402] name failslab, interval 1, probability 0, space 0, times 0 [ 192.637693] CPU: 1 PID: 11861 Comm: syz-executor0 Not tainted 4.18.0-rc4-next-20180711+ #4 [ 192.646090] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 192.655438] Call Trace: [ 192.658028] dump_stack+0x1c9/0x2b4 [ 192.661658] ? dump_stack_print_info.cold.2+0x52/0x52 [ 192.666848] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 192.671865] ? atime_needs_update+0x507/0x710 [ 192.676360] should_fail.cold.4+0xa/0x11 [ 192.680407] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 192.685490] ? touch_atime+0x103/0x320 [ 192.689363] ? lock_release+0xa30/0xa30 [ 192.693325] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 192.698847] ? shmem_file_read_iter+0x88a/0x1090 [ 192.703590] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 192.708589] ? ktime_get_coarse_real_ts64+0x243/0x3a0 [ 192.713761] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 192.719297] ? lock_acquire+0x1e4/0x540 [ 192.723261] ? fs_reclaim_acquire+0x20/0x20 [ 192.727564] ? lock_downgrade+0x8f0/0x8f0 [ 192.731697] ? timespec64_trunc+0x180/0x180 [ 192.736004] ? check_same_owner+0x340/0x340 [ 192.740316] ? debug_check_no_obj_freed+0x30b/0x595 [ 192.745320] ? rcu_note_context_switch+0x730/0x730 [ 192.750262] __should_failslab+0x124/0x180 [ 192.754483] should_failslab+0x9/0x14 [ 192.758266] __kmalloc+0x2c8/0x760 [ 192.761800] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 192.767325] ? touch_atime+0x103/0x320 [ 192.771195] ? iter_file_splice_write+0x25d/0x1010 [ 192.776111] iter_file_splice_write+0x25d/0x1010 [ 192.780854] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 192.785859] ? generic_file_splice_read+0x653/0x9a0 [ 192.790864] ? page_cache_pipe_buf_steal+0x610/0x610 [ 192.795957] ? rw_verify_area+0x118/0x360 [ 192.800087] ? page_cache_pipe_buf_steal+0x610/0x610 [ 192.805186] direct_splice_actor+0x128/0x190 [ 192.809580] splice_direct_to_actor+0x318/0x8f0 [ 192.814233] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 192.819752] ? pipe_to_sendpage+0x400/0x400 [ 192.824057] ? do_splice_to+0x190/0x190 [ 192.828016] ? security_file_permission+0x1c2/0x230 [ 192.833020] ? rw_verify_area+0x118/0x360 [ 192.837152] do_splice_direct+0x2d4/0x420 [ 192.841285] ? splice_direct_to_actor+0x8f0/0x8f0 [ 192.846114] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 192.851632] ? __sb_start_write+0x17f/0x300 [ 192.855939] do_sendfile+0x62a/0xe20 [ 192.859639] ? do_compat_pwritev64+0x1c0/0x1c0 [ 192.864206] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 192.869724] ? _copy_from_user+0xdf/0x150 [ 192.873858] __x64_sys_sendfile64+0x15d/0x250 [ 192.878335] ? __ia32_sys_sendfile+0x2a0/0x2a0 [ 192.882912] do_syscall_64+0x1b9/0x820 [ 192.886781] ? finish_task_switch+0x1d3/0x870 [ 192.891260] ? syscall_return_slowpath+0x5e0/0x5e0 [ 192.896170] ? syscall_return_slowpath+0x31d/0x5e0 [ 192.901084] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 192.906082] ? prepare_exit_to_usermode+0x291/0x3b0 [ 192.911080] ? perf_trace_sys_enter+0xb10/0xb10 [ 192.915732] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 192.920560] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 192.925731] RIP: 0033:0x455e29 [ 192.928900] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 192.948074] RSP: 002b:00007ffaa7d3bc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 192.955764] RAX: ffffffffffffffda RBX: 00007ffaa7d3c6d4 RCX: 0000000000455e29 [ 192.963020] RDX: 0000000020000000 RSI: 0000000000000013 RDI: 0000000000000013 [ 192.970270] RBP: 000000000072bf48 R08: 0000000000000000 R09: 0000000000000000 11:10:11 executing program 1: r0 = msgget(0x2, 0x100) msgctl$IPC_STAT(r0, 0x2, &(0x7f0000000400)=""/249) r1 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) setsockopt$inet6_tcp_TLS_TX(r1, 0x6, 0x1, &(0x7f0000000200)={0x303, 0x33}, 0x4) ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1") r3 = add_key$keyring(&(0x7f00000000c0)='keyring\x00', &(0x7f00000001c0)={0x73, 0x79, 0x7a, 0x0}, 0x0, 0x0, 0xfffffffffffffffc) keyctl$clear(0x7, r3) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)) 11:10:11 executing program 0 (fault-call:7 fault-nth:5): sched_setaffinity(0x0, 0x8, &(0x7f0000000080)=0x1) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) r0 = memfd_create(&(0x7f0000000100)='dev ', 0x0) write(r0, &(0x7f0000000040)="16", 0x1) sendfile(r0, r0, &(0x7f0000001000), 0xffff) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) sendfile(r0, r0, &(0x7f0000000000), 0x100000) tkill(r1, 0x15) 11:10:11 executing program 7: r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/sys/net/ipv4/vs/secure_tcp\x00', 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/syz0\x00', 0x1ff) ioctl$KDDISABIO(r0, 0x4b37) write$binfmt_script(0xffffffffffffffff, &(0x7f00000003c0)=ANY=[@ANYBLOB], 0x0) fallocate(r1, 0x10, 0x0, 0x10000101) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'vcan0\x00'}) ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000140)={@empty, 0x71}) ioctl$EVIOCGMASK(0xffffffffffffffff, 0x80104592, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)}) socket(0x10, 0x0, 0x0) ioctl$sock_ifreq(0xffffffffffffffff, 0x0, &(0x7f0000000000)={"73697430000080000000000000000002", @ifru_ivalue}) 11:10:11 executing program 4: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITKEY(r1, 0x80404521, &(0x7f0000000440)=""/140) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=ANY=[@ANYBLOB="240000001800000000000000ff00000080f6e1e01803ff050011000008000200ac141418"], 0x24}, 0x1}, 0x8050) r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) 11:10:11 executing program 5: r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/sys/net/ipv4/vs/secure_tcp\x00', 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/syz0\x00', 0x1ff) ioctl$KDDISABIO(r0, 0x4b37) write$binfmt_script(0xffffffffffffffff, &(0x7f00000003c0)=ANY=[@ANYBLOB], 0x0) fallocate(r1, 0x1f00, 0x0, 0x10000101) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'vcan0\x00'}) ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000140)={@empty, 0x71}) ioctl$EVIOCGMASK(0xffffffffffffffff, 0x80104592, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)}) socket(0x10, 0x0, 0x0) ioctl$sock_ifreq(0xffffffffffffffff, 0x0, &(0x7f0000000000)={"73697430000080000000000000000002", @ifru_ivalue}) 11:10:11 executing program 2: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0x0, 0x7, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x0) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) syz_open_dev$sndseq(&(0x7f00000000c0)='/dev/snd/seq\x00', 0x0, 0x424800) 11:10:11 executing program 3: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=ANY=[@ANYBLOB="247d59eece823b6b020000000000000000"], 0x24}, 0x1}, 0x8050) r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") signalfd(r0, &(0x7f0000000380)={0xffffffffffffff0e}, 0x8) ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) setsockopt$l2tp_PPPOL2TP_SO_LNSMODE(r1, 0x111, 0x4, 0x0, 0x4) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) setsockopt$sock_timeval(r1, 0x1, 0x0, &(0x7f0000000440), 0x10) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) [ 192.977533] R10: 0000000000100000 R11: 0000000000000246 R12: 0000000000000014 [ 192.984783] R13: 00000000004c1113 R14: 00000000004d1540 R15: 0000000000000004 11:10:11 executing program 5: r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/sys/net/ipv4/vs/secure_tcp\x00', 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/syz0\x00', 0x1ff) ioctl$KDDISABIO(r0, 0x4b37) write$binfmt_script(0xffffffffffffffff, &(0x7f00000003c0)=ANY=[@ANYBLOB], 0x0) fallocate(r1, 0x1500, 0x0, 0x10000101) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'vcan0\x00'}) ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000140)={@empty, 0x71}) ioctl$EVIOCGMASK(0xffffffffffffffff, 0x80104592, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)}) socket(0x10, 0x0, 0x0) ioctl$sock_ifreq(0xffffffffffffffff, 0x0, &(0x7f0000000000)={"73697430000080000000000000000002", @ifru_ivalue}) 11:10:11 executing program 2: r0 = socket(0x0, 0x0, 0x0) r1 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0x0, 0x7, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x0) r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/hwrng\x00', 0x119200, 0x0) ioctl$SNDRV_SEQ_IOCTL_GET_CLIENT_INFO(r3, 0xc0bc5310, &(0x7f0000000400)) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f") splice(r1, &(0x7f00000001c0), r2, &(0x7f0000000300), 0x5, 0xe) ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) 11:10:11 executing program 3: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0xb0, 0x0, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x8050) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) getsockopt$bt_hci(r0, 0x0, 0x2, &(0x7f0000000540)=""/193, &(0x7f0000000380)=0xc1) r2 = semget(0x3, 0x3, 0x4) semctl$GETZCNT(r2, 0x2, 0xf, &(0x7f0000000440)=""/230) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) 11:10:11 executing program 4: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) getsockopt$inet6_IPV6_IPSEC_POLICY(r0, 0x29, 0x22, &(0x7f0000000440)={{{@in=@remote, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@remote}, 0x0, @in6=@dev}}, &(0x7f00000001c0)=0xe8) setsockopt$inet_mreqn(r0, 0x0, 0x27, &(0x7f0000000300)={@multicast1=0xe0000001, @broadcast=0xffffffff, r1}, 0xc) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=ANY=[@ANYBLOB="24006694c4389d3f03dd4b2f6a33fe3e00001800000000000000ffdbdf25020000070003"], 0x24}, 0x1}, 0x8050) r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) 11:10:11 executing program 1: fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f00000000c0)={0x0, 0x0}) process_vm_readv(r0, &(0x7f0000000200)=[{&(0x7f00000001c0)=""/5, 0x5}], 0x1, &(0x7f0000001700)=[{&(0x7f0000000400)=""/193, 0xc1}, {&(0x7f0000000500)=""/199, 0xc7}, {&(0x7f0000000240)=""/70, 0x46}, {&(0x7f0000000600)=""/218, 0xda}, {&(0x7f0000000700)=""/4096, 0x1000}, {&(0x7f0000000300)=""/117, 0x75}], 0x6, 0x0) r1 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1") ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)) setsockopt$inet_msfilter(r1, 0x0, 0x29, &(0x7f0000000380)={@multicast2=0xe0000002, @multicast1=0xe0000001, 0x1, 0xa, [@broadcast=0xffffffff, @dev={0xac, 0x14, 0x14, 0x19}, @remote={0xac, 0x14, 0x14, 0xbb}, @remote={0xac, 0x14, 0x14, 0xbb}, @rand_addr=0x2, @local={0xac, 0x14, 0x14, 0xaa}, @loopback=0x7f000001, @rand_addr=0xf9b, @remote={0xac, 0x14, 0x14, 0xbb}, @local={0xac, 0x14, 0x14, 0xaa}]}, 0x38) 11:10:12 executing program 6: r0 = getpid() sched_setattr(r0, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x0, 0x3}, 0x0) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x0, 0x0) poll(&(0x7f00000001c0), 0x0, 0x80000000) ioctl$TCSETS(r1, 0x40045431, &(0x7f00003b9fdc)) ioctl$TIOCPKT(r1, 0x5420, &(0x7f0000000080)=0x61) read(r1, &(0x7f0000000040)=""/11, 0xffed) r2 = syz_open_pts(r1, 0x0) ioctl$TCXONC(r2, 0x5421, 0x0) 11:10:12 executing program 5: r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/sys/net/ipv4/vs/secure_tcp\x00', 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/syz0\x00', 0x1ff) ioctl$KDDISABIO(r0, 0x4b37) write$binfmt_script(0xffffffffffffffff, &(0x7f00000003c0)=ANY=[@ANYBLOB], 0x0) fallocate(r1, 0xe0, 0x0, 0x10000101) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'vcan0\x00'}) ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000140)={@empty, 0x71}) ioctl$EVIOCGMASK(0xffffffffffffffff, 0x80104592, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)}) socket(0x10, 0x0, 0x0) ioctl$sock_ifreq(0xffffffffffffffff, 0x0, &(0x7f0000000000)={"73697430000080000000000000000002", @ifru_ivalue}) 11:10:12 executing program 2: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r1, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r2 = memfd_create(&(0x7f0000000700)='nodev+^ppp0md5sum[trustedselfuser)@nodev]@[wlan0posix_acl_access\x00', 0x1) write(r2, &(0x7f0000000040)="16", 0x1) sendfile(r2, r2, &(0x7f0000001000), 0xffff) fcntl$addseals(r2, 0x409, 0x8) fcntl$F_SET_RW_HINT(r2, 0x40c, &(0x7f00000000c0)) clone(0x0, &(0x7f0000b6b000), &(0x7f0000744000), &(0x7f0000fef000), &(0x7f0000000000)) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0x0, 0x7, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x0) r3 = getpid() ioctl$sock_SIOCSPGRP(r1, 0x8902, &(0x7f00000001c0)=r3) r4 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_GET_FREE(r4, 0x4c82) r5 = ioctl$LOOP_CTL_GET_FREE(r4, 0x4c82) ioctl$LOOP_CTL_REMOVE(r4, 0x4c81, r5) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) 11:10:12 executing program 4: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0x0, 0x7, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x8050) setsockopt$inet_udp_int(r0, 0x11, 0xb, &(0x7f0000000380)=0x8001, 0x4) r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) syz_mount_image$gfs2(&(0x7f0000000440)='gfs2\x00', &(0x7f0000000480)='./file0\x00', 0x7ff, 0x6, &(0x7f0000000840)=[{&(0x7f00000004c0)="822ed9ff8f85715d8ab45da4ee86e2ca42a143ab8d5647dca40e9c547db750e52a59204dc882dbe4a73aaefcc17c6a3ff83c595ce47cd2abeccc5ebc5adfa98181e826f6eefb297cf3764359a46cd92ea70c4fa2c9c824c2d9f066500321db5876b953be1abfbfce411c64a22492af9661fe87410d8aea041e6efbc2596d4f8d340fa5e998a92fef3d53244aa3d70e4522b2075bf36b8791db6d83548fc3224ceb04d87bfedafd0554b615a9", 0xac, 0x8000}, {&(0x7f0000000580)="1ae375481b637a3ec06a42d0c266b3343ddb1c41561cd714189d193519dbb7127474a8d76e96e4d2eaea64076076d0b99ac15883583f6a101f8636edfaf3d7292b9973df6ff78fa5b6b151c641537aa98a6819266d3d88b92b43df020d9d7a8a6629b24e991e1ef84dec3a91b748a5112b091f4dbef8f5d3587d0c1b89ad0c521096c9fd5681d97112291d354568b8512b5c8cfedadc9aa388667718aaea5863bc21a48f56905e72f701b1ad6b7058fd978998866af49833909332625d93caae2881d287049651e077059440c432", 0xce, 0xfffffffffffffff9}, {&(0x7f0000000680)="007abfa7cd534d3feea644ec70a9be39a2d8b3e8463042062e2dfe6556b7fa1dc48da1bc496fdf6e91882e45f9042fa91bc31c360f38b4d434902bcdb73a84e4dede65e34d8e7fdb5cbd112861689d83f58b721f923a779bad9fefafb37885a39d0117", 0x63, 0x3}, {&(0x7f0000000700)="85b62f2079c24ebb2c1c1f6085c9c0bc74c9ecc65dd6a2ac168814b3f97e61ae569ea94b97a29494083dfd3536fb46", 0x2f, 0xffc0000000000000}, {&(0x7f0000000740)="86e703d81295591229e9b19998a74fa7baca995be6954cdf9c73237d34899d8303e004bc3a1280dc40c430e87ce2782a4a5ad013fa4784e9e7e92d7f2e43b3354cf8dacbf44eae1be553df663d95074815eae1785dbb7ee09231036679c1b292135de1458c7d1e8ebc2d9dd4834dc1bdd49e504ed53565e5953f15ed9c347dfc7c20c274d74e55d1f6c68a1990eb831491c398a1e599c24fa2ee05c8464c0dbee7afe6a59ab25b769eb5b8", 0xab, 0x1}, {&(0x7f0000000800)="d233dac28e814656bb5750a5f1a83f2f4a2ed75c2aa209935a364553f326f290dbf47630c16eaa84912c26cd796364eb50ddb922dccd8a8f", 0x38, 0x1}], 0x100409, &(0x7f0000000900)={[{@nobarrier='nobarrier', 0x2c}]}) ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0) openat$rtc(0xffffffffffffff9c, &(0x7f0000000300)='/dev/rtc0\x00', 0x40, 0x0) setsockopt$netlink_NETLINK_LISTEN_ALL_NSID(r1, 0x10e, 0x8, &(0x7f00000001c0)=0xfff, 0x4) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) [ 193.827311] FAULT_INJECTION: forcing a failure. [ 193.827311] name failslab, interval 1, probability 0, space 0, times 0 [ 193.838592] CPU: 0 PID: 11952 Comm: syz-executor0 Not tainted 4.18.0-rc4-next-20180711+ #4 [ 193.846985] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 193.856352] Call Trace: [ 193.858949] dump_stack+0x1c9/0x2b4 [ 193.862560] ? dump_stack_print_info.cold.2+0x52/0x52 [ 193.867737] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 193.872735] ? atime_needs_update+0x507/0x710 [ 193.877216] should_fail.cold.4+0xa/0x11 [ 193.881260] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 193.886342] ? touch_atime+0x103/0x320 [ 193.890218] ? lock_release+0xa30/0xa30 [ 193.894178] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 193.899705] ? shmem_file_read_iter+0x88a/0x1090 [ 193.904443] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 193.909441] ? ktime_get_coarse_real_ts64+0x243/0x3a0 [ 193.914615] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 193.920136] ? lock_acquire+0x1e4/0x540 [ 193.924092] ? fs_reclaim_acquire+0x20/0x20 [ 193.928397] ? lock_downgrade+0x8f0/0x8f0 [ 193.932531] ? timespec64_trunc+0x180/0x180 [ 193.936837] ? check_same_owner+0x340/0x340 [ 193.941142] ? debug_check_no_obj_freed+0x30b/0x595 [ 193.946142] ? rcu_note_context_switch+0x730/0x730 [ 193.951054] __should_failslab+0x124/0x180 [ 193.955273] should_failslab+0x9/0x14 [ 193.959054] __kmalloc+0x2c8/0x760 [ 193.962578] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 193.968098] ? touch_atime+0x103/0x320 [ 193.971964] ? iter_file_splice_write+0x25d/0x1010 [ 193.976877] iter_file_splice_write+0x25d/0x1010 [ 193.981614] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 193.986627] ? generic_file_splice_read+0x653/0x9a0 [ 193.991638] ? page_cache_pipe_buf_steal+0x610/0x610 [ 193.996728] ? rw_verify_area+0x118/0x360 [ 194.000856] ? page_cache_pipe_buf_steal+0x610/0x610 [ 194.005944] direct_splice_actor+0x128/0x190 [ 194.010336] splice_direct_to_actor+0x318/0x8f0 [ 194.014986] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 194.020507] ? pipe_to_sendpage+0x400/0x400 [ 194.024824] ? do_splice_to+0x190/0x190 [ 194.028785] ? security_file_permission+0x1c2/0x230 [ 194.033783] ? rw_verify_area+0x118/0x360 [ 194.037916] do_splice_direct+0x2d4/0x420 [ 194.042050] ? splice_direct_to_actor+0x8f0/0x8f0 [ 194.046879] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 194.052399] ? __sb_start_write+0x17f/0x300 [ 194.056714] do_sendfile+0x62a/0xe20 [ 194.060412] ? do_compat_pwritev64+0x1c0/0x1c0 [ 194.064981] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 194.070506] ? _copy_from_user+0xdf/0x150 [ 194.074637] __x64_sys_sendfile64+0x15d/0x250 [ 194.079112] ? __ia32_sys_sendfile+0x2a0/0x2a0 [ 194.083681] do_syscall_64+0x1b9/0x820 [ 194.087552] ? finish_task_switch+0x1d3/0x870 [ 194.092030] ? syscall_return_slowpath+0x5e0/0x5e0 [ 194.096942] ? syscall_return_slowpath+0x31d/0x5e0 [ 194.101854] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 194.106858] ? prepare_exit_to_usermode+0x291/0x3b0 [ 194.111856] ? perf_trace_sys_enter+0xb10/0xb10 [ 194.116508] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 194.121337] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 194.126506] RIP: 0033:0x455e29 [ 194.129674] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 194.148856] RSP: 002b:00007ffaa7d3bc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 194.156547] RAX: ffffffffffffffda RBX: 00007ffaa7d3c6d4 RCX: 0000000000455e29 [ 194.163796] RDX: 0000000020000000 RSI: 0000000000000013 RDI: 0000000000000013 [ 194.171047] RBP: 000000000072bf48 R08: 0000000000000000 R09: 0000000000000000 [ 194.178298] R10: 0000000000100000 R11: 0000000000000246 R12: 0000000000000014 [ 194.185559] R13: 00000000004c1113 R14: 00000000004d1540 R15: 0000000000000005 11:10:13 executing program 0 (fault-call:7 fault-nth:6): sched_setaffinity(0x0, 0x8, &(0x7f0000000080)=0x1) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) r0 = memfd_create(&(0x7f0000000100)='dev ', 0x0) write(r0, &(0x7f0000000040)="16", 0x1) sendfile(r0, r0, &(0x7f0000001000), 0xffff) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) sendfile(r0, r0, &(0x7f0000000000), 0x100000) tkill(r1, 0x15) 11:10:13 executing program 3: r0 = socket(0x0, 0x0, 0x0) r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000440)='/dev/ppp\x00', 0x8000, 0x0) ioctl$VHOST_SET_LOG_BASE(r1, 0x4008af04, &(0x7f00000004c0)=&(0x7f0000000480)) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0xb0, 0x0, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x8050) bind$vsock_stream(r0, &(0x7f0000000380)={0x28, 0x0, 0xffffffff, @any=0xffffffff}, 0x10) r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) 11:10:13 executing program 1: r0 = socket(0x0, 0x0, 0x0) pipe(&(0x7f0000000580)={0xffffffffffffffff}) ioctl$TIOCGPGRP(0xffffffffffffff9c, 0x540f, &(0x7f00000005c0)=0x0) write$cgroup_pid(r1, &(0x7f0000000600)=r2, 0x12) r3 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r4 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r4, 0x4c81, 0x0) r5 = ioctl$LOOP_CTL_GET_FREE(r3, 0x4c82) ioctl$LOOP_CTL_ADD(r4, 0x4c80, r5) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1") getsockopt$inet_sctp_SCTP_ASSOCINFO(r0, 0x84, 0x1, &(0x7f0000000480)={0x0, 0x5, 0x5, 0xf6, 0x5, 0x9}, &(0x7f00000004c0)=0x14) getsockopt$inet_sctp6_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f0000000500)={0x2, 0x80000000, 0x2, 0x4, 0x4, 0x7fffffff, 0x3, 0x8001, r6}, &(0x7f0000000540)=0x20) r7 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000400)='/dev/hwrng\x00', 0x4002, 0x0) ioctl$SG_EMULATED_HOST(r7, 0x2203, &(0x7f0000000440)) getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f00000001c0)={0x0, @in6={{0xa, 0x4e22, 0x80, @mcast2={0xff, 0x2, [], 0x1}, 0x4}}, 0x0, 0x5, 0x100000000, 0x7, 0xe}, &(0x7f00000000c0)=0x98) getsockopt$inet_sctp_SCTP_SOCKOPT_PEELOFF(r0, 0x84, 0x66, &(0x7f0000000280)={r8, 0x1}, &(0x7f0000000300)=0x8) getsockopt$inet_sctp6_SCTP_AUTO_ASCONF(r0, 0x84, 0x1e, &(0x7f0000000340), &(0x7f0000000380)=0x4) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)) 11:10:13 executing program 5: r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/sys/net/ipv4/vs/secure_tcp\x00', 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/syz0\x00', 0x1ff) ioctl$KDDISABIO(r0, 0x4b37) write$binfmt_script(0xffffffffffffffff, &(0x7f00000003c0)=ANY=[@ANYBLOB], 0x0) fallocate(r1, 0x4, 0x0, 0x10000101) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'vcan0\x00'}) ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000140)={@empty, 0x71}) ioctl$EVIOCGMASK(0xffffffffffffffff, 0x80104592, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)}) socket(0x10, 0x0, 0x0) ioctl$sock_ifreq(0xffffffffffffffff, 0x0, &(0x7f0000000000)={"73697430000080000000000000000002", @ifru_ivalue}) 11:10:13 executing program 4: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=ANY=[@ANYBLOB="2400000021da166a4fd6fdb64a59f6e5e11800000000d0dcb458dbdf25020000070003ff"], 0x24}, 0x1}, 0x8050) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) 11:10:13 executing program 7 (fault-call:6 fault-nth:0): socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) 11:10:13 executing program 5: r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/sys/net/ipv4/vs/secure_tcp\x00', 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/syz0\x00', 0x1ff) ioctl$KDDISABIO(r0, 0x4b37) write$binfmt_script(0xffffffffffffffff, &(0x7f00000003c0)=ANY=[@ANYBLOB], 0x0) fallocate(r1, 0x3, 0x0, 0x10000101) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'vcan0\x00'}) ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000140)={@empty, 0x71}) ioctl$EVIOCGMASK(0xffffffffffffffff, 0x80104592, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)}) socket(0x10, 0x0, 0x0) ioctl$sock_ifreq(0xffffffffffffffff, 0x0, &(0x7f0000000000)={"73697430000080000000000000000002", @ifru_ivalue}) [ 194.434244] FAULT_INJECTION: forcing a failure. [ 194.434244] name failslab, interval 1, probability 0, space 0, times 0 [ 194.445683] CPU: 0 PID: 11968 Comm: syz-executor7 Not tainted 4.18.0-rc4-next-20180711+ #4 [ 194.454080] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 194.463428] Call Trace: [ 194.466015] dump_stack+0x1c9/0x2b4 [ 194.469643] ? dump_stack_print_info.cold.2+0x52/0x52 [ 194.474873] should_fail.cold.4+0xa/0x11 [ 194.478937] ? do_raw_spin_lock+0xc1/0x200 [ 194.483262] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 194.488361] ? _raw_spin_unlock+0x22/0x30 [ 194.492509] ? __mutex_lock+0x848/0x1680 [ 194.496571] ? mutex_trylock+0x2b0/0x2b0 [ 194.501125] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 194.506670] ? __radix_tree_lookup+0x491/0x610 [ 194.511253] ? lock_acquire+0x1e4/0x540 [ 194.515223] ? fs_reclaim_acquire+0x20/0x20 [ 194.519545] ? lock_downgrade+0x8f0/0x8f0 [ 194.523700] ? check_same_owner+0x340/0x340 [ 194.528022] ? trace_hardirqs_on+0xd/0x10 [ 194.532168] ? _raw_spin_unlock_irq+0x27/0x70 [ 194.536665] ? rcu_note_context_switch+0x730/0x730 [ 194.541598] __should_failslab+0x124/0x180 [ 194.545835] should_failslab+0x9/0x14 [ 194.549638] kmem_cache_alloc_trace+0x2cb/0x780 [ 194.554310] ? lock_release+0xa30/0xa30 [ 194.558288] loop_add+0x9f/0x9d0 [ 194.561660] ? loop_lookup+0x105/0x230 [ 194.565543] ? loop_queue_rq+0x660/0x660 [ 194.569604] loop_control_ioctl+0x199/0x540 [ 194.573920] ? ksys_dup3+0x690/0x690 [ 194.577627] ? loop_add+0x9d0/0x9d0 [ 194.581255] ? kasan_check_write+0x14/0x20 [ 194.585486] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 194.590412] ? fsnotify+0xbac/0x14e0 [ 194.594129] ? vfs_write+0x2f3/0x560 [ 194.597845] ? loop_add+0x9d0/0x9d0 [ 194.601468] do_vfs_ioctl+0x1de/0x1720 [ 194.605353] ? ioctl_preallocate+0x300/0x300 [ 194.609757] ? __fget_light+0x2f7/0x440 [ 194.613730] ? __schedule+0x1ed0/0x1ed0 [ 194.617703] ? fget_raw+0x20/0x20 [ 194.621153] ? __f_unlock_pos+0xd/0x20 [ 194.625041] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 194.630570] ? fput+0x130/0x1a0 [ 194.633858] ? security_file_ioctl+0x94/0xc0 [ 194.638263] ksys_ioctl+0xa9/0xd0 [ 194.641714] __x64_sys_ioctl+0x73/0xb0 [ 194.645608] do_syscall_64+0x1b9/0x820 [ 194.649499] ? syscall_slow_exit_work+0x500/0x500 [ 194.654337] ? syscall_return_slowpath+0x5e0/0x5e0 [ 194.659260] ? syscall_return_slowpath+0x31d/0x5e0 [ 194.664187] ? prepare_exit_to_usermode+0x291/0x3b0 [ 194.669200] ? perf_trace_sys_enter+0xb10/0xb10 [ 194.673867] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 194.678711] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 194.683892] RIP: 0033:0x455e29 [ 194.687069] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 194.706351] RSP: 002b:00007fc746a7ec68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 194.714056] RAX: ffffffffffffffda RBX: 00007fc746a7f6d4 RCX: 0000000000455e29 [ 194.721317] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000014 [ 194.728580] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 11:10:13 executing program 6: r0 = getpid() sched_setattr(r0, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x0, 0x3}, 0x0) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x0, 0x0) poll(&(0x7f00000001c0), 0x0, 0x80000000) ioctl$TCSETS(r1, 0x40045431, &(0x7f00003b9fdc)) ioctl$TIOCPKT(r1, 0x5420, &(0x7f0000000080)=0x61) read(r1, &(0x7f0000000040)=""/11, 0xffed) r2 = syz_open_pts(r1, 0x0) ioctl$TCXONC(r2, 0x540e, 0x0) [ 194.735844] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015 [ 194.743111] R13: 00000000004be3c0 R14: 00000000004ccd10 R15: 0000000000000000 11:10:13 executing program 7 (fault-call:6 fault-nth:1): socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) 11:10:13 executing program 5: r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/sys/net/ipv4/vs/secure_tcp\x00', 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/syz0\x00', 0x1ff) ioctl$KDDISABIO(r0, 0x4b37) write$binfmt_script(0xffffffffffffffff, &(0x7f00000003c0)=ANY=[@ANYBLOB], 0x0) fallocate(r1, 0xffffffe0, 0x0, 0x10000101) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'vcan0\x00'}) ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000140)={@empty, 0x71}) ioctl$EVIOCGMASK(0xffffffffffffffff, 0x80104592, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)}) socket(0x10, 0x0, 0x0) ioctl$sock_ifreq(0xffffffffffffffff, 0x0, &(0x7f0000000000)={"73697430000080000000000000000002", @ifru_ivalue}) 11:10:13 executing program 4: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(r0, &(0x7f0000000340)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0x0, 0x7, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x8050) r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) getsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(r0, 0x84, 0x22, &(0x7f00000001c0)={0x100000000, 0x4, 0x8, 0xd2cd, 0x0}, &(0x7f0000000300)=0x10) getsockopt$inet_sctp6_SCTP_MAXSEG(r1, 0x84, 0xd, &(0x7f0000000380)=@assoc_id=r3, &(0x7f0000000440)=0x4) 11:10:13 executing program 3: socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) restart_syscall() bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=ANY=[@ANYBLOB="240000001810000000000000ffdbdf250200b0000003ff050011000008000200ac141418"], 0x24}, 0x1}, 0x8050) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/loop-control\x00', 0x0, 0x0) syz_open_dev$dspn(&(0x7f0000000380)='/dev/dsp#\x00', 0x80, 0x400) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) 11:10:13 executing program 1: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = msgget$private(0x0, 0x2) msgsnd(r1, &(0x7f0000000400)=ANY=[@ANYBLOB="0300000000000000258887c22567f86beb0ab570850006c8ff12b1eff247c1f0e6fbab3cb8f71e9b11ec06039f1f43e12a60d7a49e4cc573838ff858ebd6d481aafdec74a3e900f9958c0e43e30063d5083394b9707bf435a710269cca06552c44ea610fff1fedd1241dd02b6cffa98016e4d4efce246325284362bf6137e97606d20d8a008aa60bb6caef4ffeb0d0d4ac0a781aebd5dd08fd2e2c738d4928ba5a3994558d9c6f212beab9fa99bf8c41c05e5011bbc39e072928f70087d320c3c0d4ee79fb5b2bdda6e2a0167ec374218a44b5bf19154ca10662f5efad4796361083808b6376f267b3be95dc8a0a03594471f27038fb1d07"], 0x99, 0x800) msgctl$IPC_STAT(r1, 0x2, &(0x7f0000000200)=""/60) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)) 11:10:13 executing program 5: r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/sys/net/ipv4/vs/secure_tcp\x00', 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/syz0\x00', 0x1ff) ioctl$KDDISABIO(r0, 0x4b37) write$binfmt_script(0xffffffffffffffff, &(0x7f00000003c0)=ANY=[@ANYBLOB], 0x0) fallocate(r1, 0xffff8000, 0x0, 0x10000101) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'vcan0\x00'}) ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000140)={@empty, 0x71}) ioctl$EVIOCGMASK(0xffffffffffffffff, 0x80104592, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)}) socket(0x10, 0x0, 0x0) ioctl$sock_ifreq(0xffffffffffffffff, 0x0, &(0x7f0000000000)={"73697430000080000000000000000002", @ifru_ivalue}) [ 195.186550] FAULT_INJECTION: forcing a failure. [ 195.186550] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 195.198398] CPU: 0 PID: 12028 Comm: syz-executor0 Not tainted 4.18.0-rc4-next-20180711+ #4 [ 195.206797] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 195.216146] Call Trace: [ 195.218742] dump_stack+0x1c9/0x2b4 [ 195.222379] ? dump_stack_print_info.cold.2+0x52/0x52 [ 195.227580] should_fail.cold.4+0xa/0x11 [ 195.231659] ? fault_create_debugfs_attr+0x1f0/0x1f0 11:10:13 executing program 2: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0x0, 0x7, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x0) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) 11:10:13 executing program 4: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0x0, 0x7, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1, 0x0, 0x0, 0x20000000}, 0x8050) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) [ 195.236773] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 195.241795] ? ktime_get_coarse_real_ts64+0x243/0x3a0 [ 195.246990] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 195.252533] ? timespec64_trunc+0xea/0x180 [ 195.256780] ? trace_hardirqs_on+0x10/0x10 [ 195.261020] ? lock_downgrade+0x8f0/0x8f0 [ 195.265179] ? current_time+0x131/0x1b0 [ 195.269161] ? timespec64_trunc+0x180/0x180 [ 195.273487] ? do_writepages+0x1a0/0x1a0 [ 195.277561] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 195.282592] ? iget5_locked+0x190/0x190 [ 195.286582] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 195.292131] ? should_fail+0x246/0xd86 [ 195.296030] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 195.301130] ? touch_atime+0x103/0x320 [ 195.305019] __alloc_pages_nodemask+0x36e/0xdb0 [ 195.309696] ? __alloc_pages_slowpath+0x2d00/0x2d00 [ 195.314720] ? shmem_file_read_iter+0x88a/0x1090 [ 195.319479] ? ktime_get_coarse_real_ts64+0x243/0x3a0 [ 195.324667] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 195.330196] ? lock_acquire+0x1e4/0x540 [ 195.334167] ? fs_reclaim_acquire+0x20/0x20 [ 195.338486] ? lock_downgrade+0x8f0/0x8f0 [ 195.342618] ? lock_release+0xa30/0xa30 [ 195.346581] ? timespec64_trunc+0x180/0x180 [ 195.350883] ? check_same_owner+0x340/0x340 [ 195.355187] cache_grow_begin+0x91/0x710 [ 195.359239] __kmalloc+0x688/0x760 [ 195.362775] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 195.368294] ? iter_file_splice_write+0x25d/0x1010 [ 195.373205] iter_file_splice_write+0x25d/0x1010 [ 195.377944] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 195.382944] ? generic_file_splice_read+0x653/0x9a0 [ 195.387954] ? page_cache_pipe_buf_steal+0x610/0x610 [ 195.393223] ? rw_verify_area+0x118/0x360 [ 195.397358] ? page_cache_pipe_buf_steal+0x610/0x610 [ 195.402442] direct_splice_actor+0x128/0x190 [ 195.406857] splice_direct_to_actor+0x318/0x8f0 [ 195.411515] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 195.417041] ? pipe_to_sendpage+0x400/0x400 [ 195.421344] ? do_splice_to+0x190/0x190 [ 195.425305] ? security_file_permission+0x1c2/0x230 [ 195.430306] ? rw_verify_area+0x118/0x360 [ 195.434443] do_splice_direct+0x2d4/0x420 [ 195.438597] ? splice_direct_to_actor+0x8f0/0x8f0 [ 195.443421] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 195.448945] ? __sb_start_write+0x17f/0x300 [ 195.453262] do_sendfile+0x62a/0xe20 [ 195.456969] ? do_compat_pwritev64+0x1c0/0x1c0 [ 195.461535] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 195.467060] ? _copy_from_user+0xdf/0x150 [ 195.471200] __x64_sys_sendfile64+0x15d/0x250 [ 195.475680] ? __ia32_sys_sendfile+0x2a0/0x2a0 [ 195.480248] do_syscall_64+0x1b9/0x820 [ 195.484134] ? finish_task_switch+0x1d3/0x870 [ 195.488613] ? syscall_return_slowpath+0x5e0/0x5e0 [ 195.493528] ? syscall_return_slowpath+0x31d/0x5e0 [ 195.498445] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 195.503450] ? prepare_exit_to_usermode+0x291/0x3b0 [ 195.508450] ? perf_trace_sys_enter+0xb10/0xb10 [ 195.513103] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 195.517948] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 195.523125] RIP: 0033:0x455e29 [ 195.526296] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 195.545458] RSP: 002b:00007ffaa7d3bc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 195.553147] RAX: ffffffffffffffda RBX: 00007ffaa7d3c6d4 RCX: 0000000000455e29 [ 195.560402] RDX: 0000000020000000 RSI: 0000000000000013 RDI: 0000000000000013 [ 195.567664] RBP: 000000000072bf48 R08: 0000000000000000 R09: 0000000000000000 [ 195.574922] R10: 0000000000100000 R11: 0000000000000246 R12: 0000000000000014 [ 195.582179] R13: 00000000004c1113 R14: 00000000004d1540 R15: 0000000000000006 [ 195.626758] FAULT_INJECTION: forcing a failure. [ 195.626758] name failslab, interval 1, probability 0, space 0, times 0 [ 195.638078] CPU: 1 PID: 12029 Comm: syz-executor7 Not tainted 4.18.0-rc4-next-20180711+ #4 [ 195.646484] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 195.655829] Call Trace: [ 195.658419] dump_stack+0x1c9/0x2b4 [ 195.662055] ? dump_stack_print_info.cold.2+0x52/0x52 [ 195.667251] ? idr_get_free+0xbbb/0x10d0 [ 195.671321] should_fail.cold.4+0xa/0x11 [ 195.675391] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 195.680507] ? radix_tree_iter_tag_clear+0xd0/0xd0 [ 195.685442] ? __kernel_text_address+0xd/0x40 [ 195.689941] ? replace_slot+0xc9/0x4c0 [ 195.693834] ? __save_stack_trace+0x8d/0xf0 [ 195.698163] ? plist_requeue+0x650/0x650 [ 195.702233] ? lock_acquire+0x1e4/0x540 [ 195.706208] ? fs_reclaim_acquire+0x20/0x20 [ 195.710529] ? lock_downgrade+0x8f0/0x8f0 [ 195.714681] ? check_same_owner+0x340/0x340 [ 195.719003] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 195.724539] ? node_tag_clear+0xc0/0x1c0 [ 195.728599] ? rcu_note_context_switch+0x730/0x730 [ 195.733531] __should_failslab+0x124/0x180 [ 195.737769] should_failslab+0x9/0x14 [ 195.741573] kmem_cache_alloc_node_trace+0x26f/0x770 [ 195.746684] ? __fprop_inc_percpu_max+0x2d0/0x2d0 [ 195.751533] __kmalloc_node+0x33/0x70 [ 195.755344] blk_mq_alloc_tag_set+0x385/0xad0 [ 195.759845] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 195.765386] ? blk_mq_update_nr_hw_queues+0x510/0x510 [ 195.770580] loop_add+0x2be/0x9d0 11:10:14 executing program 0 (fault-call:7 fault-nth:7): sched_setaffinity(0x0, 0x8, &(0x7f0000000080)=0x1) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) r0 = memfd_create(&(0x7f0000000100)='dev ', 0x0) write(r0, &(0x7f0000000040)="16", 0x1) sendfile(r0, r0, &(0x7f0000001000), 0xffff) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) sendfile(r0, r0, &(0x7f0000000000), 0x100000) tkill(r1, 0x15) 11:10:14 executing program 1: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r1 = syz_open_dev$adsp(&(0x7f00000001c0)='/dev/adsp#\x00', 0x3, 0x111800) ioctl$KVM_GET_XSAVE(r1, 0x9000aea4, &(0x7f0000000400)) setsockopt$bt_BT_DEFER_SETUP(r0, 0x112, 0x7, &(0x7f00000000c0), 0x4) r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1") fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)) 11:10:14 executing program 3: socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000380)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0xb0, 0x0, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x8050) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) 11:10:14 executing program 2: r0 = socket(0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_ADAPTATION_LAYER(r0, 0x84, 0x7, &(0x7f00000000c0), 0x4) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0x0, 0x7, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x0) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) setsockopt$inet_sctp6_SCTP_FRAGMENT_INTERLEAVE(r0, 0x84, 0x12, &(0x7f00000001c0)=0x9, 0x4) 11:10:14 executing program 5: r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/sys/net/ipv4/vs/secure_tcp\x00', 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/syz0\x00', 0x1ff) ioctl$KDDISABIO(r0, 0x4b37) write$binfmt_script(0xffffffffffffffff, &(0x7f00000003c0)=ANY=[@ANYBLOB], 0x0) fallocate(r1, 0x5, 0x0, 0x10000101) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'vcan0\x00'}) ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000140)={@empty, 0x71}) ioctl$EVIOCGMASK(0xffffffffffffffff, 0x80104592, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)}) socket(0x10, 0x0, 0x0) ioctl$sock_ifreq(0xffffffffffffffff, 0x0, &(0x7f0000000000)={"73697430000080000000000000000002", @ifru_ivalue}) [ 195.774045] ? loop_lookup+0x105/0x230 [ 195.777935] ? loop_queue_rq+0x660/0x660 [ 195.781994] loop_control_ioctl+0x199/0x540 [ 195.786315] ? ksys_dup3+0x690/0x690 [ 195.790031] ? loop_add+0x9d0/0x9d0 [ 195.793670] ? kasan_check_write+0x14/0x20 [ 195.797907] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 195.802838] ? fsnotify+0xbac/0x14e0 [ 195.806555] ? vfs_write+0x2f3/0x560 [ 195.810271] ? loop_add+0x9d0/0x9d0 [ 195.813893] do_vfs_ioctl+0x1de/0x1720 [ 195.817775] ? fsnotify_first_mark+0x350/0x350 [ 195.822355] ? __fsnotify_parent+0xcc/0x420 11:10:14 executing program 5: r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/sys/net/ipv4/vs/secure_tcp\x00', 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/syz0\x00', 0x1ff) ioctl$KDDISABIO(r0, 0x4b37) write$binfmt_script(0xffffffffffffffff, &(0x7f00000003c0)=ANY=[@ANYBLOB], 0x0) fallocate(r1, 0x8, 0x0, 0x10000101) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'vcan0\x00'}) ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000140)={@empty, 0x71}) ioctl$EVIOCGMASK(0xffffffffffffffff, 0x80104592, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)}) socket(0x10, 0x0, 0x0) ioctl$sock_ifreq(0xffffffffffffffff, 0x0, &(0x7f0000000000)={"73697430000080000000000000000002", @ifru_ivalue}) [ 195.826682] ? ioctl_preallocate+0x300/0x300 [ 195.831094] ? __fget_light+0x2f7/0x440 [ 195.835068] ? fget_raw+0x20/0x20 [ 195.838523] ? __sb_end_write+0xac/0xe0 [ 195.842500] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 195.848040] ? fput+0x130/0x1a0 [ 195.851316] ? ksys_write+0x1ae/0x260 [ 195.855115] ? security_file_ioctl+0x94/0xc0 [ 195.859525] ksys_ioctl+0xa9/0xd0 [ 195.862980] __x64_sys_ioctl+0x73/0xb0 [ 195.866869] do_syscall_64+0x1b9/0x820 [ 195.870759] ? syscall_slow_exit_work+0x500/0x500 [ 195.875601] ? syscall_return_slowpath+0x5e0/0x5e0 [ 195.880522] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 195.886050] ? prepare_exit_to_usermode+0x291/0x3b0 [ 195.891054] ? perf_trace_sys_enter+0xb10/0xb10 [ 195.895707] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 195.900535] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 195.905704] RIP: 0033:0x455e29 [ 195.908870] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 11:10:14 executing program 4: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=ANY=[@ANYBLOB="240000001800000000000000ffdbdf25020000070003ff050011000008000200ac1414e3a518df47a65368805f11838483b6a525f5fbff7864707824c08cccdd"], 0x24}, 0x1}, 0x8050) tee(r0, r0, 0x81, 0x8) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) [ 195.928032] RSP: 002b:00007fc746a7ec68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 195.935734] RAX: ffffffffffffffda RBX: 00007fc746a7f6d4 RCX: 0000000000455e29 [ 195.942990] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000014 [ 195.950246] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 195.957497] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015 [ 195.964768] R13: 00000000004be3c0 R14: 00000000004ccd10 R15: 0000000000000001 11:10:14 executing program 1: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000001c0)='attr/fscreate\x00') ioctl$EVIOCGBITSW(r1, 0x80404525, &(0x7f0000000100)=""/189) r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) socket(0x8, 0x80003, 0x8) ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(r2, 0x40e, &(0x7f00000000c0)) 11:10:14 executing program 7 (fault-call:6 fault-nth:2): socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) 11:10:14 executing program 6: r0 = getpid() sched_setattr(r0, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x0, 0x3}, 0x0) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x0, 0x0) poll(&(0x7f00000001c0), 0x0, 0x80000000) ioctl$TCSETS(r1, 0x40045431, &(0x7f00003b9fdc)) ioctl$TIOCPKT(r1, 0x5420, &(0x7f0000000080)=0x61) read(r1, &(0x7f0000000040)=""/11, 0xffed) r2 = syz_open_pts(r1, 0x0) ioctl$TCXONC(r2, 0x5411, 0x0) 11:10:14 executing program 3: socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, @perf_config_ext={0xffffffffffffc5db, 0x9f0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x24}, 0x1}, 0x8050) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) bind$vsock_stream(r1, &(0x7f0000000000)={0x28, 0x0, 0x2711, @hyper}, 0x10) 11:10:14 executing program 2: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, @perf_bp, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff}, 0x0, 0x4, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xffffff05, &(0x7f0000000280)={&(0x7f0000000400)=ANY=[@ANYBLOB="04000000ac0e00000000000003ff050011000008000200ac141418377a39d9a514aca41bcc1337005b77a2d43f02000000000000000000000000000000000000000000000000"], 0x24}, 0x1}, 0x0) r1 = openat$full(0xffffffffffffff9c, &(0x7f0000000700)='/dev/full\x00', 0x400000, 0x0) ioctl$KVM_SET_PIT2(r1, 0x4070aea0, &(0x7f0000000480)={[{0x2, 0x37487947, 0x125, 0x2be0dab6, 0x0, 0x7, 0x7, 0xc52, 0x6, 0x7fffffff, 0x1, 0x4, 0x5}, {0x8, 0xfffffffffffffff8, 0x9e, 0x7fff, 0xcba8, 0x5, 0x9, 0x101, 0xae29, 0x2, 0x4, 0x5, 0x80000001}, {0x1, 0xeb, 0x5, 0xfffffffffffffffa, 0x0, 0x3, 0x3f, 0x4, 0x2, 0x4, 0x6, 0x2}], 0x2a}) r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0) getxattr(&(0x7f0000000500)='./file0\x00', &(0x7f0000000540)=@random={'system.', '/dev/loop-control\x00'}, &(0x7f0000000580)=""/201, 0xc9) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f") r3 = syz_open_dev$amidi(&(0x7f0000000300)='/dev/amidi#\x00', 0x3085, 0x8040) r4 = creat(&(0x7f00000000c0)='./file0\x00', 0x10) ioctl$VHOST_SET_VRING_NUM(r4, 0x4008af10, &(0x7f00000001c0)={0x3, 0x80000001}) r5 = ioctl$LOOP_CTL_GET_FREE(r3, 0x4c82) ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r5) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) write$P9_RSYMLINK(r4, &(0x7f0000000380)={0x14, 0x11, 0x2, {0x40, 0x1, 0x3}}, 0x14) openat$cgroup_ro(r4, &(0x7f0000000240)='pids.events\x00', 0x0, 0x0) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) 11:10:14 executing program 5: r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/sys/net/ipv4/vs/secure_tcp\x00', 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/syz0\x00', 0x1ff) ioctl$KDDISABIO(r0, 0x4b37) write$binfmt_script(0xffffffffffffffff, &(0x7f00000003c0)=ANY=[@ANYBLOB], 0x0) fallocate(r1, 0xf, 0x0, 0x10000101) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'vcan0\x00'}) ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000140)={@empty, 0x71}) ioctl$EVIOCGMASK(0xffffffffffffffff, 0x80104592, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)}) socket(0x10, 0x0, 0x0) ioctl$sock_ifreq(0xffffffffffffffff, 0x0, &(0x7f0000000000)={"73697430000080000000000000000002", @ifru_ivalue}) 11:10:14 executing program 4: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0x0, 0x7, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x8050) ioctl$RTC_AIE_OFF(r0, 0x7002) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) 11:10:15 executing program 2: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0x0, 0x7, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x0) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) setsockopt$inet6_buf(r0, 0x29, 0x4000000000002c, &(0x7f0000000600)="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", 0xfffffffffffffdc2) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) [ 196.353717] FAULT_INJECTION: forcing a failure. [ 196.353717] name failslab, interval 1, probability 0, space 0, times 0 [ 196.365776] CPU: 0 PID: 12091 Comm: syz-executor7 Not tainted 4.18.0-rc4-next-20180711+ #4 [ 196.374192] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 196.383539] Call Trace: [ 196.386119] dump_stack+0x1c9/0x2b4 [ 196.389737] ? dump_stack_print_info.cold.2+0x52/0x52 [ 196.394927] should_fail.cold.4+0xa/0x11 [ 196.398998] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 196.404102] ? unwind_get_return_address+0x61/0xa0 [ 196.409035] ? __save_stack_trace+0x8d/0xf0 [ 196.413374] ? save_stack+0xa9/0xd0 [ 196.417001] ? save_stack+0x43/0xd0 [ 196.420620] ? kasan_kmalloc+0xc4/0xe0 [ 196.424496] ? __kmalloc_node+0x47/0x70 [ 196.428457] ? blk_mq_alloc_tag_set+0x385/0xad0 [ 196.433111] ? loop_add+0x2be/0x9d0 [ 196.436728] ? loop_control_ioctl+0x199/0x540 [ 196.441226] ? do_vfs_ioctl+0x1de/0x1720 [ 196.445286] ? ksys_ioctl+0xa9/0xd0 [ 196.448904] ? __x64_sys_ioctl+0x73/0xb0 [ 196.452961] ? lock_acquire+0x1e4/0x540 [ 196.456919] ? fs_reclaim_acquire+0x20/0x20 [ 196.461222] ? lock_downgrade+0x8f0/0x8f0 [ 196.465367] ? check_same_owner+0x340/0x340 [ 196.469681] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 196.475209] ? node_tag_clear+0xc0/0x1c0 [ 196.479256] ? rcu_note_context_switch+0x730/0x730 [ 196.484190] __should_failslab+0x124/0x180 [ 196.488420] should_failslab+0x9/0x14 [ 196.492203] kmem_cache_alloc_node_trace+0x26f/0x770 [ 196.497294] ? kasan_unpoison_shadow+0x35/0x50 [ 196.502164] __kmalloc_node+0x33/0x70 [ 196.505960] blk_mq_alloc_tag_set+0x41c/0xad0 [ 196.510443] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 196.515977] ? blk_mq_update_nr_hw_queues+0x510/0x510 [ 196.521173] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 196.525911] loop_add+0x2be/0x9d0 [ 196.529354] ? loop_queue_rq+0x660/0x660 [ 196.533399] loop_control_ioctl+0x199/0x540 [ 196.537700] ? ksys_dup3+0x690/0x690 [ 196.541403] ? loop_add+0x9d0/0x9d0 [ 196.545030] ? kasan_check_write+0x14/0x20 [ 196.549251] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 196.554162] ? fsnotify+0xbac/0x14e0 [ 196.557873] ? vfs_write+0x2f3/0x560 [ 196.561574] ? loop_add+0x9d0/0x9d0 [ 196.565181] do_vfs_ioctl+0x1de/0x1720 [ 196.569051] ? fsnotify_first_mark+0x350/0x350 [ 196.573630] ? __fsnotify_parent+0xcc/0x420 [ 196.577937] ? ioctl_preallocate+0x300/0x300 [ 196.582324] ? __fget_light+0x2f7/0x440 [ 196.586290] ? fget_raw+0x20/0x20 [ 196.589733] ? __sb_end_write+0xac/0xe0 [ 196.593690] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 196.598430] ? security_file_ioctl+0x94/0xc0 [ 196.602820] ksys_ioctl+0xa9/0xd0 [ 196.606253] __x64_sys_ioctl+0x73/0xb0 [ 196.610125] do_syscall_64+0x1b9/0x820 [ 196.614013] ? syscall_slow_exit_work+0x500/0x500 [ 196.618854] ? syscall_return_slowpath+0x5e0/0x5e0 [ 196.623772] ? prepare_exit_to_usermode+0x291/0x3b0 [ 196.628770] ? perf_trace_sys_enter+0xb10/0xb10 [ 196.633434] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 196.638282] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 196.643451] RIP: 0033:0x455e29 [ 196.646627] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 196.665778] RSP: 002b:00007fc746a7ec68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 196.673482] RAX: ffffffffffffffda RBX: 00007fc746a7f6d4 RCX: 0000000000455e29 [ 196.680739] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000014 [ 196.687996] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 196.695254] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015 [ 196.702503] R13: 00000000004be3c0 R14: 00000000004ccd10 R15: 0000000000000002 11:10:15 executing program 3: socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x24}, 0x1}, 0x8050) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) [ 196.807522] FAULT_INJECTION: forcing a failure. [ 196.807522] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 196.819379] CPU: 0 PID: 12130 Comm: syz-executor0 Not tainted 4.18.0-rc4-next-20180711+ #4 [ 196.827786] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 196.837136] Call Trace: [ 196.839728] dump_stack+0x1c9/0x2b4 [ 196.843360] ? dump_stack_print_info.cold.2+0x52/0x52 [ 196.848559] should_fail.cold.4+0xa/0x11 [ 196.852629] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 196.857741] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 196.862762] ? ktime_get_coarse_real_ts64+0x243/0x3a0 [ 196.867960] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 196.873507] ? timespec64_trunc+0xea/0x180 [ 196.877752] ? trace_hardirqs_on+0x10/0x10 [ 196.881982] ? lock_downgrade+0x8f0/0x8f0 [ 196.886116] ? current_time+0x131/0x1b0 [ 196.890072] ? timespec64_trunc+0x180/0x180 [ 196.894392] ? do_writepages+0x1a0/0x1a0 [ 196.898475] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 196.903487] ? iget5_locked+0x190/0x190 [ 196.907470] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 196.913011] ? should_fail+0x246/0xd86 [ 196.916907] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 196.922003] ? touch_atime+0x103/0x320 [ 196.925898] __alloc_pages_nodemask+0x36e/0xdb0 [ 196.930553] ? __alloc_pages_slowpath+0x2d00/0x2d00 [ 196.935550] ? shmem_file_read_iter+0x88a/0x1090 [ 196.940290] ? ktime_get_coarse_real_ts64+0x243/0x3a0 [ 196.945464] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 196.950985] ? lock_acquire+0x1e4/0x540 [ 196.954939] ? fs_reclaim_acquire+0x20/0x20 [ 196.959241] ? lock_downgrade+0x8f0/0x8f0 [ 196.963379] ? lock_release+0xa30/0xa30 [ 196.967339] ? timespec64_trunc+0x180/0x180 [ 196.971642] ? check_same_owner+0x340/0x340 [ 196.975945] cache_grow_begin+0x91/0x710 [ 196.979989] __kmalloc+0x688/0x760 [ 196.983513] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 196.989035] ? iter_file_splice_write+0x25d/0x1010 [ 196.993951] iter_file_splice_write+0x25d/0x1010 [ 196.998686] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 197.003684] ? generic_file_splice_read+0x653/0x9a0 [ 197.008677] ? page_cache_pipe_buf_steal+0x610/0x610 [ 197.013763] ? rw_verify_area+0x118/0x360 [ 197.017890] ? page_cache_pipe_buf_steal+0x610/0x610 [ 197.022982] direct_splice_actor+0x128/0x190 [ 197.027381] splice_direct_to_actor+0x318/0x8f0 [ 197.032038] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 197.037567] ? pipe_to_sendpage+0x400/0x400 [ 197.041870] ? do_splice_to+0x190/0x190 [ 197.045824] ? security_file_permission+0x1c2/0x230 [ 197.050819] ? rw_verify_area+0x118/0x360 [ 197.054948] do_splice_direct+0x2d4/0x420 [ 197.059088] ? splice_direct_to_actor+0x8f0/0x8f0 [ 197.063912] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 197.069435] ? __sb_start_write+0x17f/0x300 [ 197.073737] do_sendfile+0x62a/0xe20 [ 197.077448] ? do_compat_pwritev64+0x1c0/0x1c0 [ 197.082017] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 197.087542] ? _copy_from_user+0xdf/0x150 [ 197.091675] __x64_sys_sendfile64+0x15d/0x250 [ 197.096152] ? __ia32_sys_sendfile+0x2a0/0x2a0 [ 197.100721] do_syscall_64+0x1b9/0x820 [ 197.104601] ? syscall_return_slowpath+0x5e0/0x5e0 [ 197.109520] ? syscall_return_slowpath+0x31d/0x5e0 [ 197.114439] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 197.119447] ? prepare_exit_to_usermode+0x291/0x3b0 [ 197.124459] ? perf_trace_sys_enter+0xb10/0xb10 [ 197.129112] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 197.133947] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 197.139124] RIP: 0033:0x455e29 11:10:15 executing program 0 (fault-call:7 fault-nth:8): sched_setaffinity(0x0, 0x8, &(0x7f0000000080)=0x1) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) r0 = memfd_create(&(0x7f0000000100)='dev ', 0x0) write(r0, &(0x7f0000000040)="16", 0x1) sendfile(r0, r0, &(0x7f0000001000), 0xffff) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) sendfile(r0, r0, &(0x7f0000000000), 0x100000) tkill(r1, 0x15) 11:10:15 executing program 1: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000340)='/dev/loop-control\x00', 0x10401, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)) setsockopt$l2tp_PPPOL2TP_SO_RECVSEQ(r0, 0x111, 0x2, 0x0, 0x4) 11:10:15 executing program 5: r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/sys/net/ipv4/vs/secure_tcp\x00', 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/syz0\x00', 0x1ff) ioctl$KDDISABIO(r0, 0x4b37) write$binfmt_script(0xffffffffffffffff, &(0x7f00000003c0)=ANY=[@ANYBLOB], 0x0) fallocate(r1, 0x2, 0x0, 0x10000101) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'vcan0\x00'}) ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000140)={@empty, 0x71}) ioctl$EVIOCGMASK(0xffffffffffffffff, 0x80104592, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)}) socket(0x10, 0x0, 0x0) ioctl$sock_ifreq(0xffffffffffffffff, 0x0, &(0x7f0000000000)={"73697430000080000000000000000002", @ifru_ivalue}) 11:10:15 executing program 4: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0x0, 0x7, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x8050) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) socket$inet_dccp(0x2, 0x6, 0x0) rmdir(&(0x7f00000001c0)='./file0\x00') 11:10:15 executing program 7 (fault-call:6 fault-nth:3): socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) 11:10:15 executing program 3: socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)=ANY=[@ANYBLOB="24d5ed1bbe00002003ff05007bbc3bc311000008000200ac14141800000000000000000000000000000000"], 0x24}, 0x1}, 0x8050) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl$ASHMEM_SET_SIZE(r0, 0x40087703, 0x4) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) fcntl$setstatus(r1, 0x4, 0x800) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) 11:10:15 executing program 2: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=ANY=[@ANYBLOB="240000001800000040000000ffdbdf25020000070003ff050011000008000200ac141418"], 0x24}, 0x1}, 0x0) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) getsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000400)={{{@in=@broadcast, @in=@multicast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@loopback}, 0x0, @in6=@loopback}}, &(0x7f00000000c0)=0xe8) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000001c0)={'vlan0\x00', r2}) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) getsockopt$inet_sctp6_SCTP_AUTO_ASCONF(r0, 0x84, 0x1e, &(0x7f0000000300), &(0x7f0000000380)=0x4) [ 197.142288] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 197.161415] RSP: 002b:00007ffaa7d3bc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 197.169103] RAX: ffffffffffffffda RBX: 00007ffaa7d3c6d4 RCX: 0000000000455e29 [ 197.176352] RDX: 0000000020000000 RSI: 0000000000000013 RDI: 0000000000000013 [ 197.183604] RBP: 000000000072bf48 R08: 0000000000000000 R09: 0000000000000000 [ 197.190862] R10: 0000000000100000 R11: 0000000000000246 R12: 0000000000000014 [ 197.198111] R13: 00000000004c1113 R14: 00000000004d1540 R15: 0000000000000007 11:10:16 executing program 5: r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/sys/net/ipv4/vs/secure_tcp\x00', 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/syz0\x00', 0x1ff) ioctl$KDDISABIO(r0, 0x4b37) write$binfmt_script(0xffffffffffffffff, &(0x7f00000003c0)=ANY=[@ANYBLOB], 0x0) fallocate(r1, 0xffe0, 0x0, 0x10000101) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'vcan0\x00'}) ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000140)={@empty, 0x71}) ioctl$EVIOCGMASK(0xffffffffffffffff, 0x80104592, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)}) socket(0x10, 0x0, 0x0) ioctl$sock_ifreq(0xffffffffffffffff, 0x0, &(0x7f0000000000)={"73697430000080000000000000000002", @ifru_ivalue}) 11:10:16 executing program 1: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000300)='cpu.stat\x00', 0x0, 0x0) socketpair(0x13, 0x3, 0x10001, &(0x7f0000000340)={0xffffffffffffffff}) ioctl$EVIOCGBITSW(r1, 0x80404525, &(0x7f0000000880)=""/189) r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) r3 = ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82) ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, r3) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1") getsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(r0, 0x84, 0x22, &(0x7f0000000440)={0x5, 0x208, 0x40, 0x2, 0x0}, &(0x7f0000000480)=0x10) setsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(r1, 0x84, 0x6, &(0x7f00000004c0)={r4, @in={{0x2, 0x4e24, @multicast2=0xe0000002}}}, 0x84) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) r5 = syz_open_dev$admmidi(&(0x7f0000000380)='/dev/admmidi#\x00', 0x6, 0x101000) ioctl$SNDRV_RAWMIDI_IOCTL_STATUS(r5, 0xc0385720, &(0x7f0000000400)={0x1, {0x0, 0x1c9c380}, 0x9, 0x5}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)) getsockopt$bt_BT_SNDMTU(r1, 0x112, 0xc, &(0x7f0000000140)=0x16, &(0x7f0000000180)=0x2) r6 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/hwrng\x00', 0x40, 0x0) ioctl$PIO_FONTX(r6, 0x4b6c, &(0x7f00000001c0)="5a27be3ad735523550369dd3782bc9ed5b99514ca7958386546388a356a60656cc7106ae8efc69110c4ae8240a010f06a5511b1173e4016574ea541853fd89baef8fd0047c810db34d6db5dd26f9bddbce9a06235cf24656efb2111d7f97bafa7bee9d3fc65d82cf918ac7ae7c332a4252a955b8b751d575dd15a26c8042beebdfbf1ee574520f41d679d42b2efd442562341accac9addcc28a4eec131116f47878d2c05f799d5fd06856b7fb18a03e04fae05b7a492f82107df3f376e20143d0a21ec01e4211cf6051830") ioctl$KVM_NMI(r5, 0xae9a) [ 197.332131] FAULT_INJECTION: forcing a failure. [ 197.332131] name failslab, interval 1, probability 0, space 0, times 0 [ 197.343708] CPU: 1 PID: 12157 Comm: syz-executor7 Not tainted 4.18.0-rc4-next-20180711+ #4 [ 197.352113] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 197.361465] Call Trace: [ 197.364060] dump_stack+0x1c9/0x2b4 [ 197.367686] ? dump_stack_print_info.cold.2+0x52/0x52 [ 197.372875] ? trace_hardirqs_on+0xd/0x10 [ 197.377037] should_fail.cold.4+0xa/0x11 [ 197.381105] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 197.386208] ? lock_repin_lock+0x430/0x430 [ 197.390449] ? kasan_check_write+0x14/0x20 [ 197.394692] ? __schedule+0x884/0x1ed0 [ 197.398588] ? __sched_text_start+0x8/0x8 [ 197.402744] ? lock_acquire+0x1e4/0x540 [ 197.406725] ? fs_reclaim_acquire+0x20/0x20 [ 197.411047] ? lock_downgrade+0x8f0/0x8f0 [ 197.415196] ? loop_add+0x2be/0x9d0 [ 197.418825] ? check_same_owner+0x340/0x340 [ 197.423148] ? fs_reclaim_acquire+0x20/0x20 [ 197.427472] __should_failslab+0x124/0x180 [ 197.431711] should_failslab+0x9/0x14 [ 197.435861] kmem_cache_alloc_node_trace+0x26f/0x770 [ 197.440970] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 197.446505] ? find_next_bit+0x104/0x130 [ 197.450569] blk_mq_init_tags+0x79/0x2b0 [ 197.454635] blk_mq_alloc_rq_map+0x9f/0x220 [ 197.458958] __blk_mq_alloc_rq_map+0xb1/0x2e0 [ 197.463457] blk_mq_alloc_tag_set+0x627/0xad0 [ 197.467960] ? blk_mq_update_nr_hw_queues+0x510/0x510 [ 197.473158] loop_add+0x2be/0x9d0 [ 197.476609] ? loop_lookup+0x105/0x230 [ 197.480496] ? loop_queue_rq+0x660/0x660 [ 197.484564] loop_control_ioctl+0x199/0x540 [ 197.488891] ? ksys_dup3+0x690/0x690 [ 197.492608] ? loop_add+0x9d0/0x9d0 [ 197.496238] ? kasan_check_write+0x14/0x20 [ 197.500477] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 197.505404] ? fsnotify+0xbac/0x14e0 [ 197.509117] ? vfs_write+0x2f3/0x560 [ 197.512831] ? loop_add+0x9d0/0x9d0 [ 197.516456] do_vfs_ioctl+0x1de/0x1720 [ 197.520342] ? ioctl_preallocate+0x300/0x300 [ 197.524748] ? __fget_light+0x2f7/0x440 [ 197.528718] ? fget_raw+0x20/0x20 [ 197.532166] ? __f_unlock_pos+0x19/0x20 [ 197.536135] ? __f_unlock_pos+0x19/0x20 [ 197.540109] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 197.545645] ? fput+0x130/0x1a0 [ 197.548920] ? ksys_write+0x1ae/0x260 [ 197.552717] ? security_file_ioctl+0x94/0xc0 [ 197.557126] ksys_ioctl+0xa9/0xd0 [ 197.560578] __x64_sys_ioctl+0x73/0xb0 [ 197.564464] do_syscall_64+0x1b9/0x820 [ 197.568352] ? syscall_slow_exit_work+0x500/0x500 [ 197.573198] ? syscall_return_slowpath+0x5e0/0x5e0 [ 197.578123] ? syscall_return_slowpath+0x31d/0x5e0 [ 197.583052] ? prepare_exit_to_usermode+0x291/0x3b0 [ 197.588066] ? perf_trace_sys_enter+0xb10/0xb10 [ 197.592733] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 197.597578] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 197.602760] RIP: 0033:0x455e29 [ 197.605942] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 197.625212] RSP: 002b:00007fc746a7ec68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 197.632918] RAX: ffffffffffffffda RBX: 00007fc746a7f6d4 RCX: 0000000000455e29 [ 197.640180] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000014 [ 197.647447] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 197.654708] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015 [ 197.661969] R13: 00000000004be3c0 R14: 00000000004ccd10 R15: 0000000000000003 11:10:16 executing program 6: r0 = getpid() sched_setattr(r0, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x0, 0x3}, 0x0) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x0, 0x0) poll(&(0x7f00000001c0), 0x0, 0x80000000) ioctl$TCSETS(r1, 0x40045431, &(0x7f00003b9fdc)) ioctl$TIOCPKT(r1, 0x5420, &(0x7f0000000080)=0x61) read(r1, &(0x7f0000000040)=""/11, 0xffed) r2 = syz_open_pts(r1, 0x0) ioctl$TCXONC(r2, 0x5413, 0x0) [ 197.699886] blk-mq: reduced tag depth (128 -> 64) 11:10:16 executing program 7 (fault-call:6 fault-nth:4): socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) 11:10:16 executing program 3: socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=ANY=[@ANYBLOB="240000001800000000000000e55bdf050200b0000003ff050011000008000200ac141418"], 0x24}, 0x1}, 0x8050) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) 11:10:16 executing program 4: r0 = socket(0x0, 0x0, 0x9) r1 = fcntl$getown(r0, 0x9) perf_event_open(&(0x7f0000000440)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffa62}, r1, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0x0, 0x7, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x8050) r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) 11:10:16 executing program 2: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f00000000c0)=ANY=[@ANYBLOB="2400000018ac15ad5c838a9a7d71123200000000000000ff8f0cc35adb2002cf48ca14683e4fcfc5ebd76c7ed72502"], 0x24}, 0x1}, 0x0) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) getsockopt$inet6_IPV6_IPSEC_POLICY(r0, 0x29, 0x22, &(0x7f0000005700)={{{@in6=@ipv4, @in6=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@multicast2}, 0x0, @in6=@local}}, &(0x7f00000001c0)=0xe8) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000005840)={"697052767469300000000000b0e7fbdd", r2}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) 11:10:16 executing program 2: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=ANY=[@ANYBLOB="24000000ac85c0341e08ec1800000000d80000ffdbdf25020000070003ff050011000008"], 0x24}, 0x1}, 0x0) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) r2 = syz_open_dev$sndpcmc(&(0x7f00000001c0)='/dev/snd/pcmC#D#c\x00', 0x2150, 0x8180) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f00000000c0)='mime_typeselinuxcgroupbdev-\x00', r2}, 0x10) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) 11:10:16 executing program 3: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0xb0, 0x0, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x8050) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) setsockopt$llc_int(r0, 0x10c, 0xd, &(0x7f0000000380)=0x8, 0x4) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f0000000440)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0x80, 0xfffffffffffffffe) [ 197.928173] FAULT_INJECTION: forcing a failure. [ 197.928173] name failslab, interval 1, probability 0, space 0, times 0 [ 197.940019] CPU: 0 PID: 12193 Comm: syz-executor7 Not tainted 4.18.0-rc4-next-20180711+ #4 [ 197.948428] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 197.957786] Call Trace: [ 197.960383] dump_stack+0x1c9/0x2b4 [ 197.964021] ? dump_stack_print_info.cold.2+0x52/0x52 [ 197.969219] ? should_fail+0x235/0xd86 [ 197.973118] should_fail.cold.4+0xa/0x11 [ 197.977181] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 197.982284] ? kasan_check_read+0x11/0x20 [ 197.986420] ? rcu_is_watching+0x8c/0x150 [ 197.990568] ? rcu_cleanup_dead_rnp+0x200/0x200 [ 197.995223] ? is_bpf_text_address+0xd7/0x170 [ 197.999716] ? kernel_text_address+0x79/0xf0 [ 198.004129] ? __kernel_text_address+0xd/0x40 [ 198.008622] ? unwind_get_return_address+0x61/0xa0 [ 198.013542] ? lock_acquire+0x1e4/0x540 [ 198.017532] ? fs_reclaim_acquire+0x20/0x20 [ 198.021855] ? lock_downgrade+0x8f0/0x8f0 [ 198.025999] ? check_same_owner+0x340/0x340 [ 198.030322] ? kasan_kmalloc+0xc4/0xe0 [ 198.034202] ? kmem_cache_alloc_node_trace+0x150/0x770 [ 198.039464] ? blk_mq_init_tags+0x79/0x2b0 [ 198.043696] ? rcu_note_context_switch+0x730/0x730 [ 198.048623] ? loop_add+0x2be/0x9d0 [ 198.052248] ? loop_control_ioctl+0x199/0x540 [ 198.056728] __should_failslab+0x124/0x180 [ 198.060957] should_failslab+0x9/0x14 [ 198.064744] kmem_cache_alloc_node_trace+0x26f/0x770 [ 198.069852] __kmalloc_node+0x33/0x70 [ 198.073637] sbitmap_init_node+0x290/0x450 [ 198.077858] sbitmap_queue_init_node+0xb2/0x850 [ 198.082536] ? sbitmap_init_node+0x450/0x450 [ 198.086940] ? kmem_cache_alloc_node_trace+0x302/0x770 [ 198.092209] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 198.097740] ? find_next_bit+0x104/0x130 [ 198.100605] FAULT_INJECTION: forcing a failure. [ 198.100605] name failslab, interval 1, probability 0, space 0, times 0 [ 198.101807] blk_mq_init_tags+0x11b/0x2b0 [ 198.101828] blk_mq_alloc_rq_map+0x9f/0x220 [ 198.101849] __blk_mq_alloc_rq_map+0xb1/0x2e0 [ 198.101878] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 198.131290] blk_mq_alloc_tag_set+0x627/0xad0 [ 198.135778] ? blk_mq_update_nr_hw_queues+0x510/0x510 [ 198.140957] loop_add+0x2be/0x9d0 [ 198.144396] ? loop_lookup+0x105/0x230 [ 198.148279] ? loop_queue_rq+0x660/0x660 [ 198.152338] loop_control_ioctl+0x199/0x540 [ 198.156645] ? ksys_dup3+0x690/0x690 [ 198.160348] ? loop_add+0x9d0/0x9d0 [ 198.163969] ? kasan_check_write+0x14/0x20 [ 198.168192] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 198.173110] ? fsnotify+0xbac/0x14e0 [ 198.176829] ? vfs_write+0x2f3/0x560 [ 198.180619] ? loop_add+0x9d0/0x9d0 [ 198.184231] do_vfs_ioctl+0x1de/0x1720 [ 198.188104] ? fsnotify_first_mark+0x350/0x350 [ 198.192670] ? __fsnotify_parent+0xcc/0x420 [ 198.196979] ? ioctl_preallocate+0x300/0x300 [ 198.201374] ? __fget_light+0x2f7/0x440 [ 198.205336] ? fget_raw+0x20/0x20 [ 198.208781] ? __sb_end_write+0xac/0xe0 [ 198.212747] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 198.218266] ? fput+0x130/0x1a0 [ 198.221549] ? ksys_write+0x1ae/0x260 [ 198.225343] ? security_file_ioctl+0x94/0xc0 [ 198.229737] ksys_ioctl+0xa9/0xd0 [ 198.233201] __x64_sys_ioctl+0x73/0xb0 [ 198.237078] do_syscall_64+0x1b9/0x820 [ 198.240953] ? syscall_slow_exit_work+0x500/0x500 [ 198.245785] ? syscall_return_slowpath+0x5e0/0x5e0 [ 198.250704] ? prepare_exit_to_usermode+0x291/0x3b0 [ 198.255708] ? perf_trace_sys_enter+0xb10/0xb10 [ 198.260366] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 198.265214] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 198.270388] RIP: 0033:0x455e29 [ 198.273563] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 198.292810] RSP: 002b:00007fc746a7ec68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 198.300505] RAX: ffffffffffffffda RBX: 00007fc746a7f6d4 RCX: 0000000000455e29 [ 198.307762] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000014 [ 198.315018] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 198.322272] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015 [ 198.329535] R13: 00000000004be3c0 R14: 00000000004ccd10 R15: 0000000000000004 [ 198.336810] CPU: 1 PID: 12226 Comm: syz-executor0 Not tainted 4.18.0-rc4-next-20180711+ #4 [ 198.345207] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 198.354540] Call Trace: [ 198.357113] dump_stack+0x1c9/0x2b4 [ 198.360735] ? dump_stack_print_info.cold.2+0x52/0x52 [ 198.365908] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 198.370919] ? atime_needs_update+0x507/0x710 [ 198.375402] should_fail.cold.4+0xa/0x11 [ 198.379460] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 198.384542] ? touch_atime+0x103/0x320 [ 198.388414] ? lock_release+0xa30/0xa30 [ 198.392375] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 198.397897] ? shmem_file_read_iter+0x88a/0x1090 [ 198.402638] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 198.407640] ? ktime_get_coarse_real_ts64+0x243/0x3a0 [ 198.412817] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 198.418337] ? lock_acquire+0x1e4/0x540 [ 198.422307] ? fs_reclaim_acquire+0x20/0x20 [ 198.426609] ? lock_downgrade+0x8f0/0x8f0 [ 198.430743] ? timespec64_trunc+0x180/0x180 [ 198.435047] ? check_same_owner+0x340/0x340 [ 198.439351] ? debug_check_no_obj_freed+0x30b/0x595 [ 198.444348] ? rcu_note_context_switch+0x730/0x730 [ 198.449259] __should_failslab+0x124/0x180 [ 198.453502] should_failslab+0x9/0x14 [ 198.457285] __kmalloc+0x2c8/0x760 [ 198.460817] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 198.466336] ? touch_atime+0x103/0x320 [ 198.470205] ? iter_file_splice_write+0x25d/0x1010 [ 198.475117] iter_file_splice_write+0x25d/0x1010 [ 198.479857] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 198.484860] ? generic_file_splice_read+0x653/0x9a0 [ 198.489858] ? page_cache_pipe_buf_steal+0x610/0x610 [ 198.494948] ? rw_verify_area+0x118/0x360 [ 198.499083] ? page_cache_pipe_buf_steal+0x610/0x610 [ 198.504170] direct_splice_actor+0x128/0x190 [ 198.508563] splice_direct_to_actor+0x318/0x8f0 [ 198.513217] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 198.518755] ? pipe_to_sendpage+0x400/0x400 [ 198.523063] ? do_splice_to+0x190/0x190 [ 198.527023] ? security_file_permission+0x1c2/0x230 [ 198.532022] ? rw_verify_area+0x118/0x360 [ 198.536154] do_splice_direct+0x2d4/0x420 [ 198.540284] ? splice_direct_to_actor+0x8f0/0x8f0 [ 198.545112] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 198.550631] ? __sb_start_write+0x17f/0x300 [ 198.554935] do_sendfile+0x62a/0xe20 [ 198.558632] ? do_compat_pwritev64+0x1c0/0x1c0 [ 198.563202] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 198.568720] ? _copy_from_user+0xdf/0x150 [ 198.572860] __x64_sys_sendfile64+0x15d/0x250 [ 198.577339] ? __ia32_sys_sendfile+0x2a0/0x2a0 [ 198.581908] do_syscall_64+0x1b9/0x820 [ 198.585776] ? finish_task_switch+0x1d3/0x870 [ 198.590255] ? syscall_return_slowpath+0x5e0/0x5e0 [ 198.595170] ? syscall_return_slowpath+0x31d/0x5e0 [ 198.600082] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 198.605081] ? prepare_exit_to_usermode+0x291/0x3b0 [ 198.610080] ? perf_trace_sys_enter+0xb10/0xb10 [ 198.614730] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 198.619571] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 198.624739] RIP: 0033:0x455e29 [ 198.627908] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 198.647081] RSP: 002b:00007ffaa7d3bc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 198.655552] RAX: ffffffffffffffda RBX: 00007ffaa7d3c6d4 RCX: 0000000000455e29 [ 198.662803] RDX: 0000000020000000 RSI: 0000000000000013 RDI: 0000000000000013 [ 198.670051] RBP: 000000000072bf48 R08: 0000000000000000 R09: 0000000000000000 [ 198.677301] R10: 0000000000100000 R11: 0000000000000246 R12: 0000000000000014 [ 198.684550] R13: 00000000004c1113 R14: 00000000004d1540 R15: 0000000000000008 [ 198.694900] blk-mq: reduced tag depth (128 -> 64) 11:10:17 executing program 0 (fault-call:7 fault-nth:9): sched_setaffinity(0x0, 0x8, &(0x7f0000000080)=0x1) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) r0 = memfd_create(&(0x7f0000000100)='dev ', 0x0) write(r0, &(0x7f0000000040)="16", 0x1) sendfile(r0, r0, &(0x7f0000001000), 0xffff) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) sendfile(r0, r0, &(0x7f0000000000), 0x100000) tkill(r1, 0x15) 11:10:17 executing program 1: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)) r2 = openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x400000, 0x0) ioctl$SNDRV_RAWMIDI_IOCTL_PVERSION(r2, 0x80045700, &(0x7f00000001c0)) 11:10:17 executing program 5: r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/sys/net/ipv4/vs/secure_tcp\x00', 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/syz0\x00', 0x1ff) ioctl$KDDISABIO(r0, 0x4b37) write$binfmt_script(0xffffffffffffffff, &(0x7f00000003c0)=ANY=[@ANYBLOB], 0x0) fallocate(r1, 0x1, 0x800b, 0x10000101) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'vcan0\x00'}) ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000140)={@empty, 0x71}) ioctl$EVIOCGMASK(0xffffffffffffffff, 0x80104592, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)}) socket(0x10, 0x0, 0x0) ioctl$sock_ifreq(0xffffffffffffffff, 0x0, &(0x7f0000000000)={"73697430000080000000000000000002", @ifru_ivalue}) 11:10:17 executing program 4: r0 = socket(0x0, 0x0, 0x0) r1 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(r2, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=ANY=[@ANYBLOB="240000001800000000000000890bd473dd46a43aeedeffdbdf25020000070003ff050011"], 0x24}, 0x1}, 0x8050) r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_GET_FREE(r3, 0x4c82) r4 = ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82) ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, r4) ioctl(r1, 0x0, &(0x7f0000000380)="29ba19c56ea6") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) 11:10:17 executing program 2: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0x0, 0x7, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x0) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX(r0, 0x84, 0x6e, &(0x7f0000000400)=[@in={0x2, 0x4e23, @broadcast=0xffffffff}, @in={0x2, 0x4e24, @broadcast=0xffffffff}, @in={0x2, 0x4e24, @local={0xac, 0x14, 0x14, 0xaa}}, @in6={0xa, 0x4e24, 0x8, @empty, 0x4}, @in6={0xa, 0x4e20, 0x9, @mcast2={0xff, 0x2, [], 0x1}, 0x10000}, @in6={0xa, 0x4e20, 0x8, @empty, 0x53}, @in6={0xa, 0x4e22, 0x6, @mcast2={0xff, 0x2, [], 0x1}, 0x2}, @in6={0xa, 0x4e20, 0x5, @loopback={0x0, 0x1}, 0x1}], 0xbc) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) 11:10:17 executing program 3: socket(0x0, 0x0, 0x0) socketpair$inet6_udplite(0xa, 0x2, 0x88, &(0x7f0000000640)) r0 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=ANY=[@ANYBLOB="240000001800000000000000ff00000000305eb002db2331fa5500b0000003ff05001100"], 0x24}, 0x1}, 0x8050) r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0) mount$bpf(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f0000000540)='bpf\x00', 0x42, &(0x7f0000000580)={[{@mode={'mode', 0x3d, 0x6370}, 0x2c}, {@mode={'mode', 0x3d, 0xfffffffffffff001}, 0x2c}, {@mode={'mode', 0x3d, 0x3}, 0x2c}, {@mode={'mode', 0x3d, 0x7}, 0x2c}]}) ioctl(r0, 0x0, &(0x7f0000000500)='\x00\x00\x00\x00\x00\x00') ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) ioctl$SNDRV_SEQ_IOCTL_DELETE_QUEUE(r3, 0x408c5333, &(0x7f0000000440)={0x100000000, 0x5, 0x10001, 'queue0\x00', 0xc513}) openat$full(0xffffffffffffff9c, &(0x7f0000000600)='/dev/full\x00', 0x1, 0x0) prctl$intptr(0x17, 0x83cb) 11:10:17 executing program 7 (fault-call:6 fault-nth:5): socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) [ 198.939480] FAULT_INJECTION: forcing a failure. [ 198.939480] name failslab, interval 1, probability 0, space 0, times 0 [ 198.950981] CPU: 1 PID: 12253 Comm: syz-executor7 Not tainted 4.18.0-rc4-next-20180711+ #4 [ 198.959384] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 198.968732] Call Trace: [ 198.971331] dump_stack+0x1c9/0x2b4 [ 198.974969] ? dump_stack_print_info.cold.2+0x52/0x52 [ 198.980165] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 198.984928] should_fail.cold.4+0xa/0x11 [ 198.988995] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 198.994102] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 198.999119] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 199.004133] ? find_next_bit+0x104/0x130 [ 199.008199] ? cpumask_next+0x24/0x30 [ 199.012002] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 199.017538] ? pcpu_alloc+0x190/0x13a0 [ 199.021428] ? blk_mq_init_tags+0x11b/0x2b0 [ 199.025760] ? pcpu_balance_workfn+0x1700/0x1700 [ 199.030522] ? lock_acquire+0x1e4/0x540 [ 199.034493] ? fs_reclaim_acquire+0x20/0x20 [ 199.038819] ? lock_downgrade+0x8f0/0x8f0 [ 199.042975] ? kasan_unpoison_shadow+0x35/0x50 [ 199.047555] ? check_same_owner+0x340/0x340 [ 199.051876] ? rcu_note_context_switch+0x730/0x730 [ 199.056811] ? kmem_cache_alloc_node_trace+0x302/0x770 [ 199.062090] __should_failslab+0x124/0x180 [ 199.066330] should_failslab+0x9/0x14 [ 199.070130] kmem_cache_alloc_node_trace+0x26f/0x770 [ 199.075235] ? __kmalloc_node+0x47/0x70 [ 199.079209] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 199.084224] ? find_next_bit+0x104/0x130 [ 199.088289] sbitmap_queue_init_node+0x330/0x850 [ 199.093047] ? sbitmap_init_node+0x450/0x450 [ 199.097458] ? kmem_cache_alloc_node_trace+0x302/0x770 [ 199.102748] blk_mq_init_tags+0x11b/0x2b0 [ 199.106904] blk_mq_alloc_rq_map+0x9f/0x220 [ 199.111228] __blk_mq_alloc_rq_map+0xb1/0x2e0 [ 199.115728] blk_mq_alloc_tag_set+0x627/0xad0 [ 199.120241] ? blk_mq_update_nr_hw_queues+0x510/0x510 [ 199.125429] ? loop_add+0x14d/0x9d0 [ 199.129059] loop_add+0x2be/0x9d0 [ 199.132507] ? loop_lookup+0x105/0x230 [ 199.136393] ? loop_queue_rq+0x660/0x660 [ 199.140457] loop_control_ioctl+0x199/0x540 [ 199.144775] ? ksys_dup3+0x690/0x690 [ 199.148482] ? loop_add+0x9d0/0x9d0 [ 199.152108] ? kasan_check_write+0x14/0x20 [ 199.156338] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 199.161263] ? fsnotify+0xbac/0x14e0 [ 199.164972] ? vfs_write+0x2f3/0x560 [ 199.168687] ? loop_add+0x9d0/0x9d0 [ 199.172312] do_vfs_ioctl+0x1de/0x1720 [ 199.176197] ? ioctl_preallocate+0x300/0x300 [ 199.180600] ? __fget_light+0x2f7/0x440 [ 199.184570] ? __schedule+0x1ed0/0x1ed0 [ 199.188540] ? fget_raw+0x20/0x20 [ 199.191988] ? retint_kernel+0x10/0x10 [ 199.195876] ? exit_to_usermode_loop+0xb5/0x380 [ 199.200545] ? security_file_ioctl+0x94/0xc0 [ 199.204950] ksys_ioctl+0xa9/0xd0 [ 199.208401] __x64_sys_ioctl+0x73/0xb0 [ 199.212294] do_syscall_64+0x1b9/0x820 [ 199.216181] ? syscall_slow_exit_work+0x500/0x500 [ 199.221023] ? syscall_return_slowpath+0x5e0/0x5e0 [ 199.225951] ? syscall_return_slowpath+0x31d/0x5e0 [ 199.230883] ? prepare_exit_to_usermode+0x291/0x3b0 [ 199.235922] ? perf_trace_sys_enter+0xb10/0xb10 [ 199.240591] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 199.245435] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 199.250618] RIP: 0033:0x455e29 [ 199.253795] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 199.273059] RSP: 002b:00007fc746a7ec68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 199.280767] RAX: ffffffffffffffda RBX: 00007fc746a7f6d4 RCX: 0000000000455e29 11:10:18 executing program 6: r0 = getpid() sched_setattr(r0, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x0, 0x3}, 0x0) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x0, 0x0) poll(&(0x7f00000001c0), 0x0, 0x80000000) ioctl$TCSETS(r1, 0x40045431, &(0x7f00003b9fdc)) ioctl$TIOCPKT(r1, 0x5420, &(0x7f0000000080)=0x61) read(r1, &(0x7f0000000040)=""/11, 0xffed) r2 = syz_open_pts(r1, 0x0) ioctl$TCXONC(r2, 0x540f, 0x0) [ 199.288031] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000014 [ 199.295297] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 199.302562] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015 [ 199.309825] R13: 00000000004be3c0 R14: 00000000004ccd10 R15: 0000000000000005 [ 199.334613] blk-mq: reduced tag depth (128 -> 64) 11:10:18 executing program 7 (fault-call:6 fault-nth:6): socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) 11:10:18 executing program 2: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) setsockopt$inet_sctp_SCTP_MAX_BURST(r0, 0x84, 0x14, &(0x7f00000001c0)=@int=0xfff, 0x4) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000480)=ANY=[@ANYBLOB="240000001800000000000000ffdbdf25020000070003ff050011000008000200ac14141808716664b1b128d4ce5f8f69abe4f9070f55de6e959e9bd8815c200c90816041346f25c1e1f247f7c526aa840987492736f6da30a06ac40954d5a2c2d87b7b5c2a09684b516e17323ab42dc6ff6b9285a02af3062faab9a5bbc29e5839cc4cb8f2e42f287e289c95bfe69660fae5b9d48354cf96a063"], 0x24}, 0x1}, 0x0) ioctl$sock_SIOCGPGRP(r0, 0x8904, &(0x7f0000000240)=0x0) ioctl$sock_FIOSETOWN(r0, 0x8901, &(0x7f0000000300)=r1) r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f") r3 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcs\x00', 0x100, 0x0) ioctl$SNDRV_TIMER_IOCTL_GSTATUS(r3, 0xc0505405, &(0x7f0000000400)={{0x0, 0x3, 0x7fffffff, 0x0, 0x3}, 0x5, 0xffffffff, 0x80}) ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) 11:10:18 executing program 1: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1") setsockopt$inet_opts(r0, 0x0, 0x4, &(0x7f00000000c0)="a688a3bcb0a5cc9f15735614b6d30d4610b31ce6e658e4d080047e428b657b3eb0a38f0541a28f5b5cf107fe0df7284c04d82ebf", 0x34) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)) setsockopt$inet_sctp6_SCTP_AUTO_ASCONF(r0, 0x84, 0x1e, &(0x7f00000001c0)=0x5, 0x4) 11:10:18 executing program 3: socket(0x0, 0x0, 0x0) r0 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=ANY=[@ANYBLOB="240000001800000000000000ffdbdf250200b0005f61ff050011000008000200ac141418"], 0x24}, 0x1}, 0x8050) r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0) ioctl(r0, 0x0, &(0x7f0000000380)="295ee1311f16") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) ioctl$FS_IOC_SETFSLABEL(r1, 0x41009432, &(0x7f0000000440)="a981ace1996a31e0714bca7be0472ca325ca40a908cd09f1269d7e5643f25ec4d636329d649d5214412d03a79d3f79ea0d83412794a92082fa8308fa9371e39c7aad32e5cc1f58cc95c31a59cd5f9d8291af7141218a7c60e5d0c683371cce405b0d6400ba8ab2ba78bfbd51f0855ad7b938f20c3d000b2a567f4d263b86e1d51942f597a36461c924655e237117b0c31f5487f9aaffe5ea1186f2117ea04f8443be9e038fd8d7ce3d1003ae046f5be36b45031d11f08196d015b015f025dce0960600c66e27871d438ce033337308382f8dd5a620f4e6c0f28718e0e84c423d0a11560b2dc6ecc8907888b101cf994e601427fe236618b900") fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) 11:10:18 executing program 5: r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/sys/net/ipv4/vs/secure_tcp\x00', 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/syz0\x00', 0x1ff) ioctl$KDDISABIO(r0, 0x4b37) write$binfmt_script(0xffffffffffffffff, &(0x7f00000003c0)=ANY=[@ANYBLOB], 0x0) fallocate(r1, 0x1, 0x78060000000000, 0x10000101) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'vcan0\x00'}) ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000140)={@empty, 0x71}) ioctl$EVIOCGMASK(0xffffffffffffffff, 0x80104592, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)}) socket(0x10, 0x0, 0x0) ioctl$sock_ifreq(0xffffffffffffffff, 0x0, &(0x7f0000000000)={"73697430000080000000000000000002", @ifru_ivalue}) 11:10:18 executing program 4: socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0x0, 0x7, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x8050) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) [ 199.555523] FAULT_INJECTION: forcing a failure. [ 199.555523] name failslab, interval 1, probability 0, space 0, times 0 [ 199.566990] CPU: 0 PID: 12284 Comm: syz-executor7 Not tainted 4.18.0-rc4-next-20180711+ #4 [ 199.575393] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 199.584741] Call Trace: [ 199.587337] dump_stack+0x1c9/0x2b4 [ 199.590979] ? dump_stack_print_info.cold.2+0x52/0x52 [ 199.596180] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 199.600953] should_fail.cold.4+0xa/0x11 [ 199.605031] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 199.610404] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 199.615416] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 199.620425] ? find_next_bit+0x104/0x130 [ 199.624495] ? cpumask_next+0x24/0x30 [ 199.624520] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 199.633827] ? pcpu_alloc+0x190/0x13a0 [ 199.637699] ? loop_add+0x2be/0x9d0 [ 199.641315] ? pcpu_balance_workfn+0x1700/0x1700 [ 199.646070] ? lock_acquire+0x1e4/0x540 [ 199.650045] ? fs_reclaim_acquire+0x20/0x20 [ 199.654379] ? lock_downgrade+0x8f0/0x8f0 [ 199.658512] ? blk_mq_init_tags+0x79/0x2b0 [ 199.662740] ? kasan_unpoison_shadow+0x35/0x50 [ 199.667309] ? check_same_owner+0x340/0x340 [ 199.671629] ? rcu_note_context_switch+0x730/0x730 [ 199.676555] ? __lockdep_init_map+0x105/0x590 [ 199.681048] __should_failslab+0x124/0x180 [ 199.685292] should_failslab+0x9/0x14 [ 199.689090] kmem_cache_alloc_node_trace+0x26f/0x770 [ 199.694192] ? init_wait_entry+0x1c0/0x1c0 [ 199.698411] sbitmap_queue_init_node+0x330/0x850 [ 199.703160] ? sbitmap_init_node+0x450/0x450 [ 199.707566] ? kmem_cache_alloc_node_trace+0x302/0x770 [ 199.712829] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 199.718349] ? find_next_bit+0x104/0x130 [ 199.722401] blk_mq_init_tags+0x17c/0x2b0 [ 199.726555] blk_mq_alloc_rq_map+0x9f/0x220 [ 199.730862] __blk_mq_alloc_rq_map+0xb1/0x2e0 [ 199.735348] blk_mq_alloc_tag_set+0x627/0xad0 [ 199.739836] ? blk_mq_update_nr_hw_queues+0x510/0x510 [ 199.745022] loop_add+0x2be/0x9d0 [ 199.748484] ? loop_queue_rq+0x660/0x660 [ 199.752541] ? loop_control_ioctl+0x17c/0x540 [ 199.757038] loop_control_ioctl+0x199/0x540 [ 199.761361] ? loop_add+0x9d0/0x9d0 [ 199.764981] ? retint_kernel+0x10/0x10 [ 199.768848] ? loop_add+0x9d0/0x9d0 [ 199.772471] ? loop_add+0x9d0/0x9d0 [ 199.776093] do_vfs_ioctl+0x1de/0x1720 [ 199.779978] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 199.784730] ? ioctl_preallocate+0x300/0x300 [ 199.789132] ? __fget_light+0x2f7/0x440 [ 199.793092] ? fget_raw+0x20/0x20 [ 199.796547] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 199.802078] ? fput+0x130/0x1a0 [ 199.805352] ? ksys_write+0x1ae/0x260 [ 199.809152] ? security_file_ioctl+0x94/0xc0 [ 199.813560] ksys_ioctl+0xa9/0xd0 [ 199.817016] __x64_sys_ioctl+0x73/0xb0 [ 199.820902] do_syscall_64+0x1b9/0x820 [ 199.824776] ? syscall_slow_exit_work+0x500/0x500 [ 199.829600] ? syscall_return_slowpath+0x5e0/0x5e0 [ 199.834511] ? syscall_return_slowpath+0x31d/0x5e0 [ 199.839434] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 199.844956] ? prepare_exit_to_usermode+0x291/0x3b0 [ 199.849953] ? perf_trace_sys_enter+0xb10/0xb10 [ 199.854612] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 199.859450] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 199.864619] RIP: 0033:0x455e29 [ 199.867784] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 199.886903] RSP: 002b:00007fc746a7ec68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 199.894608] RAX: ffffffffffffffda RBX: 00007fc746a7f6d4 RCX: 0000000000455e29 [ 199.901859] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000014 [ 199.909115] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 199.916376] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015 [ 199.923632] R13: 00000000004be3c0 R14: 00000000004ccd10 R15: 0000000000000006 [ 199.933651] blk-mq: reduced tag depth (128 -> 64) [ 199.942774] FAULT_INJECTION: forcing a failure. [ 199.942774] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 199.954658] CPU: 0 PID: 12304 Comm: syz-executor0 Not tainted 4.18.0-rc4-next-20180711+ #4 [ 199.963055] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 199.972402] Call Trace: [ 199.974989] dump_stack+0x1c9/0x2b4 [ 199.978613] ? dump_stack_print_info.cold.2+0x52/0x52 [ 199.983806] ? perf_event_update_userpage+0xd30/0xd30 [ 199.988997] should_fail.cold.4+0xa/0x11 [ 199.993057] ? __perf_event_task_sched_in+0x24f/0xbb0 [ 199.998251] ? fault_create_debugfs_attr+0x1f0/0x1f0 11:10:18 executing program 7 (fault-call:6 fault-nth:7): socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) 11:10:18 executing program 5: r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/sys/net/ipv4/vs/secure_tcp\x00', 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/syz0\x00', 0x1ff) ioctl$KDDISABIO(r0, 0x4b37) write$binfmt_script(0xffffffffffffffff, &(0x7f00000003c0)=ANY=[@ANYBLOB], 0x0) fallocate(r1, 0x1, 0xa80000, 0x10000101) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'vcan0\x00'}) ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000140)={@empty, 0x71}) ioctl$EVIOCGMASK(0xffffffffffffffff, 0x80104592, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)}) socket(0x10, 0x0, 0x0) ioctl$sock_ifreq(0xffffffffffffffff, 0x0, &(0x7f0000000000)={"73697430000080000000000000000002", @ifru_ivalue}) [ 200.003354] ? perf_sched_cb_inc+0x2e0/0x2e0 [ 200.007765] ? lock_acquire+0x1e4/0x540 [ 200.011741] ? lock_release+0xa30/0xa30 [ 200.015717] ? __unlock_page_memcg+0x53/0x100 [ 200.020215] ? lock_downgrade+0x8f0/0x8f0 [ 200.024364] ? do_raw_spin_trylock+0x1c0/0x1c0 [ 200.028947] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 200.034485] ? PageHuge+0x183/0x2b0 [ 200.038109] ? rcu_read_lock+0x30/0x70 [ 200.041998] ? vma_kernel_pagesize+0x90/0x90 [ 200.046419] ? rcu_read_lock+0x70/0x70 [ 200.050303] __alloc_pages_nodemask+0x36e/0xdb0 [ 200.054956] ? kasan_check_write+0x14/0x20 [ 200.059178] ? __alloc_pages_slowpath+0x2d00/0x2d00 [ 200.064183] ? __schedule+0x884/0x1ed0 [ 200.068057] ? find_next_bit+0x104/0x130 [ 200.072106] ? __sched_text_start+0x8/0x8 [ 200.076239] ? lock_acquire+0x1e4/0x540 [ 200.080205] ? unmap_page_range+0x9a6/0x2220 [ 200.084593] ? lock_downgrade+0x8f0/0x8f0 [ 200.088734] ? lock_release+0xa30/0xa30 [ 200.092699] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 200.098224] alloc_pages_current+0x10c/0x210 [ 200.102622] __get_free_pages+0xc/0x40 [ 200.106494] __tlb_remove_page_size+0x2e5/0x500 [ 200.111144] unmap_page_range+0x105c/0x2220 [ 200.115456] ? vm_normal_page_pmd+0x4d0/0x4d0 [ 200.119935] ? kasan_check_read+0x11/0x20 [ 200.124073] ? rcu_is_watching+0x8c/0x150 [ 200.128207] ? rcu_cleanup_dead_rnp+0x200/0x200 [ 200.132868] ? is_bpf_text_address+0xd7/0x170 [ 200.137365] ? kernel_text_address+0x79/0xf0 [ 200.141763] ? __kernel_text_address+0xd/0x40 [ 200.146247] ? unwind_get_return_address+0x61/0xa0 [ 200.151165] ? save_stack+0xa9/0xd0 [ 200.154774] ? __kasan_slab_free+0x11a/0x170 [ 200.159251] ? kasan_slab_free+0xe/0x10 [ 200.163209] ? kmem_cache_free+0x86/0x2d0 [ 200.167357] ? __khugepaged_exit+0x429/0x6a0 [ 200.171753] ? mmput+0x4e9/0x620 [ 200.175097] ? do_exit+0xea9/0x2750 [ 200.178716] ? do_group_exit+0x177/0x440 [ 200.182758] ? get_signal+0x88e/0x1970 [ 200.186639] ? do_signal+0x9c/0x21c0 [ 200.190338] ? exit_to_usermode_loop+0x2e5/0x380 [ 200.195085] ? do_syscall_64+0x6be/0x820 [ 200.199131] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 200.204484] ? kasan_check_read+0x11/0x20 [ 200.208623] ? do_raw_spin_unlock+0xa7/0x2f0 [ 200.213029] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 200.218559] ? uprobe_munmap+0x14c/0x440 [ 200.222609] ? uprobe_mmap+0xd20/0xd20 [ 200.226478] ? trace_hardirqs_off+0xd/0x10 [ 200.230714] ? _raw_spin_unlock_irqrestore+0x63/0xc0 [ 200.235798] ? debug_check_no_obj_freed+0x30b/0x595 [ 200.240796] unmap_single_vma+0x1a0/0x310 [ 200.244925] unmap_vmas+0x120/0x1f0 [ 200.248534] exit_mmap+0x2b5/0x5c0 [ 200.252056] ? __ia32_sys_munmap+0x80/0x80 [ 200.256273] ? __khugepaged_exit+0x455/0x6a0 [ 200.260668] mmput+0x265/0x620 [ 200.263843] ? lock_downgrade+0x831/0x8f0 [ 200.267971] ? set_mm_exe_file+0x200/0x200 [ 200.272188] ? kasan_check_read+0x11/0x20 [ 200.276317] ? do_raw_spin_unlock+0xa7/0x2f0 [ 200.280706] ? do_raw_spin_trylock+0x1c0/0x1c0 [ 200.285269] ? kasan_check_write+0x14/0x20 [ 200.289491] ? do_raw_spin_lock+0xc1/0x200 [ 200.293714] do_exit+0xea9/0x2750 [ 200.297159] ? save_stack+0x43/0xd0 [ 200.300765] ? __kasan_slab_free+0x11a/0x170 [ 200.305158] ? __fput+0x531/0x930 [ 200.308592] ? mm_update_next_owner+0x9a0/0x9a0 [ 200.313241] ? do_signal+0x9c/0x21c0 [ 200.316940] ? exit_to_usermode_loop+0x2e5/0x380 [ 200.321691] ? do_syscall_64+0x6be/0x820 [ 200.325747] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 200.331100] ? do_raw_spin_unlock+0xa7/0x2f0 [ 200.335491] ? do_raw_spin_trylock+0x1c0/0x1c0 [ 200.340063] ? kasan_check_write+0x14/0x20 [ 200.344284] ? do_raw_spin_lock+0xc1/0x200 [ 200.348508] ? trace_hardirqs_off+0xd/0x10 [ 200.352725] ? _raw_spin_unlock_irqrestore+0x63/0xc0 [ 200.357820] ? trace_hardirqs_on+0x10/0x10 [ 200.362052] ? trace_hardirqs_off+0xd/0x10 [ 200.366293] ? quarantine_put+0x10d/0x1b0 [ 200.370426] ? trace_hardirqs_on+0x10/0x10 [ 200.374646] ? mntput_no_expire+0x7be/0xbc0 [ 200.378950] ? lock_downgrade+0x8f0/0x8f0 [ 200.383089] ? lock_downgrade+0x8f0/0x8f0 [ 200.387239] ? kasan_check_read+0x11/0x20 [ 200.391369] ? do_raw_spin_unlock+0xa7/0x2f0 [ 200.395767] ? cpumask_next+0x24/0x30 [ 200.399552] ? mnt_get_count+0xf4/0x150 [ 200.403511] ? _raw_spin_unlock+0x22/0x30 [ 200.407639] ? mntput_no_expire+0x18e/0xbc0 [ 200.411941] ? dentry_kill+0xce/0x5a0 [ 200.415723] ? mnt_get_count+0x150/0x150 [ 200.419764] ? dput.part.26+0x276/0x7a0 [ 200.423717] ? shrink_dcache_sb+0x350/0x350 [ 200.428028] ? memset+0x31/0x40 [ 200.431297] ? __dequeue_signal+0xf9/0x7d0 [ 200.435517] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 200.441039] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 200.446564] ? recalc_sigpending_tsk+0x180/0x180 [ 200.451308] ? get_signal+0x918/0x1970 [ 200.455191] ? lock_downgrade+0x8f0/0x8f0 [ 200.459323] ? do_raw_spin_lock+0xc1/0x200 [ 200.463550] do_group_exit+0x177/0x440 [ 200.467427] ? do_raw_spin_trylock+0x1c0/0x1c0 [ 200.471989] ? __ia32_sys_exit+0x50/0x50 [ 200.476045] ? kasan_check_write+0x14/0x20 [ 200.480263] ? do_raw_spin_lock+0xc1/0x200 [ 200.484490] get_signal+0x88e/0x1970 [ 200.488201] ? ptrace_notify+0x130/0x130 [ 200.492267] ? splice_direct_to_actor+0x470/0x8f0 [ 200.497370] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 200.502923] ? pipe_to_sendpage+0x400/0x400 [ 200.507247] ? security_file_permission+0x1c2/0x230 [ 200.512252] ? do_sendfile+0xa84/0xe20 [ 200.516127] ? lock_downgrade+0x8f0/0x8f0 [ 200.520268] do_signal+0x9c/0x21c0 [ 200.523794] ? cpumask_weight.constprop.5+0x3f/0x3f [ 200.528791] ? splice_direct_to_actor+0x8f0/0x8f0 [ 200.533633] ? setup_sigcontext+0x7d0/0x7d0 [ 200.537938] ? lock_acquire+0x1e4/0x540 [ 200.541899] ? __might_fault+0x12b/0x1e0 [ 200.545958] ? lock_downgrade+0x8f0/0x8f0 [ 200.550102] exit_to_usermode_loop+0x2e5/0x380 [ 200.554672] ? syscall_slow_exit_work+0x500/0x500 [ 200.559513] do_syscall_64+0x6be/0x820 [ 200.563386] ? syscall_slow_exit_work+0x500/0x500 [ 200.568209] ? syscall_return_slowpath+0x5e0/0x5e0 [ 200.573125] ? syscall_return_slowpath+0x31d/0x5e0 [ 200.578045] ? prepare_exit_to_usermode+0x291/0x3b0 [ 200.583050] ? perf_trace_sys_enter+0xb10/0xb10 [ 200.587701] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 200.592528] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 200.597693] RIP: 0033:0x455e29 [ 200.600859] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 200.619995] RSP: 002b:00007ffaa7d3bc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 200.627706] RAX: fffffffffffffffc RBX: 00007ffaa7d3c6d4 RCX: 0000000000455e29 [ 200.634955] RDX: 0000000020000000 RSI: 0000000000000013 RDI: 0000000000000013 [ 200.642205] RBP: 000000000072bf48 R08: 0000000000000000 R09: 0000000000000000 [ 200.649451] R10: 0000000000100000 R11: 0000000000000246 R12: 0000000000000014 11:10:19 executing program 0: sched_setaffinity(0x0, 0x8, &(0x7f0000000080)=0x1) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) r0 = memfd_create(&(0x7f0000000100)='dev ', 0x0) write(r0, &(0x7f0000000040)="16", 0x1) sendfile(r0, r0, &(0x7f0000001000), 0xffff) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) sendfile(r0, r0, &(0x7f0000000000), 0x100000) tkill(r1, 0x15) 11:10:19 executing program 6: r0 = getpid() sched_setattr(r0, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x0, 0x3}, 0x0) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x0, 0x0) poll(&(0x7f00000001c0), 0x0, 0x80000000) ioctl$TCSETS(r1, 0x40045431, &(0x7f00003b9fdc)) ioctl$TIOCPKT(r1, 0x5420, &(0x7f0000000080)=0x61) read(r1, &(0x7f0000000040)=""/11, 0xffed) r2 = syz_open_pts(r1, 0x0) ioctl$TCXONC(r2, 0x545d, 0x0) [ 200.656701] R13: 00000000004c1113 R14: 00000000004d1540 R15: 0000000000000009 11:10:19 executing program 2: r0 = socket(0x16, 0xe, 0x6) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) alarm(0x101) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0x0, 0x7, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x0) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_tables_names\x00') getsockopt$inet_sctp6_SCTP_RESET_STREAMS(r0, 0x84, 0x77, &(0x7f0000000300)={0x0, 0x0, 0x5, [0xdba, 0x9, 0x0, 0xfff, 0x100000000]}, &(0x7f0000000380)=0x12) setsockopt$inet_sctp6_SCTP_DELAYED_SACK(r0, 0x84, 0x10, &(0x7f0000000400)=@assoc_value={r3, 0x3}, 0x8) setsockopt(r0, 0xd6, 0x80000001, &(0x7f0000000440)="279a808f07963c19f6849ecf7227c266e759baeeb07fb7dda0c1514183d2a04bfcf03815d845588600a7003e25975a7f8f8d12dcefd0a5ef199774087f5789e8970f062f67068d2c12b61a8cad97a86fdc6ea1e810b3739c0cddbde634e6fb36534840cb793df5f6ec845a15b9426fb51f0ec7a7825c6d4db5660bc47a98c1af5c1dfb9e43a8f218fe110737b6fdeb7548224fa21ad289c615dde3a4ff9744c8091933e9a14e32058716edf1b7b91dba79e04d7fa61fe4c7fd261bea3c926a51d1977d16afc1363616b116402107e37315bd9d977350251a34369333e2710f271bc958f63c852a14a99dc962a0b628512eadef5322da3142", 0xf8) ioctl$UFFDIO_ZEROPAGE(r2, 0xc020aa04, &(0x7f00000001c0)={{&(0x7f0000ffb000/0x3000)=nil, 0x3000}, 0x1}) 11:10:19 executing program 3: socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f00000000c0)='\x00'}, 0x1) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0xb0, 0x0, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x8050) r0 = syz_open_dev$sndpcmp(&(0x7f0000000400)='/dev/snd/pcmC#D#p\x00', 0x8000, 0x100) setsockopt$IP_VS_SO_SET_STOPDAEMON(r0, 0x0, 0x48c, &(0x7f0000000440)={0x1, 'syzkaller0\x00', 0x1}, 0x18) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) 11:10:19 executing program 1: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)) [ 200.842661] FAULT_INJECTION: forcing a failure. [ 200.842661] name failslab, interval 1, probability 0, space 0, times 0 [ 200.854062] CPU: 0 PID: 12328 Comm: syz-executor7 Not tainted 4.18.0-rc4-next-20180711+ #4 [ 200.862470] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 200.871817] Call Trace: [ 200.874410] dump_stack+0x1c9/0x2b4 [ 200.878049] ? dump_stack_print_info.cold.2+0x52/0x52 [ 200.883264] ? trace_hardirqs_on+0xd/0x10 [ 200.887416] should_fail.cold.4+0xa/0x11 [ 200.891477] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 200.896586] ? lock_repin_lock+0x430/0x430 [ 200.900806] ? kasan_check_write+0x14/0x20 [ 200.905040] ? __schedule+0x884/0x1ed0 [ 200.908939] ? __sched_text_start+0x8/0x8 [ 200.913089] ? __lockdep_init_map+0x105/0x590 [ 200.917584] ? lockdep_init_map+0x9/0x10 [ 200.921631] ? __init_waitqueue_head+0x9e/0x150 [ 200.926303] ? check_same_owner+0x340/0x340 [ 200.930610] ? sbitmap_queue_init_node+0xce/0x850 [ 200.935451] __should_failslab+0x124/0x180 [ 200.939677] should_failslab+0x9/0x14 [ 200.943462] kmem_cache_alloc_node_trace+0x26f/0x770 [ 200.948550] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 200.954081] ? find_next_bit+0x104/0x130 [ 200.958154] __kmalloc_node+0x33/0x70 [ 200.961957] blk_mq_alloc_rq_map+0xcc/0x220 [ 200.966283] __blk_mq_alloc_rq_map+0xb1/0x2e0 [ 200.971483] blk_mq_alloc_tag_set+0x627/0xad0 [ 200.975972] ? blk_mq_update_nr_hw_queues+0x510/0x510 [ 200.981161] loop_add+0x2be/0x9d0 [ 200.984603] ? loop_lookup+0x105/0x230 [ 200.988472] ? loop_queue_rq+0x660/0x660 [ 200.992518] ? loop_control_ioctl+0x15d/0x540 [ 200.996998] loop_control_ioctl+0x199/0x540 [ 201.001310] ? loop_add+0x9d0/0x9d0 [ 201.004947] ? do_vfs_ioctl+0xd1/0x1720 [ 201.008923] ? write_comp_data+0xa/0x70 [ 201.012883] ? loop_add+0x9d0/0x9d0 [ 201.016490] do_vfs_ioctl+0x1de/0x1720 [ 201.020358] ? ioctl_preallocate+0x300/0x300 [ 201.024746] ? __fget_light+0x2f7/0x440 [ 201.028707] ? fget_raw+0x20/0x20 [ 201.032146] ? __sb_end_write+0xac/0xe0 [ 201.036111] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 201.041659] ? fput+0x130/0x1a0 [ 201.044930] ? ksys_write+0x1ae/0x260 [ 201.048721] ? security_file_ioctl+0x94/0xc0 [ 201.053113] ksys_ioctl+0xa9/0xd0 [ 201.056547] __x64_sys_ioctl+0x73/0xb0 [ 201.060424] do_syscall_64+0x1b9/0x820 [ 201.064312] ? finish_task_switch+0x1d3/0x870 [ 201.068798] ? syscall_return_slowpath+0x5e0/0x5e0 [ 201.073717] ? syscall_return_slowpath+0x31d/0x5e0 [ 201.078639] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 201.083657] ? prepare_exit_to_usermode+0x291/0x3b0 [ 201.088653] ? perf_trace_sys_enter+0xb10/0xb10 [ 201.093302] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 201.098130] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 201.103302] RIP: 0033:0x455e29 [ 201.106467] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 201.125711] RSP: 002b:00007fc746a7ec68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 201.133405] RAX: ffffffffffffffda RBX: 00007fc746a7f6d4 RCX: 0000000000455e29 11:10:19 executing program 5: r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/sys/net/ipv4/vs/secure_tcp\x00', 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/syz0\x00', 0x1ff) ioctl$KDDISABIO(r0, 0x4b37) write$binfmt_script(0xffffffffffffffff, &(0x7f00000003c0)=ANY=[@ANYBLOB], 0x0) fallocate(r1, 0x1, 0xffdf, 0x10000101) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'vcan0\x00'}) ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000140)={@empty, 0x71}) ioctl$EVIOCGMASK(0xffffffffffffffff, 0x80104592, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)}) socket(0x10, 0x0, 0x0) ioctl$sock_ifreq(0xffffffffffffffff, 0x0, &(0x7f0000000000)={"73697430000080000000000000000002", @ifru_ivalue}) [ 201.140672] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000014 [ 201.147923] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 201.155171] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015 [ 201.162426] R13: 00000000004be3c0 R14: 00000000004ccd10 R15: 0000000000000007 [ 201.175301] blk-mq: reduced tag depth (128 -> 64) 11:10:19 executing program 7 (fault-call:6 fault-nth:8): socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) 11:10:20 executing program 2: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0x0, 0x7, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x0) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) accept$packet(r0, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @remote}, &(0x7f0000000480)=0x14) getsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000004c0)={{{@in=@multicast2, @in6=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@dev}, 0x0, @in6=@local}}, &(0x7f00000005c0)=0xe8) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00', r2}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) 11:10:20 executing program 4: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) connect$netlink(r1, &(0x7f0000000380)=@proc={0x10, 0x0, 0x25dfdbfe, 0x200000}, 0xc) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=ANY=[@ANYBLOB="240000005800000000000000ffdbdfc9000000000000000500110000080002edb7141418"], 0x24}, 0x1}, 0x8050) r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0) setsockopt$inet_tcp_TLS_RX(r0, 0x6, 0x2, &(0x7f0000000300)={0x303, 0x33}, 0x4) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00', 0x0}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f00000001c0)={'vcan0\x00', r3}) 11:10:20 executing program 3: r0 = syz_open_dev$sndseq(&(0x7f0000000380)='/dev/snd/seq\x00', 0x0, 0x80481) ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(r0, 0xc08c5336, &(0x7f0000000440)={0x1, 0x0, 0x6, 'queue1\x00', 0xfffffffffffeffff}) socket(0xb, 0x80000, 0x6) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0xb0, 0x0, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x8050) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) 11:10:20 executing program 1: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) getsockopt$inet_sctp_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f00000000c0), &(0x7f00000001c0)=0x4) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)) 11:10:20 executing program 4: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) fcntl$notify(r1, 0x402, 0x10) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0x0, 0x7, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x8050) r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000002f80)={&(0x7f0000001900)='ip_vti0\x00', r1}, 0x10) ioctl$LOOP_CTL_GET_FREE(r3, 0x4c82) r4 = ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, r4) getsockopt$inet6_mreq(r1, 0x29, 0x1c, &(0x7f00000001c0)={@local, 0x0}, &(0x7f0000000300)=0x14) sendmmsg(r1, &(0x7f0000002e40)=[{{&(0x7f0000000440)=@xdp={0x2c, 0x4, r5, 0x18}, 0x80, &(0x7f0000001800)=[{&(0x7f00000004c0)="b9237929f78c71b8a80609479b44256faf729cca6e36e6cb101293ad6ff4317ee712ef7e5ce0e8a5149ddee2c4e00bf8c1841995ae716995408f79a49a3f2f3e5892e48346f6140b167cb8005443651a46988f59", 0x54}, {&(0x7f0000000540)="4ace66eefc08eb2d7be2e5d3a486a5c044b8ffc4f4992b16935ca29db8533774f744b635371f114157efea5ae0c0f9e870a8728df9864e4b4f5f4aa3e4181a38cc02b34daa7b1a740ad232656e2c9884a05c7e4e49209c7d4734e9a415eec52ebbc5daf81560f27a4b2e6e475b7e54014dba44483882e8edf82eddf638c44e5aca986588c4cec60a8626a09ed13880437c", 0x91}, {&(0x7f0000000600)="1789104b8212b946cbdd1174a809efcef40fd2f94a2398487240567a8218f599a690bf4679d0d01e154befa3686bfc104976f359cca73df077227714421ba714ad011043cbc41aba67aeea07ee6d40120cf626c9abd3621143533d1784d08237679b6f86fd4f1488375b9898d5fc118103e1b6d2d0cce52635134f0fea33b2dd8231ca6cf0b129e61453cb4d6f0756073527c52ce9bb2d9e44f5a602e7a0a429e109e960912d41b2938b6c852e01351718ea580a5fba3f583237692a6039a851d1f6a30425487eaf780aa81a7616ef46e392", 0xd2}, {&(0x7f0000000700)="cc07a2b387aabfe77b58c696502d006228f973b8a10771cd65b2cb64b9fb07b9fbd6ef90bdde060e131858fcf22e0cb463b111f33a3f58d7d3fafa02c9b9059b85d09229f716f443444d924b152dee6dc9d004ae8bb1d9aa7639988c64aad97448c3d815659236d9f4279f585eb16ff6fbe98e6903036bf345b0c2b80139f6561f73a1c2df972f8a2b32560e1eba07290986a75b6398553b5be8b1e02f49feb50e52093702605225098ea5188a4b7dfbf83f7b57c3ff8185f5b543c47030a0be9d6e983cd693", 0xc6}, {&(0x7f0000000800)="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", 0x1000}], 0x5, &(0x7f0000001880)=[{0x80, 0x107, 0x2, "18639598993b3f6b1efe662c7f4bcf0905a2b800b6ce39106a260e2719b29b704d0cc7402a434283bc1fe897a06780e54c70b1df424cb5d25d9c9b4ea6fa2e85f6812c5678d9f187d8acb9a2906b309e2aad723cdb503f6438ef7b0eeb2f8dac7967804c3a6d39306e"}], 0x80, 0x4000000}, 0x1e48}, {{&(0x7f0000001980)=@can={0x1d}, 0x80, &(0x7f0000000380)=[{&(0x7f0000001a00)="cf4e4e7974f51493f664f5fe6c26b70c85fa897792e5e6d9fcf713abd8890dd0999671af4f3c369c689c1556fb2d0451d03d9771c2f4f81e12cd9d3cb524a6de9c6a434aa62f6eecaf2cfba31b9f0121936a64244ef32ce07414343d7b5e4575fca1c71c43961c9b5adb9ebd4f1ab9576179144282b7", 0x76}, {&(0x7f0000001a80)="7ae69256dfa71a87efeadd6d2c321c8c2b6842a340223bc5e23b914d0b8fd70d79fdce336bba87a8b7f68eb0b6c849aa3b31ba4f8394ed25b5b22254e22a9b5b766639a4d4ef8640d4078fe07861ab3e0406329241d06fc1e8deb1d1eca36f61f1c338edc77db664529981395a24aa9fd587e03d223ae202e7b3e891b76301cee37db834fa745e218f3ad4827eb8dbd0b8c403d17523f0a60cf7e2aac6e46ffa093fbbf92bee5c394e1234ac47e275afc24d6e2b5555ff947e2a04bc4406949c43827db366ccf23a43af2589", 0xcc}, {&(0x7f0000001b80)="045a3b7751b658d58fa4589050b4e582b3da45ebd3ec260075c97b22ebdf1d344d46a1c18428e8d17721dedb6d8de955d964c05578e5235b150c40532e5a890780c064926e0c2a820d8cd81a330b0a4d8214efed63af7c4fc4db4dc4", 0x5c}], 0x3, 0x0, 0x0, 0x1}, 0x8}, {{&(0x7f0000001c00)=@pptp={0x18, 0x2, {0x3, @rand_addr=0x286}}, 0x80, &(0x7f0000001900), 0x0, &(0x7f0000001c80)=[{0x1010, 0x105, 0x9, "98ebc56eec2ef0eab6399b904b57b0f11525886b2e9c29bdfbf2071be9503907fb2c02a40cc5e3e3e49e688b3efdddaa56a4c1f1a74948091b9a4f59dfc42b42f826c03bf11a5df5c2f7babaceee6abb120479d52f11bf3e4c062667a14810c573e23142d1d8a8ffcaba42d2d7f555b28b138dd36444d00d7faeb8b135ab86e1d7b1bbad221b02429c53a3fe6834925d08004a5188214b5ef2a609c4aafa15aa3f3bea4012dd0dfac4049a7dc4040d493eb46d5db1f5a211b7508bbcca20f14201d5ac731228ade549d8c4f04f8125938e02cf2430d061a9f61c64da3b79393240eb917f4f7e705846b2e9888e9df6be50fdde7ee304a2403aeafe720f8cf2818f23cdc19a900e5f8446775750958a954d2a42a51506b6e0d593a6c7c367e3db5a57c9c98e6a620cf88c4013aac05eb304c95f6e5e936d9bda734e1f5488a718dc10f34486956efebb3def32837a20a1a832ca942b775a31fc51d7331c7a2d6ec14497bba69ed3a71dfed7120a10a90188abd0f8bf873cfa984cf49df781942b396c51af0d4646b8c1683f6f14377a6a5e90e5b622803d917d71d621b744044b220bd1c07479c75756d551d0a819f41fe9fa34152e6f175c0df8b1e16039b3d097ade0c2b2b189203bbc0cd0c25ebd35c57f89123f0463f0946f62094d53dc610ae0b827f9c075b93a46d0495cee547f1e14d7b780c547eb7b329106bcdce49780d426c64f5b26811ca778e8c7e9f0b2d70808f11caf9c4eb3b2a0005fd156ef28bc366c2723928efb099fb115467cd2c9bd0745185345b0d03227b229f5fb2754084e1e9ba22d907d09ecbe767b3c2c284d90cafb84a0a03290d6e6f09ee1b88d6ea0b7c31c62106a98e2238acc6c42934ab0c658cf5ccf9a2419c1634417a52e8b4fddbea36a219801d7329bd42ceacffa5ef8f9564f625311c11e34407972901fccd6d07f76ff89372ba41021ff174f9ce101d233b7135e7c3cf218b9df68021b3c05edd76fe1164fcb88d6b6ec3fe42480440682bf08cef36e427c493f94e6812dac2e4147ff43386eca3ddfb1e46155314148441f6860430b7a43729893ba0855ea958dbf0bf015b0550aca26224ced31d8bcf16cddd2a8644208b92cf288837b1a19c994e52777a3ef828564e5f1f7e0663d89cc89aa5fe3da2b4f79bcbd5b3d57c388ab8c62b9bbb6501fb44c25338631223ee2677b7b7cfc4a68fccc4ff60e2a5a09e425e6a9e8277c7b332fe2d013b6bd79fd37a4105fa68b6da8c69a5d133e30badb555cda38c482c1f71c6e8ef9ae712c3f4594e7212bba43ec08fbc23ee48e67540aa04243459854e121a45bb4f74e2bb07351606b481f3e8fc15ce75887a0a5dbd512368f4703c1bb6813d314fc8d2ad1072d0aedc2096ae125ab35d48e8a4d3a81700e63837af6b39e24cb374f2d6bd3c4701a5a250f422bd4ef3316a6ba0f9c753db214b4933892828eee1d835aace9cc04a1f7108fbe9bbdcf2db0e3894512a89adf7827a0c5eff1711196bb1f7db929558981f1425ee66fc5aa1ed927b24207d07ba93fc97fce97d19513bd1c0b7427bef3c0779234b734204bfad68d49c0ff0ff36444e63b1bd4d557e82ad9f75897d886aa48f8d36a5beb183c3bd95008f84044c275ec07407284a1a22b92766aac87848c61b97de84b24bdac95509ebcbc4e81a697a6f76f15558b8d39692f08879b772934e47a0c6f9045127814b03c1a0b3384f5148b80230b0dadb056fc7575f92bf7f28b1b66eaf362b1d3a0f84b6a08053d89973655b01f092ecde4dab08e92322d97c3f36944bdf0a207cfa36b5dfc9cbf6b460f5a7a71d134e8da7223faf179a42c6e73a0949ecaf40b5bc98d001ccf29cdc77bfd7fe24f71b766494ee19c0822f470df5ad5729ebec5fd667cfd61c354bfd1f44348c5f7eb671d461aa34bdbf6edb26113899f2680a84adc17643d6e49ca42b85604225123b7c8f92793a773356cfe122ea357507202f46ddd7f0f7c762dcd5db85c52cb7f7ac4a6d9b358241fedc465c4fdcdc1f966b43e02cc65423adc816dca0d7fabefcfd433063738ca7df100a3c4bf0c64b5e7434e55ee31839ea6af17a9ee3fa3fbd0f211e8e02b6bd90f63bd521b801f4cde6a3251d14f31f079b38237d578ed1122ffdf3de0522a30f8cc833e50735eeebc3539e450d0d678c6eba4150ea072e8f1327f16bcbd67e4dea9d5d0b662c958d48eb547353081c1a8ee29dbb468b2c781352cd1bb0a0a923338a8a0a9b4b7ddfc05a1cabff0ff8b9deb247d7ea1aaeeeb31d02aed17bbe86301fcc8337bdb9ea677b9bb57555f90892544e4a177bdaadb5433a81b06347ed889dd762631d235adfcdaa2c1731f9bd632ed039fb5ee0b927fae963209916db88cb4cc7e0771a5a62c07adaa2e0163e96c93fd9593e07f15712865c0c026bacc1139a2ea597a817c189432152b9c0f642d1c789917f48f8edf9be62d75dccb96791a7395077cdfd421fa0a2925eee0c616a32fd7bd234bde54d5ded955dc93aaf79cce5c93248361c1bc9c8b61f9c1d7f03c9994db009858ec3dc07fc7fa0b5c40f814a553b3ebfda26e9a22f0425df9692af9dcc30f79afd1042a416128734cc35514ce16198568798197dac0489329698d59c0b3e284c2d6b52f5df11d974e9054693b6f43b1bd8e9c2d268ad6272e725b763904afc478189bb4add1fa8bfefcc6d9826c6cc905a5e233c5eb30014554865d5876a28a9bf64bbc3eca95140cb68cc2763e73b308f8fcacf7f55d503eadcffc9175f2d9c2ec47aaf88624ee164b801c9dbb1488c9f1888da22e0af0fd85683dc43c7d3149763f28da8961090d765bbfd0ea8af683fbbc1bf6a9eb0999f43176c66186f6a47afaad624d45dba52cdaa1fc99b689ff1c57a2441c8fb91518c1aa4e0782f45795c7f4d456dfeac27bb5fba5f891e8dca6412bf10365a0bb74eae653494e83dd0e8a4fc68eca51c0b6bc457afc10ede4e122d57a7351a126cffa2b8cbc283c8547b761ea04f1405fada8ddcc1fa19fb9fbbb0500346ae383f3a66209ae5835e43da559eb8e6fb5d1044312d9025c84532d60d0e52e92a27928d87a423533edff32779d3ecf7d633aeef42f110f549f8f3cc10aac3e5632ff30330b63202c5fe4d923e9c4b3ddc0523a7502776c1499507ca89f005716ae145b2f21945b66efddfd9aa394d6ade279dbfb8e6e97712a2e2418019bf924373bfa7afa75bef51c753292ee248716a4964dc0af7d38062d22ac27a5dc64b12e4839297034dc18cbfa288217636bd75cca4ebaac03c888fe0decc8dc1f71654317def34e139a881fc7778d6ea1cdcefc19d5e77fedd02923a4d819b475b46f906863e693029d47ee42bac0fc2a5706fb99c39e56beb13f89fd41e443c3e3c6c8309b473cb9cdb8fa8cf7bb3acdfa3fc6247b084bb5bc9955d753d7c84a2eeb681ffbfd20d5e87c0b565758a1320da2df65cf3ca6915bbb9b6780ca515d8763a6ccc748b5e2f4941675456c1ffccad5a5c3549a6f7ba7d2eaee81074a749bdb0b33adb1ae0627318cb1eb315670fae215abda34b28d00246b95bf315f8ec4d8f3360038540411210d2179e056cc300e30edc8bdf139e972fe1571de8ae381d75451654a51257011c91a6a57202b0153c779c855c62b4965e2bc83b624466d5bd4e2328c7ee880f9d2744d14a266817a73ba729dc3399d900b1b839283188cd768f04b4cade174c6cd9e9f867c01ba8f14bd4205e22cb927460b995c0518ba101c135a6dec5e40a6961fc436b89aa3cd8843e597ec354ab594a1cd23ad3e339bfa3a0f615c950440766461a29d56147fab1fdb41781ce6d661ed782cd21484afc8af5ffac962b99840e31fe2b4564ec7c25475a515d584944e12314b6c5366ae599969b6a31dd3ddb62793daf3d8e350ac1077c08ab163ac84ba11bc1685039c5c3d835577e8c1ee239e0c5d702f0c2712e22b304a6459b1b14ae2848d9522630e6121d32011664856d7395ba23ec142298fc668c2be3a096146c209577742af6722a9e9ea21923842df57274afbf450d5b0ddc1fb165aab27f68c4eaf9b8bb8b56d356d13812eba053ead71b70a2f306db5b1fbcae6e7a1e97ac64562e0b3e9d84de6b23abf4584216e8db1bf70ef17db6ace0671b4e73fb382e7a1552a00e6e5663734ab86bd697c0b2e3cc47b0c30b5d0228f4f2cbe27e54f7e161852c5a5e70f056e441563d4191bae75572a1b80488c4db6b87aa2439582c762a6981c17f85e9bb25ee28d7f2045cd6b1867932dd2d4a1b56c60b729b409fe5b2421c34c6fa70e9796732e6f02db12b3ef2427e2012b7a2ae6d3a35d56a4685dbbf792b3f4da2ae1123ff86f27f6b60181576bc72762fb914fc8e45036d7df83cf3d19cd76d740756ee9efc6bb4d771979515a575a42575b77ea46fecd0211b6b50ed4e886d6e832c60c3867cca1d7e31be0aabca67e2a26a6fdf42cd0771c385538e28482d30003213af7b0bb53d1e67063337b63a0a3adde83242741a524b2f82cccc4fa0ef74deff2aeb9b400978908d6a473a15704fa6d4817c985009eb15450537521001cd070c4f28cc685d5fa17d2e2da622a14e89bfd3ca9dfb378b48d123b3794a3fa3915f820386259b880fc4966a45bdef688e7a8972120ee687ba94b028d68e236fd4b70a12e8d16ac9cb239a16f6b4ae986b47c4a8f5c7b08e5c773d3f0916126438d9f6be44175871db309bf5507697f3fb697d3468158412355e806c46191189faf23a59a78cab2d25cb38ec5dded97cb27d2967380cd0a8e9e7dedb795de97ce4439d9699cd95f82e6c236e7cab20633961fbee9b2af2664783d44b81dc8524b380d454a0409d3bf76167b0c13483bc2c15b4459f77e5c285db2139b9e0c8a8dce71bb670798cc6fadec7ca274d7d0f263499ed6b0414f4624938f5ae0d6c5177c9c031d07337256bb8381c12bd2fbe6b65766db068cca38dbcbbcba2749dd4ea8e0825e186c6437247d2a16a262a96beefc38d3bb49fb0eaafc304b0a9212a10fa512142d4e2a2df7b67cb75e8a71862a0998867d0b2cc4ef77de887e71b92d9c175063ab0bf05f0fe3f31b7cdf18debe2fe2006708d72db5cf21b7b3a31bdd224416f48c4fc45a8ae816d998024684ff664c5aa47726d7f320fffd6deb852d3e5541984f9380f9b2c55fefe30f097ea1e7962f0e05371a7978752bc1f59419728e8fe5e068b1a7bce3056b1a1959a1141c5e7c22e38ca3fd90e4f1e354beaaacb121ffa66e97d679b80a6eddf5680178156f8969184f827e82d403795d0a96ff9bb06a7787246a27cf4f36d80afd6c1570c9d394246bc78e9d0703942bd51d21ad08222fd7723b9c0e461f5acbf6bcd1cc08c3033d1f5d64f14124259aaf985e9cb5ecd452d203e54f6fd2a30f8d80ea266e9714cc007f7e4a2c9db87a5ae14a1c965e0c53064497d15141b3935a552bd9c1301623bf7e724a1b87be76182dd7de68455a2089d4771b747c95a92b0386b96536e3f5cb6ea68d767ebbce0092f5a194da705013d810958f6b48577239aa88e59d135778486c85b6f1500953961e0cccd7a49522eb2438cd7d9541344bb046d5113d218c0690c2a866fc33b809c4bab7d647d5b5e9568b56c1df7b1fe57c4224a2ccb0fd3653676f9f4c75c4ac3a527e0b63c99a3544b4699fb67f90a0b5bd85621a9dec9da86b876dfe2a5635795abbcddc67e4e2de0aa91b4cd0ed97786507ffa08bffd0eeafaae42ce558c52d8d330f5cd0accc49e094b6fcf58c12e2fc"}, {0x30, 0x11f, 0x10, "ed4376cb8722bb03ff0b576fb4601138b1f89cead78be10f538b798a"}, {0x90, 0x108, 0x6, "5be4fb9c61bee968e206290fb2238e552e34d0a7677f0fa84b3ba899ce93850d22c2252245d4082c552a9c8d2812e69c150350ef1d0edd02850e51faeb90a904b6882b5fa132d069e711c5010d33e07cc3d8bb46f08120b11f568fc63b6261017b16eea69b406843b8b86f11145b4d6daca9095688c4ad65a95d3a"}, {0xe8, 0x19d, 0x1, "818d109be314aeb9df2b944a98022f44a265cbcb45a881add7a28758cc6a52d7d7deb1690ae172c3fc8d6f0b7a99489a65ae6e38627989f81d87da94e7d1da9c179d27ab522b4f1ee40d13068c8cae9366eaed528fc0c6e6ab825ba6d43c7ae6c1d79b364fb1590a039f8245d181be41d328745d1227f05572e644814cb3cf3e713b17bcd8bfd53dc08758990140a3defb87766059148340790a8e9c2935611731e35f858da00c51bffd4e630d9f4632ec3465ece1acd4a230d1a13858b1e7122b02b4688228d247e760a9e996bff02e46"}], 0x11b8, 0x4840}, 0x5}], 0x3, 0x24040804) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) socket$inet6(0xa, 0x3, 0x7fff) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) ioctl$KVM_GET_PIT2(r1, 0x8070ae9f, &(0x7f0000002f00)) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000002fc0)={0x4, 0x2, 0x2000}, 0x4) 11:10:20 executing program 2: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0x0, 0x0, 0x0, 0x68d5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0x0, 0x7, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x0) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x2, &(0x7f0000000100)="295ee1311f") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) 11:10:20 executing program 3: socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000440)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000140)=ANY=[@ANYBLOB="240000001800000000000000ffdbdf250200b0000003ac1414186dbe219f65019150d593fb93912e78aada374acd7450d91a3b4b69d8d9e70f44deab1f24597cc8ecac3073bd6df8541bff63231f6c226eaf7eeb9cf67b55552b3f1835ce4dfd1c9e8625c02e8f086a"], 0x24}, 0x1}, 0x8050) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) 11:10:20 executing program 1: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_open_dev$dmmidi(&(0x7f00000000c0)='/dev/dmmidi#\x00', 0xffffffffffffffe0, 0x200) ioctl$BLKBSZGET(r1, 0x80081270, &(0x7f00000001c0)) ioctl$KVM_ENABLE_CAP(r1, 0x4068aea3, &(0x7f0000000200)={0x81, 0x0, [0x1ff, 0x0, 0x0, 0x10001]}) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x1f, &(0x7f0000000400)="295ee1eb816f9cc7258f1763b2a820a0626ba20f700015338fde64439ade3d77b0377b87369d322a1ae63196c2490106cd0227a457011a11f2979ffe25b6100c18a9ccc5a7a5f60293f13a59835633bad25eb5c4a4c668938467e0dcd9944ad5cd1fec532c41794eae8cd114cb7c32cd71ea39337e85bc22d40586821ea0b49b5751f16adb98c9f39c3322bd19dd4cf19d91655e55340fb668bac421a558a1acb9a8bcdf59278db4652001439efec28395457d9990d777d3d33aaef00b4eb2e92a4720bf760be0a5228d6ca98595da0c5016c491173dee501273ec64fa71ad0b6d6c1477") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)) socketpair$inet6_tcp(0xa, 0x1, 0x0, &(0x7f0000000280)) 11:10:20 executing program 2: r0 = socket(0x0, 0x0, 0x0) r1 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) connect$l2tp(r0, &(0x7f00000001c0)=@pppol2tp={0x18, 0x1, {0x0, r0, {0x2, 0x4e21, @remote={0xac, 0x14, 0x14, 0xbb}}, 0x0, 0x3, 0x2, 0x2}}, 0x26) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0x0, 0x7, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x0) r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000300)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0) ioctl(r1, 0x800001, &(0x7f00000000c0)="311f030000") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) [ 201.575761] FAULT_INJECTION: forcing a failure. [ 201.575761] name failslab, interval 1, probability 0, space 0, times 0 [ 201.587182] CPU: 1 PID: 12380 Comm: syz-executor7 Not tainted 4.18.0-rc4-next-20180711+ #4 [ 201.595587] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 201.604936] Call Trace: [ 201.607534] dump_stack+0x1c9/0x2b4 [ 201.611164] ? dump_stack_print_info.cold.2+0x52/0x52 [ 201.616364] ? should_fail+0xb33/0xd86 [ 201.620259] should_fail.cold.4+0xa/0x11 [ 201.624504] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 201.629630] ? blk_mq_alloc_tag_set+0x627/0xad0 [ 201.634299] ? depot_save_stack+0x14c/0x470 [ 201.638631] ? save_stack+0xa9/0xd0 [ 201.642267] ? save_stack+0x43/0xd0 [ 201.645894] ? kasan_kmalloc+0xc4/0xe0 [ 201.649787] ? __kmalloc_node+0x47/0x70 [ 201.653765] ? blk_mq_alloc_rq_map+0xcc/0x220 [ 201.658268] ? __blk_mq_alloc_rq_map+0xb1/0x2e0 [ 201.662941] ? blk_mq_alloc_tag_set+0x627/0xad0 [ 201.667614] ? loop_add+0x2be/0x9d0 [ 201.671242] ? loop_control_ioctl+0x199/0x540 [ 201.675734] ? do_vfs_ioctl+0x1de/0x1720 [ 201.679798] ? ksys_ioctl+0xa9/0xd0 [ 201.683436] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 201.688199] ? retint_kernel+0x10/0x10 [ 201.692098] ? __should_failslab+0x7c/0x180 [ 201.696435] ? write_comp_data+0x22/0x70 [ 201.701286] __should_failslab+0x124/0x180 [ 201.705539] should_failslab+0x9/0x14 [ 201.709346] kmem_cache_alloc_node_trace+0x26f/0x770 [ 201.714461] __kmalloc_node+0x33/0x70 [ 201.718271] blk_mq_alloc_rq_map+0x10d/0x220 11:10:20 executing program 4: r0 = socket(0x0, 0x6, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) r2 = openat$rtc(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/rtc0\x00', 0x0, 0x0) ioctl$EVIOCGBITSW(r1, 0x80404525, &(0x7f00000005c0)=""/189) ioctl$PIO_UNIMAPCLR(r2, 0x4b68, &(0x7f0000000300)={0xa4, 0x3ff, 0x7}) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=ANY=[@ANYBLOB="24000000180000000000ff050011000008000200ac141418"], 0x24}, 0x1}, 0x8050) r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) [ 201.722691] __blk_mq_alloc_rq_map+0xb1/0x2e0 [ 201.727203] blk_mq_alloc_tag_set+0x627/0xad0 [ 201.731701] ? retint_kernel+0x10/0x10 [ 201.735593] ? blk_mq_update_nr_hw_queues+0x510/0x510 [ 201.740794] ? loop_add+0x14d/0x9d0 [ 201.744428] loop_add+0x2be/0x9d0 [ 201.747888] ? loop_queue_rq+0x660/0x660 [ 201.751959] loop_control_ioctl+0x199/0x540 [ 201.756284] ? ksys_dup3+0x690/0x690 [ 201.760002] ? loop_add+0x9d0/0x9d0 [ 201.763636] ? kasan_check_write+0x14/0x20 [ 201.767867] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 201.772798] ? fsnotify+0xbac/0x14e0 [ 201.776517] ? vfs_write+0x2f3/0x560 [ 201.780231] ? loop_add+0x9d0/0x9d0 [ 201.783850] do_vfs_ioctl+0x1de/0x1720 [ 201.787730] ? ioctl_preallocate+0x300/0x300 [ 201.792130] ? __fget_light+0x2f7/0x440 [ 201.796087] ? __schedule+0x1ed0/0x1ed0 [ 201.800053] ? fget_raw+0x20/0x20 [ 201.803503] ? __sb_end_write+0xac/0xe0 [ 201.807465] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 201.812981] ? fput+0x130/0x1a0 [ 201.816246] ? security_file_ioctl+0x94/0xc0 [ 201.820669] ksys_ioctl+0xa9/0xd0 [ 201.824120] __x64_sys_ioctl+0x73/0xb0 [ 201.827990] do_syscall_64+0x1b9/0x820 [ 201.831869] ? syscall_slow_exit_work+0x500/0x500 [ 201.836704] ? syscall_return_slowpath+0x5e0/0x5e0 [ 201.841616] ? syscall_return_slowpath+0x31d/0x5e0 [ 201.846547] ? prepare_exit_to_usermode+0x291/0x3b0 [ 201.851555] ? perf_trace_sys_enter+0xb10/0xb10 [ 201.856217] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 201.861049] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 201.866221] RIP: 0033:0x455e29 [ 201.869386] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 201.888519] RSP: 002b:00007fc746a7ec68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 201.896223] RAX: ffffffffffffffda RBX: 00007fc746a7f6d4 RCX: 0000000000455e29 [ 201.903481] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000014 [ 201.910731] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 201.917978] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015 11:10:20 executing program 6: r0 = getpid() sched_setattr(r0, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x0, 0x3}, 0x0) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x0, 0x0) poll(&(0x7f00000001c0), 0x0, 0x80000000) ioctl$TCSETS(r1, 0x40045431, &(0x7f00003b9fdc)) ioctl$TIOCPKT(r1, 0x5420, &(0x7f0000000080)=0x61) read(r1, &(0x7f0000000040)=""/11, 0xffed) r2 = syz_open_pts(r1, 0x0) ioctl$TCXONC(r2, 0xc020660b, 0x0) 11:10:20 executing program 0: sched_setaffinity(0x0, 0x8, &(0x7f0000000080)=0x1) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) r0 = memfd_create(&(0x7f0000000100)='dev ', 0x0) write(r0, &(0x7f0000000040)="16", 0x1) sendfile(r0, r0, &(0x7f0000001000), 0xffff) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) sendfile(r0, r0, &(0x7f0000000000)=0xffffffffffff0700, 0x100000) tkill(r1, 0x15) 11:10:20 executing program 5: r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/sys/net/ipv4/vs/secure_tcp\x00', 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/syz0\x00', 0x1ff) ioctl$KDDISABIO(r0, 0x4b37) write$binfmt_script(0xffffffffffffffff, &(0x7f00000003c0)=ANY=[@ANYBLOB], 0x0) fallocate(r1, 0x1, 0xa0000000000000, 0x10000101) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'vcan0\x00'}) ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000140)={@empty, 0x71}) ioctl$EVIOCGMASK(0xffffffffffffffff, 0x80104592, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)}) socket(0x10, 0x0, 0x0) ioctl$sock_ifreq(0xffffffffffffffff, 0x0, &(0x7f0000000000)={"73697430000080000000000000000002", @ifru_ivalue}) [ 201.925225] R13: 00000000004be3c0 R14: 00000000004ccd10 R15: 0000000000000008 [ 201.936791] blk-mq: reduced tag depth (128 -> 64) 11:10:20 executing program 7 (fault-call:6 fault-nth:9): socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) 11:10:20 executing program 3: socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000005c0)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000600)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0xb0, 0x0, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x8000) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000440)='/dev/loop-control\x00', 0x0, 0x0) setsockopt$inet_sctp6_SCTP_FRAGMENT_INTERLEAVE(r0, 0x84, 0x12, &(0x7f0000000340)=0x94e, 0x4) write$cgroup_int(r0, &(0x7f0000000480)=0x5, 0x12) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0xfffffffffffffffc, &(0x7f0000000540)="295ee1311f16") openat$ptmx(0xffffffffffffff9c, &(0x7f0000000280)='/dev/ptmx\x00', 0xa00, 0x0) ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000500)={0x4, &(0x7f00000004c0)=[{0x80000000, 0x0, 0xfdd, 0x6}, {0x3, 0x5, 0x1, 0x101}, {0x9, 0x0, 0x2, 0x400}, {0x0, 0x7f, 0x101, 0x8}]}, 0x10) getsockopt$bt_BT_SECURITY(r2, 0x112, 0x4, &(0x7f0000000380), 0x2) 11:10:20 executing program 2: r0 = socket(0x0, 0x0, 0x0) r1 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) socketpair(0xf, 0x3, 0x687, &(0x7f00000000c0)={0xffffffffffffffff}) dup2(r1, r0) r3 = syz_open_dev$mouse(&(0x7f00000001c0)='/dev/input/mouse#\x00', 0x4, 0x1) ioctl$KVM_SET_TSS_ADDR(r3, 0xae47, 0xd000) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000300)=ANY=[@ANYBLOB="240000001800e0b431000000008000ffdbdf25020000070003ff050011000008000200ac141418"], 0x24}, 0x1}, 0x0) r4 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) r5 = ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82) ioctl$LOOP_CTL_REMOVE(r4, 0x4c81, r5) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f") ioctl$TIOCLINUX6(r2, 0x541c, &(0x7f0000000240)={0x6, 0x3}) ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) setsockopt$IP_VS_SO_SET_EDITDEST(r1, 0x0, 0x489, &(0x7f0000000400)={{0x29, @multicast1=0xe0000001, 0x4e23, 0x2, 'ovf\x00', 0x4, 0x1, 0x78}, {@local={0xac, 0x14, 0x14, 0xaa}, 0x4e24, 0x3, 0xff, 0x6, 0x3}}, 0x44) 11:10:20 executing program 1: r0 = socket(0x0, 0x0, 0x0) r1 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) r3 = syz_open_dev$sndpcmp(&(0x7f00000001c0)='/dev/snd/pcmC#D#p\x00', 0x1, 0x440) ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0) ioctl(r1, 0x0, &(0x7f00000000c0)="295ee1") ioctl$sock_SIOCGIFBR(r0, 0x8940, &(0x7f0000000280)=@add_del={0x2, &(0x7f0000000240)='eql\x00', 0x480000000000}) ioctl$sock_inet_SIOCSIFDSTADDR(r3, 0x8918, &(0x7f0000000200)={'gretap0\x00', {0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x20}}}) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)) 11:10:20 executing program 4: r0 = socket(0x0, 0x0, 0x0) r1 = getpid() perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x20000000000000, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, r1, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000440)=ANY=[@ANYBLOB="240000001800000000000000ffdbdf25020000070003ff050011000008000200ac141418aa25ec1c3405d1c98bf0bfcea251d4bd829d21e35baed22f76875d3fdf8859b5c60052ec6ef92d836493713b8216d222c16497ac5ca69fd3a12ef04ed1b004f28136c176d6e576114414b213809489a2e70b424e3dfd57268c1f250f8467b7e1026ec07c076a7d178ef8d1a23966fa8c60115cb7f58d3241b2eb2bb5b6e0727f091b6b69384b47c0f105d5f3a5"], 0x24}, 0x1}, 0x8050) r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) ioctl$VT_GETSTATE(r2, 0x5603, &(0x7f00000001c0)={0x200, 0x92}) [ 202.153584] FAULT_INJECTION: forcing a failure. [ 202.153584] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 202.165788] CPU: 0 PID: 12440 Comm: syz-executor7 Not tainted 4.18.0-rc4-next-20180711+ #4 [ 202.174193] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 202.183548] Call Trace: [ 202.186138] dump_stack+0x1c9/0x2b4 [ 202.189762] ? dump_stack_print_info.cold.2+0x52/0x52 [ 202.194962] ? should_fail+0xb33/0xd86 [ 202.198860] should_fail.cold.4+0xa/0x11 [ 202.202908] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 202.208016] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 202.212778] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 202.217782] ? bpf_prog_kallsyms_find+0xde/0x4c0 [ 202.222533] ? is_bpf_text_address+0xae/0x170 [ 202.227032] ? lock_downgrade+0x8f0/0x8f0 [ 202.231185] ? retint_kernel+0x10/0x10 [ 202.235072] ? check_same_owner+0x340/0x340 [ 202.239386] ? rcu_note_context_switch+0x730/0x730 [ 202.244309] __alloc_pages_nodemask+0x36e/0xdb0 [ 202.248968] ? __alloc_pages_slowpath+0x2d00/0x2d00 [ 202.253984] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 202.258750] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 202.263488] ? retint_kernel+0x10/0x10 [ 202.267367] ? blk_mq_alloc_rqs+0x39d/0x9c0 [ 202.271679] blk_mq_alloc_rqs+0x31f/0x9c0 [ 202.275835] ? kasan_unpoison_shadow+0x35/0x50 [ 202.280410] ? kasan_kmalloc+0xc4/0xe0 [ 202.284286] ? blk_mq_alloc_rq_map+0x220/0x220 [ 202.288859] ? kmem_cache_alloc_node_trace+0x302/0x770 [ 202.294133] ? kasan_unpoison_shadow+0x35/0x50 [ 202.298721] ? __kmalloc_node+0x47/0x70 [ 202.302699] __blk_mq_alloc_rq_map+0x15f/0x2e0 [ 202.307294] blk_mq_alloc_tag_set+0x627/0xad0 [ 202.311789] ? blk_mq_update_nr_hw_queues+0x510/0x510 [ 202.316974] ? loop_add+0x126/0x9d0 [ 202.320594] loop_add+0x2be/0x9d0 [ 202.324071] ? loop_lookup+0x105/0x230 [ 202.327971] ? loop_queue_rq+0x660/0x660 [ 202.332036] loop_control_ioctl+0x199/0x540 [ 202.336347] ? loop_add+0x9d0/0x9d0 [ 202.339970] ? do_vfs_ioctl+0x123/0x1720 [ 202.344016] ? loop_add+0x9d0/0x9d0 [ 202.347630] do_vfs_ioctl+0x1de/0x1720 [ 202.351512] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 202.356259] ? ioctl_preallocate+0x300/0x300 [ 202.360648] ? __fget_light+0x2f7/0x440 [ 202.364610] ? retint_kernel+0x10/0x10 [ 202.368482] ? fget_raw+0x20/0x20 [ 202.371927] ? ksys_write+0x18b/0x260 [ 202.375731] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 202.381256] ? fput+0x130/0x1a0 [ 202.384528] ? ksys_write+0x1ae/0x260 [ 202.388313] ? retint_kernel+0x10/0x10 [ 202.392190] ? security_file_ioctl+0x94/0xc0 [ 202.396592] ksys_ioctl+0xa9/0xd0 [ 202.400039] __x64_sys_ioctl+0x73/0xb0 [ 202.403918] do_syscall_64+0x1b9/0x820 [ 202.407808] ? syscall_slow_exit_work+0x500/0x500 [ 202.412640] ? syscall_return_slowpath+0x5e0/0x5e0 [ 202.417556] ? syscall_return_slowpath+0x31d/0x5e0 [ 202.422466] ? prepare_exit_to_usermode+0x291/0x3b0 [ 202.427468] ? perf_trace_sys_enter+0xb10/0xb10 [ 202.432118] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 202.436954] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 202.442123] RIP: 0033:0x455e29 [ 202.445287] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 202.464460] RSP: 002b:00007fc746a7ec68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 202.472166] RAX: ffffffffffffffda RBX: 00007fc746a7f6d4 RCX: 0000000000455e29 [ 202.479419] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000014 [ 202.486668] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 202.493918] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015 11:10:20 executing program 5: r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/sys/net/ipv4/vs/secure_tcp\x00', 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/syz0\x00', 0x1ff) ioctl$KDDISABIO(r0, 0x4b37) write$binfmt_script(0xffffffffffffffff, &(0x7f00000003c0)=ANY=[@ANYBLOB], 0x0) fallocate(r1, 0x1, 0xf80000, 0x10000101) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'vcan0\x00'}) ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000140)={@empty, 0x71}) ioctl$EVIOCGMASK(0xffffffffffffffff, 0x80104592, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)}) socket(0x10, 0x0, 0x0) ioctl$sock_ifreq(0xffffffffffffffff, 0x0, &(0x7f0000000000)={"73697430000080000000000000000002", @ifru_ivalue}) [ 202.501521] R13: 00000000004be3c0 R14: 00000000004ccd10 R15: 0000000000000009 11:10:21 executing program 7 (fault-call:6 fault-nth:10): socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) 11:10:21 executing program 2: r0 = socket(0x0, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDR_INFO(r0, 0x84, 0xf, &(0x7f0000000400)={0x0, @in={{0x2, 0x4e23, @multicast1=0xe0000001}}, 0x1, 0xffff, 0xaa, 0x2, 0x9}, &(0x7f00000004c0)=0x98) setsockopt$inet_sctp_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000500)={r1, 0x43, 0x20, 0xfffffffa}, 0xffffffffffffffd5) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000540)=ANY=[@ANYBLOB="240000001800000000000000416e2aa24ca4ede29bd799b191d264ffdbdf25020000070003ff05ddcf000008000200ac141418"], 0x24}, 0x1}, 0x0) pipe2(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) ioctl$TIOCGSOFTCAR(r3, 0x5419, &(0x7f0000000300)) r4 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r4, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) openat$sequencer2(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/sequencer2\x00', 0x8c0, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(r0, 0x84, 0x6c, &(0x7f0000000580)={r1, 0xcc, "56fd289ac87fc0d72676282e066f439cce8cd90ed9bf6314373ac1940dea741ea8b6939bfb24d9c38f0716288328739518d9048d59d48c0fe74fd124357209b8bcb8630c8a48aee8e5d163dd6d3d9b36576e9c319aa482a272725013cff1dbac8ea2e511175bda49edc0579dfbb8a531ff13a89454f3c8abffa3e3e7c33a9dc430f7642e4b75ef6496ec311b1c49588b6c00c76d550462523a2dd9f4a7cd5de072f51cf721533517efa7334e0af4e68cd61f695d355af34744b334bbde5184fcfc627966ecec63c7c931289f"}, &(0x7f0000000240)=0xd4) ioctl$EVIOCGABS0(r2, 0x80184540, &(0x7f0000000380)=""/24) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) 11:10:21 executing program 1: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$netlink_NETLINK_CAP_ACK(r0, 0x10e, 0xa, &(0x7f00000001c0)=0x9, 0x4) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x800000, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1") syz_open_dev$loop(&(0x7f00000000c0)='/dev/loop#\x00', 0xfffffffffffffff9, 0x20000) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)) [ 202.698655] FAULT_INJECTION: forcing a failure. [ 202.698655] name failslab, interval 1, probability 0, space 0, times 0 [ 202.710139] CPU: 1 PID: 12482 Comm: syz-executor7 Not tainted 4.18.0-rc4-next-20180711+ #4 [ 202.718541] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 202.727890] Call Trace: [ 202.730487] dump_stack+0x1c9/0x2b4 [ 202.734120] ? dump_stack_print_info.cold.2+0x52/0x52 [ 202.739315] should_fail.cold.4+0xa/0x11 [ 202.743386] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 202.748498] ? lock_release+0xa30/0xa30 [ 202.752479] ? rcu_is_watching+0x8c/0x150 [ 202.756629] ? check_same_owner+0x340/0x340 [ 202.760956] ? rcu_note_context_switch+0x730/0x730 [ 202.765888] ? is_bpf_text_address+0xd7/0x170 [ 202.770395] ? lock_acquire+0x1e4/0x540 [ 202.774381] ? fs_reclaim_acquire+0x20/0x20 [ 202.778711] ? lock_downgrade+0x8f0/0x8f0 [ 202.782863] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 202.787628] ? check_same_owner+0x340/0x340 [ 202.791961] ? rcu_note_context_switch+0x730/0x730 11:10:21 executing program 5: r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/sys/net/ipv4/vs/secure_tcp\x00', 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/syz0\x00', 0x1ff) ioctl$KDDISABIO(r0, 0x4b37) write$binfmt_script(0xffffffffffffffff, &(0x7f00000003c0)=ANY=[@ANYBLOB], 0x0) fallocate(r1, 0x1, 0x800e, 0x10000101) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'vcan0\x00'}) ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000140)={@empty, 0x71}) ioctl$EVIOCGMASK(0xffffffffffffffff, 0x80104592, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)}) socket(0x10, 0x0, 0x0) ioctl$sock_ifreq(0xffffffffffffffff, 0x0, &(0x7f0000000000)={"73697430000080000000000000000002", @ifru_ivalue}) [ 202.796899] __should_failslab+0x124/0x180 [ 202.801142] should_failslab+0x9/0x14 [ 202.804951] kmem_cache_alloc_node+0x272/0x780 [ 202.809540] ? loop_info64_from_compat+0x940/0x940 [ 202.814482] blk_alloc_queue_node+0xfb/0xf50 [ 202.818900] ? blk_mq_alloc_rqs+0x7bc/0x9c0 [ 202.823228] ? blk_init_allocated_queue+0x600/0x600 [ 202.828246] ? lockdep_init_map+0x9/0x10 [ 202.832306] ? debug_mutex_init+0x2d/0x60 [ 202.836440] ? __mutex_init+0x1f7/0x290 [ 202.840397] ? __ia32_sys_membarrier+0x150/0x150 [ 202.845149] ? blk_mq_alloc_rq_map+0x142/0x220 [ 202.849726] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 202.855246] ? __blk_mq_alloc_rq_map+0x17d/0x2e0 [ 202.859992] ? blk_mq_alloc_tag_set+0x50e/0xad0 [ 202.864651] ? blk_mq_update_nr_hw_queues+0x510/0x510 [ 202.869826] blk_mq_init_queue+0x4b/0xb0 [ 202.873873] loop_add+0x33d/0x9d0 [ 202.877309] ? loop_lookup+0x105/0x230 [ 202.881177] ? loop_queue_rq+0x660/0x660 [ 202.885221] ? __sanitizer_cov_trace_switch+0x11/0x90 [ 202.890393] loop_control_ioctl+0x199/0x540 [ 202.894697] ? ksys_dup3+0x690/0x690 [ 202.898394] ? loop_add+0x9d0/0x9d0 [ 202.902016] ? kasan_check_write+0x14/0x20 [ 202.906231] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 202.911141] ? fsnotify+0xbac/0x14e0 [ 202.914836] ? vfs_write+0x2f3/0x560 [ 202.918534] ? loop_add+0x9d0/0x9d0 [ 202.922143] do_vfs_ioctl+0x1de/0x1720 [ 202.926019] ? ioctl_preallocate+0x300/0x300 [ 202.930411] ? __fget_light+0x2f7/0x440 [ 202.934368] ? __schedule+0x1ed0/0x1ed0 [ 202.938324] ? fget_raw+0x20/0x20 [ 202.941760] ? __sb_end_write+0xac/0xe0 [ 202.945721] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 202.951237] ? fput+0x130/0x1a0 [ 202.954502] ? security_file_ioctl+0x94/0xc0 [ 202.958890] ksys_ioctl+0xa9/0xd0 [ 202.962326] __x64_sys_ioctl+0x73/0xb0 [ 202.966200] do_syscall_64+0x1b9/0x820 [ 202.970080] ? syscall_slow_exit_work+0x500/0x500 [ 202.974907] ? syscall_return_slowpath+0x5e0/0x5e0 [ 202.979817] ? syscall_return_slowpath+0x31d/0x5e0 [ 202.984730] ? prepare_exit_to_usermode+0x291/0x3b0 [ 202.989726] ? perf_trace_sys_enter+0xb10/0xb10 [ 202.994390] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 202.999222] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 203.004391] RIP: 0033:0x455e29 [ 203.007563] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 203.026732] RSP: 002b:00007fc746a7ec68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 203.034421] RAX: ffffffffffffffda RBX: 00007fc746a7f6d4 RCX: 0000000000455e29 [ 203.041670] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000014 11:10:21 executing program 4: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0x0, 0x7, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x8050) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") r2 = pkey_alloc(0x0, 0x1) pkey_mprotect(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x8, r2) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) [ 203.048918] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 203.056183] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015 [ 203.063436] R13: 00000000004be3c0 R14: 00000000004ccd10 R15: 000000000000000a 11:10:21 executing program 0: sched_setaffinity(0x0, 0x8, &(0x7f0000000080)=0x1) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) r0 = memfd_create(&(0x7f0000000100)='dev ', 0x0) write(r0, &(0x7f0000000040)="16", 0x1) sendfile(r0, r0, &(0x7f0000001000), 0xffff) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) sendfile(r0, r0, &(0x7f0000000000)=0x10230000, 0x100000) tkill(r1, 0x15) 11:10:21 executing program 3: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f00000004c0)=ANY=[@ANYBLOB="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"], 0x24}, 0x1}, 0x8050) r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) getsockname$inet(r0, &(0x7f0000000440)={0x0, 0x0, @multicast1}, &(0x7f0000000480)=0x10) fcntl$setlease(r2, 0x400, 0x0) ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0) ioctl$SG_GET_RESERVED_SIZE(r1, 0x2272, &(0x7f0000000380)) io_setup(0x7, &(0x7f0000000240)=0x0) io_submit(r3, 0x4, &(0x7f00000018c0)=[&(0x7f0000000700)={0x0, 0x0, 0x0, 0x0, 0x9, r1, &(0x7f0000000600)="e03b763140df7dbf94517bf9e4d71a2e9aa1cc9a7555b1a7a8b8f63ab3e997ee44693d71348278c3617fe39cccda86d0d18bb8baaf43758f1b4f5d690e04212f492a62d0cc5089480c25f1f7ff38a2e957adc5d14fa36559143e309f0ce3b220547ebbf734da4ac489af508b56da9d1cbb6de6b1b762fdf3e83a4a53f06305ecba214971d8073d4dbb49a80748f393bb3fe99819b8c713e6086064ff38cbfa795fdba67f2eb80540805924024af2889b1c5591b2905071d1063c8a4790e677af321bcfa44fc6ca1e091ca3b282a9fe2ff2af557c6520e8c902407fa9146888feeceed7f907827bf2bdb1f3088213f38cbfded95cbacdd963", 0xf8, 0x1, 0x0, 0x1, r1}, &(0x7f0000001740)={0x0, 0x0, 0x0, 0x0, 0x0, r1, &(0x7f0000000740)="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", 0x1000, 0x5, 0x0, 0x1, r1}, &(0x7f00000017c0)={0x0, 0x0, 0x0, 0x8, 0x2, r0, &(0x7f0000001780)="9796c9", 0x3, 0x3f, 0x0, 0x1, r1}, &(0x7f0000001880)={0x0, 0x0, 0x0, 0x7, 0x6, r2, &(0x7f0000001800)="2e676d0993301ebea9e9e1cdfb152c1a17f7390342b9b64c25603d6271a20672f39452488892a6230a4ff73e854336942b9890ce3fecaac12eff2f0de794f21c688c508744569ed675fad8b729dd08851e12b7cca232d5b91f800a5569e3ca449d6ec768239d848ff2d890fc47537b71c6722161079748b54791612e4f7915", 0x7f, 0x1, 0x0, 0x0, r1}]) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) 11:10:22 executing program 6: r0 = getpid() sched_setattr(r0, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x0, 0x3}, 0x0) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x0, 0x0) poll(&(0x7f00000001c0), 0x0, 0x80000000) ioctl$TCSETS(r1, 0x40045431, &(0x7f00003b9fdc)) ioctl$TIOCPKT(r1, 0x5420, &(0x7f0000000080)=0x61) read(r1, &(0x7f0000000040)=""/11, 0xffed) r2 = syz_open_pts(r1, 0x0) ioctl$TCXONC(r2, 0x5427, 0x0) 11:10:22 executing program 7 (fault-call:6 fault-nth:11): socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) 11:10:22 executing program 1: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) getsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_id=0x0, &(0x7f0000000280)=0x4) setsockopt$inet_sctp6_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f0000000300)={0x0, 0x3, 0x200, 0x92, 0x4, 0x1, 0x6eb, 0x1, r1}, 0x20) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0) ioctl(r2, 0x4, &(0x7f00000001c0)="295ee1aac5c5df0c3e66aa0a8bd4e5a3336f35f10902bc751bafb03e96b28bb588473c3f140296377bad3c4ab0eaf5ca5fedff0e8478be4325b41434aa45299ce30945ff0100006eb5837fbc632ef96bea039ab2542754708c0a07064d641cb8c8bccdc2635372aa4f09271551e65af5e9b9183b41725621eb3dbd373b46fbf61b90e220300b50fa5772dca4f52b97ef629262b27ce1b717") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)) 11:10:22 executing program 2: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000400)=ANY=[@ANYBLOB="244eea02e9ff7f62e9060003ff059b97b997e44bd38355721b18eb00000000000053dec70403a00e14c726163a7d6f31d47534be7db6ecabf36083065af9dfc2ba65154409ca2451d490cca1d1812cfcdfb9e5f1bd550809e96cf6826d9fcef94a06657b887b48eccfe003d320e92000b5fe16b34ebe781bdecc80a9900f86cca868437187bea907d7636803bcd05c5fb0195a65ba67fb9245c5"], 0x24}, 0x1}, 0x0) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) 11:10:22 executing program 4: r0 = socket(0x0, 0x0, 0x0) r1 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) setsockopt$bt_BT_SNDMTU(r1, 0x112, 0xc, &(0x7f0000000540)=0x7ff, 0x2) setsockopt$inet_tcp_TCP_MD5SIG(r2, 0x6, 0xe, &(0x7f0000000440)={@in6={{0xa, 0x4e24, 0x4, @dev={0xfe, 0x80, [], 0xb}, 0x870}}, 0x3, 0xfff, 0x10000, "169620625d653d6e58abe87570c2e808b91bfce503e688909004daa427b67cbe036d3839dd2e47d82b52160279d4646d74aa09085d378f5fa70304e059e8e8f2f222ff7111c328a3db32301b0ca2bee3"}, 0xd8) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0x0, 0x7, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x8050) r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0) setsockopt$XDP_RX_RING(r0, 0x11b, 0x2, &(0x7f0000000380)=0x4, 0x4) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) getsockopt$inet_sctp_SCTP_FRAGMENT_INTERLEAVE(r0, 0x84, 0x12, &(0x7f00000001c0), &(0x7f0000000300)=0x4) getsockopt$inet_sctp6_SCTP_FRAGMENT_INTERLEAVE(r2, 0x84, 0x12, &(0x7f0000000580), &(0x7f00000005c0)=0x4) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) 11:10:22 executing program 3: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) getsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(r0, 0x84, 0x18, &(0x7f00000004c0)={0x0, 0x9}, &(0x7f0000000500)=0x8) getsockopt$inet_sctp_SCTP_GET_LOCAL_ADDRS(r0, 0x84, 0x6d, &(0x7f0000000540)={r1, 0xd0, "1366d343247de7819881d140b5aba1efccc9c07bbe8fde5be28000ae3ca8c815bc1ee96c31f1c99ea01c118de651ec3922519732fbe02ca7c6b9774937bff877cf5719a593ba7b217bee5e3fa4422a0bf568f1a68a9a3d0500a7e542d32c32ffca8f6fc50abccd782e577c40a983047f9fe81037d26ad7b85da4e06220d5f0fe6d7177bd50bd8d5bb853a570a7232a73b4060294687541ba58468ae04113734de4e5d8ac16226de5d9222239f26018e70f6c724d4be2525e4b9ff6c3857ee41f546f15c97146c4dead82273ab8e5e89a"}, &(0x7f0000000640)=0xd8) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=ANY=[@ANYBLOB="24000100180003ff050011000408000200ac1414180000000000"], 0x24}, 0x1}, 0x8050) r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) getsockopt$bt_BT_VOICE(r0, 0x112, 0xb, &(0x7f0000000380)=0x4, &(0x7f0000000440)=0x2) ioctl$RTC_WKALM_RD(r2, 0x80287010, &(0x7f0000000480)) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) 11:10:22 executing program 2: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) getsockopt$inet6_mreq(r2, 0x29, 0x15, &(0x7f0000000100)={@dev, 0x0}, &(0x7f0000000140)=0x14) r4 = getuid() setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f0000000580)={{{@in6=@ipv4={[], [0xff, 0xff]}, @in6, 0x4e21, 0x7fffffff, 0x4e20, 0x2da, 0xa, 0x80, 0x20, 0x2c, r3, r4}, {0xfffffffffffffffb, 0xbd5f, 0x0, 0x4, 0x9, 0x2, 0x1}, {0x80, 0x400, 0x9, 0x4}, 0x2, 0x0, 0x2, 0x1, 0x0, 0x3}, {{@in6=@mcast1={0xff, 0x1, [], 0x1}, 0x4d5, 0x6c}, 0xa, @in=@remote={0xac, 0x14, 0x14, 0xbb}, 0x0, 0x6, 0x2, 0x691f, 0x4, 0x7, 0x7}}, 0xe8) ioctl$EVIOCGBITSW(r2, 0x80404525, &(0x7f00000004c0)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0x0, 0x7, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x0) r5 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r5, 0x4c81, 0x0) ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) 11:10:22 executing program 1: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) r2 = ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, r2) pipe2(&(0x7f0000000580)={0xffffffffffffffff, 0xffffffffffffffff}, 0x4000) ioctl$KVM_SET_XSAVE(r3, 0x5000aea5, &(0x7f00000005c0)={"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"}) r4 = creat(&(0x7f0000000200)='./file0\x00', 0xa2) execveat(r4, &(0x7f0000000240)='./file0\x00', &(0x7f0000000380)=[&(0x7f0000000280)='nodeveth0\x00', &(0x7f0000000300)='/dev/zero\x00', &(0x7f0000000340)=',mime_typevmnet1,\')systemcpuset\x00'], &(0x7f0000000540)=[&(0x7f00000003c0)='\x00', &(0x7f0000000400)='ip_vti0\x00', &(0x7f0000000440)='ip_vti0\x00', &(0x7f0000000480)='wlan1keyring/.\x00', &(0x7f00000004c0)='}em1(%vboxnet1vboxnet1\x00', &(0x7f0000000500)='--lovboxnet0\x00'], 0x0) r5 = fcntl$getown(r0, 0x9) openat$zero(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/zero\x00', 0x400, 0x0) prctl$setptracer(0x59616d61, r5) setsockopt$inet_udp_int(r4, 0x11, 0x67, &(0x7f00000009c0), 0x4) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1") readahead(r0, 0x0, 0x80) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) r6 = msgget$private(0x0, 0x110) msgsnd(r6, &(0x7f0000000a00)={0x1, "6ba142d3129010f0e957801fb70a2a54f3986ed0fbc50a15661de57d034f0054e8952e5e5afb17b0fcc0d4426f584816737256534d276917b354bf5d4882740fc4dbf888359346a9d35ba4437318f44b21f39fdf4cbf4bc795d6163dc1ceee875c5bcaf89c637f3fc8942e46f3d1f37151e2e326cd9065ef476b9c276329bbdf44dcc786b6541cfead8805f3e93ad5eea752f0d9c1999ae32e60cb77b260dfda970383f6be8ebbab4312a4c299f76b383c5219a70daa12528c64"}, 0xc2, 0x800) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000000c0)) 11:10:22 executing program 3: socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$dmmidi(&(0x7f0000000380)='/dev/dmmidi#\x00', 0x2000000000000000, 0x100) ioctl$EVIOCGBITKEY(r0, 0x80404521, &(0x7f0000000440)=""/125) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0xb0, 0x0, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x8050) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f00000004c0)="295ee1311f16") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) 11:10:22 executing program 4: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) getsockopt$inet_sctp_SCTP_GET_PEER_ADDRS(r1, 0x84, 0x6c, &(0x7f00000017c0)=ANY=[@ANYRES32=0x0, @ANYBLOB="55000000c7a3e1aae913516c323e1789b031cf977d5385e2ade699e220927622f555d773cace4a82d2a0560ad7b06a0e71fc7964425d697b223d8fc3af44f20274a48af15f669641aaade2f4a349b4700b82c90fe8498d9ec9"], &(0x7f0000001840)=0x5d) getsockopt$inet_sctp6_SCTP_RTOINFO(r1, 0x84, 0x0, &(0x7f0000001880)={r2, 0x50bf, 0xa7, 0x101}, &(0x7f00000018c0)=0x10) getsockopt$inet_sctp6_SCTP_ADAPTATION_LAYER(r0, 0x84, 0x7, &(0x7f0000001740), &(0x7f0000001780)=0x4) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=ANY=[@ANYBLOB="240000001800000000000000ffdbdf25020000070003ff05001100000800020800000018"], 0x24}, 0x1}, 0x8050) r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) r4 = ioctl$LOOP_CTL_GET_FREE(r3, 0x4c82) ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, r4) sendmsg$nfc_llcp(r0, &(0x7f0000001640)={&(0x7f0000000440)={0x27, 0x0, 0x1, 0x5, 0xfffffffffffffff9, 0x6, "217fd31b1bccceb091601fb375d49379bed406385bf4cf91ff2002ab694bbb8e6c24870a6b72fc6d2ae05b9da5968858e081bca84ce7ee9ec0f5279b51cd19", 0x28}, 0x60, &(0x7f00000015c0)=[{&(0x7f00000004c0)="801111fe8329790d1a9f67c80f7a6e8baf42384317ae09a8e3f4d5d78d06204df280d9f2159fcd8d036d2d6a4949bc148d33983705d7551a73fec26c8cf46d98559890cb13bab136ee435273b9f1703d0e2f001a5067d2a7", 0x58}, {&(0x7f0000000540)="a66a9014055b20e3f29e2b39720fa38fce39d3e568fb5ecee1de795f78d4ed60e1d4c06ac9ac9b19994a7fd054a2fb15972d57d595270385f1ec5f5f16facb256df1f8dfa16108df5bde3aa17d744194ae2187dd1ff40576ee551337ad7b9fce1a28ddb663c2e2a7d44d0f77979d7293fedc36863506fbd92110b94ac8386078eb510feb458e76510627523fd2a7262e70558cdd58ff5d05e4d5bad3bcf66d45890609d8d8a62f565012a576b1666e774532a41918e47a9445c46da340d2ad8f19c5b7e7bbf301b60542b57225aca8147010a7acdd56fcde4821e337cbb10a2da0e69de4e460ccb8a81b69395e7a81b632e0854a3ae0dfb5d53f021d878291f2c8a942dbadf5f86c99cbe7e3069cd1fa63bc01b07663c05e524b4914aee2d18c978754cfcb6be1e65e72e254039f8b691fe542f8a3a6dbe3f1c59c96d2ce7660820bd860def35f92e599ef644070e2b3186014f851b224308336106abd89170078ff459a02c0537e5ddb91660e3c3ab22aed452dabdd888bf9b453e0c1a7421eb413fb87a444e7a323ce14328164046a6488a333f6cdc3c76c82954219b07445478ef87a7851d624204ae0fc0d8f843511e4b2d62d4e39ca799cf48b08d2e5419360fe73c9a9449948ba99001dffa7b4c875ba8679ba1304626e8e700091d12f1fdc83a3190737577ceeb76b90ac32c7d6edce8c83a555f453fae8823226129d6d95ff74a2baf1f1b358687b2aa121f9bad823b1675c3831b0b179f08ce991a7d2f0c322fe68e39a5068ea17a1b250fff6e1d110e3599f791e6449386e769e4dd6acd9af91f83f6bae047f4dccc111c9d43cfd489dec225fad3500c10b729e881ea8741953729617cfae6f827a6019e6394be5ad95618e345cd73a093bfc9d1c86ea570ed946f622d57984a883bdbdd94c0ce991afa7c9d890832d2b2c4c8a715c5d684594ffad1ea5a62412b75b442267cf6c186f7dc8c47a34828d77ac5e9e5dee9a159810f60e1788138b287a66e41ec9e7347ac58266aa010561397e779205d7600015ef0b192cb4ad611727c04285abb9dca3770d1b2d37c17362fdf1bbcedfc6a633b3fba606f97099e8a19e57cf12ae17591c4f37b521fca94ed8313bbf71bfdfa569123d7365239e9d34fe01b87a9da178fa472cbb339fb6c8ace0f0e594c5b571b0124794879da7b2f02dd02e5bf6138f70ae15abb12206cf5db3da731618aa3e9659bc2a9418075edd6d01452058ea7d14d0e96218c31e654cedb06e8e1bb1197648eda63f2b3da9c666bd01c8e3fbb5b529e8e7710f5777fa1d40e4256cc7840e39ae717fe76e9b0f00a2d27055b9f8b9303054b611e19cce5bbd22ad696fd9c2fc269f0c9a91cab25e888ca31b46f3209befc26b68d5336b991bf719518b786169a634bf3386c63de8dc1ba90b57ced8b6779cc2f7c7118c6d08d17e26322e799b2d660d33cf03e632029f80b5f4f46c7d7443fb84786ccde231b8ce8678c09eb698f14f211aa8f58df9b079f83999b96d74ac01d523306f641ddd3c1db6a9af51c41a729f2f62fb73b6deb321495ac6a465417c0ad0cec48e9a662dd098ce8161616e142c4ca8f1576db297c77f0676c7096da385a5f1ef8540f20942565360ae20514d2f64d0b54be3913f9efe0ab8f06651f0779ab447143c69da7874f4f520d8ed67bfdb1888c3f17de26d0ab4a76ee7e47241f3e139971e4a468aa92b8ed1ffdfc4398c42b5b59508075affd067f759fdda15d58d68cfe573e4b2f58de94370694714ec92f144e527e1ab0033423afa2962ea60d350af443983efa0567bf75c1ec0d4ae2256aed4d83d9695b0f63d1661e89baa7b618590f13a964e04ea7a95fd5687adf3d2b200fb9f02003e43046099f7b15b981f8793d1117a0d28a5d39a295a62ed4bf0b1eac99618c02db6cb7efbdce6012d54b64196a45a54fc556dab5fb216f2716d1c5ead15452ab51eb817836abd7a25d92c16df72766de819b43a6e914222d9eff03dba8faabb519b8c6954f103f811b1a6307857f40fae1c0084eeef97298ae11842985fee08e5a20acc890f6e8e39cb633708958daca00e63987cfc7aa0d14e3bdd3ea33107bdfc773418a2e29ed82f65232323b8747518549e992917bf9cf325d0ae56e068aab6d22be2799e8be6b031290a94a9300f6df1ab7a11d0856fd3f281b48f3ce75a87ac4b132fa1707d7e13d08141ac6f58ac1ddd22fc7a655ddaea12340c81896e9fda3d01662cba198ceda91a4c2b7b62a8e9381fcd7d779880fba33ddc6948e6df1c6f5c20217379b8f88268efc8463ac9e4318c2eabe9e8605756c24b984fc07acab0a6e32a82c0549ed42c348d06c96bb6aa66a4846570b2d3dd90d8ab1026568e603c44b572913e0ccd7ad846536ba260a6dbf32166f3856784e499a14fd653824101f8c066ee187c7e7069f8bc89470479e0b65c1680913915ced01593236717d03c01a26b8f568f2de681fa84676b1cc8814807b3542312f763c122c32d657fa68e10c3cc07b0308eab26cbd45dcb8fc092a155b714a9a2af0c789e5dd77d54d51ebb04b1be07f13dc83e3868762b868c104cbbe42633131cd8dc407dd74f061ab738d207cd2cbf5df6e6010e73b11044841552bfac5d72158ac64d5ebd9ca2139b092d50c848c534262c7cc0c4dd3b3b3031cf44c9288cd0c0fe85783d77df461a27d9264b6ef0489158999d3a3b10c7062e911e5472559a742f35cc49cdcb50a118001c84f745a5ee0ae5d3b5f9f1b7ba9f3100634328d5649299730936215b83c2f54ebbaac6fd293fed9da543ffe2f317eb31d30b762993b594addb425f87e49e3081f0aca71888443dfdadd7a286617e247c5a809449bd913c4b20f4d570ba85401964fa548a4f58d1d1e02dea6e96263a4dad1ff3c9ee992fb077689718d001308e8277e0aa4599253f6b3a15d0d2985cd500f9e430e0f946f564ed5f9e2ff2eb94138c5737409151b6962ced9f43cff76efbf3fc6eb4d64eacc546dcf2bd23a0386fde877ca933f65dcbaf481c246b8f9c24bbc97ac36313d74770294e6bd1a24dc2ddf80e126c6edd255a540142948c37013580255513e1083c1479112d33e8aaaa421c6fe79faa97753306eb1d1f8f999d7f9a82815853ccb2d2684dd8dc12abb85bc691c52dd9d33cee68ad8a2eabddae12018849c28eae186ff4a6c51e9aac8672e0a35e21bb5d1892edc62c6803a033c48a37f0335563543b38dfca16f1b5ba674e0e2103e4a7ee809bb164dbec339ecb7f3924f0a7a725636fec66568c2966299e6332e656b9f87be178ce2d18b01fbb8daf7a5a2c48a6830b52d17403eb2c9027cbb2db7ead6181b6e1e636a63fb72584baf863547e1c15d27cb0069bfe1f2b81a7947faaac7754066f9412dab4e2118d93f54891cdda208466d8291d4da315f892b9fccb8902cdfc399b27b5c880d6f9d1eb53ea462d2b750c3a159b5a63c093760b572155ba4d59fe277ff295081c58a73535fd68341746a1f54b7057e163b4c1aefe1817aaee0d987fa820dcd3452c86904aa6164a1c3482d56455f74b9f5b92e1e35fc8e92836fad4573cee1edb0c54d293ee052ae4e28ede2c85889879697942d6070a5c45f2f37efc1754f9e33cb3a1ba77eede10db1e735929a7de64c9a878118e4ceb2445630452876034dc533219c69431fc5703c516ffae095dc7d415f4b758da2049096dd0f5f05e6cc0d9e55cef269ea237f27066274f0a3a0cb0d313ca3435ab068468a2ea54481e12f47041c43021150e6dd771c4a15d2cc3bcd22c1a87fd08f0f057ff34ff1e478846d98cfff13077626c2b2c86bbc955d70d39623c0a80721bcbb9db3183964d602e474d5a03e69b97401621c7b762738f9902db2c92c9187c346b0d84e89412abdd7824c2d55f87d33d786a21f5e3bacc533ff3fe28cb719f1e7716619b562ccbc4b0a6c3ec9cdd623a642ebd02e7313b4af4f37d2a633831cf00ae6dc5230833fcebd196a3b9ddc493cbcf91a7cfb0bf7402e07a8db4dc46be664d1f37d7badfed136a06bfa6bcdfca0b819efe0dd21480b153d424acc3e91d2f2e1aa0e2cde7ffc549491aac155828d484c2ababc5bbcffbe94097151f3de8564b525beed6b945d5c4bb725a991af3eabe2e14ba72bd762757977d289df7873b048975c119ba72362d59632e801342c2cb02202bae6f54f8b40bad53b12d435362d2c673efd991069cb7ba269644977bc07630a2c2cf08c3c7f7077a3ba207d429fc7c9a7400228f4a6cfa6ce99ce30c942bd28caa0b3d9774f04bd82d840dd89f20ea75bab39d3e93dd4456f7e6ab588cb2bcff17c042cf08c718a6e9366161e320520b0389e28029f1e55f7a7fd3c54b1ec5a786bcf4aae9e9ad4da8ea5d1273f06d7b14dc45044c8791d8d011c893cba21682761572cef6cacfa9cff2da9e63be8d1ce8df68524442d94e91a678fb5cb4a2385c3660419c505476f2084ca6d09b16a58e026e71b5602f7525fb5b5bb075f93952a062bee652085d7ede7ef73d468f4897c6ef90edebc97980a0bd9d3bb392d288edcf66ed853383778a8013b8bc618cec8855b0e8dbaa4f8aa39ea97ab2dc007f9faca5d1d1ed662d1aad396514bf4fb5b63f4988f7191c89a8797898ca59a95d30d34faad26a025ddaf4e240944a1a14f1e5ca966620c33a99b0395f5be93f4dc7ed007a9d5db771c3a0878a1049096046088f2a0baeb33e294d82299b82c59a9d8bbdadbbbafddcaeebe14a33b2d8526434196dbf493520e563c73469d32848681c380375530378ee88dff566f9434e3ac61892e266ac0c0a57085b65a5be5833d35cd06fa5128060a6266922d7aa6c582131d83f0a313b85d31b37786ac66403044feb43140bbbe361a97ae74cb31940b3cdc5a5f9c43d49eaff953b54615d1778436411988c629dd0ebb7db955fb988b318b0083148dca05e04d564672648bc833ef17ff0c98c73faeafcd5a0b3bac4747160432c868120056b6879cf320c2cdd97e10520b71310e47d010d8c7363cf6600a80d00eb159f9dbfe561c0f98a68ea99d544b9d1f07eed120c25ced819dfce8ab835c4f3fb093e60fdbab30bd9680acf873186e95545fe767fa635f6c6bd2cd62aa728a49abfbb800d1cbf5de390fba909b89876b92ebe03e71fde8ddbe6a7af1548cb4ae924471592b1661103910acee0aa8950e36d6c3a29ae70a9483ab4fd4db5ce20915426f2442ec95e6760030b1b858cb21c9898470ca5f47fa3aa0851d67d1ce51d84772c4b916ac3c98b0fa998944fc8b717e74dbe23583d41c66abd853e602933da992ca05914f2961aca4f69047f245029462f9fec09f629b62d399e20f416c4e8cfaa5ff60ff3531d835bc368a0aa64ff1842b2f7c266f9fcbccb82aa7fa157d0ae203194e0156033365485dc91787596b3567b46eead81df19d2757f9344758f2867c5e9264d78c5849f5ca59bf10da943a474bd0a68c219b292c7a14d0f92cebd9641d95093279a0cd7a894a9857f8ea2fb145737d44ec85b920f297cd3106a671e5ed15e2b55c9e6214c73ff3d0e8aabd125dcbbc6570c2035da8e5dc77a30f096d6ab740b47d4f861b808b3aace7c357026f7071cc39c7a70ca64bbad988060ccb0dfcd3ce7bfe30bc7298094d4a6646c9345d4b9fd90a4a18bfe415bd30e2043b364e2b07014223a2c2a51e18ad901034e7804804ab84ca28e7335baa924447ea80ab26ef92e06197cb32cb0f926914a92abaa283406eb4801bc2cdef34effae7d0659207e713f21", 0x1000}, {&(0x7f00000001c0)="37e23f27bc66fbc6f49a9d144ce65db7256e18d49b88bae36d36", 0x1a}, {&(0x7f0000000300)="1d0a5165", 0x4}, {&(0x7f0000000380)="b77079243d659ce012ed37e4e2882b1c121314ab1e43f01795a0b09498e85861", 0x20}, {&(0x7f0000001540)="4cbea4cd4cb3628e9ab5e4a97fbf241c4e875cd450c13d386231d7c9fb6d51fd7c74432daa770b23539e571166fb474ceaa98bd8e8942f62dba8666078b30c78a66f3d0ba23ac974aa2208e1ad4e6a8afd428de654eaadbf45832963da75db578348eb8f6da9228e6ff95492746ab91bbbf61dfa56d74a", 0x77}], 0x6, 0x0, 0x0, 0x40014}, 0x90) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) getsockopt$inet6_udp_int(r0, 0x11, 0xa, &(0x7f00000016c0), &(0x7f0000001700)=0x4) ioctl$VT_SETMODE(r1, 0x5602, &(0x7f0000001680)={0x7ff, 0x100000001, 0x5, 0x3b9b, 0x2}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) 11:10:22 executing program 5: r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/sys/net/ipv4/vs/secure_tcp\x00', 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/syz0\x00', 0x1ff) ioctl$KDDISABIO(r0, 0x4b37) write$binfmt_script(0xffffffffffffffff, &(0x7f00000003c0)=ANY=[@ANYBLOB], 0x0) fallocate(r1, 0x1, 0xa00600, 0x10000101) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'vcan0\x00'}) ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000140)={@empty, 0x71}) ioctl$EVIOCGMASK(0xffffffffffffffff, 0x80104592, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)}) socket(0x10, 0x0, 0x0) ioctl$sock_ifreq(0xffffffffffffffff, 0x0, &(0x7f0000000000)={"73697430000080000000000000000002", @ifru_ivalue}) 11:10:22 executing program 2: r0 = socket(0x0, 0x0, 0x0) r1 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r2 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000480)='/dev/cuse\x00', 0x280400, 0x0) r3 = getegid() getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f00000004c0)={0x0, 0x0}, &(0x7f0000000500)=0xc) mount$9p_fd(0x0, &(0x7f0000000400)='./file0\x00', &(0x7f0000000440)='9p\x00', 0x9d1d38a2eff0616a, &(0x7f0000000540)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@dfltgid={'dfltgid', 0x3d, r3}, 0x2c}, {@uname={'uname', 0x3d, '/dev/input/mouse#\x00'}, 0x2c}, {@mmap='mmap', 0x2c}, {@noextend='noextend', 0x2c}, {@fscache='fscache', 0x2c}, {@version_9p2000='version=9p2000', 0x2c}, {@access_uid={'access', 0x3d, r4}, 0x2c}, {@uname={'uname', 0x3d, '/dev/input/mouse#\x00'}, 0x2c}]}}) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0x0, 0x7, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x0) r5 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r5, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) getsockopt$inet_sctp_SCTP_RECVNXTINFO(r0, 0x84, 0x21, &(0x7f0000000300), &(0x7f0000000380)=0x4) r6 = syz_open_dev$mouse(&(0x7f00000000c0)='/dev/input/mouse#\x00', 0x3, 0x10000) ioctl$EVIOCSFF(r6, 0x40304580, &(0x7f00000001c0)=ANY=[@ANYBLOB="761ca301010004000300000093080000150008000400b3010200"]) 11:10:22 executing program 3: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x616b}, 0x0, 0x5, 0xffffffffffffffff, 0x0) r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000580)='\x00'}, 0xfffffffffffffee7) accept4$inet(r0, 0x0, &(0x7f0000000380), 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000440)=ANY=[@ANYBLOB="240000001800000000000000ffdbdf250200b0000003ff050011000008000200ac14141822f25c90dd1dab863bdc47c8eeb7e9bebe64538d61d0fe6d0486e0edcd316c1c99a3ed1fe39f7532d2385995e20cb5de21961ce58cde574dfa6e25001955cef99e"], 0x24}, 0x1}, 0x8050) r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0) ioctl(r2, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(r1, 0xc08c5336, &(0x7f00000004c0)={0x5, 0x2cb3629d, 0x1ff, 'queue1\x00', 0x1}) ioctl$TCSBRKP(r1, 0x5425, 0x771a) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) 11:10:22 executing program 1: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1") bpf$PROG_LOAD(0x5, &(0x7f0000008000)={0x0, 0x1, &(0x7f0000001fe8)=ANY=[@ANYBLOB="e92be282e09b542ad5"], &(0x7f0000003ff6)='syzkaller\x00', 0x0, 0xc3, &(0x7f0000009f3d)=""/195}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x1, 0x5, &(0x7f0000001fd8)=@framed={{0xffffffb7, 0x0, 0x0, 0x0, 0x6c000000, 0x2f}, [@ldst={0x7, 0x4e0d, 0x49}], {0x95}}, &(0x7f0000003ff6)='GPL\x00', 0x5, 0x437, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)) [ 203.981256] FAULT_INJECTION: forcing a failure. [ 203.981256] name failslab, interval 1, probability 0, space 0, times 0 [ 203.993230] CPU: 0 PID: 12591 Comm: syz-executor7 Not tainted 4.18.0-rc4-next-20180711+ #4 [ 204.001645] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 204.010986] Call Trace: [ 204.013576] dump_stack+0x1c9/0x2b4 [ 204.017206] ? dump_stack_print_info.cold.2+0x52/0x52 [ 204.022404] should_fail.cold.4+0xa/0x11 [ 204.026467] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 204.031577] ? kasan_check_write+0x14/0x20 [ 204.035816] ? __mutex_lock+0x6c4/0x1680 [ 204.039878] ? lock_downgrade+0x8f0/0x8f0 [ 204.044021] ? lock_downgrade+0x8f0/0x8f0 [ 204.048172] ? kasan_check_read+0x11/0x20 [ 204.052321] ? mutex_trylock+0x2b0/0x2b0 [ 204.056383] ? do_raw_spin_trylock+0x1c0/0x1c0 [ 204.060966] ? do_raw_spin_trylock+0x1c0/0x1c0 [ 204.065550] ? kasan_check_write+0x14/0x20 [ 204.069789] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 204.074568] ? __should_failslab+0xea/0x180 [ 204.078890] __should_failslab+0x124/0x180 [ 204.083125] should_failslab+0x9/0x14 [ 204.086924] kmem_cache_alloc_node_trace+0x26f/0x770 [ 204.092025] ? lockdep_init_map+0x9/0x10 [ 204.096082] ? __init_waitqueue_head+0x9e/0x150 [ 204.100745] ? init_wait_entry+0x1c0/0x1c0 [ 204.104981] __kmalloc_node+0x33/0x70 [ 204.108780] ? mempool_alloc_slab+0x60/0x60 [ 204.113106] mempool_init_node+0x12e/0x560 [ 204.117342] ? ida_alloc_range+0x911/0xc70 [ 204.121580] ? mempool_free+0x370/0x370 [ 204.125553] ? mempool_alloc_slab+0x60/0x60 [ 204.129884] mempool_init+0x3d/0x50 [ 204.133521] bioset_init+0x3d3/0x830 [ 204.137247] ? bioset_exit+0x370/0x370 [ 204.141143] blk_alloc_queue_node+0x292/0xf50 [ 204.145644] ? blk_mq_alloc_rqs+0x7bc/0x9c0 [ 204.149975] ? blk_init_allocated_queue+0x600/0x600 [ 204.154999] ? lockdep_init_map+0x9/0x10 [ 204.159074] ? debug_mutex_init+0x2d/0x60 [ 204.163219] ? __mutex_init+0x1f7/0x290 [ 204.167189] ? __ia32_sys_membarrier+0x150/0x150 [ 204.171953] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 204.177491] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 204.182247] ? retint_kernel+0x10/0x10 [ 204.186138] blk_mq_init_queue+0x4b/0xb0 [ 204.190194] loop_add+0x33d/0x9d0 [ 204.193641] ? loop_lookup+0x105/0x230 [ 204.197527] ? loop_queue_rq+0x660/0x660 [ 204.201594] ? __sanitizer_cov_trace_switch+0x11/0x90 [ 204.206784] loop_control_ioctl+0x199/0x540 [ 204.211107] ? loop_add+0x9d0/0x9d0 [ 204.214727] ? loop_add+0x9d0/0x9d0 [ 204.218353] ? loop_add+0x9d0/0x9d0 [ 204.221976] do_vfs_ioctl+0x1de/0x1720 [ 204.225863] ? ioctl_preallocate+0x300/0x300 [ 204.230266] ? __fget_light+0x2f7/0x440 [ 204.234235] ? fget_raw+0x20/0x20 [ 204.237684] ? __f_unlock_pos+0x19/0x20 [ 204.241659] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 204.247193] ? fput+0x130/0x1a0 [ 204.250471] ? ksys_write+0x1ae/0x260 [ 204.254269] ? security_file_ioctl+0x94/0xc0 [ 204.258673] ksys_ioctl+0xa9/0xd0 [ 204.262122] __x64_sys_ioctl+0x73/0xb0 [ 204.266006] do_syscall_64+0x1b9/0x820 [ 204.269895] ? finish_task_switch+0x1d3/0x870 [ 204.274390] ? syscall_return_slowpath+0x5e0/0x5e0 [ 204.279316] ? syscall_return_slowpath+0x31d/0x5e0 [ 204.284244] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 204.289260] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 204.294804] ? prepare_exit_to_usermode+0x291/0x3b0 [ 204.299818] ? perf_trace_sys_enter+0xb10/0xb10 [ 204.304489] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 204.309338] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 204.314523] RIP: 0033:0x455e29 11:10:23 executing program 0: sched_setaffinity(0x0, 0x8, &(0x7f0000000080)=0x1) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) r0 = memfd_create(&(0x7f0000000100)='dev ', 0x0) write(r0, &(0x7f0000000040)="16", 0x1) sendfile(r0, r0, &(0x7f0000001000), 0xffff) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) sendfile(r0, r0, &(0x7f0000000000)=0x10, 0x100000) tkill(r1, 0x15) 11:10:23 executing program 2: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=ANY=[@ANYBLOB="2400000018000000000000002dac320d000000070003ff14141800000000000000000000"], 0x24}, 0x1}, 0x0) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) accept4$packet(r0, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, &(0x7f0000000400)=0x14, 0x80800) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00', r2}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) getpeername(r0, &(0x7f0000000300)=@sco, &(0x7f00000001c0)=0x80) [ 204.317701] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 204.337013] RSP: 002b:00007fc746a7ec68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 204.344717] RAX: ffffffffffffffda RBX: 00007fc746a7f6d4 RCX: 0000000000455e29 [ 204.351979] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000014 [ 204.359242] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 204.366508] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015 [ 204.373767] R13: 00000000004be3c0 R14: 00000000004ccd10 R15: 000000000000000b 11:10:23 executing program 6: r0 = getpid() sched_setattr(r0, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x0, 0x3}, 0x0) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x0, 0x0) poll(&(0x7f00000001c0), 0x0, 0x80000000) ioctl$TCSETS(r1, 0x40045431, &(0x7f00003b9fdc)) ioctl$TIOCPKT(r1, 0x5420, &(0x7f0000000080)=0x61) read(r1, &(0x7f0000000040)=""/11, 0xffed) r2 = syz_open_pts(r1, 0x0) ioctl$TCXONC(r2, 0x5412, 0x0) 11:10:23 executing program 4: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(r0, &(0x7f0000000440)={&(0x7f00000001c0)={0x10}, 0xc, &(0x7f0000000380)={&(0x7f0000000300)=@getaddr={0x14, 0x16, 0x20, 0x70bd27, 0x25dfdbfd, {}, ["", "", "", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4000}, 0x4044004) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0x0, 0x7, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x8050) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) 11:10:23 executing program 3: socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000380)='yam0\x00', 0x10) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0xb0, 0x0, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x8050) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) 11:10:23 executing program 7 (fault-call:6 fault-nth:12): socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) 11:10:23 executing program 5: r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/sys/net/ipv4/vs/secure_tcp\x00', 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/syz0\x00', 0x1ff) ioctl$KDDISABIO(r0, 0x4b37) write$binfmt_script(0xffffffffffffffff, &(0x7f00000003c0)=ANY=[@ANYBLOB], 0x0) fallocate(r1, 0x1, 0x10000000000, 0x10000101) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'vcan0\x00'}) ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000140)={@empty, 0x71}) ioctl$EVIOCGMASK(0xffffffffffffffff, 0x80104592, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)}) socket(0x10, 0x0, 0x0) ioctl$sock_ifreq(0xffffffffffffffff, 0x0, &(0x7f0000000000)={"73697430000080000000000000000002", @ifru_ivalue}) 11:10:23 executing program 1: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) write$binfmt_elf32(r0, &(0x7f0000000400)={{0x7f, 0x45, 0x4c, 0x46, 0xfffffffffffffffe, 0x9, 0x1, 0x1, 0x6, 0x2, 0x0, 0x9, 0x130, 0x38, 0x371, 0x9, 0x8, 0x20, 0x1, 0x9, 0xff, 0x6}, [{0x5, 0x1, 0x9, 0x6, 0x9, 0x3f, 0x71, 0x10001}, {0x6474e551, 0x100000000, 0x2b941e34, 0x30, 0x7, 0x100000000, 0x1, 0x3}], "ac7e8e2edb2a01be4e764b32b37fddee287de875bec1569a79ec5919be333429caac2b748b8b864079212ba89087c9183865607f481fb8ca2b98cbc6366ba44c775e9fbbb364a81afbf6610480c317146a90eea654fe76d946a8ba02721b8cb2cf8332223667645146658b4fe5b651966d8c1e602d08c1f71fc3ff75d111e86b50a6ffe4563bcbbf7f0840d1ab97c9", [[]]}, 0x207) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)) 11:10:23 executing program 2: r0 = socket(0x0, 0x0, 0x0) r1 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0x0, 0x7, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x0) r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000380)='/dev/loop-control\x00', 0x0, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f00000000c0)={@local={0xfe, 0x80, [], 0xaa}, 0x2f, 0x0, 0x1, 0x4, 0x8000, 0x5, 0x7}, 0x20) ioctl$sock_SIOCBRADDBR(r0, 0x89a0, &(0x7f0000000300)='team0\x00') ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f") ioctl$BINDER_SET_MAX_THREADS(r0, 0x40046205, 0x2) syz_open_dev$vcsa(&(0x7f00000003c0)='/dev/vcsa#\x00', 0x26, 0x40040) ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) syz_open_dev$binder(&(0x7f00000001c0)='/dev/binder#\x00', 0x0, 0x0) fcntl$F_SET_FILE_RW_HINT(r1, 0x40e, &(0x7f00000002c0)=0x3) [ 204.604267] FAULT_INJECTION: forcing a failure. [ 204.604267] name failslab, interval 1, probability 0, space 0, times 0 [ 204.615841] CPU: 0 PID: 12645 Comm: syz-executor7 Not tainted 4.18.0-rc4-next-20180711+ #4 [ 204.624239] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 204.633589] Call Trace: [ 204.636197] dump_stack+0x1c9/0x2b4 [ 204.639834] ? dump_stack_print_info.cold.2+0x52/0x52 [ 204.645032] ? trace_hardirqs_on+0xd/0x10 [ 204.649193] should_fail.cold.4+0xa/0x11 [ 204.653290] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 204.658396] ? lock_repin_lock+0x430/0x430 [ 204.662629] ? kasan_check_write+0x14/0x20 [ 204.666868] ? __schedule+0x884/0x1ed0 [ 204.670743] ? save_stack+0xa9/0xd0 [ 204.674374] ? __sched_text_start+0x8/0x8 [ 204.678503] ? loop_add+0x33d/0x9d0 [ 204.682120] ? loop_control_ioctl+0x199/0x540 [ 204.686607] ? ksys_ioctl+0xa9/0xd0 [ 204.690225] ? __x64_sys_ioctl+0x73/0xb0 [ 204.694294] ? lock_acquire+0x1e4/0x540 [ 204.698264] ? fs_reclaim_acquire+0x20/0x20 [ 204.702571] ? lock_downgrade+0x8f0/0x8f0 [ 204.706705] ? check_same_owner+0x340/0x340 [ 204.711030] ? kasan_unpoison_shadow+0x35/0x50 [ 204.715605] __should_failslab+0x124/0x180 [ 204.719832] should_failslab+0x9/0x14 [ 204.723616] kmem_cache_alloc+0x2af/0x760 [ 204.727753] ? kasan_unpoison_shadow+0x35/0x50 [ 204.732325] ? kasan_kmalloc+0xc4/0xe0 [ 204.736203] ? mempool_free+0x370/0x370 [ 204.740171] mempool_alloc_slab+0x44/0x60 [ 204.744323] mempool_init_node+0x2d5/0x560 [ 204.748553] ? mempool_free+0x370/0x370 [ 204.752525] ? mempool_free+0x370/0x370 [ 204.756514] ? mempool_alloc_slab+0x60/0x60 [ 204.760828] mempool_init+0x3d/0x50 [ 204.764447] bioset_init+0x3d3/0x830 [ 204.768148] ? bioset_exit+0x370/0x370 [ 204.772030] blk_alloc_queue_node+0x292/0xf50 [ 204.776514] ? blk_mq_alloc_rqs+0x7bc/0x9c0 [ 204.780822] ? blk_init_allocated_queue+0x600/0x600 [ 204.785824] ? lockdep_init_map+0x9/0x10 [ 204.789879] ? debug_mutex_init+0x2d/0x60 [ 204.794025] ? __mutex_init+0x1f7/0x290 [ 204.797993] ? __ia32_sys_membarrier+0x150/0x150 [ 204.802745] ? blk_mq_alloc_rq_map+0x142/0x220 [ 204.807314] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 204.812831] ? __blk_mq_alloc_rq_map+0x17d/0x2e0 [ 204.817578] ? blk_mq_alloc_tag_set+0x50e/0xad0 [ 204.822244] ? retint_kernel+0x10/0x10 [ 204.826129] ? blk_mq_update_nr_hw_queues+0x510/0x510 [ 204.831319] blk_mq_init_queue+0x4b/0xb0 [ 204.835372] loop_add+0x33d/0x9d0 [ 204.838812] ? loop_lookup+0x105/0x230 [ 204.842686] ? loop_queue_rq+0x660/0x660 [ 204.846753] loop_control_ioctl+0x199/0x540 [ 204.851081] ? ksys_dup3+0x690/0x690 [ 204.854784] ? loop_add+0x9d0/0x9d0 [ 204.858396] ? __f_unlock_pos+0x19/0x20 [ 204.862347] ? __f_unlock_pos+0x19/0x20 [ 204.866306] ? kasan_check_write+0x14/0x20 [ 204.870525] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 204.875440] ? fsnotify+0xbac/0x14e0 [ 204.879148] ? vfs_write+0x2f3/0x560 [ 204.882862] ? loop_add+0x9d0/0x9d0 [ 204.886482] do_vfs_ioctl+0x1de/0x1720 [ 204.890360] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 204.895108] ? ioctl_preallocate+0x300/0x300 [ 204.899512] ? __fget_light+0x2f7/0x440 [ 204.903478] ? fget_raw+0x20/0x20 [ 204.906935] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 204.911689] ? security_file_ioctl+0x94/0xc0 [ 204.916080] ksys_ioctl+0xa9/0xd0 [ 204.919536] __x64_sys_ioctl+0x73/0xb0 [ 204.923412] do_syscall_64+0x1b9/0x820 [ 204.927286] ? syscall_slow_exit_work+0x500/0x500 [ 204.932112] ? syscall_return_slowpath+0x5e0/0x5e0 [ 204.937032] ? syscall_return_slowpath+0x31d/0x5e0 [ 204.941955] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 204.947473] ? prepare_exit_to_usermode+0x291/0x3b0 [ 204.952490] ? perf_trace_sys_enter+0xb10/0xb10 [ 204.957154] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 204.961991] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 204.967162] RIP: 0033:0x455e29 [ 204.970338] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 204.989522] RSP: 002b:00007fc746a7ec68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 204.997216] RAX: ffffffffffffffda RBX: 00007fc746a7f6d4 RCX: 0000000000455e29 [ 205.004476] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000014 [ 205.011734] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 205.018996] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015 [ 205.026252] R13: 00000000004be3c0 R14: 00000000004ccd10 R15: 000000000000000c 11:10:23 executing program 2: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0x0, 0x7, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x0) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) r2 = add_key(&(0x7f00000000c0)='trusted\x00', &(0x7f00000001c0)={0x73, 0x79, 0x7a, 0x3}, &(0x7f0000000400)="2308a68a3a4a3bc584eabea66cde1ab306f4bfe6012f7b44d155acafb2613251c8d0fcc55f0f8b6f509f2eeff4cd34d0fb733f67f01b93b4cd4b036f7d9b4b1a291aee0a", 0x1, 0xfffffffffffffffd) keyctl$restrict_keyring(0x1d, r2, 0x0, &(0x7f0000000300)='eth1\x00') fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) 11:10:23 executing program 3: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=ANY=[@ANYBLOB="249d0200b0000003ff050011000008000200ac141418"], 0x24}, 0x1}, 0x8050) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") getsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0x10, &(0x7f0000000440)={{{@in=@multicast2, @in6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@mcast1}, 0x0, @in6}}, &(0x7f0000000380)=0xe8) connect$packet(r0, &(0x7f0000000540)={0x11, 0x16, r2, 0x1, 0xfffffffffffff376, 0x6, @local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}}, 0x14) ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) 11:10:23 executing program 1: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) r2 = ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, r2) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) 11:10:23 executing program 4: r0 = socket(0x0, 0xfffffffffffffffc, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=ANY=[@ANYBLOB="ad85c5cefc0129000000000000000000"], 0x24}, 0x1}, 0x8050) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) socket$inet6(0xa, 0xf, 0xcd9) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) 11:10:23 executing program 5: r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/sys/net/ipv4/vs/secure_tcp\x00', 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/syz0\x00', 0x1ff) ioctl$KDDISABIO(r0, 0x4b37) write$binfmt_script(0xffffffffffffffff, &(0x7f00000003c0)=ANY=[@ANYBLOB], 0x0) fallocate(r1, 0x1, 0xb0000000000000, 0x10000101) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'vcan0\x00'}) ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000140)={@empty, 0x71}) ioctl$EVIOCGMASK(0xffffffffffffffff, 0x80104592, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)}) socket(0x10, 0x0, 0x0) ioctl$sock_ifreq(0xffffffffffffffff, 0x0, &(0x7f0000000000)={"73697430000080000000000000000002", @ifru_ivalue}) 11:10:23 executing program 4: r0 = socket(0x1, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0x0, 0x7, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x8050) r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$SNDRV_SEQ_IOCTL_GET_CLIENT_POOL(r1, 0xc058534b, &(0x7f0000000440)={0x6, 0xffffffff, 0x2, 0x71c7, 0x1, 0x1f}) ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) 11:10:23 executing program 3: r0 = socket(0x0, 0x0, 0x0) getsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(r0, 0x84, 0x75, &(0x7f0000000540)={0x0, 0xffff}, &(0x7f0000000580)=0x8) getsockopt$inet_sctp_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000005c0)={r1, 0x4f3}, &(0x7f0000000600)=0xc) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0xb0, 0x0, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x8050) r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) getsockopt$IP_VS_SO_GET_DESTS(r0, 0x0, 0x484, &(0x7f0000000440)=""/253, &(0x7f0000000380)=0xfd) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) 11:10:23 executing program 0: sched_setaffinity(0x0, 0x8, &(0x7f0000000080)=0x1) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) r0 = memfd_create(&(0x7f0000000100)='dev ', 0x0) write(r0, &(0x7f0000000040)="16", 0x1) sendfile(r0, r0, &(0x7f0000001000), 0xffff) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) sendfile(r0, r0, &(0x7f0000000000)=0x100000000000000, 0x100000) tkill(r1, 0x15) 11:10:23 executing program 2: r0 = socket(0x0, 0x0, 0x0) r1 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=ANY=[@ANYBLOB="240000030000000000000000ffdbdf25020000070003ff050011000008000200ac141418"], 0x24}, 0x1}, 0x0) r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f") lseek(r1, 0x0, 0x0) ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) getsockopt$inet_sctp_SCTP_GET_LOCAL_ADDRS(r0, 0x84, 0x6d, &(0x7f00000007c0)={0x0, 0x85, "9d65c5982352250bead6a2666165189b58777564da74144d5bc24d6700075734f3178f0a79983174a47efa4db1282c326f32afac75a19525e967c5e3264a66c0efb9d1a8ff5294a5c397b190d4aa060e473ad33940e3c1f3388c0bdce9b618fcab882b2ba44b67a61d4f2347c11b496632ae7fa7cb7017d5fd7e940e8bf99908db4335d588"}, &(0x7f0000000880)=0x8d) getsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000300)={r3, 0xa0, &(0x7f0000000700)=[@in6={0xa, 0x4e23, 0x8, @remote={0xfe, 0x80, [], 0xbb}, 0x4}, @in6={0xa, 0x4e24, 0x1ff, @ipv4={[], [0xff, 0xff], @multicast1=0xe0000001}, 0x7}, @in={0x2, 0x4e22, @rand_addr=0x97}, @in={0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0x13}}, @in6={0xa, 0x4e22, 0x6, @ipv4={[], [0xff, 0xff]}, 0x3}, @in={0x2, 0x4e23, @rand_addr=0x1ae}, @in6={0xa, 0x4e23, 0x4, @loopback={0x0, 0x1}, 0x3}]}, &(0x7f0000000380)=0x10) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDR_INFO(r0, 0x84, 0xf, &(0x7f00000004c0)={r4, @in={{0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x1c}}}, 0x7f, 0x0, 0x7f, 0x8000}, &(0x7f0000000580)=0x98) syz_mount_image$msdos(&(0x7f00000000c0)='msdos\x00', &(0x7f0000000200)='./file0\x00', 0xe800, 0x1, &(0x7f00000001c0)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020401000200027400f8", 0x16}], 0x0, &(0x7f0000000240)=ANY=[]) r5 = open(&(0x7f0000000000)='./file0/file0\x00', 0x3fff6, 0x0) utime(&(0x7f0000000040)='./file0/file0\x00', &(0x7f0000000080)={0x0, 0xfffffffffffffb16}) fsync(r5) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000440)={'\x00p_vti0\x00', 0x0}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) open(&(0x7f00000005c0)='./file0\x00', 0x0, 0x10c) r7 = syz_open_dev$audion(&(0x7f00000000c0)='/dev/audio#\x00', 0x7fffffff, 0x8800) bind$packet(r0, &(0x7f0000000600)={0x11, 0xd, r6, 0x1, 0xc9fb, 0x6, @broadcast=[0xff, 0xff, 0xff, 0xff, 0xff, 0xff]}, 0x14) ioctl$KVM_CREATE_IRQCHIP(r7, 0xae60) 11:10:24 executing program 1: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1") openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/loop-control\x00', 0x195042, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) ioctl$int_out(r1, 0x5462, &(0x7f0000000200)) setsockopt$inet_sctp6_SCTP_NODELAY(r0, 0x84, 0x3, &(0x7f00000000c0)=0x13f, 0x4) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)) 11:10:24 executing program 5: r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/sys/net/ipv4/vs/secure_tcp\x00', 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/syz0\x00', 0x1ff) ioctl$KDDISABIO(r0, 0x4b37) write$binfmt_script(0xffffffffffffffff, &(0x7f00000003c0)=ANY=[@ANYBLOB], 0x0) fallocate(r1, 0x1, 0x6000000, 0x10000101) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'vcan0\x00'}) ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000140)={@empty, 0x71}) ioctl$EVIOCGMASK(0xffffffffffffffff, 0x80104592, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)}) socket(0x10, 0x0, 0x0) ioctl$sock_ifreq(0xffffffffffffffff, 0x0, &(0x7f0000000000)={"73697430000080000000000000000002", @ifru_ivalue}) 11:10:24 executing program 6: r0 = getpid() sched_setattr(r0, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x0, 0x3}, 0x0) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x0, 0x0) poll(&(0x7f00000001c0), 0x0, 0x80000000) ioctl$TCSETS(r1, 0x40045431, &(0x7f00003b9fdc)) ioctl$TIOCPKT(r1, 0x5420, &(0x7f0000000080)=0x61) read(r1, &(0x7f0000000040)=""/11, 0xffed) r2 = syz_open_pts(r1, 0x0) ioctl$TCXONC(r2, 0x5425, 0x0) 11:10:24 executing program 7 (fault-call:6 fault-nth:13): socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) 11:10:24 executing program 4: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f00000001c0)=ANY=[@ANYBLOB="2400b810c3c2c6e7c6a707cdd24f1700001800000000000000ffdbdf250200000700037357e3ff000008000600ac1414188b492c94e2e6ea"], 0x24}, 0x1}, 0x8050) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$FS_IOC_SETFSLABEL(r1, 0x41009432, &(0x7f0000000440)="5ce841fc28132b98a0f8c9a9068eab26f211a45cadaed89123e2594cdfe7f1a657a51556fbf9ab9e9afb0084f562da7a82e788ab8ffbe17987007563dd3150d14374983b6011742fde71d9c17a14563b94557e10030dbbac2f72510669310e4e72eac7062d0049cf7d4cd545cf485408a12ae68678abaaf4382ad1a66cba9a3c5e57027bd8aaa91196e8128918d38990dfb6a12c4bf5a3fdd1d4e725e86b1cb42d7b9acd2bd5f286d36e8315798da1b907944cfc4fb9ef01e94923586fc1296aff2a40dd80d9f14d40c028b790b5a4155247601a4cdb399843289b3a901da51f2bc663bcf6632d68bd254ee4eeea932c1a0f014d9e15228be6ff55aa76ebfacf") ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) 11:10:24 executing program 3: socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(r0, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000440)=ANY=[@ANYBLOB="240000001800000000000000ffdbdf250200b0000003c1a9b116f30500110000080002008cd6cc872412e70f0c7c706a94726093ec7ff7e2aa8ab50ba32c1a8bc4418a9e0ba50210d1ea9ec731fd0606b6e088c37841410c10a53de3b1e11ba14ca76f6a7bb46cd9b8212546624216f7c3e1e09585d305f7ab01f58a17f43bc580a7ba96da57042aeae46aa230abf2eee6ac65637b171c789a45a9e18adb11"], 0x24}, 0x1}, 0x8050) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) 11:10:24 executing program 2: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_open_dev$mice(&(0x7f00000000c0)='/dev/input/mice\x00', 0x0, 0x2800) ioctl$BINDER_THREAD_EXIT(r1, 0x40046208, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0x0, 0x7, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x0) r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) [ 205.745091] FAULT_INJECTION: forcing a failure. [ 205.745091] name failslab, interval 1, probability 0, space 0, times 0 [ 205.756882] CPU: 0 PID: 12724 Comm: syz-executor7 Not tainted 4.18.0-rc4-next-20180711+ #4 [ 205.765284] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 205.774632] Call Trace: [ 205.777227] dump_stack+0x1c9/0x2b4 [ 205.780862] ? dump_stack_print_info.cold.2+0x52/0x52 [ 205.786063] ? __kernel_text_address+0xd/0x40 [ 205.790560] ? unwind_get_return_address+0x61/0xa0 11:10:24 executing program 1: r0 = socket(0x0, 0x0, 0x0) r1 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0) r3 = accept$packet(r0, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @broadcast}, &(0x7f0000000300)=0x14) r4 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000001840)='/dev/snapshot\x00', 0x80, 0x0) ioctl$IOC_PR_REGISTER(r4, 0x401870c8, &(0x7f0000001900)={0x3, 0xaf8, 0x1}) sendmmsg$unix(r0, &(0x7f0000001880)=[{&(0x7f00000001c0)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000000240)=[{&(0x7f00000000c0)="6f4b36207522d725049bef3ec90be8c0b12d41187707b6a938", 0x19}], 0x1, &(0x7f0000000340)=[@rights={0x38, 0x1, 0x1, [r1, r1, r0, r1, r0, r2, r1, r0, r0, r1]}, @rights={0x18, 0x1, 0x1, [r0]}, @rights={0x30, 0x1, 0x1, [r2, r0, r1, r2, r3, r2, r2]}], 0x80, 0x8004}, {&(0x7f0000000400)=@abs={0x1, 0x0, 0x4e24}, 0x6e, &(0x7f00000017c0)=[{&(0x7f0000000480)="ee9143cef1268514de0e3aefa15cda4d24cbed8472c745e7a983db14c9866ac31be493458f35d77ff1fcd9343b910c84c9d88bacfedbb3e4a10b5aafa83543dff898f18613b32caf999cdf6f6d54640f76ab2927dc0515bcd08155434fc549b82da3298eef6831e780d61e47209f478c30e423231df4c3ebd00d3dfa697a708778f9c91e8b7e70d10be7fccb6a78f84ad4e709218bf8e3bdd4a59bd3e99aa1b715ef7cb99ab6cc15cddbecd892ff2a8b7c20a17d217ef686e96f6e1c2836671b219fac7b412c4ecba2ee6e9116cdf32e9fb373777ce6e0ce181ce2960d8bbb43feae7f7287e61262029594b50e179ea5f63e0f", 0xf3}, {&(0x7f0000000580)="bd886e32319323bb09c921a7d28a5efe0ff4be88eb842f2d35a27c9c7e180ce72a8ce594262ef2b9ccf5a6135b3692d0ea25e5a35de8832fc57cccc79ba8ab5af9c5c62546fb4f0e8239c6863bf3185fce5ee506d873bf01ee9bcf2edd4e421c80", 0x61}, {&(0x7f0000000600)="10c7a5a0668c18648547bc11932dab14a126bc2002cfcd898ad93bf32e32071419a7689d001804b49d32b899c6c6829d1f63f96b3e2dae9d7eb6ee89ef0799bd4701342b02575c7b8048", 0x4a}, {&(0x7f0000000680)="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", 0x1000}, {&(0x7f0000001680)="2b2373c9874aa4604ee9a753034523de1d5b9201dc3b4fd4301f0eb6f155cd93ef7d30e74f24770276c6711779103043eb3b818884e68af031980d3b96e64aad1eccc0913d81b8139144c005d45ba9c9bd9df9f12a0c1ed3fbcc51e9565ab02ead2dbcb8fa0b0645faf81306f508d99626f43f", 0x73}, {&(0x7f0000001700)="7bba0c96f98c8e16c71368bbcc30a505a53b35e837471f364303a2272b19e34ce6e433cc40a18862776caeca5d5a46b47484b55eb0670a0ff081d0fb3f49d3f6d746f5946a05ae6281def01f1e7fcdf80c4c3bb754c687d2560f3f4eff43af61e18a7c109781624b7c5ade871bdcf4394ae50d762abafd045edfba225641edc5d7311f54ab6502f2f4ef9256b8a7497c55d1d7604e9164fca20af0901caf94d6", 0xa0}, {&(0x7f0000001980)="523007f26f72d48a236f346bfcb682e2ba1c70e12d0a346d9888cc3a23b011bc72b004cd994d78e879139a28e67c4696cea76c25d5bbe2e20f3bd21a9a8b4edb1f58c98fa01bb94b472be858ba3c2eee6783ab2c798f5153d2cd1b759d772c53553273c87482de1b66d31c7602d91df5334d94de460c3548e7cf77085eebe165e2b8d468e07a1e2a256e49bb00ebdba44aa793114213d5e99ed9515d8c2372c9568de2990459b9feb59695d6a0f6567b7fb12e56e789013ae27a4e94eb806fd41a30cc143967023368ff8ed7eaa2c8ee2c416a65d2799b4e69fd63df5811f3610c2b87c58adb0f1aa983b6fe1f6970b91845b9347819c55ceddeba6a40825ac3e77cd860b0e03494c7c8036c7b4aece343eede1ef7aa94ad60e527dbf30ea7fb77353292bc84b22224cbcec1c3c84ae5292ea758e27899710c02caa85231a8ae8e266e2f26ed99560d33ae9ba1e430af2909001c92e63e9868a3bde934f68c021e8791611ece5de5434ffd02c5c1ef2eca1ca38a4285b32206a155a4fae9640d26cb5bd0742d57e366b38f0846e0a3f5f72679da3d3b24e7e7c3683ae50c0aaf9f16f97c689dc30397cb950a57982ab7c44fa0e98e0c334f25a9d6eb761bb06211793dbc6dae9c6af5aeaaf49a91bca4bc5178eb4a7c6aa55a93187223d187fbba6ce2f3c849e64919c657aa93cd96a9bfbd9391d47b5cdf15e9cc8af5f6b0664d824a6796f9f7b67c0c5e87624ccf967b3b43603307ef74e2c60cb3ce5cd469f3da6f4169730473347cc11c153df3b572a1f02f971b636c457a0dbc879af96a39d594a94bd6682bc8c5aa1424a803800fdcb8d22bc8f789e62ae24372ed9c82df30fc708f677161079c0fbaa0b7d8471e8e69bf6c523bf56d108a20b3d67e62dfcfea3dd8ba6d2c35a1c93b21418032b593f0318c5710661f39ce299495bbc34ec0b61af5f6876b13d01b237713fa72324a43720bb9f095d1b240338283ec80ea3818156b6d2899234120d9c59311e3b0a65784c9a2f684396cb709df7cf69e5d91ba586669a69013a34e195dfe76d1a34d7e24069d3384226b24e3cd0697ed36a25797eb8d7a1176abbf6c804b712f177bd831f09833d931cba04907d120eac6474f7cc7353a5773709df755964a00ab5e4042bb05c26e70985c192d089e00e0f9667b0aa6350deffb792c26f85311aff2090cc31033560a822fea977f6beafde73d68b3605cbe51ea965d8e5fd0df71be4ef31a2414d1472e7802c847b2507c502125431e7560c13cd24ee8fdbba7918728ccb6712c792f00491c6dc9ef0e5923c2161e25ad1d99ced5700ec544e4cd4edd4800348fef0ed0ba4f19031619f9c4ac6141689f34e5ceb505f572b2b69c8ec35a9a1f902e3b78e51bc229a137af0c76cbb220865d38c975fee98371edc5d66bf7948a518e537cde342568ae16e89dcae7c2caa0cb4fb8757b7cf8bd5b3dd68be5a41edd9fbb4d97368831ae83a8543746e08d032888dcbf3adac476dc3b3f339af932da94eb8ce2c1c9dc92056d8d51088ca14edb34c842f0e6c4b15ebd738b3bf666864bf6bc856e22d65ea093f95aa005bac7b062690992366716e62641477070a2d43f855e9d65ba62c8c4bae100b8671f97494e084a8d3fbcfc25f16c7fb840a78bbbdbcef859e8e167f57d253173a21e9df43ed9146dc4714afeeb11f6eedf16ae93487c11485dab472415c9be6cb07296968c1e8a5a06f14a34a8628318b47d5e0d4470ee68dc73d4928586cb9b15074cc5d005b3065c425c56cb9f3e0322c287a59706f30a93a547c0ad7bf161ed1bf6645f6f9f554720dbe0612b10d5a1b260727e8fecf7ff6878a89455ecf753cdb800e0db265cca99145f2900d901e9d6123d943fe59fb6d162d36df5979904a0c2ee373aa540c03fae3553ecb258a5c025714659ab0ff67db1e800140b76c97078fdf7b62906ba9406751c6c2a4b393994f87b02b211635651dc2e76be0fa5aafa48b02355f2fb05637323fb23bbbd298d08e1aa227896debcdd1f58e78a5f76b47ab654fb1e513cf316e88631f484d674a8766ec3abed305b47e6287aa94e3cd4007ddfda9fa72e8bb9e263bcd991c543ddc5052053a2b941c785c988c73729dd1f4916bed666971b6519ae52810d41817cc6192221d04c51b57a8eb65c28d0df21736c7702cfd88a140f8ac4f1967d0a053419bfb8595d3ad4a40d8c513e40e746403495e169b21f153657af8617e4fbf378c6f7e8866bd1c46ca0cb8b216f344a060a3dcf2328be27aad9ed2b24552f166b156ecba96e5596d21dd37423468b742abbd52708b3d9eebf8cfab094a610334a8eecb1376917afc953b20ad93c611cd53b3c8dd5da338d1b6110b741803ee5d592e51ecf8d0ad1017504af5d0c05c2d0249a093d483c7a51aa94def0e5c1aa373cc21ef5afdd8610422737af4b86d6117f00fa13031682882e98ea4b237b5a5e1a44940270f3459ae21b24f8280f91e51092600f9fdf33340481c86ec2e4b9ee4270a7b8ce8d988a4a21f5a0ab35c055da86e6921a4a3dc6707c9572d663289d85b4d5ad17fc9fddcef774632c139723bf74c6aaa392e237282640cf9c4d2cb72e9c71553e44a59b02f2c58e64aaccf92ccd532be2c29d63aaa3ee4da814cb51fa14d1756ae86ca29c3ada461bb98e850b6bb6eb844fb6c2e2f3742784b80a0416b3d490805c6d44ab834e7d4ca6f00f71eab64b4cc841afa3549be1eb79f65cbadaf35e38aea183b3fb1457046f761f7bd3a55e7ec35dbdb4cea96f837e4b1b7c349086ee303c8e5d205d4e69e3b86160437db2fb24f9f23a8d6170444402d9c491645164e045f8463d3e94456c2b7eb30d3f9966e41641bd9ed94d8531f13b0789293ecb7dfe8c1c8ee13e233d9b0de960c1e4abe5751fbc3ea5cb1553ab2e19867417ee6231664119cbd247d7e10777255b0338d0de029aa7883aa709d99c4312177feb6b17abbff05d6aacbc96437605020971a35d53ee8400060fe070e51b4d9da07d973c2b1a07ccbe2dc98838c9fce3a9ff7ef8f7678dd1575120eea745c4c4142659f3c34e3431b40fcbf93e9af81d86af9692c5f3329b3279401fb7075a70221d1035e27a2f760a163680019a8afd1b1d5f587a70de206a861ada8c8e467d14b314957b9029f1f0fbf7a807f0a43c4460ddefc9890eb4045e9c2d464d127be6caaaee4da545679ed261193d1651673e84f1fca609fe7ebfd32b42be63d2ddcda437e58b456dfce553470115d611c6717a45cfa820fa7fc700ce74d8d0075671c132f5b747f3edf152eb642b2f1499772d70eb5ffe2b64ef4da235fc4c0c27ccf77e6ac11ebe9fb14939efe92fa421b65e1f9f1c2d885f1f4e66aad8b31dbed096092ea774e324ab3cd0364b6c02dfb8ebba5eaca7b079a32256670dec9eaafaa59e5cc6eedbf1fd6be944ae1c0b6e68a608901cea8f03ce013b8227db0c4e5bca543194b7b8c0ffdc45394b845b8552e5ba74df85697c1f1fe1877b156bff67048902f5b54b253b2314a0e6f7443201636ad7786e045176a906fcbfbbc434bda0ce219b4cd78c00aa4fac9e31045dc8af0b5992a240275218c9bdd41809b09fec2574afa21e56832e494bbd9209305b9001f49a5aefdc7f639f627e496697b5a2b7d42cc87e49e8aab92fd51c4dba5296bb253045a963313655c428bd9365fe577369329c3dc0aa5b7920e8098ca58eb00ebf2860f70c25e23a75f77259e2ed345dabbbab0ec7825dea73943975016ab50b29eae619af39fee8fe4fd1e019cd1a1c209fc67382c17a035dde3248a2e2ca84a1f66d77159907448588c0338a5ad3beb3500c47f9b08a977ef82dde15bfff28a71f18b8bfd0df4c2b559821fb02ea22e58ee65227aae8a71a5078f815ffe6fc80698286a3775c12bce5aabc58585b572e25ad9fb86041a24597b8d84be353329315cde8090641c907b3f8a1277bd9e4edd4c1184b3d8899ca585f1525cefe45a0e58ec289dc9e09d6d9040f1ee370267c85c34bdfd8770ca6532286aaf89391805d3b7d82a885d8007de7973484fc8508ca75ac4736925092da7a24d2e9ef541973301bfc93d69d3884bae75949c5959a05955cdd5f6ce4504b0839ca5c330305ccb52bd5c850d1c3449c8fe6c39caac371ded40b022563132e646b57473e057b1fcb2a62d064af00a9eb5a1499603546c0b50d295fd2f72eb52ce2eae97972dbe0d86b66481635703116ecaeacc92dcf1b033d63fba01597975778dae6bd49cf8d3e60f54a0050b506ef22f3ba9d42c36f4574840e60a0c0d8f01824ff60eb7318b4b16eba9bc3ca20a30633163785c74bce8ee7e54c7a158b0f7ef40d364dc3733d3e376a1f1014dfc35f7d2a57013a5530b3feacf13fefcd1d3711814d479fea8914c188de73cc621756434bc7b42dcd34c77e2df832763182455fe38f5617aa0b9dff5fff5024aae42bc3be0f6403bc92869e2bdd215bca8deb43ea4bba2ff4f471db41fecf629ab2a0ee6d140730ce4afe137f8180a6df9156e27d7ec1db091a41064157ea8bd1c1c969afbaa837185d8bd5be4984980a3591e8c4a7205da6b8c1320c9a48efa10e0ed01e46252d86efa0edc4328ac9aaa7185664b7f318b535b37662e39f6569777146f402dee99500c1216f4e5e2ee84f9104bd3f3f3931e75b0e8b53e628810b7b73f7bd143c7f5fae61f9521abcf8feb8c6323edfa5e0038d5fc73277cfadad0a81df301bdca9c565e8201239608cd8d85e6427d86bbddcd32b5abfad24998a75906cd87b6d4d8a4275032b230a853a6339967d5acafab53ecebff6ffe66fd3aac038c77c2bd8c356da87f8c9a884c00af9c204af4a927f1b633d34b3fa5fd9abceb311c83ff340d34a534ea52284205c9981ff94656c4ccca7995781fd8d76c6dade02878c50b661779991eac406f594b35903d41c6834591eab5b810953f18fdaae5a4225f20395209ff0eb93f7dad96b03224cf1e3b1c4683e95f5ce653a8edbf20f7b64f68a40b69cc5f7cec9d5cfb885fa7efdb4c06391851f4e081a43642b65f285ffee3e10bae182819b5563f665ed6a98f515eac6f6782ec24cd2e4ad6490600dfba81d678900ddca0e272687f03f28ffa91b0abbb0e970c84050aecb93fba7ea48b03260e28bfb7f8615b2ae75f1584c9322fef9fc11c7f544ad8b6e79711b45a699899c241a3a0b8af5eec8b7f6868bf06917fbc1fa970da96ce33e3451c43e057a457dc8547c24811797eb2d1cfbb0b3c908025c28c61a073adb63a760362c619933caf99fcbceb380d3d6a96935193297eeb5c177e9b694a932b952c2be0791aeefd385fbccb74c963e347926688a361964dfd71f6f53854698c8467f0b531b3be2c544e9be3cd560bc1c0b5ab4ea857e3890820d8651c890933e7f732d32965a3f9521db0ab7583eab2b29d3864f2cb7b0711c55297122aa633414ab13981fe4b5d88a2802f86df3eb3a121c8379c3315c94c96ca0423386996c7bf21d1194aadc2c2bfe479fb090e1b389d33be01c2f0c40eb35712401929126a6320594cbf3d060f24f2b83ed436652a1b851c025aa26e86456910ab937ff70a7e7126235b6cfff1bd434f899824541a35b2a2ffce14d71d88702a1bd0b8d2757069868fd3e0b7d05874cd19f429e15fa25bb002617d8018af09eb23e872a930e71e661f2f5eec93db941923a55b32b7b5672089910c95210baaec61726420ce88befa87e76edae3225c492d8a5a2314a451471bf6708895e9b6bbcca4b2696fb0de2413b", 0x1000}, {&(0x7f0000002980)="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", 0x1000}], 0x8, &(0x7f0000001840), 0x0, 0x4}], 0x2, 0x1) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)) 11:10:24 executing program 2: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xfffffffffffffffe) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000400)=ANY=[@ANYBLOB="246a775a62da5d5be2000000ffdb09a9e1f97fb4686eff050011004c23000200ac14a5c15e4ce42182b260c98136eb6c1fc4be6b4e32edde985c432e4c295af85dd863b4d094d359439e2ad50978297b62217b81e9c9bf"], 0x24}, 0x1}, 0x0) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) [ 205.795498] should_fail.cold.4+0xa/0x11 [ 205.799568] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 205.804685] ? save_stack+0xa9/0xd0 [ 205.808328] ? kasan_kmalloc+0xc4/0xe0 [ 205.812218] ? kasan_slab_alloc+0x12/0x20 [ 205.816371] ? kmem_cache_alloc+0x12e/0x760 [ 205.820697] ? mempool_alloc_slab+0x44/0x60 [ 205.825022] ? mempool_init_node+0x2d5/0x560 [ 205.829435] ? mempool_init+0x3d/0x50 [ 205.833228] ? bioset_init+0x3d3/0x830 [ 205.837109] ? blk_mq_init_queue+0x4b/0xb0 [ 205.841347] ? loop_add+0x33d/0x9d0 [ 205.844966] ? loop_control_ioctl+0x199/0x540 [ 205.849443] ? do_vfs_ioctl+0x1de/0x1720 [ 205.853494] ? ksys_ioctl+0xa9/0xd0 [ 205.857103] ? __x64_sys_ioctl+0x73/0xb0 [ 205.861148] ? do_syscall_64+0x1b9/0x820 [ 205.865196] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 205.870549] ? retint_kernel+0x10/0x10 [ 205.874427] ? lock_acquire+0x1e4/0x540 [ 205.878391] ? fs_reclaim_acquire+0x20/0x20 [ 205.882710] ? lock_downgrade+0x8f0/0x8f0 [ 205.886855] ? check_same_owner+0x340/0x340 [ 205.891171] ? retint_kernel+0x10/0x10 [ 205.895055] ? rcu_note_context_switch+0x730/0x730 [ 205.899993] __should_failslab+0x124/0x180 [ 205.904235] should_failslab+0x9/0x14 [ 205.908031] kmem_cache_alloc+0x2af/0x760 [ 205.912181] ? mempool_free+0x370/0x370 [ 205.916158] ? mempool_free+0x370/0x370 [ 205.920114] mempool_alloc_slab+0x44/0x60 [ 205.924250] mempool_init_node+0x2d5/0x560 [ 205.928490] ? mempool_free+0x370/0x370 [ 205.932452] ? mempool_alloc_slab+0x60/0x60 [ 205.936756] mempool_init+0x3d/0x50 [ 205.940367] bioset_init+0x3d3/0x830 [ 205.944073] ? bioset_exit+0x370/0x370 [ 205.947950] blk_alloc_queue_node+0x292/0xf50 [ 205.952424] ? blk_mq_alloc_rqs+0x7bc/0x9c0 [ 205.956728] ? blk_init_allocated_queue+0x600/0x600 [ 205.961727] ? lockdep_init_map+0x9/0x10 [ 205.965781] ? debug_mutex_init+0x2d/0x60 [ 205.969922] ? __mutex_init+0x1f7/0x290 [ 205.973892] ? __ia32_sys_membarrier+0x150/0x150 [ 205.978639] ? blk_mq_alloc_rq_map+0x142/0x220 [ 205.983212] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 205.988736] ? __blk_mq_alloc_rq_map+0x17d/0x2e0 [ 205.993472] ? blk_mq_alloc_tag_set+0x50e/0xad0 [ 205.998121] ? retint_kernel+0x10/0x10 [ 206.001990] ? blk_mq_update_nr_hw_queues+0x510/0x510 [ 206.007174] blk_mq_init_queue+0x4b/0xb0 [ 206.011222] loop_add+0x33d/0x9d0 [ 206.014653] ? loop_lookup+0x105/0x230 [ 206.018521] ? loop_queue_rq+0x660/0x660 [ 206.022573] loop_control_ioctl+0x199/0x540 [ 206.026890] ? ksys_dup3+0x690/0x690 [ 206.030587] ? loop_add+0x9d0/0x9d0 [ 206.034198] ? kasan_check_write+0x14/0x20 [ 206.038411] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 206.043332] ? fsnotify+0xbac/0x14e0 [ 206.047042] ? vfs_write+0x2f3/0x560 [ 206.050760] ? loop_add+0x9d0/0x9d0 [ 206.054386] do_vfs_ioctl+0x1de/0x1720 [ 206.058292] ? ioctl_preallocate+0x300/0x300 [ 206.062689] ? __fget_light+0x2f7/0x440 [ 206.066655] ? fget_raw+0x20/0x20 [ 206.070102] ? retint_kernel+0x10/0x10 [ 206.073980] ? exit_to_usermode_loop+0x121/0x380 [ 206.078725] ? __sanitizer_cov_trace_pc+0x48/0x50 [ 206.083555] ? security_file_ioctl+0x94/0xc0 [ 206.087954] ksys_ioctl+0xa9/0xd0 [ 206.091400] __x64_sys_ioctl+0x73/0xb0 [ 206.095271] do_syscall_64+0x1b9/0x820 [ 206.099139] ? syscall_slow_exit_work+0x500/0x500 [ 206.103971] ? syscall_return_slowpath+0x5e0/0x5e0 [ 206.108885] ? syscall_return_slowpath+0x31d/0x5e0 [ 206.113807] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 206.119349] ? prepare_exit_to_usermode+0x291/0x3b0 [ 206.124368] ? perf_trace_sys_enter+0xb10/0xb10 [ 206.129035] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 206.133878] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 206.139058] RIP: 0033:0x455e29 [ 206.142233] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 206.161424] RSP: 002b:00007fc746a7ec68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 206.169121] RAX: ffffffffffffffda RBX: 00007fc746a7f6d4 RCX: 0000000000455e29 [ 206.176374] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000014 [ 206.183632] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 11:10:24 executing program 3: ioctl$sock_FIOGETOWN(0xffffffffffffff9c, 0x8903, &(0x7f0000000380)=0x0) process_vm_writev(r0, &(0x7f0000000480)=[{&(0x7f0000000440)=""/59, 0x3b}], 0x1, &(0x7f0000000940)=[{&(0x7f00000004c0)=""/247, 0xf7}, {&(0x7f00000005c0)=""/176, 0xb0}, {&(0x7f0000000680)=""/120, 0x78}, {&(0x7f0000000700)=""/73, 0x49}, {&(0x7f0000000780)=""/75, 0x4b}, {&(0x7f0000000800)=""/46, 0x2e}, {&(0x7f0000000840)=""/242, 0xf2}], 0x7, 0x0) socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0xb0, 0x0, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x8050) r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000e40)={'veth1_to_bridge\x00', 0x0}) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000e80)={'ip_vti0\x00', r3}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) [ 206.190893] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015 [ 206.198150] R13: 00000000004be3c0 R14: 00000000004ccd10 R15: 000000000000000d 11:10:24 executing program 4: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0x0, 0x7, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x8050) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) recvmsg$kcm(r0, &(0x7f0000000380)={&(0x7f0000000440)=@nl=@unspec, 0x80, &(0x7f0000000300)=[{&(0x7f00000004c0)=""/82, 0x52}, {&(0x7f00000001c0)=""/30, 0x1e}], 0x2, &(0x7f0000000540)=""/71, 0x47, 0x1}, 0x2) 11:10:24 executing program 5: r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/sys/net/ipv4/vs/secure_tcp\x00', 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/syz0\x00', 0x1ff) ioctl$KDDISABIO(r0, 0x4b37) write$binfmt_script(0xffffffffffffffff, &(0x7f00000003c0)=ANY=[@ANYBLOB], 0x0) fallocate(r1, 0x1, 0xe80600, 0x10000101) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'vcan0\x00'}) ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000140)={@empty, 0x71}) ioctl$EVIOCGMASK(0xffffffffffffffff, 0x80104592, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)}) socket(0x10, 0x0, 0x0) ioctl$sock_ifreq(0xffffffffffffffff, 0x0, &(0x7f0000000000)={"73697430000080000000000000000002", @ifru_ivalue}) 11:10:25 executing program 7 (fault-call:6 fault-nth:14): socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) 11:10:25 executing program 2: r0 = openat$audio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/audio\x00', 0x20000, 0x0) ioctl$SNDRV_CTL_IOCTL_HWDEP_INFO(r0, 0x80dc5521, &(0x7f00000004c0)=""/70) r1 = creat(&(0x7f00000000c0)='./file0\x00', 0x80) ioctl$TIOCSCTTY(r1, 0x540e, 0x9f8) setsockopt$inet_opts(r1, 0x0, 0x4, &(0x7f0000000400)="e9b6684d45472a2bebe1006aee44b9f21b168fa81c722128fd47be2508e13a111391834c275be46bd6a610119d81d6cfc1af09babebe9dab870323296b088e40d23ab0a26a84fc0cd9e74df6ada454134702237f65f3edccc0b031053a91218237091b44b2806988b49f141b12a9a761be7fdcec788ce3299fb016a34721646c9ec5290155783c7b8db267d2339b1ddc36f9b5c76f54d46d7c0d39a3453e649de888919e4a84e5dbc59f4a53652fa396bfccf0f41d61f1", 0xb7) r2 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0x0, 0x7, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x0) r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) 11:10:25 executing program 0: sched_setaffinity(0x0, 0x8, &(0x7f0000000080)=0x1) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) r0 = memfd_create(&(0x7f0000000100)='dev ', 0x0) write(r0, &(0x7f0000000040)="16", 0x1) sendfile(r0, r0, &(0x7f0000001000), 0xffff) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) sendfile(r0, r0, &(0x7f0000000000)=0x200000000000000, 0x100000) tkill(r1, 0x15) 11:10:25 executing program 1: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) getsockopt$inet_sctp_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f00000000c0)={0x0, 0x3}, &(0x7f00000001c0)=0x8) setsockopt$inet_sctp_SCTP_RESET_STREAMS(r0, 0x84, 0x77, &(0x7f0000000200)={r2, 0x6d, 0x9, [0x9, 0x8001, 0x4, 0x4, 0xffff, 0x1, 0x9, 0x3, 0x9]}, 0x1a) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)) 11:10:25 executing program 3: socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = getpgid(0x0) sched_setaffinity(r0, 0x8, &(0x7f0000000380)=0x4b690a9d) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0xb0, 0x0, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x8050) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) 11:10:25 executing program 4: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone(0x0, &(0x7f0000000040), &(0x7f000084effc), &(0x7f0000c35ffc), &(0x7f0000000140)) ioprio_set$pid(0x2, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=ANY=[@ANYBLOB="24000000180000070003ff050011000008000200ac141418f23b73c30000000000000000"], 0x24}, 0x1}, 0x8050) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) setsockopt$bt_hci_HCI_FILTER(r0, 0x0, 0x2, &(0x7f00000001c0)={0x81, 0x73, 0x0, 0x8}, 0x10) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) [ 206.564421] FAULT_INJECTION: forcing a failure. [ 206.564421] name failslab, interval 1, probability 0, space 0, times 0 [ 206.575824] CPU: 1 PID: 12805 Comm: syz-executor7 Not tainted 4.18.0-rc4-next-20180711+ #4 [ 206.584230] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 206.593578] Call Trace: [ 206.596175] dump_stack+0x1c9/0x2b4 [ 206.599820] ? dump_stack_print_info.cold.2+0x52/0x52 [ 206.605023] should_fail.cold.4+0xa/0x11 [ 206.609093] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 206.614207] ? save_stack+0x43/0xd0 [ 206.617835] ? kasan_kmalloc+0xc4/0xe0 [ 206.621725] ? kasan_slab_alloc+0x12/0x20 [ 206.625879] ? kmem_cache_alloc+0x12e/0x760 [ 206.630205] ? mempool_init_node+0x2d5/0x560 [ 206.634614] ? mempool_init+0x3d/0x50 [ 206.638421] ? blk_alloc_queue_node+0x292/0xf50 [ 206.643095] ? blk_mq_init_queue+0x4b/0xb0 [ 206.647326] ? loop_add+0x33d/0x9d0 [ 206.650953] ? loop_control_ioctl+0x199/0x540 [ 206.655443] ? do_vfs_ioctl+0x1de/0x1720 [ 206.659506] ? ksys_ioctl+0xa9/0xd0 [ 206.663138] ? __x64_sys_ioctl+0x73/0xb0 [ 206.667208] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 206.672586] ? lock_acquire+0x1e4/0x540 [ 206.676564] ? fs_reclaim_acquire+0x20/0x20 [ 206.680892] ? lock_downgrade+0x8f0/0x8f0 [ 206.685051] ? check_same_owner+0x340/0x340 [ 206.689388] ? kasan_check_read+0x11/0x20 [ 206.693539] ? rcu_note_context_switch+0x730/0x730 [ 206.698471] ? do_raw_spin_trylock+0x1c0/0x1c0 [ 206.703059] __should_failslab+0x124/0x180 [ 206.707301] should_failslab+0x9/0x14 [ 206.711102] kmem_cache_alloc_node_trace+0x26f/0x770 [ 206.716206] ? lockdep_init_map+0x9/0x10 [ 206.720269] ? __init_waitqueue_head+0x9e/0x150 [ 206.724942] ? init_wait_entry+0x1c0/0x1c0 [ 206.729186] __kmalloc_node+0x33/0x70 [ 206.732996] ? mempool_alloc_slab+0x60/0x60 [ 206.737321] mempool_init_node+0x12e/0x560 [ 206.741565] ? mempool_free+0x370/0x370 [ 206.745539] ? mempool_alloc_slab+0x60/0x60 [ 206.749857] mempool_init+0x3d/0x50 [ 206.753485] bioset_init+0x63b/0x830 [ 206.757203] ? bioset_exit+0x370/0x370 [ 206.761099] blk_alloc_queue_node+0x292/0xf50 [ 206.765594] ? blk_mq_alloc_rqs+0x7bc/0x9c0 [ 206.769914] ? blk_init_allocated_queue+0x600/0x600 [ 206.774932] ? lockdep_init_map+0x9/0x10 [ 206.778992] ? debug_mutex_init+0x2d/0x60 [ 206.783140] ? __mutex_init+0x1f7/0x290 [ 206.787112] ? __ia32_sys_membarrier+0x150/0x150 [ 206.791876] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 206.797417] ? __blk_mq_alloc_rq_map+0x17d/0x2e0 [ 206.802178] ? blk_mq_alloc_tag_set+0x50e/0xad0 [ 206.806840] ? blk_mq_update_nr_hw_queues+0x510/0x510 [ 206.812027] blk_mq_init_queue+0x4b/0xb0 [ 206.816081] loop_add+0x33d/0x9d0 [ 206.819517] ? loop_lookup+0x105/0x230 [ 206.823387] ? loop_queue_rq+0x660/0x660 [ 206.827441] loop_control_ioctl+0x199/0x540 [ 206.831749] ? ksys_dup3+0x690/0x690 [ 206.835444] ? loop_add+0x9d0/0x9d0 [ 206.839058] ? kasan_check_write+0x1/0x20 [ 206.843192] ? kasan_check_write+0x14/0x20 [ 206.847410] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 206.852321] ? fsnotify+0xbac/0x14e0 [ 206.856024] ? vfs_write+0x2f3/0x560 [ 206.859725] ? loop_add+0x9d0/0x9d0 [ 206.863334] do_vfs_ioctl+0x1de/0x1720 [ 206.867205] ? fsnotify_first_mark+0x350/0x350 [ 206.871771] ? ioctl_preallocate+0x300/0x300 [ 206.876167] ? __fget_light+0x2f7/0x440 [ 206.880126] ? fget_raw+0x20/0x20 [ 206.883568] ? __sb_end_write+0xac/0xe0 [ 206.887530] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 206.893055] ? fput+0x130/0x1a0 [ 206.896333] ? ksys_write+0x1ae/0x260 [ 206.900121] ? security_file_ioctl+0x94/0xc0 [ 206.904515] ksys_ioctl+0xa9/0xd0 [ 206.907955] __x64_sys_ioctl+0x73/0xb0 [ 206.911828] do_syscall_64+0x1b9/0x820 [ 206.915700] ? syscall_slow_exit_work+0x500/0x500 [ 206.920529] ? syscall_return_slowpath+0x5e0/0x5e0 [ 206.925442] ? syscall_return_slowpath+0x31d/0x5e0 [ 206.930357] ? prepare_exit_to_usermode+0x291/0x3b0 [ 206.935358] ? perf_trace_sys_enter+0xb10/0xb10 [ 206.940029] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 206.944864] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 206.950035] RIP: 0033:0x455e29 [ 206.953206] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 206.972478] RSP: 002b:00007fc746a7ec68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 206.980170] RAX: ffffffffffffffda RBX: 00007fc746a7f6d4 RCX: 0000000000455e29 [ 206.987421] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000014 [ 206.994672] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 207.001922] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015 [ 207.009176] R13: 00000000004be3c0 R14: 00000000004ccd10 R15: 000000000000000e 11:10:25 executing program 6: r0 = getpid() sched_setattr(r0, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x0, 0x3}, 0x0) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x0, 0x0) poll(&(0x7f00000001c0), 0x0, 0x80000000) ioctl$TCSETS(r1, 0x40045431, &(0x7f00003b9fdc)) ioctl$TIOCPKT(r1, 0x5420, &(0x7f0000000080)=0x61) read(r1, &(0x7f0000000040)=""/11, 0xffed) r2 = syz_open_pts(r1, 0x0) ioctl$TCXONC(r2, 0x5423, 0x0) 11:10:25 executing program 2: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0x333, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0x0, 0x7, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0xff}, 0x1}, 0x0) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) 11:10:25 executing program 1: r0 = socket(0x0, 0x0, 0x0) r1 = syz_open_dev$admmidi(&(0x7f00000000c0)='/dev/admmidi#\x00', 0x92ae, 0x28000) futimesat(r1, &(0x7f0000000280)='./file0\x00', &(0x7f0000000300)={{0x0, 0x2710}, {0x77359400}}) ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82) write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000200)={0x0, 0x18, 0xfa00, {0x1, &(0x7f00000001c0)={0xffffffffffffffff}, 0x13f}}, 0x20) write$RDMA_USER_CM_CMD_QUERY_ROUTE(r1, &(0x7f0000000240)={0x5, 0x10, 0xfa00, {&(0x7f0000000400), r2, 0x2}}, 0x18) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) r4 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffff9c, 0x4c82) ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, r4) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)) pwrite64(r1, &(0x7f0000000600)="e9e920ad30362b0299274ec29ebaae1adca99e6c9db914629cb77fd8d95e657aa3f0a84d2a8e5749d1462883beba431544a6f612376b195192ec9ecb031c0f8c8c2cd4e7ecf2df22a622cbe65ebe23da2e187b39400e417c498acc1f947211502544c7b357edd016228c95b1a7436bb8c161e777f5551b70228a9eb52033ed2f5be197d1b3f3ab337e59d183c4ab181cda054c8136ed4971b54f4d6223a2e8af9ea45a815844eccfdc78dd96cff9f9b18b81e6c530fa965b23de0797a185853f5b67f5592ac8c1dac4e3", 0xca, 0x0) 11:10:25 executing program 5: r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/sys/net/ipv4/vs/secure_tcp\x00', 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/syz0\x00', 0x1ff) ioctl$KDDISABIO(r0, 0x4b37) write$binfmt_script(0xffffffffffffffff, &(0x7f00000003c0)=ANY=[@ANYBLOB], 0x0) fallocate(r1, 0x1, 0x500000, 0x10000101) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'vcan0\x00'}) ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000140)={@empty, 0x71}) ioctl$EVIOCGMASK(0xffffffffffffffff, 0x80104592, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)}) socket(0x10, 0x0, 0x0) ioctl$sock_ifreq(0xffffffffffffffff, 0x0, &(0x7f0000000000)={"73697430000080000000000000000002", @ifru_ivalue}) 11:10:25 executing program 3: r0 = socket(0x0, 0x0, 0x0) r1 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000d40)='/dev/sequencer\x00', 0x100, 0x0) mq_timedreceive(r1, &(0x7f0000000380), 0x0, 0x1ae, &(0x7f00000004c0)={0x77359400}) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000440)=ANY=[@ANYBLOB="2400b0000003ff050011000008000200ac141418c64aee223f175b828df022551db118d499ce529ba127a64ea2b039b5993b2429b57706128dc8e0b77627ec5932a05bb0dd30d83923e8d5e055efa1f2f1943155dbb72700c1e259fee086e78fcc4c7410061e00000000000000000000000000000000"], 0x24}, 0x1}, 0x8050) r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$KVM_SET_CLOCK(r3, 0x4030ae7b, &(0x7f0000000c40)={0x100, 0x101}) ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) sendmsg(r0, &(0x7f0000000c00)={&(0x7f0000000500)=@pppol2tp={0x18, 0x1, {0x0, r2, {0x2, 0x4e23, @multicast1=0xe0000001}, 0x3, 0x4, 0x2, 0x2}}, 0x80, &(0x7f0000000a80)=[{&(0x7f0000000580)="65669202ceaf33c26687f7602c5657ecf21c0bf16e39bc9ce5bbbc90320dad1e717feef58a3bf04c7e8a12dadba7f323d6b74e572a59121da8f51f54dd20acb19c2d49c3ee655d8d0a2d91d2ff3bde93d3c40d97428d2ece9326e3a27b35a786809d41c274b183fe7bdbf130bca5af0d43341cce34a09306b2da6b484ecdac6a7bc95f43d7d90bfbd7c0ac73971c51e4f6f46be4ab1b", 0x96}, {&(0x7f0000000640)="eb13eebbec440375ef65a6aa44ed1e6e30cb68abf977dc59f08170b3836eb2fbe80d7acf00bc2f8dd376b28e609b197bdaa70692e7bfefac27a93d72ccbc9a70b6e5cba9f72f55eb9fa09f1de33a023b82a17f19401d0834f61c71d1c51515adf70b9a61476303a6606d9fcde5b53789f8447a487d8afe3842585478ae3312afda83ff91a5d637e2c703b7e1b88d81292df4c60a697ab68c0c", 0x99}, {&(0x7f0000000380)="fa6dcb3b0ac83ac15110e0f9c0431168d14f9e09ec965f3f429f084e7ca37d77d78e0cfc50cffd5c1dc27d0239ea1f4df147654bef", 0x35}, {&(0x7f0000000700)="5e9354fe23bd09f5a903182a932b41377ab79d8320635bcb247decc12cc1c1063022974ca37efd25f669e0a70e8eb5aeb6b1f0affd0acd7f58de37f42f49845ada6a65572d323b3954c8ea5c48a0fb20edbdc8aa8fb0f2bfd40c54ab15019d984630683be159434a7dc51b297cd1f102945fc4881aa08958827795b4927bc5a587bd9b8c61aac757c8a0dfc594001c09880ee68d91193b142d80f0d47d2a451c81a285310a73ce2a8cb04855ebdc7fb8429c70f8b4a16efd44884fa6", 0xbc}, {&(0x7f00000007c0)="6d73d6f104df94bbe0983f8279785bb6d08f13becc3b2dbd061938697a96ef42ae7d8030ca9f4d2c9a904f645afd3f4a3df4f85f9ea69eb4e3357f4586c2cf63d7c75d88731a69f456f510bb2a030131aa674d91a0011d953cf8eb333e097712b55311555e91a7f61baa224ed6feded4b6e15a0d4343fe3fac46e8e5cf3d3419bb4681b6eccf42d0ceda169b6b66c3c36f67fd56a00ddeaecf7cfcc9796d5ac47bed51a96378b8d2e40f8e08ace8b2c7db08e195fd15a5", 0xb7}, {&(0x7f0000000880)="a28e559e272553919e752b7c166c1094f53d2d92624e7d8eb46073029e0150106d01", 0x22}, {&(0x7f00000008c0)="fd33c4cc84b48285c2e6829aabc7b1eea3cf6538c0ec815fb5bfddea81b9ed4c61d0c583864b2a5b5fa4dc4bac701045ea175e9d381dce205acb345c80b522bd7bb4dd574fa954dbd47023d978ebfd7e8f43e74d48dec793ce46ad9a395e34199187388eb73c75e99cdee00c37ae2e799971a9e7d759025faafc31f80ed6c949ab2d2f257071b70c568e29e971f3", 0x8e}, {&(0x7f0000000980)="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", 0xff}], 0x8, &(0x7f0000000b00)=[{0x28, 0x111, 0x4, "954321db6defefbcc1bccda76fc18385eb7b58"}, {0xb0, 0x11e, 0x9, "b545a3d73c69a439c12f65cc73a0d75d9de45e2101d7f56102e700d5cd609b53725907e08eadbe1e6b1f4eef0d4a0380d47af8bfc0576379a7ad605528196ebce0e040e96bffdbab32c7722182ff3c341d4aee14a6883fdbe5851b3ad6bfc0d4aadda1b9862eaf5ac49a191c3663a5f5e5e758e7d07664040ecb8174df14ed6a639d31a4b6bce5fd3b1cc4603d4463261f87942372fbb6691455f3916498f757"}], 0xd8}, 0x800) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) 11:10:25 executing program 4: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0x0, 0x7, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x8050) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) 11:10:25 executing program 7 (fault-call:6 fault-nth:15): socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) 11:10:25 executing program 0: sched_setaffinity(0x0, 0x8, &(0x7f0000000080)=0x1) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) r0 = memfd_create(&(0x7f0000000100)='dev ', 0x0) write(r0, &(0x7f0000000040)="16", 0x1) sendfile(r0, r0, &(0x7f0000001000), 0xffff) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) sendfile(r0, r0, &(0x7f0000000000)=0x1000000000000000, 0x100000) tkill(r1, 0x15) 11:10:25 executing program 2: r0 = socket(0x10, 0x5, 0x0) r1 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_ifreq(r1, 0x89bb, &(0x7f00000000c0)={'bond_slave_0\x00', @ifru_mtu=0x1}) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0x0, 0x7, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x0) r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) r3 = openat$snapshot(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/snapshot\x00', 0x2000, 0x0) ioctl$KDGKBTYPE(r3, 0x4b33, &(0x7f0000000300)) ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) 11:10:25 executing program 1: r0 = socket(0x0, 0x0, 0x0) r1 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) r3 = ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82) ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, r3) r4 = socket$inet6(0xa, 0x1, 0x0) ioctl(r4, 0x4000008912, &(0x7f0000000040)="295ee1311f16f477671070") sendmsg$key(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[]}, 0x1}, 0x0) getsockopt$inet_sctp_SCTP_EVENTS(r1, 0x84, 0xb, &(0x7f00000000c0), &(0x7f0000000200)=0xb) sendmsg$key(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=ANY=[@ANYBLOB="020100001000000000000000000000000800100000000300000000400000000006000000000000000000800000000000e00000010000000000f417f3330000000000000000000000000000000000000000001700030006000000000002000004000000bb000000000000000003000500000000000200423b1d632b010020009f056991380311e9aef0c07e3700"], 0x80}, 0x1}, 0x0) r5 = socket$key(0xf, 0x3, 0x2) sendmmsg(r5, &(0x7f0000000180), 0x400000000000117, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)) 11:10:26 executing program 3: socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0xb0, 0x0, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x8050) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) getitimer(0x2, &(0x7f0000000380)) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) 11:10:26 executing program 4: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0x0, 0x7, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x8050) r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) bpf$BPF_PROG_DETACH(0x9, &(0x7f00000001c0)={0x0, r1, 0xd, 0x3}, 0x14) [ 207.308442] FAULT_INJECTION: forcing a failure. [ 207.308442] name failslab, interval 1, probability 0, space 0, times 0 [ 207.319790] CPU: 1 PID: 12836 Comm: syz-executor7 Not tainted 4.18.0-rc4-next-20180711+ #4 [ 207.328182] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 207.338036] Call Trace: [ 207.340625] dump_stack+0x1c9/0x2b4 [ 207.344259] ? dump_stack_print_info.cold.2+0x52/0x52 [ 207.349460] should_fail.cold.4+0xa/0x11 [ 207.353537] ? fault_create_debugfs_attr+0x1f0/0x1f0 11:10:26 executing program 5: r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/sys/net/ipv4/vs/secure_tcp\x00', 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/syz0\x00', 0x1ff) ioctl$KDDISABIO(r0, 0x4b37) write$binfmt_script(0xffffffffffffffff, &(0x7f00000003c0)=ANY=[@ANYBLOB], 0x0) fallocate(r1, 0x1, 0x480700, 0x10000101) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'vcan0\x00'}) ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000140)={@empty, 0x71}) ioctl$EVIOCGMASK(0xffffffffffffffff, 0x80104592, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)}) socket(0x10, 0x0, 0x0) ioctl$sock_ifreq(0xffffffffffffffff, 0x0, &(0x7f0000000000)={"73697430000080000000000000000002", @ifru_ivalue}) [ 207.358643] ? __save_stack_trace+0x8d/0xf0 [ 207.362979] ? save_stack+0xa9/0xd0 [ 207.366629] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 207.371382] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 207.376140] ? retint_kernel+0x10/0x10 [ 207.380037] ? rcu_all_qs+0x60/0x2d0 [ 207.383756] ? rcu_note_context_switch+0x730/0x730 [ 207.388677] __should_failslab+0x124/0x180 [ 207.392897] should_failslab+0x9/0x14 [ 207.396698] kmem_cache_alloc+0x2af/0x760 [ 207.400859] ? mempool_alloc_slab+0x12/0x60 [ 207.405183] ? mempool_free+0x370/0x370 [ 207.409168] mempool_alloc_slab+0x44/0x60 [ 207.413330] mempool_init_node+0x2d5/0x560 [ 207.417580] ? mempool_free+0x370/0x370 [ 207.421558] ? mempool_alloc_slab+0x60/0x60 [ 207.425884] mempool_init+0x3d/0x50 [ 207.429521] bioset_init+0x63b/0x830 [ 207.433242] ? bioset_exit+0x370/0x370 [ 207.437132] blk_alloc_queue_node+0x292/0xf50 [ 207.441628] ? blk_mq_alloc_rqs+0x7bc/0x9c0 [ 207.445953] ? blk_init_allocated_queue+0x600/0x600 [ 207.450973] ? lockdep_init_map+0x9/0x10 [ 207.455037] ? debug_mutex_init+0x2d/0x60 11:10:26 executing program 5: r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/sys/net/ipv4/vs/secure_tcp\x00', 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/syz0\x00', 0x1ff) ioctl$KDDISABIO(r0, 0x4b37) write$binfmt_script(0xffffffffffffffff, &(0x7f00000003c0)=ANY=[@ANYBLOB], 0x0) fallocate(r1, 0x1, 0x64000000, 0x10000101) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'vcan0\x00'}) ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000140)={@empty, 0x71}) ioctl$EVIOCGMASK(0xffffffffffffffff, 0x80104592, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)}) socket(0x10, 0x0, 0x0) ioctl$sock_ifreq(0xffffffffffffffff, 0x0, &(0x7f0000000000)={"73697430000080000000000000000002", @ifru_ivalue}) [ 207.459185] ? __mutex_init+0x1f7/0x290 [ 207.463161] ? __ia32_sys_membarrier+0x150/0x150 [ 207.467925] ? blk_mq_alloc_rq_map+0x142/0x220 [ 207.472519] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 207.478063] ? __blk_mq_alloc_rq_map+0x17d/0x2e0 [ 207.482829] ? blk_mq_alloc_tag_set+0x50e/0xad0 [ 207.487500] ? blk_mq_update_nr_hw_queues+0x510/0x510 [ 207.492694] blk_mq_init_queue+0x4b/0xb0 [ 207.496752] loop_add+0x33d/0x9d0 [ 207.500207] ? loop_lookup+0x105/0x230 [ 207.504087] ? loop_queue_rq+0x660/0x660 [ 207.508149] loop_control_ioctl+0x199/0x540 [ 207.512468] ? ksys_dup3+0x690/0x690 [ 207.516178] ? loop_add+0x9d0/0x9d0 [ 207.519811] ? kasan_check_write+0x14/0x20 [ 207.524043] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 207.528968] ? fsnotify+0xbac/0x14e0 [ 207.532683] ? vfs_write+0x2f3/0x560 [ 207.536391] ? loop_add+0x9d0/0x9d0 [ 207.540017] do_vfs_ioctl+0x1de/0x1720 [ 207.543901] ? ioctl_preallocate+0x300/0x300 [ 207.548307] ? __fget_light+0x2f7/0x440 [ 207.552279] ? __schedule+0x1ed0/0x1ed0 [ 207.556250] ? fget_raw+0x20/0x20 [ 207.559703] ? __sb_end_write+0xac/0xe0 [ 207.563681] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 207.569217] ? fput+0x130/0x1a0 [ 207.572502] ? security_file_ioctl+0x94/0xc0 [ 207.576902] ksys_ioctl+0xa9/0xd0 [ 207.580347] __x64_sys_ioctl+0x73/0xb0 [ 207.584227] do_syscall_64+0x1b9/0x820 [ 207.588104] ? syscall_slow_exit_work+0x500/0x500 [ 207.592945] ? syscall_return_slowpath+0x5e0/0x5e0 [ 207.597866] ? syscall_return_slowpath+0x31d/0x5e0 [ 207.602791] ? prepare_exit_to_usermode+0x291/0x3b0 [ 207.607801] ? perf_trace_sys_enter+0xb10/0xb10 [ 207.612461] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 207.617312] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 207.622495] RIP: 0033:0x455e29 [ 207.625671] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 207.644943] RSP: 002b:00007fc746a7ec68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 207.652647] RAX: ffffffffffffffda RBX: 00007fc746a7f6d4 RCX: 0000000000455e29 11:10:26 executing program 5: r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/sys/net/ipv4/vs/secure_tcp\x00', 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/syz0\x00', 0x1ff) ioctl$KDDISABIO(r0, 0x4b37) write$binfmt_script(0xffffffffffffffff, &(0x7f00000003c0)=ANY=[@ANYBLOB], 0x0) fallocate(r1, 0x1, 0x30000000000000, 0x10000101) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'vcan0\x00'}) ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000140)={@empty, 0x71}) ioctl$EVIOCGMASK(0xffffffffffffffff, 0x80104592, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)}) socket(0x10, 0x0, 0x0) ioctl$sock_ifreq(0xffffffffffffffff, 0x0, &(0x7f0000000000)={"73697430000080000000000000000002", @ifru_ivalue}) 11:10:26 executing program 5: r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/sys/net/ipv4/vs/secure_tcp\x00', 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/syz0\x00', 0x1ff) ioctl$KDDISABIO(r0, 0x4b37) write$binfmt_script(0xffffffffffffffff, &(0x7f00000003c0)=ANY=[@ANYBLOB], 0x0) fallocate(r1, 0x1, 0x1000000000000000, 0x10000101) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'vcan0\x00'}) ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000140)={@empty, 0x71}) ioctl$EVIOCGMASK(0xffffffffffffffff, 0x80104592, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)}) socket(0x10, 0x0, 0x0) ioctl$sock_ifreq(0xffffffffffffffff, 0x0, &(0x7f0000000000)={"73697430000080000000000000000002", @ifru_ivalue}) [ 207.659904] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000014 [ 207.667166] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 207.674423] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015 [ 207.681672] R13: 00000000004be3c0 R14: 00000000004ccd10 R15: 000000000000000f 11:10:27 executing program 2: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r1 = openat$mixer(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/mixer\x00', 0x204000, 0x0) ioctl$KVM_SIGNAL_MSI(r1, 0x4020aea5, &(0x7f00000001c0)={0x0, 0xd000, 0x400, 0x636, 0x200}) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0x0, 0x7, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x0) r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) openat$rfkill(0xffffffffffffff9c, &(0x7f0000000300)='/dev/rfkill\x00', 0x80100, 0x0) ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) 11:10:27 executing program 5: r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/sys/net/ipv4/vs/secure_tcp\x00', 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/syz0\x00', 0x1ff) ioctl$KDDISABIO(r0, 0x4b37) write$binfmt_script(0xffffffffffffffff, &(0x7f00000003c0)=ANY=[@ANYBLOB], 0x0) fallocate(r1, 0x1, 0x800a00000000, 0x10000101) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'vcan0\x00'}) ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000140)={@empty, 0x71}) ioctl$EVIOCGMASK(0xffffffffffffffff, 0x80104592, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)}) socket(0x10, 0x0, 0x0) ioctl$sock_ifreq(0xffffffffffffffff, 0x0, &(0x7f0000000000)={"73697430000080000000000000000002", @ifru_ivalue}) 11:10:27 executing program 6: r0 = getpid() sched_setattr(r0, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x0, 0x3}, 0x0) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x0, 0x0) poll(&(0x7f00000001c0), 0x0, 0x80000000) ioctl$TCSETS(r1, 0x40045431, &(0x7f00003b9fdc)) ioctl$TIOCPKT(r1, 0x5420, &(0x7f0000000080)=0x61) read(r1, &(0x7f0000000040)=""/11, 0xffed) r2 = syz_open_pts(r1, 0x0) ioctl$TCXONC(r2, 0x5451, 0x0) 11:10:27 executing program 7 (fault-call:6 fault-nth:16): socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) 11:10:27 executing program 4: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) getsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000001c0)=@assoc_value={0x0, 0x400}, &(0x7f0000000300)=0x8) getsockopt$inet_sctp6_SCTP_PEER_AUTH_CHUNKS(r0, 0x84, 0x1a, &(0x7f0000000440)=ANY=[@ANYRES32=r2, @ANYBLOB="8b000000b339c757777a70fc265a986135d0e9e5972f3b2f1da9d47e658fe03201a2263a8b91df4519b04ed5f2769a139b02dd2a9dde2b3696ae91225818045b1b7a68d58a5af5b6c3eaa49fae5494e3af402ce41ef2fb859fef460f6d19f574c950ae5b09d7cfacd8d1e1cbbbd2b17a4a91effe6f9b18ad3a049a07e1ccbae55a44faf3b19d9bfcb30c5432f88a0e"], &(0x7f0000000380)=0x93) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0x0, 0x7, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x8050) utime(&(0x7f0000000540)='./file0\x00', &(0x7f0000000580)={0x4, 0x7ff}) ioctl$TIOCSBRK(r1, 0x5427) r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) r4 = socket(0x1e, 0x805, 0x0) setsockopt$packet_tx_ring(r4, 0x10f, 0x87, &(0x7f00000000c0)=@req3, 0x1c) openat$uinput(0xffffffffffffff9c, &(0x7f0000000500)='/dev/uinput\x00', 0x200000, 0x0) ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) 11:10:27 executing program 3: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$inet_icmp_ICMP_FILTER(r0, 0x1, 0x1, &(0x7f0000000380)={0xffff}, 0x4) r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000540)='vmnet1]-\x00'}, 0xffffffffffffff5b) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) ioctl$TIOCGPGRP(r1, 0x540f, &(0x7f00000000c0)=0x0) prctl$setptracer(0x59616d61, r2) setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000580)={0x0, 0x2, 0x9, 0x0, 0xffffffffffffffff, 0x6, 0x3, 0x6, 0x8001, 0x7, 0xdddf}, 0xb) ioctl$int_in(r1, 0x5452, &(0x7f0000000240)=0x5) memfd_create(&(0x7f0000000500)="26776c616e313a7d3a73656c66a276626f786e65743000", 0x3) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000480)=ANY=[@ANYBLOB="2400000018000000000000e14adbdf250200b0000003ff05009b22bdf360968ec125912911000008000200ac141418db866be33eaa6b163d2576ff825acedc6cf8cb20a19c42262fbcac3921ab6cc6942f815cb3bf827c3b324543651de05679222fff7c819c6307e2faa63936dd8a85c6332ce0048800000000"], 0x24}, 0x1}, 0x8050) r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0xffffffff, &(0x7f0000000100)="295ee1311f16") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) memfd_create(&(0x7f0000000440)=':\x00', 0x1) 11:10:27 executing program 1: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) setsockopt$netlink_NETLINK_CAP_ACK(r0, 0x10e, 0xa, &(0x7f00000000c0)=0x9, 0x4) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)) [ 208.440369] FAULT_INJECTION: forcing a failure. [ 208.440369] name failslab, interval 1, probability 0, space 0, times 0 [ 208.451690] CPU: 0 PID: 12912 Comm: syz-executor7 Not tainted 4.18.0-rc4-next-20180711+ #4 [ 208.460094] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 208.469443] Call Trace: [ 208.472042] dump_stack+0x1c9/0x2b4 [ 208.475677] ? dump_stack_print_info.cold.2+0x52/0x52 [ 208.480870] should_fail.cold.4+0xa/0x11 [ 208.484937] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 208.490035] ? save_stack+0xa9/0xd0 [ 208.493662] ? kasan_kmalloc+0xc4/0xe0 [ 208.497841] ? kasan_slab_alloc+0x12/0x20 [ 208.501990] ? kmem_cache_alloc+0x12e/0x760 [ 208.506320] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 208.511101] ? retint_kernel+0x10/0x10 [ 208.514990] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 208.519756] ? retint_kernel+0x10/0x10 [ 208.523648] ? __should_failslab+0x14/0x180 [ 208.527966] __should_failslab+0x124/0x180 [ 208.532196] should_failslab+0x9/0x14 [ 208.535987] kmem_cache_alloc+0x2af/0x760 [ 208.540138] ? mempool_free+0x370/0x370 [ 208.544112] ? mempool_free+0x370/0x370 [ 208.548083] mempool_alloc_slab+0x44/0x60 [ 208.552224] mempool_init_node+0x2d5/0x560 [ 208.556452] ? mempool_free+0x370/0x370 [ 208.560427] ? mempool_alloc_slab+0x60/0x60 [ 208.564739] mempool_init+0x3d/0x50 [ 208.568351] bioset_init+0x63b/0x830 [ 208.572060] ? bioset_exit+0x370/0x370 [ 208.575945] blk_alloc_queue_node+0x292/0xf50 [ 208.580447] ? blk_mq_alloc_rqs+0x7bc/0x9c0 [ 208.584773] ? blk_init_allocated_queue+0x600/0x600 [ 208.589789] ? lockdep_init_map+0x9/0x10 [ 208.593847] ? debug_mutex_init+0x2d/0x60 [ 208.597995] ? __mutex_init+0x1f7/0x290 [ 208.601969] ? __ia32_sys_membarrier+0x150/0x150 [ 208.606725] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 208.612248] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 208.616999] ? retint_kernel+0x10/0x10 [ 208.620880] blk_mq_init_queue+0x4b/0xb0 [ 208.624928] loop_add+0x33d/0x9d0 [ 208.628371] ? loop_lookup+0x105/0x230 [ 208.632242] ? loop_queue_rq+0x660/0x660 [ 208.636294] ? loop_control_ioctl+0x15d/0x540 [ 208.640780] loop_control_ioctl+0x199/0x540 [ 208.645103] ? loop_add+0x9d0/0x9d0 [ 208.648720] ? loop_add+0x9d0/0x9d0 [ 208.652332] ? loop_add+0x9d0/0x9d0 [ 208.655949] do_vfs_ioctl+0x1de/0x1720 [ 208.659838] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 208.664591] ? ioctl_preallocate+0x300/0x300 [ 208.668989] ? __fget_light+0x2f7/0x440 [ 208.672958] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 208.677695] ? retint_kernel+0x10/0x10 [ 208.681569] ksys_ioctl+0xa9/0xd0 [ 208.685000] __x64_sys_ioctl+0x73/0xb0 [ 208.688875] do_syscall_64+0x1b9/0x820 [ 208.692740] ? syscall_slow_exit_work+0x500/0x500 [ 208.697561] ? syscall_return_slowpath+0x5e0/0x5e0 [ 208.702469] ? syscall_return_slowpath+0x31d/0x5e0 [ 208.707393] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 208.712921] ? prepare_exit_to_usermode+0x291/0x3b0 [ 208.717932] ? perf_trace_sys_enter+0xb10/0xb10 [ 208.722598] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 208.727442] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 208.732621] RIP: 0033:0x455e29 [ 208.735791] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 208.754919] RSP: 002b:00007fc746a7ec68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 208.762615] RAX: ffffffffffffffda RBX: 00007fc746a7f6d4 RCX: 0000000000455e29 [ 208.769868] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000014 [ 208.777121] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 208.784387] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015 11:10:27 executing program 0: sched_setaffinity(0x0, 0x8, &(0x7f0000000080)=0x1) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) r0 = memfd_create(&(0x7f0000000100)='dev ', 0x0) write(r0, &(0x7f0000000040)="16", 0x1) sendfile(r0, r0, &(0x7f0000001000), 0xffff) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) sendfile(r0, r0, &(0x7f0000000000)=0xffffffff00000000, 0x100000) tkill(r1, 0x15) 11:10:27 executing program 5: r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/sys/net/ipv4/vs/secure_tcp\x00', 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/syz0\x00', 0x1ff) ioctl$KDDISABIO(r0, 0x4b37) write$binfmt_script(0xffffffffffffffff, &(0x7f00000003c0)=ANY=[@ANYBLOB], 0x0) fallocate(r1, 0x1, 0xffc70000, 0x10000101) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'vcan0\x00'}) ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000140)={@empty, 0x71}) ioctl$EVIOCGMASK(0xffffffffffffffff, 0x80104592, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)}) socket(0x10, 0x0, 0x0) ioctl$sock_ifreq(0xffffffffffffffff, 0x0, &(0x7f0000000000)={"73697430000080000000000000000002", @ifru_ivalue}) 11:10:27 executing program 1: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) r2 = syz_open_dev$mouse(&(0x7f0000000200)='/dev/input/mouse#\x00', 0xffffffff, 0x181000) ioctl$BLKPBSZGET(r2, 0x127b, &(0x7f0000000240)) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)) getsockopt$inet_sctp_SCTP_HMAC_IDENT(r0, 0x84, 0x16, &(0x7f00000000c0)=ANY=[@ANYBLOB="05001000080001004f1701000180"], &(0x7f00000001c0)=0xe) [ 208.791645] R13: 00000000004be3c0 R14: 00000000004ccd10 R15: 0000000000000010 11:10:27 executing program 3: socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) ioctl$BLKREPORTZONE(r0, 0xc0101282, &(0x7f0000000440)={0x401, 0x8, 0x0, [{0x1, 0x7fffffff, 0xfffffffffffffffc, 0x9, 0x1ff, 0x8001, 0x6}, {0xe2fb, 0x1, 0x4, 0xa4c, 0x1, 0x1, 0x4}, {0x7ff, 0x9, 0x1ff, 0x1, 0x1, 0x8, 0x6}, {0x2, 0x2, 0x6, 0x1f, 0x7fffffff, 0x7}, {0x4, 0x100000001, 0x20, 0x800, 0x5, 0x9, 0x7}, {0x4, 0x1790, 0x5, 0x10000, 0x4, 0x1, 0x7ff}, {0x7fffffff, 0x4, 0x8, 0x8, 0x2040000000000000, 0x6, 0xfffffffffffffff7}, {0x9, 0x800, 0x5, 0x1cfab48b, 0x1, 0x0, 0x3f}]}) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0xb0, 0x0, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x8050) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) 11:10:27 executing program 2: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000300)=ANY=[@ANYBLOB="24000000180000001c00ff050011000008000200ac141418772c26404713e3bfd3"], 0x24}, 0x1}, 0x0) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) r2 = getpgid(0x0) prlimit64(r2, 0x5, &(0x7f00000000c0)={0x7, 0x84c}, &(0x7f00000001c0)) 11:10:27 executing program 4: r0 = socket(0x0, 0x0, 0x0) r1 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=ANY=[@ANYBLOB="24000000180000000000000072000000020000070003ff050011000008000200ac141418"], 0x24}, 0x1}, 0x8050) r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0) ioctl(r1, 0x0, &(0x7f0000000380)="2948e135038f") ioctl(r1, 0x81, &(0x7f0000000440)="98cfcefd8b1e41183d456750e26afd3c53be4f14e261d6a061e933c01cbb2e8cce343f2a3ba1a0076b493b4318ffdc33788b8bcce8a7521b3f22255ffe9d01ce8478c43f7a722fde317d25f187c115c2a8c954c8b79061869fbc3d6399e3945a1ec359606cda88232c6f8b6e0a548058818b528ff42d00294386971c0205f4c3e299dd2b721dd7aa5c3de1e5ecb33ef8d558df48f9b63c4ee48a7a19") setsockopt$packet_rx_ring(r2, 0x107, 0x5, &(0x7f00000001c0)=@req3={0x8, 0x5b3, 0x7fff, 0x8, 0x7fffffff, 0x1000, 0x101}, 0x1c) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) 11:10:27 executing program 7 (fault-call:6 fault-nth:17): socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) [ 208.996282] FAULT_INJECTION: forcing a failure. [ 208.996282] name failslab, interval 1, probability 0, space 0, times 0 [ 209.007736] CPU: 0 PID: 12956 Comm: syz-executor7 Not tainted 4.18.0-rc4-next-20180711+ #4 [ 209.016148] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 209.025498] Call Trace: [ 209.028079] dump_stack+0x1c9/0x2b4 [ 209.031695] ? dump_stack_print_info.cold.2+0x52/0x52 [ 209.036881] should_fail.cold.4+0xa/0x11 [ 209.040930] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 209.046033] ? retint_kernel+0x10/0x10 [ 209.049914] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 209.055272] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 209.060021] ? retint_kernel+0x10/0x10 [ 209.063905] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 209.068647] ? retint_kernel+0x10/0x10 [ 209.072531] ? __should_failslab+0xea/0x180 [ 209.076843] __should_failslab+0x124/0x180 [ 209.081078] should_failslab+0x9/0x14 [ 209.084876] kmem_cache_alloc_node_trace+0x26f/0x770 [ 209.089965] bdi_alloc_node+0x67/0xe0 [ 209.093756] blk_alloc_queue_node+0x2c2/0xf50 [ 209.098237] ? blk_mq_alloc_rqs+0x7bc/0x9c0 [ 209.102544] ? blk_init_allocated_queue+0x600/0x600 [ 209.107554] ? lockdep_init_map+0x9/0x10 [ 209.111603] ? debug_mutex_init+0x2d/0x60 [ 209.115731] ? __mutex_init+0x1f7/0x290 [ 209.119692] ? __ia32_sys_membarrier+0x150/0x150 [ 209.124436] ? blk_mq_alloc_rq_map+0x142/0x220 [ 209.129005] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 209.134536] ? __blk_mq_alloc_rq_map+0x17d/0x2e0 [ 209.139284] ? audit_kill_trees+0x450/0x450 [ 209.143601] ? blk_mq_alloc_tag_set+0x50e/0xad0 [ 209.148255] ? blk_mq_update_nr_hw_queues+0x510/0x510 [ 209.153431] blk_mq_init_queue+0x4b/0xb0 [ 209.157476] loop_add+0x33d/0x9d0 [ 209.160916] ? loop_lookup+0x105/0x230 [ 209.164787] ? loop_queue_rq+0x660/0x660 [ 209.168831] loop_control_ioctl+0x199/0x540 [ 209.173132] ? ksys_dup3+0x690/0x690 [ 209.176825] ? loop_add+0x9d0/0x9d0 [ 209.180437] ? kasan_check_write+0x1/0x20 [ 209.184572] ? kasan_check_write+0x14/0x20 [ 209.188795] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 209.194232] ? fsnotify+0xbac/0x14e0 [ 209.197943] ? vfs_write+0x2f3/0x560 [ 209.201655] ? loop_add+0x9d0/0x9d0 [ 209.205286] do_vfs_ioctl+0x1de/0x1720 [ 209.209176] ? ioctl_preallocate+0x300/0x300 [ 209.213582] ? __fget_light+0x2f7/0x440 [ 209.217546] ? __schedule+0x1ed0/0x1ed0 [ 209.221503] ? fget_raw+0x20/0x20 [ 209.224949] ? retint_kernel+0x10/0x10 [ 209.228827] ? exit_to_usermode_loop+0xb5/0x380 [ 209.233478] ? security_file_ioctl+0x94/0xc0 [ 209.237867] ksys_ioctl+0xa9/0xd0 [ 209.241302] __x64_sys_ioctl+0x73/0xb0 [ 209.245173] do_syscall_64+0x1b9/0x820 [ 209.249053] ? syscall_slow_exit_work+0x500/0x500 [ 209.253884] ? syscall_return_slowpath+0x5e0/0x5e0 [ 209.258795] ? syscall_return_slowpath+0x31d/0x5e0 [ 209.263703] ? prepare_exit_to_usermode+0x291/0x3b0 [ 209.268706] ? perf_trace_sys_enter+0xb10/0xb10 [ 209.273378] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 209.278225] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 209.283407] RIP: 0033:0x455e29 [ 209.286585] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 209.305745] RSP: 002b:00007fc746a7ec68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 209.313435] RAX: ffffffffffffffda RBX: 00007fc746a7f6d4 RCX: 0000000000455e29 [ 209.320684] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000014 [ 209.327937] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 209.335204] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015 [ 209.342459] R13: 00000000004be3c0 R14: 00000000004ccd10 R15: 0000000000000011 11:10:28 executing program 2: r0 = socket(0x0, 0x0, 0x0) r1 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0x0, 0x7, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x0) r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) fcntl$getownex(r1, 0x10, &(0x7f0000000300)) r3 = syz_open_dev$dmmidi(&(0x7f00000000c0)='/dev/dmmidi#\x00', 0x0, 0x0) epoll_ctl$EPOLL_CTL_MOD(r3, 0x3, r0, &(0x7f00000001c0)={0xa0000000}) 11:10:28 executing program 1: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1") fgetxattr(r0, &(0x7f00000000c0)=@random={'user.', '\x00'}, &(0x7f0000000400)=""/4096, 0x1000) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)) 11:10:28 executing program 3: socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10001}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) getresgid(&(0x7f0000000380), &(0x7f0000000440), &(0x7f0000000480)) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0xb0, 0x0, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x8050) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) 11:10:28 executing program 5: r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/sys/net/ipv4/vs/secure_tcp\x00', 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/syz0\x00', 0x1ff) ioctl$KDDISABIO(r0, 0x4b37) write$binfmt_script(0xffffffffffffffff, &(0x7f00000003c0)=ANY=[@ANYBLOB], 0x0) fallocate(r1, 0x1, 0x1000000, 0x10000101) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'vcan0\x00'}) ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000140)={@empty, 0x71}) ioctl$EVIOCGMASK(0xffffffffffffffff, 0x80104592, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)}) socket(0x10, 0x0, 0x0) ioctl$sock_ifreq(0xffffffffffffffff, 0x0, &(0x7f0000000000)={"73697430000080000000000000000002", @ifru_ivalue}) 11:10:28 executing program 6: r0 = getpid() sched_setattr(r0, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x0, 0x3}, 0x0) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x0, 0x0) poll(&(0x7f00000001c0), 0x0, 0x80000000) ioctl$TCSETS(r1, 0x40045431, &(0x7f00003b9fdc)) ioctl$TIOCPKT(r1, 0x5420, &(0x7f0000000080)=0x61) read(r1, &(0x7f0000000040)=""/11, 0xffed) r2 = syz_open_pts(r1, 0x0) ioctl$TCXONC(r2, 0x5452, 0x0) 11:10:28 executing program 4: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) ioctl$FIBMAP(r0, 0x1, &(0x7f00000001c0)=0x54) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000440)=ANY=[@ANYBLOB="240000001800000000000000310000000000000000030011000008001200ac1414180000000000f1fffffff31318698e9584f9ea51b62519208927b3ccbe0835f334cc2ec8fd27a14487900903f14155124a56ca5d6c3d529503850b7f0d7a4522781528e25ca2a9d744d7d9e93ef10ac506aa3a7a3e5d7b87b5a5a790976ce82ad3e37ded92e18b37964b4f658370de4d7474152ec44297b6e9118401893208f388df4a334fb678c5d2edb47a4c45f7f4bbc34ba53c5f7499b71536d8b2cd7dda21dc2bc4013014ce041d0b74c6a77f0ce0"], 0x24}, 0x1}, 0x8050) r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$ASHMEM_GET_PROT_MASK(r1, 0x7706, &(0x7f0000000240)) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) 11:10:28 executing program 7 (fault-call:6 fault-nth:18): socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) 11:10:28 executing program 1: r0 = socket(0x0, 0x0, 0x0) r1 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0xfffffffffffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) getsockopt$inet_dccp_buf(r0, 0x21, 0xee5af3b2d0bdcccf, &(0x7f00000001c0)=""/251, &(0x7f00000002c0)=0xfb) r2 = dup(r1) ioctl$SNDRV_CTL_IOCTL_PVERSION(r2, 0x80045500, &(0x7f0000000300)) r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/loop-control\x00', 0x42000, 0x0) ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)) 11:10:28 executing program 3: socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000440)=ANY=[@ANYBLOB="240000001800000000000000ffdbdf250200b0000003ff050011000008000200ac141418922cf555031b562c30f59ea085e58b7dcca3c6bfb6562856f766df6e657ffe4eadb2cda6513521977eb5ae7947a410800a55177d3a0b2e726cb3b927c5225d096f4cd422609d0b150e2b72da984e78b9b3b2d3a6b093b41d8b890eda988178b1c3d9b19f171e3f1239cb3e00fa3e8e028647c28e64d1ffde34096b64087ee41a2b80baf60991acb54459f749cd93142aaeea5cc9b256874e45219aec9be98c1a7406f7c54ddaf4025b83c0143f47f3947e6f50972eb1a27fbec93a10ef3a986485b47a4fa6c0e2ab22"], 0x24}, 0x1}, 0x8050) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) 11:10:28 executing program 0: sched_setaffinity(0x0, 0x8, &(0x7f0000000080)=0x1) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) r0 = memfd_create(&(0x7f0000000100)='dev ', 0x0) write(r0, &(0x7f0000000040)="16", 0x1) sendfile(r0, r0, &(0x7f0000001000), 0xffff) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) sendfile(r0, r0, &(0x7f0000000000)=0xf00, 0x100000) tkill(r1, 0x15) 11:10:28 executing program 2: r0 = syz_open_dev$amidi(&(0x7f00000001c0)='/dev/amidi#\x00', 0x4, 0x0) ioctl$SNDRV_SEQ_IOCTL_DELETE_QUEUE(r0, 0x408c5333, &(0x7f0000000400)={0x5, 0x3, 0x6, 'queue0\x00', 0x3}) r1 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0x0, 0x7, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x0) signalfd(r1, &(0x7f00000000c0)={0x8e2}, 0x8) r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) 11:10:28 executing program 1: r0 = socket(0x14, 0x80000000000001, 0xfffffffffffffffe) r1 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) pipe2$9p(&(0x7f0000000240), 0x4800) r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1") pread64(r1, &(0x7f0000000300)=""/100, 0x64, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ipddp0\x00'}) setsockopt$inet6_IPV6_ADDRFORM(r0, 0x29, 0x1, &(0x7f00000000c0)=0x2, 0x4) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)) 11:10:28 executing program 4: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) r1 = syz_open_dev$sndseq(&(0x7f0000000380)='/dev/snd/seq\x00', 0x0, 0x400080) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=ANY=[@ANYBLOB="240000001800000000000000ffdbdf2800000007000008000202ac141418"], 0x24}, 0x1}, 0x8050) r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000300)="295ee1311f16") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00', 0x0}) getsockname$packet(r1, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @dev}, &(0x7f0000000480)=0x14) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) ioctl$sock_inet6_SIOCSIFADDR(r0, 0x8916, &(0x7f00000001c0)={@mcast2={0xff, 0x2, [], 0x1}, 0x1e, r3}) 11:10:28 executing program 3: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0xb0, 0x0, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x8050) recvfrom$packet(r0, &(0x7f0000000440)=""/214, 0xd6, 0x40000102, 0x0, 0x0) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) [ 209.677842] FAULT_INJECTION: forcing a failure. [ 209.677842] name failslab, interval 1, probability 0, space 0, times 0 [ 209.689245] CPU: 0 PID: 13025 Comm: syz-executor7 Not tainted 4.18.0-rc4-next-20180711+ #4 [ 209.697644] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 209.706992] Call Trace: [ 209.709570] dump_stack+0x1c9/0x2b4 [ 209.713186] ? dump_stack_print_info.cold.2+0x52/0x52 [ 209.718369] ? should_fail+0x235/0xd86 [ 209.722251] should_fail.cold.4+0xa/0x11 [ 209.726316] ? kasan_check_read+0x11/0x20 [ 209.730473] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 209.735573] ? kasan_check_write+0x14/0x20 [ 209.739789] ? trace_hardirqs_on+0xd/0x10 [ 209.743934] ? __debug_object_init+0x581/0x12e0 [ 209.748596] ? retint_kernel+0x10/0x10 [ 209.752467] ? debug_object_free+0x690/0x690 [ 209.756871] ? do_raw_spin_unlock+0xa7/0x2f0 [ 209.761273] ? lock_acquire+0x1e4/0x540 [ 209.765232] ? fs_reclaim_acquire+0x20/0x20 [ 209.769538] ? lock_downgrade+0x8f0/0x8f0 [ 209.773695] ? check_same_owner+0x340/0x340 [ 209.778024] ? wb_congested_get_create+0x187/0x470 [ 209.782943] ? rcu_note_context_switch+0x730/0x730 [ 209.787864] __should_failslab+0x124/0x180 [ 209.792084] should_failslab+0x9/0x14 [ 209.795875] kmem_cache_alloc_trace+0x2cb/0x780 [ 209.800529] ? kasan_check_write+0x14/0x20 [ 209.804750] ? do_raw_spin_lock+0xc1/0x200 [ 209.808971] wb_congested_get_create+0x1d2/0x470 [ 209.813711] ? wb_wakeup_delayed+0xf0/0xf0 [ 209.817947] ? check_memory_region+0x173/0x1b0 [ 209.822521] ? __lockdep_init_map+0x105/0x590 [ 209.827004] wb_init+0x636/0xa00 [ 209.830362] ? bdi_put+0x180/0x180 [ 209.833893] ? bdi_alloc_node+0x67/0xe0 [ 209.837867] ? blk_mq_init_queue+0x4b/0xb0 [ 209.842100] ? __lockdep_init_map+0x105/0x590 [ 209.846583] ? loop_control_ioctl+0x199/0x540 [ 209.851067] ? lockdep_init_map+0x9/0x10 [ 209.855108] ? debug_mutex_init+0x2d/0x60 [ 209.859241] ? __ia32_sys_membarrier+0x150/0x150 [ 209.863985] ? __lockdep_init_map+0x105/0x590 [ 209.868467] ? __init_waitqueue_head+0x9e/0x150 [ 209.873127] ? __lockdep_init_map+0x105/0x590 [ 209.877616] ? lockdep_init_map+0x9/0x10 [ 209.881844] ? __raw_spin_lock_init+0x2d/0x100 [ 209.886415] bdi_init+0x30d/0x4d0 [ 209.889846] ? wb_init+0xa00/0xa00 [ 209.893381] ? kasan_unpoison_shadow+0x35/0x50 [ 209.897954] ? kasan_kmalloc+0xc4/0xe0 [ 209.901844] ? kmem_cache_alloc_node_trace+0x302/0x770 [ 209.907112] ? bioset_exit+0x370/0x370 [ 209.910980] bdi_alloc_node+0x81/0xe0 [ 209.914762] blk_alloc_queue_node+0x2c2/0xf50 [ 209.919247] ? blk_init_allocated_queue+0x600/0x600 [ 209.924252] ? lockdep_init_map+0x9/0x10 [ 209.928305] ? debug_mutex_init+0x2d/0x60 [ 209.932434] ? __mutex_init+0x1f7/0x290 [ 209.936402] ? __ia32_sys_membarrier+0x150/0x150 [ 209.941143] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 209.946665] ? __blk_mq_alloc_rq_map+0x17d/0x2e0 [ 209.951406] ? blk_mq_alloc_tag_set+0x50e/0xad0 [ 209.956068] ? retint_kernel+0x10/0x10 [ 209.959943] ? blk_mq_update_nr_hw_queues+0x510/0x510 [ 209.965127] blk_mq_init_queue+0x4b/0xb0 [ 209.969182] loop_add+0x33d/0x9d0 [ 209.972616] ? loop_queue_rq+0x660/0x660 [ 209.976665] loop_control_ioctl+0x199/0x540 [ 209.980976] ? loop_add+0x9d0/0x9d0 [ 209.984593] ? loop_control_ioctl+0x1d/0x540 [ 209.988997] ? loop_add+0x9d0/0x9d0 [ 209.992611] do_vfs_ioctl+0x1de/0x1720 [ 209.996486] ? fsnotify_first_mark+0x350/0x350 [ 210.001057] ? __fsnotify_parent+0xcc/0x420 [ 210.005357] ? ioctl_preallocate+0x300/0x300 [ 210.009749] ? __fget_light+0x2f7/0x440 [ 210.013702] ? fget_raw+0x20/0x20 [ 210.017144] ? __sb_end_write+0xac/0xe0 [ 210.021120] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 210.026635] ? fput+0x130/0x1a0 [ 210.029897] ? ksys_write+0x1ae/0x260 [ 210.033678] ? security_file_ioctl+0x94/0xc0 [ 210.038069] ksys_ioctl+0xa9/0xd0 [ 210.041506] __x64_sys_ioctl+0x73/0xb0 [ 210.045373] do_syscall_64+0x1b9/0x820 [ 210.049238] ? syscall_slow_exit_work+0x500/0x500 [ 210.054064] ? syscall_return_slowpath+0x5e0/0x5e0 [ 210.058971] ? syscall_return_slowpath+0x31d/0x5e0 [ 210.063881] ? prepare_exit_to_usermode+0x291/0x3b0 [ 210.068881] ? perf_trace_sys_enter+0xb10/0xb10 [ 210.073538] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 210.078366] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 210.083535] RIP: 0033:0x455e29 [ 210.086698] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 210.105866] RSP: 002b:00007fc746a7ec68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 210.113557] RAX: ffffffffffffffda RBX: 00007fc746a7f6d4 RCX: 0000000000455e29 [ 210.120807] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000014 [ 210.128064] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 210.135317] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015 [ 210.142571] R13: 00000000004be3c0 R14: 00000000004ccd10 R15: 0000000000000012 11:10:28 executing program 5: r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/sys/net/ipv4/vs/secure_tcp\x00', 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/syz0\x00', 0x1ff) ioctl$KDDISABIO(r0, 0x4b37) write$binfmt_script(0xffffffffffffffff, &(0x7f00000003c0)=ANY=[@ANYBLOB], 0x0) fallocate(r1, 0x1, 0xb8060000000000, 0x10000101) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'vcan0\x00'}) ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000140)={@empty, 0x71}) ioctl$EVIOCGMASK(0xffffffffffffffff, 0x80104592, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)}) socket(0x10, 0x0, 0x0) ioctl$sock_ifreq(0xffffffffffffffff, 0x0, &(0x7f0000000000)={"73697430000080000000000000000002", @ifru_ivalue}) 11:10:28 executing program 7 (fault-call:6 fault-nth:19): socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) 11:10:29 executing program 5: r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/sys/net/ipv4/vs/secure_tcp\x00', 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/syz0\x00', 0x1ff) ioctl$KDDISABIO(r0, 0x4b37) write$binfmt_script(0xffffffffffffffff, &(0x7f00000003c0)=ANY=[@ANYBLOB], 0x0) fallocate(r1, 0x1, 0x58000000000000, 0x10000101) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'vcan0\x00'}) ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000140)={@empty, 0x71}) ioctl$EVIOCGMASK(0xffffffffffffffff, 0x80104592, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)}) socket(0x10, 0x0, 0x0) ioctl$sock_ifreq(0xffffffffffffffff, 0x0, &(0x7f0000000000)={"73697430000080000000000000000002", @ifru_ivalue}) 11:10:29 executing program 3: socket(0x0, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0xb0, 0x0, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x8050) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) 11:10:29 executing program 4: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x603) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0x0, 0x7, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x8050) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000001c0)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) 11:10:29 executing program 2: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000400)=ANY=[@ANYBLOB="240000001800000000000000ffdbdf2502003926036966064200070003ff05001100000813864716ef402bee43a80d2d7d789f5cf029190cb3c6efaf2ec733a0cfb0c1cf370d1dba7ca922bbebca1eccb99580f28cd662639366cf50ea6425a8c52281af9b3a1485eff550048219dfbff99b94b85cab580a819e94c389a5c26c5ae984eba1828d953ff4d6ab950748f5cf200c4e970c963d"], 0x24}, 0x1}, 0x0) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) [ 210.352837] FAULT_INJECTION: forcing a failure. [ 210.352837] name failslab, interval 1, probability 0, space 0, times 0 [ 210.364290] CPU: 1 PID: 13055 Comm: syz-executor7 Not tainted 4.18.0-rc4-next-20180711+ #4 [ 210.372701] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 210.382050] Call Trace: [ 210.384647] dump_stack+0x1c9/0x2b4 [ 210.388278] ? dump_stack_print_info.cold.2+0x52/0x52 [ 210.393474] should_fail.cold.4+0xa/0x11 [ 210.397539] ? kasan_check_read+0x11/0x20 [ 210.401695] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 210.406807] ? kasan_check_write+0x14/0x20 [ 210.411051] ? trace_hardirqs_on+0xd/0x10 [ 210.415202] ? __debug_object_init+0x581/0x12e0 [ 210.419882] ? kasan_check_read+0x11/0x20 [ 210.424033] ? debug_object_free+0x690/0x690 [ 210.428449] ? kasan_check_write+0x14/0x20 [ 210.432725] ? lock_acquire+0x1e4/0x540 [ 210.436722] ? fs_reclaim_acquire+0x20/0x20 [ 210.441057] ? lock_downgrade+0x8f0/0x8f0 [ 210.445208] ? check_same_owner+0x340/0x340 [ 210.449525] ? wb_congested_get_create+0x187/0x470 [ 210.454457] ? rcu_note_context_switch+0x730/0x730 [ 210.459387] __should_failslab+0x124/0x180 [ 210.463624] should_failslab+0x9/0x14 [ 210.467426] kmem_cache_alloc_trace+0x2cb/0x780 [ 210.472105] ? kasan_check_write+0x14/0x20 [ 210.476339] ? do_raw_spin_lock+0xc1/0x200 [ 210.480579] wb_congested_get_create+0x1d2/0x470 [ 210.485338] ? wb_wakeup_delayed+0xf0/0xf0 [ 210.489578] ? __lockdep_init_map+0x105/0x590 [ 210.494342] wb_init+0x636/0xa00 [ 210.497721] ? bdi_put+0x180/0x180 [ 210.501273] ? bdi_alloc_node+0x67/0xe0 [ 210.505255] ? blk_mq_init_queue+0x4b/0xb0 [ 210.509497] ? __lockdep_init_map+0x105/0x590 [ 210.513996] ? loop_control_ioctl+0x199/0x540 [ 210.518494] ? lockdep_init_map+0x9/0x10 [ 210.522556] ? debug_mutex_init+0x2d/0x60 [ 210.526706] ? __ia32_sys_membarrier+0x150/0x150 [ 210.531466] ? __lockdep_init_map+0x105/0x590 [ 210.535962] ? __init_waitqueue_head+0x9e/0x150 [ 210.540630] ? __lockdep_init_map+0x105/0x590 [ 210.545122] ? lockdep_init_map+0x9/0x10 [ 210.549185] ? __raw_spin_lock_init+0x2d/0x100 [ 210.553764] bdi_init+0x30d/0x4d0 [ 210.557210] ? wb_init+0xa00/0xa00 [ 210.560752] ? kasan_unpoison_shadow+0x35/0x50 [ 210.565333] ? kasan_kmalloc+0xc4/0xe0 [ 210.569223] ? kmem_cache_alloc_node_trace+0x302/0x770 [ 210.574502] ? bioset_exit+0x370/0x370 [ 210.578394] bdi_alloc_node+0x81/0xe0 [ 210.582191] blk_alloc_queue_node+0x2c2/0xf50 [ 210.586689] ? blk_mq_alloc_rqs+0x7bc/0x9c0 [ 210.591013] ? blk_init_allocated_queue+0x600/0x600 [ 210.596030] ? lockdep_init_map+0x9/0x10 [ 210.600089] ? debug_mutex_init+0x2d/0x60 [ 210.604233] ? __mutex_init+0x1f7/0x290 [ 210.608211] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 210.612972] ? retint_kernel+0x10/0x10 [ 210.616865] ? blk_mq_alloc_tag_set+0x509/0xad0 [ 210.621530] ? blk_mq_alloc_tag_set+0x50e/0xad0 [ 210.626205] ? blk_mq_update_nr_hw_queues+0x510/0x510 [ 210.631397] blk_mq_init_queue+0x4b/0xb0 [ 210.635461] loop_add+0x33d/0x9d0 [ 210.638914] ? loop_lookup+0x105/0x230 [ 210.642797] ? loop_queue_rq+0x660/0x660 [ 210.646857] loop_control_ioctl+0x199/0x540 [ 210.651174] ? ksys_dup3+0x690/0x690 [ 210.654883] ? loop_add+0x9d0/0x9d0 [ 210.658513] ? kasan_check_write+0x14/0x20 [ 210.662750] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 210.667677] ? fsnotify+0xbac/0x14e0 [ 210.671386] ? vfs_write+0x2f3/0x560 [ 210.675099] ? loop_add+0x9d0/0x9d0 [ 210.678727] do_vfs_ioctl+0x1de/0x1720 [ 210.682615] ? fsnotify_first_mark+0x350/0x350 [ 210.687190] ? __fsnotify_parent+0xcc/0x420 [ 210.691511] ? ioctl_preallocate+0x300/0x300 [ 210.695916] ? __fget_light+0x2f7/0x440 [ 210.699891] ? fget_raw+0x20/0x20 [ 210.703345] ? __sb_end_write+0xac/0xe0 [ 210.707322] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 210.712857] ? fput+0x130/0x1a0 [ 210.716132] ? ksys_write+0x1ae/0x260 [ 210.719933] ? security_file_ioctl+0x94/0xc0 [ 210.724337] ksys_ioctl+0xa9/0xd0 [ 210.727789] __x64_sys_ioctl+0x73/0xb0 [ 210.731674] do_syscall_64+0x1b9/0x820 [ 210.735558] ? syscall_slow_exit_work+0x500/0x500 [ 210.740400] ? syscall_return_slowpath+0x5e0/0x5e0 [ 210.745326] ? syscall_return_slowpath+0x31d/0x5e0 [ 210.750259] ? prepare_exit_to_usermode+0x291/0x3b0 [ 210.755281] ? perf_trace_sys_enter+0xb10/0xb10 [ 210.759961] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 210.764817] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 210.770002] RIP: 0033:0x455e29 [ 210.773180] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 210.792450] RSP: 002b:00007fc746a7ec68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 210.800160] RAX: ffffffffffffffda RBX: 00007fc746a7f6d4 RCX: 0000000000455e29 [ 210.808293] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000014 [ 210.815558] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 210.822996] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015 [ 210.830282] R13: 00000000004be3c0 R14: 00000000004ccd10 R15: 0000000000000013 11:10:29 executing program 6: r0 = getpid() sched_setattr(r0, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x0, 0x3}, 0x0) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x0, 0x0) poll(&(0x7f00000001c0), 0x0, 0x80000000) ioctl$TCSETS(r1, 0x40045431, &(0x7f00003b9fdc)) ioctl$TIOCPKT(r1, 0x5420, &(0x7f0000000080)=0x61) read(r1, &(0x7f0000000040)=""/11, 0xffed) r2 = syz_open_pts(r1, 0x0) ioctl$TCXONC(r2, 0x5441, 0x0) 11:10:29 executing program 1: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) mincore(&(0x7f0000fff000/0x1000)=nil, 0x1000, &(0x7f0000000400)=""/193) getsockopt$inet_pktinfo(r0, 0x0, 0x8, &(0x7f0000000200)={0x0, @local, @remote}, &(0x7f0000000240)=0xc) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) pipe2(&(0x7f00000000c0)={0xffffffffffffffff}, 0x84800) ioctl$VT_OPENQRY(r2, 0x5600, &(0x7f00000001c0)) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(r2, 0x40e, &(0x7f00000003c0)) recvfrom$unix(r2, &(0x7f0000000500)=""/4096, 0x1000, 0x21, &(0x7f0000000300)=@file={0x0, './file0\x00'}, 0x6e) 11:10:29 executing program 5: r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/sys/net/ipv4/vs/secure_tcp\x00', 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/syz0\x00', 0x1ff) ioctl$KDDISABIO(r0, 0x4b37) write$binfmt_script(0xffffffffffffffff, &(0x7f00000003c0)=ANY=[@ANYBLOB], 0x0) fallocate(r1, 0x1, 0xe0ff, 0x10000101) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'vcan0\x00'}) ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000140)={@empty, 0x71}) ioctl$EVIOCGMASK(0xffffffffffffffff, 0x80104592, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)}) socket(0x10, 0x0, 0x0) ioctl$sock_ifreq(0xffffffffffffffff, 0x0, &(0x7f0000000000)={"73697430000080000000000000000002", @ifru_ivalue}) 11:10:29 executing program 3: socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000440)=ANY=[@ANYBLOB="240000001800000000000000ffdb250200b0000003ff1d0011000008000200ac141418008da8bb52b1b1e46fa589ed09a8258ada198b10090000002224281e09277ed66627a8b6d4441394ad84365a80091059b0ecfc13959ddc7e13dc2eab5524ed6bd2ee9c50f6af3cb5db171c4aa9dbef95832c93cd714b054464b97d5e8d12d21c0ee1f9f12b006a2c639befeed0e790582157a667c2abf3975f568e5066ed64c10d341fd65101b70bca2bd0b8d967b3fb51f33c0000000000000000000000000000"], 0x24}, 0x1}, 0x8050) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) 11:10:29 executing program 7 (fault-call:6 fault-nth:20): socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) 11:10:29 executing program 4: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0x0, 0x7, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x8050) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000440)='/dev/loop-control\x00', 0x8000, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) 11:10:29 executing program 2: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=ANY=[@ANYBLOB="240000000000ebfffffedbdf90cb6721070003ff050011000008000200ac141418"], 0x24}, 0x1}, 0x0) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) 11:10:29 executing program 0: sched_setaffinity(0x0, 0x8, &(0x7f0000000080)=0x1) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) r0 = memfd_create(&(0x7f0000000100)='dev ', 0x0) write(r0, &(0x7f0000000040)="16", 0x1) sendfile(r0, r0, &(0x7f0000001000), 0xffff) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) sendfile(r0, r0, &(0x7f0000000000)=0x1023, 0x100000) tkill(r1, 0x15) [ 211.231857] FAULT_INJECTION: forcing a failure. [ 211.231857] name failslab, interval 1, probability 0, space 0, times 0 [ 211.243359] CPU: 1 PID: 13104 Comm: syz-executor7 Not tainted 4.18.0-rc4-next-20180711+ #4 [ 211.251765] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 211.261118] Call Trace: [ 211.263707] dump_stack+0x1c9/0x2b4 [ 211.267339] ? dump_stack_print_info.cold.2+0x52/0x52 [ 211.272534] ? should_fail+0x8de/0xd86 [ 211.276427] should_fail.cold.4+0xa/0x11 [ 211.280491] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 211.285597] ? kasan_check_write+0x14/0x20 [ 211.289832] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 211.294761] ? wait_for_completion+0x8d0/0x8d0 [ 211.299350] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 211.304882] ? find_next_zero_bit+0x111/0x140 [ 211.309383] ? kasan_check_read+0x11/0x20 [ 211.313527] ? do_raw_spin_unlock+0xa7/0x2f0 [ 211.317934] ? do_raw_spin_trylock+0x1c0/0x1c0 [ 211.322519] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 211.327538] ? lock_acquire+0x1e4/0x540 [ 211.331935] ? fs_reclaim_acquire+0x20/0x20 [ 211.336261] ? lock_downgrade+0x8f0/0x8f0 [ 211.340410] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 211.345956] ? check_same_owner+0x340/0x340 [ 211.350275] ? rcu_note_context_switch+0x730/0x730 [ 211.355206] ? pcpu_balance_workfn+0x1700/0x1700 [ 211.359962] ? trace_hardirqs_on+0xd/0x10 [ 211.364107] __should_failslab+0x124/0x180 [ 211.368344] should_failslab+0x9/0x14 [ 211.372144] kmem_cache_alloc_node_trace+0x26f/0x770 [ 211.377245] ? debug_object_free+0x690/0x690 [ 211.381655] ? debug_lockdep_rcu_enabled+0x68/0x90 [ 211.386586] blkg_alloc+0x124/0x810 [ 211.390216] ? blkcg_reset_stats+0x3e0/0x3e0 [ 211.394622] ? lockdep_init_map+0x9/0x10 [ 211.398681] ? debug_mutex_init+0x2d/0x60 [ 211.402828] ? __mutex_init+0x1f7/0x290 [ 211.406801] ? __lockdep_init_map+0x105/0x590 [ 211.411305] ? kasan_check_write+0x14/0x20 [ 211.415541] ? percpu_ref_init+0x1f8/0x290 [ 211.419772] ? blk_delay_queue+0x1a0/0x1a0 [ 211.424003] ? percpu_ref_noop_confirm_switch+0x10/0x10 [ 211.429362] blkcg_init_queue+0x27/0x480 [ 211.433420] blk_alloc_queue_node+0x9c5/0xf50 [ 211.437910] ? blk_mq_alloc_rqs+0x7bc/0x9c0 [ 211.442228] ? blk_init_allocated_queue+0x600/0x600 [ 211.447245] ? lockdep_init_map+0x9/0x10 [ 211.451302] ? debug_mutex_init+0x2d/0x60 [ 211.455445] ? __mutex_init+0x1f7/0x290 [ 211.459860] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 211.465394] ? __blk_mq_alloc_rq_map+0x17d/0x2e0 [ 211.470155] ? blk_mq_update_nr_hw_queues+0x510/0x510 [ 211.475344] blk_mq_init_queue+0x4b/0xb0 [ 211.479401] loop_add+0x33d/0x9d0 [ 211.482852] ? loop_lookup+0x105/0x230 [ 211.486737] ? loop_queue_rq+0x660/0x660 [ 211.490798] loop_control_ioctl+0x199/0x540 [ 211.495114] ? ksys_dup3+0x690/0x690 [ 211.498823] ? loop_add+0x9d0/0x9d0 [ 211.502449] ? kasan_check_write+0x14/0x20 [ 211.506677] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 211.511599] ? fsnotify+0xbac/0x14e0 [ 211.515310] ? vfs_write+0x2f3/0x560 [ 211.519021] ? loop_add+0x9d0/0x9d0 [ 211.522647] do_vfs_ioctl+0x1de/0x1720 [ 211.526529] ? fsnotify_first_mark+0x350/0x350 [ 211.531103] ? __fsnotify_parent+0xcc/0x420 [ 211.535423] ? ioctl_preallocate+0x300/0x300 [ 211.539825] ? __fget_light+0x2f7/0x440 [ 211.543795] ? fget_raw+0x20/0x20 [ 211.547245] ? __sb_end_write+0xac/0xe0 [ 211.551227] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 211.556759] ? fput+0x130/0x1a0 [ 211.560032] ? ksys_write+0x1ae/0x260 [ 211.563834] ? security_file_ioctl+0x94/0xc0 [ 211.568241] ksys_ioctl+0xa9/0xd0 [ 211.571691] __x64_sys_ioctl+0x73/0xb0 [ 211.575578] do_syscall_64+0x1b9/0x820 [ 211.579459] ? finish_task_switch+0x1d3/0x870 [ 211.583954] ? syscall_return_slowpath+0x5e0/0x5e0 [ 211.588878] ? syscall_return_slowpath+0x31d/0x5e0 [ 211.593803] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 211.598817] ? prepare_exit_to_usermode+0x291/0x3b0 [ 211.603828] ? perf_trace_sys_enter+0xb10/0xb10 [ 211.608491] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 211.613336] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 211.618515] RIP: 0033:0x455e29 [ 211.621694] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 211.640968] RSP: 002b:00007fc746a7ec68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 211.648671] RAX: ffffffffffffffda RBX: 00007fc746a7f6d4 RCX: 0000000000455e29 [ 211.655937] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000014 [ 211.663203] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 211.670465] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015 11:10:30 executing program 2: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$rtc(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/rtc0\x00', 0x90000, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000005c0)='pids.current\x00', 0x0, 0x0) r1 = memfd_create(&(0x7f0000000840)='\x00', 0x2) r2 = syz_open_dev$sndpcmp(&(0x7f0000000a00)='/dev/snd/pcmC#D#p\x00', 0x0, 0x10000) ioctl$EVIOCGBITSW(r2, 0x80404525, &(0x7f0000000940)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0x0, 0x7, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x0) openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f") r3 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffff9c, 0x4c82) ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r3) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) r4 = syz_genetlink_get_family_id$ipvs(&(0x7f00000001c0)='IPVS\x00') sendmsg$IPVS_CMD_SET_SERVICE(r0, &(0x7f0000000380)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000300)={&(0x7f0000000400)={0xb4, r4, 0x0, 0x70bd2d, 0x25dfdbfe, {0x2}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0xff}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x10001}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x6}, @IPVS_CMD_ATTR_DEST={0xc, 0x2, [@IPVS_DEST_ATTR_L_THRESH={0x8, 0x6, 0xfff}]}, @IPVS_CMD_ATTR_SERVICE={0x30, 0x1, [@IPVS_SVC_ATTR_PE_NAME={0x8, 0xb, 'sip\x00'}, @IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x2c, 0x20}}, @IPVS_SVC_ATTR_PE_NAME={0x8, 0xb, 'sip\x00'}, @IPVS_SVC_ATTR_NETMASK={0x8, 0x9, 0x13}, @IPVS_SVC_ATTR_NETMASK={0x8, 0x9, 0x2}]}, @IPVS_CMD_ATTR_DAEMON={0x4c, 0x3, [@IPVS_DAEMON_ATTR_MCAST_PORT={0x8, 0x7, 0x4e22}, @IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @local={0xac, 0x14, 0x14, 0xaa}}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x8, 0x7, 0x4e20}, @IPVS_DAEMON_ATTR_SYNC_ID={0x8, 0x3, 0x1}, @IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @remote={0xac, 0x14, 0x14, 0xbb}}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x8, 0x8, 0x8001}, @IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @dev={0xac, 0x14, 0x14, 0x16}}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x1}, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x8, 0x4, 0x3ff}]}]}, 0xb4}, 0x1, 0x0, 0x0, 0x40}, 0x0) [ 211.677730] R13: 00000000004be3c0 R14: 00000000004ccd10 R15: 0000000000000014 11:10:30 executing program 3: socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=ANY=[@ANYBLOB="240065771800000000000000ffdbdf250200b0000003ff050011000008000200ac141418"], 0x24}, 0x1}, 0x8050) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) openat$autofs(0xffffffffffffff9c, &(0x7f0000000380)='/dev/autofs\x00', 0x400202, 0x0) 11:10:30 executing program 7 (fault-call:6 fault-nth:21): socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) 11:10:30 executing program 4: socketpair$inet_udplite(0x2, 0x2, 0x88, &(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_inet_SIOCGIFPFLAGS(r0, 0x8935, &(0x7f0000000380)={'sit0\x00', 0x2}) r1 = socket(0xb, 0xa, 0x8) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=ANY=[@ANYBLOB="240001001800000000000000ffdbdf25020000070003fe050011000008000200ac141418"], 0x24}, 0x1}, 0x8050) r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) openat$cgroup_type(r2, &(0x7f00000001c0)='cgroup.type\x00', 0x2, 0x0) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) 11:10:30 executing program 1: r0 = socket(0x80000000, 0x0, 0x0) r1 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000016c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0) r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000001800)='/dev/audio\x00', 0x100, 0x0) ioctl$KVM_GET_REGS(r3, 0x8090ae81, &(0x7f0000001700)) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1") write$binfmt_misc(r1, &(0x7f0000001840)={'syz1', "773c3dcdc6df30e28f6bb689c68cc5b8a324668eceb17cafc266595add0b49ad375e0f8a3346a523d77e6e20c320e804bed33b7a5f77c384a7c09858ef69eb0dc943cc1a72b25834002cafbc193b66c3eb6798ba80decb0c1d8c402c2641326a51213482dbd73b5742e72e7a7614e4a5de0c19187e9e648cab258d144454294b7ad8c60bb5cb183a713f9191fbc1075d7ea9abde6e006068db16383c0a1672889762b37400076f150cf1d62caaf3291e94039c74be0ce458f063dd3d97593b626698163b3df56170152c193b7de5639c"}, 0xd4) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) socket$vsock_dgram(0x28, 0x2, 0x0) sendmsg$alg(r0, &(0x7f0000001680)={0x0, 0x0, &(0x7f0000000340)=[{&(0x7f00000000c0)="ed44afc1b7299ec753e22dd3aa656cc4cd8c260c", 0x14}, {&(0x7f0000000400)="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", 0x1000}, {&(0x7f00000001c0)="5874ee6c0ec131e4ce75ad95fbb6f57a785275bffe39b2bce59bbe8e34409943265ca26551bd2f8e3968711104ac9245704a7984e4d99fd2ab788f70824694ac27d2fa3cb2f0a788dabb164090abe16aef23d3d371d6caee9698d1668204e3ac563f6fd1c8593752e99077fe714117259fd66a167159ee8a441ce265e5e80444341946f6c19984c086734351ec50a7fb7f8638fbe70a2eb587bbb44c0da6e0d2e03625ed9385eda482de25a8d8c3bdedace190655e0a34fe0c0730d975dd254f7fe00e699a7dca9020a4c3f4b8737ca308a3037b", 0xd4}, {&(0x7f0000000300)="9cd84889fcb946d4f4b1bd1706da0a3100f809393ada94335b71cf7245de5b6d40a6613ae88c5b3107001aedfae8fe07dff9c21de1e8", 0x36}, {&(0x7f0000001400)="fa4cffa3feec97faaca15ebb86bac97dd18a020446cfc986a0f8b058517bd9fb68603fae059f6baef31d0cf79a065e30f3ee78c21dd8101df11fd1bf615f6d687eec9bbf7c3aed56cef4018c9441c34f9dd96ed0af2681427e2c00fe92436d15e61e9cfa0c6b3fa5fb23c8c335b1a1764e7284a75577288a109c2507bb198bd13130693984eb8a03aef4fc256b311dee4ce2d1c2861c49a1fbd0ad33c494a6628d22244efa86bb1d9044ecd2a107d7092dd4252f19a16526e1d2f738677bcfee0520db6393a8ea2091b8e4cc87c90e49f930a11ce70f2eb57ffd9c6f2c", 0xdd}], 0x5, &(0x7f0000001500)=[@iv={0xa0, 0x117, 0x2, 0x87, "d72b919d4fda06c7a236e1f4980a75c0f7a2762801abb25bb20098578212ac6321838972178233ec11405bf5e5abd72a5c43ffa85fb70d0841a9c0fb838a80b6c00525b18e72ac508cb1308548b3961c88d3214181c0f820f47fed7b2f5ef59c385ea71cf884ab03e237f026c4873cd6618a2b8afb1f3a9c69ae218ff7b9ca162ce38fae5f34ff"}, @iv={0x18, 0x117, 0x2}, @iv={0x98, 0x117, 0x2, 0x83, "07590c7a3f605e296e34348b3ad4395e33bbbfbdfe2b3a51c85dbb15b4773d601f7d5902647636dc318b88b01366fbddfe583b05a596f7f3139092687e9a47988a0fe4619420c3e0f36f79d564d11248ef2ecdaa90468afb54b125eed99d4d63d3333a3a215955426ee0172c271d7419b54478b6d918ce1a5c6b07b851bc391d7eb0e4"}], 0x150, 0x4}, 0x50) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)) [ 211.832899] FAULT_INJECTION: forcing a failure. [ 211.832899] name failslab, interval 1, probability 0, space 0, times 0 [ 211.844292] CPU: 1 PID: 13131 Comm: syz-executor7 Not tainted 4.18.0-rc4-next-20180711+ #4 [ 211.852694] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 211.862038] Call Trace: [ 211.864634] dump_stack+0x1c9/0x2b4 [ 211.868267] ? dump_stack_print_info.cold.2+0x52/0x52 [ 211.873461] ? lock_downgrade+0x8f0/0x8f0 [ 211.877622] should_fail.cold.4+0xa/0x11 [ 211.881689] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 211.886797] ? kasan_check_write+0x14/0x20 [ 211.891036] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 211.895969] ? wait_for_completion+0x8d0/0x8d0 [ 211.900553] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 211.905308] ? retint_kernel+0x10/0x10 [ 211.909205] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 211.914225] ? lock_acquire+0x1e4/0x540 [ 211.918200] ? fs_reclaim_acquire+0x20/0x20 [ 211.922523] ? lock_downgrade+0x8f0/0x8f0 [ 211.926676] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 211.932218] ? check_same_owner+0x340/0x340 [ 211.936543] ? rcu_note_context_switch+0x730/0x730 [ 211.941473] ? pcpu_balance_workfn+0x1700/0x1700 [ 211.946229] ? trace_hardirqs_on+0xd/0x10 [ 211.950385] __should_failslab+0x124/0x180 [ 211.954633] should_failslab+0x9/0x14 [ 211.958439] kmem_cache_alloc_node_trace+0x26f/0x770 [ 211.963547] ? debug_object_free+0x690/0x690 [ 211.967966] blkg_alloc+0x124/0x810 [ 211.971597] ? blkcg_reset_stats+0x3e0/0x3e0 [ 211.976004] ? lockdep_init_map+0x9/0x10 [ 211.980067] ? debug_mutex_init+0x2d/0x60 [ 211.984215] ? __mutex_init+0x1f7/0x290 [ 211.988199] ? __lockdep_init_map+0x105/0x590 [ 211.992709] ? kasan_check_write+0x14/0x20 [ 211.996948] ? percpu_ref_init+0x1f8/0x290 [ 212.001187] ? blk_delay_queue+0x1a0/0x1a0 [ 212.005423] ? percpu_ref_noop_confirm_switch+0x10/0x10 [ 212.010786] ? blk_stat_enable_accounting+0xe0/0xe0 [ 212.015803] blkcg_init_queue+0x27/0x480 [ 212.019867] blk_alloc_queue_node+0x9c5/0xf50 [ 212.024361] ? blk_mq_alloc_rqs+0x7bc/0x9c0 [ 212.028687] ? blk_init_allocated_queue+0x600/0x600 [ 212.033697] ? lockdep_init_map+0x9/0x10 [ 212.037735] ? debug_mutex_init+0x2d/0x60 [ 212.041863] ? __mutex_init+0x1f7/0x290 [ 212.045831] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 212.050570] ? retint_kernel+0x10/0x10 [ 212.054455] blk_mq_init_queue+0x4b/0xb0 [ 212.058503] loop_add+0x33d/0x9d0 [ 212.061942] ? loop_lookup+0x105/0x230 [ 212.065816] ? loop_queue_rq+0x660/0x660 [ 212.069860] loop_control_ioctl+0x199/0x540 [ 212.074165] ? loop_add+0x9d0/0x9d0 [ 212.077773] ? loop_add+0x9d0/0x9d0 [ 212.081392] ? loop_add+0x9d0/0x9d0 [ 212.085000] do_vfs_ioctl+0x1de/0x1720 [ 212.088874] ? ioctl_preallocate+0x300/0x300 [ 212.093266] ? __fget_light+0x2f7/0x440 [ 212.097231] ? __schedule+0x1ed0/0x1ed0 [ 212.101185] ? fget_raw+0x20/0x20 [ 212.104622] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 212.109377] ? security_file_ioctl+0x94/0xc0 [ 212.113766] ksys_ioctl+0xa9/0xd0 [ 212.117210] __x64_sys_ioctl+0x73/0xb0 [ 212.121084] do_syscall_64+0x1b9/0x820 [ 212.124957] ? finish_task_switch+0x1d3/0x870 [ 212.129434] ? syscall_return_slowpath+0x5e0/0x5e0 [ 212.134350] ? syscall_return_slowpath+0x31d/0x5e0 [ 212.139267] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 212.144267] ? prepare_exit_to_usermode+0x291/0x3b0 [ 212.149269] ? perf_trace_sys_enter+0xb10/0xb10 [ 212.153930] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 212.158758] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 212.163924] RIP: 0033:0x455e29 11:10:30 executing program 0: sched_setaffinity(0x0, 0x8, &(0x7f0000000080)=0x1) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) r0 = memfd_create(&(0x7f0000000100)='dev ', 0x0) write(r0, &(0x7f0000000040)="16", 0x1) sendfile(r0, r0, &(0x7f0000001000), 0xffff) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) sendfile(r0, r0, &(0x7f0000000000)=0x3f00, 0x100000) tkill(r1, 0x15) 11:10:30 executing program 2: r0 = socket(0x0, 0x0, 0x0) r1 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=ANY=[@ANYBLOB="240000001800000000080000ffdbdf25020000070003ff050001000008000200ac141418"], 0x24}, 0x1}, 0x0) r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) r3 = openat$null(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/null\x00', 0x101000, 0x0) ioctl$LOOP_SET_FD(r3, 0x4c00, r1) ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) ioctl$sock_bt_hidp_HIDPCONNADD(r0, 0x400448c8, &(0x7f0000000400)={r0, r0, 0x7, 0x4, &(0x7f00000000c0), 0x2, 0x4, 0x54f, 0x7, 0x40, 0x1, 0x7ff, "d08059ccf9ee32b163fee692450aa11fef1b20915afe100e3aede681e413a16bef2491ff222048f49189724e546527d2fa87e29cabde161fa16a51e4826a7031bdb2e3a55033cb176478157e532d857bdd2f3db7d2b0b98aea65d01efbbd397a7030aa1215cb9c014de72a10ece1430a2fecd417370d285ccf99cd32986e89abfed213bb98"}) 11:10:30 executing program 5: r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/sys/net/ipv4/vs/secure_tcp\x00', 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/syz0\x00', 0x1ff) ioctl$KDDISABIO(r0, 0x4b37) write$binfmt_script(0xffffffffffffffff, &(0x7f00000003c0)=ANY=[@ANYBLOB], 0x0) fallocate(r1, 0x1, 0x3f000000, 0x10000101) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'vcan0\x00'}) ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000140)={@empty, 0x71}) ioctl$EVIOCGMASK(0xffffffffffffffff, 0x80104592, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)}) socket(0x10, 0x0, 0x0) ioctl$sock_ifreq(0xffffffffffffffff, 0x0, &(0x7f0000000000)={"73697430000080000000000000000002", @ifru_ivalue}) [ 212.167104] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 212.186231] RSP: 002b:00007fc746a7ec68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 212.193916] RAX: ffffffffffffffda RBX: 00007fc746a7f6d4 RCX: 0000000000455e29 [ 212.201166] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000014 [ 212.208418] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 212.215666] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015 [ 212.222922] R13: 00000000004be3c0 R14: 00000000004ccd10 R15: 0000000000000015 11:10:31 executing program 6: r0 = getpid() sched_setattr(r0, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x0, 0x3}, 0x0) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x0, 0x0) poll(&(0x7f00000001c0), 0x0, 0x80000000) ioctl$TCSETS(r1, 0x40045431, &(0x7f00003b9fdc)) ioctl$TIOCPKT(r1, 0x5420, &(0x7f0000000080)=0x61) read(r1, &(0x7f0000000040)=""/11, 0xffed) r2 = syz_open_pts(r1, 0x0) ioctl$TCXONC(r2, 0x5428, 0x0) 11:10:31 executing program 3: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)=ANY=[@ANYBLOB="240000ef1700000000000000ffdbdfd0b239f8ef6973514f6c52250200b0000003ff05001100ac14141800000000000000000000"], 0x24}, 0x1}, 0x8050) r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x40800, 0x0) ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") getsockopt$inet_pktinfo(r0, 0x0, 0x8, &(0x7f0000000240)={0x0, @multicast2, @broadcast}, &(0x7f0000001440)=0xc) ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) ioctl$KVM_GET_EMULATED_CPUID(r1, 0xc008ae09, &(0x7f0000000440)=""/4096) 11:10:31 executing program 7 (fault-call:6 fault-nth:22): socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) 11:10:31 executing program 4: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0x0, 0x7, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x8050) socket(0x0, 0x800, 0xffffffffffffff7f) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) 11:10:31 executing program 2: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0x0, 0x7, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x0) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x4, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) 11:10:31 executing program 1: r0 = socket(0x0, 0x0, 0x0) r1 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) writev(r1, &(0x7f00000000c0)=[{&(0x7f00000001c0)="f8ca5ea8fc3ac93c8fd7d8d744829af71f179e445d6292f0fcb56fec0f5ef92cc5bfb401e5d4fe13685e642f0be9560eed6bba24cf2d641c0905f7b228621d1959f3348e5b5a9b809314a65d2757c48faf7cb90594dbe92f7e7a08d67a92b0024118ebec768d8003d2402441cbe150b960ed9e83195a08f06cdcc2608c053d80bf1aa2709160ee5a9329f7cfc00245ca666b9dd86be2b56da343099983c6488f3c", 0xa1}, {&(0x7f0000000400)="4ce3169005a99a632b4c39d607511ec2450eb68a23ea3ecc29ce9d10a273114474a644571fb29f3a593772c7068ba4e853499bed0600eaf5e915e37913f0a393363abaa19dbcd235e87500a89597d5c47eedab8e0269537a63c7b12d57cf2d5918a6f1b2d5ad974625c2ad39f67b9518c17c3074045de92d1b462599c61e3d8bb7f9a1db49ca148489497b65b27e82f9d17f96b8bc108183876c8a71fcd6cc24717bc64f06a410d929e7d22180fc33016836bc86deb07f38973f3aaa5464e4902267e4bbb88f3dd4e7d30ae8433fa520bc64b2", 0xd3}, {&(0x7f0000000300)="cab27006d03797da7fecb256273dc196be1d587122f35e985ecb6350a8ef70798dd9cf1ba73e71668e8653a1973f1e30cd1a068e41445fa07fa522e11626e3ab775cf3972b79e892218c848631", 0x4d}], 0x3) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0) getsockopt$bt_l2cap_L2CAP_CONNINFO(r0, 0x6, 0x2, &(0x7f0000000280), &(0x7f0000000380)=0x6) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)) 11:10:31 executing program 5: r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/sys/net/ipv4/vs/secure_tcp\x00', 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/syz0\x00', 0x1ff) ioctl$KDDISABIO(r0, 0x4b37) write$binfmt_script(0xffffffffffffffff, &(0x7f00000003c0)=ANY=[@ANYBLOB], 0x0) fallocate(r1, 0x1, 0xffc7, 0x10000101) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'vcan0\x00'}) ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000140)={@empty, 0x71}) ioctl$EVIOCGMASK(0xffffffffffffffff, 0x80104592, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)}) socket(0x10, 0x0, 0x0) ioctl$sock_ifreq(0xffffffffffffffff, 0x0, &(0x7f0000000000)={"73697430000080000000000000000002", @ifru_ivalue}) [ 212.626108] FAULT_INJECTION: forcing a failure. [ 212.626108] name failslab, interval 1, probability 0, space 0, times 0 [ 212.637684] CPU: 1 PID: 13176 Comm: syz-executor7 Not tainted 4.18.0-rc4-next-20180711+ #4 [ 212.646090] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 212.655438] Call Trace: [ 212.658027] dump_stack+0x1c9/0x2b4 [ 212.661655] ? dump_stack_print_info.cold.2+0x52/0x52 [ 212.666845] ? _raw_spin_unlock_irq+0x56/0x70 [ 212.671346] should_fail.cold.4+0xa/0x11 [ 212.675411] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 212.680519] ? lock_repin_lock+0x430/0x430 [ 212.684764] ? kasan_check_write+0x14/0x20 [ 212.689000] ? __schedule+0x884/0x1ed0 [ 212.692895] ? __sched_text_start+0x8/0x8 [ 212.697042] ? _raw_spin_unlock+0x22/0x30 [ 212.701189] ? blkg_create+0x93b/0x16e0 [ 212.705172] ? lock_acquire+0x1e4/0x540 [ 212.709150] ? fs_reclaim_acquire+0x20/0x20 [ 212.713476] ? lock_downgrade+0x8f0/0x8f0 [ 212.717633] ? kmem_cache_alloc_node_trace+0x302/0x770 [ 212.722913] ? check_same_owner+0x340/0x340 [ 212.727240] ? blkcg_policy_enabled+0x52/0x70 [ 212.731739] __should_failslab+0x124/0x180 [ 212.735975] should_failslab+0x9/0x14 [ 212.739782] kmem_cache_alloc_node_trace+0x26f/0x770 [ 212.744888] ? blkcg_init_queue+0x19e/0x480 [ 212.749213] ? lock_downgrade+0x8f0/0x8f0 [ 212.753363] blk_throtl_init+0xca/0x630 [ 212.757339] ? blk_throtl_drain+0x800/0x800 [ 212.761668] ? do_raw_spin_unlock+0xa7/0x2f0 [ 212.766082] ? _raw_spin_unlock_irq+0x56/0x70 [ 212.770582] blkcg_init_queue+0x1ef/0x480 [ 212.774738] blk_alloc_queue_node+0x9c5/0xf50 [ 212.779239] ? blk_mq_alloc_rqs+0x7bc/0x9c0 [ 212.783570] ? blk_init_allocated_queue+0x600/0x600 [ 212.788588] ? lockdep_init_map+0x9/0x10 [ 212.792655] ? debug_mutex_init+0x2d/0x60 [ 212.796817] ? __mutex_init+0x1f7/0x290 [ 212.800802] ? retint_kernel+0x10/0x10 [ 212.804705] ? blk_mq_alloc_tag_set+0x84c/0xad0 [ 212.809381] ? blk_mq_update_nr_hw_queues+0x510/0x510 [ 212.814578] blk_mq_init_queue+0x4b/0xb0 [ 212.818636] loop_add+0x33d/0x9d0 [ 212.822086] ? loop_lookup+0x105/0x230 [ 212.825971] ? loop_queue_rq+0x660/0x660 [ 212.830037] loop_control_ioctl+0x199/0x540 [ 212.834355] ? ksys_dup3+0x690/0x690 [ 212.838066] ? loop_add+0x9d0/0x9d0 [ 212.841692] ? __sched_text_start+0x8/0x8 [ 212.845844] ? kasan_check_write+0x14/0x20 [ 212.850078] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 212.855008] ? fsnotify+0xbac/0x14e0 [ 212.858720] ? vfs_write+0x2f3/0x560 [ 212.862436] ? loop_add+0x9d0/0x9d0 [ 212.866064] do_vfs_ioctl+0x1de/0x1720 [ 212.869953] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 212.874708] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 212.879467] ? ioctl_preallocate+0x300/0x300 [ 212.883875] ? __fget_light+0x2f7/0x440 [ 212.887846] ? fget_raw+0x20/0x20 [ 212.891298] ? schedule+0xfb/0x450 [ 212.894836] ? __schedule+0x1ed0/0x1ed0 [ 212.898808] ? retint_kernel+0x10/0x10 [ 212.902693] ? security_file_ioctl+0x94/0xc0 [ 212.907099] ksys_ioctl+0xa9/0xd0 [ 212.910548] __x64_sys_ioctl+0x73/0xb0 [ 212.914436] do_syscall_64+0x1b9/0x820 [ 212.918320] ? syscall_slow_exit_work+0x500/0x500 [ 212.923163] ? syscall_return_slowpath+0x5e0/0x5e0 [ 212.928086] ? syscall_return_slowpath+0x31d/0x5e0 [ 212.933016] ? prepare_exit_to_usermode+0x291/0x3b0 [ 212.938033] ? perf_trace_sys_enter+0xb10/0xb10 [ 212.942699] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 212.947552] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 212.952735] RIP: 0033:0x455e29 [ 212.955942] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 11:10:31 executing program 1: r0 = socket(0x0, 0x0, 0x0) r1 = gettid() setsockopt$ARPT_SO_SET_REPLACE(r0, 0x0, 0x60, &(0x7f0000000500)={'filter\x00', 0x7, 0x4, 0x480, 0x258, 0x258, 0x0, 0x398, 0x398, 0x398, 0x4, &(0x7f0000000240), {[{{@arp={@rand_addr=0x6, @empty, 0xffffff00, 0xffffffff, @mac=@random="804f805d7ba6", {[0x0, 0xff, 0xff, 0xff, 0x0, 0xff]}, @mac=@broadcast=[0xff, 0xff, 0xff, 0xff, 0xff, 0xff], {[0x0, 0x0, 0xff, 0x0, 0xff]}, 0xff, 0xc, 0x401, 0x1, 0x8, 0x9, 'gre0\x00', 'bond_slave_0\x00', {0xff}, {}, 0x0, 0x100}, 0xf0, 0x140}, @mangle={0x50, 'mangle\x00', 0x0, {@mac=@broadcast=[0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @empty, @multicast2=0xe0000002, @rand_addr=0x7fff, 0x2, 0xffffffff}}}, {{@uncond, 0xf0, 0x118}, @unspec=@MARK={0x28, 'MARK\x00', 0x2, {0x9, 0xffffffffffff0001}}}, {{@uncond, 0xf0, 0x140}, @mangle={0x50, 'mangle\x00', 0x0, {@mac=@random="83c5cb76311c", @empty, @loopback=0x7f000001, @multicast1=0xe0000001, 0x1, 0xffffffff}}}], {{[], 0xc0, 0xe8}, {0x28, '\x00', 0x0, 0xfffffffffffffffe}}}}, 0xffffffffffffffdc) capset(&(0x7f00000000c0)={0x0, r1}, &(0x7f00000001c0)={0x6, 0x100000000, 0x6, 0x2, 0x2, 0xfffffffffffffffd}) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1") r3 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000200)='/dev/vcs\x00', 0x0, 0x0) ioctl$PIO_FONT(r3, 0x4b61, &(0x7f0000000400)="6a62e5a0e1b008a526d5b5075c31b38366a06ebf36567fcde8c26acd850baa02d75e7778ee1d92b81686bf75f49f7594a03064e5957b206beb749355c53beff5cd44a683e856a5e4a1c2cd7ed53def74194a5adbfda200f916b688577d19d931c96c0228ed85f9d4b76efe29e345cc37ae02f3a6059063c634ac2ee17bf027458545391181848b5aca9bb5cf81d43f0db88c925abeab4370038d3337f7726bce20e2478be87c816e9daad5f18121f146a0b96a92986e962ab5eb9c9dbf787c324980bf109de03966bb21662896df84dc9d566b25d50fb5220c02f1599c94e1e907ad1a78f570e7c3584a") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) ioctl$SNDRV_CTL_IOCTL_TLV_COMMAND(r3, 0xc008551c, &(0x7f0000000280)={0x80, 0x8, [0xb5fc, 0x0]}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)) 11:10:31 executing program 3: socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(r0, 0x80404525, &(0x7f0000000480)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0xb0, 0x0, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x8050) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000440)='/dev/loop-control\x00', 0x101000, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) [ 212.975217] RSP: 002b:00007fc746a7ec68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 212.982929] RAX: ffffffffffffffda RBX: 00007fc746a7f6d4 RCX: 0000000000455e29 [ 212.990196] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000014 [ 212.997464] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 213.004728] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015 [ 213.011997] R13: 00000000004be3c0 R14: 00000000004ccd10 R15: 0000000000000016 11:10:31 executing program 2: r0 = socket(0x0, 0x0, 0x0) r1 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=ANY=[@ANYBLOB="240000001800001df70b0a0008e4737581787294"], 0x24}, 0x1}, 0x0) r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0) vmsplice(r1, &(0x7f0000000a80)=[{&(0x7f0000000400)="95c9e7e065b47ff9232d72c46489f1683a57f923acdddc27788863ec95a8822e17964f419dc05dd15fe135c7fb5e88838deb6609731fe2d8bb66e6fb79213e8af82245677d533e136110880ecd700b073b00d7e03a6809df1096742a93241d5f684220ca45a45e5787d6f42d68eb3cf28b32d01a7d6ae447f241665735fcddd91933d7e6b1d9bb878d6764dbe6600ab025f06a91059c88875bae891156545b27d28361132ce8631a18024892", 0xac}, {&(0x7f00000004c0)="3b8be33cba2ff5c6b86b278f911c60368cc10f9fc8863cf83e1fc2cd65502b7d361da98a45ccc55ca52086e3515eb65388e60e7667e7dd453107a04e38e027200d8adc1646d74fbfef8a473f8194667e1a26c0dd28e9f3fe1a651c0f2620df20babe1e51878e06dca34708a4cb21fe2de4659fe28c3ceb2cf38b26c10fb0154c4c47d023b2f0add545b512f8c263cb823858431cd4e017c092ee220e450ee28b7df3ebe992a9", 0xa6}, {&(0x7f0000000580)="5e8cc62cd97d47d8fe09f6dd0e1ff9d73acfd5a24299c120ba261a6beb0b7c80fcf69780b14667546c911b53f8b9bad02cb6e0a633c9740d25c45c01027af733bd17adf95b86377b39ca9900763b125e6982758e60ed103ce6a03273a3502e4c7abe192911837fee281f9f84a7a95487c5da8c708423a6d285e0263671c20d1e95e9fed9ed06bb7c61b8881abb027ea902f65452fab5d6ccd2dc1394f144171bfd04b759d92245f73f09481591b608f9d20555e440cf7c918e070703e858d6c8155172446bf6baac52522ca7fc86601a973b1c45a3e17194e669f2e23d876f63dad06ec6da47bf0d39fe2a2dac77b3d5f9932c21", 0xf4}, {&(0x7f00000000c0)="11c295ea8b673e252975f6691f152747b77a3713bdd2c9f75d61ee82ba38f13e0639403860ef00bafcd5feb358398ed842434ed1bd69ac89", 0x38}, {&(0x7f0000000680)="525cd7cc48ada4f0d7fa7c815c6bd89ca8e81dc7a1adebb3971de7a16880ce35471f27350728f7428274cb70e1b0a31b3e7a19eab9f4112e9c4fe2533ee8f58ca401940e57796ebce0b3526f9f251438cfb81cf2c8b92084ac9e13fe1d229bc8a6225062b4d367c52d87a9f3abc09f07305ea5dd63510932f4a46074a81d2d7a35150700ece1c9808322450245877cc165f994e701a00508529da6cf8a245114e7d81ed7959774f0cafcdc7173c2e2063a1e1f6da45a35f97af5df59ca1bcda16b7a1fa6a60267cc9715157005fb37a25f41d2adb5b1b62ce8", 0xd9}, {&(0x7f0000000780)="b350322343da127846360667723856644561d0d301a8f626855aef6beb9edf1aec2cece6f061257568e9a3248e8a1ff56f5a5a5e118f6554992f142fdc481b165162742b6b8bcbf762d6843868a783067a4a4a742cc20d4b01b34f01f64c7852d990da88deeb131c5b837a14cc54b6bace5eba69f1833b824654becddb4efc074a2859f540efb05e4fbc3cc7454808a01679145659e0531cace9eb4ea090c6871f2ebe1f098aa5ec06cb738df0d3271803c5d66aa7384f3f18846ccff2a022a6edac990e429bf16a", 0xc8}, {&(0x7f00000001c0)="a7738be979d417919743", 0xa}, {&(0x7f0000000880)="e5b10cde5014d6a953169874f26be5fd8e701a237b2607d58d8ad19ee136caa522d4f8c9ecf9a6d6e02ba6260ef509a8b425137d32424433f059b00c27fa39954c57e43df0b3b9c465fe61cbc2ea6b3dc53cca66cb83525490c258749c4fc0c0cfec4fafa8b05d8db44da1e70e2f58a4bb869fd241d6c4c7d38255768be922d4abe01ea98dfe707c6455d071a8ab63ae7d453d3fba89422fac6852938db08791444caa34c5bd639d122067572a94bb4d5a08caf3f8aea5d5ca7e64b601f69e290c7700fca8ef5e6230aa0996474a9d79088924d5e02ed0155c3768d0d2da5d83a38fa5fadda1293fb67a56ebba630fa9cd5d9691f228b0a5f3924613c0d2", 0xfe}, {&(0x7f0000000980)="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", 0xfa}], 0x9, 0xa) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) 11:10:31 executing program 7 (fault-call:6 fault-nth:23): socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) 11:10:31 executing program 5: r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/sys/net/ipv4/vs/secure_tcp\x00', 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/syz0\x00', 0x1ff) ioctl$KDDISABIO(r0, 0x4b37) write$binfmt_script(0xffffffffffffffff, &(0x7f00000003c0)=ANY=[@ANYBLOB], 0x0) fallocate(r1, 0x1, 0x98, 0x10000101) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'vcan0\x00'}) ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000140)={@empty, 0x71}) ioctl$EVIOCGMASK(0xffffffffffffffff, 0x80104592, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)}) socket(0x10, 0x0, 0x0) ioctl$sock_ifreq(0xffffffffffffffff, 0x0, &(0x7f0000000000)={"73697430000080000000000000000002", @ifru_ivalue}) 11:10:31 executing program 4: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000480)={'team0\x00', 0x0}) getsockopt$inet_pktinfo(r1, 0x0, 0x8, &(0x7f0000000500)={0x0, @multicast1, @rand_addr}, &(0x7f0000000540)=0xc) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000580)=@newneigh={0x60, 0x1c, 0x202, 0x70bd2d, 0x25dfdbfb, {0x1f, 0x0, 0x0, r2, 0x11, 0x8, 0x5}, [@NDA_IFINDEX={0x8, 0x8, r3}, @NDA_DST_MAC={0xc, 0x1, @dev={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0x17}}, @NDA_MASTER={0x8, 0x9, 0x8}, @NDA_DST_IPV4={0x8, 0x1, @multicast1=0xe0000001}, @NDA_DST_IPV4={0x8, 0x1, @local={0xac, 0x14, 0x14, 0xaa}}, @NDA_PORT={0x8, 0x6, 0x4e23}, @NDA_VNI={0x8, 0x7, 0xfffffffffffffc4f}, @NDA_VLAN={0x8, 0x5, 0x4}]}, 0x60}, 0x1}, 0x8050) write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000380)={0x0, 0x18, 0xfa00, {0x1, &(0x7f0000000300)={0xffffffffffffffff}, 0x13f, 0xb}}, 0x20) write$RDMA_USER_CM_CMD_JOIN_IP_MCAST(r0, &(0x7f0000000440)={0x10, 0x30, 0xfa00, {&(0x7f00000001c0), 0x2, {0xa, 0x4e24, 0x1, @mcast1={0xff, 0x1, [], 0x1}, 0x604f}, r4}}, 0x38) r5 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r5, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) 11:10:31 executing program 0: sched_setaffinity(0x0, 0x8, &(0x7f0000000080)=0x1) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) r0 = memfd_create(&(0x7f0000000100)='dev ', 0x0) write(r0, &(0x7f0000000040)="16", 0x1) sendfile(r0, r0, &(0x7f0000001000), 0xffff) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) sendfile(r0, r0, &(0x7f0000000000)=0x7ffffffffffff, 0x100000) tkill(r1, 0x15) 11:10:31 executing program 3: r0 = socket(0x0, 0x0, 0x0) getegid() perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=ANY=[@ANYBLOB="240000001800000000000000ffdbdf25000003ff050011000008000200ac141418000000"], 0x24}, 0x1}, 0x8050) r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$SCSI_IOCTL_STOP_UNIT(r1, 0x6) ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) io_setup(0x2, &(0x7f0000000580)=0x0) io_submit(r3, 0x5, &(0x7f0000000900)=[&(0x7f0000000680)={0x0, 0x0, 0x0, 0x7, 0x0, r2, &(0x7f00000005c0)="9c1f642bdd73060662791a3d1ce1c28ee4534b0d2a96ffa5ea2c7d29be9cd105d1a9ada4ecce534b0c08e584cf4c7663c83944c563fb262445f5aed40aa0b2b767f97524bfc2e816c1fdbcee17a087250ce6fc7db2dddc79d7e25933e000374d88dfef690fa9e22f9c213ea77df72640525da06f8eed5f13ff09ca17d8013e72c78cce6661121ede5208", 0x8a, 0x1ff, 0x0, 0x1, r1}, &(0x7f0000000740)={0x0, 0x0, 0x0, 0xf, 0x2, r1, &(0x7f00000006c0)="5e900e2a0c278e55ba217ae458f23566fabe005aba02b050b3ce7951da1d670dae8da910625473c7bebf327c8b01df0bd2bcbc96bbb243e3afc82d6873eeeaf3f0", 0x41, 0xfffffffffffffc00, 0x0, 0x1, r1}, &(0x7f00000007c0)={0x0, 0x0, 0x0, 0x2, 0x100000000, r2, &(0x7f0000000780)="b3a44824dd0ac87ae1fceac9964feb303c65d284", 0x14, 0x7ff, 0x0, 0x1, r1}, &(0x7f0000000840)={0x0, 0x0, 0x0, 0x8, 0x0, r2, &(0x7f0000000800)="02901cd638de9f5d3310378313bd", 0xe, 0x4, 0x0, 0x1, r1}, &(0x7f00000008c0)={0x0, 0x0, 0x0, 0x2, 0x1, r1, &(0x7f0000000880)="c25697b0a1f2ef2e1de0c64e878ba6779af13c", 0x13, 0x3, 0x0, 0x0, r1}]) getsockopt$sock_int(r0, 0x1, 0x2d, &(0x7f0000000940), &(0x7f0000000980)=0x4) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) getsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(r0, 0x84, 0x6, &(0x7f0000000440)={0x0, @in6={{0xa, 0x4e24, 0xffffffffffffffc1, @empty, 0x5}}}, &(0x7f0000000380)=0x84) write$P9_RWSTAT(r1, &(0x7f00000009c0)={0x7, 0x7f, 0x2}, 0x7) getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f0000000500)={r4}, &(0x7f0000000540)=0x8) 11:10:31 executing program 2: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_open_dev$sndpcmp(&(0x7f00000001c0)='/dev/snd/pcmC#D#p\x00', 0x9, 0x40000) ioctl$SG_GET_TIMEOUT(r1, 0x2202, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=ANY=[@ANYBLOB="2400000000e0dfa741c779000000"], 0x24}, 0x1}, 0x0) r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) r3 = ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82) ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, r3) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) r4 = syz_open_dev$dspn(&(0x7f00000000c0)='/dev/dsp#\x00', 0x0, 0x0) ioctl$KVM_GET_XSAVE(r4, 0x9000aea4, &(0x7f0000000400)) [ 213.306832] FAULT_INJECTION: forcing a failure. [ 213.306832] name failslab, interval 1, probability 0, space 0, times 0 [ 213.318355] CPU: 1 PID: 13220 Comm: syz-executor7 Not tainted 4.18.0-rc4-next-20180711+ #4 [ 213.326759] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 213.336780] Call Trace: [ 213.339372] dump_stack+0x1c9/0x2b4 [ 213.343001] ? dump_stack_print_info.cold.2+0x52/0x52 [ 213.348199] ? lock_downgrade+0x8f0/0x8f0 [ 213.352353] should_fail.cold.4+0xa/0x11 [ 213.356420] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 213.361529] ? kasan_check_write+0x14/0x20 [ 213.365766] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 213.370700] ? wait_for_completion+0x8d0/0x8d0 [ 213.375293] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 213.380833] ? kasan_check_read+0x11/0x20 [ 213.384988] ? do_raw_spin_unlock+0xa7/0x2f0 [ 213.389398] ? do_raw_spin_trylock+0x1c0/0x1c0 [ 213.393984] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 213.399005] ? lock_acquire+0x1e4/0x540 [ 213.402981] ? fs_reclaim_acquire+0x20/0x20 [ 213.407304] ? lock_downgrade+0x8f0/0x8f0 [ 213.411454] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 213.417002] ? check_same_owner+0x340/0x340 [ 213.421324] ? rcu_note_context_switch+0x730/0x730 [ 213.426255] ? pcpu_balance_workfn+0x1700/0x1700 [ 213.431015] ? trace_hardirqs_on+0xd/0x10 [ 213.435167] __should_failslab+0x124/0x180 [ 213.439408] should_failslab+0x9/0x14 [ 213.443216] kmem_cache_alloc_node_trace+0x26f/0x770 [ 213.448321] ? retint_kernel+0x10/0x10 [ 213.452219] blkg_alloc+0x124/0x810 [ 213.455858] ? blkcg_reset_stats+0x3e0/0x3e0 [ 213.460270] ? lockdep_init_map+0x9/0x10 [ 213.464333] ? debug_mutex_init+0x2d/0x60 [ 213.468489] ? __mutex_init+0x1f7/0x290 [ 213.472473] ? __lockdep_init_map+0x105/0x590 [ 213.476979] ? kasan_check_write+0x14/0x20 [ 213.481216] ? percpu_ref_init+0x1f8/0x290 [ 213.485456] ? blk_delay_queue+0x1a0/0x1a0 [ 213.489694] ? percpu_ref_noop_confirm_switch+0x10/0x10 [ 213.495053] ? blk_stat_enable_accounting+0xe0/0xe0 [ 213.500068] blkcg_init_queue+0x27/0x480 [ 213.504132] blk_alloc_queue_node+0x9c5/0xf50 [ 213.508625] ? blk_mq_alloc_rqs+0x7bc/0x9c0 [ 213.512942] ? blk_init_allocated_queue+0x600/0x600 [ 213.517959] ? lockdep_init_map+0x9/0x10 [ 213.522020] ? debug_mutex_init+0x2d/0x60 [ 213.526166] ? __mutex_init+0x1f7/0x290 [ 213.530148] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 213.535683] ? __blk_mq_alloc_rq_map+0x17d/0x2e0 [ 213.540444] ? blk_mq_update_nr_hw_queues+0x510/0x510 [ 213.545636] blk_mq_init_queue+0x4b/0xb0 [ 213.549693] loop_add+0x33d/0x9d0 [ 213.553142] ? loop_lookup+0x105/0x230 [ 213.557029] ? loop_queue_rq+0x660/0x660 [ 213.561091] loop_control_ioctl+0x199/0x540 [ 213.565409] ? ksys_dup3+0x690/0x690 [ 213.569117] ? loop_add+0x9d0/0x9d0 [ 213.572739] ? __f_unlock_pos+0x19/0x20 [ 213.576716] ? __f_unlock_pos+0x19/0x20 [ 213.580692] ? kasan_check_write+0x14/0x20 [ 213.584923] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 213.589851] ? fsnotify+0xbac/0x14e0 [ 213.593565] ? vfs_write+0x2f3/0x560 [ 213.597277] ? loop_add+0x9d0/0x9d0 [ 213.600900] do_vfs_ioctl+0x1de/0x1720 [ 213.604785] ? fsnotify_first_mark+0x350/0x350 [ 213.609364] ? __fsnotify_parent+0xcc/0x420 [ 213.613682] ? ioctl_preallocate+0x300/0x300 [ 213.618084] ? __fget_light+0x2f7/0x440 [ 213.622052] ? fget_raw+0x20/0x20 [ 213.625506] ? __sb_end_write+0xac/0xe0 [ 213.629483] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 213.635014] ? fput+0x130/0x1a0 [ 213.638290] ? ksys_write+0x1ae/0x260 [ 213.642091] ? security_file_ioctl+0x94/0xc0 [ 213.646498] ksys_ioctl+0xa9/0xd0 [ 213.649952] __x64_sys_ioctl+0x73/0xb0 [ 213.653837] do_syscall_64+0x1b9/0x820 [ 213.657721] ? syscall_slow_exit_work+0x500/0x500 [ 213.662561] ? syscall_return_slowpath+0x5e0/0x5e0 [ 213.667486] ? syscall_return_slowpath+0x31d/0x5e0 [ 213.672414] ? prepare_exit_to_usermode+0x291/0x3b0 [ 213.677426] ? perf_trace_sys_enter+0xb10/0xb10 [ 213.682106] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 213.686951] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 213.692163] RIP: 0033:0x455e29 [ 213.695343] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 213.714711] RSP: 002b:00007fc746a7ec68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 213.722420] RAX: ffffffffffffffda RBX: 00007fc746a7f6d4 RCX: 0000000000455e29 [ 213.729696] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000014 [ 213.736967] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 213.744232] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015 [ 213.751495] R13: 00000000004be3c0 R14: 00000000004ccd10 R15: 0000000000000017 11:10:32 executing program 6: r0 = getpid() sched_setattr(r0, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x0, 0x3}, 0x0) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x0, 0x0) poll(&(0x7f00000001c0), 0x0, 0x80000000) ioctl$TCSETS(r1, 0x40045431, &(0x7f00003b9fdc)) ioctl$TIOCPKT(r1, 0x5420, &(0x7f0000000080)=0x61) read(r1, &(0x7f0000000040)=""/11, 0xffed) r2 = syz_open_pts(r1, 0x0) ioctl$TCXONC(r2, 0x5415, 0x0) 11:10:32 executing program 1: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) r2 = ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, r2) ioctl$EVIOCGBITSW(r0, 0x80404525, &(0x7f00000000c0)=""/23) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1") getsockname$packet(r1, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @remote}, &(0x7f0000000200)=0x14) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000240)={'ip_vti0\x00', r3}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)) 11:10:32 executing program 7 (fault-call:6 fault-nth:24): socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) 11:10:32 executing program 4: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000640)=""/189) ioctl$SNDRV_TIMER_IOCTL_STATUS(r1, 0x80605414, &(0x7f0000000140)=""/41) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0x0, 0x7, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x8050) r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0) ioctl$KVM_X86_SET_MCE(r1, 0x4040ae9e, &(0x7f0000000180)={0x5000000000000000, 0x10000, 0x0, 0x8, 0x10}) ioctl$SNDRV_CTL_IOCTL_PCM_INFO(r1, 0xc1205531, &(0x7f0000000440)={0x80000001, 0x8, 0x0, 0x2, [], [], [], 0x7, 0x4, 0xfff, 0x2, "8501b78e0bd83d93dad448dd6ec9b209"}) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) getsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f00000001c0), &(0x7f0000000300)=0x4) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) 11:10:32 executing program 5: r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/sys/net/ipv4/vs/secure_tcp\x00', 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/syz0\x00', 0x1ff) ioctl$KDDISABIO(r0, 0x4b37) write$binfmt_script(0xffffffffffffffff, &(0x7f00000003c0)=ANY=[@ANYBLOB], 0x0) fallocate(r1, 0x1, 0x67800, 0x10000101) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'vcan0\x00'}) ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000140)={@empty, 0x71}) ioctl$EVIOCGMASK(0xffffffffffffffff, 0x80104592, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)}) socket(0x10, 0x0, 0x0) ioctl$sock_ifreq(0xffffffffffffffff, 0x0, &(0x7f0000000000)={"73697430000080000000000000000002", @ifru_ivalue}) 11:10:32 executing program 2: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=ANY=[@ANYBLOB="2400000018000000000000f8d3a518b78914445cb469ffdbdf25020000070003ff050011"], 0x24}, 0x1}, 0x0) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) ioctl(r0, 0x0, &(0x7f0000000100)="295ee1311f") r1 = ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, r1) ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) bpf$BPF_MAP_GET_NEXT_ID(0xc, &(0x7f00000000c0)=0x9, 0x4) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) 11:10:32 executing program 3: r0 = socket(0x0, 0x0, 0x0) r1 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x7ff, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) ioctl$RNDCLEARPOOL(r2, 0x5206, &(0x7f00000003c0)) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0xb0, 0x0, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x8050) r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$sock_kcm_SIOCKCMUNATTACH(r2, 0x89e1, &(0x7f0000001580)={r2}) io_setup(0x1aac, &(0x7f0000000440)=0x0) io_submit(r4, 0x9, &(0x7f0000000e00)=[&(0x7f0000000580)={0x0, 0x0, 0x0, 0x7, 0x7fffffff, r3, &(0x7f0000000480)="8dc97425b77b66540550a0abd70489537b5a2625631179ed17f9c22ee47f3cc0dec9419cf12810508aed840bca35741ab54a9acb4f0d004d168453fa59ae9e2d35322ffbb05ba7ff61ad4c02a54cf15c2664d95077ac3712a12c18650b29cb0eb894f605ce5845372db560dcde2fca38a1c3a79654130957f176cfb1d750d4ad5cc01833b35e78c10e96348f830972753ca663b96a31f409f6503fae0162f41802da8354d0241de6927622a733740142034a468cd5679af57b82de334186b9a6c42a8b2d43ad968baa59a906e02238bd8db1c82f8f22f70af86c52", 0xdb, 0x2, 0x0, 0x1, r2}, &(0x7f00000006c0)={0x0, 0x0, 0x0, 0x1, 0x9, r2, &(0x7f00000005c0)="83e1fc1abfd015ad6214ff06187766442839647e0adc0fb13812a9cc7012c60be93bb2f1437fa5fc2ef65cc965a6eb711523145500b1e4985d71e28b807b5b6354e8e122e94316afc9eea98c64bb668a1d50f80b65e188a8672b41763414949a0c55eb50ce9efe5654327a2d988a20ecb4b11fe8b0f205cf27ea0caa86bf3634e5e17d6037511e2d65eedf5183efba2069b3e269d426e80e186936eeb770aba0004f3f5fac0239ef6408f6f8af2eebffb8f9bf634d5c0c6bede42112682739a0ab85572916b84b7492cd6cb9411b8b973f95a86fd23d2a10272894f23251664fb5c79c93a4160d2ced909159482fa2", 0xef, 0x80, 0x0, 0x0, r1}, &(0x7f0000000800)={0x0, 0x0, 0x0, 0x6, 0x2, r1, &(0x7f0000000700)="f4e630a46a311720d6d94253bd266be08a1bbb7cbb1f4a24e56590e2a7697f8a553964ca413cfdbd60ae1aa47ee34aad272b668f26dfdf2b4aaef47a8587128e2dbe7ad0dd2024be42c87455e7c5e0eea3b47a909398b4737d9a8a885a94932d89b106cf40a8394c1673aaf0a16e49d65bdd86f588beb083fe2e9f37e27321e94e63aaea74c75b285df632084ebb5ce862da08949c1eba092e6900f8ed272042bcb6966c20e66c5cfba84fa10cf804df3c56651d5d897e63abef0c618f65c21895b9f3daa65e2c07f9f0bd84df779429a45c050e7ce9b2e0aa49ed9ae6", 0xdd, 0x6, 0x0, 0x0, r2}, &(0x7f0000000940)={0x0, 0x0, 0x0, 0x3, 0x5, r0, &(0x7f0000000840)="00abe80d5ea61d96f3fe9cb262cb473b9ccddbe41bb0f343182e3fe451f62934eeb0beec8870cebed59b59ad6744c180a7474d8dd27cf13a3b50705fad8df6f17b0a6c8de058b81210d0fbb58abd32120e547edc3b69e998445d53c469b88af0a23b10a7a03fe33426fd724203a3bb9307f9dcddade11894656946cc3f337d77e206b42388c865ee70466b78cdb7a6eb9b7330c6a71383a0e8c60b7e5a30ef2a66cf2bb0103e181c4b646b26d70b676c4f03a8d85a277565da76d0886dfe2dca80b58179b1e7f91d3f0b4e5811", 0xcd, 0x0, 0x0, 0x1, r2}, &(0x7f0000000a80)={0x0, 0x0, 0x0, 0x1, 0x6, r1, &(0x7f0000000980)="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", 0xfa, 0x400, 0x0, 0x1, r2}, &(0x7f0000000b00)={0x0, 0x0, 0x0, 0x7, 0x4f, r3, &(0x7f0000000ac0)="388593859fe9e1116dbd01030a74cdbbe72eba8e992db1420560ff49b53f7b4e5790147e99cfb519ff44895e840e8fdd677728f7b982908c462fb7cc2c53025a", 0x40, 0x80, 0x0, 0x0, r1}, &(0x7f0000000c00)={0x0, 0x0, 0x0, 0x0, 0x0, r2, &(0x7f0000000b40)="bdf40ce6ea082c95c5bd16ef759d73339d2cfe1c49730766c1dd2f222370da8b3ed3cf4aa5e0a7e4574ea1683bb43f45411f3ec7beffdff03e3378ff106e43a129fb9579c9206da46e8bb57db4cd707d50d54655214a57dae45e34d2657abfbef1c8c5a4085b312eac5cbabafc536e56b196e4a3f3e1e124078b781538403ae48db7ebb07328de8a60524a48e0f701af61dc83477fed1fa888e554ea813bf4d9b33bd8f3a76ba5162e2038cb041b59bd12", 0xb1, 0x1, 0x0, 0x1, r2}, &(0x7f0000000c80)={0x0, 0x0, 0x0, 0x3, 0x1, r2, &(0x7f0000000c40)="d7cda57b0954bbe5fdf233b5ae642269d1d22e039e1ca2a802f761a2a1c6dec81dcdb7268ba4c9dd", 0x28, 0xef73, 0x0, 0x0, r2}, &(0x7f0000000dc0)={0x0, 0x0, 0x0, 0x7, 0x6, r2, &(0x7f0000000cc0)="95a933b3cf2709efdf280ab87bdb61f2b7fa72d89be72a86c5428b49ee3d1fc5eedd2a1538ef9c69e7361540791410d55401335e4fc9c9488dcb33e0103ab598003e0d256902b63f859f5540cf52de786c5b41c6ef5365c89fc269594ebce75e6542b2113ffc154cda50cc15d10d97f511a42461ca4b76fa2cdd40888b769f90383db02ccd361c04d48aa4e3a8a84ec21e68944416ee7be5d67531aeb408237e36d91e9cc22019f7582a340fad37926cc476037e0fcaf3ceba13a4f33b573f3ec18e33c8a7c2645687253feb67f1b94b342a", 0xd2, 0x3f, 0x0, 0x0, r2}]) ioctl$EVIOCGMASK(r2, 0x80104592, &(0x7f0000001540)={0x11, 0xd0, &(0x7f0000001440)="45a1d464a8455131f56a6de30d4fda7d1ea6335c50d1c53c0b1b8c905f102e2c7101d04cc082866dc8839584fc96c483378aef7a555c831e573f122b904befc002db1399ead52e8c624fc09d9122b7f6b81298b8282bbd23731749051cf05201ea0b18ca04556dd193d707de626b11a590a8ce3c510a528c2d3b3b64bb12643a73b19d51d9b6c1dee2df7706a23de013251bff2368cc890faf874b4df778d25ece5f7d34713e6691e6190a14eb87cd9ce0e6ebf3a2bbd585ed853af2449bff8f8e6e4366bc2c3fe2bf1d4f245f1d56b5"}) ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0) sysinfo(&(0x7f0000001980)=""/4096) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$KVM_SET_TSS_ADDR(r2, 0xae47, 0xd000) openat$ipvs(0xffffffffffffff9c, &(0x7f0000000380)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0) fadvise64(r0, 0x0, 0x9, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000015c0)=0x1) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) 11:10:32 executing program 0: sched_setaffinity(0x0, 0x8, &(0x7f0000000080)=0x1) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) r0 = memfd_create(&(0x7f0000000100)='dev ', 0x0) write(r0, &(0x7f0000000040)="16", 0x1) sendfile(r0, r0, &(0x7f0000001000), 0xffff) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) sendfile(r0, r0, &(0x7f0000000000)=0x8000000000000000, 0x100000) tkill(r1, 0x15) [ 214.162850] FAULT_INJECTION: forcing a failure. [ 214.162850] name failslab, interval 1, probability 0, space 0, times 0 [ 214.174317] CPU: 0 PID: 13271 Comm: syz-executor7 Not tainted 4.18.0-rc4-next-20180711+ #4 [ 214.182714] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 214.192060] Call Trace: [ 214.194643] dump_stack+0x1c9/0x2b4 [ 214.198276] ? dump_stack_print_info.cold.2+0x52/0x52 [ 214.203472] ? should_fail.cold.4+0x5/0x11 [ 214.207707] should_fail.cold.4+0xa/0x11 [ 214.211758] ? __x64_sys_ioctl+0x73/0xb0 [ 214.215801] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 214.220903] ? do_raw_spin_trylock+0x1c0/0x1c0 [ 214.225485] ? trace_hardirqs_off+0xd/0x10 [ 214.229714] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 214.234471] ? retint_kernel+0x10/0x10 [ 214.238356] ? throtl_pd_free+0x21/0x30 [ 214.242326] ? lock_acquire+0x1e4/0x540 [ 214.246286] ? fs_reclaim_acquire+0x20/0x20 [ 214.250594] ? lock_downgrade+0x8f0/0x8f0 [ 214.254726] ? check_same_owner+0x340/0x340 [ 214.259042] ? rcu_note_context_switch+0x730/0x730 [ 214.263967] __should_failslab+0x124/0x180 [ 214.268203] should_failslab+0x9/0x14 [ 214.271995] kmem_cache_alloc_trace+0x2cb/0x780 [ 214.276656] ? do_raw_spin_unlock+0xa7/0x2f0 [ 214.281063] ? _raw_spin_unlock_irq+0x56/0x70 [ 214.285549] ? blk_mq_can_queue+0x50/0x50 [ 214.289685] ? plug_ctx_cmp+0x110/0x110 [ 214.293649] blk_stat_alloc_callback+0x5b/0x280 [ 214.298318] blk_mq_init_allocated_queue+0x12d/0x16c0 [ 214.303505] ? blk_init_allocated_queue+0x600/0x600 [ 214.308516] ? lockdep_init_map+0x9/0x10 [ 214.312576] ? blk_mq_map_swqueue+0xaf0/0xaf0 [ 214.317065] ? __mutex_init+0x1f7/0x290 [ 214.321043] ? retint_kernel+0x10/0x10 [ 214.324935] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 214.329676] ? retint_kernel+0x10/0x10 [ 214.333552] blk_mq_init_queue+0x63/0xb0 [ 214.337606] loop_add+0x33d/0x9d0 [ 214.341053] ? loop_queue_rq+0x660/0x660 [ 214.345114] loop_control_ioctl+0x199/0x540 [ 214.349428] ? ksys_dup3+0x690/0x690 [ 214.353132] ? loop_add+0x9d0/0x9d0 [ 214.356755] ? kasan_check_write+0x14/0x20 [ 214.360985] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 214.365914] ? fsnotify+0xbac/0x14e0 [ 214.369624] ? vfs_write+0x2f3/0x560 [ 214.373335] ? loop_add+0x9d0/0x9d0 [ 214.376956] do_vfs_ioctl+0x1de/0x1720 [ 214.380844] ? ioctl_preallocate+0x300/0x300 [ 214.385236] ? __fget_light+0x2f7/0x440 [ 214.389201] ? __schedule+0x1ed0/0x1ed0 [ 214.393166] ? fget_raw+0x20/0x20 [ 214.396608] ? __sb_end_write+0xac/0xe0 [ 214.400565] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 214.406084] ? fput+0x130/0x1a0 [ 214.409359] ? security_file_ioctl+0x94/0xc0 [ 214.413759] ksys_ioctl+0xa9/0xd0 [ 214.417200] __x64_sys_ioctl+0x73/0xb0 [ 214.421070] do_syscall_64+0x1b9/0x820 [ 214.424937] ? syscall_slow_exit_work+0x500/0x500 [ 214.429761] ? syscall_return_slowpath+0x5e0/0x5e0 [ 214.434671] ? syscall_return_slowpath+0x31d/0x5e0 [ 214.439579] ? prepare_exit_to_usermode+0x291/0x3b0 [ 214.444576] ? perf_trace_sys_enter+0xb10/0xb10 [ 214.449226] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 214.454062] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 214.459239] RIP: 0033:0x455e29 [ 214.462404] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 214.481545] RSP: 002b:00007fc746a7ec68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 214.489233] RAX: ffffffffffffffda RBX: 00007fc746a7f6d4 RCX: 0000000000455e29 [ 214.496779] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000014 [ 214.504041] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 11:10:33 executing program 7 (fault-call:6 fault-nth:25): socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) [ 214.511298] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015 [ 214.518562] R13: 00000000004be3c0 R14: 00000000004ccd10 R15: 0000000000000018 11:10:33 executing program 5: r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/sys/net/ipv4/vs/secure_tcp\x00', 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/syz0\x00', 0x1ff) ioctl$KDDISABIO(r0, 0x4b37) write$binfmt_script(0xffffffffffffffff, &(0x7f00000003c0)=ANY=[@ANYBLOB], 0x0) fallocate(r1, 0x1, 0x75000, 0x10000101) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'vcan0\x00'}) ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000140)={@empty, 0x71}) ioctl$EVIOCGMASK(0xffffffffffffffff, 0x80104592, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)}) socket(0x10, 0x0, 0x0) ioctl$sock_ifreq(0xffffffffffffffff, 0x0, &(0x7f0000000000)={"73697430000080000000000000000002", @ifru_ivalue}) 11:10:33 executing program 4: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000480)='em0em1\x00'}, 0x5) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0x0, 0x7, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x8050) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) sendmsg$nl_route(r0, &(0x7f0000000440)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2000800}, 0xc, &(0x7f0000000380)={&(0x7f0000000300)=@ipv6_getnetconf={0x2c, 0x52, 0xa26, 0x70bd2c, 0x25dfdbfb, {0xa}, [@NETCONFA_RP_FILTER={0x8, 0x3, 0x5}, @NETCONFA_PROXY_NEIGH={0x8, 0x5, 0x9}, @NETCONFA_RP_FILTER={0x8, 0x3, 0xff}]}, 0x2c}, 0x1, 0x0, 0x0, 0x1}, 0x10) 11:10:33 executing program 3: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000680)=ANY=[@ANYBLOB="2400000018000000000000ce973c2c31a46171e33400ffdbdf2502007dc1ca1b286de95a5b409d5348763813b0008135f846701aff9e32850fa3180596fa5d258115970e618c9296fd3ab89d0c9045b8d54f"], 0x24}, 0x1}, 0x8050) r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0) sendmsg$nfc_llcp(r0, &(0x7f0000000540)={&(0x7f0000000440)={0x27, 0x1, 0x2, 0x5, 0xfffffffffffffbff, 0xfffffffffffffff7, "e98421ec3a473268f7bf08df6d9417ffeaf0cf1f719ad05569ba130b7143151a90211fe1249ae1ff33856bf3b3c12c635467fe993110788937c0223f8927ed", 0x13}, 0x60, &(0x7f0000000380)=[{&(0x7f00000004c0)="b3b93d813fec9b5280d21d1ef51276d5a22b013d289962c7054a9900b2a738ca8b1f92ec5498cc96d401e358dac95ce43ece063c1d0440bffddcab3be24beae97452db7a29fec9991af94df378e954f6a49566f9", 0x54}], 0x1, 0x0, 0x0, 0xc0}, 0x10) openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000580)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_CLIENT(r1, 0x404c534a, &(0x7f00000005c0)={0x2, 0x2, 0xffff}) ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) syz_open_dev$evdev(&(0x7f0000000640)='/dev/input/event#\x00', 0x7fffffff, 0x400) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) 11:10:33 executing program 1: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) syz_mount_image$gfs2(&(0x7f00000000c0)='gfs2\x00', &(0x7f00000001c0)='./file0\x00', 0x8, 0x7, &(0x7f00000016c0)=[{&(0x7f0000000200)="7f2f5148406424f406de865e6f9a72d7fbffc7c1cd69af47a48affc77fe6d8b44777c95e41e627e8f44caf1a169240470833", 0x32, 0x3246}, {&(0x7f0000000400)="d55202312d7454cb594a1da7c90f0a64c78b9d917547d8a8da42e45063e62c352d60efeda0efa7fc04620291c2b83879ecdfb759116f902348d893953c959bec47b59ac3356b6cdaa8fcac8a96f6a9ccc27966103583bbe41cc97f6ca9262abe19e93891a32dc26564d23e6c5d4838b3e47f7c3f018dd82b24fcc55be3db439d8079b909c8e2eec5334cf75fb9fbe3b4379664d631abe4133a3e368b4677e851278987db21e09499a5f581c6e887d841caf8c6a0dc53b638b00ad4335c6bd8ee243e", 0xc2, 0x81}, {&(0x7f0000000240)="53877bbf4e4f06e1a5775ad7f561577e331dae15ea0f20786cb65dc9d37f16b0d234059704f176318f98e4bc6085062bdb6ff320c2a4fce9d34a6bdd728362286c5984c1290581ff2c0badc0ad5dbe9acd958db8bf6d811fb9b495cc47bc4c78e597f1b3ec24f04ff050303fbb9a8477c1ae1178", 0x74, 0xd27}, {&(0x7f0000000300)="c0d997def4b958e70597d3fe6e553347e1b96050a24aa0e236c753f59832560781af93fb9b", 0x25, 0x70}, {&(0x7f0000000500)="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", 0x1000, 0x1ff}, {&(0x7f0000001500)="b0d325bb877104edbecfe075477210a5f69aac9ef7f359e3744cfa01507026f2361f0a1d78bd3c9d0e2b3e10366df87151a45c1c4c80178d7dc96ba8da50ee4f0e0484334613d0ba9d9e73470b63c716efbd0fb9bbc6726108eac01280ac094b0bb11b0d2aac3a8d646f1c64c7cd6ca39f7274bcd1775b29306e8078f9d2b9dc0b599842954f9ef15309d7516790187b7273146d8e86680d07e353a8cf79fcc4e31f393ce8a06fd56123e30cb96d", 0xae, 0x1}, {&(0x7f00000015c0)="cb84fe27878a40dc12528fa788f965f90a57c350c13b1c797f4c282a877e4dc0c0e7d274c18c423c04cea0c9fe9cce478127abac08dfb24991cfa88cf9462b67870e8366dd9f01fe1033660a124029b20e9c30467f06d9514ccb2c5628d81f0a8fbb5e711b16578eda81b25cc45c652fb31e77398714cbebc9e30c3b4e8223885367a861597493e59a0ceea83b4104655a4473c01ae86473cbcc6abcdb28bde589a6aa8f0b12ff44f9c193152062d77cd547d7dc60e1b4c85c1168c7a81dfa75c8d7160d210ef6448b73870ce1", 0xcd, 0x1000}], 0x20, &(0x7f0000000340)={[{@quota_off='quota=off', 0x2c}]}) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) r2 = openat(0xffffffffffffffff, &(0x7f0000000380)='./file0\x00', 0x0, 0x4) write$P9_RSETATTR(r2, &(0x7f0000001780)={0x7, 0x1b, 0x2}, 0x7) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)) 11:10:33 executing program 5: r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/sys/net/ipv4/vs/secure_tcp\x00', 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/syz0\x00', 0x1ff) ioctl$KDDISABIO(r0, 0x4b37) write$binfmt_script(0xffffffffffffffff, &(0x7f00000003c0)=ANY=[@ANYBLOB], 0x0) fallocate(r1, 0x1, 0x700000000000000, 0x10000101) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'vcan0\x00'}) ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000140)={@empty, 0x71}) ioctl$EVIOCGMASK(0xffffffffffffffff, 0x80104592, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)}) socket(0x10, 0x0, 0x0) ioctl$sock_ifreq(0xffffffffffffffff, 0x0, &(0x7f0000000000)={"73697430000080000000000000000002", @ifru_ivalue}) 11:10:33 executing program 4: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) ioctl$KVM_XEN_HVM_CONFIG(r1, 0x4038ae7a, &(0x7f0000000380)={0x1, 0xb07, &(0x7f00000001c0), &(0x7f00000002c0)="368974647ac7dde01d1177c3dd81771a970ac0c4d659cb8c38214d02c54fd14b0d06fb9f42b00bfbf807a2bcad08f292706329581d467b2ff0557f082d90676a97530121ed57626eb3f29b3da257e2490b4b4f01a61a49abbbe0ac8389d04e57e1a47dc84af03b85af63bb2bb94cf36908b79084bd36e9b6d65803f575d7", 0x0, 0x7e}) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0x0, 0x7, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x8050) ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) 11:10:33 executing program 2: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0x0, 0x7, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x0) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) socketpair$inet6_sctp(0xa, 0x5, 0x84, &(0x7f00000000c0)) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) [ 214.936185] FAULT_INJECTION: forcing a failure. [ 214.936185] name failslab, interval 1, probability 0, space 0, times 0 [ 214.947653] CPU: 0 PID: 13334 Comm: syz-executor7 Not tainted 4.18.0-rc4-next-20180711+ #4 [ 214.956042] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 214.965375] Call Trace: [ 214.967943] dump_stack+0x1c9/0x2b4 [ 214.971562] ? dump_stack_print_info.cold.2+0x52/0x52 [ 214.976734] should_fail.cold.4+0xa/0x11 [ 214.980779] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 214.985868] ? save_stack+0xa9/0xd0 [ 214.989474] ? save_stack+0x43/0xd0 [ 214.993084] ? kasan_kmalloc+0xc4/0xe0 [ 214.996973] ? kmem_cache_alloc_trace+0x152/0x780 [ 215.001800] ? blk_stat_alloc_callback+0x5b/0x280 [ 215.006627] ? blk_mq_init_allocated_queue+0x12d/0x16c0 [ 215.011976] ? loop_add+0x33d/0x9d0 [ 215.015580] ? loop_control_ioctl+0x199/0x540 [ 215.020059] ? do_vfs_ioctl+0x1de/0x1720 [ 215.024098] ? ksys_ioctl+0xa9/0xd0 [ 215.027704] ? __x64_sys_ioctl+0x73/0xb0 [ 215.031762] ? do_syscall_64+0x1b9/0x820 [ 215.035808] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 215.041163] ? retint_kernel+0x10/0x10 [ 215.045038] ? throtl_pd_free+0x21/0x30 [ 215.049001] ? lock_acquire+0x1e4/0x540 [ 215.052964] ? fs_reclaim_acquire+0x20/0x20 [ 215.057292] ? lock_downgrade+0x8f0/0x8f0 [ 215.061430] ? lock_downgrade+0x8f0/0x8f0 [ 215.065582] ? lock_release+0xa30/0xa30 [ 215.069553] ? check_same_owner+0x340/0x340 [ 215.073858] ? check_same_owner+0x340/0x340 [ 215.078165] ? rcu_note_context_switch+0x730/0x730 [ 215.083078] __should_failslab+0x124/0x180 [ 215.087296] should_failslab+0x9/0x14 [ 215.091082] __kmalloc+0x2c8/0x760 [ 215.094604] ? kmem_cache_alloc_trace+0x318/0x780 [ 215.099427] ? do_raw_spin_unlock+0xa7/0x2f0 [ 215.103833] ? blk_stat_alloc_callback+0x84/0x280 [ 215.108661] ? blk_mq_can_queue+0x50/0x50 [ 215.112791] ? plug_ctx_cmp+0x110/0x110 [ 215.116757] blk_stat_alloc_callback+0x84/0x280 [ 215.121408] blk_mq_init_allocated_queue+0x12d/0x16c0 [ 215.126578] ? blk_init_allocated_queue+0x600/0x600 [ 215.131590] ? lockdep_init_map+0x9/0x10 [ 215.135663] ? blk_mq_map_swqueue+0xaf0/0xaf0 [ 215.140149] ? __mutex_init+0x1f7/0x290 [ 215.144140] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 215.148883] ? retint_kernel+0x10/0x10 [ 215.152769] blk_mq_init_queue+0x63/0xb0 [ 215.156818] loop_add+0x33d/0x9d0 [ 215.160254] ? loop_lookup+0x105/0x230 [ 215.164127] ? loop_queue_rq+0x660/0x660 [ 215.168181] loop_control_ioctl+0x199/0x540 [ 215.172499] ? ksys_dup3+0x690/0x690 [ 215.176212] ? loop_add+0x9d0/0x9d0 [ 215.179845] ? kasan_check_write+0x14/0x20 [ 215.184065] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 215.188987] ? fsnotify+0xbac/0x14e0 [ 215.192690] ? vfs_write+0x2f3/0x560 [ 215.196390] ? loop_add+0x9d0/0x9d0 [ 215.200000] do_vfs_ioctl+0x1de/0x1720 [ 215.203879] ? ioctl_preallocate+0x300/0x300 [ 215.208269] ? __fget_light+0x2f7/0x440 [ 215.212224] ? __schedule+0x1ed0/0x1ed0 [ 215.216175] ? fget_raw+0x20/0x20 [ 215.219618] ? __f_unlock_pos+0x19/0x20 [ 215.223592] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 215.229128] ? fput+0x130/0x1a0 [ 215.232391] ? security_file_ioctl+0x94/0xc0 [ 215.236788] ksys_ioctl+0xa9/0xd0 [ 215.240264] __x64_sys_ioctl+0x73/0xb0 [ 215.244134] do_syscall_64+0x1b9/0x820 [ 215.248003] ? syscall_slow_exit_work+0x500/0x500 [ 215.252839] ? syscall_return_slowpath+0x5e0/0x5e0 [ 215.257758] ? syscall_return_slowpath+0x31d/0x5e0 [ 215.262667] ? prepare_exit_to_usermode+0x291/0x3b0 [ 215.267661] ? perf_trace_sys_enter+0xb10/0xb10 [ 215.272309] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 215.277148] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 215.282325] RIP: 0033:0x455e29 [ 215.285490] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 215.304613] RSP: 002b:00007fc746a7ec68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 215.312302] RAX: ffffffffffffffda RBX: 00007fc746a7f6d4 RCX: 0000000000455e29 [ 215.319557] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000014 [ 215.326814] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 11:10:34 executing program 6: r0 = getpid() sched_setattr(r0, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x0, 0x3}, 0x0) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x0, 0x0) poll(&(0x7f00000001c0), 0x0, 0x80000000) ioctl$TCSETS(r1, 0x40045431, &(0x7f00003b9fdc)) ioctl$TIOCPKT(r1, 0x5420, &(0x7f0000000080)=0x61) read(r1, &(0x7f0000000040)=""/11, 0xffed) r2 = syz_open_pts(r1, 0x0) ioctl$TCXONC(r2, 0x5429, 0x0) 11:10:34 executing program 3: socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0xb0, 0x0, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x8050) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f0000000440)=0x93bbe397698678eb) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) 11:10:34 executing program 5: r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/sys/net/ipv4/vs/secure_tcp\x00', 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/syz0\x00', 0x1ff) ioctl$KDDISABIO(r0, 0x4b37) write$binfmt_script(0xffffffffffffffff, &(0x7f00000003c0)=ANY=[@ANYBLOB], 0x0) fallocate(r1, 0x1, 0x4000000000000, 0x10000101) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'vcan0\x00'}) ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000140)={@empty, 0x71}) ioctl$EVIOCGMASK(0xffffffffffffffff, 0x80104592, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)}) socket(0x10, 0x0, 0x0) ioctl$sock_ifreq(0xffffffffffffffff, 0x0, &(0x7f0000000000)={"73697430000080000000000000000002", @ifru_ivalue}) 11:10:34 executing program 1: r0 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000240)='/dev/mixer\x00', 0x20003, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000280)={0x1f, 0x0, 0x7, 0x101, 0x1, r0, 0x8}, 0x2c) r1 = socket(0x0, 0x0, 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x102) ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_TIMER(r2, 0xc0605345, &(0x7f00000001c0)={0x101, 0x1, {0x3, 0x0, 0xff, 0x1, 0x2}}) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1") ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) syz_mount_image$hfsplus(&(0x7f0000000300)='hfsplus\x00', &(0x7f0000000340)='./file0\x00', 0x800, 0x4, &(0x7f00000006c0)=[{&(0x7f0000000400)="03e4c1c31cbc83fa3cc0706ff6dd4a02c9b0e1675d1342dec293d1e109c4565a1a753de9fccbd4819298814cf9ce4da9b8ef7a1a9000e344578d94695fec8746b6096689b0cd00cf6f2e2b4c295ae2053882049ee6b33a723204", 0x5a, 0x3f}, {&(0x7f0000000480)="e5d8b03d0c86c95f1f4efaf85efd82a2397c2fd7a6c00758867e8b752926bc1a77997bba8566cfab1f568198a9949fb28566c11df7631c6d975e312610f6e282d3983c09231d131ba913c2469728d8ee9e128da1c589b336db9719a06559f57c9a94dc7646b1a1f34efd835932bd3b1ba36acacc2cbcc694c1cad77af90398f814be5501", 0x84, 0x7}, {&(0x7f0000000540)="98d20c80cbe3710a0717651eceb4e0f0d759d9fddacc898b7628f2d8b1ba7fa1399958f028a4aec060ea030522e76c794ea827dbd1713ddaad887bcaec45f9ae800ac2668d8180502a257de31dc3df0153d21f9a75e546a2f2af0a73ffb6ffaf7fb77a61c768662be616fcb3ede768b260f446abe844be52", 0x78, 0x9}, {&(0x7f00000005c0)="65ce99cc45b938a02c201ab5a367cb3d2039365e6c29caec5f15a4ecbd3067b1e892908bb923e84f3098fb52365baea6878037356006a608792d83bc92bf3b337bb86c286a9c6a6a8fb48876526baee44b36cae6784a124718f18608954d559523dc7934f9b8ba9f3a4560877f7e6ff08a2695984cdaf7972ca554033b5fc6c056cb7606900e3391c2a926a19de000385f6b98c7d84142d2167a8cfb7bfd0712c4a904c9be3d1cfc34eb6398447c19a75b852a275b78cfb04f41af331128f18b9b046698d42519762c0d2e615a8748de538cdfee841630108f32bc", 0xdb, 0x8000}], 0x400, &(0x7f0000000740)={[{@umask={'umask', 0x3d, 0x7}, 0x2c}, {@decompose='decompose', 0x2c}, {@umask={'umask', 0x3d, 0xffffffff}, 0x2c}, {@nls={'nls', 0x3d, 'utf8'}, 0x2c}, {@part={'part', 0x3d, 0x3ff}, 0x2c}, {@umask={'umask', 0x3d, 0x8000}, 0x2c}, {@nls={'nls', 0x3d, 'koi8-r'}, 0x2c}, {@umask={'umask', 0x3d, 0xc2e6}, 0x2c}, {@type={'type', 0x3d, "ebee3635"}, 0x2c}]}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)) 11:10:34 executing program 4: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=ANY=[@ANYBLOB="2400010000000000000000000000000000000000000000080000"], 0x24}, 0x1}, 0x8050) r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000540)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x31, 0xffffffffffffffff, 0x0) open_by_handle_at(0xffffffffffffffff, &(0x7f0000000000)={0x8}, 0x0) r3 = gettid() fcntl$setownex(r1, 0xf, &(0x7f0000000380)={0x1, r3}) epoll_ctl$EPOLL_CTL_DEL(r1, 0x2, r2) ioctl$sock_inet6_udp_SIOCINQ(r0, 0x541b, &(0x7f0000000500)) write$P9_RREMOVE(r1, &(0x7f00000001c0)={0x7, 0x7b, 0x2}, 0x7) ioctl$SNDRV_SEQ_IOCTL_QUERY_NEXT_PORT(r1, 0xc0a85352, &(0x7f0000000440)={{0xb06, 0x6}, 'port0\x00', 0x0, 0x28, 0x4, 0x1, 0x4, 0xfffffffffffffffe, 0x9, 0x0, 0x5, 0x7}) unlinkat(r1, &(0x7f0000000300)='./file0\x00', 0x200) 11:10:34 executing program 0: sched_setaffinity(0x0, 0x8, &(0x7f0000000080)=0x1) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) r0 = memfd_create(&(0x7f0000000100)='dev ', 0x0) write(r0, &(0x7f0000000040)="16", 0x1) sendfile(r0, r0, &(0x7f0000001000), 0xffff) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) sendfile(r0, r0, &(0x7f0000000000)=0x10030000, 0x100000) tkill(r1, 0x15) 11:10:34 executing program 2: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000400)=ANY=[@ANYBLOB="240000001800000000000000ff0ce2718b0000070003ff050011000008000200ac1414182bff32b61d4fdc1adf2330a028d1fa47382185aa2b7fdb014e8a0f09004852d2e5de"], 0x24}, 0x1}, 0x0) setsockopt$IP_VS_SO_SET_ZERO(r0, 0x0, 0x48f, &(0x7f00000000c0)={0x3b, @empty, 0x4e21, 0x1, 'dh\x00', 0x6, 0x20, 0x31}, 0x2c) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f") r2 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000300)='IPVS\x00') sendmsg$IPVS_CMD_GET_CONFIG(r0, &(0x7f0000000640)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x80400080}, 0xc, &(0x7f0000000600)={&(0x7f00000006c0)=ANY=[@ANYBLOB='H\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="000303000000ffdbdf250d00000034000200080006f9daca528d100a7ee46b06135715da0004000000080008000100008008000300030000002b0003000100000008000800800000000800040000000000"], 0x48}, 0x1, 0x0, 0x0, 0x80}, 0x4) r3 = memfd_create(&(0x7f00000001c0)='ip_vti0\x00', 0x2) iopl(0x3) openat$rfkill(0xffffffffffffff9c, &(0x7f0000000680)='/dev/rfkill\x00', 0x10000, 0x0) getsockname$packet(r0, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @broadcast}, &(0x7f0000000500)=0x14) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000540)={'nr0\x00', r4}) ioctl$TCFLSH(r3, 0x540b, 0xfffffffffffffffd) ioctl$KVM_PPC_GET_PVINFO(r3, 0x4080aea1, &(0x7f0000000480)=""/117) ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) [ 215.334067] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015 [ 215.341321] R13: 00000000004be3c0 R14: 00000000004ccd10 R15: 0000000000000019 11:10:34 executing program 7 (fault-call:6 fault-nth:26): socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) 11:10:34 executing program 5: r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/sys/net/ipv4/vs/secure_tcp\x00', 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/syz0\x00', 0x1ff) ioctl$KDDISABIO(r0, 0x4b37) write$binfmt_script(0xffffffffffffffff, &(0x7f00000003c0)=ANY=[@ANYBLOB], 0x0) fallocate(r1, 0x1, 0x70800, 0x10000101) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'vcan0\x00'}) ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000140)={@empty, 0x71}) ioctl$EVIOCGMASK(0xffffffffffffffff, 0x80104592, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)}) socket(0x10, 0x0, 0x0) ioctl$sock_ifreq(0xffffffffffffffff, 0x0, &(0x7f0000000000)={"73697430000080000000000000000002", @ifru_ivalue}) [ 215.523094] FAULT_INJECTION: forcing a failure. [ 215.523094] name failslab, interval 1, probability 0, space 0, times 0 [ 215.534752] CPU: 1 PID: 13365 Comm: syz-executor7 Not tainted 4.18.0-rc4-next-20180711+ #4 [ 215.543162] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 215.552513] Call Trace: [ 215.555107] dump_stack+0x1c9/0x2b4 [ 215.558739] ? dump_stack_print_info.cold.2+0x52/0x52 [ 215.563946] ? should_fail.cold.4+0x5/0x11 [ 215.568185] should_fail.cold.4+0xa/0x11 [ 215.572250] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 215.577375] ? lock_repin_lock+0x430/0x430 [ 215.581611] ? kasan_check_write+0x14/0x20 [ 215.585854] ? __schedule+0x884/0x1ed0 [ 215.589742] ? ksys_ioctl+0xa9/0xd0 [ 215.593385] ? __sched_text_start+0x8/0x8 [ 215.597537] ? __sched_text_start+0x8/0x8 [ 215.601686] ? throtl_pd_free+0x21/0x30 [ 215.605668] ? lock_acquire+0x1e4/0x540 [ 215.609643] ? fs_reclaim_acquire+0x20/0x20 [ 215.613970] ? lock_downgrade+0x8f0/0x8f0 [ 215.618123] ? lock_downgrade+0x8f0/0x8f0 [ 215.622282] ? lock_release+0xa30/0xa30 [ 215.626255] ? check_same_owner+0x340/0x340 [ 215.630578] ? check_same_owner+0x340/0x340 [ 215.634891] __should_failslab+0x124/0x180 [ 215.639108] should_failslab+0x9/0x14 [ 215.642890] __kmalloc+0x2c8/0x760 [ 215.646410] ? kmem_cache_alloc_trace+0x318/0x780 [ 215.651235] ? do_raw_spin_unlock+0xa7/0x2f0 [ 215.655624] ? blk_stat_alloc_callback+0x84/0x280 [ 215.660450] ? blk_mq_can_queue+0x50/0x50 [ 215.664600] ? plug_ctx_cmp+0x110/0x110 [ 215.668571] blk_stat_alloc_callback+0x84/0x280 [ 215.673229] blk_mq_init_allocated_queue+0x12d/0x16c0 [ 215.678401] ? blk_init_allocated_queue+0x600/0x600 [ 215.683403] ? lockdep_init_map+0x9/0x10 [ 215.687455] ? blk_mq_map_swqueue+0xaf0/0xaf0 [ 215.691932] ? __mutex_init+0x1f7/0x290 [ 215.695909] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 215.701435] ? __blk_mq_alloc_rq_map+0x17d/0x2e0 [ 215.706175] ? retint_kernel+0x10/0x10 [ 215.710044] ? blk_mq_update_nr_hw_queues+0x510/0x510 [ 215.715220] blk_mq_init_queue+0x63/0xb0 [ 215.719269] loop_add+0x33d/0x9d0 [ 215.722704] ? loop_queue_rq+0x660/0x660 [ 215.726746] ? loop_control_ioctl+0x17c/0x540 [ 215.731224] loop_control_ioctl+0x199/0x540 [ 215.735528] ? ksys_dup3+0x690/0x690 [ 215.739223] ? loop_add+0x9d0/0x9d0 [ 215.742836] ? kasan_check_write+0x14/0x20 [ 215.747051] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 215.751962] ? fsnotify+0xbac/0x14e0 [ 215.755655] ? vfs_write+0x2f3/0x560 [ 215.759352] ? loop_add+0x9d0/0x9d0 [ 215.762970] do_vfs_ioctl+0x1de/0x1720 [ 215.766838] ? fsnotify_first_mark+0x350/0x350 [ 215.771401] ? __fsnotify_parent+0xcc/0x420 [ 215.775703] ? ioctl_preallocate+0x300/0x300 [ 215.780093] ? __fget_light+0x2f7/0x440 [ 215.784049] ? fget_raw+0x20/0x20 [ 215.787484] ? __sb_end_write+0xac/0xe0 [ 215.791442] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 215.796959] ? fput+0x130/0x1a0 [ 215.800222] ? ksys_write+0x1ae/0x260 [ 215.804006] ? security_file_ioctl+0x94/0xc0 [ 215.808397] ksys_ioctl+0xa9/0xd0 [ 215.811831] __x64_sys_ioctl+0x73/0xb0 [ 215.815700] do_syscall_64+0x1b9/0x820 [ 215.819568] ? syscall_slow_exit_work+0x500/0x500 [ 215.824391] ? syscall_return_slowpath+0x5e0/0x5e0 [ 215.829301] ? syscall_return_slowpath+0x31d/0x5e0 [ 215.834214] ? prepare_exit_to_usermode+0x291/0x3b0 [ 215.839211] ? perf_trace_sys_enter+0xb10/0xb10 [ 215.843860] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 215.848684] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 215.853853] RIP: 0033:0x455e29 11:10:34 executing program 3: socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x80000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=ANY=[@ANYBLOB="240000001800000000000000ffdbdf0011000008000200ac141418000000000000000000"], 0x24}, 0x1}, 0x8050) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) getsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f00000005c0)={{{@in6=@local, @in6=@ipv4={[], [], @local}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@local}, 0x0, @in6}}, &(0x7f0000000580)=0xe8) setuid(r2) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$RTC_WKALM_RD(r0, 0x80287010, &(0x7f0000000480)) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) ioctl$KDGKBMETA(r0, 0x4b62, &(0x7f0000000440)) bind$bt_sco(r0, &(0x7f0000000380)={0x1f, {0x20, 0x1b2fb78b, 0x6, 0x9, 0x0, 0x5}}, 0x8) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) [ 215.857018] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 215.876187] RSP: 002b:00007fc746a7ec68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 215.883875] RAX: ffffffffffffffda RBX: 00007fc746a7f6d4 RCX: 0000000000455e29 [ 215.891133] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000014 [ 215.898389] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 215.905637] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015 [ 215.912888] R13: 00000000004be3c0 R14: 00000000004ccd10 R15: 000000000000001a 11:10:34 executing program 4: r0 = socket(0xfffffffffffffffe, 0x0, 0x4) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socketpair(0x0, 0x3, 0x4, &(0x7f0000000440)={0xffffffffffffffff}) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000480)='ip_vti0\x00', r1}, 0x10) ioctl$EVIOCGBITSW(r1, 0x80404525, &(0x7f00000004c0)=""/189) getsockopt$inet_sctp6_SCTP_EVENTS(r2, 0x84, 0xb, &(0x7f00000000c0), &(0x7f0000000140)=0xb) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=ANY=[@ANYBLOB="240000001800000000000000ffdf250200ac14141800"], 0x24}, 0x1}, 0x8050) r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$sock_inet6_tcp_SIOCOUTQ(r0, 0x5411, &(0x7f00000001c0)) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) 11:10:34 executing program 2: r0 = socket(0x0, 0x0, 0x0) r1 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_generic(r1, &(0x7f0000000300)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x6}, 0xc, &(0x7f00000001c0)={&(0x7f0000000400)={0x338, 0x16, 0x204, 0x70bd28, 0x25dfdbff, {0x7}, [@typed={0x8, 0x16, @u32}, @nested={0x18, 0x7e, [@typed={0x14, 0xe, @ipv6=@remote={0xfe, 0x80, [], 0xbb}}]}, @nested={0x23c, 0x83, [@generic="a05631af1b6765132e6b5e98f6fadff296dc22f3d179867f12e628a014d297430f21c810f60315a120a8d9dcfd058b121cc70ad0f076aadc6c465a8b572f61dfe8f211776c662523cfebc8c89af9bac2f024fb1d035d847e3a2c058d5bbdd22605ea01b9999bd38b2794093d7e7510bd0b0f31e932abedcc7b6daf902f1b70ba141543d6deaf04e8086404bd5854fccd2bfc191796d46be0200c3ddbb76dfffcfec468312ed97ab9e2c1ebc5ad4254b685f79dad8feaf6ceb5c068391355b0afb0efbb129741ae2d85fd3bd37a8008104e5240dc311ffc1e8e7283029b25dd76f89bc91c297eaad54ce12759ac6b97beb9067cd744", @generic="db28a14f2298fc4bcd0294cd7fd949aee5bac93e6d3050957606c9691540a9154e71b7d55cfb2a8e38c47f940822e8cff6313d54498926df6d9343ece37e3c954a77f1bd6e4deb0014471a21991cb22f15fb", @generic="820b1b4c5798ff52cfad78ebc87858f68f96deff41e642164730890d83e4f926e8ebf61de0767bdd2bdb9dbdc3ca9513a9f50c849a6d3cd209d606ddc7ab036e6976669351650bfd935b64c1ceb6077b013df8158f3521a833cc8d27633421d06b2be0fd5681005fa807cd6f2938b6d164aa22bd5e358b03b53c9577edeb3a4ad597201fb32432c35348ca6bf9847d4f48b001ea18a4cdec3c9de08a9585db1875c669200ea42029784409a75b37cf5809c58f29b07817f1f733538b741326058a10ca81356f56a0ab10bcda8f9401f4ab99c4bec4a6880509f7b278832b59a96ba4f4c850f8aa74c8813af57d2ad500"]}, @generic="4f3660b272492fcf58b25a200f926a73248ab20133e41b53c4dcbcb5232f77ac727d06b467b8e2dbe44a606f53d6822cbb2134b7bc9dc6426f3523f9ccbe2bfa18e6f06c7ef2cdfb4696a0c89a9ebb11d38e6b5eb37de5434d38530332cf495f59a4c9d27123b72b4f8996510035c42e1d10ad387e2cb207b92df090dfa29231cafe0f1a9b32332f617967b62ce221b531ee486837f181b802277e1b55ba8fac35628a03e1c73c502e70b7ddd14c16dcfe042f3ba2581cbeedc7713d481771c52e8940d3f9"]}, 0x338}, 0x1, 0x0, 0x0, 0x20004000}, 0x800) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0x0, 0x7, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x0) r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) 11:10:34 executing program 7 (fault-call:6 fault-nth:27): socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) 11:10:34 executing program 5: r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/sys/net/ipv4/vs/secure_tcp\x00', 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/syz0\x00', 0x1ff) ioctl$KDDISABIO(r0, 0x4b37) write$binfmt_script(0xffffffffffffffff, &(0x7f00000003c0)=ANY=[@ANYBLOB], 0x0) fallocate(r1, 0x1, 0xffb7000000000000, 0x10000101) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'vcan0\x00'}) ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000140)={@empty, 0x71}) ioctl$EVIOCGMASK(0xffffffffffffffff, 0x80104592, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)}) socket(0x10, 0x0, 0x0) ioctl$sock_ifreq(0xffffffffffffffff, 0x0, &(0x7f0000000000)={"73697430000080000000000000000002", @ifru_ivalue}) 11:10:34 executing program 3: socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=ANY=[@ANYBLOB="240000001800000009000000ffdbdf25e4ffaf000003ff050011000008000200ac141418"], 0x24}, 0x1}, 0x8050) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) 11:10:34 executing program 2: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=ANY=[@ANYBLOB="240000001800000000000000ffdbdf25020000070003ff050011000008000200ac149418"], 0x24}, 0x1}, 0x0) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) [ 216.114912] FAULT_INJECTION: forcing a failure. [ 216.114912] name failslab, interval 1, probability 0, space 0, times 0 [ 216.126265] CPU: 0 PID: 13397 Comm: syz-executor7 Not tainted 4.18.0-rc4-next-20180711+ #4 [ 216.134670] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 216.144018] Call Trace: [ 216.146613] dump_stack+0x1c9/0x2b4 [ 216.150237] ? dump_stack_print_info.cold.2+0x52/0x52 [ 216.155415] ? save_stack+0x43/0xd0 [ 216.159030] ? __kasan_slab_free+0x11a/0x170 [ 216.163422] ? kasan_slab_free+0xe/0x10 [ 216.167380] ? throtl_pd_free+0x21/0x30 [ 216.171340] should_fail.cold.4+0xa/0x11 [ 216.175383] ? __x64_sys_ioctl+0x73/0xb0 [ 216.179430] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 216.184517] ? do_raw_spin_trylock+0x1c0/0x1c0 [ 216.189084] ? kasan_check_write+0x14/0x20 [ 216.193303] ? trace_hardirqs_off+0xd/0x10 [ 216.197534] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 216.202275] ? retint_kernel+0x10/0x10 [ 216.206145] ? throtl_pd_free+0x21/0x30 [ 216.210109] ? lock_acquire+0x1e4/0x540 [ 216.214082] ? fs_reclaim_acquire+0x20/0x20 [ 216.218385] ? lock_downgrade+0x8f0/0x8f0 [ 216.222537] ? check_same_owner+0x340/0x340 [ 216.226840] ? rcu_note_context_switch+0x730/0x730 [ 216.231750] __should_failslab+0x124/0x180 [ 216.235967] should_failslab+0x9/0x14 [ 216.239752] kmem_cache_alloc_trace+0x2cb/0x780 [ 216.244401] ? do_raw_spin_unlock+0xa7/0x2f0 [ 216.248791] ? _raw_spin_unlock_irq+0x56/0x70 [ 216.253278] ? blk_mq_can_queue+0x50/0x50 [ 216.257416] ? plug_ctx_cmp+0x110/0x110 [ 216.261371] blk_stat_alloc_callback+0x5b/0x280 [ 216.266029] blk_mq_init_allocated_queue+0x12d/0x16c0 [ 216.271201] ? blk_init_allocated_queue+0x600/0x600 [ 216.276208] ? lockdep_init_map+0x9/0x10 [ 216.280253] ? blk_mq_map_swqueue+0xaf0/0xaf0 [ 216.284737] ? __mutex_init+0x1f7/0x290 [ 216.288873] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 216.294393] ? __blk_mq_alloc_rq_map+0x17d/0x2e0 [ 216.299144] ? blk_mq_update_nr_hw_queues+0x510/0x510 [ 216.304319] blk_mq_init_queue+0x63/0xb0 [ 216.308362] loop_add+0x33d/0x9d0 [ 216.311800] ? loop_lookup+0x105/0x230 [ 216.315670] ? loop_queue_rq+0x660/0x660 [ 216.319723] loop_control_ioctl+0x199/0x540 [ 216.324027] ? loop_add+0x9d0/0x9d0 [ 216.327635] ? retint_kernel+0x10/0x10 [ 216.331507] ? do_vfs_ioctl+0x123/0x1720 [ 216.335549] ? loop_add+0x9d0/0x9d0 [ 216.339157] do_vfs_ioctl+0x1de/0x1720 [ 216.343028] ? fsnotify_first_mark+0x350/0x350 [ 216.347593] ? __fsnotify_parent+0xcc/0x420 [ 216.351897] ? ioctl_preallocate+0x300/0x300 [ 216.356285] ? __fget_light+0x2f7/0x440 [ 216.360241] ? fget_raw+0x20/0x20 [ 216.363676] ? __sb_end_write+0xac/0xe0 [ 216.367633] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 216.373151] ? fput+0x130/0x1a0 [ 216.376410] ? ksys_write+0x1ae/0x260 [ 216.380193] ? security_file_ioctl+0x94/0xc0 [ 216.384584] ksys_ioctl+0xa9/0xd0 [ 216.388030] __x64_sys_ioctl+0x73/0xb0 [ 216.391901] do_syscall_64+0x1b9/0x820 [ 216.395780] ? syscall_slow_exit_work+0x500/0x500 [ 216.400607] ? syscall_return_slowpath+0x5e0/0x5e0 [ 216.405523] ? syscall_return_slowpath+0x31d/0x5e0 [ 216.410436] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 216.415957] ? prepare_exit_to_usermode+0x291/0x3b0 [ 216.420956] ? perf_trace_sys_enter+0xb10/0xb10 [ 216.425607] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 216.430442] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 216.435609] RIP: 0033:0x455e29 [ 216.438777] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 216.457948] RSP: 002b:00007fc746a7ec68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 216.465638] RAX: ffffffffffffffda RBX: 00007fc746a7f6d4 RCX: 0000000000455e29 [ 216.472888] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000014 [ 216.480149] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 216.487399] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015 [ 216.494648] R13: 00000000004be3c0 R14: 00000000004ccd10 R15: 000000000000001b 11:10:35 executing program 6: r0 = getpid() sched_setattr(r0, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x0, 0x3}, 0x0) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x0, 0x0) poll(&(0x7f00000001c0), 0x0, 0x80000000) ioctl$TCSETS(r1, 0x40045431, &(0x7f00003b9fdc)) ioctl$TIOCPKT(r1, 0x5420, &(0x7f0000000080)=0x61) read(r1, &(0x7f0000000040)=""/11, 0xffed) r2 = syz_open_pts(r1, 0x0) ioctl$TCXONC(r2, 0x5437, 0x0) 11:10:35 executing program 5: r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/sys/net/ipv4/vs/secure_tcp\x00', 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/syz0\x00', 0x1ff) ioctl$KDDISABIO(r0, 0x4b37) write$binfmt_script(0xffffffffffffffff, &(0x7f00000003c0)=ANY=[@ANYBLOB], 0x0) fallocate(r1, 0x1, 0x8007, 0x10000101) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'vcan0\x00'}) ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000140)={@empty, 0x71}) ioctl$EVIOCGMASK(0xffffffffffffffff, 0x80104592, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)}) socket(0x10, 0x0, 0x0) ioctl$sock_ifreq(0xffffffffffffffff, 0x0, &(0x7f0000000000)={"73697430000080000000000000000002", @ifru_ivalue}) 11:10:35 executing program 4: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000001c0)='ip_vti0\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0x0, 0x7, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x8050) r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0) ioctl$RTC_UIE_ON(r1, 0x7003) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) 11:10:35 executing program 1: r0 = socket(0x0, 0x0, 0x5d9) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82) r2 = ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, r2) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)) r3 = openat$sequencer2(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/sequencer2\x00', 0x800, 0x0) ioctl$BLKROSET(r3, 0x125d, &(0x7f00000001c0)=0x7) 11:10:35 executing program 0: sched_setaffinity(0x0, 0x8, &(0x7f0000000080)=0x1) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) r0 = memfd_create(&(0x7f0000000100)='dev ', 0x0) write(r0, &(0x7f0000000040)="16", 0x1) sendfile(r0, r0, &(0x7f0000001000), 0xffff) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) sendfile(r0, r0, &(0x7f0000000000)=0x1000000, 0x100000) tkill(r1, 0x15) 11:10:35 executing program 7 (fault-call:6 fault-nth:28): socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) 11:10:35 executing program 2: r0 = shmget(0x2, 0x4000, 0x54000401, &(0x7f0000ff9000/0x4000)=nil) shmctl$SHM_INFO(r0, 0xe, &(0x7f0000000580)=""/133) r1 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0x0, 0x7, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x0) r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) getsockopt$inet_sctp_SCTP_GET_ASSOC_STATS(r1, 0x84, 0x70, &(0x7f0000000400)={0x0, @in={{0x2, 0x4e24, @multicast1=0xe0000001}}, [0x9, 0x1, 0xfffffffffffff731, 0x401, 0xb886, 0x39bf, 0x82, 0x3, 0x3, 0x2, 0x9, 0x2, 0x8, 0x5, 0x2]}, &(0x7f00000000c0)=0x100) getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(r1, 0x84, 0x7c, &(0x7f0000000380)={r3, 0x374, 0x998}, &(0x7f0000000540)=0x35b) fcntl$F_SET_FILE_RW_HINT(r1, 0x40e, &(0x7f0000000300)=0xd) 11:10:35 executing program 3: socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0xb0, 0x0, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x8050) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) getsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f00000005c0)={{{@in=@remote, @in=@broadcast, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@dev}, 0x0, @in6=@loopback}}, &(0x7f0000000380)=0xe8) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000001940)={'ip_vti0\x00', r2}) fcntl$F_SET_FILE_RW_HINT(r1, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) sendto$unix(r3, &(0x7f0000000440)="d4e6b43aae17bd04686c3569e77e1a09ef7b6af233953a8af789e382e0c0215f38296633c9439e33c7194d438148eeb096dbfbc81f3c7a5aa2869eaabea67db6776c622182e18d69b6e6dc3e8923493e8caa95b29551de8a4261b609ab2209456bbb7aeaa6a23f7b3cea055137ea5288b84891ae72be8d7b0e70daab4889718b0a0b687d33cac941d123d47c14b4628c6e55cd6cbac919d8bc5963352839999c0e9a9261d702d63e6eb6ec3d29c64bd297685bf808117ab54fbeb2541fba4b164d1923bcbf5a63286caf3555174f1e1946a4211b3dfdca241237535efe1786442f133e79e050085a08a61869ca", 0xed, 0x10, &(0x7f0000000540)=@abs={0x0, 0x0, 0x4e22}, 0x6e) [ 216.896697] FAULT_INJECTION: forcing a failure. [ 216.896697] name failslab, interval 1, probability 0, space 0, times 0 [ 216.908221] CPU: 1 PID: 13438 Comm: syz-executor7 Not tainted 4.18.0-rc4-next-20180711+ #4 [ 216.916631] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 216.925986] Call Trace: [ 216.928589] dump_stack+0x1c9/0x2b4 [ 216.932231] ? dump_stack_print_info.cold.2+0x52/0x52 [ 216.937436] should_fail.cold.4+0xa/0x11 [ 216.941511] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 216.946629] ? save_stack+0xa9/0xd0 [ 216.950258] ? save_stack+0x43/0xd0 [ 216.953888] ? kasan_kmalloc+0xc4/0xe0 [ 216.957781] ? kmem_cache_alloc_trace+0x152/0x780 [ 216.962627] ? blk_stat_alloc_callback+0x5b/0x280 [ 216.967475] ? blk_mq_init_allocated_queue+0x12d/0x16c0 [ 216.972845] ? loop_add+0x33d/0x9d0 [ 216.976478] ? loop_control_ioctl+0x199/0x540 [ 216.980981] ? do_vfs_ioctl+0x1de/0x1720 [ 216.985040] ? ksys_ioctl+0xa9/0xd0 [ 216.988671] ? __x64_sys_ioctl+0x73/0xb0 [ 216.992738] ? do_syscall_64+0x1b9/0x820 [ 216.996811] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 217.002188] ? retint_kernel+0x10/0x10 [ 217.006108] ? throtl_pd_free+0x21/0x30 [ 217.010094] ? lock_acquire+0x1e4/0x540 [ 217.014071] ? fs_reclaim_acquire+0x20/0x20 [ 217.018399] ? lock_downgrade+0x8f0/0x8f0 [ 217.022548] ? lock_downgrade+0x8f0/0x8f0 [ 217.026700] ? lock_release+0xa30/0xa30 [ 217.030676] ? check_same_owner+0x340/0x340 [ 217.034998] ? check_same_owner+0x340/0x340 [ 217.039329] ? rcu_note_context_switch+0x730/0x730 [ 217.044265] __should_failslab+0x124/0x180 [ 217.048507] should_failslab+0x9/0x14 [ 217.052311] __kmalloc+0x2c8/0x760 [ 217.055857] ? kmem_cache_alloc_trace+0x318/0x780 [ 217.060701] ? do_raw_spin_unlock+0xa7/0x2f0 [ 217.065115] ? blk_stat_alloc_callback+0x84/0x280 [ 217.069974] ? blk_mq_can_queue+0x50/0x50 [ 217.074123] ? plug_ctx_cmp+0x110/0x110 [ 217.078103] blk_stat_alloc_callback+0x84/0x280 [ 217.082778] blk_mq_init_allocated_queue+0x12d/0x16c0 [ 217.087970] ? blk_init_allocated_queue+0x600/0x600 [ 217.092984] ? lockdep_init_map+0x9/0x10 [ 217.097046] ? blk_mq_map_swqueue+0xaf0/0xaf0 [ 217.101541] ? __mutex_init+0x1f7/0x290 [ 217.105526] ? blk_mq_alloc_rq_map+0x142/0x220 [ 217.110111] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 217.115651] ? __blk_mq_alloc_rq_map+0x17d/0x2e0 [ 217.120417] ? blk_mq_update_nr_hw_queues+0x510/0x510 [ 217.125609] blk_mq_init_queue+0x63/0xb0 [ 217.129671] loop_add+0x33d/0x9d0 [ 217.133122] ? loop_lookup+0x105/0x230 [ 217.137009] ? loop_queue_rq+0x660/0x660 [ 217.141075] loop_control_ioctl+0x199/0x540 [ 217.145394] ? loop_add+0x9d0/0x9d0 [ 217.149023] ? do_vfs_ioctl+0x178/0x1720 [ 217.153078] ? loop_add+0x9d0/0x9d0 [ 217.156701] do_vfs_ioctl+0x1de/0x1720 [ 217.160589] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 217.165343] ? ioctl_preallocate+0x300/0x300 [ 217.169754] ? __fget_light+0x2f7/0x440 [ 217.173722] ? fget_raw+0x20/0x20 [ 217.177181] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 217.182720] ? fput+0x130/0x1a0 [ 217.185999] ? ksys_write+0x1ae/0x260 [ 217.189800] ? security_file_ioctl+0x94/0xc0 [ 217.194208] ksys_ioctl+0xa9/0xd0 [ 217.197663] __x64_sys_ioctl+0x73/0xb0 [ 217.201554] do_syscall_64+0x1b9/0x820 [ 217.205441] ? syscall_slow_exit_work+0x500/0x500 [ 217.210286] ? syscall_return_slowpath+0x5e0/0x5e0 [ 217.215213] ? syscall_return_slowpath+0x31d/0x5e0 [ 217.220151] ? prepare_exit_to_usermode+0x291/0x3b0 [ 217.225164] ? perf_trace_sys_enter+0xb10/0xb10 [ 217.229830] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 217.234681] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 217.239867] RIP: 0033:0x455e29 [ 217.243047] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 217.262454] RSP: 002b:00007fc746a7ec68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 217.270169] RAX: ffffffffffffffda RBX: 00007fc746a7f6d4 RCX: 0000000000455e29 [ 217.277435] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000014 [ 217.284700] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 11:10:35 executing program 5: r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/sys/net/ipv4/vs/secure_tcp\x00', 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/syz0\x00', 0x1ff) ioctl$KDDISABIO(r0, 0x4b37) write$binfmt_script(0xffffffffffffffff, &(0x7f00000003c0)=ANY=[@ANYBLOB], 0x0) fallocate(r1, 0x1, 0x100000000000000, 0x10000101) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'vcan0\x00'}) ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000140)={@empty, 0x71}) ioctl$EVIOCGMASK(0xffffffffffffffff, 0x80104592, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)}) socket(0x10, 0x0, 0x0) ioctl$sock_ifreq(0xffffffffffffffff, 0x0, &(0x7f0000000000)={"73697430000080000000000000000002", @ifru_ivalue}) 11:10:36 executing program 2: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0x0, 0x7, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x1) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) r2 = dup2(r1, r0) clock_gettime(0x0, &(0x7f00000000c0)={0x0, 0x0}) timerfd_settime(r2, 0x1, &(0x7f00000001c0)={{0x77359400}, {r3, r4+10000000}}, &(0x7f0000000300)) 11:10:36 executing program 7 (fault-call:6 fault-nth:29): socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) 11:10:36 executing program 4: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(r1, &(0x7f00000001c0)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0x0, 0x7, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x804c) r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) 11:10:36 executing program 1: r0 = socket(0x0, 0x0, 0x0) lgetxattr(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)=@random={'os2.', 'ip_vti0\x00'}, &(0x7f0000000400)=""/239, 0xef) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)) [ 217.291965] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015 [ 217.299231] R13: 00000000004be3c0 R14: 00000000004ccd10 R15: 000000000000001c 11:10:36 executing program 3: socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0xb0, 0x0, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x8050) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) getsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000bc0)={{{@in6=@dev, @in=@multicast2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6}, 0x0, @in6}}, &(0x7f0000000cc0)=0xe8) sendmsg$xdp(r0, &(0x7f0000001080)={&(0x7f0000000d00)={0x2c, 0x21056f07602324a4, r2, 0x38}, 0x10, &(0x7f0000001000)=[{&(0x7f0000000d40)="1cd612fd85b6", 0x6}, {&(0x7f0000000d80)="e4c824cb46d96b92d854fa5920d6c984b60d69fb9a80a8", 0x17}, {&(0x7f0000000dc0)="bca8eab3ca80d5e8faca8295a9c65dac6ac9eb1f2c53767dd036f6785a1e7eb4c5b9249e30ebc8242004d0ad2ffd17cc543c85e26546f29216a2335d6c434ca6c34ce8489a3b76652d99a700ce1f04fcb505b339d2a2dbcb015fb8389d32e9863b75746e7481234a9bb1892eb2ad7872bd8855b5df", 0x75}, {&(0x7f0000000e40)="6e12cb36d3989f4f8139e1d231471ff538e909f9ffa99e55741e123e6065f2caa3d4848871ec18b8b428538d1d7ce77305cfa2348061aa01d5af828c5e027e8dfcbffdf76103a1a3c69e23f10ee90c71ce1666ab656a96c493e2f461beca9acbb8c6bec6e2d44f61cda97c8918fe9e7b8ca5d46e9fea5a099bce6b64", 0x7c}, {&(0x7f0000000ec0)="f99dcdee7347d48b44260cc3fb9c989c", 0x10}, {&(0x7f0000000f00)="890845544e2339f105232f66782fd9f0b0944253f420b3d1c6299d93b561fe764bf9e4ea5904c9744c2080833d77ec442c59493d69493d98a92e2b3f5b20d3fcdfd03f697e3003aca79ecc5e62fee9f929ba4d53f3161c3927b8756016613e52112119aed652e4d60ba179723e9386b877a89ac90f73e2c0b7ec9ed85e0fe77f95d7dd8dad17c72ca60dc33ec6cafb59d5d1fb2361a8efdd9ac5e22069d067fb6c294874e2cf2b1713b74c8034d2a6531444d7", 0xb3}, {&(0x7f0000000fc0)="7a5764e45deca5a8ac7d1972367965", 0xf}], 0x7, 0x0, 0x0, 0x10}, 0x10) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) ioctl$KVM_SMI(r0, 0xaeb7) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) 11:10:36 executing program 2: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0x0, 0x7, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x0) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) syz_open_dev$sndpcmp(&(0x7f00000001c0)='/dev/snd/pcmC#D#p\x00', 0xfffffffffffffffe, 0x101800) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) r2 = fcntl$dupfd(r1, 0x406, r1) ioctl$KVM_CREATE_PIT2(r2, 0x4040ae77, &(0x7f00000000c0)={0x9}) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) 11:10:36 executing program 5: r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/sys/net/ipv4/vs/secure_tcp\x00', 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/syz0\x00', 0x1ff) ioctl$KDDISABIO(r0, 0x4b37) write$binfmt_script(0xffffffffffffffff, &(0x7f00000003c0)=ANY=[@ANYBLOB], 0x0) fallocate(r1, 0x1, 0x580000, 0x10000101) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'vcan0\x00'}) ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000140)={@empty, 0x71}) ioctl$EVIOCGMASK(0xffffffffffffffff, 0x80104592, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)}) socket(0x10, 0x0, 0x0) ioctl$sock_ifreq(0xffffffffffffffff, 0x0, &(0x7f0000000000)={"73697430000080000000000000000002", @ifru_ivalue}) [ 217.484361] FAULT_INJECTION: forcing a failure. [ 217.484361] name failslab, interval 1, probability 0, space 0, times 0 [ 217.496002] CPU: 0 PID: 13477 Comm: syz-executor7 Not tainted 4.18.0-rc4-next-20180711+ #4 [ 217.504405] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 217.513765] Call Trace: [ 217.516363] dump_stack+0x1c9/0x2b4 [ 217.519996] ? dump_stack_print_info.cold.2+0x52/0x52 [ 217.525194] ? vprintk_func+0x81/0x117 [ 217.529083] should_fail.cold.4+0xa/0x11 [ 217.533152] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 217.538259] ? lock_repin_lock+0x430/0x430 [ 217.542501] ? kasan_check_write+0x14/0x20 [ 217.546753] ? __schedule+0x884/0x1ed0 [ 217.550685] ? __sched_text_start+0x8/0x8 [ 217.554822] ? save_stack+0xa9/0xd0 [ 217.558430] ? save_stack+0x43/0xd0 [ 217.562044] ? lock_acquire+0x1e4/0x540 [ 217.565997] ? fs_reclaim_acquire+0x20/0x20 [ 217.570305] ? lock_downgrade+0x8f0/0x8f0 [ 217.574437] ? check_same_owner+0x340/0x340 [ 217.578742] __should_failslab+0x124/0x180 [ 217.582977] should_failslab+0x9/0x14 [ 217.586765] kmem_cache_alloc_node_trace+0x26f/0x770 [ 217.591854] __kmalloc_node+0x33/0x70 [ 217.595636] sbitmap_init_node+0x290/0x450 [ 217.599853] blk_mq_realloc_hw_ctxs+0x747/0x13c0 [ 217.604595] ? blk_mq_free_map_and_requests+0x160/0x160 [ 217.609953] ? memset_erms+0xb/0x10 [ 217.613565] ? kasan_unpoison_shadow+0x35/0x50 [ 217.618134] ? kasan_kmalloc+0xc4/0xe0 [ 217.622011] ? kmem_cache_alloc_node_trace+0x302/0x770 [ 217.627285] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 217.632298] ? kasan_unpoison_shadow+0x35/0x50 [ 217.636867] ? kasan_kmalloc+0xc4/0xe0 [ 217.640740] blk_mq_init_allocated_queue+0x2bf/0x16c0 [ 217.645915] ? lockdep_init_map+0x9/0x10 [ 217.649967] ? blk_mq_map_swqueue+0xaf0/0xaf0 [ 217.654449] ? __mutex_init+0x1f7/0x290 [ 217.658408] ? retint_kernel+0x10/0x10 [ 217.662278] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 217.667029] ? retint_kernel+0x10/0x10 [ 217.670900] blk_mq_init_queue+0x63/0xb0 [ 217.674939] loop_add+0x33d/0x9d0 [ 217.678384] ? loop_lookup+0x105/0x230 [ 217.682249] ? loop_queue_rq+0x660/0x660 [ 217.686292] loop_control_ioctl+0x199/0x540 [ 217.690597] ? ksys_dup3+0x690/0x690 [ 217.694287] ? loop_add+0x9d0/0x9d0 [ 217.697911] ? kasan_check_write+0x14/0x20 [ 217.702135] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 217.707044] ? fsnotify+0xbac/0x14e0 [ 217.710741] ? vfs_write+0x2f3/0x560 [ 217.714443] ? loop_add+0x9d0/0x9d0 [ 217.718108] do_vfs_ioctl+0x1de/0x1720 [ 217.721978] ? fsnotify_first_mark+0x350/0x350 [ 217.726543] ? __fsnotify_parent+0xcc/0x420 [ 217.730848] ? ioctl_preallocate+0x300/0x300 [ 217.735236] ? __fget_light+0x2f7/0x440 [ 217.739187] ? fget_raw+0x20/0x20 [ 217.742625] ? __sb_end_write+0xac/0xe0 [ 217.746584] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 217.752107] ? fput+0x130/0x1a0 [ 217.755374] ? ksys_write+0x1ae/0x260 [ 217.759161] ? security_file_ioctl+0x94/0xc0 [ 217.763551] ksys_ioctl+0xa9/0xd0 [ 217.766992] __x64_sys_ioctl+0x73/0xb0 [ 217.770876] do_syscall_64+0x1b9/0x820 [ 217.774746] ? syscall_slow_exit_work+0x500/0x500 [ 217.779576] ? syscall_return_slowpath+0x5e0/0x5e0 [ 217.784496] ? syscall_return_slowpath+0x31d/0x5e0 [ 217.789407] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 217.794925] ? prepare_exit_to_usermode+0x291/0x3b0 [ 217.799922] ? perf_trace_sys_enter+0xb10/0xb10 [ 217.804576] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 217.809411] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 217.814588] RIP: 0033:0x455e29 [ 217.817753] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 217.837140] RSP: 002b:00007fc746a7ec68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 217.844840] RAX: ffffffffffffffda RBX: 00007fc746a7f6d4 RCX: 0000000000455e29 [ 217.852100] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000014 [ 217.859357] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 217.866620] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015 [ 217.873866] R13: 00000000004be3c0 R14: 00000000004ccd10 R15: 000000000000001d 11:10:36 executing program 6: r0 = getpid() sched_setattr(r0, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x0, 0x3}, 0x0) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x0, 0x0) poll(&(0x7f00000001c0), 0x0, 0x80000000) ioctl$TCSETS(r1, 0x40045431, &(0x7f00003b9fdc)) ioctl$TIOCPKT(r1, 0x5420, &(0x7f0000000080)=0x61) read(r1, &(0x7f0000000040)=""/11, 0xffed) r2 = syz_open_pts(r1, 0x0) ioctl$TCXONC(r2, 0x541f, 0x0) 11:10:36 executing program 1: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/hwrng\x00', 0x4000, 0x0) r3 = getuid() ioctl$TUNSETOWNER(r2, 0x400454cc, r3) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)) socket$inet_dccp(0x2, 0x6, 0x0) 11:10:36 executing program 4: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000500)=ANY=[@ANYBLOB="240000001800000000000000ffdbdf25020000070003ff050011000008000200ac141418d2e310bbe311b59dec4a00f37a4c2f9a202fb78032d6eb687ab186e73041dc1ef12a978c7c297d4f31caf7e6658a7bec2692b21f6fa3cb37c50c20086826b151acba541253a44998b95ae1f1889219928989dee52621e7476496c1418d218559945bd1e5fd9c515a0bc35aa8703858043fa4dc6293e993104afb2546ca9e072c1033f12a67d08bd495a8271c2b9732cbeb7ae10361332b923e18532e7c6dfe7d7023bd4760d0d5474f54cd5bacd104a82153547d112e70988ededadc"], 0x24}, 0x1}, 0x8050) write$binfmt_misc(r0, &(0x7f0000000440)={'syz1', "b99ca234c115eb0de6958508d41ed8143a9d1871587644f3e9426917828bd33fde465536558e5b20451dcd9136e97b563e5c23c3fe7599abd2cffcae8f2dc632d38b0f07dee2b2b9616a55b53d83720a186fdd26e65acc9b154ce8697c33e1b165874bebec473ed7752ccacd972e5af81af72b07248cd78ec47ad3e96683"}, 0x82) r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$sock_SIOCOUTQ(r0, 0x5411, &(0x7f00000001c0)) ioctl$BLKROGET(r1, 0x125e, &(0x7f0000000300)) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) 11:10:36 executing program 3: socket(0x0, 0x0, 0x0) r0 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=ANY=[@ANYBLOB="2400000018000000000200ac14141800000000000000000000"], 0x24}, 0x1}, 0x8050) openat$vsock(0xffffffffffffff9c, &(0x7f0000000380)='/dev/vsock\x00', 0x40000, 0x0) r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) r3 = getpgid(0x0) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000440)={0x0}, &(0x7f0000000480)=0xc) kcmp(r3, r4, 0x6, r1, r0) 11:10:36 executing program 0: sched_setaffinity(0x0, 0x8, &(0x7f0000000080)=0x1) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) r0 = memfd_create(&(0x7f0000000100)='dev ', 0x0) write(r0, &(0x7f0000000040)="16", 0x1) sendfile(r0, r0, &(0x7f0000001000), 0xffff) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) sendfile(r0, r0, &(0x7f0000000000)=0x310, 0x100000) tkill(r1, 0x15) 11:10:36 executing program 2: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0x0, 0x7, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x0) r1 = syz_open_dev$admmidi(&(0x7f0000000300)='/dev/admmidi#\x00', 0x1, 0x2000) ioctl$BLKTRACESTART(r1, 0x1274, 0x0) getsockopt$inet_pktinfo(r1, 0x0, 0x8, &(0x7f0000000380)={0x0, @loopback, @rand_addr}, &(0x7f0000000480)=0xc) ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, &(0x7f00000004c0)={@dev={0xfe, 0x80, [], 0x1f}, 0x3e, r2}) r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0) lstat(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000400)) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) set_mempolicy(0x2, &(0x7f00000001c0)=0x5000, 0x3) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) 11:10:36 executing program 7 (fault-call:6 fault-nth:30): socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) 11:10:36 executing program 5: r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/sys/net/ipv4/vs/secure_tcp\x00', 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/syz0\x00', 0x1ff) ioctl$KDDISABIO(r0, 0x4b37) write$binfmt_script(0xffffffffffffffff, &(0x7f00000003c0)=ANY=[@ANYBLOB], 0x0) fallocate(r1, 0x1, 0xc800, 0x10000101) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'vcan0\x00'}) ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000140)={@empty, 0x71}) ioctl$EVIOCGMASK(0xffffffffffffffff, 0x80104592, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)}) socket(0x10, 0x0, 0x0) ioctl$sock_ifreq(0xffffffffffffffff, 0x0, &(0x7f0000000000)={"73697430000080000000000000000002", @ifru_ivalue}) 11:10:37 executing program 3: socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$admmidi(&(0x7f0000000480)='/dev/admmidi#\x00', 0x100000001, 0x10000) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f00000004c0)='user#(\x00', r0}, 0xfffffffffffffee6) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000500)=ANY=[@ANYBLOB="24feffff17000000000000ff0500110000080002f80d8aaf15f0f3f50bd8014161866e79fbf181aceb939f791bf30cac32fdcbe1811214b9b153882cbaf4b6f6f0eec5cd06dcbcf3c9226cb3a1848028eb2c3e6d4dfe71419485556ae1e84b0f6463d3b84bb274625f893a5b1ff17fc0393ea8226b89645ad12670f092d3d3d9788c8dd3272bc7db1e50e6696c24f6b8fb8e1952f1b14fa4ab429bee62ecfcff97e469ebfc4e36ba8a2769f98901bbaf97da357b4b59e546f6cc321ac69e0b9504ef7a14c2a6b4b5c4f91533175bbf7f98fa1b5bfbe8d9e8401fe928d82e93509d1afe2218a89d97b602af02d2856636473003b18a"], 0x6}, 0x1, 0x0, 0x0, 0x1}, 0x28050) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) [ 218.316201] FAULT_INJECTION: forcing a failure. [ 218.316201] name failslab, interval 1, probability 0, space 0, times 0 [ 218.327681] CPU: 1 PID: 13529 Comm: syz-executor7 Not tainted 4.18.0-rc4-next-20180711+ #4 [ 218.336086] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 218.345432] Call Trace: [ 218.348023] dump_stack+0x1c9/0x2b4 [ 218.351653] ? dump_stack_print_info.cold.2+0x52/0x52 [ 218.356850] ? should_fail+0xb33/0xd86 [ 218.360736] should_fail.cold.4+0xa/0x11 [ 218.364797] ? kasan_check_read+0x11/0x20 [ 218.368946] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 218.374056] ? is_bpf_text_address+0xd7/0x170 [ 218.378550] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 218.383309] ? retint_kernel+0x10/0x10 [ 218.387201] ? lock_acquire+0x25f/0x540 [ 218.391178] ? fs_reclaim_acquire+0x20/0x20 [ 218.395503] ? lock_downgrade+0x8f0/0x8f0 [ 218.399649] ? kasan_kmalloc+0xc4/0xe0 [ 218.403540] ? loop_control_ioctl+0x199/0x540 [ 218.408038] ? check_same_owner+0x340/0x340 [ 218.412365] ? lock_acquire+0x1e4/0x540 [ 218.416342] ? rcu_note_context_switch+0x730/0x730 [ 218.421278] ? lock_downgrade+0x8f0/0x8f0 [ 218.425424] __should_failslab+0x124/0x180 [ 218.429661] should_failslab+0x9/0x14 [ 218.433464] kmem_cache_alloc_node_trace+0x26f/0x770 [ 218.438570] ? kasan_unpoison_shadow+0x35/0x50 [ 218.443156] blk_alloc_flush_queue+0xcd/0x3e0 [ 218.447650] ? blk_insert_flush+0xb00/0xb00 [ 218.451971] ? kasan_unpoison_shadow+0x35/0x50 [ 218.456559] ? kasan_kmalloc+0xc4/0xe0 [ 218.460447] ? __kmalloc_node+0x47/0x70 [ 218.464417] ? __lockdep_init_map+0x105/0x590 [ 218.468910] ? blk_mq_sched_init_hctx+0x117/0x1a0 [ 218.473756] blk_mq_realloc_hw_ctxs+0x9a1/0x13c0 [ 218.478520] ? blk_mq_free_map_and_requests+0x160/0x160 [ 218.483886] ? check_same_owner+0x340/0x340 [ 218.488209] ? kasan_unpoison_shadow+0x35/0x50 [ 218.492793] ? kasan_kmalloc+0xc4/0xe0 [ 218.496686] ? kmem_cache_alloc_node_trace+0x302/0x770 [ 218.501960] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 218.506973] ? kasan_unpoison_shadow+0x35/0x50 [ 218.511551] ? kasan_kmalloc+0xc4/0xe0 [ 218.515439] blk_mq_init_allocated_queue+0x2bf/0x16c0 [ 218.520624] ? lockdep_init_map+0x9/0x10 [ 218.524682] ? blk_mq_map_swqueue+0xaf0/0xaf0 [ 218.529177] ? __mutex_init+0x1f7/0x290 [ 218.533156] ? blk_mq_alloc_rq_map+0x142/0x220 [ 218.537734] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 218.543270] ? __blk_mq_alloc_rq_map+0x17d/0x2e0 [ 218.548032] ? blk_mq_update_nr_hw_queues+0x510/0x510 [ 218.553222] blk_mq_init_queue+0x63/0xb0 [ 218.557281] loop_add+0x33d/0x9d0 [ 218.560729] ? loop_lookup+0x105/0x230 [ 218.564610] ? loop_queue_rq+0x660/0x660 [ 218.568672] loop_control_ioctl+0x199/0x540 [ 218.572987] ? ksys_dup3+0x690/0x690 [ 218.576701] ? loop_add+0x9d0/0x9d0 [ 218.580325] ? __mutex_unlock_slowpath+0x1a2/0x8c0 [ 218.585249] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 218.590172] ? fsnotify+0xbac/0x14e0 [ 218.593879] ? vfs_write+0x2f3/0x560 [ 218.597590] ? loop_add+0x9d0/0x9d0 [ 218.601210] do_vfs_ioctl+0x1de/0x1720 [ 218.605093] ? ioctl_preallocate+0x300/0x300 [ 218.609495] ? __fget_light+0x2f7/0x440 [ 218.613463] ? fget_raw+0x20/0x20 [ 218.616910] ? fput+0x11/0x1a0 [ 218.620103] ? __sanitizer_cov_trace_pc+0x32/0x50 [ 218.624940] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 218.630473] ? fput+0x130/0x1a0 [ 218.633750] ? ksys_write+0x1ae/0x260 [ 218.637554] ? security_file_ioctl+0x94/0xc0 [ 218.641957] ksys_ioctl+0xa9/0xd0 [ 218.645407] __x64_sys_ioctl+0x73/0xb0 [ 218.649292] do_syscall_64+0x1b9/0x820 [ 218.653177] ? syscall_slow_exit_work+0x500/0x500 [ 218.658024] ? syscall_return_slowpath+0x5e0/0x5e0 [ 218.662947] ? syscall_return_slowpath+0x31d/0x5e0 [ 218.667879] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 218.673409] ? prepare_exit_to_usermode+0x291/0x3b0 [ 218.678422] ? perf_trace_sys_enter+0xb10/0xb10 [ 218.683090] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 218.687933] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 218.693114] RIP: 0033:0x455e29 [ 218.696293] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 218.715562] RSP: 002b:00007fc746a7ec68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 218.723266] RAX: ffffffffffffffda RBX: 00007fc746a7f6d4 RCX: 0000000000455e29 [ 218.730527] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000014 [ 218.737787] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 218.745051] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015 [ 218.752318] R13: 00000000004be3c0 R14: 00000000004ccd10 R15: 000000000000001e 11:10:37 executing program 4: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f00000001c0)=ANY=[@ANYBLOB="24180000180000000046782a2de6157290a85040ce19a59db5000000ffdbdf25020000070003ff050011000008000200ac141418"], 0x24}, 0x1}, 0x8050) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) 11:10:37 executing program 2: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0x0, 0x7, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x0) getsockopt$inet_sctp_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000000c0)={0x0, 0x200, 0x30}, &(0x7f00000001c0)=0xc) getsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x1f, &(0x7f0000000400)={r1, @in={{0x2, 0x4e23, @remote={0xac, 0x14, 0x14, 0xbb}}}, 0x0, 0x3}, &(0x7f0000000300)=0x90) r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) 11:10:37 executing program 1: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)) r2 = openat$null(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/null\x00', 0x2, 0x0) ioctl$EVIOCGBITSW(r2, 0x80404525, &(0x7f00000001c0)=""/131) 11:10:37 executing program 7 (fault-call:6 fault-nth:31): socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) 11:10:37 executing program 3: socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000440)=ANY=[@ANYBLOB="240000001800000000000000ffdbdf250295d36900b000000326050011000008000200ac1414189136b434de4133cca112a2e24ad5a08af24e0000000000000ac2fa6b1bd4c16c120dbad4a47d325ebd54167ab7d3f6ebc553ccfb6b4e7b6e6d99888fdd79bf7daab5c14511b16bffbec309cb1b64c69ee8a1489331ac88ba96e5785683c859a1578b1ac734"], 0x24}, 0x1}, 0x8050) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) 11:10:37 executing program 2: r0 = socket(0x0, 0x0, 0x0) r1 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat$rfkill(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/rfkill\x00', 0x2000, 0x0) ioctl$EVIOCGBITSW(r2, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f00000000c0)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0x0, 0x7, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x4004) r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0) ioctl(r1, 0x1, &(0x7f0000000100)="295ee1311f") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) setsockopt$l2tp_PPPOL2TP_SO_SENDSEQ(r0, 0x111, 0x3, 0x1, 0x4) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) [ 218.917877] FAULT_INJECTION: forcing a failure. [ 218.917877] name failslab, interval 1, probability 0, space 0, times 0 [ 218.929249] CPU: 1 PID: 13560 Comm: syz-executor7 Not tainted 4.18.0-rc4-next-20180711+ #4 [ 218.937652] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 218.947005] Call Trace: [ 218.949593] dump_stack+0x1c9/0x2b4 [ 218.953223] ? dump_stack_print_info.cold.2+0x52/0x52 [ 218.958417] ? is_bpf_text_address+0xd7/0x170 [ 218.962921] should_fail.cold.4+0xa/0x11 [ 218.966992] ? __save_stack_trace+0x8d/0xf0 [ 218.971315] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 218.976423] ? save_stack+0xa9/0xd0 [ 218.980050] ? kasan_kmalloc+0xc4/0xe0 [ 218.983937] ? kmem_cache_alloc_node_trace+0x150/0x770 [ 218.989216] ? blk_alloc_flush_queue+0xcd/0x3e0 [ 218.993885] ? blk_mq_realloc_hw_ctxs+0x9a1/0x13c0 [ 218.998815] ? blk_mq_init_allocated_queue+0x2bf/0x16c0 [ 219.004184] ? blk_mq_init_queue+0x63/0xb0 [ 219.008420] ? loop_add+0x33d/0x9d0 [ 219.012046] ? loop_control_ioctl+0x199/0x540 [ 219.016547] ? do_vfs_ioctl+0x1de/0x1720 [ 219.020603] ? ksys_ioctl+0xa9/0xd0 [ 219.024233] ? __x64_sys_ioctl+0x73/0xb0 [ 219.028292] ? do_syscall_64+0x1b9/0x820 [ 219.032354] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 219.037720] ? __save_stack_trace+0x8d/0xf0 [ 219.042045] ? lock_acquire+0x1e4/0x540 [ 219.046018] ? fs_reclaim_acquire+0x20/0x20 [ 219.050339] ? lock_downgrade+0x8f0/0x8f0 [ 219.054497] ? check_same_owner+0x340/0x340 [ 219.058817] ? rcu_note_context_switch+0x730/0x730 [ 219.063746] __should_failslab+0x124/0x180 [ 219.067991] should_failslab+0x9/0x14 [ 219.071790] kmem_cache_alloc_node_trace+0x26f/0x770 [ 219.076892] ? kmem_cache_alloc_node_trace+0x302/0x770 [ 219.082166] ? lock_release+0xa30/0xa30 [ 219.086146] __kmalloc_node+0x33/0x70 [ 219.089945] blk_alloc_flush_queue+0x180/0x3e0 [ 219.094528] ? blk_insert_flush+0xb00/0xb00 [ 219.098849] ? kasan_unpoison_shadow+0x35/0x50 [ 219.103431] ? kasan_kmalloc+0xc4/0xe0 [ 219.107322] ? __kmalloc_node+0x47/0x70 [ 219.111296] ? __lockdep_init_map+0x105/0x590 [ 219.115794] ? blk_mq_sched_init_hctx+0x117/0x1a0 [ 219.120636] blk_mq_realloc_hw_ctxs+0x9a1/0x13c0 [ 219.125396] ? blk_mq_free_map_and_requests+0x160/0x160 [ 219.130754] ? check_same_owner+0x340/0x340 [ 219.135076] ? kasan_unpoison_shadow+0x35/0x50 [ 219.139659] ? kasan_kmalloc+0xc4/0xe0 [ 219.143551] ? kmem_cache_alloc_node_trace+0x302/0x770 [ 219.148826] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 219.153841] ? kasan_unpoison_shadow+0x35/0x50 [ 219.158419] ? kasan_kmalloc+0xc4/0xe0 [ 219.162307] blk_mq_init_allocated_queue+0x2bf/0x16c0 [ 219.167498] ? lockdep_init_map+0x9/0x10 [ 219.171558] ? blk_mq_map_swqueue+0xaf0/0xaf0 [ 219.176052] ? __mutex_init+0x1f7/0x290 [ 219.180034] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 219.185564] ? __blk_mq_alloc_rq_map+0x17d/0x2e0 [ 219.190325] ? blk_mq_update_nr_hw_queues+0x510/0x510 [ 219.195517] blk_mq_init_queue+0x63/0xb0 [ 219.199629] loop_add+0x33d/0x9d0 [ 219.203074] ? loop_lookup+0x105/0x230 [ 219.206960] ? loop_queue_rq+0x660/0x660 [ 219.211019] loop_control_ioctl+0x199/0x540 [ 219.215340] ? loop_add+0x9d0/0x9d0 [ 219.218963] ? loop_add+0x9d0/0x9d0 [ 219.222587] ? loop_add+0x9d0/0x9d0 [ 219.226208] do_vfs_ioctl+0x1de/0x1720 [ 219.230096] ? fsnotify_first_mark+0x350/0x350 [ 219.234670] ? __fsnotify_parent+0xcc/0x420 [ 219.238990] ? ioctl_preallocate+0x300/0x300 [ 219.243392] ? __fget_light+0x2f7/0x440 [ 219.247367] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 219.252124] ? retint_kernel+0x10/0x10 [ 219.256014] ksys_ioctl+0xa9/0xd0 [ 219.259464] __x64_sys_ioctl+0x73/0xb0 [ 219.263346] do_syscall_64+0x1b9/0x820 [ 219.267230] ? syscall_slow_exit_work+0x500/0x500 [ 219.272069] ? syscall_return_slowpath+0x5e0/0x5e0 [ 219.276998] ? syscall_return_slowpath+0x31d/0x5e0 [ 219.281924] ? prepare_exit_to_usermode+0x291/0x3b0 [ 219.286943] ? perf_trace_sys_enter+0xb10/0xb10 [ 219.291615] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 219.296463] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 219.301642] RIP: 0033:0x455e29 [ 219.304820] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 219.324101] RSP: 002b:00007fc746a7ec68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 219.332349] RAX: ffffffffffffffda RBX: 00007fc746a7f6d4 RCX: 0000000000455e29 [ 219.339616] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000014 [ 219.346882] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 219.354146] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015 [ 219.361406] R13: 00000000004be3c0 R14: 00000000004ccd10 R15: 000000000000001f 11:10:38 executing program 1: r0 = socket(0x0, 0x0, 0x0) r1 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = fcntl$dupfd(r1, 0x406, r1) ioctl$EVIOCGBITSW(r2, 0x80404525, &(0x7f0000000100)=""/189) r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)) 11:10:38 executing program 6: r0 = getpid() sched_setattr(r0, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x0, 0x3}, 0x0) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x0, 0x0) poll(&(0x7f00000001c0), 0x0, 0x80000000) ioctl$TCSETS(r1, 0x40045431, &(0x7f00003b9fdc)) ioctl$TIOCPKT(r1, 0x5420, &(0x7f0000000080)=0x61) read(r1, &(0x7f0000000040)=""/11, 0xffed) r2 = syz_open_pts(r1, 0x0) ioctl$TCXONC(r2, 0x541d, 0x0) 11:10:38 executing program 4: r0 = socket(0x0, 0x0, 0x0) r1 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f00000004c0)='ip_vti0\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) ioctl$TUNGETFILTER(r2, 0x801054db, &(0x7f0000000440)=""/101) sendmsg$nl_route(r2, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=ANY=[@ANYBLOB="240000001800000000000000ffdbdf25ff050011000009000200ac141418"], 0x24}, 0x1}, 0x84) r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$TUNSETOFFLOAD(r1, 0x400454d0, 0x4) write$P9_RREADLINK(r2, &(0x7f0000000300)={0x10, 0x17, 0x2, {0x7, './file0'}}, 0x10) ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$sock_kcm_SIOCKCMATTACH(r0, 0x89e0, &(0x7f00000001c0)={r2, r2}) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(r3, 0x40e, &(0x7f00000003c0)=0x200000000003) 11:10:38 executing program 5: r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/sys/net/ipv4/vs/secure_tcp\x00', 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/syz0\x00', 0x1ff) ioctl$KDDISABIO(r0, 0x4b37) write$binfmt_script(0xffffffffffffffff, &(0x7f00000003c0)=ANY=[@ANYBLOB], 0x0) fallocate(r1, 0x1, 0x400000000, 0x10000101) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'vcan0\x00'}) ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000140)={@empty, 0x71}) ioctl$EVIOCGMASK(0xffffffffffffffff, 0x80104592, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)}) socket(0x10, 0x0, 0x0) ioctl$sock_ifreq(0xffffffffffffffff, 0x0, &(0x7f0000000000)={"73697430000080000000000000000002", @ifru_ivalue}) 11:10:38 executing program 7 (fault-call:6 fault-nth:32): socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) 11:10:38 executing program 0: sched_setaffinity(0x0, 0x8, &(0x7f0000000080)=0x1) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) r0 = memfd_create(&(0x7f0000000100)='dev ', 0x0) write(r0, &(0x7f0000000040)="16", 0x1) sendfile(r0, r0, &(0x7f0000001000), 0xffff) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) sendfile(r0, r0, &(0x7f0000000000)=0x10000000000000, 0x100000) tkill(r1, 0x15) 11:10:38 executing program 2: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0x0, 0x7, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x0) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(r0, 0x40e, &(0x7f00000000c0)=0x5) 11:10:38 executing program 3: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0xb0, 0x0, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x8050) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(r0, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xfffffffffffffe87, 0xfffffffffffffffe) 11:10:38 executing program 1: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = dup(r0) write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffff9c, &(0x7f00000001c0)={0x0, 0x18, 0xfa00, {0x3, &(0x7f00000000c0)={0xffffffffffffffff}, 0x111, 0x1}}, 0x20) write$RDMA_USER_CM_CMD_CONNECT(r1, &(0x7f0000000400)={0x6, 0x118, 0xfa00, {{0x5, 0x1ff, "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", 0xfa, 0x0, 0x0, 0x1, 0x452f, 0xf6, 0xffffffffffffff80, 0x1}, r2}}, 0x120) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)) [ 219.733917] FAULT_INJECTION: forcing a failure. [ 219.733917] name failslab, interval 1, probability 0, space 0, times 0 [ 219.745545] CPU: 1 PID: 13610 Comm: syz-executor7 Not tainted 4.18.0-rc4-next-20180711+ #4 [ 219.753955] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 219.763304] Call Trace: [ 219.765894] dump_stack+0x1c9/0x2b4 [ 219.769533] ? dump_stack_print_info.cold.2+0x52/0x52 [ 219.774732] ? lock_acquire+0x1e4/0x540 [ 219.778709] should_fail.cold.4+0xa/0x11 [ 219.782777] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 219.787891] ? trace_hardirqs_on+0x10/0x10 [ 219.792138] ? rcu_note_context_switch+0x730/0x730 [ 219.797079] ? kasan_check_write+0x14/0x20 [ 219.801313] ? __mutex_lock+0x6c4/0x1680 [ 219.805380] ? elevator_init_mq+0x7f/0x160 [ 219.809623] ? trace_hardirqs_on+0xd/0x10 [ 219.813775] ? mutex_trylock+0x2b0/0x2b0 [ 219.817838] ? lock_acquire+0x1e4/0x540 [ 219.821813] ? fs_reclaim_acquire+0x20/0x20 [ 219.826143] ? lock_downgrade+0x8f0/0x8f0 [ 219.830294] ? kasan_check_write+0x14/0x20 [ 219.834534] ? trace_hardirqs_on+0xd/0x10 [ 219.838687] ? check_same_owner+0x340/0x340 [ 219.843013] ? lock_downgrade+0x8f0/0x8f0 [ 219.847167] ? rcu_note_context_switch+0x730/0x730 [ 219.852099] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 219.856948] __should_failslab+0x124/0x180 [ 219.861187] should_failslab+0x9/0x14 [ 219.864996] kmem_cache_alloc_node_trace+0x26f/0x770 [ 219.870108] blk_mq_init_tags+0x79/0x2b0 [ 219.874174] blk_mq_alloc_rq_map+0x9f/0x220 [ 219.878581] blk_mq_sched_alloc_tags.isra.13+0x7b/0x160 [ 219.883932] blk_mq_init_sched+0x1e1/0x5a0 [ 219.888326] elevator_init_mq+0xd7/0x160 [ 219.892373] blk_mq_init_allocated_queue+0x1024/0x16c0 [ 219.897643] ? blk_mq_map_swqueue+0xaf0/0xaf0 [ 219.902149] ? __mutex_init+0x1f7/0x290 [ 219.906129] ? __kmalloc_node+0x47/0x70 [ 219.910091] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 219.915623] ? __blk_mq_alloc_rq_map+0x17d/0x2e0 [ 219.920365] ? blk_mq_update_nr_hw_queues+0x510/0x510 [ 219.925542] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 219.930281] blk_mq_init_queue+0x63/0xb0 [ 219.934325] loop_add+0x33d/0x9d0 [ 219.937760] ? loop_queue_rq+0x660/0x660 [ 219.941801] ? loop_control_ioctl+0x18a/0x540 [ 219.946280] loop_control_ioctl+0x199/0x540 [ 219.950581] ? loop_add+0x9d0/0x9d0 [ 219.954185] ? loop_add+0x9d0/0x9d0 [ 219.957793] ? loop_add+0x9d0/0x9d0 [ 219.961407] do_vfs_ioctl+0x1de/0x1720 [ 219.965276] ? ioctl_preallocate+0x300/0x300 [ 219.969664] ? __fget_light+0x2f7/0x440 [ 219.973620] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 219.978361] ? retint_kernel+0x10/0x10 [ 219.982236] ? security_file_ioctl+0x94/0xc0 [ 219.986627] ksys_ioctl+0xa9/0xd0 [ 219.990073] __x64_sys_ioctl+0x73/0xb0 [ 219.993941] do_syscall_64+0x1b9/0x820 [ 219.997812] ? syscall_slow_exit_work+0x500/0x500 [ 220.002636] ? syscall_return_slowpath+0x5e0/0x5e0 [ 220.007548] ? syscall_return_slowpath+0x31d/0x5e0 [ 220.012459] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 220.017975] ? prepare_exit_to_usermode+0x291/0x3b0 [ 220.022973] ? perf_trace_sys_enter+0xb10/0xb10 [ 220.027622] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 220.032448] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 220.037618] RIP: 0033:0x455e29 [ 220.040786] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 220.061642] RSP: 002b:00007fc746a7ec68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 220.069331] RAX: ffffffffffffffda RBX: 00007fc746a7f6d4 RCX: 0000000000455e29 [ 220.076582] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000014 11:10:38 executing program 3: socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) flock(r0, 0x1) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000440)=ANY=[@ANYBLOB="240000001800000000000000ffdbdf250200b000ef02ff050007000808000200ac141418eb0001fde116c12d15cf2c1b38a799afd93e6ad25fec964848070c7ba20d9a2210070e711a1250f252b975dfd2053715bff8f7c4565e97731a8fed55a8a67500a308f1a2ba0597eb2aa1b9b47cd621827c1d607bd82ab2d0b76d4d92d8658e48f1469dad2b17b089b20e77055b973c7a3ade95ee5f58b7be2586d65ec5489e8efa56ee81066ca783ada48f878a19e49e95aa2648e913d088ea"], 0x24}, 0x1}, 0x8050) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) 11:10:38 executing program 2: setrlimit(0x5, &(0x7f0000000380)={0x5b5f, 0x8}) r0 = socket(0x0, 0x1, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0x0, 0x7, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x0) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f") getsockopt$inet_sctp_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000000c0)={0x0, 0x101, 0x30}, &(0x7f00000001c0)=0xc) setsockopt$inet_sctp_SCTP_STREAM_SCHEDULER_VALUE(r0, 0x84, 0x7c, &(0x7f0000000300)={r2, 0x7, 0x1}, 0x8) ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) [ 220.083830] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 220.091078] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015 [ 220.098329] R13: 00000000004be3c0 R14: 00000000004ccd10 R15: 0000000000000020 11:10:38 executing program 7 (fault-call:6 fault-nth:33): socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) 11:10:38 executing program 5: r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/sys/net/ipv4/vs/secure_tcp\x00', 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/syz0\x00', 0x1ff) ioctl$KDDISABIO(r0, 0x4b37) write$binfmt_script(0xffffffffffffffff, &(0x7f00000003c0)=ANY=[@ANYBLOB], 0x0) fallocate(r1, 0x1, 0x200000000000000, 0x10000101) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'vcan0\x00'}) ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000140)={@empty, 0x71}) ioctl$EVIOCGMASK(0xffffffffffffffff, 0x80104592, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)}) socket(0x10, 0x0, 0x0) ioctl$sock_ifreq(0xffffffffffffffff, 0x0, &(0x7f0000000000)={"73697430000080000000000000000002", @ifru_ivalue}) 11:10:38 executing program 4: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0x0, 0x7, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x8050) r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$TIOCPKT(r1, 0x5420, &(0x7f00000001c0)=0x800) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) 11:10:38 executing program 1: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$RTC_RD_TIME(r1, 0x80247009, &(0x7f00000000c0)) r2 = ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, r2) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)) [ 220.263577] FAULT_INJECTION: forcing a failure. [ 220.263577] name failslab, interval 1, probability 0, space 0, times 0 [ 220.274878] CPU: 0 PID: 13648 Comm: syz-executor7 Not tainted 4.18.0-rc4-next-20180711+ #4 [ 220.283286] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 220.292628] Call Trace: [ 220.295216] dump_stack+0x1c9/0x2b4 [ 220.298851] ? dump_stack_print_info.cold.2+0x52/0x52 [ 220.304052] should_fail.cold.4+0xa/0x11 [ 220.308116] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 220.313221] ? kasan_check_read+0x11/0x20 [ 220.317382] ? rcu_is_watching+0x8c/0x150 [ 220.321530] ? rcu_cleanup_dead_rnp+0x200/0x200 [ 220.326200] ? is_bpf_text_address+0xd7/0x170 [ 220.330699] ? kernel_text_address+0x79/0xf0 [ 220.335135] ? __kernel_text_address+0xd/0x40 [ 220.339626] ? unwind_get_return_address+0x61/0xa0 [ 220.344561] ? lock_acquire+0x1e4/0x540 [ 220.348545] ? fs_reclaim_acquire+0x20/0x20 [ 220.352871] ? lock_downgrade+0x8f0/0x8f0 [ 220.357007] ? check_same_owner+0x340/0x340 [ 220.361319] ? kasan_kmalloc+0xc4/0xe0 [ 220.365189] ? kmem_cache_alloc_node_trace+0x150/0x770 [ 220.370453] ? blk_mq_init_tags+0x79/0x2b0 [ 220.374684] ? rcu_note_context_switch+0x730/0x730 [ 220.379593] ? elevator_init_mq+0xd7/0x160 [ 220.383813] ? blk_mq_init_allocated_queue+0x1024/0x16c0 [ 220.389245] __should_failslab+0x124/0x180 [ 220.393464] should_failslab+0x9/0x14 [ 220.397247] kmem_cache_alloc_node_trace+0x26f/0x770 [ 220.402329] ? mutex_trylock+0x2b0/0x2b0 [ 220.406380] __kmalloc_node+0x33/0x70 [ 220.410162] sbitmap_init_node+0x290/0x450 [ 220.414383] sbitmap_queue_init_node+0xb2/0x850 [ 220.419034] ? sbitmap_init_node+0x450/0x450 [ 220.423425] ? kmem_cache_alloc_node_trace+0x302/0x770 [ 220.428684] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 220.434202] ? find_next_bit+0x104/0x130 [ 220.438248] blk_mq_init_tags+0x11b/0x2b0 [ 220.442380] blk_mq_alloc_rq_map+0x9f/0x220 [ 220.446685] blk_mq_sched_alloc_tags.isra.13+0x7b/0x160 [ 220.452029] blk_mq_init_sched+0x1e1/0x5a0 [ 220.456249] elevator_init_mq+0xd7/0x160 [ 220.460291] blk_mq_init_allocated_queue+0x1024/0x16c0 [ 220.465549] ? blk_mq_map_swqueue+0xaf0/0xaf0 [ 220.470029] ? __mutex_init+0x1f7/0x290 [ 220.473987] ? retint_kernel+0x10/0x10 [ 220.477867] ? blk_mq_update_nr_hw_queues+0x510/0x510 [ 220.483040] blk_mq_init_queue+0x63/0xb0 [ 220.487080] loop_add+0x33d/0x9d0 [ 220.490514] ? loop_lookup+0x105/0x230 [ 220.494380] ? loop_queue_rq+0x660/0x660 [ 220.498780] loop_control_ioctl+0x199/0x540 [ 220.503081] ? loop_add+0x9d0/0x9d0 [ 220.506694] ? retint_kernel+0x10/0x10 [ 220.510564] ? do_vfs_ioctl+0x123/0x1720 [ 220.514606] ? loop_add+0x9d0/0x9d0 [ 220.518216] do_vfs_ioctl+0x1de/0x1720 [ 220.524779] ? ioctl_preallocate+0x300/0x300 [ 220.529180] ? __fget_light+0x2f7/0x440 [ 220.533144] ? __schedule+0x1ed0/0x1ed0 [ 220.537097] ? fget_raw+0x20/0x20 [ 220.540530] ? __sb_end_write+0xac/0xe0 [ 220.544487] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 220.549225] ? security_file_ioctl+0x94/0xc0 [ 220.553615] ksys_ioctl+0xa9/0xd0 [ 220.557049] __x64_sys_ioctl+0x73/0xb0 [ 220.560916] do_syscall_64+0x1b9/0x820 [ 220.564782] ? syscall_slow_exit_work+0x500/0x500 [ 220.569605] ? syscall_return_slowpath+0x5e0/0x5e0 [ 220.574514] ? syscall_return_slowpath+0x31d/0x5e0 [ 220.579427] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 220.584947] ? prepare_exit_to_usermode+0x291/0x3b0 [ 220.589944] ? perf_trace_sys_enter+0xb10/0xb10 [ 220.594592] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 220.599417] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 220.604597] RIP: 0033:0x455e29 [ 220.607762] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 220.626932] RSP: 002b:00007fc746a7ec68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 220.634622] RAX: ffffffffffffffda RBX: 00007fc746a7f6d4 RCX: 0000000000455e29 [ 220.641873] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000014 [ 220.649123] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 220.656374] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015 11:10:38 executing program 5: r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/sys/net/ipv4/vs/secure_tcp\x00', 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/syz0\x00', 0x1ff) ioctl$KDDISABIO(r0, 0x4b37) write$binfmt_script(0xffffffffffffffff, &(0x7f00000003c0)=ANY=[@ANYBLOB], 0x0) fallocate(r1, 0x1, 0xffa7, 0x10000101) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'vcan0\x00'}) ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000140)={@empty, 0x71}) ioctl$EVIOCGMASK(0xffffffffffffffff, 0x80104592, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)}) socket(0x10, 0x0, 0x0) ioctl$sock_ifreq(0xffffffffffffffff, 0x0, &(0x7f0000000000)={"73697430000080000000000000000002", @ifru_ivalue}) 11:10:39 executing program 2: r0 = socket(0x0, 0x0, 0x0) r1 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f00000005c0)={0x10}, 0xc, &(0x7f0000000580)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0x0, 0x7, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) syz_open_pts(r0, 0x1a9500) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r4, 0xc008ae88, &(0x7f00000001c0)={0x2, 0x0, [0x40000029]}) r5 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r5, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00', 0x0}) fcntl$F_GET_FILE_RW_HINT(r2, 0x40d, &(0x7f00000000c0)) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) r7 = getuid() setsockopt$inet6_IPV6_IPSEC_POLICY(r0, 0x29, 0x22, &(0x7f0000000400)={{{@in=@loopback=0x7f000001, @in6=@ipv4={[], [0xff, 0xff], @local={0xac, 0x14, 0x14, 0xaa}}, 0x4e24, 0x9, 0x4e21, 0xead0d8, 0xa, 0xa0, 0xa0, 0x3c, r6, r7}, {0xffffffff, 0x10000, 0x276, 0x1, 0xfffffffffffffff7, 0x80, 0x2, 0x6}, {0x100000001, 0x6, 0x4, 0xffffffff}, 0x3, 0x6e6bbd, 0x3, 0x0, 0x0, 0x3}, {{@in6=@loopback={0x0, 0x1}, 0x4d2, 0x3b}, 0xa, @in6=@mcast1={0xff, 0x1, [], 0x1}, 0x3503, 0x3, 0x3, 0xffff, 0x1, 0x8000, 0xfffffffffffffff9}}, 0xe8) ioctl$sock_SIOCGPGRP(r0, 0x8904, &(0x7f0000000380)=0x0) perf_event_open(&(0x7f0000000500)={0x3, 0x70, 0x6, 0x9, 0x0, 0x1, 0x0, 0x7fffffff, 0x100, 0x8, 0x100, 0x8, 0x401, 0x2, 0x22b, 0x8, 0x1, 0x4, 0x3f, 0x1, 0x4, 0x7fffffff, 0x10001, 0xfa5, 0x2, 0x2, 0x6, 0xffff, 0x9, 0x75, 0x80000001, 0xf3af, 0x1, 0x7, 0x1, 0x9, 0x4, 0x7fffffff, 0x0, 0x9925, 0x4, @perf_bp={&(0x7f0000000300), 0x8}, 0x4500, 0x9, 0x7, 0x5, 0x7ff, 0x10000, 0x3}, r8, 0x2, r1, 0x2) [ 220.663622] R13: 00000000004be3c0 R14: 00000000004ccd10 R15: 0000000000000021 [ 220.873939] kvm [13674]: vcpu0, guest rIP: 0xfff0 Hyper-V unhandled rdmsr: 0x40000029 11:10:39 executing program 6: r0 = getpid() sched_setattr(r0, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x0, 0x3}, 0x0) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x0, 0x0) poll(&(0x7f00000001c0), 0x0, 0x80000000) ioctl$TCSETS(r1, 0x40045431, &(0x7f00003b9fdc)) ioctl$TIOCPKT(r1, 0x5420, &(0x7f0000000080)=0x61) read(r1, &(0x7f0000000040)=""/11, 0xffed) r2 = syz_open_pts(r1, 0x0) ioctl$TCXONC(r2, 0x541b, 0x0) 11:10:39 executing program 3: socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=ANY=[@ANYBLOB="2400e0ffff00000000000000ffdbdf250200b0000003ff050900000000000000ac141418"], 0x24}, 0x1}, 0x8050) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) r2 = ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, r2) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000480)={0x0, 0x18, 0xfa00, {0x1, &(0x7f0000000440)={0xffffffffffffffff}, 0x2, 0x1009}}, 0x20) write$RDMA_USER_CM_CMD_JOIN_IP_MCAST(r0, &(0x7f00000004c0)={0x10, 0x30, 0xfa00, {&(0x7f0000000380), 0x2, {0xa, 0x4e24, 0xe1, @loopback={0x0, 0x1}, 0x1f}, r3}}, 0x38) 11:10:39 executing program 0: sched_setaffinity(0x0, 0x8, &(0x7f0000000080)=0x1) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) r0 = memfd_create(&(0x7f0000000100)='dev ', 0x0) write(r0, &(0x7f0000000040)="16", 0x1) sendfile(r0, r0, &(0x7f0000001000), 0xffff) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) sendfile(r0, r0, &(0x7f0000000000)=0x1023000000000000, 0x100000) tkill(r1, 0x15) 11:10:39 executing program 7 (fault-call:6 fault-nth:34): socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) 11:10:39 executing program 4: r0 = socket(0x0, 0x0, 0x0) r1 = open(&(0x7f00000001c0)='./file0\x00', 0x40000, 0x11) ioctl$SNDRV_TIMER_IOCTL_GPARAMS(r1, 0x40485404, &(0x7f0000000440)={{0x3, 0x0, 0x3, 0x3, 0x10000}, 0x528d58b7, 0x3}) r2 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_SIOCDELDLCI(r1, 0x8981, &(0x7f0000000300)={'bridge0\x00', 0x5}) syz_open_dev$mouse(&(0x7f0000000680)='/dev/input/mouse#\x00', 0x8003, 0x420100) r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f00000006c0)=ANY=[@ANYBLOB="240000001f00ffdbdf25020000070003fb05001100da73000200ac141418000000000000b0e9fce9c49410010394cf3584f0d190632a344835de9b71053279926e20379fe70e2f043701e62f98bbcf075e1e1162104b1bcc78de87a4e82429c25cc152b1a3fbdfccb1c9cd2d9b948e17001a3a3549a87ddf68f219a46b84066007c2cc056789845aee3c893b3b08efc9494b7b09c7d201278bff034d80f9a414cf462004117542c4398150a46dec6f958d99e81dd3cc687766e070424d36d78bbdc8d93ce9e8da831f9f0227b63a3fc17b5a49a44a3895d57c09f3cefd54317a4d1d1abd66ec42c969a8f520556c3daa3fd4b6a73746fa830f82b49048b53b7ca86c6aa5cd31294de8f2eec08fb57f1f00a854f0ad14a9e734ecb996831d9bca0a91a16b5d927ec4115ff9f1216210"], 0x24}, 0x1}, 0x8050) r4 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$BLKDISCARD(r1, 0x1277, &(0x7f00000005c0)=0x7ff) r5 = ioctl$LOOP_CTL_GET_FREE(r4, 0x4c82) open(&(0x7f0000000580)='./file0\x00', 0x0, 0x2) ioctl$SG_GET_KEEP_ORPHAN(r1, 0x2288, &(0x7f0000000380)) ioctl$LOOP_CTL_REMOVE(r4, 0x4c81, r5) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r3, 0x4058534c, &(0x7f0000000500)={0x1000, 0x3ff, 0xdfec, 0x9, 0x1, 0x8}) sendfile(r2, r3, &(0x7f00000004c0), 0x10001) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) 11:10:39 executing program 1: r0 = syz_open_dev$vcsn(&(0x7f0000000580)='/dev/vcs#\x00', 0x1000, 0x0) r1 = syz_genetlink_get_family_id$team(&(0x7f0000000600)='team\x00') getsockopt$inet6_mreq(0xffffffffffffff9c, 0x29, 0x15, &(0x7f0000000640)={@mcast1, 0x0}, &(0x7f0000000680)=0x14) accept4$packet(0xffffffffffffffff, &(0x7f00000006c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @broadcast}, &(0x7f0000000700)=0x14, 0x80800) getsockopt$inet_pktinfo(0xffffffffffffff9c, 0x0, 0x8, &(0x7f0000000740)={0x0, @loopback, @remote}, &(0x7f0000000780)=0xc) getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000940)={{{@in=@broadcast, @in6=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@loopback}, 0x0, @in=@multicast1}}, &(0x7f0000000a40)=0xe8) getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffff9c, 0x29, 0x22, &(0x7f0000000a80)={{{@in=@dev, @in=@multicast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6}, 0x0, @in6}}, &(0x7f0000000b80)=0xe8) getsockname$packet(0xffffffffffffff9c, &(0x7f00000000c0)={0x0, 0x0, 0x0}, &(0x7f0000000c00)=0x14) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffff9c, 0x0, 0x10, &(0x7f0000000c40)={{{@in6=@remote, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@multicast2}, 0x0, @in6=@remote}}, &(0x7f0000000d40)=0xe8) accept$packet(0xffffffffffffffff, &(0x7f0000000d80)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @link_local}, &(0x7f0000000dc0)=0x14) accept4$packet(0xffffffffffffff9c, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, &(0x7f0000001080)=0xffffffffffffffe2, 0x80800) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000001140)={'ip6_vti0\x00', 0x0}) getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffff9c, 0x29, 0x23, &(0x7f0000001180)={{{@in=@loopback, @in=@dev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@rand_addr}, 0x0, @in=@multicast1}}, &(0x7f0000001280)=0xe8) getsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x20, &(0x7f0000001600)={@rand_addr, @local, 0x0}, &(0x7f0000001640)=0xc) ioctl$sock_SIOCGIFINDEX(0xffffffffffffff9c, 0x8933, &(0x7f0000001680)={'syzkaller1\x00', 0x0}) accept4$packet(0xffffffffffffff9c, &(0x7f00000016c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @random}, &(0x7f0000001700)=0x14, 0x80800) getsockopt$inet_mreqn(0xffffffffffffff9c, 0x0, 0x24, &(0x7f0000001740)={@remote, @empty, 0x0}, &(0x7f0000001780)=0xc) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffff9c, 0x0, 0x10, &(0x7f0000001800)={{{@in, @in6=@mcast2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6}, 0x0, @in=@multicast1}}, &(0x7f0000001900)=0xe8) r18 = syz_open_dev$mice(&(0x7f0000000200)='/dev/input/mice\x00', 0x0, 0x1) ioctl$KDSKBSENT(r18, 0x4b49, &(0x7f0000000240)="4c9464b9a6740a05367b12099148e4cfeab6e47a4cbcfdd6806a062e47d2ea2e271ea666b5a4c1fe23037dd7b6ca0df138a1f180baed8a83cbac150b928e03fbabed7db4d1e2ecf6c1f5535a6da8e9cbd0a6fc542c0e4b10c1ce88b1f175192200b37f045a43ed8b641ba199c40348") sendmsg$TEAM_CMD_OPTIONS_GET(r0, &(0x7f0000001f40)={&(0x7f00000005c0)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000001f00)={&(0x7f0000001980)={0x554, r1, 0x100, 0x70bd25, 0x25dfdbfc, {0x2}, [{{0x8, 0x1, r2}, {0x84, 0x2, [{0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24, 0x1, 'lb_tx_hash_to_port_mapping\x00'}, {0x8, 0x3, 0x3}, {0x8, 0x4, r3}}, {0x8, 0x7}}}, {0x40, 0x1, @lb_port_stats={{{0x24, 0x1, 'lb_port_stats\x00'}, {0x8, 0x3, 0xb}, {0x8, 0x4, 0x82b}}, {0x8, 0x6, r4}}}]}}, {{0x8, 0x1, r5}, {0x1c0, 0x2, [{0x4c, 0x1, @bpf_hash_func={{0x24, 0x1, 'bpf_hash_func\x00'}, {0x8, 0x3, 0xb}, {0x1c, 0x4, [{0x5356, 0x4, 0xff, 0x800}, {0x20, 0x3, 0x8, 0x7}, {0x1ff, 0x9, 0x9, 0x3}]}}}, {0x40, 0x1, @lb_hash_stats={{{0x24, 0x1, 'lb_hash_stats\x00'}, {0x8, 0x3, 0xb}, {0x8, 0x4, 0xfffffffffffffff8}}, {0x8, 0x7}}}, {0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24, 0x1, 'lb_tx_hash_to_port_mapping\x00'}, {0x8, 0x3, 0x3}, {0x8, 0x4, r6}}, {0x8, 0x7}}}, {0x3c, 0x1, @lb_tx_method={{0x24, 0x1, 'lb_tx_method\x00'}, {0x8, 0x3, 0x5}, {0xc, 0x4, 'hash\x00'}}}, {0x40, 0x1, @lb_hash_stats={{{0x24, 0x1, 'lb_hash_stats\x00'}, {0x8, 0x3, 0xb}, {0x8, 0x4, 0x8}}, {0x8, 0x7}}}, {0x3c, 0x1, @user_linkup={{{0x24, 0x1, 'user_linkup\x00'}, {0x8, 0x3, 0x6}, {0x4, 0x4}}, {0x8, 0x6, r7}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24, 0x1, 'mcast_rejoin_interval\x00'}, {0x8, 0x3, 0x3}, {0x8, 0x4, 0x6}}}]}}, {{0x8, 0x1, r8}, {0x7c, 0x2, [{0x3c, 0x1, @name={{0x24, 0x1, 'mode\x00'}, {0x8, 0x3, 0x5}, {0xc, 0x4, 'random\x00'}}}, {0x3c, 0x1, @user_linkup_enabled={{{0x24, 0x1, 'user_linkup_enabled\x00'}, {0x8, 0x3, 0x6}, {0x4, 0x4}}, {0x8, 0x6, r9}}}]}}, {{0x8, 0x1, r10}, {0x4, 0x2}}, {{0x8, 0x1, r11}, {0x44, 0x2, [{0x40, 0x1, @lb_hash_stats={{{0x24, 0x1, 'lb_hash_stats\x00'}, {0x8, 0x3, 0xb}, {0x8, 0x4, 0x1}}, {0x8, 0x7, 0xfffffffffffffffd}}}]}}, {{0x8, 0x1, r12}, {0x208, 0x2, [{0x40, 0x1, @queue_id={{{0x24, 0x1, 'queue_id\x00'}, {0x8, 0x3, 0x3}, {0x8, 0x4, 0x101}}, {0x8, 0x6, r13}}}, {0x40, 0x1, @priority={{{0x24, 0x1, 'priority\x00'}, {0x8, 0x3, 0xe}, {0x8, 0x4, 0xfffffffffffffffc}}, {0x8, 0x6, r14}}}, {0x40, 0x1, @priority={{{0x24, 0x1, 'priority\x00'}, {0x8, 0x3, 0xe}, {0x8, 0x4, 0x5}}, {0x8, 0x6, r15}}}, {0x40, 0x1, @lb_hash_stats={{{0x24, 0x1, 'lb_hash_stats\x00'}, {0x8, 0x3, 0xb}, {0x8, 0x4, 0x1e47}}, {0x8, 0x7}}}, {0x4c, 0x1, @lb_tx_method={{0x24, 0x1, 'lb_tx_method\x00'}, {0x8, 0x3, 0x5}, {0x1c, 0x4, 'hash_to_port_mapping\x00'}}}, {0x3c, 0x1, @user_linkup_enabled={{{0x24, 0x1, 'user_linkup_enabled\x00'}, {0x8, 0x3, 0x6}, {0x4, 0x4}}, {0x8, 0x6, r16}}}, {0x44, 0x1, @bpf_hash_func={{0x24, 0x1, 'bpf_hash_func\x00'}, {0x8, 0x3, 0xb}, {0x14, 0x4, [{0x9, 0x4, 0x1, 0xfff}, {0x0, 0x7f, 0xa230, 0x3}]}}}, {0x38, 0x1, @activeport={{0x24, 0x1, 'activeport\x00'}, {0x8, 0x3, 0x3}, {0x8, 0x4, r17}}}]}}]}, 0x554}, 0x1, 0x0, 0x0, 0x40}, 0x80) r19 = socket(0x11, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r20 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r20, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1") ioctl$sock_SIOCGIFINDEX(r19, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)) 11:10:39 executing program 5: r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/sys/net/ipv4/vs/secure_tcp\x00', 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/syz0\x00', 0x1ff) ioctl$KDDISABIO(r0, 0x4b37) write$binfmt_script(0xffffffffffffffff, &(0x7f00000003c0)=ANY=[@ANYBLOB], 0x0) fallocate(r1, 0x1, 0xc000000, 0x10000101) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'vcan0\x00'}) ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000140)={@empty, 0x71}) ioctl$EVIOCGMASK(0xffffffffffffffff, 0x80104592, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)}) socket(0x10, 0x0, 0x0) ioctl$sock_ifreq(0xffffffffffffffff, 0x0, &(0x7f0000000000)={"73697430000080000000000000000002", @ifru_ivalue}) 11:10:39 executing program 2: r0 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcs\x00', 0x4040, 0x0) ioctl$EVIOCGMTSLOTS(r0, 0x8040450a, &(0x7f0000000400)=""/4096) connect$bt_sco(r0, &(0x7f00000001c0)={0x1f, {0xfffffffffffffffe, 0x4, 0x0, 0x1, 0x63dc, 0x200}}, 0x8) r1 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=ANY=[@ANYBLOB="240000001800000000000000ff0000070003ff010011000008000200ac141418"], 0x24}, 0x1}, 0x0) r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) [ 220.921706] kvm [13674]: vcpu0, guest rIP: 0xfff0 Hyper-V unhandled rdmsr: 0x40000029 11:10:39 executing program 1: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x8000000000000000, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) r1 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000200)='/dev/rfkill\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_TLV_READ(r1, 0xc008551a, &(0x7f0000000240)={0x6, 0x4, [0x0]}) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1") r2 = socket$nl_generic(0x10, 0x3, 0x10) getsockopt$sock_linger(r2, 0x1, 0xd, &(0x7f00000000c0), &(0x7f00000001c0)=0x8) ioctl$FS_IOC_GETFSLABEL(r0, 0x81009431, &(0x7f0000000400)) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)) [ 221.130071] FAULT_INJECTION: forcing a failure. [ 221.130071] name failslab, interval 1, probability 0, space 0, times 0 [ 221.141482] CPU: 1 PID: 13697 Comm: syz-executor7 Not tainted 4.18.0-rc4-next-20180711+ #4 [ 221.149883] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 221.159234] Call Trace: [ 221.161825] dump_stack+0x1c9/0x2b4 [ 221.165897] ? dump_stack_print_info.cold.2+0x52/0x52 [ 221.171106] should_fail.cold.4+0xa/0x11 [ 221.175177] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 221.180286] ? kasan_check_read+0x11/0x20 [ 221.184438] ? rcu_is_watching+0x8c/0x150 [ 221.188589] ? rcu_cleanup_dead_rnp+0x200/0x200 [ 221.193261] ? is_bpf_text_address+0xd7/0x170 [ 221.197756] ? kernel_text_address+0x79/0xf0 [ 221.202177] ? __kernel_text_address+0xd/0x40 [ 221.206676] ? unwind_get_return_address+0x61/0xa0 [ 221.211611] ? lock_acquire+0x1e4/0x540 [ 221.215584] ? fs_reclaim_acquire+0x20/0x20 [ 221.219905] ? lock_downgrade+0x8f0/0x8f0 [ 221.224057] ? check_same_owner+0x340/0x340 [ 221.228376] ? kasan_kmalloc+0xc4/0xe0 [ 221.232266] ? kmem_cache_alloc_node_trace+0x150/0x770 [ 221.237539] ? blk_mq_init_tags+0x79/0x2b0 [ 221.241781] ? rcu_note_context_switch+0x730/0x730 [ 221.246709] ? elevator_init_mq+0xd7/0x160 [ 221.250944] ? blk_mq_init_allocated_queue+0x1024/0x16c0 [ 221.256398] __should_failslab+0x124/0x180 [ 221.260633] should_failslab+0x9/0x14 [ 221.264430] kmem_cache_alloc_node_trace+0x26f/0x770 [ 221.269531] ? retint_kernel+0x10/0x10 [ 221.273423] __kmalloc_node+0x33/0x70 [ 221.277227] sbitmap_init_node+0x290/0x450 [ 221.281460] sbitmap_queue_init_node+0xb2/0x850 [ 221.286128] ? sbitmap_init_node+0x450/0x450 [ 221.290541] ? kmem_cache_alloc_node_trace+0x302/0x770 [ 221.295825] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 221.301363] ? find_next_bit+0x104/0x130 [ 221.305426] blk_mq_init_tags+0x11b/0x2b0 [ 221.309576] blk_mq_alloc_rq_map+0x9f/0x220 [ 221.313899] blk_mq_sched_alloc_tags.isra.13+0x7b/0x160 [ 221.319262] blk_mq_init_sched+0x1e1/0x5a0 [ 221.323494] elevator_init_mq+0xd7/0x160 [ 221.327557] blk_mq_init_allocated_queue+0x1024/0x16c0 [ 221.333513] ? blk_mq_map_swqueue+0xaf0/0xaf0 [ 221.338004] ? __mutex_init+0x1f7/0x290 [ 221.341977] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 221.346733] ? retint_kernel+0x10/0x10 [ 221.350624] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 221.355385] ? retint_kernel+0x10/0x10 [ 221.359274] blk_mq_init_queue+0x63/0xb0 [ 221.363329] loop_add+0x33d/0x9d0 [ 221.366781] ? loop_lookup+0x105/0x230 [ 221.370662] ? loop_queue_rq+0x660/0x660 [ 221.374718] ? loop_control_ioctl+0x15d/0x540 [ 221.379212] loop_control_ioctl+0x199/0x540 [ 221.383530] ? loop_add+0x9d0/0x9d0 [ 221.387155] ? retint_kernel+0x10/0x10 [ 221.391039] ? do_vfs_ioctl+0x123/0x1720 [ 221.395093] ? loop_add+0x9d0/0x9d0 [ 221.398720] do_vfs_ioctl+0x1de/0x1720 [ 221.402604] ? fsnotify_first_mark+0x350/0x350 [ 221.407182] ? __fsnotify_parent+0xcc/0x420 [ 221.411494] ? ioctl_preallocate+0x300/0x300 [ 221.415894] ? __fget_light+0x2f7/0x440 [ 221.419865] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 221.424620] ? retint_kernel+0x10/0x10 [ 221.428508] ? __fget_light+0x2f7/0x440 [ 221.432482] ? security_file_ioctl+0x94/0xc0 [ 221.436889] ksys_ioctl+0xa9/0xd0 [ 221.440352] __x64_sys_ioctl+0x73/0xb0 [ 221.444238] do_syscall_64+0x1b9/0x820 [ 221.448120] ? syscall_slow_exit_work+0x500/0x500 [ 221.452959] ? syscall_return_slowpath+0x5e0/0x5e0 [ 221.457887] ? syscall_return_slowpath+0x31d/0x5e0 [ 221.462821] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 221.468534] ? prepare_exit_to_usermode+0x291/0x3b0 [ 221.473546] ? perf_trace_sys_enter+0xb10/0xb10 [ 221.478213] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 221.483055] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 221.488239] RIP: 0033:0x455e29 [ 221.491415] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 221.510687] RSP: 002b:00007fc746a7ec68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 221.518392] RAX: ffffffffffffffda RBX: 00007fc746a7f6d4 RCX: 0000000000455e29 11:10:40 executing program 3: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000440)=ANY=[@ANYBLOB="240000000008000000004000ffdbdf25533c88b87247e03b2011000008000200ac141418a6fc38bef411ffec476e6940d037b5947820fb7024ce2cb255277a18857771ca7430fdc932aeabcbb7159d1199e97c0d63"], 0x24}, 0x1}, 0x8050) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) getsockopt$inet_sctp_SCTP_I_WANT_MAPPED_V4_ADDR(r0, 0x84, 0xc, &(0x7f0000000240), &(0x7f0000000380)=0x4) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) 11:10:40 executing program 4: r0 = socket(0x0, 0x0, 0x0) r1 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_X86_GET_MCE_CAP_SUPPORTED(r1, 0x8008ae9d, &(0x7f00000002c0)=""/113) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000480)=ANY=[@ANYBLOB="240000001800000000000000ffdbdf25090000001003ff0500110e00080001e0ac14141813b76477c484500000ae737d9462a9b2569a"], 0x24}, 0x1}, 0x8050) r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000440)='/dev/loop-control\x00', 0x2026241, 0x0) ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) getsockopt$inet_pktinfo(r2, 0x0, 0x8, &(0x7f00000001c0)={0x0, @dev, @broadcast}, &(0x7f0000000380)=0xc) [ 221.525654] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000014 [ 221.532918] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 221.540176] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015 [ 221.547442] R13: 00000000004be3c0 R14: 00000000004ccd10 R15: 0000000000000022 11:10:40 executing program 2: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f00000001c0)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0x0, 0x7, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x0) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) ioctl$EVIOCGSND(r1, 0x8040451a, &(0x7f0000000400)=""/174) ioctl$KDGKBLED(r0, 0x4b64, &(0x7f00000000c0)) 11:10:40 executing program 7 (fault-call:6 fault-nth:35): socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) 11:10:40 executing program 5: r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/sys/net/ipv4/vs/secure_tcp\x00', 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/syz0\x00', 0x1ff) ioctl$KDDISABIO(r0, 0x4b37) write$binfmt_script(0xffffffffffffffff, &(0x7f00000003c0)=ANY=[@ANYBLOB], 0x0) fallocate(r1, 0x1, 0x8000000000000, 0x10000101) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'vcan0\x00'}) ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000140)={@empty, 0x71}) ioctl$EVIOCGMASK(0xffffffffffffffff, 0x80104592, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)}) socket(0x10, 0x0, 0x0) ioctl$sock_ifreq(0xffffffffffffffff, 0x0, &(0x7f0000000000)={"73697430000080000000000000000002", @ifru_ivalue}) 11:10:40 executing program 1: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) sendmsg$nl_netfilter(r0, &(0x7f0000000200)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x20200008}, 0xc, &(0x7f00000001c0)={&(0x7f0000000400)={0x3e0, 0x1, 0xa, 0x400, 0x70bd2b, 0x25dfdbff, {0xf, 0x0, 0x9}, [@nested={0x30, 0x19, [@typed={0x18, 0x15, @str='/dev/loop-control\x00'}, @typed={0x14, 0x14, @ipv6=@loopback={0x0, 0x1}}]}, @generic="144fe061db473ed223325a96f97b60da91b01bf9cf38bfcf7d745c0470db270e8ccb6abd04421d156191d4ad4d70da74a9166af1f1a52d5ab472a09345fa629cfc4729751d5bbded59cc938d41d96d733f8784dd7c6b1a9487a282f46bdc6ce96de8f297a31c70b738c33244c6591e3b5bc216a0bbfd8f95728949d8a50d6802d5ead71d76e3fc7df75d19e5a7f07a495b09d6f435aa3375861a9c97c3e1468052622210428f3b1657d6c4e4bd12d93784e8169ae755d8185495ae212ca99c867a4a1ea045c77b6b471037dc3617aaf1de469020c9e182924813f83cc97996b4bc", @nested={0x1e8, 0x11, [@generic="a07c7f7b1df94ad5cb748a7d2a7de06b2586b05860cf0ead1ab2340bcae99c446e8dd9e706fefaede1d1b932c32d7fd04c984d7754364e69681bcc248823e96709a65639171d144f8ceff80290ae4dd283cddae0a3f0e8551f18c3d3c16a17619268fde074b312366755fdae6d14ba1d100c85837fd21687d92759974958856eeb2cd2c044db90db6374c36c0c64d27d558727a7ec4d372fc2bcb00f99cccc36630a29099c9aee1f98e079b647b3055f6037a1ca658446150a212cf6b9dcf549d67e33b1cc6a020e6104bc81d9e06daacb39ef92811fd9fa", @typed={0x8, 0x6e, @u32=0x80}, @generic="cff81edcb1f6aff8683b1c1ef9170b0176f549a99a7eef98ebca23d21a3fb6602ecbcbf99d772553", @generic="ac334e849038282e7994cca469fc7a51cad83cbc5f842bb5039a162afc4247c3d6f305462421f010d43b0ae36822361dea0ef27da4e31660443e", @generic="cde13a423feb8428807f85048c9adb5c893831a90f5e29ace108220fe438bb4a11305415ed7ea52821e1c8aab39970e616339bcbe5bf99f7d60ca65df54a123b5f8cae99951e818925fee1111fed2ffcd1bd573e28d5f01765823a601131c6a72551c5100b7a56ced383da414638ceabe151e962c38124b5b3993bd160264367a19abe01a52ad2bcf4450b243303ea744a5498c095f8dfed870c31db6647424f"]}, @typed={0x8, 0x87, @u32=0x3}, @typed={0xc, 0x8c, @u64=0x1}, @nested={0xbc, 0x50, [@generic="0490b0b7b0515dd71dbfd59488269ce5ced750a63e692be44799f10f9fb828a79562923ab2c01cda89d7e4a0d587d96c35e94d9eb4a1972400e2bf06c53c9b1e3a2b39e4bb7fafbec62b0f0eb3760252fd60f129124b33bc5947dec3c1933576caa4667e7212a351102a42f7bf37d7eb4e6098f64ce6e83b4d820434008cbd80faf50d669ca14c537ca1fe2684168319d34bb395edc8109fc1a6ad5e4199c4d8cf999bf27a2ea71bd964fb776178043ce73df85152bd51"]}]}, 0x3e0}, 0x1, 0x0, 0x0, 0x50}, 0x8000) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)) [ 221.675111] FAULT_INJECTION: forcing a failure. [ 221.675111] name failslab, interval 1, probability 0, space 0, times 0 [ 221.686794] CPU: 1 PID: 13731 Comm: syz-executor7 Not tainted 4.18.0-rc4-next-20180711+ #4 [ 221.695198] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 221.704546] Call Trace: [ 221.707132] dump_stack+0x1c9/0x2b4 [ 221.710768] ? dump_stack_print_info.cold.2+0x52/0x52 [ 221.715964] ? unwind_get_return_address+0x61/0xa0 [ 221.720897] should_fail.cold.4+0xa/0x11 [ 221.724963] ? kasan_check_read+0x11/0x20 [ 221.729116] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 221.734222] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 221.739235] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 221.744250] ? find_next_bit+0x104/0x130 [ 221.748318] ? retint_kernel+0x10/0x10 [ 221.752208] ? lock_acquire+0x278/0x540 [ 221.756182] ? fs_reclaim_acquire+0x20/0x20 [ 221.760504] ? lock_downgrade+0x8f0/0x8f0 [ 221.764659] ? check_same_owner+0x340/0x340 [ 221.768987] ? retint_kernel+0x10/0x10 [ 221.772884] ? rcu_note_context_switch+0x730/0x730 [ 221.777813] ? __lockdep_init_map+0x105/0x590 [ 221.782307] __should_failslab+0x124/0x180 [ 221.786548] should_failslab+0x9/0x14 [ 221.790348] kmem_cache_alloc_node_trace+0x26f/0x770 [ 221.795451] ? init_wait_entry+0x1c0/0x1c0 [ 221.799692] sbitmap_queue_init_node+0x330/0x850 [ 221.804448] ? sbitmap_init_node+0x450/0x450 [ 221.808855] ? retint_kernel+0x10/0x10 [ 221.812751] blk_mq_init_tags+0x17c/0x2b0 [ 221.816898] blk_mq_alloc_rq_map+0x9f/0x220 [ 221.821222] blk_mq_sched_alloc_tags.isra.13+0x7b/0x160 [ 221.826587] blk_mq_init_sched+0x1e1/0x5a0 [ 221.830823] elevator_init_mq+0xd7/0x160 [ 221.834892] blk_mq_init_allocated_queue+0x1024/0x16c0 [ 221.840169] ? blk_mq_map_swqueue+0xaf0/0xaf0 [ 221.844662] ? __mutex_init+0x1f7/0x290 [ 221.848639] ? retint_kernel+0x10/0x10 [ 221.852532] ? retint_kernel+0x10/0x10 [ 221.856425] ? blk_mq_update_nr_hw_queues+0x510/0x510 [ 221.861615] blk_mq_init_queue+0x63/0xb0 [ 221.865673] loop_add+0x33d/0x9d0 [ 221.869119] ? loop_lookup+0x105/0x230 [ 221.873001] ? loop_queue_rq+0x660/0x660 [ 221.877062] loop_control_ioctl+0x199/0x540 [ 221.881375] ? ksys_dup3+0x690/0x690 [ 221.885084] ? loop_add+0x9d0/0x9d0 [ 221.888714] ? kasan_check_write+0x14/0x20 [ 221.892954] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 221.897876] ? fsnotify+0xbac/0x14e0 [ 221.901584] ? vfs_write+0x2f3/0x560 [ 221.905299] ? loop_add+0x9d0/0x9d0 [ 221.908921] do_vfs_ioctl+0x1de/0x1720 [ 221.912812] ? fsnotify_first_mark+0x350/0x350 [ 221.917388] ? __fsnotify_parent+0xcc/0x420 [ 221.921704] ? ioctl_preallocate+0x300/0x300 [ 221.926113] ? __fget_light+0x2f7/0x440 [ 221.930088] ? fget_raw+0x20/0x20 [ 221.933537] ? __sb_end_write+0xac/0xe0 [ 221.937510] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 221.943040] ? fput+0x130/0x1a0 [ 221.946313] ? ksys_write+0x1ae/0x260 [ 221.950110] ? security_file_ioctl+0x94/0xc0 [ 221.954514] ksys_ioctl+0xa9/0xd0 [ 221.957959] __x64_sys_ioctl+0x73/0xb0 [ 221.961844] do_syscall_64+0x1b9/0x820 [ 221.965732] ? syscall_slow_exit_work+0x500/0x500 [ 221.970574] ? syscall_return_slowpath+0x5e0/0x5e0 [ 221.975502] ? syscall_return_slowpath+0x31d/0x5e0 [ 221.980430] ? prepare_exit_to_usermode+0x291/0x3b0 [ 221.985443] ? perf_trace_sys_enter+0xb10/0xb10 [ 221.990108] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 221.994950] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 222.000133] RIP: 0033:0x455e29 [ 222.003309] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 222.022574] RSP: 002b:00007fc746a7ec68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 222.030278] RAX: ffffffffffffffda RBX: 00007fc746a7f6d4 RCX: 0000000000455e29 [ 222.037540] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000014 [ 222.044802] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 222.052063] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015 [ 222.059329] R13: 00000000004be3c0 R14: 00000000004ccd10 R15: 0000000000000023 11:10:40 executing program 6: r0 = getpid() sched_setattr(r0, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x0, 0x3}, 0x0) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x0, 0x0) poll(&(0x7f00000001c0), 0x0, 0x80000000) ioctl$TCSETS(r1, 0x40045431, &(0x7f00003b9fdc)) ioctl$TIOCPKT(r1, 0x5420, &(0x7f0000000080)=0x61) read(r1, &(0x7f0000000040)=""/11, 0xffed) r2 = syz_open_pts(r1, 0x0) ioctl$TCXONC(r2, 0x80045432, 0x0) 11:10:40 executing program 4: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) syz_open_dev$evdev(&(0x7f0000000300)='/dev/input/event#\x00', 0x100, 0x200) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=ANY=[@ANYBLOB="240000001800000000000000ffdbe07094e900070003ff050011000008000200ac141418"], 0x24}, 0x1}, 0x8050) r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) ioctl$PPPOEIOCSFWD(r0, 0x4008b100, &(0x7f00000001c0)={0x18, 0x0, {0x1, @empty, 'veth1\x00'}}) fcntl$F_SET_FILE_RW_HINT(r2, 0x40e, &(0x7f00000003c0)) mincore(&(0x7f0000ffd000/0x2000)=nil, 0x2000, &(0x7f0000000440)=""/245) 11:10:40 executing program 2: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000400)=ANY=[@ANYBLOB="240000001815720000000000ffdbdf25020000070003ff050011000008000200ac141418fd03022158332c3e15b9eb457a88c05f1987a2d25abce469a3097eb854bf85487cb25f075f0e677089c7c76953aa8064cfc132b3efd57384a9d500d7007ab5cfc931d2fdf14b21fc2c5f86c78e1295964819af68324b8286caea9273080000004af2eb12cf34b19c6af0e3f659e59994ed"], 0x24}, 0x1}, 0x0) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) 11:10:40 executing program 0: sched_setaffinity(0x0, 0x8, &(0x7f0000000080)=0x1) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) r0 = memfd_create(&(0x7f0000000100)='dev ', 0x0) write(r0, &(0x7f0000000040)="16", 0x1) sendfile(r0, r0, &(0x7f0000001000), 0xffff) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) sendfile(r0, r0, &(0x7f0000000000)=0xf, 0x100000) tkill(r1, 0x15) 11:10:40 executing program 5: r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/sys/net/ipv4/vs/secure_tcp\x00', 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/syz0\x00', 0x1ff) ioctl$KDDISABIO(r0, 0x4b37) write$binfmt_script(0xffffffffffffffff, &(0x7f00000003c0)=ANY=[@ANYBLOB], 0x0) fallocate(r1, 0x1, 0x900000000, 0x10000101) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'vcan0\x00'}) ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000140)={@empty, 0x71}) ioctl$EVIOCGMASK(0xffffffffffffffff, 0x80104592, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)}) socket(0x10, 0x0, 0x0) ioctl$sock_ifreq(0xffffffffffffffff, 0x0, &(0x7f0000000000)={"73697430000080000000000000000002", @ifru_ivalue}) 11:10:40 executing program 7 (fault-call:6 fault-nth:36): socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) 11:10:40 executing program 3: socket(0x0, 0x0, 0x0) r0 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0xb0, 0x0, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x8050) r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0) openat$dsp(0xffffffffffffff9c, &(0x7f0000000440)='/dev/dsp\x00', 0x614080, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) setsockopt$inet6_tcp_TLS_TX(r0, 0x6, 0x1, &(0x7f0000000380)={0x303, 0x33}, 0x4) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) setsockopt$inet_tcp_int(r1, 0x6, 0x1f, &(0x7f0000000480)=0xe86, 0x4) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) 11:10:40 executing program 1: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)) getsockopt$inet_sctp6_SCTP_LOCAL_AUTH_CHUNKS(r0, 0x84, 0x1b, &(0x7f00000001c0)={0x0, 0x87, "54d9683f70704cecd66458a8389797fad3337164bb433b5ed9b8281a74d0403a6485dcb6eaaf773c5550fa951967fca698713b7cf09fe3def7f7ba24ec9eaa85e88e112af3a3f58dd729d3d644c78821c5711388e9ab2957f7a7d1fbabd6fdcfb6df83cb8d4c8d6248d3fdfebd266a67e934c9b1090fb458f9725f5e9344af2a8177f4bece7b47"}, &(0x7f00000000c0)=0x8f) getsockopt$inet_sctp6_SCTP_DELAYED_SACK(r0, 0x84, 0x10, &(0x7f0000000280)=@assoc_value={r2, 0x101}, &(0x7f0000000300)=0x8) 11:10:40 executing program 4: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f00000001c0)=ANY=[@ANYBLOB="240000008000000000000000ffdbdf250200000700000005001161e308000200ac1414189ccb1364ca2b6da3b9abac7f577e"], 0x24}, 0x1}, 0x8050) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(r1, 0x40e, &(0x7f00000003c0)=0x3) [ 222.338878] FAULT_INJECTION: forcing a failure. [ 222.338878] name failslab, interval 1, probability 0, space 0, times 0 [ 222.350351] CPU: 1 PID: 13772 Comm: syz-executor7 Not tainted 4.18.0-rc4-next-20180711+ #4 [ 222.358748] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 222.368092] Call Trace: [ 222.370679] dump_stack+0x1c9/0x2b4 [ 222.374310] ? dump_stack_print_info.cold.2+0x52/0x52 [ 222.379507] ? should_fail.cold.4+0x5/0x11 [ 222.383743] should_fail.cold.4+0xa/0x11 [ 222.387802] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 222.392908] ? lock_repin_lock+0x430/0x430 [ 222.397140] ? kasan_check_write+0x14/0x20 [ 222.401377] ? __schedule+0x884/0x1ed0 [ 222.405270] ? __sched_text_start+0x8/0x8 [ 222.409415] ? __lockdep_init_map+0x105/0x590 [ 222.413914] ? lockdep_init_map+0x9/0x10 [ 222.417976] ? __init_waitqueue_head+0x9e/0x150 [ 222.422647] ? check_same_owner+0x340/0x340 [ 222.426968] ? sbitmap_queue_init_node+0xce/0x850 [ 222.431815] __should_failslab+0x124/0x180 [ 222.436049] should_failslab+0x9/0x14 [ 222.439847] kmem_cache_alloc_node_trace+0x26f/0x770 [ 222.444949] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 222.450483] ? find_next_bit+0x104/0x130 [ 222.454546] __kmalloc_node+0x33/0x70 [ 222.458349] blk_mq_alloc_rq_map+0xcc/0x220 [ 222.462676] blk_mq_sched_alloc_tags.isra.13+0x7b/0x160 [ 222.468035] blk_mq_init_sched+0x1e1/0x5a0 [ 222.472268] elevator_init_mq+0xd7/0x160 [ 222.476331] blk_mq_init_allocated_queue+0x1024/0x16c0 [ 222.481607] ? blk_mq_map_swqueue+0xaf0/0xaf0 [ 222.486126] ? __mutex_init+0x1f7/0x290 [ 222.490103] ? retint_kernel+0x10/0x10 [ 222.493991] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 222.498753] ? retint_kernel+0x10/0x10 [ 222.502645] blk_mq_init_queue+0x63/0xb0 [ 222.506708] loop_add+0x33d/0x9d0 [ 222.510156] ? loop_queue_rq+0x660/0x660 [ 222.514217] loop_control_ioctl+0x199/0x540 [ 222.518536] ? loop_add+0x9d0/0x9d0 [ 222.522159] ? do_vfs_ioctl+0xd1/0x1720 [ 222.526131] ? write_comp_data+0x1/0x70 [ 222.530099] ? loop_add+0x9d0/0x9d0 [ 222.533718] do_vfs_ioctl+0x1de/0x1720 [ 222.537597] ? __fget_light+0xa4/0x440 [ 222.541480] ? ioctl_preallocate+0x300/0x300 [ 222.545891] ? __fget_light+0x2f7/0x440 [ 222.549858] ? fget_raw+0x20/0x20 [ 222.553314] ? __f_unlock_pos+0x19/0x20 [ 222.557285] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 222.562042] ? retint_kernel+0x10/0x10 [ 222.565925] ? security_file_ioctl+0x94/0xc0 [ 222.570329] ksys_ioctl+0xa9/0xd0 [ 222.573784] __x64_sys_ioctl+0x73/0xb0 [ 222.577675] do_syscall_64+0x1b9/0x820 [ 222.581558] ? syscall_slow_exit_work+0x500/0x500 [ 222.586403] ? syscall_return_slowpath+0x5e0/0x5e0 [ 222.591328] ? syscall_return_slowpath+0x31d/0x5e0 [ 222.596255] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 222.601787] ? prepare_exit_to_usermode+0x291/0x3b0 [ 222.606798] ? perf_trace_sys_enter+0xb10/0xb10 [ 222.611463] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 222.616303] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 222.621482] RIP: 0033:0x455e29 11:10:41 executing program 2: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0x0, 0x7, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x0) ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) [ 222.624661] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 222.643934] RSP: 002b:00007fc746a7ec68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 222.651639] RAX: ffffffffffffffda RBX: 00007fc746a7f6d4 RCX: 0000000000455e29 [ 222.658904] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000014 [ 222.666165] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 222.673424] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015 [ 222.680687] R13: 00000000004be3c0 R14: 00000000004ccd10 R15: 0000000000000024 11:10:41 executing program 1: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)) 11:10:41 executing program 4: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0x0, 0x7, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x8050) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) socket$inet_icmp_raw(0x2, 0x3, 0x1) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) 11:10:41 executing program 3: socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) ioctl$FICLONE(r0, 0x40049409, r0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0xb0, 0x0, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x8050) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x200, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) r2 = request_key(&(0x7f0000000380)='big_key\x00', &(0x7f0000000440)={0x73, 0x79, 0x7a, 0x1}, &(0x7f0000000480)='\x00', 0x0) keyctl$clear(0x7, r2) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) 11:10:41 executing program 7 (fault-call:6 fault-nth:37): socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) 11:10:41 executing program 5: r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/sys/net/ipv4/vs/secure_tcp\x00', 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/syz0\x00', 0x1ff) ioctl$KDDISABIO(r0, 0x4b37) write$binfmt_script(0xffffffffffffffff, &(0x7f00000003c0)=ANY=[@ANYBLOB], 0x0) fallocate(r1, 0x1, 0xd0, 0x10000101) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'vcan0\x00'}) ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000140)={@empty, 0x71}) ioctl$EVIOCGMASK(0xffffffffffffffff, 0x80104592, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)}) socket(0x10, 0x0, 0x0) ioctl$sock_ifreq(0xffffffffffffffff, 0x0, &(0x7f0000000000)={"73697430000080000000000000000002", @ifru_ivalue}) 11:10:41 executing program 2: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0x0, 0x7, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x0) getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(r0, 0x84, 0x6d, &(0x7f0000000400)={0x0, 0x68, "53b85e28ac4d7b7f746cdd1892cee97a3ee5eeb3c8069e068d81512094538df89f67f184a6ef20c711cf2c4822ab7df47dc11bfe5b75387940b402f8c4fed37762c32348b016a9e93a75b10b61924913d217f15d9684fbd5a442a6aa4599872d7c69f0d2f6e824b5"}, &(0x7f00000000c0)=0x70) getsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r0, 0x84, 0x76, &(0x7f00000001c0)={r1, 0x3}, &(0x7f0000000300)=0x8) r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) ioctl(r0, 0x8001, &(0x7f0000000480)="ab55af3007adbc0ca84002810c649d1c6334a823545fcce3b800b66d881afefd574370e896a21d49161bd7f38192b692fee0b8618dbb91e10d8f12377eb8e9a493e962d025a9f2ec01d4173b099fd102aed43dc7e92dfaaa6c6e93087ee8f454749a0cfcc27f68bb0b39e6b40dd7a8c0ca895f9be22c6a7af878a81005699f3e1ca32e26") [ 222.940045] FAULT_INJECTION: forcing a failure. [ 222.940045] name failslab, interval 1, probability 0, space 0, times 0 [ 222.951434] CPU: 1 PID: 13818 Comm: syz-executor7 Not tainted 4.18.0-rc4-next-20180711+ #4 [ 222.959833] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 222.969187] Call Trace: [ 222.971783] dump_stack+0x1c9/0x2b4 [ 222.975421] ? dump_stack_print_info.cold.2+0x52/0x52 [ 222.980616] ? rcu_cleanup_dead_rnp+0x200/0x200 [ 222.985302] should_fail.cold.4+0xa/0x11 [ 222.989367] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 222.994469] ? depot_save_stack+0x113/0x470 [ 222.998798] ? save_stack+0xa9/0xd0 [ 223.002429] ? save_stack+0x43/0xd0 [ 223.006062] ? kasan_kmalloc+0xc4/0xe0 [ 223.009950] ? __kmalloc_node+0x47/0x70 [ 223.013932] ? blk_mq_alloc_rq_map+0xcc/0x220 [ 223.018424] ? blk_mq_sched_alloc_tags.isra.13+0x7b/0x160 [ 223.023954] ? blk_mq_init_sched+0x1e1/0x5a0 [ 223.028358] ? elevator_init_mq+0xd7/0x160 [ 223.032592] ? blk_mq_init_allocated_queue+0x1024/0x16c0 [ 223.038043] ? blk_mq_init_queue+0x63/0xb0 [ 223.042275] ? loop_add+0x33d/0x9d0 [ 223.045898] ? loop_control_ioctl+0x199/0x540 [ 223.050396] ? do_vfs_ioctl+0x1de/0x1720 [ 223.054458] ? ksys_ioctl+0xa9/0xd0 [ 223.058082] ? __x64_sys_ioctl+0x73/0xb0 [ 223.062141] ? do_syscall_64+0x1b9/0x820 [ 223.066208] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 223.071574] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 223.076328] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 223.081071] ? check_same_owner+0x340/0x340 [ 223.085376] ? rcu_note_context_switch+0x730/0x730 [ 223.090289] __should_failslab+0x124/0x180 [ 223.094511] should_failslab+0x9/0x14 [ 223.098299] kmem_cache_alloc_node_trace+0x26f/0x770 [ 223.103385] ? kasan_unpoison_shadow+0x35/0x50 [ 223.107950] __kmalloc_node+0x33/0x70 [ 223.111735] blk_mq_alloc_rq_map+0x10d/0x220 [ 223.116131] blk_mq_sched_alloc_tags.isra.13+0x7b/0x160 [ 223.121474] blk_mq_init_sched+0x1e1/0x5a0 [ 223.125692] elevator_init_mq+0xd7/0x160 [ 223.129736] blk_mq_init_allocated_queue+0x1024/0x16c0 [ 223.134996] ? blk_mq_map_swqueue+0xaf0/0xaf0 [ 223.139474] ? __mutex_init+0x1f7/0x290 [ 223.143435] ? retint_kernel+0x10/0x10 [ 223.147306] ? blk_mq_alloc_tag_set+0x5e5/0xad0 [ 223.151961] ? blk_mq_update_nr_hw_queues+0x510/0x510 [ 223.157134] blk_mq_init_queue+0x63/0xb0 [ 223.161184] loop_add+0x33d/0x9d0 [ 223.164617] ? loop_lookup+0x105/0x230 [ 223.168483] ? loop_queue_rq+0x660/0x660 [ 223.172528] loop_control_ioctl+0x199/0x540 [ 223.176828] ? loop_add+0x9d0/0x9d0 [ 223.180434] ? retint_kernel+0x10/0x10 [ 223.184303] ? do_vfs_ioctl+0xd1/0x1720 [ 223.188258] ? loop_add+0x9d0/0x9d0 [ 223.191862] do_vfs_ioctl+0x1de/0x1720 [ 223.195731] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 223.200468] ? ioctl_preallocate+0x300/0x300 [ 223.204858] ? __fget_light+0x2f7/0x440 [ 223.208817] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 223.213558] ? retint_kernel+0x10/0x10 [ 223.217429] ksys_ioctl+0xa9/0xd0 [ 223.220862] __x64_sys_ioctl+0x73/0xb0 [ 223.224733] do_syscall_64+0x1b9/0x820 [ 223.228612] ? finish_task_switch+0x1d3/0x870 [ 223.233090] ? syscall_return_slowpath+0x5e0/0x5e0 [ 223.238005] ? syscall_return_slowpath+0x31d/0x5e0 [ 223.242918] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 223.247916] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 223.253433] ? prepare_exit_to_usermode+0x291/0x3b0 [ 223.258430] ? perf_trace_sys_enter+0xb10/0xb10 [ 223.263080] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 223.267909] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 223.273076] RIP: 0033:0x455e29 [ 223.276241] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 223.295416] RSP: 002b:00007fc746a7ec68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 223.303104] RAX: ffffffffffffffda RBX: 00007fc746a7f6d4 RCX: 0000000000455e29 [ 223.310354] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000014 [ 223.317610] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 223.324862] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015 [ 223.332444] R13: 00000000004be3c0 R14: 00000000004ccd10 R15: 0000000000000025 11:10:42 executing program 6: r0 = getpid() sched_setattr(r0, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x0, 0x3}, 0x0) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x0, 0x0) poll(&(0x7f00000001c0), 0x0, 0x80000000) ioctl$TCSETS(r1, 0x40045431, &(0x7f00003b9fdc)) ioctl$TIOCPKT(r1, 0x5420, &(0x7f0000000080)=0x61) read(r1, &(0x7f0000000040)=""/11, 0xffed) r2 = syz_open_pts(r1, 0x0) ioctl$TCXONC(r2, 0x2, 0x0) 11:10:42 executing program 1: r0 = socket(0x0, 0x0, 0x0) r1 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$getflags(r1, 0x408) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)) 11:10:42 executing program 7 (fault-call:6 fault-nth:38): socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) 11:10:42 executing program 3: socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) ioctl$KVM_SET_IDENTITY_MAP_ADDR(r0, 0x4008ae48, &(0x7f0000000380)=0x100004) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0xb0, 0x0, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x8050) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) 11:10:42 executing program 0: sched_setaffinity(0x0, 0x8, &(0x7f0000000080)=0x1) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) r0 = memfd_create(&(0x7f0000000100)='dev ', 0x0) write(r0, &(0x7f0000000040)="16", 0x1) sendfile(r0, r0, &(0x7f0000001000), 0xffff) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) sendfile(r0, r0, &(0x7f0000000000)=0xf000000, 0x100000) tkill(r1, 0x15) 11:10:42 executing program 5: r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/sys/net/ipv4/vs/secure_tcp\x00', 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/syz0\x00', 0x1ff) ioctl$KDDISABIO(r0, 0x4b37) write$binfmt_script(0xffffffffffffffff, &(0x7f00000003c0)=ANY=[@ANYBLOB], 0x0) fallocate(r1, 0x1, 0xb8000000000000, 0x10000101) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'vcan0\x00'}) ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000140)={@empty, 0x71}) ioctl$EVIOCGMASK(0xffffffffffffffff, 0x80104592, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)}) socket(0x10, 0x0, 0x0) ioctl$sock_ifreq(0xffffffffffffffff, 0x0, &(0x7f0000000000)={"73697430000080000000000000000002", @ifru_ivalue}) 11:10:42 executing program 4: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGABS3F(r0, 0x8018457f, &(0x7f0000000540)=""/105) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000440)=ANY=[@ANYBLOB="240000001800000000000000ffdbdf25020000070003ff050011000008000200ac1414189ae2d03b9bf071ef7e42ae26a6e323f85a6bbef516820bfcd3c85fec15b4ed65e1e4ff0500000000000004b8cab0ca19132d29eb6856a87ac7f608556deb1b40f5a400431806e595af3ef6ddb279289bc742ba829ab7d774ee632575df16d85cd9edb5c1614201e5dceabac385ed9688110a3a05f26188167d53a3ae8b08c4b0fbd602772dc754a4417b8d3fb0ae7ac73a4b96c2b2bedbae0882a5f5ab22bd18b8edc87757e57c9e90a0de403ee88134187982b45ec91168cf49060bdf73b81ee1"], 0x24}, 0x1}, 0x8050) r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) ioctl$TIOCGWINSZ(r1, 0x5413, &(0x7f00000001c0)) 11:10:42 executing program 2: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000300)=ANY=[@ANYBLOB="240000001800000000000000ffdbdf250200000700032985759eb168ef9a99bf5a5681050f11000008000200ac141418"], 0x24}, 0x1}, 0x0) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) r2 = syz_open_dev$admmidi(&(0x7f00000000c0)='/dev/admmidi#\x00', 0x5, 0x40000) faccessat(r2, &(0x7f00000001c0)='./file0\x00', 0x2, 0x1000) 11:10:42 executing program 5: r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/sys/net/ipv4/vs/secure_tcp\x00', 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/syz0\x00', 0x1ff) ioctl$KDDISABIO(r0, 0x4b37) write$binfmt_script(0xffffffffffffffff, &(0x7f00000003c0)=ANY=[@ANYBLOB], 0x0) fallocate(r1, 0x1, 0xb00600, 0x10000101) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'vcan0\x00'}) ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000140)={@empty, 0x71}) ioctl$EVIOCGMASK(0xffffffffffffffff, 0x80104592, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)}) socket(0x10, 0x0, 0x0) ioctl$sock_ifreq(0xffffffffffffffff, 0x0, &(0x7f0000000000)={"73697430000080000000000000000002", @ifru_ivalue}) [ 223.761330] FAULT_INJECTION: forcing a failure. [ 223.761330] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 223.773525] CPU: 1 PID: 13861 Comm: syz-executor7 Not tainted 4.18.0-rc4-next-20180711+ #4 [ 223.781928] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 223.791289] Call Trace: [ 223.793861] dump_stack+0x1c9/0x2b4 [ 223.797472] ? dump_stack_print_info.cold.2+0x52/0x52 [ 223.802647] ? _raw_spin_unlock_irq+0x27/0x70 [ 223.807127] ? finish_task_switch+0x1d3/0x870 [ 223.811615] should_fail.cold.4+0xa/0x11 [ 223.815659] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 223.820745] ? kasan_check_write+0x14/0x20 [ 223.824968] ? __schedule+0x884/0x1ed0 [ 223.828838] ? __sched_text_start+0x8/0x8 [ 223.832969] ? lock_acquire+0x1e4/0x540 [ 223.836929] ? is_bpf_text_address+0xae/0x170 [ 223.841405] ? lock_downgrade+0x8f0/0x8f0 [ 223.845538] ? lock_release+0xa30/0xa30 [ 223.849501] ? kasan_check_read+0x11/0x20 [ 223.853635] ? rcu_is_watching+0x8c/0x150 [ 223.857769] ? check_same_owner+0x340/0x340 [ 223.862070] ? is_bpf_text_address+0xd7/0x170 [ 223.866554] __alloc_pages_nodemask+0x36e/0xdb0 [ 223.873814] ? __alloc_pages_slowpath+0x2d00/0x2d00 [ 223.878817] ? save_stack+0x43/0xd0 [ 223.882429] ? kasan_kmalloc+0xc4/0xe0 [ 223.886298] ? __kmalloc_node+0x47/0x70 [ 223.890258] ? blk_mq_alloc_rq_map+0x10d/0x220 [ 223.894827] ? loop_add+0x33d/0x9d0 [ 223.898432] ? loop_control_ioctl+0x199/0x540 [ 223.902910] ? do_vfs_ioctl+0x1de/0x1720 [ 223.906948] ? ksys_ioctl+0xa9/0xd0 [ 223.910557] ? __x64_sys_ioctl+0x73/0xb0 [ 223.914600] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 223.920120] ? find_next_bit+0x104/0x130 [ 223.924164] ? cpumask_next+0x24/0x30 [ 223.927946] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 223.932953] ? blk_mq_hw_queue_to_node+0xd9/0x180 [ 223.937783] blk_mq_alloc_rqs+0x31f/0x9c0 [ 223.941913] ? kasan_unpoison_shadow+0x35/0x50 [ 223.946479] ? kasan_kmalloc+0xc4/0xe0 [ 223.950348] ? blk_mq_alloc_rq_map+0x220/0x220 [ 223.954910] ? kmem_cache_alloc_node_trace+0x302/0x770 [ 223.960166] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 223.965685] ? kasan_unpoison_shadow+0x35/0x50 [ 223.970248] ? __kmalloc_node+0x47/0x70 [ 223.974209] blk_mq_sched_alloc_tags.isra.13+0xd8/0x160 [ 223.979555] blk_mq_init_sched+0x1e1/0x5a0 [ 223.983773] elevator_init_mq+0xd7/0x160 [ 223.987816] blk_mq_init_allocated_queue+0x1024/0x16c0 [ 223.993075] ? blk_mq_map_swqueue+0xaf0/0xaf0 [ 223.997555] ? __mutex_init+0x1f7/0x290 [ 224.001517] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 224.007040] ? __blk_mq_alloc_rq_map+0x17d/0x2e0 [ 224.011784] ? blk_mq_update_nr_hw_queues+0x510/0x510 [ 224.016957] blk_mq_init_queue+0x63/0xb0 [ 224.020999] loop_add+0x33d/0x9d0 [ 224.024434] ? loop_lookup+0x105/0x230 [ 224.028307] ? loop_queue_rq+0x660/0x660 [ 224.032350] loop_control_ioctl+0x199/0x540 [ 224.036655] ? ksys_dup3+0x690/0x690 [ 224.040347] ? loop_add+0x9d0/0x9d0 [ 224.043960] ? kasan_check_write+0x14/0x20 [ 224.048187] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 224.053096] ? fsnotify+0xbac/0x14e0 [ 224.056798] ? vfs_write+0x2f3/0x560 [ 224.060490] ? loop_add+0x9d0/0x9d0 [ 224.064100] do_vfs_ioctl+0x1de/0x1720 [ 224.067968] ? ioctl_preallocate+0x300/0x300 [ 224.072358] ? __fget_light+0x2f7/0x440 [ 224.076312] ? fget_raw+0x20/0x20 [ 224.079743] ? vfs_write+0x2ad/0x560 [ 224.083438] ? __sanitizer_cov_trace_pc+0x26/0x50 [ 224.088263] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 224.093017] ? security_file_ioctl+0x94/0xc0 [ 224.097409] ksys_ioctl+0xa9/0xd0 [ 224.100846] __x64_sys_ioctl+0x73/0xb0 [ 224.104714] do_syscall_64+0x1b9/0x820 [ 224.108581] ? syscall_slow_exit_work+0x500/0x500 [ 224.113404] ? syscall_return_slowpath+0x5e0/0x5e0 [ 224.118314] ? syscall_return_slowpath+0x31d/0x5e0 [ 224.123224] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 224.128741] ? prepare_exit_to_usermode+0x291/0x3b0 [ 224.133737] ? perf_trace_sys_enter+0xb10/0xb10 [ 224.138387] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 224.143214] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 224.148381] RIP: 0033:0x455e29 [ 224.151546] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 224.170712] RSP: 002b:00007fc746a7ec68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 224.178398] RAX: ffffffffffffffda RBX: 00007fc746a7f6d4 RCX: 0000000000455e29 [ 224.185646] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000014 [ 224.192905] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 224.200154] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015 [ 224.207403] R13: 00000000004be3c0 R14: 00000000004ccd10 R15: 0000000000000026 11:10:42 executing program 5: r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/sys/net/ipv4/vs/secure_tcp\x00', 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/syz0\x00', 0x1ff) ioctl$KDDISABIO(r0, 0x4b37) write$binfmt_script(0xffffffffffffffff, &(0x7f00000003c0)=ANY=[@ANYBLOB], 0x0) fallocate(r1, 0x1, 0xd800000, 0x10000101) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'vcan0\x00'}) ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000140)={@empty, 0x71}) ioctl$EVIOCGMASK(0xffffffffffffffff, 0x80104592, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)}) socket(0x10, 0x0, 0x0) ioctl$sock_ifreq(0xffffffffffffffff, 0x0, &(0x7f0000000000)={"73697430000080000000000000000002", @ifru_ivalue}) 11:10:43 executing program 7 (fault-call:6 fault-nth:39): socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) 11:10:43 executing program 2: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=ANY=[@ANYBLOB="24000000180000000000ffdb443743050000009ea0b50011000008000200ac141418"], 0x24}, 0x1}, 0x0) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) 11:10:43 executing program 4: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r2 = syz_open_dev$amidi(&(0x7f0000000240)='/dev/amidi#\x00', 0x5, 0x240102) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000300)=ANY=[@ANYBLOB="240000001800000000000000ffdbdf2502000007008f094679935bea8cba03ff05001100000800070000001418"], 0x24}, 0x1}, 0x8050) r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000440)='/dev/loop-control\x00', 0x204, 0x0) socketpair$inet6_dccp(0xa, 0x6, 0x0, &(0x7f00000002c0)) ioctl$KVM_SET_CPUID2(r1, 0x4008ae90, &(0x7f00000004c0)={0x2, 0x0, [{0x80000007, 0x9, 0x2, 0x81, 0x9, 0x7, 0xff}, {0xc000001b, 0x6e0, 0x2, 0x8, 0x80, 0xa3, 0xa2}]}) r4 = syz_open_dev$vcsa(&(0x7f0000000480)='/dev/vcsa#\x00', 0xe5d, 0x2000) ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0) fcntl$F_SET_FILE_RW_HINT(r2, 0x40e, &(0x7f0000000380)=0x3) syz_open_dev$mice(&(0x7f00000001c0)='/dev/input/mice\x00', 0x0, 0x40) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) write$P9_RREADDIR(r1, &(0x7f0000000580)={0x68, 0x29, 0x1, {0xff, [{{0x10, 0x0, 0x6}, 0x3, 0x3, 0x7, './file0'}, {{0x94, 0x2}, 0x2, 0x6, 0x7, './file0'}, {{0x2, 0x1, 0x2}, 0x5, 0x819, 0x7, './file0'}]}}, 0x68) setsockopt$inet_sctp_SCTP_AUTH_CHUNK(r4, 0x84, 0x15, &(0x7f0000000540)={0x10000}, 0x1) 11:10:43 executing program 1: r0 = socket(0x0, 0x0, 0x0) dup2(r0, r0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1") syz_open_dev$loop(&(0x7f0000000340)='/dev/loop#\x00', 0x6, 0x40) sendmsg$key(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="020907000700000069bd7000ffdbdf25050007003ba000000a004e220300000000000000000000000000ffff77ffffff0000000000000000"], 0x38}, 0x1}, 0x40) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) socket$nl_generic(0x10, 0x3, 0x10) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)) lsetxattr(&(0x7f0000000240)='./file0\x00', &(0x7f0000000280)=@known='trusted.syz\x00', &(0x7f0000000300)='ip_vti0\x00', 0x8, 0x1) [ 224.403995] FAULT_INJECTION: forcing a failure. [ 224.403995] name failslab, interval 1, probability 0, space 0, times 0 [ 224.415549] CPU: 1 PID: 13891 Comm: syz-executor7 Not tainted 4.18.0-rc4-next-20180711+ #4 [ 224.423950] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 224.433296] Call Trace: [ 224.435885] dump_stack+0x1c9/0x2b4 [ 224.439531] ? dump_stack_print_info.cold.2+0x52/0x52 [ 224.444725] ? trace_hardirqs_on+0xd/0x10 [ 224.448879] should_fail.cold.4+0xa/0x11 [ 224.452945] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 224.458049] ? lock_repin_lock+0x430/0x430 [ 224.462285] ? kasan_check_write+0x14/0x20 [ 224.466530] ? __schedule+0x884/0x1ed0 [ 224.470423] ? __sched_text_start+0x8/0x8 [ 224.474572] ? blk_mq_sched_alloc_tags.isra.13+0x7b/0x160 [ 224.480117] ? blk_mq_init_sched+0x1e1/0x5a0 [ 224.484534] ? blk_mq_init_allocated_queue+0x1024/0x16c0 [ 224.489986] ? blk_mq_init_queue+0x63/0xb0 [ 224.494218] ? loop_add+0x33d/0x9d0 [ 224.497850] ? loop_control_ioctl+0x199/0x540 [ 224.502344] ? do_vfs_ioctl+0x1de/0x1720 [ 224.506400] ? ksys_ioctl+0xa9/0xd0 [ 224.510027] ? __x64_sys_ioctl+0x73/0xb0 [ 224.514097] ? do_syscall_64+0x1b9/0x820 [ 224.518161] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 224.523528] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 224.528296] ? check_same_owner+0x340/0x340 [ 224.532622] __should_failslab+0x124/0x180 [ 224.536864] should_failslab+0x9/0x14 [ 224.540670] kmem_cache_alloc_node_trace+0x26f/0x770 [ 224.545782] ? kasan_unpoison_shadow+0x35/0x50 [ 224.550367] __kmalloc_node+0x33/0x70 11:10:43 executing program 0: sched_setaffinity(0x0, 0x8, &(0x7f0000000080)=0x1) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) r0 = memfd_create(&(0x7f0000000100)='dev ', 0x0) write(r0, &(0x7f0000000040)="16", 0x1) sendfile(r0, r0, &(0x7f0000001000), 0xffff) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) sendfile(r0, r0, &(0x7f0000000000)=0x2000000, 0x100000) tkill(r1, 0x15) [ 224.554175] blk_mq_alloc_rq_map+0x10d/0x220 [ 224.558589] blk_mq_sched_alloc_tags.isra.13+0x7b/0x160 [ 224.563957] blk_mq_init_sched+0x1e1/0x5a0 [ 224.568202] elevator_init_mq+0xd7/0x160 [ 224.572273] blk_mq_init_allocated_queue+0x1024/0x16c0 [ 224.577556] ? blk_mq_map_swqueue+0xaf0/0xaf0 [ 224.582053] ? __mutex_init+0x1f7/0x290 [ 224.586027] ? retint_kernel+0x10/0x10 [ 224.589924] ? blk_mq_alloc_rq_map+0x115/0x220 [ 224.594512] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 224.600048] ? __blk_mq_alloc_rq_map+0x17d/0x2e0 11:10:43 executing program 5: r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/sys/net/ipv4/vs/secure_tcp\x00', 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/syz0\x00', 0x1ff) ioctl$KDDISABIO(r0, 0x4b37) write$binfmt_script(0xffffffffffffffff, &(0x7f00000003c0)=ANY=[@ANYBLOB], 0x0) fallocate(r1, 0x1, 0x200000000, 0x10000101) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'vcan0\x00'}) ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000140)={@empty, 0x71}) ioctl$EVIOCGMASK(0xffffffffffffffff, 0x80104592, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)}) socket(0x10, 0x0, 0x0) ioctl$sock_ifreq(0xffffffffffffffff, 0x0, &(0x7f0000000000)={"73697430000080000000000000000002", @ifru_ivalue}) [ 224.604808] ? blk_mq_update_nr_hw_queues+0x510/0x510 [ 224.609999] blk_mq_init_queue+0x63/0xb0 [ 224.614061] loop_add+0x33d/0x9d0 [ 224.617510] ? loop_lookup+0x105/0x230 [ 224.621395] ? loop_queue_rq+0x660/0x660 [ 224.625449] ? loop_control_ioctl+0x15d/0x540 [ 224.629941] loop_control_ioctl+0x199/0x540 [ 224.634260] ? ksys_dup3+0x690/0x690 [ 224.637972] ? loop_add+0x9d0/0x9d0 [ 224.641595] ? kasan_check_write+0x14/0x20 [ 224.645819] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 224.650749] ? fsnotify+0xbac/0x14e0 [ 224.654452] ? vfs_write+0x2f3/0x560 [ 224.658163] ? loop_add+0x9d0/0x9d0 [ 224.661790] do_vfs_ioctl+0x1de/0x1720 [ 224.665676] ? fsnotify_first_mark+0x350/0x350 [ 224.670251] ? __fsnotify_parent+0xcc/0x420 [ 224.674573] ? ioctl_preallocate+0x300/0x300 [ 224.678993] ? __fget_light+0x2f7/0x440 [ 224.682962] ? fget_raw+0x20/0x20 [ 224.686414] ? __sb_end_write+0xac/0xe0 [ 224.690398] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 224.695928] ? fput+0x130/0x1a0 [ 224.699201] ? ksys_write+0x1ae/0x260 [ 224.703004] ? security_file_ioctl+0x94/0xc0 [ 224.707404] ksys_ioctl+0xa9/0xd0 [ 224.710846] __x64_sys_ioctl+0x73/0xb0 [ 224.714748] do_syscall_64+0x1b9/0x820 [ 224.718640] ? syscall_slow_exit_work+0x500/0x500 [ 224.723469] ? syscall_return_slowpath+0x5e0/0x5e0 [ 224.728390] ? syscall_return_slowpath+0x31d/0x5e0 [ 224.733321] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 224.738859] ? prepare_exit_to_usermode+0x291/0x3b0 [ 224.743860] ? perf_trace_sys_enter+0xb10/0xb10 [ 224.748519] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 224.753349] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 224.758519] RIP: 0033:0x455e29 [ 224.761686] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 224.780846] RSP: 002b:00007fc746a7ec68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 224.788532] RAX: ffffffffffffffda RBX: 00007fc746a7f6d4 RCX: 0000000000455e29 [ 224.795781] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000014 [ 224.803033] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 224.810282] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015 [ 224.817538] R13: 00000000004be3c0 R14: 00000000004ccd10 R15: 0000000000000027 11:10:43 executing program 6: r0 = getpid() sched_setattr(r0, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x0, 0x3}, 0x0) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x0, 0x0) poll(&(0x7f00000001c0), 0x0, 0x80000000) ioctl$TCSETS(r1, 0x40045431, &(0x7f00003b9fdc)) ioctl$TIOCPKT(r1, 0x5420, &(0x7f0000000080)=0x61) read(r1, &(0x7f0000000040)=""/11, 0xffed) r2 = syz_open_pts(r1, 0x0) ioctl$TCXONC(r2, 0x540b, 0x0) 11:10:43 executing program 5: r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/sys/net/ipv4/vs/secure_tcp\x00', 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/syz0\x00', 0x1ff) ioctl$KDDISABIO(r0, 0x4b37) write$binfmt_script(0xffffffffffffffff, &(0x7f00000003c0)=ANY=[@ANYBLOB], 0x0) fallocate(r1, 0x1, 0x6c000, 0x10000101) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'vcan0\x00'}) ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000140)={@empty, 0x71}) ioctl$EVIOCGMASK(0xffffffffffffffff, 0x80104592, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)}) socket(0x10, 0x0, 0x0) ioctl$sock_ifreq(0xffffffffffffffff, 0x0, &(0x7f0000000000)={"73697430000080000000000000000002", @ifru_ivalue}) 11:10:43 executing program 3: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0xb0, 0x0, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x8050) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) ioctl$SCSI_IOCTL_GET_PCI(r0, 0x5387, &(0x7f0000000380)) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) 11:10:43 executing program 7 (fault-call:6 fault-nth:40): socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) 11:10:43 executing program 2: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0x0, 0x7, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x0) r1 = openat$zero(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/zero\x00', 0x101000, 0x0) ioctl$EVIOCGBITSW(r1, 0x80404525, &(0x7f0000000500)=""/202) setsockopt$bt_l2cap_L2CAP_CONNINFO(r0, 0x6, 0x2, &(0x7f0000000380)={0x1f06, 0x1, 0xfffffffffffffff8, 0x8}, 0x6) r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) getsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0x10, &(0x7f0000000400)={{{@in6=@remote, @in=@multicast2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6}, 0x0, @in6}}, &(0x7f00000000c0)=0xe8) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'yam0\x00', r3}) setsockopt$inet6_tcp_TCP_FASTOPEN_KEY(r1, 0x6, 0x21, &(0x7f0000000300)="8a6faffe508d63c39fdb360c083489ec", 0x10) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) 11:10:43 executing program 1: r0 = syz_open_dev$dmmidi(&(0x7f00000000c0)='/dev/dmmidi#\x00', 0x9, 0x280402) setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000280)={0x1, 0x2, 0x8000}, 0x4) r1 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1") ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) r3 = fcntl$dupfd(r2, 0x406, r1) ioctl$LOOP_GET_STATUS(r3, 0x4c03, &(0x7f00000001c0)) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)) 11:10:43 executing program 4: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0x0, 0x7, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x8050) setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0x7, &(0x7f00000001c0)={0x800, 0x5, 0xbcef, 0x1586}, 0x10) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) [ 225.225844] FAULT_INJECTION: forcing a failure. [ 225.225844] name failslab, interval 1, probability 0, space 0, times 0 [ 225.237287] CPU: 0 PID: 13926 Comm: syz-executor7 Not tainted 4.18.0-rc4-next-20180711+ #4 [ 225.245686] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 225.255028] Call Trace: [ 225.257600] dump_stack+0x1c9/0x2b4 [ 225.261215] ? dump_stack_print_info.cold.2+0x52/0x52 [ 225.266399] ? vprintk_func+0x81/0x117 [ 225.270277] ? printk+0xcb/0xcf [ 225.273541] should_fail.cold.4+0xa/0x11 [ 225.277601] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 225.282703] ? lock_repin_lock+0x430/0x430 [ 225.286941] ? kasan_check_write+0x14/0x20 [ 225.291166] ? __schedule+0x884/0x1ed0 [ 225.295047] ? __sched_text_start+0x8/0x8 [ 225.299201] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 225.303948] ? lock_acquire+0x1e4/0x540 [ 225.307912] ? fs_reclaim_acquire+0x20/0x20 [ 225.312226] ? lock_downgrade+0x8f0/0x8f0 [ 225.316360] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 225.321098] ? check_same_owner+0x340/0x340 [ 225.325404] __should_failslab+0x124/0x180 [ 225.329626] should_failslab+0x9/0x14 [ 225.333411] kmem_cache_alloc_node_trace+0x26f/0x770 [ 225.338497] ? loop_info64_from_compat+0x940/0x940 [ 225.343410] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 225.348407] ? blk_mq_alloc_rqs+0x7bc/0x9c0 [ 225.352710] elevator_alloc+0x82/0x200 [ 225.356580] dd_init_queue+0x9f/0x600 [ 225.360363] ? dd_exit_queue+0x250/0x250 [ 225.364409] ? blk_mq_sched_alloc_tags.isra.13+0xab/0x160 [ 225.369931] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 225.375451] ? blk_mq_sched_alloc_tags.isra.13+0xee/0x160 [ 225.380971] blk_mq_init_sched+0x27b/0x5a0 [ 225.385188] elevator_init_mq+0xd7/0x160 [ 225.389235] blk_mq_init_allocated_queue+0x1024/0x16c0 [ 225.394498] ? blk_mq_map_swqueue+0xaf0/0xaf0 [ 225.398972] ? __mutex_init+0x1f7/0x290 [ 225.402935] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 225.408452] ? __blk_mq_alloc_rq_map+0x17d/0x2e0 [ 225.413192] ? retint_kernel+0x10/0x10 [ 225.417060] ? blk_mq_update_nr_hw_queues+0x510/0x510 [ 225.422238] blk_mq_init_queue+0x63/0xb0 [ 225.426279] loop_add+0x33d/0x9d0 [ 225.429714] ? loop_lookup+0x105/0x230 [ 225.433581] ? loop_queue_rq+0x660/0x660 [ 225.437626] loop_control_ioctl+0x199/0x540 [ 225.441926] ? ksys_dup3+0x690/0x690 [ 225.445619] ? loop_add+0x9d0/0x9d0 [ 225.449228] ? kasan_check_write+0x14/0x20 [ 225.453441] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 225.458349] ? fsnotify+0xbac/0x14e0 [ 225.462045] ? vfs_write+0x2f3/0x560 [ 225.465740] ? loop_add+0x9d0/0x9d0 [ 225.469347] do_vfs_ioctl+0x1de/0x1720 [ 225.473217] ? fsnotify_first_mark+0x350/0x350 [ 225.477779] ? __fsnotify_parent+0xcc/0x420 [ 225.482079] ? ioctl_preallocate+0x300/0x300 [ 225.486469] ? __fget_light+0x2f7/0x440 [ 225.490424] ? fget_raw+0x20/0x20 [ 225.493861] ? __sb_end_write+0xac/0xe0 [ 225.497816] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 225.503335] ? fput+0x130/0x1a0 [ 225.506595] ? ksys_write+0x1ae/0x260 [ 225.510380] ? security_file_ioctl+0x94/0xc0 [ 225.514771] ksys_ioctl+0xa9/0xd0 [ 225.518205] __x64_sys_ioctl+0x73/0xb0 [ 225.522076] do_syscall_64+0x1b9/0x820 [ 225.525946] ? finish_task_switch+0x1d3/0x870 [ 225.530424] ? syscall_return_slowpath+0x5e0/0x5e0 [ 225.535332] ? syscall_return_slowpath+0x31d/0x5e0 [ 225.540240] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 225.545235] ? prepare_exit_to_usermode+0x291/0x3b0 [ 225.550234] ? perf_trace_sys_enter+0xb10/0xb10 [ 225.554884] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 225.559712] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 225.564883] RIP: 0033:0x455e29 [ 225.568051] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 225.587219] RSP: 002b:00007fc746a7ec68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 225.594908] RAX: ffffffffffffffda RBX: 00007fc746a7f6d4 RCX: 0000000000455e29 [ 225.602156] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000014 [ 225.609406] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 225.616665] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015 11:10:44 executing program 5: r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/sys/net/ipv4/vs/secure_tcp\x00', 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/syz0\x00', 0x1ff) ioctl$KDDISABIO(r0, 0x4b37) write$binfmt_script(0xffffffffffffffff, &(0x7f00000003c0)=ANY=[@ANYBLOB], 0x0) fallocate(r1, 0x1, 0x200700, 0x10000101) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'vcan0\x00'}) ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000140)={@empty, 0x71}) ioctl$EVIOCGMASK(0xffffffffffffffff, 0x80104592, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)}) socket(0x10, 0x0, 0x0) ioctl$sock_ifreq(0xffffffffffffffff, 0x0, &(0x7f0000000000)={"73697430000080000000000000000002", @ifru_ivalue}) [ 225.623917] R13: 00000000004be3c0 R14: 00000000004ccd10 R15: 0000000000000028 11:10:44 executing program 1: r0 = socket(0x0, 0x0, 0x0) r1 = syz_open_dev$audion(&(0x7f0000000280)='/dev/audio#\x00', 0x9, 0x0) ioctl$VT_OPENQRY(r1, 0x5600, &(0x7f0000000300)) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0) msync(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x4) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(r0, 0x40e, &(0x7f0000000200)=0x10000000000000) getsockopt$bt_BT_RCVMTU(r0, 0x112, 0xd, &(0x7f00000000c0)=0x40, &(0x7f00000001c0)=0x2) r3 = syz_open_dev$adsp(&(0x7f0000000240)='/dev/adsp#\x00', 0xffffffffffff8000, 0x103440) ioctl$RTC_VL_CLR(r3, 0x7014) 11:10:44 executing program 4: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000380)='/dev/snapshot\x00', 0x10000, 0x0) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000300)="9f00000000000400000000", r1}, 0xf3) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0x0, 0x7, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x8050) r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0) getsockopt$inet_sctp_SCTP_GET_PEER_ADDR_INFO(r0, 0x84, 0xf, &(0x7f0000000440)={0x0, @in={{0x2, 0x4e20, @local={0xac, 0x14, 0x14, 0xaa}}}, 0x7fff, 0x8, 0x4000000, 0x5, 0x100}, &(0x7f00000001c0)=0x98) setsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(r2, 0x84, 0x6, &(0x7f0000000500)={r4, @in={{0x2, 0x4e21, @local={0xac, 0x14, 0x14, 0xaa}}}}, 0x84) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$sock_FIOGETOWN(r1, 0x8903, &(0x7f00000005c0)=0x0) tkill(r5, 0x2e) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(r0, 0x40e, &(0x7f00000003c0)=0x3) 11:10:44 executing program 3: socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000440)=ANY=[@ANYBLOB="240000001800000000000000ffdbdf250200b0000003ff050011000008000200ac14141821aa891ad42659e474d1b95abd1a"], 0x24}, 0x1}, 0x8050) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000380)={'ip]vti\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) 11:10:44 executing program 0: sched_setaffinity(0x0, 0x8, &(0x7f0000000080)=0x1) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) r0 = memfd_create(&(0x7f0000000100)='dev ', 0x0) write(r0, &(0x7f0000000040)="16", 0x1) sendfile(r0, r0, &(0x7f0000001000), 0xffff) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) sendfile(r0, r0, &(0x7f0000000000)=0x1003, 0x100000) tkill(r1, 0x15) 11:10:44 executing program 7 (fault-call:6 fault-nth:41): socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) 11:10:44 executing program 2: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=ANY=[@ANYBLOB="3e000000180000000000000025020000070003ff05001100000800ffffff7f1418000000"], 0x24}, 0x1}, 0x0) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) [ 225.880222] FAULT_INJECTION: forcing a failure. [ 225.880222] name failslab, interval 1, probability 0, space 0, times 0 [ 225.891625] CPU: 1 PID: 13973 Comm: syz-executor7 Not tainted 4.18.0-rc4-next-20180711+ #4 [ 225.900023] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 225.909373] Call Trace: [ 225.911963] dump_stack+0x1c9/0x2b4 [ 225.915595] ? dump_stack_print_info.cold.2+0x52/0x52 [ 225.920793] ? __save_stack_trace+0x8d/0xf0 [ 225.925126] should_fail.cold.4+0xa/0x11 [ 225.929191] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 225.934299] ? save_stack+0x43/0xd0 [ 225.937926] ? kasan_kmalloc+0xc4/0xe0 [ 225.941812] ? kmem_cache_alloc_node_trace+0x150/0x770 [ 225.947093] ? elevator_alloc+0x82/0x200 [ 225.951152] ? dd_init_queue+0x9f/0x600 [ 225.955128] ? blk_mq_init_sched+0x27b/0x5a0 [ 225.959545] ? blk_mq_init_allocated_queue+0x1024/0x16c0 [ 225.964999] ? blk_mq_init_queue+0x63/0xb0 [ 225.969233] ? loop_add+0x33d/0x9d0 [ 225.972857] ? loop_control_ioctl+0x199/0x540 [ 225.977351] ? do_vfs_ioctl+0x1de/0x1720 [ 225.981422] ? ksys_ioctl+0xa9/0xd0 [ 225.985048] ? __x64_sys_ioctl+0x73/0xb0 [ 225.989115] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 225.994478] ? __sched_text_start+0x8/0x8 [ 225.998610] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 226.003349] ? lock_acquire+0x1e4/0x540 [ 226.007309] ? lock_acquire+0x1e4/0x540 [ 226.011264] ? fs_reclaim_acquire+0x20/0x20 [ 226.015569] ? lock_downgrade+0x8f0/0x8f0 [ 226.019701] ? lockdep_init_map+0x9/0x10 [ 226.023744] ? check_same_owner+0x340/0x340 [ 226.028048] ? rcu_note_context_switch+0x730/0x730 [ 226.032957] ? retint_kernel+0x10/0x10 [ 226.036829] __should_failslab+0x124/0x180 [ 226.041045] should_failslab+0x9/0x14 [ 226.044830] kmem_cache_alloc_node_trace+0x26f/0x770 [ 226.049916] ? write_comp_data+0xa/0x70 [ 226.053877] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 226.059395] dd_init_queue+0x111/0x600 [ 226.063262] ? dd_exit_queue+0x250/0x250 [ 226.067304] ? retint_kernel+0x10/0x10 [ 226.071177] ? blk_mq_init_sched+0x150/0x5a0 [ 226.075567] blk_mq_init_sched+0x27b/0x5a0 [ 226.079802] elevator_init_mq+0xd7/0x160 [ 226.083851] blk_mq_init_allocated_queue+0x1024/0x16c0 [ 226.089111] ? blk_mq_map_swqueue+0xaf0/0xaf0 [ 226.093589] ? __mutex_init+0x1f7/0x290 [ 226.097549] ? blk_mq_alloc_rq_map+0x142/0x220 [ 226.102115] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 226.107635] ? __blk_mq_alloc_rq_map+0x17d/0x2e0 [ 226.112378] ? blk_mq_update_nr_hw_queues+0x510/0x510 [ 226.117550] blk_mq_init_queue+0x63/0xb0 [ 226.121591] loop_add+0x33d/0x9d0 [ 226.125028] ? loop_lookup+0x105/0x230 [ 226.128903] ? loop_queue_rq+0x660/0x660 [ 226.132950] loop_control_ioctl+0x199/0x540 [ 226.137254] ? ksys_dup3+0x690/0x690 [ 226.140949] ? loop_add+0x9d0/0x9d0 [ 226.144571] ? kasan_check_write+0x14/0x20 [ 226.148789] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 226.153706] ? fsnotify+0xbac/0x14e0 [ 226.157399] ? vfs_write+0x2f3/0x560 [ 226.161092] ? loop_add+0x9d0/0x9d0 [ 226.164702] do_vfs_ioctl+0x1de/0x1720 [ 226.168569] ? ioctl_preallocate+0x300/0x300 [ 226.173044] ? __fget_light+0x2f7/0x440 [ 226.176999] ? fget_raw+0x20/0x20 [ 226.180438] ? __sb_end_write+0xac/0xe0 [ 226.184399] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 226.189914] ? fput+0x130/0x1a0 [ 226.193185] ? ksys_write+0x1ae/0x260 [ 226.196969] ? security_file_ioctl+0x94/0xc0 [ 226.201357] ksys_ioctl+0xa9/0xd0 [ 226.204791] __x64_sys_ioctl+0x73/0xb0 [ 226.208662] do_syscall_64+0x1b9/0x820 [ 226.212531] ? syscall_slow_exit_work+0x500/0x500 [ 226.217357] ? syscall_return_slowpath+0x5e0/0x5e0 [ 226.222269] ? syscall_return_slowpath+0x31d/0x5e0 [ 226.227179] ? prepare_exit_to_usermode+0x291/0x3b0 [ 226.232180] ? perf_trace_sys_enter+0xb10/0xb10 [ 226.236836] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 226.241663] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 226.246831] RIP: 0033:0x455e29 [ 226.249996] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 226.269172] RSP: 002b:00007fc746a7ec68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 226.276862] RAX: ffffffffffffffda RBX: 00007fc746a7f6d4 RCX: 0000000000455e29 [ 226.284110] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000014 [ 226.291358] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 226.298610] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015 [ 226.305860] R13: 00000000004be3c0 R14: 00000000004ccd10 R15: 0000000000000029 11:10:45 executing program 3: r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000380)='/dev/sequencer\x00', 0x2040, 0x0) ioctl$KVM_REINJECT_CONTROL(r0, 0xae71, &(0x7f0000000440)={0x84}) socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=ANY=[@ANYBLOB="240000001800000000000000ffdbdf250180b0000003ff050011000008000200ac141418"], 0x24}, 0x1}, 0x8050) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") r2 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r2, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r3 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r3, &(0x7f0000000240)={&(0x7f0000000340)={0x10}, 0xc, &(0x7f0000000380)={&(0x7f0000000080)=@ipv6_getroute={0x24, 0x1a, 0x1, 0x0, 0x0, {0xa}, [@RTA_OIF={0x8, 0x4}]}, 0x24}, 0x1}, 0x0) ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(r2, 0x40e, &(0x7f00000003c0)=0x2) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) 11:10:45 executing program 7 (fault-call:6 fault-nth:42): socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) [ 226.458193] FAULT_INJECTION: forcing a failure. [ 226.458193] name failslab, interval 1, probability 0, space 0, times 0 [ 226.469547] CPU: 1 PID: 14003 Comm: syz-executor7 Not tainted 4.18.0-rc4-next-20180711+ #4 [ 226.477947] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 226.487295] Call Trace: [ 226.489889] dump_stack+0x1c9/0x2b4 [ 226.493522] ? dump_stack_print_info.cold.2+0x52/0x52 [ 226.498728] should_fail.cold.4+0xa/0x11 [ 226.502794] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 226.507897] ? retint_kernel+0x10/0x10 [ 226.511795] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 226.516556] ? retint_kernel+0x10/0x10 [ 226.520448] ? lock_acquire+0x25f/0x540 [ 226.524426] ? fs_reclaim_acquire+0x20/0x20 [ 226.528755] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 226.533519] ? retint_kernel+0x10/0x10 [ 226.537418] ? rcu_note_context_switch+0x730/0x730 [ 226.542359] __should_failslab+0x124/0x180 [ 226.546597] should_failslab+0x9/0x14 [ 226.550401] kmem_cache_alloc_node_trace+0x26f/0x770 [ 226.555509] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 226.560271] __alloc_disk_node+0xc9/0x510 [ 226.564420] ? disk_expand_part_tbl+0x3d0/0x3d0 [ 226.569092] loop_add+0x420/0x9d0 [ 226.572547] ? loop_queue_rq+0x660/0x660 [ 226.576612] loop_control_ioctl+0x199/0x540 [ 226.580931] ? loop_add+0x9d0/0x9d0 [ 226.584563] ? retint_kernel+0x10/0x10 [ 226.588457] ? loop_add+0x9d0/0x9d0 [ 226.592087] do_vfs_ioctl+0x1de/0x1720 [ 226.595983] ? fsnotify_first_mark+0x350/0x350 [ 226.600569] ? __fsnotify_parent+0xcc/0x420 [ 226.604896] ? ioctl_preallocate+0x300/0x300 [ 226.609311] ? __fget_light+0x2f7/0x440 [ 226.613283] ? fget_raw+0x20/0x20 [ 226.616744] ? __sb_end_write+0xac/0xe0 [ 226.620716] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 226.626243] ? fput+0x130/0x1a0 [ 226.629504] ? ksys_write+0x1ae/0x260 [ 226.633282] ? retint_kernel+0x10/0x10 [ 226.637154] ? security_file_ioctl+0x94/0xc0 [ 226.641542] ksys_ioctl+0xa9/0xd0 [ 226.644976] __x64_sys_ioctl+0x73/0xb0 [ 226.648844] do_syscall_64+0x1b9/0x820 [ 226.652709] ? syscall_slow_exit_work+0x500/0x500 [ 226.657531] ? syscall_return_slowpath+0x5e0/0x5e0 [ 226.662538] ? syscall_return_slowpath+0x31d/0x5e0 [ 226.667447] ? prepare_exit_to_usermode+0x291/0x3b0 [ 226.672440] ? perf_trace_sys_enter+0xb10/0xb10 [ 226.677086] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 226.681912] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 226.687081] RIP: 0033:0x455e29 [ 226.690248] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 11:10:45 executing program 6: r0 = getpid() sched_setattr(r0, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x0, 0x3}, 0x0) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x0, 0x0) poll(&(0x7f00000001c0), 0x0, 0x80000000) ioctl$TCSETS(r1, 0x40045431, &(0x7f00003b9fdc)) ioctl$TIOCPKT(r1, 0x5420, &(0x7f0000000080)=0x61) read(r1, &(0x7f0000000040)=""/11, 0xffed) r2 = syz_open_pts(r1, 0x0) ioctl$TCXONC(r2, 0x540a, 0x2) 11:10:45 executing program 4: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0x0, 0x7, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x8050) r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) ioctl$SNDRV_TIMER_IOCTL_PARAMS(r1, 0x40505412, &(0x7f0000000440)={0x5, 0x4, 0x10001, 0x0, 0xd}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) 11:10:45 executing program 2: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0x0, 0x7, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x0) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) readahead(r1, 0x800, 0x2) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) 11:10:45 executing program 5: r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/sys/net/ipv4/vs/secure_tcp\x00', 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/syz0\x00', 0x1ff) ioctl$KDDISABIO(r0, 0x4b37) write$binfmt_script(0xffffffffffffffff, &(0x7f00000003c0)=ANY=[@ANYBLOB], 0x0) fallocate(r1, 0x1, 0xffaf, 0x10000101) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'vcan0\x00'}) ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000140)={@empty, 0x71}) ioctl$EVIOCGMASK(0xffffffffffffffff, 0x80104592, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)}) socket(0x10, 0x0, 0x0) ioctl$sock_ifreq(0xffffffffffffffff, 0x0, &(0x7f0000000000)={"73697430000080000000000000000002", @ifru_ivalue}) 11:10:45 executing program 1: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1") clock_gettime(0x0, &(0x7f0000000200)={0x0, 0x0}) sendmsg$can_bcm(r0, &(0x7f0000000340)={&(0x7f00000001c0)={0x1d}, 0x10, &(0x7f0000000300)={&(0x7f0000000400)=ANY=[@ANYBLOB="0700000018055e3c3c2a371ff923f50bbd710ae23f0000000000009c32d421ddfe17fb7e9eb5addefb61d90fd7820c", @ANYRES64=r2, @ANYRES64=r3/1000+30000, @ANYRES64=0x0, @ANYRES64=0x0, @ANYBLOB="000000c00100000004000000070200008d2c4911000e7531"], 0x48}, 0x1, 0x0, 0x0, 0x20000800}, 0x40000) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) setsockopt$SO_VM_SOCKETS_BUFFER_SIZE(r0, 0x28, 0x0, &(0x7f00000000c0), 0x8) accept4$vsock_stream(r0, &(0x7f0000000380)={0x28, 0x0, 0x2711, @hyper}, 0x10, 0x800) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)) 11:10:45 executing program 0: sched_setaffinity(0x0, 0x8, &(0x7f0000000080)=0x1) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) r0 = memfd_create(&(0x7f0000000100)='dev ', 0x0) write(r0, &(0x7f0000000040)="16", 0x1) sendfile(r0, r0, &(0x7f0000001000), 0xffff) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) sendfile(r0, r0, &(0x7f0000000000)=0x2, 0x100000) tkill(r1, 0x15) [ 226.709385] RSP: 002b:00007fc746a7ec68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 226.717072] RAX: ffffffffffffffda RBX: 00007fc746a7f6d4 RCX: 0000000000455e29 [ 226.724321] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000014 [ 226.731584] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 226.738842] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015 [ 226.746093] R13: 00000000004be3c0 R14: 00000000004ccd10 R15: 000000000000002a 11:10:45 executing program 3: socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=ANY=[@ANYBLOB="240000001800000000000000ffdbdf250200b0000003ff050011000008000200acf11418"], 0x24}, 0x1}, 0x8050) openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) 11:10:45 executing program 7 (fault-call:6 fault-nth:43): socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) 11:10:45 executing program 2: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0x0, 0x7, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x66}, 0x1}, 0x0) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) 11:10:45 executing program 4: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0x0, 0x7, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x8050) r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000300)={0x0, 0x18, 0xfa00, {0x3, &(0x7f00000001c0)={0xffffffffffffffff}, 0x13f}}, 0x20) write$RDMA_USER_CM_CMD_QUERY_ROUTE(r1, &(0x7f0000000380)={0x5, 0x10, 0xfa00, {&(0x7f0000000440), r3, 0x3}}, 0x18) ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) 11:10:45 executing program 1: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0xe4ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1, 0x1}, 0x44}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)) 11:10:45 executing program 3: socket(0x0, 0x0, 0x0) r0 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000480)=ANY=[@ANYBLOB="240000001800000000000000ffdbcf250200b0000003ff050011000008000200ac141418bb55ddd9e2fcaff0ea166c87fac1bc197a55f1a41386dd7f7a4d2b90c47ea86b4841f97dc03401389c708b8143395632feca6693d04fb925a4e396c1c0fd7b651a334b41888dc46ac09d5d5bb73a9146192b469ccfa67fcff6bbd44a459902f653c16cc365f6d9"], 0x24}, 0x1}, 0x8050) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(r0, 0x40e, &(0x7f0000000440)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) [ 226.976225] FAULT_INJECTION: forcing a failure. [ 226.976225] name failslab, interval 1, probability 0, space 0, times 0 [ 226.988094] CPU: 0 PID: 14030 Comm: syz-executor7 Not tainted 4.18.0-rc4-next-20180711+ #4 [ 226.996499] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 227.005847] Call Trace: [ 227.008431] dump_stack+0x1c9/0x2b4 [ 227.012056] ? dump_stack_print_info.cold.2+0x52/0x52 [ 227.017246] ? check_memory_region+0x117/0x1b0 [ 227.021826] should_fail.cold.4+0xa/0x11 [ 227.025881] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 227.030967] ? pcpu_next_unpop+0xf0/0xf0 [ 227.035016] ? wait_for_completion+0x8d0/0x8d0 [ 227.039590] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 227.044340] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 227.049099] ? retint_kernel+0x10/0x10 [ 227.053010] ? lock_acquire+0x25f/0x540 [ 227.056988] ? fs_reclaim_acquire+0x20/0x20 [ 227.061298] ? lock_downgrade+0x8f0/0x8f0 [ 227.065430] ? check_same_owner+0x340/0x340 [ 227.069733] ? pcpu_balance_workfn+0x1700/0x1700 [ 227.074471] ? rcu_note_context_switch+0x730/0x730 [ 227.079386] __should_failslab+0x124/0x180 [ 227.083615] should_failslab+0x9/0x14 [ 227.087417] kmem_cache_alloc_node_trace+0x26f/0x770 [ 227.092535] ? retint_kernel+0x10/0x10 [ 227.096412] __kmalloc_node+0x33/0x70 [ 227.100205] disk_expand_part_tbl+0x24b/0x3d0 [ 227.104693] ? blk_free_devt+0x60/0x60 [ 227.108584] __alloc_disk_node+0x177/0x510 [ 227.112818] ? do_raw_spin_lock+0xc1/0x200 [ 227.117053] ? disk_expand_part_tbl+0x3d0/0x3d0 [ 227.121708] ? trace_hardirqs_on+0xd/0x10 [ 227.125851] ? blk_queue_flag_set+0xf6/0x160 [ 227.130256] loop_add+0x420/0x9d0 [ 227.133704] ? loop_queue_rq+0x660/0x660 [ 227.137783] loop_control_ioctl+0x199/0x540 [ 227.142091] ? ksys_dup3+0x690/0x690 [ 227.145790] ? loop_add+0x9d0/0x9d0 [ 227.149405] ? kasan_check_write+0x14/0x20 [ 227.153634] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 227.158550] ? fsnotify+0xbac/0x14e0 [ 227.162251] ? vfs_write+0x2f3/0x560 [ 227.165960] ? loop_add+0x9d0/0x9d0 [ 227.169572] do_vfs_ioctl+0x1de/0x1720 [ 227.173447] ? fsnotify_first_mark+0x350/0x350 [ 227.178021] ? __fsnotify_parent+0xcc/0x420 [ 227.182336] ? ioctl_preallocate+0x300/0x300 [ 227.186732] ? __fget_light+0x2f7/0x440 [ 227.190689] ? fget_raw+0x20/0x20 [ 227.194120] ? __sb_end_write+0xac/0xe0 [ 227.198081] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 227.203615] ? fput+0x130/0x1a0 [ 227.206884] ? ksys_write+0x1ae/0x260 [ 227.210671] ? security_file_ioctl+0x94/0xc0 [ 227.215064] ksys_ioctl+0xa9/0xd0 [ 227.218501] __x64_sys_ioctl+0x73/0xb0 [ 227.222377] do_syscall_64+0x1b9/0x820 [ 227.226249] ? syscall_slow_exit_work+0x500/0x500 [ 227.231084] ? syscall_return_slowpath+0x5e0/0x5e0 [ 227.236001] ? syscall_return_slowpath+0x31d/0x5e0 [ 227.240927] ? prepare_exit_to_usermode+0x291/0x3b0 [ 227.245930] ? perf_trace_sys_enter+0xb10/0xb10 [ 227.250584] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 227.255418] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 227.260591] RIP: 0033:0x455e29 [ 227.263765] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 227.282967] RSP: 002b:00007fc746a7ec68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 227.290655] RAX: ffffffffffffffda RBX: 00007fc746a7f6d4 RCX: 0000000000455e29 [ 227.297904] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000014 [ 227.305166] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 227.312422] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015 [ 227.319669] R13: 00000000004be3c0 R14: 00000000004ccd10 R15: 000000000000002b 11:10:46 executing program 5: r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/sys/net/ipv4/vs/secure_tcp\x00', 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/syz0\x00', 0x1ff) ioctl$KDDISABIO(r0, 0x4b37) write$binfmt_script(0xffffffffffffffff, &(0x7f00000003c0)=ANY=[@ANYBLOB], 0x0) fallocate(r1, 0x1, 0xa0060000000000, 0x10000101) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'vcan0\x00'}) ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000140)={@empty, 0x71}) ioctl$EVIOCGMASK(0xffffffffffffffff, 0x80104592, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)}) socket(0x10, 0x0, 0x0) ioctl$sock_ifreq(0xffffffffffffffff, 0x0, &(0x7f0000000000)={"73697430000080000000000000000002", @ifru_ivalue}) 11:10:46 executing program 7 (fault-call:6 fault-nth:44): socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) 11:10:46 executing program 2: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0x0, 0x7, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x4040000) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) setsockopt$inet6_udp_encap(r0, 0x11, 0x64, &(0x7f00000000c0)=0x1, 0x4) 11:10:46 executing program 4: r0 = socket(0x0, 0x0, 0x77b) ioctl(r0, 0x6, &(0x7f0000000240)="8371907086e156cbc1a6fb8397a2b060d4128624c59bec27") perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) setsockopt$inet6_tcp_TCP_REPAIR_WINDOW(r1, 0x6, 0x1d, &(0x7f0000000300)={0x1, 0x3, 0x3, 0x2, 0x4}, 0x14) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000500)=ANY=[@ANYBLOB="240000001800000000000000ffdbdf25020000070003ff050011000008000200ac1414182e9e50731a6fdf87adfe4872f306ddadfb669957fed8143d0a62429915b107fda577ffecdd81be061140b50e936b235b035a047a13641ed1a8c27896a4601daf2da66b1fb0c33643ab6f2900bec5cc29626816b2f9e0b151055a8763271348b057b27221c9177262acb0"], 0x24}, 0x1}, 0x8050) r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0) getsockopt$IP_VS_SO_GET_SERVICES(r1, 0x0, 0x482, &(0x7f0000000440)=""/142, &(0x7f00000001c0)=0x8e) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) [ 227.560627] FAULT_INJECTION: forcing a failure. [ 227.560627] name failslab, interval 1, probability 0, space 0, times 0 [ 227.572153] CPU: 1 PID: 14087 Comm: syz-executor7 Not tainted 4.18.0-rc4-next-20180711+ #4 [ 227.580548] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 227.589891] Call Trace: [ 227.592480] dump_stack+0x1c9/0x2b4 [ 227.596112] ? dump_stack_print_info.cold.2+0x52/0x52 [ 227.601309] should_fail.cold.4+0xa/0x11 [ 227.605377] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 227.610481] ? pcpu_alloc+0x190/0x13a0 [ 227.614385] ? retint_kernel+0x10/0x10 [ 227.618289] ? lock_acquire+0x1e4/0x540 [ 227.622266] ? fs_reclaim_acquire+0x20/0x20 [ 227.626592] ? lock_downgrade+0x8f0/0x8f0 [ 227.630751] ? check_same_owner+0x340/0x340 [ 227.635078] ? kasan_unpoison_shadow+0x35/0x50 [ 227.639661] ? rcu_note_context_switch+0x730/0x730 [ 227.644592] __should_failslab+0x124/0x180 [ 227.648830] should_failslab+0x9/0x14 [ 227.652634] kmem_cache_alloc_trace+0x2cb/0x780 [ 227.657307] ? part_uevent+0x120/0x120 [ 227.661194] ? percpu_ref_noop_confirm_switch+0x10/0x10 [ 227.666568] rand_initialize_disk+0x43/0xc0 [ 227.670894] __alloc_disk_node+0x2bc/0x510 [ 227.675128] ? do_raw_spin_lock+0xc1/0x200 [ 227.679362] ? disk_expand_part_tbl+0x3d0/0x3d0 [ 227.684036] ? blk_queue_flag_set+0xf6/0x160 [ 227.688445] loop_add+0x420/0x9d0 [ 227.691909] ? loop_queue_rq+0x660/0x660 [ 227.695973] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 227.700733] loop_control_ioctl+0x199/0x540 [ 227.705054] ? loop_add+0x9d0/0x9d0 [ 227.708678] ? do_vfs_ioctl+0xd1/0x1720 [ 227.712655] ? write_comp_data+0x11/0x70 [ 227.716716] ? loop_add+0x9d0/0x9d0 [ 227.720344] do_vfs_ioctl+0x1de/0x1720 [ 227.724237] ? fsnotify_first_mark+0x350/0x350 [ 227.728822] ? __fsnotify_parent+0xcc/0x420 [ 227.733145] ? ioctl_preallocate+0x300/0x300 [ 227.737559] ? __fget_light+0x2f7/0x440 [ 227.741535] ? fget_raw+0x20/0x20 [ 227.744988] ? __sb_end_write+0xac/0xe0 [ 227.748963] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 227.754499] ? fput+0x130/0x1a0 [ 227.757778] ? ksys_write+0x1ae/0x260 [ 227.761579] ? security_file_ioctl+0x94/0xc0 [ 227.765987] ksys_ioctl+0xa9/0xd0 [ 227.769438] __x64_sys_ioctl+0x73/0xb0 [ 227.773324] do_syscall_64+0x1b9/0x820 [ 227.777215] ? syscall_return_slowpath+0x5e0/0x5e0 [ 227.782144] ? syscall_return_slowpath+0x31d/0x5e0 [ 227.787072] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 227.792090] ? prepare_exit_to_usermode+0x291/0x3b0 [ 227.797109] ? perf_trace_sys_enter+0xb10/0xb10 [ 227.801776] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 227.806619] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 227.811809] RIP: 0033:0x455e29 [ 227.814985] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 227.834264] RSP: 002b:00007fc746a7ec68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 227.841971] RAX: ffffffffffffffda RBX: 00007fc746a7f6d4 RCX: 0000000000455e29 [ 227.849237] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000014 [ 227.856502] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 227.863764] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015 [ 227.871032] R13: 00000000004be3c0 R14: 00000000004ccd10 R15: 000000000000002c 11:10:46 executing program 6: r0 = getpid() sched_setattr(r0, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x0, 0x3}, 0x0) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x0, 0x0) poll(&(0x7f00000001c0), 0x0, 0x80000000) ioctl$TCSETS(r1, 0x40045431, &(0x7f00003b9fdc)) ioctl$TIOCPKT(r1, 0x5420, &(0x7f0000000080)=0x61) read(r1, &(0x7f0000000040)=""/11, 0xffed) r2 = syz_open_pts(r1, 0x0) ioctl$TCXONC(r2, 0x540a, 0x4000000000000000) 11:10:46 executing program 3: socket(0x0, 0x0, 0x0) r0 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0xb0, 0x0, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x8050) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(r0, 0x40e, &(0x7f00000003c0)=0x4) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) 11:10:46 executing program 1: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1") ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)) 11:10:46 executing program 2: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0x0, 0x7, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x0) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) fcntl$F_SET_FILE_RW_HINT(r0, 0x40e, &(0x7f00000000c0)=0x3) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) 11:10:46 executing program 5: r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/sys/net/ipv4/vs/secure_tcp\x00', 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/syz0\x00', 0x1ff) ioctl$KDDISABIO(r0, 0x4b37) write$binfmt_script(0xffffffffffffffff, &(0x7f00000003c0)=ANY=[@ANYBLOB], 0x0) fallocate(r1, 0x1, 0x8e000000, 0x10000101) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'vcan0\x00'}) ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000140)={@empty, 0x71}) ioctl$EVIOCGMASK(0xffffffffffffffff, 0x80104592, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)}) socket(0x10, 0x0, 0x0) ioctl$sock_ifreq(0xffffffffffffffff, 0x0, &(0x7f0000000000)={"73697430000080000000000000000002", @ifru_ivalue}) 11:10:46 executing program 4: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) fcntl$setflags(r0, 0x2, 0x1) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=ANY=[@ANYBLOB="240000000000000000000000ffdbdf25020000070003e0050011000008000200ac141418"], 0x24}, 0x1}, 0x8050) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl(r0, 0x2, &(0x7f0000000300)="295ee1311f16") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) 11:10:46 executing program 0: sched_setaffinity(0x0, 0x8, &(0x7f0000000080)=0x1) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) r0 = memfd_create(&(0x7f0000000100)='dev ', 0x0) write(r0, &(0x7f0000000040)="16", 0x1) sendfile(r0, r0, &(0x7f0000001000), 0xffff) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) sendfile(r0, r0, &(0x7f0000000000)=0x3f00000000000000, 0x100000) tkill(r1, 0x15) 11:10:46 executing program 7 (fault-call:6 fault-nth:45): socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) [ 228.275186] FAULT_INJECTION: forcing a failure. [ 228.275186] name failslab, interval 1, probability 0, space 0, times 0 [ 228.286656] CPU: 1 PID: 14115 Comm: syz-executor7 Not tainted 4.18.0-rc4-next-20180711+ #4 [ 228.295061] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 228.304411] Call Trace: [ 228.306998] dump_stack+0x1c9/0x2b4 [ 228.310626] ? dump_stack_print_info.cold.2+0x52/0x52 [ 228.315820] ? find_next_bit+0x104/0x130 [ 228.319892] should_fail.cold.4+0xa/0x11 [ 228.323958] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 228.329061] ? pcpu_next_unpop+0xf0/0xf0 [ 228.333121] ? wait_for_completion+0x8d0/0x8d0 [ 228.337710] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 228.342470] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 228.347236] ? retint_kernel+0x10/0x10 [ 228.351133] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 228.355899] ? retint_kernel+0x10/0x10 [ 228.359791] ? __should_failslab+0x8a/0x180 [ 228.364116] __should_failslab+0x124/0x180 [ 228.368359] should_failslab+0x9/0x14 [ 228.372162] kmem_cache_alloc_node_trace+0x26f/0x770 [ 228.377269] ? retint_kernel+0x10/0x10 [ 228.381164] __kmalloc_node+0x33/0x70 [ 228.384967] disk_expand_part_tbl+0x24b/0x3d0 [ 228.389462] ? blk_free_devt+0x60/0x60 [ 228.393355] __alloc_disk_node+0x177/0x510 [ 228.397592] ? do_raw_spin_lock+0xc1/0x200 [ 228.401830] ? disk_expand_part_tbl+0x3d0/0x3d0 [ 228.406500] ? trace_hardirqs_on+0xd/0x10 [ 228.410654] ? blk_queue_flag_set+0xf6/0x160 [ 228.415065] loop_add+0x420/0x9d0 [ 228.418517] ? loop_queue_rq+0x660/0x660 [ 228.422580] loop_control_ioctl+0x199/0x540 [ 228.426900] ? ksys_dup3+0x690/0x690 [ 228.430721] ? loop_add+0x9d0/0x9d0 [ 228.434354] ? kasan_check_write+0x14/0x20 [ 228.438583] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 228.443506] ? fsnotify+0xbac/0x14e0 [ 228.447220] ? vfs_write+0x2f3/0x560 [ 228.450932] ? loop_add+0x9d0/0x9d0 [ 228.454556] do_vfs_ioctl+0x1de/0x1720 [ 228.458446] ? ioctl_preallocate+0x300/0x300 [ 228.463109] ? __fget_light+0x2f7/0x440 [ 228.467079] ? fget_raw+0x20/0x20 [ 228.470530] ? fput+0x11/0x1a0 [ 228.473719] ? __sanitizer_cov_trace_pc+0x3f/0x50 [ 228.478558] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 228.484087] ? fput+0x130/0x1a0 [ 228.487364] ? ksys_write+0x1ae/0x260 [ 228.491164] ? security_file_ioctl+0x94/0xc0 [ 228.495569] ksys_ioctl+0xa9/0xd0 [ 228.499020] __x64_sys_ioctl+0x73/0xb0 [ 228.502903] do_syscall_64+0x1b9/0x820 [ 228.506785] ? finish_task_switch+0x1d3/0x870 [ 228.511280] ? syscall_return_slowpath+0x5e0/0x5e0 [ 228.516292] ? syscall_return_slowpath+0x31d/0x5e0 [ 228.521217] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 228.526233] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 228.531774] ? prepare_exit_to_usermode+0x291/0x3b0 [ 228.536787] ? perf_trace_sys_enter+0xb10/0xb10 [ 228.541455] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 228.546300] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 228.551484] RIP: 0033:0x455e29 [ 228.554659] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 11:10:47 executing program 7 (fault-call:6 fault-nth:46): socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) [ 228.573940] RSP: 002b:00007fc746a7ec68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 228.581648] RAX: ffffffffffffffda RBX: 00007fc746a7f6d4 RCX: 0000000000455e29 [ 228.588914] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000014 [ 228.596177] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 228.603439] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015 [ 228.610701] R13: 00000000004be3c0 R14: 00000000004ccd10 R15: 000000000000002d 11:10:47 executing program 1: ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f00000000c0)) r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)) r2 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000200)='IPVS\x00') sendmsg$IPVS_CMD_DEL_SERVICE(r0, &(0x7f0000000340)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000300)={&(0x7f0000000240)={0x64, r2, 0x100, 0x9, 0x25dfdbfc, {0x3}, [@IPVS_CMD_ATTR_DEST={0x50, 0x2, [@IPVS_DEST_ATTR_ADDR_FAMILY={0x8, 0xb, 0x2}, @IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0x100000001}, @IPVS_DEST_ATTR_PORT={0x8, 0x2, 0x4e20}, @IPVS_DEST_ATTR_INACT_CONNS={0x8, 0x8, 0x81}, @IPVS_DEST_ATTR_PERSIST_CONNS={0x8, 0x9, 0x1}, @IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv6=@mcast2={0xff, 0x2, [], 0x1}}, @IPVS_DEST_ATTR_ADDR_FAMILY={0x8, 0xb, 0x2}, @IPVS_DEST_ATTR_PORT={0x8, 0x2, 0x4e23}]}]}, 0x64}, 0x1, 0x0, 0x0, 0x4084}, 0x0) 11:10:47 executing program 4: r0 = socket(0x11, 0x0, 0x0) r1 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f00000001c0)={0x0, 0x4, 0x8}, 0xc) bpf$MAP_CREATE(0x0, &(0x7f0000000300)={0x1, 0x1, 0x0, 0x3, 0x24, r1, 0x7}, 0x2c) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0x0, 0x7, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x8050) r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) 11:10:47 executing program 2: r0 = socket(0x0, 0x0, 0x0) r1 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x0, 0x0, 0x7, 0x0, 0x3, 0xff, 0x5, 0x1100}, [@RTA_SRC={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x18}}]}, 0x24}, 0x1}, 0x0) r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0) ioctl$KVM_GET_CPUID2(r2, 0xc008ae91, &(0x7f0000000400)={0x9, 0x0, [{}, {}, {}, {}, {}, {}, {}, {}, {}]}) ioctl(r1, 0x0, &(0x7f0000000100)="295ee1311f") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) 11:10:47 executing program 3: socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='\x00'}, 0x10) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000100)=""/189) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)=ANY=[@ANYBLOB="0a3330a008e1be64b0440724001aeeaac1085a6bba007396919e250200141800000000000000000000000000000000"], 0x24}, 0x1}, 0x8050) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100)="295ee1311f16") ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000001940)={'ip_vti0\x00'}) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000003c0)=0x3) accept4(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xf4, 0xfffffffffffffffe) [ 228.759244] FAULT_INJECTION: forcing a failure. [ 228.759244] name failslab, interval 1, probability 0, space 0, times 0 [ 228.770706] CPU: 1 PID: 14132 Comm: syz-executor7 Not tainted 4.18.0-rc4-next-20180711+ #4 [ 228.779117] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 228.788468] Call Trace: [ 228.791055] dump_stack+0x1c9/0x2b4 [ 228.794681] ? dump_stack_print_info.cold.2+0x52/0x52 [ 228.799879] ? trace_hardirqs_on+0xd/0x10 [ 228.804035] should_fail.cold.4+0xa/0x11 [ 228.808100] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 228.813211] ? lock_repin_lock+0x430/0x430 [ 228.817450] ? kasan_check_write+0x14/0x20 [ 228.821689] ? __schedule+0x884/0x1ed0 [ 228.825585] ? __sched_text_start+0x8/0x8 [ 228.829734] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 228.835277] ? lock_acquire+0x1e4/0x540 [ 228.839255] ? fs_reclaim_acquire+0x20/0x20 [ 228.843582] ? lock_downgrade+0x8f0/0x8f0 [ 228.847730] ? check_same_owner+0x340/0x340 [ 228.852052] ? device_pm_sleep_init+0xf0/0x210 [ 228.856638] __should_failslab+0x124/0x180 [ 228.860871] should_failslab+0x9/0x14 [ 228.864673] __kmalloc_track_caller+0x2c4/0x760 [ 228.869340] ? pointer+0x990/0x990 [ 228.872885] ? kvasprintf_const+0x67/0x190 [ 228.877123] kvasprintf+0xb1/0x140 [ 228.880660] ? bust_spinlocks+0xe0/0xe0 [ 228.884633] ? kasan_kmalloc+0xc4/0xe0 [ 228.888528] kvasprintf_const+0x67/0x190 [ 228.892590] kobject_set_name_vargs+0x5b/0x150 [ 228.897177] device_create_groups_vargs+0x1ce/0x270 [ 228.902193] device_create_vargs+0x46/0x60 [ 228.906433] bdi_register_va.part.12+0xc3/0x9c0 [ 228.911105] ? __lockdep_init_map+0x105/0x590 [ 228.915596] ? cgwb_kill+0x640/0x640 [ 228.919311] ? lockdep_init_map+0x9/0x10 [ 228.923372] ? __init_waitqueue_head+0x9e/0x150 [ 228.928037] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 228.932799] ? retint_kernel+0x10/0x10 [ 228.936689] bdi_register+0x111/0x130 [ 228.940485] ? bdi_register_va+0x80/0x80 [ 228.944545] ? retint_kernel+0x10/0x10 [ 228.948440] bdi_register_owner+0x5e/0x100 [ 228.952674] __device_add_disk+0xf27/0x1360 [ 228.956993] ? blk_alloc_devt+0x2a0/0x2a0 [ 228.961133] ? vsnprintf+0x20d/0x1b60 [ 228.964934] ? pointer+0x990/0x990 [ 228.968472] ? retint_kernel+0x10/0x10 [ 228.972360] ? sprintf+0xb0/0xe0 [ 228.975719] ? scnprintf+0x130/0x130 [ 228.979432] ? debug_check_no_locks_freed+0x1e/0x280 [ 228.984529] ? __lockdep_init_map+0x105/0x590 [ 228.989022] device_add_disk+0x22/0x30 [ 228.992909] loop_add+0x71d/0x9d0 [ 228.996363] ? loop_queue_rq+0x660/0x660 [ 229.000427] loop_control_ioctl+0x199/0x540 [ 229.004743] ? ksys_dup3+0x690/0x690 [ 229.008454] ? loop_add+0x9d0/0x9d0 [ 229.012083] ? kasan_check_write+0x14/0x20 [ 229.016318] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 229.021246] ? fsnotify+0xbac/0x14e0 [ 229.024960] ? vfs_write+0x2f3/0x560 [ 229.028672] ? loop_add+0x9d0/0x9d0 [ 229.032299] do_vfs_ioctl+0x1de/0x1720 [ 229.036186] ? fsnotify_first_mark+0x350/0x350 [ 229.040760] ? __fsnotify_parent+0xcc/0x420 [ 229.045077] ? ioctl_preallocate+0x300/0x300 [ 229.049484] ? __fget_light+0x2f7/0x440 [ 229.053451] ? fget_raw+0x20/0x20 [ 229.056907] ? __sb_end_write+0xac/0xe0 [ 229.060884] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 229.066414] ? fput+0x130/0x1a0 [ 229.069693] ? ksys_write+0x1ae/0x260 [ 229.073493] ? security_file_ioctl+0x94/0xc0 [ 229.077895] ksys_ioctl+0xa9/0xd0 [ 229.081348] __x64_sys_ioctl+0x73/0xb0 [ 229.085234] do_syscall_64+0x1b9/0x820 [ 229.089118] ? finish_task_switch+0x1d3/0x870 [ 229.093613] ? syscall_return_slowpath+0x5e0/0x5e0 [ 229.098539] ? syscall_return_slowpath+0x31d/0x5e0 [ 229.103470] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 229.108482] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 229.114015] ? prepare_exit_to_usermode+0x291/0x3b0 [ 229.119027] ? perf_trace_sys_enter+0xb10/0xb10 [ 229.123691] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 229.128536] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 229.133720] RIP: 0033:0x455e29 [ 229.136895] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 229.156171] RSP: 002b:00007fc746a7ec68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 229.163881] RAX: ffffffffffffffda RBX: 00007fc746a7f6d4 RCX: 0000000000455e29 [ 229.171145] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000014 [ 229.178409] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 229.185672] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015 [ 229.192935] R13: 00000000004be3c0 R14: 00000000004ccd10 R15: 000000000000002e [ 229.201128] WARNING: CPU: 1 PID: 14132 at block/genhd.c:697 __device_add_disk+0x106a/0x1360 [ 229.209616] Kernel panic - not syncing: panic_on_warn set ... [ 229.209616] [ 229.216984] CPU: 1 PID: 14132 Comm: syz-executor7 Not tainted 4.18.0-rc4-next-20180711+ #4 [ 229.225376] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 229.234720] Call Trace: [ 229.237307] dump_stack+0x1c9/0x2b4 [ 229.240931] ? dump_stack_print_info.cold.2+0x52/0x52 [ 229.246124] panic+0x238/0x4e7 [ 229.249312] ? add_taint.cold.5+0x16/0x16 [ 229.253460] ? __warn.cold.8+0x148/0x1ba [ 229.257520] ? __device_add_disk+0x106a/0x1360 [ 229.262096] __warn.cold.8+0x163/0x1ba [ 229.265978] ? __device_add_disk+0x106a/0x1360 [ 229.270553] report_bug+0x252/0x2d0 [ 229.274176] do_error_trap+0x1fc/0x4d0 [ 229.278062] ? math_error+0x3e0/0x3e0 [ 229.281863] ? retint_kernel+0x10/0x10 [ 229.285754] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 229.290594] do_invalid_op+0x1b/0x20 [ 229.294302] invalid_op+0x14/0x20 [ 229.297750] RIP: 0010:__device_add_disk+0x106a/0x1360 [ 229.302923] Code: ff ff 48 89 df e8 a6 74 68 fe e9 c9 f0 ff ff e8 1c 75 68 fe e9 83 f4 ff ff e8 22 f0 29 fe 0f 0b e9 52 fb ff ff e8 16 f0 29 fe <0f> 0b e9 cb fe ff ff 4c 89 f7 e8 f7 74 68 fe e9 0c f1 ff ff e8 dd [ 229.322195] RSP: 0018:ffff880193107888 EFLAGS: 00010246 [ 229.328176] RAX: 0000000000040000 RBX: ffff8801aa2f6b00 RCX: ffffc90001e14000 [ 229.335439] RDX: 0000000000040000 RSI: ffffffff8352885a RDI: 0000000000000005 [ 229.342704] RBP: ffff880193107a58 R08: ffff8801abc8a540 R09: fffffbfff1256a28 [ 229.349970] R10: fffffbfff1256a28 R11: ffffffff892b5143 R12: 00000000fffffff4 [ 229.357238] R13: ffff880193107a30 R14: ffff8801aa2f7060 R15: ffff8801aa2f6b04 [ 229.364520] ? __device_add_disk+0x106a/0x1360 [ 229.369106] ? __device_add_disk+0x106a/0x1360 [ 229.373688] ? blk_alloc_devt+0x2a0/0x2a0 [ 229.377831] ? vsnprintf+0x20d/0x1b60 [ 229.381632] ? pointer+0x990/0x990 [ 229.385171] ? retint_kernel+0x10/0x10 [ 229.389063] ? sprintf+0xb0/0xe0 [ 229.392436] ? scnprintf+0x130/0x130 [ 229.396161] ? debug_check_no_locks_freed+0x1e/0x280 [ 229.401272] ? __lockdep_init_map+0x105/0x590 [ 229.405773] device_add_disk+0x22/0x30 11:10:48 executing program 5: r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/sys/net/ipv4/vs/secure_tcp\x00', 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/syz0\x00', 0x1ff) ioctl$KDDISABIO(r0, 0x4b37) write$binfmt_script(0xffffffffffffffff, &(0x7f00000003c0)=ANY=[@ANYBLOB], 0x0) fallocate(r1, 0x1, 0x4000, 0x10000101) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'vcan0\x00'}) ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000140)={@empty, 0x71}) ioctl$EVIOCGMASK(0xffffffffffffffff, 0x80104592, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)}) socket(0x10, 0x0, 0x0) ioctl$sock_ifreq(0xffffffffffffffff, 0x0, &(0x7f0000000000)={"73697430000080000000000000000002", @ifru_ivalue}) 11:10:48 executing program 0: sched_setaffinity(0x0, 0x8, &(0x7f0000000080)=0x1) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) r0 = memfd_create(&(0x7f0000000100)='dev ', 0x0) write(r0, &(0x7f0000000040)="16", 0x1) sendfile(r0, r0, &(0x7f0000001000), 0xffff) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) sendfile(r0, r0, &(0x7f0000000000)=0x3f000000, 0x100000) tkill(r1, 0x15) [ 229.409660] loop_add+0x71d/0x9d0 [ 229.413106] ? loop_queue_rq+0x660/0x660 [ 229.417167] loop_control_ioctl+0x199/0x540 [ 229.421488] ? ksys_dup3+0x690/0x690 [ 229.425201] ? loop_add+0x9d0/0x9d0 [ 229.428831] ? kasan_check_write+0x14/0x20 [ 229.433072] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 229.438000] ? fsnotify+0xbac/0x14e0 [ 229.441716] ? vfs_write+0x2f3/0x560 [ 229.445426] ? loop_add+0x9d0/0x9d0 [ 229.449058] do_vfs_ioctl+0x1de/0x1720 [ 229.452945] ? fsnotify_first_mark+0x350/0x350 [ 229.457526] ? __fsnotify_parent+0xcc/0x420 [ 229.461844] ? ioctl_preallocate+0x300/0x300 [ 229.466248] ? __fget_light+0x2f7/0x440 [ 229.470217] ? fget_raw+0x20/0x20 [ 229.473667] ? __sb_end_write+0xac/0xe0 [ 229.477654] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 229.483184] ? fput+0x130/0x1a0 [ 229.486459] ? ksys_write+0x1ae/0x260 [ 229.490260] ? security_file_ioctl+0x94/0xc0 [ 229.494673] ksys_ioctl+0xa9/0xd0 [ 229.498129] __x64_sys_ioctl+0x73/0xb0 [ 229.502018] do_syscall_64+0x1b9/0x820 [ 229.505901] ? finish_task_switch+0x1d3/0x870 11:10:48 executing program 5: r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/sys/net/ipv4/vs/secure_tcp\x00', 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/syz0\x00', 0x1ff) ioctl$KDDISABIO(r0, 0x4b37) write$binfmt_script(0xffffffffffffffff, &(0x7f00000003c0)=ANY=[@ANYBLOB], 0x0) fallocate(r1, 0x1, 0xffc7000000000000, 0x10000101) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'vcan0\x00'}) ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000140)={@empty, 0x71}) ioctl$EVIOCGMASK(0xffffffffffffffff, 0x80104592, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)}) socket(0x10, 0x0, 0x0) ioctl$sock_ifreq(0xffffffffffffffff, 0x0, &(0x7f0000000000)={"73697430000080000000000000000002", @ifru_ivalue}) [ 229.510391] ? syscall_return_slowpath+0x5e0/0x5e0 [ 229.515310] ? syscall_return_slowpath+0x31d/0x5e0 [ 229.520234] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 229.525246] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 229.530774] ? prepare_exit_to_usermode+0x291/0x3b0 [ 229.535793] ? perf_trace_sys_enter+0xb10/0xb10 [ 229.540464] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 229.545315] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 229.550500] RIP: 0033:0x455e29 [ 229.553681] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 229.572948] RSP: 002b:00007fc746a7ec68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 229.580636] RAX: ffffffffffffffda RBX: 00007fc746a7f6d4 RCX: 0000000000455e29 [ 229.587890] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000014 [ 229.595139] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 229.602391] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015 [ 229.609640] R13: 00000000004be3c0 R14: 00000000004ccd10 R15: 000000000000002e [ 229.617315] Dumping ftrace buffer: [ 229.620833] (ftrace buffer empty) [ 229.624518] Kernel Offset: disabled [ 229.628119] Rebooting in 86400 seconds..