002b:00007f664e1cac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 221.528808] RAX: ffffffffffffffda RBX: 00007f664e1cac90 RCX: 0000000000459829 [ 221.536080] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000 [ 221.543351] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000 [ 221.550616] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f664e1cb6d4 [ 221.557881] R13: 00000000004bfce6 R14: 00000000004d1a58 R15: 0000000000000004 [ 221.567316] overlayfs: failed to resolve './file1': -2 [ 221.569203] CPU: 0 PID: 10048 Comm: syz-executor.5 Not tainted 4.14.139 #35 [ 221.579727] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 221.589072] Call Trace: [ 221.591647] dump_stack+0x138/0x19c [ 221.595263] should_fail.cold+0x10f/0x159 [ 221.599401] should_failslab+0xdb/0x130 [ 221.603356] kmem_cache_alloc+0x2d7/0x780 [ 221.607483] ? wait_for_completion+0x420/0x420 [ 221.612051] __kernfs_new_node+0x70/0x420 [ 221.616183] kernfs_new_node+0x80/0xf0 [ 221.620055] __kernfs_create_file+0x46/0x323 [ 221.624445] sysfs_add_file_mode_ns+0x1e4/0x450 [ 221.629093] internal_create_group+0x232/0x7b0 [ 221.633657] sysfs_create_group+0x20/0x30 [ 221.637784] lo_ioctl+0x1176/0x1ce0 [ 221.641394] ? loop_probe+0x160/0x160 [ 221.645197] blkdev_ioctl+0x96b/0x1860 [ 221.649064] ? blkpg_ioctl+0x980/0x980 [ 221.652937] ? __might_sleep+0x93/0xb0 [ 221.656806] ? __fget+0x210/0x370 [ 221.660240] block_ioctl+0xde/0x120 [ 221.663846] ? blkdev_fallocate+0x3b0/0x3b0 [ 221.668147] do_vfs_ioctl+0x7ae/0x1060 [ 221.672018] ? selinux_file_mprotect+0x5d0/0x5d0 [ 221.676755] ? lock_downgrade+0x6e0/0x6e0 [ 221.680880] ? ioctl_preallocate+0x1c0/0x1c0 [ 221.685265] ? __fget+0x237/0x370 [ 221.688712] ? security_file_ioctl+0x89/0xb0 [ 221.693099] SyS_ioctl+0x8f/0xc0 [ 221.696444] ? do_vfs_ioctl+0x1060/0x1060 [ 221.700574] do_syscall_64+0x1e8/0x640 [ 221.704439] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 221.709283] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 221.714978] RIP: 0033:0x459697 [ 221.718151] RSP: 002b:00007f4919e8fa88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 221.725843] RAX: ffffffffffffffda RBX: 00000000200016c0 RCX: 0000000000459697 15:14:33 executing program 4 (fault-call:8 fault-nth:1): r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="11dca50d5e0bcfe47bf070") mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) [ 221.733093] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 221.740343] RBP: 0000000000000002 R08: 0000000000000000 R09: 000000000000000a [ 221.747593] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 221.754845] R13: 00000000004c8a62 R14: 00000000004df960 R15: 0000000000000003 15:14:33 executing program 3 (fault-call:6 fault-nth:5): mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) 15:14:33 executing program 2: r0 = openat$vim2m(0xffffffffffffff9c, 0x0, 0x2, 0x0) r1 = socket$unix(0x1, 0x2000000003, 0x0) prctl$PR_MCE_KILL(0x21, 0x0, 0x0) syz_mount_image$btrfs(&(0x7f0000000140)='btrfs\x00', &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) r2 = syz_open_dev$media(&(0x7f0000000040)='/dev/media#\x00', 0xa08, 0x10000) syz_mount_image$ntfs(0x0, &(0x7f0000000080)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mount$overlay(0x404000, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0)='overlay\x00', 0x0, &(0x7f0000000100)={[{@upperdir={'upperdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './file1'}, 0x5c}]}) r3 = openat$qat_adf_ctl(0xffffffffffffff9c, 0x0, 0x0, 0x0) close(r0) inotify_init() getsockopt$inet_IP_XFRM_POLICY(r3, 0x0, 0x11, &(0x7f0000000200)={{{@in=@multicast1, @in=@multicast2}}, {{@in6=@mcast2}, 0x0, @in6=@dev}}, &(0x7f0000000340)=0xfffffffffffffe85) getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r2, 0x84, 0x7b, &(0x7f0000001900)={0x0, 0x1}, &(0x7f0000001940)=0x8) ioctl$EVIOCGNAME(r3, 0x80404506, &(0x7f0000001a80)=""/159) mount$9p_fd(0x0, &(0x7f0000000140)='\xe9\x1fq\x89Y\x1e\x923aK\x00', &(0x7f0000000180)='9p\x00', 0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB='\x00\x00']) setns(r3, 0x40000000) [ 221.819227] x86/PAT: syz-executor.3:10073 freeing invalid memtype [mem 0x00000000-0x00000fff] 15:14:33 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070") r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x28001, 0x0) ioctl$sock_SIOCINQ(r1, 0x541b, &(0x7f00000000c0)) read$rfkill(r1, &(0x7f0000000000), 0x3) ioctl$int_in(r1, 0x800060c0045005, &(0x7f0000000140)=0x5ad) [ 221.869653] FAULT_INJECTION: forcing a failure. [ 221.869653] name fail_page_alloc, interval 1, probability 0, space 0, times 0 15:14:33 executing program 5 (fault-call:0 fault-nth:18): syz_mount_image$ntfs(&(0x7f0000000100)='ntfs\x00', &(0x7f00000000c0)='./bus\x00', 0x0, 0x2, &(0x7f0000001680)=[{0x0, 0x0, 0x401}, {&(0x7f0000001740)="3a77dd21387d6a624e139a664bf7ec507567aba5727ca2250cce6cea", 0x1c, 0x35}], 0x8100, 0x0) [ 221.947111] CPU: 0 PID: 10080 Comm: syz-executor.4 Not tainted 4.14.139 #35 [ 221.954271] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 221.963634] Call Trace: [ 221.966258] dump_stack+0x138/0x19c [ 221.967116] FAULT_INJECTION: forcing a failure. [ 221.967116] name failslab, interval 1, probability 0, space 0, times 0 [ 221.969901] should_fail.cold+0x10f/0x159 [ 221.969916] ? __might_sleep+0x93/0xb0 [ 221.969933] __alloc_pages_nodemask+0x1d6/0x7a0 [ 221.969950] ? __alloc_pages_slowpath+0x2930/0x2930 [ 221.998790] ? rcu_read_lock_sched_held+0x110/0x130 [ 222.003810] copy_process.part.0+0x26a/0x6a00 [ 222.008301] ? save_trace+0x290/0x290 [ 222.012093] ? proc_fail_nth_write+0x7d/0x180 [ 222.016577] ? proc_cwd_link+0x1b0/0x1b0 [ 222.020629] ? __f_unlock_pos+0x19/0x20 [ 222.024592] ? find_held_lock+0x35/0x130 [ 222.028655] ? __cleanup_sighand+0x50/0x50 [ 222.032879] ? lock_downgrade+0x6e0/0x6e0 [ 222.037022] _do_fork+0x19e/0xce0 [ 222.040487] ? fork_idle+0x280/0x280 [ 222.044195] ? fput+0xd4/0x150 [ 222.047375] ? SyS_write+0x15e/0x230 [ 222.051085] SyS_clone+0x37/0x50 [ 222.054441] ? sys_vfork+0x30/0x30 [ 222.057977] do_syscall_64+0x1e8/0x640 [ 222.061850] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 222.066799] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 222.072063] RIP: 0033:0x459829 [ 222.075239] RSP: 002b:00007f885a32dc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 222.082943] RAX: ffffffffffffffda RBX: 00007f885a32dc90 RCX: 0000000000459829 [ 222.090201] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000 [ 222.097458] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000 [ 222.104718] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f885a32e6d4 [ 222.111977] R13: 00000000004bfce6 R14: 00000000004d1a58 R15: 0000000000000005 [ 222.119254] CPU: 1 PID: 10092 Comm: syz-executor.3 Not tainted 4.14.139 #35 [ 222.126364] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 222.135717] Call Trace: [ 222.138319] dump_stack+0x138/0x19c [ 222.141968] should_fail.cold+0x10f/0x159 [ 222.143781] FAULT_INJECTION: forcing a failure. [ 222.143781] name failslab, interval 1, probability 0, space 0, times 0 [ 222.146120] should_failslab+0xdb/0x130 [ 222.146140] kmem_cache_alloc+0x2d7/0x780 [ 222.146160] ? lockdep_init_map+0x9/0x10 [ 222.169579] ? debug_mutex_init+0x2d/0x5a [ 222.173726] dup_fd+0x85/0xa40 [ 222.176922] copy_process.part.0+0x1b5a/0x6a00 [ 222.181511] ? save_trace+0x290/0x290 [ 222.185309] ? proc_fail_nth_write+0x7d/0x180 [ 222.189796] ? proc_cwd_link+0x1b0/0x1b0 [ 222.193858] ? __cleanup_sighand+0x50/0x50 [ 222.198085] ? lock_downgrade+0x6e0/0x6e0 [ 222.202235] _do_fork+0x19e/0xce0 [ 222.205689] ? fork_idle+0x280/0x280 [ 222.209398] ? fput+0xd4/0x150 [ 222.212582] ? SyS_write+0x15e/0x230 [ 222.216287] SyS_clone+0x37/0x50 [ 222.219644] ? sys_vfork+0x30/0x30 [ 222.223181] do_syscall_64+0x1e8/0x640 [ 222.227063] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 222.231918] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 222.237102] RIP: 0033:0x459829 [ 222.239026] overlayfs: failed to resolve './file1': -2 15:14:33 executing program 1: socket$inet(0x10, 0x5, 0x3) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(r0, 0x8000000000000001, 0x10000000000005, &(0x7f0000000980)="000000009641d897e74754e15cafa0a8d7248293e5ee7f8e2dd6354dafd8e76a155d15a7f2872ef6c17ef451745a222065498562c09b44b262a3a3c76c9f5be0a2af258fa0b6a5dc7726bf25a563705d73ff7e1f556a82ae51f2ae06145b481c4be9c760d8289dc8cb601b1805223df02fa9ac38dc714a052b8acb3070d2d63e76195379b396da6c8d0b2fbc59c17f835516dad72c98358b4ff3cca04e1dda3b0f353c684773cb3813c3d2f0645e7dca7899dce3b933de4ef6e9f512cb5a1f4ad42c632645aff8", 0xc7) setsockopt$inet6_tcp_int(r0, 0x6, 0x100000004, &(0x7f0000000080)=0x2be, 0xfd3b) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) r2 = socket$inet6_udp(0xa, 0x2, 0x0) syncfs(r2) setsockopt$inet_tcp_int(r1, 0x6, 0x7ffffffffffffe, &(0x7f0000000000)=0x85, 0x4) setsockopt$sock_int(r1, 0x1, 0x2f, &(0x7f0000000040), 0x4) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) socket(0xffffffffffffffff, 0x6, 0x5) r3 = open(&(0x7f0000000080)='./bus\x00', 0x80000000141046, 0x0) close(r3) r4 = syz_open_dev$loop(&(0x7f0000000540)='/dev/loop#\x00', 0x0, 0x105082) r5 = memfd_create(&(0x7f0000000300)='4t\xb9L<\xf2\x00\x90\xcd\x00\x00\x00\x00\x00\x00', 0x2) ioctl$LOOP_CHANGE_FD(r4, 0x4c00, r5) bpf$OBJ_GET_MAP(0x7, &(0x7f00000003c0)={&(0x7f0000000400)='./bus\x00', 0x0, 0x8}, 0xfffffffffffffecd) r6 = socket$inet6(0xa, 0x5, 0x2) connect$inet6(r6, &(0x7f0000000100)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, [], 0x1, 0x0}, 0x7}, 0x1c) setsockopt$inet6_opts(r6, 0x29, 0x40, &(0x7f0000000580)=ANY=[@ANYBLOB="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"], 0x1) sendmmsg(r6, &(0x7f00000092c0), 0x4ff, 0x0) mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x800003, 0x11, r3, 0x0) socketpair$unix(0x1, 0x800000000000003, 0x0, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x360) fcntl$setstatus(r4, 0x4, 0x44000) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r8, &(0x7f00000001c0), 0x526987c9) read(r7, &(0x7f0000000200)=""/250, 0x50c7e3e3) sendfile(r4, r5, 0x0, 0x80003) [ 222.240283] RSP: 002b:00007f664e1cac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 222.240295] RAX: ffffffffffffffda RBX: 00007f664e1cac90 RCX: 0000000000459829 [ 222.240300] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000 [ 222.240307] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000 [ 222.240313] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f664e1cb6d4 [ 222.240318] R13: 00000000004bfce6 R14: 00000000004d1a58 R15: 0000000000000004 [ 222.273163] CPU: 0 PID: 10095 Comm: syz-executor.5 Not tainted 4.14.139 #35 [ 222.297318] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 222.306670] Call Trace: [ 222.306688] dump_stack+0x138/0x19c [ 222.306706] should_fail.cold+0x10f/0x159 [ 222.306721] should_failslab+0xdb/0x130 [ 222.306734] kmem_cache_alloc+0x2d7/0x780 [ 222.325175] ? wait_for_completion+0x420/0x420 [ 222.329771] __kernfs_new_node+0x70/0x420 [ 222.333926] kernfs_new_node+0x80/0xf0 [ 222.337826] __kernfs_create_file+0x46/0x323 [ 222.342237] sysfs_add_file_mode_ns+0x1e4/0x450 [ 222.346895] internal_create_group+0x232/0x7b0 [ 222.351474] sysfs_create_group+0x20/0x30 [ 222.355605] lo_ioctl+0x1176/0x1ce0 [ 222.359223] ? loop_probe+0x160/0x160 [ 222.363008] blkdev_ioctl+0x96b/0x1860 [ 222.366876] ? blkpg_ioctl+0x980/0x980 [ 222.370752] ? __might_sleep+0x93/0xb0 [ 222.374630] ? __fget+0x210/0x370 [ 222.378069] block_ioctl+0xde/0x120 [ 222.381673] ? blkdev_fallocate+0x3b0/0x3b0 [ 222.385977] do_vfs_ioctl+0x7ae/0x1060 [ 222.389856] ? selinux_file_mprotect+0x5d0/0x5d0 [ 222.394599] ? lock_downgrade+0x6e0/0x6e0 [ 222.398725] ? ioctl_preallocate+0x1c0/0x1c0 [ 222.403114] ? __fget+0x237/0x370 [ 222.406551] ? security_file_ioctl+0x89/0xb0 [ 222.410937] SyS_ioctl+0x8f/0xc0 [ 222.414281] ? do_vfs_ioctl+0x1060/0x1060 [ 222.418413] do_syscall_64+0x1e8/0x640 [ 222.422281] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 222.427110] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 222.432286] RIP: 0033:0x459697 [ 222.435462] RSP: 002b:00007f4919e8fa88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 15:14:33 executing program 3 (fault-call:6 fault-nth:6): mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) 15:14:33 executing program 4 (fault-call:8 fault-nth:2): r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="11dca50d5e0bcfe47bf070") mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) [ 222.443161] RAX: ffffffffffffffda RBX: 00000000200016c0 RCX: 0000000000459697 [ 222.450411] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 222.457668] RBP: 0000000000000002 R08: 0000000000000000 R09: 000000000000000a [ 222.464920] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 222.472168] R13: 00000000004c8a62 R14: 00000000004df960 R15: 0000000000000003 15:14:33 executing program 5 (fault-call:0 fault-nth:19): syz_mount_image$ntfs(&(0x7f0000000100)='ntfs\x00', &(0x7f00000000c0)='./bus\x00', 0x0, 0x2, &(0x7f0000001680)=[{0x0, 0x0, 0x401}, {&(0x7f0000001740)="3a77dd21387d6a624e139a664bf7ec507567aba5727ca2250cce6cea", 0x1c, 0x35}], 0x8100, 0x0) 15:14:33 executing program 2: r0 = openat$vim2m(0xffffffffffffff9c, 0x0, 0x2, 0x0) r1 = socket$unix(0x1, 0x2000000003, 0x0) prctl$PR_MCE_KILL(0x21, 0x0, 0x0) syz_mount_image$btrfs(&(0x7f0000000140)='btrfs\x00', &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) r2 = syz_open_dev$media(&(0x7f0000000040)='/dev/media#\x00', 0xa08, 0x10000) syz_mount_image$ntfs(0x0, &(0x7f0000000080)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mount$overlay(0x404000, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0)='overlay\x00', 0x0, &(0x7f0000000100)={[{@upperdir={'upperdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './file1'}, 0x5c}]}) r3 = openat$qat_adf_ctl(0xffffffffffffff9c, 0x0, 0x0, 0x0) close(r0) inotify_init() getsockopt$inet_IP_XFRM_POLICY(r3, 0x0, 0x11, &(0x7f0000000200)={{{@in=@multicast1, @in=@multicast2}}, {{@in6=@mcast2}, 0x0, @in6=@dev}}, &(0x7f0000000340)=0xfffffffffffffe85) getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r2, 0x84, 0x7b, &(0x7f0000001900)={0x0, 0x1}, &(0x7f0000001940)=0x8) ioctl$EVIOCGNAME(r3, 0x80404506, &(0x7f0000001a80)=""/159) mount$9p_fd(0x0, &(0x7f0000000140)='\xe9\x1fq\x89Y\x1e\x923aK\x00', &(0x7f0000000180)='9p\x00', 0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB='\x00\x00']) setns(r3, 0x40000000) [ 222.577065] FAULT_INJECTION: forcing a failure. [ 222.577065] name failslab, interval 1, probability 0, space 0, times 0 [ 222.612784] FAULT_INJECTION: forcing a failure. [ 222.612784] name failslab, interval 1, probability 0, space 0, times 0 [ 222.615637] CPU: 0 PID: 10112 Comm: syz-executor.3 Not tainted 4.14.139 #35 [ 222.631136] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 222.640529] Call Trace: [ 222.643121] dump_stack+0x138/0x19c [ 222.646744] should_fail.cold+0x10f/0x159 [ 222.650888] should_failslab+0xdb/0x130 [ 222.654854] kmem_cache_alloc_trace+0x2e9/0x790 [ 222.659516] ? lock_downgrade+0x6e0/0x6e0 [ 222.663670] alloc_fdtable+0x7f/0x280 [ 222.667477] dup_fd+0x693/0xa40 [ 222.670756] copy_process.part.0+0x1b5a/0x6a00 [ 222.675333] ? save_trace+0x290/0x290 [ 222.679124] ? proc_fail_nth_write+0x7d/0x180 [ 222.683614] ? proc_cwd_link+0x1b0/0x1b0 [ 222.687676] ? __cleanup_sighand+0x50/0x50 [ 222.691903] ? lock_downgrade+0x6e0/0x6e0 [ 222.696047] _do_fork+0x19e/0xce0 [ 222.699493] ? fork_idle+0x280/0x280 [ 222.703195] ? fput+0xd4/0x150 [ 222.706391] ? SyS_write+0x15e/0x230 [ 222.710097] SyS_clone+0x37/0x50 [ 222.713456] ? sys_vfork+0x30/0x30 [ 222.716993] do_syscall_64+0x1e8/0x640 [ 222.720869] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 222.725707] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 222.730883] RIP: 0033:0x459829 [ 222.734063] RSP: 002b:00007f664e1cac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 222.741762] RAX: ffffffffffffffda RBX: 00007f664e1cac90 RCX: 0000000000459829 [ 222.749019] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000 [ 222.756282] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000 [ 222.763542] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f664e1cb6d4 [ 222.770799] R13: 00000000004bfce6 R14: 00000000004d1a58 R15: 0000000000000004 [ 222.778076] CPU: 1 PID: 10119 Comm: syz-executor.4 Not tainted 4.14.139 #35 [ 222.785196] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 222.794548] Call Trace: [ 222.794569] dump_stack+0x138/0x19c [ 222.794588] should_fail.cold+0x10f/0x159 [ 222.794608] should_failslab+0xdb/0x130 [ 222.801203] FAULT_INJECTION: forcing a failure. [ 222.801203] name failslab, interval 1, probability 0, space 0, times 0 [ 222.804951] kmem_cache_alloc+0x2d7/0x780 [ 222.804965] ? creds_are_invalid+0x48/0x110 [ 222.804976] ? __validate_process_creds+0x14c/0x200 [ 222.804990] prepare_creds+0x3e/0x380 [ 222.837361] copy_creds+0x7b/0x4f0 [ 222.840903] ? lockdep_init_map+0x9/0x10 [ 222.844960] copy_process.part.0+0x868/0x6a00 [ 222.849450] ? save_trace+0x290/0x290 [ 222.853239] ? proc_fail_nth_write+0x7d/0x180 [ 222.857732] ? proc_cwd_link+0x1b0/0x1b0 [ 222.861784] ? __f_unlock_pos+0x19/0x20 [ 222.865756] ? __cleanup_sighand+0x50/0x50 [ 222.869978] ? lock_downgrade+0x6e0/0x6e0 [ 222.874126] _do_fork+0x19e/0xce0 [ 222.877580] ? fork_idle+0x280/0x280 [ 222.881297] ? fput+0xd4/0x150 [ 222.884488] ? SyS_write+0x15e/0x230 [ 222.888199] SyS_clone+0x37/0x50 [ 222.891038] overlayfs: failed to resolve './file1': -2 [ 222.891552] ? sys_vfork+0x30/0x30 [ 222.891568] do_syscall_64+0x1e8/0x640 [ 222.891577] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 222.891597] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 222.891605] RIP: 0033:0x459829 [ 222.891610] RSP: 002b:00007f885a32dc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 15:14:34 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070") r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x28001, 0x0) ioctl$int_in(r1, 0x800060c0045005, &(0x7f0000000140)=0x5ad) [ 222.917444] RAX: ffffffffffffffda RBX: 00007f885a32dc90 RCX: 0000000000459829 [ 222.932399] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000 [ 222.932405] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000 [ 222.932409] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f885a32e6d4 [ 222.932412] R13: 00000000004bfce6 R14: 00000000004d1a58 R15: 0000000000000005 [ 222.970246] CPU: 0 PID: 10123 Comm: syz-executor.5 Not tainted 4.14.139 #35 15:14:34 executing program 4 (fault-call:8 fault-nth:3): r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="11dca50d5e0bcfe47bf070") mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) [ 222.977388] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 222.986752] Call Trace: [ 222.989348] dump_stack+0x138/0x19c [ 222.992993] should_fail.cold+0x10f/0x159 [ 222.997150] should_failslab+0xdb/0x130 [ 223.001129] kmem_cache_alloc_trace+0x2e9/0x790 [ 223.005797] ? kernfs_put+0x35e/0x490 [ 223.009597] ? sysfs_add_file_mode_ns+0x1e4/0x450 [ 223.014452] ? devm_device_remove_groups+0x50/0x50 [ 223.019378] kobject_uevent_env+0x378/0xc23 [ 223.023696] ? internal_create_group+0x49a/0x7b0 15:14:34 executing program 0: r0 = openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f00000000c0)='/selinux/commit_pending_bools\x00', 0x1, 0x0) setsockopt$netrom_NETROM_T2(r0, 0x103, 0x2, &(0x7f0000000100)=0x8, 0x4) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070") r2 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x28001, 0x0) read$rfkill(r2, &(0x7f0000000000), 0x3) ioctl$int_in(r2, 0x800060c0045005, &(0x7f0000000140)=0x5ad) [ 223.028473] kobject_uevent+0x20/0x26 [ 223.028486] lo_ioctl+0x11e7/0x1ce0 [ 223.028497] ? loop_probe+0x160/0x160 [ 223.028509] blkdev_ioctl+0x96b/0x1860 [ 223.035923] ? blkpg_ioctl+0x980/0x980 [ 223.035943] ? __might_sleep+0x93/0xb0 [ 223.035953] ? __fget+0x210/0x370 [ 223.035968] block_ioctl+0xde/0x120 [ 223.035977] ? blkdev_fallocate+0x3b0/0x3b0 [ 223.035989] do_vfs_ioctl+0x7ae/0x1060 [ 223.066686] ? selinux_file_mprotect+0x5d0/0x5d0 [ 223.071482] ? lock_downgrade+0x6e0/0x6e0 15:14:34 executing program 1: socket$inet(0x10, 0x5, 0x3) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(r0, 0x8000000000000001, 0x10000000000005, &(0x7f0000000980)="000000009641d897e74754e15cafa0a8d7248293e5ee7f8e2dd6354dafd8e76a155d15a7f2872ef6c17ef451745a222065498562c09b44b262a3a3c76c9f5be0a2af258fa0b6a5dc7726bf25a563705d73ff7e1f556a82ae51f2ae06145b481c4be9c760d8289dc8cb601b1805223df02fa9ac38dc714a052b8acb3070d2d63e76195379b396da6c8d0b2fbc59c17f835516dad72c98358b4ff3cca04e1dda3b0f353c684773cb3813c3d2f0645e7dca7899dce3b933de4ef6e9f512cb5a1f4ad42c632645aff8", 0xc7) setsockopt$inet6_tcp_int(r0, 0x6, 0x100000004, &(0x7f0000000080)=0x2be, 0xfd3b) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) r2 = socket$inet6_udp(0xa, 0x2, 0x0) syncfs(r2) setsockopt$inet_tcp_int(r1, 0x6, 0x7ffffffffffffe, &(0x7f0000000000)=0x85, 0x4) setsockopt$sock_int(r1, 0x1, 0x2f, &(0x7f0000000040), 0x4) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) socket(0xffffffffffffffff, 0x6, 0x5) r3 = open(&(0x7f0000000080)='./bus\x00', 0x80000000141046, 0x0) close(r3) r4 = syz_open_dev$loop(&(0x7f0000000540)='/dev/loop#\x00', 0x0, 0x105082) r5 = memfd_create(&(0x7f0000000300)='4t\xb9L<\xf2\x00\x90\xcd\x00\x00\x00\x00\x00\x00', 0x2) ioctl$LOOP_CHANGE_FD(r4, 0x4c00, r5) bpf$OBJ_GET_MAP(0x7, &(0x7f00000003c0)={&(0x7f0000000400)='./bus\x00', 0x0, 0x8}, 0xfffffffffffffecd) r6 = socket$inet6(0xa, 0x5, 0x2) connect$inet6(r6, &(0x7f0000000100)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, [], 0x1, 0x0}, 0x7}, 0x1c) setsockopt$inet6_opts(r6, 0x29, 0x40, &(0x7f0000000580)=ANY=[@ANYBLOB="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"], 0x1) sendmmsg(r6, &(0x7f00000092c0), 0x4ff, 0x0) mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x800003, 0x11, r3, 0x0) socketpair$unix(0x1, 0x800000000000003, 0x0, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x360) fcntl$setstatus(r4, 0x4, 0x44000) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r8, &(0x7f00000001c0), 0x526987c9) read(r7, &(0x7f0000000200)=""/250, 0x50c7e3e3) sendfile(r4, r5, 0x0, 0x80003) [ 223.075642] ? ioctl_preallocate+0x1c0/0x1c0 [ 223.080055] ? __fget+0x237/0x370 [ 223.083502] ? security_file_ioctl+0x89/0xb0 [ 223.087894] SyS_ioctl+0x8f/0xc0 [ 223.091243] ? do_vfs_ioctl+0x1060/0x1060 [ 223.095380] do_syscall_64+0x1e8/0x640 [ 223.099247] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 223.104097] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 223.109290] RIP: 0033:0x459697 [ 223.112479] RSP: 002b:00007f4919e8fa88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 223.120171] RAX: ffffffffffffffda RBX: 00000000200016c0 RCX: 0000000000459697 15:14:34 executing program 3 (fault-call:6 fault-nth:7): mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) [ 223.120176] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 223.120180] RBP: 0000000000000002 R08: 0000000000000000 R09: 000000000000000a [ 223.120185] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 223.120188] R13: 00000000004c8a62 R14: 00000000004df960 R15: 0000000000000003 15:14:34 executing program 5 (fault-call:0 fault-nth:20): syz_mount_image$ntfs(&(0x7f0000000100)='ntfs\x00', &(0x7f00000000c0)='./bus\x00', 0x0, 0x2, &(0x7f0000001680)=[{0x0, 0x0, 0x401}, {&(0x7f0000001740)="3a77dd21387d6a624e139a664bf7ec507567aba5727ca2250cce6cea", 0x1c, 0x35}], 0x8100, 0x0) [ 223.201793] FAULT_INJECTION: forcing a failure. [ 223.201793] name failslab, interval 1, probability 0, space 0, times 0 15:14:34 executing program 2: pipe(&(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) write$binfmt_misc(r1, &(0x7f0000000000)=ANY=[@ANYBLOB="00569c71db56e6e6ed9ab412c4ba6148d6eb9e3eb552a638d2b332e37a509c198941"], 0x1) r2 = socket$inet_udp(0x2, 0x2, 0x0) close(r2) r3 = socket$inet(0x2, 0x3, 0x7f) bind$inet(r2, &(0x7f0000000080)={0x2, 0x0, @local}, 0x10) setsockopt$inet_int(r3, 0x0, 0x3, &(0x7f0000000280)=0x7ff, 0x4) connect$inet(r2, &(0x7f0000000040)={0x2, 0x0, @multicast1}, 0x10) write$binfmt_script(r1, &(0x7f00000002c0)={'#! ', './file0', [{0x20, 'vmnet0proc/vboxnet1'}], 0xa, "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"}, 0x1013) splice(r0, 0x0, r2, 0x0, 0x10005, 0x0) r4 = openat$selinux_mls(0xffffffffffffff9c, &(0x7f0000000140)='/selinux/mls\x00', 0x0, 0x0) getsockopt$inet_sctp6_SCTP_STATUS(r4, 0x84, 0xe, &(0x7f0000000180)={0x0, 0x2c, 0x7, 0xfff, 0x8000, 0x3, 0x1000, 0x1, {0x0, @in={{0x2, 0x4e24, @multicast1}}, 0x8, 0x0, 0x5, 0xff, 0x9}}, &(0x7f00000000c0)=0xb0) setsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(r0, 0x84, 0x22, &(0x7f0000000240)={0x0, 0x8000, 0xfffffffffffffc01, 0x3a7, r5}, 0x10) [ 223.272046] CPU: 0 PID: 10148 Comm: syz-executor.4 Not tainted 4.14.139 #35 [ 223.279214] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 223.288587] Call Trace: [ 223.291204] dump_stack+0x138/0x19c [ 223.294854] should_fail.cold+0x10f/0x159 [ 223.299014] should_failslab+0xdb/0x130 [ 223.303002] kmem_cache_alloc+0x2d7/0x780 [ 223.307158] ? creds_are_invalid+0x48/0x110 [ 223.311486] ? __validate_process_creds+0x14c/0x200 [ 223.316506] prepare_creds+0x3e/0x380 [ 223.320310] copy_creds+0x7b/0x4f0 [ 223.323851] ? lockdep_init_map+0x9/0x10 [ 223.327918] copy_process.part.0+0x868/0x6a00 [ 223.332427] ? save_trace+0x290/0x290 [ 223.336230] ? proc_fail_nth_write+0x7d/0x180 [ 223.340723] ? proc_cwd_link+0x1b0/0x1b0 [ 223.344788] ? __f_unlock_pos+0x19/0x20 [ 223.348772] ? __cleanup_sighand+0x50/0x50 [ 223.353005] ? lock_downgrade+0x6e0/0x6e0 [ 223.357179] _do_fork+0x19e/0xce0 [ 223.360641] ? fork_idle+0x280/0x280 [ 223.364364] ? fput+0xd4/0x150 [ 223.367563] ? SyS_write+0x15e/0x230 [ 223.371288] SyS_clone+0x37/0x50 [ 223.374656] ? sys_vfork+0x30/0x30 [ 223.378201] do_syscall_64+0x1e8/0x640 [ 223.382095] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 223.386948] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 223.392128] RIP: 0033:0x459829 [ 223.395296] RSP: 002b:00007f885a32dc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 223.396048] FAULT_INJECTION: forcing a failure. [ 223.396048] name failslab, interval 1, probability 0, space 0, times 0 [ 223.402987] RAX: ffffffffffffffda RBX: 00007f885a32dc90 RCX: 0000000000459829 [ 223.402993] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000 [ 223.402998] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000 [ 223.403004] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f885a32e6d4 [ 223.403009] R13: 00000000004bfce6 R14: 00000000004d1a58 R15: 0000000000000005 [ 223.424587] FAULT_INJECTION: forcing a failure. [ 223.424587] name failslab, interval 1, probability 0, space 0, times 0 [ 223.442417] CPU: 1 PID: 10157 Comm: syz-executor.5 Not tainted 4.14.139 #35 [ 223.469350] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 223.478702] Call Trace: [ 223.481294] dump_stack+0x138/0x19c [ 223.484927] should_fail.cold+0x10f/0x159 [ 223.489087] should_failslab+0xdb/0x130 [ 223.493067] kmem_cache_alloc+0x2d7/0x780 [ 223.497219] ? wait_for_completion+0x420/0x420 [ 223.501805] __kernfs_new_node+0x70/0x420 [ 223.505953] kernfs_new_node+0x80/0xf0 [ 223.509844] __kernfs_create_file+0x46/0x323 [ 223.514260] sysfs_add_file_mode_ns+0x1e4/0x450 [ 223.518924] internal_create_group+0x232/0x7b0 [ 223.523502] sysfs_create_group+0x20/0x30 [ 223.527638] lo_ioctl+0x1176/0x1ce0 [ 223.531260] ? loop_probe+0x160/0x160 [ 223.535068] blkdev_ioctl+0x96b/0x1860 [ 223.538948] ? blkpg_ioctl+0x980/0x980 [ 223.542836] ? __might_sleep+0x93/0xb0 [ 223.546718] ? __fget+0x210/0x370 [ 223.550166] block_ioctl+0xde/0x120 [ 223.553783] ? blkdev_fallocate+0x3b0/0x3b0 [ 223.558095] do_vfs_ioctl+0x7ae/0x1060 [ 223.561980] ? selinux_file_mprotect+0x5d0/0x5d0 [ 223.566734] ? lock_downgrade+0x6e0/0x6e0 [ 223.570871] ? ioctl_preallocate+0x1c0/0x1c0 [ 223.575270] ? __fget+0x237/0x370 [ 223.578736] ? security_file_ioctl+0x89/0xb0 [ 223.583141] SyS_ioctl+0x8f/0xc0 [ 223.586496] ? do_vfs_ioctl+0x1060/0x1060 [ 223.590635] do_syscall_64+0x1e8/0x640 [ 223.594515] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 223.599358] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 223.604538] RIP: 0033:0x459697 [ 223.607723] RSP: 002b:00007f4919e8fa88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 223.615418] RAX: ffffffffffffffda RBX: 00000000200016c0 RCX: 0000000000459697 [ 223.622677] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 223.629959] RBP: 0000000000000002 R08: 0000000000000000 R09: 000000000000000a [ 223.637223] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 223.644483] R13: 00000000004c8a62 R14: 00000000004df960 R15: 0000000000000003 [ 223.651761] CPU: 0 PID: 10167 Comm: syz-executor.3 Not tainted 4.14.139 #35 [ 223.658878] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 223.668225] Call Trace: [ 223.668244] dump_stack+0x138/0x19c [ 223.668261] should_fail.cold+0x10f/0x159 [ 223.674442] should_failslab+0xdb/0x130 [ 223.674455] kmem_cache_alloc_node_trace+0x280/0x770 [ 223.674467] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 223.674480] __kmalloc_node+0x3d/0x80 [ 223.693122] kvmalloc_node+0x4e/0xe0 [ 223.700600] alloc_fdtable+0xcf/0x280 [ 223.700612] dup_fd+0x693/0xa40 [ 223.707679] copy_process.part.0+0x1b5a/0x6a00 [ 223.712819] ? save_trace+0x290/0x290 [ 223.716600] ? proc_fail_nth_write+0x7d/0x180 [ 223.721074] ? proc_cwd_link+0x1b0/0x1b0 [ 223.725119] ? __cleanup_sighand+0x50/0x50 [ 223.729332] ? lock_downgrade+0x6e0/0x6e0 [ 223.733474] _do_fork+0x19e/0xce0 [ 223.736908] ? fork_idle+0x280/0x280 [ 223.740600] ? fput+0xd4/0x150 [ 223.743770] ? SyS_write+0x15e/0x230 [ 223.747481] SyS_clone+0x37/0x50 [ 223.750843] ? sys_vfork+0x30/0x30 [ 223.754364] do_syscall_64+0x1e8/0x640 [ 223.758239] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 223.763065] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 223.768238] RIP: 0033:0x459829 15:14:35 executing program 2: pipe(&(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) write$binfmt_misc(r1, &(0x7f0000000000)=ANY=[@ANYBLOB="00569c71db56e6e6ed9ab412c4ba6148d6eb9e3eb552a638d2b332e37a509c198941"], 0x1) r2 = socket$inet_udp(0x2, 0x2, 0x0) close(r2) r3 = socket$inet(0x2, 0x3, 0x7f) bind$inet(r2, &(0x7f0000000080)={0x2, 0x0, @local}, 0x10) setsockopt$inet_int(r3, 0x0, 0x3, &(0x7f0000000280)=0x7ff, 0x4) connect$inet(r2, &(0x7f0000000040)={0x2, 0x0, @multicast1}, 0x10) write$binfmt_script(r1, &(0x7f00000002c0)={'#! ', './file0', [{0x20, 'vmnet0proc/vboxnet1'}], 0xa, "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"}, 0x1013) splice(r0, 0x0, r2, 0x0, 0x10005, 0x0) r4 = openat$selinux_mls(0xffffffffffffff9c, &(0x7f0000000140)='/selinux/mls\x00', 0x0, 0x0) getsockopt$inet_sctp6_SCTP_STATUS(r4, 0x84, 0xe, &(0x7f0000000180)={0x0, 0x2c, 0x7, 0xfff, 0x8000, 0x3, 0x1000, 0x1, {0x0, @in={{0x2, 0x4e24, @multicast1}}, 0x8, 0x0, 0x5, 0xff, 0x9}}, &(0x7f00000000c0)=0xb0) setsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(r0, 0x84, 0x22, &(0x7f0000000240)={0x0, 0x8000, 0xfffffffffffffc01, 0x3a7, r5}, 0x10) 15:14:35 executing program 4 (fault-call:8 fault-nth:4): r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="11dca50d5e0bcfe47bf070") mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) 15:14:35 executing program 5 (fault-call:0 fault-nth:21): syz_mount_image$ntfs(&(0x7f0000000100)='ntfs\x00', &(0x7f00000000c0)='./bus\x00', 0x0, 0x2, &(0x7f0000001680)=[{0x0, 0x0, 0x401}, {&(0x7f0000001740)="3a77dd21387d6a624e139a664bf7ec507567aba5727ca2250cce6cea", 0x1c, 0x35}], 0x8100, 0x0) [ 223.771410] RSP: 002b:00007f664e1cac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 223.779097] RAX: ffffffffffffffda RBX: 00007f664e1cac90 RCX: 0000000000459829 [ 223.786354] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000 [ 223.793602] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000 [ 223.800847] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f664e1cb6d4 [ 223.808096] R13: 00000000004bfce6 R14: 00000000004d1a58 R15: 0000000000000004 15:14:35 executing program 2: r0 = socket(0x10, 0x802, 0x0) sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000300)=@setlink={0x48, 0x13, 0x501, 0x0, 0x0, {}, [@IFLA_VFINFO_LIST={0x14, 0x16, [{0x10, 0x1, [@IFLA_VF_SPOOFCHK={0xc, 0x7}]}]}, @IFLA_IFNAME={0x14, 0x3, 'veth1_to_bond\x00'}]}, 0x48}, 0x1, 0x0, 0x0, 0x10000}, 0x0) fcntl$notify(r0, 0x402, 0x0) ioctl$sock_SIOCINQ(r0, 0x541b, &(0x7f0000000000)) 15:14:35 executing program 3 (fault-call:6 fault-nth:8): mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) 15:14:35 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1004008912, &(0x7f0000000180)="11dca50d5e0bcfe47bf070") r1 = syz_open_dev$dspn(&(0x7f0000000280)='/dev/dsp#\x00', 0xb, 0x42) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000140)='westwood\x00', 0x9) read$rfkill(r1, &(0x7f0000000000), 0x3) r2 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000080)='/dev/dlm-monitor\x00', 0x426a2d6f007ab20b, 0x0) ioctl$int_in(r2, 0x5421, &(0x7f0000000100)=0x5af) openat$sequencer2(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/sequencer2\x00', 0x24a00, 0x0) 15:14:35 executing program 1: socket$inet(0x10, 0x5, 0x3) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(r0, 0x8000000000000001, 0x10000000000005, &(0x7f0000000980)="000000009641d897e74754e15cafa0a8d7248293e5ee7f8e2dd6354dafd8e76a155d15a7f2872ef6c17ef451745a222065498562c09b44b262a3a3c76c9f5be0a2af258fa0b6a5dc7726bf25a563705d73ff7e1f556a82ae51f2ae06145b481c4be9c760d8289dc8cb601b1805223df02fa9ac38dc714a052b8acb3070d2d63e76195379b396da6c8d0b2fbc59c17f835516dad72c98358b4ff3cca04e1dda3b0f353c684773cb3813c3d2f0645e7dca7899dce3b933de4ef6e9f512cb5a1f4ad42c632645aff8", 0xc7) setsockopt$inet6_tcp_int(r0, 0x6, 0x100000004, &(0x7f0000000080)=0x2be, 0xfd3b) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) r2 = socket$inet6_udp(0xa, 0x2, 0x0) syncfs(r2) setsockopt$inet_tcp_int(r1, 0x6, 0x7ffffffffffffe, &(0x7f0000000000)=0x85, 0x4) setsockopt$sock_int(r1, 0x1, 0x2f, &(0x7f0000000040), 0x4) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) socket(0xffffffffffffffff, 0x6, 0x5) r3 = open(&(0x7f0000000080)='./bus\x00', 0x80000000141046, 0x0) close(r3) r4 = syz_open_dev$loop(&(0x7f0000000540)='/dev/loop#\x00', 0x0, 0x105082) pwritev(0xffffffffffffffff, &(0x7f0000000440)=[{&(0x7f0000000480)="a8", 0x1}], 0x1, 0x81003) ioctl$LOOP_CHANGE_FD(r4, 0x4c00, 0xffffffffffffffff) bpf$OBJ_GET_MAP(0x7, &(0x7f00000003c0)={&(0x7f0000000400)='./bus\x00', 0x0, 0x8}, 0xfffffffffffffecd) r5 = socket$inet6(0xa, 0x5, 0x2) connect$inet6(r5, &(0x7f0000000100)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, [], 0x1, 0x0}, 0x7}, 0x1c) setsockopt$inet6_opts(r5, 0x29, 0x40, &(0x7f0000000580)=ANY=[@ANYBLOB="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"], 0x1) sendmmsg(r5, &(0x7f00000092c0), 0x4ff, 0x0) mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x800003, 0x11, r3, 0x0) socketpair$unix(0x1, 0x800000000000003, 0x0, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x360) fcntl$setstatus(r4, 0x4, 0x44000) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r7, &(0x7f00000001c0), 0x526987c9) read(r6, &(0x7f0000000200)=""/250, 0x50c7e3e3) sendfile(r4, 0xffffffffffffffff, 0x0, 0x80003) [ 223.909831] FAULT_INJECTION: forcing a failure. [ 223.909831] name failslab, interval 1, probability 0, space 0, times 0 [ 223.948265] FAULT_INJECTION: forcing a failure. [ 223.948265] name failslab, interval 1, probability 0, space 0, times 0 [ 223.976249] CPU: 0 PID: 10182 Comm: syz-executor.4 Not tainted 4.14.139 #35 [ 223.983410] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 223.992759] Call Trace: [ 223.992782] dump_stack+0x138/0x19c [ 223.999006] should_fail.cold+0x10f/0x159 [ 224.003180] should_failslab+0xdb/0x130 [ 224.007170] kmem_cache_alloc+0x2d7/0x780 [ 224.011323] ? creds_are_invalid+0x48/0x110 [ 224.015639] ? selinux_is_enabled+0x9/0x50 [ 224.019872] ? creds_are_invalid+0x48/0x110 [ 224.024203] __delayacct_tsk_init+0x20/0x80 [ 224.028533] copy_process.part.0+0x1a6c/0x6a00 [ 224.033142] ? save_trace+0x290/0x290 [ 224.036944] ? proc_fail_nth_write+0x7d/0x180 [ 224.041456] ? proc_cwd_link+0x1b0/0x1b0 [ 224.045523] ? __f_unlock_pos+0x19/0x20 [ 224.049505] ? __cleanup_sighand+0x50/0x50 [ 224.053739] ? lock_downgrade+0x6e0/0x6e0 [ 224.054008] FAULT_INJECTION: forcing a failure. [ 224.054008] name failslab, interval 1, probability 0, space 0, times 0 [ 224.057896] _do_fork+0x19e/0xce0 [ 224.057908] ? fork_idle+0x280/0x280 [ 224.057922] ? fput+0xd4/0x150 [ 224.057936] ? SyS_write+0x15e/0x230 [ 224.083143] SyS_clone+0x37/0x50 [ 224.086509] ? sys_vfork+0x30/0x30 [ 224.090045] do_syscall_64+0x1e8/0x640 [ 224.093927] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 224.098762] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 224.103942] RIP: 0033:0x459829 [ 224.107121] RSP: 002b:00007f885a32dc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 224.114815] RAX: ffffffffffffffda RBX: 00007f885a32dc90 RCX: 0000000000459829 15:14:35 executing program 2: r0 = syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1) sendmmsg$sock(r0, &(0x7f0000000d00)=[{{0x0, 0x0, 0x0, 0xffffffc1}}], 0x1, 0x1) flock(r0, 0x8) syz_open_dev$vbi(&(0x7f0000000000)='/dev/vbi#\x00', 0x0, 0x2) [ 224.122159] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000 [ 224.129416] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000 [ 224.136677] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f885a32e6d4 [ 224.143932] R13: 00000000004bfce6 R14: 00000000004d1a58 R15: 0000000000000005 [ 224.151207] CPU: 1 PID: 10178 Comm: syz-executor.5 Not tainted 4.14.139 #35 [ 224.158317] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 224.167657] Call Trace: [ 224.170237] dump_stack+0x138/0x19c [ 224.173848] should_fail.cold+0x10f/0x159 [ 224.177976] should_failslab+0xdb/0x130 [ 224.181936] kmem_cache_alloc_trace+0x2e9/0x790 [ 224.186591] ? kernfs_put+0x35e/0x490 [ 224.190378] ? sysfs_add_file_mode_ns+0x1e4/0x450 [ 224.195205] ? devm_device_remove_groups+0x50/0x50 [ 224.200115] kobject_uevent_env+0x378/0xc23 [ 224.204416] ? internal_create_group+0x49a/0x7b0 [ 224.209162] kobject_uevent+0x20/0x26 [ 224.212965] lo_ioctl+0x11e7/0x1ce0 [ 224.216572] ? loop_probe+0x160/0x160 [ 224.220352] blkdev_ioctl+0x96b/0x1860 [ 224.224218] ? blkpg_ioctl+0x980/0x980 [ 224.228089] ? __might_sleep+0x93/0xb0 [ 224.231958] ? __fget+0x210/0x370 [ 224.235393] block_ioctl+0xde/0x120 [ 224.238999] ? blkdev_fallocate+0x3b0/0x3b0 [ 224.243297] do_vfs_ioctl+0x7ae/0x1060 [ 224.247165] ? selinux_file_mprotect+0x5d0/0x5d0 [ 224.251903] ? lock_downgrade+0x6e0/0x6e0 [ 224.256031] ? ioctl_preallocate+0x1c0/0x1c0 [ 224.260417] ? __fget+0x237/0x370 [ 224.263857] ? security_file_ioctl+0x89/0xb0 [ 224.268244] SyS_ioctl+0x8f/0xc0 [ 224.271590] ? do_vfs_ioctl+0x1060/0x1060 [ 224.275720] do_syscall_64+0x1e8/0x640 [ 224.279586] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 224.284407] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 224.289574] RIP: 0033:0x459697 [ 224.292744] RSP: 002b:00007f4919e8fa88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 224.300435] RAX: ffffffffffffffda RBX: 00000000200016c0 RCX: 0000000000459697 [ 224.307683] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 224.314932] RBP: 0000000000000002 R08: 0000000000000000 R09: 000000000000000a [ 224.322185] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 224.329432] R13: 00000000004c8a62 R14: 00000000004df960 R15: 0000000000000003 [ 224.345865] CPU: 1 PID: 10197 Comm: syz-executor.3 Not tainted 4.14.139 #35 [ 224.353150] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 224.362517] Call Trace: [ 224.365114] dump_stack+0x138/0x19c [ 224.368755] should_fail.cold+0x10f/0x159 [ 224.372916] should_failslab+0xdb/0x130 [ 224.376903] kmem_cache_alloc_node_trace+0x280/0x770 [ 224.382010] ? kasan_unpoison_shadow+0x35/0x50 [ 224.386612] __kmalloc_node+0x3d/0x80 [ 224.390416] kvmalloc_node+0x4e/0xe0 [ 224.394132] alloc_fdtable+0x13b/0x280 [ 224.398024] dup_fd+0x693/0xa40 [ 224.401337] copy_process.part.0+0x1b5a/0x6a00 [ 224.405926] ? save_trace+0x290/0x290 [ 224.409734] ? proc_fail_nth_write+0x7d/0x180 [ 224.414242] ? proc_cwd_link+0x1b0/0x1b0 [ 224.418296] ? __cleanup_sighand+0x50/0x50 [ 224.422529] ? lock_downgrade+0x6e0/0x6e0 [ 224.426660] _do_fork+0x19e/0xce0 [ 224.430094] ? fork_idle+0x280/0x280 [ 224.433788] ? fput+0xd4/0x150 [ 224.436972] ? SyS_write+0x15e/0x230 [ 224.440670] SyS_clone+0x37/0x50 [ 224.444014] ? sys_vfork+0x30/0x30 [ 224.447534] do_syscall_64+0x1e8/0x640 [ 224.451400] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 224.456252] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 224.461420] RIP: 0033:0x459829 [ 224.464587] RSP: 002b:00007f664e1a9c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 15:14:35 executing program 4 (fault-call:8 fault-nth:5): r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="11dca50d5e0bcfe47bf070") mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) 15:14:35 executing program 2: r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000280)='/dev/fuse\x00', 0x2, 0x0) r1 = getpgid(0x0) prctl$PR_SET_PTRACER(0x59616d61, r1) clone(0x802102001fff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) syz_open_dev$vbi(&(0x7f0000000240)='/dev/vbi#\x00', 0x0, 0x2) r2 = gettid() ioctl$VT_GETMODE(r0, 0x5601, &(0x7f0000000180)) wait4(0x0, 0x0, 0x80000000, 0x0) ptrace$setopts(0x4206, r2, 0x0, 0x0) tkill(r2, 0x38) ptrace$cont(0x18, r2, 0x0, 0x0) ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x0, 0x0, 0x0, 0x4}) getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f0000000140)=0x0) r4 = getegid() chown(&(0x7f0000000000)='./file0\x00', r3, r4) ptrace$setregs(0xd, r2, 0x0, &(0x7f0000000080)) ptrace$cont(0x9, r2, 0x0, 0x0) 15:14:35 executing program 5 (fault-call:0 fault-nth:22): syz_mount_image$ntfs(&(0x7f0000000100)='ntfs\x00', &(0x7f00000000c0)='./bus\x00', 0x0, 0x2, &(0x7f0000001680)=[{0x0, 0x0, 0x401}, {&(0x7f0000001740)="3a77dd21387d6a624e139a664bf7ec507567aba5727ca2250cce6cea", 0x1c, 0x35}], 0x8100, 0x0) 15:14:35 executing program 3 (fault-call:6 fault-nth:9): mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) [ 224.472275] RAX: ffffffffffffffda RBX: 00007f664e1a9c90 RCX: 0000000000459829 [ 224.479522] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000 [ 224.486768] RBP: 000000000075bfc8 R08: ffffffffffffffff R09: 0000000000000000 [ 224.494017] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f664e1aa6d4 [ 224.501262] R13: 00000000004bfce6 R14: 00000000004d1a58 R15: 0000000000000004 15:14:35 executing program 2: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f00000000c0)={0x26, 'aead\x00', 0x0, 0x0, 'generic-gcm-aesni\x00'}, 0x58) r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000180)="71e67a15cdf0311cfcf33a52a7d86bd1", 0x10) bind$alg(r0, &(0x7f0000000340)={0x26, 'aead\x00', 0x0, 0x0, 'aegis256-generic\x00'}, 0x58) socket$nl_generic(0x10, 0x3, 0x10) r2 = accept4$alg(r0, 0x0, 0x0, 0x0) syz_genetlink_get_family_id$net_dm(&(0x7f0000000480)='NET_DM\x00') socket$vsock_stream(0x28, 0x1, 0x0) sendmmsg$alg(r2, &(0x7f0000000fc0)=[{0x0, 0x0, &(0x7f0000000680)=[{&(0x7f0000000280)="865aefb7dae1929842efdb94377753646d70031d45a1a7fe0640ba5ecacc7d5ee371e0aad3cb9bf22c5398fef8605c0713663346e09660e6c204ab8a31873dccb3c1b0c34a0c3b3c2ff329ee469f10c69f547c88c24e1f29b7ff8e149a9b4510e4a5ae0ea152e21381cd8c0acbb4eb5efa2000b5c91e6c599a5d305f3fc559f6756e6507c24f2e31e0817b5534a2509cc914dd231f9783d4ec9612c708186415a91ced23b85a9eecc1ce9a2c4892c0adac75907c9c58cac6fb2ae0adbbd4400b", 0xfffffffffffffdea}, {&(0x7f00000003c0)="4718d79ba6fe93d49733d9551f6ad70fd10846bc406556c760c49fd0663afba6601872d69554bfac7921cc3437a377a58d27724ca6495e1bafc2452d3f9c7c6a8f1c83182a6208fdce2e6d90eb7efe899461b86e104a7bbbc0d26bd4be014d0c3bbe4587ab2cbb174affff32bcbe831ef760e1b19a1c6f6dc3e89547b5ae747789e9b9a41bf61a", 0x64}, {&(0x7f0000000580)="b82bb79df72967bb9746e4a77c97ea9e2be8918eb26f88a8445e93359e66deaf774aecf7eb27f777cae1bb43f3a801b00a41b80917fc735bf0e70c961eec6c7e91ea472ada8a0337cd68373d1d834d131297502ede59575b7f7e13f663a50df6fbd7ab040702e213e8e064d9cd9073a451c8d2b8a52f14498e278f446ccc85a8549f35ba4a64fbaf8b325d60ad84d436a078d16ae60b53418abe404a45924962eed0c032e591155767c9da79f5865aa9f02926b1fa8ca92b3f2ff5c1e78e2bc28e41d3d0d9c67b5e03daee83defddf", 0xcf}, {&(0x7f0000000000)="05e835a1e40e9aab1176fbc8222ce54ff14844e9e638e4edd4b04e372f7ab301aec2ff2fb85429cd3fe64ff57cdf446d99571d467c81c8aa6649815d36bd579cd83a515bf172a1017dca5444c6e408c443d82bacd2538c4c4f57bb4451fd89d3cb43b77282e62fa5c34ddb3597dd4441b90b6e858776793589b394242c27dd5bb6c489bdfbe3e2a134d23049d6e5120af7ad36f1cd7fffffffffffffff", 0xf1d7416165e16518}], 0x1000000000000014}], 0x1, 0x40) r3 = socket$tipc(0x1e, 0x5, 0x0) getsockopt$TIPC_GROUP_JOIN(r3, 0x10f, 0x87, &(0x7f00000001c0), &(0x7f0000000240)=0x4) r4 = getpid() fcntl$setownex(r1, 0xf, &(0x7f0000000140)={0x0, r4}) io_submit(0x0, 0x1, &(0x7f0000001440)=[&(0x7f0000000200)={0x5000000, 0x0, 0x700000000000000, 0x0, 0x0, r2, &(0x7f0000000340), 0xfdef}]) [ 224.617864] FAULT_INJECTION: forcing a failure. [ 224.617864] name failslab, interval 1, probability 0, space 0, times 0 [ 224.647979] CPU: 0 PID: 10218 Comm: syz-executor.5 Not tainted 4.14.139 #35 [ 224.649533] FAULT_INJECTION: forcing a failure. [ 224.649533] name failslab, interval 1, probability 0, space 0, times 0 [ 224.655219] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 224.655224] Call Trace: [ 224.655243] dump_stack+0x138/0x19c [ 224.655262] should_fail.cold+0x10f/0x159 [ 224.655279] should_failslab+0xdb/0x130 [ 224.655292] kmem_cache_alloc_trace+0x2e9/0x790 [ 224.655303] ? kernfs_put+0x35e/0x490 [ 224.655319] ? sysfs_add_file_mode_ns+0x1e4/0x450 [ 224.703491] ? devm_device_remove_groups+0x50/0x50 [ 224.708421] kobject_uevent_env+0x378/0xc23 [ 224.712738] ? internal_create_group+0x49a/0x7b0 [ 224.717506] kobject_uevent+0x20/0x26 [ 224.721311] lo_ioctl+0x11e7/0x1ce0 [ 224.724936] ? loop_probe+0x160/0x160 [ 224.728738] blkdev_ioctl+0x96b/0x1860 [ 224.732616] ? blkpg_ioctl+0x980/0x980 [ 224.736500] ? __might_sleep+0x93/0xb0 [ 224.740375] ? __fget+0x210/0x370 [ 224.743816] block_ioctl+0xde/0x120 [ 224.747428] ? blkdev_fallocate+0x3b0/0x3b0 [ 224.751768] do_vfs_ioctl+0x7ae/0x1060 [ 224.755663] ? selinux_file_mprotect+0x5d0/0x5d0 [ 224.760406] ? lock_downgrade+0x6e0/0x6e0 [ 224.764541] ? ioctl_preallocate+0x1c0/0x1c0 [ 224.768935] ? __fget+0x237/0x370 [ 224.772392] ? security_file_ioctl+0x89/0xb0 [ 224.777359] SyS_ioctl+0x8f/0xc0 [ 224.780710] ? do_vfs_ioctl+0x1060/0x1060 [ 224.784850] do_syscall_64+0x1e8/0x640 [ 224.788725] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 224.793560] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 224.798740] RIP: 0033:0x459697 [ 224.801919] RSP: 002b:00007f4919e8fa88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 224.809611] RAX: ffffffffffffffda RBX: 00000000200016c0 RCX: 0000000000459697 [ 224.816866] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 224.824119] RBP: 0000000000000002 R08: 0000000000000000 R09: 000000000000000a [ 224.831372] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 224.838644] R13: 00000000004c8a62 R14: 00000000004df960 R15: 0000000000000003 [ 224.845924] CPU: 1 PID: 10217 Comm: syz-executor.4 Not tainted 4.14.139 #35 [ 224.853056] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 224.862422] Call Trace: [ 224.865009] dump_stack+0x138/0x19c [ 224.868628] should_fail.cold+0x10f/0x159 [ 224.872766] should_failslab+0xdb/0x130 [ 224.872778] kmem_cache_alloc+0x2d7/0x780 [ 224.872792] ? lockdep_init_map+0x9/0x10 [ 224.872801] ? debug_mutex_init+0x2d/0x5a [ 224.872814] dup_fd+0x85/0xa40 [ 224.889135] copy_process.part.0+0x1b5a/0x6a00 [ 224.889152] ? save_trace+0x290/0x290 [ 224.900699] ? proc_fail_nth_write+0x7d/0x180 [ 224.905199] ? proc_cwd_link+0x1b0/0x1b0 [ 224.909274] ? __cleanup_sighand+0x50/0x50 [ 224.913513] ? lock_downgrade+0x6e0/0x6e0 [ 224.917673] _do_fork+0x19e/0xce0 [ 224.921131] ? fork_idle+0x280/0x280 [ 224.924852] ? fput+0xd4/0x150 [ 224.926683] FAULT_INJECTION: forcing a failure. [ 224.926683] name failslab, interval 1, probability 0, space 0, times 0 [ 224.928049] ? SyS_write+0x15e/0x230 [ 224.942927] SyS_clone+0x37/0x50 [ 224.946282] ? sys_vfork+0x30/0x30 [ 224.949810] do_syscall_64+0x1e8/0x640 [ 224.953680] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 224.958509] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 224.963679] RIP: 0033:0x459829 15:14:36 executing program 1: socket$inet(0x10, 0x5, 0x3) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(r0, 0x8000000000000001, 0x10000000000005, &(0x7f0000000980)="000000009641d897e74754e15cafa0a8d7248293e5ee7f8e2dd6354dafd8e76a155d15a7f2872ef6c17ef451745a222065498562c09b44b262a3a3c76c9f5be0a2af258fa0b6a5dc7726bf25a563705d73ff7e1f556a82ae51f2ae06145b481c4be9c760d8289dc8cb601b1805223df02fa9ac38dc714a052b8acb3070d2d63e76195379b396da6c8d0b2fbc59c17f835516dad72c98358b4ff3cca04e1dda3b0f353c684773cb3813c3d2f0645e7dca7899dce3b933de4ef6e9f512cb5a1f4ad42c632645aff8", 0xc7) setsockopt$inet6_tcp_int(r0, 0x6, 0x100000004, &(0x7f0000000080)=0x2be, 0xfd3b) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) r2 = socket$inet6_udp(0xa, 0x2, 0x0) syncfs(r2) setsockopt$inet_tcp_int(r1, 0x6, 0x7ffffffffffffe, &(0x7f0000000000)=0x85, 0x4) setsockopt$sock_int(r1, 0x1, 0x2f, &(0x7f0000000040), 0x4) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) socket(0xffffffffffffffff, 0x6, 0x5) r3 = open(&(0x7f0000000080)='./bus\x00', 0x80000000141046, 0x0) close(r3) r4 = syz_open_dev$loop(&(0x7f0000000540)='/dev/loop#\x00', 0x0, 0x105082) pwritev(0xffffffffffffffff, &(0x7f0000000440)=[{&(0x7f0000000480)="a8", 0x1}], 0x1, 0x81003) ioctl$LOOP_CHANGE_FD(r4, 0x4c00, 0xffffffffffffffff) bpf$OBJ_GET_MAP(0x7, &(0x7f00000003c0)={&(0x7f0000000400)='./bus\x00', 0x0, 0x8}, 0xfffffffffffffecd) r5 = socket$inet6(0xa, 0x5, 0x2) connect$inet6(r5, &(0x7f0000000100)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, [], 0x1, 0x0}, 0x7}, 0x1c) setsockopt$inet6_opts(r5, 0x29, 0x40, &(0x7f0000000580)=ANY=[@ANYBLOB="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"], 0x1) sendmmsg(r5, &(0x7f00000092c0), 0x4ff, 0x0) mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x800003, 0x11, r3, 0x0) socketpair$unix(0x1, 0x800000000000003, 0x0, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x360) fcntl$setstatus(r4, 0x4, 0x44000) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r7, &(0x7f00000001c0), 0x526987c9) read(r6, &(0x7f0000000200)=""/250, 0x50c7e3e3) sendfile(r4, 0xffffffffffffffff, 0x0, 0x80003) 15:14:36 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070") epoll_ctl$EPOLL_CTL_DEL(r0, 0x2, r0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x28001, 0x0) read$rfkill(r1, &(0x7f0000000000), 0x3) ioctl$int_in(r1, 0x800060c0045005, &(0x7f0000000140)=0x5ad) [ 224.966847] RSP: 002b:00007f885a32dc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 224.974532] RAX: ffffffffffffffda RBX: 00007f885a32dc90 RCX: 0000000000459829 [ 224.981956] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000 [ 224.989295] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000 [ 224.996542] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f885a32e6d4 [ 225.003791] R13: 00000000004bfce6 R14: 00000000004d1a58 R15: 0000000000000005 15:14:36 executing program 4 (fault-call:8 fault-nth:6): r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="11dca50d5e0bcfe47bf070") mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) [ 225.024437] CPU: 0 PID: 10223 Comm: syz-executor.3 Not tainted 4.14.139 #35 [ 225.031589] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 225.040953] Call Trace: [ 225.043552] dump_stack+0x138/0x19c [ 225.047205] should_fail.cold+0x10f/0x159 [ 225.051367] should_failslab+0xdb/0x130 [ 225.055364] kmem_cache_alloc+0x2d7/0x780 [ 225.059559] ? dup_fd+0x533/0xa40 [ 225.063016] copy_fs_struct+0x43/0x2d0 [ 225.066910] copy_process.part.0+0x3924/0x6a00 15:14:36 executing program 2: socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) set_mempolicy(0x4003, &(0x7f0000000080)=0xffffffffffffffb7, 0x20) r2 = openat$selinux_avc_cache_stats(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/avc/cache_stats\x00', 0x0, 0x0) r3 = getpgid(0xffffffffffffffff) getsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000000500)={{{@in=@dev, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@multicast2}, 0x0, @in=@loopback}}, &(0x7f0000000600)=0xe8) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000640)={0x0, 0x0, 0x0}, &(0x7f0000000680)=0xc) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f00000006c0)={0x0}, &(0x7f0000000700)=0xc) getsockopt$inet6_IPV6_IPSEC_POLICY(r2, 0x29, 0x22, &(0x7f0000000740)={{{@in=@empty, @in6=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in=@multicast2}}, &(0x7f0000000840)=0xe8) lstat(&(0x7f0000000880)='./file0\x00', &(0x7f00000008c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) r9 = fcntl$getown(r0, 0x9) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000940)={0x0, 0x0}, &(0x7f0000000980)=0xc) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f00000009c0)={0x0, 0x0, 0x0}, &(0x7f0000000a00)=0xc) sendmsg$unix(r1, &(0x7f0000000b00)={&(0x7f0000000380)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f00000004c0)=[{&(0x7f0000000400)="5fd558e3d049c1bee0bf0257ac5ddf433cff9b9280f870d283d7274655186113a676cb1267f08f4bacf07d3cbb14a702babb2cb56179790fdc58931d7e4877bf97bf19ead8bd50bac3dba4c228239ef2cd6d81e36a052e40a9786f98917635c82b8d65c9444215756e4dff41d5d5d09423b1ed112e70c7dcb0bab7f732ba31d88a5a6f8ad288200fc17fb7fef80e5a19421bb188d4b78c2383d852a2187e89e3f6a0463f0e479ca6540875e4d94281ff2797c91609566be93ac6cb5a4f4c527c", 0xc0}], 0x1, &(0x7f0000000a40)=[@cred={{0x1c, 0x1, 0x2, {r3, r4, r5}}}, @cred={{0x1c, 0x1, 0x2, {r6, r7, r8}}}, @rights={{0x1c, 0x1, 0x1, [r1, r2, r1]}}, @rights={{0x18, 0x1, 0x1, [r1, r0]}}, @cred={{0x1c, 0x1, 0x2, {r9, r10, r11}}}, @rights={{0x18, 0x1, 0x1, [r1, r0]}}], 0xb0, 0x10}, 0x40000) ioctl$VHOST_SET_VRING_ADDR(r2, 0x4028af11, &(0x7f0000000040)={0x3, 0x0, &(0x7f0000000180)=""/236, &(0x7f00000000c0)=""/108, &(0x7f0000000280)=""/196, 0x1000}) [ 225.071498] ? save_trace+0x290/0x290 [ 225.075302] ? proc_fail_nth_write+0x7d/0x180 [ 225.079801] ? proc_cwd_link+0x1b0/0x1b0 [ 225.083870] ? __cleanup_sighand+0x50/0x50 [ 225.088107] ? lock_downgrade+0x6e0/0x6e0 [ 225.092256] _do_fork+0x19e/0xce0 [ 225.095716] ? fork_idle+0x280/0x280 [ 225.099434] ? fput+0xd4/0x150 [ 225.102624] ? SyS_write+0x15e/0x230 [ 225.106340] SyS_clone+0x37/0x50 [ 225.109707] ? sys_vfork+0x30/0x30 [ 225.113259] do_syscall_64+0x1e8/0x640 [ 225.117153] ? trace_hardirqs_off_thunk+0x1a/0x1c 15:14:36 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x801, 0x0) bind$inet6(r0, &(0x7f0000000080)={0xa, 0x4e20}, 0x1b) listen(r0, 0x0) syz_emit_ethernet(0xfe27, &(0x7f0000000240)=ANY=[@ANYBLOB="aaaaaaaaaaaa192bce5e2dfb86dd60d8652b00140600fe8000000000000000000d00000000aafe8000000000000000000000000000aa00004e20", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB="055dcb5d8b370db1"], 0x0) ioctl$TUNGETIFF(0xffffffffffffffff, 0x800454d2, 0x0) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(0xffffffffffffffff, 0xc08c5332, 0x0) 15:14:36 executing program 3 (fault-call:6 fault-nth:10): mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) [ 225.122136] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 225.127320] RIP: 0033:0x459829 [ 225.130506] RSP: 002b:00007f664e1cac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 225.138203] RAX: ffffffffffffffda RBX: 00007f664e1cac90 RCX: 0000000000459829 [ 225.138209] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000 [ 225.138213] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000 [ 225.138218] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f664e1cb6d4 [ 225.138223] R13: 00000000004bfce6 R14: 00000000004d1a58 R15: 0000000000000004 15:14:36 executing program 5 (fault-call:0 fault-nth:23): syz_mount_image$ntfs(&(0x7f0000000100)='ntfs\x00', &(0x7f00000000c0)='./bus\x00', 0x0, 0x2, &(0x7f0000001680)=[{0x0, 0x0, 0x401}, {&(0x7f0000001740)="3a77dd21387d6a624e139a664bf7ec507567aba5727ca2250cce6cea", 0x1c, 0x35}], 0x8100, 0x0) [ 225.243700] FAULT_INJECTION: forcing a failure. [ 225.243700] name failslab, interval 1, probability 0, space 0, times 0 [ 225.247014] FAULT_INJECTION: forcing a failure. [ 225.247014] name failslab, interval 1, probability 0, space 0, times 0 [ 225.272748] CPU: 1 PID: 10258 Comm: syz-executor.3 Not tainted 4.14.139 #35 [ 225.279909] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 225.289270] Call Trace: [ 225.291869] dump_stack+0x138/0x19c [ 225.295495] should_fail.cold+0x10f/0x159 [ 225.299644] should_failslab+0xdb/0x130 [ 225.303615] kmem_cache_alloc+0x2d7/0x780 [ 225.307754] ? _raw_spin_unlock+0x2d/0x50 [ 225.311903] copy_process.part.0+0x3987/0x6a00 [ 225.316484] ? save_trace+0x290/0x290 [ 225.320281] ? proc_fail_nth_write+0x7d/0x180 [ 225.324768] ? proc_cwd_link+0x1b0/0x1b0 [ 225.328829] ? __cleanup_sighand+0x50/0x50 [ 225.333057] ? lock_downgrade+0x6e0/0x6e0 [ 225.337203] _do_fork+0x19e/0xce0 [ 225.340646] ? fork_idle+0x280/0x280 [ 225.344360] ? fput+0xd4/0x150 [ 225.347545] ? SyS_write+0x15e/0x230 [ 225.351258] SyS_clone+0x37/0x50 [ 225.354609] ? sys_vfork+0x30/0x30 [ 225.358136] do_syscall_64+0x1e8/0x640 [ 225.362005] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 225.366838] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 225.372022] RIP: 0033:0x459829 [ 225.375200] RSP: 002b:00007f664e1cac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 225.382896] RAX: ffffffffffffffda RBX: 00007f664e1cac90 RCX: 0000000000459829 15:14:36 executing program 1: socket$inet(0x10, 0x5, 0x3) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(r0, 0x8000000000000001, 0x10000000000005, &(0x7f0000000980)="000000009641d897e74754e15cafa0a8d7248293e5ee7f8e2dd6354dafd8e76a155d15a7f2872ef6c17ef451745a222065498562c09b44b262a3a3c76c9f5be0a2af258fa0b6a5dc7726bf25a563705d73ff7e1f556a82ae51f2ae06145b481c4be9c760d8289dc8cb601b1805223df02fa9ac38dc714a052b8acb3070d2d63e76195379b396da6c8d0b2fbc59c17f835516dad72c98358b4ff3cca04e1dda3b0f353c684773cb3813c3d2f0645e7dca7899dce3b933de4ef6e9f512cb5a1f4ad42c632645aff8", 0xc7) setsockopt$inet6_tcp_int(r0, 0x6, 0x100000004, &(0x7f0000000080)=0x2be, 0xfd3b) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) r2 = socket$inet6_udp(0xa, 0x2, 0x0) syncfs(r2) setsockopt$inet_tcp_int(r1, 0x6, 0x7ffffffffffffe, &(0x7f0000000000)=0x85, 0x4) setsockopt$sock_int(r1, 0x1, 0x2f, &(0x7f0000000040), 0x4) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) socket(0xffffffffffffffff, 0x6, 0x5) r3 = open(&(0x7f0000000080)='./bus\x00', 0x80000000141046, 0x0) close(r3) r4 = syz_open_dev$loop(&(0x7f0000000540)='/dev/loop#\x00', 0x0, 0x105082) pwritev(0xffffffffffffffff, &(0x7f0000000440)=[{&(0x7f0000000480)="a8", 0x1}], 0x1, 0x81003) ioctl$LOOP_CHANGE_FD(r4, 0x4c00, 0xffffffffffffffff) bpf$OBJ_GET_MAP(0x7, &(0x7f00000003c0)={&(0x7f0000000400)='./bus\x00', 0x0, 0x8}, 0xfffffffffffffecd) r5 = socket$inet6(0xa, 0x5, 0x2) connect$inet6(r5, &(0x7f0000000100)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, [], 0x1, 0x0}, 0x7}, 0x1c) setsockopt$inet6_opts(r5, 0x29, 0x40, &(0x7f0000000580)=ANY=[@ANYBLOB="29000000060058500ba40000005cb4b47a560100800000000002099666c20b21e8080008ae760000ec57c052aa843ac0031e4118a1a847c0e60000f5f2b1c4310380181c143c6b10022ee4de0a000000000000ffffffffffffffe7000000000000000000000000000000ff0100bf149fd5d981d72437034f05bb5c068772b310642de912c2729c83435806a73bd382c1e56638572925f03a2433d2feb19191b1ce221d87a8cbf189d711a0ef2eaed469d21c80190041c740cec379894459989e2f8785c13d863ba14f65bc3bd8101f0cfb7f5e67fa4e73f689fd819518dd1d96077a1c9fc2785a5eef5cd8d2302698ad2dcd089f8fa767244aacc5dc9302d8a7fab0f001a61e1ca1a48054355a9b1e3270bd27b1403b52ef479615d0c0939c553a704f66d677af16dfecbfb5320a99420a0000d764266803c6a7b0c72f00272659cfef2e81009412b58e07beeb27a8bf1ad4fcc5a08ea4b456bbbfd7c7bf47d0b3b738c40000001446edbaa57fcfa668883e56d870f43f701e69c6c16c4b76b85cc37303c86eab33154584a1c27a1e9b969b0f2d376728e815a2108fd533b9752382f97f734bcc065e92a9f5344c7614709fc445439b200085d3c8152faeba62db44b3d549db580c5207c91d65c6e005362fcaa7e0b2b281dd305b04c5bf62a929cfd480ef3d6060b0f0c65896d2b2ca39c9fffd03b67b623848c33c835b5ca05823d2982541c1d70e77538a4bbbf4acd7af4d0aa11901b8277ab713f35670b92bd8a903c5fbbba6bf41235394542eadb289b197f53ead5486e302b0b58a409fd1cd670de73527dc855199f54df31caf014b1d7e1a700e6df2eaf0000000d5b0bbf521ed434070fb0b27214f63f54b1162c5f4a114b48efd0e7674939406495cd2814a411ec6f9f7f5e028256227f21754e9f1bfe1a6b697e0d0739a5851c547d0ae8b46db33d9022618f798e9ff12ef901eb87b609a0eb192c2e94cc858e1bd172dd459ec8c0e650d7abc0ebdb91bb7b084f2fb08f411c59712c815a0989cd717a776961e441388a3d3339453ebdac75f9a54cfdea59bb1af457ccf06560f4a799d158408b3adf7b8e1c72981f41a2f5bb392d63f267fe69f46aaf94b9d122fd2006115741b26bd86f6600e1a3cc85188c845305b48e6320cd6ae0c10ba2cbc1e9054633bba5486423287c70644763263eb9f116341e739ed22a7e3372aa0e57f142f662ad224481150459d4cd9a2dd246a957279fef9c68bec8fa60f56bed83588e4aacfd2b5ad7fcd0e79c8bb2133ebabe957bbf5d8fa052c352b8c621d8070de5406a5e4c0c52fff0b3bb102651d0ae7991098bd9872a351c6588a8aea64203d6b1f358a809423bbfcaee3be1c62af78dea87a0d9d562f3a279a2a6d09103ae18dac9ab9790e"], 0x1) sendmmsg(r5, &(0x7f00000092c0), 0x4ff, 0x0) mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x800003, 0x11, r3, 0x0) socketpair$unix(0x1, 0x800000000000003, 0x0, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x360) fcntl$setstatus(r4, 0x4, 0x44000) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r7, &(0x7f00000001c0), 0x526987c9) read(r6, &(0x7f0000000200)=""/250, 0x50c7e3e3) sendfile(r4, 0xffffffffffffffff, 0x0, 0x80003) 15:14:36 executing program 2: bpf$PROG_LOAD(0x5, &(0x7f0000b7a000)={0x1, 0x3, &(0x7f0000000140)=ANY=[@ANYBLOB="1800000000000040000032fefc9e1d5c4c79f6ba6a3b40e652737ad5ab346ae591de8321ed85f9c70086e32ddec3cc8b73922d70897436f1c77c52c6972b48b7af8ec47a76bf426739a97ebe6b2c44cbbc14b961048db4888e1f67ce5223681bd2305302f1c89727e7864157d5f48d2d8c767d65cd72cbdfb783be334d77450f7cf5329feedbdde81e0095e0980ac2b7bce4ee14189650ffbe9c95b3cb201e49a2d9a9ca78087c71955beb0c2777c4f0df72e950b99bc3819014883febfae175883ee7719b118cc7e0dec36bb8c68ecabd608ecbbc7b23ede4ef7d86ab6795135c3eb224d632ea00"/247], &(0x7f0000f6bffb)='GPL\x00', 0x1, 0xfb, &(0x7f00000002c0)=""/251, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000080), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x70) [ 225.390153] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000 [ 225.397426] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000 [ 225.404697] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f664e1cb6d4 [ 225.411962] R13: 00000000004bfce6 R14: 00000000004d1a58 R15: 0000000000000004 [ 225.426313] CPU: 0 PID: 10257 Comm: syz-executor.4 Not tainted 4.14.139 #35 [ 225.433559] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 15:14:36 executing program 2: bind$inet6(0xffffffffffffffff, 0x0, 0x0) r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_open_dev$sndmidi(&(0x7f0000000000)='/dev/snd/midiC#D#\x00', 0x2, 0x101000) fsetxattr$security_smack_transmute(r0, &(0x7f0000000280)='security.SMACK64TRANSMUTE\x00', &(0x7f0000000200)='TRUE', 0xfffffe93, 0x3) read(r1, 0x0, 0x0) r2 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000500)='/dev/ashmem\x00', 0x4404, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_POLICY(r0, 0x400c6615, &(0x7f0000000080)) r3 = socket$inet6_udp(0xa, 0x2, 0x0) r4 = socket(0x2, 0x3, 0x8001) ioctl$sock_SIOCGPGRP(r0, 0x8904, &(0x7f0000000440)) getresgid(&(0x7f00000005c0), &(0x7f0000000600), &(0x7f0000000640)) getsockopt$inet_IP_XFRM_POLICY(r3, 0x0, 0x11, &(0x7f0000000680)={{{@in6=@local, @in6=@dev}}, {{@in=@local}, 0x0, @in=@local}}, &(0x7f0000000780)=0xe8) stat(&(0x7f00000007c0)='./file0\x00', &(0x7f0000000800)) openat$selinux_avc_hash_stats(0xffffffffffffff9c, &(0x7f0000000380)='/selinux/avc/hash_stats\x00', 0x0, 0x0) openat$ptmx(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/ptmx\x00', 0x400, 0x0) r5 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000480)='/dev/dlm-monitor\x00', 0x80000, 0x0) ioctl$TIOCGSID(r5, 0x5429, &(0x7f0000000400)) getsockopt$inet_IP_IPSEC_POLICY(r2, 0x0, 0x10, &(0x7f00000008c0)={{{@in6=@remote, @in6=@remote}}, {{@in=@initdev}, 0x0, @in6=@ipv4={[], [], @initdev}}}, &(0x7f00000009c0)=0x87) stat(&(0x7f0000000340)='./file0\x00', &(0x7f00000002c0)) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000d40)) getegid() fstat(r2, &(0x7f0000000f40)) ioctl$sock_SIOCGPGRP(r3, 0x8904, &(0x7f0000001180)) getresuid(&(0x7f00000011c0), &(0x7f0000001200), &(0x7f0000001240)) getgid() fcntl$getown(r4, 0x9) getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000001280), &(0x7f00000012c0)=0xc) getresgid(&(0x7f0000000180), &(0x7f0000000240), &(0x7f0000000140)) getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f00000013c0), &(0x7f0000001400)=0xc) getuid() getgroups(0x3, &(0x7f0000001440)=[0x0, 0xee01, 0xee00]) ioctl$PERF_EVENT_IOC_RESET(r1, 0x2403, 0x266) getsockopt$IP6T_SO_GET_REVISION_TARGET(r3, 0x29, 0x45, &(0x7f00000000c0)={'TPROXY\x00'}, &(0x7f0000000100)=0x1e) r6 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x2, 0x0) dup2(r4, r6) [ 225.442920] Call Trace: [ 225.445516] dump_stack+0x138/0x19c [ 225.449157] should_fail.cold+0x10f/0x159 [ 225.453321] should_failslab+0xdb/0x130 [ 225.457325] kmem_cache_alloc_trace+0x2e9/0x790 [ 225.462027] ? lock_downgrade+0x6e0/0x6e0 [ 225.466190] alloc_fdtable+0x7f/0x280 [ 225.470000] dup_fd+0x693/0xa40 [ 225.473297] copy_process.part.0+0x1b5a/0x6a00 [ 225.477897] ? save_trace+0x290/0x290 [ 225.481696] ? proc_fail_nth_write+0x7d/0x180 [ 225.486193] ? proc_cwd_link+0x1b0/0x1b0 [ 225.490271] ? __cleanup_sighand+0x50/0x50 [ 225.494507] ? lock_downgrade+0x6e0/0x6e0 [ 225.498659] _do_fork+0x19e/0xce0 [ 225.502107] ? fork_idle+0x280/0x280 [ 225.505842] ? fput+0xd4/0x150 [ 225.509062] ? SyS_write+0x15e/0x230 [ 225.512787] SyS_clone+0x37/0x50 [ 225.516163] ? sys_vfork+0x30/0x30 [ 225.519704] do_syscall_64+0x1e8/0x640 [ 225.523593] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 225.528470] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 225.533658] RIP: 0033:0x459829 [ 225.536838] RSP: 002b:00007f885a32dc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 15:14:36 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) getsockopt$bt_l2cap_L2CAP_OPTIONS(0xffffffffffffffff, 0x6, 0x1, 0x0, 0x0) bind$alg(r0, &(0x7f0000000000)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_pr_ctr_aes128\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000005480), 0x3007) prctl$PR_CAPBSET_DROP(0x18, 0x21) socket(0x5, 0x4, 0x9) [ 225.544542] RAX: ffffffffffffffda RBX: 00007f885a32dc90 RCX: 0000000000459829 [ 225.551817] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000 [ 225.559180] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000 [ 225.566450] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f885a32e6d4 [ 225.573722] R13: 00000000004bfce6 R14: 00000000004d1a58 R15: 0000000000000005 [ 225.585758] FAULT_INJECTION: forcing a failure. 15:14:36 executing program 3 (fault-call:6 fault-nth:11): mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) [ 225.585758] name failslab, interval 1, probability 0, space 0, times 0 [ 225.598657] CPU: 0 PID: 10260 Comm: syz-executor.5 Not tainted 4.14.139 #35 [ 225.605796] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 225.615154] Call Trace: [ 225.617753] dump_stack+0x138/0x19c [ 225.621399] should_fail.cold+0x10f/0x159 [ 225.625563] should_failslab+0xdb/0x130 [ 225.629549] kmem_cache_alloc_node+0x287/0x780 [ 225.634143] __alloc_skb+0x9c/0x500 [ 225.637775] ? skb_scrub_packet+0x4b0/0x4b0 15:14:36 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070") r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x28001, 0x0) read$rfkill(r1, &(0x7f0000000000), 0x3) ioctl$int_in(r1, 0x800060c0045005, &(0x7f0000000140)=0x5ad) getsockopt$inet_sctp_SCTP_GET_ASSOC_STATS(r1, 0x84, 0x70, &(0x7f0000000180)={0x0, @in={{0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0xc}}}, [0x2800000000000, 0x6, 0xff, 0x800, 0x1ff, 0x7, 0x200, 0x7, 0x8, 0x0, 0x6, 0x4, 0x3e, 0x8, 0x5]}, &(0x7f00000000c0)=0x100) setsockopt$inet_sctp6_SCTP_AUTH_DELETE_KEY(r1, 0x84, 0x19, &(0x7f0000000100)={r2, 0x1}, 0x8) [ 225.642097] ? netlink_has_listeners+0x20a/0x330 [ 225.646859] kobject_uevent_env+0x781/0xc23 [ 225.651183] ? internal_create_group+0x49a/0x7b0 [ 225.655958] kobject_uevent+0x20/0x26 [ 225.659757] lo_ioctl+0x11e7/0x1ce0 [ 225.663393] ? loop_probe+0x160/0x160 [ 225.667209] blkdev_ioctl+0x96b/0x1860 [ 225.671101] ? blkpg_ioctl+0x980/0x980 [ 225.674991] ? __might_sleep+0x93/0xb0 [ 225.678873] ? __fget+0x210/0x370 [ 225.682337] block_ioctl+0xde/0x120 [ 225.685971] ? blkdev_fallocate+0x3b0/0x3b0 [ 225.690298] do_vfs_ioctl+0x7ae/0x1060 [ 225.694217] ? selinux_file_mprotect+0x5d0/0x5d0 [ 225.698986] ? lock_downgrade+0x6e0/0x6e0 [ 225.703140] ? ioctl_preallocate+0x1c0/0x1c0 [ 225.707559] ? __fget+0x237/0x370 [ 225.711353] ? security_file_ioctl+0x89/0xb0 [ 225.715774] SyS_ioctl+0x8f/0xc0 [ 225.719144] ? do_vfs_ioctl+0x1060/0x1060 [ 225.723325] do_syscall_64+0x1e8/0x640 [ 225.727222] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 225.732087] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 225.737301] RIP: 0033:0x459697 15:14:36 executing program 1: socket$inet(0x10, 0x5, 0x3) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(r0, 0x8000000000000001, 0x10000000000005, &(0x7f0000000980)="000000009641d897e74754e15cafa0a8d7248293e5ee7f8e2dd6354dafd8e76a155d15a7f2872ef6c17ef451745a222065498562c09b44b262a3a3c76c9f5be0a2af258fa0b6a5dc7726bf25a563705d73ff7e1f556a82ae51f2ae06145b481c4be9c760d8289dc8cb601b1805223df02fa9ac38dc714a052b8acb3070d2d63e76195379b396da6c8d0b2fbc59c17f835516dad72c98358b4ff3cca04e1dda3b0f353c684773cb3813c3d2f0645e7dca7899dce3b933de4ef6e9f512cb5a1f4ad42c632645aff8", 0xc7) setsockopt$inet6_tcp_int(r0, 0x6, 0x100000004, &(0x7f0000000080)=0x2be, 0xfd3b) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) r2 = socket$inet6_udp(0xa, 0x2, 0x0) syncfs(r2) setsockopt$inet_tcp_int(r1, 0x6, 0x7ffffffffffffe, &(0x7f0000000000)=0x85, 0x4) setsockopt$sock_int(r1, 0x1, 0x2f, &(0x7f0000000040), 0x4) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) socket(0xffffffffffffffff, 0x6, 0x5) r3 = open(&(0x7f0000000080)='./bus\x00', 0x80000000141046, 0x0) close(r3) r4 = memfd_create(&(0x7f0000000300)='4t\xb9L<\xf2\x00\x90\xcd\x00\x00\x00\x00\x00\x00', 0x2) pwritev(r4, &(0x7f0000000440)=[{&(0x7f0000000480)="a8", 0x1}], 0x1, 0x81003) ioctl$LOOP_CHANGE_FD(0xffffffffffffffff, 0x4c00, r4) bpf$OBJ_GET_MAP(0x7, &(0x7f00000003c0)={&(0x7f0000000400)='./bus\x00', 0x0, 0x8}, 0xfffffffffffffecd) r5 = socket$inet6(0xa, 0x5, 0x2) connect$inet6(r5, &(0x7f0000000100)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, [], 0x1, 0x0}, 0x7}, 0x1c) setsockopt$inet6_opts(r5, 0x29, 0x40, &(0x7f0000000580)=ANY=[@ANYBLOB="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"], 0x1) sendmmsg(r5, &(0x7f00000092c0), 0x4ff, 0x0) mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x800003, 0x11, r3, 0x0) socketpair$unix(0x1, 0x800000000000003, 0x0, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x360) fcntl$setstatus(0xffffffffffffffff, 0x4, 0x44000) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r7, &(0x7f00000001c0), 0x526987c9) read(r6, &(0x7f0000000200)=""/250, 0x50c7e3e3) sendfile(0xffffffffffffffff, r4, 0x0, 0x80003) [ 225.740502] RSP: 002b:00007f4919e8fa88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 225.748219] RAX: ffffffffffffffda RBX: 00000000200016c0 RCX: 0000000000459697 [ 225.755613] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 225.762893] RBP: 0000000000000002 R08: 0000000000000000 R09: 000000000000000a [ 225.770160] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 225.777434] R13: 00000000004c8a62 R14: 00000000004df960 R15: 0000000000000003 15:14:37 executing program 4 (fault-call:8 fault-nth:7): r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="11dca50d5e0bcfe47bf070") mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) 15:14:37 executing program 5 (fault-call:0 fault-nth:24): syz_mount_image$ntfs(&(0x7f0000000100)='ntfs\x00', &(0x7f00000000c0)='./bus\x00', 0x0, 0x2, &(0x7f0000001680)=[{0x0, 0x0, 0x401}, {&(0x7f0000001740)="3a77dd21387d6a624e139a664bf7ec507567aba5727ca2250cce6cea", 0x1c, 0x35}], 0x8100, 0x0) 15:14:37 executing program 2: r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f00000000c0)={0x0, 0x4, 0x80000001, 0xfffffffffffffff8}) r1 = socket$alg(0x26, 0x5, 0x0) bind$alg(r1, &(0x7f0000000100)={0x26, 'skcipher\x00', 0x0, 0x0, 'lrw(serpent)\x00'}, 0x58) r2 = openat$selinux_status(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/status\x00', 0x0, 0x0) openat$cgroup_int(r2, &(0x7f0000000040)='io.bfq.weight\x00', 0x2, 0x0) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="b7f2288a911993d6265df5001cdd8b55", 0xffffffffffffffa5) [ 225.928886] FAULT_INJECTION: forcing a failure. [ 225.928886] name failslab, interval 1, probability 0, space 0, times 0 [ 225.952864] FAULT_INJECTION: forcing a failure. [ 225.952864] name failslab, interval 1, probability 0, space 0, times 0 [ 225.963665] CPU: 0 PID: 10301 Comm: syz-executor.3 Not tainted 4.14.139 #35 [ 225.971203] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 225.980563] Call Trace: [ 225.983154] dump_stack+0x138/0x19c [ 225.986792] should_fail.cold+0x10f/0x159 [ 225.990948] should_failslab+0xdb/0x130 [ 225.994922] kmem_cache_alloc+0x2d7/0x780 [ 225.999157] ? _raw_spin_unlock_irq+0x28/0x90 [ 226.003644] ? trace_hardirqs_on_caller+0x400/0x590 [ 226.008667] copy_process.part.0+0x1cd5/0x6a00 [ 226.013242] ? save_trace+0x290/0x290 [ 226.017032] ? proc_fail_nth_write+0x7d/0x180 [ 226.021516] ? proc_cwd_link+0x1b0/0x1b0 [ 226.025577] ? __cleanup_sighand+0x50/0x50 [ 226.029813] ? lock_downgrade+0x6e0/0x6e0 [ 226.033960] _do_fork+0x19e/0xce0 [ 226.037409] ? fork_idle+0x280/0x280 [ 226.041116] ? fput+0xd4/0x150 [ 226.044298] ? SyS_write+0x15e/0x230 [ 226.048001] SyS_clone+0x37/0x50 [ 226.051353] ? sys_vfork+0x30/0x30 [ 226.054885] do_syscall_64+0x1e8/0x640 [ 226.058762] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 226.063608] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 226.068786] RIP: 0033:0x459829 [ 226.071971] RSP: 002b:00007f664e1cac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 226.079670] RAX: ffffffffffffffda RBX: 00007f664e1cac90 RCX: 0000000000459829 [ 226.086927] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000 [ 226.094187] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000 [ 226.101444] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f664e1cb6d4 [ 226.108699] R13: 00000000004bfce6 R14: 00000000004d1a58 R15: 0000000000000004 [ 226.115977] CPU: 1 PID: 10309 Comm: syz-executor.4 Not tainted 4.14.139 #35 [ 226.123095] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 226.132442] Call Trace: [ 226.132460] dump_stack+0x138/0x19c [ 226.132478] should_fail.cold+0x10f/0x159 [ 226.142803] should_failslab+0xdb/0x130 [ 226.146902] kmem_cache_alloc_trace+0x2e9/0x790 [ 226.146920] ? lock_downgrade+0x6e0/0x6e0 [ 226.155715] alloc_fdtable+0x7f/0x280 [ 226.158213] FAULT_INJECTION: forcing a failure. [ 226.158213] name failslab, interval 1, probability 0, space 0, times 0 [ 226.159512] dup_fd+0x693/0xa40 [ 226.159535] copy_process.part.0+0x1b5a/0x6a00 [ 226.178548] ? save_trace+0x290/0x290 [ 226.182344] ? proc_fail_nth_write+0x7d/0x180 [ 226.186830] ? proc_cwd_link+0x1b0/0x1b0 [ 226.190908] ? __cleanup_sighand+0x50/0x50 [ 226.195155] ? lock_downgrade+0x6e0/0x6e0 [ 226.199311] _do_fork+0x19e/0xce0 [ 226.202780] ? fork_idle+0x280/0x280 [ 226.206498] ? fput+0xd4/0x150 [ 226.209692] ? SyS_write+0x15e/0x230 [ 226.213411] SyS_clone+0x37/0x50 [ 226.216796] ? sys_vfork+0x30/0x30 [ 226.220335] do_syscall_64+0x1e8/0x640 [ 226.224224] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 226.229097] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 226.234289] RIP: 0033:0x459829 [ 226.237475] RSP: 002b:00007f885a32dc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 226.245188] RAX: ffffffffffffffda RBX: 00007f885a32dc90 RCX: 0000000000459829 [ 226.252469] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000 [ 226.259755] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000 [ 226.267032] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f885a32e6d4 15:14:37 executing program 1: socket$inet(0x10, 0x5, 0x3) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(r0, 0x8000000000000001, 0x10000000000005, &(0x7f0000000980)="000000009641d897e74754e15cafa0a8d7248293e5ee7f8e2dd6354dafd8e76a155d15a7f2872ef6c17ef451745a222065498562c09b44b262a3a3c76c9f5be0a2af258fa0b6a5dc7726bf25a563705d73ff7e1f556a82ae51f2ae06145b481c4be9c760d8289dc8cb601b1805223df02fa9ac38dc714a052b8acb3070d2d63e76195379b396da6c8d0b2fbc59c17f835516dad72c98358b4ff3cca04e1dda3b0f353c684773cb3813c3d2f0645e7dca7899dce3b933de4ef6e9f512cb5a1f4ad42c632645aff8", 0xc7) setsockopt$inet6_tcp_int(r0, 0x6, 0x100000004, &(0x7f0000000080)=0x2be, 0xfd3b) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) r2 = socket$inet6_udp(0xa, 0x2, 0x0) syncfs(r2) setsockopt$inet_tcp_int(r1, 0x6, 0x7ffffffffffffe, &(0x7f0000000000)=0x85, 0x4) setsockopt$sock_int(r1, 0x1, 0x2f, &(0x7f0000000040), 0x4) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) socket(0xffffffffffffffff, 0x6, 0x5) r3 = open(&(0x7f0000000080)='./bus\x00', 0x80000000141046, 0x0) close(r3) r4 = memfd_create(&(0x7f0000000300)='4t\xb9L<\xf2\x00\x90\xcd\x00\x00\x00\x00\x00\x00', 0x2) pwritev(r4, &(0x7f0000000440)=[{&(0x7f0000000480)="a8", 0x1}], 0x1, 0x81003) ioctl$LOOP_CHANGE_FD(0xffffffffffffffff, 0x4c00, r4) bpf$OBJ_GET_MAP(0x7, &(0x7f00000003c0)={&(0x7f0000000400)='./bus\x00', 0x0, 0x8}, 0xfffffffffffffecd) r5 = socket$inet6(0xa, 0x5, 0x2) connect$inet6(r5, &(0x7f0000000100)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, [], 0x1, 0x0}, 0x7}, 0x1c) setsockopt$inet6_opts(r5, 0x29, 0x40, &(0x7f0000000580)=ANY=[@ANYBLOB="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"], 0x1) sendmmsg(r5, &(0x7f00000092c0), 0x4ff, 0x0) mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x800003, 0x11, r3, 0x0) socketpair$unix(0x1, 0x800000000000003, 0x0, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x360) fcntl$setstatus(0xffffffffffffffff, 0x4, 0x44000) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r7, &(0x7f00000001c0), 0x526987c9) read(r6, &(0x7f0000000200)=""/250, 0x50c7e3e3) sendfile(0xffffffffffffffff, r4, 0x0, 0x80003) 15:14:37 executing program 3 (fault-call:6 fault-nth:12): mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) [ 226.274305] R13: 00000000004bfce6 R14: 00000000004d1a58 R15: 0000000000000005 [ 226.281617] CPU: 0 PID: 10312 Comm: syz-executor.5 Not tainted 4.14.139 #35 [ 226.288730] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 226.298130] Call Trace: [ 226.300721] dump_stack+0x138/0x19c [ 226.300741] should_fail.cold+0x10f/0x159 [ 226.300758] should_failslab+0xdb/0x130 [ 226.308515] kmem_cache_alloc_node_trace+0x280/0x770 [ 226.308532] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 226.308548] __kmalloc_node_track_caller+0x3d/0x80 15:14:37 executing program 4 (fault-call:8 fault-nth:8): r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="11dca50d5e0bcfe47bf070") mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) 15:14:37 executing program 2: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = syz_open_dev$amidi(&(0x7f0000000080)='/dev/amidi#\x00', 0x7, 0x400) sendmsg$tipc(r1, &(0x7f0000000300)={&(0x7f00000000c0)=@nameseq={0x1e, 0x1, 0x1, {0x43, 0x1, 0x2}}, 0x10, &(0x7f0000000280)=[{&(0x7f0000000100)="b5cd8646ecf2b959a986be079e5ed7c0c86a41771d6b4352fa8ea2c3997a0eb82c68689ec6e4b629af674831b7ebc00f9c2cac97f184b26202c14b00e61a82cfbe5ea8d11237ad04f2400bef96fe5a66f0e11e7a4b85e49d361ebc277c024200d47da76922940fba584eef96", 0x6c}, {&(0x7f0000000180)="4b4dcae02fa4b8860039402498c6d8431e2e4d1d92bfdb06964822c7e5670e63e40e304e44539d1bbcb1635ed310a2cae48955e7", 0x34}, {&(0x7f00000001c0)="ed3d54a2a6fba7a1ad0d3425f3f362678643c9da41e5313d7e3badc0e67d1e803c111ef2f6b75e7f493aa9551fd0f2a9", 0x30}, {&(0x7f0000000480)="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", 0x1000}, {&(0x7f0000000200)="c985957e52dd7196a5be92", 0xb}, {&(0x7f0000000240)="86625ba2bb051dd0197e17cef35f7267e0c761da7cef931e4900903f8694908d06f204187c2e1233d0707d4f77886ea77fefc7", 0x33}], 0x6, 0x0, 0x0, 0x40800}, 0x20008000) setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4) connect$inet6(r0, &(0x7f0000000040), 0x1c) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0), 0x0) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r2 = gettid() setsockopt$inet6_group_source_req(r0, 0x29, 0x2f, &(0x7f0000000340)={0xb525, {{0xa, 0x0, 0x0, @mcast2}}, {{0xa, 0x0, 0x0, @remote}}}, 0x108) ptrace$setopts(0x4206, r2, 0x0, 0x0) tkill(r2, 0x10010000000034) fcntl$setstatus(r0, 0x4, 0x80000000002c00) [ 226.308564] __kmalloc_reserve.isra.0+0x40/0xe0 [ 226.308574] __alloc_skb+0xcf/0x500 [ 226.308583] ? skb_scrub_packet+0x4b0/0x4b0 [ 226.340569] ? netlink_has_listeners+0x20a/0x330 [ 226.345347] kobject_uevent_env+0x781/0xc23 [ 226.349677] ? internal_create_group+0x49a/0x7b0 [ 226.354469] kobject_uevent+0x20/0x26 [ 226.358286] lo_ioctl+0x11e7/0x1ce0 [ 226.361915] ? loop_probe+0x160/0x160 [ 226.365720] blkdev_ioctl+0x96b/0x1860 [ 226.369611] ? blkpg_ioctl+0x980/0x980 [ 226.373506] ? __might_sleep+0x93/0xb0 [ 226.377389] ? __fget+0x210/0x370 15:14:37 executing program 2: syz_emit_ethernet(0x67, &(0x7f0000000100)=ANY=[@ANYBLOB="aaaaaaaaaaaaffffffffffff9100190081002b008137ffff00510000ffffffffffffffffffff0fff00000000ffffffffffff00ff8443171880ed4eff2c3edb1395ff134773f1d93930fa6b4c70bf99a74edfa802925e74a6b3f3036fd2b818fd9d31b88867d26b"], 0x0) r0 = openat(0xffffffffffffffff, &(0x7f00000000c0)='./file0\x00', 0x181002, 0x160) setsockopt$inet6_buf(r0, 0x29, 0x3d, &(0x7f0000000180)="30e0ac4e07d9b8d5286a0dc026a89d1faa97a8457141fc47b0f24fc63dfef947f49d99113d8e9dfc2276da4009c335c18165a7a7a1ff5e516c5a80e78b4b5828b6865c418266c38ba9ed3ff7827336b5181ce9e6a42a4e3f4c121ade8c6c1d7be8eb9b", 0x63) modify_ldt$read_default(0x2, &(0x7f0000000000)=""/144, 0x90) prctl$PR_GET_TSC(0x19, &(0x7f0000000200)) 15:14:37 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_HYPERV_EVENTFD(0xffffffffffffffff, 0x4018aebd, &(0x7f00000002c0)={0x3, 0xffffffffffffffff, 0x1}) getsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000240)={@initdev={0xfe, 0x88, [], 0x1, 0x0}, 0xff, 0x2, 0x1, 0x2, 0x8000, 0x2}, &(0x7f0000000340)=0x20) mkdir(&(0x7f0000000700)='./file1\x00', 0x0) mkdir(&(0x7f00000005c0)='./file1/file0\x00', 0x0) mkdir(&(0x7f0000000100)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000300)='overlay\x00', 0x0, &(0x7f0000000c40)=ANY=[@ANYBLOB="75707065726469723d162f66696c65302c6c6f7765726469723d2e2f66696c653102006f726b6469723d2e2f66696c6531"]) getsockopt$inet6_opts(0xffffffffffffffff, 0x29, 0x39, &(0x7f00000001c0)=""/64, &(0x7f0000000200)=0x40) chdir(&(0x7f0000000040)='./file0\x00') mkdirat(0xffffffffffffffff, &(0x7f0000000140)='./file1\x00', 0x0) setsockopt$bt_BT_SNDMTU(0xffffffffffffffff, 0x112, 0xc, &(0x7f0000000080)=0x8, 0x2) rmdir(&(0x7f0000000180)='./file0\x00') mkdir(&(0x7f00000000c0)='./file1/file0\x00', 0x0) mincore(&(0x7f0000ffc000/0x3000)=nil, 0x3000, &(0x7f0000000c80)=""/4096) [ 226.380844] block_ioctl+0xde/0x120 [ 226.384469] ? blkdev_fallocate+0x3b0/0x3b0 [ 226.388794] do_vfs_ioctl+0x7ae/0x1060 [ 226.392692] ? selinux_file_mprotect+0x5d0/0x5d0 [ 226.397453] ? lock_downgrade+0x6e0/0x6e0 [ 226.401604] ? ioctl_preallocate+0x1c0/0x1c0 [ 226.406010] ? __fget+0x237/0x370 [ 226.409474] ? security_file_ioctl+0x89/0xb0 [ 226.413891] SyS_ioctl+0x8f/0xc0 [ 226.417265] ? do_vfs_ioctl+0x1060/0x1060 [ 226.421425] do_syscall_64+0x1e8/0x640 [ 226.425318] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 226.430188] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 226.435374] RIP: 0033:0x459697 [ 226.438559] RSP: 002b:00007f4919e8fa88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 226.446269] RAX: ffffffffffffffda RBX: 00000000200016c0 RCX: 0000000000459697 [ 226.453541] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 226.460810] RBP: 0000000000000002 R08: 0000000000000000 R09: 000000000000000a [ 226.461517] overlayfs: missing 'workdir' [ 226.468068] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 15:14:37 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070") r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x28001, 0x0) read$rfkill(r1, &(0x7f0000000000), 0x3) ioctl$int_in(r1, 0x800060c0045005, &(0x7f0000000140)=0x5ad) ioctl$sock_SIOCADDDLCI(r1, 0x8980, &(0x7f00000000c0)={'syzkaller0\x00', 0x7fff}) [ 226.468074] R13: 00000000004c8a62 R14: 00000000004df960 R15: 0000000000000003 15:14:37 executing program 1: socket$inet(0x10, 0x5, 0x3) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(r0, 0x8000000000000001, 0x10000000000005, &(0x7f0000000980)="000000009641d897e74754e15cafa0a8d7248293e5ee7f8e2dd6354dafd8e76a155d15a7f2872ef6c17ef451745a222065498562c09b44b262a3a3c76c9f5be0a2af258fa0b6a5dc7726bf25a563705d73ff7e1f556a82ae51f2ae06145b481c4be9c760d8289dc8cb601b1805223df02fa9ac38dc714a052b8acb3070d2d63e76195379b396da6c8d0b2fbc59c17f835516dad72c98358b4ff3cca04e1dda3b0f353c684773cb3813c3d2f0645e7dca7899dce3b933de4ef6e9f512cb5a1f4ad42c632645aff8", 0xc7) setsockopt$inet6_tcp_int(r0, 0x6, 0x100000004, &(0x7f0000000080)=0x2be, 0xfd3b) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) r2 = socket$inet6_udp(0xa, 0x2, 0x0) syncfs(r2) setsockopt$inet_tcp_int(r1, 0x6, 0x7ffffffffffffe, &(0x7f0000000000)=0x85, 0x4) setsockopt$sock_int(r1, 0x1, 0x2f, &(0x7f0000000040), 0x4) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) socket(0xffffffffffffffff, 0x6, 0x5) r3 = open(&(0x7f0000000080)='./bus\x00', 0x80000000141046, 0x0) close(r3) r4 = memfd_create(&(0x7f0000000300)='4t\xb9L<\xf2\x00\x90\xcd\x00\x00\x00\x00\x00\x00', 0x2) pwritev(r4, &(0x7f0000000440)=[{&(0x7f0000000480)="a8", 0x1}], 0x1, 0x81003) ioctl$LOOP_CHANGE_FD(0xffffffffffffffff, 0x4c00, r4) bpf$OBJ_GET_MAP(0x7, &(0x7f00000003c0)={&(0x7f0000000400)='./bus\x00', 0x0, 0x8}, 0xfffffffffffffecd) r5 = socket$inet6(0xa, 0x5, 0x2) connect$inet6(r5, &(0x7f0000000100)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, [], 0x1, 0x0}, 0x7}, 0x1c) setsockopt$inet6_opts(r5, 0x29, 0x40, &(0x7f0000000580)=ANY=[@ANYBLOB="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"], 0x1) sendmmsg(r5, &(0x7f00000092c0), 0x4ff, 0x0) mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x800003, 0x11, r3, 0x0) socketpair$unix(0x1, 0x800000000000003, 0x0, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x360) fcntl$setstatus(0xffffffffffffffff, 0x4, 0x44000) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r7, &(0x7f00000001c0), 0x526987c9) read(r6, &(0x7f0000000200)=""/250, 0x50c7e3e3) sendfile(0xffffffffffffffff, r4, 0x0, 0x80003) [ 226.569058] FAULT_INJECTION: forcing a failure. [ 226.569058] name failslab, interval 1, probability 0, space 0, times 0 [ 226.592535] FAULT_INJECTION: forcing a failure. [ 226.592535] name failslab, interval 1, probability 0, space 0, times 0 15:14:37 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_HYPERV_EVENTFD(0xffffffffffffffff, 0x4018aebd, &(0x7f00000002c0)={0x3, 0xffffffffffffffff, 0x1}) getsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000240)={@initdev={0xfe, 0x88, [], 0x1, 0x0}, 0xff, 0x2, 0x1, 0x2, 0x8000, 0x2}, &(0x7f0000000340)=0x20) mkdir(&(0x7f0000000700)='./file1\x00', 0x0) mkdir(&(0x7f00000005c0)='./file1/file0\x00', 0x0) mkdir(&(0x7f0000000100)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000300)='overlay\x00', 0x0, &(0x7f0000000c40)=ANY=[@ANYBLOB="75707065726469723d162f66696c65302c6c6f7765726469723d2e2f66696c653102006f726b6469723d2e2f66696c6531"]) getsockopt$inet6_opts(0xffffffffffffffff, 0x29, 0x39, &(0x7f00000001c0)=""/64, &(0x7f0000000200)=0x40) chdir(&(0x7f0000000040)='./file0\x00') mkdirat(0xffffffffffffffff, &(0x7f0000000140)='./file1\x00', 0x0) setsockopt$bt_BT_SNDMTU(0xffffffffffffffff, 0x112, 0xc, &(0x7f0000000080)=0x8, 0x2) rmdir(&(0x7f0000000180)='./file0\x00') mkdir(&(0x7f00000000c0)='./file1/file0\x00', 0x0) mincore(&(0x7f0000ffc000/0x3000)=nil, 0x3000, &(0x7f0000000c80)=""/4096) 15:14:37 executing program 5 (fault-call:0 fault-nth:25): syz_mount_image$ntfs(&(0x7f0000000100)='ntfs\x00', &(0x7f00000000c0)='./bus\x00', 0x0, 0x2, &(0x7f0000001680)=[{0x0, 0x0, 0x401}, {&(0x7f0000001740)="3a77dd21387d6a624e139a664bf7ec507567aba5727ca2250cce6cea", 0x1c, 0x35}], 0x8100, 0x0) [ 226.614771] CPU: 0 PID: 10341 Comm: syz-executor.4 Not tainted 4.14.139 #35 [ 226.621931] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 226.631292] Call Trace: [ 226.633895] dump_stack+0x138/0x19c [ 226.637541] should_fail.cold+0x10f/0x159 [ 226.641702] should_failslab+0xdb/0x130 [ 226.645668] kmem_cache_alloc_node_trace+0x280/0x770 [ 226.650765] ? kasan_unpoison_shadow+0x35/0x50 [ 226.655348] __kmalloc_node+0x3d/0x80 [ 226.659138] kvmalloc_node+0x4e/0xe0 [ 226.662842] alloc_fdtable+0x13b/0x280 [ 226.666720] dup_fd+0x693/0xa40 [ 226.670004] copy_process.part.0+0x1b5a/0x6a00 [ 226.674580] ? save_trace+0x290/0x290 [ 226.678371] ? proc_fail_nth_write+0x7d/0x180 [ 226.682855] ? proc_cwd_link+0x1b0/0x1b0 [ 226.686916] ? __cleanup_sighand+0x50/0x50 [ 226.691143] ? lock_downgrade+0x6e0/0x6e0 [ 226.695298] _do_fork+0x19e/0xce0 [ 226.698745] ? fork_idle+0x280/0x280 [ 226.702454] ? fput+0xd4/0x150 [ 226.705635] ? SyS_write+0x15e/0x230 [ 226.709343] SyS_clone+0x37/0x50 [ 226.712698] ? sys_vfork+0x30/0x30 [ 226.716234] do_syscall_64+0x1e8/0x640 [ 226.720113] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 226.724955] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 226.730136] RIP: 0033:0x459829 [ 226.733320] RSP: 002b:00007f885a32dc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 226.741014] RAX: ffffffffffffffda RBX: 00007f885a32dc90 RCX: 0000000000459829 [ 226.748291] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000 [ 226.755564] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000 [ 226.762831] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f885a32e6d4 [ 226.770087] R13: 00000000004bfce6 R14: 00000000004d1a58 R15: 0000000000000005 [ 226.777361] CPU: 1 PID: 10343 Comm: syz-executor.3 Not tainted 4.14.139 #35 [ 226.784473] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 226.793830] Call Trace: [ 226.796464] dump_stack+0x138/0x19c [ 226.800096] should_fail.cold+0x10f/0x159 [ 226.804242] should_failslab+0xdb/0x130 [ 226.808196] kmem_cache_alloc+0x2d7/0x780 [ 226.812342] ? _raw_spin_unlock_irq+0x28/0x90 [ 226.816864] ? trace_hardirqs_on_caller+0x400/0x590 [ 226.821893] copy_process.part.0+0x1cd5/0x6a00 [ 226.826488] ? save_trace+0x290/0x290 [ 226.830297] ? proc_fail_nth_write+0x7d/0x180 [ 226.834777] ? proc_cwd_link+0x1b0/0x1b0 [ 226.838833] ? __cleanup_sighand+0x50/0x50 [ 226.843057] ? lock_downgrade+0x6e0/0x6e0 [ 226.847189] _do_fork+0x19e/0xce0 [ 226.850622] ? fork_idle+0x280/0x280 [ 226.854319] ? fput+0xd4/0x150 [ 226.857486] ? SyS_write+0x15e/0x230 [ 226.861188] SyS_clone+0x37/0x50 [ 226.864537] ? sys_vfork+0x30/0x30 [ 226.868052] do_syscall_64+0x1e8/0x640 [ 226.871914] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 226.876758] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 226.881948] RIP: 0033:0x459829 [ 226.885134] RSP: 002b:00007f664e1cac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 226.892848] RAX: ffffffffffffffda RBX: 00007f664e1cac90 RCX: 0000000000459829 [ 226.900120] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000 [ 226.907391] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000 15:14:38 executing program 1: socket$inet(0x10, 0x5, 0x3) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(r0, 0x8000000000000001, 0x10000000000005, &(0x7f0000000980)="000000009641d897e74754e15cafa0a8d7248293e5ee7f8e2dd6354dafd8e76a155d15a7f2872ef6c17ef451745a222065498562c09b44b262a3a3c76c9f5be0a2af258fa0b6a5dc7726bf25a563705d73ff7e1f556a82ae51f2ae06145b481c4be9c760d8289dc8cb601b1805223df02fa9ac38dc714a052b8acb3070d2d63e76195379b396da6c8d0b2fbc59c17f835516dad72c98358b4ff3cca04e1dda3b0f353c684773cb3813c3d2f0645e7dca7899dce3b933de4ef6e9f512cb5a1f4ad42c632645aff8", 0xc7) setsockopt$inet6_tcp_int(r0, 0x6, 0x100000004, &(0x7f0000000080)=0x2be, 0xfd3b) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) r2 = socket$inet6_udp(0xa, 0x2, 0x0) syncfs(r2) setsockopt$inet_tcp_int(r1, 0x6, 0x7ffffffffffffe, &(0x7f0000000000)=0x85, 0x4) setsockopt$sock_int(r1, 0x1, 0x2f, &(0x7f0000000040), 0x4) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) socket(0xffffffffffffffff, 0x6, 0x5) r3 = open(&(0x7f0000000080)='./bus\x00', 0x80000000141046, 0x0) r4 = syz_open_dev$loop(&(0x7f0000000540)='/dev/loop#\x00', 0x0, 0x105082) r5 = memfd_create(&(0x7f0000000300)='4t\xb9L<\xf2\x00\x90\xcd\x00\x00\x00\x00\x00\x00', 0x2) pwritev(r5, &(0x7f0000000440)=[{&(0x7f0000000480)="a8", 0x1}], 0x1, 0x81003) ioctl$LOOP_CHANGE_FD(r4, 0x4c00, r5) bpf$OBJ_GET_MAP(0x7, &(0x7f00000003c0)={&(0x7f0000000400)='./bus\x00', 0x0, 0x8}, 0xfffffffffffffecd) r6 = socket$inet6(0xa, 0x5, 0x2) connect$inet6(r6, &(0x7f0000000100)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, [], 0x1, 0x0}, 0x7}, 0x1c) setsockopt$inet6_opts(r6, 0x29, 0x40, &(0x7f0000000580)=ANY=[@ANYBLOB="29000000060058500ba40000005cb4b47a560100800000000002099666c20b21e8080008ae760000ec57c052aa843ac0031e4118a1a847c0e60000f5f2b1c4310380181c143c6b10022ee4de0a000000000000ffffffffffffffe7000000000000000000000000000000ff0100bf149fd5d981d72437034f05bb5c068772b310642de912c2729c83435806a73bd382c1e56638572925f03a2433d2feb19191b1ce221d87a8cbf189d711a0ef2eaed469d21c80190041c740cec379894459989e2f8785c13d863ba14f65bc3bd8101f0cfb7f5e67fa4e73f689fd819518dd1d96077a1c9fc2785a5eef5cd8d2302698ad2dcd089f8fa767244aacc5dc9302d8a7fab0f001a61e1ca1a48054355a9b1e3270bd27b1403b52ef479615d0c0939c553a704f66d677af16dfecbfb5320a99420a0000d764266803c6a7b0c72f00272659cfef2e81009412b58e07beeb27a8bf1ad4fcc5a08ea4b456bbbfd7c7bf47d0b3b738c40000001446edbaa57fcfa668883e56d870f43f701e69c6c16c4b76b85cc37303c86eab33154584a1c27a1e9b969b0f2d376728e815a2108fd533b9752382f97f734bcc065e92a9f5344c7614709fc445439b200085d3c8152faeba62db44b3d549db580c5207c91d65c6e005362fcaa7e0b2b281dd305b04c5bf62a929cfd480ef3d6060b0f0c65896d2b2ca39c9fffd03b67b623848c33c835b5ca05823d2982541c1d70e77538a4bbbf4acd7af4d0aa11901b8277ab713f35670b92bd8a903c5fbbba6bf41235394542eadb289b197f53ead5486e302b0b58a409fd1cd670de73527dc855199f54df31caf014b1d7e1a700e6df2eaf0000000d5b0bbf521ed434070fb0b27214f63f54b1162c5f4a114b48efd0e7674939406495cd2814a411ec6f9f7f5e028256227f21754e9f1bfe1a6b697e0d0739a5851c547d0ae8b46db33d9022618f798e9ff12ef901eb87b609a0eb192c2e94cc858e1bd172dd459ec8c0e650d7abc0ebdb91bb7b084f2fb08f411c59712c815a0989cd717a776961e441388a3d3339453ebdac75f9a54cfdea59bb1af457ccf06560f4a799d158408b3adf7b8e1c72981f41a2f5bb392d63f267fe69f46aaf94b9d122fd2006115741b26bd86f6600e1a3cc85188c845305b48e6320cd6ae0c10ba2cbc1e9054633bba5486423287c70644763263eb9f116341e739ed22a7e3372aa0e57f142f662ad224481150459d4cd9a2dd246a957279fef9c68bec8fa60f56bed83588e4aacfd2b5ad7fcd0e79c8bb2133ebabe957bbf5d8fa052c352b8c621d8070de5406a5e4c0c52fff0b3bb102651d0ae7991098bd9872a351c6588a8aea64203d6b1f358a809423bbfcaee3be1c62af78dea87a0d9d562f3a279a2a6d09103ae18dac9ab9790e"], 0x1) sendmmsg(r6, &(0x7f00000092c0), 0x4ff, 0x0) mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x800003, 0x11, r3, 0x0) socketpair$unix(0x1, 0x800000000000003, 0x0, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x360) fcntl$setstatus(r4, 0x4, 0x44000) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r8, &(0x7f00000001c0), 0x526987c9) read(r7, &(0x7f0000000200)=""/250, 0x50c7e3e3) sendfile(r4, r5, 0x0, 0x80003) [ 226.914665] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f664e1cb6d4 [ 226.921935] R13: 00000000004bfce6 R14: 00000000004d1a58 R15: 0000000000000004 [ 227.004500] FAULT_INJECTION: forcing a failure. [ 227.004500] name failslab, interval 1, probability 0, space 0, times 0 [ 227.032649] CPU: 1 PID: 10362 Comm: syz-executor.5 Not tainted 4.14.139 #35 [ 227.039731] overlayfs: missing 'workdir' [ 227.039808] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 227.039814] Call Trace: [ 227.039832] dump_stack+0x138/0x19c [ 227.039852] should_fail.cold+0x10f/0x159 [ 227.039868] should_failslab+0xdb/0x130 [ 227.067569] kmem_cache_alloc_node_trace+0x280/0x770 [ 227.072692] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 227.078259] __kmalloc_node_track_caller+0x3d/0x80 [ 227.079121] FAULT_INJECTION: forcing a failure. [ 227.079121] name failslab, interval 1, probability 0, space 0, times 0 [ 227.083196] __kmalloc_reserve.isra.0+0x40/0xe0 [ 227.083206] __alloc_skb+0xcf/0x500 15:14:38 executing program 4 (fault-call:8 fault-nth:9): r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="11dca50d5e0bcfe47bf070") mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) 15:14:38 executing program 3 (fault-call:6 fault-nth:13): mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) [ 227.083213] ? skb_scrub_packet+0x4b0/0x4b0 [ 227.083225] ? netlink_has_listeners+0x20a/0x330 [ 227.083238] kobject_uevent_env+0x781/0xc23 [ 227.083253] kobject_uevent+0x20/0x26 [ 227.083265] lo_ioctl+0x11e7/0x1ce0 [ 227.083277] ? loop_probe+0x160/0x160 [ 227.083288] blkdev_ioctl+0x96b/0x1860 [ 227.083300] ? blkpg_ioctl+0x980/0x980 [ 227.134997] ? __might_sleep+0x93/0xb0 [ 227.138893] ? __fget+0x210/0x370 [ 227.142344] block_ioctl+0xde/0x120 [ 227.145980] ? blkdev_fallocate+0x3b0/0x3b0 [ 227.150305] do_vfs_ioctl+0x7ae/0x1060 [ 227.154190] ? selinux_file_mprotect+0x5d0/0x5d0 [ 227.158943] ? lock_downgrade+0x6e0/0x6e0 [ 227.163083] ? ioctl_preallocate+0x1c0/0x1c0 [ 227.167489] ? __fget+0x237/0x370 [ 227.170936] ? security_file_ioctl+0x89/0xb0 [ 227.175340] SyS_ioctl+0x8f/0xc0 [ 227.178699] ? do_vfs_ioctl+0x1060/0x1060 [ 227.182839] do_syscall_64+0x1e8/0x640 [ 227.186729] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 227.191568] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 227.196923] RIP: 0033:0x459697 [ 227.200097] RSP: 002b:00007f4919e8fa88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 227.207796] RAX: ffffffffffffffda RBX: 00000000200016c0 RCX: 0000000000459697 [ 227.215063] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 227.222325] RBP: 0000000000000002 R08: 0000000000000000 R09: 000000000000000a [ 227.229580] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 227.236836] R13: 00000000004c8a62 R14: 00000000004df960 R15: 0000000000000003 [ 227.244111] CPU: 0 PID: 10370 Comm: syz-executor.4 Not tainted 4.14.139 #35 [ 227.251229] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 227.260587] Call Trace: [ 227.263196] dump_stack+0x138/0x19c [ 227.263212] should_fail.cold+0x10f/0x159 [ 227.270977] should_failslab+0xdb/0x130 [ 227.274957] kmem_cache_alloc+0x2d7/0x780 [ 227.274971] ? dup_fd+0x533/0xa40 [ 227.274987] copy_fs_struct+0x43/0x2d0 [ 227.275003] copy_process.part.0+0x3924/0x6a00 [ 227.291056] ? save_trace+0x290/0x290 [ 227.294866] ? proc_fail_nth_write+0x7d/0x180 [ 227.299373] ? proc_cwd_link+0x1b0/0x1b0 [ 227.303460] ? __cleanup_sighand+0x50/0x50 [ 227.303538] FAULT_INJECTION: forcing a failure. [ 227.303538] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 227.307691] ? lock_downgrade+0x6e0/0x6e0 [ 227.307710] _do_fork+0x19e/0xce0 [ 227.307724] ? fork_idle+0x280/0x280 [ 227.307745] ? fput+0xd4/0x150 [ 227.333994] ? SyS_write+0x15e/0x230 [ 227.337720] SyS_clone+0x37/0x50 [ 227.341094] ? sys_vfork+0x30/0x30 [ 227.344630] do_syscall_64+0x1e8/0x640 [ 227.348508] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 227.353349] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 227.358531] RIP: 0033:0x459829 [ 227.361705] RSP: 002b:00007f885a32dc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 227.369401] RAX: ffffffffffffffda RBX: 00007f885a32dc90 RCX: 0000000000459829 [ 227.376656] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000 [ 227.383915] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000 [ 227.391195] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f885a32e6d4 [ 227.398457] R13: 00000000004bfce6 R14: 00000000004d1a58 R15: 0000000000000005 15:14:38 executing program 2: symlink(0x0, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f0000000140)="66b9810000400f322ed30cbad104ec660f38df2b0fe21526660ff85e503ede1b0f20c06635000000800f22c0b800088ec00fae470b", 0x35}], 0x1, 0x51, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = syz_open_dev$vcsa(&(0x7f0000000000)='/dev/vcsa#\x00', 0xb72, 0x40) setsockopt$bt_BT_POWER(r3, 0x112, 0x9, &(0x7f0000000040)=0x20, 0x1) ioctl$KVM_RUN(r2, 0xae80, 0x0) shmat(0x0, &(0x7f0000ff5000/0x2000)=nil, 0x0) 15:14:38 executing program 4 (fault-call:8 fault-nth:10): r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="11dca50d5e0bcfe47bf070") mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) [ 227.405751] CPU: 1 PID: 10373 Comm: syz-executor.3 Not tainted 4.14.139 #35 [ 227.412861] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 227.422214] Call Trace: [ 227.424803] dump_stack+0x138/0x19c [ 227.428441] should_fail.cold+0x10f/0x159 [ 227.432597] ? __might_sleep+0x93/0xb0 [ 227.436511] __alloc_pages_nodemask+0x1d6/0x7a0 [ 227.441182] ? fs_reclaim_acquire+0x20/0x20 [ 227.445510] ? __alloc_pages_slowpath+0x2930/0x2930 [ 227.450563] ? check_preemption_disabled+0x3c/0x250 [ 227.455587] alloc_pages_current+0xec/0x1e0 [ 227.459919] __get_free_pages+0xf/0x40 [ 227.463805] pgd_alloc+0x25/0x2b0 [ 227.463817] ? lockdep_init_map+0x9/0x10 [ 227.463831] mm_init+0x578/0x970 [ 227.471317] copy_process.part.0+0x3ccd/0x6a00 [ 227.471339] ? proc_fail_nth_write+0x7d/0x180 [ 227.483740] ? proc_cwd_link+0x1b0/0x1b0 [ 227.487811] ? __cleanup_sighand+0x50/0x50 [ 227.492035] ? lock_downgrade+0x6e0/0x6e0 [ 227.496175] _do_fork+0x19e/0xce0 [ 227.499609] ? fork_idle+0x280/0x280 [ 227.503306] ? fput+0xd4/0x150 [ 227.506475] ? SyS_write+0x15e/0x230 [ 227.510210] SyS_clone+0x37/0x50 [ 227.513553] ? sys_vfork+0x30/0x30 [ 227.517079] do_syscall_64+0x1e8/0x640 [ 227.520945] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 227.525774] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 227.530963] RIP: 0033:0x459829 [ 227.534132] RSP: 002b:00007f664e1a9c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 227.541819] RAX: ffffffffffffffda RBX: 00007f664e1a9c90 RCX: 0000000000459829 [ 227.549071] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000 15:14:38 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="11dca51d5e0bcfe47bf09c") r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x28001, 0x0) read$rfkill(r1, &(0x7f0000000000), 0x8) setsockopt$inet_MCAST_LEAVE_GROUP(r0, 0x0, 0x2d, &(0x7f0000000180)={0x5b8de4fa, {{0x2, 0x4e23, @loopback}}}, 0x88) ioctl$int_in(r1, 0x800060c0045005, &(0x7f0000000140)=0x5ad) [ 227.556334] RBP: 000000000075bfc8 R08: ffffffffffffffff R09: 0000000000000000 [ 227.563580] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f664e1aa6d4 [ 227.570934] R13: 00000000004bfce6 R14: 00000000004d1a58 R15: 0000000000000004 15:14:38 executing program 5 (fault-call:0 fault-nth:26): syz_mount_image$ntfs(&(0x7f0000000100)='ntfs\x00', &(0x7f00000000c0)='./bus\x00', 0x0, 0x2, &(0x7f0000001680)=[{0x0, 0x0, 0x401}, {&(0x7f0000001740)="3a77dd21387d6a624e139a664bf7ec507567aba5727ca2250cce6cea", 0x1c, 0x35}], 0x8100, 0x0) [ 227.643832] FAULT_INJECTION: forcing a failure. [ 227.643832] name failslab, interval 1, probability 0, space 0, times 0 [ 227.665541] CPU: 0 PID: 10390 Comm: syz-executor.4 Not tainted 4.14.139 #35 [ 227.672691] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 227.682047] Call Trace: [ 227.682069] dump_stack+0x138/0x19c [ 227.682090] should_fail.cold+0x10f/0x159 [ 227.682110] should_failslab+0xdb/0x130 [ 227.682123] kmem_cache_alloc+0x2d7/0x780 [ 227.682139] ? _raw_spin_unlock+0x2d/0x50 [ 227.682158] copy_process.part.0+0x3987/0x6a00 [ 227.688360] ? save_trace+0x290/0x290 [ 227.688375] ? proc_fail_nth_write+0x7d/0x180 [ 227.688384] ? proc_cwd_link+0x1b0/0x1b0 [ 227.688406] ? __cleanup_sighand+0x50/0x50 [ 227.697430] FAULT_INJECTION: forcing a failure. [ 227.697430] name failslab, interval 1, probability 0, space 0, times 0 [ 227.700628] ? lock_downgrade+0x6e0/0x6e0 [ 227.700648] _do_fork+0x19e/0xce0 [ 227.700663] ? fork_idle+0x280/0x280 [ 227.700680] ? fput+0xd4/0x150 [ 227.751990] ? SyS_write+0x15e/0x230 [ 227.755702] SyS_clone+0x37/0x50 [ 227.759055] ? sys_vfork+0x30/0x30 [ 227.762602] do_syscall_64+0x1e8/0x640 [ 227.766474] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 227.771310] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 227.776485] RIP: 0033:0x459829 [ 227.779662] RSP: 002b:00007f885a32dc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 227.787366] RAX: ffffffffffffffda RBX: 00007f885a32dc90 RCX: 0000000000459829 [ 227.794635] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000 [ 227.801895] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000 [ 227.809151] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f885a32e6d4 [ 227.816409] R13: 00000000004bfce6 R14: 00000000004d1a58 R15: 0000000000000005 [ 227.823690] CPU: 1 PID: 10393 Comm: syz-executor.5 Not tainted 4.14.139 #35 [ 227.830802] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 227.840157] Call Trace: [ 227.842736] dump_stack+0x138/0x19c [ 227.846350] should_fail.cold+0x10f/0x159 [ 227.850482] should_failslab+0xdb/0x130 [ 227.854438] kmem_cache_alloc_node+0x287/0x780 [ 227.859005] __alloc_skb+0x9c/0x500 [ 227.862606] ? skb_scrub_packet+0x4b0/0x4b0 [ 227.866909] ? netlink_has_listeners+0x20a/0x330 [ 227.871648] kobject_uevent_env+0x781/0xc23 [ 227.875956] kobject_uevent+0x20/0x26 [ 227.879737] lo_ioctl+0x11e7/0x1ce0 [ 227.883341] ? loop_probe+0x160/0x160 [ 227.887133] blkdev_ioctl+0x96b/0x1860 [ 227.890997] ? blkpg_ioctl+0x980/0x980 [ 227.894868] ? __might_sleep+0x93/0xb0 [ 227.898733] ? __fget+0x210/0x370 [ 227.902167] block_ioctl+0xde/0x120 [ 227.905775] ? blkdev_fallocate+0x3b0/0x3b0 [ 227.910077] do_vfs_ioctl+0x7ae/0x1060 [ 227.913948] ? selinux_file_mprotect+0x5d0/0x5d0 [ 227.918685] ? lock_downgrade+0x6e0/0x6e0 [ 227.922810] ? ioctl_preallocate+0x1c0/0x1c0 [ 227.927198] ? __fget+0x237/0x370 [ 227.930638] ? security_file_ioctl+0x89/0xb0 [ 227.935051] SyS_ioctl+0x8f/0xc0 [ 227.938399] ? do_vfs_ioctl+0x1060/0x1060 [ 227.942528] do_syscall_64+0x1e8/0x640 [ 227.946393] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 227.951219] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 227.956386] RIP: 0033:0x459697 [ 227.959553] RSP: 002b:00007f4919e8fa88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 227.967238] RAX: ffffffffffffffda RBX: 00000000200016c0 RCX: 0000000000459697 [ 227.974487] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 227.981737] RBP: 0000000000000002 R08: 0000000000000000 R09: 000000000000000a 15:14:39 executing program 3 (fault-call:6 fault-nth:14): mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) 15:14:39 executing program 1: socket$inet(0x10, 0x5, 0x3) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(r0, 0x8000000000000001, 0x10000000000005, &(0x7f0000000980)="000000009641d897e74754e15cafa0a8d7248293e5ee7f8e2dd6354dafd8e76a155d15a7f2872ef6c17ef451745a222065498562c09b44b262a3a3c76c9f5be0a2af258fa0b6a5dc7726bf25a563705d73ff7e1f556a82ae51f2ae06145b481c4be9c760d8289dc8cb601b1805223df02fa9ac38dc714a052b8acb3070d2d63e76195379b396da6c8d0b2fbc59c17f835516dad72c98358b4ff3cca04e1dda3b0f353c684773cb3813c3d2f0645e7dca7899dce3b933de4ef6e9f512cb5a1f4ad42c632645aff8", 0xc7) setsockopt$inet6_tcp_int(r0, 0x6, 0x100000004, &(0x7f0000000080)=0x2be, 0xfd3b) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) r2 = socket$inet6_udp(0xa, 0x2, 0x0) syncfs(r2) setsockopt$inet_tcp_int(r1, 0x6, 0x7ffffffffffffe, &(0x7f0000000000)=0x85, 0x4) setsockopt$sock_int(r1, 0x1, 0x2f, &(0x7f0000000040), 0x4) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) socket(0xffffffffffffffff, 0x6, 0x5) r3 = open(&(0x7f0000000080)='./bus\x00', 0x80000000141046, 0x0) r4 = syz_open_dev$loop(&(0x7f0000000540)='/dev/loop#\x00', 0x0, 0x105082) r5 = memfd_create(&(0x7f0000000300)='4t\xb9L<\xf2\x00\x90\xcd\x00\x00\x00\x00\x00\x00', 0x2) pwritev(r5, &(0x7f0000000440)=[{&(0x7f0000000480)="a8", 0x1}], 0x1, 0x81003) ioctl$LOOP_CHANGE_FD(r4, 0x4c00, r5) bpf$OBJ_GET_MAP(0x7, &(0x7f00000003c0)={&(0x7f0000000400)='./bus\x00', 0x0, 0x8}, 0xfffffffffffffecd) r6 = socket$inet6(0xa, 0x5, 0x2) connect$inet6(r6, &(0x7f0000000100)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, [], 0x1, 0x0}, 0x7}, 0x1c) setsockopt$inet6_opts(r6, 0x29, 0x40, &(0x7f0000000580)=ANY=[@ANYBLOB="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"], 0x1) sendmmsg(r6, &(0x7f00000092c0), 0x4ff, 0x0) mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x800003, 0x11, r3, 0x0) socketpair$unix(0x1, 0x800000000000003, 0x0, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x360) fcntl$setstatus(r4, 0x4, 0x44000) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r8, &(0x7f00000001c0), 0x526987c9) read(r7, &(0x7f0000000200)=""/250, 0x50c7e3e3) sendfile(r4, r5, 0x0, 0x80003) 15:14:39 executing program 4 (fault-call:8 fault-nth:11): r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="11dca50d5e0bcfe47bf070") mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) [ 227.988983] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 227.996231] R13: 00000000004c8a62 R14: 00000000004df960 R15: 0000000000000003 15:14:39 executing program 5 (fault-call:0 fault-nth:27): syz_mount_image$ntfs(&(0x7f0000000100)='ntfs\x00', &(0x7f00000000c0)='./bus\x00', 0x0, 0x2, &(0x7f0000001680)=[{0x0, 0x0, 0x401}, {&(0x7f0000001740)="3a77dd21387d6a624e139a664bf7ec507567aba5727ca2250cce6cea", 0x1c, 0x35}], 0x8100, 0x0) 15:14:39 executing program 2: r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0x3e7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000000000001f, 0x0, 0x0, 0x3ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) lsetxattr$trusted_overlay_redirect(&(0x7f0000000140)='./file0\x00', &(0x7f0000000200)='trusted.overlay.redirect\x00', &(0x7f0000000240)='./file0\x00', 0x8, 0x1) bind$alg(0xffffffffffffffff, &(0x7f0000000180)={0x26, 'hash\x00', 0x0, 0x0, 'crc32-generic\x00'}, 0x58) r2 = syz_open_dev$swradio(0x0, 0x1, 0x2) mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount$bpf(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='bpf\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB="6d6f64703d30303030303030303030303030303030303030303030302c007d0d1e9fb8fbb07329012d5137cfe72e35504bd71bd919c77dc73ea0397b2d1690403151875afa88c23e9139707b4e89012d66ca492149d546c30e4338f5735e50fd40bf7d17b052dc99ffa7542b17ba651acbf5a18d4ac6ea44dba86fccdd8be927964d7ae81ce3a78fc6f2d00a08aee7d995e759b7e523519bbc281de90f5eb7d96be293afd55ea4c3eeb6411c8a0c79190aa3539014d7ba"]) getpid() fcntl$getownex(r0, 0x10, &(0x7f0000000780)) getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f00000007c0), &(0x7f0000000800)=0xc) getpid() r3 = fcntl$getown(r1, 0x9) syz_open_procfs(r3, &(0x7f0000000880)='net/rpc\x1c') r4 = perf_event_open(&(0x7f0000000380)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$packet_tx_ring(0xffffffffffffffff, 0x10f, 0x87, 0x0, 0x0) unshare(0x40401fc) r5 = fcntl$getown(0xffffffffffffffff, 0x9) getpgid(r5) read(0xffffffffffffffff, 0x0, 0x0) r6 = mq_open(&(0x7f0000000300)='\x04\x00\x00\x00\x92\r\x00\x00\x10\x00.\x16\xe8\xc2p\x12v\xc5\x92\xbf\xbd\xca\x19\x1bw|E\xb7m\xd2', 0x6eb3ebbbcc0884f2, 0x0, 0x0) mq_notify(r6, 0x0) close(r0) syz_genetlink_get_family_id$tipc(&(0x7f0000000080)='TIPC\x00') mq_timedsend(r6, 0x0, 0x0, 0xb9, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r7 = syz_open_dev$sndpcmp(0x0, 0x0, 0xa0000) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) ioctl$TIOCLINUX5(r7, 0x541c, &(0x7f00000005c0)={0x5, 0x4cb, 0xfffffffffffffff7, 0x3c, 0xeae}) tee(r4, r7, 0x8, 0x2) fstat(r7, &(0x7f0000000600)) pivot_root(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='./file0\x00') ioctl$BLKREPORTZONE(r7, 0xc0101282, &(0x7f00000004c0)={0x800, 0x3, 0x0, [{0x1, 0x200, 0x1, 0x143e, 0x401, 0x3, 0x80000000}, {0x100000001, 0x5, 0x9, 0x0, 0x1, 0xa584, 0x9a}, {0x40, 0x6, 0x5, 0x2, 0x3, 0x9, 0x7}]}) ioctl$EVIOCSKEYCODE(r2, 0x40084504, &(0x7f0000000280)=[0x6, 0x6]) r8 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r8, &(0x7f0000000400)={0x0, 0xb, &(0x7f0000000000)={&(0x7f00000002c0)=@newsa={0x104, 0x1a, 0x1, 0x0, 0x0, {{@in=@multicast1, @in=@local}, {@in=@multicast1=0xe0000008, 0x2, 0x2b}, @in, {}, {}, {}, 0x0, 0x0, 0xa}, [@coaddr={0x14}]}, 0x104}}, 0x0) [ 228.105366] FAULT_INJECTION: forcing a failure. [ 228.105366] name failslab, interval 1, probability 0, space 0, times 0 [ 228.120404] FAULT_INJECTION: forcing a failure. [ 228.120404] name failslab, interval 1, probability 0, space 0, times 0 [ 228.149295] CPU: 0 PID: 10406 Comm: syz-executor.4 Not tainted 4.14.139 #35 [ 228.156448] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 228.156455] Call Trace: [ 228.168400] dump_stack+0x138/0x19c [ 228.172046] should_fail.cold+0x10f/0x159 [ 228.176201] should_failslab+0xdb/0x130 [ 228.176215] kmem_cache_alloc+0x2d7/0x780 [ 228.176230] ? _raw_spin_unlock_irq+0x28/0x90 [ 228.184330] ? trace_hardirqs_on_caller+0x400/0x590 [ 228.184350] copy_process.part.0+0x1cd5/0x6a00 [ 228.184363] ? save_trace+0x290/0x290 [ 228.193838] ? proc_fail_nth_write+0x7d/0x180 [ 228.193848] ? proc_cwd_link+0x1b0/0x1b0 [ 228.193871] ? __cleanup_sighand+0x50/0x50 [ 228.193882] ? lock_downgrade+0x6e0/0x6e0 [ 228.193897] _do_fork+0x19e/0xce0 [ 228.193911] ? fork_idle+0x280/0x280 [ 228.193929] ? fput+0xd4/0x150 [ 228.229398] ? SyS_write+0x15e/0x230 [ 228.233100] SyS_clone+0x37/0x50 [ 228.236444] ? sys_vfork+0x30/0x30 [ 228.239967] do_syscall_64+0x1e8/0x640 [ 228.243838] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 228.248666] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 228.253834] RIP: 0033:0x459829 [ 228.257185] RSP: 002b:00007f885a32dc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 228.264873] RAX: ffffffffffffffda RBX: 00007f885a32dc90 RCX: 0000000000459829 [ 228.272120] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000 [ 228.279368] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000 [ 228.286613] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f885a32e6d4 [ 228.293860] R13: 00000000004bfce6 R14: 00000000004d1a58 R15: 0000000000000005 [ 228.302410] FAULT_INJECTION: forcing a failure. [ 228.302410] name failslab, interval 1, probability 0, space 0, times 0 [ 228.311618] CPU: 0 PID: 10407 Comm: syz-executor.3 Not tainted 4.14.139 #35 [ 228.320717] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 228.330080] Call Trace: [ 228.332680] dump_stack+0x138/0x19c [ 228.336305] should_fail.cold+0x10f/0x159 [ 228.340452] should_failslab+0xdb/0x130 [ 228.344439] kmem_cache_alloc+0x2d7/0x780 [ 228.348580] ? lock_downgrade+0x6e0/0x6e0 [ 228.352721] __khugepaged_enter+0x37/0x340 [ 228.356965] copy_process.part.0+0x5557/0x6a00 [ 228.361572] ? proc_fail_nth_write+0x7d/0x180 [ 228.366097] ? __cleanup_sighand+0x50/0x50 [ 228.370343] ? lock_downgrade+0x6e0/0x6e0 [ 228.374496] _do_fork+0x19e/0xce0 [ 228.377947] ? fork_idle+0x280/0x280 [ 228.381668] ? fput+0xd4/0x150 [ 228.384851] ? SyS_write+0x15e/0x230 [ 228.388560] SyS_clone+0x37/0x50 [ 228.391916] ? sys_vfork+0x30/0x30 [ 228.395451] do_syscall_64+0x1e8/0x640 [ 228.399330] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 228.404169] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 228.409347] RIP: 0033:0x459829 [ 228.412524] RSP: 002b:00007f664e1cac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 228.420220] RAX: ffffffffffffffda RBX: 00007f664e1cac90 RCX: 0000000000459829 [ 228.427476] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000 [ 228.434732] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000 [ 228.441982] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f664e1cb6d4 [ 228.449235] R13: 00000000004bfce6 R14: 00000000004d1a58 R15: 0000000000000004 15:14:39 executing program 3 (fault-call:6 fault-nth:15): mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) [ 228.457490] CPU: 1 PID: 10411 Comm: syz-executor.5 Not tainted 4.14.139 #35 [ 228.464612] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 228.477442] Call Trace: [ 228.480040] dump_stack+0x138/0x19c [ 228.483675] should_fail.cold+0x10f/0x159 [ 228.487829] should_failslab+0xdb/0x130 [ 228.491802] kmem_cache_alloc_node+0x287/0x780 [ 228.496401] __alloc_skb+0x9c/0x500 [ 228.500023] ? skb_scrub_packet+0x4b0/0x4b0 15:14:39 executing program 4 (fault-call:8 fault-nth:12): r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="11dca50d5e0bcfe47bf070") mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) [ 228.504343] ? netlink_has_listeners+0x20a/0x330 [ 228.509119] kobject_uevent_env+0x781/0xc23 [ 228.513445] kobject_uevent+0x20/0x26 [ 228.515665] mip6: mip6_rthdr_init_state: spi is not 0: 33554432 [ 228.517240] lo_ioctl+0x11e7/0x1ce0 [ 228.517252] ? loop_probe+0x160/0x160 [ 228.517266] blkdev_ioctl+0x96b/0x1860 [ 228.534723] ? blkpg_ioctl+0x980/0x980 [ 228.538596] ? __might_sleep+0x93/0xb0 [ 228.542463] ? __fget+0x210/0x370 [ 228.546393] block_ioctl+0xde/0x120 [ 228.550004] ? blkdev_fallocate+0x3b0/0x3b0 [ 228.554303] do_vfs_ioctl+0x7ae/0x1060 [ 228.558172] ? selinux_file_mprotect+0x5d0/0x5d0 [ 228.562918] ? lock_downgrade+0x6e0/0x6e0 [ 228.567045] ? ioctl_preallocate+0x1c0/0x1c0 [ 228.571436] ? __fget+0x237/0x370 [ 228.574874] ? security_file_ioctl+0x89/0xb0 [ 228.579262] SyS_ioctl+0x8f/0xc0 [ 228.582617] ? do_vfs_ioctl+0x1060/0x1060 [ 228.586749] do_syscall_64+0x1e8/0x640 [ 228.590616] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 228.595443] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 228.600610] RIP: 0033:0x459697 [ 228.603777] RSP: 002b:00007f4919e8fa88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 228.611463] RAX: ffffffffffffffda RBX: 00000000200016c0 RCX: 0000000000459697 [ 228.618714] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 228.625965] RBP: 0000000000000002 R08: 0000000000000000 R09: 000000000000000a [ 228.633336] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 228.640582] R13: 00000000004c8a62 R14: 00000000004df960 R15: 0000000000000003 15:14:39 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070") r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x28001, 0x0) read$rfkill(r1, &(0x7f0000000000), 0x3) ioctl$KVM_RUN(r1, 0xae80, 0x0) r2 = syz_genetlink_get_family_id$team(&(0x7f0000000100)='team\x00') getsockopt$inet_pktinfo(r1, 0x0, 0x8, &(0x7f0000000240)={0x0, @initdev, @multicast2}, &(0x7f0000000280)=0xc) getsockname$packet(r1, &(0x7f0000000380)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000003c0)=0x14) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000004c0)={'eql\x00', 0x0}) getsockopt$inet_pktinfo(r1, 0x0, 0x8, &(0x7f0000007680)={0x0, @rand_addr, @local}, &(0x7f00000076c0)=0xc) getsockopt$inet_pktinfo(r1, 0x0, 0x8, &(0x7f0000007700)={0x0, @initdev, @dev}, &(0x7f0000007740)=0xc) getsockopt$inet6_IPV6_IPSEC_POLICY(r1, 0x29, 0x22, &(0x7f0000008940)={{{@in, @in=@empty, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{}, 0x0, @in=@initdev}}, &(0x7f0000008a40)=0xe8) getsockopt$inet6_mreq(r1, 0x29, 0x1c, &(0x7f0000008ac0)={@rand_addr, 0x0}, &(0x7f0000008b00)=0x14) recvmsg(r1, &(0x7f0000009d80)={&(0x7f0000008b40)=@ll={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, 0x80, &(0x7f0000009d40)=[{&(0x7f0000008bc0)=""/4096, 0x1000}, {&(0x7f0000009bc0)=""/126, 0x7e}, {&(0x7f0000009c40)=""/111, 0x6f}, {&(0x7f0000009cc0)=""/93, 0x5d}], 0x4}, 0x10140) getsockopt$inet6_mreq(r1, 0x29, 0x1c, &(0x7f0000009dc0)={@mcast1, 0x0}, &(0x7f0000009e00)=0x14) getsockopt$inet6_IPV6_IPSEC_POLICY(r1, 0x29, 0x22, &(0x7f0000009e40)={{{@in=@broadcast, @in6=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@ipv4={[], [], @remote}}, 0x0, @in6=@mcast1}}, &(0x7f0000009f40)=0xe8) getpeername$packet(r1, &(0x7f0000009f80)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000009fc0)=0x14) accept$packet(r1, &(0x7f000000a000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f000000a040)=0x14) getsockopt$inet_pktinfo(r0, 0x0, 0x8, &(0x7f000000a300)={0x0, @remote}, &(0x7f000000a340)=0xc) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f000000a380)={'bridge_slave_1\x00', 0x0}) getsockname$packet(r1, &(0x7f000000a3c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @remote}, &(0x7f000000a400)=0x14) recvmmsg(r1, &(0x7f000000c9c0)=[{{0x0, 0x0, &(0x7f000000ab40)=[{&(0x7f000000a900)=""/243, 0xf3}, {&(0x7f000000aa00)=""/252, 0xfc}, {&(0x7f000000ab00)=""/29, 0x1d}], 0x3, &(0x7f000000ab80)=""/251, 0xfb}, 0xe1ef}, {{&(0x7f000000ac80)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @loopback}}}, 0x80, &(0x7f000000b180)=[{&(0x7f000000ad00)=""/193, 0xc1}, {&(0x7f000000ae00)=""/145, 0x91}, {&(0x7f000000aec0)=""/6, 0x6}, {&(0x7f000000af00)=""/40, 0x28}, {&(0x7f000000af40)=""/61, 0x3d}, {&(0x7f000000af80)=""/162, 0xa2}, {&(0x7f000000b040)=""/7, 0x7}, {&(0x7f000000b080)=""/102, 0x66}, {&(0x7f000000b100)=""/127, 0x7f}], 0x9, &(0x7f000000b240)}, 0x4}, {{&(0x7f000000b280)=@hci={0x1f, 0x0}, 0x80, &(0x7f000000b440)=[{&(0x7f000000b300)=""/192, 0xc0}, {&(0x7f000000b3c0)=""/80, 0x50}], 0x2, &(0x7f000000b480)=""/4096, 0x1000}}, {{&(0x7f000000c480)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @remote}}, 0x80, &(0x7f000000c8c0)=[{&(0x7f000000c500)=""/140, 0x8c}, {&(0x7f000000c5c0)=""/198, 0xc6}, {&(0x7f000000c6c0)=""/14, 0xe}, {&(0x7f000000c700)=""/95, 0x5f}, {&(0x7f000000c780)=""/92, 0x5c}, {&(0x7f000000c800)=""/182, 0xb6}], 0x6, &(0x7f000000c940)=""/111, 0x6f}, 0x80000001}], 0x4, 0x2001, &(0x7f000000cac0)={0x77359400}) accept$packet(r1, &(0x7f000000cb00)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, &(0x7f000000cb40)=0xffffffe9) getsockopt$inet6_mreq(r1, 0x29, 0x14, &(0x7f000000cc80)={@loopback, 0x0}, &(0x7f000000ccc0)=0x14) getsockopt$inet6_IPV6_IPSEC_POLICY(r18, 0x29, 0x22, &(0x7f0000000500)={{{@in6=@mcast1, @in6=@empty, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@remote}, 0x0, @in=@initdev}}, &(0x7f0000000180)=0x19e) getsockopt$inet6_IPV6_IPSEC_POLICY(r1, 0x29, 0x22, &(0x7f000000ce40)={{{@in6=@dev, @in6=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@initdev}, 0x0, @in6}}, &(0x7f000000cf40)=0xe8) getsockopt$inet6_IPV6_IPSEC_POLICY(r1, 0x29, 0x22, &(0x7f000000cf80)={{{@in6=@dev, @in=@multicast2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@empty}, 0x0, @in=@multicast1}}, &(0x7f000000d080)=0xe8) getsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f000000d0c0)={{{@in=@loopback, @in=@multicast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@remote}, 0x0, @in6=@loopback}}, &(0x7f000000d1c0)=0xe8) getpeername$packet(r1, &(0x7f000000d200)={0x11, 0x0, 0x0}, &(0x7f000000d240)=0x14) getsockopt$inet6_IPV6_IPSEC_POLICY(r0, 0x29, 0x22, &(0x7f000000d280)={{{@in6=@loopback, @in6=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@local}, 0x0, @in6=@ipv4={[], [], @initdev}}}, &(0x7f000000d380)=0xe8) getpeername$packet(r1, &(0x7f000000d3c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @remote}, &(0x7f000000d400)=0x14) sendmsg$TEAM_CMD_OPTIONS_SET(r1, &(0x7f000000df80)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f000000df40)={&(0x7f0000000600)=ANY=[@ANYBLOB="c40a0000", @ANYRES16=r2, @ANYBLOB="00012cbd7000fcdbdf250100000008000100", @ANYRES32=r3, @ANYBLOB="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", @ANYRES32=r4, @ANYBLOB="38000100240001006c625f73746174735f726566726573685f696e74657276616c000000000000000800030003000000080004000600000038000100240001006c625f73746174735f726566726573685f696e74657276616c0000000000000008000300030000000800040000000000400001002400010071756575655f69640000000000000000000000000000000000000000000000000800030003000000080004000200000008000600", @ANYRES32=r5, @ANYBLOB="080001000c10b680d05ae46373662d629b99e1cb311a03c346e64065ffec3b9c80c65a08bf676a99c463348f153e9fabcab33400d6f2a47f23d53ad8bf7c147660b749518993e56192280170667948e09d8834bd1e86fa266e5114ac4f3ebed98aed4dbcf5314f1f5797620b4334fab10d76a8b359938540a97283c65f50cc0b63441978eab7", @ANYRES32=r6, @ANYBLOB="080102004c000100240001006c625f74785f6d6574686f64000000000000000000000000000000000000000008000300050000001c000400686173685f746f5f706f72745f6d617070696e670000000038000100240001006e6f746966795f70656572735f696e74657276616c00000000000000000000000800030003000000080004000900000040000100240001006c625f74785f686173685f746f5f706f72745f6d617070696e67000000000000080003000300000008000400", @ANYRES32=r7, @ANYBLOB="080007000000000025fc01002400010071756575655f69640000000000000000000000000000000000000000000000000800030003000000080004000900000008000600", @ANYRES32=r8, @ANYBLOB="08000100", @ANYRES32=r9, @ANYBLOB="3c00020038000100240001006e6f746966795f70656572735f636f756e7400000000000000000000000000000800030003000000080004008700000008000100", @ANYRES32=r10, @ANYBLOB="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", @ANYRES32=r11, @ANYBLOB="b4000200f1ff0100240001006e6f746966795f70656572735f696e74657276616c0000000000000000000000080003000300000008000400030000003800010024000100616374697665706f727400000000000000000000000000000000000000000000080003000300000008000400", @ANYRES32=r12, @ANYBLOB="400001002400010071756575655f69640000000000000000000000000000000000000000000000000800030003000000080004000900000008000600", @ANYRES32=r13, @ANYBLOB="08000100", @ANYRES32=r14, @ANYBLOB="3402020040000100240001007072696f72697479000000000000000000000000000000000000000000000000080003000e000000080004000600000008000600", @ANYRES32=r15, @ANYBLOB="3c00010024000100757365725f6c696e6b757000000000000000000000000000000000000000000008000300060000000400040008000600", @ANYRES32=r16, @ANYBLOB="3800010024000100616374697665706f727400000000000000000000000000000000000000000000080003000300000008000400", @ANYRES32=r17, @ANYBLOB="3c00010024000100757365725f6c696e6b75705f656e61626c65640000000000000000000000000008000300060000000400040008000600", @ANYRES32=r19, @ANYBLOB="4c000100240001006270665f686173685f66756e6300000000000000000000000000000000000000080003000b0000001c000400ef5901cd00010000030081000300000004003c00580300003c00010024000100656e61626c65640000000000000000000000000000000000000000000000000008000300060000000400040008000600", @ANYRES32=r20, @ANYBLOB="40000100240001006c625f74785f686173685f746f5f706f72745f6d617070696e67000000000000080003000300000008000400", @ANYRES32=r21, @ANYBLOB="080007000000000038000100240001006e6f746966795f70656572735f696e74657276616c00000000000000000000000800030003000000080004000800000040000100240001007072696f72697479000000000000000000000000000000000000000000000000080003000e000000080004000500000008000600", @ANYRES32=r22, @ANYBLOB="08000100", @ANYRES32=r23, @ANYBLOB="f400020040000100240001006d6f64650000000000000000000000000000000000000000000000000000000008000300050000001000040062726f61646361737400000038000100240001006d636173745f72656a6f696e5f696e74657276616c00000000000000000000000800030003000000080004000500000040000100000001006c625f706f72745f737461747300000000000000000000000000000000000000000003000b00000000000400faffffff00000600", @ANYRES32=r17, @ANYBLOB="3800010024000100616374697665706f727400000000000000000000000000000000000000000000080003000300000008000400", @ANYRES32=r24, @ANYBLOB="08000100", @ANYRES32=r25, @ANYBLOB="ac0102003c000100240001006d6f64650000000000000000000000000000000000000000000000000000000008000300050000000c00040072616e646f6d0000400001002400010071756575655f69640000000000000000000000000000000000000000000000000800030003000000080004000500000008000600", @ANYRES32=r26, @ANYBLOB="38000100240001006e6f746966795f70656572735f636f756e740000000000000000000000000000080003000300000008000400030000003c000100240001006270665f686173685f66756e6300000000000000000000000000000000000000080003000b0000000c000400070040fff7ffffff40000100240001006c625f74785f686173685f746f5f706f72745f6d617070696e67000000000000080003000300000008000400", @ANYRES32=r27, @ANYBLOB="080007000000000040000100240001006c625f706f72745f737461747300000000000000000000000000000000000000080003000b000000080004000800000008000600", @ANYRES32=r28, @ANYBLOB="38000100240001006e6f746966795f70656572735f636f756e74000000000000000000000000000008000300030000000800040006000000"], 0xac4}, 0x1, 0x0, 0x0, 0x4008841}, 0x20000810) ioctl$int_in(r1, 0x800060c0045005, &(0x7f0000000140)=0x5ad) 15:14:39 executing program 2: r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0x3e7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000000000001f, 0x0, 0x0, 0x3ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) lsetxattr$trusted_overlay_redirect(&(0x7f0000000140)='./file0\x00', &(0x7f0000000200)='trusted.overlay.redirect\x00', &(0x7f0000000240)='./file0\x00', 0x8, 0x1) bind$alg(0xffffffffffffffff, &(0x7f0000000180)={0x26, 'hash\x00', 0x0, 0x0, 'crc32-generic\x00'}, 0x58) r2 = syz_open_dev$swradio(0x0, 0x1, 0x2) mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount$bpf(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='bpf\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB="6d6f64703d30303030303030303030303030303030303030303030302c007d0d1e9fb8fbb07329012d5137cfe72e35504bd71bd919c77dc73ea0397b2d1690403151875afa88c23e9139707b4e89012d66ca492149d546c30e4338f5735e50fd40bf7d17b052dc99ffa7542b17ba651acbf5a18d4ac6ea44dba86fccdd8be927964d7ae81ce3a78fc6f2d00a08aee7d995e759b7e523519bbc281de90f5eb7d96be293afd55ea4c3eeb6411c8a0c79190aa3539014d7ba"]) getpid() fcntl$getownex(r0, 0x10, &(0x7f0000000780)) getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f00000007c0), &(0x7f0000000800)=0xc) getpid() r3 = fcntl$getown(r1, 0x9) syz_open_procfs(r3, &(0x7f0000000880)='net/rpc\x1c') r4 = perf_event_open(&(0x7f0000000380)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$packet_tx_ring(0xffffffffffffffff, 0x10f, 0x87, 0x0, 0x0) unshare(0x40401fc) r5 = fcntl$getown(0xffffffffffffffff, 0x9) getpgid(r5) read(0xffffffffffffffff, 0x0, 0x0) r6 = mq_open(&(0x7f0000000300)='\x04\x00\x00\x00\x92\r\x00\x00\x10\x00.\x16\xe8\xc2p\x12v\xc5\x92\xbf\xbd\xca\x19\x1bw|E\xb7m\xd2', 0x6eb3ebbbcc0884f2, 0x0, 0x0) mq_notify(r6, 0x0) close(r0) syz_genetlink_get_family_id$tipc(&(0x7f0000000080)='TIPC\x00') mq_timedsend(r6, 0x0, 0x0, 0xb9, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r7 = syz_open_dev$sndpcmp(0x0, 0x0, 0xa0000) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) ioctl$TIOCLINUX5(r7, 0x541c, &(0x7f00000005c0)={0x5, 0x4cb, 0xfffffffffffffff7, 0x3c, 0xeae}) tee(r4, r7, 0x8, 0x2) fstat(r7, &(0x7f0000000600)) pivot_root(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='./file0\x00') ioctl$BLKREPORTZONE(r7, 0xc0101282, &(0x7f00000004c0)={0x800, 0x3, 0x0, [{0x1, 0x200, 0x1, 0x143e, 0x401, 0x3, 0x80000000}, {0x100000001, 0x5, 0x9, 0x0, 0x1, 0xa584, 0x9a}, {0x40, 0x6, 0x5, 0x2, 0x3, 0x9, 0x7}]}) ioctl$EVIOCSKEYCODE(r2, 0x40084504, &(0x7f0000000280)=[0x6, 0x6]) r8 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r8, &(0x7f0000000400)={0x0, 0xb, &(0x7f0000000000)={&(0x7f00000002c0)=@newsa={0x104, 0x1a, 0x1, 0x0, 0x0, {{@in=@multicast1, @in=@local}, {@in=@multicast1=0xe0000008, 0x2, 0x2b}, @in, {}, {}, {}, 0x0, 0x0, 0xa}, [@coaddr={0x14}]}, 0x104}}, 0x0) 15:14:39 executing program 5 (fault-call:0 fault-nth:28): syz_mount_image$ntfs(&(0x7f0000000100)='ntfs\x00', &(0x7f00000000c0)='./bus\x00', 0x0, 0x2, &(0x7f0000001680)=[{0x0, 0x0, 0x401}, {&(0x7f0000001740)="3a77dd21387d6a624e139a664bf7ec507567aba5727ca2250cce6cea", 0x1c, 0x35}], 0x8100, 0x0) [ 228.744285] FAULT_INJECTION: forcing a failure. [ 228.744285] name failslab, interval 1, probability 0, space 0, times 0 [ 228.779542] FAULT_INJECTION: forcing a failure. [ 228.779542] name failslab, interval 1, probability 0, space 0, times 0 [ 228.794115] CPU: 0 PID: 10429 Comm: syz-executor.3 Not tainted 4.14.139 #35 [ 228.801423] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 228.810784] Call Trace: [ 228.813371] dump_stack+0x138/0x19c [ 228.816995] should_fail.cold+0x10f/0x159 [ 228.821140] should_failslab+0xdb/0x130 [ 228.825100] kmem_cache_alloc+0x2d7/0x780 [ 228.829233] ? lock_downgrade+0x6e0/0x6e0 [ 228.833365] __khugepaged_enter+0x37/0x340 [ 228.837584] copy_process.part.0+0x5557/0x6a00 [ 228.842150] ? proc_fail_nth_write+0x7d/0x180 [ 228.846636] ? __cleanup_sighand+0x50/0x50 [ 228.850852] ? lock_downgrade+0x6e0/0x6e0 [ 228.854982] _do_fork+0x19e/0xce0 [ 228.858427] ? fork_idle+0x280/0x280 [ 228.862120] ? fput+0xd4/0x150 [ 228.865309] ? SyS_write+0x15e/0x230 [ 228.869003] SyS_clone+0x37/0x50 [ 228.872349] ? sys_vfork+0x30/0x30 [ 228.875870] do_syscall_64+0x1e8/0x640 [ 228.879735] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 228.884561] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 228.889747] RIP: 0033:0x459829 [ 228.892913] RSP: 002b:00007f664e1cac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 228.900604] RAX: ffffffffffffffda RBX: 00007f664e1cac90 RCX: 0000000000459829 [ 228.907850] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000 [ 228.915100] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000 [ 228.922347] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f664e1cb6d4 [ 228.929594] R13: 00000000004bfce6 R14: 00000000004d1a58 R15: 0000000000000004 [ 228.949899] CPU: 0 PID: 10431 Comm: syz-executor.4 Not tainted 4.14.139 #35 [ 228.957149] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 228.957154] Call Trace: [ 228.957173] dump_stack+0x138/0x19c [ 228.957192] should_fail.cold+0x10f/0x159 [ 228.976902] should_failslab+0xdb/0x130 [ 228.980886] kmem_cache_alloc+0x2d7/0x780 [ 228.985039] ? _raw_spin_unlock_irq+0x28/0x90 [ 228.985069] ? trace_hardirqs_on_caller+0x400/0x590 [ 228.985086] copy_process.part.0+0x1cd5/0x6a00 [ 228.985102] ? save_trace+0x290/0x290 [ 228.985111] ? proc_fail_nth_write+0x7d/0x180 [ 228.985120] ? proc_cwd_link+0x1b0/0x1b0 [ 229.011510] ? __cleanup_sighand+0x50/0x50 [ 229.015756] ? lock_downgrade+0x6e0/0x6e0 [ 229.019895] _do_fork+0x19e/0xce0 [ 229.023330] ? fork_idle+0x280/0x280 [ 229.027032] ? fput+0xd4/0x150 [ 229.030208] ? SyS_write+0x15e/0x230 [ 229.033906] SyS_clone+0x37/0x50 [ 229.037252] ? sys_vfork+0x30/0x30 [ 229.040787] do_syscall_64+0x1e8/0x640 [ 229.044651] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 229.049479] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 229.054647] RIP: 0033:0x459829 [ 229.057814] RSP: 002b:00007f885a32dc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 229.065501] RAX: ffffffffffffffda RBX: 00007f885a32dc90 RCX: 0000000000459829 [ 229.072750] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000 [ 229.079998] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000 [ 229.087271] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f885a32e6d4 15:14:40 executing program 1: socket$inet(0x10, 0x5, 0x3) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(r0, 0x8000000000000001, 0x10000000000005, &(0x7f0000000980)="000000009641d897e74754e15cafa0a8d7248293e5ee7f8e2dd6354dafd8e76a155d15a7f2872ef6c17ef451745a222065498562c09b44b262a3a3c76c9f5be0a2af258fa0b6a5dc7726bf25a563705d73ff7e1f556a82ae51f2ae06145b481c4be9c760d8289dc8cb601b1805223df02fa9ac38dc714a052b8acb3070d2d63e76195379b396da6c8d0b2fbc59c17f835516dad72c98358b4ff3cca04e1dda3b0f353c684773cb3813c3d2f0645e7dca7899dce3b933de4ef6e9f512cb5a1f4ad42c632645aff8", 0xc7) setsockopt$inet6_tcp_int(r0, 0x6, 0x100000004, &(0x7f0000000080)=0x2be, 0xfd3b) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) r2 = socket$inet6_udp(0xa, 0x2, 0x0) syncfs(r2) setsockopt$inet_tcp_int(r1, 0x6, 0x7ffffffffffffe, &(0x7f0000000000)=0x85, 0x4) setsockopt$sock_int(r1, 0x1, 0x2f, &(0x7f0000000040), 0x4) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) socket(0xffffffffffffffff, 0x6, 0x5) r3 = open(&(0x7f0000000080)='./bus\x00', 0x80000000141046, 0x0) r4 = syz_open_dev$loop(&(0x7f0000000540)='/dev/loop#\x00', 0x0, 0x105082) r5 = memfd_create(&(0x7f0000000300)='4t\xb9L<\xf2\x00\x90\xcd\x00\x00\x00\x00\x00\x00', 0x2) pwritev(r5, &(0x7f0000000440)=[{&(0x7f0000000480)="a8", 0x1}], 0x1, 0x81003) ioctl$LOOP_CHANGE_FD(r4, 0x4c00, r5) bpf$OBJ_GET_MAP(0x7, &(0x7f00000003c0)={&(0x7f0000000400)='./bus\x00', 0x0, 0x8}, 0xfffffffffffffecd) r6 = socket$inet6(0xa, 0x5, 0x2) connect$inet6(r6, &(0x7f0000000100)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, [], 0x1, 0x0}, 0x7}, 0x1c) setsockopt$inet6_opts(r6, 0x29, 0x40, &(0x7f0000000580)=ANY=[@ANYBLOB="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"], 0x1) sendmmsg(r6, &(0x7f00000092c0), 0x4ff, 0x0) mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x800003, 0x11, r3, 0x0) socketpair$unix(0x1, 0x800000000000003, 0x0, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x360) fcntl$setstatus(r4, 0x4, 0x44000) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r8, &(0x7f00000001c0), 0x526987c9) read(r7, &(0x7f0000000200)=""/250, 0x50c7e3e3) sendfile(r4, r5, 0x0, 0x80003) [ 229.094518] R13: 00000000004bfce6 R14: 00000000004d1a58 R15: 0000000000000005 15:14:40 executing program 3 (fault-call:6 fault-nth:16): mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) 15:14:40 executing program 4 (fault-call:8 fault-nth:13): r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="11dca50d5e0bcfe47bf070") mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) [ 229.126974] mip6: mip6_rthdr_init_state: spi is not 0: 33554432 [ 229.140735] FAULT_INJECTION: forcing a failure. [ 229.140735] name failslab, interval 1, probability 0, space 0, times 0 [ 229.154052] CPU: 1 PID: 10440 Comm: syz-executor.5 Not tainted 4.14.139 #35 [ 229.161177] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 229.170528] Call Trace: [ 229.173104] dump_stack+0x138/0x19c [ 229.176721] should_fail.cold+0x10f/0x159 [ 229.180872] should_failslab+0xdb/0x130 [ 229.184876] kmem_cache_alloc_node_trace+0x280/0x770 [ 229.189970] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 229.195419] __kmalloc_node_track_caller+0x3d/0x80 [ 229.200367] __kmalloc_reserve.isra.0+0x40/0xe0 [ 229.205048] __alloc_skb+0xcf/0x500 [ 229.208663] ? skb_scrub_packet+0x4b0/0x4b0 [ 229.212981] ? netlink_has_listeners+0x20a/0x330 [ 229.217736] kobject_uevent_env+0x781/0xc23 [ 229.222055] kobject_uevent+0x20/0x26 [ 229.225848] lo_ioctl+0x11e7/0x1ce0 [ 229.229456] ? loop_probe+0x160/0x160 [ 229.233238] blkdev_ioctl+0x96b/0x1860 [ 229.237102] ? blkpg_ioctl+0x980/0x980 [ 229.241065] ? __might_sleep+0x93/0xb0 [ 229.244948] ? __fget+0x210/0x370 [ 229.248384] block_ioctl+0xde/0x120 [ 229.252000] ? blkdev_fallocate+0x3b0/0x3b0 [ 229.256302] do_vfs_ioctl+0x7ae/0x1060 [ 229.260186] ? selinux_file_mprotect+0x5d0/0x5d0 [ 229.264932] ? lock_downgrade+0x6e0/0x6e0 [ 229.269067] ? ioctl_preallocate+0x1c0/0x1c0 [ 229.273453] ? __fget+0x237/0x370 [ 229.276895] ? security_file_ioctl+0x89/0xb0 [ 229.281296] SyS_ioctl+0x8f/0xc0 [ 229.284649] ? do_vfs_ioctl+0x1060/0x1060 [ 229.288782] do_syscall_64+0x1e8/0x640 [ 229.292666] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 229.297500] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 229.302672] RIP: 0033:0x459697 [ 229.305853] RSP: 002b:00007f4919e8fa88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 229.313565] RAX: ffffffffffffffda RBX: 00000000200016c0 RCX: 0000000000459697 [ 229.320832] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 15:14:40 executing program 2: r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0x3e7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000000000001f, 0x0, 0x0, 0x3ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) lsetxattr$trusted_overlay_redirect(&(0x7f0000000140)='./file0\x00', &(0x7f0000000200)='trusted.overlay.redirect\x00', &(0x7f0000000240)='./file0\x00', 0x8, 0x1) bind$alg(0xffffffffffffffff, &(0x7f0000000180)={0x26, 'hash\x00', 0x0, 0x0, 'crc32-generic\x00'}, 0x58) r2 = syz_open_dev$swradio(0x0, 0x1, 0x2) mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount$bpf(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='bpf\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB="6d6f64703d30303030303030303030303030303030303030303030302c007d0d1e9fb8fbb07329012d5137cfe72e35504bd71bd919c77dc73ea0397b2d1690403151875afa88c23e9139707b4e89012d66ca492149d546c30e4338f5735e50fd40bf7d17b052dc99ffa7542b17ba651acbf5a18d4ac6ea44dba86fccdd8be927964d7ae81ce3a78fc6f2d00a08aee7d995e759b7e523519bbc281de90f5eb7d96be293afd55ea4c3eeb6411c8a0c79190aa3539014d7ba"]) getpid() fcntl$getownex(r0, 0x10, &(0x7f0000000780)) getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f00000007c0), &(0x7f0000000800)=0xc) getpid() r3 = fcntl$getown(r1, 0x9) syz_open_procfs(r3, &(0x7f0000000880)='net/rpc\x1c') r4 = perf_event_open(&(0x7f0000000380)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$packet_tx_ring(0xffffffffffffffff, 0x10f, 0x87, 0x0, 0x0) unshare(0x40401fc) r5 = fcntl$getown(0xffffffffffffffff, 0x9) getpgid(r5) read(0xffffffffffffffff, 0x0, 0x0) r6 = mq_open(&(0x7f0000000300)='\x04\x00\x00\x00\x92\r\x00\x00\x10\x00.\x16\xe8\xc2p\x12v\xc5\x92\xbf\xbd\xca\x19\x1bw|E\xb7m\xd2', 0x6eb3ebbbcc0884f2, 0x0, 0x0) mq_notify(r6, 0x0) close(r0) syz_genetlink_get_family_id$tipc(&(0x7f0000000080)='TIPC\x00') mq_timedsend(r6, 0x0, 0x0, 0xb9, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r7 = syz_open_dev$sndpcmp(0x0, 0x0, 0xa0000) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) ioctl$TIOCLINUX5(r7, 0x541c, &(0x7f00000005c0)={0x5, 0x4cb, 0xfffffffffffffff7, 0x3c, 0xeae}) tee(r4, r7, 0x8, 0x2) fstat(r7, &(0x7f0000000600)) pivot_root(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='./file0\x00') ioctl$BLKREPORTZONE(r7, 0xc0101282, &(0x7f00000004c0)={0x800, 0x3, 0x0, [{0x1, 0x200, 0x1, 0x143e, 0x401, 0x3, 0x80000000}, {0x100000001, 0x5, 0x9, 0x0, 0x1, 0xa584, 0x9a}, {0x40, 0x6, 0x5, 0x2, 0x3, 0x9, 0x7}]}) ioctl$EVIOCSKEYCODE(r2, 0x40084504, &(0x7f0000000280)=[0x6, 0x6]) r8 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r8, &(0x7f0000000400)={0x0, 0xb, &(0x7f0000000000)={&(0x7f00000002c0)=@newsa={0x104, 0x1a, 0x1, 0x0, 0x0, {{@in=@multicast1, @in=@local}, {@in=@multicast1=0xe0000008, 0x2, 0x2b}, @in, {}, {}, {}, 0x0, 0x0, 0xa}, [@coaddr={0x14}]}, 0x104}}, 0x0) [ 229.328114] RBP: 0000000000000002 R08: 0000000000000000 R09: 000000000000000a [ 229.335387] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 229.342664] R13: 00000000004c8a62 R14: 00000000004df960 R15: 0000000000000003 15:14:40 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = openat$audio(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/audio\x00', 0x20000, 0x0) ioctl$SNDRV_CTL_IOCTL_CARD_INFO(r1, 0x81785501, &(0x7f0000000100)) ioctl(r0, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070") r2 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x28001, 0x0) read$rfkill(r2, &(0x7f0000000000), 0x3) ioctl$int_in(r2, 0x800060c0045005, &(0x7f0000000140)=0x5ad) setsockopt$bt_BT_RCVMTU(r1, 0x112, 0xd, &(0x7f0000000100)=0x6, 0x2) [ 229.406464] FAULT_INJECTION: forcing a failure. [ 229.406464] name failslab, interval 1, probability 0, space 0, times 0 [ 229.429609] FAULT_INJECTION: forcing a failure. [ 229.429609] name failslab, interval 1, probability 0, space 0, times 0 [ 229.454960] CPU: 1 PID: 10460 Comm: syz-executor.3 Not tainted 4.14.139 #35 [ 229.462122] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 229.471487] Call Trace: [ 229.474075] dump_stack+0x138/0x19c [ 229.477705] should_fail.cold+0x10f/0x159 [ 229.481849] should_failslab+0xdb/0x130 [ 229.485815] kmem_cache_alloc+0x2d7/0x780 [ 229.489960] ? lock_downgrade+0x6e0/0x6e0 [ 229.494106] __khugepaged_enter+0x37/0x340 [ 229.498332] copy_process.part.0+0x5557/0x6a00 [ 229.502930] ? proc_fail_nth_write+0x7d/0x180 [ 229.507436] ? __cleanup_sighand+0x50/0x50 [ 229.511684] ? lock_downgrade+0x6e0/0x6e0 [ 229.515839] _do_fork+0x19e/0xce0 [ 229.519284] ? fork_idle+0x280/0x280 [ 229.522988] ? fput+0xd4/0x150 [ 229.526182] ? SyS_write+0x15e/0x230 [ 229.529888] SyS_clone+0x37/0x50 [ 229.533240] ? sys_vfork+0x30/0x30 [ 229.536789] do_syscall_64+0x1e8/0x640 [ 229.540663] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 229.545500] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 229.550676] RIP: 0033:0x459829 [ 229.553862] RSP: 002b:00007f664e1cac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 229.561567] RAX: ffffffffffffffda RBX: 00007f664e1cac90 RCX: 0000000000459829 [ 229.568832] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000 [ 229.576114] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000 [ 229.583372] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f664e1cb6d4 [ 229.590627] R13: 00000000004bfce6 R14: 00000000004d1a58 R15: 0000000000000004 [ 229.597903] CPU: 0 PID: 10458 Comm: syz-executor.4 Not tainted 4.14.139 #35 [ 229.605015] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 229.614382] Call Trace: [ 229.616964] dump_stack+0x138/0x19c [ 229.620574] should_fail.cold+0x10f/0x159 [ 229.624725] should_failslab+0xdb/0x130 [ 229.628686] kmem_cache_alloc+0x2d7/0x780 [ 229.632837] ? _raw_spin_unlock_irq+0x28/0x90 [ 229.637313] ? trace_hardirqs_on_caller+0x400/0x590 [ 229.642331] copy_process.part.0+0x1cd5/0x6a00 [ 229.646896] ? save_trace+0x290/0x290 [ 229.650681] ? proc_fail_nth_write+0x7d/0x180 [ 229.655414] ? proc_cwd_link+0x1b0/0x1b0 [ 229.659461] ? __cleanup_sighand+0x50/0x50 [ 229.663679] ? lock_downgrade+0x6e0/0x6e0 [ 229.667810] _do_fork+0x19e/0xce0 [ 229.671247] ? fork_idle+0x280/0x280 [ 229.674945] ? fput+0xd4/0x150 [ 229.678138] ? SyS_write+0x15e/0x230 [ 229.681830] SyS_clone+0x37/0x50 [ 229.685188] ? sys_vfork+0x30/0x30 [ 229.688806] do_syscall_64+0x1e8/0x640 [ 229.693019] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 229.697844] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 229.703008] RIP: 0033:0x459829 15:14:40 executing program 5 (fault-call:0 fault-nth:29): syz_mount_image$ntfs(&(0x7f0000000100)='ntfs\x00', &(0x7f00000000c0)='./bus\x00', 0x0, 0x2, &(0x7f0000001680)=[{0x0, 0x0, 0x401}, {&(0x7f0000001740)="3a77dd21387d6a624e139a664bf7ec507567aba5727ca2250cce6cea", 0x1c, 0x35}], 0x8100, 0x0) 15:14:40 executing program 3 (fault-call:6 fault-nth:17): mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) [ 229.706192] RSP: 002b:00007f885a32dc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 229.714270] RAX: ffffffffffffffda RBX: 00007f885a32dc90 RCX: 0000000000459829 [ 229.721518] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000 [ 229.728764] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000 [ 229.736011] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f885a32e6d4 [ 229.743260] R13: 00000000004bfce6 R14: 00000000004d1a58 R15: 0000000000000005 15:14:40 executing program 4 (fault-call:8 fault-nth:14): r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="11dca50d5e0bcfe47bf070") mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) [ 229.796119] FAULT_INJECTION: forcing a failure. [ 229.796119] name failslab, interval 1, probability 0, space 0, times 0 [ 229.807900] CPU: 0 PID: 10473 Comm: syz-executor.5 Not tainted 4.14.139 #35 [ 229.815030] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 229.824388] Call Trace: [ 229.826976] dump_stack+0x138/0x19c [ 229.830596] should_fail.cold+0x10f/0x159 [ 229.834726] should_failslab+0xdb/0x130 [ 229.838687] kmem_cache_alloc_node+0x287/0x780 [ 229.843259] __alloc_skb+0x9c/0x500 [ 229.846862] ? skb_scrub_packet+0x4b0/0x4b0 [ 229.851164] ? netlink_has_listeners+0x20a/0x330 [ 229.855900] kobject_uevent_env+0x781/0xc23 [ 229.860202] kobject_uevent+0x20/0x26 [ 229.863987] lo_ioctl+0x11e7/0x1ce0 [ 229.867594] ? loop_probe+0x160/0x160 [ 229.871372] blkdev_ioctl+0x96b/0x1860 [ 229.875234] ? blkpg_ioctl+0x980/0x980 [ 229.879103] ? __might_sleep+0x93/0xb0 [ 229.882970] ? __fget+0x210/0x370 [ 229.886404] block_ioctl+0xde/0x120 [ 229.890006] ? blkdev_fallocate+0x3b0/0x3b0 [ 229.894305] do_vfs_ioctl+0x7ae/0x1060 [ 229.898172] ? selinux_file_mprotect+0x5d0/0x5d0 [ 229.902904] ? lock_downgrade+0x6e0/0x6e0 [ 229.907028] ? ioctl_preallocate+0x1c0/0x1c0 [ 229.911413] ? __fget+0x237/0x370 [ 229.914846] ? security_file_ioctl+0x89/0xb0 [ 229.919233] SyS_ioctl+0x8f/0xc0 [ 229.922575] ? do_vfs_ioctl+0x1060/0x1060 [ 229.926704] do_syscall_64+0x1e8/0x640 [ 229.930566] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 229.935388] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 229.940553] RIP: 0033:0x459697 15:14:41 executing program 1: socket$inet(0x10, 0x5, 0x3) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(r0, 0x8000000000000001, 0x10000000000005, &(0x7f0000000980)="000000009641d897e74754e15cafa0a8d7248293e5ee7f8e2dd6354dafd8e76a155d15a7f2872ef6c17ef451745a222065498562c09b44b262a3a3c76c9f5be0a2af258fa0b6a5dc7726bf25a563705d73ff7e1f556a82ae51f2ae06145b481c4be9c760d8289dc8cb601b1805223df02fa9ac38dc714a052b8acb3070d2d63e76195379b396da6c8d0b2fbc59c17f835516dad72c98358b4ff3cca04e1dda3b0f353c684773cb3813c3d2f0645e7dca7899dce3b933de4ef6e9f512cb5a1f4ad42c632645aff8", 0xc7) setsockopt$inet6_tcp_int(r0, 0x6, 0x100000004, &(0x7f0000000080)=0x2be, 0xfd3b) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) r2 = socket$inet6_udp(0xa, 0x2, 0x0) syncfs(r2) setsockopt$inet_tcp_int(r1, 0x6, 0x7ffffffffffffe, &(0x7f0000000000)=0x85, 0x4) setsockopt$sock_int(r1, 0x1, 0x2f, &(0x7f0000000040), 0x4) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) socket(0xffffffffffffffff, 0x6, 0x5) close(0xffffffffffffffff) r3 = syz_open_dev$loop(&(0x7f0000000540)='/dev/loop#\x00', 0x0, 0x105082) r4 = memfd_create(&(0x7f0000000300)='4t\xb9L<\xf2\x00\x90\xcd\x00\x00\x00\x00\x00\x00', 0x2) pwritev(r4, &(0x7f0000000440)=[{&(0x7f0000000480)="a8", 0x1}], 0x1, 0x81003) ioctl$LOOP_CHANGE_FD(r3, 0x4c00, r4) bpf$OBJ_GET_MAP(0x7, &(0x7f00000003c0)={&(0x7f0000000400)='./bus\x00', 0x0, 0x8}, 0xfffffffffffffecd) r5 = socket$inet6(0xa, 0x5, 0x2) connect$inet6(r5, &(0x7f0000000100)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, [], 0x1, 0x0}, 0x7}, 0x1c) setsockopt$inet6_opts(r5, 0x29, 0x40, &(0x7f0000000580)=ANY=[@ANYBLOB="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"], 0x1) sendmmsg(r5, &(0x7f00000092c0), 0x4ff, 0x0) mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x800003, 0x11, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x800000000000003, 0x0, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x360) fcntl$setstatus(r3, 0x4, 0x44000) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r7, &(0x7f00000001c0), 0x526987c9) read(r6, &(0x7f0000000200)=""/250, 0x50c7e3e3) sendfile(r3, r4, 0x0, 0x80003) [ 229.943760] RSP: 002b:00007f4919e8fa88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 229.951442] RAX: ffffffffffffffda RBX: 00000000200016c0 RCX: 0000000000459697 [ 229.958702] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 229.965947] RBP: 0000000000000002 R08: 0000000000000000 R09: 000000000000000a [ 229.973194] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 229.980443] R13: 00000000004c8a62 R14: 00000000004df960 R15: 0000000000000003 15:14:41 executing program 5 (fault-call:0 fault-nth:30): syz_mount_image$ntfs(&(0x7f0000000100)='ntfs\x00', &(0x7f00000000c0)='./bus\x00', 0x0, 0x2, &(0x7f0000001680)=[{0x0, 0x0, 0x401}, {&(0x7f0000001740)="3a77dd21387d6a624e139a664bf7ec507567aba5727ca2250cce6cea", 0x1c, 0x35}], 0x8100, 0x0) [ 230.010661] FAULT_INJECTION: forcing a failure. [ 230.010661] name failslab, interval 1, probability 0, space 0, times 0 [ 230.027459] mip6: mip6_rthdr_init_state: spi is not 0: 33554432 [ 230.055834] CPU: 0 PID: 10477 Comm: syz-executor.3 Not tainted 4.14.139 #35 [ 230.063003] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 230.072373] Call Trace: [ 230.074978] dump_stack+0x138/0x19c [ 230.078626] should_fail.cold+0x10f/0x159 [ 230.082791] should_failslab+0xdb/0x130 [ 230.086793] kmem_cache_alloc+0x2d7/0x780 [ 230.090955] ? _raw_spin_unlock+0x2d/0x50 [ 230.095111] ? __khugepaged_enter+0x26c/0x340 [ 230.099620] copy_process.part.0+0x444f/0x6a00 15:14:41 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070") sync_file_range(r0, 0xe4a, 0x20000000000000, 0x3) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x28001, 0x0) r2 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000180)='IPVS\x00') getsockopt$TIPC_SRC_DROPPABLE(r0, 0x10f, 0x80, &(0x7f0000000340), &(0x7f0000000380)=0x4) sendmsg$IPVS_CMD_GET_DEST(r1, &(0x7f0000000300)={&(0x7f0000000100), 0xc, &(0x7f00000002c0)={&(0x7f00000001c0)={0xcc, r2, 0x20, 0x70bd2a, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_DAEMON={0x14, 0x3, [@IPVS_DAEMON_ATTR_MCAST_PORT={0x8, 0x7, 0x4e22}, @IPVS_DAEMON_ATTR_SYNC_ID={0x8, 0x3, 0x1}]}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x9}, @IPVS_CMD_ATTR_SERVICE={0x40, 0x1, [@IPVS_SVC_ATTR_FWMARK={0x8}, @IPVS_SVC_ATTR_AF={0x8, 0x1, 0x2}, @IPVS_SVC_ATTR_FWMARK={0x8, 0x5, 0x4}, @IPVS_SVC_ATTR_SCHED_NAME={0x8, 0x6, 'dh\x00'}, @IPVS_SVC_ATTR_AF={0x8, 0x1, 0xa}, @IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x0, 0x1}}, @IPVS_SVC_ATTR_SCHED_NAME={0x8, 0x6, 'fo\x00'}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0xffff}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x100}, @IPVS_CMD_ATTR_DEST={0x3c, 0x2, [@IPVS_DEST_ATTR_FWD_METHOD={0x8, 0x3, 0x1}, @IPVS_DEST_ATTR_PERSIST_CONNS={0x8, 0x9, 0x82b5}, @IPVS_DEST_ATTR_INACT_CONNS={0x8, 0x8, 0x8000}, @IPVS_DEST_ATTR_PORT={0x8, 0x2, 0x4e21}, @IPVS_DEST_ATTR_PORT={0x8, 0x2, 0x4e21}, @IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0x3f}, @IPVS_DEST_ATTR_ADDR_FAMILY={0x8, 0xb, 0x2}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x3}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x1}]}, 0xcc}, 0x1, 0x0, 0x0, 0x10}, 0x4000) read$rfkill(r1, &(0x7f0000000000), 0x3) ioctl$int_in(r1, 0x800060c0045005, &(0x7f0000000140)=0x5ad) getsockopt$inet_sctp_SCTP_DELAYED_SACK(r1, 0x84, 0x10, &(0x7f00000003c0)=@assoc_value={0x0, 0xf5}, &(0x7f0000000400)=0x8) getsockopt$inet_sctp_SCTP_MAXSEG(r1, 0x84, 0xd, &(0x7f0000000440)=@assoc_id=r3, &(0x7f0000000480)=0x4) ioctl$EXT4_IOC_MOVE_EXT(r1, 0xc028660f, &(0x7f00000000c0)={0x0, r0, 0x1, 0x9, 0x8f4, 0x2f}) [ 230.104229] ? __cleanup_sighand+0x50/0x50 [ 230.108466] ? lock_downgrade+0x6e0/0x6e0 [ 230.112635] _do_fork+0x19e/0xce0 [ 230.116095] ? fork_idle+0x280/0x280 [ 230.119809] ? fput+0xd4/0x150 [ 230.119821] ? SyS_write+0x15e/0x230 [ 230.119836] SyS_clone+0x37/0x50 [ 230.119843] ? sys_vfork+0x30/0x30 [ 230.119857] do_syscall_64+0x1e8/0x640 [ 230.119865] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 230.119880] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 230.123849] FAULT_INJECTION: forcing a failure. [ 230.123849] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 230.126946] RIP: 0033:0x459829 [ 230.126951] RSP: 002b:00007f664e1cac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 230.126963] RAX: ffffffffffffffda RBX: 00007f664e1cac90 RCX: 0000000000459829 [ 230.126968] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000 [ 230.126974] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000 [ 230.126979] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f664e1cb6d4 [ 230.126985] R13: 00000000004bfce6 R14: 00000000004d1a58 R15: 0000000000000004 [ 230.131073] CPU: 1 PID: 10489 Comm: syz-executor.4 Not tainted 4.14.139 #35 [ 230.159610] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 230.159616] Call Trace: [ 230.159633] dump_stack+0x138/0x19c [ 230.159650] should_fail.cold+0x10f/0x159 [ 230.159661] ? __might_sleep+0x93/0xb0 [ 230.159677] __alloc_pages_nodemask+0x1d6/0x7a0 [ 230.170561] ? fs_reclaim_acquire+0x20/0x20 [ 230.170574] ? __alloc_pages_slowpath+0x2930/0x2930 [ 230.170592] ? check_preemption_disabled+0x3c/0x250 15:14:41 executing program 3 (fault-call:6 fault-nth:18): mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) [ 230.170619] alloc_pages_current+0xec/0x1e0 [ 230.170628] __get_free_pages+0xf/0x40 [ 230.170643] pgd_alloc+0x25/0x2b0 [ 230.178270] FAULT_INJECTION: forcing a failure. [ 230.178270] name failslab, interval 1, probability 0, space 0, times 0 [ 230.185162] ? lockdep_init_map+0x9/0x10 [ 230.283291] mm_init+0x578/0x970 [ 230.286651] copy_process.part.0+0x3ccd/0x6a00 [ 230.291232] ? proc_fail_nth_write+0x7d/0x180 [ 230.295716] ? proc_cwd_link+0x1b0/0x1b0 [ 230.299786] ? __cleanup_sighand+0x50/0x50 [ 230.304009] ? lock_downgrade+0x6e0/0x6e0 [ 230.308151] _do_fork+0x19e/0xce0 [ 230.311600] ? fork_idle+0x280/0x280 [ 230.315308] ? fput+0xd4/0x150 [ 230.318490] ? SyS_write+0x15e/0x230 [ 230.322195] SyS_clone+0x37/0x50 [ 230.325550] ? sys_vfork+0x30/0x30 [ 230.329082] do_syscall_64+0x1e8/0x640 [ 230.332957] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 230.337793] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 230.342980] RIP: 0033:0x459829 [ 230.346159] RSP: 002b:00007f885a32dc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 15:14:41 executing program 2: r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0x3e7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000000000001f, 0x0, 0x0, 0x3ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) lsetxattr$trusted_overlay_redirect(&(0x7f0000000140)='./file0\x00', &(0x7f0000000200)='trusted.overlay.redirect\x00', &(0x7f0000000240)='./file0\x00', 0x8, 0x1) bind$alg(0xffffffffffffffff, &(0x7f0000000180)={0x26, 'hash\x00', 0x0, 0x0, 'crc32-generic\x00'}, 0x58) r2 = syz_open_dev$swradio(0x0, 0x1, 0x2) mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount$bpf(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='bpf\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB="6d6f64703d30303030303030303030303030303030303030303030302c007d0d1e9fb8fbb07329012d5137cfe72e35504bd71bd919c77dc73ea0397b2d1690403151875afa88c23e9139707b4e89012d66ca492149d546c30e4338f5735e50fd40bf7d17b052dc99ffa7542b17ba651acbf5a18d4ac6ea44dba86fccdd8be927964d7ae81ce3a78fc6f2d00a08aee7d995e759b7e523519bbc281de90f5eb7d96be293afd55ea4c3eeb6411c8a0c79190aa3539014d7ba"]) getpid() fcntl$getownex(r0, 0x10, &(0x7f0000000780)) getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f00000007c0), &(0x7f0000000800)=0xc) getpid() r3 = fcntl$getown(r1, 0x9) syz_open_procfs(r3, &(0x7f0000000880)='net/rpc\x1c') r4 = perf_event_open(&(0x7f0000000380)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$packet_tx_ring(0xffffffffffffffff, 0x10f, 0x87, 0x0, 0x0) unshare(0x40401fc) r5 = fcntl$getown(0xffffffffffffffff, 0x9) getpgid(r5) read(0xffffffffffffffff, 0x0, 0x0) r6 = mq_open(&(0x7f0000000300)='\x04\x00\x00\x00\x92\r\x00\x00\x10\x00.\x16\xe8\xc2p\x12v\xc5\x92\xbf\xbd\xca\x19\x1bw|E\xb7m\xd2', 0x6eb3ebbbcc0884f2, 0x0, 0x0) mq_notify(r6, 0x0) close(r0) syz_genetlink_get_family_id$tipc(&(0x7f0000000080)='TIPC\x00') mq_timedsend(r6, 0x0, 0x0, 0xb9, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r7 = syz_open_dev$sndpcmp(0x0, 0x0, 0xa0000) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) ioctl$TIOCLINUX5(r7, 0x541c, &(0x7f00000005c0)={0x5, 0x4cb, 0xfffffffffffffff7, 0x3c, 0xeae}) tee(r4, r7, 0x8, 0x2) fstat(r7, &(0x7f0000000600)) pivot_root(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='./file0\x00') ioctl$BLKREPORTZONE(r7, 0xc0101282, &(0x7f00000004c0)={0x800, 0x3, 0x0, [{0x1, 0x200, 0x1, 0x143e, 0x401, 0x3, 0x80000000}, {0x100000001, 0x5, 0x9, 0x0, 0x1, 0xa584, 0x9a}, {0x40, 0x6, 0x5, 0x2, 0x3, 0x9, 0x7}]}) ioctl$EVIOCSKEYCODE(r2, 0x40084504, &(0x7f0000000280)=[0x6, 0x6]) r8 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r8, &(0x7f0000000400)={0x0, 0xb, &(0x7f0000000000)={&(0x7f00000002c0)=@newsa={0x104, 0x1a, 0x1, 0x0, 0x0, {{@in=@multicast1, @in=@local}, {@in=@multicast1=0xe0000008, 0x2, 0x2b}, @in, {}, {}, {}, 0x0, 0x0, 0xa}, [@coaddr={0x14}]}, 0x104}}, 0x0) [ 230.353857] RAX: ffffffffffffffda RBX: 00007f885a32dc90 RCX: 0000000000459829 [ 230.353862] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000 [ 230.353867] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000 [ 230.353871] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f885a32e6d4 [ 230.353875] R13: 00000000004bfce6 R14: 00000000004d1a58 R15: 0000000000000005 [ 230.414385] CPU: 0 PID: 10484 Comm: syz-executor.5 Not tainted 4.14.139 #35 [ 230.421543] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 230.430909] Call Trace: [ 230.433510] dump_stack+0x138/0x19c [ 230.437150] should_fail.cold+0x10f/0x159 [ 230.441314] should_failslab+0xdb/0x130 [ 230.445295] kmem_cache_alloc_node_trace+0x280/0x770 [ 230.450411] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 230.455869] __kmalloc_node_track_caller+0x3d/0x80 [ 230.460806] __kmalloc_reserve.isra.0+0x40/0xe0 [ 230.465479] __alloc_skb+0xcf/0x500 [ 230.469111] ? skb_scrub_packet+0x4b0/0x4b0 [ 230.473434] ? netlink_has_listeners+0x20a/0x330 [ 230.478186] kobject_uevent_env+0x781/0xc23 [ 230.482502] kobject_uevent+0x20/0x26 [ 230.486308] lo_ioctl+0x11e7/0x1ce0 [ 230.489938] ? loop_probe+0x160/0x160 [ 230.491805] mip6: mip6_rthdr_init_state: spi is not 0: 33554432 [ 230.493743] blkdev_ioctl+0x96b/0x1860 [ 230.493753] ? blkpg_ioctl+0x980/0x980 [ 230.493772] ? __might_sleep+0x93/0xb0 [ 230.493782] ? __fget+0x210/0x370 15:14:41 executing program 1: socket$inet(0x10, 0x5, 0x3) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(r0, 0x8000000000000001, 0x10000000000005, &(0x7f0000000980)="000000009641d897e74754e15cafa0a8d7248293e5ee7f8e2dd6354dafd8e76a155d15a7f2872ef6c17ef451745a222065498562c09b44b262a3a3c76c9f5be0a2af258fa0b6a5dc7726bf25a563705d73ff7e1f556a82ae51f2ae06145b481c4be9c760d8289dc8cb601b1805223df02fa9ac38dc714a052b8acb3070d2d63e76195379b396da6c8d0b2fbc59c17f835516dad72c98358b4ff3cca04e1dda3b0f353c684773cb3813c3d2f0645e7dca7899dce3b933de4ef6e9f512cb5a1f4ad42c632645aff8", 0xc7) setsockopt$inet6_tcp_int(r0, 0x6, 0x100000004, &(0x7f0000000080)=0x2be, 0xfd3b) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) r2 = socket$inet6_udp(0xa, 0x2, 0x0) syncfs(r2) setsockopt$inet_tcp_int(r1, 0x6, 0x7ffffffffffffe, &(0x7f0000000000)=0x85, 0x4) setsockopt$sock_int(r1, 0x1, 0x2f, &(0x7f0000000040), 0x4) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) socket(0xffffffffffffffff, 0x6, 0x5) close(0xffffffffffffffff) r3 = syz_open_dev$loop(&(0x7f0000000540)='/dev/loop#\x00', 0x0, 0x105082) r4 = memfd_create(&(0x7f0000000300)='4t\xb9L<\xf2\x00\x90\xcd\x00\x00\x00\x00\x00\x00', 0x2) pwritev(r4, &(0x7f0000000440)=[{&(0x7f0000000480)="a8", 0x1}], 0x1, 0x81003) ioctl$LOOP_CHANGE_FD(r3, 0x4c00, r4) bpf$OBJ_GET_MAP(0x7, &(0x7f00000003c0)={&(0x7f0000000400)='./bus\x00', 0x0, 0x8}, 0xfffffffffffffecd) r5 = socket$inet6(0xa, 0x5, 0x2) connect$inet6(r5, &(0x7f0000000100)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, [], 0x1, 0x0}, 0x7}, 0x1c) setsockopt$inet6_opts(r5, 0x29, 0x40, &(0x7f0000000580)=ANY=[@ANYBLOB="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"], 0x1) sendmmsg(r5, &(0x7f00000092c0), 0x4ff, 0x0) mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x800003, 0x11, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x800000000000003, 0x0, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x360) fcntl$setstatus(r3, 0x4, 0x44000) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r7, &(0x7f00000001c0), 0x526987c9) read(r6, &(0x7f0000000200)=""/250, 0x50c7e3e3) sendfile(r3, r4, 0x0, 0x80003) 15:14:41 executing program 4 (fault-call:8 fault-nth:15): r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="11dca50d5e0bcfe47bf070") mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) [ 230.493797] block_ioctl+0xde/0x120 [ 230.518518] ? blkdev_fallocate+0x3b0/0x3b0 [ 230.522891] do_vfs_ioctl+0x7ae/0x1060 [ 230.526793] ? selinux_file_mprotect+0x5d0/0x5d0 [ 230.527929] FAULT_INJECTION: forcing a failure. [ 230.527929] name failslab, interval 1, probability 0, space 0, times 0 [ 230.531540] ? lock_downgrade+0x6e0/0x6e0 [ 230.531554] ? ioctl_preallocate+0x1c0/0x1c0 [ 230.531566] ? __fget+0x237/0x370 [ 230.531585] ? security_file_ioctl+0x89/0xb0 [ 230.531594] SyS_ioctl+0x8f/0xc0 [ 230.531602] ? do_vfs_ioctl+0x1060/0x1060 [ 230.531615] do_syscall_64+0x1e8/0x640 [ 230.531629] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 230.579541] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 230.584749] RIP: 0033:0x459697 [ 230.587932] RSP: 002b:00007f4919e8fa88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 230.595636] RAX: ffffffffffffffda RBX: 00000000200016c0 RCX: 0000000000459697 [ 230.602903] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 230.610172] RBP: 0000000000000002 R08: 0000000000000000 R09: 000000000000000a [ 230.617448] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 230.624720] R13: 00000000004c8a62 R14: 00000000004df960 R15: 0000000000000003 [ 230.632017] CPU: 1 PID: 10503 Comm: syz-executor.3 Not tainted 4.14.139 #35 [ 230.639126] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 230.639133] Call Trace: [ 230.651160] dump_stack+0x138/0x19c [ 230.654804] should_fail.cold+0x10f/0x159 [ 230.658956] should_failslab+0xdb/0x130 [ 230.662920] kmem_cache_alloc+0x47/0x780 [ 230.666965] ? __lock_is_held+0xb6/0x140 [ 230.671015] ? check_preemption_disabled+0x3c/0x250 [ 230.676020] anon_vma_clone+0xde/0x470 [ 230.679892] anon_vma_fork+0x87/0x4d0 [ 230.683678] copy_process.part.0+0x45e2/0x6a00 [ 230.688254] ? __cleanup_sighand+0x50/0x50 [ 230.692470] ? lock_downgrade+0x6e0/0x6e0 [ 230.696603] _do_fork+0x19e/0xce0 [ 230.700039] ? fork_idle+0x280/0x280 [ 230.703738] ? fput+0xd4/0x150 [ 230.706911] ? SyS_write+0x15e/0x230 [ 230.711104] SyS_clone+0x37/0x50 [ 230.714449] ? sys_vfork+0x30/0x30 [ 230.717975] do_syscall_64+0x1e8/0x640 [ 230.721848] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 230.726674] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 230.731847] RIP: 0033:0x459829 [ 230.735027] RSP: 002b:00007f664e1cac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 230.742715] RAX: ffffffffffffffda RBX: 00007f664e1cac90 RCX: 0000000000459829 [ 230.749965] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000 [ 230.757232] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000 [ 230.764480] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f664e1cb6d4 [ 230.771732] R13: 00000000004bfce6 R14: 00000000004d1a58 R15: 0000000000000004 15:14:42 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="11dca50d5e0bcfe47bf070") r1 = socket$netlink(0x10, 0x3, 0xc) r2 = syz_genetlink_get_family_id$tipc(&(0x7f00000001c0)='TIPC\x00') sendmsg$TIPC_CMD_RESET_LINK_STATS(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000200)={0x28, r2, 0xf214e3aab6e984a5, 0x0, 0x0, {{}, 0x0, 0x410c, 0x0, {0xc, 0x14, 'syz1\x00'}}}, 0x28}}, 0x0) r3 = syz_open_dev$mice(&(0x7f0000000000)='/dev/input/mice\x00', 0x0, 0x0) accept$packet(r3, 0x0, &(0x7f0000000040)) r4 = syz_genetlink_get_family_id$tipc2(&(0x7f00000000c0)='TIPCv2\x00') sendmsg$TIPC_NL_PEER_REMOVE(r3, &(0x7f00000002c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x3c, r4, 0x4, 0x70bd2b, 0x25dfdbfc, {}, [@TIPC_NLA_SOCK={0x1c, 0x2, [@TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0xce}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x6}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x1}]}, @TIPC_NLA_NET={0xc, 0x7, [@TIPC_NLA_NET_ID={0x8, 0x1, 0x4}]}]}, 0x3c}, 0x1, 0x0, 0x0, 0x800}, 0x4000000) 15:14:42 executing program 1: socket$inet(0x10, 0x5, 0x3) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(r0, 0x8000000000000001, 0x10000000000005, &(0x7f0000000980)="000000009641d897e74754e15cafa0a8d7248293e5ee7f8e2dd6354dafd8e76a155d15a7f2872ef6c17ef451745a222065498562c09b44b262a3a3c76c9f5be0a2af258fa0b6a5dc7726bf25a563705d73ff7e1f556a82ae51f2ae06145b481c4be9c760d8289dc8cb601b1805223df02fa9ac38dc714a052b8acb3070d2d63e76195379b396da6c8d0b2fbc59c17f835516dad72c98358b4ff3cca04e1dda3b0f353c684773cb3813c3d2f0645e7dca7899dce3b933de4ef6e9f512cb5a1f4ad42c632645aff8", 0xc7) setsockopt$inet6_tcp_int(r0, 0x6, 0x100000004, &(0x7f0000000080)=0x2be, 0xfd3b) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) r2 = socket$inet6_udp(0xa, 0x2, 0x0) syncfs(r2) setsockopt$inet_tcp_int(r1, 0x6, 0x7ffffffffffffe, &(0x7f0000000000)=0x85, 0x4) setsockopt$sock_int(r1, 0x1, 0x2f, &(0x7f0000000040), 0x4) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) socket(0xffffffffffffffff, 0x6, 0x5) close(0xffffffffffffffff) r3 = syz_open_dev$loop(&(0x7f0000000540)='/dev/loop#\x00', 0x0, 0x105082) r4 = memfd_create(&(0x7f0000000300)='4t\xb9L<\xf2\x00\x90\xcd\x00\x00\x00\x00\x00\x00', 0x2) pwritev(r4, &(0x7f0000000440)=[{&(0x7f0000000480)="a8", 0x1}], 0x1, 0x81003) ioctl$LOOP_CHANGE_FD(r3, 0x4c00, r4) bpf$OBJ_GET_MAP(0x7, &(0x7f00000003c0)={&(0x7f0000000400)='./bus\x00', 0x0, 0x8}, 0xfffffffffffffecd) r5 = socket$inet6(0xa, 0x5, 0x2) connect$inet6(r5, &(0x7f0000000100)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, [], 0x1, 0x0}, 0x7}, 0x1c) setsockopt$inet6_opts(r5, 0x29, 0x40, &(0x7f0000000580)=ANY=[@ANYBLOB="29000000060058500ba40000005cb4b47a560100800000000002099666c20b21e8080008ae760000ec57c052aa843ac0031e4118a1a847c0e60000f5f2b1c4310380181c143c6b10022ee4de0a000000000000ffffffffffffffe7000000000000000000000000000000ff0100bf149fd5d981d72437034f05bb5c068772b310642de912c2729c83435806a73bd382c1e56638572925f03a2433d2feb19191b1ce221d87a8cbf189d711a0ef2eaed469d21c80190041c740cec379894459989e2f8785c13d863ba14f65bc3bd8101f0cfb7f5e67fa4e73f689fd819518dd1d96077a1c9fc2785a5eef5cd8d2302698ad2dcd089f8fa767244aacc5dc9302d8a7fab0f001a61e1ca1a48054355a9b1e3270bd27b1403b52ef479615d0c0939c553a704f66d677af16dfecbfb5320a99420a0000d764266803c6a7b0c72f00272659cfef2e81009412b58e07beeb27a8bf1ad4fcc5a08ea4b456bbbfd7c7bf47d0b3b738c40000001446edbaa57fcfa668883e56d870f43f701e69c6c16c4b76b85cc37303c86eab33154584a1c27a1e9b969b0f2d376728e815a2108fd533b9752382f97f734bcc065e92a9f5344c7614709fc445439b200085d3c8152faeba62db44b3d549db580c5207c91d65c6e005362fcaa7e0b2b281dd305b04c5bf62a929cfd480ef3d6060b0f0c65896d2b2ca39c9fffd03b67b623848c33c835b5ca05823d2982541c1d70e77538a4bbbf4acd7af4d0aa11901b8277ab713f35670b92bd8a903c5fbbba6bf41235394542eadb289b197f53ead5486e302b0b58a409fd1cd670de73527dc855199f54df31caf014b1d7e1a700e6df2eaf0000000d5b0bbf521ed434070fb0b27214f63f54b1162c5f4a114b48efd0e7674939406495cd2814a411ec6f9f7f5e028256227f21754e9f1bfe1a6b697e0d0739a5851c547d0ae8b46db33d9022618f798e9ff12ef901eb87b609a0eb192c2e94cc858e1bd172dd459ec8c0e650d7abc0ebdb91bb7b084f2fb08f411c59712c815a0989cd717a776961e441388a3d3339453ebdac75f9a54cfdea59bb1af457ccf06560f4a799d158408b3adf7b8e1c72981f41a2f5bb392d63f267fe69f46aaf94b9d122fd2006115741b26bd86f6600e1a3cc85188c845305b48e6320cd6ae0c10ba2cbc1e9054633bba5486423287c70644763263eb9f116341e739ed22a7e3372aa0e57f142f662ad224481150459d4cd9a2dd246a957279fef9c68bec8fa60f56bed83588e4aacfd2b5ad7fcd0e79c8bb2133ebabe957bbf5d8fa052c352b8c621d8070de5406a5e4c0c52fff0b3bb102651d0ae7991098bd9872a351c6588a8aea64203d6b1f358a809423bbfcaee3be1c62af78dea87a0d9d562f3a279a2a6d09103ae18dac9ab9790e"], 0x1) sendmmsg(r5, &(0x7f00000092c0), 0x4ff, 0x0) mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x800003, 0x11, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x800000000000003, 0x0, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x360) fcntl$setstatus(r3, 0x4, 0x44000) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r7, &(0x7f00000001c0), 0x526987c9) read(r6, &(0x7f0000000200)=""/250, 0x50c7e3e3) sendfile(r3, r4, 0x0, 0x80003) 15:14:42 executing program 5: r0 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm_plock\x00', 0x40, 0x0) ioctl$TUNSETCARRIER(r0, 0x400454e2, &(0x7f0000000180)=0x1) r1 = accept4(r0, &(0x7f00000001c0)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, &(0x7f0000000280)=0xffffffffffffffb7, 0x80000) syz_mount_image$ntfs(&(0x7f0000000100)='ntfs\x00', &(0x7f00000000c0)='./bus\x00', 0x0, 0x2, &(0x7f0000001680)=[{0x0, 0x0, 0x401}, {&(0x7f0000001740)="3a77dd21387d6a624e139a664bf7ec507567aba5727ca2250cce6cea", 0x1c, 0x35}], 0x8100, 0x0) getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(r0, 0x84, 0x6d, &(0x7f00000002c0)={0x0, 0xdd, "f5645d3e8c377cb87865ede88f632fcb0007123b5f79d955b646350db0fb520f0c9bd500336e6ed4af5137b8d13a9647e66f682fcd45cafad8425e4f3175fb4107afddba6a5007e803559ab6bfd3ef5d7c7bbdef3a7f5dc2ff6c2a9324e4d420abbcc244a1120c9ef236a819b79701f560230991d5f196e167db6d178531f574689f87f5617836e9141287619af08856e2ce5040d4a0460d7b846c7111c04e705e554d8ad1ff2b697bfa76b99cdf419fc98c5d7c9dadda6cce161a45e9ae8f443b333f0cba25d3af8868442c73d99956148419f9f277e437bc6b5a87b5"}, &(0x7f0000000040)=0xe5) getsockopt$inet_sctp_SCTP_RTOINFO(r1, 0x84, 0x0, &(0x7f0000000080)={r2, 0x1, 0x3, 0x9}, &(0x7f0000000140)=0x10) [ 230.871155] FAULT_INJECTION: forcing a failure. [ 230.871155] name failslab, interval 1, probability 0, space 0, times 0 [ 230.909907] kauditd_printk_skb: 4 callbacks suppressed [ 230.909916] audit: type=1400 audit(1566314082.060:70): avc: denied { write } for pid=10515 comm="syz-executor.2" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_netfilter_socket permissive=1 [ 230.957577] CPU: 0 PID: 10516 Comm: syz-executor.4 Not tainted 4.14.139 #35 [ 230.964827] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 230.974195] Call Trace: [ 230.976796] dump_stack+0x138/0x19c [ 230.980448] should_fail.cold+0x10f/0x159 [ 230.984604] should_failslab+0xdb/0x130 [ 230.988604] kmem_cache_alloc+0x2d7/0x780 [ 230.992778] ? _raw_spin_unlock+0x2d/0x50 [ 230.996937] ? __khugepaged_enter+0x26c/0x340 [ 230.996954] copy_process.part.0+0x444f/0x6a00 [ 230.996980] ? __cleanup_sighand+0x50/0x50 [ 231.006023] ? lock_downgrade+0x6e0/0x6e0 [ 231.006040] _do_fork+0x19e/0xce0 [ 231.006052] ? fork_idle+0x280/0x280 [ 231.006067] ? fput+0xd4/0x150 [ 231.006076] ? SyS_write+0x15e/0x230 [ 231.006088] SyS_clone+0x37/0x50 [ 231.031767] ? sys_vfork+0x30/0x30 [ 231.035291] do_syscall_64+0x1e8/0x640 [ 231.039156] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 231.043988] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 231.049155] RIP: 0033:0x459829 [ 231.052322] RSP: 002b:00007f885a32dc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 231.060020] RAX: ffffffffffffffda RBX: 00007f885a32dc90 RCX: 0000000000459829 15:14:42 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="11dca5055e0bcfec7be070") r1 = perf_event_open(&(0x7f0000000140)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone(0x0, 0x0, 0x0, 0x0, 0x0) r2 = dup(r1) setsockopt$RXRPC_UPGRADEABLE_SERVICE(r2, 0x110, 0x5, &(0x7f0000000080)=[0x4, 0x4], 0x2) read$eventfd(r2, &(0x7f0000000000), 0x8) 15:14:42 executing program 3 (fault-call:6 fault-nth:19): mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) 15:14:42 executing program 4 (fault-call:8 fault-nth:16): r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="11dca50d5e0bcfe47bf070") mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) [ 231.067301] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000 [ 231.074582] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000 [ 231.081858] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f885a32e6d4 [ 231.089143] R13: 00000000004bfce6 R14: 00000000004d1a58 R15: 0000000000000005 15:14:42 executing program 2: r0 = socket$packet(0x11, 0x2000000000002, 0x300) r1 = syz_open_dev$vbi(&(0x7f0000000040)='/dev/vbi#\x00', 0x0, 0x2) ioctl$SIOCAX25GETINFO(r1, 0x89ed, &(0x7f0000000080)) setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f000095bffc), 0x4) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r2, &(0x7f0000000200)={0xa, 0x0, 0x0, @remote, 0x2000000002}, 0x1c) setsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f00000013c0)={{{@in, @in6=@ipv4}}, {{@in6=@local}, 0x0, @in6}}, 0xe8) connect$inet6(r2, &(0x7f0000000000)={0xa, 0x4e21, 0x0, @rand_addr="4ff216a386b74751667da9af03d04e3e"}, 0xfffffffffffffebf) sendmmsg(r2, &(0x7f0000000240), 0x5c3, 0x0) [ 231.200034] FAULT_INJECTION: forcing a failure. [ 231.200034] name failslab, interval 1, probability 0, space 0, times 0 [ 231.213136] CPU: 1 PID: 10552 Comm: syz-executor.4 Not tainted 4.14.139 #35 [ 231.213713] FAULT_INJECTION: forcing a failure. [ 231.213713] name failslab, interval 1, probability 0, space 0, times 0 [ 231.220353] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 231.220359] Call Trace: [ 231.220379] dump_stack+0x138/0x19c [ 231.220398] should_fail.cold+0x10f/0x159 [ 231.220412] should_failslab+0xdb/0x130 [ 231.220425] kmem_cache_alloc+0x2d7/0x780 [ 231.220443] copy_process.part.0+0x444f/0x6a00 [ 231.220472] ? __cleanup_sighand+0x50/0x50 [ 231.220483] ? lock_downgrade+0x6e0/0x6e0 [ 231.220497] _do_fork+0x19e/0xce0 [ 231.220509] ? fork_idle+0x280/0x280 [ 231.220520] ? fput+0xd4/0x150 [ 231.220528] ? SyS_write+0x15e/0x230 [ 231.220539] SyS_clone+0x37/0x50 [ 231.220545] ? sys_vfork+0x30/0x30 [ 231.220557] do_syscall_64+0x1e8/0x640 [ 231.220565] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 231.220583] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 231.220591] RIP: 0033:0x459829 [ 231.220596] RSP: 002b:00007f885a32dc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 231.318534] RAX: ffffffffffffffda RBX: 00007f885a32dc90 RCX: 0000000000459829 [ 231.325794] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000 [ 231.333055] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000 [ 231.340318] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f885a32e6d4 [ 231.347579] R13: 00000000004bfce6 R14: 00000000004d1a58 R15: 0000000000000005 [ 231.354862] CPU: 0 PID: 10553 Comm: syz-executor.3 Not tainted 4.14.139 #35 [ 231.361974] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 231.371330] Call Trace: [ 231.373933] dump_stack+0x138/0x19c [ 231.377560] should_fail.cold+0x10f/0x159 [ 231.381689] ? anon_vma_clone+0xde/0x470 [ 231.385729] should_failslab+0xdb/0x130 [ 231.389726] kmem_cache_alloc+0x47/0x780 [ 231.393779] ? anon_vma_chain_link+0x142/0x1a0 [ 231.398340] anon_vma_clone+0xde/0x470 [ 231.402207] anon_vma_fork+0x87/0x4d0 [ 231.405997] copy_process.part.0+0x45e2/0x6a00 [ 231.410566] ? __cleanup_sighand+0x50/0x50 [ 231.414789] ? lock_downgrade+0x6e0/0x6e0 [ 231.418938] _do_fork+0x19e/0xce0 [ 231.422378] ? fork_idle+0x280/0x280 [ 231.426084] ? fput+0xd4/0x150 [ 231.429257] ? SyS_write+0x15e/0x230 [ 231.432954] SyS_clone+0x37/0x50 [ 231.436299] ? sys_vfork+0x30/0x30 [ 231.439829] do_syscall_64+0x1e8/0x640 [ 231.443693] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 231.448520] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 231.453794] RIP: 0033:0x459829 [ 231.456961] RSP: 002b:00007f664e1cac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 231.464643] RAX: ffffffffffffffda RBX: 00007f664e1cac90 RCX: 0000000000459829 [ 231.471904] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000 [ 231.479268] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000 [ 231.486522] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f664e1cb6d4 [ 231.493778] R13: 00000000004bfce6 R14: 00000000004d1a58 R15: 0000000000000004 15:14:42 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070") r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x28001, 0x0) read$rfkill(r1, &(0x7f0000000000), 0x3) uname(&(0x7f0000000180)=""/190) ioctl$int_in(r1, 0x800060c0045005, &(0x7f0000000140)=0x5ad) openat$selinux_avc_cache_stats(0xffffffffffffff9c, &(0x7f00000000c0)='/selinux/avc/cache_stats\x00', 0x0, 0x0) 15:14:42 executing program 5: r0 = ioctl$TIOCGPTPEER(0xffffffffffffffff, 0x5441, 0xdb0) ioctl$GIO_SCRNMAP(r0, 0x4b40, &(0x7f0000000000)=""/109) syz_mount_image$ntfs(&(0x7f0000000100)='ntfs\x00', &(0x7f00000000c0)='./bus\x00', 0x0, 0x2, &(0x7f0000001680)=[{0x0, 0x0, 0x401}, {&(0x7f0000001740)="3a77dd21387d6a624e139a664bf7ec507567aba5727ca2250cce6cea", 0x1c, 0x35}], 0x8100, 0x0) 15:14:42 executing program 4 (fault-call:8 fault-nth:17): r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="11dca50d5e0bcfe47bf070") mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) 15:14:42 executing program 3 (fault-call:6 fault-nth:20): mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) [ 231.527841] protocol 88fb is buggy, dev hsr_slave_0 [ 231.532988] protocol 88fb is buggy, dev hsr_slave_1 15:14:42 executing program 2: r0 = socket(0x400000000010, 0x3, 0x0) ioctl$sock_inet_SIOCDARP(r0, 0x8953, &(0x7f0000000040)={{0x2, 0x4e24, @empty}, {}, 0x4, {0x2, 0x4e21, @rand_addr=0xda}, 'vcan0\x00'}) setsockopt$inet6_dccp_int(r0, 0x21, 0xb, &(0x7f0000000000)=0x5, 0x4) sendmsg$nl_route(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000200)=ANY=[@ANYBLOB="2c000000190009000000000000000600000000000000040000000000000000ee121a3fd905d0967804080000"], 0x2c}}, 0x0) [ 231.597319] FAULT_INJECTION: forcing a failure. [ 231.597319] name failslab, interval 1, probability 0, space 0, times 0 [ 231.623924] CPU: 1 PID: 10564 Comm: syz-executor.3 Not tainted 4.14.139 #35 [ 231.628085] FAULT_INJECTION: forcing a failure. [ 231.628085] name failslab, interval 1, probability 0, space 0, times 0 [ 231.631075] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 231.631080] Call Trace: [ 231.631100] dump_stack+0x138/0x19c [ 231.631119] should_fail.cold+0x10f/0x159 [ 231.631134] ? anon_vma_clone+0xde/0x470 [ 231.631148] should_failslab+0xdb/0x130 [ 231.631159] kmem_cache_alloc+0x47/0x780 [ 231.631169] ? anon_vma_chain_link+0x142/0x1a0 [ 231.631181] anon_vma_clone+0xde/0x470 [ 231.631197] anon_vma_fork+0x87/0x4d0 [ 231.631212] copy_process.part.0+0x45e2/0x6a00 [ 231.631240] ? __cleanup_sighand+0x50/0x50 [ 231.631250] ? lock_downgrade+0x6e0/0x6e0 [ 231.631264] _do_fork+0x19e/0xce0 [ 231.631282] ? fork_idle+0x280/0x280 [ 231.631299] ? fput+0xd4/0x150 [ 231.631310] ? SyS_write+0x15e/0x230 [ 231.631326] SyS_clone+0x37/0x50 [ 231.717261] ? sys_vfork+0x30/0x30 [ 231.720805] do_syscall_64+0x1e8/0x640 [ 231.724700] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 231.729563] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 231.734742] RIP: 0033:0x459829 [ 231.737917] RSP: 002b:00007f664e1cac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 231.745618] RAX: ffffffffffffffda RBX: 00007f664e1cac90 RCX: 0000000000459829 [ 231.752883] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000 [ 231.760135] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000 [ 231.767398] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f664e1cb6d4 [ 231.775319] R13: 00000000004bfce6 R14: 00000000004d1a58 R15: 0000000000000004 [ 231.784174] CPU: 0 PID: 10566 Comm: syz-executor.4 Not tainted 4.14.139 #35 [ 231.791298] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 231.800633] Call Trace: [ 231.803204] dump_stack+0x138/0x19c [ 231.806818] should_fail.cold+0x10f/0x159 [ 231.810949] should_failslab+0xdb/0x130 [ 231.814908] kmem_cache_alloc+0x47/0x780 [ 231.818949] ? __lock_is_held+0xb6/0x140 [ 231.822990] ? check_preemption_disabled+0x3c/0x250 [ 231.827986] anon_vma_clone+0xde/0x470 [ 231.831877] anon_vma_fork+0x87/0x4d0 [ 231.835664] copy_process.part.0+0x45e2/0x6a00 [ 231.840242] ? __cleanup_sighand+0x50/0x50 [ 231.844460] ? lock_downgrade+0x6e0/0x6e0 [ 231.848589] _do_fork+0x19e/0xce0 [ 231.852025] ? fork_idle+0x280/0x280 [ 231.855720] ? fput+0xd4/0x150 [ 231.858896] ? SyS_write+0x15e/0x230 [ 231.862590] SyS_clone+0x37/0x50 [ 231.865937] ? sys_vfork+0x30/0x30 [ 231.869460] do_syscall_64+0x1e8/0x640 [ 231.873327] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 231.878154] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 231.883356] RIP: 0033:0x459829 [ 231.886526] RSP: 002b:00007f885a32dc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 15:14:43 executing program 1: socket$inet(0x10, 0x5, 0x3) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(r0, 0x8000000000000001, 0x10000000000005, &(0x7f0000000980)="000000009641d897e74754e15cafa0a8d7248293e5ee7f8e2dd6354dafd8e76a155d15a7f2872ef6c17ef451745a222065498562c09b44b262a3a3c76c9f5be0a2af258fa0b6a5dc7726bf25a563705d73ff7e1f556a82ae51f2ae06145b481c4be9c760d8289dc8cb601b1805223df02fa9ac38dc714a052b8acb3070d2d63e76195379b396da6c8d0b2fbc59c17f835516dad72c98358b4ff3cca04e1dda3b0f353c684773cb3813c3d2f0645e7dca7899dce3b933de4ef6e9f512cb5a1f4ad42c632645aff8", 0xc7) setsockopt$inet6_tcp_int(r0, 0x6, 0x100000004, &(0x7f0000000080)=0x2be, 0xfd3b) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) r2 = socket$inet6_udp(0xa, 0x2, 0x0) syncfs(r2) setsockopt$inet_tcp_int(r1, 0x6, 0x7ffffffffffffe, &(0x7f0000000000)=0x85, 0x4) setsockopt$sock_int(r1, 0x1, 0x2f, &(0x7f0000000040), 0x4) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r3 = open(&(0x7f0000000080)='./bus\x00', 0x80000000141046, 0x0) close(r3) r4 = syz_open_dev$loop(&(0x7f0000000540)='/dev/loop#\x00', 0x0, 0x105082) r5 = memfd_create(&(0x7f0000000300)='4t\xb9L<\xf2\x00\x90\xcd\x00\x00\x00\x00\x00\x00', 0x2) pwritev(r5, &(0x7f0000000440)=[{&(0x7f0000000480)="a8", 0x1}], 0x1, 0x81003) ioctl$LOOP_CHANGE_FD(r4, 0x4c00, r5) bpf$OBJ_GET_MAP(0x7, &(0x7f00000003c0)={&(0x7f0000000400)='./bus\x00', 0x0, 0x8}, 0xfffffffffffffecd) r6 = socket$inet6(0xa, 0x5, 0x2) connect$inet6(r6, &(0x7f0000000100)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, [], 0x1, 0x0}, 0x7}, 0x1c) setsockopt$inet6_opts(r6, 0x29, 0x40, &(0x7f0000000580)=ANY=[@ANYBLOB="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"], 0x1) sendmmsg(r6, &(0x7f00000092c0), 0x4ff, 0x0) mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x800003, 0x11, r3, 0x0) socketpair$unix(0x1, 0x800000000000003, 0x0, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x360) fcntl$setstatus(r4, 0x4, 0x44000) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r8, &(0x7f00000001c0), 0x526987c9) read(r7, &(0x7f0000000200)=""/250, 0x50c7e3e3) sendfile(r4, r5, 0x0, 0x80003) 15:14:43 executing program 2: r0 = socket$inet6(0xa, 0xe, 0xffff) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000340)='./cgroup\x00', 0x200002, 0x0) fchdir(r1) munmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000) bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000500)=0xffffffffffffffff, 0x4) r2 = fcntl$getown(r0, 0x9) r3 = getpgid(r2) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x2000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x3, 0x0, 0x0, 0x8000, 0x0, 0x8, 0x0, 0xd0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x81, 0x101}, 0x0, 0x0, 0x4, 0x0, 0x0, 0xfffffffffffffffa}, r3, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000280)='vfat\x00', &(0x7f00000002c0)='./file0/file1\x00', 0x100000000200e002, 0x63, &(0x7f0000000040)=[{&(0x7f0000000700)="eb64c86d4f66732e66617400020441000500077008f80000d8c32d8cbe59628cf9d9ed7b2cbf779f0b6880a876932b36860a0cc978a0146e83ef895f092487086ab63b696b0dc6d73b270dd1d31c01e009f2502a530803dfb6b984f12a6abadae0bd89d692e2e751e2de7e970a7a6a19ae893791c0fa540400000000000028391e75e072b8ff7a45cc6d1b47d8c1f4a819d0e62c528ec211d2fce141c703051c871c031daac41b75854b042c00da22c049901ab6723561d3e4702e4b53df171c2997a717ebacee256b32c8bb9d76882119e5ba", 0xfffffffffffffebc, 0x1}], 0x10002, 0x0) r4 = socket$inet6(0xa, 0x7, 0x3) syz_mount_image$vfat(&(0x7f0000000240)='vfat\x00', &(0x7f0000000640)='./file0\x00', 0xe005, 0x1, &(0x7f0000000380)=[{&(0x7f00000006c0)="eb3c130105a4874e97bfeb58906d6b66732e6461740002", 0x17, 0x2000000000}], 0x1010802, 0x0) r5 = open(&(0x7f00000001c0)='./file0\x00', 0x4, 0x0) mkdirat(r5, &(0x7f00000003c0)='./file0/file0\x00', 0x10000) removexattr(&(0x7f0000000140)='./file0\x00', &(0x7f0000000800)=ANY=[@ANYPTR64=&(0x7f0000001940)=ANY=[@ANYBLOB="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"], @ANYRES64=r2]) perf_event_open(&(0x7f0000940000)={0x2, 0xfffffffffffffdcd, 0xfffffffffffffffe, 0x0, 0x0, 0xd1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x4}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x2000000, 0x110, r1, 0x8000000) openat$fuse(0xffffffffffffff9c, &(0x7f0000000480)='/dev/fuse\x00', 0x2, 0x0) ioctl$FUSE_DEV_IOC_CLONE(r5, 0x8004e500, &(0x7f0000001140)) sched_setaffinity(0x0, 0x8, &(0x7f0000000180)=0x9) r6 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x20000000000000, 0x0, 0x0, 0x0, 0x0, 0x5, 0xffffffffffffffff, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4, 0x6}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioprio_get$pid(0x2, r3) capset(&(0x7f0000000300)={0x19980330, r2}, &(0x7f0000000580)={0xc, 0x2, 0x89, 0x3, 0xca, 0xca2c}) r7 = perf_event_open(&(0x7f0000c86f88)={0x2, 0x70, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xfd, 0xfd, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffff00000000000, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, @perf_bp, 0x1e, 0x0, 0x0, 0x4}, 0x0, 0x0, r6, 0x0) setsockopt$inet6_MRT6_ADD_MIF(r4, 0x29, 0xca, &(0x7f00000000c0)={0x0, 0x1, 0x2080000000, 0xfffffffffefffc01, 0x9}, 0xfffffffffffffe5f) openat$null(0xffffffffffffff9c, &(0x7f0000000600)='/dev/null\x00', 0xa2081, 0x0) write$cgroup_type(0xffffffffffffffff, &(0x7f0000000540)='threaded\x00', 0x9) mkdirat(r5, &(0x7f00000004c0)='./file1\x00', 0x100000000) creat(&(0x7f0000000a00)='./file0/file0\x00', 0x44) fchdir(r7) seccomp(0x0, 0x0, &(0x7f0000000200)={0x0, &(0x7f00000001c0)}) fstatfs(r5, &(0x7f0000000400)=""/128) [ 231.894213] RAX: ffffffffffffffda RBX: 00007f885a32dc90 RCX: 0000000000459829 [ 231.901463] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000 [ 231.908711] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000 [ 231.915957] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f885a32e6d4 [ 231.923205] R13: 00000000004bfce6 R14: 00000000004d1a58 R15: 0000000000000005 15:14:43 executing program 3 (fault-call:6 fault-nth:21): mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) 15:14:43 executing program 5: syz_mount_image$ntfs(&(0x7f0000000040)='ntfs\x00', &(0x7f00000000c0)='./bus\x00', 0x0, 0x0, &(0x7f0000000000), 0x8106, 0x0) [ 232.110605] capability: warning: `syz-executor.2' uses 32-bit capabilities (legacy support in use) [ 232.121578] FAULT_INJECTION: forcing a failure. [ 232.121578] name failslab, interval 1, probability 0, space 0, times 0 15:14:43 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x100000890e, &(0x7f0000000180)="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") r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x28001, 0x0) read$rfkill(r1, &(0x7f0000000000), 0x3) ioctl$CAPI_REGISTER(r1, 0x400c4301, &(0x7f00000000c0)={0x6, 0x200, 0x8}) ioctl$int_in(r1, 0x800060c0045005, &(0x7f0000000140)=0x5ad) [ 232.209234] CPU: 1 PID: 10599 Comm: syz-executor.3 Not tainted 4.14.139 #35 [ 232.216534] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 232.216540] Call Trace: [ 232.216560] dump_stack+0x138/0x19c [ 232.216579] should_fail.cold+0x10f/0x159 [ 232.236291] should_failslab+0xdb/0x130 [ 232.240274] kmem_cache_alloc+0x2d7/0x780 [ 232.244436] ? anon_vma_clone+0x310/0x470 [ 232.248602] anon_vma_fork+0xe9/0x4d0 [ 232.252416] copy_process.part.0+0x45e2/0x6a00 [ 232.257026] ? __cleanup_sighand+0x50/0x50 [ 232.261267] ? lock_downgrade+0x6e0/0x6e0 [ 232.265418] _do_fork+0x19e/0xce0 [ 232.265431] ? fork_idle+0x280/0x280 [ 232.265448] ? fput+0xd4/0x150 [ 232.265458] ? SyS_write+0x15e/0x230 [ 232.265473] SyS_clone+0x37/0x50 [ 232.265480] ? sys_vfork+0x30/0x30 [ 232.265495] do_syscall_64+0x1e8/0x640 [ 232.290315] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 232.295186] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 232.300378] RIP: 0033:0x459829 15:14:43 executing program 5: r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x20300, 0x0) ioctl$SNDRV_RAWMIDI_IOCTL_DROP(r0, 0x40045730, &(0x7f0000000080)=0x80) syz_open_dev$ndb(&(0x7f0000000140)='/dev/nbd#\x00', 0x0, 0x220080) ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x1fd, 0x2, 0x10000, 0x2000, &(0x7f0000ffb000/0x2000)=nil}) syz_mount_image$ntfs(&(0x7f0000000100)='ntfs\x00', &(0x7f00000000c0)='./bus\x00', 0x0, 0x2, &(0x7f0000001680)=[{0x0, 0x0, 0x401}, {&(0x7f0000001740)="3a77dd21387d6a624e139a664bf7ec507567aba5727ca2250cce6cea", 0x1c, 0x35}], 0x8100, 0x0) [ 232.303570] RSP: 002b:00007f664e1cac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 232.311281] RAX: ffffffffffffffda RBX: 00007f664e1cac90 RCX: 0000000000459829 [ 232.318648] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000 [ 232.325909] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000 [ 232.333164] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f664e1cb6d4 [ 232.340415] R13: 00000000004bfce6 R14: 00000000004d1a58 R15: 0000000000000004 15:14:43 executing program 1: socket$inet(0x10, 0x5, 0x3) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(r0, 0x8000000000000001, 0x10000000000005, &(0x7f0000000980)="000000009641d897e74754e15cafa0a8d7248293e5ee7f8e2dd6354dafd8e76a155d15a7f2872ef6c17ef451745a222065498562c09b44b262a3a3c76c9f5be0a2af258fa0b6a5dc7726bf25a563705d73ff7e1f556a82ae51f2ae06145b481c4be9c760d8289dc8cb601b1805223df02fa9ac38dc714a052b8acb3070d2d63e76195379b396da6c8d0b2fbc59c17f835516dad72c98358b4ff3cca04e1dda3b0f353c684773cb3813c3d2f0645e7dca7899dce3b933de4ef6e9f512cb5a1f4ad42c632645aff8", 0xc7) setsockopt$inet6_tcp_int(r0, 0x6, 0x100000004, &(0x7f0000000080)=0x2be, 0xfd3b) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) r2 = socket$inet6_udp(0xa, 0x2, 0x0) syncfs(r2) setsockopt$inet_tcp_int(r1, 0x6, 0x7ffffffffffffe, &(0x7f0000000000)=0x85, 0x4) setsockopt$sock_int(r1, 0x1, 0x2f, &(0x7f0000000040), 0x4) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r3 = open(&(0x7f0000000080)='./bus\x00', 0x80000000141046, 0x0) close(r3) r4 = syz_open_dev$loop(&(0x7f0000000540)='/dev/loop#\x00', 0x0, 0x105082) r5 = memfd_create(&(0x7f0000000300)='4t\xb9L<\xf2\x00\x90\xcd\x00\x00\x00\x00\x00\x00', 0x2) pwritev(r5, &(0x7f0000000440)=[{&(0x7f0000000480)="a8", 0x1}], 0x1, 0x81003) ioctl$LOOP_CHANGE_FD(r4, 0x4c00, r5) bpf$OBJ_GET_MAP(0x7, &(0x7f00000003c0)={&(0x7f0000000400)='./bus\x00', 0x0, 0x8}, 0xfffffffffffffecd) r6 = socket$inet6(0xa, 0x5, 0x2) connect$inet6(r6, &(0x7f0000000100)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, [], 0x1, 0x0}, 0x7}, 0x1c) setsockopt$inet6_opts(r6, 0x29, 0x40, &(0x7f0000000580)=ANY=[@ANYBLOB="29000000060058500ba40000005cb4b47a560100800000000002099666c20b21e8080008ae760000ec57c052aa843ac0031e4118a1a847c0e60000f5f2b1c4310380181c143c6b10022ee4de0a000000000000ffffffffffffffe7000000000000000000000000000000ff0100bf149fd5d981d72437034f05bb5c068772b310642de912c2729c83435806a73bd382c1e56638572925f03a2433d2feb19191b1ce221d87a8cbf189d711a0ef2eaed469d21c80190041c740cec379894459989e2f8785c13d863ba14f65bc3bd8101f0cfb7f5e67fa4e73f689fd819518dd1d96077a1c9fc2785a5eef5cd8d2302698ad2dcd089f8fa767244aacc5dc9302d8a7fab0f001a61e1ca1a48054355a9b1e3270bd27b1403b52ef479615d0c0939c553a704f66d677af16dfecbfb5320a99420a0000d764266803c6a7b0c72f00272659cfef2e81009412b58e07beeb27a8bf1ad4fcc5a08ea4b456bbbfd7c7bf47d0b3b738c40000001446edbaa57fcfa668883e56d870f43f701e69c6c16c4b76b85cc37303c86eab33154584a1c27a1e9b969b0f2d376728e815a2108fd533b9752382f97f734bcc065e92a9f5344c7614709fc445439b200085d3c8152faeba62db44b3d549db580c5207c91d65c6e005362fcaa7e0b2b281dd305b04c5bf62a929cfd480ef3d6060b0f0c65896d2b2ca39c9fffd03b67b623848c33c835b5ca05823d2982541c1d70e77538a4bbbf4acd7af4d0aa11901b8277ab713f35670b92bd8a903c5fbbba6bf41235394542eadb289b197f53ead5486e302b0b58a409fd1cd670de73527dc855199f54df31caf014b1d7e1a700e6df2eaf0000000d5b0bbf521ed434070fb0b27214f63f54b1162c5f4a114b48efd0e7674939406495cd2814a411ec6f9f7f5e028256227f21754e9f1bfe1a6b697e0d0739a5851c547d0ae8b46db33d9022618f798e9ff12ef901eb87b609a0eb192c2e94cc858e1bd172dd459ec8c0e650d7abc0ebdb91bb7b084f2fb08f411c59712c815a0989cd717a776961e441388a3d3339453ebdac75f9a54cfdea59bb1af457ccf06560f4a799d158408b3adf7b8e1c72981f41a2f5bb392d63f267fe69f46aaf94b9d122fd2006115741b26bd86f6600e1a3cc85188c845305b48e6320cd6ae0c10ba2cbc1e9054633bba5486423287c70644763263eb9f116341e739ed22a7e3372aa0e57f142f662ad224481150459d4cd9a2dd246a957279fef9c68bec8fa60f56bed83588e4aacfd2b5ad7fcd0e79c8bb2133ebabe957bbf5d8fa052c352b8c621d8070de5406a5e4c0c52fff0b3bb102651d0ae7991098bd9872a351c6588a8aea64203d6b1f358a809423bbfcaee3be1c62af78dea87a0d9d562f3a279a2a6d09103ae18dac9ab9790e"], 0x1) sendmmsg(r6, &(0x7f00000092c0), 0x4ff, 0x0) mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x800003, 0x11, r3, 0x0) socketpair$unix(0x1, 0x800000000000003, 0x0, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x360) fcntl$setstatus(r4, 0x4, 0x44000) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r8, &(0x7f00000001c0), 0x526987c9) read(r7, &(0x7f0000000200)=""/250, 0x50c7e3e3) sendfile(r4, r5, 0x0, 0x80003) 15:14:43 executing program 4 (fault-call:8 fault-nth:18): r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="11dca50d5e0bcfe47bf070") mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) [ 232.461661] FAULT_INJECTION: forcing a failure. [ 232.461661] name failslab, interval 1, probability 0, space 0, times 0 [ 232.476560] CPU: 1 PID: 10621 Comm: syz-executor.4 Not tainted 4.14.139 #35 [ 232.483696] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 232.493068] Call Trace: [ 232.495647] dump_stack+0x138/0x19c [ 232.499263] should_fail.cold+0x10f/0x159 [ 232.503398] should_failslab+0xdb/0x130 [ 232.507372] kmem_cache_alloc+0x47/0x780 [ 232.511418] ? __lock_is_held+0xb6/0x140 [ 232.515461] ? check_preemption_disabled+0x3c/0x250 [ 232.520459] anon_vma_clone+0xde/0x470 [ 232.524329] anon_vma_fork+0x87/0x4d0 [ 232.528115] copy_process.part.0+0x45e2/0x6a00 [ 232.532691] ? __cleanup_sighand+0x50/0x50 [ 232.536910] ? lock_downgrade+0x6e0/0x6e0 [ 232.541048] _do_fork+0x19e/0xce0 [ 232.544821] ? fork_idle+0x280/0x280 [ 232.548519] ? fput+0xd4/0x150 [ 232.551690] ? SyS_write+0x15e/0x230 [ 232.555385] SyS_clone+0x37/0x50 [ 232.558728] ? sys_vfork+0x30/0x30 [ 232.562249] do_syscall_64+0x1e8/0x640 [ 232.566117] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 232.570944] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 232.576119] RIP: 0033:0x459829 [ 232.579285] RSP: 002b:00007f885a32dc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 232.586972] RAX: ffffffffffffffda RBX: 00007f885a32dc90 RCX: 0000000000459829 [ 232.594218] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000 [ 232.601465] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000 15:14:43 executing program 4 (fault-call:8 fault-nth:19): r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="11dca50d5e0bcfe47bf070") mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) 15:14:43 executing program 3 (fault-call:6 fault-nth:22): mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) [ 232.608715] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f885a32e6d4 [ 232.615964] R13: 00000000004bfce6 R14: 00000000004d1a58 R15: 0000000000000005 15:14:43 executing program 1: socket$inet(0x10, 0x5, 0x3) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(r0, 0x8000000000000001, 0x10000000000005, &(0x7f0000000980)="000000009641d897e74754e15cafa0a8d7248293e5ee7f8e2dd6354dafd8e76a155d15a7f2872ef6c17ef451745a222065498562c09b44b262a3a3c76c9f5be0a2af258fa0b6a5dc7726bf25a563705d73ff7e1f556a82ae51f2ae06145b481c4be9c760d8289dc8cb601b1805223df02fa9ac38dc714a052b8acb3070d2d63e76195379b396da6c8d0b2fbc59c17f835516dad72c98358b4ff3cca04e1dda3b0f353c684773cb3813c3d2f0645e7dca7899dce3b933de4ef6e9f512cb5a1f4ad42c632645aff8", 0xc7) setsockopt$inet6_tcp_int(r0, 0x6, 0x100000004, &(0x7f0000000080)=0x2be, 0xfd3b) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) r2 = socket$inet6_udp(0xa, 0x2, 0x0) syncfs(r2) setsockopt$inet_tcp_int(r1, 0x6, 0x7ffffffffffffe, &(0x7f0000000000)=0x85, 0x4) setsockopt$sock_int(r1, 0x1, 0x2f, &(0x7f0000000040), 0x4) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r3 = open(&(0x7f0000000080)='./bus\x00', 0x80000000141046, 0x0) close(r3) r4 = syz_open_dev$loop(&(0x7f0000000540)='/dev/loop#\x00', 0x0, 0x105082) r5 = memfd_create(&(0x7f0000000300)='4t\xb9L<\xf2\x00\x90\xcd\x00\x00\x00\x00\x00\x00', 0x2) pwritev(r5, &(0x7f0000000440)=[{&(0x7f0000000480)="a8", 0x1}], 0x1, 0x81003) ioctl$LOOP_CHANGE_FD(r4, 0x4c00, r5) bpf$OBJ_GET_MAP(0x7, &(0x7f00000003c0)={&(0x7f0000000400)='./bus\x00', 0x0, 0x8}, 0xfffffffffffffecd) r6 = socket$inet6(0xa, 0x5, 0x2) connect$inet6(r6, &(0x7f0000000100)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, [], 0x1, 0x0}, 0x7}, 0x1c) setsockopt$inet6_opts(r6, 0x29, 0x40, &(0x7f0000000580)=ANY=[@ANYBLOB="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"], 0x1) sendmmsg(r6, &(0x7f00000092c0), 0x4ff, 0x0) mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x800003, 0x11, r3, 0x0) socketpair$unix(0x1, 0x800000000000003, 0x0, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x360) fcntl$setstatus(r4, 0x4, 0x44000) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r8, &(0x7f00000001c0), 0x526987c9) read(r7, &(0x7f0000000200)=""/250, 0x50c7e3e3) sendfile(r4, r5, 0x0, 0x80003) 15:14:43 executing program 2: r0 = socket$inet6(0xa, 0xe, 0xffff) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000340)='./cgroup\x00', 0x200002, 0x0) fchdir(r1) munmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000) bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000500)=0xffffffffffffffff, 0x4) r2 = fcntl$getown(r0, 0x9) r3 = getpgid(r2) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x2000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x3, 0x0, 0x0, 0x8000, 0x0, 0x8, 0x0, 0xd0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x81, 0x101}, 0x0, 0x0, 0x4, 0x0, 0x0, 0xfffffffffffffffa}, r3, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000280)='vfat\x00', &(0x7f00000002c0)='./file0/file1\x00', 0x100000000200e002, 0x63, &(0x7f0000000040)=[{&(0x7f0000000700)="eb64c86d4f66732e66617400020441000500077008f80000d8c32d8cbe59628cf9d9ed7b2cbf779f0b6880a876932b36860a0cc978a0146e83ef895f092487086ab63b696b0dc6d73b270dd1d31c01e009f2502a530803dfb6b984f12a6abadae0bd89d692e2e751e2de7e970a7a6a19ae893791c0fa540400000000000028391e75e072b8ff7a45cc6d1b47d8c1f4a819d0e62c528ec211d2fce141c703051c871c031daac41b75854b042c00da22c049901ab6723561d3e4702e4b53df171c2997a717ebacee256b32c8bb9d76882119e5ba", 0xfffffffffffffebc, 0x1}], 0x10002, 0x0) r4 = socket$inet6(0xa, 0x7, 0x3) syz_mount_image$vfat(&(0x7f0000000240)='vfat\x00', &(0x7f0000000640)='./file0\x00', 0xe005, 0x1, &(0x7f0000000380)=[{&(0x7f00000006c0)="eb3c130105a4874e97bfeb58906d6b66732e6461740002", 0x17, 0x2000000000}], 0x1010802, 0x0) r5 = open(&(0x7f00000001c0)='./file0\x00', 0x4, 0x0) mkdirat(r5, &(0x7f00000003c0)='./file0/file0\x00', 0x10000) removexattr(&(0x7f0000000140)='./file0\x00', &(0x7f0000000800)=ANY=[@ANYPTR64=&(0x7f0000001940)=ANY=[@ANYBLOB="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"], @ANYRES64=r2]) perf_event_open(&(0x7f0000940000)={0x2, 0xfffffffffffffdcd, 0xfffffffffffffffe, 0x0, 0x0, 0xd1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x4}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x2000000, 0x110, r1, 0x8000000) openat$fuse(0xffffffffffffff9c, &(0x7f0000000480)='/dev/fuse\x00', 0x2, 0x0) ioctl$FUSE_DEV_IOC_CLONE(r5, 0x8004e500, &(0x7f0000001140)) sched_setaffinity(0x0, 0x8, &(0x7f0000000180)=0x9) r6 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x20000000000000, 0x0, 0x0, 0x0, 0x0, 0x5, 0xffffffffffffffff, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4, 0x6}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioprio_get$pid(0x2, r3) capset(&(0x7f0000000300)={0x19980330, r2}, &(0x7f0000000580)={0xc, 0x2, 0x89, 0x3, 0xca, 0xca2c}) r7 = perf_event_open(&(0x7f0000c86f88)={0x2, 0x70, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xfd, 0xfd, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffff00000000000, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, @perf_bp, 0x1e, 0x0, 0x0, 0x4}, 0x0, 0x0, r6, 0x0) setsockopt$inet6_MRT6_ADD_MIF(r4, 0x29, 0xca, &(0x7f00000000c0)={0x0, 0x1, 0x2080000000, 0xfffffffffefffc01, 0x9}, 0xfffffffffffffe5f) openat$null(0xffffffffffffff9c, &(0x7f0000000600)='/dev/null\x00', 0xa2081, 0x0) write$cgroup_type(0xffffffffffffffff, &(0x7f0000000540)='threaded\x00', 0x9) mkdirat(r5, &(0x7f00000004c0)='./file1\x00', 0x100000000) creat(&(0x7f0000000a00)='./file0/file0\x00', 0x44) fchdir(r7) seccomp(0x0, 0x0, &(0x7f0000000200)={0x0, &(0x7f00000001c0)}) fstatfs(r5, &(0x7f0000000400)=""/128) [ 232.743479] FAULT_INJECTION: forcing a failure. [ 232.743479] name failslab, interval 1, probability 0, space 0, times 0 [ 232.794582] CPU: 0 PID: 10635 Comm: syz-executor.4 Not tainted 4.14.139 #35 [ 232.801227] FAULT_INJECTION: forcing a failure. [ 232.801227] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 232.801836] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 232.823023] Call Trace: [ 232.825620] dump_stack+0x138/0x19c [ 232.829266] should_fail.cold+0x10f/0x159 [ 232.833417] ? anon_vma_clone+0xde/0x470 [ 232.833432] should_failslab+0xdb/0x130 [ 232.841453] kmem_cache_alloc+0x47/0x780 [ 232.841470] ? anon_vma_chain_link+0x142/0x1a0 [ 232.841483] anon_vma_clone+0xde/0x470 [ 232.841497] anon_vma_fork+0x87/0x4d0 [ 232.857789] copy_process.part.0+0x45e2/0x6a00 [ 232.862385] ? __cleanup_sighand+0x50/0x50 [ 232.866615] ? lock_downgrade+0x6e0/0x6e0 [ 232.870767] _do_fork+0x19e/0xce0 [ 232.874212] ? fork_idle+0x280/0x280 [ 232.877924] ? fput+0xd4/0x150 [ 232.881141] ? SyS_write+0x15e/0x230 [ 232.884854] SyS_clone+0x37/0x50 [ 232.888211] ? sys_vfork+0x30/0x30 [ 232.891744] do_syscall_64+0x1e8/0x640 [ 232.895622] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 232.900478] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 232.905661] RIP: 0033:0x459829 [ 232.908837] RSP: 002b:00007f885a32dc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 232.916534] RAX: ffffffffffffffda RBX: 00007f885a32dc90 RCX: 0000000000459829 [ 232.923790] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000 [ 232.931049] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000 [ 232.938316] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f885a32e6d4 15:14:43 executing program 5: syz_mount_image$ntfs(&(0x7f0000000100)='ntfs\x00', &(0x7f00000000c0)='./bus\x00', 0x0, 0x0, &(0x7f0000001680), 0x8100, 0x0) r0 = openat$proc_capi20ncci(0xffffffffffffff9c, &(0x7f0000000000)='/proc/capi/capi20ncci\x00', 0x80000, 0x0) ioctl$PPPIOCSFLAGS(r0, 0x40047459, &(0x7f0000000200)) socket$inet6_sctp(0xa, 0x5, 0x84) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000180)={0x0, 0x18, 0xfa00, {0x4, &(0x7f0000000140)={0xffffffffffffffff}, 0x106}}, 0x20) write$RDMA_USER_CM_CMD_DISCONNECT(r0, &(0x7f00000001c0)={0xa, 0x4, 0xfa00, {r1}}, 0xc) connect$unix(r0, &(0x7f0000000040)=@abs={0xb1ffd9f50c3d7bfe, 0x0, 0x4e20}, 0xffffffffffffff29) [ 232.945570] R13: 00000000004bfce6 R14: 00000000004d1a58 R15: 0000000000000005 [ 232.952890] CPU: 1 PID: 10639 Comm: syz-executor.3 Not tainted 4.14.139 #35 [ 232.960012] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 232.969363] Call Trace: [ 232.971947] dump_stack+0x138/0x19c [ 232.975562] should_fail.cold+0x10f/0x159 [ 232.979696] ? __might_sleep+0x93/0xb0 [ 232.983587] __alloc_pages_nodemask+0x1d6/0x7a0 [ 232.988234] ? save_stack+0xa9/0xd0 [ 232.991843] ? __alloc_pages_slowpath+0x2930/0x2930 [ 232.996850] ? anon_vma_fork+0x1ce/0x4d0 [ 233.000893] ? copy_process.part.0+0x45e2/0x6a00 [ 233.005628] ? _do_fork+0x19e/0xce0 [ 233.009241] ? __lock_acquire+0x5f7/0x4620 [ 233.013459] alloc_pages_current+0xec/0x1e0 [ 233.017760] __get_free_pages+0xf/0x40 [ 233.021628] get_zeroed_page+0x11/0x20 [ 233.025491] __pud_alloc+0x3b/0x200 [ 233.029098] pud_alloc+0xc9/0x130 [ 233.032548] copy_page_range+0x2de/0x1bd0 [ 233.036682] ? find_held_lock+0x35/0x130 [ 233.040727] ? find_held_lock+0x35/0x130 [ 233.044775] ? __pmd_alloc+0x410/0x410 [ 233.048639] ? __vma_link_rb+0x247/0x340 [ 233.052684] copy_process.part.0+0x4764/0x6a00 [ 233.057258] ? __cleanup_sighand+0x50/0x50 [ 233.061490] ? lock_downgrade+0x6e0/0x6e0 [ 233.065631] _do_fork+0x19e/0xce0 [ 233.069065] ? fork_idle+0x280/0x280 [ 233.072761] ? fput+0xd4/0x150 [ 233.075931] ? SyS_write+0x15e/0x230 [ 233.079623] SyS_clone+0x37/0x50 [ 233.082965] ? sys_vfork+0x30/0x30 [ 233.086494] do_syscall_64+0x1e8/0x640 [ 233.090454] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 233.095282] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 233.100450] RIP: 0033:0x459829 [ 233.103620] RSP: 002b:00007f664e1cac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 233.111310] RAX: ffffffffffffffda RBX: 00007f664e1cac90 RCX: 0000000000459829 [ 233.118557] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000 [ 233.125804] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000 [ 233.133051] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f664e1cb6d4 [ 233.140299] R13: 00000000004bfce6 R14: 00000000004d1a58 R15: 0000000000000004 15:14:44 executing program 4 (fault-call:8 fault-nth:20): r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="11dca50d5e0bcfe47bf070") mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) 15:14:44 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070") r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x28001, 0x0) read$rfkill(r1, &(0x7f0000000000), 0x3) ioctl$FS_IOC_ENABLE_VERITY(r0, 0x6685, &(0x7f00000001c0)={0x1, 0x3f, 0x1000, 0x71, &(0x7f00000000c0)="d9d10164058941bba57c045f38f71d1ccf6fb0c0ceeb9f7be506d8b7f59eb97f1bca73a05c3afb06ebda720db8ca55d06c95f6f9dc5d9e564a5c33de57317aa162312aa094f7a3ff501849ff31b9fb0a909456617b794b805da7291cb263c5d1f8c3c9163bbf35c7b1d85482d97bff44ff", 0x5, 0x0, &(0x7f0000000180)="c913606004"}) ioctl$int_in(r1, 0x800060c0045005, &(0x7f0000000140)=0x5ad) 15:14:44 executing program 5: lsetxattr$trusted_overlay_upper(&(0x7f0000000000)='./bus\x00', &(0x7f0000000040)='trusted.overlay.upper\x00', &(0x7f0000000140)={0x0, 0xfb, 0x41, 0x4, 0x5, "0c01128d5f3984a300faa761ba6f3cab", "811fc34063485d3a31217b5fe41ce2e42b17a8a6aa6fdd24f6b903bf0669ce30dd7e464b60b74cf0573a218e"}, 0x41, 0x0) syz_mount_image$ntfs(&(0x7f0000000100)='ntfs\x00', &(0x7f00000000c0)='./bus\x00', 0x0, 0x2, &(0x7f0000001680)=[{0x0, 0x0, 0x401}, {&(0x7f0000001740)="3a77dd21387d6a624e139a664bf7ec507567aba5727ca2250cce6cea", 0x1c, 0x35}], 0x8100, 0x0) 15:14:44 executing program 3 (fault-call:6 fault-nth:23): mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) [ 233.356880] FAULT_INJECTION: forcing a failure. [ 233.356880] name failslab, interval 1, probability 0, space 0, times 0 15:14:44 executing program 5: syz_mount_image$ntfs(&(0x7f0000000100)='ntfs\x00', &(0x7f00000000c0)='./bus\x00', 0x0, 0x2, &(0x7f0000001680)=[{0x0, 0x0, 0x401}, {&(0x7f0000001740)="3a77dd21387d6a624e139a664bf7ec507567aba5727ca2250cce6cea", 0x1c, 0x35}], 0x8100, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000140)='/proc/self/net/pfkey\x00', 0x6c0000, 0x0) getsockname$unix(r0, &(0x7f0000000180)=@abs, &(0x7f0000000200)=0x6e) r1 = openat$zero(0xffffffffffffff9c, &(0x7f0000000300)='/dev/zero\x00', 0x6257e77f07e04321, 0x0) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, &(0x7f00000003c0)={0x3, [0x0, 0x0, 0x0]}, &(0x7f0000000400)=0x10) setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r1, 0x84, 0x9, &(0x7f0000000440)={r2, @in6={{0xa, 0x4e23, 0xafa, @mcast1}}, 0x7fffffff, 0x1, 0x8001, 0x9, 0x2}, 0x98) connect$pppoe(r0, &(0x7f00000002c0)={0x18, 0x0, {0x1, @remote, 'lapb0\x00'}}, 0x1e) fsetxattr$trusted_overlay_redirect(r0, &(0x7f0000000240)='trusted.overlay.redirect\x00', &(0x7f0000000280)='./bus\x00', 0x6, 0x1) setxattr$security_selinux(&(0x7f0000000000)='./bus\x00', &(0x7f0000000040)='security.selinux\x00', &(0x7f0000000080)='system_u:object_r:auditd_initrc_exec_t:s0\x00', 0x2a, 0x2) [ 233.400254] CPU: 1 PID: 10668 Comm: syz-executor.4 Not tainted 4.14.139 #35 [ 233.407428] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 233.415856] FAULT_INJECTION: forcing a failure. [ 233.415856] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 233.416800] Call Trace: [ 233.416821] dump_stack+0x138/0x19c [ 233.416841] should_fail.cold+0x10f/0x159 [ 233.416860] should_failslab+0xdb/0x130 [ 233.442977] kmem_cache_alloc+0x2d7/0x780 [ 233.447142] ? anon_vma_clone+0x310/0x470 [ 233.451302] anon_vma_fork+0xe9/0x4d0 [ 233.455116] copy_process.part.0+0x45e2/0x6a00 [ 233.459880] ? __cleanup_sighand+0x50/0x50 [ 233.464115] ? lock_downgrade+0x6e0/0x6e0 [ 233.468263] _do_fork+0x19e/0xce0 [ 233.471711] ? fork_idle+0x280/0x280 [ 233.475422] ? fput+0xd4/0x150 [ 233.478607] ? SyS_write+0x15e/0x230 [ 233.482315] SyS_clone+0x37/0x50 [ 233.485670] ? sys_vfork+0x30/0x30 [ 233.489218] do_syscall_64+0x1e8/0x640 [ 233.493102] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 233.497950] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 233.503135] RIP: 0033:0x459829 [ 233.506320] RSP: 002b:00007f885a32dc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 233.514035] RAX: ffffffffffffffda RBX: 00007f885a32dc90 RCX: 0000000000459829 [ 233.521299] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000 [ 233.528570] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000 [ 233.535841] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f885a32e6d4 [ 233.543120] R13: 00000000004bfce6 R14: 00000000004d1a58 R15: 0000000000000005 [ 233.556605] CPU: 0 PID: 10672 Comm: syz-executor.3 Not tainted 4.14.139 #35 [ 233.563845] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 233.573209] Call Trace: [ 233.575821] dump_stack+0x138/0x19c [ 233.579471] should_fail.cold+0x10f/0x159 [ 233.583630] ? __might_sleep+0x93/0xb0 [ 233.587535] __alloc_pages_nodemask+0x1d6/0x7a0 [ 233.592200] ? __alloc_pages_slowpath+0x2930/0x2930 [ 233.592225] alloc_pages_current+0xec/0x1e0 [ 233.592237] __pmd_alloc+0x41/0x410 15:14:44 executing program 1: socket$inet(0x10, 0x5, 0x3) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(r0, 0x8000000000000001, 0x10000000000005, &(0x7f0000000980)="000000009641d897e74754e15cafa0a8d7248293e5ee7f8e2dd6354dafd8e76a155d15a7f2872ef6c17ef451745a222065498562c09b44b262a3a3c76c9f5be0a2af258fa0b6a5dc7726bf25a563705d73ff7e1f556a82ae51f2ae06145b481c4be9c760d8289dc8cb601b1805223df02fa9ac38dc714a052b8acb3070d2d63e76195379b396da6c8d0b2fbc59c17f835516dad72c98358b4ff3cca04e1dda3b0f353c684773cb3813c3d2f0645e7dca7899dce3b933de4ef6e9f512cb5a1f4ad42c632645aff8", 0xc7) setsockopt$inet6_tcp_int(r0, 0x6, 0x100000004, &(0x7f0000000080)=0x2be, 0xfd3b) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) r2 = socket$inet6_udp(0xa, 0x2, 0x0) syncfs(r2) setsockopt$inet_tcp_int(r1, 0x6, 0x7ffffffffffffe, &(0x7f0000000000)=0x85, 0x4) setsockopt$sock_int(r1, 0x1, 0x2f, &(0x7f0000000040), 0x4) socket(0xffffffffffffffff, 0x6, 0x5) r3 = open(&(0x7f0000000080)='./bus\x00', 0x80000000141046, 0x0) close(r3) r4 = syz_open_dev$loop(&(0x7f0000000540)='/dev/loop#\x00', 0x0, 0x105082) r5 = memfd_create(&(0x7f0000000300)='4t\xb9L<\xf2\x00\x90\xcd\x00\x00\x00\x00\x00\x00', 0x2) pwritev(r5, &(0x7f0000000440)=[{&(0x7f0000000480)="a8", 0x1}], 0x1, 0x81003) ioctl$LOOP_CHANGE_FD(r4, 0x4c00, r5) bpf$OBJ_GET_MAP(0x7, &(0x7f00000003c0)={&(0x7f0000000400)='./bus\x00', 0x0, 0x8}, 0xfffffffffffffecd) r6 = socket$inet6(0xa, 0x5, 0x2) connect$inet6(r6, &(0x7f0000000100)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, [], 0x1, 0x0}, 0x7}, 0x1c) setsockopt$inet6_opts(r6, 0x29, 0x40, &(0x7f0000000580)=ANY=[@ANYBLOB="29000000060058500ba40000005cb4b47a560100800000000002099666c20b21e8080008ae760000ec57c052aa843ac0031e4118a1a847c0e60000f5f2b1c4310380181c143c6b10022ee4de0a000000000000ffffffffffffffe7000000000000000000000000000000ff0100bf149fd5d981d72437034f05bb5c068772b310642de912c2729c83435806a73bd382c1e56638572925f03a2433d2feb19191b1ce221d87a8cbf189d711a0ef2eaed469d21c80190041c740cec379894459989e2f8785c13d863ba14f65bc3bd8101f0cfb7f5e67fa4e73f689fd819518dd1d96077a1c9fc2785a5eef5cd8d2302698ad2dcd089f8fa767244aacc5dc9302d8a7fab0f001a61e1ca1a48054355a9b1e3270bd27b1403b52ef479615d0c0939c553a704f66d677af16dfecbfb5320a99420a0000d764266803c6a7b0c72f00272659cfef2e81009412b58e07beeb27a8bf1ad4fcc5a08ea4b456bbbfd7c7bf47d0b3b738c40000001446edbaa57fcfa668883e56d870f43f701e69c6c16c4b76b85cc37303c86eab33154584a1c27a1e9b969b0f2d376728e815a2108fd533b9752382f97f734bcc065e92a9f5344c7614709fc445439b200085d3c8152faeba62db44b3d549db580c5207c91d65c6e005362fcaa7e0b2b281dd305b04c5bf62a929cfd480ef3d6060b0f0c65896d2b2ca39c9fffd03b67b623848c33c835b5ca05823d2982541c1d70e77538a4bbbf4acd7af4d0aa11901b8277ab713f35670b92bd8a903c5fbbba6bf41235394542eadb289b197f53ead5486e302b0b58a409fd1cd670de73527dc855199f54df31caf014b1d7e1a700e6df2eaf0000000d5b0bbf521ed434070fb0b27214f63f54b1162c5f4a114b48efd0e7674939406495cd2814a411ec6f9f7f5e028256227f21754e9f1bfe1a6b697e0d0739a5851c547d0ae8b46db33d9022618f798e9ff12ef901eb87b609a0eb192c2e94cc858e1bd172dd459ec8c0e650d7abc0ebdb91bb7b084f2fb08f411c59712c815a0989cd717a776961e441388a3d3339453ebdac75f9a54cfdea59bb1af457ccf06560f4a799d158408b3adf7b8e1c72981f41a2f5bb392d63f267fe69f46aaf94b9d122fd2006115741b26bd86f6600e1a3cc85188c845305b48e6320cd6ae0c10ba2cbc1e9054633bba5486423287c70644763263eb9f116341e739ed22a7e3372aa0e57f142f662ad224481150459d4cd9a2dd246a957279fef9c68bec8fa60f56bed83588e4aacfd2b5ad7fcd0e79c8bb2133ebabe957bbf5d8fa052c352b8c621d8070de5406a5e4c0c52fff0b3bb102651d0ae7991098bd9872a351c6588a8aea64203d6b1f358a809423bbfcaee3be1c62af78dea87a0d9d562f3a279a2a6d09103ae18dac9ab9790e"], 0x1) sendmmsg(r6, &(0x7f00000092c0), 0x4ff, 0x0) mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x800003, 0x11, r3, 0x0) socketpair$unix(0x1, 0x800000000000003, 0x0, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x360) fcntl$setstatus(r4, 0x4, 0x44000) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r8, &(0x7f00000001c0), 0x526987c9) read(r7, &(0x7f0000000200)=""/250, 0x50c7e3e3) sendfile(r4, r5, 0x0, 0x80003) [ 233.592252] copy_page_range+0x12b7/0x1bd0 [ 233.605189] ? find_held_lock+0x35/0x130 [ 233.605214] ? __pmd_alloc+0x410/0x410 [ 233.605224] ? __vma_link_rb+0x247/0x340 [ 233.605242] copy_process.part.0+0x4764/0x6a00 [ 233.605268] ? __cleanup_sighand+0x50/0x50 [ 233.630243] ? lock_downgrade+0x6e0/0x6e0 [ 233.634414] _do_fork+0x19e/0xce0 [ 233.637876] ? fork_idle+0x280/0x280 [ 233.641596] ? fput+0xd4/0x150 [ 233.644882] ? SyS_write+0x15e/0x230 [ 233.648601] SyS_clone+0x37/0x50 [ 233.651961] ? sys_vfork+0x30/0x30 [ 233.655497] do_syscall_64+0x1e8/0x640 [ 233.659395] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 233.664238] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 233.669419] RIP: 0033:0x459829 [ 233.672625] RSP: 002b:00007f664e1cac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 233.680332] RAX: ffffffffffffffda RBX: 00007f664e1cac90 RCX: 0000000000459829 [ 233.687605] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000 [ 233.694870] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000 15:14:44 executing program 4 (fault-call:8 fault-nth:21): r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="11dca50d5e0bcfe47bf070") mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) 15:14:44 executing program 3 (fault-call:6 fault-nth:24): mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) [ 233.702235] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f664e1cb6d4 [ 233.709516] R13: 00000000004bfce6 R14: 00000000004d1a58 R15: 0000000000000004 15:14:45 executing program 5: syz_open_dev$swradio(&(0x7f0000000000)='/dev/swradio#\x00', 0x1, 0x2) syz_mount_image$ntfs(&(0x7f0000000100)='ntfs\x00', &(0x7f00000000c0)='./bus\x00', 0x0, 0x2, &(0x7f0000001680)=[{0x0, 0x0, 0x401}, {&(0x7f0000001740)="3a77dd21387d6a624e139a664bf7ec507567aba5727ca2250cce6cea", 0x1c, 0x35}], 0x8100, 0x0) [ 233.852347] FAULT_INJECTION: forcing a failure. [ 233.852347] name failslab, interval 1, probability 0, space 0, times 0 15:14:45 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070") r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x28001, 0x0) read$rfkill(r1, &(0x7f0000000000), 0x3) ioctl$VIDIOC_S_OUTPUT(r1, 0xc004562f, &(0x7f00000000c0)=0x7) ioctl$int_in(r1, 0x800060c0045005, &(0x7f0000000140)=0x5ad) [ 233.921377] CPU: 0 PID: 10694 Comm: syz-executor.4 Not tainted 4.14.139 #35 [ 233.922991] FAULT_INJECTION: forcing a failure. [ 233.922991] name failslab, interval 1, probability 0, space 0, times 0 [ 233.928539] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 233.928545] Call Trace: [ 233.928570] dump_stack+0x138/0x19c [ 233.928592] should_fail.cold+0x10f/0x159 [ 233.928612] should_failslab+0xdb/0x130 [ 233.959494] kmem_cache_alloc+0x2d7/0x780 [ 233.967588] ? anon_vma_clone+0x310/0x470 [ 233.967605] anon_vma_fork+0xe9/0x4d0 [ 233.967622] copy_process.part.0+0x45e2/0x6a00 [ 233.967650] ? __cleanup_sighand+0x50/0x50 [ 233.967662] ? lock_downgrade+0x6e0/0x6e0 [ 233.967675] _do_fork+0x19e/0xce0 [ 233.967687] ? fork_idle+0x280/0x280 [ 233.967700] ? fput+0xd4/0x150 [ 233.967709] ? SyS_write+0x15e/0x230 [ 233.967721] SyS_clone+0x37/0x50 [ 233.967744] ? sys_vfork+0x30/0x30 [ 234.009471] do_syscall_64+0x1e8/0x640 [ 234.013350] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 234.018187] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 234.023383] RIP: 0033:0x459829 [ 234.026565] RSP: 002b:00007f885a32dc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 234.034261] RAX: ffffffffffffffda RBX: 00007f885a32dc90 RCX: 0000000000459829 [ 234.041521] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000 [ 234.048780] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000 [ 234.056037] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f885a32e6d4 [ 234.063298] R13: 00000000004bfce6 R14: 00000000004d1a58 R15: 0000000000000005 [ 234.070581] CPU: 1 PID: 10696 Comm: syz-executor.3 Not tainted 4.14.139 #35 [ 234.077699] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 234.087064] Call Trace: [ 234.089659] dump_stack+0x138/0x19c [ 234.093306] should_fail.cold+0x10f/0x159 [ 234.097459] should_failslab+0xdb/0x130 [ 234.101429] kmem_cache_alloc+0x2d7/0x780 [ 234.105598] ? alloc_pages_current+0xf4/0x1e0 [ 234.110098] __pmd_alloc+0xbd/0x410 [ 234.113723] copy_page_range+0x12b7/0x1bd0 [ 234.117955] ? find_held_lock+0x35/0x130 [ 234.122026] ? __pmd_alloc+0x410/0x410 [ 234.125913] ? __vma_link_rb+0x247/0x340 [ 234.129992] copy_process.part.0+0x4764/0x6a00 [ 234.134588] ? __cleanup_sighand+0x50/0x50 [ 234.138836] ? lock_downgrade+0x6e0/0x6e0 [ 234.142986] _do_fork+0x19e/0xce0 [ 234.146437] ? fork_idle+0x280/0x280 [ 234.150155] ? fput+0xd4/0x150 [ 234.153349] ? SyS_write+0x15e/0x230 [ 234.157070] SyS_clone+0x37/0x50 [ 234.160430] ? sys_vfork+0x30/0x30 [ 234.163967] do_syscall_64+0x1e8/0x640 [ 234.167848] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 234.172703] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 234.177891] RIP: 0033:0x459829 [ 234.181079] RSP: 002b:00007f664e1cac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 234.188790] RAX: ffffffffffffffda RBX: 00007f664e1cac90 RCX: 0000000000459829 [ 234.196062] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000 [ 234.203327] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000 [ 234.210603] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f664e1cb6d4 15:14:45 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup\x00', 0x200002, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = openat$cgroup_procs(r0, &(0x7f00000001c0)='cgroup.procs\x00', 0x2, 0x0) sendfile(r1, r3, 0x0, 0x3fe) 15:14:45 executing program 4 (fault-call:8 fault-nth:22): r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="11dca50d5e0bcfe47bf070") mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) 15:14:45 executing program 2: 15:14:45 executing program 3 (fault-call:6 fault-nth:25): mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) [ 234.217882] R13: 00000000004bfce6 R14: 00000000004d1a58 R15: 0000000000000004 15:14:45 executing program 2: 15:14:45 executing program 2: 15:14:45 executing program 5: syz_mount_image$ntfs(&(0x7f0000000100)='ntfs\x00', &(0x7f00000000c0)='./bus\x00', 0x0, 0x2, &(0x7f0000001680)=[{0x0, 0x0, 0x401}, {&(0x7f0000001740)="3a77dd21387d6a624e139a664bf7ec507567aba5727ca2250cce6cea", 0x1c, 0x35}], 0x8100, 0x0) openat$selinux_mls(0xffffffffffffff9c, &(0x7f0000000240)='/selinux/mls\x00', 0x0, 0x0) [ 234.338602] FAULT_INJECTION: forcing a failure. [ 234.338602] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 234.349246] FAULT_INJECTION: forcing a failure. [ 234.349246] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 234.364381] CPU: 1 PID: 10716 Comm: syz-executor.4 Not tainted 4.14.139 #35 [ 234.371516] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 234.380867] Call Trace: [ 234.383458] dump_stack+0x138/0x19c [ 234.387105] should_fail.cold+0x10f/0x159 [ 234.391259] ? __might_sleep+0x93/0xb0 [ 234.395180] __alloc_pages_nodemask+0x1d6/0x7a0 [ 234.399848] ? save_stack+0xa9/0xd0 [ 234.403484] ? __alloc_pages_slowpath+0x2930/0x2930 [ 234.408502] ? anon_vma_fork+0x1ce/0x4d0 [ 234.412568] ? copy_process.part.0+0x45e2/0x6a00 [ 234.417323] ? _do_fork+0x19e/0xce0 [ 234.420972] ? __lock_acquire+0x5f7/0x4620 [ 234.425213] alloc_pages_current+0xec/0x1e0 [ 234.429543] __get_free_pages+0xf/0x40 [ 234.433414] get_zeroed_page+0x11/0x20 [ 234.433422] __pud_alloc+0x3b/0x200 [ 234.433430] pud_alloc+0xc9/0x130 [ 234.433439] copy_page_range+0x2de/0x1bd0 [ 234.433453] ? find_held_lock+0x35/0x130 [ 234.433465] ? find_held_lock+0x35/0x130 [ 234.433478] ? __pmd_alloc+0x410/0x410 [ 234.433490] ? __vma_link_rb+0x247/0x340 [ 234.464558] copy_process.part.0+0x4764/0x6a00 [ 234.469183] ? __cleanup_sighand+0x50/0x50 [ 234.473423] ? lock_downgrade+0x6e0/0x6e0 [ 234.477593] _do_fork+0x19e/0xce0 [ 234.481058] ? fork_idle+0x280/0x280 [ 234.484781] ? fput+0xd4/0x150 15:14:45 executing program 1: socket$inet(0x10, 0x5, 0x3) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(r0, 0x8000000000000001, 0x10000000000005, &(0x7f0000000980)="000000009641d897e74754e15cafa0a8d7248293e5ee7f8e2dd6354dafd8e76a155d15a7f2872ef6c17ef451745a222065498562c09b44b262a3a3c76c9f5be0a2af258fa0b6a5dc7726bf25a563705d73ff7e1f556a82ae51f2ae06145b481c4be9c760d8289dc8cb601b1805223df02fa9ac38dc714a052b8acb3070d2d63e76195379b396da6c8d0b2fbc59c17f835516dad72c98358b4ff3cca04e1dda3b0f353c684773cb3813c3d2f0645e7dca7899dce3b933de4ef6e9f512cb5a1f4ad42c632645aff8", 0xc7) setsockopt$inet6_tcp_int(r0, 0x6, 0x100000004, &(0x7f0000000080)=0x2be, 0xfd3b) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) r2 = socket$inet6_udp(0xa, 0x2, 0x0) syncfs(r2) setsockopt$inet_tcp_int(r1, 0x6, 0x7ffffffffffffe, &(0x7f0000000000)=0x85, 0x4) setsockopt$sock_int(r1, 0x1, 0x2f, &(0x7f0000000040), 0x4) socket(0xffffffffffffffff, 0x6, 0x5) r3 = open(&(0x7f0000000080)='./bus\x00', 0x80000000141046, 0x0) close(r3) r4 = syz_open_dev$loop(&(0x7f0000000540)='/dev/loop#\x00', 0x0, 0x105082) r5 = memfd_create(&(0x7f0000000300)='4t\xb9L<\xf2\x00\x90\xcd\x00\x00\x00\x00\x00\x00', 0x2) pwritev(r5, &(0x7f0000000440)=[{&(0x7f0000000480)="a8", 0x1}], 0x1, 0x81003) ioctl$LOOP_CHANGE_FD(r4, 0x4c00, r5) bpf$OBJ_GET_MAP(0x7, &(0x7f00000003c0)={&(0x7f0000000400)='./bus\x00', 0x0, 0x8}, 0xfffffffffffffecd) r6 = socket$inet6(0xa, 0x5, 0x2) connect$inet6(r6, &(0x7f0000000100)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, [], 0x1, 0x0}, 0x7}, 0x1c) setsockopt$inet6_opts(r6, 0x29, 0x40, &(0x7f0000000580)=ANY=[@ANYBLOB="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"], 0x1) sendmmsg(r6, &(0x7f00000092c0), 0x4ff, 0x0) mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x800003, 0x11, r3, 0x0) socketpair$unix(0x1, 0x800000000000003, 0x0, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x360) fcntl$setstatus(r4, 0x4, 0x44000) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r8, &(0x7f00000001c0), 0x526987c9) read(r7, &(0x7f0000000200)=""/250, 0x50c7e3e3) sendfile(r4, r5, 0x0, 0x80003) 15:14:45 executing program 2: [ 234.487981] ? SyS_write+0x15e/0x230 [ 234.491702] SyS_clone+0x37/0x50 [ 234.495067] ? sys_vfork+0x30/0x30 [ 234.498610] do_syscall_64+0x1e8/0x640 [ 234.502590] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 234.507440] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 234.512630] RIP: 0033:0x459829 [ 234.515813] RSP: 002b:00007f885a32dc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 234.523523] RAX: ffffffffffffffda RBX: 00007f885a32dc90 RCX: 0000000000459829 [ 234.530789] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000 [ 234.538054] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000 [ 234.545815] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f885a32e6d4 [ 234.553088] R13: 00000000004bfce6 R14: 00000000004d1a58 R15: 0000000000000005 [ 234.560372] CPU: 0 PID: 10720 Comm: syz-executor.3 Not tainted 4.14.139 #35 [ 234.567483] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 234.576973] Call Trace: [ 234.576992] dump_stack+0x138/0x19c [ 234.577010] should_fail.cold+0x10f/0x159 [ 234.577021] ? __might_sleep+0x93/0xb0 [ 234.577035] __alloc_pages_nodemask+0x1d6/0x7a0 [ 234.577047] ? __alloc_pages_slowpath+0x2930/0x2930 [ 234.587389] alloc_pages_current+0xec/0x1e0 [ 234.587401] __pmd_alloc+0x41/0x410 [ 234.608866] copy_page_range+0x12b7/0x1bd0 [ 234.613125] ? find_held_lock+0x35/0x130 [ 234.617182] ? __pmd_alloc+0x410/0x410 [ 234.621049] ? __vma_link_rb+0x247/0x340 [ 234.625111] copy_process.part.0+0x4764/0x6a00 [ 234.629688] ? __cleanup_sighand+0x50/0x50 [ 234.633900] ? lock_downgrade+0x6e0/0x6e0 [ 234.638026] _do_fork+0x19e/0xce0 [ 234.641460] ? fork_idle+0x280/0x280 [ 234.645156] ? fput+0xd4/0x150 [ 234.648328] ? SyS_write+0x15e/0x230 [ 234.652023] SyS_clone+0x37/0x50 [ 234.655368] ? sys_vfork+0x30/0x30 [ 234.658887] do_syscall_64+0x1e8/0x640 [ 234.662749] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 234.667572] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 234.672741] RIP: 0033:0x459829 [ 234.675909] RSP: 002b:00007f664e1cac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 15:14:45 executing program 2: 15:14:45 executing program 4 (fault-call:8 fault-nth:23): r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="11dca50d5e0bcfe47bf070") mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) 15:14:45 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070") r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x28001, 0x0) read$rfkill(r1, &(0x7f0000000000), 0x3) ioctl$int_in(r1, 0x800060c0045005, &(0x7f0000000140)=0x5ad) ioctl$DRM_IOCTL_MODE_GETCRTC(r1, 0xc06864a1, &(0x7f0000000180)={&(0x7f00000000c0)=[0x8, 0x6, 0x3, 0xfffffffffffffffd, 0x0, 0x20, 0x9], 0x7, 0x453, 0x2, 0xfffffffffffffffc, 0x6, 0x6, {0x8, 0xa7, 0x1, 0x23, 0x7, 0x22, 0x6, 0xfe, 0x3, 0xfffffffffffffffd, 0x0, 0x0, 0x2, 0x4, "8221df8354c4c4b9b6b1b02fac674b5dd5af4f3ba1f36f5f4e83d7cf52ff6844"}}) [ 234.683595] RAX: ffffffffffffffda RBX: 00007f664e1cac90 RCX: 0000000000459829 [ 234.690841] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000 [ 234.698089] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000 [ 234.705353] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f664e1cb6d4 [ 234.712600] R13: 00000000004bfce6 R14: 00000000004d1a58 R15: 0000000000000004 15:14:45 executing program 2: [ 234.836055] FAULT_INJECTION: forcing a failure. [ 234.836055] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 234.848807] CPU: 1 PID: 10742 Comm: syz-executor.4 Not tainted 4.14.139 #35 [ 234.855926] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 234.865288] Call Trace: [ 234.867887] dump_stack+0x138/0x19c [ 234.871530] should_fail.cold+0x10f/0x159 [ 234.875685] ? __might_sleep+0x93/0xb0 [ 234.879591] __alloc_pages_nodemask+0x1d6/0x7a0 [ 234.884272] ? __alloc_pages_slowpath+0x2930/0x2930 [ 234.889310] alloc_pages_current+0xec/0x1e0 [ 234.893638] __pmd_alloc+0x41/0x410 [ 234.897270] copy_page_range+0x12b7/0x1bd0 [ 234.901511] ? find_held_lock+0x35/0x130 [ 234.905609] ? __pmd_alloc+0x410/0x410 [ 234.909500] ? __vma_link_rb+0x247/0x340 [ 234.913565] copy_process.part.0+0x4764/0x6a00 [ 234.918171] ? __cleanup_sighand+0x50/0x50 [ 234.922417] ? lock_downgrade+0x6e0/0x6e0 [ 234.926577] _do_fork+0x19e/0xce0 [ 234.930029] ? fork_idle+0x280/0x280 [ 234.933746] ? fput+0xd4/0x150 [ 234.936941] ? SyS_write+0x15e/0x230 [ 234.940661] SyS_clone+0x37/0x50 [ 234.944023] ? sys_vfork+0x30/0x30 [ 234.947564] do_syscall_64+0x1e8/0x640 [ 234.951448] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 234.956295] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 234.961481] RIP: 0033:0x459829 [ 234.964661] RSP: 002b:00007f885a32dc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 234.972383] RAX: ffffffffffffffda RBX: 00007f885a32dc90 RCX: 0000000000459829 [ 234.979650] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000 15:14:46 executing program 5: r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x1, 0x0) r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000080)='TIPCv2\x00') openat$ashmem(0xffffffffffffff9c, &(0x7f0000000280)='/dev/ashmem\x00', 0x8200, 0x0) sendmsg$TIPC_NL_NAME_TABLE_GET(r0, &(0x7f0000000240)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x81}, 0xc, &(0x7f0000000200)={&(0x7f0000000140)=ANY=[@ANYBLOB="8800009f", @ANYRES16=r1, @ANYBLOB="04032dbd7000fbdbdf25100000001400020008000200ba000000080001000800000060000100080003000002000044000400200001000a004e2000000003000000000000000000000000000000008b960000200002000a004e24000007fffe80000000000000000000000000001f00800000100001007564703a73797a3200000000"], 0x3}, 0x1, 0x0, 0x0, 0x44000}, 0x800) syz_mount_image$ntfs(&(0x7f0000000100)='ntfs\x00', &(0x7f00000000c0)='./bus\x00', 0x0, 0x2, &(0x7f0000001680)=[{0x0, 0x0, 0x401}, {&(0x7f0000001740)="3a77dd21387d6a624e139a664bf7ec507567aba5727ca2250cce6cea", 0x1c, 0x35}], 0x8100, 0x0) 15:14:46 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, 0x0) perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb9, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_open_dev$vcsa(&(0x7f00000000c0)='/dev/vcsa#\x00', 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000040), 0x0) r0 = creat(&(0x7f0000000280)='./file0\x00', 0x0) write$9p(r0, &(0x7f0000000000), 0x2000000000) [ 234.986923] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000 [ 234.994194] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f885a32e6d4 [ 235.001464] R13: 00000000004bfce6 R14: 00000000004d1a58 R15: 0000000000000005 15:14:46 executing program 3 (fault-call:6 fault-nth:26): mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) 15:14:46 executing program 4 (fault-call:8 fault-nth:24): r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="11dca50d5e0bcfe47bf070") mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) [ 235.105481] FAULT_INJECTION: forcing a failure. [ 235.105481] name failslab, interval 1, probability 0, space 0, times 0 [ 235.126084] CPU: 1 PID: 10762 Comm: syz-executor.3 Not tainted 4.14.139 #35 [ 235.133229] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 235.142581] Call Trace: [ 235.145170] dump_stack+0x138/0x19c [ 235.148798] should_fail.cold+0x10f/0x159 [ 235.152935] should_failslab+0xdb/0x130 [ 235.156894] kmem_cache_alloc+0x2d7/0x780 [ 235.161025] ptlock_alloc+0x20/0x70 [ 235.164637] pte_alloc_one+0x60/0x100 [ 235.168419] __pte_alloc+0x2a/0x2d0 [ 235.172027] copy_page_range+0x11ba/0x1bd0 [ 235.176243] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 235.180995] ? __pmd_alloc+0x410/0x410 [ 235.184970] copy_process.part.0+0x4764/0x6a00 [ 235.189549] ? __cleanup_sighand+0x50/0x50 [ 235.193792] ? lock_downgrade+0x6e0/0x6e0 [ 235.197921] _do_fork+0x19e/0xce0 [ 235.201359] ? fork_idle+0x280/0x280 [ 235.205055] ? fput+0xd4/0x150 [ 235.208233] ? SyS_write+0x15e/0x230 [ 235.211946] SyS_clone+0x37/0x50 [ 235.215295] ? sys_vfork+0x30/0x30 [ 235.218816] do_syscall_64+0x1e8/0x640 [ 235.222680] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 235.227507] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 235.232678] RIP: 0033:0x459829 [ 235.235848] RSP: 002b:00007f664e1cac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 235.243533] RAX: ffffffffffffffda RBX: 00007f664e1cac90 RCX: 0000000000459829 15:14:46 executing program 3 (fault-call:6 fault-nth:27): mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) [ 235.250780] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000 [ 235.258028] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000 [ 235.265278] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f664e1cb6d4 [ 235.272525] R13: 00000000004bfce6 R14: 00000000004d1a58 R15: 0000000000000004 15:14:46 executing program 1: socket$inet(0x10, 0x5, 0x3) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(r0, 0x8000000000000001, 0x10000000000005, &(0x7f0000000980)="000000009641d897e74754e15cafa0a8d7248293e5ee7f8e2dd6354dafd8e76a155d15a7f2872ef6c17ef451745a222065498562c09b44b262a3a3c76c9f5be0a2af258fa0b6a5dc7726bf25a563705d73ff7e1f556a82ae51f2ae06145b481c4be9c760d8289dc8cb601b1805223df02fa9ac38dc714a052b8acb3070d2d63e76195379b396da6c8d0b2fbc59c17f835516dad72c98358b4ff3cca04e1dda3b0f353c684773cb3813c3d2f0645e7dca7899dce3b933de4ef6e9f512cb5a1f4ad42c632645aff8", 0xc7) setsockopt$inet6_tcp_int(r0, 0x6, 0x100000004, &(0x7f0000000080)=0x2be, 0xfd3b) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) r2 = socket$inet6_udp(0xa, 0x2, 0x0) syncfs(r2) setsockopt$inet_tcp_int(r1, 0x6, 0x7ffffffffffffe, &(0x7f0000000000)=0x85, 0x4) setsockopt$sock_int(r1, 0x1, 0x2f, &(0x7f0000000040), 0x4) socket(0xffffffffffffffff, 0x6, 0x5) r3 = open(&(0x7f0000000080)='./bus\x00', 0x80000000141046, 0x0) close(r3) r4 = syz_open_dev$loop(&(0x7f0000000540)='/dev/loop#\x00', 0x0, 0x105082) r5 = memfd_create(&(0x7f0000000300)='4t\xb9L<\xf2\x00\x90\xcd\x00\x00\x00\x00\x00\x00', 0x2) pwritev(r5, &(0x7f0000000440)=[{&(0x7f0000000480)="a8", 0x1}], 0x1, 0x81003) ioctl$LOOP_CHANGE_FD(r4, 0x4c00, r5) bpf$OBJ_GET_MAP(0x7, &(0x7f00000003c0)={&(0x7f0000000400)='./bus\x00', 0x0, 0x8}, 0xfffffffffffffecd) r6 = socket$inet6(0xa, 0x5, 0x2) connect$inet6(r6, &(0x7f0000000100)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, [], 0x1, 0x0}, 0x7}, 0x1c) setsockopt$inet6_opts(r6, 0x29, 0x40, &(0x7f0000000580)=ANY=[@ANYBLOB="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"], 0x1) sendmmsg(r6, &(0x7f00000092c0), 0x4ff, 0x0) mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x800003, 0x11, r3, 0x0) socketpair$unix(0x1, 0x800000000000003, 0x0, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x360) fcntl$setstatus(r4, 0x4, 0x44000) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r8, &(0x7f00000001c0), 0x526987c9) read(r7, &(0x7f0000000200)=""/250, 0x50c7e3e3) sendfile(r4, r5, 0x0, 0x80003) 15:14:46 executing program 5: r0 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm-monitor\x00', 0x10000, 0x0) ioctl$GIO_FONTX(r0, 0x4b6b, &(0x7f0000000140)=""/142) syz_mount_image$ntfs(&(0x7f0000000100)='ntfs\x00', &(0x7f00000000c0)='./bus\x00', 0x0, 0x2, &(0x7f0000001680)=[{0x0, 0x0, 0x401}, {&(0x7f0000001740)="3a77dd21387d6a624e139a664bf7ec507567aba5727ca2250cce6cea", 0x1c, 0x35}], 0x8100, 0x0) fcntl$setpipe(r0, 0x407, 0xe06) 15:14:46 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$VHOST_SET_OWNER(r0, 0xaf01, 0x0) ioctl(r0, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070") r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x28001, 0x0) read$rfkill(r1, &(0x7f0000000000), 0x3) ioctl$int_in(r0, 0x5421, &(0x7f0000000100)=0x5ad) [ 235.385767] FAULT_INJECTION: forcing a failure. [ 235.385767] name failslab, interval 1, probability 0, space 0, times 0 [ 235.456632] CPU: 1 PID: 10770 Comm: syz-executor.4 Not tainted 4.14.139 #35 [ 235.463799] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 235.473163] Call Trace: [ 235.475766] dump_stack+0x138/0x19c [ 235.479416] should_fail.cold+0x10f/0x159 [ 235.481711] FAULT_INJECTION: forcing a failure. [ 235.481711] name failslab, interval 1, probability 0, space 0, times 0 [ 235.483573] should_failslab+0xdb/0x130 [ 235.483589] kmem_cache_alloc+0x2d7/0x780 [ 235.483606] ? alloc_pages_current+0xf4/0x1e0 [ 235.507430] __pmd_alloc+0xbd/0x410 [ 235.511070] copy_page_range+0x12b7/0x1bd0 [ 235.515309] ? find_held_lock+0x35/0x130 [ 235.519391] ? __pmd_alloc+0x410/0x410 [ 235.523280] ? __vma_link_rb+0x247/0x340 [ 235.527345] copy_process.part.0+0x4764/0x6a00 [ 235.531956] ? __cleanup_sighand+0x50/0x50 [ 235.536193] ? lock_downgrade+0x6e0/0x6e0 [ 235.540353] _do_fork+0x19e/0xce0 [ 235.543904] ? fork_idle+0x280/0x280 [ 235.547628] ? fput+0xd4/0x150 [ 235.550825] ? SyS_write+0x15e/0x230 [ 235.554546] SyS_clone+0x37/0x50 [ 235.557913] ? sys_vfork+0x30/0x30 [ 235.561462] do_syscall_64+0x1e8/0x640 [ 235.565349] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 235.570199] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 235.575382] RIP: 0033:0x459829 [ 235.578568] RSP: 002b:00007f885a32dc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 235.586276] RAX: ffffffffffffffda RBX: 00007f885a32dc90 RCX: 0000000000459829 [ 235.593544] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000 [ 235.600814] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000 [ 235.608078] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f885a32e6d4 [ 235.615342] R13: 00000000004bfce6 R14: 00000000004d1a58 R15: 0000000000000005 [ 235.622982] CPU: 0 PID: 10782 Comm: syz-executor.3 Not tainted 4.14.139 #35 [ 235.630094] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 235.639455] Call Trace: [ 235.642052] dump_stack+0x138/0x19c [ 235.645688] should_fail.cold+0x10f/0x159 [ 235.649837] should_failslab+0xdb/0x130 [ 235.653807] kmem_cache_alloc+0x2d7/0x780 [ 235.653829] copy_process.part.0+0x444f/0x6a00 [ 235.653864] ? __cleanup_sighand+0x50/0x50 [ 235.662573] ? lock_downgrade+0x6e0/0x6e0 [ 235.662593] _do_fork+0x19e/0xce0 [ 235.662606] ? fork_idle+0x280/0x280 [ 235.662621] ? fput+0xd4/0x150 [ 235.662631] ? SyS_write+0x15e/0x230 [ 235.662647] SyS_clone+0x37/0x50 [ 235.688390] ? sys_vfork+0x30/0x30 [ 235.691947] do_syscall_64+0x1e8/0x640 [ 235.695841] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 235.700697] entry_SYSCALL_64_after_hwframe+0x42/0xb7 15:14:46 executing program 4 (fault-call:8 fault-nth:25): r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="11dca50d5e0bcfe47bf070") mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) 15:14:46 executing program 3 (fault-call:6 fault-nth:28): mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) [ 235.705898] RIP: 0033:0x459829 [ 235.709085] RSP: 002b:00007f664e1cac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 235.717190] RAX: ffffffffffffffda RBX: 00007f664e1cac90 RCX: 0000000000459829 [ 235.724461] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000 [ 235.731735] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000 [ 235.739009] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f664e1cb6d4 [ 235.746281] R13: 00000000004bfce6 R14: 00000000004d1a58 R15: 0000000000000004 15:14:47 executing program 5: syz_mount_image$ntfs(&(0x7f0000000100)='ntfs\x00', &(0x7f00000000c0)='./bus\x00', 0x0, 0x2, &(0x7f0000001680)=[{0x0, 0x0, 0x401}, {&(0x7f0000001740)="3a77dd21387d6a624e139a664bf7ec507567aba5727ca2250cce6cea", 0x1c, 0x35}], 0x8100, 0x0) r0 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/qat_adf_ctl\x00', 0x0, 0x0) r1 = syz_genetlink_get_family_id$team(&(0x7f0000005480)='team\x00') getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f0000000140)={{{@in6=@remote, @in6=@ipv4={[], [], @multicast1}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@initdev}, 0x0, @in6=@dev}}, &(0x7f0000000240)=0xe8) ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f00000002c0)={'vcan0\x00', 0x0}) getsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x20, &(0x7f0000000300)={@broadcast, @initdev, 0x0}, &(0x7f0000000340)=0xc) clock_gettime(0x0, &(0x7f0000005400)={0x0, 0x0}) recvmmsg(0xffffffffffffffff, &(0x7f0000005280)=[{{&(0x7f0000000380)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @loopback}}}, 0x80, &(0x7f0000000700)=[{&(0x7f0000000400)=""/183, 0xb7}, {&(0x7f00000004c0)=""/111, 0x6f}, {&(0x7f0000000540)=""/14, 0xe}, {&(0x7f0000000580)=""/104, 0x68}, {&(0x7f0000000600)=""/59, 0x3b}, {&(0x7f0000000640)=""/140, 0x8c}], 0x6, &(0x7f0000000780)=""/127, 0x7f}, 0x80}, {{&(0x7f0000000800)=@sco, 0x80, &(0x7f0000000a40)=[{&(0x7f0000000880)=""/176, 0xb0}, {&(0x7f0000000940)=""/133, 0x85}, {&(0x7f0000000a00)=""/61, 0x3d}], 0x3, &(0x7f0000000a80)=""/216, 0xd8}, 0x100}, {{&(0x7f0000000b80)=@hci={0x1f, 0x0}, 0x80, &(0x7f0000000ec0)=[{&(0x7f0000001780)=""/4096, 0x1000}, {&(0x7f0000000c00)=""/247, 0xf7}, {&(0x7f0000000d00)=""/99, 0x63}, {&(0x7f0000000d80)=""/32, 0x20}, {&(0x7f0000002780)=""/4096, 0x1000}, {&(0x7f0000000dc0)=""/233, 0xe9}], 0x6, &(0x7f0000000f40)=""/74, 0x4a}, 0x100}, {{0x0, 0x0, &(0x7f00000013c0)=[{&(0x7f0000000fc0)=""/149, 0x95}, {&(0x7f0000001080)=""/17, 0x11}, {&(0x7f00000010c0)=""/208, 0xd0}, {&(0x7f00000011c0)=""/169, 0xa9}, {&(0x7f0000001280)}, {&(0x7f00000012c0)=""/230, 0xe6}], 0x6, &(0x7f0000001440)=""/195, 0xc3}, 0x81}, {{&(0x7f0000001540)=@nfc, 0x80, &(0x7f0000004d40)=[{&(0x7f0000003780)=""/248, 0xf8}, {&(0x7f00000015c0)=""/127, 0x7f}, {&(0x7f0000003880)=""/241, 0xf1}, {&(0x7f0000001640)=""/48, 0x30}, {&(0x7f0000003980)=""/255, 0xff}, {&(0x7f0000003a80)=""/206, 0xce}, {&(0x7f00000016c0)=""/106, 0x6a}, {&(0x7f0000003b80)=""/172, 0xac}, {&(0x7f0000003c40)=""/4096, 0x1000}, {&(0x7f0000004c40)=""/250, 0xfa}], 0xa, &(0x7f0000004e00)=""/166, 0xa6}, 0x9}, {{&(0x7f0000004ec0)=@nl=@proc, 0x80, &(0x7f0000005140)=[{&(0x7f0000004f40)=""/15, 0xf}, {&(0x7f0000004f80)=""/101, 0x65}, {&(0x7f0000005000)=""/222, 0xde}, {&(0x7f0000005100)=""/33, 0x21}], 0x4, &(0x7f0000005180)=""/203, 0xcb}, 0x1}], 0x6, 0x1a294fb9587221dc, &(0x7f0000005440)={r5, r6+10000000}) getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000005680)={{{@in=@multicast1, @in=@empty, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@multicast1}, 0x0, @in=@multicast1}}, &(0x7f0000005780)=0xe8) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f00000057c0)={{{@in=@initdev, @in=@broadcast, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@empty}, 0x0, @in=@remote}}, &(0x7f00000058c0)=0xe8) accept$packet(0xffffffffffffffff, &(0x7f0000005900)={0x11, 0x0, 0x0}, &(0x7f0000005940)=0x14) ioctl$VT_GETMODE(r0, 0x5601, &(0x7f0000000280)) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000005980)={'bpq0\x00', 0x0}) accept4$packet(0xffffffffffffffff, &(0x7f00000059c0)={0x11, 0x0, 0x0}, &(0x7f0000005a00)=0x14, 0x80000) ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, &(0x7f0000005a40)={'team0\x00', 0x0}) getsockname$packet(0xffffffffffffffff, &(0x7f0000005a80)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @remote}, &(0x7f0000005ac0)=0x14) ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, &(0x7f0000005b00)={'team0\x00', 0x0}) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f0000005b40)={{{@in6=@empty, @in6=@dev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@mcast2}, 0x0, @in6=@mcast1}}, &(0x7f0000005c40)=0xe8) getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000005c80)={0x0, @local, @multicast1}, &(0x7f0000005cc0)=0xc) recvmmsg(0xffffffffffffffff, &(0x7f00000068c0)=[{{&(0x7f0000006100)=@vsock={0x28, 0x0, 0x0, @host}, 0x80, &(0x7f0000006280)=[{&(0x7f0000006180)=""/69, 0x45}, {&(0x7f0000006200)=""/125, 0x7d}], 0x2, &(0x7f00000062c0)=""/66, 0x42}, 0x400}, {{&(0x7f0000006340)=@hci={0x1f, 0x0}, 0x80, &(0x7f0000006600)=[{&(0x7f00000063c0)=""/236, 0xec}, {&(0x7f00000064c0)=""/248, 0xf8}, {&(0x7f00000065c0)=""/33, 0x21}], 0x3, &(0x7f0000006640)=""/88, 0x58}, 0x10000}, {{&(0x7f00000066c0), 0x80, &(0x7f00000067c0)=[{&(0x7f0000006740)=""/128, 0x80}], 0x1, &(0x7f0000006800)=""/167, 0xa7}, 0x7}], 0x3, 0x0, &(0x7f0000006980)) sendmsg$TEAM_CMD_OPTIONS_GET(r0, &(0x7f0000007040)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8200080}, 0xc, &(0x7f0000007000)={&(0x7f00000069c0)={0x628, r1, 0x1, 0x70bd27, 0x25dfdbfb, {}, [{{0x8, 0x1, r2}, {0x208, 0x2, [{0x38, 0x1, @notify_peers_interval={{0x24, 0x1, 'notify_peers_interval\x00'}, {0x8}, {0x8, 0x4, 0x2}}}, {0x38, 0x1, @lb_stats_refresh_interval={{0x24, 0x1, 'lb_stats_refresh_interval\x00'}, {0x8}, {0x8, 0x4, 0x64}}}, {0x3c, 0x1, @enabled={{{0x24, 0x1, 'enabled\x00'}, {0x8}, {0x4}}, {0x8, 0x6, r3}}}, {0x38, 0x1, @notify_peers_interval={{0x24, 0x1, 'notify_peers_interval\x00'}, {0x8}, {0x8, 0x4, 0x5}}}, {0x40, 0x1, @priority={{{0x24, 0x1, 'priority\x00'}, {0x8}, {0x8, 0x4, 0x7}}, {0x8, 0x6, r4}}}, {0x38, 0x1, @mcast_rejoin_count={{0x24, 0x1, 'mcast_rejoin_count\x00'}, {0x8}, {0x8, 0x4, 0xade}}}, {0x3c, 0x1, @user_linkup_enabled={{{0x24, 0x1, 'user_linkup_enabled\x00'}, {0x8}, {0x4}}, {0x8, 0x6, r7}}}, {0x6c, 0x1, @bpf_hash_func={{0x24, 0x1, 'bpf_hash_func\x00'}, {0x8}, {0x3c, 0x4, [{0x6, 0xfffffffffffff801, 0x2, 0x8}, {0x15, 0x2, 0x655, 0x6}, {0x2, 0x9066, 0x3ff, 0x7ff}, {0x93, 0x8, 0x3, 0x4}, {0x0, 0x1, 0x3, 0x9}, {0x9, 0x4, 0xffffffff80000001, 0x6}, {0x3, 0x64f6, 0xffffffffffffff00, 0xffffffffffff7d94}]}}}]}}, {{0x8, 0x1, r8}, {0x7c, 0x2, [{0x38, 0x1, @mcast_rejoin_count={{0x24, 0x1, 'mcast_rejoin_count\x00'}, {0x8}, {0x8, 0x4, 0x101}}}, {0x40, 0x1, @priority={{{0x24, 0x1, 'priority\x00'}, {0x8}, {0x8, 0x4, 0x4}}, {0x8, 0x6, r9}}}]}}, {{0x8, 0x1, r10}, {0xac, 0x2, [{0x38, 0x1, @mcast_rejoin_interval={{0x24, 0x1, 'mcast_rejoin_interval\x00'}, {0x8}, {0x8, 0x4, 0xfff}}}, {0x38, 0x1, @lb_stats_refresh_interval={{0x24, 0x1, 'lb_stats_refresh_interval\x00'}, {0x8}, {0x8, 0x4, 0x7}}}, {0x38, 0x1, @notify_peers_count={{0x24, 0x1, 'notify_peers_count\x00'}, {0x8}, {0x8, 0x4, 0x1}}}]}}, {{0x8, 0x1, r11}, {0x78, 0x2, [{0x3c, 0x1, @user_linkup_enabled={{{0x24, 0x1, 'user_linkup_enabled\x00'}, {0x8}, {0x4}}, {0x8, 0x6, r12}}}, {0x38, 0x1, @notify_peers_count={{0x24, 0x1, 'notify_peers_count\x00'}, {0x8}, {0x8, 0x4, 0x100}}}]}}, {{0x8, 0x1, r13}, {0x13c, 0x2, [{0x3c, 0x1, @user_linkup_enabled={{{0x24, 0x1, 'user_linkup_enabled\x00'}, {0x8}, {0x4}}, {0x8, 0x6, r14}}}, {0x40, 0x1, @queue_id={{{0x24, 0x1, 'queue_id\x00'}, {0x8}, {0x8, 0x4, 0xa022}}, {0x8, 0x6, r15}}}, {0x3c, 0x1, @enabled={{{0x24, 0x1, 'enabled\x00'}, {0x8}, {0x4}}, {0x8, 0x6, r16}}}, {0x40, 0x1, @name={{0x24, 0x1, 'mode\x00'}, {0x8}, {0x10, 0x4, 'roundrobin\x00'}}}, {0x40, 0x1, @lb_hash_stats={{{0x24, 0x1, 'lb_hash_stats\x00'}, {0x8}, {0x8, 0x4, 0x100000001}}, {0x8}}}]}}, {{0x8, 0x1, r17}, {0x100, 0x2, [{0x3c, 0x1, @bpf_hash_func={{0x24, 0x1, 'bpf_hash_func\x00'}, {0x8}, {0xc, 0x4, [{0x400, 0x8, 0x0, 0x4}]}}}, {0x84, 0x1, @bpf_hash_func={{0x24, 0x1, 'bpf_hash_func\x00'}, {0x8}, {0x54, 0x4, [{0xff, 0x5, 0x456a, 0x2}, {0xc984, 0x3, 0x3ff, 0x3f}, {0x0, 0x100fc00000000, 0x9, 0x7ff}, {0x100000000, 0x4, 0xa9d, 0xffffffff}, {0x35, 0x10000, 0xcfc8, 0x9}, {0x5, 0x6, 0x7, 0x5}, {0x1ff, 0x81, 0x6a939a8e, 0x10001}, {0xa5, 0x5, 0x7}, {0x3, 0xfffffffffffffffc, 0xec, 0x400}, {0x1, 0x100, 0x20000000, 0x401}]}}}, {0x3c, 0x1, @user_linkup_enabled={{{0x24, 0x1, 'user_linkup_enabled\x00'}, {0x8}, {0x4}}, {0x8, 0x6, r18}}}]}}]}, 0x628}, 0x1, 0x0, 0x0, 0x80}, 0x20000000) [ 235.921937] FAULT_INJECTION: forcing a failure. [ 235.921937] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 235.939146] FAULT_INJECTION: forcing a failure. [ 235.939146] name failslab, interval 1, probability 0, space 0, times 0 [ 235.946132] CPU: 1 PID: 10800 Comm: syz-executor.4 Not tainted 4.14.139 #35 [ 235.957482] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 235.966839] Call Trace: [ 235.969460] dump_stack+0x138/0x19c [ 235.973101] should_fail.cold+0x10f/0x159 [ 235.977275] ? __might_sleep+0x93/0xb0 [ 235.981174] __alloc_pages_nodemask+0x1d6/0x7a0 [ 235.985854] ? __alloc_pages_slowpath+0x2930/0x2930 [ 235.990887] alloc_pages_current+0xec/0x1e0 [ 235.995205] pte_alloc_one+0x1a/0x100 [ 235.998996] __pte_alloc+0x2a/0x2d0 [ 236.002614] copy_page_range+0x11ba/0x1bd0 [ 236.006882] ? __pmd_alloc+0x410/0x410 [ 236.010775] copy_process.part.0+0x4764/0x6a00 [ 236.015371] ? __cleanup_sighand+0x50/0x50 [ 236.019601] ? lock_downgrade+0x6e0/0x6e0 [ 236.023747] _do_fork+0x19e/0xce0 [ 236.027192] ? fork_idle+0x280/0x280 [ 236.030905] ? fput+0xd4/0x150 [ 236.034087] ? SyS_write+0x15e/0x230 [ 236.037801] SyS_clone+0x37/0x50 [ 236.041156] ? sys_vfork+0x30/0x30 [ 236.044689] do_syscall_64+0x1e8/0x640 [ 236.048563] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 236.048579] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 236.048587] RIP: 0033:0x459829 [ 236.048591] RSP: 002b:00007f885a32dc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 236.048601] RAX: ffffffffffffffda RBX: 00007f885a32dc90 RCX: 0000000000459829 [ 236.048605] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000 [ 236.048610] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000 [ 236.048615] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f885a32e6d4 [ 236.048619] R13: 00000000004bfce6 R14: 00000000004d1a58 R15: 0000000000000005 [ 236.062718] CPU: 1 PID: 10805 Comm: syz-executor.3 Not tainted 4.14.139 #35 [ 236.084171] QAT: Invalid ioctl [ 236.084302] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 236.084307] Call Trace: [ 236.084326] dump_stack+0x138/0x19c [ 236.132234] should_fail.cold+0x10f/0x159 [ 236.136370] should_failslab+0xdb/0x130 [ 236.140324] kmem_cache_alloc+0x47/0x780 [ 236.144369] ? __lock_is_held+0xb6/0x140 [ 236.148411] ? check_preemption_disabled+0x3c/0x250 [ 236.153427] anon_vma_clone+0xde/0x470 [ 236.157294] anon_vma_fork+0x87/0x4d0 [ 236.161087] copy_process.part.0+0x45e2/0x6a00 [ 236.165702] ? __cleanup_sighand+0x50/0x50 [ 236.169916] ? lock_downgrade+0x6e0/0x6e0 [ 236.174080] _do_fork+0x19e/0xce0 [ 236.177521] ? fork_idle+0x280/0x280 [ 236.181224] ? fput+0xd4/0x150 [ 236.184395] ? SyS_write+0x15e/0x230 [ 236.188100] SyS_clone+0x37/0x50 [ 236.191447] ? sys_vfork+0x30/0x30 [ 236.194971] do_syscall_64+0x1e8/0x640 [ 236.198833] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 236.203658] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 236.208824] RIP: 0033:0x459829 [ 236.211992] RSP: 002b:00007f664e1cac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 15:14:47 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070") r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x28001, 0x0) io_setup(0x3, &(0x7f00000000c0)=0x0) io_cancel(r2, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x7, 0x9, r0, &(0x7f0000000180)="e5a626dd081257bd6260dba30966c163e6849387f3cf179afce3a204f999830cde5754eb8b8995fc58ab0b9cdbc5ff3ceb5a5c3c4769b12ef84612ecd3dea8b929a9", 0x42, 0x0, 0x0, 0x8e0892b9f7a53563, r1}, &(0x7f0000000200)) r3 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000280)='IPVS\x00') sendmsg$IPVS_CMD_FLUSH(r1, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x41}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x3c, r3, 0x300, 0x70bd28, 0x25dfdbfb, {}, [@IPVS_CMD_ATTR_DAEMON={0x20, 0x3, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x8, 0x4, 0xfffffffffffffffa}, @IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'ip6_vti0\x00'}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x80000000}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4010}, 0xf50523cf8d763364) r4 = fcntl$getown(r0, 0x9) read$rfkill(r1, &(0x7f0000000000), 0x3) stat(&(0x7f0000001680)='./file0\x00', &(0x7f00000016c0)={0x0, 0x0, 0x0, 0x0, 0x0}) sendmsg$netlink(r1, &(0x7f00000029c0)={&(0x7f0000000380)=@kern={0x10, 0x0, 0x0, 0x800200a}, 0xc, &(0x7f0000002980)=[{&(0x7f00000003c0)={0x12c0, 0x32, 0x400, 0x70bd2c, 0x25dfdbff, "", [@typed={0xc, 0x13, @u64=0xffff}, @typed={0xc, 0xc, @u64}, @generic="bbcf3c6ac1fe731d6ff980e6240594b119364f9d717bad75a74db63fbd7af953c2f5", @generic="0e285601413a91da46044ab1cc0c0f114ff51b1dec5dd424571c386c29589ebe220e402c7a44330648b385b6fc3b032544dd10fbcc63e4dc2a1a0c5beae7ee647c961e19bca7cde104388ad4951205bfcf020ebddf58c7d9c7118a95b0a0aaa05aa59eb861ec22fe76c6eb3a3ebb9215905b15ed0c8144f89d02fe50f9ab98c11d8ac7437ecdedb69633fe4f7b5a7849534d177697aad76ddfeb4b05dc52a017e3876f704899120e43bbf3bdb9a77675ae6a3e910e7c", @nested={0x5c, 0x4d, [@typed={0x8, 0x68, @u32=0x10001}, @generic="b3b1929e626dc8657ca02542fb8e6d260a81e11b0fa9affa0088a568703fa70cbcc167b8b04b9a2aec25598e409eaac64e71787b0fdf7e81dfdd23", @typed={0x14, 0x3e, @ipv6=@ipv4={[], [], @remote}}]}, @generic="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", @typed={0xa4, 0x2, @binary="67a7a80a8f8fda869c66af9c2bd630aa81dea271e9e9a6c6fcd76c848a834cfad6844aa88dfbf91725de94ffd5444ae16eef13aa322f5abadc1f2402216119f4221a4b92b4fe7e1c678c438096423afcd079a1acc168ae5f3edd464ffca0a616667af8732614eb01aedf190c636a9f558e85cb5182b038cf77d5c251c3d698f6fe44b028a46d39cc1373992a5755f87d731159757264d2419b0f608a9302"}, @typed={0x8, 0x53, @pid=r4}, @nested={0x3c, 0x5c, [@typed={0x8, 0x8d, @fd=r1}, @generic="bb86502342495c46c7cbc834d7b7f65a29f2f9410ffa167dd5803df10a5e037e3b940d0397439731b8d5cbfcc90198"]}, @generic="aba438d9b01279fa1ae85fc5f15596cc73e1368676db266576944d9430aeeee230a6a401e7dec4a06f96d5883d116575f87953876afca705c7ffbd9f6392dd6eab2daf42086703079706846602692a9d83b1da96e410fbbce7ec5472dd216958afaab4fa334dd2314deac8199d146a82080f9036eb260408024f"]}, 0x12c0}, {&(0x7f0000001740)={0x1238, 0x42, 0x800, 0x70bd25, 0x25dfdbfc, "", [@nested={0xc, 0x0, [@typed={0x8, 0x73, @u32=0xfffffffffffffffb}]}, @nested={0x8, 0x9, [@typed={0x4, 0x6f}]}, @generic="2fe8c8492f50b34957de87792cc1c13ec1ea1a9e9777a46b0a0500fc3844ad80f1aad78a93f0742b68602a87414117dbb20058ff66fb548b1f5870306ef1cac36780e2239dc7f5fb8c71b3b6fc70d37206ffbc3defba7c8c7e2e69de8a2d721e47c629a3320557417853dd5b945baae28681b3cda3bc24a51fe900b516a1916fe1c0", @typed={0x8, 0x3, @uid=r5}, @nested={0x1114, 0x0, [@generic="030f09f799033089576c1c3778f74ac2349e2798b67ddf93dadf7922fd20282de42e61b4bdac373baf52ce2a56b84e35b419d5ec1a551d8f48268ef270adaa05a2d4db5cfb541ec24cdd7edf4f1e29676d9102", @typed={0x1004, 0x92, @binary="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"}, @generic="039bb78620fdc8f14b378126851e200a11e2267fc3b4b3fde5cde2f7be74cca0ac7e884c38a40ff4ed909ee4e2ba4a3fd0e8a897e3c80463c85f688b6088235b08003d329c33a111aa5359d30d558fdcaf4085ef08d8c05fbe4447fdf0c5da0b1aaa07267e8fac29e6e5d97ff33be1387571ff9ccfc75258e8ae6f5fea2afcc4b3a9b203a0007f008bf1eac045aeea9f7c1f81d81029be2328c1d94d036e8d5e3f9bb49161455b3ad907b66ad780d01675389706d512"]}, @generic="de5ba72f6b5e83f1b4ef12f1405fed63a345eb53ea309b6d0823af1ddf75349e9d5880d84a4c83b0accc2a978e1d53d3b913d223437ae6c15a25ffcebe0ed3425556f6a8d87b310da5f33c7f8773bada10524c321c406fe8f368620644b14491037d5db8df416a5f57d08068a4ad1ba19f9f8f64d0"]}, 0x1238}], 0x2}, 0x20000000) ioctl$int_in(r1, 0x800060c0045005, &(0x7f0000000140)=0x5ad) 15:14:47 executing program 2: clone(0x7fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000000, 0x0) sendmsg$nl_netfilter(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000200)=ANY=[@ANYBLOB="d3d2b93c9c4400cd80"], 0x9}}, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="eb98da4c08769fbb6451c8ae5973b02822910a9eb692", @ANYRESHEX, @ANYRES16], 0x0, 0x2a}, 0x20) tkill(r0, 0x3b) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 15:14:47 executing program 4 (fault-call:8 fault-nth:26): r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="11dca50d5e0bcfe47bf070") mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) [ 236.219677] RAX: ffffffffffffffda RBX: 00007f664e1cac90 RCX: 0000000000459829 [ 236.226930] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000 [ 236.234189] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000 [ 236.241435] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f664e1cb6d4 [ 236.248681] R13: 00000000004bfce6 R14: 00000000004d1a58 R15: 0000000000000004 15:14:47 executing program 1: socket$inet(0x10, 0x5, 0x3) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(r0, 0x8000000000000001, 0x10000000000005, &(0x7f0000000980)="000000009641d897e74754e15cafa0a8d7248293e5ee7f8e2dd6354dafd8e76a155d15a7f2872ef6c17ef451745a222065498562c09b44b262a3a3c76c9f5be0a2af258fa0b6a5dc7726bf25a563705d73ff7e1f556a82ae51f2ae06145b481c4be9c760d8289dc8cb601b1805223df02fa9ac38dc714a052b8acb3070d2d63e76195379b396da6c8d0b2fbc59c17f835516dad72c98358b4ff3cca04e1dda3b0f353c684773cb3813c3d2f0645e7dca7899dce3b933de4ef6e9f512cb5a1f4ad42c632645aff8", 0xc7) setsockopt$inet6_tcp_int(r0, 0x6, 0x100000004, &(0x7f0000000080)=0x2be, 0xfd3b) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) r2 = socket$inet6_udp(0xa, 0x2, 0x0) syncfs(r2) setsockopt$inet_tcp_int(r1, 0x6, 0x7ffffffffffffe, &(0x7f0000000000)=0x85, 0x4) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) socket(0xffffffffffffffff, 0x6, 0x5) r3 = open(&(0x7f0000000080)='./bus\x00', 0x80000000141046, 0x0) close(r3) r4 = syz_open_dev$loop(&(0x7f0000000540)='/dev/loop#\x00', 0x0, 0x105082) r5 = memfd_create(&(0x7f0000000300)='4t\xb9L<\xf2\x00\x90\xcd\x00\x00\x00\x00\x00\x00', 0x2) pwritev(r5, &(0x7f0000000440)=[{&(0x7f0000000480)="a8", 0x1}], 0x1, 0x81003) ioctl$LOOP_CHANGE_FD(r4, 0x4c00, r5) bpf$OBJ_GET_MAP(0x7, &(0x7f00000003c0)={&(0x7f0000000400)='./bus\x00', 0x0, 0x8}, 0xfffffffffffffecd) r6 = socket$inet6(0xa, 0x5, 0x2) connect$inet6(r6, &(0x7f0000000100)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, [], 0x1, 0x0}, 0x7}, 0x1c) setsockopt$inet6_opts(r6, 0x29, 0x40, &(0x7f0000000580)=ANY=[@ANYBLOB="29000000060058500ba40000005cb4b47a560100800000000002099666c20b21e8080008ae760000ec57c052aa843ac0031e4118a1a847c0e60000f5f2b1c4310380181c143c6b10022ee4de0a000000000000ffffffffffffffe7000000000000000000000000000000ff0100bf149fd5d981d72437034f05bb5c068772b310642de912c2729c83435806a73bd382c1e56638572925f03a2433d2feb19191b1ce221d87a8cbf189d711a0ef2eaed469d21c80190041c740cec379894459989e2f8785c13d863ba14f65bc3bd8101f0cfb7f5e67fa4e73f689fd819518dd1d96077a1c9fc2785a5eef5cd8d2302698ad2dcd089f8fa767244aacc5dc9302d8a7fab0f001a61e1ca1a48054355a9b1e3270bd27b1403b52ef479615d0c0939c553a704f66d677af16dfecbfb5320a99420a0000d764266803c6a7b0c72f00272659cfef2e81009412b58e07beeb27a8bf1ad4fcc5a08ea4b456bbbfd7c7bf47d0b3b738c40000001446edbaa57fcfa668883e56d870f43f701e69c6c16c4b76b85cc37303c86eab33154584a1c27a1e9b969b0f2d376728e815a2108fd533b9752382f97f734bcc065e92a9f5344c7614709fc445439b200085d3c8152faeba62db44b3d549db580c5207c91d65c6e005362fcaa7e0b2b281dd305b04c5bf62a929cfd480ef3d6060b0f0c65896d2b2ca39c9fffd03b67b623848c33c835b5ca05823d2982541c1d70e77538a4bbbf4acd7af4d0aa11901b8277ab713f35670b92bd8a903c5fbbba6bf41235394542eadb289b197f53ead5486e302b0b58a409fd1cd670de73527dc855199f54df31caf014b1d7e1a700e6df2eaf0000000d5b0bbf521ed434070fb0b27214f63f54b1162c5f4a114b48efd0e7674939406495cd2814a411ec6f9f7f5e028256227f21754e9f1bfe1a6b697e0d0739a5851c547d0ae8b46db33d9022618f798e9ff12ef901eb87b609a0eb192c2e94cc858e1bd172dd459ec8c0e650d7abc0ebdb91bb7b084f2fb08f411c59712c815a0989cd717a776961e441388a3d3339453ebdac75f9a54cfdea59bb1af457ccf06560f4a799d158408b3adf7b8e1c72981f41a2f5bb392d63f267fe69f46aaf94b9d122fd2006115741b26bd86f6600e1a3cc85188c845305b48e6320cd6ae0c10ba2cbc1e9054633bba5486423287c70644763263eb9f116341e739ed22a7e3372aa0e57f142f662ad224481150459d4cd9a2dd246a957279fef9c68bec8fa60f56bed83588e4aacfd2b5ad7fcd0e79c8bb2133ebabe957bbf5d8fa052c352b8c621d8070de5406a5e4c0c52fff0b3bb102651d0ae7991098bd9872a351c6588a8aea64203d6b1f358a809423bbfcaee3be1c62af78dea87a0d9d562f3a279a2a6d09103ae18dac9ab9790e"], 0x1) sendmmsg(r6, &(0x7f00000092c0), 0x4ff, 0x0) mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x800003, 0x11, r3, 0x0) socketpair$unix(0x1, 0x800000000000003, 0x0, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x360) fcntl$setstatus(r4, 0x4, 0x44000) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r8, &(0x7f00000001c0), 0x526987c9) read(r7, &(0x7f0000000200)=""/250, 0x50c7e3e3) sendfile(r4, r5, 0x0, 0x80003) 15:14:47 executing program 3 (fault-call:6 fault-nth:29): mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) [ 236.363208] ptrace attach of "/root/syz-executor.2"[10820] was attempted by "/root/syz-executor.2"[10822] [ 236.369390] FAULT_INJECTION: forcing a failure. [ 236.369390] name fail_page_alloc, interval 1, probability 0, space 0, times 0 15:14:47 executing program 2: socket$inet6(0x10, 0x0, 0x0) setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, 0x0, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = fcntl$dupfd(r0, 0x3, 0xffffffffffffffff) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = syz_open_dev$loop(&(0x7f00000000c0)='/dev/loop#\x00', 0x0, 0x4082) r3 = memfd_create(&(0x7f0000000140)='/delo\xff\a\x00\x00\x00\x00', 0x0) pwritev(r3, &(0x7f0000000480)=[{&(0x7f00000004c0)='+', 0x1}], 0x1, 0x81806) ioctl$LOOP_CHANGE_FD(r2, 0x4c00, r3) sendfile(r1, r2, 0x0, 0x2000006) write$selinux_context(0xffffffffffffffff, 0x0, 0x0) [ 236.407882] QAT: Invalid ioctl 15:14:47 executing program 5: open(&(0x7f0000000080)='./file0\x00', 0x20000, 0x6) r0 = syz_open_dev$admmidi(&(0x7f0000000000)='/dev/admmidi#\x00', 0x8, 0x2000) write$P9_RCLUNK(r0, &(0x7f0000000040)={0x7, 0x79, 0x1}, 0x7) [ 236.432465] FAULT_INJECTION: forcing a failure. [ 236.432465] name failslab, interval 1, probability 0, space 0, times 0 [ 236.464265] CPU: 1 PID: 10826 Comm: syz-executor.4 Not tainted 4.14.139 #35 [ 236.471509] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 236.480868] Call Trace: [ 236.483462] dump_stack+0x138/0x19c [ 236.487088] should_fail.cold+0x10f/0x159 [ 236.491227] ? __might_sleep+0x93/0xb0 [ 236.495108] __alloc_pages_nodemask+0x1d6/0x7a0 [ 236.499768] ? __alloc_pages_slowpath+0x2930/0x2930 [ 236.504784] alloc_pages_current+0xec/0x1e0 [ 236.509099] pte_alloc_one+0x1a/0x100 [ 236.512894] __pte_alloc+0x2a/0x2d0 [ 236.516534] copy_page_range+0x11ba/0x1bd0 [ 236.520798] ? __pmd_alloc+0x410/0x410 [ 236.524708] copy_process.part.0+0x4764/0x6a00 15:14:47 executing program 5: syz_mount_image$ntfs(&(0x7f0000000100)='ntfs\x00', &(0x7f00000000c0)='./bus\x00', 0x0, 0x2, &(0x7f0000001680)=[{0x0, 0x0, 0x401}, {&(0x7f0000001740)="3a77dd21387d6a624e139a664bf7ec507567aba5727ca2250cce6cea", 0x1c, 0x35}], 0x8100, 0x0) r0 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm_plock\x00', 0x400000, 0x0) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000040), &(0x7f0000000080)=0xc) getsockopt$netrom_NETROM_T2(r0, 0x103, 0x2, &(0x7f0000000140)=0x9, &(0x7f0000000180)=0x4) [ 236.529332] ? __cleanup_sighand+0x50/0x50 [ 236.533574] ? lock_downgrade+0x6e0/0x6e0 [ 236.537751] _do_fork+0x19e/0xce0 [ 236.541216] ? fork_idle+0x280/0x280 [ 236.545367] ? fput+0xd4/0x150 [ 236.548575] ? SyS_write+0x15e/0x230 [ 236.552301] SyS_clone+0x37/0x50 [ 236.555666] ? sys_vfork+0x30/0x30 [ 236.559217] do_syscall_64+0x1e8/0x640 [ 236.563109] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 236.568007] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 236.575550] RIP: 0033:0x459829 [ 236.578743] RSP: 002b:00007f885a32dc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 236.586454] RAX: ffffffffffffffda RBX: 00007f885a32dc90 RCX: 0000000000459829 [ 236.593722] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000 [ 236.600988] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000 [ 236.608271] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f885a32e6d4 [ 236.615539] R13: 00000000004bfce6 R14: 00000000004d1a58 R15: 0000000000000005 [ 236.622822] CPU: 0 PID: 10835 Comm: syz-executor.3 Not tainted 4.14.139 #35 [ 236.629930] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 236.639416] Call Trace: [ 236.642005] dump_stack+0x138/0x19c [ 236.645648] should_fail.cold+0x10f/0x159 [ 236.649794] should_failslab+0xdb/0x130 [ 236.653760] kmem_cache_alloc+0x47/0x780 [ 236.653775] ? __lock_is_held+0xb6/0x140 [ 236.653792] ? check_preemption_disabled+0x3c/0x250 [ 236.661889] anon_vma_clone+0xde/0x470 [ 236.661903] anon_vma_fork+0x87/0x4d0 [ 236.661920] copy_process.part.0+0x45e2/0x6a00 [ 236.679174] ? __cleanup_sighand+0x50/0x50 [ 236.683413] ? lock_downgrade+0x6e0/0x6e0 [ 236.687552] _do_fork+0x19e/0xce0 [ 236.691010] ? fork_idle+0x280/0x280 [ 236.694746] ? fput+0xd4/0x150 [ 236.697937] ? SyS_write+0x15e/0x230 [ 236.701673] SyS_clone+0x37/0x50 [ 236.705038] ? sys_vfork+0x30/0x30 [ 236.708580] do_syscall_64+0x1e8/0x640 [ 236.712468] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 236.717319] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 236.722504] RIP: 0033:0x459829 [ 236.725692] RSP: 002b:00007f664e1cac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 15:14:47 executing program 2: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = fcntl$dupfd(r0, 0x3, 0xffffffffffffffff) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = syz_open_dev$loop(&(0x7f00000000c0)='/dev/loop#\x00', 0x0, 0x0) r3 = memfd_create(0x0, 0x0) pwritev(0xffffffffffffffff, 0x0, 0x0, 0x0) ioctl$LOOP_CHANGE_FD(r2, 0x4c00, r3) sendfile(r1, r2, 0x0, 0x2000006) 15:14:47 executing program 4 (fault-call:8 fault-nth:27): r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="11dca50d5e0bcfe47bf070") mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) 15:14:47 executing program 1: socket$inet(0x10, 0x5, 0x3) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(r0, 0x8000000000000001, 0x10000000000005, &(0x7f0000000980)="000000009641d897e74754e15cafa0a8d7248293e5ee7f8e2dd6354dafd8e76a155d15a7f2872ef6c17ef451745a222065498562c09b44b262a3a3c76c9f5be0a2af258fa0b6a5dc7726bf25a563705d73ff7e1f556a82ae51f2ae06145b481c4be9c760d8289dc8cb601b1805223df02fa9ac38dc714a052b8acb3070d2d63e76195379b396da6c8d0b2fbc59c17f835516dad72c98358b4ff3cca04e1dda3b0f353c684773cb3813c3d2f0645e7dca7899dce3b933de4ef6e9f512cb5a1f4ad42c632645aff8", 0xc7) setsockopt$inet6_tcp_int(r0, 0x6, 0x100000004, &(0x7f0000000080)=0x2be, 0xfd3b) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) r2 = socket$inet6_udp(0xa, 0x2, 0x0) syncfs(r2) setsockopt$inet_tcp_int(r1, 0x6, 0x7ffffffffffffe, &(0x7f0000000000)=0x85, 0x4) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) socket(0xffffffffffffffff, 0x6, 0x5) r3 = open(&(0x7f0000000080)='./bus\x00', 0x80000000141046, 0x0) close(r3) r4 = syz_open_dev$loop(&(0x7f0000000540)='/dev/loop#\x00', 0x0, 0x105082) r5 = memfd_create(&(0x7f0000000300)='4t\xb9L<\xf2\x00\x90\xcd\x00\x00\x00\x00\x00\x00', 0x2) pwritev(r5, &(0x7f0000000440)=[{&(0x7f0000000480)="a8", 0x1}], 0x1, 0x81003) ioctl$LOOP_CHANGE_FD(r4, 0x4c00, r5) bpf$OBJ_GET_MAP(0x7, &(0x7f00000003c0)={&(0x7f0000000400)='./bus\x00', 0x0, 0x8}, 0xfffffffffffffecd) r6 = socket$inet6(0xa, 0x5, 0x2) connect$inet6(r6, &(0x7f0000000100)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, [], 0x1, 0x0}, 0x7}, 0x1c) setsockopt$inet6_opts(r6, 0x29, 0x40, &(0x7f0000000580)=ANY=[@ANYBLOB="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"], 0x1) sendmmsg(r6, &(0x7f00000092c0), 0x4ff, 0x0) mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x800003, 0x11, r3, 0x0) socketpair$unix(0x1, 0x800000000000003, 0x0, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x360) fcntl$setstatus(r4, 0x4, 0x44000) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r8, &(0x7f00000001c0), 0x526987c9) read(r7, &(0x7f0000000200)=""/250, 0x50c7e3e3) sendfile(r4, r5, 0x0, 0x80003) 15:14:47 executing program 2: perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x41, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0xff}, 0x0) r0 = getpid() sched_setattr(r0, 0x0, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) bind$inet6(r1, &(0x7f0000f5dfe4)={0xa, 0x4e20}, 0x1c) ioctl$TUNSETIFINDEX(0xffffffffffffffff, 0x400454da, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x400000000000249, 0x44000102, 0x0) sendto$inet6(r1, 0x0, 0x0, 0x0, &(0x7f0000000080)={0xa, 0x4e20, 0x0, @mcast1}, 0x1c) pipe(&(0x7f0000000340)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x41, &(0x7f0000000180)=0x1000, 0x4) pipe(&(0x7f0000000300)) clock_gettime(0x0, &(0x7f0000000440)={0x0, 0x0}) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b7}, &(0x7f0000000200)={0x0, r4+30000000}, 0x0) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) [ 236.733398] RAX: ffffffffffffffda RBX: 00007f664e1cac90 RCX: 0000000000459829 [ 236.740667] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000 [ 236.747938] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000 [ 236.755212] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f664e1cb6d4 [ 236.762486] R13: 00000000004bfce6 R14: 00000000004d1a58 R15: 0000000000000004 [ 236.819964] FAULT_INJECTION: forcing a failure. [ 236.819964] name failslab, interval 1, probability 0, space 0, times 0 [ 236.853021] CPU: 1 PID: 10866 Comm: syz-executor.4 Not tainted 4.14.139 #35 [ 236.860169] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 236.869542] Call Trace: [ 236.872157] dump_stack+0x138/0x19c [ 236.875809] should_fail.cold+0x10f/0x159 [ 236.879968] should_failslab+0xdb/0x130 [ 236.883953] kmem_cache_alloc+0x2d7/0x780 [ 236.888118] ptlock_alloc+0x20/0x70 [ 236.891751] pte_alloc_one+0x60/0x100 [ 236.895555] __pte_alloc+0x2a/0x2d0 [ 236.899180] copy_page_range+0x11ba/0x1bd0 [ 236.903439] ? __pmd_alloc+0x410/0x410 [ 236.907344] copy_process.part.0+0x4764/0x6a00 [ 236.911949] ? __cleanup_sighand+0x50/0x50 [ 236.916190] ? lock_downgrade+0x6e0/0x6e0 [ 236.920348] _do_fork+0x19e/0xce0 [ 236.923813] ? fork_idle+0x280/0x280 [ 236.927547] ? fput+0xd4/0x150 [ 236.930750] ? SyS_write+0x15e/0x230 [ 236.934473] SyS_clone+0x37/0x50 [ 236.937837] ? sys_vfork+0x30/0x30 [ 236.941385] do_syscall_64+0x1e8/0x640 [ 236.945265] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 236.945283] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 236.945291] RIP: 0033:0x459829 [ 236.955291] RSP: 002b:00007f885a32dc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 236.955301] RAX: ffffffffffffffda RBX: 00007f885a32dc90 RCX: 0000000000459829 [ 236.955305] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000 [ 236.955309] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000 [ 236.955314] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f885a32e6d4 [ 236.955318] R13: 00000000004bfce6 R14: 00000000004d1a58 R15: 0000000000000005 15:14:48 executing program 0: r0 = syz_open_dev$usb(&(0x7f0000000100)='/dev/bus/usb/00#/00#\x00', 0x4, 0x4400) r1 = syz_genetlink_get_family_id$tipc2(&(0x7f00000001c0)='TIPCv2\x00') sendmsg$TIPC_NL_BEARER_GET(r0, &(0x7f00000002c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000280)={&(0x7f0000000200)={0x58, r1, 0x300, 0x70bd26, 0x25dfdbfd, {}, [@TIPC_NLA_MON={0x44, 0x9, [@TIPC_NLA_MON_REF={0x8, 0x2, 0x80000001}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x52d545c6}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x9}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x26}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x9}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x81}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x1}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x80}]}]}, 0x58}, 0x1, 0x0, 0x0, 0x4800}, 0x1) r2 = socket$inet_udplite(0x2, 0x2, 0x88) r3 = openat$selinux_avc_hash_stats(0xffffffffffffff9c, &(0x7f00000000c0)='/selinux/avc/hash_stats\x00', 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl(r2, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070") r4 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x28001, 0x0) read$rfkill(r4, &(0x7f0000000000), 0x3) ioctl$PPPIOCDISCONN(r4, 0x7439) ioctl$int_in(r4, 0x800060c0045005, &(0x7f0000000140)=0x5ad) 15:14:48 executing program 3 (fault-call:6 fault-nth:30): mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) 15:14:48 executing program 1: socket$inet(0x10, 0x5, 0x3) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(r0, 0x8000000000000001, 0x10000000000005, &(0x7f0000000980)="000000009641d897e74754e15cafa0a8d7248293e5ee7f8e2dd6354dafd8e76a155d15a7f2872ef6c17ef451745a222065498562c09b44b262a3a3c76c9f5be0a2af258fa0b6a5dc7726bf25a563705d73ff7e1f556a82ae51f2ae06145b481c4be9c760d8289dc8cb601b1805223df02fa9ac38dc714a052b8acb3070d2d63e76195379b396da6c8d0b2fbc59c17f835516dad72c98358b4ff3cca04e1dda3b0f353c684773cb3813c3d2f0645e7dca7899dce3b933de4ef6e9f512cb5a1f4ad42c632645aff8", 0xc7) setsockopt$inet6_tcp_int(r0, 0x6, 0x100000004, &(0x7f0000000080)=0x2be, 0xfd3b) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) r2 = socket$inet6_udp(0xa, 0x2, 0x0) syncfs(r2) setsockopt$inet_tcp_int(r1, 0x6, 0x7ffffffffffffe, &(0x7f0000000000)=0x85, 0x4) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) socket(0xffffffffffffffff, 0x6, 0x5) r3 = open(&(0x7f0000000080)='./bus\x00', 0x80000000141046, 0x0) close(r3) r4 = syz_open_dev$loop(&(0x7f0000000540)='/dev/loop#\x00', 0x0, 0x105082) r5 = memfd_create(&(0x7f0000000300)='4t\xb9L<\xf2\x00\x90\xcd\x00\x00\x00\x00\x00\x00', 0x2) pwritev(r5, &(0x7f0000000440)=[{&(0x7f0000000480)="a8", 0x1}], 0x1, 0x81003) ioctl$LOOP_CHANGE_FD(r4, 0x4c00, r5) bpf$OBJ_GET_MAP(0x7, &(0x7f00000003c0)={&(0x7f0000000400)='./bus\x00', 0x0, 0x8}, 0xfffffffffffffecd) r6 = socket$inet6(0xa, 0x5, 0x2) connect$inet6(r6, &(0x7f0000000100)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, [], 0x1, 0x0}, 0x7}, 0x1c) setsockopt$inet6_opts(r6, 0x29, 0x40, &(0x7f0000000580)=ANY=[@ANYBLOB="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"], 0x1) sendmmsg(r6, &(0x7f00000092c0), 0x4ff, 0x0) mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x800003, 0x11, r3, 0x0) socketpair$unix(0x1, 0x800000000000003, 0x0, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x360) fcntl$setstatus(r4, 0x4, 0x44000) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r8, &(0x7f00000001c0), 0x526987c9) read(r7, &(0x7f0000000200)=""/250, 0x50c7e3e3) sendfile(r4, r5, 0x0, 0x80003) 15:14:48 executing program 5: syz_mount_image$ntfs(&(0x7f0000000100)='ntfs\x00', &(0x7f00000000c0)='./bus\x00', 0x0, 0x2, &(0x7f0000001680)=[{0x0, 0x0, 0x401}, {&(0x7f0000001740)="3a77dd21387d6a624e139a664bf7ec507567aba5727ca2250cce6cea", 0x1c, 0x35}], 0x8100, 0x0) r0 = syz_open_dev$dspn(&(0x7f0000000000)='/dev/dsp#\x00', 0x3, 0x24080) ioctl$KVM_S390_INTERRUPT_CPU(r0, 0x4010ae94, &(0x7f0000000040)={0x179, 0x3, 0x80}) 15:14:48 executing program 4 (fault-call:8 fault-nth:28): r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="11dca50d5e0bcfe47bf070") mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) [ 237.130137] FAULT_INJECTION: forcing a failure. [ 237.130137] name failslab, interval 1, probability 0, space 0, times 0 [ 237.149818] FAULT_INJECTION: forcing a failure. [ 237.149818] name failslab, interval 1, probability 0, space 0, times 0 [ 237.174804] CPU: 0 PID: 10884 Comm: syz-executor.3 Not tainted 4.14.139 #35 [ 237.181955] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 237.191318] Call Trace: [ 237.193915] dump_stack+0x138/0x19c [ 237.197556] should_fail.cold+0x10f/0x159 [ 237.201712] ? anon_vma_clone+0xde/0x470 [ 237.205779] should_failslab+0xdb/0x130 [ 237.209761] kmem_cache_alloc+0x47/0x780 [ 237.213836] ? anon_vma_chain_link+0x142/0x1a0 [ 237.218425] anon_vma_clone+0xde/0x470 [ 237.222336] anon_vma_fork+0x87/0x4d0 [ 237.226140] copy_process.part.0+0x45e2/0x6a00 [ 237.230742] ? __cleanup_sighand+0x50/0x50 [ 237.234978] ? lock_downgrade+0x6e0/0x6e0 [ 237.239128] _do_fork+0x19e/0xce0 [ 237.242582] ? fork_idle+0x280/0x280 [ 237.246304] ? fput+0xd4/0x150 [ 237.249498] ? SyS_write+0x15e/0x230 [ 237.253214] SyS_clone+0x37/0x50 [ 237.256584] ? sys_vfork+0x30/0x30 [ 237.260143] do_syscall_64+0x1e8/0x640 [ 237.264030] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 237.268883] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 237.274072] RIP: 0033:0x459829 [ 237.277258] RSP: 002b:00007f664e1cac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 237.284971] RAX: ffffffffffffffda RBX: 00007f664e1cac90 RCX: 0000000000459829 [ 237.292243] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000 [ 237.299516] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000 [ 237.306812] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f664e1cb6d4 [ 237.314096] R13: 00000000004bfce6 R14: 00000000004d1a58 R15: 0000000000000004 [ 237.322092] CPU: 0 PID: 10885 Comm: syz-executor.4 Not tainted 4.14.139 #35 [ 237.329218] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 237.338578] Call Trace: [ 237.341177] dump_stack+0x138/0x19c [ 237.344825] should_fail.cold+0x10f/0x159 [ 237.348995] should_failslab+0xdb/0x130 [ 237.352983] kmem_cache_alloc+0x47/0x780 [ 237.357054] ? __lock_is_held+0xb6/0x140 [ 237.361121] ? check_preemption_disabled+0x3c/0x250 [ 237.366144] anon_vma_clone+0xde/0x470 [ 237.370060] anon_vma_fork+0x87/0x4d0 [ 237.373870] copy_process.part.0+0x45e2/0x6a00 [ 237.378480] ? __cleanup_sighand+0x50/0x50 [ 237.382712] ? lock_downgrade+0x6e0/0x6e0 [ 237.386866] _do_fork+0x19e/0xce0 [ 237.390317] ? fork_idle+0x280/0x280 [ 237.394021] ? fput+0xd4/0x150 [ 237.397217] ? SyS_write+0x15e/0x230 [ 237.400927] SyS_clone+0x37/0x50 [ 237.404272] ? sys_vfork+0x30/0x30 [ 237.407795] do_syscall_64+0x1e8/0x640 [ 237.411660] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 237.416487] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 237.421659] RIP: 0033:0x459829 [ 237.424838] RSP: 002b:00007f885a32dc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 237.432544] RAX: ffffffffffffffda RBX: 00007f885a32dc90 RCX: 0000000000459829 [ 237.439795] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000 [ 237.447044] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000 [ 237.454293] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f885a32e6d4 [ 237.461538] R13: 00000000004bfce6 R14: 00000000004d1a58 R15: 0000000000000005 15:14:48 executing program 4 (fault-call:8 fault-nth:29): r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="11dca50d5e0bcfe47bf070") mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) 15:14:48 executing program 5: syz_mount_image$ntfs(&(0x7f0000000100)='ntfs\x00', &(0x7f00000000c0)='./bus\x00', 0x0, 0x2, &(0x7f0000001680)=[{0x0, 0x0, 0x401}, {&(0x7f0000001740)="3a77dd21387d6a624e139a664bf7ec507567aba5727ca2250cce6cea", 0x1c, 0x35}], 0x8100, 0x0) r0 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp\x00', 0x101000, 0x0) ioctl$TCSETXF(r0, 0x5434, &(0x7f0000004180)={0x3ff, 0xff, [0x100]}) r1 = getpgid(0xffffffffffffffff) ioctl$KVM_GET_SREGS(r0, 0x8138ae83, &(0x7f0000004540)) ptrace$getregs(0x542034534037c958, r1, 0x108, &(0x7f0000004100)=""/75) ioctl$VIDIOC_DQEVENT(r0, 0x80885659, &(0x7f0000004480)={0x0, @src_change}) syz_init_net_socket$x25(0x9, 0x5, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000003ec0)=[{{0x0, 0x0, &(0x7f0000000500)=[{&(0x7f00000001c0)=""/167, 0xa7}, {&(0x7f0000000280)=""/114, 0x72}, {&(0x7f0000000300)=""/141, 0x8d}, {&(0x7f00000003c0)}, {&(0x7f0000000400)=""/203, 0xcb}], 0x5, &(0x7f0000000580)=""/241, 0xf1}, 0x9}, {{&(0x7f0000000680)=@x25, 0x80, &(0x7f0000000a80)=[{&(0x7f0000000700)=""/182, 0xb6}, {&(0x7f00000007c0)=""/71, 0x47}, {&(0x7f0000000840)=""/215, 0xd7}, {&(0x7f0000000940)=""/218, 0xda}, {&(0x7f0000000a40)=""/23, 0x17}], 0x5, &(0x7f0000000b00)=""/208, 0xd0}, 0x3}, {{&(0x7f0000000c00)=@ethernet, 0x80, &(0x7f0000000f80)=[{&(0x7f0000000c80)=""/59, 0x3b}, {&(0x7f0000001780)=""/4096, 0x1000}, {&(0x7f0000000cc0)=""/75, 0x4b}, {&(0x7f0000000d40)=""/82, 0x52}, {&(0x7f0000000dc0)=""/143, 0x8f}, {&(0x7f0000000e80)=""/253, 0xfd}], 0x6, &(0x7f0000001000)=""/188, 0xbc}, 0x3}, {{&(0x7f00000010c0)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @dev}}}, 0x80, &(0x7f0000001180)=[{&(0x7f0000001140)=""/5, 0x5}], 0x1, &(0x7f00000011c0)=""/215, 0xd7}, 0x800000000}, {{&(0x7f00000012c0)=@ll={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, 0x80, &(0x7f00000016c0)=[{&(0x7f0000001340)=""/86, 0x56}, {&(0x7f00000013c0)=""/237, 0xed}, {&(0x7f00000014c0)=""/32, 0x20}, {&(0x7f0000001500)=""/134, 0x86}, {&(0x7f00000015c0)=""/55, 0x37}, {&(0x7f0000001600)=""/42, 0x2a}], 0x6}, 0x526}, {{&(0x7f0000002780)=@caif=@dgm, 0x80, &(0x7f0000001640), 0x0, &(0x7f0000002800)=""/216, 0xd8}, 0x7}, {{&(0x7f0000002900)=@caif=@util, 0x80, &(0x7f0000003c80)=[{&(0x7f0000002980)=""/139, 0x8b}, {&(0x7f0000002a40)=""/27, 0x1b}, {&(0x7f0000002a80)=""/141, 0x8d}, {&(0x7f0000002b40)=""/10, 0xa}, {&(0x7f0000002b80)=""/4096, 0x1000}, {&(0x7f0000003b80)=""/225, 0xe1}], 0x6, &(0x7f0000003d00)=""/148, 0x94}, 0x18ed}, {{&(0x7f0000003dc0)=@isdn, 0x80, &(0x7f0000003e80)=[{&(0x7f0000003e40)=""/54, 0x36}], 0x1}}], 0x8, 0x0, &(0x7f00000040c0)={0x0, 0x1c9c380}) sendmsg$nl_route_sched(r0, &(0x7f0000004280)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000004240)={&(0x7f0000004340)=ANY=[@ANYBLOB="7000fbdbdf2500000000004a0000000000000000e28d065a532b1b6e96582d73e22eb24861309f14a8ea2cd7", @ANYRES32=r2, @ANYBLOB="0800f7fff1ff070009000c0008000100716671002400020008000100800000000800010007000000080001000080000008000104000000000800050001090000080005000005000008000100716671002c00020008000100040000000800010000000080080002000001000008000100ff0100647272000c000200080001000200000008000500092600000800050067450000080001007166710044000200080001004c00000008000200090000000800020006000000080001000001000008000100030000000800d8e3cf7500000800020000bf00000800010000800000"], 0x104}, 0x1, 0x0, 0x0, 0x4000}, 0x8010) clock_gettime(0x7, &(0x7f00000003c0)={0x0, 0x0}) pselect6(0x40, &(0x7f0000000080)={0x24, 0xff, 0x9, 0x79, 0x8, 0x4aaa, 0x6, 0x3}, &(0x7f0000000140)={0x6, 0xfffffffffffffffa, 0x4d4, 0x1, 0x53, 0xffffffff, 0x4, 0x3}, &(0x7f0000000180)={0x1, 0x1, 0x1, 0xe83, 0x3f, 0x4, 0x8, 0x8000}, &(0x7f0000001640)={r3, r4+30000000}, &(0x7f0000004300)={&(0x7f00000042c0)={0x3}, 0x8}) 15:14:48 executing program 3 (fault-call:6 fault-nth:31): mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) [ 237.573159] FAULT_INJECTION: forcing a failure. [ 237.573159] name failslab, interval 1, probability 0, space 0, times 0 [ 237.575373] FAULT_INJECTION: forcing a failure. [ 237.575373] name failslab, interval 1, probability 0, space 0, times 0 [ 237.596073] CPU: 1 PID: 10909 Comm: syz-executor.4 Not tainted 4.14.139 #35 [ 237.603187] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 237.612534] Call Trace: [ 237.615187] dump_stack+0x138/0x19c [ 237.618801] should_fail.cold+0x10f/0x159 [ 237.622937] should_failslab+0xdb/0x130 [ 237.626895] kmem_cache_alloc+0x47/0x780 [ 237.630936] ? anon_vma_chain_link+0x142/0x1a0 [ 237.635517] anon_vma_clone+0xde/0x470 [ 237.639383] anon_vma_fork+0x87/0x4d0 [ 237.643166] copy_process.part.0+0x45e2/0x6a00 [ 237.647741] ? __cleanup_sighand+0x50/0x50 [ 237.651958] ? lock_downgrade+0x6e0/0x6e0 [ 237.656087] _do_fork+0x19e/0xce0 [ 237.659519] ? fork_idle+0x280/0x280 [ 237.663210] ? fput+0xd4/0x150 [ 237.666377] ? SyS_write+0x15e/0x230 [ 237.670071] SyS_clone+0x37/0x50 [ 237.673419] ? sys_vfork+0x30/0x30 [ 237.676960] do_syscall_64+0x1e8/0x640 [ 237.680829] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 237.685656] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 237.690826] RIP: 0033:0x459829 [ 237.693996] RSP: 002b:00007f885a32dc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 237.701683] RAX: ffffffffffffffda RBX: 00007f885a32dc90 RCX: 0000000000459829 [ 237.708934] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000 [ 237.716673] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000 [ 237.723946] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f885a32e6d4 [ 237.731208] R13: 00000000004bfce6 R14: 00000000004d1a58 R15: 0000000000000005 [ 237.754361] CPU: 0 PID: 10911 Comm: syz-executor.3 Not tainted 4.14.139 #35 [ 237.761508] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 237.770871] Call Trace: [ 237.773465] dump_stack+0x138/0x19c [ 237.777099] should_fail.cold+0x10f/0x159 [ 237.781249] should_failslab+0xdb/0x130 [ 237.785233] kmem_cache_alloc+0x2d7/0x780 [ 237.789389] ? anon_vma_clone+0x310/0x470 [ 237.793536] anon_vma_fork+0xe9/0x4d0 [ 237.797321] copy_process.part.0+0x45e2/0x6a00 [ 237.801912] ? __cleanup_sighand+0x50/0x50 [ 237.806149] ? lock_downgrade+0x6e0/0x6e0 [ 237.810286] _do_fork+0x19e/0xce0 [ 237.813721] ? fork_idle+0x280/0x280 [ 237.817419] ? fput+0xd4/0x150 [ 237.820594] ? SyS_write+0x15e/0x230 [ 237.824294] SyS_clone+0x37/0x50 [ 237.827638] ? sys_vfork+0x30/0x30 [ 237.831177] do_syscall_64+0x1e8/0x640 [ 237.835052] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 237.839877] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 237.845044] RIP: 0033:0x459829 [ 237.848237] RSP: 002b:00007f664e1cac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 237.855937] RAX: ffffffffffffffda RBX: 00007f664e1cac90 RCX: 0000000000459829 [ 237.863187] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000 15:14:49 executing program 4 (fault-call:8 fault-nth:30): r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="11dca50d5e0bcfe47bf070") mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) [ 237.870440] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000 [ 237.877694] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f664e1cb6d4 [ 237.884944] R13: 00000000004bfce6 R14: 00000000004d1a58 R15: 0000000000000004 15:14:49 executing program 3 (fault-call:6 fault-nth:32): mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) 15:14:49 executing program 1: socket$inet(0x10, 0x5, 0x3) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(r0, 0x8000000000000001, 0x10000000000005, &(0x7f0000000980)="000000009641d897e74754e15cafa0a8d7248293e5ee7f8e2dd6354dafd8e76a155d15a7f2872ef6c17ef451745a222065498562c09b44b262a3a3c76c9f5be0a2af258fa0b6a5dc7726bf25a563705d73ff7e1f556a82ae51f2ae06145b481c4be9c760d8289dc8cb601b1805223df02fa9ac38dc714a052b8acb3070d2d63e76195379b396da6c8d0b2fbc59c17f835516dad72c98358b4ff3cca04e1dda3b0f353c684773cb3813c3d2f0645e7dca7899dce3b933de4ef6e9f512cb5a1f4ad42c632645aff8", 0xc7) setsockopt$inet6_tcp_int(r0, 0x6, 0x100000004, &(0x7f0000000080)=0x2be, 0xfd3b) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) r2 = socket$inet6_udp(0xa, 0x2, 0x0) syncfs(r2) setsockopt$sock_int(r1, 0x1, 0x2f, &(0x7f0000000040), 0x4) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) socket(0xffffffffffffffff, 0x6, 0x5) r3 = open(&(0x7f0000000080)='./bus\x00', 0x80000000141046, 0x0) close(r3) r4 = syz_open_dev$loop(&(0x7f0000000540)='/dev/loop#\x00', 0x0, 0x105082) r5 = memfd_create(&(0x7f0000000300)='4t\xb9L<\xf2\x00\x90\xcd\x00\x00\x00\x00\x00\x00', 0x2) pwritev(r5, &(0x7f0000000440)=[{&(0x7f0000000480)="a8", 0x1}], 0x1, 0x81003) ioctl$LOOP_CHANGE_FD(r4, 0x4c00, r5) bpf$OBJ_GET_MAP(0x7, &(0x7f00000003c0)={&(0x7f0000000400)='./bus\x00', 0x0, 0x8}, 0xfffffffffffffecd) r6 = socket$inet6(0xa, 0x5, 0x2) connect$inet6(r6, &(0x7f0000000100)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, [], 0x1, 0x0}, 0x7}, 0x1c) setsockopt$inet6_opts(r6, 0x29, 0x40, &(0x7f0000000580)=ANY=[@ANYBLOB="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"], 0x1) sendmmsg(r6, &(0x7f00000092c0), 0x4ff, 0x0) mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x800003, 0x11, r3, 0x0) socketpair$unix(0x1, 0x800000000000003, 0x0, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x360) fcntl$setstatus(r4, 0x4, 0x44000) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r8, &(0x7f00000001c0), 0x526987c9) read(r7, &(0x7f0000000200)=""/250, 0x50c7e3e3) sendfile(r4, r5, 0x0, 0x80003) 15:14:49 executing program 2: r0 = socket$inet6(0xa, 0xe, 0xffff) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000340)='./cgroup\x00', 0x200002, 0x0) fchdir(r1) munmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000) bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000500)=0xffffffffffffffff, 0x4) r2 = fcntl$getown(r0, 0x9) r3 = getpgid(r2) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x2000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x3, 0x0, 0x0, 0x8000, 0x0, 0x8, 0x0, 0xd0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x81, 0x101}, 0x0, 0x0, 0x4, 0x0, 0x0, 0xfffffffffffffffa}, r3, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000280)='vfat\x00', &(0x7f00000002c0)='./file0/file1\x00', 0x100000000200e002, 0x63, &(0x7f0000000040)=[{&(0x7f0000000700)="eb64c86d4f66732e66617400020441000500077008f80000d8c32d8cbe59628cf9d9ed7b2cbf779f0b6880a876932b36860a0cc978a0146e83ef895f092487086ab63b696b0dc6d73b270dd1d31c01e009f2502a530803dfb6b984f12a6abadae0bd89d692e2e751e2de7e970a7a6a19ae893791c0fa540400000000000028391e75e072b8ff7a45cc6d1b47d8c1f4a819d0e62c528ec211d2fce141c703051c871c031daac41b75854b042c00da22c049901ab6723561d3e4702e4b53df171c2997a717ebacee256b32c8bb9d76882119e5ba", 0xfffffffffffffebc, 0x1}], 0x10002, 0x0) r4 = socket$inet6(0xa, 0x7, 0x3) syz_mount_image$vfat(&(0x7f0000000240)='vfat\x00', &(0x7f0000000640)='./file0\x00', 0xe005, 0x1, &(0x7f0000000380)=[{&(0x7f00000006c0)="eb3c130105a4874e97bfeb58906d6b66732e6461740002", 0x17, 0x2000000000}], 0x1010802, 0x0) r5 = open(&(0x7f00000001c0)='./file0\x00', 0x4, 0x0) mkdirat(r5, &(0x7f00000003c0)='./file0/file0\x00', 0x10000) removexattr(&(0x7f0000000140)='./file0\x00', &(0x7f0000000800)=ANY=[@ANYPTR64=&(0x7f0000001940)=ANY=[@ANYBLOB="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"], @ANYRES64=r2]) perf_event_open(&(0x7f0000940000)={0x2, 0xfffffffffffffdcd, 0xfffffffffffffffe, 0x0, 0x0, 0xd1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x4}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x2000000, 0x110, r1, 0x8000000) openat$fuse(0xffffffffffffff9c, &(0x7f0000000480)='/dev/fuse\x00', 0x2, 0x0) ioctl$FUSE_DEV_IOC_CLONE(r5, 0x8004e500, &(0x7f0000001140)) sched_setaffinity(0x0, 0x8, &(0x7f0000000180)=0x9) r6 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x20000000000000, 0x0, 0x0, 0x0, 0x0, 0x5, 0xffffffffffffffff, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4, 0x6}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioprio_get$pid(0x2, r3) capset(&(0x7f0000000300)={0x19980330, r2}, &(0x7f0000000580)={0xc, 0x2, 0x89, 0x3, 0xca, 0xca2c}) r7 = perf_event_open(&(0x7f0000c86f88)={0x2, 0x70, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xfd, 0xfd, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffff00000000000, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, @perf_bp, 0x1e, 0x0, 0x0, 0x4}, 0x0, 0x0, r6, 0x0) setsockopt$inet6_MRT6_ADD_MIF(r4, 0x29, 0xca, &(0x7f00000000c0)={0x0, 0x1, 0x2080000000, 0xfffffffffefffc01, 0x9}, 0xfffffffffffffe5f) openat$null(0xffffffffffffff9c, &(0x7f0000000600)='/dev/null\x00', 0xa2081, 0x0) write$cgroup_type(0xffffffffffffffff, &(0x7f0000000540)='threaded\x00', 0x9) mkdirat(r5, &(0x7f00000004c0)='./file1\x00', 0x100000000) creat(&(0x7f0000000a00)='./file0/file0\x00', 0x44) fchdir(r7) seccomp(0x0, 0x0, &(0x7f0000000200)={0x0, &(0x7f00000001c0)}) fstatfs(r5, &(0x7f0000000400)=""/128) 15:14:49 executing program 5: syz_mount_image$ntfs(&(0x7f0000000100)='ntfs\x00', &(0x7f00000000c0)='./bus\x00', 0x0, 0x2, &(0x7f0000001680)=[{0x0, 0x0, 0x401}, {&(0x7f0000001740)="3a77dd21387d6a624e139a664bf7ec507567aba5727ca2250cce6cea", 0x1c, 0x35}], 0x8100, 0x0) r0 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm_plock\x00', 0xa6ce2347d33edf6a, 0x0) r1 = gettid() waitid(0x4, r1, &(0x7f00000002c0), 0x20000000, &(0x7f0000000200)) r2 = syz_open_dev$sndpcmp(&(0x7f0000000080)='/dev/snd/pcmC#D#p\x00', 0xfffffffffffffeff, 0x101100) linkat(r0, &(0x7f0000000040)='./bus\x00', r2, &(0x7f0000000140)='./bus\x00', 0x1400) 15:14:49 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070") r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x28001, 0x0) read$rfkill(r1, &(0x7f0000000000), 0x3) ioctl$MON_IOCX_MFETCH(r1, 0xc0109207, &(0x7f0000000100)={&(0x7f00000000c0)=[0x0, 0x0, 0x0], 0x3, 0x4}) ioctl$int_in(r1, 0x800060c0045005, &(0x7f0000000140)=0x5ad) [ 237.970869] FAULT_INJECTION: forcing a failure. [ 237.970869] name failslab, interval 1, probability 0, space 0, times 0 [ 238.054675] CPU: 0 PID: 10919 Comm: syz-executor.4 Not tainted 4.14.139 #35 [ 238.061946] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 238.071311] Call Trace: [ 238.073915] dump_stack+0x138/0x19c [ 238.077561] should_fail.cold+0x10f/0x159 [ 238.081729] should_failslab+0xdb/0x130 [ 238.085729] kmem_cache_alloc+0x47/0x780 [ 238.089807] ? anon_vma_chain_link+0x142/0x1a0 [ 238.094398] anon_vma_clone+0xde/0x470 [ 238.098300] anon_vma_fork+0x87/0x4d0 [ 238.102109] copy_process.part.0+0x45e2/0x6a00 [ 238.106141] FAULT_INJECTION: forcing a failure. [ 238.106141] name failslab, interval 1, probability 0, space 0, times 0 [ 238.106718] ? __cleanup_sighand+0x50/0x50 [ 238.106735] ? lock_downgrade+0x6e0/0x6e0 [ 238.126330] _do_fork+0x19e/0xce0 [ 238.129795] ? fork_idle+0x280/0x280 [ 238.133537] ? fput+0xd4/0x150 [ 238.136734] ? SyS_write+0x15e/0x230 [ 238.140455] SyS_clone+0x37/0x50 [ 238.143814] ? sys_vfork+0x30/0x30 [ 238.147354] do_syscall_64+0x1e8/0x640 [ 238.151239] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 238.156080] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 238.161258] RIP: 0033:0x459829 [ 238.164445] RSP: 002b:00007f885a32dc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 238.172149] RAX: ffffffffffffffda RBX: 00007f885a32dc90 RCX: 0000000000459829 [ 238.179418] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000 [ 238.186686] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000 [ 238.193952] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f885a32e6d4 [ 238.201218] R13: 00000000004bfce6 R14: 00000000004d1a58 R15: 0000000000000005 [ 238.209072] CPU: 1 PID: 10940 Comm: syz-executor.3 Not tainted 4.14.139 #35 [ 238.216214] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 238.216220] Call Trace: [ 238.216237] dump_stack+0x138/0x19c [ 238.216257] should_fail.cold+0x10f/0x159 [ 238.216273] should_failslab+0xdb/0x130 [ 238.216288] kmem_cache_alloc+0x2d7/0x780 [ 238.239932] ? anon_vma_clone+0x310/0x470 [ 238.239963] anon_vma_fork+0xe9/0x4d0 [ 238.239982] copy_process.part.0+0x45e2/0x6a00 [ 238.240007] ? __cleanup_sighand+0x50/0x50 [ 238.260853] ? lock_downgrade+0x6e0/0x6e0 [ 238.265002] _do_fork+0x19e/0xce0 [ 238.268441] ? fork_idle+0x280/0x280 [ 238.272141] ? fput+0xd4/0x150 [ 238.275315] ? SyS_write+0x15e/0x230 [ 238.279013] SyS_clone+0x37/0x50 [ 238.282356] ? sys_vfork+0x30/0x30 [ 238.285890] do_syscall_64+0x1e8/0x640 [ 238.289767] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 238.294604] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 238.299771] RIP: 0033:0x459829 15:14:49 executing program 1: socket$inet(0x10, 0x5, 0x3) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(r0, 0x8000000000000001, 0x10000000000005, &(0x7f0000000980)="000000009641d897e74754e15cafa0a8d7248293e5ee7f8e2dd6354dafd8e76a155d15a7f2872ef6c17ef451745a222065498562c09b44b262a3a3c76c9f5be0a2af258fa0b6a5dc7726bf25a563705d73ff7e1f556a82ae51f2ae06145b481c4be9c760d8289dc8cb601b1805223df02fa9ac38dc714a052b8acb3070d2d63e76195379b396da6c8d0b2fbc59c17f835516dad72c98358b4ff3cca04e1dda3b0f353c684773cb3813c3d2f0645e7dca7899dce3b933de4ef6e9f512cb5a1f4ad42c632645aff8", 0xc7) setsockopt$inet6_tcp_int(r0, 0x6, 0x100000004, &(0x7f0000000080)=0x2be, 0xfd3b) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) r2 = socket$inet6_udp(0xa, 0x2, 0x0) syncfs(r2) setsockopt$sock_int(r1, 0x1, 0x2f, &(0x7f0000000040), 0x4) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) socket(0xffffffffffffffff, 0x6, 0x5) r3 = open(&(0x7f0000000080)='./bus\x00', 0x80000000141046, 0x0) close(r3) r4 = syz_open_dev$loop(&(0x7f0000000540)='/dev/loop#\x00', 0x0, 0x105082) r5 = memfd_create(&(0x7f0000000300)='4t\xb9L<\xf2\x00\x90\xcd\x00\x00\x00\x00\x00\x00', 0x2) pwritev(r5, &(0x7f0000000440)=[{&(0x7f0000000480)="a8", 0x1}], 0x1, 0x81003) ioctl$LOOP_CHANGE_FD(r4, 0x4c00, r5) bpf$OBJ_GET_MAP(0x7, &(0x7f00000003c0)={&(0x7f0000000400)='./bus\x00', 0x0, 0x8}, 0xfffffffffffffecd) r6 = socket$inet6(0xa, 0x5, 0x2) connect$inet6(r6, &(0x7f0000000100)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, [], 0x1, 0x0}, 0x7}, 0x1c) setsockopt$inet6_opts(r6, 0x29, 0x40, &(0x7f0000000580)=ANY=[@ANYBLOB="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"], 0x1) sendmmsg(r6, &(0x7f00000092c0), 0x4ff, 0x0) mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x800003, 0x11, r3, 0x0) socketpair$unix(0x1, 0x800000000000003, 0x0, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x360) fcntl$setstatus(r4, 0x4, 0x44000) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r8, &(0x7f00000001c0), 0x526987c9) read(r7, &(0x7f0000000200)=""/250, 0x50c7e3e3) sendfile(r4, r5, 0x0, 0x80003) [ 238.302939] RSP: 002b:00007f664e1a9c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 238.310626] RAX: ffffffffffffffda RBX: 00007f664e1a9c90 RCX: 0000000000459829 [ 238.317875] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000 [ 238.325127] RBP: 000000000075bfc8 R08: ffffffffffffffff R09: 0000000000000000 [ 238.332377] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f664e1aa6d4 [ 238.339640] R13: 00000000004bfce6 R14: 00000000004d1a58 R15: 0000000000000004 15:14:49 executing program 3 (fault-call:6 fault-nth:33): mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) 15:14:49 executing program 5: syz_mount_image$ntfs(&(0x7f0000000100)='ntfs\x00', &(0x7f0000000000)='./bus\x00', 0x0, 0x2, &(0x7f0000000040)=[{0x0, 0x0, 0x401}, {&(0x7f0000001740)="3a77dd21387d6a624e139a664bf7ec507567aba5727ca2250cce6cea", 0x1c, 0x35}], 0x8100, 0x0) [ 238.511090] FAULT_INJECTION: forcing a failure. [ 238.511090] name failslab, interval 1, probability 0, space 0, times 0 [ 238.523959] CPU: 1 PID: 10963 Comm: syz-executor.3 Not tainted 4.14.139 #35 [ 238.531102] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 238.540455] Call Trace: [ 238.543405] dump_stack+0x138/0x19c [ 238.547045] should_fail.cold+0x10f/0x159 [ 238.547063] should_failslab+0xdb/0x130 [ 238.547078] kmem_cache_alloc+0x2d7/0x780 [ 238.547090] ? __pmd_alloc+0x410/0x410 [ 238.547108] copy_process.part.0+0x444f/0x6a00 [ 238.547135] ? __cleanup_sighand+0x50/0x50 [ 238.547146] ? lock_downgrade+0x6e0/0x6e0 [ 238.547161] _do_fork+0x19e/0xce0 [ 238.547174] ? fork_idle+0x280/0x280 [ 238.547199] ? fput+0xd4/0x150 [ 238.547207] ? SyS_write+0x15e/0x230 [ 238.547222] SyS_clone+0x37/0x50 [ 238.593668] ? sys_vfork+0x30/0x30 [ 238.597218] do_syscall_64+0x1e8/0x640 [ 238.601112] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 238.605963] entry_SYSCALL_64_after_hwframe+0x42/0xb7 15:14:49 executing program 5: syz_mount_image$ntfs(&(0x7f0000000100)='ntfs\x00', &(0x7f00000000c0)='./bus\x00', 0x800000, 0x2, &(0x7f0000001680)=[{0x0, 0x1e6, 0x401}, {&(0x7f0000001740)="3a77dd21387d6a624e139a664bf7ec507567aba5727ca2250cce6cea", 0xfffffffffffffe96, 0x100000035}], 0x8100, 0x0) syz_mount_image$iso9660(&(0x7f0000000000)='iso9660\x00', &(0x7f0000000040)='./bus\x00', 0x5, 0x1, &(0x7f0000000140)=[{&(0x7f0000000080)="50392fa689649a68b24378a0fd90ff4b0e34e92c63459eb30e49235cb85ffbca78debde2a9ee9525f12ab0f4", 0x2c, 0x9}], 0x800000, &(0x7f0000000180)={[{@map_normal='map=normal'}], [{@mask={'mask', 0x3d, '^MAY_READ'}}]}) r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/sequencer\x00', 0x2000, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_POLICY(r0, 0x400c6615, &(0x7f0000000300)) accept$inet6(r0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={[], [], @initdev}}, &(0x7f0000000280)=0x1c) ioctl$FS_IOC_GET_ENCRYPTION_POLICY(r0, 0x400c6615, &(0x7f00000002c0)) setsockopt$inet_sctp6_SCTP_FRAGMENT_INTERLEAVE(r0, 0x84, 0x12, &(0x7f0000000200)=0x5, 0x4) [ 238.611149] RIP: 0033:0x459829 [ 238.614335] RSP: 002b:00007f664e1cac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 238.622039] RAX: ffffffffffffffda RBX: 00007f664e1cac90 RCX: 0000000000459829 [ 238.629309] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000 [ 238.636578] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000 [ 238.643838] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f664e1cb6d4 [ 238.651189] R13: 00000000004bfce6 R14: 00000000004d1a58 R15: 0000000000000004 15:14:49 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) openat$tun(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/net/tun\x00', 0x4000, 0x0) ioctl(r0, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070") r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x28001, 0x0) read$rfkill(r1, &(0x7f0000000000), 0x3) r2 = shmget$private(0x0, 0x1000, 0x800, &(0x7f0000ffc000/0x1000)=nil) ioctl$KVM_SET_SIGNAL_MASK(r1, 0x4004ae8b, &(0x7f0000000180)=ANY=[@ANYBLOB="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"]) shmctl$IPC_RMID(r2, 0x0) ioctl$int_in(r1, 0x800060c0045005, &(0x7f0000000100)=0x5ad) setsockopt$netlink_NETLINK_LISTEN_ALL_NSID(r1, 0x10e, 0x8, &(0x7f0000000140)=0xda56a86, 0x4) ioctl$SNDRV_SEQ_IOCTL_GET_CLIENT_INFO(r1, 0xc0bc5310, &(0x7f00000011c0)) 15:14:49 executing program 3 (fault-call:6 fault-nth:34): mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) 15:14:49 executing program 4: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="11dca50d5e0bcfe47bf070") getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000640)={{{@in=@multicast1, @in=@broadcast, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@empty}, 0x0, @in6=@initdev}}, &(0x7f00000001c0)=0xe8) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000380)={0x0, 0x0}, &(0x7f0000000740)=0xc) syz_mount_image$ntfs(&(0x7f0000000000)='ntfs\x00', &(0x7f0000000040)='./file0\x00', 0x8, 0x3, &(0x7f0000000300)=[{&(0x7f00000000c0)="225b6dad9b358596da149637913e0ea2feeff4cf93748229414437d17f84130ed8ef53af9dbf650566f05a4c0d23ca9fc4575f57f1ee8cee21075b56a9fff2167e4b8e98e75cd6eb4da1c6fea74d4f3ffa4ce4b356e100deb2142da31ab2f1d2ddd48504a80ec71b153c9df4d9eef74148bfdef9b1db2cdb20e723c77adfa253f854f5ca9bc9c5aeaddc41d29221201f22e4affd07cf45b38b6780f5d56be6603b004cd296157fa1581b213a7ac529b942f23ec24ea406cf719e5c16ae3a3279e81517a23e3897f83a38271589126150e1561e98e8d69780d7753ac270227fcd4a71d9a43a254e15477a96036ab8aed9e04ab24300", 0xf5}, {&(0x7f0000000540)="efd5b45e23c753c83b6ec1ca7299e567247ca4290ba78c92c5bdcd6380f36dca67f6b5d4a7f3c07bbdedd2bee0740c7ff22650f14ac9ac5d072e5b653f0560f6e892128ab854ab898aa8723d6e37a2d7cbaed51fdff2d32cb43d33bdf0aa6d152bdd182a5535f54e531999d95fa3e36b4287c158c9069070241910cab6b24fcec2cbd6824e20c62e511ae59231b0bbce71f39d797a6666808b4da07550e139f3c927aa9fe03a45d07b9ac97fe180c85796e986ec5388ad6754755dec2f65f76790c60996494d7e001a024ae792519573e1", 0xd1, 0x4}, {&(0x7f0000000240)="ff233f9244e070ced1938157412d55dd270010c2d85a816933f174d30a5c0f924c9652473804f534a424e15eb138c5306cb53e1ec5c8c93c8cb3478c968fc1e97abb2d2aa8dd676ab71e6dc73cfcd1e76dc815dc8d30ec0b25f767cbcf86879cf470c1b470fa900d03ce8c7000ca97c53727f23c", 0x74, 0x100}], 0x10000, &(0x7f0000000780)={[{@dmask={'dmask', 0x3d, 0x5}}, {@show_sys_files_no='show_sys_files=no'}, {@fmask={'fmask', 0x3d, 0x6}}, {@mft_zone_multiplier={'mft_zone_multiplier', 0x3d, 0x4}}, {@uid={'uid', 0x3d, r1}}, {@errors_recover='errors=recover'}, {@disable_sparse_yes='disable_sparse=yes'}], [{@dont_hash='dont_hash'}, {@audit='audit'}, {@fsmagic={'fsmagic', 0x3d, 0x4}}, {@uid_lt={'uid<', r2}}]}) mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r3, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) openat$cgroup(r3, &(0x7f0000000880)='syz1\x00', 0x200002, 0x0) 15:14:49 executing program 1: socket$inet(0x10, 0x5, 0x3) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(r0, 0x8000000000000001, 0x10000000000005, &(0x7f0000000980)="000000009641d897e74754e15cafa0a8d7248293e5ee7f8e2dd6354dafd8e76a155d15a7f2872ef6c17ef451745a222065498562c09b44b262a3a3c76c9f5be0a2af258fa0b6a5dc7726bf25a563705d73ff7e1f556a82ae51f2ae06145b481c4be9c760d8289dc8cb601b1805223df02fa9ac38dc714a052b8acb3070d2d63e76195379b396da6c8d0b2fbc59c17f835516dad72c98358b4ff3cca04e1dda3b0f353c684773cb3813c3d2f0645e7dca7899dce3b933de4ef6e9f512cb5a1f4ad42c632645aff8", 0xc7) setsockopt$inet6_tcp_int(r0, 0x6, 0x100000004, &(0x7f0000000080)=0x2be, 0xfd3b) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) r2 = socket$inet6_udp(0xa, 0x2, 0x0) syncfs(r2) setsockopt$sock_int(r1, 0x1, 0x2f, &(0x7f0000000040), 0x4) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) socket(0xffffffffffffffff, 0x6, 0x5) r3 = open(&(0x7f0000000080)='./bus\x00', 0x80000000141046, 0x0) close(r3) r4 = syz_open_dev$loop(&(0x7f0000000540)='/dev/loop#\x00', 0x0, 0x105082) r5 = memfd_create(&(0x7f0000000300)='4t\xb9L<\xf2\x00\x90\xcd\x00\x00\x00\x00\x00\x00', 0x2) pwritev(r5, &(0x7f0000000440)=[{&(0x7f0000000480)="a8", 0x1}], 0x1, 0x81003) ioctl$LOOP_CHANGE_FD(r4, 0x4c00, r5) bpf$OBJ_GET_MAP(0x7, &(0x7f00000003c0)={&(0x7f0000000400)='./bus\x00', 0x0, 0x8}, 0xfffffffffffffecd) r6 = socket$inet6(0xa, 0x5, 0x2) connect$inet6(r6, &(0x7f0000000100)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, [], 0x1, 0x0}, 0x7}, 0x1c) setsockopt$inet6_opts(r6, 0x29, 0x40, &(0x7f0000000580)=ANY=[@ANYBLOB="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"], 0x1) sendmmsg(r6, &(0x7f00000092c0), 0x4ff, 0x0) mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x800003, 0x11, r3, 0x0) socketpair$unix(0x1, 0x800000000000003, 0x0, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x360) fcntl$setstatus(r4, 0x4, 0x44000) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r8, &(0x7f00000001c0), 0x526987c9) read(r7, &(0x7f0000000200)=""/250, 0x50c7e3e3) sendfile(r4, r5, 0x0, 0x80003) 15:14:49 executing program 2: socket$inet(0x10, 0x5, 0x3) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(r0, 0x8000000000000001, 0x10000000000005, &(0x7f0000000980)="000000009641d897e74754e15cafa0a8d7248293e5ee7f8e2dd6354dafd8e76a155d15a7f2872ef6c17ef451745a222065498562c09b44b262a3a3c76c9f5be0a2af258fa0b6a5dc7726bf25a563705d73ff7e1f556a82ae51f2ae06145b481c4be9c760d8289dc8cb601b1805223df02fa9ac38dc714a052b8acb3070d2d63e76195379b396da6c8d0b2fbc59c17f835516dad72c98358b4ff3cca04e1dda3b0f353c684773cb3813c3d2f0645e7dca7899dce3b933de4ef6e9f512cb5a1f4ad42c632645aff8", 0xc7) setsockopt$inet6_tcp_int(r0, 0x6, 0x100000004, &(0x7f0000000080)=0x2be, 0xfd3b) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) r2 = socket$inet6_udp(0xa, 0x2, 0x0) syncfs(r2) setsockopt$sock_int(r1, 0x1, 0x2f, &(0x7f0000000040), 0x4) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) socket(0xffffffffffffffff, 0x6, 0x5) r3 = open(&(0x7f0000000080)='./bus\x00', 0x80000000141046, 0x0) close(r3) r4 = syz_open_dev$loop(&(0x7f0000000540)='/dev/loop#\x00', 0x0, 0x105082) r5 = memfd_create(&(0x7f0000000300)='4t\xb9L<\xf2\x00\x90\xcd\x00\x00\x00\x00\x00\x00', 0x2) pwritev(r5, &(0x7f0000000440)=[{&(0x7f0000000480)="a8", 0x1}], 0x1, 0x81003) ioctl$LOOP_CHANGE_FD(r4, 0x4c00, r5) bpf$OBJ_GET_MAP(0x7, &(0x7f00000003c0)={&(0x7f0000000400)='./bus\x00', 0x0, 0x8}, 0xfffffffffffffecd) r6 = socket$inet6(0xa, 0x5, 0x2) connect$inet6(r6, &(0x7f0000000100)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, [], 0x1, 0x0}, 0x7}, 0x1c) setsockopt$inet6_opts(r6, 0x29, 0x40, &(0x7f0000000580)=ANY=[@ANYBLOB="29000000060058500ba40000005cb4b47a560100800000000002099666c20b21e8080008ae760000ec57c052aa843ac0031e4118a1a847c0e60000f5f2b1c4310380181c143c6b10022ee4de0a000000000000ffffffffffffffe7000000000000000000000000000000ff0100bf149fd5d981d72437034f05bb5c068772b310642de912c2729c83435806a73bd382c1e56638572925f03a2433d2feb19191b1ce221d87a8cbf189d711a0ef2eaed469d21c80190041c740cec379894459989e2f8785c13d863ba14f65bc3bd8101f0cfb7f5e67fa4e73f689fd819518dd1d96077a1c9fc2785a5eef5cd8d2302698ad2dcd089f8fa767244aacc5dc9302d8a7fab0f001a61e1ca1a48054355a9b1e3270bd27b1403b52ef479615d0c0939c553a704f66d677af16dfecbfb5320a99420a0000d764266803c6a7b0c72f00272659cfef2e81009412b58e07beeb27a8bf1ad4fcc5a08ea4b456bbbfd7c7bf47d0b3b738c40000001446edbaa57fcfa668883e56d870f43f701e69c6c16c4b76b85cc37303c86eab33154584a1c27a1e9b969b0f2d376728e815a2108fd533b9752382f97f734bcc065e92a9f5344c7614709fc445439b200085d3c8152faeba62db44b3d549db580c5207c91d65c6e005362fcaa7e0b2b281dd305b04c5bf62a929cfd480ef3d6060b0f0c65896d2b2ca39c9fffd03b67b623848c33c835b5ca05823d2982541c1d70e77538a4bbbf4acd7af4d0aa11901b8277ab713f35670b92bd8a903c5fbbba6bf41235394542eadb289b197f53ead5486e302b0b58a409fd1cd670de73527dc855199f54df31caf014b1d7e1a700e6df2eaf0000000d5b0bbf521ed434070fb0b27214f63f54b1162c5f4a114b48efd0e7674939406495cd2814a411ec6f9f7f5e028256227f21754e9f1bfe1a6b697e0d0739a5851c547d0ae8b46db33d9022618f798e9ff12ef901eb87b609a0eb192c2e94cc858e1bd172dd459ec8c0e650d7abc0ebdb91bb7b084f2fb08f411c59712c815a0989cd717a776961e441388a3d3339453ebdac75f9a54cfdea59bb1af457ccf06560f4a799d158408b3adf7b8e1c72981f41a2f5bb392d63f267fe69f46aaf94b9d122fd2006115741b26bd86f6600e1a3cc85188c845305b48e6320cd6ae0c10ba2cbc1e9054633bba5486423287c70644763263eb9f116341e739ed22a7e3372aa0e57f142f662ad224481150459d4cd9a2dd246a957279fef9c68bec8fa60f56bed83588e4aacfd2b5ad7fcd0e79c8bb2133ebabe957bbf5d8fa052c352b8c621d8070de5406a5e4c0c52fff0b3bb102651d0ae7991098bd9872a351c6588a8aea64203d6b1f358a809423bbfcaee3be1c62af78dea87a0d9d562f3a279a2a6d09103ae18dac9ab9790e"], 0x1) sendmmsg(r6, &(0x7f00000092c0), 0x4ff, 0x0) mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x800003, 0x11, r3, 0x0) socketpair$unix(0x1, 0x800000000000003, 0x0, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x360) fcntl$setstatus(r4, 0x4, 0x44000) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r8, &(0x7f00000001c0), 0x526987c9) read(r7, &(0x7f0000000200)=""/250, 0x50c7e3e3) sendfile(r4, r5, 0x0, 0x80003) [ 238.862243] FAULT_INJECTION: forcing a failure. [ 238.862243] name failslab, interval 1, probability 0, space 0, times 0 [ 238.882360] CPU: 0 PID: 10982 Comm: syz-executor.3 Not tainted 4.14.139 #35 [ 238.889505] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 238.898865] Call Trace: [ 238.901465] dump_stack+0x138/0x19c [ 238.905117] should_fail.cold+0x10f/0x159 [ 238.909280] should_failslab+0xdb/0x130 [ 238.913263] kmem_cache_alloc+0x2d7/0x780 [ 238.917432] copy_process.part.0+0x444f/0x6a00 [ 238.922045] ? __cleanup_sighand+0x50/0x50 [ 238.926297] ? lock_downgrade+0x6e0/0x6e0 [ 238.930449] _do_fork+0x19e/0xce0 [ 238.933909] ? fork_idle+0x280/0x280 [ 238.937631] ? fput+0xd4/0x150 [ 238.940821] ? SyS_write+0x15e/0x230 [ 238.940841] SyS_clone+0x37/0x50 [ 238.940850] ? sys_vfork+0x30/0x30 [ 238.940864] do_syscall_64+0x1e8/0x640 [ 238.940876] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 238.947931] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 238.960137] RIP: 0033:0x459829 [ 238.968487] RSP: 002b:00007f664e1cac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 238.968499] RAX: ffffffffffffffda RBX: 00007f664e1cac90 RCX: 0000000000459829 [ 238.968505] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000 [ 238.968511] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000 [ 238.968516] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f664e1cb6d4 [ 238.968522] R13: 00000000004bfce6 R14: 00000000004d1a58 R15: 0000000000000004 15:14:50 executing program 3 (fault-call:6 fault-nth:35): mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) 15:14:50 executing program 4: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="11dca50d5e0bcfe47bf070") mkdir(&(0x7f0000000300)='./file0\x00', 0x0) r1 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm-control\x00', 0x404000, 0x0) getsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(0xffffffffffffffff, 0x84, 0x72, &(0x7f0000000040)={0x0, 0x800, 0x10}, &(0x7f00000000c0)=0xc) setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r1, 0x84, 0x72, &(0x7f0000000100)={r2, 0x8}, 0xc) getpeername$inet6(r1, &(0x7f0000000140)={0xa, 0x0, 0x0, @mcast1}, &(0x7f0000000180)=0x1c) ioctl$KDGKBMODE(r0, 0x4b44, &(0x7f00000001c0)) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') mount(&(0x7f00000002c0)=@sr0='/dev/sr0\x00', &(0x7f0000000340)='./file0\x00', &(0x7f0000000380)='debugfs\x00', 0x8000, &(0x7f0000000540)='devtmpfs\x00') r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x6, 0x12, r3, 0x0) write$capi20_data(r1, &(0x7f0000000240)=ANY=[@ANYBLOB="1000030087820000feffcff3f17c196f4f1e5a95b9be0548ed51c8f35c2da4c49d3ca92bc2c24386082e06fdfac6b1a86cbbb30e979b53db9f9cdb5497fbc161e17448ce945e7adb8ad391f54a2eb30fafa006df662c2f9d53023f5149f60a0f270ada8b1020299885c4c276"], 0x6c) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) socket$inet6_dccp(0xa, 0x6, 0x0) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) 15:14:50 executing program 1: socket$inet(0x10, 0x5, 0x3) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(r0, 0x8000000000000001, 0x10000000000005, &(0x7f0000000980)="000000009641d897e74754e15cafa0a8d7248293e5ee7f8e2dd6354dafd8e76a155d15a7f2872ef6c17ef451745a222065498562c09b44b262a3a3c76c9f5be0a2af258fa0b6a5dc7726bf25a563705d73ff7e1f556a82ae51f2ae06145b481c4be9c760d8289dc8cb601b1805223df02fa9ac38dc714a052b8acb3070d2d63e76195379b396da6c8d0b2fbc59c17f835516dad72c98358b4ff3cca04e1dda3b0f353c684773cb3813c3d2f0645e7dca7899dce3b933de4ef6e9f512cb5a1f4ad42c632645aff8", 0xc7) setsockopt$inet6_tcp_int(r0, 0x6, 0x100000004, &(0x7f0000000080)=0x2be, 0xfd3b) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x7ffffffffffffe, &(0x7f0000000000)=0x85, 0x4) setsockopt$sock_int(r1, 0x1, 0x2f, &(0x7f0000000040), 0x4) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) socket(0xffffffffffffffff, 0x6, 0x5) r2 = open(&(0x7f0000000080)='./bus\x00', 0x80000000141046, 0x0) close(r2) r3 = syz_open_dev$loop(&(0x7f0000000540)='/dev/loop#\x00', 0x0, 0x105082) r4 = memfd_create(&(0x7f0000000300)='4t\xb9L<\xf2\x00\x90\xcd\x00\x00\x00\x00\x00\x00', 0x2) pwritev(r4, &(0x7f0000000440)=[{&(0x7f0000000480)="a8", 0x1}], 0x1, 0x81003) ioctl$LOOP_CHANGE_FD(r3, 0x4c00, r4) bpf$OBJ_GET_MAP(0x7, &(0x7f00000003c0)={&(0x7f0000000400)='./bus\x00', 0x0, 0x8}, 0xfffffffffffffecd) r5 = socket$inet6(0xa, 0x5, 0x2) connect$inet6(r5, &(0x7f0000000100)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, [], 0x1, 0x0}, 0x7}, 0x1c) setsockopt$inet6_opts(r5, 0x29, 0x40, &(0x7f0000000580)=ANY=[@ANYBLOB="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"], 0x1) sendmmsg(r5, &(0x7f00000092c0), 0x4ff, 0x0) mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x800003, 0x11, r2, 0x0) socketpair$unix(0x1, 0x800000000000003, 0x0, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x360) fcntl$setstatus(r3, 0x4, 0x44000) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r7, &(0x7f00000001c0), 0x526987c9) read(r6, &(0x7f0000000200)=""/250, 0x50c7e3e3) sendfile(r3, r4, 0x0, 0x80003) [ 239.235994] x86/PAT: syz-executor.3:11017 freeing invalid memtype [mem 0x00001000-0x00001fff] [ 239.274344] FAULT_INJECTION: forcing a failure. [ 239.274344] name failslab, interval 1, probability 0, space 0, times 0 15:14:50 executing program 5: syz_mount_image$ntfs(&(0x7f0000000100)='ntfs\x00', &(0x7f00000000c0)='./bus\x00', 0x0, 0x2, &(0x7f0000001680)=[{0x0, 0x0, 0x401}, {&(0x7f0000001740)="3a77dd21387d6a624e139a664bf7ec507567aba5727ca2250cce6cea", 0x1c, 0x35}], 0x8100, 0x0) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./bus\x00', 0x7, 0x1, &(0x7f0000000080)=[{&(0x7f0000000140)="72f0e8ee065b2f6e73d8ec87763645254fc0ac235419ac44f2c45a5abb2d2751b4e79c110a9e6dc0ef12cd326e32d0f6ad5e328e9769f70b496c1dc683e1787ee8b23a48db640c8ec16aa9d3b637d99ab94c8b6fadd38b6fb49fb5c6f2b922e1ede52e616aeb80ffb407e50096ab190da799f9af6c68dcfaf1c2f086b671b922a5a250", 0x83, 0x2}], 0x0, &(0x7f0000000200)={[{@fragment_all='fragment=all'}, {@ssd_spread='ssd_spread'}, {@autodefrag='autodefrag'}, {@noacl='noacl'}, {@nossd='nossd'}, {@nodatasum='nodatasum'}, {@usebackuproot='usebackuproot'}, {@space_cache_v1='space_cache=v1'}], [{@defcontext={'defcontext', 0x3d, 'staff_u'}}]}) [ 239.324714] CPU: 0 PID: 11017 Comm: syz-executor.3 Not tainted 4.14.139 #35 [ 239.331881] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 239.341253] Call Trace: [ 239.343866] dump_stack+0x138/0x19c [ 239.347511] should_fail.cold+0x10f/0x159 [ 239.351698] should_failslab+0xdb/0x130 [ 239.355681] kmem_cache_alloc+0x47/0x780 [ 239.359731] ? __lock_is_held+0xb6/0x140 [ 239.363787] ? check_preemption_disabled+0x3c/0x250 [ 239.365762] x86/PAT: syz-executor.4:11028 freeing invalid memtype [mem 0x00001000-0x00001fff] [ 239.368808] anon_vma_clone+0xde/0x470 [ 239.368826] anon_vma_fork+0x87/0x4d0 [ 239.368844] copy_process.part.0+0x45e2/0x6a00 [ 239.368870] ? __cleanup_sighand+0x50/0x50 [ 239.393941] ? lock_downgrade+0x6e0/0x6e0 [ 239.398081] _do_fork+0x19e/0xce0 [ 239.401518] ? fork_idle+0x280/0x280 [ 239.405214] ? fput+0xd4/0x150 [ 239.408387] ? SyS_write+0x15e/0x230 [ 239.412082] SyS_clone+0x37/0x50 [ 239.415434] ? sys_vfork+0x30/0x30 [ 239.418967] do_syscall_64+0x1e8/0x640 [ 239.422831] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 239.427677] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 239.432863] RIP: 0033:0x459829 [ 239.436031] RSP: 002b:00007f664e1cac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 239.443717] RAX: ffffffffffffffda RBX: 00007f664e1cac90 RCX: 0000000000459829 [ 239.450968] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000 [ 239.458215] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000 [ 239.465487] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f664e1cb6d4 [ 239.472732] R13: 00000000004bfce6 R14: 00000000004d1a58 R15: 0000000000000004 15:14:50 executing program 2: socket$inet(0x10, 0x5, 0x3) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(r0, 0x8000000000000001, 0x10000000000005, &(0x7f0000000980)="000000009641d897e74754e15cafa0a8d7248293e5ee7f8e2dd6354dafd8e76a155d15a7f2872ef6c17ef451745a222065498562c09b44b262a3a3c76c9f5be0a2af258fa0b6a5dc7726bf25a563705d73ff7e1f556a82ae51f2ae06145b481c4be9c760d8289dc8cb601b1805223df02fa9ac38dc714a052b8acb3070d2d63e76195379b396da6c8d0b2fbc59c17f835516dad72c98358b4ff3cca04e1dda3b0f353c684773cb3813c3d2f0645e7dca7899dce3b933de4ef6e9f512cb5a1f4ad42c632645aff8", 0xc7) setsockopt$inet6_tcp_int(r0, 0x6, 0x100000004, &(0x7f0000000080)=0x2be, 0xfd3b) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) r2 = socket$inet6_udp(0xa, 0x2, 0x0) syncfs(r2) setsockopt$sock_int(r1, 0x1, 0x2f, &(0x7f0000000040), 0x4) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) socket(0xffffffffffffffff, 0x6, 0x5) r3 = open(&(0x7f0000000080)='./bus\x00', 0x80000000141046, 0x0) close(r3) r4 = syz_open_dev$loop(&(0x7f0000000540)='/dev/loop#\x00', 0x0, 0x105082) r5 = memfd_create(&(0x7f0000000300)='4t\xb9L<\xf2\x00\x90\xcd\x00\x00\x00\x00\x00\x00', 0x2) pwritev(r5, &(0x7f0000000440)=[{&(0x7f0000000480)="a8", 0x1}], 0x1, 0x81003) ioctl$LOOP_CHANGE_FD(r4, 0x4c00, r5) bpf$OBJ_GET_MAP(0x7, &(0x7f00000003c0)={&(0x7f0000000400)='./bus\x00', 0x0, 0x8}, 0xfffffffffffffecd) r6 = socket$inet6(0xa, 0x5, 0x2) connect$inet6(r6, &(0x7f0000000100)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, [], 0x1, 0x0}, 0x7}, 0x1c) setsockopt$inet6_opts(r6, 0x29, 0x40, &(0x7f0000000580)=ANY=[@ANYBLOB="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"], 0x1) sendmmsg(r6, &(0x7f00000092c0), 0x4ff, 0x0) mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x800003, 0x11, r3, 0x0) socketpair$unix(0x1, 0x800000000000003, 0x0, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x360) fcntl$setstatus(r4, 0x4, 0x44000) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r8, &(0x7f00000001c0), 0x526987c9) read(r7, &(0x7f0000000200)=""/250, 0x50c7e3e3) sendfile(r4, r5, 0x0, 0x80003) 15:14:50 executing program 4: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="11dca50d5e0bcfe47bf070") mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) getsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(r1, 0x84, 0x22, &(0x7f0000000000)={0x131, 0x2, 0x6, 0x8, 0x0}, &(0x7f0000000040)=0x10) setsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(r1, 0x84, 0x22, &(0x7f00000000c0)={0x4, 0x2, 0x3000000000000, 0x5, r2}, 0x10) fstat(r1, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) getresuid(&(0x7f0000000300)=0x0, &(0x7f0000000340), &(0x7f0000000380)) stat(&(0x7f0000000540)='./file0\x00', &(0x7f0000000580)={0x0, 0x0, 0x0, 0x0, 0x0}) mount$fuse(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='fuse\x00', 0x1000, &(0x7f0000000600)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0xc000}, 0x2c, {'user_id'}, 0x2c, {'group_id', 0x3d, r3}, 0x2c, {[{@default_permissions='default_permissions'}, {@max_read={'max_read', 0x3d, 0x10000}}, {@max_read={'max_read', 0x3d, 0xffffffff}}, {@max_read={'max_read', 0x3d, 0x2}}, {@max_read={'max_read', 0x3d, 0x6}}, {@allow_other='allow_other'}, {@allow_other='allow_other'}, {@default_permissions='default_permissions'}], [{@uid_gt={'uid>', r4}}, {@smackfshat={'smackfshat', 0x3d, 'user'}}, {@euid_eq={'euid', 0x3d, r5}}, {@func={'func', 0x3d, 'FILE_CHECK'}}, {@appraise_type='appraise_type=imasig'}, {@pcr={'pcr', 0x3d, 0x30}}, {@subj_user={'subj_user', 0x3d, 'mem\x00\x00\x00\x00\x00\x00\a\x13'}}, {@dont_hash='dont_hash'}, {@obj_type={'obj_type', 0x3d, 'trustedsystem'}}]}}) ioctl$SNDRV_CTL_IOCTL_PCM_INFO(r1, 0xc1205531, &(0x7f0000000900)={0x7fffffff, 0x4, 0xfff, 0x100, [], [], [], 0x7, 0xd8, 0x7, 0x3a, "3fd5ba6dfdbec87ec6d6349fad79e133"}) 15:14:50 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008910, &(0x7f00000000c0)="11dca50d5e0bcfe47bf070") r1 = openat$proc_capi20ncci(0xffffffffffffff9c, &(0x7f0000000100)='/proc/capi/capi20ncci\x00', 0x4000, 0x0) ioctl$VT_RESIZEX(r1, 0x560a, &(0x7f0000000180)={0x400, 0x65742f0b, 0x3, 0x1, 0xfffffffffffffff8, 0x4}) r2 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x28001, 0x0) write$P9_ROPEN(r2, &(0x7f0000000000)={0x18, 0x71, 0x2, {{0x80, 0x0, 0x3}, 0x9}}, 0x18) read$rfkill(r2, &(0x7f0000000040), 0x8) ioctl$int_in(r2, 0x800060c0045005, &(0x7f0000000140)=0x5ad) 15:14:50 executing program 1: socket$inet(0x10, 0x5, 0x3) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(r0, 0x8000000000000001, 0x10000000000005, &(0x7f0000000980)="000000009641d897e74754e15cafa0a8d7248293e5ee7f8e2dd6354dafd8e76a155d15a7f2872ef6c17ef451745a222065498562c09b44b262a3a3c76c9f5be0a2af258fa0b6a5dc7726bf25a563705d73ff7e1f556a82ae51f2ae06145b481c4be9c760d8289dc8cb601b1805223df02fa9ac38dc714a052b8acb3070d2d63e76195379b396da6c8d0b2fbc59c17f835516dad72c98358b4ff3cca04e1dda3b0f353c684773cb3813c3d2f0645e7dca7899dce3b933de4ef6e9f512cb5a1f4ad42c632645aff8", 0xc7) setsockopt$inet6_tcp_int(r0, 0x6, 0x100000004, &(0x7f0000000080)=0x2be, 0xfd3b) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x7ffffffffffffe, &(0x7f0000000000)=0x85, 0x4) setsockopt$sock_int(r1, 0x1, 0x2f, &(0x7f0000000040), 0x4) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) socket(0xffffffffffffffff, 0x6, 0x5) r2 = open(&(0x7f0000000080)='./bus\x00', 0x80000000141046, 0x0) close(r2) r3 = syz_open_dev$loop(&(0x7f0000000540)='/dev/loop#\x00', 0x0, 0x105082) r4 = memfd_create(&(0x7f0000000300)='4t\xb9L<\xf2\x00\x90\xcd\x00\x00\x00\x00\x00\x00', 0x2) pwritev(r4, &(0x7f0000000440)=[{&(0x7f0000000480)="a8", 0x1}], 0x1, 0x81003) ioctl$LOOP_CHANGE_FD(r3, 0x4c00, r4) bpf$OBJ_GET_MAP(0x7, &(0x7f00000003c0)={&(0x7f0000000400)='./bus\x00', 0x0, 0x8}, 0xfffffffffffffecd) r5 = socket$inet6(0xa, 0x5, 0x2) connect$inet6(r5, &(0x7f0000000100)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, [], 0x1, 0x0}, 0x7}, 0x1c) setsockopt$inet6_opts(r5, 0x29, 0x40, &(0x7f0000000580)=ANY=[@ANYBLOB="29000000060058500ba40000005cb4b47a560100800000000002099666c20b21e8080008ae760000ec57c052aa843ac0031e4118a1a847c0e60000f5f2b1c4310380181c143c6b10022ee4de0a000000000000ffffffffffffffe7000000000000000000000000000000ff0100bf149fd5d981d72437034f05bb5c068772b310642de912c2729c83435806a73bd382c1e56638572925f03a2433d2feb19191b1ce221d87a8cbf189d711a0ef2eaed469d21c80190041c740cec379894459989e2f8785c13d863ba14f65bc3bd8101f0cfb7f5e67fa4e73f689fd819518dd1d96077a1c9fc2785a5eef5cd8d2302698ad2dcd089f8fa767244aacc5dc9302d8a7fab0f001a61e1ca1a48054355a9b1e3270bd27b1403b52ef479615d0c0939c553a704f66d677af16dfecbfb5320a99420a0000d764266803c6a7b0c72f00272659cfef2e81009412b58e07beeb27a8bf1ad4fcc5a08ea4b456bbbfd7c7bf47d0b3b738c40000001446edbaa57fcfa668883e56d870f43f701e69c6c16c4b76b85cc37303c86eab33154584a1c27a1e9b969b0f2d376728e815a2108fd533b9752382f97f734bcc065e92a9f5344c7614709fc445439b200085d3c8152faeba62db44b3d549db580c5207c91d65c6e005362fcaa7e0b2b281dd305b04c5bf62a929cfd480ef3d6060b0f0c65896d2b2ca39c9fffd03b67b623848c33c835b5ca05823d2982541c1d70e77538a4bbbf4acd7af4d0aa11901b8277ab713f35670b92bd8a903c5fbbba6bf41235394542eadb289b197f53ead5486e302b0b58a409fd1cd670de73527dc855199f54df31caf014b1d7e1a700e6df2eaf0000000d5b0bbf521ed434070fb0b27214f63f54b1162c5f4a114b48efd0e7674939406495cd2814a411ec6f9f7f5e028256227f21754e9f1bfe1a6b697e0d0739a5851c547d0ae8b46db33d9022618f798e9ff12ef901eb87b609a0eb192c2e94cc858e1bd172dd459ec8c0e650d7abc0ebdb91bb7b084f2fb08f411c59712c815a0989cd717a776961e441388a3d3339453ebdac75f9a54cfdea59bb1af457ccf06560f4a799d158408b3adf7b8e1c72981f41a2f5bb392d63f267fe69f46aaf94b9d122fd2006115741b26bd86f6600e1a3cc85188c845305b48e6320cd6ae0c10ba2cbc1e9054633bba5486423287c70644763263eb9f116341e739ed22a7e3372aa0e57f142f662ad224481150459d4cd9a2dd246a957279fef9c68bec8fa60f56bed83588e4aacfd2b5ad7fcd0e79c8bb2133ebabe957bbf5d8fa052c352b8c621d8070de5406a5e4c0c52fff0b3bb102651d0ae7991098bd9872a351c6588a8aea64203d6b1f358a809423bbfcaee3be1c62af78dea87a0d9d562f3a279a2a6d09103ae18dac9ab9790e"], 0x1) sendmmsg(r5, &(0x7f00000092c0), 0x4ff, 0x0) mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x800003, 0x11, r2, 0x0) socketpair$unix(0x1, 0x800000000000003, 0x0, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x360) fcntl$setstatus(r3, 0x4, 0x44000) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r7, &(0x7f00000001c0), 0x526987c9) read(r6, &(0x7f0000000200)=""/250, 0x50c7e3e3) sendfile(r3, r4, 0x0, 0x80003) 15:14:50 executing program 5: syz_mount_image$ntfs(&(0x7f0000000100)='ntfs\x00', &(0x7f00000000c0)='./bus\x00', 0x0, 0x2, &(0x7f0000001680)=[{0x0, 0x0, 0x401}, {&(0x7f0000001740)="3a77dd21387d6a624e139a664bf7ec507567aba5727ca2250cce6cea", 0x1c, 0x35}], 0x8100, 0x0) r0 = syz_open_dev$media(&(0x7f0000000000)='/dev/media#\x00', 0x4, 0x10800) socket$inet6_udp(0xa, 0x2, 0x0) write$selinux_load(r0, &(0x7f0000000040)={0xf97cff8c, 0x8, 'SE Linux', "e7e478bc8dc7d5ca6c9caa3035df"}, 0x2b) [ 239.620538] x86/PAT: syz-executor.4:11052 freeing invalid memtype [mem 0x00001000-0x00001fff] [ 239.660608] x86/PAT: syz-executor.4:11052 freeing invalid memtype [mem 0x00001000-0x00001fff] 15:14:50 executing program 4: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="70cd070000007e0e86ab94") mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) 15:14:50 executing program 3 (fault-call:6 fault-nth:36): mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) 15:14:50 executing program 5: syz_mount_image$ntfs(&(0x7f0000000100)='ntfs\x00', &(0x7f00000000c0)='./bus\x00', 0x0, 0x2, &(0x7f0000001680)=[{0x0, 0x0, 0x401}, {&(0x7f0000001740)="3a77dd21387d6a624e139a664bf7ec507567aba5727ca2250cce6cea", 0x1c, 0x35}], 0x8100, 0x0) r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcs\x00', 0x0, 0x0) setsockopt$inet_dccp_buf(r0, 0x21, 0xc0, &(0x7f0000000140)="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", 0x1000) [ 239.841443] x86/PAT: syz-executor.3:11086 freeing invalid memtype [mem 0x00001000-0x00001fff] [ 239.861128] FAULT_INJECTION: forcing a failure. [ 239.861128] name failslab, interval 1, probability 0, space 0, times 0 [ 239.897411] CPU: 1 PID: 11086 Comm: syz-executor.3 Not tainted 4.14.139 #35 [ 239.904568] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 239.913928] Call Trace: [ 239.916531] dump_stack+0x138/0x19c [ 239.920176] should_fail.cold+0x10f/0x159 [ 239.924343] should_failslab+0xdb/0x130 [ 239.928332] kmem_cache_alloc+0x47/0x780 [ 239.932398] ? __lock_is_held+0xb6/0x140 [ 239.936465] ? check_preemption_disabled+0x3c/0x250 [ 239.941492] anon_vma_clone+0xde/0x470 [ 239.945395] anon_vma_fork+0x87/0x4d0 [ 239.949206] copy_process.part.0+0x45e2/0x6a00 [ 239.953810] ? __cleanup_sighand+0x50/0x50 [ 239.958058] ? lock_downgrade+0x6e0/0x6e0 [ 239.962218] _do_fork+0x19e/0xce0 [ 239.965686] ? fork_idle+0x280/0x280 [ 239.969412] ? fput+0xd4/0x150 [ 239.972601] ? SyS_write+0x15e/0x230 [ 239.976319] SyS_clone+0x37/0x50 [ 239.979689] ? sys_vfork+0x30/0x30 [ 239.983234] do_syscall_64+0x1e8/0x640 [ 239.987127] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 239.991977] entry_SYSCALL_64_after_hwframe+0x42/0xb7 15:14:51 executing program 4: socket$inet_udplite(0x2, 0x2, 0x88) mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) getsockopt$inet_sctp6_SCTP_LOCAL_AUTH_CHUNKS(r0, 0x84, 0x1b, &(0x7f0000000000)={0x0, 0xce, "85c9466393c8d5a551498d3706a5b453a467d942dff3f8f1d0b83e31161dbbf77600294acc812d634cc75a140284e4287c6b6147448ccce4c10feafcf7d047dc1cc938d4253d3138b6acd849ea8b8158066c68c36d7718c8d358b7fefd3bdbf221b2773888680cddfee67b1a967631269d981b93d41e5ec452ad4e86784d9d46bdfaa6dc3828edde34e030766155cb521706802545ff5a86402c6110736bd954a918baa21214aff2644476d3b7350f7d7805d96033130dae82d517b6b13a57d7a0337b5c4c8cc5d6ccc42bd188cd"}, &(0x7f0000000100)=0xd6) setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r0, 0x84, 0x75, &(0x7f0000000140)={r1, 0x800}, 0x8) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x1000000, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) 15:14:51 executing program 2: socket$inet(0x10, 0x5, 0x3) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(r0, 0x8000000000000001, 0x10000000000005, &(0x7f0000000980)="000000009641d897e74754e15cafa0a8d7248293e5ee7f8e2dd6354dafd8e76a155d15a7f2872ef6c17ef451745a222065498562c09b44b262a3a3c76c9f5be0a2af258fa0b6a5dc7726bf25a563705d73ff7e1f556a82ae51f2ae06145b481c4be9c760d8289dc8cb601b1805223df02fa9ac38dc714a052b8acb3070d2d63e76195379b396da6c8d0b2fbc59c17f835516dad72c98358b4ff3cca04e1dda3b0f353c684773cb3813c3d2f0645e7dca7899dce3b933de4ef6e9f512cb5a1f4ad42c632645aff8", 0xc7) setsockopt$inet6_tcp_int(r0, 0x6, 0x100000004, &(0x7f0000000080)=0x2be, 0xfd3b) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) r2 = socket$inet6_udp(0xa, 0x2, 0x0) syncfs(r2) setsockopt$sock_int(r1, 0x1, 0x2f, &(0x7f0000000040), 0x4) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) socket(0xffffffffffffffff, 0x6, 0x5) r3 = open(&(0x7f0000000080)='./bus\x00', 0x80000000141046, 0x0) close(r3) r4 = syz_open_dev$loop(&(0x7f0000000540)='/dev/loop#\x00', 0x0, 0x105082) r5 = memfd_create(&(0x7f0000000300)='4t\xb9L<\xf2\x00\x90\xcd\x00\x00\x00\x00\x00\x00', 0x2) pwritev(r5, &(0x7f0000000440)=[{&(0x7f0000000480)="a8", 0x1}], 0x1, 0x81003) ioctl$LOOP_CHANGE_FD(r4, 0x4c00, r5) bpf$OBJ_GET_MAP(0x7, &(0x7f00000003c0)={&(0x7f0000000400)='./bus\x00', 0x0, 0x8}, 0xfffffffffffffecd) r6 = socket$inet6(0xa, 0x5, 0x2) connect$inet6(r6, &(0x7f0000000100)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, [], 0x1, 0x0}, 0x7}, 0x1c) setsockopt$inet6_opts(r6, 0x29, 0x40, &(0x7f0000000580)=ANY=[@ANYBLOB="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"], 0x1) sendmmsg(r6, &(0x7f00000092c0), 0x4ff, 0x0) mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x800003, 0x11, r3, 0x0) socketpair$unix(0x1, 0x800000000000003, 0x0, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x360) fcntl$setstatus(r4, 0x4, 0x44000) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r8, &(0x7f00000001c0), 0x526987c9) read(r7, &(0x7f0000000200)=""/250, 0x50c7e3e3) sendfile(r4, r5, 0x0, 0x80003) 15:14:51 executing program 1: socket$inet(0x10, 0x5, 0x3) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(r0, 0x8000000000000001, 0x10000000000005, &(0x7f0000000980)="000000009641d897e74754e15cafa0a8d7248293e5ee7f8e2dd6354dafd8e76a155d15a7f2872ef6c17ef451745a222065498562c09b44b262a3a3c76c9f5be0a2af258fa0b6a5dc7726bf25a563705d73ff7e1f556a82ae51f2ae06145b481c4be9c760d8289dc8cb601b1805223df02fa9ac38dc714a052b8acb3070d2d63e76195379b396da6c8d0b2fbc59c17f835516dad72c98358b4ff3cca04e1dda3b0f353c684773cb3813c3d2f0645e7dca7899dce3b933de4ef6e9f512cb5a1f4ad42c632645aff8", 0xc7) setsockopt$inet6_tcp_int(r0, 0x6, 0x100000004, &(0x7f0000000080)=0x2be, 0xfd3b) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x7ffffffffffffe, &(0x7f0000000000)=0x85, 0x4) setsockopt$sock_int(r1, 0x1, 0x2f, &(0x7f0000000040), 0x4) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) socket(0xffffffffffffffff, 0x6, 0x5) r2 = open(&(0x7f0000000080)='./bus\x00', 0x80000000141046, 0x0) close(r2) r3 = syz_open_dev$loop(&(0x7f0000000540)='/dev/loop#\x00', 0x0, 0x105082) r4 = memfd_create(&(0x7f0000000300)='4t\xb9L<\xf2\x00\x90\xcd\x00\x00\x00\x00\x00\x00', 0x2) pwritev(r4, &(0x7f0000000440)=[{&(0x7f0000000480)="a8", 0x1}], 0x1, 0x81003) ioctl$LOOP_CHANGE_FD(r3, 0x4c00, r4) bpf$OBJ_GET_MAP(0x7, &(0x7f00000003c0)={&(0x7f0000000400)='./bus\x00', 0x0, 0x8}, 0xfffffffffffffecd) r5 = socket$inet6(0xa, 0x5, 0x2) connect$inet6(r5, &(0x7f0000000100)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, [], 0x1, 0x0}, 0x7}, 0x1c) setsockopt$inet6_opts(r5, 0x29, 0x40, &(0x7f0000000580)=ANY=[@ANYBLOB="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"], 0x1) sendmmsg(r5, &(0x7f00000092c0), 0x4ff, 0x0) mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x800003, 0x11, r2, 0x0) socketpair$unix(0x1, 0x800000000000003, 0x0, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x360) fcntl$setstatus(r3, 0x4, 0x44000) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r7, &(0x7f00000001c0), 0x526987c9) read(r6, &(0x7f0000000200)=""/250, 0x50c7e3e3) sendfile(r3, r4, 0x0, 0x80003) [ 239.997161] RIP: 0033:0x459829 [ 240.000347] RSP: 002b:00007f664e1cac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 240.008056] RAX: ffffffffffffffda RBX: 00007f664e1cac90 RCX: 0000000000459829 [ 240.015322] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000 [ 240.022592] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000 [ 240.029862] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f664e1cb6d4 [ 240.037129] R13: 00000000004bfce6 R14: 00000000004d1a58 R15: 0000000000000004 15:14:51 executing program 3 (fault-call:6 fault-nth:37): mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) 15:14:51 executing program 5: syz_mount_image$ntfs(&(0x7f0000000100)='ntfs\x00', &(0x7f00000000c0)='./bus\x00', 0x0, 0xaaaac4d, &(0x7f0000001680)=[{0x0, 0x0, 0x1}, {&(0x7f0000001740)="3a77dd21387d6a624e139a664bf7ec507567aba5727ca2250cce6cea", 0x1c, 0xfffffffffffffffe}], 0x0, 0x0) r0 = syz_open_dev$sndctrl(&(0x7f0000000000)='/dev/snd/controlC#\x00', 0xab, 0x2400) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x5, &(0x7f0000000040)='ntfs\x00'}, 0x30) ioctl$SNDRV_CTL_IOCTL_ELEM_REPLACE(r0, 0xc1105518, &(0x7f0000000180)={{0x8, 0x6, 0x85b, 0xcec7, '\x00', 0x5}, 0x3, 0x30, 0x401, r1, 0x1, 0xd268, 'syz0\x00', &(0x7f0000000140)=['userselinux\x00'], 0xc, [], [0xff, 0x80, 0x100000000, 0x6]}) r3 = syz_open_dev$admmidi(&(0x7f00000002c0)='/dev/admmidi#\x00', 0x6, 0x82080) ioctl$sock_bt_bnep_BNEPCONNADD(r3, 0x400442c8, &(0x7f0000000300)={r2, 0x7fff, 0x8001, "c728d24f9cdb68066c7604f3d7dadde90c7925fd3418cdd4fd73bec55a57e01b4d6b17f9a1378630762e42807f7ea1540df45780c0be65647ba07ce0e01ff44b044b9852ca9ccca2654ef2974987485f7abd412d8f87bd64ce1397fe0f366b"}) getsockopt$inet_sctp_SCTP_SOCKOPT_PEELOFF(r3, 0x84, 0x66, &(0x7f0000000380)={0x0}, &(0x7f00000003c0)=0x8) getsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(r3, 0x84, 0x6, &(0x7f0000000400)={r4, @in={{0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x20}}}}, &(0x7f00000004c0)=0x159) [ 240.184346] FAULT_INJECTION: forcing a failure. [ 240.184346] name failslab, interval 1, probability 0, space 0, times 0 [ 240.222343] CPU: 1 PID: 11119 Comm: syz-executor.3 Not tainted 4.14.139 #35 [ 240.229514] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 240.238882] Call Trace: [ 240.241481] dump_stack+0x138/0x19c [ 240.245135] should_fail.cold+0x10f/0x159 [ 240.249295] ? anon_vma_clone+0xde/0x470 [ 240.253367] should_failslab+0xdb/0x130 [ 240.257343] kmem_cache_alloc+0x47/0x780 [ 240.261413] ? anon_vma_chain_link+0x142/0x1a0 [ 240.266003] anon_vma_clone+0xde/0x470 [ 240.269897] anon_vma_fork+0x87/0x4d0 [ 240.273717] copy_process.part.0+0x45e2/0x6a00 [ 240.278345] ? __cleanup_sighand+0x50/0x50 [ 240.282584] ? lock_downgrade+0x6e0/0x6e0 [ 240.286740] _do_fork+0x19e/0xce0 [ 240.290201] ? fork_idle+0x280/0x280 [ 240.293924] ? fput+0xd4/0x150 [ 240.297122] ? SyS_write+0x15e/0x230 [ 240.300840] SyS_clone+0x37/0x50 [ 240.304208] ? sys_vfork+0x30/0x30 [ 240.307764] do_syscall_64+0x1e8/0x640 [ 240.311655] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 240.316522] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 240.321712] RIP: 0033:0x459829 [ 240.324893] RSP: 002b:00007f664e1cac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 15:14:51 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070") r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x28001, 0x0) read$rfkill(r1, &(0x7f0000000000), 0x3) 15:14:51 executing program 4: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="11dca50d5e0bcfe47bf070") mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) ioctl$KVM_GET_MSRS(r1, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{}]}) [ 240.332589] RAX: ffffffffffffffda RBX: 00007f664e1cac90 RCX: 0000000000459829 [ 240.332595] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000 [ 240.332601] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000 [ 240.332606] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f664e1cb6d4 [ 240.332612] R13: 00000000004bfce6 R14: 00000000004d1a58 R15: 0000000000000004 [ 240.355082] ntfs: (device loop5): read_ntfs_boot_sector(): Primary boot sector is invalid. 15:14:51 executing program 1: socket$inet(0x10, 0x5, 0x3) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(r0, 0x8000000000000001, 0x10000000000005, &(0x7f0000000980)="000000009641d897e74754e15cafa0a8d7248293e5ee7f8e2dd6354dafd8e76a155d15a7f2872ef6c17ef451745a222065498562c09b44b262a3a3c76c9f5be0a2af258fa0b6a5dc7726bf25a563705d73ff7e1f556a82ae51f2ae06145b481c4be9c760d8289dc8cb601b1805223df02fa9ac38dc714a052b8acb3070d2d63e76195379b396da6c8d0b2fbc59c17f835516dad72c98358b4ff3cca04e1dda3b0f353c684773cb3813c3d2f0645e7dca7899dce3b933de4ef6e9f512cb5a1f4ad42c632645aff8", 0xc7) setsockopt$inet6_tcp_int(r0, 0x6, 0x100000004, &(0x7f0000000080)=0x2be, 0xfd3b) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) syncfs(0xffffffffffffffff) setsockopt$inet_tcp_int(r1, 0x6, 0x7ffffffffffffe, &(0x7f0000000000)=0x85, 0x4) setsockopt$sock_int(r1, 0x1, 0x2f, &(0x7f0000000040), 0x4) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) socket(0xffffffffffffffff, 0x6, 0x5) r2 = open(&(0x7f0000000080)='./bus\x00', 0x80000000141046, 0x0) close(r2) r3 = syz_open_dev$loop(&(0x7f0000000540)='/dev/loop#\x00', 0x0, 0x105082) r4 = memfd_create(&(0x7f0000000300)='4t\xb9L<\xf2\x00\x90\xcd\x00\x00\x00\x00\x00\x00', 0x2) pwritev(r4, &(0x7f0000000440)=[{&(0x7f0000000480)="a8", 0x1}], 0x1, 0x81003) ioctl$LOOP_CHANGE_FD(r3, 0x4c00, r4) bpf$OBJ_GET_MAP(0x7, &(0x7f00000003c0)={&(0x7f0000000400)='./bus\x00', 0x0, 0x8}, 0xfffffffffffffecd) r5 = socket$inet6(0xa, 0x5, 0x2) connect$inet6(r5, &(0x7f0000000100)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, [], 0x1, 0x0}, 0x7}, 0x1c) setsockopt$inet6_opts(r5, 0x29, 0x40, &(0x7f0000000580)=ANY=[@ANYBLOB="29000000060058500ba40000005cb4b47a560100800000000002099666c20b21e8080008ae760000ec57c052aa843ac0031e4118a1a847c0e60000f5f2b1c4310380181c143c6b10022ee4de0a000000000000ffffffffffffffe7000000000000000000000000000000ff0100bf149fd5d981d72437034f05bb5c068772b310642de912c2729c83435806a73bd382c1e56638572925f03a2433d2feb19191b1ce221d87a8cbf189d711a0ef2eaed469d21c80190041c740cec379894459989e2f8785c13d863ba14f65bc3bd8101f0cfb7f5e67fa4e73f689fd819518dd1d96077a1c9fc2785a5eef5cd8d2302698ad2dcd089f8fa767244aacc5dc9302d8a7fab0f001a61e1ca1a48054355a9b1e3270bd27b1403b52ef479615d0c0939c553a704f66d677af16dfecbfb5320a99420a0000d764266803c6a7b0c72f00272659cfef2e81009412b58e07beeb27a8bf1ad4fcc5a08ea4b456bbbfd7c7bf47d0b3b738c40000001446edbaa57fcfa668883e56d870f43f701e69c6c16c4b76b85cc37303c86eab33154584a1c27a1e9b969b0f2d376728e815a2108fd533b9752382f97f734bcc065e92a9f5344c7614709fc445439b200085d3c8152faeba62db44b3d549db580c5207c91d65c6e005362fcaa7e0b2b281dd305b04c5bf62a929cfd480ef3d6060b0f0c65896d2b2ca39c9fffd03b67b623848c33c835b5ca05823d2982541c1d70e77538a4bbbf4acd7af4d0aa11901b8277ab713f35670b92bd8a903c5fbbba6bf41235394542eadb289b197f53ead5486e302b0b58a409fd1cd670de73527dc855199f54df31caf014b1d7e1a700e6df2eaf0000000d5b0bbf521ed434070fb0b27214f63f54b1162c5f4a114b48efd0e7674939406495cd2814a411ec6f9f7f5e028256227f21754e9f1bfe1a6b697e0d0739a5851c547d0ae8b46db33d9022618f798e9ff12ef901eb87b609a0eb192c2e94cc858e1bd172dd459ec8c0e650d7abc0ebdb91bb7b084f2fb08f411c59712c815a0989cd717a776961e441388a3d3339453ebdac75f9a54cfdea59bb1af457ccf06560f4a799d158408b3adf7b8e1c72981f41a2f5bb392d63f267fe69f46aaf94b9d122fd2006115741b26bd86f6600e1a3cc85188c845305b48e6320cd6ae0c10ba2cbc1e9054633bba5486423287c70644763263eb9f116341e739ed22a7e3372aa0e57f142f662ad224481150459d4cd9a2dd246a957279fef9c68bec8fa60f56bed83588e4aacfd2b5ad7fcd0e79c8bb2133ebabe957bbf5d8fa052c352b8c621d8070de5406a5e4c0c52fff0b3bb102651d0ae7991098bd9872a351c6588a8aea64203d6b1f358a809423bbfcaee3be1c62af78dea87a0d9d562f3a279a2a6d09103ae18dac9ab9790e"], 0x1) sendmmsg(r5, &(0x7f00000092c0), 0x4ff, 0x0) mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x800003, 0x11, r2, 0x0) socketpair$unix(0x1, 0x800000000000003, 0x0, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x360) fcntl$setstatus(r3, 0x4, 0x44000) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r7, &(0x7f00000001c0), 0x526987c9) read(r6, &(0x7f0000000200)=""/250, 0x50c7e3e3) sendfile(r3, r4, 0x0, 0x80003) [ 240.392742] ntfs: (device loop5): read_ntfs_boot_sector(): Mount option errors=recover not used. Aborting without trying to recover. [ 240.425161] x86/PAT: syz-executor.4:11136 freeing invalid memtype [mem 0x00001000-0x00001fff] [ 240.434774] ntfs: (device loop5): ntfs_fill_super(): Not an NTFS volume. [ 240.453678] x86/PAT: syz-executor.4:11136 freeing invalid memtype [mem 0x00001000-0x00001fff] 15:14:51 executing program 4: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x80000, 0x0) ioctl$UFFDIO_ZEROPAGE(r1, 0xc020aa04, &(0x7f00000000c0)={{&(0x7f0000ffd000/0x1000)=nil, 0x1000}, 0x1}) ioctl(r0, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070") mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) 15:14:51 executing program 2: socket$inet(0x10, 0x5, 0x3) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(r0, 0x8000000000000001, 0x10000000000005, &(0x7f0000000980)="000000009641d897e74754e15cafa0a8d7248293e5ee7f8e2dd6354dafd8e76a155d15a7f2872ef6c17ef451745a222065498562c09b44b262a3a3c76c9f5be0a2af258fa0b6a5dc7726bf25a563705d73ff7e1f556a82ae51f2ae06145b481c4be9c760d8289dc8cb601b1805223df02fa9ac38dc714a052b8acb3070d2d63e76195379b396da6c8d0b2fbc59c17f835516dad72c98358b4ff3cca04e1dda3b0f353c684773cb3813c3d2f0645e7dca7899dce3b933de4ef6e9f512cb5a1f4ad42c632645aff8", 0xc7) setsockopt$inet6_tcp_int(r0, 0x6, 0x100000004, &(0x7f0000000080)=0x2be, 0xfd3b) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) r2 = socket$inet6_udp(0xa, 0x2, 0x0) syncfs(r2) setsockopt$sock_int(r1, 0x1, 0x2f, &(0x7f0000000040), 0x4) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) socket(0xffffffffffffffff, 0x6, 0x5) r3 = open(&(0x7f0000000080)='./bus\x00', 0x80000000141046, 0x0) close(r3) r4 = syz_open_dev$loop(&(0x7f0000000540)='/dev/loop#\x00', 0x0, 0x105082) r5 = memfd_create(&(0x7f0000000300)='4t\xb9L<\xf2\x00\x90\xcd\x00\x00\x00\x00\x00\x00', 0x2) pwritev(r5, &(0x7f0000000440)=[{&(0x7f0000000480)="a8", 0x1}], 0x1, 0x81003) ioctl$LOOP_CHANGE_FD(r4, 0x4c00, r5) bpf$OBJ_GET_MAP(0x7, &(0x7f00000003c0)={&(0x7f0000000400)='./bus\x00', 0x0, 0x8}, 0xfffffffffffffecd) r6 = socket$inet6(0xa, 0x5, 0x2) connect$inet6(r6, &(0x7f0000000100)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, [], 0x1, 0x0}, 0x7}, 0x1c) setsockopt$inet6_opts(r6, 0x29, 0x40, &(0x7f0000000580)=ANY=[@ANYBLOB="29000000060058500ba40000005cb4b47a560100800000000002099666c20b21e8080008ae760000ec57c052aa843ac0031e4118a1a847c0e60000f5f2b1c4310380181c143c6b10022ee4de0a000000000000ffffffffffffffe7000000000000000000000000000000ff0100bf149fd5d981d72437034f05bb5c068772b310642de912c2729c83435806a73bd382c1e56638572925f03a2433d2feb19191b1ce221d87a8cbf189d711a0ef2eaed469d21c80190041c740cec379894459989e2f8785c13d863ba14f65bc3bd8101f0cfb7f5e67fa4e73f689fd819518dd1d96077a1c9fc2785a5eef5cd8d2302698ad2dcd089f8fa767244aacc5dc9302d8a7fab0f001a61e1ca1a48054355a9b1e3270bd27b1403b52ef479615d0c0939c553a704f66d677af16dfecbfb5320a99420a0000d764266803c6a7b0c72f00272659cfef2e81009412b58e07beeb27a8bf1ad4fcc5a08ea4b456bbbfd7c7bf47d0b3b738c40000001446edbaa57fcfa668883e56d870f43f701e69c6c16c4b76b85cc37303c86eab33154584a1c27a1e9b969b0f2d376728e815a2108fd533b9752382f97f734bcc065e92a9f5344c7614709fc445439b200085d3c8152faeba62db44b3d549db580c5207c91d65c6e005362fcaa7e0b2b281dd305b04c5bf62a929cfd480ef3d6060b0f0c65896d2b2ca39c9fffd03b67b623848c33c835b5ca05823d2982541c1d70e77538a4bbbf4acd7af4d0aa11901b8277ab713f35670b92bd8a903c5fbbba6bf41235394542eadb289b197f53ead5486e302b0b58a409fd1cd670de73527dc855199f54df31caf014b1d7e1a700e6df2eaf0000000d5b0bbf521ed434070fb0b27214f63f54b1162c5f4a114b48efd0e7674939406495cd2814a411ec6f9f7f5e028256227f21754e9f1bfe1a6b697e0d0739a5851c547d0ae8b46db33d9022618f798e9ff12ef901eb87b609a0eb192c2e94cc858e1bd172dd459ec8c0e650d7abc0ebdb91bb7b084f2fb08f411c59712c815a0989cd717a776961e441388a3d3339453ebdac75f9a54cfdea59bb1af457ccf06560f4a799d158408b3adf7b8e1c72981f41a2f5bb392d63f267fe69f46aaf94b9d122fd2006115741b26bd86f6600e1a3cc85188c845305b48e6320cd6ae0c10ba2cbc1e9054633bba5486423287c70644763263eb9f116341e739ed22a7e3372aa0e57f142f662ad224481150459d4cd9a2dd246a957279fef9c68bec8fa60f56bed83588e4aacfd2b5ad7fcd0e79c8bb2133ebabe957bbf5d8fa052c352b8c621d8070de5406a5e4c0c52fff0b3bb102651d0ae7991098bd9872a351c6588a8aea64203d6b1f358a809423bbfcaee3be1c62af78dea87a0d9d562f3a279a2a6d09103ae18dac9ab9790e"], 0x1) sendmmsg(r6, &(0x7f00000092c0), 0x4ff, 0x0) mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x800003, 0x11, r3, 0x0) socketpair$unix(0x1, 0x800000000000003, 0x0, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x360) fcntl$setstatus(r4, 0x4, 0x44000) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r8, &(0x7f00000001c0), 0x526987c9) read(r7, &(0x7f0000000200)=""/250, 0x50c7e3e3) sendfile(r4, r5, 0x0, 0x80003) 15:14:51 executing program 5: r0 = syz_open_dev$media(&(0x7f0000000000)='/dev/media#\x00', 0x80000001, 0x20000) ioctl$VHOST_SET_LOG_BASE(r0, 0x4008af04, &(0x7f0000000080)=&(0x7f0000000040)) syz_mount_image$ntfs(&(0x7f0000000100)='ntfs\x00', &(0x7f00000000c0)='./bus\x00', 0x0, 0x2, &(0x7f0000000140)=[{0x0, 0x0, 0x401}, {&(0x7f0000001740)="3a77dd21387d6a624e139a664bf7ec507567aba5727ca2250cce6cea", 0x1c, 0x35}], 0x11018, 0x0) openat$selinux_avc_cache_threshold(0xffffffffffffff9c, &(0x7f0000000180)='/selinux/avc/cache_threshold\x00', 0x2, 0x0) 15:14:51 executing program 3 (fault-call:6 fault-nth:38): mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) [ 240.672923] x86/PAT: syz-executor.4:11167 freeing invalid memtype [mem 0x00001000-0x00001fff] 15:14:51 executing program 1: socket$inet(0x10, 0x5, 0x3) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(r0, 0x8000000000000001, 0x10000000000005, &(0x7f0000000980)="000000009641d897e74754e15cafa0a8d7248293e5ee7f8e2dd6354dafd8e76a155d15a7f2872ef6c17ef451745a222065498562c09b44b262a3a3c76c9f5be0a2af258fa0b6a5dc7726bf25a563705d73ff7e1f556a82ae51f2ae06145b481c4be9c760d8289dc8cb601b1805223df02fa9ac38dc714a052b8acb3070d2d63e76195379b396da6c8d0b2fbc59c17f835516dad72c98358b4ff3cca04e1dda3b0f353c684773cb3813c3d2f0645e7dca7899dce3b933de4ef6e9f512cb5a1f4ad42c632645aff8", 0xc7) setsockopt$inet6_tcp_int(r0, 0x6, 0x100000004, &(0x7f0000000080)=0x2be, 0xfd3b) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) syncfs(0xffffffffffffffff) setsockopt$inet_tcp_int(r1, 0x6, 0x7ffffffffffffe, &(0x7f0000000000)=0x85, 0x4) setsockopt$sock_int(r1, 0x1, 0x2f, &(0x7f0000000040), 0x4) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) socket(0xffffffffffffffff, 0x6, 0x5) r2 = open(&(0x7f0000000080)='./bus\x00', 0x80000000141046, 0x0) close(r2) r3 = syz_open_dev$loop(&(0x7f0000000540)='/dev/loop#\x00', 0x0, 0x105082) r4 = memfd_create(&(0x7f0000000300)='4t\xb9L<\xf2\x00\x90\xcd\x00\x00\x00\x00\x00\x00', 0x2) pwritev(r4, &(0x7f0000000440)=[{&(0x7f0000000480)="a8", 0x1}], 0x1, 0x81003) ioctl$LOOP_CHANGE_FD(r3, 0x4c00, r4) bpf$OBJ_GET_MAP(0x7, &(0x7f00000003c0)={&(0x7f0000000400)='./bus\x00', 0x0, 0x8}, 0xfffffffffffffecd) r5 = socket$inet6(0xa, 0x5, 0x2) connect$inet6(r5, &(0x7f0000000100)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, [], 0x1, 0x0}, 0x7}, 0x1c) setsockopt$inet6_opts(r5, 0x29, 0x40, &(0x7f0000000580)=ANY=[@ANYBLOB="29000000060058500ba40000005cb4b47a560100800000000002099666c20b21e8080008ae760000ec57c052aa843ac0031e4118a1a847c0e60000f5f2b1c4310380181c143c6b10022ee4de0a000000000000ffffffffffffffe7000000000000000000000000000000ff0100bf149fd5d981d72437034f05bb5c068772b310642de912c2729c83435806a73bd382c1e56638572925f03a2433d2feb19191b1ce221d87a8cbf189d711a0ef2eaed469d21c80190041c740cec379894459989e2f8785c13d863ba14f65bc3bd8101f0cfb7f5e67fa4e73f689fd819518dd1d96077a1c9fc2785a5eef5cd8d2302698ad2dcd089f8fa767244aacc5dc9302d8a7fab0f001a61e1ca1a48054355a9b1e3270bd27b1403b52ef479615d0c0939c553a704f66d677af16dfecbfb5320a99420a0000d764266803c6a7b0c72f00272659cfef2e81009412b58e07beeb27a8bf1ad4fcc5a08ea4b456bbbfd7c7bf47d0b3b738c40000001446edbaa57fcfa668883e56d870f43f701e69c6c16c4b76b85cc37303c86eab33154584a1c27a1e9b969b0f2d376728e815a2108fd533b9752382f97f734bcc065e92a9f5344c7614709fc445439b200085d3c8152faeba62db44b3d549db580c5207c91d65c6e005362fcaa7e0b2b281dd305b04c5bf62a929cfd480ef3d6060b0f0c65896d2b2ca39c9fffd03b67b623848c33c835b5ca05823d2982541c1d70e77538a4bbbf4acd7af4d0aa11901b8277ab713f35670b92bd8a903c5fbbba6bf41235394542eadb289b197f53ead5486e302b0b58a409fd1cd670de73527dc855199f54df31caf014b1d7e1a700e6df2eaf0000000d5b0bbf521ed434070fb0b27214f63f54b1162c5f4a114b48efd0e7674939406495cd2814a411ec6f9f7f5e028256227f21754e9f1bfe1a6b697e0d0739a5851c547d0ae8b46db33d9022618f798e9ff12ef901eb87b609a0eb192c2e94cc858e1bd172dd459ec8c0e650d7abc0ebdb91bb7b084f2fb08f411c59712c815a0989cd717a776961e441388a3d3339453ebdac75f9a54cfdea59bb1af457ccf06560f4a799d158408b3adf7b8e1c72981f41a2f5bb392d63f267fe69f46aaf94b9d122fd2006115741b26bd86f6600e1a3cc85188c845305b48e6320cd6ae0c10ba2cbc1e9054633bba5486423287c70644763263eb9f116341e739ed22a7e3372aa0e57f142f662ad224481150459d4cd9a2dd246a957279fef9c68bec8fa60f56bed83588e4aacfd2b5ad7fcd0e79c8bb2133ebabe957bbf5d8fa052c352b8c621d8070de5406a5e4c0c52fff0b3bb102651d0ae7991098bd9872a351c6588a8aea64203d6b1f358a809423bbfcaee3be1c62af78dea87a0d9d562f3a279a2a6d09103ae18dac9ab9790e"], 0x1) sendmmsg(r5, &(0x7f00000092c0), 0x4ff, 0x0) mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x800003, 0x11, r2, 0x0) socketpair$unix(0x1, 0x800000000000003, 0x0, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x360) fcntl$setstatus(r3, 0x4, 0x44000) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r7, &(0x7f00000001c0), 0x526987c9) read(r6, &(0x7f0000000200)=""/250, 0x50c7e3e3) sendfile(r3, r4, 0x0, 0x80003) 15:14:51 executing program 4: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="11dca50d5e0bcfe47bf070") mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x808400, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0) getsockopt$ARPT_SO_GET_INFO(r1, 0x0, 0x60, &(0x7f0000000000)={'filter\x00'}, &(0x7f00000000c0)=0x44) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) ioctl$UI_SET_FFBIT(r1, 0x4004556b, 0x4) 15:14:51 executing program 5: syz_mount_image$ntfs(&(0x7f0000000100)='ntfs\x00', &(0x7f00000000c0)='./bus\x00', 0x0, 0x2, &(0x7f0000001680)=[{0x0, 0x0, 0x401}, {&(0x7f0000001740)="3a77dd21387d6a624e139a664bf7ec507567aba5727ca2250cce6cea", 0x1c, 0x35}], 0x8100, 0x0) r0 = openat$null(0xffffffffffffff9c, &(0x7f0000001540)='/dev/null\x00', 0x40000, 0x0) getpeername$packet(r0, &(0x7f00000015c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000001600)=0x14) bind$packet(r0, &(0x7f0000001640)={0x11, 0x7, r1, 0x1, 0x9, 0x6, @dev={[], 0x1a}}, 0x14) ioctl$PPPIOCSMAXCID(r0, 0x40047451, &(0x7f0000001580)=0x4) openat$selinux_policy(0xffffffffffffff9c, &(0x7f00000016c0)='/selinux/policy\x00', 0x0, 0x0) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./bus\x00', 0x8000, 0x7, &(0x7f0000001440)=[{&(0x7f0000000140)="9a25d837964b11ec2ccab66bf35951ee29d2aacc57896d0b1c04fe6c6f496e998c574d5aa563b9b7c79dda35f8ad7dddfbe50215e3c2d233201ba3533672c6a9a3ecee95623dd515bd8f974776f3d75c937fddd747f9c1727c499ea40841f98b6d6cb0779a6e6b7967534c1adb374b112400c124cb693584490df3b7351a5b563e609fa02c29e8792486fce2da4c0a32275a5cd0addd11f895347525221f2fdd052b40557789280374ab919e3681215edc9e1ffcb275bbc0e4185e5f1b5b994269a1b99139dc515ee8873902c5ca359ea452699a62e91dbfae74898f56a22cb1cd6aa2d542", 0xe5, 0x1}, {&(0x7f0000000080)="3dc6e1320018aa98de19ff4f67e30b898df9f1e37c138f9a78af66a432665f69bd4dce3ac3833252", 0x28, 0x5c8}, {&(0x7f0000000240)="b3a8ce442016e3512ba5924d7a2daff0c9ed3ae06442b12523771d2b187bb2d88d9dd146ea4dae358d6effc280f146cebc4df20367acd690cd5cd2225dabdf74030ec8d2c0db2887ca1cd687bced413d134b14c6f08794b54d12e49f3d3b36977c7085a5eea22360e8892947464802a40cfd37c6f1bee1d8b951b05218a6be00e6b840c72104953b3dcf22b95fdafcce80208e9203d50a782fbab4f6b30e7299f1107158aaf82e6b9c65b8fc7082d3be71b24623fee650d0", 0xb8, 0x2}, {&(0x7f0000000300)="7ffee19a8ef1f363b019a1b3fba619f6a04f3880cc8488477a990c63d1a0ade34858095c6970bdf9e77672", 0x2b, 0x100}, {&(0x7f0000000340)="27768a48ba3a4e11fb0f1ccafc4733143b9d1916e3782cc866d71f3ffa5a6a5dda9f56c067135c542c42cf924cc4d2075d77d1d27c73b59d896c82e034a0416543ec4a1777ffed61f27cdae8a6b35673cb3bfef7e77cf927898e510430622ce1729f17649593e720d5f42b36afd6a0a2622095ea4d6d15b0bfd435e8b474785587bad265f69408a4cc9b", 0x8a, 0x6}, {&(0x7f0000000400)="5b53fbb6ee77e0479a8f99965d7a381e9e68fe56aeb919c05d681cf65aee8d3f0a9e4476f197", 0x26, 0x20}, {&(0x7f0000000440)="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", 0x1000, 0x6e7}], 0x8000, &(0x7f0000001500)={[{@autodefrag='autodefrag'}, {@discard='discard'}, {@fragment_data='fragment=data'}], [{@audit='audit'}, {@obj_type={'obj_type', 0x3d, 'ntfs\x00'}}, {@measure='measure'}]}) [ 240.764656] x86/PAT: syz-executor.3:11177 freeing invalid memtype [mem 0x00001000-0x00001fff] [ 240.776879] FAULT_INJECTION: forcing a failure. [ 240.776879] name failslab, interval 1, probability 0, space 0, times 0 [ 240.819411] CPU: 1 PID: 11177 Comm: syz-executor.3 Not tainted 4.14.139 #35 [ 240.826582] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 240.835942] Call Trace: [ 240.838622] dump_stack+0x138/0x19c [ 240.842245] should_fail.cold+0x10f/0x159 [ 240.846390] should_failslab+0xdb/0x130 [ 240.850374] kmem_cache_alloc+0x2d7/0x780 [ 240.854529] ? anon_vma_clone+0x310/0x470 [ 240.858681] anon_vma_fork+0xe9/0x4d0 [ 240.862490] copy_process.part.0+0x45e2/0x6a00 [ 240.867097] ? __cleanup_sighand+0x50/0x50 [ 240.871328] ? lock_downgrade+0x6e0/0x6e0 [ 240.875473] _do_fork+0x19e/0xce0 [ 240.878916] ? fork_idle+0x280/0x280 [ 240.882625] ? fput+0xd4/0x150 [ 240.885803] ? SyS_write+0x15e/0x230 [ 240.889502] SyS_clone+0x37/0x50 [ 240.892842] ? sys_vfork+0x30/0x30 [ 240.896371] do_syscall_64+0x1e8/0x640 [ 240.900242] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 240.905069] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 240.910233] RIP: 0033:0x459829 [ 240.913401] RSP: 002b:00007f664e1cac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 240.921096] RAX: ffffffffffffffda RBX: 00007f664e1cac90 RCX: 0000000000459829 [ 240.928363] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000 [ 240.935633] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000 [ 240.942904] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f664e1cb6d4 [ 240.950169] R13: 00000000004bfce6 R14: 00000000004d1a58 R15: 0000000000000004 15:14:52 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070") r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x27fff, 0x0) read$rfkill(r1, &(0x7f0000000000), 0x3) ioctl$int_in(r1, 0x800060c0045005, &(0x7f0000000140)=0x5ad) 15:14:52 executing program 3 (fault-call:6 fault-nth:39): mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) 15:14:52 executing program 2: socket$inet(0x10, 0x5, 0x3) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(r0, 0x8000000000000001, 0x10000000000005, &(0x7f0000000980)="000000009641d897e74754e15cafa0a8d7248293e5ee7f8e2dd6354dafd8e76a155d15a7f2872ef6c17ef451745a222065498562c09b44b262a3a3c76c9f5be0a2af258fa0b6a5dc7726bf25a563705d73ff7e1f556a82ae51f2ae06145b481c4be9c760d8289dc8cb601b1805223df02fa9ac38dc714a052b8acb3070d2d63e76195379b396da6c8d0b2fbc59c17f835516dad72c98358b4ff3cca04e1dda3b0f353c684773cb3813c3d2f0645e7dca7899dce3b933de4ef6e9f512cb5a1f4ad42c632645aff8", 0xc7) setsockopt$inet6_tcp_int(r0, 0x6, 0x100000004, &(0x7f0000000080)=0x2be, 0xfd3b) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) r2 = socket$inet6_udp(0xa, 0x2, 0x0) syncfs(r2) setsockopt$sock_int(r1, 0x1, 0x2f, &(0x7f0000000040), 0x4) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) socket(0xffffffffffffffff, 0x6, 0x5) r3 = open(&(0x7f0000000080)='./bus\x00', 0x80000000141046, 0x0) close(r3) r4 = syz_open_dev$loop(&(0x7f0000000540)='/dev/loop#\x00', 0x0, 0x105082) r5 = memfd_create(&(0x7f0000000300)='4t\xb9L<\xf2\x00\x90\xcd\x00\x00\x00\x00\x00\x00', 0x2) pwritev(r5, &(0x7f0000000440)=[{&(0x7f0000000480)="a8", 0x1}], 0x1, 0x81003) ioctl$LOOP_CHANGE_FD(r4, 0x4c00, r5) bpf$OBJ_GET_MAP(0x7, &(0x7f00000003c0)={&(0x7f0000000400)='./bus\x00', 0x0, 0x8}, 0xfffffffffffffecd) r6 = socket$inet6(0xa, 0x5, 0x2) connect$inet6(r6, &(0x7f0000000100)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, [], 0x1, 0x0}, 0x7}, 0x1c) setsockopt$inet6_opts(r6, 0x29, 0x40, &(0x7f0000000580)=ANY=[@ANYBLOB="29000000060058500ba40000005cb4b47a560100800000000002099666c20b21e8080008ae760000ec57c052aa843ac0031e4118a1a847c0e60000f5f2b1c4310380181c143c6b10022ee4de0a000000000000ffffffffffffffe7000000000000000000000000000000ff0100bf149fd5d981d72437034f05bb5c068772b310642de912c2729c83435806a73bd382c1e56638572925f03a2433d2feb19191b1ce221d87a8cbf189d711a0ef2eaed469d21c80190041c740cec379894459989e2f8785c13d863ba14f65bc3bd8101f0cfb7f5e67fa4e73f689fd819518dd1d96077a1c9fc2785a5eef5cd8d2302698ad2dcd089f8fa767244aacc5dc9302d8a7fab0f001a61e1ca1a48054355a9b1e3270bd27b1403b52ef479615d0c0939c553a704f66d677af16dfecbfb5320a99420a0000d764266803c6a7b0c72f00272659cfef2e81009412b58e07beeb27a8bf1ad4fcc5a08ea4b456bbbfd7c7bf47d0b3b738c40000001446edbaa57fcfa668883e56d870f43f701e69c6c16c4b76b85cc37303c86eab33154584a1c27a1e9b969b0f2d376728e815a2108fd533b9752382f97f734bcc065e92a9f5344c7614709fc445439b200085d3c8152faeba62db44b3d549db580c5207c91d65c6e005362fcaa7e0b2b281dd305b04c5bf62a929cfd480ef3d6060b0f0c65896d2b2ca39c9fffd03b67b623848c33c835b5ca05823d2982541c1d70e77538a4bbbf4acd7af4d0aa11901b8277ab713f35670b92bd8a903c5fbbba6bf41235394542eadb289b197f53ead5486e302b0b58a409fd1cd670de73527dc855199f54df31caf014b1d7e1a700e6df2eaf0000000d5b0bbf521ed434070fb0b27214f63f54b1162c5f4a114b48efd0e7674939406495cd2814a411ec6f9f7f5e028256227f21754e9f1bfe1a6b697e0d0739a5851c547d0ae8b46db33d9022618f798e9ff12ef901eb87b609a0eb192c2e94cc858e1bd172dd459ec8c0e650d7abc0ebdb91bb7b084f2fb08f411c59712c815a0989cd717a776961e441388a3d3339453ebdac75f9a54cfdea59bb1af457ccf06560f4a799d158408b3adf7b8e1c72981f41a2f5bb392d63f267fe69f46aaf94b9d122fd2006115741b26bd86f6600e1a3cc85188c845305b48e6320cd6ae0c10ba2cbc1e9054633bba5486423287c70644763263eb9f116341e739ed22a7e3372aa0e57f142f662ad224481150459d4cd9a2dd246a957279fef9c68bec8fa60f56bed83588e4aacfd2b5ad7fcd0e79c8bb2133ebabe957bbf5d8fa052c352b8c621d8070de5406a5e4c0c52fff0b3bb102651d0ae7991098bd9872a351c6588a8aea64203d6b1f358a809423bbfcaee3be1c62af78dea87a0d9d562f3a279a2a6d09103ae18dac9ab9790e"], 0x1) sendmmsg(r6, &(0x7f00000092c0), 0x4ff, 0x0) mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x800003, 0x11, r3, 0x0) socketpair$unix(0x1, 0x800000000000003, 0x0, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x360) fcntl$setstatus(r4, 0x4, 0x44000) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r8, &(0x7f00000001c0), 0x526987c9) read(r7, &(0x7f0000000200)=""/250, 0x50c7e3e3) sendfile(r4, r5, 0x0, 0x80003) [ 241.094410] x86/PAT: syz-executor.4:11200 freeing invalid memtype [mem 0x00001000-0x00001fff] 15:14:52 executing program 1: socket$inet(0x10, 0x5, 0x3) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(r0, 0x8000000000000001, 0x10000000000005, &(0x7f0000000980)="000000009641d897e74754e15cafa0a8d7248293e5ee7f8e2dd6354dafd8e76a155d15a7f2872ef6c17ef451745a222065498562c09b44b262a3a3c76c9f5be0a2af258fa0b6a5dc7726bf25a563705d73ff7e1f556a82ae51f2ae06145b481c4be9c760d8289dc8cb601b1805223df02fa9ac38dc714a052b8acb3070d2d63e76195379b396da6c8d0b2fbc59c17f835516dad72c98358b4ff3cca04e1dda3b0f353c684773cb3813c3d2f0645e7dca7899dce3b933de4ef6e9f512cb5a1f4ad42c632645aff8", 0xc7) setsockopt$inet6_tcp_int(r0, 0x6, 0x100000004, &(0x7f0000000080)=0x2be, 0xfd3b) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) syncfs(0xffffffffffffffff) setsockopt$inet_tcp_int(r1, 0x6, 0x7ffffffffffffe, &(0x7f0000000000)=0x85, 0x4) setsockopt$sock_int(r1, 0x1, 0x2f, &(0x7f0000000040), 0x4) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) socket(0xffffffffffffffff, 0x6, 0x5) r2 = open(&(0x7f0000000080)='./bus\x00', 0x80000000141046, 0x0) close(r2) r3 = syz_open_dev$loop(&(0x7f0000000540)='/dev/loop#\x00', 0x0, 0x105082) r4 = memfd_create(&(0x7f0000000300)='4t\xb9L<\xf2\x00\x90\xcd\x00\x00\x00\x00\x00\x00', 0x2) pwritev(r4, &(0x7f0000000440)=[{&(0x7f0000000480)="a8", 0x1}], 0x1, 0x81003) ioctl$LOOP_CHANGE_FD(r3, 0x4c00, r4) bpf$OBJ_GET_MAP(0x7, &(0x7f00000003c0)={&(0x7f0000000400)='./bus\x00', 0x0, 0x8}, 0xfffffffffffffecd) r5 = socket$inet6(0xa, 0x5, 0x2) connect$inet6(r5, &(0x7f0000000100)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, [], 0x1, 0x0}, 0x7}, 0x1c) setsockopt$inet6_opts(r5, 0x29, 0x40, &(0x7f0000000580)=ANY=[@ANYBLOB="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"], 0x1) sendmmsg(r5, &(0x7f00000092c0), 0x4ff, 0x0) mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x800003, 0x11, r2, 0x0) socketpair$unix(0x1, 0x800000000000003, 0x0, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x360) fcntl$setstatus(r3, 0x4, 0x44000) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r7, &(0x7f00000001c0), 0x526987c9) read(r6, &(0x7f0000000200)=""/250, 0x50c7e3e3) sendfile(r3, r4, 0x0, 0x80003) 15:14:52 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070") r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x28001, 0x0) read$rfkill(r1, &(0x7f0000000000), 0x3) ioctl$int_in(r1, 0x5452, &(0x7f0000000140)=0x100000001) 15:14:52 executing program 4: r0 = socket$netlink(0x10, 0x3, 0xc) writev(r0, &(0x7f0000fb5ff0)=[{&(0x7f0000000040)="1f00000002031900000007000000068100022b0509000100010100ff3ffe58", 0x1f}], 0x1) writev(r0, &(0x7f000037d000)=[{&(0x7f0000199fe1)="1f00000002031900000007000000068100ed853b09000100010100ff3ffe58", 0x1f}], 0x1) r1 = socket$netlink(0x10, 0x3, 0xc) writev(r1, &(0x7f0000fb5ff0)=[{&(0x7f0000fb4000)="1f00000003031900000007000000068100023b0509000100010100ff3ffe58", 0x1f}], 0x1) r2 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r2, 0x1000008912, &(0x7f0000000080)="11dca50d5e0bcfe47bf070") mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r3, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) [ 241.155353] x86/PAT: syz-executor.3:11208 freeing invalid memtype [mem 0x00001000-0x00001fff] 15:14:52 executing program 1: socket$inet(0x10, 0x5, 0x3) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(r0, 0x8000000000000001, 0x10000000000005, &(0x7f0000000980)="000000009641d897e74754e15cafa0a8d7248293e5ee7f8e2dd6354dafd8e76a155d15a7f2872ef6c17ef451745a222065498562c09b44b262a3a3c76c9f5be0a2af258fa0b6a5dc7726bf25a563705d73ff7e1f556a82ae51f2ae06145b481c4be9c760d8289dc8cb601b1805223df02fa9ac38dc714a052b8acb3070d2d63e76195379b396da6c8d0b2fbc59c17f835516dad72c98358b4ff3cca04e1dda3b0f353c684773cb3813c3d2f0645e7dca7899dce3b933de4ef6e9f512cb5a1f4ad42c632645aff8", 0xc7) setsockopt$inet6_tcp_int(r0, 0x6, 0x100000004, &(0x7f0000000080)=0x2be, 0xfd3b) r1 = socket$inet6_udp(0xa, 0x2, 0x0) syncfs(r1) setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x7ffffffffffffe, &(0x7f0000000000)=0x85, 0x4) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x2f, &(0x7f0000000040), 0x4) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) socket(0xffffffffffffffff, 0x6, 0x5) r2 = open(&(0x7f0000000080)='./bus\x00', 0x80000000141046, 0x0) close(r2) r3 = syz_open_dev$loop(&(0x7f0000000540)='/dev/loop#\x00', 0x0, 0x105082) r4 = memfd_create(&(0x7f0000000300)='4t\xb9L<\xf2\x00\x90\xcd\x00\x00\x00\x00\x00\x00', 0x2) pwritev(r4, &(0x7f0000000440)=[{&(0x7f0000000480)="a8", 0x1}], 0x1, 0x81003) ioctl$LOOP_CHANGE_FD(r3, 0x4c00, r4) bpf$OBJ_GET_MAP(0x7, &(0x7f00000003c0)={&(0x7f0000000400)='./bus\x00', 0x0, 0x8}, 0xfffffffffffffecd) r5 = socket$inet6(0xa, 0x5, 0x2) connect$inet6(r5, &(0x7f0000000100)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, [], 0x1, 0x0}, 0x7}, 0x1c) setsockopt$inet6_opts(r5, 0x29, 0x40, &(0x7f0000000580)=ANY=[@ANYBLOB="29000000060058500ba40000005cb4b47a560100800000000002099666c20b21e8080008ae760000ec57c052aa843ac0031e4118a1a847c0e60000f5f2b1c4310380181c143c6b10022ee4de0a000000000000ffffffffffffffe7000000000000000000000000000000ff0100bf149fd5d981d72437034f05bb5c068772b310642de912c2729c83435806a73bd382c1e56638572925f03a2433d2feb19191b1ce221d87a8cbf189d711a0ef2eaed469d21c80190041c740cec379894459989e2f8785c13d863ba14f65bc3bd8101f0cfb7f5e67fa4e73f689fd819518dd1d96077a1c9fc2785a5eef5cd8d2302698ad2dcd089f8fa767244aacc5dc9302d8a7fab0f001a61e1ca1a48054355a9b1e3270bd27b1403b52ef479615d0c0939c553a704f66d677af16dfecbfb5320a99420a0000d764266803c6a7b0c72f00272659cfef2e81009412b58e07beeb27a8bf1ad4fcc5a08ea4b456bbbfd7c7bf47d0b3b738c40000001446edbaa57fcfa668883e56d870f43f701e69c6c16c4b76b85cc37303c86eab33154584a1c27a1e9b969b0f2d376728e815a2108fd533b9752382f97f734bcc065e92a9f5344c7614709fc445439b200085d3c8152faeba62db44b3d549db580c5207c91d65c6e005362fcaa7e0b2b281dd305b04c5bf62a929cfd480ef3d6060b0f0c65896d2b2ca39c9fffd03b67b623848c33c835b5ca05823d2982541c1d70e77538a4bbbf4acd7af4d0aa11901b8277ab713f35670b92bd8a903c5fbbba6bf41235394542eadb289b197f53ead5486e302b0b58a409fd1cd670de73527dc855199f54df31caf014b1d7e1a700e6df2eaf0000000d5b0bbf521ed434070fb0b27214f63f54b1162c5f4a114b48efd0e7674939406495cd2814a411ec6f9f7f5e028256227f21754e9f1bfe1a6b697e0d0739a5851c547d0ae8b46db33d9022618f798e9ff12ef901eb87b609a0eb192c2e94cc858e1bd172dd459ec8c0e650d7abc0ebdb91bb7b084f2fb08f411c59712c815a0989cd717a776961e441388a3d3339453ebdac75f9a54cfdea59bb1af457ccf06560f4a799d158408b3adf7b8e1c72981f41a2f5bb392d63f267fe69f46aaf94b9d122fd2006115741b26bd86f6600e1a3cc85188c845305b48e6320cd6ae0c10ba2cbc1e9054633bba5486423287c70644763263eb9f116341e739ed22a7e3372aa0e57f142f662ad224481150459d4cd9a2dd246a957279fef9c68bec8fa60f56bed83588e4aacfd2b5ad7fcd0e79c8bb2133ebabe957bbf5d8fa052c352b8c621d8070de5406a5e4c0c52fff0b3bb102651d0ae7991098bd9872a351c6588a8aea64203d6b1f358a809423bbfcaee3be1c62af78dea87a0d9d562f3a279a2a6d09103ae18dac9ab9790e"], 0x1) sendmmsg(r5, &(0x7f00000092c0), 0x4ff, 0x0) mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x800003, 0x11, r2, 0x0) socketpair$unix(0x1, 0x800000000000003, 0x0, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x360) fcntl$setstatus(r3, 0x4, 0x44000) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r7, &(0x7f00000001c0), 0x526987c9) read(r6, &(0x7f0000000200)=""/250, 0x50c7e3e3) sendfile(r3, r4, 0x0, 0x80003) 15:14:52 executing program 5: r0 = dup(0xffffffffffffffff) setsockopt$inet_sctp_SCTP_AUTH_CHUNK(r0, 0x84, 0x15, &(0x7f0000001180)={0x9}, 0x1) sendto$inet6(r0, &(0x7f0000000140)="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", 0x1000, 0x840, &(0x7f0000000040)={0xa, 0x4e21, 0xb454, @initdev={0xfe, 0x88, [], 0x1, 0x0}, 0x1}, 0x1c) faccessat(r0, &(0x7f0000000080)='./bus/file0\x00', 0x100, 0x0) ioctl$sock_SIOCSIFBR(r0, 0x8941, &(0x7f0000001140)=@generic={0x2, 0x8, 0x1f}) syz_mount_image$ntfs(&(0x7f0000000100)='ntfs\x00', &(0x7f00000000c0)='./bus\x00', 0x0, 0xaaaab38, &(0x7f0000001680)=[{0x0, 0x0, 0x3fe}, {&(0x7f0000000000)="3a77dd21387d6a4000139a667a13ffff7567ab8f727ca2250cce6eead8bc3a", 0x1f, 0xffff}], 0x8100, 0x0) [ 241.216330] FAULT_INJECTION: forcing a failure. [ 241.216330] name failslab, interval 1, probability 0, space 0, times 0 [ 241.305605] CPU: 1 PID: 11223 Comm: syz-executor.3 Not tainted 4.14.139 #35 [ 241.312859] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 241.322224] Call Trace: [ 241.324847] dump_stack+0x138/0x19c [ 241.325659] x86/PAT: syz-executor.4:11239 freeing invalid memtype [mem 0x00001000-0x00001fff] [ 241.328487] should_fail.cold+0x10f/0x159 [ 241.328505] should_failslab+0xdb/0x130 [ 241.345271] kmem_cache_alloc+0x2d7/0x780 [ 241.349431] ? anon_vma_clone+0x310/0x470 [ 241.353589] anon_vma_fork+0xe9/0x4d0 [ 241.357403] copy_process.part.0+0x45e2/0x6a00 [ 241.362020] ? __cleanup_sighand+0x50/0x50 [ 241.366255] ? lock_downgrade+0x6e0/0x6e0 [ 241.370417] _do_fork+0x19e/0xce0 [ 241.373871] ? fork_idle+0x280/0x280 [ 241.377587] ? fput+0xd4/0x150 [ 241.380781] ? SyS_write+0x15e/0x230 [ 241.384525] SyS_clone+0x37/0x50 [ 241.388009] ? sys_vfork+0x30/0x30 [ 241.391552] do_syscall_64+0x1e8/0x640 [ 241.395436] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 241.400287] entry_SYSCALL_64_after_hwframe+0x42/0xb7 15:14:52 executing program 3 (fault-call:6 fault-nth:40): mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) 15:14:52 executing program 4: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="11dca50d5e0bcfe47bf070") mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) ioctl$VIDIOC_S_CTRL(r1, 0xc008561c, &(0x7f0000000000)={0x0, 0x2}) [ 241.405469] RIP: 0033:0x459829 [ 241.408653] RSP: 002b:00007f664e1a9c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 241.416352] RAX: ffffffffffffffda RBX: 00007f664e1a9c90 RCX: 0000000000459829 [ 241.416358] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000 [ 241.416364] RBP: 000000000075bfc8 R08: ffffffffffffffff R09: 0000000000000000 [ 241.416370] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f664e1aa6d4 [ 241.416376] R13: 00000000004bfce6 R14: 00000000004d1a58 R15: 0000000000000004 15:14:52 executing program 5: r0 = syz_genetlink_get_family_id$tipc(&(0x7f0000000080)='TIPC\x00') sendmsg$TIPC_CMD_SET_LINK_WINDOW(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000008}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)={0x68, r0, 0x300, 0x70bd2b, 0x25dfdbfe, {{}, 0x0, 0x4109, 0x0, {0x4c, 0x18, {0x100000000, @media='udp\x00'}}}, [""]}, 0x68}, 0x1, 0x0, 0x0, 0x4000080}, 0x800) syz_mount_image$ntfs(&(0x7f0000000100)='ntfs\x00', &(0x7f00000000c0)='./bus\x00', 0x0, 0x2, &(0x7f0000001680)=[{0x0, 0x0, 0x401}, {&(0x7f0000001740)="3a77dd21387d6a624e139a664bf7ec507567aba5727ca2250cce6cea", 0x1c, 0x35}], 0x100800, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000280)='net/igmp6\x00') getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f00000002c0)={{{@in6=@empty, @in=@empty, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@mcast2}, 0x0, @in6}}, &(0x7f00000003c0)=0xe8) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000400)={0x0, 0x0, 0x0}, &(0x7f0000000440)=0xc) mount$fuse(0x0, &(0x7f0000000000)='./bus\x00', &(0x7f0000000240)='fuse\x00', 0x4000, &(0x7f0000000480)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0xa000}, 0x2c, {'user_id', 0x3d, r2}, 0x2c, {'group_id', 0x3d, r3}, 0x2c, {[{@max_read={'max_read', 0x3d, 0xa8d}}], [{@seclabel='seclabel'}, {@rootcontext={'rootcontext', 0x3d, 'root'}}, {@permit_directio='permit_directio'}, {@subj_type={'subj_type'}}]}}) 15:14:52 executing program 4: r0 = socket$inet_udplite(0x2, 0x2, 0x88) syz_extract_tcp_res$synack(&(0x7f0000000000), 0x1, 0x0) ioctl(r0, 0x1000008912, &(0x7f0000000080)="11dca50d5e0bcfe47bf070") mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) [ 241.588351] x86/PAT: syz-executor.3:11261 freeing invalid memtype [mem 0x00001000-0x00001fff] [ 241.601056] FAULT_INJECTION: forcing a failure. [ 241.601056] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 241.640205] CPU: 1 PID: 11261 Comm: syz-executor.3 Not tainted 4.14.139 #35 [ 241.647379] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 241.656747] Call Trace: [ 241.659349] dump_stack+0x138/0x19c [ 241.662999] should_fail.cold+0x10f/0x159 [ 241.667155] ? __might_sleep+0x93/0xb0 [ 241.671064] __alloc_pages_nodemask+0x1d6/0x7a0 [ 241.675739] ? save_stack+0x45/0xd0 [ 241.679359] ? kasan_kmalloc+0xce/0xf0 [ 241.683240] ? kasan_slab_alloc+0xf/0x20 [ 241.687313] ? __alloc_pages_slowpath+0x2930/0x2930 [ 241.692336] alloc_pages_current+0xec/0x1e0 [ 241.696673] pte_alloc_one+0x1a/0x100 [ 241.700471] __pte_alloc+0x2a/0x2d0 [ 241.704098] copy_page_range+0x11ba/0x1bd0 [ 241.708338] ? anon_vma_fork+0x358/0x4d0 [ 241.712915] ? vma_compute_subtree_gap+0x190/0x1f0 [ 241.717851] ? __pmd_alloc+0x410/0x410 [ 241.721748] copy_process.part.0+0x4764/0x6a00 [ 241.726351] ? __cleanup_sighand+0x50/0x50 [ 241.730595] ? lock_downgrade+0x6e0/0x6e0 [ 241.734748] _do_fork+0x19e/0xce0 [ 241.738289] ? fork_idle+0x280/0x280 [ 241.742007] ? fput+0xd4/0x150 [ 241.745204] ? SyS_write+0x15e/0x230 [ 241.748924] SyS_clone+0x37/0x50 [ 241.752284] ? sys_vfork+0x30/0x30 [ 241.755829] do_syscall_64+0x1e8/0x640 [ 241.759711] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 241.764594] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 241.769795] RIP: 0033:0x459829 [ 241.772981] RSP: 002b:00007f664e1cac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 241.780696] RAX: ffffffffffffffda RBX: 00007f664e1cac90 RCX: 0000000000459829 15:14:52 executing program 2: mmap(&(0x7f0000000000/0xff7000)=nil, 0xff7000, 0x1001, 0x2000000000071, 0xffffffffffffffff, 0x0) clone(0x803102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() prctl$PR_SET_PTRACER(0x59616d61, r0) r1 = socket$alg(0x26, 0x5, 0x0) bind$alg(r1, &(0x7f0000000080)={0x26, 'hash\x00', 0x0, 0x0, 'sha256-arm64-neon\x00'}, 0x58) ptrace$setopts(0x4206, r0, 0x0, 0x0) r2 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000480)='/dev/sequencer\x00', 0x80000, 0x0) getsockname$llc(r2, &(0x7f00000004c0), &(0x7f0000000500)=0x10) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000140)='/dev/zero\x00', 0x8000, 0x0) r4 = getuid() getgroups(0x9, &(0x7f0000000180)=[0xee01, 0xee01, 0x0, 0xee01, 0xee01, 0xee00, 0xee00, 0x0, 0xee01]) getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f00000001c0)={{{@in=@empty, @in6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@local}, 0x0, @in=@multicast2}}, &(0x7f00000002c0)=0xe8) mount$fuseblk(&(0x7f0000000000)='/dev/loop0\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000100)='fuseblk\x00', 0x40, &(0x7f0000000300)={{'fd', 0x3d, r3}, 0x2c, {'rootmode', 0x3d, 0xc000}, 0x2c, {'user_id', 0x3d, r4}, 0x2c, {'group_id', 0x3d, r5}, 0x2c, {[{@max_read={'max_read', 0x3d, 0x606f4a98}}, {@blksize={'blksize', 0x3d, 0x1000}}], [{@defcontext={'defcontext', 0x3d, 'unconfined_u'}}, {@fowner_gt={'fowner>', r6}}, {@defcontext={'defcontext', 0x3d, 'root'}}, {@fsmagic={'fsmagic', 0x3d, 0x7584}}, {@defcontext={'defcontext', 0x3d, 'sysadm_u'}}, {@appraise='appraise'}, {@mask={'mask', 0x3d, 'MAY_APPEND'}}, {@smackfsfloor={'smackfsfloor', 0x3d, 'hash\x00'}}]}}) tkill(r0, 0x36) wait4(0x0, 0x0, 0x0, 0x0) 15:14:52 executing program 3 (fault-call:6 fault-nth:41): mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) [ 241.787961] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000 [ 241.795229] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000 [ 241.802494] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f664e1cb6d4 [ 241.809752] R13: 00000000004bfce6 R14: 00000000004d1a58 R15: 0000000000000004 15:14:52 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070") r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x28001, 0x0) read$rfkill(r1, &(0x7f0000000000), 0x3) ioctl$int_in(r1, 0x800060c0045005, &(0x7f0000000140)=0x5ad) sync_file_range(r0, 0x404, 0x40, 0x2) 15:14:52 executing program 4: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1, &(0x7f0000000000)="11dca50d5e0bcfe47bf070") mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) ioctl$DRM_IOCTL_DROP_MASTER(r1, 0x641f) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) ioctl$PERF_EVENT_IOC_QUERY_BPF(r1, 0xc008240a, &(0x7f00000000c0)={0x6, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) ioctl$DRM_IOCTL_ADD_MAP(r1, 0xc0286415, &(0x7f00000001c0)={&(0x7f0000ffd000/0x1000)=nil, 0x9, 0x0, 0x84, &(0x7f0000ffb000/0x2000)=nil, 0x5}) sendmsg$TIPC_CMD_SHOW_PORTS(r1, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0xf4d914e86cc1595a}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x1c, 0x0, 0xc00, 0x70bd28, 0x25dfdbfe, {}, [""]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000000}, 0x40004) 15:14:52 executing program 5: syz_mount_image$ntfs(&(0x7f0000000100)='ntfs\x00', &(0x7f00000000c0)='./bus\x00', 0x0, 0x2, &(0x7f0000001680)=[{0x0, 0x0, 0x401}, {&(0x7f0000001740)="3a77dd21387d6a624e139a664bf7ec507567aba5727ca2250cce6cea", 0x1c, 0x35}], 0x8100, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x4000, 0x0) ioctl$SIOCX25CALLACCPTAPPRV(r0, 0x89e8) chdir(&(0x7f0000000000)='./bus\x00') [ 241.886737] x86/PAT: syz-executor.4:11280 freeing invalid memtype [mem 0x00001000-0x00001fff] [ 241.991899] x86/PAT: syz-executor.3:11299 freeing invalid memtype [mem 0x00001000-0x00001fff] [ 242.003009] FAULT_INJECTION: forcing a failure. [ 242.003009] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 242.003263] x86/PAT: syz-executor.4:11303 freeing invalid memtype [mem 0x00001000-0x00001fff] [ 242.019454] CPU: 1 PID: 11299 Comm: syz-executor.3 Not tainted 4.14.139 #35 [ 242.030793] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 242.040149] Call Trace: [ 242.042732] dump_stack+0x138/0x19c [ 242.046347] should_fail.cold+0x10f/0x159 [ 242.050475] ? __might_sleep+0x93/0xb0 [ 242.054353] __alloc_pages_nodemask+0x1d6/0x7a0 [ 242.059045] ? save_stack+0x45/0xd0 [ 242.062656] ? kasan_kmalloc+0xce/0xf0 [ 242.066529] ? kasan_slab_alloc+0xf/0x20 [ 242.070583] ? __alloc_pages_slowpath+0x2930/0x2930 [ 242.075584] alloc_pages_current+0xec/0x1e0 [ 242.079893] pte_alloc_one+0x1a/0x100 [ 242.083691] __pte_alloc+0x2a/0x2d0 [ 242.087300] copy_page_range+0x11ba/0x1bd0 [ 242.091513] ? anon_vma_fork+0x358/0x4d0 [ 242.095568] ? vma_compute_subtree_gap+0x190/0x1f0 [ 242.100485] ? __pmd_alloc+0x410/0x410 [ 242.104378] copy_process.part.0+0x4764/0x6a00 [ 242.108985] ? __cleanup_sighand+0x50/0x50 [ 242.113215] ? lock_downgrade+0x6e0/0x6e0 [ 242.117365] _do_fork+0x19e/0xce0 [ 242.120822] ? fork_idle+0x280/0x280 [ 242.124571] ? fput+0xd4/0x150 [ 242.127872] ? SyS_write+0x15e/0x230 [ 242.131613] SyS_clone+0x37/0x50 [ 242.134977] ? sys_vfork+0x30/0x30 [ 242.138526] do_syscall_64+0x1e8/0x640 15:14:53 executing program 1: socket$inet(0x10, 0x5, 0x3) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(r0, 0x8000000000000001, 0x10000000000005, &(0x7f0000000980)="000000009641d897e74754e15cafa0a8d7248293e5ee7f8e2dd6354dafd8e76a155d15a7f2872ef6c17ef451745a222065498562c09b44b262a3a3c76c9f5be0a2af258fa0b6a5dc7726bf25a563705d73ff7e1f556a82ae51f2ae06145b481c4be9c760d8289dc8cb601b1805223df02fa9ac38dc714a052b8acb3070d2d63e76195379b396da6c8d0b2fbc59c17f835516dad72c98358b4ff3cca04e1dda3b0f353c684773cb3813c3d2f0645e7dca7899dce3b933de4ef6e9f512cb5a1f4ad42c632645aff8", 0xc7) setsockopt$inet6_tcp_int(r0, 0x6, 0x100000004, &(0x7f0000000080)=0x2be, 0xfd3b) r1 = socket$inet6_udp(0xa, 0x2, 0x0) syncfs(r1) setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x7ffffffffffffe, &(0x7f0000000000)=0x85, 0x4) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x2f, &(0x7f0000000040), 0x4) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) socket(0xffffffffffffffff, 0x6, 0x5) r2 = open(&(0x7f0000000080)='./bus\x00', 0x80000000141046, 0x0) close(r2) r3 = syz_open_dev$loop(&(0x7f0000000540)='/dev/loop#\x00', 0x0, 0x105082) r4 = memfd_create(&(0x7f0000000300)='4t\xb9L<\xf2\x00\x90\xcd\x00\x00\x00\x00\x00\x00', 0x2) pwritev(r4, &(0x7f0000000440)=[{&(0x7f0000000480)="a8", 0x1}], 0x1, 0x81003) ioctl$LOOP_CHANGE_FD(r3, 0x4c00, r4) bpf$OBJ_GET_MAP(0x7, &(0x7f00000003c0)={&(0x7f0000000400)='./bus\x00', 0x0, 0x8}, 0xfffffffffffffecd) r5 = socket$inet6(0xa, 0x5, 0x2) connect$inet6(r5, &(0x7f0000000100)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, [], 0x1, 0x0}, 0x7}, 0x1c) setsockopt$inet6_opts(r5, 0x29, 0x40, &(0x7f0000000580)=ANY=[@ANYBLOB="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"], 0x1) sendmmsg(r5, &(0x7f00000092c0), 0x4ff, 0x0) mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x800003, 0x11, r2, 0x0) socketpair$unix(0x1, 0x800000000000003, 0x0, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x360) fcntl$setstatus(r3, 0x4, 0x44000) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r7, &(0x7f00000001c0), 0x526987c9) read(r6, &(0x7f0000000200)=""/250, 0x50c7e3e3) sendfile(r3, r4, 0x0, 0x80003) [ 242.142412] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 242.147257] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 242.147266] RIP: 0033:0x459829 [ 242.147271] RSP: 002b:00007f664e1cac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 242.147282] RAX: ffffffffffffffda RBX: 00007f664e1cac90 RCX: 0000000000459829 [ 242.147288] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000 [ 242.155638] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000 [ 242.155644] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f664e1cb6d4 15:14:53 executing program 4: ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000080)="11dca50d5e0bcfe47bf070") mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000040)='cpuacct.usage_sys\x00', 0x0, 0x0) ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(r0, 0x40505330, &(0x7f00000000c0)={{0x401}, {0x4, 0x3}, 0x800, 0x1, 0x8000}) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) ioctl$EVIOCSABS2F(r1, 0x401845ef, &(0x7f0000000000)={0x100, 0x100, 0x7fffffff, 0x5, 0x40af, 0x6}) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) 15:14:53 executing program 3 (fault-call:6 fault-nth:42): mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) [ 242.192364] R13: 00000000004bfce6 R14: 00000000004d1a58 R15: 0000000000000004 15:14:53 executing program 5: syz_mount_image$ntfs(&(0x7f0000000100)='ntfs\x00', &(0x7f00000000c0)='./bus\x00', 0x0, 0x2, &(0x7f0000001680)=[{0x0, 0x0, 0x401}, {&(0x7f0000001740)="3a77dd21387d6a624e139a664bf7ec507567aba5727ca2250cce6cea", 0x1c, 0x35}], 0x8100, 0x0) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x200, 0x0) accept4$packet(0xffffffffffffffff, &(0x7f0000001600)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @remote}, &(0x7f0000001640)=0x14, 0x80000) sendmmsg(r0, &(0x7f0000005900)=[{{&(0x7f0000000040)=@vsock={0x28, 0x0, 0x2710, @hyper}, 0x80, &(0x7f0000001440)=[{&(0x7f0000000140)="465e39f99d7824f4242760ac52022e2c34a7eeb805c79cce4715c15e6b75d744c6abb9d0e669baee6760923cd6caca0ccdfe2d66535506ba62b853fb0ed3226ecd9ec4aaa44a6b41dca8f249eb33455aa4819112d973b818d5e8adbcb72621046ae1a0fa050bd6bb44166020dc72e63c9e00aa74fac9c274d5d603b3d820d86e00ac6a441c01245ba79f781388085dadeb4b4ba71ef5bb7a93a7f312f70f16a427b099ddca3c75c3841b8c65f314b29bfc7edfe92c6d37c919b9085868a9edd1088615d56648e680340ad96bf30043d403eb758ce866744138cde0b0a0", 0xdd}, {&(0x7f0000000240)="a3b65ba036c5f5ca8e68b53f5109fe250850e069359789ed1a86000dc04c2ce0c34bbdd73eebba41f59dde38b9875703425ee5e9bd55aff1bbc3d32aa74bb491db2a6a052807e6c9cf02aa10ad5634a64d161d475d662853dd4bba957bbba7046b28848a81c8fc8b5d51f6727212ea44", 0x70}, {&(0x7f00000002c0)="12dfa57d162f41025a1218e18aec5ed516f1d37f674c999f2413bcfc4b513cd76d514513a0f1521bfcf9548cbcd6877d553d07b04f6f1b07b7b7c67d4e7aefe86e148d8def8060ae7e467e3757f61ccabf08175d1f194995df4dffa7c903cb4106fc081bcd3a3287b0dee21cad2874eac6442074e8757e4e", 0x78}, {&(0x7f0000000340)="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", 0x8c2}, {&(0x7f0000001340)="32c1b54dc71946cf6b56a68e99e81f50452c4bf85ccb308ce6eb510518e5ea93d33f97c1365ea822dfbe73ef098319899125087752f4be5780627ba820a0e28917bcd879375282af5a51ef549ee0d431f460eb611b64708d24951492ee3cae25fb6e0e5041d4d24a2ba50f81c68f245ccec27aa7ce5a6e051921e54758c33d9e61aa0f7539bbcd24ce880b3b59f831762cbcba3305552c58e104df90f26243372760809b2a0017e4abe7249386b69a5c5c5050391f23ea2bc1dbedbfab624e3247c094f1c1acec003911c34bff38c553b7b69dd2763b371759e2", 0xda}], 0x5, &(0x7f00000014c0)=[{0x30, 0x108, 0x7, "5d2571f7e2a59947da01fee8c65db93799e591b69815fdac677ee72a4a"}], 0x30}}, {{&(0x7f00000016c0)=@hci={0x1f, r1, 0x3}, 0x80, &(0x7f0000002800)=[{&(0x7f0000001780)="7d791131ff", 0x5}, {&(0x7f00000017c0)="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", 0x1000}, {&(0x7f00000027c0)="7d7767ae0f0587aa629f4866ab08713c0de0", 0x12}], 0x3, &(0x7f0000002840)=[{0xe8, 0x115, 0x1, "9146099eccb4efa884f0b1d55792957f8040465a8a88e75ecb8ffe970356de21f09df4feb784255b2811e34f7fb493aeb40ab545b877198640e90d342c1276afd76c21dbb27521b8616f210828b4afd7893e16474a05fab27c6f89fadbbb1808150866bc7454de37819b6ee50db382e6e84cc69e94770214d54b7e4234c1f863ff8c7624b3758318d68e42c291a6bb379d60e17855baf7a605f4202acf1b859fabb0537fddffbba5abebaf0c5979f8a70a9766fc3948f342f3898e6ec90e75208dc4ef64050a46b4a64eb9c02507bb97b73cdb2fad5b"}, {0x70, 0x113, 0x9, "6f9e847a4664bcd9f2a61b60dd96475fa71ffd039efd711e0f5a1f2ddf3d8bc3a0922421e7a6db321f7baa5e0c5d21c5483f18f85317b07b77932d0428255f2ccc4bbcc7d10a572006f7d5c23d5529cf2ff170abef313238f7afa9e9"}], 0x158}}, {{0x0, 0x0, &(0x7f0000003b80)=[{&(0x7f00000029c0)="3eae1d2ba918b4f970625f3fe427b4c8fc2996257d2105c0c1423ef27a976131d1e8618954c38fc902ddcac09701d3077324d9cb5901933cced2aedd9bb484e601538a119594549e186c825e0466ed187bf3cfd6b23f3c493b2ffb74e0499bf920c43d56b349a212", 0x68}, {&(0x7f0000002a40)="795a3cf7b4b7aadbf8e63f1ec11e9b57cc8de5cbc2d43ef4dde8", 0x1a}, {&(0x7f0000002a80)="4abe312fc6139eecce6feaaa1547994a84c5de16e455ab2a1806ab81533e78690913d24d50b5", 0x26}, {&(0x7f0000002ac0)="632391ca9865ee9ed6ffae70c48008e0b18f8efa9a30ceaa5b0413bd8e5fbe16cf9e7d44be2b1ba355a234eda6724173aa608fa50b58756052a9cb", 0x3b}, {&(0x7f0000002b00)="929da573a08a844e3e056eed751dbfd5416ee8139d4038bfa1114931535339af", 0x20}, {&(0x7f0000002b40)="9a03f1463bfe7fd7e7977ebbb9fad29bf64a1426a5f5719799d087f917a1", 0xd}, {&(0x7f0000002b80)="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", 0x1000}], 0x7, &(0x7f0000003c00)=[{0x28, 0x111, 0x180000000, "cc9a9690104ba206f02313dadf68295472982737dd94a3"}, {0xa0, 0x100, 0x0, "2824e162ceb69f61c78fc8638a1d18dd71bb2a2d67a2de2239ffbb11a8959c0f83cfc99626f2c878a7cf84bb76dfa5534064e07a98853ac94369dcc61f1fb94efcc5aa8161ece290a3e5379f9fd27c06ee104d1d1d3009146e7d3abe582ba253fe466744990fc0b000923039e72dea735b740d77d6dbf1e0e9cfdcfe8bc7a59aa498a91d75436297c75ae7a475"}, {0xe0, 0x105, 0x2, "99b3530aa132dbf095cf4817252ba1545d316fdb49a413dd7b90b89dfcea075acfea7fa951d9d8871d5c8b26b97ba54d6112dd86afab0726f4e2b0a9dd5fc25ade13e23bc143cce971e1dcfab5eda5b6436f2484b4021e6da170896aabe6f604ba5469f451eecccefb5413106c31377592e240c38b9951d9f4a0372c922a921a7b399e549ed00884821e509b1de39dc932150c8562e37dfe240de516f248d92a3e59e9cb576c5d89a7de0881444d96a047064f965df24028507977b6fcab3cbea03c7f1c0899405223ac6b9e4aa69f"}, {0xf0, 0x111, 0x2, "15b17f4c979458480c542e56ab19a5394e14b66b5fd0794f1329a351b135a0032aa5499e300c5cde475e1849ba30578fbcd0210539f595e87ebad3a15d2348325171fc6b769bdf53c77110bd8b7bd8615e36745c27e1531402908776ba9348db056f30d63679a6a970ef1313cd18f8e3491551be9d2c62e831eb27164b78c4be5b82f1d798c7cdea49cec34dde535f69cf4f76970a8d42dcfae5a796e5ca0019198eb9511d5b09fefa901e47424de17cc9822a647f3491cf881112690adf47649a327b9aa4b495de7bdd9e4f2b5d9c7115f1a87ca602947c302f7cfca637"}, {0xf8, 0x10b, 0x1, "3a30500db87d80e8beb6789d5918ca62dc2067cb477f93b65830946896ccb2487ea1fe5ea3517b2761ed998048e2bd8720c1b323b21122f94b8d8e7997e5f755b31956938018d1545a52266af32092f83f6feb444fe85903d495aae06e2257269efded380d5fb64eea8550b864af10aa9f03c80340f773a9c2d4baaa82d4febd45f5ec5f6374455aed75aa07daf4abbc0940384afbb742dd66c657f79d8323fcfc9b85f6c8482669598da3991603391c2a1bb9a90df2f130dbfa88ec728112e711c7798ff96fbe511e76a4b473ccc2a96a10d716cdf24a74d55f7a2b07c3418f70"}, {0x58, 0x84, 0x3, "772d31884a6ad94da062535149cb3de19f5b53639c074ed09923ceeb7205d0daf02ae361ef97741d71139951cf59dc5feea53084abe5dd15bebc6a18881739778030867969"}, {0xe8, 0x0, 0xe4, "af7390bce8c67aaa7f7b1f6eaba12a960fbee47c989dba69ecf17358faa4d3cadd669f5d51997bef074ce928ac268101492b14c2d6ebfde52d0b9f2494649c059d4ff90758b6f3311eaf5a9dadf7d78b250a524d4dd06f993e119815498592bf4938e6508904685881042c0fd29a36e75d3193180c7bb76e2654eb9158bbca8a0f0fb1e28ce49c2c773588ca528f126fe41454d526e9a24eef498cb899578ea67aebec726c1a5a24eae4e6eb2ebdeab039c933262ac05b0a81984d7195243b374fc5f85535b4a710ee40a6b1b39b8c573765e1"}, {0x30, 0x10f, 0x401, "5e9442473f6bee92043bb955e6324b235f89522464167a6eef2828c64960ec"}, {0x48, 0x109, 0x7fff, "fcaf1e223f8f3d174f5676253818f5f6a725b2f4f589bba1c6c8dfc5b6c9edc7216a715c17b01d7124f531013971014737"}], 0x548}}, {{&(0x7f0000004180)=@in={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0xa}}, 0x80, &(0x7f0000004240)=[{&(0x7f0000004200)="4d800d8028196a17e430d154e93a8550220b02a8016727031a56e2ec6f", 0x1d}], 0x1, &(0x7f0000004280)=[{0xb8, 0x101, 0x8, "6a5d2fe4674416557f89bab70a69ef7b860a3a7bde0b83eebe205c8290aca06d6ea8328c2749bcf2b912111b1bd602b1648fe7a50e0296816e96a97bac52a420a227c451f415e24ebced3023c54651d2cabfb6cb22c8d44e52ff1580506d511de032d78dad2379cab977c8b7407bc3719ec7ea0b02c313070e0ae8d5ff691b09ac9f5b08ab9d8a901666f3865dd93cfcd59d121932299924a31fa5e89598bb854ef8ea60212f986a"}, {0xa8, 0x29, 0x7, "97b8c4cf79e58428b87739d43b00607339ca38769ec2a2a8a016de4f30bdb14f10f7d9f85ceb70117f5ad8d4256d1c0f4e0112f455ad90de3cf646a2c3e992049e7df513d0950e07879a45bbd013f48eaedc914266896352c61b780be8f7f99293095665698d426a425fa5b4ef96fb1baa9f9e18e4a9d3e7c6781375c2ca50c80b552963b36fc6440660e28ab514134979d9"}, {0x18, 0x114, 0x40, "d4a84cb2f9"}], 0x178}}, {{0x0, 0x0, &(0x7f0000005640)=[{&(0x7f0000004400)="d5f9abda346ca5be5b187196acd7e4ff358cf91d7de486a6aa84669f1d078e1f8e9eb25a8e6b0dfe57614299a93efef48176032f2354fff097ce19f35bd754c43c90b4e2675ad44a463336546a785f1cf9545990a687fc2b00ab85ec7967fd4c586c7fa881e1225d7f24d72364bc2dc393a6093e10f45547a685ed9700f0e707be1b85cd775884fbaffca945eb78c0ab21c7523106221c3b328e914f0ba4030604750e3b996b0e45f89306b0b5975eeecc3e643283f27e65eac68caeb48a7f9553008d7a521f7ed93214e6115001a220c683d78f0f781683e130219b353229e067ee", 0xe2}, {&(0x7f0000004500)="a6fb211cf590afb4d67ac8ec07c7098ecf6af636e875193580b598474e199d90ae3e067b9661a29e32f29d9d8c0414caaff3b0f8d7f77d199b95045cb71da5bdea532fd837acaf5b0fc0a030a9ba885c40d09ce6fc70442f2aad959dfc2355d444f727b4e9c22fd6aa9341f46056fa33392493001155fe29b8cb5f3279a5c7e1c4672e038d59a866432075140f", 0x8d}, {&(0x7f00000045c0)="f380ea478a269b376bca37ac68a5735919a1f5a3ae308b2291064efa45785e09742d220dc82fd3df0f1be0500a5cebed8b70142592afc1e87657f684787fc0555efda6febd63809539bf166506129f32e366b730233c2b71563320ac324fbd37046e8ed00b0d43fdc11321", 0x6b}, {&(0x7f0000004640)="fcfc2c886485f4247649c51065d6ad91566720aa999f11086044c3dd026331c3981d825d19d2c72bdca298d27cb4c05902958940d210d1fccb2fe19c35fd4340f3abc6ca9e5097efdb26ec825c7d702ddf700db35f84029b5f1e2254c70013346f9c7089497553343e90fe926cb64be0292a7d90a92112719fa2ea8d693ba03b8a67d9f87fac72a702d50db801ec2b9622ac676b12b2692c76b0f462ae14c6693b6678f1d74c8924cfda365f4caeaf98c9c7590938c3bca28c62775543deaf27dfb9debe7455431d994b3f2c1434aa9a0372e9b771c0ab7f2928e5c2af63032000a278bb7dcbd6e1c73cc2fd52bc6f452294882b0d3d1ebb3d1c595ef13b3100c715bbff1e8b7a51f9bbbe6c34e8cdd15d1e1868baf21644301b4ccc15dbe5e92ac17666a32da5c2bef8a3b1aa40c864468b9be847e05f76e066212e267c413aac21136272e7f6e34cccd20163b8d4d2506cc149acce7232240d50cdea4a0feebb856b2fcf5415b14f3599eb40cfc81cc23f0766c032eb6c69be4697dabacfe970d869830c3f82b410d194882af53fb5053a5b8af056a3efc19d6b1114b909d1540dff97434a5e18888671959358ce4fc67b3615d7d4bcce54fa87ccfd48d2056c0dbf81be2286eb7837f6b84aa335a95b19dd72bf85ab414651179f5f8eda717cc7da17bafe1a53e56d485bd6be10fe8bf422620208f171193307faa9bb62e29e3c357ecebb6da9dece22a75836b390093c43de0ce7bb4d3009d69fbd3e45b8bee88f2c8d4ca2d82ca67243508d5aa63e89bf1d6461902657f7b7b917b05368962af253186a1c8ae8379a41da58ccfe72b090a2337ef439e10ddff37c020fd1ce7cf526cea0f3e87be91eb5a498dc6656db3005cfe15d76f612129b4f7292613a459c2139885dc70f0291c34b9a14d17efa183b93dd3b4de4f16dc9856d363360cb05f9db87467e16ad20c78f85e6e94262c05e1b46e5be37aada3896a78c3eec3705808a2b08fa5f528df3824929fb2fe99e68a2d093258e62c45ff4ebdfbf1134115d1e312dad175409198b8a25fc1de332ecca232a9103dad0f6709d284b6504e6f9ae8c2cc14c4f9253a959532caaf8466e418a5efa0c55236686085e9349e8fbb733500454997035ebd367d9492ba7a000ed38cccb00126821a654ad5b48b6443ce83a4258631af50a7686f576fc1f55ff9136265aa641958b7c0b5893142eafaf2eadcfedf4a07a14dc49d36cefe6e4b018e5e52303c8b6339189810628cd41d43275a31b6e99c4bcdb17d6d9edd62de40198fe3d2d3131b83f8dd5c0f3925c8b228ac1881ab6f2d0815a4086a02215b2c84dba6a8b667b0a129f73a26fae928fb331f735f3d0961b085ec44f7df39dc5b2759772b9a6ea67ae513399d3986daaa82485a3f722ebee5533a0e4fa6cbf02b4c221ef4a82661ed2955c7a0a1d7a7636283cb317756f634f3eedefc79c19becd6b5a81bcd31c909c7b5ec03969790490c876d631030e6e0abbb2b9ac275bba3dde924ba6b10f9479aed9551005bf5afe078cb238486e3fe0b653384f6a194745daac5b8b6a159fc5d86994b2329d24bbfee00428c9e9eec2309b62cf580cbc96e9fa00f6cb3f3753220291557f1372fdbabd11ca760b06c0eb30c090e7eaa635c39bfa132552db6d2e7f6d03df2a464f1e22e774c7720b100b8c47708435900a16c4a395faaa6fd2912c0e039548e452bc353654a91c1fa2ee05ca7e9fb4617110a7ee47066be58d9bc0fe941914d64e103ca6754b693602c323b294ecd30088e472699464ec715c8b6601b000669a8afa40389d6a4af5a3b97e9fdcca7b96bc1ce7735ef1ae060bdb7dd926cd1ca4e9d665bad449c79edac6778da9d7d21bd524ed0439f5630259e97bc3eebe847aec6b8ca99fb0ca9b1f9eabf63943f1897e2998908c083fdedd0901b83c3564c8d4729bf8ab1ebebef81804148df9a0dfaf19f9ed594c306ff620c3e44bca0f400c9a3e94702cb6139f2c6b2d39f67f01abc986bd233297b25a6d467877d424d3e0781cfe15082fc86263a57c8d59debb7d7578c9290a53ef16699fa1762033633dd904b8440f0e86b8a6fe1bf5e84560c938e039ff0adcada924f52d97bf74e6d6142b15870cc247fd6474add4c2fe166f4c4d6ad8a603a8c3d8831745f078f58b4a6c8c1f87356ecb9c110623c6b22fe74465cc9e18755c94175bed4d6f5a2fc8b451da43f40cb664cf2afacdc492ce1980491f60beb175f00d604b2616817a405ac7e52724e4b835face7630adc0393c0e5ad72c05cf9c317c18b514b4ba28b2badcb005fc6c8e1dcaf8c95455f332332ef358ccc7af5b3a56d83e7e06fd31a725ef2bf167ba3a2aa8d96f0ca6854c1f9ee5e54580c12fc178827b32f8517d08387bbe0691727868ada696e3901c6aad8cd4a7692aa7f4a1ccf857ae2a7d99ba5e79a09312f81620b2cc6ef982dcc94d38d9fb84844761a8bb38549a085a421b8649aab00b119c99d9e485158166a9aa720f3e3bdae730767cd2788cfe084d349234c2324bb114b45020f49b7a80820c4fed0187c9f60800f7ab159c6baa05eb1d7bb975bb37174b99e1d98d01d0cb3f6fa299e0afda9a5125cdbe14e29ae1de5627bf6ac9f4b43813bff438fa17095eb3c35c49149541449cfb7e7696484a347c46f74277fa7356af1bf580904b7644992d3aa1b302776a9aa41e9671f9dc0999e9c8a193668921b2e482165022d355952a2820546a1424a66cc72e912071b8ab4885960f1ce1ce6c6fbbbf2481cfa7a1c808c7466f4f816a66e2cc4859f0dc488580c627e9a00da6e085504f092cb2b34bd3ecc381ee36e397173908c2e9648bcc4a283a97e68e14e8714a1a09060ba2446cdd47bd6b0adf525b5a3a544621c67024476aa34a931bf85fd26bb986c3ac5b5dcc863ac87e53f19614cfdebe5c110832119550afaefe13a0fde1cc733dcb577ac35268e13b41c7789901e8a7e06b842aa5a3f6d7ffc6d2a28112f80a2e2cc1ff666e72b88cbc2b04e4b0f0a353cb40e3e37e8361dd56a31e4428c5308f9948e50fb7d48f8ab19d6964dbbf132b9673712fae696746949471e22940135d53b949865308569681fd0a9998cb622d1d7a524d050da00ff21c9c75eeca5c801383758b65ac4d5de722836f794d33898351cd0433d48c1a7a33bb38c07a8d1fcfa05147758224f6e6e45f8b4e81b052a2de3c3ba7fdac971053a3bdbe55e2874a7112cbe96a595e10901b699b98123e86604bfe4fc02519b07635ec76a402d3f56ed94fef5f44178c72a78a4f0473e43c4dee6fc59c5b7a4ac2ea18f1982cf6360c8db658f7f96ae652aea95824e8fa86750785d4ef01ba20c6ddfaffaa9319efaac0048dd36c54d23e5fa18a602c9c62eff44a18832608acb0c77f6533fcf341cdc7adda868359886b3f8aef2db14e0b52bea047cf1f296c8b2b6b35a7fe82cd2f54200949bb8c1453a9547d0a1f6a851224137b07416a56753504b1a22a15f079c467e246513c0a719233bd39ffd9c60ac5ec86d802fd79dca213bbf092ccb7bef38107ab3e27bf99ca2c329c8426089742e4aeffa3d6db69fbafae21d6457dcbff91a5bc215304d88134de300e8dd0cf0721e8ca38c5cdcc4f3feb6a3fb3068f27916d9f428f8093427d4667814b59753501388f6debf811c3f7937cb72730103ab2f1b3d33f1261fbf3dbdafcb8c38035c74d3e850d53589dc9b25e2f8a3ff3524f4240f9e10d7c21184f46cc5a8a13f12aa7d767884c3110ca5b1023d9f7bfbc7b85e0017afa42c5965e238f0efb74de5cfd8935816d29682056626b7da585161009280b61f1e5252c54dd876a07f7d4f717e148815fb6d4bb4c88384b2c847892853493fd955b5ae6f454f6f556d45d42ea4324a7df29b6bbf9eec89821ac1a7dc01563b49be3417ed3ce1b284028eda1ea6ff1d3bc317cf36c46fad7df511e95ed049624d4e502937b104ff3c0d018059f45cb146fa04d70fe3ab12111455a6cce362820e8513cc88c1ef4c305d4935b66fababcc33bcb02f8d38650ecaabdab835c8554d0579d127844cf5a056d4be1af9e4be492b51fba49bd624629d54c1e31a79d969d6ec13861c59db6eb8af1a20f685aaa58426998bd511ac2c86462e08aeceef3faf4bb60cecef46026e62f8118e05b4b3ce55bb72e8a1ac51b882a3754f6f41cd41bd2c1443f5cf1f2ad0beb000be32b28cfe024d7e7f67614c7fc61cb84351ac0be585f1b79249a3b21cf9015ac3d40ae5cdabf19f14738c21d8137c96d9cad131fb3a5e9ab3cd3ebe04c624ce03ed040c64f7625d251e9579549f7eba6fb06276585fafe8cb17fea04649a9d2e6eec9a09eab435a526406c8437fa4bf082d58502d40ba9fe13772bd631e045d033a2fc8b65f7b91eebab81f8559b06a42279558d68fe9f7dfa8ee82e8f6baa273360bdcb074b344e8a4d2505fef19ed1f14fbd14e9fdeb574b321630f734e96a6d6a62edadada3a079a445131b5f4151f8da3d9ac0afff3e9c7338fd659b6ff8d8e705beeb4fdd86f6247060982135ec206dad38d837912b42de4650507875d904477471e5852074c99be445fc4e2cf9edf1a849e72f6ba442818a05f2a439330c824cd188b36f3f531c5af89c54711627378373f338e3a80043aca17a7ec1ffef09d67b400a075428e25902f0568b58412fb565f2a353ac3c58e12b8d61d834285bbdfb21d28236d8dd046396eacf302b0447f4f0df092c9a7c14cac7223e709862ff3cbecef9729635234654f2f6a985ce853d0938c5d4472cd46f9a400af878deaad281d4449a54dae007c47c70404c0746c05f825c83424a1e3d0a9e3769e661f00a84e8389c785c77709dc56b128a55bc9eb63acc98647e78d96e815afb0ebb15099db983868f881df5a9e9f8f54ca83ea2d16393ade0fc91bb4248bf81d0b223ccf222f5f4716cb4926e821f136fa1b536aa464abd2bb526d6e70cb686a3453411e1a58185660ae5ede67d912826077608325782649f79028a79b435cd62631dde2b21c3fe6d1bccd6d8ce75b51bc325a93d844964451a8f65eef0626f8469fe968aca8b4a235020dd8d58e50d4fe819155b3c4ba6d113fed3f4ac960c71d96121b309d151645c9a95019190da1eab81b2e1a7793646821570a8a1d23479c595d4b42e0a16bd9ec11e6685e706fe9f432fcc7f61f5193ede45a261aade2ce6113174952782c3afce5638568fb93f6c64c5162ee64c14a433a951e3969eb487e021956f59b744e577ce7575267c7564497d073c367d1578b7ac6153102c56097345ed05b21dfb060190ade11ab1d08dc70ccade794126889cabc758ed8c7dd28e63e34ee7c36171c84135295eae61e1e0f4c1e1e41ef89e084b895675690f2bc5625710de788910da9babafa1553b0f9cf516bc4d05dcb36b1d4e4ea779fc90350a2e5df913002a608cb31aea4f602cb3e6c6f56ecdccad561282c68bf18f9bb9a1c8ca7c9ec22c0b9b2765c3bd44f44d545a97b2d19410fd1414c3907fe4f527c1bce9fba118a08406c634f914642f2a887708db466f9fca4e803fb90f61bb9b64014eb639d31da2752f7192d6e374da01107dc1c1ffd779957876c7271c3ea8229310a07d8137eb879b478c1b6d39c5e9595b43a0e31955110f7f6d9f5a2036ca524cd68b58f5807c29d1935c339dc9d2c74989f46719440b2ee44a0012c1984cf5027af29d9df93a71326a78e13a71459eafe74b42da4a37c38f256d6a76ea7dad456774a71594b134814bc1114dcd97c6", 0x1000}], 0x4, &(0x7f0000005680)=[{0x18, 0x10b, 0x9, "5edb8f180bb0bf71"}], 0x18}}, {{&(0x7f00000056c0)=@nl=@kern={0x10, 0x0, 0x0, 0x400002}, 0x80, &(0x7f00000058c0)=[{&(0x7f0000005740)="24c8260048996aa18e95943e958c477ad5d8b19a3c9013eeb2f8", 0x2e3}, {&(0x7f0000005780)="f94b2e1b18c5b685505d33252161d378761d951fec61e6d5e28978ac43099e6446064e41bca70572f729a37d7e63c5b4520352fe968f7c57a7654d08f77ad1f6a14df4874cd2f09621c67e04b04496616134f1b36e34bd57e935c3238e0ae2ce251e996d7a270951e5d39ef18ac90c46e7ff97a894286e7c06e1030d7a186372013ea538bc97f6866c3e9e4f024ab342f0c9363b22ded3b0c04244ce3e67eecc4ca336707c61bd9e8a6c7786af7adc4e8e97d0474a1d07d11effc25b07b4f7672b31b9a8bface90b9ad1b3f4f2bae4c27cec5ec2f60544ada2cb8592bb9c7808b9c576ab79fefe1c01ffcf6b", 0xec}, {&(0x7f0000005880)="aa2e383c7c9691683671f71802707588ff76706672", 0x15}], 0x3}}], 0x6, 0x20000090) openat$selinux_enforce(0xffffffffffffff9c, &(0x7f0000001500)='/selinux/enforce\x00', 0x200000, 0x0) [ 242.326883] x86/PAT: syz-executor.3:11325 freeing invalid memtype [mem 0x00001000-0x00001fff] [ 242.336818] x86/PAT: syz-executor.4:11322 freeing invalid memtype [mem 0x00001000-0x00001fff] [ 242.347462] FAULT_INJECTION: forcing a failure. [ 242.347462] name failslab, interval 1, probability 0, space 0, times 0 [ 242.362611] CPU: 0 PID: 11325 Comm: syz-executor.3 Not tainted 4.14.139 #35 [ 242.369738] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 242.379091] Call Trace: [ 242.381675] dump_stack+0x138/0x19c [ 242.385302] should_fail.cold+0x10f/0x159 [ 242.389437] should_failslab+0xdb/0x130 [ 242.393391] kmem_cache_alloc+0x2d7/0x780 [ 242.397521] ptlock_alloc+0x20/0x70 [ 242.401134] pte_alloc_one+0x60/0x100 [ 242.404914] __pte_alloc+0x2a/0x2d0 [ 242.408522] copy_page_range+0x11ba/0x1bd0 [ 242.412735] ? anon_vma_fork+0x358/0x4d0 [ 242.416778] ? vma_compute_subtree_gap+0x190/0x1f0 [ 242.421691] ? __pmd_alloc+0x410/0x410 [ 242.425561] copy_process.part.0+0x4764/0x6a00 [ 242.430144] ? __cleanup_sighand+0x50/0x50 [ 242.434366] ? lock_downgrade+0x6e0/0x6e0 [ 242.438496] _do_fork+0x19e/0xce0 [ 242.441930] ? fork_idle+0x280/0x280 [ 242.445623] ? fput+0xd4/0x150 [ 242.448798] ? SyS_write+0x15e/0x230 [ 242.452492] SyS_clone+0x37/0x50 [ 242.455834] ? sys_vfork+0x30/0x30 [ 242.459356] do_syscall_64+0x1e8/0x640 [ 242.463223] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 242.468051] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 242.473221] RIP: 0033:0x459829 15:14:53 executing program 4: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="11dca50d5e0bcfe47bf070") mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) ioctl$RTC_ALM_READ(r1, 0x80247008, &(0x7f0000000000)) 15:14:53 executing program 3 (fault-call:6 fault-nth:43): mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) [ 242.476387] RSP: 002b:00007f664e1cac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 242.484074] RAX: ffffffffffffffda RBX: 00007f664e1cac90 RCX: 0000000000459829 [ 242.491323] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000 [ 242.498569] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000 [ 242.505816] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f664e1cb6d4 [ 242.513062] R13: 00000000004bfce6 R14: 00000000004d1a58 R15: 0000000000000004 15:14:53 executing program 5: getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000140)={0x0, 0x0}, &(0x7f0000000180)=0xc) r1 = getgid() getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f00000001c0)={{{@in6=@dev, @in, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6}, 0x0, @in6=@local}}, &(0x7f00000002c0)=0xe8) r3 = getuid() getresuid(&(0x7f0000000300)=0x0, &(0x7f0000000340), &(0x7f0000000380)) mount$fuse(0x0, &(0x7f0000000000)='./bus\x00', &(0x7f0000000040)='fuse\x00', 0x240001, &(0x7f00000003c0)={{'fd'}, 0x2c, {'rootmode', 0x3d, 0x6000}, 0x2c, {'user_id', 0x3d, r0}, 0x2c, {'group_id', 0x3d, r1}, 0x2c, {[{@blksize={'blksize', 0x3d, 0xc00}}, {@max_read={'max_read', 0x3d, 0x401}}, {@blksize={'blksize', 0x3d, 0x400}}, {@max_read={'max_read', 0x3d, 0x9}}, {@blksize={'blksize', 0x3d, 0x800}}, {@max_read={'max_read', 0x3d, 0x1}}, {@max_read={'max_read', 0x3d, 0x5}}, {@default_permissions='default_permissions'}], [{@obj_user={'obj_user', 0x3d, 'system'}}, {@func={'func', 0x3d, 'BPRM_CHECK'}}, {@uid_gt={'uid>', r2}}, {@fowner_eq={'fowner', 0x3d, r3}}, {@defcontext={'defcontext', 0x3d, 'user_u'}}, {@dont_measure='dont_measure'}, {@func={'func', 0x3d, 'KEXEC_INITRAMFS_CHECK'}}, {@mask={'mask', 0x3d, '^MAY_WRITE'}}, {@fowner_eq={'fowner', 0x3d, r4}}]}}) syz_mount_image$ntfs(&(0x7f0000000100)='ntfs\x00', &(0x7f00000000c0)='./bus\x00', 0x0, 0x2, &(0x7f0000001680)=[{0x0, 0x0, 0x401}, {&(0x7f0000001740)="3a77dd21387d6a624e139a664bf7ec507567aba5727ca2250cce6cea", 0x1c, 0x35}], 0x8100, 0x0) [ 242.687886] x86/PAT: syz-executor.3:11346 freeing invalid memtype [mem 0x00001000-0x00001fff] [ 242.699848] FAULT_INJECTION: forcing a failure. [ 242.699848] name failslab, interval 1, probability 0, space 0, times 0 [ 242.714773] CPU: 0 PID: 11346 Comm: syz-executor.3 Not tainted 4.14.139 #35 [ 242.721937] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 242.731291] Call Trace: [ 242.731312] dump_stack+0x138/0x19c [ 242.731333] should_fail.cold+0x10f/0x159 [ 242.731351] should_failslab+0xdb/0x130 [ 242.731365] kmem_cache_alloc+0x2d7/0x780 [ 242.731383] ptlock_alloc+0x20/0x70 [ 242.731397] pte_alloc_one+0x60/0x100 [ 242.731405] __pte_alloc+0x2a/0x2d0 [ 242.731417] copy_page_range+0x11ba/0x1bd0 [ 242.731443] ? __pmd_alloc+0x410/0x410 [ 242.731459] copy_process.part.0+0x4764/0x6a00 [ 242.731487] ? __cleanup_sighand+0x50/0x50 [ 242.731498] ? lock_downgrade+0x6e0/0x6e0 [ 242.731511] _do_fork+0x19e/0xce0 [ 242.731523] ? fork_idle+0x280/0x280 [ 242.731536] ? fput+0xd4/0x150 [ 242.731545] ? SyS_write+0x15e/0x230 [ 242.731558] SyS_clone+0x37/0x50 [ 242.731566] ? sys_vfork+0x30/0x30 [ 242.731577] do_syscall_64+0x1e8/0x640 [ 242.731585] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 242.731599] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 242.731610] RIP: 0033:0x459829 [ 242.741939] RSP: 002b:00007f664e1cac78 EFLAGS: 00000246 [ 242.750023] ORIG_RAX: 0000000000000038 [ 242.757402] RAX: ffffffffffffffda RBX: 00007f664e1cac90 RCX: 0000000000459829 [ 242.836389] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000 [ 242.843662] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000 [ 242.850923] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f664e1cb6d4 [ 242.858196] R13: 00000000004bfce6 R14: 00000000004d1a58 R15: 0000000000000004 15:14:55 executing program 2: getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000140)={0x0, 0x0}, &(0x7f0000000180)=0xc) r1 = getgid() getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f00000001c0)={{{@in6=@dev, @in, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6}, 0x0, @in6=@local}}, &(0x7f00000002c0)=0xe8) r3 = getuid() getresuid(&(0x7f0000000300)=0x0, &(0x7f0000000340), &(0x7f0000000380)) mount$fuse(0x0, &(0x7f0000000000)='./bus\x00', &(0x7f0000000040)='fuse\x00', 0x240001, &(0x7f00000003c0)={{'fd'}, 0x2c, {'rootmode', 0x3d, 0x6000}, 0x2c, {'user_id', 0x3d, r0}, 0x2c, {'group_id', 0x3d, r1}, 0x2c, {[{@blksize={'blksize', 0x3d, 0xc00}}, {@max_read={'max_read', 0x3d, 0x401}}, {@blksize={'blksize', 0x3d, 0x400}}, {@max_read={'max_read', 0x3d, 0x9}}, {@blksize={'blksize', 0x3d, 0x800}}, {@max_read={'max_read', 0x3d, 0x1}}, {@max_read={'max_read', 0x3d, 0x5}}, {@default_permissions='default_permissions'}], [{@obj_user={'obj_user', 0x3d, 'system'}}, {@func={'func', 0x3d, 'BPRM_CHECK'}}, {@uid_gt={'uid>', r2}}, {@fowner_eq={'fowner', 0x3d, r3}}, {@defcontext={'defcontext', 0x3d, 'user_u'}}, {@dont_measure='dont_measure'}, {@func={'func', 0x3d, 'KEXEC_INITRAMFS_CHECK'}}, {@mask={'mask', 0x3d, '^MAY_WRITE'}}, {@fowner_eq={'fowner', 0x3d, r4}}]}}) syz_mount_image$ntfs(&(0x7f0000000100)='ntfs\x00', &(0x7f00000000c0)='./bus\x00', 0x0, 0x2, &(0x7f0000001680)=[{0x0, 0x0, 0x401}, {&(0x7f0000001740)="3a77dd21387d6a624e139a664bf7ec507567aba5727ca2250cce6cea", 0x1c, 0x35}], 0x8100, 0x0) 15:14:55 executing program 1: socket$inet(0x10, 0x5, 0x3) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(r0, 0x8000000000000001, 0x10000000000005, &(0x7f0000000980)="000000009641d897e74754e15cafa0a8d7248293e5ee7f8e2dd6354dafd8e76a155d15a7f2872ef6c17ef451745a222065498562c09b44b262a3a3c76c9f5be0a2af258fa0b6a5dc7726bf25a563705d73ff7e1f556a82ae51f2ae06145b481c4be9c760d8289dc8cb601b1805223df02fa9ac38dc714a052b8acb3070d2d63e76195379b396da6c8d0b2fbc59c17f835516dad72c98358b4ff3cca04e1dda3b0f353c684773cb3813c3d2f0645e7dca7899dce3b933de4ef6e9f512cb5a1f4ad42c632645aff8", 0xc7) setsockopt$inet6_tcp_int(r0, 0x6, 0x100000004, &(0x7f0000000080)=0x2be, 0xfd3b) r1 = socket$inet6_udp(0xa, 0x2, 0x0) syncfs(r1) setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x7ffffffffffffe, &(0x7f0000000000)=0x85, 0x4) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x2f, &(0x7f0000000040), 0x4) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) socket(0xffffffffffffffff, 0x6, 0x5) r2 = open(&(0x7f0000000080)='./bus\x00', 0x80000000141046, 0x0) close(r2) r3 = syz_open_dev$loop(&(0x7f0000000540)='/dev/loop#\x00', 0x0, 0x105082) r4 = memfd_create(&(0x7f0000000300)='4t\xb9L<\xf2\x00\x90\xcd\x00\x00\x00\x00\x00\x00', 0x2) pwritev(r4, &(0x7f0000000440)=[{&(0x7f0000000480)="a8", 0x1}], 0x1, 0x81003) ioctl$LOOP_CHANGE_FD(r3, 0x4c00, r4) bpf$OBJ_GET_MAP(0x7, &(0x7f00000003c0)={&(0x7f0000000400)='./bus\x00', 0x0, 0x8}, 0xfffffffffffffecd) r5 = socket$inet6(0xa, 0x5, 0x2) connect$inet6(r5, &(0x7f0000000100)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, [], 0x1, 0x0}, 0x7}, 0x1c) setsockopt$inet6_opts(r5, 0x29, 0x40, &(0x7f0000000580)=ANY=[@ANYBLOB="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"], 0x1) sendmmsg(r5, &(0x7f00000092c0), 0x4ff, 0x0) mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x800003, 0x11, r2, 0x0) socketpair$unix(0x1, 0x800000000000003, 0x0, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x360) fcntl$setstatus(r3, 0x4, 0x44000) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r7, &(0x7f00000001c0), 0x526987c9) read(r6, &(0x7f0000000200)=""/250, 0x50c7e3e3) sendfile(r3, r4, 0x0, 0x80003) 15:14:55 executing program 0: socket$inet_udplite(0x2, 0x2, 0x88) r0 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dlm-monitor\x00', 0x208800, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x28001, 0x0) read$rfkill(r1, &(0x7f0000000000), 0x3) ioctl$sock_bt_hci(r0, 0x400448df, &(0x7f0000000180)="04998cbea3a7e03fe7c607c5543d13b0dbca6fe837f72eb6571430f6229686e8ca3812b822924b2dc55e2b04b2464f5da71090e5b774d8f76f9f2e0eccb664eda4b346dfbc290c3ff45d52fb34b054b99f59f0aeb8f74f509de2bea3d8d93dd4cb29219f1ddd5fe970fef6e2054f6ac227a831073d26958305fe4000d8bd723cf216625a3066f3a4e0485f9cc305fc5ec8fd7a175fa1875890fab820b16b98c4cab34cdbd3c1d5c884ed5c331796a8979c53388a4d0c1875f2b4e6d9735b3b707ba91156f7") ioctl$int_in(r1, 0x800060c0045005, &(0x7f0000000140)=0x5ad) 15:14:55 executing program 4: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="11dca50d5e0bcfe47bf070") mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) getsockopt$inet6_dccp_int(r1, 0x21, 0x6ab6067f8de77b93, &(0x7f0000000000), &(0x7f0000000040)=0x4) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) 15:14:55 executing program 3 (fault-call:6 fault-nth:44): mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) 15:14:55 executing program 5: openat$audio(0xffffffffffffff9c, &(0x7f0000000300)='/dev/audio\x00', 0x10000, 0x0) getsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(0xffffffffffffffff, 0x84, 0x75, &(0x7f0000000340)={0x0, 0x5}, &(0x7f0000000380)=0x8) socket$kcm(0x10, 0x2, 0x0) r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dlm-control\x00', 0x105000, 0x0) bind$llc(r0, &(0x7f0000000080)={0x1a, 0x305, 0x5, 0x2, 0x4, 0x3, @remote}, 0x10) perf_event_open(&(0x7f000025c000)={0x7, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, 0x0, 0x2, 0x0, 0x0, 0x6698, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0xfffffffffffffffd) perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet_udplite(0x2, 0x2, 0x88) socket(0x10, 0x80000, 0x5) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f0000004380)={{{@in6=@initdev, @in=@broadcast}}, {{@in=@broadcast}, 0x0, @in=@multicast1}}, &(0x7f0000004480)=0xffffffffffffff59) r2 = syz_init_net_socket$llc(0x1a, 0x1, 0x0) setsockopt$sock_timeval(r2, 0x1, 0x15, &(0x7f0000000140)={0x0, 0x7530}, 0x10) connect$llc(r2, &(0x7f0000000000)={0x1a, 0x304, 0x0, 0x200003, 0x7ff}, 0x10) perf_event_open(&(0x7f0000000240)={0x2, 0x6a, 0xf, 0x8000000000000002, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x7fffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000b00)='/group.sta\x9f\xd4t\x00+\x96FR\bR\t\x12\x04J{\t\xab\v\x02t\xe1\t\x85\xa6\xfa\x15\xb3[\xa6\x94!\xf2\x04\xde\xc5f\x8a\x06\x00\x00\x00\xb9\x0f\xf8`\xe0\x1f&+\xaf\xacu\nm\\\xe2Y\xcba\xea\f\xd9DXX>\xef/\xc5\x97\xea\x93\xa7\xde\xc9\xb4\x16\x8eF\x8b\xe0W\xdfuE\xfe\x8b\xc4G\x8f\x8e\xd8[T|i$\x88\x04\x00\x00\x00\x00\x00\x00\x00\x90\x1eB\x8b\x98\xad\xd17_Q\xe15\x84\x8f\xea\x98\xc6J\x81W!\xf0\\\xa1O\x9f\x93\x19C\xceQCV\xe3WE\x11\xe0\xc6\x1f\xf2/\xf6\x1fM\xeba_\xa9\xcd\x10\xcd\x0e~\xc6\xed\xb6\x82\xf6\xee\x9aK\xdd\x86\xf8\x0f\x15Y-\xb8A1\x1bb\xff\xf0\xd2M\xf7)\xaa\x8a\x18\xb9_\x83>\xeb\xfc\xc18^\x1d\xb3Y\xdc#\xde\xdb\x89\x90L\x99o\x02\xb6\x98e\xc6b\xce\xb7\x99k3&\xaf\v\xc6\x80\xff\xdb\xb7\x0e\xb4K\xf8\x17\xba\xf8\xee\fe\xed]\x93\x13\xbc\xf5\xe2<\xa2\xaf\x83\xa3\xaabc\x95\x00\t:\xcc\xe1\t]\x84\x90\x17l\xd3\xa7M\xdb\x02J\x90\xe8\xe8\xb3\xc9\xf6\xea\xb2\xdeI\xe4\x0f\xd4\xca(\xcd\xfa\xb2\xb8@\xca\x17u\x02Rb\xad\xd0\xf7\x9bz#\xb8\x1d\x88\xf6?3,\x89\xb1-p\x8a\r\xdb\xd6,\xa4\x01y\x1bc\xb7\x19\xcey\xb5\xae\xc4\xe3\xc4\xe9=\x1e\x8c\xec\xfe\x05b\x7f`Y k\xc4\xa8 \xc3\x9b\v\xbbE\x8c\xb8\xe6\x8a\xa0s\b\xcb\xbb\xfa\xde\xf0\n`\x8az<\f\xf1\xbe\x85\xd1Wk\x17\xbc1q\x8b\x93Y|\x9e\xe2\xc9Ms/A\x98\xf2\x88\n\x92?7\xb1\xe0\xee\xe8yo\xb7\xb2p\xc5O~\x87\x17F\b\xb5\xd6\xdc\xe4u:$>\xd1\xaf\x1a\xcb\x18\x8a\x0e$\xbd\x94N\xc84}_\x06\x11\xd2\xdd7\xe0\b\x0f\xd0\xb0WZ\xfc\xb1\xc3\tS\x13\a6\xc0\xbc\vG\xe4p\x1b\xee\x89_=\xb8\x12\xddpk\x860\x03\xfd\xde\x0f\x9c\xc2\xe5.\xfe\xaf\x8f\xe2\x16\x8c\xdbS\xe6\xc26\xde\xf4I\x9f\x003P\xb5\x9fg\x82!\xf2\x82 \xc1Os\xd7C\\\xad\xb3n}t\xba|\x10\x05,rk\xd1\t|\x1e\x00\x9e\xfa\"\x85\xdd\xb7O\a\xfc\x14\xa8\x00\x1f6M\xb00\xbd\xb7\xd6\xa8\xffe\xb2\xcb\'', 0x2761, 0x0) open(&(0x7f0000000040)='./file0\x00', 0x200200, 0x11) perf_event_open(0x0, 0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x1) r3 = syz_open_dev$vivid(&(0x7f0000000040)='/dev/video#\x00', 0x0, 0x2) ioctl$VIDIOC_S_PARM(r3, 0xc0cc5616, &(0x7f0000000080)={0x1, @raw_data="321d18bdcc9cc5eb8f5ac79d7d85f94e208583e7ffb9e15f273e9b31a33dcc079fd63d46ab8760edb8a9eb07fb7e121fdc81c21a177f2d1f06e94586f711c40ca10cdabf74a664dce8e398fecda052bcf5bfc6a5f9f6ab6b1994cd36ab0e8ad0e1a4ae9818f95c751fdb6876abaf819a505f99e14cec1b18a0edb9bfed9c65acf9815f3b7b83012c4f31e1bd9530152e4620c54d1b940184c0b539f8ebe781fc60ec3d4ab4da620aaf02be8be978d019736e2e23bdaaa37becfe3e01d3672972372cc22508b0b1e8"}) clock_nanosleep(0xfffffffffffffffe, 0x0, 0x0, &(0x7f0000000000)) syz_open_dev$dri(&(0x7f0000000380)='/dev/dri/card#\x00', 0xc72f, 0x200000) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r4 = semget(0xffffffffffffffff, 0x0, 0x0) semctl$IPC_INFO(r4, 0x4, 0x3, &(0x7f00000006c0)=""/205) socket$inet6_udp(0xa, 0x2, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x7fff}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$l2tp(0x18, 0x1, 0x1) open(&(0x7f0000000500)='./file0\x00', 0x40, 0x166) perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet_tcp(0x2, 0x1, 0x0) 15:14:55 executing program 4: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="11dca50d5e0bcfe47bf070") mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) write$selinux_access(r1, &(0x7f0000000000)={'system_u:object_r:shadow_t:s0', 0x20, '/usr/sbin/cupsd', 0x20, 0xffff}, 0x43) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) 15:14:56 executing program 2: r0 = syz_open_dev$video4linux(0x0, 0x0, 0x0) dup2(r0, 0xffffffffffffffff) sendmsg$TIPC_CMD_SHOW_LINK_STATS(0xffffffffffffffff, 0x0, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @local}}}, 0x1b, 0x0}}], 0x1, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x2102001ff8, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) request_key(&(0x7f0000000000)='user\x00', &(0x7f0000000040)={'syz'}, &(0x7f0000000080), 0xfffffffffffffffd) socket$inet(0x2, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xb2) r1 = syz_open_procfs(0x0, &(0x7f00000001c0)='oom_score\x00') preadv(r1, &(0x7f00000017c0), 0x199, 0x0) getpeername$packet(0xffffffffffffffff, &(0x7f0000000240), &(0x7f0000000280)=0x14) memfd_create(&(0x7f0000000080)='oom_score\x00', 0x91bfb37e2cbaf80) [ 244.962743] x86/PAT: syz-executor.3:11379 freeing invalid memtype [mem 0x00001000-0x00001fff] [ 245.000695] FAULT_INJECTION: forcing a failure. [ 245.000695] name failslab, interval 1, probability 0, space 0, times 0 [ 245.028628] CPU: 1 PID: 11379 Comm: syz-executor.3 Not tainted 4.14.139 #35 [ 245.035811] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 245.045258] Call Trace: [ 245.047856] dump_stack+0x138/0x19c [ 245.051506] should_fail.cold+0x10f/0x159 [ 245.055664] should_failslab+0xdb/0x130 [ 245.059636] kmem_cache_alloc+0x2d7/0x780 [ 245.063787] copy_process.part.0+0x444f/0x6a00 [ 245.068471] ? __cleanup_sighand+0x50/0x50 [ 245.072702] ? lock_downgrade+0x6e0/0x6e0 [ 245.076856] _do_fork+0x19e/0xce0 [ 245.080300] ? fork_idle+0x280/0x280 [ 245.084006] ? fput+0xd4/0x150 [ 245.087208] ? SyS_write+0x15e/0x230 [ 245.090918] SyS_clone+0x37/0x50 [ 245.094266] ? sys_vfork+0x30/0x30 [ 245.097806] do_syscall_64+0x1e8/0x640 [ 245.101681] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 245.106520] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 245.111707] RIP: 0033:0x459829 [ 245.114885] RSP: 002b:00007f664e1cac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 245.122590] RAX: ffffffffffffffda RBX: 00007f664e1cac90 RCX: 0000000000459829 [ 245.129848] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000 [ 245.137106] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000 [ 245.144364] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f664e1cb6d4 [ 245.151623] R13: 00000000004bfce6 R14: 00000000004d1a58 R15: 0000000000000004 [ 245.173431] x86/PAT: syz-executor.4:11389 freeing invalid memtype [mem 0x00001000-0x00001fff] 15:14:56 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="11dca5055e0bcfe47bf070") r1 = socket$inet(0x10, 0x3, 0xc) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000000)="24000000050107031dfffd946fa2830020200a0009000200001d85680c1baba20400ff7e28000000110affffba010000000009b356da5a80d18be34c8546c8243929db2406b20cd37ed01cc0", 0x4c}], 0x1}, 0x0) r2 = semget$private(0x0, 0x1, 0x4c1) semctl$IPC_STAT(r2, 0x0, 0x2, &(0x7f0000000140)=""/229) 15:14:56 executing program 4: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="11dca50d5e0bcfe47bf070") mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) getsockopt$sock_timeval(r1, 0x1, 0x42, &(0x7f0000005840), &(0x7f0000005880)=0x10) getsockname$packet(r1, &(0x7f00000056c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000005700)=0x14) getsockname$packet(r1, &(0x7f0000005740)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000005780)=0x14) getpeername$packet(r1, &(0x7f00000057c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000005800)=0x14) getsockname$packet(r1, &(0x7f0000006cc0)={0x11, 0x0, 0x0}, &(0x7f0000006d00)=0x14) getsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f0000007380)={{{@in6=@mcast2, @in6=@mcast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@mcast1}, 0x0, @in6}}, &(0x7f0000007480)=0xe8) sendmmsg$inet(r1, &(0x7f0000007500)=[{{&(0x7f0000000000)={0x2, 0x4e21, @broadcast}, 0x10, &(0x7f0000000040)=[{&(0x7f00000000c0)="250f56a23c7a4ffcaab1d186fd09189f70c2668123b661e1d6b28eb3ad7c680ceda11e648cd3df28cc6530b952c698fca586e5b437cb001b676231719eccc4ac83b181afb450b69a83104614327af4d57ee97ed23d025c4bcb3858ad1094c3d27bbb8e0c03c76556ee0e4b21320a0d321017e8f74dd1ccb3ddc200921442fb1e4d7b727eb3f11124b74513eedde95c64cbdd67d0fd2dab1b7532b0353f4d4df87d1ef57160182e642c02", 0xaa}, {&(0x7f0000000540)="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", 0x1000}], 0x2}}, {{&(0x7f0000000180)={0x2, 0x4e21, @loopback}, 0x10, &(0x7f00000019c0)=[{&(0x7f0000000300)="837d219e3a89db842a8a6bd61f229c2c4362e90790aaa8f425e0ac70e913a6183db0fbb4bbe5e4675cbfe6f1140eeb304f32674294663ac11430297602d0ec9a973135faa184f1d3bc065bef3e597bb8a096b9844dfda026458cfcf42ef184cc18f1c4afd8ab67cd340d95c29129b35043b90d4bb552c2ec6340de03a4c265753fb3218f520a79ef797fe30c6262795c80f7ac67c0d5155a89f9ac", 0x9b}, {&(0x7f00000001c0)="3925b4c2e4dda5a95b3037e43b056e034d420267aee618213604e0bde4888d6bff9de2b60500e44a72ebe365cd14c13ba561d8e251370a8063eb4bfe", 0x3c}, {&(0x7f0000001540)="56205e121edeafd157948b1295e7670251fd75699208ce95fa4f61749549bd0d2ac047f044c6fdaef89952c24cf00867a869b02b10bb01210c93b75652dd7006f1301dfd8b9fb74c7bcf637c113420042f2e1e33adb1c3bec4be8301cde34e990b5d269b626fab895db9d7c0a696617a3f01e5d5ff574f9ac5017c7386e42561c0bd7ef3f2bd597779e751dcaef68e2bf854480526b9809e8d4dfae958de1b3595f5ae062a59afafa6a73987af6af934f6a9f3b41971d008126275080313632938d8", 0xc2}, {&(0x7f0000000240)="afdb53e1839741fca1b98d69fa68da9b0d4a32785a28e4f124b74ccad8260d25e56d12b6541903177be6e346b827368a2bc37c857e74215479", 0x39}, {&(0x7f0000001640)="60a3781d81bfad7872abebc4b2eb522fabf10a7d702225f0da8700c781f5bc8b43a2133defc0f488dbbd31d581c5528594e9f7468a2ddc618790e8793c6ec95f994161327580dc10bc964f8f5d8e391925732cf69d5f78061b69c9e78c81647279340ba1dd18b9784bf1b02ee89ab170b0941d51081832491e5c8cc9a839cb30db8463f79e91d9754a2c06de5c0348fdec01e1ddfa4e04206e0c32891fe0a1d11092f801db756582f4a9bacf49f32921c544e06e6ced16ea67bc6ab1256cca21914125e9141255fae51e7c63f251bda5f1799b54bdfdd9f408c9243df1cfab11", 0xe0}, {&(0x7f0000001740)="9e4be6f59a468f367ab4b6e1ff1b1ce01b709abfd4a2b759e11b20a949bbf8da581a7ecef574f8f40560dca02c3de09b25844194c2d2fba5980cc1278b555fb3ef5a16cb8021116c3ccdeff909ce4609c22407e12a8cbc7a165e", 0x5a}, {&(0x7f00000017c0)="2276a0fc476e784f4c6bf6b68efdaa6fc07123b26a7f013ffb07945bc21fe4597737920ba56fb60d922dffb14e8ed261e7e2c71370721309dabf86faebf5c471b8a0d8e44fb610cc9be1a87dd10fe234e1", 0x51}, {&(0x7f0000000280)="f8bf9e6d2da07fe34f62f4781bea8d809547cad383ea1d67a9230fd0ef43", 0x1e}, {&(0x7f0000001840)="99392405f6779e1ee2ff874861a74f1af64acfc128620013a0accb0667417d39aed8567659a4618954127b24e56b58ae3476c045e4781acb1cc7ff5a3a39131ee973429430e71595ea4bd6ad224639ca1f40670e2a67c4db4f17533c70114c292290306b7dfb07698a147831d8194a01d723185a13f74651992b21f42ffac0398d8e26a8060391f319bad130dc6bef2f36bd354490d4f6fd4155e9795900ccc0c3f4f7c46dbf70f440dd0b13398fa47218f773ebe7cc4746144e8f4a81b5032dca609094", 0xc4}, {&(0x7f0000001940)="a70a1a1603fb20b6d464faeec60b9407bf3d7b595bafe763112b17975d845be4ec9b6f7c7542390a9fd5cf5a037c30dc71887b1aec47e02adf0e4de53d4dd1aae80d958804fbe41cc27e118415b5245f39cf53b01b65b2b0674d3f692c4ef10b3aded08850695edf0f132322827c370164d151fe7d05c265a7b354e4cd786e97", 0x80}], 0xa}}, {{&(0x7f0000001a80)={0x2, 0x4e20, @rand_addr=0x1}, 0x10, &(0x7f0000002ec0)=[{&(0x7f0000001ac0)="90b227e109a72378db8c31a570a995625a265e7e1c764fe8e1ee59262f05f2cc2dd648dacc2be17e50e815fdab60334ecd46a62e27d5b5df80b747d418d5ed10f7db89ef0b5fed9e71ef17a68a11e253b11a4a8eb968efb872204c946c1bebae5f13e506dbca6f917fd9096ea0a4effe701019f94b81a101cfc270a014e95c0dbd44bdb58f87ab4122f316f08f9d", 0x8e}, {&(0x7f0000001b80)="2ed18a7a6402533be9e2970a30ee99f5a48aa114cb6298d8f2fb56e2f3527f53869a951be0133cfe1f39bb6f7c6bcb0f558ed587eb449cb01055fd410c51f34901667819da4ad5ccc21a1d13b28fe688579fad8050c302608764594a6de90a8558ad7186d7cfebdf17ba0a3ddd1bd0fc00adc2a8705e63ed1e1308455372c2ddaba872b0cbcf8678ee2cdd717710d6e093d437d592cff4496a426ba253ea5d25dc0bbe9b121059991c05ddfc", 0xac}, {&(0x7f0000001c40)="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", 0x1000}, {&(0x7f0000002c40)="75778f31662c16f98338027c311dfd7e515c264b6ff890ccb39a895d412883a9c5bbffea6d5dc0dda6db09ba04327ec52cfb880a68d7f92d90c63b63dd77e0046241d1104ec64a3d95f6794b4480a1f66eab3881694251ca233de244cfef447f360271c6299b28219879611f2c4924334e89fcf881ab3463a2", 0x79}, {&(0x7f0000002cc0)="6b9858a81db7e647e70a0301234f078c5ccde047d7d40b467b4d05d2cc7447fd8d7d7827c17747fdc0e149937ea8aeb4465e480c8b22409880a484973f49b215de826ca81b265cd7ce52b6c5f07a05ec724e6432b5f10d86433b8f9f14015ac305f3102bf6f09768ca2f4fdde808ee8819bca49acbf8310233d557d36765b7de328382e168c6302640dd8feadaa13b26c1821d15e1f3295b03337a2b89daf99c93a6505c7fc93e6cb60fb09d294487fb18966487416e07c213d8e152ceb8c680e5", 0xc1}, {&(0x7f0000002dc0)="726187d8eb55ef2fea2f5b71b0384ef6c1db4a53a680aa4b1f9abc37ddddbfbab6ee3d607383f93878540a45e76c773debc5fee072be29f9319c66a70f5ed31cc3390c489ad410d11bbefd08b8a25101203a69619e6275c0245871cd10138275085f0c193ea858ca00838ee5e34e9ef778541774c3b234d96a0cc5c44099211841c8869f35531023d96cbd15367465f191033ac320ae701408be8d436f7437afd573118679fbcc961d6982642335d7b3226fad3e4d769082509110b93341db76d8baa38df3f676a8fccf3d49023835767cdfb5869c05af", 0xd7}], 0x6, &(0x7f0000002f40)=[@ip_retopts={{0x28, 0x0, 0x7, {[@generic={0x82, 0x12, "2dd091c4e84fa8433aa74fa3a1bcedd7"}, @timestamp={0x44, 0x4, 0xfffffffffffffffe, 0x3, 0xb2e5}]}}}, @ip_ttl={{0x14, 0x0, 0x2, 0x20}}, @ip_retopts={{0x60, 0x0, 0x7, {[@timestamp={0x44, 0x4, 0x0, 0x3, 0xc74}, @cipso={0x86, 0x3b, 0x1, [{0x6, 0xd, "39ad580350add302b24b6e"}, {0x7, 0x6, "d0d43a56"}, {0x6, 0x7, "4c44751f94"}, {0x7, 0xd, "7f99a6b343f24ab828e99f"}, {0x5, 0xe, "b10af02041e1765b90727c08"}]}, @timestamp={0x44, 0x8, 0x1ff, 0x0, 0x6, [{[], 0x80000000}]}, @ra={0x94, 0x6, 0x7fe5b6b1}]}}}, @ip_retopts={{0x4c, 0x0, 0x7, {[@ra={0x94, 0x6, 0x3}, @lsrr={0x83, 0xb, 0x8, [@broadcast, @rand_addr=0x6]}, @ssrr={0x89, 0x13, 0xa, [@remote, @multicast1, @empty, @loopback]}, @cipso={0x86, 0x16, 0x3, [{0x6, 0x10, "6d1f96090e2bfe4656187b4e6798"}]}, @end]}}}, @ip_tos_int={{0x14, 0x0, 0x1, 0xffffffff}}], 0x108}}, {{&(0x7f0000003080)={0x2, 0x4e20}, 0x10, &(0x7f0000003240)=[{&(0x7f00000030c0)="4fbfac9679f26ace56685f30d9e9aa6b482eb77b9a925456a186758975ec4fa51ce34d10a4a7bc861227df5eb78599e3e9365410905ed0bc16cabea5d3ce48f723f90bd093b797ad0fe4fae803087ebfab94a537dcdb5449efbc08a179f25afdcae2d2f257ab00adc34420866a889bba3bb31a659760", 0x76}, {&(0x7f0000003140)="cb0ec4ecd0f3c8d313ce90688f8d45f138d335bfa573d482920d6bc1de5ea154f955c9ebd01228afc94c65b99af9cb", 0x2f}, {&(0x7f0000003180)="e50569b9733b50e18090aaae865cdc5b3bd2703c6fe6ccff903ebd11dae98443e4d4ecd5dd5cfd92c5c46e8ff9f9352c49ce1c984a4b5e8094", 0x39}, {&(0x7f00000031c0)="dd2f205470741af1c386ef39948f301fb98877429b6723b0c41b90305f7255d79cd7334967d35ed1e0e6c3f75b6bed03f1485235f64e436c0e8e7e056b9e094092a3", 0x42}], 0x4, &(0x7f0000003280)=[@ip_ttl={{0x14, 0x0, 0x2, 0x8}}], 0x18}}, {{&(0x7f00000032c0)={0x2, 0x4e23, @rand_addr=0xfffffffffffeffff}, 0x10, &(0x7f0000004480)=[{&(0x7f0000003300)="1457581b79883d5daab94087bd0c2ddccac57da0a8e237ab4bb866fa3846f4c9b2aa6f9a49ed0296f581a640bc817ddb8a53364e94406870404e8c6bdbb3052c368b54ebc43cd1bd326bb68dc592feba9b3ec5aeb100b9e1bd61295cee1f829e170bfa5849029ced825e971adf895fa4", 0x70}, {&(0x7f0000003380)="c09b09ba3fbf244dca", 0x9}, {&(0x7f00000033c0)="dcef24a5f0defcd3299316ee8073b3d43007ca02d3234d9b72918a2b0d0783e50650065489a7a852b1e4f61f732d558ebf0783ed1bf421c24046e3d1eabcaa36cdf22703f22ef4d9ce50da72aaadb308eaa0f969fbe3dccbe3aabbf1367f05df4ba790c5c721cf00b3ab7cf12bdb9e960776aeb23a212424d84d542054ac265c02b16e7cf196547a096adeae5503be676527992fabe618", 0x97}, {&(0x7f0000003480)="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", 0x1000}], 0x4}}, {{&(0x7f00000044c0)={0x2, 0x4e24, @broadcast}, 0x10, &(0x7f0000005680)=[{&(0x7f0000004500)="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", 0x1000}, {&(0x7f0000005500)="6d800441ba2baa9b383790b21de70147796c9757412e280adc6933a2b982df736f78679891fe37e12e081a39eeaa440d8c814b060f4972747bd13a4a2005d2ac53f754c5c31ec37f24a4cca39b950cbb56c114ab44332afe32bd24da1fa7e7787b3e", 0x62}, {&(0x7f0000005580)="d997b196832160911b0b513b6be3c9c0a1a50d2210b36512b51bb9995e5b40f443491d89e0e389abd5bca3ca4f34eca2ee2cac74522b26cf9b14429ff3c66d8d9ecdef543b294a78fb0547db0bd99523fc733288a9b2e73bf84b0247d5d3d10ac90f4cfbece4bee2ad75a422723ccca35ae2367a120a6094ed8234ac9e3ee3a0ff767a7bafefb660914581c4317b39d6ee3a116875d732bc62abc0c63c2010c743589ec4d13688bf15b51c7072acb53e9561e18902a709f0dbd871", 0xbb}, {&(0x7f0000005640)="5ee53f4ea1995eeb041a1c870e07c2a09dcab5cd14bd8f", 0x17}], 0x4, &(0x7f0000007800)=ANY=[@ANYBLOB="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", @ANYRES32=r2, @ANYBLOB="ac141422e0000002000000001c000000000000000000000008000000", @ANYRES32=r3, @ANYBLOB="ffffffffe0000002000000001c000000000000000000000008000000", @ANYRES32=r4, @ANYBLOB="7f000001ac14140e00000000"], 0x160}}, {{&(0x7f00000059c0)={0x2, 0x4e21, @rand_addr=0x8}, 0x10, &(0x7f0000006c40)=[{&(0x7f0000005a00)="3ec2fa840f41b9f762efcff3e7d85ff9fc01336f0d8e6e8aa7944f34df250f87a35aa0f74d7c2a", 0x27}, {&(0x7f0000005a40)="4e40bb8d8abd082159279a878ae1e87b038ca8539b05481098787da8269203026899c6822fd6cab96b3cdac73a556dce864bb8f8b7d2f0797bd555d1a2f7afec23736da442203a3a945e2be057dc849e17453e33bfa4cbf8b4fdbadd61961254274af1ed70", 0x65}, {&(0x7f0000005ac0)="6346191c32334215fba3a6dc340dd72ad0d4988a6cc883c120ca105fa26220ec3fd3fc5aaab957b691ee5d5b305ddf2d1a8f8867fa15e125e80687c41b2d4f5ea025ca617251e6479fbeb5868d10b6", 0x4f}, {&(0x7f0000005b40)="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", 0x1000}, {&(0x7f0000006b40)="2f299260bbc67227d3fbe24124572de76f118fe13a931e05688ac2bd71f72c5a2cfaf2c8f692ac9edea4281ea81ead7e2ad41d6601091921314e964525c1006fb81bdc47be7b9177e36ef302fe260941007da31e160a085120b26c98f048032798fd3f81f5e9d0ba792e0bedde260e196120fb590c7655505983c015418598221cfc120f604019ab06c1ee5d9f8c7fd113c3a67fa2e3b5f10862774f9ccbb9211663941b671309b2b72884de945940b60a568d579a8c98af2bab4280b604f9b653fcf29ebdaca2", 0xc7}], 0x5, &(0x7f0000006d40)=[@ip_tos_int={{0x14, 0x0, 0x1, 0x1}}, @ip_tos_u8={{0x11, 0x0, 0x1, 0x5}}, @ip_tos_u8={{0x11, 0x0, 0x1, 0x81}}, @ip_retopts={{0x7c, 0x0, 0x7, {[@ssrr={0x89, 0x13, 0x1, [@multicast1, @remote, @remote, @empty]}, @timestamp={0x44, 0x1c, 0x7, 0x0, 0x5, [{[], 0x967}, {[], 0x2363}, {[], 0x5}, {[@empty], 0x6}, {[], 0x1f}]}, @ra={0x94, 0x6, 0x3}, @generic={0x83, 0xd, "2441e37c4079fce497047e"}, @ssrr={0x89, 0x13, 0x2, [@remote, @multicast2, @dev={0xac, 0x14, 0x14, 0x25}, @initdev={0xac, 0x1e, 0x0, 0x0}]}, @timestamp={0x44, 0x14, 0x0, 0x1, 0xfffffffffffffffe, [{[@multicast2], 0x8000}, {[@empty], 0x5}]}]}}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {r5, @empty, @remote}}}], 0xe8}}, {{&(0x7f0000006e40)={0x2, 0x4e21, @broadcast}, 0x10, &(0x7f00000072c0)=[{&(0x7f0000006e80)}, {&(0x7f0000006ec0)="fe40207f61fd7ce8435176831576a0adcaa1572e0cd7b5cb3f833eef1302c8986c9fb8474b458eb5c0ce9f68d1e994800895c08e289bc365d0de21280313c39be3d9c4b3c83807bade50af364364c4dfef3701d788707153", 0x58}, {&(0x7f0000006f40)="5e6e6184c352fe9d374ce630d36d4a9df49d54e8e4aac1a0e4ed4dd3b007f3f6ecae988f63504f611741a1d57b86608d9e9f28cb889e1c32f94e78ea3cc8b467f28473832505647a0bdd9bfef085d7640eb7455d8a7bccc7a15e8016e849d260ef57aa9561e8cb1df4a44c9d26a61ada7002198eb470f414fa89f8e3925104906ba71a4dbf757c402a4411906890d48f8ab4e9ef105d41ac3f85185576eedf07", 0xa0}, {&(0x7f0000007000)="d61e9b6045da0203977989cf0fb9976094277ebf4090377dd9c4a6bee3ee67836aa3abf0ab982e897ad3e1498c8f0fc66e6089b5a2dfdf48840fabaa9f5ae1fff5825f2ea3d9f048961c724733728187d4d9dc6971e6cfc54b171b", 0x5b}, {&(0x7f0000007080)="3c0452217e7bb6d3ea4b17f0f5f72d9166d0d9d3601eb8bf4eb07b4c3a815450acc6d9c679030157ef43da2b4a948ba51759da0f195549176a3d94733932035d9887e5586e4e88b9640f66f83687009c3b6006bc8a88140e64fc", 0x5a}, {&(0x7f0000007100)="e9378f2c3620de93de5d4a336900f2d745ed382a188d6049ec4275f93310bb8ca558a09a8e7c981a8ba60648cfcc9eddd458cec8aa58ce339fbf0524e0a9a49cb4157307f463ecf5f5452adc90961cca4119e94ef2ba235022951492f582582a6f3a73b56a164ac6b0190fe16a1317e1ea92025ae5d48fb6efc5", 0x7a}, {&(0x7f0000007180)="dfbc446696ebbd63b2b8e06e0ec0418d40d26912835708e2f2371aba06d25403d05c1209ad456f63dfd219fde8d3e34bad8e6892a17fd1ddb11cc3d6aac3aaa017567334e641932e69467218650304dc663b1ad9e925394147e15b399229f2b2a9ab096cbc8fb9dbf4bee8de08125072f872c4e86946c15c66d58f7025112ad5637970d6e56ffebf2459bb27c060f494cfbb1b17ddd4e4141bcb9f34c34a97071907e5ce319bd0b97cdeb0ab048316ceaf961c1943f8", 0xb6}, {&(0x7f0000007240)="1bb54c85f47e320b955344c6dc414bcf5d32adaa9da0", 0x16}, {&(0x7f0000007280)="7c01c3cdb8647fdeb8bc96a4abf378dfee2a317194e354a2ef6e1639612f1b297204df3d8c441f873edbaaa308c4fd", 0x2f}], 0x9, &(0x7f00000074c0)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {r6, @multicast1, @rand_addr=0x7}}}, @ip_tos_u8={{0x11, 0x0, 0x1, 0x1}}], 0x38}}], 0x8, 0x80) getsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000007700)={{{@in=@local, @in6=@dev}}, {{@in6=@dev}, 0x0, @in6=@loopback}}, &(0x7f0000006e80)=0xe8) 15:14:56 executing program 3 (fault-call:6 fault-nth:45): mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) [ 245.293658] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.2'. [ 245.331458] x86/PAT: syz-executor.4:11408 freeing invalid memtype [mem 0x00001000-0x00001fff] 15:14:56 executing program 1: socket$inet(0x10, 0x5, 0x3) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(r0, 0x8000000000000001, 0x10000000000005, &(0x7f0000000980)="000000009641d897e74754e15cafa0a8d7248293e5ee7f8e2dd6354dafd8e76a155d15a7f2872ef6c17ef451745a222065498562c09b44b262a3a3c76c9f5be0a2af258fa0b6a5dc7726bf25a563705d73ff7e1f556a82ae51f2ae06145b481c4be9c760d8289dc8cb601b1805223df02fa9ac38dc714a052b8acb3070d2d63e76195379b396da6c8d0b2fbc59c17f835516dad72c98358b4ff3cca04e1dda3b0f353c684773cb3813c3d2f0645e7dca7899dce3b933de4ef6e9f512cb5a1f4ad42c632645aff8", 0xc7) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) r2 = socket$inet6_udp(0xa, 0x2, 0x0) syncfs(r2) setsockopt$inet_tcp_int(r1, 0x6, 0x7ffffffffffffe, &(0x7f0000000000)=0x85, 0x4) setsockopt$sock_int(r1, 0x1, 0x2f, &(0x7f0000000040), 0x4) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) socket(0xffffffffffffffff, 0x6, 0x5) r3 = open(&(0x7f0000000080)='./bus\x00', 0x80000000141046, 0x0) close(r3) r4 = syz_open_dev$loop(&(0x7f0000000540)='/dev/loop#\x00', 0x0, 0x105082) r5 = memfd_create(&(0x7f0000000300)='4t\xb9L<\xf2\x00\x90\xcd\x00\x00\x00\x00\x00\x00', 0x2) pwritev(r5, &(0x7f0000000440)=[{&(0x7f0000000480)="a8", 0x1}], 0x1, 0x81003) ioctl$LOOP_CHANGE_FD(r4, 0x4c00, r5) bpf$OBJ_GET_MAP(0x7, &(0x7f00000003c0)={&(0x7f0000000400)='./bus\x00', 0x0, 0x8}, 0xfffffffffffffecd) r6 = socket$inet6(0xa, 0x5, 0x2) connect$inet6(r6, &(0x7f0000000100)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, [], 0x1, 0x0}, 0x7}, 0x1c) setsockopt$inet6_opts(r6, 0x29, 0x40, &(0x7f0000000580)=ANY=[@ANYBLOB="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"], 0x1) sendmmsg(r6, &(0x7f00000092c0), 0x4ff, 0x0) mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x800003, 0x11, r3, 0x0) socketpair$unix(0x1, 0x800000000000003, 0x0, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x360) fcntl$setstatus(r4, 0x4, 0x44000) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r8, &(0x7f00000001c0), 0x526987c9) read(r7, &(0x7f0000000200)=""/250, 0x50c7e3e3) sendfile(r4, r5, 0x0, 0x80003) 15:14:56 executing program 2: r0 = open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) ftruncate(r0, 0x200004) ftruncate(r0, 0x7) write$UHID_INPUT(r0, &(0x7f0000000740)={0x8, "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", 0x1000}, 0x1006) ioctl$VIDIOC_LOG_STATUS(r0, 0x5646, 0x0) 15:14:56 executing program 4: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="11dca50d5e0bcfe47bf070") mkdir(&(0x7f00000002c0)='./file0\x00', 0x9) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) arch_prctl$ARCH_GET_CPUID(0x1011) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) [ 245.347279] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.2'. [ 245.421544] x86/PAT: syz-executor.3:11422 freeing invalid memtype [mem 0x00001000-0x00001fff] [ 245.446765] FAULT_INJECTION: forcing a failure. [ 245.446765] name failslab, interval 1, probability 0, space 0, times 0 [ 245.456006] x86/PAT: syz-executor.4:11429 freeing invalid memtype [mem 0x00001000-0x00001fff] [ 245.477280] x86/PAT: syz-executor.4:11429 freeing invalid memtype [mem 0x00001000-0x00001fff] [ 245.480734] CPU: 0 PID: 11422 Comm: syz-executor.3 Not tainted 4.14.139 #35 [ 245.493072] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 245.502411] Call Trace: [ 245.505073] dump_stack+0x138/0x19c [ 245.508704] should_fail.cold+0x10f/0x159 [ 245.512837] should_failslab+0xdb/0x130 [ 245.516791] kmem_cache_alloc+0x2d7/0x780 [ 245.520926] copy_process.part.0+0x444f/0x6a00 [ 245.525522] ? __cleanup_sighand+0x50/0x50 [ 245.529737] ? lock_downgrade+0x6e0/0x6e0 [ 245.533881] _do_fork+0x19e/0xce0 [ 245.537316] ? fork_idle+0x280/0x280 [ 245.541015] ? fput+0xd4/0x150 [ 245.544706] ? SyS_write+0x15e/0x230 [ 245.548401] SyS_clone+0x37/0x50 [ 245.551743] ? sys_vfork+0x30/0x30 [ 245.555283] do_syscall_64+0x1e8/0x640 [ 245.559150] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 245.563976] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 245.572710] RIP: 0033:0x459829 [ 245.575879] RSP: 002b:00007f664e1cac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 245.583566] RAX: ffffffffffffffda RBX: 00007f664e1cac90 RCX: 0000000000459829 [ 245.590816] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000 [ 245.598068] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000 [ 245.605315] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f664e1cb6d4 [ 245.612565] R13: 00000000004bfce6 R14: 00000000004d1a58 R15: 0000000000000004 15:14:56 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070") r1 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f00000000c0)='cpuset.memory_pressure\x00', 0x0, 0x0) ioctl$TUNGETSNDBUF(r1, 0x800454d3, &(0x7f0000000100)) r2 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x28001, 0x0) read$rfkill(r2, &(0x7f0000000000), 0x3) ioctl$int_in(r2, 0x800060c0045005, &(0x7f0000000140)=0x5ad) 15:14:56 executing program 2: openat$uhid(0xffffffffffffff9c, &(0x7f0000000040)='/dev/uhid\x00', 0x0, 0x0) r0 = syz_open_dev$dspn(&(0x7f00000000c0)='/dev/dsp#\x00', 0x1, 0x2) ioctl$int_in(r0, 0x800000c004500a, &(0x7f0000000040)=0x10000000006) perf_event_open(&(0x7f0000000980)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) faccessat(0xffffffffffffffff, 0x0, 0x0, 0x0) write$UHID_INPUT(r0, &(0x7f00000002c0)={0x8, "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", 0xa943708f26830065}, 0x1006) dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x8ea0e295f125de6b) r1 = openat$ipvs(0xffffffffffffff9c, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0xff}, 0x0) sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0) ioctl$TIOCGPGRP(r0, 0x540f, &(0x7f0000000080)) socket$inet_tcp(0x2, 0x1, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r2, &(0x7f0000002080)=[{{&(0x7f0000001840)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @local}}, 0x80, &(0x7f0000001940)}}], 0x1, 0x44000102, 0x0) openat$cuse(0xffffffffffffff9c, 0x0, 0x2, 0x0) mmap(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x2000004, 0x11, 0xffffffffffffffff, 0x0) pipe(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f0000000100)={{{@in=@multicast2, @in, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@local}, 0x0, @in=@empty}}, &(0x7f0000000200)=0xe8) ioprio_set$uid(0x3, r5, 0x4) fcntl$setpipe(r4, 0x407, 0x0) ioctl$KVM_GET_SUPPORTED_CPUID(r1, 0xc008ae05, &(0x7f0000001300)=""/229) write(r4, &(0x7f0000000340), 0x41395527) vmsplice(r3, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) 15:14:56 executing program 3 (fault-call:6 fault-nth:46): mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) 15:14:56 executing program 5: syz_mount_image$ntfs(&(0x7f0000000100)='ntfs\x00', &(0x7f00000000c0)='./bus\x00', 0x0, 0x2, &(0x7f0000001680)=[{0x0, 0x0, 0x401}, {&(0x7f0000001740)="3a77dd21387d6a624e139a664bf7ec507567aba5727ca2250cce6cea", 0x1c, 0x35}], 0x8100, 0x0) r0 = pkey_alloc(0x0, 0x1) pkey_free(r0) 15:14:56 executing program 4: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1100008912, &(0x7f0000000080)="11dca50d5e0bcfe47bf070") mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x20001000, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) name_to_handle_at(r1, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0)={0xc3, 0x10001, "24a648f83f389969043fb78a2470b2ce70cb5a652e6c0251b12d7427fd5944a7c9679479b0bd4e510eab6a6e8a64d5f23ee04edaeed7cb374dd21a098e2ce1b86036eb815ab9ba6f600ad639d28c5b562469113cad1766dd6116d2678542e6e0259f834fa2f560cece102da823842af2a632af1583fc2f41bbfb0aedb07498398c57dffb7ba91d059cdc76ebec77abfbe32794a1cbe19f36ce61c97e65371d3cd158002e25e96ab1743c0c13e1b91c07d132663738e6834ef58f4e"}, &(0x7f0000000040), 0x400) [ 245.783440] FAULT_INJECTION: forcing a failure. [ 245.783440] name failslab, interval 1, probability 0, space 0, times 0 [ 245.804651] CPU: 1 PID: 11446 Comm: syz-executor.3 Not tainted 4.14.139 #35 [ 245.811783] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 245.821155] Call Trace: [ 245.823751] dump_stack+0x138/0x19c [ 245.827398] should_fail.cold+0x10f/0x159 [ 245.831553] should_failslab+0xdb/0x130 [ 245.835537] kmem_cache_alloc+0x47/0x780 [ 245.839601] ? __lock_is_held+0xb6/0x140 [ 245.843668] ? check_preemption_disabled+0x3c/0x250 [ 245.848693] anon_vma_clone+0xde/0x470 [ 245.852591] anon_vma_fork+0x87/0x4d0 [ 245.856402] copy_process.part.0+0x45e2/0x6a00 [ 245.861013] ? __cleanup_sighand+0x50/0x50 [ 245.865252] ? lock_downgrade+0x6e0/0x6e0 [ 245.869412] _do_fork+0x19e/0xce0 [ 245.872883] ? fork_idle+0x280/0x280 [ 245.876600] ? fput+0xd4/0x150 [ 245.879790] ? SyS_write+0x15e/0x230 [ 245.883508] SyS_clone+0x37/0x50 [ 245.886871] ? sys_vfork+0x30/0x30 [ 245.890412] do_syscall_64+0x1e8/0x640 [ 245.894394] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 245.899246] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 245.904434] RIP: 0033:0x459829 [ 245.907616] RSP: 002b:00007f664e1cac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 245.915321] RAX: ffffffffffffffda RBX: 00007f664e1cac90 RCX: 0000000000459829 [ 245.922586] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000 15:14:57 executing program 1: socket$inet(0x10, 0x5, 0x3) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(r0, 0x8000000000000001, 0x10000000000005, &(0x7f0000000980)="000000009641d897e74754e15cafa0a8d7248293e5ee7f8e2dd6354dafd8e76a155d15a7f2872ef6c17ef451745a222065498562c09b44b262a3a3c76c9f5be0a2af258fa0b6a5dc7726bf25a563705d73ff7e1f556a82ae51f2ae06145b481c4be9c760d8289dc8cb601b1805223df02fa9ac38dc714a052b8acb3070d2d63e76195379b396da6c8d0b2fbc59c17f835516dad72c98358b4ff3cca04e1dda3b0f353c684773cb3813c3d2f0645e7dca7899dce3b933de4ef6e9f512cb5a1f4ad42c632645aff8", 0xc7) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) r2 = socket$inet6_udp(0xa, 0x2, 0x0) syncfs(r2) setsockopt$inet_tcp_int(r1, 0x6, 0x7ffffffffffffe, &(0x7f0000000000)=0x85, 0x4) setsockopt$sock_int(r1, 0x1, 0x2f, &(0x7f0000000040), 0x4) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) socket(0xffffffffffffffff, 0x6, 0x5) r3 = open(&(0x7f0000000080)='./bus\x00', 0x80000000141046, 0x0) close(r3) r4 = syz_open_dev$loop(&(0x7f0000000540)='/dev/loop#\x00', 0x0, 0x105082) r5 = memfd_create(&(0x7f0000000300)='4t\xb9L<\xf2\x00\x90\xcd\x00\x00\x00\x00\x00\x00', 0x2) pwritev(r5, &(0x7f0000000440)=[{&(0x7f0000000480)="a8", 0x1}], 0x1, 0x81003) ioctl$LOOP_CHANGE_FD(r4, 0x4c00, r5) bpf$OBJ_GET_MAP(0x7, &(0x7f00000003c0)={&(0x7f0000000400)='./bus\x00', 0x0, 0x8}, 0xfffffffffffffecd) r6 = socket$inet6(0xa, 0x5, 0x2) connect$inet6(r6, &(0x7f0000000100)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, [], 0x1, 0x0}, 0x7}, 0x1c) setsockopt$inet6_opts(r6, 0x29, 0x40, &(0x7f0000000580)=ANY=[@ANYBLOB="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"], 0x1) sendmmsg(r6, &(0x7f00000092c0), 0x4ff, 0x0) mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x800003, 0x11, r3, 0x0) socketpair$unix(0x1, 0x800000000000003, 0x0, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x360) fcntl$setstatus(r4, 0x4, 0x44000) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r8, &(0x7f00000001c0), 0x526987c9) read(r7, &(0x7f0000000200)=""/250, 0x50c7e3e3) sendfile(r4, r5, 0x0, 0x80003) 15:14:57 executing program 4: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="11dca50d5e0bcfe47bf070") mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000040)='/selinux/policy\x00', 0x0, 0x0) r1 = openat$selinux_mls(0xffffffffffffff9c, &(0x7f0000000240)='/selinux/mls\x00', 0x0, 0x0) r2 = openat$cgroup_ro(r1, &(0x7f0000000000)='cpuacct.usage_percpu_user\x00', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) [ 245.929853] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000 [ 245.937116] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f664e1cb6d4 [ 245.944386] R13: 00000000004bfce6 R14: 00000000004d1a58 R15: 0000000000000004 15:14:57 executing program 3 (fault-call:6 fault-nth:47): mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) 15:14:57 executing program 5: syz_mount_image$ntfs(&(0x7f0000000100)='ntfs\x00', &(0x7f00000000c0)='./bus\x00', 0x0, 0x2, &(0x7f0000001680)=[{0x0, 0x0, 0x401}, {&(0x7f0000001740)="3a77dd21387d6a624e139a664bf7ec507567aba5727ca2250cce6cea", 0x1c, 0x35}], 0x8100, 0x0) lstat(&(0x7f00000001c0)='./bus\x00', &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, 0x0}) syz_mount_image$hfsplus(&(0x7f0000000000)='hfsplus\x00', &(0x7f0000000040)='./bus\x00', 0x7fff, 0x1, &(0x7f0000000080)=[{&(0x7f0000000140)="fb74dda3d5c53c30e18320e73c473a960b8bcd6bbd398f0bc40e4c449aeda9a866f8decb12af299e3e647bb5abd2312db0f94452161a0f2b9f45534621e7cf1171863a458478106f49318e876aa05af39e2e151c7ece7525", 0x58, 0x3f}], 0x0, &(0x7f0000000280)={[{@part={'part', 0x3d, 0x5}}, {@barrier='barrier'}, {@part={'part', 0x3d, 0x7}}, {@barrier='barrier'}, {@nls={'nls', 0x3d, 'iso8859-7'}}, {@session={'session', 0x3d, 0x8}}], [{@fowner_eq={'fowner', 0x3d, r0}}]}) [ 246.108388] FAULT_INJECTION: forcing a failure. [ 246.108388] name failslab, interval 1, probability 0, space 0, times 0 [ 246.124643] CPU: 1 PID: 11480 Comm: syz-executor.3 Not tainted 4.14.139 #35 [ 246.131767] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 246.141112] Call Trace: [ 246.143696] dump_stack+0x138/0x19c [ 246.147314] should_fail.cold+0x10f/0x159 [ 246.151448] should_failslab+0xdb/0x130 [ 246.155406] kmem_cache_alloc+0x47/0x780 [ 246.159449] ? anon_vma_chain_link+0x142/0x1a0 [ 246.164013] anon_vma_clone+0xde/0x470 [ 246.167896] anon_vma_fork+0x87/0x4d0 [ 246.171680] copy_process.part.0+0x45e2/0x6a00 [ 246.176254] ? __cleanup_sighand+0x50/0x50 [ 246.180469] ? lock_downgrade+0x6e0/0x6e0 [ 246.184601] _do_fork+0x19e/0xce0 [ 246.188037] ? fork_idle+0x280/0x280 [ 246.191739] ? fput+0xd4/0x150 [ 246.194911] ? SyS_write+0x15e/0x230 [ 246.198609] SyS_clone+0x37/0x50 [ 246.201954] ? sys_vfork+0x30/0x30 [ 246.205480] do_syscall_64+0x1e8/0x640 [ 246.209343] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 246.214169] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 246.219337] RIP: 0033:0x459829 [ 246.222505] RSP: 002b:00007f664e1cac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 246.230198] RAX: ffffffffffffffda RBX: 00007f664e1cac90 RCX: 0000000000459829 [ 246.237532] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000 [ 246.244784] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000 [ 246.252032] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f664e1cb6d4 15:14:57 executing program 4: r0 = socket$inet_udplite(0x2, 0x2, 0x88) mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) r1 = openat$proc_capi20(0xffffffffffffff9c, &(0x7f0000000100)='/proc/capi/capi20\x00', 0x80, 0x0) ioctl$VIDIOC_TRY_DECODER_CMD(r1, 0xc0485661, &(0x7f0000000140)={0x6, 0x1, @raw_data=[0x964, 0x1000, 0x5, 0x1000, 0x9, 0xffffffff00000000, 0x1083, 0x10001, 0x0, 0x6, 0x6, 0x100000000, 0x9, 0x8, 0x10000000000, 0x6]}) chdir(&(0x7f00000003c0)='./file0\x00') getsockopt$inet_sctp_SCTP_GET_ASSOC_STATS(r1, 0x84, 0x70, &(0x7f0000000400)={0x0, @in={{0x2, 0x4e21, @loopback}}, [0x5bff, 0xfffffffffffff801, 0x8000, 0x10001, 0x5, 0x8, 0x7, 0x1, 0x0, 0x0, 0x2, 0x8000, 0x1, 0xae4, 0x6]}, &(0x7f00000001c0)=0x100) getsockname$packet(r1, &(0x7f0000000280), &(0x7f0000000300)=0x14) setsockopt$inet_sctp_SCTP_STREAM_SCHEDULER_VALUE(r1, 0x84, 0x7c, &(0x7f0000000240)={r2, 0x8, 0x963}, 0x8) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) preadv(r0, &(0x7f00000000c0)=[{&(0x7f0000000000)=""/107, 0x6b}], 0x1, 0x0) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) [ 246.259283] R13: 00000000004bfce6 R14: 00000000004d1a58 R15: 0000000000000004 [ 246.286770] hfsplus: unable to parse mount options 15:14:57 executing program 0: ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070") r0 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x5, 0x80000) read$rfkill(r0, &(0x7f0000000000), 0x3) ioctl$int_in(r0, 0x800060c0045005, &(0x7f0000000140)=0x5ad) [ 246.359675] audit: type=1400 audit(1566314097.382:71): avc: denied { map } for pid=11488 comm="syz-executor.4" path="socket:[40413]" dev="sockfs" ino=40413 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=rawip_socket permissive=1 15:14:57 executing program 4: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="11dca50d5e0bcfe47bf070") mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) r1 = openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/policy\x00', 0x0, 0x0) setsockopt$bt_hci_HCI_FILTER(r1, 0x0, 0x2, &(0x7f0000000040)={0xffffffff, 0x10001, 0xff, 0x4}, 0x10) chdir(&(0x7f00000003c0)='./file0\x00') r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) 15:14:57 executing program 5: r0 = openat$null(0xffffffffffffff9c, &(0x7f0000000040)='/dev/null\x00', 0x8000, 0x0) mknodat(r0, &(0x7f0000000080)='./bus\x00', 0xc000, 0x7) syz_mount_image$ntfs(&(0x7f0000000100)='ntfs\x00', &(0x7f00000000c0)='./bus\x00', 0x0, 0x2, &(0x7f0000001680)=[{0x0, 0x0, 0x401}, {&(0x7f0000001740)="3a77dd21387d6a624e139a664bf7ec507567aba5727ca2250cce6cea", 0x1c, 0x35}], 0x8100, 0x0) getsockopt$inet_sctp_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000140)={0x0, 0x9, 0x20}, &(0x7f0000000180)=0xc) setsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000001c0)={r1, 0x5}, 0xaac159ececcd24d2) openat$dsp(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp\x00', 0x2000, 0x0) getsockopt$inet_sctp_SCTP_GET_LOCAL_ADDRS(r0, 0x84, 0x6d, &(0x7f0000000200)={r1, 0x7b, "2b5483e17b5e0924987812e46c4fb1ebaa9255c630cb2b64f59bbc2d53a29fb88bfe4cb287deea0868b2e91e0730f8655b8e3704c4e558482f8bb4c509484b957881fd9179a66e138d2dbb5cf938ce81c98cea15b3a1dda2208c0e47b76314611dd72d3d6c17d49c764a42d434e2d0ac7597aa0229b8408053880e"}, &(0x7f00000002c0)=0x83) [ 246.567462] x86/PAT: syz-executor.4:11514 freeing invalid memtype [mem 0x00001000-0x00001fff] 15:14:57 executing program 2: openat$audio(0xffffffffffffff9c, &(0x7f0000000300)='/dev/audio\x00', 0x10000, 0x0) getsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(0xffffffffffffffff, 0x84, 0x75, &(0x7f0000000340)={0x0, 0x5}, &(0x7f0000000380)=0x8) socket$kcm(0x10, 0x2, 0x0) r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dlm-control\x00', 0x105000, 0x0) bind$llc(r0, &(0x7f0000000080)={0x1a, 0x305, 0x5, 0x2, 0x4, 0x3, @remote}, 0x10) perf_event_open(&(0x7f000025c000)={0x7, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, 0x0, 0x2, 0x0, 0x0, 0x6698, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0xfffffffffffffffd) perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet_udplite(0x2, 0x2, 0x88) socket(0x10, 0x80000, 0x5) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f0000004380)={{{@in6=@initdev, @in=@broadcast}}, {{@in=@broadcast}, 0x0, @in=@multicast1}}, &(0x7f0000004480)=0xffffffffffffff59) r2 = syz_init_net_socket$llc(0x1a, 0x1, 0x0) setsockopt$sock_timeval(r2, 0x1, 0x15, &(0x7f0000000140)={0x0, 0x7530}, 0x10) connect$llc(r2, &(0x7f0000000000)={0x1a, 0x304, 0x0, 0x200003, 0x7ff}, 0x10) perf_event_open(&(0x7f0000000240)={0x2, 0x6a, 0xf, 0x8000000000000002, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x7fffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000b00)='/group.sta\x9f\xd4t\x00+\x96FR\bR\t\x12\x04J{\t\xab\v\x02t\xe1\t\x85\xa6\xfa\x15\xb3[\xa6\x94!\xf2\x04\xde\xc5f\x8a\x06\x00\x00\x00\xb9\x0f\xf8`\xe0\x1f&+\xaf\xacu\nm\\\xe2Y\xcba\xea\f\xd9DXX>\xef/\xc5\x97\xea\x93\xa7\xde\xc9\xb4\x16\x8eF\x8b\xe0W\xdfuE\xfe\x8b\xc4G\x8f\x8e\xd8[T|i$\x88\x04\x00\x00\x00\x00\x00\x00\x00\x90\x1eB\x8b\x98\xad\xd17_Q\xe15\x84\x8f\xea\x98\xc6J\x81W!\xf0\\\xa1O\x9f\x93\x19C\xceQCV\xe3WE\x11\xe0\xc6\x1f\xf2/\xf6\x1fM\xeba_\xa9\xcd\x10\xcd\x0e~\xc6\xed\xb6\x82\xf6\xee\x9aK\xdd\x86\xf8\x0f\x15Y-\xb8A1\x1bb\xff\xf0\xd2M\xf7)\xaa\x8a\x18\xb9_\x83>\xeb\xfc\xc18^\x1d\xb3Y\xdc#\xde\xdb\x89\x90L\x99o\x02\xb6\x98e\xc6b\xce\xb7\x99k3&\xaf\v\xc6\x80\xff\xdb\xb7\x0e\xb4K\xf8\x17\xba\xf8\xee\fe\xed]\x93\x13\xbc\xf5\xe2<\xa2\xaf\x83\xa3\xaabc\x95\x00\t:\xcc\xe1\t]\x84\x90\x17l\xd3\xa7M\xdb\x02J\x90\xe8\xe8\xb3\xc9\xf6\xea\xb2\xdeI\xe4\x0f\xd4\xca(\xcd\xfa\xb2\xb8@\xca\x17u\x02Rb\xad\xd0\xf7\x9bz#\xb8\x1d\x88\xf6?3,\x89\xb1-p\x8a\r\xdb\xd6,\xa4\x01y\x1bc\xb7\x19\xcey\xb5\xae\xc4\xe3\xc4\xe9=\x1e\x8c\xec\xfe\x05b\x7f`Y k\xc4\xa8 \xc3\x9b\v\xbbE\x8c\xb8\xe6\x8a\xa0s\b\xcb\xbb\xfa\xde\xf0\n`\x8az<\f\xf1\xbe\x85\xd1Wk\x17\xbc1q\x8b\x93Y|\x9e\xe2\xc9Ms/A\x98\xf2\x88\n\x92?7\xb1\xe0\xee\xe8yo\xb7\xb2p\xc5O~\x87\x17F\b\xb5\xd6\xdc\xe4u:$>\xd1\xaf\x1a\xcb\x18\x8a\x0e$\xbd\x94N\xc84}_\x06\x11\xd2\xdd7\xe0\b\x0f\xd0\xb0WZ\xfc\xb1\xc3\tS\x13\a6\xc0\xbc\vG\xe4p\x1b\xee\x89_=\xb8\x12\xddpk\x860\x03\xfd\xde\x0f\x9c\xc2\xe5.\xfe\xaf\x8f\xe2\x16\x8c\xdbS\xe6\xc26\xde\xf4I\x9f\x003P\xb5\x9fg\x82!\xf2\x82 \xc1Os\xd7C\\\xad\xb3n}t\xba|\x10\x05,rk\xd1\t|\x1e\x00\x9e\xfa\"\x85\xdd\xb7O\a\xfc\x14\xa8\x00\x1f6M\xb00\xbd\xb7\xd6\xa8\xffe\xb2\xcb\'', 0x2761, 0x0) open(&(0x7f0000000040)='./file0\x00', 0x200200, 0x11) perf_event_open(0x0, 0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x1) r3 = syz_open_dev$vivid(&(0x7f0000000040)='/dev/video#\x00', 0x0, 0x2) ioctl$VIDIOC_S_PARM(r3, 0xc0cc5616, &(0x7f0000000080)={0x1, @raw_data="321d18bdcc9cc5eb8f5ac79d7d85f94e208583e7ffb9e15f273e9b31a33dcc079fd63d46ab8760edb8a9eb07fb7e121fdc81c21a177f2d1f06e94586f711c40ca10cdabf74a664dce8e398fecda052bcf5bfc6a5f9f6ab6b1994cd36ab0e8ad0e1a4ae9818f95c751fdb6876abaf819a505f99e14cec1b18a0edb9bfed9c65acf9815f3b7b83012c4f31e1bd9530152e4620c54d1b940184c0b539f8ebe781fc60ec3d4ab4da620aaf02be8be978d019736e2e23bdaaa37becfe3e01d3672972372cc22508b0b1e8"}) clock_nanosleep(0xfffffffffffffffe, 0x0, 0x0, &(0x7f0000000000)) syz_open_dev$dri(&(0x7f0000000380)='/dev/dri/card#\x00', 0xc72f, 0x200000) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r4 = semget(0xffffffffffffffff, 0x0, 0x0) semctl$IPC_INFO(r4, 0x4, 0x3, &(0x7f00000006c0)=""/205) socket$inet6_udp(0xa, 0x2, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x7fff}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$l2tp(0x18, 0x1, 0x1) open(&(0x7f0000000500)='./file0\x00', 0x40, 0x166) perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet_tcp(0x2, 0x1, 0x0) 15:14:57 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) perf_event_open(&(0x7f0000000000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$selinux_avc_hash_stats(0xffffffffffffff9c, &(0x7f00000000c0)='/selinux/avc/hash_stats\x00', 0x0, 0x0) mmap(&(0x7f000092d000/0x400000)=nil, 0x400000, 0x0, 0x10, 0xffffffffffffffff, 0x0) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) madvise(&(0x7f0000a62000/0x1000)=nil, 0x200000, 0x10200000008) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) write$capi20_data(r1, &(0x7f0000000a40)=ANY=[@ANYBLOB], 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) socket$key(0xf, 0x3, 0x2) ioctl$KVM_SET_LAPIC(r3, 0x4400ae8f, &(0x7f0000000640)={"6cdd4237dd245c8404721efdc9c8dc1964125fa96fa42b761c6ec25b2bec0ba4c81036c93a40c8a4d4412a763b00040000000000003c5ca206c047ecee377abaece6b88378e3d63a98fc191f361d264ffa8b46485f02baee1ab6b8154252066178868d1ef4b5365c5dc26ca097ddda7c21a984c2b9ca4bbb7a87165c0c1dbc75d7ea4df10000174a3ac8694525952f44500a1f0db509c32cc7ace842c28f37f06e4ea9f1e5f0c6c379f9cc58bf69fcde318ead4825aa1b6a832d4e48cc41bb5a6baa41d614f6c8941bee805954a62d196a4e8d4bf6b21224b57f530d0000c1ff53bf79a1f5c5dc34b2262d66ae793b6304a30b97077f1c131045cbc11c4562d22db88d0edc5daee171cc04d96d9ec2db07478f347edbd6404923ad4a5672b1b285c7988c4ec0922c655ff600000000c00dc290d936d93236051fadfb4b95d02c0bda7ce38dabb7cd103fe4d0c9c963cd717a77f8df8d46099b1f58e068af6afbbc19db161c6df3e7c9c71bc08a282fc2c142856b5e4caff4c0a4f72445ef10dcd2c569319d6e9bb2058d023f669a64fc7d9684b45b00000000364673dcfa9235ea5a2ff23c4bb5c5acb290e8976dcac779ff000000000000003d4e185afe28b774b99d3890bd37428617de4cdd6f53c419ce31054182fd098af7b7f1b1152c691611f897558d4b755cb783978d9859b0537b05b623dcb5c4ca9317471a40fa4998cca80e961efffb4e1aa25d8a17deef0c8694c4395fc99be3c3fe7aeb8af4929ce7d346ca62b25d48fda5d10146702f78b233b5208752726ed9f0c340d494b92d19cc930bb8a5f8b4da8f4603ac0c3b698384e17a570dc8524823ed15af4ecfabb4b2541d3c114b7bba1c21a845c9cf0d1cc24aba47e30f558b2246ad95ccf7d2f80cc0ab26f08336ea1a33b79cf35b898837016eb211a1734c7af076e15451e33519fc978f66df7df4557c91024a8dc130a28ef5f63ad07b39c8d23b85cf434e065e8a29a800655d127de6f6347b4951f97b5703dc78b1ca9d74ea6a9ae12ab367c0de2659cc38d2f33ddd86e0597d33361eada119b5132145fa4525c488c7fffd6ceda6e9a02ebd97ced6b0161f2cc84615ceb8b18883299c636e9e46724a9a0600a8bb02f3e489631d522019a35fe12a33caf9dd8768ddbc02a484c345c3eff254297b1dbb04989c3f9f3c7b3c985c39b1d313018068d3809bac8c657e39f4f692613e28387e955722908dd88b56163be8312ff47c5b6f280472935af74e97a5a8110a4d74496f4c8ec82ddb56d9b962d2fc43fa01a047526865c84f7cff36056cc4ac258021e1581d43badaaec6cc5a2ef989de9801fed6d4be2bfcfe07a69c46bffbe9dd03970800000000000000d372bdd6d89dc1ecf63c23d506114d0fba2bd1c69e8f7e3fccdcda85ce975ec1381b1cec6ddaa76e186719d8191643"}) ioctl$KVM_SET_MP_STATE(r3, 0x4004ae99, &(0x7f0000000080)=0x10000000002) ioctl$KDSETMODE(r1, 0x4b3a, 0x27) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) syz_mount_image$ntfs(&(0x7f0000000100)='ntfs\x00', &(0x7f00000000c0)='./bus\x00', 0x0, 0x2, &(0x7f0000001680)=[{0x0, 0x0, 0x401}, {&(0x7f0000001740)="3a77dd21387d6a624e139a664bf7ec507567aba5727ca2250cce6cea", 0x1c, 0x35}], 0x8100, 0x0) 15:14:57 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070") r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x28001, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f00000000c0)='./cgroup.net/syz0\x00', 0x1ff) read$rfkill(r1, &(0x7f0000000000), 0x3) ioctl$int_in(r1, 0x5452, &(0x7f0000000140)=0x5ed) 15:14:57 executing program 1: socket$inet(0x10, 0x5, 0x3) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(r0, 0x8000000000000001, 0x10000000000005, &(0x7f0000000980)="000000009641d897e74754e15cafa0a8d7248293e5ee7f8e2dd6354dafd8e76a155d15a7f2872ef6c17ef451745a222065498562c09b44b262a3a3c76c9f5be0a2af258fa0b6a5dc7726bf25a563705d73ff7e1f556a82ae51f2ae06145b481c4be9c760d8289dc8cb601b1805223df02fa9ac38dc714a052b8acb3070d2d63e76195379b396da6c8d0b2fbc59c17f835516dad72c98358b4ff3cca04e1dda3b0f353c684773cb3813c3d2f0645e7dca7899dce3b933de4ef6e9f512cb5a1f4ad42c632645aff8", 0xc7) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) r2 = socket$inet6_udp(0xa, 0x2, 0x0) syncfs(r2) setsockopt$inet_tcp_int(r1, 0x6, 0x7ffffffffffffe, &(0x7f0000000000)=0x85, 0x4) setsockopt$sock_int(r1, 0x1, 0x2f, &(0x7f0000000040), 0x4) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) socket(0xffffffffffffffff, 0x6, 0x5) r3 = open(&(0x7f0000000080)='./bus\x00', 0x80000000141046, 0x0) close(r3) r4 = syz_open_dev$loop(&(0x7f0000000540)='/dev/loop#\x00', 0x0, 0x105082) r5 = memfd_create(&(0x7f0000000300)='4t\xb9L<\xf2\x00\x90\xcd\x00\x00\x00\x00\x00\x00', 0x2) pwritev(r5, &(0x7f0000000440)=[{&(0x7f0000000480)="a8", 0x1}], 0x1, 0x81003) ioctl$LOOP_CHANGE_FD(r4, 0x4c00, r5) bpf$OBJ_GET_MAP(0x7, &(0x7f00000003c0)={&(0x7f0000000400)='./bus\x00', 0x0, 0x8}, 0xfffffffffffffecd) r6 = socket$inet6(0xa, 0x5, 0x2) connect$inet6(r6, &(0x7f0000000100)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, [], 0x1, 0x0}, 0x7}, 0x1c) setsockopt$inet6_opts(r6, 0x29, 0x40, &(0x7f0000000580)=ANY=[@ANYBLOB="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"], 0x1) sendmmsg(r6, &(0x7f00000092c0), 0x4ff, 0x0) mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x800003, 0x11, r3, 0x0) socketpair$unix(0x1, 0x800000000000003, 0x0, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x360) fcntl$setstatus(r4, 0x4, 0x44000) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r8, &(0x7f00000001c0), 0x526987c9) read(r7, &(0x7f0000000200)=""/250, 0x50c7e3e3) sendfile(r4, r5, 0x0, 0x80003) 15:14:57 executing program 3 (fault-call:6 fault-nth:48): mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) [ 246.657194] x86/PAT: syz-executor.4:11514 freeing invalid memtype [mem 0x00001000-0x00001fff] 15:14:57 executing program 4: open(&(0x7f0000000000)='./file0\x00', 0x200800, 0x40) r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="11dca50d5e0bcfe47bf070") mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) write(r1, &(0x7f00000000c0)="d7d44741c051815022712b9b0a58720dadc14896630464a4b100dff86909a32aa6c53f0568c019d54ac0f8c839cdf3b499c32082a62cd822a1d2311f00572cb11d1c0298a96679966295e6a17e629e93cabae33b2517588c01298a1b3ba70fca346283f4ddcf7025d1a9a0b97afb23f1cdf44fcf2eaef9c653a1d1366ce8c50949697eed1578affcff380c1da888a239e23768d85c73dee62a5cae7af787cf9e275020", 0xa3) [ 246.796781] FAULT_INJECTION: forcing a failure. [ 246.796781] name failslab, interval 1, probability 0, space 0, times 0 [ 246.818097] CPU: 1 PID: 11541 Comm: syz-executor.3 Not tainted 4.14.139 #35 [ 246.825236] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 246.834587] Call Trace: [ 246.837179] dump_stack+0x138/0x19c [ 246.840806] should_fail.cold+0x10f/0x159 [ 246.844950] ? anon_vma_clone+0xde/0x470 [ 246.849024] should_failslab+0xdb/0x130 [ 246.852995] kmem_cache_alloc+0x47/0x780 [ 246.857056] ? anon_vma_chain_link+0x142/0x1a0 [ 246.861624] anon_vma_clone+0xde/0x470 [ 246.865508] anon_vma_fork+0x87/0x4d0 [ 246.869300] copy_process.part.0+0x45e2/0x6a00 [ 246.873887] ? __cleanup_sighand+0x50/0x50 [ 246.878114] ? lock_downgrade+0x6e0/0x6e0 [ 246.882254] _do_fork+0x19e/0xce0 [ 246.885700] ? fork_idle+0x280/0x280 [ 246.889406] ? fput+0xd4/0x150 [ 246.892590] ? SyS_write+0x15e/0x230 [ 246.896295] SyS_clone+0x37/0x50 [ 246.899649] ? sys_vfork+0x30/0x30 [ 246.903176] do_syscall_64+0x1e8/0x640 [ 246.907054] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 246.911890] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 246.917064] RIP: 0033:0x459829 [ 246.920241] RSP: 002b:00007f664e1cac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 246.927932] RAX: ffffffffffffffda RBX: 00007f664e1cac90 RCX: 0000000000459829 [ 246.935189] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000 [ 246.942443] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000 [ 246.949699] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f664e1cb6d4 [ 246.956951] R13: 00000000004bfce6 R14: 00000000004d1a58 R15: 0000000000000004 [ 246.969907] x86/PAT: syz-executor.4:11542 freeing invalid memtype [mem 0x00001000-0x00001fff] 15:14:58 executing program 4: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="11dca50d5e0bcfe47bf070") mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r1 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ubi_ctrl\x00', 0x200, 0x0) r2 = openat$cgroup_ro(r1, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x4000, 0x3, &(0x7f0000ffc000/0x4000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) 15:14:58 executing program 3 (fault-call:6 fault-nth:49): mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) 15:14:58 executing program 4: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1f, &(0x7f0000000000)="11dca50d5e2bcfe47bf070") mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0) ioctl$FS_IOC_GETFSMAP(r1, 0xc0c0583b, &(0x7f0000000540)={0x0, 0x0, 0x4, 0x0, [], [{0x7f, 0x401, 0x7, 0x3, 0x9}, {0x2a9, 0x80000000, 0xc39, 0x1e, 0x7b, 0x8}], [[], [], [], []]}) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) [ 247.189241] FAULT_INJECTION: forcing a failure. [ 247.189241] name failslab, interval 1, probability 0, space 0, times 0 [ 247.231101] CPU: 0 PID: 11567 Comm: syz-executor.3 Not tainted 4.14.139 #35 [ 247.238399] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 247.247762] Call Trace: [ 247.250377] dump_stack+0x138/0x19c [ 247.254027] should_fail.cold+0x10f/0x159 [ 247.258205] should_failslab+0xdb/0x130 [ 247.262216] kmem_cache_alloc+0x2d7/0x780 [ 247.266375] ? anon_vma_clone+0x310/0x470 [ 247.270531] anon_vma_fork+0x1ce/0x4d0 [ 247.274422] copy_process.part.0+0x45e2/0x6a00 [ 247.279026] ? __cleanup_sighand+0x50/0x50 [ 247.283267] ? lock_downgrade+0x6e0/0x6e0 [ 247.287427] _do_fork+0x19e/0xce0 [ 247.290899] ? fork_idle+0x280/0x280 [ 247.294634] ? fput+0xd4/0x150 [ 247.297933] ? SyS_write+0x15e/0x230 [ 247.301653] SyS_clone+0x37/0x50 [ 247.305020] ? sys_vfork+0x30/0x30 [ 247.308561] do_syscall_64+0x1e8/0x640 [ 247.312542] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 247.317392] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 247.322577] RIP: 0033:0x459829 15:14:58 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCINQ(r0, 0x541b, &(0x7f00000000c0)) ioctl(r0, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070") r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x28001, 0x0) ioctl$SNDRV_CTL_IOCTL_ELEM_WRITE(r1, 0xc4c85513, &(0x7f0000000180)={{0x4, 0x0, 0x0, 0x0, 'syz1\x00', 0x101}, 0x1, [0x5, 0x2, 0x7, 0x7, 0x98, 0x5, 0xf2, 0x4e15, 0x8, 0x7, 0xfffffffffffff801, 0x3, 0x7, 0x20, 0x4, 0x8, 0x10000, 0x1ff, 0x7, 0x6, 0x7, 0x800, 0xa356, 0x2, 0x9, 0xfffffffffffff5d5, 0x80, 0x9, 0x6f5, 0xfff, 0x1, 0x4, 0x1, 0x4, 0xbbc4, 0x100000000, 0xcd, 0x8001, 0x10000, 0x8001, 0x8, 0x3ff, 0x0, 0x1000, 0x3, 0x0, 0x0, 0x0, 0x4, 0x8, 0x58c, 0x1, 0x6, 0x7, 0x8a4000, 0xfffffffffffffff7, 0xe271, 0x0, 0x0, 0x5, 0xc8f, 0x7ff, 0x31, 0xfffffffffffffffa, 0x30000000000000, 0x0, 0x0, 0x100000000, 0xfff, 0x2650, 0x68c98a6, 0xffffffffffffff80, 0x8, 0x5, 0x9, 0xa6f, 0x7, 0x4, 0xffffffff00000000, 0x3d4, 0x5, 0xb27c, 0x6, 0x4, 0x1, 0x80, 0x80, 0x0, 0x2, 0x4, 0xc46, 0x4, 0x1, 0x3, 0x8, 0x100000000, 0x7, 0x0, 0xc8fc, 0x9, 0x80000000, 0x6, 0x10000, 0xffff, 0x7fffffff, 0x4, 0x5, 0x32c91b31, 0x0, 0x8, 0x40, 0x3ff, 0x4, 0x3, 0x0, 0x6, 0x9, 0xfffffffffffffffb, 0x4, 0x401, 0x1, 0x0, 0x1, 0x8, 0x729e, 0x2, 0xdf, 0x4]}) read$rfkill(r1, &(0x7f0000000000), 0x3) ioctl$int_in(r1, 0x800060c0045005, &(0x7f0000000140)=0x5ad) 15:14:58 executing program 1: socket$inet(0x10, 0x5, 0x3) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x100000004, &(0x7f0000000080)=0x2be, 0xfd3b) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) r2 = socket$inet6_udp(0xa, 0x2, 0x0) syncfs(r2) setsockopt$inet_tcp_int(r1, 0x6, 0x7ffffffffffffe, &(0x7f0000000000)=0x85, 0x4) setsockopt$sock_int(r1, 0x1, 0x2f, &(0x7f0000000040), 0x4) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) socket(0xffffffffffffffff, 0x6, 0x5) r3 = open(&(0x7f0000000080)='./bus\x00', 0x80000000141046, 0x0) close(r3) r4 = syz_open_dev$loop(&(0x7f0000000540)='/dev/loop#\x00', 0x0, 0x105082) r5 = memfd_create(&(0x7f0000000300)='4t\xb9L<\xf2\x00\x90\xcd\x00\x00\x00\x00\x00\x00', 0x2) pwritev(r5, &(0x7f0000000440)=[{&(0x7f0000000480)="a8", 0x1}], 0x1, 0x81003) ioctl$LOOP_CHANGE_FD(r4, 0x4c00, r5) bpf$OBJ_GET_MAP(0x7, &(0x7f00000003c0)={&(0x7f0000000400)='./bus\x00', 0x0, 0x8}, 0xfffffffffffffecd) r6 = socket$inet6(0xa, 0x5, 0x2) connect$inet6(r6, &(0x7f0000000100)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, [], 0x1, 0x0}, 0x7}, 0x1c) setsockopt$inet6_opts(r6, 0x29, 0x40, &(0x7f0000000580)=ANY=[@ANYBLOB="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"], 0x1) sendmmsg(r6, &(0x7f00000092c0), 0x4ff, 0x0) mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x800003, 0x11, r3, 0x0) socketpair$unix(0x1, 0x800000000000003, 0x0, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x360) fcntl$setstatus(r4, 0x4, 0x44000) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r8, &(0x7f00000001c0), 0x526987c9) read(r7, &(0x7f0000000200)=""/250, 0x50c7e3e3) sendfile(r4, r5, 0x0, 0x80003) 15:14:58 executing program 2: openat$audio(0xffffffffffffff9c, &(0x7f0000000300)='/dev/audio\x00', 0x10000, 0x0) getsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(0xffffffffffffffff, 0x84, 0x75, &(0x7f0000000340)={0x0, 0x5}, &(0x7f0000000380)=0x8) socket$kcm(0x10, 0x2, 0x0) r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dlm-control\x00', 0x105000, 0x0) bind$llc(r0, &(0x7f0000000080)={0x1a, 0x305, 0x5, 0x2, 0x4, 0x3, @remote}, 0x10) perf_event_open(&(0x7f000025c000)={0x7, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, 0x0, 0x2, 0x0, 0x0, 0x6698, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0xfffffffffffffffd) perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet_udplite(0x2, 0x2, 0x88) socket(0x10, 0x80000, 0x5) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f0000004380)={{{@in6=@initdev, @in=@broadcast}}, {{@in=@broadcast}, 0x0, @in=@multicast1}}, &(0x7f0000004480)=0xffffffffffffff59) r2 = syz_init_net_socket$llc(0x1a, 0x1, 0x0) setsockopt$sock_timeval(r2, 0x1, 0x15, &(0x7f0000000140)={0x0, 0x7530}, 0x10) connect$llc(r2, &(0x7f0000000000)={0x1a, 0x304, 0x0, 0x200003, 0x7ff}, 0x10) perf_event_open(&(0x7f0000000240)={0x2, 0x6a, 0xf, 0x8000000000000002, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x7fffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000b00)='/group.sta\x9f\xd4t\x00+\x96FR\bR\t\x12\x04J{\t\xab\v\x02t\xe1\t\x85\xa6\xfa\x15\xb3[\xa6\x94!\xf2\x04\xde\xc5f\x8a\x06\x00\x00\x00\xb9\x0f\xf8`\xe0\x1f&+\xaf\xacu\nm\\\xe2Y\xcba\xea\f\xd9DXX>\xef/\xc5\x97\xea\x93\xa7\xde\xc9\xb4\x16\x8eF\x8b\xe0W\xdfuE\xfe\x8b\xc4G\x8f\x8e\xd8[T|i$\x88\x04\x00\x00\x00\x00\x00\x00\x00\x90\x1eB\x8b\x98\xad\xd17_Q\xe15\x84\x8f\xea\x98\xc6J\x81W!\xf0\\\xa1O\x9f\x93\x19C\xceQCV\xe3WE\x11\xe0\xc6\x1f\xf2/\xf6\x1fM\xeba_\xa9\xcd\x10\xcd\x0e~\xc6\xed\xb6\x82\xf6\xee\x9aK\xdd\x86\xf8\x0f\x15Y-\xb8A1\x1bb\xff\xf0\xd2M\xf7)\xaa\x8a\x18\xb9_\x83>\xeb\xfc\xc18^\x1d\xb3Y\xdc#\xde\xdb\x89\x90L\x99o\x02\xb6\x98e\xc6b\xce\xb7\x99k3&\xaf\v\xc6\x80\xff\xdb\xb7\x0e\xb4K\xf8\x17\xba\xf8\xee\fe\xed]\x93\x13\xbc\xf5\xe2<\xa2\xaf\x83\xa3\xaabc\x95\x00\t:\xcc\xe1\t]\x84\x90\x17l\xd3\xa7M\xdb\x02J\x90\xe8\xe8\xb3\xc9\xf6\xea\xb2\xdeI\xe4\x0f\xd4\xca(\xcd\xfa\xb2\xb8@\xca\x17u\x02Rb\xad\xd0\xf7\x9bz#\xb8\x1d\x88\xf6?3,\x89\xb1-p\x8a\r\xdb\xd6,\xa4\x01y\x1bc\xb7\x19\xcey\xb5\xae\xc4\xe3\xc4\xe9=\x1e\x8c\xec\xfe\x05b\x7f`Y k\xc4\xa8 \xc3\x9b\v\xbbE\x8c\xb8\xe6\x8a\xa0s\b\xcb\xbb\xfa\xde\xf0\n`\x8az<\f\xf1\xbe\x85\xd1Wk\x17\xbc1q\x8b\x93Y|\x9e\xe2\xc9Ms/A\x98\xf2\x88\n\x92?7\xb1\xe0\xee\xe8yo\xb7\xb2p\xc5O~\x87\x17F\b\xb5\xd6\xdc\xe4u:$>\xd1\xaf\x1a\xcb\x18\x8a\x0e$\xbd\x94N\xc84}_\x06\x11\xd2\xdd7\xe0\b\x0f\xd0\xb0WZ\xfc\xb1\xc3\tS\x13\a6\xc0\xbc\vG\xe4p\x1b\xee\x89_=\xb8\x12\xddpk\x860\x03\xfd\xde\x0f\x9c\xc2\xe5.\xfe\xaf\x8f\xe2\x16\x8c\xdbS\xe6\xc26\xde\xf4I\x9f\x003P\xb5\x9fg\x82!\xf2\x82 \xc1Os\xd7C\\\xad\xb3n}t\xba|\x10\x05,rk\xd1\t|\x1e\x00\x9e\xfa\"\x85\xdd\xb7O\a\xfc\x14\xa8\x00\x1f6M\xb00\xbd\xb7\xd6\xa8\xffe\xb2\xcb\'', 0x2761, 0x0) open(&(0x7f0000000040)='./file0\x00', 0x200200, 0x11) perf_event_open(0x0, 0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x1) r3 = syz_open_dev$vivid(&(0x7f0000000040)='/dev/video#\x00', 0x0, 0x2) ioctl$VIDIOC_S_PARM(r3, 0xc0cc5616, &(0x7f0000000080)={0x1, @raw_data="321d18bdcc9cc5eb8f5ac79d7d85f94e208583e7ffb9e15f273e9b31a33dcc079fd63d46ab8760edb8a9eb07fb7e121fdc81c21a177f2d1f06e94586f711c40ca10cdabf74a664dce8e398fecda052bcf5bfc6a5f9f6ab6b1994cd36ab0e8ad0e1a4ae9818f95c751fdb6876abaf819a505f99e14cec1b18a0edb9bfed9c65acf9815f3b7b83012c4f31e1bd9530152e4620c54d1b940184c0b539f8ebe781fc60ec3d4ab4da620aaf02be8be978d019736e2e23bdaaa37becfe3e01d3672972372cc22508b0b1e8"}) clock_nanosleep(0xfffffffffffffffe, 0x0, 0x0, &(0x7f0000000000)) syz_open_dev$dri(&(0x7f0000000380)='/dev/dri/card#\x00', 0xc72f, 0x200000) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r4 = semget(0xffffffffffffffff, 0x0, 0x0) semctl$IPC_INFO(r4, 0x4, 0x3, &(0x7f00000006c0)=""/205) socket$inet6_udp(0xa, 0x2, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x7fff}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$l2tp(0x18, 0x1, 0x1) open(&(0x7f0000000500)='./file0\x00', 0x40, 0x166) perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet_tcp(0x2, 0x1, 0x0) 15:14:58 executing program 3 (fault-call:6 fault-nth:50): mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) [ 247.325759] RSP: 002b:00007f664e1cac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 247.333465] RAX: ffffffffffffffda RBX: 00007f664e1cac90 RCX: 0000000000459829 [ 247.340732] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000 [ 247.348003] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000 [ 247.355269] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f664e1cb6d4 [ 247.362532] R13: 00000000004bfce6 R14: 00000000004d1a58 R15: 0000000000000004 [ 247.511875] x86/PAT: syz-executor.3:11591 freeing invalid memtype [mem 0x00001000-0x00001fff] [ 247.546665] FAULT_INJECTION: forcing a failure. [ 247.546665] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 247.580272] CPU: 0 PID: 11591 Comm: syz-executor.3 Not tainted 4.14.139 #35 [ 247.589874] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 247.599232] Call Trace: [ 247.601828] dump_stack+0x138/0x19c [ 247.605463] should_fail.cold+0x10f/0x159 [ 247.609630] ? __might_sleep+0x93/0xb0 [ 247.613530] __alloc_pages_nodemask+0x1d6/0x7a0 [ 247.618203] ? save_stack+0x45/0xd0 [ 247.621829] ? kasan_kmalloc+0xce/0xf0 [ 247.625725] ? kasan_slab_alloc+0xf/0x20 [ 247.629785] ? __alloc_pages_slowpath+0x2930/0x2930 [ 247.634805] alloc_pages_current+0xec/0x1e0 [ 247.639136] pte_alloc_one+0x1a/0x100 [ 247.642934] __pte_alloc+0x2a/0x2d0 [ 247.646562] copy_page_range+0x11ba/0x1bd0 [ 247.650801] ? anon_vma_fork+0x358/0x4d0 [ 247.654880] ? __pmd_alloc+0x410/0x410 [ 247.658775] copy_process.part.0+0x4764/0x6a00 [ 247.663383] ? __cleanup_sighand+0x50/0x50 [ 247.667619] ? lock_downgrade+0x6e0/0x6e0 [ 247.671777] _do_fork+0x19e/0xce0 [ 247.675234] ? fork_idle+0x280/0x280 [ 247.678951] ? fput+0xd4/0x150 [ 247.682146] ? SyS_write+0x15e/0x230 [ 247.685860] SyS_clone+0x37/0x50 [ 247.689224] ? sys_vfork+0x30/0x30 [ 247.692851] do_syscall_64+0x1e8/0x640 [ 247.696736] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 247.701581] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 247.706778] RIP: 0033:0x459829 [ 247.710367] RSP: 002b:00007f664e1cac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 247.718096] RAX: ffffffffffffffda RBX: 00007f664e1cac90 RCX: 0000000000459829 [ 247.725358] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000 [ 247.732608] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000 [ 247.739870] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f664e1cb6d4 [ 247.747116] R13: 00000000004bfce6 R14: 00000000004d1a58 R15: 0000000000000004 15:14:58 executing program 5: syz_mount_image$ntfs(&(0x7f0000000100)='ntfs\x00', &(0x7f00000000c0)='./bus\x00', 0x0, 0x2, &(0x7f0000001680)=[{0x0, 0x0, 0x401}, {&(0x7f0000001740)="3a77dd21387d6a624e139a664bf7ec507567aba5727ca2250cce6cea", 0x1c, 0x35}], 0x8100, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000dc0)='/proc/self/net/pfkey\x00', 0x6a8e085c7d77cb, 0x0) setsockopt$netlink_NETLINK_CAP_ACK(r0, 0x10e, 0xa, &(0x7f0000000d40)=0xed, 0x4) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000000c40)=[{{&(0x7f0000000000)={0xa, 0x4e21, 0x7ff, @mcast1, 0x7ff}, 0x1c, &(0x7f0000000180)=[{&(0x7f0000000040)="af0dc0c3747ace00f7428bf95bcdfc2b823d8b240489e914f2ca2db1bd72433ed75619a2e8ef9553a27dbeb716f14a5b9cc8dfd438ad7db11e3a9e60f6178923723475feb46b15b774641c943135d857231ac7de90facf196980df7570a5056beded4f1f6a70f4911092ff49f6904f27550c5648266581c0cda5e3caa1", 0x7d}, {&(0x7f0000000140)="ac9625438f91511581bf9778d3568ce682212a6389587281c2b6cbfac075ed7a54fbb99b0ff8f3f3bd2fb7ae8d0ba93648ece99f", 0x34}], 0x2, &(0x7f00000001c0)=[@hoplimit={{0x14, 0x29, 0x34, 0x22}}, @hopopts={{0x120, 0x29, 0x36, {0x3b, 0x20, [], [@generic={0x7ff, 0x5d, "8f39046f889d8db2d3a6a57b010d0b1d57137bca2308bbb3143d9910993504ebc9bf36ca5b743fcd368a9338c41ea9ed6265cdc5035230fae338bd1b1753c3074454a24697a450697194f32a614f19f9c7b98c137cda225077b5622070"}, @generic={0x4ac10000000000, 0x8e, "b4657acfd2825f1a0ff6dfd6650f3d635d40bc728b9eabcc1562fd56423cfca2dee98b99dcbc9d6f457037780e42c1549d73ad9709711740650e731a8229575d5e94c20a7d31ad8156c5760d0524636eea2df7648c06177f444fd9de4559ae9061b182ddeee838d1b83a0603a5c1937c0af9d59b38497160980ca9c2ea663a5ce88e795c0b502cc33434959e707e"}, @hao={0xc9, 0x10, @empty}, @ra={0x5, 0x2, 0x3}]}}}, @dstopts={{0x68, 0x29, 0x37, {0xbe, 0x9, [], [@pad1, @enc_lim={0x4, 0x1, 0x401}, @pad1, @calipso={0x7, 0x38, {0xe4, 0xc, 0x1, 0x800, [0x200, 0x5, 0x1, 0x0, 0x6, 0x1aff5ac3]}}, @jumbo, @ra={0x5, 0x2, 0x3}]}}}, @tclass={{0x14, 0x29, 0x43, 0x8}}, @dstopts={{0x60, 0x29, 0x37, {0x4, 0x8, [], [@generic={0x7, 0x35, "71a48468a64a45dc4c15ddd31e3ba79022559e5c5ba55e4e03f5917ee12858644c8d6d5caa8cfad4698da4c8035622af83e5297c23"}, @padn={0x1, 0x6, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, @padn={0x1, 0x1, [0x0]}]}}}, @flowinfo={{0x14, 0x29, 0xb, 0x1}}, @dstopts_2292={{0x20, 0x29, 0x4, {0x3b, 0x0, [], [@ra={0x5, 0x2, 0x100000001}]}}}, @dontfrag={{0x14, 0x29, 0x3e, 0x7fff}}, @rthdr={{0x28, 0x29, 0x39, {0x32, 0x2, 0x2, 0x3ff, 0x0, [@ipv4={[], [], @empty}]}}}], 0x290}}, {{&(0x7f0000000480)={0xa, 0x4e24, 0x4, @mcast1, 0x8}, 0x1c, &(0x7f00000007c0)=[{&(0x7f00000004c0)="05c6ce160f24c190f5d202e494a090ade58bd94b0bdd4fdd4d855cc82c5a5acc6d7a8ec2529ba05419418bddc5d6006e7c6aeec747e9d433d55ceec763e0809f08c4e27a610de28fa7d3b0d0a36fa5a2aaea9e311f7c32672dd8c25148b55184758cddcd6e", 0x65}, {&(0x7f0000000540)="73caf6985c88b3fae78798059e16f7f95cabefb836bbbefbb154f33724f2a47e61d9df246af685b5b6e038d5448d85204e8baf06f9f189", 0x37}, {&(0x7f0000000580)="5340935ae28b69b8d0e52c858e89c942ffd246c7b25b325ffdbcf5b7a24abfdf56192af3d8876f13c7732a3c51fe28fc708d7ebb6345db6e5d1eacf44c8ef6b7e86b915150014686da8056ffff73117aaa25fc818a8bfffdf50a5a8316fe55499757f50570a59df0cf08148f", 0x6c}, {&(0x7f0000000600)="9060abd3ac9306002c4a102755f42e219323e2bc221eb4ecc19fdef284b8b96030850bf4001df719904e90022844ea9b73cf7bcd5f691982ae3b34211271e2518ba1d1639adf9acaaed6559136ec", 0x4e}, {&(0x7f0000000680)="85d67a91ddca73d69aacb883123913efe9e81e9bbc476c096867160a377906e52d5ac19d3ebec3e07f3ee7c042c347b3e2aa8dce175504cef3f6588cdeb988ed3f401a3066622804c56c638aa9e7d40d4d40a89485bf996151b13bce588e6743db525f04d68dbfa26479a5301a2e90e9a5b983a4e429ca07ccea523b77302a", 0x7f}, {&(0x7f0000000700)="ff223fcceb26b33a6ac1d11fac315f798de7f0ac5dece528844c907e5539d20f728aeee6368bf7c973e827df02ab6b46dadb2eecc8c0b19ac51f8ded6ec31554558c748589fc87c7a8542b3b96c2f2785e7278367015d7a150b130b794b4aaa77a6f093b17bedb9443a33cd11067cb291f5d9a5b924886cee48f7776a81fa1b0f5242ad46ccc926af622e4d23b75cb91b4c96e2a4fd09fc707135080b4a1b23c84bff0d588f7", 0xa6}], 0x6}}, {{0x0, 0x0, &(0x7f0000000b40)=[{&(0x7f0000001780)="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", 0x1000}, {&(0x7f0000000840)="6bda8f62d742752d9d", 0x9}, {&(0x7f0000000880)="3f3bc4d3e271685eb9ebeb53835b52334f766a3c6c0ee91c4759ad22a997eb14579556ab817f5d31483a17706967c11538691f03f579282e136387930fc073ddb7b66d4fa454cf327eb78fab43991a9ad155bbd178bc7f6be7e2ddafc67b0ff5d58e71174f93266e1f66c26b8fe68b21c2673e5fb9be4992ba87de76c1c37ff5e58da9aae015bb81638768322b66307b63ce4b2ae30e9acff575acf4eefbfd1539035042b3b772d6d258873b53af5fbcb348b4", 0xb3}, {&(0x7f0000000940)="5bd5b575d82e999e22db10c9d7f9457559baa6c9ad8886c69370779a8db1b17c396d20f67f360fe00b81e1dbf591bd3631b0c2183fa2055e6fd0aacfc345933e7fc022dc4572deb9962f647740e81a9961ac92587822d26a8b16568559917b7ba9e825b20d54276ad61d33caa997846fbdf6d70b35fb148964d0a34a72062171654baebc2c62141096975605326821d2e29d7b6f6c51bda6b6e678044e9a285f3d15637066528921afd37f66aa61ab3c6897c66ee07667bdc2b745ed5806b9693553dcd4ba36f7600c5f8a0c3f", 0xcd}, {&(0x7f0000002780)="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", 0x1000}, {&(0x7f0000000a40)="bb9e55ec9bdf036a0163b2d8f9e5080a598c81b159727d70e67f5b4e0e4289740e245ae7f7899fc2fd8eaf41fefe4c096c09b557ef676a9c50c1db0106b40646ff54af2940f5542b0b7253812af1416ccc41fece9b1a850cc0540e9f74ee88a3f16fb8fd3912", 0x66}, {&(0x7f0000000ac0)="adea15d153fbba32031fc46607331174dff0c9e9d420df6255bafe4497876f28afa54df4ec42340d08c51c17d5420d43b709b226af6afc03048ed28e7b788ca804aa409dd54ca1151668a6d87ba3e2a5ff0b4ad51419c8640f65ce0955ee99b649e16a5ad88bdfb09e90f7c578", 0x6d}], 0x7, &(0x7f0000000bc0)=[@hopopts={{0x20, 0x29, 0x36, {0x21, 0x0, [], [@enc_lim={0x4, 0x1, 0x80}]}}}, @dstopts_2292={{0x50, 0x29, 0x4, {0x3b, 0x6, [], [@calipso={0x7, 0x10, {0x6e, 0x2, 0x4, 0x5, [0x6]}}, @pad1, @padn={0x1, 0x1, [0x0]}, @padn={0x1, 0x7, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, @hao={0xc9, 0x10, @local}]}}}], 0x70}}], 0x3, 0x4010) 15:14:58 executing program 3 (fault-call:6 fault-nth:51): mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) 15:14:58 executing program 1: socket$inet(0x10, 0x5, 0x3) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x100000004, &(0x7f0000000080)=0x2be, 0xfd3b) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) r2 = socket$inet6_udp(0xa, 0x2, 0x0) syncfs(r2) setsockopt$inet_tcp_int(r1, 0x6, 0x7ffffffffffffe, &(0x7f0000000000)=0x85, 0x4) setsockopt$sock_int(r1, 0x1, 0x2f, &(0x7f0000000040), 0x4) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) socket(0xffffffffffffffff, 0x6, 0x5) r3 = open(&(0x7f0000000080)='./bus\x00', 0x80000000141046, 0x0) close(r3) r4 = syz_open_dev$loop(&(0x7f0000000540)='/dev/loop#\x00', 0x0, 0x105082) r5 = memfd_create(&(0x7f0000000300)='4t\xb9L<\xf2\x00\x90\xcd\x00\x00\x00\x00\x00\x00', 0x2) pwritev(r5, &(0x7f0000000440)=[{&(0x7f0000000480)="a8", 0x1}], 0x1, 0x81003) ioctl$LOOP_CHANGE_FD(r4, 0x4c00, r5) bpf$OBJ_GET_MAP(0x7, &(0x7f00000003c0)={&(0x7f0000000400)='./bus\x00', 0x0, 0x8}, 0xfffffffffffffecd) r6 = socket$inet6(0xa, 0x5, 0x2) connect$inet6(r6, &(0x7f0000000100)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, [], 0x1, 0x0}, 0x7}, 0x1c) setsockopt$inet6_opts(r6, 0x29, 0x40, &(0x7f0000000580)=ANY=[@ANYBLOB="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"], 0x1) sendmmsg(r6, &(0x7f00000092c0), 0x4ff, 0x0) mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x800003, 0x11, r3, 0x0) socketpair$unix(0x1, 0x800000000000003, 0x0, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x360) fcntl$setstatus(r4, 0x4, 0x44000) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r8, &(0x7f00000001c0), 0x526987c9) read(r7, &(0x7f0000000200)=""/250, 0x50c7e3e3) sendfile(r4, r5, 0x0, 0x80003) 15:14:58 executing program 2: openat$audio(0xffffffffffffff9c, &(0x7f0000000300)='/dev/audio\x00', 0x10000, 0x0) getsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(0xffffffffffffffff, 0x84, 0x75, &(0x7f0000000340)={0x0, 0x5}, &(0x7f0000000380)=0x8) socket$kcm(0x10, 0x2, 0x0) r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dlm-control\x00', 0x105000, 0x0) bind$llc(r0, &(0x7f0000000080)={0x1a, 0x305, 0x5, 0x2, 0x4, 0x3, @remote}, 0x10) perf_event_open(&(0x7f000025c000)={0x7, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, 0x0, 0x2, 0x0, 0x0, 0x6698, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0xfffffffffffffffd) perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet_udplite(0x2, 0x2, 0x88) socket(0x10, 0x80000, 0x5) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f0000004380)={{{@in6=@initdev, @in=@broadcast}}, {{@in=@broadcast}, 0x0, @in=@multicast1}}, &(0x7f0000004480)=0xffffffffffffff59) r2 = syz_init_net_socket$llc(0x1a, 0x1, 0x0) setsockopt$sock_timeval(r2, 0x1, 0x15, &(0x7f0000000140)={0x0, 0x7530}, 0x10) connect$llc(r2, &(0x7f0000000000)={0x1a, 0x304, 0x0, 0x200003, 0x7ff}, 0x10) perf_event_open(&(0x7f0000000240)={0x2, 0x6a, 0xf, 0x8000000000000002, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x7fffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000b00)='/group.sta\x9f\xd4t\x00+\x96FR\bR\t\x12\x04J{\t\xab\v\x02t\xe1\t\x85\xa6\xfa\x15\xb3[\xa6\x94!\xf2\x04\xde\xc5f\x8a\x06\x00\x00\x00\xb9\x0f\xf8`\xe0\x1f&+\xaf\xacu\nm\\\xe2Y\xcba\xea\f\xd9DXX>\xef/\xc5\x97\xea\x93\xa7\xde\xc9\xb4\x16\x8eF\x8b\xe0W\xdfuE\xfe\x8b\xc4G\x8f\x8e\xd8[T|i$\x88\x04\x00\x00\x00\x00\x00\x00\x00\x90\x1eB\x8b\x98\xad\xd17_Q\xe15\x84\x8f\xea\x98\xc6J\x81W!\xf0\\\xa1O\x9f\x93\x19C\xceQCV\xe3WE\x11\xe0\xc6\x1f\xf2/\xf6\x1fM\xeba_\xa9\xcd\x10\xcd\x0e~\xc6\xed\xb6\x82\xf6\xee\x9aK\xdd\x86\xf8\x0f\x15Y-\xb8A1\x1bb\xff\xf0\xd2M\xf7)\xaa\x8a\x18\xb9_\x83>\xeb\xfc\xc18^\x1d\xb3Y\xdc#\xde\xdb\x89\x90L\x99o\x02\xb6\x98e\xc6b\xce\xb7\x99k3&\xaf\v\xc6\x80\xff\xdb\xb7\x0e\xb4K\xf8\x17\xba\xf8\xee\fe\xed]\x93\x13\xbc\xf5\xe2<\xa2\xaf\x83\xa3\xaabc\x95\x00\t:\xcc\xe1\t]\x84\x90\x17l\xd3\xa7M\xdb\x02J\x90\xe8\xe8\xb3\xc9\xf6\xea\xb2\xdeI\xe4\x0f\xd4\xca(\xcd\xfa\xb2\xb8@\xca\x17u\x02Rb\xad\xd0\xf7\x9bz#\xb8\x1d\x88\xf6?3,\x89\xb1-p\x8a\r\xdb\xd6,\xa4\x01y\x1bc\xb7\x19\xcey\xb5\xae\xc4\xe3\xc4\xe9=\x1e\x8c\xec\xfe\x05b\x7f`Y k\xc4\xa8 \xc3\x9b\v\xbbE\x8c\xb8\xe6\x8a\xa0s\b\xcb\xbb\xfa\xde\xf0\n`\x8az<\f\xf1\xbe\x85\xd1Wk\x17\xbc1q\x8b\x93Y|\x9e\xe2\xc9Ms/A\x98\xf2\x88\n\x92?7\xb1\xe0\xee\xe8yo\xb7\xb2p\xc5O~\x87\x17F\b\xb5\xd6\xdc\xe4u:$>\xd1\xaf\x1a\xcb\x18\x8a\x0e$\xbd\x94N\xc84}_\x06\x11\xd2\xdd7\xe0\b\x0f\xd0\xb0WZ\xfc\xb1\xc3\tS\x13\a6\xc0\xbc\vG\xe4p\x1b\xee\x89_=\xb8\x12\xddpk\x860\x03\xfd\xde\x0f\x9c\xc2\xe5.\xfe\xaf\x8f\xe2\x16\x8c\xdbS\xe6\xc26\xde\xf4I\x9f\x003P\xb5\x9fg\x82!\xf2\x82 \xc1Os\xd7C\\\xad\xb3n}t\xba|\x10\x05,rk\xd1\t|\x1e\x00\x9e\xfa\"\x85\xdd\xb7O\a\xfc\x14\xa8\x00\x1f6M\xb00\xbd\xb7\xd6\xa8\xffe\xb2\xcb\'', 0x2761, 0x0) open(&(0x7f0000000040)='./file0\x00', 0x200200, 0x11) perf_event_open(0x0, 0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x1) r3 = syz_open_dev$vivid(&(0x7f0000000040)='/dev/video#\x00', 0x0, 0x2) ioctl$VIDIOC_S_PARM(r3, 0xc0cc5616, &(0x7f0000000080)={0x1, @raw_data="321d18bdcc9cc5eb8f5ac79d7d85f94e208583e7ffb9e15f273e9b31a33dcc079fd63d46ab8760edb8a9eb07fb7e121fdc81c21a177f2d1f06e94586f711c40ca10cdabf74a664dce8e398fecda052bcf5bfc6a5f9f6ab6b1994cd36ab0e8ad0e1a4ae9818f95c751fdb6876abaf819a505f99e14cec1b18a0edb9bfed9c65acf9815f3b7b83012c4f31e1bd9530152e4620c54d1b940184c0b539f8ebe781fc60ec3d4ab4da620aaf02be8be978d019736e2e23bdaaa37becfe3e01d3672972372cc22508b0b1e8"}) clock_nanosleep(0xfffffffffffffffe, 0x0, 0x0, &(0x7f0000000000)) syz_open_dev$dri(&(0x7f0000000380)='/dev/dri/card#\x00', 0xc72f, 0x200000) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r4 = semget(0xffffffffffffffff, 0x0, 0x0) semctl$IPC_INFO(r4, 0x4, 0x3, &(0x7f00000006c0)=""/205) socket$inet6_udp(0xa, 0x2, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x7fff}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$l2tp(0x18, 0x1, 0x1) open(&(0x7f0000000500)='./file0\x00', 0x40, 0x166) perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet_tcp(0x2, 0x1, 0x0) 15:14:58 executing program 4: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="11dca50d5e0bcfe47bf070") r1 = accept4(r0, &(0x7f00000000c0)=@tipc=@id, &(0x7f0000000040)=0x80, 0x80000) recvfrom$unix(r1, &(0x7f0000000540)=""/229, 0xe5, 0x40000020, &(0x7f0000000140)=@abs={0x0, 0x0, 0x4e23}, 0x6e) mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) ioctl$KDSKBMETA(r0, 0x4b63, &(0x7f0000000000)=0x4) getsockopt$inet_sctp6_SCTP_RECVRCVINFO(r1, 0x84, 0x20, &(0x7f00000001c0), &(0x7f0000000240)=0x4) [ 247.913462] x86/PAT: syz-executor.4:11601 freeing invalid memtype [mem 0x00001000-0x00001fff] [ 247.918166] x86/PAT: syz-executor.3:11605 freeing invalid memtype [mem 0x00001000-0x00001fff] [ 247.961273] FAULT_INJECTION: forcing a failure. [ 247.961273] name failslab, interval 1, probability 0, space 0, times 0 [ 247.989041] CPU: 0 PID: 11605 Comm: syz-executor.3 Not tainted 4.14.139 #35 [ 247.996187] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 247.996193] Call Trace: [ 247.996212] dump_stack+0x138/0x19c 15:14:59 executing program 4: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="11dca50d5e0bcfe47bf070") getsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0x10, &(0x7f0000000680)={{{@in=@multicast1, @in6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@remote}, 0x0, @in=@local}}, &(0x7f0000000280)=0xe8) getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000780)={{{@in=@multicast1, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@loopback}, 0x0, @in6=@initdev}}, &(0x7f0000000880)=0xe8) getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f00000008c0)={{{@in=@dev, @in=@broadcast, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@broadcast}, 0x0, @in6=@dev}}, &(0x7f00000009c0)=0xe8) syz_mount_image$gfs2(&(0x7f0000000000)='gfs2\x00', &(0x7f0000000040)='./file0\x00', 0x5, 0x5, &(0x7f0000000600)=[{&(0x7f00000000c0)="804c63b88759cc783dba0d3e557f9f10db9b4985dfcd4ffc6d5fecdd3fb9def5737f98bdc931c805742958d8cf9517d4826bf6175010cade1fe23126abf3b94af203ec86b5dc3aa3126da06e606df068467276364d41d6f62270b95389d99ebddefc1e732bb325ff3b56820643ef8dc26b922f400e535e848652717e05b04750e1818dcdc6267c4ee7a1faca", 0x8c, 0x80000000}, {&(0x7f0000000180)="ceb6f7d7d0a5328fe3bb6f83a2b8c9af4e94a6b2912f5d74d67d25b49693b5b1e26e79df7f406cb2ddc8b137602aa386c21f7136b6188c70bc8e4fcf605afc01b535148279adc3290cf4e4c3af64af8d9b839158a8279c4323979bafc772e706792e515db51f6d1f", 0x68, 0xffffffff}, {&(0x7f0000000300)="97aa6955fcc0a49d7146754655ad220547e1f0ecb70c77629d48987ed42bbc47a6ac704c45163aed34d67d431ebf0de93d88519c45d3a27b69715677184aba81db49342ff59d71b0c4cfccc74f3d1eda0a7b00baab6334b6b67f78b76e951b7d02ffcc27fe287ab378891cfc1adbb6715813d8c52261c93259c251cc2920877a8ac3eb2cdb33599d2fc96935485804deeaac5bb59689dda834fbdf130c00ac591eff793b166333e434e80074ef269cef02e128b646557828881f1452a25bbe", 0xbf, 0x7f}, {&(0x7f0000000240)="ece3109f3642bbe734431004cb2a77c5fd9f0feef4e171383b8469919866e38f38238edf9d6aadd049af1b041c1e20ffce", 0x31, 0x1}, {&(0x7f0000000540)="bc7fa7046e970c9fc54dd3087fd6ca74a154f38730f415a6ef542b084b8d2147f85281dd5eddc2ae197d508b732889f7470b66de919af5ec7d2fe614f981788282ee13474d76c257e76c8e8812363c367ea132c2d84c3d451c3080d797eb5248360df901e3d4c6921bc23c4d636a7a6f5eb8053ee258a9ec09b4b9e40d7f77cd3d309ef1f7e006dc2e48e47a315158a9a61d528726", 0x95, 0xeef}], 0x400, &(0x7f0000000a00)={[{@lockproto_nolock='lockproto=lock_nolock'}, {@quota_on='quota=on'}], [{@mask={'mask', 0x3d, '^MAY_READ'}}, {@uid_eq={'uid', 0x3d, r1}}, {@fowner_lt={'fowner<', r2}}, {@audit='audit'}, {@measure='measure'}, {@appraise='appraise'}, {@fowner_lt={'fowner<', r3}}, {@obj_user={'obj_user', 0x3d, 'devtmpfs\x00'}}]}) mkdir(&(0x7f00000002c0)='./file0\x00', 0x4) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r4, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) [ 247.996235] should_fail.cold+0x10f/0x159 [ 247.996253] should_failslab+0xdb/0x130 [ 247.996266] kmem_cache_alloc+0x2d7/0x780 [ 247.996282] ptlock_alloc+0x20/0x70 [ 247.996298] pte_alloc_one+0x60/0x100 [ 247.996308] __pte_alloc+0x2a/0x2d0 [ 247.996320] copy_page_range+0x11ba/0x1bd0 [ 248.039326] ? anon_vma_fork+0x358/0x4d0 [ 248.043406] ? __pmd_alloc+0x410/0x410 [ 248.047305] copy_process.part.0+0x4764/0x6a00 [ 248.051917] ? __cleanup_sighand+0x50/0x50 [ 248.056149] ? lock_downgrade+0x6e0/0x6e0 [ 248.060294] _do_fork+0x19e/0xce0 [ 248.063733] ? fork_idle+0x280/0x280 [ 248.067431] ? fput+0xd4/0x150 [ 248.070606] ? SyS_write+0x15e/0x230 [ 248.074306] SyS_clone+0x37/0x50 [ 248.077650] ? sys_vfork+0x30/0x30 [ 248.081173] do_syscall_64+0x1e8/0x640 [ 248.085038] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 248.089865] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 248.095033] RIP: 0033:0x459829 [ 248.098202] RSP: 002b:00007f664e1cac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 248.105888] RAX: ffffffffffffffda RBX: 00007f664e1cac90 RCX: 0000000000459829 [ 248.113138] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000 [ 248.120383] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000 [ 248.127629] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f664e1cb6d4 [ 248.134882] R13: 00000000004bfce6 R14: 00000000004d1a58 R15: 0000000000000004 15:14:59 executing program 2: getresuid(&(0x7f0000000280), &(0x7f00000002c0)=0x0, &(0x7f0000000300)) syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f0000000240)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)={[{@uni_xlate='uni_xlate=1'}], [{@rootcontext={'rootcontext', 0x3d, 'system_u'}}, {@obj_type={'obj_type', 0x3d, 'security.ima\x00'}}, {@permit_directio='permit_directio'}, {@uid_lt={'uid<', r0}}, {@fowner_eq={'fowner', 0x3d, r0}}, {@dont_appraise='dont_appraise'}, {@obj_type={'obj_type', 0x3d, '[wlan0cpusetkeyring'}}, {@seclabel='seclabel'}]}) lsetxattr$security_ima(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='security.ima\x00', &(0x7f0000000140)=ANY=[@ANYBLOB="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"], 0xfc, 0x1) 15:14:59 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070") r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x28001, 0x0) read$rfkill(r1, &(0x7f0000000180), 0x9a) ioctl$KIOCSOUND(r1, 0x4b2f, 0x8001) r2 = gettid() r3 = getpid() vmsplice(r0, &(0x7f0000000140)=[{&(0x7f0000000000)="b4158dd2c233406e", 0x8}, {&(0x7f0000000100)}], 0x2, 0xa) socket$packet(0x11, 0x3, 0x300) setpgid(r2, r3) ioctl$int_in(r1, 0x800060c0045005, &(0x7f00000000c0)=0x5ad) [ 248.220192] x86/PAT: syz-executor.4:11624 freeing invalid memtype [mem 0x00001000-0x00001fff] 15:14:59 executing program 2: r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$netlink(0x10, 0x3, 0x4000000000000004) r2 = dup(r0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f00000001c0)='vmnet1&ppp1%,eth0\x00', r2}, 0x10) writev(r1, &(0x7f0000000300)=[{&(0x7f0000000340)="580000001400192340834b80040d8c5602067fffffff81000000000000dca87086a5c000004f6401940005891550f4a8000000006700008000f0fffeffff09000080fff5dd00000010000100000c0900fcfc0000040e0586", 0x58}], 0x10000000000000f6) r3 = syz_open_procfs(0x0, 0x0) ioctl$GIO_UNISCRNMAP(r3, 0x4b69, &(0x7f00000003c0)=""/250) getsockopt$EBT_SO_GET_INIT_ENTRIES(r3, 0x0, 0x83, &(0x7f0000000140)={'filter\x00', 0x0, 0x4, 0xc4, [], 0x1, &(0x7f0000000000)=[{}], &(0x7f0000000040)=""/196}, 0x0) 15:14:59 executing program 4: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="11dca50d5e0bcfe47bf070") mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000180)='./file0\x00') r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0) setsockopt$netrom_NETROM_IDLE(r1, 0x103, 0x7, &(0x7f0000000000)=0x1, 0x4) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) [ 248.275354] x86/PAT: syz-executor.4:11624 freeing invalid memtype [mem 0x00001000-0x00001fff] 15:14:59 executing program 1: socket$inet(0x10, 0x5, 0x3) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x100000004, &(0x7f0000000080)=0x2be, 0xfd3b) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) r2 = socket$inet6_udp(0xa, 0x2, 0x0) syncfs(r2) setsockopt$inet_tcp_int(r1, 0x6, 0x7ffffffffffffe, &(0x7f0000000000)=0x85, 0x4) setsockopt$sock_int(r1, 0x1, 0x2f, &(0x7f0000000040), 0x4) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) socket(0xffffffffffffffff, 0x6, 0x5) r3 = open(&(0x7f0000000080)='./bus\x00', 0x80000000141046, 0x0) close(r3) r4 = syz_open_dev$loop(&(0x7f0000000540)='/dev/loop#\x00', 0x0, 0x105082) r5 = memfd_create(&(0x7f0000000300)='4t\xb9L<\xf2\x00\x90\xcd\x00\x00\x00\x00\x00\x00', 0x2) pwritev(r5, &(0x7f0000000440)=[{&(0x7f0000000480)="a8", 0x1}], 0x1, 0x81003) ioctl$LOOP_CHANGE_FD(r4, 0x4c00, r5) bpf$OBJ_GET_MAP(0x7, &(0x7f00000003c0)={&(0x7f0000000400)='./bus\x00', 0x0, 0x8}, 0xfffffffffffffecd) r6 = socket$inet6(0xa, 0x5, 0x2) connect$inet6(r6, &(0x7f0000000100)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, [], 0x1, 0x0}, 0x7}, 0x1c) setsockopt$inet6_opts(r6, 0x29, 0x40, &(0x7f0000000580)=ANY=[@ANYBLOB="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"], 0x1) sendmmsg(r6, &(0x7f00000092c0), 0x4ff, 0x0) mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x800003, 0x11, r3, 0x0) socketpair$unix(0x1, 0x800000000000003, 0x0, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x360) fcntl$setstatus(r4, 0x4, 0x44000) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r8, &(0x7f00000001c0), 0x526987c9) read(r7, &(0x7f0000000200)=""/250, 0x50c7e3e3) sendfile(r4, r5, 0x0, 0x80003) 15:14:59 executing program 3 (fault-call:6 fault-nth:52): mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) [ 248.387747] protocol 88fb is buggy, dev hsr_slave_0 [ 248.392872] protocol 88fb is buggy, dev hsr_slave_1 [ 248.447834] x86/PAT: syz-executor.4:11648 freeing invalid memtype [mem 0x00001000-0x00001fff] [ 248.468429] protocol 88fb is buggy, dev hsr_slave_0 [ 248.473577] protocol 88fb is buggy, dev hsr_slave_1 15:14:59 executing program 5: r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x280000, 0x0) ioctl$RTC_EPOCH_SET(r0, 0x4008700e, 0x1) syz_mount_image$ntfs(&(0x7f0000000100)='ntfs\x00', &(0x7f00000000c0)='./bus\x00', 0x0, 0x2, &(0x7f0000001680)=[{0x0, 0x0, 0x401}, {&(0x7f0000001740)="3a77dd21387d6a624e139a664bf7ec507567aba5727ca2250cce6cea", 0x1c, 0x35}], 0x8100, 0x0) r1 = syz_genetlink_get_family_id$ipvs(&(0x7f00000002c0)='IPVS\x00') sendmsg$IPVS_CMD_GET_DEST(r0, &(0x7f00000003c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000380)={&(0x7f0000000300)={0x68, r1, 0x2, 0x70bd2b, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_DAEMON={0x14, 0x3, [@IPVS_DAEMON_ATTR_MCAST_PORT={0x8, 0x7, 0x4e24}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x8, 0x7, 0x4e21}]}, @IPVS_CMD_ATTR_DEST={0x30, 0x2, [@IPVS_DEST_ATTR_FWD_METHOD={0x8, 0x3, 0x3}, @IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv4=@multicast1}, @IPVS_DEST_ATTR_WEIGHT={0x8, 0x4, 0x1f}, @IPVS_DEST_ATTR_TUN_PORT={0x8, 0xe, 0x4e22}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x81}]}, 0x68}, 0x1, 0x0, 0x0, 0x4000044}, 0x1) ioctl$KVM_GET_REGS(r0, 0x8090ae81, &(0x7f0000000140)) getsockopt$IP_VS_SO_GET_DESTS(r0, 0x0, 0x484, &(0x7f0000000200)=""/186, &(0x7f0000000000)=0xba) 15:14:59 executing program 2: socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = syz_open_dev$swradio(&(0x7f0000000000)='/dev/swradio#\x00', 0x0, 0x2) accept4$packet(r1, &(0x7f0000000040)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @remote}, &(0x7f00000000c0)=0x14, 0x80800) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r2 = socket$netlink(0x10, 0x3, 0x0) getsockopt$netlink(r2, 0x10e, 0x8000000005, &(0x7f00007e0000)=""/4, &(0x7f0000000080)=0x4) 15:14:59 executing program 4: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="11dca50d5e0bcfe47bf070") mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) openat$selinux_policy(0xffffffffffffff9c, &(0x7f00000000c0)='/selinux/policy\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r1 = syz_open_dev$swradio(&(0x7f0000000000)='/dev/swradio#\x00', 0x1, 0x2) ioctl$VIDIOC_ENUM_FMT(r1, 0xc0405602, &(0x7f0000000040)={0x4, 0x5, 0x1, "ea80c505684d4f9947a9e1a68b7a62d75f4a92b28b72dea2dddecc4334ee1970", 0x56555959}) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) [ 248.527354] FAULT_INJECTION: forcing a failure. [ 248.527354] name failslab, interval 1, probability 0, space 0, times 0 [ 248.604914] CPU: 0 PID: 11656 Comm: syz-executor.3 Not tainted 4.14.139 #35 [ 248.612074] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 248.621435] Call Trace: [ 248.624029] dump_stack+0x138/0x19c [ 248.627675] should_fail.cold+0x10f/0x159 [ 248.631831] should_failslab+0xdb/0x130 [ 248.635837] kmem_cache_alloc+0x2d7/0x780 [ 248.640001] copy_process.part.0+0x444f/0x6a00 [ 248.644617] ? __cleanup_sighand+0x50/0x50 [ 248.648857] ? lock_downgrade+0x6e0/0x6e0 [ 248.653010] _do_fork+0x19e/0xce0 [ 248.656465] ? fork_idle+0x280/0x280 [ 248.660179] ? fput+0xd4/0x150 [ 248.663376] ? SyS_write+0x15e/0x230 [ 248.667095] SyS_clone+0x37/0x50 [ 248.670466] ? sys_vfork+0x30/0x30 [ 248.674009] do_syscall_64+0x1e8/0x640 [ 248.677896] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 248.682758] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 248.687944] RIP: 0033:0x459829 [ 248.691125] RSP: 002b:00007f664e1cac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 15:14:59 executing program 2: r0 = socket$inet6(0xa, 0x80005, 0x0) getsockopt$inet_sctp6_SCTP_STATUS(r0, 0x84, 0xe, 0x0, &(0x7f0000000140)=0x2fa) mkdir(&(0x7f0000000000)='./file0\x00', 0x2) [ 248.698830] RAX: ffffffffffffffda RBX: 00007f664e1cac90 RCX: 0000000000459829 [ 248.706088] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000 [ 248.713353] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000 [ 248.720620] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f664e1cb6d4 [ 248.727887] R13: 00000000004bfce6 R14: 00000000004d1a58 R15: 0000000000000004 15:14:59 executing program 2: pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) writev(r0, &(0x7f0000000000)=[{&(0x7f0000000180)="dae1eee0ee7a4c45bdf3d0586b4809464f067e838eadba9c50e3e53780c284ba73fd9fd001195d651f6c3ca74b1977702f5f2773eaaca18925e79dccbcfc4570f498a4003abbb2a6f6c823ce42f1ed4200c41800c18e176c41ef88b14f8f959195c8a03e", 0x64}], 0x1) r1 = socket$alg(0x26, 0x5, 0x0) bind$alg(r1, &(0x7f0000000100)={0x26, 'hash\x00', 0x0, 0x0, 'sha512\x00'}, 0x58) r2 = accept4(r1, 0x0, 0x0, 0x0) sendmsg$TIPC_CMD_SHOW_PORTS(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000240)={0x1c}, 0x1c}}, 0x8000) splice(r2, 0x0, r1, 0x0, 0x20000000003, 0x0) 15:14:59 executing program 4: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="11dca50d5e0bcfe47bf070") mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) fsetxattr$security_evm(r0, &(0x7f0000000180)='security.evm\x00', &(0x7f00000001c0)=@sha1={0x1, "95ac5081eb1af1e07391b6cd27a84d6b72f70c7e"}, 0x15, 0x1) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='devtmpfs\x00', 0x0, 0x0) r1 = openat$full(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/full\x00', 0x40, 0x0) ioctl$UI_DEV_DESTROY(r1, 0x5502) ioctl$KDSIGACCEPT(r1, 0x4b4e, 0x25) ioctl$SNDRV_CTL_IOCTL_TLV_READ(r1, 0xc008551a, &(0x7f0000000100)={0x3, 0x4, [0x2]}) chdir(&(0x7f00000003c0)='./file0\x00') r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) ioctl$PPPIOCGFLAGS1(r2, 0x8004745a, &(0x7f0000000200)) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0x0) eventfd(0x2) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) write$FUSE_NOTIFY_RETRIEVE(r1, &(0x7f0000000140)={0x30, 0x5, 0x0, {0x0, 0x6, 0x64}}, 0x30) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) [ 248.791098] protocol 88fb is buggy, dev hsr_slave_0 [ 248.796222] protocol 88fb is buggy, dev hsr_slave_1 15:14:59 executing program 5: syz_mount_image$ntfs(&(0x7f0000000100)='ntfs\x00', &(0x7f00000000c0)='./bus\x00', 0x0, 0x2, &(0x7f0000001680)=[{0x0, 0x0, 0x401}, {&(0x7f0000001740)="3a77dd21387d6a624e139a664bf7ec507567aba5727ca2250cce6cea", 0x1c, 0x35}], 0x8100, 0x0) r0 = accept$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={[], [], @remote}}, &(0x7f0000000040)=0x1c) setsockopt$inet_sctp6_SCTP_RECVNXTINFO(r0, 0x84, 0x21, &(0x7f0000000080)=0x9, 0x4) [ 248.930846] x86/PAT: syz-executor.4:11694 freeing invalid memtype [mem 0x00001000-0x00001fff] 15:15:00 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070") r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x28001, 0x0) ioctl$int_in(r0, 0x800060c0045005, &(0x7f0000000140)=0x5ad) r2 = syz_open_dev$rtc(&(0x7f0000000000)='/dev/rtc#\x00', 0x3, 0x82002) getsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f0000000180)={{{@in6=@dev, @in6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@local}, 0x0, @in6=@remote}}, &(0x7f00000000c0)=0xe8) lstat(&(0x7f0000000100)='./file0\x00', &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) getsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f0000000300)={{{@in6=@initdev, @in=@dev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@multicast2}, 0x0, @in6=@initdev}}, &(0x7f0000000400)=0xe8) prctl$PR_GET_TID_ADDRESS(0x28, &(0x7f00000004c0)) fstat(r1, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) write$FUSE_DIRENTPLUS(r1, &(0x7f00000008c0)=ANY=[@ANYBLOB="58010000000000000300000000000000060000000000000003000000000000000500000000000000ff00000000000000010000005900000005000000000000005f0000000000000002000000000000000101000000000000010000000000000040000000000000007f00000005000000070000002000000002000000", @ANYRES32=r3, @ANYRES32=r4, @ANYBLOB="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", @ANYRES32=r5, @ANYRES32=r6, @ANYBLOB="010000000400c9ab9fe08a1ed96113e8c8d42ea6f1cb000000000000040000000000000000"], 0x158) write$binfmt_elf32(r2, &(0x7f0000000540)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x5394, 0x6, 0xfffffffffffffffb, 0x8, 0x2, 0x7, 0x6, 0x2a0, 0x38, 0x20d, 0x5, 0x563e, 0x20, 0x1, 0x10001, 0x1400000, 0xfffffffffffffffb}, [{0x1, 0x1ff, 0x8001, 0x1, 0x100, 0x100, 0x9c, 0x2}], "d2a3b522afd128e465e4203f8ee10427c2f8c6b3961c7486f283ca11ff67d90611"}, 0x79) syz_open_dev$admmidi(&(0x7f0000000600)='/dev/admmidi#\x00', 0xb7, 0x0) ioctl$DRM_IOCTL_ADD_BUFS(r1, 0xc0206416, &(0x7f00000005c0)={0x8000, 0x1, 0x1, 0x7ff, 0x0, 0x7}) syz_open_dev$audion(&(0x7f0000000500)='/dev/audio#\x00', 0x9, 0x200) 15:15:00 executing program 2: socketpair$unix(0x1, 0x100000000005, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) write$binfmt_elf64(r0, 0x0, 0x0) r2 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r2, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070") syncfs(r0) close(r0) r3 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x252100, 0x0) ioctl$EVIOCSKEYCODE_V2(r3, 0x40284504, &(0x7f0000000080)={0x28aa, 0x1c, 0x80, 0x7, "ff366e1cabf65fc755e0cd0a44939766c8238b2edf52ddb52815ed38079a0187"}) close(r1) 15:15:00 executing program 3 (fault-call:6 fault-nth:53): mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) [ 249.050626] x86/PAT: syz-executor.3:11706 freeing invalid memtype [mem 0x00001000-0x00001fff] [ 249.085942] FAULT_INJECTION: forcing a failure. [ 249.085942] name failslab, interval 1, probability 0, space 0, times 0 [ 249.097548] CPU: 1 PID: 11706 Comm: syz-executor.3 Not tainted 4.14.139 #35 [ 249.104658] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 249.114018] Call Trace: [ 249.116611] dump_stack+0x138/0x19c [ 249.120234] should_fail.cold+0x10f/0x159 [ 249.124372] should_failslab+0xdb/0x130 [ 249.128325] kmem_cache_alloc+0x47/0x780 [ 249.132365] ? __lock_is_held+0xb6/0x140 [ 249.136419] ? check_preemption_disabled+0x3c/0x250 [ 249.141432] anon_vma_clone+0xde/0x470 [ 249.145309] anon_vma_fork+0x87/0x4d0 [ 249.149112] copy_process.part.0+0x45e2/0x6a00 [ 249.153700] ? __cleanup_sighand+0x50/0x50 [ 249.157924] ? lock_downgrade+0x6e0/0x6e0 [ 249.162063] _do_fork+0x19e/0xce0 [ 249.165506] ? fork_idle+0x280/0x280 [ 249.169202] ? fput+0xd4/0x150 [ 249.172381] ? SyS_write+0x15e/0x230 [ 249.176086] SyS_clone+0x37/0x50 [ 249.179436] ? sys_vfork+0x30/0x30 [ 249.183050] do_syscall_64+0x1e8/0x640 [ 249.186922] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 249.191749] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 249.196929] RIP: 0033:0x459829 [ 249.200104] RSP: 002b:00007f664e1cac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 249.207818] RAX: ffffffffffffffda RBX: 00007f664e1cac90 RCX: 0000000000459829 [ 249.215075] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000 [ 249.222349] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000 [ 249.229595] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f664e1cb6d4 [ 249.236850] R13: 00000000004bfce6 R14: 00000000004d1a58 R15: 0000000000000004 15:15:00 executing program 1: socket$inet(0x10, 0x5, 0x3) setsockopt(0xffffffffffffffff, 0x8000000000000001, 0x10000000000005, &(0x7f0000000980)="000000009641d897e74754e15cafa0a8d7248293e5ee7f8e2dd6354dafd8e76a155d15a7f2872ef6c17ef451745a222065498562c09b44b262a3a3c76c9f5be0a2af258fa0b6a5dc7726bf25a563705d73ff7e1f556a82ae51f2ae06145b481c4be9c760d8289dc8cb601b1805223df02fa9ac38dc714a052b8acb3070d2d63e76195379b396da6c8d0b2fbc59c17f835516dad72c98358b4ff3cca04e1dda3b0f353c684773cb3813c3d2f0645e7dca7899dce3b933de4ef6e9f512cb5a1f4ad42c632645aff8", 0xc7) setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x100000004, &(0x7f0000000080)=0x2be, 0xfd3b) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) r1 = socket$inet6_udp(0xa, 0x2, 0x0) syncfs(r1) setsockopt$inet_tcp_int(r0, 0x6, 0x7ffffffffffffe, &(0x7f0000000000)=0x85, 0x4) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f0000000040), 0x4) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) socket(0xffffffffffffffff, 0x6, 0x5) r2 = open(&(0x7f0000000080)='./bus\x00', 0x80000000141046, 0x0) close(r2) r3 = syz_open_dev$loop(&(0x7f0000000540)='/dev/loop#\x00', 0x0, 0x105082) r4 = memfd_create(&(0x7f0000000300)='4t\xb9L<\xf2\x00\x90\xcd\x00\x00\x00\x00\x00\x00', 0x2) pwritev(r4, &(0x7f0000000440)=[{&(0x7f0000000480)="a8", 0x1}], 0x1, 0x81003) ioctl$LOOP_CHANGE_FD(r3, 0x4c00, r4) bpf$OBJ_GET_MAP(0x7, &(0x7f00000003c0)={&(0x7f0000000400)='./bus\x00', 0x0, 0x8}, 0xfffffffffffffecd) r5 = socket$inet6(0xa, 0x5, 0x2) connect$inet6(r5, &(0x7f0000000100)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, [], 0x1, 0x0}, 0x7}, 0x1c) setsockopt$inet6_opts(r5, 0x29, 0x40, &(0x7f0000000580)=ANY=[@ANYBLOB="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"], 0x1) sendmmsg(r5, &(0x7f00000092c0), 0x4ff, 0x0) mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x800003, 0x11, r2, 0x0) socketpair$unix(0x1, 0x800000000000003, 0x0, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x360) fcntl$setstatus(r3, 0x4, 0x44000) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r7, &(0x7f00000001c0), 0x526987c9) read(r6, &(0x7f0000000200)=""/250, 0x50c7e3e3) sendfile(r3, r4, 0x0, 0x80003) 15:15:00 executing program 4: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="11dca50d5e0bcfe47bf070") r1 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x4000, 0x0) ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000100)={0x3, 0x8, 0x3, 0x9, 0x44, 0x6}) mkdir(&(0x7f0000000580)='./file0\x00', 0x0) r2 = openat$selinux_avc_hash_stats(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/avc/hash_stats\x00', 0x0, 0x0) clone(0x20000, &(0x7f00000005c0)="b89c6d03ca971c1c042d13afb5d17d352187187b164eb7dfcf9491e3bedda328bc71c40ed109926ebcdfa8222ac448d350573a67c059e73c7085a4add8549123d28ee88fb25225cc6a96fbe4b866ba1fce3e174352a40710bb247a82af56544c0310d699836c6bdf08c2ee4d203ac7ec2e365ba212f99822760735e55f67276da06c19b55b7cddf1fdb357f7cd84a9e03149e4849edb33f05d848262e3d081fa9f2cefc210edc709ec42f981efb2347d10133b4b0fa8123d5ac78cf08dd51f390ef00553835d", &(0x7f0000000540), &(0x7f00000006c0), &(0x7f0000000700)="2105ff23082997c70d64ada8c49cf39f40c4571c6d1e57acf0d81f5111174020350b86af652ef4f81b4933b2ddd63f78a49bd9405f11899be2ef1300b1e65d596777543d4b2b20a1d508f054ac72e4d3dd79adf208885edde8ec276d39db4f9724b033cf252f73edef3ecf2f570473ab206f50f47eb0b2d29c89de5b453394070587fa573d7ae8cb57d7f81fb083e6614d9ce71ff3e9b00dbc198be8213fc7830d93258753326e04025eaff45d6eb989327a947a2f399c60ab7364ae79f7e4b572") ioctl$PERF_EVENT_IOC_QUERY_BPF(r2, 0xc008240a, &(0x7f0000000140)={0x40000000000001c9}) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r2, 0x84, 0x16, &(0x7f00000000c0)=ANY=[@ANYBLOB="090000190000a7070010000000009e0ee1ff00000300784d262f35dc617b61211e015ef6238261da2103ac5616cfa4d53943192f0b5e9310"], 0x16) getsockopt$inet_sctp_SCTP_ENABLE_STREAM_RESET(r1, 0x84, 0x76, &(0x7f0000000180)={0x0, 0x5c27b569}, &(0x7f00000001c0)=0x8) getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r0, 0x84, 0x6, &(0x7f0000000300)={r3, @in6={{0xa, 0x4e23, 0xb1d, @empty, 0x5}}}, &(0x7f0000000240)=0x84) setsockopt$inet_sctp_SCTP_DELAYED_SACK(r1, 0x84, 0x10, &(0x7f0000000280)=@sack_info={r3, 0xfffffffffffffffd, 0xfffffffffffffffb}, 0xc) syz_genetlink_get_family_id$fou(&(0x7f00000002c0)='fou\x00') mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) ioctl$void(r0, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r4, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) bind$rose(r4, &(0x7f0000000800)=@short={0xb, @dev={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default, 0x1, @default}, 0x1c) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) 15:15:00 executing program 5: syz_mount_image$ntfs(&(0x7f0000000100)='ntfs\x00', &(0x7f00000000c0)='./bus\x00', 0x0, 0x2, &(0x7f0000001680)=[{0x0, 0x0, 0x401}, {&(0x7f0000000000)="3a77dd21387d6a624e139a664bf7ec507567aba5727ca2250cce6cea", 0x1c, 0x35}], 0x8100, 0x0) 15:15:00 executing program 2: syz_open_dev$binder(&(0x7f0000000000)='/dev/binder#\x00', 0x0, 0x2) r0 = getpgrp(0xffffffffffffffff) sendmsg(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000080)="5500000018007fafb72d1ca2a4a280930206000000a843096c2623690400080004000c0816000b0000001af028f1c46b7b31afdc1338d54400009b84136ef75afb83de448daa7227c43ab8", 0x4b}], 0x1}, 0x0) r1 = socket(0x10, 0x2, 0xf2a0) sendmmsg$alg(r1, &(0x7f0000000140)=[{0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000180)="1a0b2b391ea66655d60d00f27cf74933d21ded11a6cf025e56d42a846a291fc58f6579a1618f59d862f7557c19c0c376aa88d00052b40600144204f772ed4fceb7e1eef2d757945fee22c40834969dcffa2e715ae3b142ac88f998cc28c33a56494f186346553e357d4965479949a16d8df5460d39612855a8cf5c8ea4e3e9e6f4ef0806937fac", 0x87}], 0x100000000000039b, &(0x7f0000000280)}], 0x0, 0x0) waitid(0x2, r0, 0x0, 0x2, 0x0) 15:15:00 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x8001, &(0x7f0000000040)="dc05005e0bcfe47bf07000") r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x28001, 0x0) read$rfkill(r1, &(0x7f0000000100), 0xfffffd70) ioctl$VIDIOC_EXPBUF(r1, 0xc0405610, &(0x7f0000000000)={0x376acc4eaed4baa9, 0x0, 0x824, 0x0, r1}) ioctl$int_in(r1, 0x800060c0045005, &(0x7f0000000140)=0x5ad) 15:15:00 executing program 3 (fault-call:6 fault-nth:54): mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) 15:15:00 executing program 2: rename(&(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)='./file0\x00') perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0xd7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='pids.current\x00', 0x0, 0x0) ioctl$KVM_SET_SREGS(r0, 0x4138ae84, &(0x7f0000000040)={{0x100000, 0xf000, 0x8, 0x80, 0xfffffffffffffffe, 0x6, 0x9, 0x5, 0x0, 0x5, 0xf3a, 0x200}, {0x0, 0x6000, 0xf, 0x0, 0x4, 0x5, 0x2, 0x629, 0x4, 0x6, 0xffff, 0x2}, {0x0, 0xf000, 0xc, 0x7, 0x1, 0x3, 0x800, 0x2, 0x9, 0x0, 0x0, 0x10000}, {0x2000, 0xf000, 0x10, 0x7f, 0x9, 0xffffffffffff7fff, 0x4, 0x2, 0x8, 0x0, 0x80, 0x3ff}, {0x0, 0x6000, 0xb, 0x1, 0x800, 0x4, 0x6, 0x3, 0xb7, 0xfffffffffffffffa, 0x9, 0x2}, {0xf000, 0x10000, 0x10, 0x272, 0x7, 0x1, 0x7fffffff, 0x1, 0x9, 0x5, 0x1, 0x7f}, {0x2, 0x0, 0xc, 0x22e2ae18, 0x1000, 0x9, 0x4, 0xffffffff, 0x69, 0x6, 0x9, 0x5}, {0x6000, 0xf000, 0x10, 0x3, 0x6f2, 0x800, 0x2, 0x2, 0x6, 0x3, 0x7, 0x2}, {0x1, 0x4000}, {0xf000, 0x7004}, 0x10010, 0x0, 0xf004, 0x4, 0x4, 0x8000, 0x0, [0x2, 0x6, 0x1f, 0x4]}) r1 = open(0x0, 0x10242, 0x116) socket$caif_stream(0x25, 0x1, 0x2006) ioctl$KVM_GET_MP_STATE(r1, 0x8004ae98, &(0x7f0000001000)) [ 249.383210] x86/PAT: syz-executor.4:11739 freeing invalid memtype [mem 0x00001000-0x00001fff] [ 249.404930] x86/PAT: syz-executor.3:11742 freeing invalid memtype [mem 0x00001000-0x00001fff] 15:15:00 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/hwrng\x00', 0x101000, 0x0) ioctl$VFIO_CHECK_EXTENSION(r1, 0x3b65, 0x4) ioctl$PPPIOCSDEBUG(r1, 0x40047440, &(0x7f0000000100)) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r2 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/btrfs-control\x00', 0x200000, 0x0) fcntl$setflags(r0, 0x2, 0x0) ioctl$BLKSECDISCARD(r2, 0x127d, &(0x7f0000000080)=0x7) mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x7, 0x31, 0xffffffffffffffff, 0x0) get_mempolicy(&(0x7f0000000040), 0x0, 0x0, &(0x7f00001ce000/0x1000)=nil, 0x2) 15:15:00 executing program 4: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="11dca50d5e0bcfe47bf070") mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000300)='devtmpfs\x00\xaf\x1b\xfbQ\x97{\xe8s=_\xd8\x1brn=\xc5\x97\xe2\xb4\x86\xfbQ\xae\x8e\xedLN\xf0`\x14\xb7\xaa\x176\xd2<\xbb\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) [ 249.434045] FAULT_INJECTION: forcing a failure. [ 249.434045] name failslab, interval 1, probability 0, space 0, times 0 [ 249.451947] CPU: 1 PID: 11742 Comm: syz-executor.3 Not tainted 4.14.139 #35 [ 249.459090] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 249.468441] Call Trace: [ 249.471041] dump_stack+0x138/0x19c [ 249.474691] should_fail.cold+0x10f/0x159 [ 249.478850] should_failslab+0xdb/0x130 15:15:00 executing program 2: ioctl$KVM_REINJECT_CONTROL(0xffffffffffffffff, 0xae71, 0x0) socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000440)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = perf_event_open(&(0x7f00000001c0)={0x2, 0x70, 0x40, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$alg(0xffffffffffffffff, 0x0, 0x0) r2 = socket$alg(0x26, 0x5, 0x0) r3 = accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000040)=0xe, 0x800) setsockopt$bt_BT_CHANNEL_POLICY(r3, 0x112, 0xa, &(0x7f0000000080)=0x9, 0x4) bind$alg(r2, &(0x7f0000000240)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-cipher_null\x00'}, 0x58) r4 = accept4(r2, 0x0, 0x0, 0x0) io_submit(0x0, 0x4, &(0x7f0000001b00)=[0x0, 0x0, &(0x7f0000001980)={0x0, 0x0, 0x0, 0x2, 0x200, r1, &(0x7f0000001880)="fd0c1b40f8c481ac58eae9e289eaa1377bdd9822a8918a07c8fd6a0eda8362ea51cf1fb263c8428efe5ffc567d38b007b8690ed4d29c6b3e37d325c5d950ca70f4354ae66361dd4cf3cd4f645dd3bd5827b0acdbfaf02494f44235a6aef493c4ef7f3c62f54912a09d6fc41adfd457635fbee56192abf520cf9d0936d7f0ad714c425027ce4f1c09d1bc7ba1b1aab86ba525e4d2eca4f6255486bce80c610077d33ee6131cbb5f9de3c7a67ebe86350a17b191", 0xb3, 0x0, 0x0, 0x3}, &(0x7f0000001ac0)={0x0, 0x0, 0x0, 0x6, 0x4, 0xffffffffffffffff, 0x0, 0x0, 0x3}]) r5 = syz_open_procfs(0x0, &(0x7f00000001c0)='pagemap\x00') r6 = request_key(&(0x7f00000000c0)='rxrpc\x00', &(0x7f0000000140)={'syz', 0x2}, &(0x7f0000000300)=']\x00', 0xfffffffffffffffe) add_key(&(0x7f0000000100)='id_resolver\x00', 0x0, &(0x7f0000000180)="9b5f503429a22688aacc1c98d76e1f89a92c2ee8884520463f97ee68df13f6e29ed9", 0xffffffffffffff6c, r6) ioctl$DRM_IOCTL_INFO_BUFS(0xffffffffffffffff, 0xc0106418, &(0x7f00000002c0)={0x40000, 0x5, 0x0, 0xa000000000000, 0x1}) sendfile(r4, r5, 0x0, 0x50000000000443) ioctl$TCGETX(r0, 0x5432, &(0x7f0000000740)) write$binfmt_misc(r4, 0x0, 0x0) ioperm(0x0, 0x0, 0x0) [ 249.482845] kmem_cache_alloc+0x2d7/0x780 [ 249.487010] copy_process.part.0+0x444f/0x6a00 [ 249.491621] ? __cleanup_sighand+0x50/0x50 [ 249.495867] ? lock_downgrade+0x6e0/0x6e0 [ 249.500023] _do_fork+0x19e/0xce0 [ 249.503463] ? fork_idle+0x280/0x280 [ 249.507170] ? fput+0xd4/0x150 [ 249.510355] ? SyS_write+0x15e/0x230 [ 249.514063] SyS_clone+0x37/0x50 [ 249.517407] ? sys_vfork+0x30/0x30 [ 249.520930] do_syscall_64+0x1e8/0x640 [ 249.524794] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 249.529620] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 249.534788] RIP: 0033:0x459829 [ 249.537959] RSP: 002b:00007f664e1cac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 249.545654] RAX: ffffffffffffffda RBX: 00007f664e1cac90 RCX: 0000000000459829 [ 249.552903] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000 [ 249.560150] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000 [ 249.567399] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f664e1cb6d4 [ 249.574651] R13: 00000000004bfce6 R14: 00000000004d1a58 R15: 0000000000000004 15:15:00 executing program 5: r0 = syz_open_dev$mice(&(0x7f0000000140)='/dev/input/mice\x00', 0x0, 0x10106) ioctl$VIDIOC_ENUM_FMT(r0, 0xc0405602, &(0x7f0000000080)={0x80000001, 0x1, 0x3, "15d59490b000d0f8131e94361a8a3bd8e93b7bcac1b2dfcba07d9ba549fdbf68", 0x30395056}) ioctl$RTC_ALM_READ(r0, 0x80247008, &(0x7f0000000040)) syz_mount_image$ntfs(&(0x7f0000000100)='ntfs\x00', &(0x7f00000000c0)='./bus\x00', 0x0, 0x2, &(0x7f0000001680)=[{0x0, 0x0, 0x401}, {&(0x7f0000001740)="3a77dd21387d6a624e139a664bf7ec507567aba5727ca2250cce6cea", 0x1c, 0x35}], 0x8100, 0x0) 15:15:00 executing program 3 (fault-call:6 fault-nth:55): mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) [ 249.756340] x86/PAT: syz-executor.3:11771 freeing invalid memtype [mem 0x00001000-0x00001fff] [ 249.785447] FAULT_INJECTION: forcing a failure. [ 249.785447] name failslab, interval 1, probability 0, space 0, times 0 [ 249.822085] CPU: 0 PID: 11771 Comm: syz-executor.3 Not tainted 4.14.139 #35 [ 249.829250] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 249.838613] Call Trace: [ 249.841215] dump_stack+0x138/0x19c [ 249.844846] should_fail.cold+0x10f/0x159 [ 249.848992] should_failslab+0xdb/0x130 [ 249.852953] kmem_cache_alloc+0x2d7/0x780 [ 249.857082] ? anon_vma_clone+0x310/0x470 [ 249.861221] anon_vma_fork+0x1ce/0x4d0 [ 249.865101] copy_process.part.0+0x45e2/0x6a00 [ 249.869677] ? __cleanup_sighand+0x50/0x50 [ 249.873894] ? lock_downgrade+0x6e0/0x6e0 [ 249.878048] _do_fork+0x19e/0xce0 [ 249.881502] ? fork_idle+0x280/0x280 [ 249.885199] ? fput+0xd4/0x150 [ 249.888370] ? SyS_write+0x15e/0x230 [ 249.892090] SyS_clone+0x37/0x50 [ 249.895448] ? sys_vfork+0x30/0x30 [ 249.898972] do_syscall_64+0x1e8/0x640 [ 249.902837] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 249.907663] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 249.912882] RIP: 0033:0x459829 15:15:00 executing program 1: socket$inet(0x10, 0x5, 0x3) setsockopt(0xffffffffffffffff, 0x8000000000000001, 0x10000000000005, &(0x7f0000000980)="000000009641d897e74754e15cafa0a8d7248293e5ee7f8e2dd6354dafd8e76a155d15a7f2872ef6c17ef451745a222065498562c09b44b262a3a3c76c9f5be0a2af258fa0b6a5dc7726bf25a563705d73ff7e1f556a82ae51f2ae06145b481c4be9c760d8289dc8cb601b1805223df02fa9ac38dc714a052b8acb3070d2d63e76195379b396da6c8d0b2fbc59c17f835516dad72c98358b4ff3cca04e1dda3b0f353c684773cb3813c3d2f0645e7dca7899dce3b933de4ef6e9f512cb5a1f4ad42c632645aff8", 0xc7) setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x100000004, &(0x7f0000000080)=0x2be, 0xfd3b) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) r1 = socket$inet6_udp(0xa, 0x2, 0x0) syncfs(r1) setsockopt$inet_tcp_int(r0, 0x6, 0x7ffffffffffffe, &(0x7f0000000000)=0x85, 0x4) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f0000000040), 0x4) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) socket(0xffffffffffffffff, 0x6, 0x5) r2 = open(&(0x7f0000000080)='./bus\x00', 0x80000000141046, 0x0) close(r2) r3 = syz_open_dev$loop(&(0x7f0000000540)='/dev/loop#\x00', 0x0, 0x105082) r4 = memfd_create(&(0x7f0000000300)='4t\xb9L<\xf2\x00\x90\xcd\x00\x00\x00\x00\x00\x00', 0x2) pwritev(r4, &(0x7f0000000440)=[{&(0x7f0000000480)="a8", 0x1}], 0x1, 0x81003) ioctl$LOOP_CHANGE_FD(r3, 0x4c00, r4) bpf$OBJ_GET_MAP(0x7, &(0x7f00000003c0)={&(0x7f0000000400)='./bus\x00', 0x0, 0x8}, 0xfffffffffffffecd) r5 = socket$inet6(0xa, 0x5, 0x2) connect$inet6(r5, &(0x7f0000000100)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, [], 0x1, 0x0}, 0x7}, 0x1c) setsockopt$inet6_opts(r5, 0x29, 0x40, &(0x7f0000000580)=ANY=[@ANYBLOB="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"], 0x1) sendmmsg(r5, &(0x7f00000092c0), 0x4ff, 0x0) mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x800003, 0x11, r2, 0x0) socketpair$unix(0x1, 0x800000000000003, 0x0, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x360) fcntl$setstatus(r3, 0x4, 0x44000) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r7, &(0x7f00000001c0), 0x526987c9) read(r6, &(0x7f0000000200)=""/250, 0x50c7e3e3) sendfile(r3, r4, 0x0, 0x80003) 15:15:00 executing program 4: r0 = socket$inet_udplite(0x2, 0x2, 0x88) mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x2000000, 0x4000010, r0, 0x0) ioctl(r0, 0x1000008912, &(0x7f0000000080)="11dca50d5e0bcfe47bf070") mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) 15:15:00 executing program 2: recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @local}}}, 0x1b, 0x0}}], 0x1, 0x0, 0x0) r0 = syz_open_dev$adsp(&(0x7f0000000080)='/dev/adsp#\x00', 0x9, 0xa0140) write$FUSE_WRITE(r0, &(0x7f00000000c0)={0x18, 0x0, 0x4, {0x6}}, 0x18) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x9, &(0x7f00000001c0)="11dca50d5e0bcfe47bf070") syz_open_procfs(0x0, &(0x7f0000000200)='projid_map\x00') preadv(r1, &(0x7f00000017c0), 0xde, 0x0) 15:15:00 executing program 5: syz_mount_image$ntfs(&(0x7f0000000100)='ntfs\x00', &(0x7f0000000000)='./bus\x00', 0x0, 0x4, &(0x7f00000012c0)=[{&(0x7f0000000140)="b8b3b415a3a3c684761eab84d9801426d6491776789dfd369ead8692cff9e0ea2b1fb660ef079f96ae1b7248a4ddc74e922a8b04da5e10f02abc3ee063ef7b2148acec495f49c8166421f552082e2f8963e3d692f0c3d09bc3a1ab2cfaf339667e0184e07d0db7d4e7f46c74cb3eb5fae3a77a6056ecab", 0xfffffffffffffd3b, 0x7c}, {&(0x7f00000016c0)="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"/427, 0x50, 0x85}, {&(0x7f0000000240)="491b366648243a7adcebe5799a45ea40b68654565d0d8eb8fb5eec4076abb63abfbad5e9b084041fae15b7a7ddf4b037e698cb272e37dff7ac6d7896eba67e2ea06534422ef6e64556244b7946d8de747d67576cdfcf86cb2c905d02961877ef88a2f7d9671bae703e908e92dc6752d70ea6dd034cd5a05ae5c3e60b397f49ec9c586050c65fa1253779ce901b17a80d3ca840fd7e504fc7f057d4363251776ea3b99a9e89da1b0dddf7895dff845d7bbc40d805ee17bdf0013043d636c177cdde452d22240af0e5ef8736772b23a10ffa736f1f47ca2996ad3cdd83bc3cd2241907aa3cd017a12b5c748b73ecb5ae0722569099f3a0e0d5acedbeecbcc9d1f15cff9577c48eb5034a6a272904f0aec676c6b7dcaf46e3a3e8e93cf50024e3f7766f8a9601cf102e9c76fd6b6a5f08461a631531f9a4450ad2893938b6553f90519a6bf3702fc9d189bda8a9c41ebe082bc666f004a3311f6c0a11f35c05dda8877c008b9ba8a47145b5712d55e2764335a55e8973ef74ab682b03d6d8e822ba6d5c8c802bc38e530efb668ad1bdf567982031e064ed36ea3cadf16c8e52b65693cf783add687b6e7e5046dcd6c80092e0ec5d7766d76d4598e1d2e86defaf1ab99ca3c7800f5f69dc4b8f8c9f4c2598c2304d5b52ad6ed4bb8278f947c6e643bb276e6259ad482b1a8dbaeb3a9023c7918dd2e9f1cbfb49a6bccb771f6776ba3ffd0dd85c44c784cc0c509957177041bc92db82366025316c7c5874e9b830514bc6cdc5c3070b8705178c4ddfd5802720d2e56c929fc74a8fc779ce1606725e51aa6851f63e3a5d342e950239af9e219092446e6d9b91f77ce700e578bff40724622caf143e1d0d0a5283ac384645932edbd35d992961a0d032f5e8d80b1d35fd0a8f0f0d780e23c020d3e0ca892008533984bab80bbb3bc1869152304feb95cccc6360d64b328d0f882737456cc633beeb3c570a6434a7ffdc53dcf44db88835d7c6c4921448abd62774ae4fbfc6bec097a0ef9d2169452cc356c80be839c2f0238014bbf3d2a54d8a129310f0d323ecfc25ecb2a9753882efc4ec3cb1ffc7802b2c5cc30dd9d8412f19cafc7ce233fa1802fcef1934c9b50fe3865acee44e87e9b4ff8c274515b9a3f484978bc82ac5bae61590ec9eb9c4e39a498ab2f9992eca0eb58433cb24bf1a3a6683c40d94b5e1445cf2d613e64bf31a51cc0ba1fb20250909fc229fdc61a41104d527866acedb3edcf5f8e206f6464784d11b3ebb02b872d52daa57fd17ce9e5f48e1523899123b88b35283e0adfa588a350a1971a3be2cf5ea81dc44f869305671ee58175c33bd6703086a9f97207b843c22144eb0be77d700aed67a5c7109a8bf6a91ed2e936039b307c0b0d7d9fd4c97717a341a4c18ccb32c757841934d2886004fd1e22204e501f2dd0f533ef7a1e6c74767f3653603552d18f489c8cc9ab53c44dfb4dda29233305371ba131787baac979cd09ee0830b4f831015449b82d37f66a77fd44506acfbfb0197319c3c4b7ecf8352331d40c3d817b9477eced5daad7a8a2701b400817f7d72e08a925acefa7f4d92c2b9a1a0b95ae0f39c8c71683c4c5d8dfca73f6921540b58ba18fbbc0679d2309ba102e4017fe71e8394275951435f8ee7250474f5f5e7c4909cb466bb3fa3e3016431c6eeb0b80f42fc923ad42ba903e82c99907b79592cf84fa91665f67c7a89e2d1a6211675f11acdb3cb82b64329841c1000614fa6ac525ae2b4dda08ef7bda36eb2c12b80d1aabac8d5b779cd6d9f07d0d76e6736ffd3e57e7872961c9e4683db30337fed977a763d0eadfa05522fbd41678ad518d0dca5c0e86dc579b77aa235a67cdb29992ec16647816a5733718d7ea47595b0d46b0da66b0d4157cbffe900fa7fa0488caac5ad2d1ea2bb7f7720cfea381199a80b6b0a87d975fbb6535d770d5a58bea1fa558fd7b12d7a6594bea9bbd5830fefd723e6404d8bd34742fb3467af360daf4c3fb08684303e8c17b131ee82ba43cab9cc1ed952eb712a9c9da9384019b502fef620797350f485275d5607dad5fbab2993c99ddbcf4ccf0df129bc2f57dbfd3dfd25d09ccfc458b866d7c988270cbc389e9ecf0a3eb9fc9c594abb585f66754ab2a2c3061539a1334656c036a2d87b2934f0d2ee291d8b9a94f252b3b260a02f29566dd089f24f5bad86e39bd3160e13ffb35f22fbabc4c907bef03d053289da84642b795bf40d17b4553c672db203977a59d8c1b585a34b3d41aa1aedd643229494a7bbdf247acfe5eaf2d78ff387834bab7574869620b67a76fd022c9a6274a52147cbb829d859e591a760cc12d1b982103c6e4dfd184517caf83fe698548b5af766a6f50aa88c49a82f62b0ce3e4c888a2f55088371a957740a063c01c2988ea6cc54dd1273de9c1f29b5b2fa3f9559c41af8c1e2b63ec9fe1062bbc898389bfc05ea395d48764c5b4a113bb0961638b92b496e0060f9bb4ad949704690505ff7ef1369cca121a1cd40b13f23f612ff185e02aaf83b05640d4470eeb11a77bc6ec4fe982d05b833246ecb0dde59efd840bb644c037c312d53a7f911c430dbc7ca361666242fe1da07203fe4b285e3bc3941cc0753b1b086661768e8fe5dbd5f5011528e2324ab1b14af1251eda929a00c063dd77d6afdaa161e72c5266efec05958707ad8c5ddf7e200d31afd7707358d8f0c456fa37a8e8c0d838a65419220c991a7c5806ea6c4bc3f8eefba046231c504a8fec009918d4327d0ab3d7803fab5a9d21188fa927942ac1ca0e40c2ea3157f414f9365d056aa79817354f5952430764772267675e885d39372aa9fbb1edb4991be809f43abb40a811eeafdd5c7bf3e5c88fb17112baacd938c3aff5d6e394ada8494683fcbda0e5a664222ed32788caef72f20985b6ce8196c9adbad41594a944a673af6e1f054c6a70a1c5614a9dc8b28a5bce209f6dccf06cdfccf7996d574cf62c1882b95607fa55afd3786803f5706a886f806469cb940632892ad323e3a6f1abdb99d6dc86173f11cd37f0edc8f3027d918838eb1f188d33a6eb2207c531b3fa2cc9be7200605a4d7fc6c6006ea01528757d0cbf33a368dfcbcecf88a462c69cbace76ed62d6433dc98f6d880e3cc7890ef7c801ab7c332c0c4ae6f2a2f68313e75087644d9b70259b24febe1386b27ec4b61fe0b4593450d77a5609ec3458b6c8e3fe1c4ba2bc735fab285823f9b660ce8ecdb16bb505d36865ff61547dffaa56f8636b009954fd38d033b8d27edf873055ef490c054a6d77bb24c714d90ad6eea966bcfa3e204d276a9474483f193de87512c0190763d21551040f34b8b899f772de23f4c15961d5cc769a93f40708462566c47a0a29c6cfc50e483e94f41aeeb054bb78b6b5adbe4017230d76774d3f1dd0c39d640cce1f5133b722993ac58066b2b87c2b5b9ae0138e836e2784b207cd4bb2705b88a879435ad2d0e3db2030dbee733db39944a5b0cfd4a19695115e7c09681281b0e5c7da4fd15586137763b059af2dfde3231811e07dfa5072e0f3657084a5fd72e0a8e3fdef826a80fa27bd86f8195abd4d72e4036086444b331304a7f6fb474302967bfb72d80ffa5f89a2b14abc1f8c860313b08c826cfda8c1eb2325250eea17d77a3837cdcbb52c8c9b0d87504154a3bfbab2894e4740723566f6aff414d82c0f152f3d8020490d7893b5cae207a7312e8144f9c7b47a39bca22fa76cc8714f48c9512442ed3a9af4f3d65c6ade2c5899e75dc927a1970da0957ed64242547081c3e4b067b3ea16bb5e132d2e0e15c22f69ef0c69bce508f62fd48fa8e90b28927970d5c054539d44c12353bcc5fb5c20d15750533b7c4aa0a545ba1743f6126f88e4b37ba34260ab25589f8f41937e1dc8b818d457f3b4ffac9b68c7bb318a0e3a19a5afbe4a9fbab1e770e4f03af2a76ef46c9f97930677347cba9b822a790c426ca7d34cd1060189f21add4e851c8203f409bfaf99094751b46cb6ff4b98d0fa0663730580d4f9495f70c09534753cd6284bce804a89e2ac7bb1e094923c1e15c4aecda6fe095633734242b08837c7376d43273691078c3645117fe7db1fa71de2a967b75ec132100d2040b1b5ba2f7c72339312646af0e44cd261a53b9403bebe6292328875b707526904628f7beb26382cff70e1c28bde1e3c2481d02b13336913b52256dc8bc453c940f24ae0f5091414c9d76ca9c2bb859d5dd68cbb112f2985f547565afb0550be60ccf1a46276abf229f2f0717e8bf8e5f39c0fb2df417fdab20f2d842bb25507941346119d9cbd87dd2460426cf67457dc7da8b4360241c5507ac7c3e255a7aa7e24c6d039dc171e4e686e2f720af2049c8e244ce6d1d5598fd326fcb990f0d26a9a1253aab167f0b3f5e6844a79ddf56e3375ed593ab5bab65f7a72376994950c9de2151021764ae308ea111e0e3a7e8995b32ea3b2aa454321962aba4d710130fc7dee2357aa7506555010bc6545223f2ac99d3457b44fff584ef105fe6b9d13b658fb5ec6480ca9d2a4bdecadb7468dec9e9e910a63b85d388e5a664198f033dbc2feac682d20d82f6c038eab6bb091b23183aa462d57020462619d9907e07b7a2f26a26ef841278c54f6f079dba2f0c54d7368473703a60419abcf91a916f4095e3f1cce4dd987971813a3f031fde09f4bd89b1e728ddc30b1a513804a211dc7c9d9958d52a500dcb57869281fbefe644736591e8f92b180d91954daaa7146300c3215aeeaa9b1838816994509b88d9c24209db46717aefe95913621fac2f5a9362d5c5da755425955f1a6a42430172716ee578cc94997c40eeb9b002917bd0ea24532a7cc59e4dc3add7c6eaa37f08c854ed839cb1d8a973a596a1bd615c7739006736ca382d049d2219d71a04c21a5e26701137505a3a7ec0af15fe009f7061455c5fe4d9afeee401a90bb5308e80eeb6a1c9f0194d826f0ae238bcbac62577c51002c89c079767f6345da6b6995b71e32d550c19a73aff20c0e42d2e015804128a9a074268497d6a579edcddda8d434716275d2030bee7393d7f7c972f03b7030e1af333c5548da8450a91da807aa72db08bf1347ec5727a07dc9e6708be018a9acf500a985b1f247a54dc0ae0d55f2eb8385799cb8ef07a3d8fe5c9ddbd3adb1bd5b3c443c1f40f297ba89c730ae6d7c3fae22f7c00a1d38474e5ea264edf740ca6e9b17b205e380e69d14c595d15b991708015c2d0bd8e46e6d4104d212e03000402a7f13711b84c3381144594d50f941391759d25abc099b3206acea03bb0288876e580e8db90a092bce79afba34b818704380cc8508fa5811bc940555ed1ec1b70417ea3847ad0378be0ac73bf4a0b8c47c7928b8677551a1777f2feea26cf92d5d7b7d286ddeb9b59960cca42ed2230d68d15f12f23ce702ee01a96bd2d0e99fa6ba2267f2023f43b85b3521cf2a871ef63540c7aa781d6899991226c12549f1003ad4414e182a496ce735c96370f0d408b6bdaf5dc1e95e54b4a76b850fa9d16f0133d102bba40afc3d2d27bc38d02fd91874fdb46482e1db978efa7802f9824333c47572866056fd4d06ac14506f49f15c988b2f485b910e6b05a213613801b1c2dfb52272296825cea0f6337df46757d97db91251a6cdfb06ed8f6aad56e88e59a3284c52bdbf622dd3f0f2028f51d1062c1d69540a32337b8841ff676fd4da286cf76275690249ad109aa4c5489cd49eaf2491a1c8d98e757e6742680d5c474cb2faea04e701fd99250255b3807e22f11369236", 0x1000, 0x3c}, {&(0x7f0000001540)="0609857bf9f2d82e84a1bc61084d5ef7feb248ed12316159e0af01aa2a182df5700ef7fbbb02ae04278c22f402069a6761b9b83ead65d4c6b0d39726776e20d21750a9d5e8444d7afb72bfd88e", 0x4d, 0x10001}], 0x8110, 0x0) r0 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x80000) r1 = socket$bt_hidp(0x1f, 0x3, 0x6) r2 = openat$proc_capi20(0xffffffffffffff9c, &(0x7f0000001240)='/proc/capi/capi20\x00', 0x0, 0x0) r3 = openat$null(0xffffffffffffff9c, &(0x7f0000001280)='/dev/null\x00', 0x88000, 0x0) fchdir(r1) getsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(r0, 0x84, 0x18, &(0x7f0000001340)={0x0, 0x9}, &(0x7f0000000200)=0x8) setsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(r0, 0x84, 0x6, &(0x7f00000015c0)={r4, @in={{0x2, 0x4e22, @broadcast}}}, 0x84) r5 = syz_open_dev$media(&(0x7f00000013c0)='/dev/media#\x00', 0x4, 0x400000) r6 = socket$nl_generic(0x10, 0x3, 0x10) r7 = openat$rtc(0xffffffffffffff9c, &(0x7f0000001400)='/dev/rtc0\x00', 0x80000, 0x0) ioctl$FIDEDUPERANGE(r0, 0xc0189436, &(0x7f0000001440)={0x4, 0x0, 0x6, 0x0, 0x0, [{r1, 0x0, 0x8}, {r2, 0x0, 0x8}, {r3, 0x0, 0x5}, {r5, 0x0, 0x7}, {r6}, {r7, 0x0, 0x4}]}) lsetxattr$trusted_overlay_redirect(&(0x7f0000000040)='./bus\x00', &(0x7f0000000080)='trusted.overlay.redirect\x00', &(0x7f00000000c0)='./bus\x00', 0x6, 0x2) [ 249.916052] RSP: 002b:00007f664e1cac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 249.923756] RAX: ffffffffffffffda RBX: 00007f664e1cac90 RCX: 0000000000459829 [ 249.931042] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000 [ 249.938290] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000 [ 249.945544] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f664e1cb6d4 [ 249.952800] R13: 00000000004bfce6 R14: 00000000004d1a58 R15: 0000000000000004 [ 250.015154] x86/PAT: syz-executor.4:11783 freeing invalid memtype [mem 0x00001000-0x00001fff] 15:15:01 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070") r1 = syz_open_dev$usbmon(&(0x7f0000000580)='/dev/usbmon#\x00', 0x0, 0x0) getsockopt$inet_sctp6_SCTP_LOCAL_AUTH_CHUNKS(0xffffffffffffffff, 0x84, 0x1b, &(0x7f00000005c0)={0x0, 0xfc, "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"}, &(0x7f0000000700)=0x104) getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r1, 0x84, 0x9, &(0x7f0000000800)={r2, @in={{0x2, 0xff, @broadcast}}, 0xffff, 0xe0000000000000, 0x4, 0x5, 0x40}, &(0x7f0000000740)=0x98) r3 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x28001, 0x0) read$rfkill(r3, &(0x7f0000000000), 0x3) ioctl$int_in(r3, 0x800060c0045005, &(0x7f0000000140)=0x5ad) r4 = syz_genetlink_get_family_id$team(&(0x7f0000000100)='team\x00') getpeername$packet(r3, &(0x7f0000000280)={0x11, 0x0, 0x0}, &(0x7f00000002c0)=0x14) getsockopt$inet6_mreq(r3, 0x29, 0x1b, &(0x7f0000000780)={@mcast2, 0x0}, &(0x7f00000007c0)=0x14) getsockopt$inet6_IPV6_XFRM_POLICY(r3, 0x29, 0x23, &(0x7f0000000d00)={{{@in6=@remote, @in=@empty, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@remote}, 0x0, @in6=@initdev}}, &(0x7f0000000e00)=0xe8) getsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0x10, &(0x7f0000000e40)={{{@in=@remote, @in6=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in=@multicast2}}, &(0x7f0000000f40)=0xe8) getsockopt$inet6_mreq(r3, 0x29, 0x1b, &(0x7f0000000f80)={@initdev, 0x0}, &(0x7f0000000fc0)=0x14) getsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0x10, &(0x7f00000025c0)={{{@in=@remote, @in6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@loopback}, 0x0, @in6=@ipv4={[], [], @loopback}}}, &(0x7f00000026c0)=0xe8) recvmmsg(r0, &(0x7f0000009b40)=[{{0x0, 0x0, &(0x7f0000003c80)=[{&(0x7f0000002700)=""/189, 0xbd}, {&(0x7f00000027c0)=""/121, 0x79}, {&(0x7f0000002840)=""/250, 0xfa}, {&(0x7f0000002940)=""/130, 0x82}, {&(0x7f0000002a00)=""/58, 0x3a}, {&(0x7f0000002a40)=""/53, 0x35}, {&(0x7f0000002a80)=""/219, 0xdb}, {&(0x7f0000002b80)=""/242, 0xf2}, {&(0x7f0000002c80)=""/4096, 0x1000}], 0x9}, 0x4}, {{&(0x7f0000003d40)=@generic, 0x80, &(0x7f0000005040)=[{&(0x7f0000003dc0)=""/7, 0x7}, {&(0x7f0000003e00)=""/237, 0xed}, {&(0x7f0000003f00)=""/30, 0x1e}, {&(0x7f0000003f40)=""/228, 0xe4}, {&(0x7f0000004040)=""/4096, 0x1000}], 0x5, &(0x7f00000050c0)=""/246, 0xf6}, 0x8}, {{&(0x7f00000051c0)=@vsock, 0x80, &(0x7f00000053c0)=[{&(0x7f0000005240)=""/176, 0xb0}, {&(0x7f0000005300)=""/131, 0x83}], 0x2, &(0x7f0000005400)=""/135, 0x87}}, {{&(0x7f00000054c0)=@ethernet={0x0, @dev}, 0x80, &(0x7f0000006940)=[{&(0x7f0000005540)=""/4096, 0x1000}, {&(0x7f0000006540)}, {&(0x7f0000006580)=""/35, 0x23}, {&(0x7f00000065c0)=""/176, 0xb0}, {&(0x7f0000006680)=""/184, 0xb8}, {&(0x7f0000006740)=""/165, 0xa5}, {&(0x7f0000006800)=""/251, 0xfb}, {&(0x7f0000006900)=""/51, 0x33}], 0x8, &(0x7f00000069c0)=""/152, 0x98}, 0x3b}, {{&(0x7f0000006a80)=@alg, 0x80, &(0x7f0000006c00)=[{&(0x7f0000006b00)=""/237, 0xed}], 0x1, &(0x7f0000006c40)=""/4096, 0x1000}, 0x4de}, {{&(0x7f0000007c40)=@nl, 0x80, &(0x7f0000007d00)=[{&(0x7f0000007cc0)=""/23, 0x17}], 0x1, &(0x7f0000007d40)=""/198, 0xc6}, 0x5}, {{&(0x7f0000007e40)=@in={0x2, 0x0, @empty}, 0x80, &(0x7f0000007f00)=[{&(0x7f0000007ec0)=""/51, 0x33}], 0x1, &(0x7f0000007f40)=""/162, 0xa2}, 0xffffffff00000000}, {{&(0x7f0000008000)=@ll={0x11, 0x0, 0x0}, 0x80, &(0x7f00000090c0)=[{&(0x7f0000008080)=""/4096, 0x1000}, {&(0x7f0000009080)=""/52, 0x34}], 0x2}, 0x612}, {{&(0x7f0000009100)=@pptp={0x18, 0x2, {0x0, @broadcast}}, 0x80, &(0x7f0000009840)=[{&(0x7f0000009180)=""/184, 0xb8}, {&(0x7f0000009240)=""/200, 0xc8}, {&(0x7f0000009340)=""/189, 0xbd}, {&(0x7f0000009400)=""/152, 0x98}, {&(0x7f00000094c0)=""/133, 0x85}, {&(0x7f0000009580)=""/208, 0xd0}, {&(0x7f0000009680)=""/158, 0x9e}, {&(0x7f0000009740)=""/19, 0x13}, {&(0x7f0000009780)=""/174, 0xae}], 0x9, &(0x7f0000009900)=""/77, 0x4d}, 0xc1fa}, {{&(0x7f0000009980)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @local}}}, 0x80, &(0x7f0000009b00)=[{&(0x7f0000009a00)=""/209, 0xd1}], 0x1}, 0x8}], 0xa, 0x982e439569768b5, &(0x7f0000009dc0)={0x77359400}) getsockname(r3, &(0x7f000000a080)=@xdp={0x2c, 0x0, 0x0}, &(0x7f000000a100)=0x80) sendmsg$TEAM_CMD_OPTIONS_SET(r3, &(0x7f000000a400)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f000000a3c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="44020000", @ANYRES16=r4, @ANYBLOB="000329bd7000fddbdf250100000008000100", @ANYRES32=r5, @ANYBLOB="a801020040000100240001006c625f74785f686173685f746f5f706f72745f6d617070696e670000000000000800030003000000080004007c5e20adfe402d6a97ac0393abcd9c72e33e623443e34929303f0c6140f074022885f16a6dce926e3962d4c131", @ANYRES32=r6, @ANYBLOB="080007000000000040000100240001006c625f74785f686173685f746f5f706f72745f6d617070696e67000000000000080003000300000008000400", @ANYRES32=r7, @ANYBLOB="08000700000000003c00010024000100757365725f6c696e6b75705f656e61626c65640000000000000000000000000008000300060000000400040008000600", @ANYRES32=r8, @ANYBLOB="400001002400010071756575655f6964000000000000000000000000000000000000000000000000080003000300000008000400fcffffff08000600", @ANYRES32=r9, @ANYBLOB="38000100240001006e6f746966795f70656572735f636f756e7400000000000000000000000000000800030003000000080004000000000038000100240001006e6f746966795f70656572735f696e74657276616c00000000000000000000000800030003000000080004000900000038000100240001006d636173745f72656a6f696e5f696e74657276616c00000000000000000000000800030003000000080004000400000008000100", @ANYRES32=r10, @ANYBLOB="780002003c00010024000100757365725f6c696e6b75705f656e61626c65640000000000000000000000000008000300060000000400040008000600", @ANYRES32=r11, @ANYBLOB="3800010024000100616374697665706f727400000000000000000000000000000000000000000000080003000300000008000400", @ANYRES32=r12], 0x244}}, 0x20008801) ioctl$VIDIOC_G_PARM(r3, 0xc0cc5615, &(0x7f0000000180)={0xa, @raw_data="51f6e6ef4b4cdaddc52032213cda3a829f6ffc2306056c726489c811a7fea1624a75f8bb7aeb47cec0f84dab5d15ec54090bd1f4b2406cc3ae646f8e0d46fddcdaea53b23b22675e5f9962a5eb45d00fac810db87563038455b4a1d16bd9b768d96420f2819f048136986ab45096882285f0d2a4b6c32d9d0f7d00780086a61dfced4855337edd5f8ee712a76fbf6685e72ba9d621e8dd4f503a9b3df8f21b9208294f272d2ae1126310c81a078cce9bbcb6d0c2742c0239fa87037c4795a3a0e79d985357dfd5ea"}) 15:15:01 executing program 3 (fault-call:6 fault-nth:56): mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) 15:15:01 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = syz_open_procfs(0x0, &(0x7f0000000180)='net/icmp6\x00') ioctl(r0, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070") lseek(r1, 0x32, 0x0) read(r0, &(0x7f0000000080)=""/233, 0xe9) 15:15:01 executing program 4: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="11dca50d5e0bcfe47bf070") mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) mremap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1000, 0x3, &(0x7f0000fff000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) ioctl$VIDIOC_QUERY_EXT_CTRL(r1, 0xc0e85667, &(0x7f00000000c0)={0x0, 0x108, "7ae02a9eab4328c8eb8414f85c88de4d4688862fd5c0c23edcc449ef61eaf836", 0x6, 0xfffffffffffffffd, 0x2, 0x1ff, 0x200, 0x2, 0x400, 0x7fffffff, [0x6, 0x3, 0x5, 0x3]}) [ 250.217920] x86/PAT: syz-executor.3:11808 freeing invalid memtype [mem 0x00001000-0x00001fff] [ 250.238923] x86/PAT: syz-executor.4:11805 freeing invalid memtype [mem 0x00001000-0x00001fff] 15:15:01 executing program 4: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="11dca50d5e0bcfe47bf070") mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) creat(&(0x7f0000000140)='./file0\x00', 0xc) chdir(&(0x7f00000003c0)='./file0\x00') r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mount$9p_tcp(&(0x7f0000000040)='127.0.0.1\x00', &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='9p\x00', 0x80000, &(0x7f0000000540)={'trans=tcp,', {'port', 0x3d, 0x4e22}, 0x2c, {[{@nodevmap='nodevmap'}, {@cache_loose='cache=loose'}, {@version_u='version=9p2000.u'}, {@cache_none='cache=none'}, {@privport='privport'}, {@msize={'msize', 0x3d, 0x3}}, {@access_user='access=user'}], [{@appraise_type='appraise_type=imasig'}, {@obj_user={'obj_user', 0x3d, 'mem\x00\x00\x00\x00\x00\x00\a\x13'}}, {@smackfstransmute={'smackfstransmute', 0x3d, 'mem\x00\x00\x00\x00\x00\x00\a\x13'}}, {@context={'context', 0x3d, 'unconfined_u'}}, {@obj_role={'obj_role', 0x3d, 'devtmpfs\x00'}}]}}) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) modify_ldt$write(0x1, &(0x7f0000000000)={0x9, 0x100000, 0xffffffffffffffff, 0x3, 0x9, 0xf1, 0x401, 0x101, 0x8, 0x5}, 0x10) [ 250.278637] FAULT_INJECTION: forcing a failure. [ 250.278637] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 250.317758] CPU: 0 PID: 11814 Comm: syz-executor.3 Not tainted 4.14.139 #35 [ 250.324917] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 250.334273] Call Trace: [ 250.334294] dump_stack+0x138/0x19c [ 250.334315] should_fail.cold+0x10f/0x159 [ 250.334329] ? __might_sleep+0x93/0xb0 [ 250.348656] __alloc_pages_nodemask+0x1d6/0x7a0 [ 250.353333] ? save_stack+0x45/0xd0 [ 250.356963] ? kasan_kmalloc+0xce/0xf0 [ 250.360848] ? kasan_slab_alloc+0xf/0x20 [ 250.360865] ? __alloc_pages_slowpath+0x2930/0x2930 [ 250.360888] alloc_pages_current+0xec/0x1e0 [ 250.360904] pte_alloc_one+0x1a/0x100 [ 250.360914] __pte_alloc+0x2a/0x2d0 [ 250.360925] copy_page_range+0x11ba/0x1bd0 [ 250.360938] ? anon_vma_fork+0x358/0x4d0 [ 250.374656] x86/PAT: syz-executor.4:11820 freeing invalid memtype [mem 0x00001000-0x00001fff] [ 250.378112] ? vma_compute_subtree_gap+0x190/0x1f0 [ 250.378133] ? __pmd_alloc+0x410/0x410 [ 250.378154] copy_process.part.0+0x4764/0x6a00 [ 250.378183] ? __cleanup_sighand+0x50/0x50 [ 250.386018] ? lock_downgrade+0x6e0/0x6e0 [ 250.386037] _do_fork+0x19e/0xce0 [ 250.386053] ? fork_idle+0x280/0x280 [ 250.386075] ? fput+0xd4/0x150 [ 250.386087] ? SyS_write+0x15e/0x230 [ 250.386099] SyS_clone+0x37/0x50 [ 250.386106] ? sys_vfork+0x30/0x30 [ 250.386119] do_syscall_64+0x1e8/0x640 [ 250.386129] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 250.449967] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 250.455160] RIP: 0033:0x459829 [ 250.458330] RSP: 002b:00007f664e1a9c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 250.466022] RAX: ffffffffffffffda RBX: 00007f664e1a9c90 RCX: 0000000000459829 15:15:01 executing program 5: syz_mount_image$ntfs(&(0x7f0000000100)='ntfs\x00', &(0x7f00000000c0)='./bus\x00', 0x0, 0x2, &(0x7f0000001680)=[{0x0, 0x0, 0x401}, {&(0x7f0000001740)="3a77dd21387d6a624e139a664bf7ec507567aba5727ca2250cce6cea", 0x1c, 0x35}], 0x8100, 0x0) r0 = syz_open_dev$amidi(&(0x7f0000000000)='/dev/amidi#\x00', 0x7ff, 0x80) ioctl$VIDIOC_S_MODULATOR(r0, 0x40445637, &(0x7f0000000040)={0x3, "ae618f73bd4b6bbd5e81552188b4f1a1af6c9e437ffc7f135585ccc3880a7f09", 0x4, 0xd2c1, 0x2, 0x8, 0x2}) mount$9p_fd(0x0, &(0x7f0000000140)='./bus\x00', &(0x7f0000000180)='9p\x00', 0x20000, &(0x7f00000001c0)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r0}, 0x2c, {[{@fscache='fscache'}, {@msize={'msize', 0x3d, 0x401}}, {@version_9p2000='version=9p2000'}, {@fscache='fscache'}], [{@smackfsroot={'smackfsroot', 0x3d, '/dev/amidi#\x00'}}, {@permit_directio='permit_directio'}, {@smackfshat={'smackfshat'}}]}}) 15:15:01 executing program 1: socket$inet(0x10, 0x5, 0x3) setsockopt(0xffffffffffffffff, 0x8000000000000001, 0x10000000000005, &(0x7f0000000980)="000000009641d897e74754e15cafa0a8d7248293e5ee7f8e2dd6354dafd8e76a155d15a7f2872ef6c17ef451745a222065498562c09b44b262a3a3c76c9f5be0a2af258fa0b6a5dc7726bf25a563705d73ff7e1f556a82ae51f2ae06145b481c4be9c760d8289dc8cb601b1805223df02fa9ac38dc714a052b8acb3070d2d63e76195379b396da6c8d0b2fbc59c17f835516dad72c98358b4ff3cca04e1dda3b0f353c684773cb3813c3d2f0645e7dca7899dce3b933de4ef6e9f512cb5a1f4ad42c632645aff8", 0xc7) setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x100000004, &(0x7f0000000080)=0x2be, 0xfd3b) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) r1 = socket$inet6_udp(0xa, 0x2, 0x0) syncfs(r1) setsockopt$inet_tcp_int(r0, 0x6, 0x7ffffffffffffe, &(0x7f0000000000)=0x85, 0x4) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f0000000040), 0x4) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) socket(0xffffffffffffffff, 0x6, 0x5) r2 = open(&(0x7f0000000080)='./bus\x00', 0x80000000141046, 0x0) close(r2) r3 = syz_open_dev$loop(&(0x7f0000000540)='/dev/loop#\x00', 0x0, 0x105082) r4 = memfd_create(&(0x7f0000000300)='4t\xb9L<\xf2\x00\x90\xcd\x00\x00\x00\x00\x00\x00', 0x2) pwritev(r4, &(0x7f0000000440)=[{&(0x7f0000000480)="a8", 0x1}], 0x1, 0x81003) ioctl$LOOP_CHANGE_FD(r3, 0x4c00, r4) bpf$OBJ_GET_MAP(0x7, &(0x7f00000003c0)={&(0x7f0000000400)='./bus\x00', 0x0, 0x8}, 0xfffffffffffffecd) r5 = socket$inet6(0xa, 0x5, 0x2) connect$inet6(r5, &(0x7f0000000100)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, [], 0x1, 0x0}, 0x7}, 0x1c) setsockopt$inet6_opts(r5, 0x29, 0x40, &(0x7f0000000580)=ANY=[@ANYBLOB="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"], 0x1) sendmmsg(r5, &(0x7f00000092c0), 0x4ff, 0x0) mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x800003, 0x11, r2, 0x0) socketpair$unix(0x1, 0x800000000000003, 0x0, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x360) fcntl$setstatus(r3, 0x4, 0x44000) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r7, &(0x7f00000001c0), 0x526987c9) read(r6, &(0x7f0000000200)=""/250, 0x50c7e3e3) sendfile(r3, r4, 0x0, 0x80003) [ 250.473274] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000 [ 250.480522] RBP: 000000000075bfc8 R08: ffffffffffffffff R09: 0000000000000000 [ 250.487769] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f664e1aa6d4 [ 250.495044] R13: 00000000004bfce6 R14: 00000000004d1a58 R15: 0000000000000004 15:15:01 executing program 4: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="11dca50d5e0bcfe47bf070") mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000240)='./file0\x00') r1 = syz_open_dev$dmmidi(&(0x7f0000000000)='/dev/dmmidi#\x00', 0x91, 0x800) getsockopt$packet_buf(r1, 0x107, 0x6, &(0x7f00000000c0)=""/251, &(0x7f0000000040)=0xfb) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) ioctl$GIO_CMAP(r2, 0x4b70, &(0x7f00000001c0)) clone(0x10808400, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) 15:15:01 executing program 3 (fault-call:6 fault-nth:57): mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) [ 250.549445] x86/PAT: syz-executor.4:11820 freeing invalid memtype [mem 0x00001000-0x00001fff] 15:15:01 executing program 5: alarm(0x629c) syz_mount_image$ntfs(&(0x7f0000000100)='ntfs\x00', &(0x7f00000000c0)='./bus\x00', 0x0, 0x2, &(0x7f0000001680)=[{0x0, 0x361, 0x401}, {&(0x7f0000001740)="3a77dd21387d6a624e139a664bf7ec507567aba5727ca2250cce6cea", 0x1c, 0x35}], 0x1008100, 0x0) r0 = syz_open_dev$amidi(&(0x7f0000000140)='/dev/amidi#\x00', 0x4, 0x400000) ioctl$PERF_EVENT_IOC_PAUSE_OUTPUT(r0, 0x40042409, 0x1) r1 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vga_arbiter\x00', 0x76a753884d2b2e2, 0x0) getpeername$tipc(r1, &(0x7f0000000040), &(0x7f0000000080)=0x10) [ 250.695329] x86/PAT: syz-executor.3:11848 freeing invalid memtype [mem 0x00001000-0x00001fff] [ 250.706576] FAULT_INJECTION: forcing a failure. [ 250.706576] name failslab, interval 1, probability 0, space 0, times 0 [ 250.718799] CPU: 0 PID: 11848 Comm: syz-executor.3 Not tainted 4.14.139 #35 [ 250.725924] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 250.735285] Call Trace: [ 250.737890] dump_stack+0x138/0x19c [ 250.741534] should_fail.cold+0x10f/0x159 [ 250.745698] should_failslab+0xdb/0x130 [ 250.749687] kmem_cache_alloc+0x2d7/0x780 [ 250.753843] ptlock_alloc+0x20/0x70 [ 250.757468] pte_alloc_one+0x60/0x100 [ 250.761276] __pte_alloc+0x2a/0x2d0 [ 250.764902] copy_page_range+0x11ba/0x1bd0 [ 250.769138] ? anon_vma_fork+0x358/0x4d0 [ 250.773201] ? vma_compute_subtree_gap+0x190/0x1f0 [ 250.778149] ? __pmd_alloc+0x410/0x410 [ 250.782046] copy_process.part.0+0x4764/0x6a00 [ 250.786655] ? __cleanup_sighand+0x50/0x50 [ 250.790893] ? lock_downgrade+0x6e0/0x6e0 15:15:01 executing program 4: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = socket$bt_bnep(0x1f, 0x3, 0x4) getsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000001800)={{{@in=@dev, @in6=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@multicast2}, 0x0, @in=@dev}}, &(0x7f0000000280)=0xe8) getsockopt$bt_BT_POWER(r1, 0x112, 0x9, &(0x7f0000000040)=0xffff, &(0x7f00000000c0)=0x1) ioctl(r0, 0x1000008912, &(0x7f0000000080)="11dca50d5e0bcfe47bf070") mkdir(&(0x7f00000002c0)='./file0\x00', 0x104) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) keyctl$join(0x1, &(0x7f0000000000)={'syz', 0x2}) chdir(&(0x7f00000003c0)='./file0\x00') r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) getegid() getsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000540)={{{@in=@broadcast, @in=@empty, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@local}, 0x0, @in6=@mcast2}}, &(0x7f00000001c0)=0xe8) stat(&(0x7f0000000240)='./file0\x00', &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) mount$9p_virtio(&(0x7f0000000380)='syz', &(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='9p\x00', 0x1004, &(0x7f00000019c0)={'trans=virtio,', {[{@version_u='version=9p2000.u'}, {@cache_fscache='cache=fscache'}, {@nodevmap='nodevmap'}, {@posixacl='posixacl'}, {@privport='privport'}], [{@euid_gt={'euid>', r4}}, {@pcr={'pcr', 0x3d, 0x1b}}, {@fsname={'fsname', 0x3d, 'devtmpfs\x00'}}, {@measure='measure'}, {@uid_eq={'uid', 0x3d, r5}}, {@fscontext={'fscontext', 0x3d, 'staff_u'}}, {@euid_eq={'euid', 0x3d, r5}}, {@measure='measure'}]}}) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r3, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) write$P9_RGETATTR(r3, &(0x7f0000001900)={0xa0, 0x19, 0x2, {0x4, {0x20, 0x3, 0x3}, 0x1c, r2, r6, 0x100, 0x8, 0x6, 0x4, 0x1, 0x1, 0x7fffffff, 0x6, 0x1ff, 0xffffffff80000000, 0x100, 0x100000001, 0x3, 0x9, 0x80000000}}, 0xa0) ioctl$sock_bt_hidp_HIDPCONNADD(r3, 0x400448c8, &(0x7f0000001740)={r0, r1, 0x7fffffff, 0x1000, &(0x7f0000000740)="eb7e46f9bd65b870caa3f5873d0d8a8b566a4c08a7a52eb06d780284fe90f92a6d926e07ffff7f2f7cb668b601501e1520ebfef88358b8ea773ae5b62c5f8f0625f0a6448ba8617680eeda635d3515e1dbc7481708a4452053b72b68fbe4ef5f407c5f9602a6e7a4ead04e9cad833c61b5a793aa2e77811b9cada5ec1f9abcfebcd6653ac499343267d564b1ed55b814d3a334a5d6d3a9397f41b523f96c5c8ae6026f665ef54085b32d07c35098b28ed42d6375e873d72516eb768c9144bf3d3aabaf33d1b85da7472769854ea9117b416d5158fd0ba4b71fe0ee74ff91365e6c9da805526496bf3ab873c2625e60c1e085c35abc0e2fc71b39491addc49bc6f4da90045e914b52600a26ca9caee983d3fc0c46595e3a6b776bbb7da554065073773b489c5153fb989f99a1650b2a7816a6c6eb0f1771c193b3e738817e4c789d37420975be14b8fc30e44ef11fd7082b19526bddfdd673dd40526811cdc1872a6f75c25e322d396b169d0c9347d467da27842b9a51f9ff615da9d6cf3e8f2f03264c9e1d90688b2b9317c69f6076bd431569d66e88cc06da2750efbfd6bda4411f733896abbfd915bb920f707d41c13f36727451415a0dc706bdbd6ce9f928844abf81cea9a016fcfe57249499986446f9572dce2e9d73bd53b8ae77f580405a4c074961ddf597bc67e80dfedf92277c86563b1abd3ed0e5490c116e8604d15637c680e0ea8e2dff45a5671d5e13a2d5cd5d5c1bb09c1e4baa2cf0cc0a22baf3a3020125b511e0810a9d6ac7d445e703f187ff5853d9975e96f1d45d8793c52325eacad4cfe6b5af38d64f5690c03f4efc5a8b33a336e793c2e0511ff798c286721310d1956ea016d3c78f759b5917f277781d678de29bb16e9b9c9d8c7141fa492e832b1a8075b5c913ab27ed53b01a011fd0f7d67be0c5104944252e669baee959f57fcfff4cf4b58aae24d4b7986b89377bdcdccc139041238ef35fdc813e9fcc751b39e544de16a26a41a84bafd018f4edf84fc43dc4a1eb76bf5198553aab341bc7036004492205a604300a53e48ef1de1d0b1774d8718be2795b6a7929ecedb5315b42f1feed0c5da92114d8ffb9adaff3b710a41876d137abdd9c4e4d84012f157957e445b4307a9add86632744fcff0cca6d31c16f7f9cfcfd33b185abf6da64ef121350d2595333be49734ae680a7d9049601eff952b413f257b41adf01b91c7ff597f1b98d7c00097b6cbe93b96c6e0b01e50cd1516de37ceccd8f2ec0146eba887a3a4b0f01a7c70587e7c1353e9b9cdb13299c0294297366f1e85d0b948f0c8e7710a95e3b63fc3692b5005437f35542dd8c461d9b7ce55ce208e14b96ad0a1537292e4eb6d5c7c7b7a8c2cb67c7143847a287ed72a9d1d74ed51db6127e61daefd0db688ad7350edb6aa482a2a493093b2c9911c57cc2d44b7357c78889dde42d2f6b80fc5fbb1ca9b09c603ff68b680af8bcaa7846a3499922be3a7b5893ce0da3709a66d04441e248a4b2cf5db2ec1438fe63a8701a1ee0b02f8e5edd02612999a97d7d7c8f24af38dce61197a2bff75c5de3c7da37909fab11666092673196469560701227942c82783b1d69b99d40421eaa598722c36f10c194de2280ec82efa93c18422864efbf162d18684852e7112c206d893b8c28add28c090d82528a4c00ec5925e9b3b4ee42e83e37c6f4213af0fa7e33fcbfbd05c81126cc61f658b054d69337d5fd4f5a81feb32390a5c7a6c5caeb434708c100d746f6814789ee10b532145ffc81f14ff4edaee8f941a0ff19208db83dd1bdc5c49a0172a4e0fdf1b6483599345a3fd4aad2a46455f0756f53f9735b3b3d5a487d127b78dcd046219b27ec2192521ab117ac33cb1cd092ae8fe75ab769997c8e7cc079d3beb735363ea567d87b6e026fa20dab69f4773a9b258bf7d8e7084e9b2691186cd994bee469ba8de8ee108f5958c05918a30c490d18cc0c4daf75e2b184a75096c09ee3f4729845370d86ebb40cc1a1a88fb2adf26e46381675dae99ab6f192077a5ba2b96a80532bd2aed70e2d79650ea48342849eb4ff4c7c9dcd94f0fb05bd2d5de5dbc76dfb87af687e51be358031ce47032a02c1ba1024a38c7d1a966d6dab0ae012b6c672b248cfef833515e2935d5bb38b134a5c88c6ee694f5b897cba767151495e55838aefd086be1afb8e57b5816d440e52c41bf6166320204080ae798d1aa3bd09ce3a22f2e51d13e5d98fb12372ce0e0dd0bdf8e0283768292a94a60ca06e161abe8fc6440421111f650ddcf9e3cf48032229acc6e259362a97884e22a7a51b21ebb2f590b9eafc6588a3d4e48c7a8fe201303288324e93d419ede7b0b0baa87f9d508e92bd876354040383d4d6e2571a095f55ed371b426b9ea409b94b566fecc3c83b2513c681c78934c672b8009d325a8bbc7259e9748e0ccc3f3acad8e40ec726e0a82045cf0d65be5b6da0048520f41d4b1e7940e59c58001d5037ac661a04e3741362a3ab32feb5c0931c0c32234fad3f707cc20f3f2364e6e8a7b3776d6f453b7adcac3899c042ae98ab4244dd887f4aacd54fcf40c8ef4e0d32c11ba28a99184670e51fd36410534133df6ea84d1643e4f2bd630a6720199f342700236dcd3fea301d25171123d5460cba8ea4d2fb60830ac9bb139109eddaea9a177d9d5684eb9b8c2cda8fed79c391fa9e8f7c26ef4fd936fc77dd64731a0527a17b0393834c3a4afac79f36be7a5e3fa1023606ea0a203a48dd27c2bbb90b1587bff384ce585cd928edd4931b445471e266c5aad18ac13957993363c9855722bb2a1b499b4ccbb2a9cea7afd98948e3a5f05c769cc359a5ec20a4255d3f62129dcb5801a437d285018745e8b3cb42a5f39f3179be5eae18943d397911634d868c864f225b167faa3c744dc7e8286c466877b9ebe3090fcca83d57eda0947372af3f6437e8c9fd93854f72963751373483d5b2ae3da5c38a7b8c410f1b3353e9a6e05a96e5336728d2469dc47ccd2b47725cac33bba9398ba6a2d1889427906a0f112fc2cce74124c54a6b478b5a1ef9eddb99946de80cbbcdac89097b93674e046dca9f19d56ded1bd6068e88e6e913347138fb74ac83a374255b46425ee875595f91fd4bef2c3259adea04bc9e885319aae89f4bb0b19303c07623b5c2e97092cd19ba3b8a74bd9fe03d084756ffe604bc5b4dd1ce9a5f86c3bc8e5f8943f0624241ea085a4abdf9f12427fa3421ba2da62aadefdb5214f1a02b4fa1ff21b292b6676d9fd2242fe01e7200ebca63eab9e6110b94b500f43848418c02b30151552f9d9a94044fdeda0dfcb25b4099f993a45cb0556109e32fdd5090e76efe9e4f87b927c29f486fbd7a4201a33740860df68d9a0761f57667f5aa83ad2380a2b4e1a2e8ae9755712567e580214069d4489791796fa13711658d39b954bd1b3a9b7775b2dadecd2b8f31bddd4aaf73d5f751830d830c92d1f882f6202ebc0ee937a23e78e6a5c9a9ba8648318d4e19771a2c5bf28055b8e845ebb7d7dea739a0d1b7016c8be63dde6e92adefe647bd88ff0ef4080a15c071347c45b0234c7da1610850de990c18952626f97a08bec9e5f299482bf52994929a20b3dfe10549a979202bf9054cb47b02c6334693f6700419586138f7600b7cc914813c8542ec1e15d430ad576067aac3dff71b154a96a642b1a63a5deea93cff7e325af1bd5336c4eba601e728e70a6a75c5035b2a13f13d8000788570b8ddacf7f35464f0becd0c5c18e9b1860b32ebb4bd93ac196ae9196ecc85f1bd64fdaf7c55851595b31913accf79426d34bc60d724700a8cf19e104e26b2579e6849b7d041d8119e9819b551e76940ea346517954772ed59048046e3d5fa211f30704b8b0edd591db9298849ee27dac2797d32b0324231fda0267c6b4b6e5597a20b8af89b28824e96c1f6c9ad0ddd7703dc473b0bcd970c5fb2129a03c58a1daf8dba826c3bd9f13322448496931a215ced408425707e6a59635362c076a9b7e0b83b78e9e9097d6602d232139dc26c1eaa5c061dc8928529f1db7021027bf2bfee6d7f6e56a4593af9e8839caf94a8aba22d24a62d8e127881dcef9995dd393cd8aa96c467027ddca6a8a5eda04aaa9f99fb1ff7df1ec8db78b41d68ad9fb17a447a2c40bf46ad6bbf19b7086089419c3f0bac2eb0c6ae8f47bd705d25da4c506499b1680bde082b4026c975e9529f0d26c3fad1e4105124a61042ecefcb35619b5ac218f4966efcb961e9cb8392769155d7300c301ec3f101c01ac35ec811d3de0b6b6a87ff4d373c9ef21d254c22c3323d48d5e6d7f6238d137ad631197049fb5e3e5c3a8aa5f697555112ea6a54c7691303b4fa8af3684d4fa07617e9d309a1d9f85c0317b70a2a1a54cf4b5de6954e4be868cf31c7066511c63a1db283dd5327a1b7401410268af92c4fbb0e9488e61466f977156d3e2c9231af91d9283a46c3e1038733d8bcf1a207e99ee292b43f9ededd585d7381f5fe0adde501562768ad7c5b7d220ae6f04ce4cbc00d075b3d2472475609dd54ad71bff1654e327d9bbe3e06206e1ae454326371444dc256bbd95fb5c335f2fa68c12641fb590a7dba1db74e36d5cf1e3003282c9d75d7674c4f1855c40d015716272d6fbd40f67441d22cb621c5d1dc05ae909306cbfdcd34b62fdc7414f1ec478bc5a474c4b56c7b027e21e684700fd8dffbe3161b4ed56090a5b149948e263d7a2a4b34099bc412f522e10d17441cf1973dc751d962513b520c3a8e00b8dd879665c324e3fff12046e711ea1dc789fc2ebfd41895b55f258f336f4e4d74c33925fdf1d9d9bd21436981a2d368489082b129c5cab335167bcae85181f18c3b1053627e9256c24af0b787c8e6d5c375532711a7a0511f01846eca45ed034bfcc2616ee646b3cdf5c8bd93c9ecaf44d63c310d6e850dfad5abc0646b9432e69bc143ccf94f7e8a9a01519ec6b8411199a30dafc78ba6f9a378d915966cffb147d24e6cd6cb4ef01be27990d79c7278c170cd2f8ef9fedc367fed00dc7dcf54189a750cb56e521b6167e51e3bbb7d3f31121000aef714d1db2f75d4633138a817201bcbeaaf4c7ce93023a99948b79047872645aeddaa9bf19b430152ffd00946dd0b5a9b9062ad415ca7bc933adb37f57c79b38b0f46a6312e681ccde9e141549c7705f0ee89dfb1be64eb6df9f4430b188a38e75c2da02635471d7b2cc6d196df232840ae9dbcd7ef7327eb6939fcb7556522aedb79eb1196d91f57f9aedb29861a622f59242f722826260b59fe2ad6f5eeb02af4db3bb3092fb70ade5aed71696ee09f48ae4840988dc3ec9e6cefd73dc92d6bdce133c938e02ff6242bc20798adeb94c8e1cd6251f53593b877e5a194b7192ce3d2a92e4054c0e6e179c6263230bf94dd2b7c78f4bef4204a97b3a84bfee6500230a9d73bc69be270ae78a8f33952fc0702918cf9e7c30b390157d91a4847686086b4c93948796ea7490fa66fb59502eed41fdcc3c8fa2317d1ad0ef46d9f61678e30e1f78c8431a82bc77e80411d284fc5b32134ad8903515af11933985a1b0c3c5e3f4264153501871a818642d66cf1f8f2b31c57282b9371e2c22e1deb791a11eef82afcaeb5ec2116834dba284691db6b0b587dea0a75c037d85845ef7bc50f8454025b957458cec163fbf2e08903b2fc7f1c8bd18a7327ea70229233ab527dc4c30b81df45de2ba8ff2ba047bfc19e2c2381c0a916cbe8a0162fa9548ce5e7e252d11c3a22960473a803029d60e0b0c771", 0xfffffffffffffffc, 0x400, 0x7, 0x8, 0x1, 0x93862af82e95652a, 0x4f, 'syz1\x00'}) [ 250.795050] _do_fork+0x19e/0xce0 [ 250.798504] ? fork_idle+0x280/0x280 [ 250.802216] ? fput+0xd4/0x150 [ 250.805411] ? SyS_write+0x15e/0x230 [ 250.809121] SyS_clone+0x37/0x50 [ 250.812465] ? sys_vfork+0x30/0x30 [ 250.815983] do_syscall_64+0x1e8/0x640 [ 250.819860] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 250.824694] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 250.829860] RIP: 0033:0x459829 [ 250.833026] RSP: 002b:00007f664e1cac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 15:15:01 executing program 1: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(r0, 0x8000000000000001, 0x10000000000005, &(0x7f0000000980)="000000009641d897e74754e15cafa0a8d7248293e5ee7f8e2dd6354dafd8e76a155d15a7f2872ef6c17ef451745a222065498562c09b44b262a3a3c76c9f5be0a2af258fa0b6a5dc7726bf25a563705d73ff7e1f556a82ae51f2ae06145b481c4be9c760d8289dc8cb601b1805223df02fa9ac38dc714a052b8acb3070d2d63e76195379b396da6c8d0b2fbc59c17f835516dad72c98358b4ff3cca04e1dda3b0f353c684773cb3813c3d2f0645e7dca7899dce3b933de4ef6e9f512cb5a1f4ad42c632645aff8", 0xc7) setsockopt$inet6_tcp_int(r0, 0x6, 0x100000004, &(0x7f0000000080)=0x2be, 0xfd3b) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) r2 = socket$inet6_udp(0xa, 0x2, 0x0) syncfs(r2) setsockopt$inet_tcp_int(r1, 0x6, 0x7ffffffffffffe, &(0x7f0000000000)=0x85, 0x4) setsockopt$sock_int(r1, 0x1, 0x2f, &(0x7f0000000040), 0x4) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) socket(0xffffffffffffffff, 0x6, 0x5) r3 = open(&(0x7f0000000080)='./bus\x00', 0x80000000141046, 0x0) close(r3) r4 = syz_open_dev$loop(&(0x7f0000000540)='/dev/loop#\x00', 0x0, 0x105082) r5 = memfd_create(&(0x7f0000000300)='4t\xb9L<\xf2\x00\x90\xcd\x00\x00\x00\x00\x00\x00', 0x2) pwritev(r5, &(0x7f0000000440)=[{&(0x7f0000000480)="a8", 0x1}], 0x1, 0x81003) ioctl$LOOP_CHANGE_FD(r4, 0x4c00, r5) bpf$OBJ_GET_MAP(0x7, &(0x7f00000003c0)={&(0x7f0000000400)='./bus\x00', 0x0, 0x8}, 0xfffffffffffffecd) r6 = socket$inet6(0xa, 0x5, 0x2) connect$inet6(r6, &(0x7f0000000100)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, [], 0x1, 0x0}, 0x7}, 0x1c) setsockopt$inet6_opts(r6, 0x29, 0x40, &(0x7f0000000580)=ANY=[@ANYBLOB="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"], 0x1) sendmmsg(r6, &(0x7f00000092c0), 0x4ff, 0x0) mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x800003, 0x11, r3, 0x0) socketpair$unix(0x1, 0x800000000000003, 0x0, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x360) fcntl$setstatus(r4, 0x4, 0x44000) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r8, &(0x7f00000001c0), 0x526987c9) read(r7, &(0x7f0000000200)=""/250, 0x50c7e3e3) sendfile(r4, r5, 0x0, 0x80003) [ 250.840732] RAX: ffffffffffffffda RBX: 00007f664e1cac90 RCX: 0000000000459829 [ 250.847976] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000 [ 250.855222] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000 [ 250.862468] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f664e1cb6d4 [ 250.869715] R13: 00000000004bfce6 R14: 00000000004d1a58 R15: 0000000000000004 15:15:02 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070") r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x28001, 0x0) read$rfkill(r1, &(0x7f0000000000), 0x3) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000140)={r1, 0x15, 0x1, 0x7, &(0x7f0000000100)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x8}, 0x20) ioctl$PPPIOCSFLAGS1(r1, 0x40047459, &(0x7f00000000c0)=0x1000004) 15:15:02 executing program 3 (fault-call:6 fault-nth:58): mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) [ 250.967867] x86/PAT: syz-executor.4:11865 freeing invalid memtype [mem 0x00001000-0x00001fff] [ 251.027867] x86/PAT: syz-executor.3:11879 freeing invalid memtype [mem 0x00001000-0x00001fff] [ 251.058545] FAULT_INJECTION: forcing a failure. [ 251.058545] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 251.074711] CPU: 1 PID: 11879 Comm: syz-executor.3 Not tainted 4.14.139 #35 [ 251.081861] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 251.091216] Call Trace: [ 251.091237] dump_stack+0x138/0x19c [ 251.091256] should_fail.cold+0x10f/0x159 [ 251.091271] ? __might_sleep+0x93/0xb0 [ 251.091286] __alloc_pages_nodemask+0x1d6/0x7a0 [ 251.091300] ? __alloc_pages_slowpath+0x2930/0x2930 [ 251.115211] alloc_pages_current+0xec/0x1e0 [ 251.119552] pte_alloc_one+0x1a/0x100 [ 251.123357] __pte_alloc+0x2a/0x2d0 [ 251.126985] copy_page_range+0x11ba/0x1bd0 [ 251.131247] ? __pmd_alloc+0x410/0x410 [ 251.135144] copy_process.part.0+0x4764/0x6a00 [ 251.139752] ? __cleanup_sighand+0x50/0x50 [ 251.143990] ? lock_downgrade+0x6e0/0x6e0 [ 251.148143] _do_fork+0x19e/0xce0 [ 251.151599] ? fork_idle+0x280/0x280 [ 251.155329] ? fput+0xd4/0x150 [ 251.158523] ? SyS_write+0x15e/0x230 [ 251.162242] SyS_clone+0x37/0x50 [ 251.165604] ? sys_vfork+0x30/0x30 [ 251.169145] do_syscall_64+0x1e8/0x640 [ 251.173034] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 251.177887] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 251.183088] RIP: 0033:0x459829 [ 251.186268] RSP: 002b:00007f664e1cac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 251.193975] RAX: ffffffffffffffda RBX: 00007f664e1cac90 RCX: 0000000000459829 [ 251.201243] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000 [ 251.208519] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000 [ 251.215786] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f664e1cb6d4 15:15:02 executing program 2: bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0}, 0x30) r1 = syz_open_procfs(r0, &(0x7f0000000380)='comm\x00') openat$pfkey(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/self/net/pfkey\x00', 0x20340, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000040)=0x14) r2 = socket(0x10, 0x80002, 0x0) r3 = creat(0x0, 0x100000004) getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, 0x0, 0x0) prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r2) r4 = openat$null(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_mreqsrc(r4, 0x0, 0x0, 0x0, 0x0) unshare(0x400) ioctl$UI_END_FF_ERASE(0xffffffffffffffff, 0x400c55cb, 0x0) shutdown(0xffffffffffffffff, 0x0) fchown(0xffffffffffffffff, 0x0, 0x0) ioctl$TUNSETPERSIST(0xffffffffffffffff, 0x400454cb, 0xffffffffffffffff) getsockopt$inet_sctp_SCTP_AUTO_ASCONF(r3, 0x84, 0x1e, &(0x7f0000000080), &(0x7f0000000100)=0x4) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x60fd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$GIO_SCRNMAP(0xffffffffffffffff, 0x4b40, 0x0) r5 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000009c0)='/dev/loop-control\x00', 0x8000000000000800, 0x0) semtimedop(0x0, &(0x7f0000000400)=[{0x0, 0x80000001, 0x1000}, {0x0, 0x5, 0x800}], 0x2, &(0x7f0000000900)) ioctl$LOOP_CTL_REMOVE(r5, 0x4c81, 0x0) ioctl$LOOP_CTL_ADD(r5, 0x4c80, 0x0) shmat(0x0, &(0x7f0000ffc000/0x2000)=nil, 0x6000) ioctl$EXT4_IOC_SWAP_BOOT(r4, 0x6611) syz_genetlink_get_family_id$tipc2(&(0x7f0000000140)='TIPCv2\x00') 15:15:02 executing program 5: syz_mount_image$ntfs(&(0x7f0000000100)='ntfs\x00', &(0x7f00000000c0)='./bus\x00', 0x0, 0x2, &(0x7f0000001680)=[{0x0, 0x0, 0x401}, {&(0x7f0000001740)="3a77dd21387d6a624e139a664bf7ec507567aba5727ca2250cce6cea", 0x1c, 0x9}], 0x2000000, 0x0) 15:15:02 executing program 4: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="11dca50d5e0bcfe47bf070") mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) r1 = syz_open_dev$adsp(&(0x7f0000000000)='/dev/adsp#\x00', 0x1000, 0x10000) write$capi20(r1, &(0x7f0000000040)={0x10, 0x81, 0x83, 0x80, 0x8, 0xfffffffffffffff8}, 0x10) chdir(&(0x7f00000003c0)='./file0\x00') r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) 15:15:02 executing program 1: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(r0, 0x8000000000000001, 0x10000000000005, &(0x7f0000000980)="000000009641d897e74754e15cafa0a8d7248293e5ee7f8e2dd6354dafd8e76a155d15a7f2872ef6c17ef451745a222065498562c09b44b262a3a3c76c9f5be0a2af258fa0b6a5dc7726bf25a563705d73ff7e1f556a82ae51f2ae06145b481c4be9c760d8289dc8cb601b1805223df02fa9ac38dc714a052b8acb3070d2d63e76195379b396da6c8d0b2fbc59c17f835516dad72c98358b4ff3cca04e1dda3b0f353c684773cb3813c3d2f0645e7dca7899dce3b933de4ef6e9f512cb5a1f4ad42c632645aff8", 0xc7) setsockopt$inet6_tcp_int(r0, 0x6, 0x100000004, &(0x7f0000000080)=0x2be, 0xfd3b) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) r2 = socket$inet6_udp(0xa, 0x2, 0x0) syncfs(r2) setsockopt$inet_tcp_int(r1, 0x6, 0x7ffffffffffffe, &(0x7f0000000000)=0x85, 0x4) setsockopt$sock_int(r1, 0x1, 0x2f, &(0x7f0000000040), 0x4) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) socket(0xffffffffffffffff, 0x6, 0x5) r3 = open(&(0x7f0000000080)='./bus\x00', 0x80000000141046, 0x0) close(r3) r4 = syz_open_dev$loop(&(0x7f0000000540)='/dev/loop#\x00', 0x0, 0x105082) r5 = memfd_create(&(0x7f0000000300)='4t\xb9L<\xf2\x00\x90\xcd\x00\x00\x00\x00\x00\x00', 0x2) pwritev(r5, &(0x7f0000000440)=[{&(0x7f0000000480)="a8", 0x1}], 0x1, 0x81003) ioctl$LOOP_CHANGE_FD(r4, 0x4c00, r5) bpf$OBJ_GET_MAP(0x7, &(0x7f00000003c0)={&(0x7f0000000400)='./bus\x00', 0x0, 0x8}, 0xfffffffffffffecd) r6 = socket$inet6(0xa, 0x5, 0x2) connect$inet6(r6, &(0x7f0000000100)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, [], 0x1, 0x0}, 0x7}, 0x1c) setsockopt$inet6_opts(r6, 0x29, 0x40, &(0x7f0000000580)=ANY=[@ANYBLOB="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"], 0x1) sendmmsg(r6, &(0x7f00000092c0), 0x4ff, 0x0) mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x800003, 0x11, r3, 0x0) socketpair$unix(0x1, 0x800000000000003, 0x0, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x360) fcntl$setstatus(r4, 0x4, 0x44000) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r8, &(0x7f00000001c0), 0x526987c9) read(r7, &(0x7f0000000200)=""/250, 0x50c7e3e3) sendfile(r4, r5, 0x0, 0x80003) 15:15:02 executing program 3 (fault-call:6 fault-nth:59): mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) [ 251.223052] R13: 00000000004bfce6 R14: 00000000004d1a58 R15: 0000000000000004 [ 251.247582] ntfs: (device loop5): read_ntfs_boot_sector(): Primary boot sector is invalid. 15:15:02 executing program 4: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="11dca50d5e0bcfe47bf070") mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r1 = open(&(0x7f0000000140)='./file0\x00', 0x4101, 0x100) utimensat(r1, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)={{0x0, 0x7530}}, 0x100) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0x0) getsockopt$inet_sctp_SCTP_CONTEXT(r2, 0x84, 0x11, &(0x7f0000000000)={0x0, 0x8}, &(0x7f0000000040)=0x8) getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER(r2, 0x84, 0x7b, &(0x7f00000000c0)={r3, 0x71}, &(0x7f0000000100)=0x8) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) [ 251.288793] ntfs: (device loop5): read_ntfs_boot_sector(): Mount option errors=recover not used. Aborting without trying to recover. [ 251.317403] ntfs: (device loop5): ntfs_fill_super(): Not an NTFS volume. 15:15:02 executing program 5: r0 = syz_open_dev$dmmidi(&(0x7f0000000040)='/dev/dmmidi#\x00', 0x3, 0x20000) ioctl$PPPIOCGDEBUG(r0, 0x80047441, &(0x7f0000000080)) syz_mount_image$ntfs(&(0x7f0000000100)='ntfs\x00', &(0x7f00000000c0)='./bus\x00', 0x0, 0x2, &(0x7f0000001680)=[{0x0, 0x24, 0x402}, {&(0x7f0000000000)="3a77dd21387d6a623a3944364adb22861c94dd4e139a664b00000000", 0xfffffffffffffd12, 0x35}], 0x8100, 0x0) 15:15:02 executing program 2: perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x200000000d8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$IP_VS_SO_SET_EDITDEST(r0, 0x0, 0x489, &(0x7f0000000140)={{0x8, @remote, 0x4e23, 0x4, 'wrr\x00', 0x6, 0x57f, 0x15}, {@dev={0xac, 0x14, 0x14, 0x26}, 0x4e22, 0x4, 0x80, 0x8, 0x81}}, 0x44) r1 = socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$IP_VS_SO_SET_DELDEST(r1, 0x0, 0x488, &(0x7f0000000000)={{0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 'wlc\x00'}, {@loopback, 0x0, 0x0, 0x0, 0x0, 0xba4}}, 0x44) prctl$PR_SVE_GET_VL(0x33, 0x51ac) [ 251.430001] x86/PAT: syz-executor.4:11910 freeing invalid memtype [mem 0x00001000-0x00001fff] [ 251.447801] x86/PAT: syz-executor.3:11912 freeing invalid memtype [mem 0x00001000-0x00001fff] [ 251.465876] FAULT_INJECTION: forcing a failure. [ 251.465876] name failslab, interval 1, probability 0, space 0, times 0 [ 251.481472] x86/PAT: syz-executor.4:11910 freeing invalid memtype [mem 0x00001000-0x00001fff] [ 251.500998] IPVS: set_ctl: invalid protocol: 8 172.20.20.187:20003 [ 251.519867] IPVS: set_ctl: invalid protocol: 0 172.30.0.3:0 15:15:02 executing program 4: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="11dca50d5e0bcfe47bf070") mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') fsetxattr$trusted_overlay_upper(r0, &(0x7f0000000100)='trusted.overlay.upper\x00', &(0x7f0000000140)={0x0, 0xfb, 0xb0, 0x5, 0xd47b, "4223f39e42341185d944734326d7c435", "9b1ffdb88a1c2f1cb0a3c235143abe383a1c988fdf7fa194b3add16bb60ab04628deaa9e7d4f78d5f7bca47d5787473820421b014d3ea021b10a088304ecb61dba364247f214c01ff8bdd813a9488b1e3505bdfb1378901c3432b29428f8f13bc6b17cacdd9accd0aa93d63372fa68332de3f12fad4f7d9da3f9a47161a064c72071333218c32f65b79e23f24a59b9b397a1ee0546efb4e0cb40f2"}, 0xb0, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) inotify_add_watch(r1, &(0x7f00000000c0)='./file0\x00', 0xb00) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) connect$nfc_llcp(r1, &(0x7f0000000000)={0x27, 0x1, 0x0, 0x2, 0x3, 0x1, "a297d31a2996fd405a4148fe779c2fddd0486caa78421a63e403a6ce23cb16821d601cc4a0ca34a957f489ef659a6f3307ebe77ec4eef337087fb0e5e7596a", 0x18}, 0x60) [ 251.523237] CPU: 0 PID: 11912 Comm: syz-executor.3 Not tainted 4.14.139 #35 [ 251.532727] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 251.542088] Call Trace: [ 251.544675] dump_stack+0x138/0x19c [ 251.548306] should_fail.cold+0x10f/0x159 [ 251.552442] should_failslab+0xdb/0x130 [ 251.556404] kmem_cache_alloc+0x2d7/0x780 [ 251.560541] ptlock_alloc+0x20/0x70 [ 251.564154] pte_alloc_one+0x60/0x100 [ 251.567938] __pte_alloc+0x2a/0x2d0 [ 251.571550] copy_page_range+0x11ba/0x1bd0 [ 251.575807] ? __pmd_alloc+0x410/0x410 [ 251.579687] copy_process.part.0+0x4764/0x6a00 [ 251.584275] ? __cleanup_sighand+0x50/0x50 [ 251.588494] ? lock_downgrade+0x6e0/0x6e0 [ 251.592630] _do_fork+0x19e/0xce0 [ 251.596091] ? fork_idle+0x280/0x280 [ 251.599792] ? fput+0xd4/0x150 [ 251.602969] ? SyS_write+0x15e/0x230 [ 251.606676] SyS_clone+0x37/0x50 [ 251.610023] ? sys_vfork+0x30/0x30 [ 251.613589] do_syscall_64+0x1e8/0x640 [ 251.617457] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 251.622303] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 251.627491] RIP: 0033:0x459829 [ 251.630664] RSP: 002b:00007f664e1cac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 251.638359] RAX: ffffffffffffffda RBX: 00007f664e1cac90 RCX: 0000000000459829 [ 251.645632] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000 [ 251.652886] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000 [ 251.660171] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f664e1cb6d4 [ 251.667441] R13: 00000000004bfce6 R14: 00000000004d1a58 R15: 0000000000000004 15:15:02 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070") r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x28001, 0x0) read$rfkill(r1, &(0x7f0000000100), 0xfffffffffffffee1) ioctl$int_in(r1, 0x800060c0045005, &(0x7f0000000140)=0x5ad) getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(r1, 0x84, 0x7c, &(0x7f0000000000)={0x0, 0x200, 0x101}, &(0x7f00000000c0)=0x8) setsockopt$inet_sctp6_SCTP_AUTH_DEACTIVATE_KEY(r1, 0x84, 0x23, &(0x7f0000000180)={r2, 0xfffffffffffffffa}, 0x8) [ 251.753328] x86/PAT: syz-executor.4:11924 freeing invalid memtype [mem 0x00001000-0x00001fff] [ 251.826100] x86/PAT: syz-executor.4:11924 freeing invalid memtype [mem 0x00001000-0x00001fff] 15:15:02 executing program 4: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="11dca50d5e0bcfe47bf070") mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x6, 0x12, r1, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) 15:15:02 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070") r1 = syz_open_dev$dspn(&(0x7f00000000c0)='/dev/dsp#\x00', 0x28001, 0x0) read$rfkill(r1, &(0x7f0000000000), 0x3) ioctl$FS_IOC_SET_ENCRYPTION_POLICY(r0, 0x800c6613, &(0x7f0000000080)={0x0, @aes128, 0xadba3f099146b2a5, "b90e02d1ac619190"}) ioctl$int_in(r0, 0x800060c0045005, &(0x7f0000000140)=0x5ad) 15:15:02 executing program 3 (fault-call:6 fault-nth:60): mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) 15:15:02 executing program 4: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="11dca50d5e0bcfe47bf070") mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) ioctl$VIDIOC_S_INPUT(r1, 0xc0045627, &(0x7f0000000000)=0x4) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) [ 251.937371] IPVS: set_ctl: invalid protocol: 8 172.20.20.187:20003 [ 251.965074] IPVS: set_ctl: invalid protocol: 0 172.30.0.3:0 15:15:03 executing program 2: r0 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000080)='/dev/dsp\x00', 0x3a080, 0x0) ioctl$TIOCGWINSZ(r0, 0x5413, &(0x7f00000003c0)) syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) r1 = syz_open_dev$midi(&(0x7f0000000000)='/dev/midi#\x00', 0x5ce, 0x80) ioctl$SNDRV_CTL_IOCTL_TLV_READ(r1, 0xc008551a, &(0x7f00000000c0)={0x203ff, 0x1c, [0x9af, 0x54, 0x1, 0xffffffffffffffff, 0x1, 0x3, 0x8]}) r2 = add_key$user(&(0x7f0000000100)='user\x00', &(0x7f0000000140)={'syz', 0x3}, &(0x7f0000000180)="25ce7b3f28832d06b603dc4e7d651f2b170796966e0c41385ae9e2241e2aee0b75fe622e7c3ff29a4a121818d6662d8fc26ddb112f891ec84de100e06e782aad983e9baa7d0063b68f2be3b5e6f89f30789b6db314859db3b15abc12c7f627fa18584716c58a92d582dca5506528d31091049de0ed66fa48a75585f3ef1796add6ecfdb0c51ae6df7a0118c99c82704b1fb36a70263f7430e6adfa030cfb66ea23b8d224445eba2b03af6d30b4f47b04e80ea1fbc000c5c9146c728d66834b1c25dbe737a714989da628a4a7f77cd7", 0xcf, 0xfffffffffffffff9) keyctl$KEYCTL_PKEY_ENCRYPT(0x19, &(0x7f0000000280)={r2, 0x4a, 0x78}, 0x0, &(0x7f00000002c0)="ce647b4d2cc6501551b7cf82c7e1cdec59b1a4f3d5c64d1a0fd0ad816996fe4beaebf5b366328a5724758265238fc597187f54f51279282212de6a1061a5f2d4a03301818e52c40d3f54", &(0x7f0000000340)=""/120) [ 252.086370] FAULT_INJECTION: forcing a failure. [ 252.086370] name failslab, interval 1, probability 0, space 0, times 0 [ 252.106632] CPU: 1 PID: 11954 Comm: syz-executor.3 Not tainted 4.14.139 #35 [ 252.113777] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 252.123120] Call Trace: [ 252.123140] dump_stack+0x138/0x19c [ 252.123158] should_fail.cold+0x10f/0x159 [ 252.123172] should_failslab+0xdb/0x130 [ 252.123187] kmem_cache_alloc+0x2d7/0x780 [ 252.123195] ? __pmd_alloc+0x410/0x410 [ 252.123211] copy_process.part.0+0x444f/0x6a00 [ 252.123239] ? __cleanup_sighand+0x50/0x50 [ 252.154324] ? lock_downgrade+0x6e0/0x6e0 [ 252.158490] _do_fork+0x19e/0xce0 [ 252.161960] ? fork_idle+0x280/0x280 [ 252.165681] ? fput+0xd4/0x150 [ 252.168870] ? SyS_write+0x15e/0x230 [ 252.172586] SyS_clone+0x37/0x50 [ 252.175973] ? sys_vfork+0x30/0x30 [ 252.179522] do_syscall_64+0x1e8/0x640 15:15:03 executing program 1: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(r0, 0x8000000000000001, 0x10000000000005, &(0x7f0000000980)="000000009641d897e74754e15cafa0a8d7248293e5ee7f8e2dd6354dafd8e76a155d15a7f2872ef6c17ef451745a222065498562c09b44b262a3a3c76c9f5be0a2af258fa0b6a5dc7726bf25a563705d73ff7e1f556a82ae51f2ae06145b481c4be9c760d8289dc8cb601b1805223df02fa9ac38dc714a052b8acb3070d2d63e76195379b396da6c8d0b2fbc59c17f835516dad72c98358b4ff3cca04e1dda3b0f353c684773cb3813c3d2f0645e7dca7899dce3b933de4ef6e9f512cb5a1f4ad42c632645aff8", 0xc7) setsockopt$inet6_tcp_int(r0, 0x6, 0x100000004, &(0x7f0000000080)=0x2be, 0xfd3b) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) r2 = socket$inet6_udp(0xa, 0x2, 0x0) syncfs(r2) setsockopt$inet_tcp_int(r1, 0x6, 0x7ffffffffffffe, &(0x7f0000000000)=0x85, 0x4) setsockopt$sock_int(r1, 0x1, 0x2f, &(0x7f0000000040), 0x4) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) socket(0xffffffffffffffff, 0x6, 0x5) r3 = open(&(0x7f0000000080)='./bus\x00', 0x80000000141046, 0x0) close(r3) r4 = syz_open_dev$loop(&(0x7f0000000540)='/dev/loop#\x00', 0x0, 0x105082) r5 = memfd_create(&(0x7f0000000300)='4t\xb9L<\xf2\x00\x90\xcd\x00\x00\x00\x00\x00\x00', 0x2) pwritev(r5, &(0x7f0000000440)=[{&(0x7f0000000480)="a8", 0x1}], 0x1, 0x81003) ioctl$LOOP_CHANGE_FD(r4, 0x4c00, r5) bpf$OBJ_GET_MAP(0x7, &(0x7f00000003c0)={&(0x7f0000000400)='./bus\x00', 0x0, 0x8}, 0xfffffffffffffecd) r6 = socket$inet6(0xa, 0x5, 0x2) connect$inet6(r6, &(0x7f0000000100)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, [], 0x1, 0x0}, 0x7}, 0x1c) setsockopt$inet6_opts(r6, 0x29, 0x40, &(0x7f0000000580)=ANY=[@ANYBLOB="29000000060058500ba40000005cb4b47a560100800000000002099666c20b21e8080008ae760000ec57c052aa843ac0031e4118a1a847c0e60000f5f2b1c4310380181c143c6b10022ee4de0a000000000000ffffffffffffffe7000000000000000000000000000000ff0100bf149fd5d981d72437034f05bb5c068772b310642de912c2729c83435806a73bd382c1e56638572925f03a2433d2feb19191b1ce221d87a8cbf189d711a0ef2eaed469d21c80190041c740cec379894459989e2f8785c13d863ba14f65bc3bd8101f0cfb7f5e67fa4e73f689fd819518dd1d96077a1c9fc2785a5eef5cd8d2302698ad2dcd089f8fa767244aacc5dc9302d8a7fab0f001a61e1ca1a48054355a9b1e3270bd27b1403b52ef479615d0c0939c553a704f66d677af16dfecbfb5320a99420a0000d764266803c6a7b0c72f00272659cfef2e81009412b58e07beeb27a8bf1ad4fcc5a08ea4b456bbbfd7c7bf47d0b3b738c40000001446edbaa57fcfa668883e56d870f43f701e69c6c16c4b76b85cc37303c86eab33154584a1c27a1e9b969b0f2d376728e815a2108fd533b9752382f97f734bcc065e92a9f5344c7614709fc445439b200085d3c8152faeba62db44b3d549db580c5207c91d65c6e005362fcaa7e0b2b281dd305b04c5bf62a929cfd480ef3d6060b0f0c65896d2b2ca39c9fffd03b67b623848c33c835b5ca05823d2982541c1d70e77538a4bbbf4acd7af4d0aa11901b8277ab713f35670b92bd8a903c5fbbba6bf41235394542eadb289b197f53ead5486e302b0b58a409fd1cd670de73527dc855199f54df31caf014b1d7e1a700e6df2eaf0000000d5b0bbf521ed434070fb0b27214f63f54b1162c5f4a114b48efd0e7674939406495cd2814a411ec6f9f7f5e028256227f21754e9f1bfe1a6b697e0d0739a5851c547d0ae8b46db33d9022618f798e9ff12ef901eb87b609a0eb192c2e94cc858e1bd172dd459ec8c0e650d7abc0ebdb91bb7b084f2fb08f411c59712c815a0989cd717a776961e441388a3d3339453ebdac75f9a54cfdea59bb1af457ccf06560f4a799d158408b3adf7b8e1c72981f41a2f5bb392d63f267fe69f46aaf94b9d122fd2006115741b26bd86f6600e1a3cc85188c845305b48e6320cd6ae0c10ba2cbc1e9054633bba5486423287c70644763263eb9f116341e739ed22a7e3372aa0e57f142f662ad224481150459d4cd9a2dd246a957279fef9c68bec8fa60f56bed83588e4aacfd2b5ad7fcd0e79c8bb2133ebabe957bbf5d8fa052c352b8c621d8070de5406a5e4c0c52fff0b3bb102651d0ae7991098bd9872a351c6588a8aea64203d6b1f358a809423bbfcaee3be1c62af78dea87a0d9d562f3a279a2a6d09103ae18dac9ab9790e"], 0x1) sendmmsg(r6, &(0x7f00000092c0), 0x4ff, 0x0) mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x800003, 0x11, r3, 0x0) socketpair$unix(0x1, 0x800000000000003, 0x0, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x360) fcntl$setstatus(r4, 0x4, 0x44000) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r8, &(0x7f00000001c0), 0x526987c9) read(r7, &(0x7f0000000200)=""/250, 0x50c7e3e3) sendfile(r4, r5, 0x0, 0x80003) [ 252.183291] x86/PAT: syz-executor.4:11955 freeing invalid memtype [mem 0x00001000-0x00001fff] [ 252.183424] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 252.196919] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 252.202101] RIP: 0033:0x459829 [ 252.205286] RSP: 002b:00007f664e1cac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 252.212982] RAX: ffffffffffffffda RBX: 00007f664e1cac90 RCX: 0000000000459829 [ 252.220255] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000 [ 252.227527] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000 15:15:03 executing program 5: syz_mount_image$ntfs(&(0x7f0000000100)='ntfs\x00', &(0x7f00000000c0)='./bus\x00', 0x0, 0x2, &(0x7f0000001680)=[{0x0, 0x0, 0x401}, {&(0x7f0000001740)="3a77dd21387d6a624e139a664bf7ec507567aba5727ca2250cce6cea", 0x1c, 0x35}], 0x8100, 0x0) r0 = open(&(0x7f0000000000)='./bus\x00', 0x8000, 0x2) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'nr0\x00', 0x0}) setsockopt$packet_drop_memb(r0, 0x107, 0x2, &(0x7f0000000080)={r1, 0x1, 0x6, @random="e08e2c75c3d5"}, 0x10) 15:15:03 executing program 2: mmap(&(0x7f0000750000/0x1000)=nil, 0x1000, 0x2000006, 0x10010, 0xffffffffffffffff, 0x0) madvise(&(0x7f00005b1000/0x400000)=nil, 0x400000, 0xe) 15:15:03 executing program 4: r0 = socket$inet_udplite(0x2, 0x2, 0x88) gettid() ioctl(r0, 0x1000008912, &(0x7f0000000080)="11dca50d5e0bcfe47bf070") mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) r1 = open$dir(&(0x7f0000000040)='./file0/file0\x00', 0x1e9b3b0743b62795, 0x8) mkdirat(r1, &(0x7f0000000240)='./file0/file0\x00', 0x170) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) fstat(r2, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0}) quotactl(0x1f, &(0x7f0000000000)='./file0\x00', r3, &(0x7f0000000540)="01eec0cc8d3f53f4120be4d21f445fc104ad60905bcc7f78e2d21f18fc755a94c363734c872bf426eb7513c03c7940e5187328811ef06dfcb2563a9dd8d7aa00e89e2b11f35122fedfb09ecda406ca0c7b634b3a1ccc3ce146575b0653341741a5b7aa2c440a24683b2ec217b34e560387159a68164898bc31c11deae1a5803b56154b99dbe53be62aaabe7ae2c2b9919c236f3171ecbcc043dcbe5dc5def31486fb4bded2c84b6f3a5401fda12719468d235291c8126c84ba50a651c11ede5b2f234d1ecba84820235d8dab6c7c58e6b343f26ce9bb3a900bbaf54366763b2125c7028129f08a77938a31f9") mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0x0) r4 = fcntl$dupfd(r2, 0x0, r2) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) ioctl$sock_bt_hci(r2, 0x400448e4, &(0x7f00000000c0)="f5d31d6a62bc64707d97e1bc87051e872c43ba6ce65488dcc1fdd69ba78260a812f123052278dbd73242ad462e4a63cae0310bae3a2c3bcedff914852e420b11ddb0187e720d9406b8cac0961cd65d366bc00f56597a9c4f3d7b29b3591ad013b824070e93dcd49f340344170aea29dc808f5cb4d8ae4b7f340ec1e29f3cc77b757cb3159e97d9fa7fe20dee2de010bb874def9134f257ea78d94219379aff74bcfafd2503d45ad853efb1c1461595ba473465") getsockname$packet(r4, &(0x7f0000001e40)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000001e80)=0x14) setsockopt$inet6_IPV6_PKTINFO(r4, 0x29, 0x32, &(0x7f0000001ec0)={@mcast1, r5}, 0x14) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) symlinkat(&(0x7f0000000280)='./file0/file0\x00', r4, &(0x7f0000000300)='./file0/file0\x00') 15:15:03 executing program 3 (fault-call:6 fault-nth:61): mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) [ 252.234796] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f664e1cb6d4 [ 252.242076] R13: 00000000004bfce6 R14: 00000000004d1a58 R15: 0000000000000004 15:15:03 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070") r1 = socket$inet6(0xa, 0x5, 0x0) bind$inet6(r1, &(0x7f00002aafe4)={0xa, 0x3, 0x0, @ipv4}, 0x1c) r2 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/qat_adf_ctl\x00', 0x200, 0x0) ioctl$NBD_DO_IT(r2, 0xab03) setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX_OLD(r1, 0x84, 0x6e, &(0x7f0000000140)=[@in={0x2, 0x3, @local}], 0x10) [ 252.377865] FAULT_INJECTION: forcing a failure. [ 252.377865] name failslab, interval 1, probability 0, space 0, times 0 [ 252.409931] x86/PAT: syz-executor.4:11978 freeing invalid memtype [mem 0x00001000-0x00001fff] [ 252.419671] CPU: 1 PID: 11983 Comm: syz-executor.3 Not tainted 4.14.139 #35 [ 252.426807] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 252.436168] Call Trace: [ 252.438759] dump_stack+0x138/0x19c [ 252.442402] should_fail.cold+0x10f/0x159 [ 252.442419] should_failslab+0xdb/0x130 [ 252.442432] kmem_cache_alloc+0x2d7/0x780 [ 252.442442] ? __pmd_alloc+0x410/0x410 [ 252.442459] copy_process.part.0+0x444f/0x6a00 [ 252.442489] ? __cleanup_sighand+0x50/0x50 [ 252.442499] ? lock_downgrade+0x6e0/0x6e0 [ 252.442512] _do_fork+0x19e/0xce0 15:15:03 executing program 1: socket$inet(0x10, 0x0, 0x3) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(r0, 0x8000000000000001, 0x10000000000005, &(0x7f0000000980)="000000009641d897e74754e15cafa0a8d7248293e5ee7f8e2dd6354dafd8e76a155d15a7f2872ef6c17ef451745a222065498562c09b44b262a3a3c76c9f5be0a2af258fa0b6a5dc7726bf25a563705d73ff7e1f556a82ae51f2ae06145b481c4be9c760d8289dc8cb601b1805223df02fa9ac38dc714a052b8acb3070d2d63e76195379b396da6c8d0b2fbc59c17f835516dad72c98358b4ff3cca04e1dda3b0f353c684773cb3813c3d2f0645e7dca7899dce3b933de4ef6e9f512cb5a1f4ad42c632645aff8", 0xc7) setsockopt$inet6_tcp_int(r0, 0x6, 0x100000004, &(0x7f0000000080)=0x2be, 0xfd3b) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) r2 = socket$inet6_udp(0xa, 0x2, 0x0) syncfs(r2) setsockopt$inet_tcp_int(r1, 0x6, 0x7ffffffffffffe, &(0x7f0000000000)=0x85, 0x4) setsockopt$sock_int(r1, 0x1, 0x2f, &(0x7f0000000040), 0x4) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) socket(0xffffffffffffffff, 0x6, 0x5) r3 = open(&(0x7f0000000080)='./bus\x00', 0x80000000141046, 0x0) close(r3) r4 = syz_open_dev$loop(&(0x7f0000000540)='/dev/loop#\x00', 0x0, 0x105082) r5 = memfd_create(&(0x7f0000000300)='4t\xb9L<\xf2\x00\x90\xcd\x00\x00\x00\x00\x00\x00', 0x2) pwritev(r5, &(0x7f0000000440)=[{&(0x7f0000000480)="a8", 0x1}], 0x1, 0x81003) ioctl$LOOP_CHANGE_FD(r4, 0x4c00, r5) bpf$OBJ_GET_MAP(0x7, &(0x7f00000003c0)={&(0x7f0000000400)='./bus\x00', 0x0, 0x8}, 0xfffffffffffffecd) r6 = socket$inet6(0xa, 0x5, 0x2) connect$inet6(r6, &(0x7f0000000100)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, [], 0x1, 0x0}, 0x7}, 0x1c) setsockopt$inet6_opts(r6, 0x29, 0x40, &(0x7f0000000580)=ANY=[@ANYBLOB="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"], 0x1) sendmmsg(r6, &(0x7f00000092c0), 0x4ff, 0x0) mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x800003, 0x11, r3, 0x0) socketpair$unix(0x1, 0x800000000000003, 0x0, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x360) fcntl$setstatus(r4, 0x4, 0x44000) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r8, &(0x7f00000001c0), 0x526987c9) read(r7, &(0x7f0000000200)=""/250, 0x50c7e3e3) sendfile(r4, r5, 0x0, 0x80003) [ 252.474991] ? fork_idle+0x280/0x280 [ 252.478708] ? fput+0xd4/0x150 [ 252.481897] ? SyS_write+0x15e/0x230 [ 252.485614] SyS_clone+0x37/0x50 [ 252.488983] ? sys_vfork+0x30/0x30 [ 252.492530] do_syscall_64+0x1e8/0x640 [ 252.496420] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 252.501282] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 252.506468] RIP: 0033:0x459829 [ 252.509648] RSP: 002b:00007f664e1cac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 252.517368] RAX: ffffffffffffffda RBX: 00007f664e1cac90 RCX: 0000000000459829 15:15:03 executing program 4: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="11dca50d5e0bcfe47bf070") mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) ioctl$KVM_GET_CPUID2(r1, 0xc008ae91, &(0x7f0000000540)=ANY=[@ANYBLOB="040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dd3756440eb9e5282eb50d8b9b5fa3a2083d8945ba8c4e4aa1be94671e73b72313d1561a8626f9e595732060640f34ae7fe27ef7622354a64cd48436"]) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) [ 252.524668] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000 [ 252.531933] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000 [ 252.539187] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f664e1cb6d4 [ 252.546909] R13: 00000000004bfce6 R14: 00000000004d1a58 R15: 0000000000000004 15:15:03 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070") r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x28001, 0x0) ioctl$DRM_IOCTL_AUTH_MAGIC(r1, 0x40046411, &(0x7f00000000c0)=0x7) read$rfkill(r1, &(0x7f0000000000), 0x3) ioctl$int_in(r1, 0x800060c0045005, &(0x7f0000000140)=0x5ad) 15:15:03 executing program 2: ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000180)=0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, r0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = inotify_init() inotify_add_watch(r1, &(0x7f0000000080)='.\x00', 0xfe) r2 = open(&(0x7f0000000040)='./file0\x00', 0x200c2, 0x0) ioctl$PIO_FONTX(r2, 0x4b6c, &(0x7f00000001c0)="3f07a5a8389f90abda29985b87d9a7889543556cbf0ee135f0337bff7e539155f60fc84b71875f9da181e1bfc991a4e8bd2a0991e4deab") r3 = socket$inet6_sctp(0xa, 0x5, 0x84) write$nbd(r2, &(0x7f0000000240)=ANY=[@ANYBLOB="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"], 0x1ee) sendfile(r2, r2, &(0x7f0000000200), 0xa198) ioctl$SNDRV_CTL_IOCTL_HWDEP_INFO(r2, 0x80dc5521, &(0x7f00000000c0)=""/79) ioctl$ifreq_SIOCGIFINDEX_team(r2, 0x8933, &(0x7f0000000000)={'team0\x00', 0x0}) ioctl$sock_inet6_SIOCSIFADDR(r3, 0x8916, &(0x7f0000000140)={@dev={0xfe, 0x80, [], 0x25}, 0x34, r4}) 15:15:03 executing program 5: getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f0000000140)={{{@in6=@empty, @in6=@empty, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}}, &(0x7f0000000240)=0xe8) mount$9p_rdma(&(0x7f0000000000)='127.0.0.1\x00', &(0x7f0000000040)='./bus\x00', &(0x7f0000000080)='9p\x00', 0x428, &(0x7f0000000280)={'trans=rdma,', {'port', 0x3d, 0x4e22}, 0x2c, {[{@timeout={'timeout', 0x3d, 0x9}}], [{@appraise='appraise'}, {@euid_lt={'euid<', r0}}, {@dont_measure='dont_measure'}]}}) syz_mount_image$ntfs(&(0x7f0000000100)='ntfs\x00', &(0x7f00000000c0)='./bus\x00', 0x0, 0x2, &(0x7f0000001680)=[{0x0, 0x0, 0x401}, {&(0x7f0000001740)="3a77dd21387d6a624e139a664bf7ec507567aba5727ca2250cce6cea", 0x1c, 0x35}], 0x8100, 0x0) 15:15:03 executing program 3 (fault-call:6 fault-nth:62): mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) 15:15:03 executing program 4: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="11dca50d5e0bcfe47bf070") mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) sendmsg$nl_generic(r1, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000060}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x14, 0x3e, 0x1, 0x70bd29, 0x25dfdbfc, {0xc}}, 0x14}}, 0x8805) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) 15:15:03 executing program 5: syz_mount_image$ntfs(&(0x7f0000000040)='ntfs\x00', &(0x7f00000000c0)='./bus\x00', 0x0, 0x2, &(0x7f0000001680)=[{0x0, 0x0, 0x401}, {&(0x7f0000000000)="3a77dd21387d6a624e139a664bf7ec507567aba5727ca2250cce6cea", 0x1c, 0x35}], 0x8100, 0x0) r0 = syz_open_dev$mice(&(0x7f0000000240)='/dev/input/mice\x00', 0x0, 0x200) ioctl$PIO_UNIMAPCLR(r0, 0x4b68, &(0x7f0000000280)={0x5, 0x80000001, 0x4}) stat(&(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0}) lgetxattr(&(0x7f00000002c0)='./bus\x00', &(0x7f0000000300)=@random={'osx.', 'ntfs\x00'}, &(0x7f00000004c0)=""/161, 0xa1) mount$9p_xen(&(0x7f0000000080)='\x00', &(0x7f0000000100)='./bus\x00', &(0x7f0000000140)='9p\x00', 0x48dbe7656eb1e2ef, &(0x7f00000003c0)=ANY=[@ANYBLOB="7472616e733d78656e2c64656275673d3078303030303030303030303030303030302c6c6f6f73652c63616368653d6c6f6f73652c6e6f6b65766d61702c70726976706f72742c61756469742c7375626a5f726f6c653d2c6d6561737572652c666f776e65723e809d18cfcce8a42b575fded91cae3686694bc6a8dfb72d21271e45a0b1517d21b8f278b3438ae96bc68fb1c6bcfab48ae3c47cd493c5", @ANYRESDEC=r1, @ANYBLOB="2c6f626a5f757365723d73656c66292528766d6e657431ab70707030656d302c3a707070312c00"]) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000380)={0x0, 0x18, 0xfa00, {0x2, &(0x7f0000000340)={0xffffffffffffffff}, 0x111, 0x4}}, 0x20) write$RDMA_USER_CM_CMD_RESOLVE_ROUTE(r0, &(0x7f0000000580)={0x4, 0x8, 0xfa00, {r2, 0x4}}, 0x10) [ 252.747173] FAULT_INJECTION: forcing a failure. [ 252.747173] name failslab, interval 1, probability 0, space 0, times 0 [ 252.812307] x86/PAT: syz-executor.4:12024 freeing invalid memtype [mem 0x00001000-0x00001fff] [ 252.820447] CPU: 1 PID: 12019 Comm: syz-executor.3 Not tainted 4.14.139 #35 [ 252.828127] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 252.837487] Call Trace: [ 252.840079] dump_stack+0x138/0x19c [ 252.843718] should_fail.cold+0x10f/0x159 [ 252.847877] should_failslab+0xdb/0x130 [ 252.851860] kmem_cache_alloc_trace+0x2e9/0x790 [ 252.856537] ? pat_pagerange_is_ram+0x90/0xf0 [ 252.861031] ? __init_cache_modes+0x240/0x240 [ 252.865543] reserve_memtype+0x164/0x640 [ 252.869607] ? lock_downgrade+0x6e0/0x6e0 [ 252.873755] ? pat_init+0x420/0x420 [ 252.877382] ? __init_cache_modes+0x240/0x240 [ 252.881873] reserve_pfn_range+0x11c/0x390 [ 252.886099] ? arch_io_reserve_memtype_wc+0x80/0x80 [ 252.891101] ? copy_process.part.0+0x444f/0x6a00 [ 252.895838] ? SyS_clone+0x37/0x50 [ 252.899365] ? do_syscall_64+0x1e8/0x640 [ 252.903411] ? entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 252.908754] track_pfn_copy+0x14a/0x190 [ 252.912707] ? reserve_pfn_range+0x390/0x390 [ 252.917098] ? trace_hardirqs_on+0x10/0x10 [ 252.921320] copy_page_range+0x1255/0x1bd0 [ 252.925537] ? save_trace+0x290/0x290 [ 252.929335] ? copy_process.part.0+0x41de/0x6a00 [ 252.934096] ? vma_compute_subtree_gap+0x190/0x1f0 [ 252.939004] ? vma_gap_callbacks_rotate+0x62/0x80 [ 252.943827] ? __rb_insert_augmented+0x22f/0xdf0 [ 252.948566] ? __pmd_alloc+0x410/0x410 [ 252.952432] ? __vma_link_rb+0x247/0x340 [ 252.956474] copy_process.part.0+0x4764/0x6a00 [ 252.961052] ? __cleanup_sighand+0x50/0x50 [ 252.965265] ? lock_downgrade+0x6e0/0x6e0 [ 252.969396] _do_fork+0x19e/0xce0 [ 252.972831] ? fork_idle+0x280/0x280 [ 252.976528] ? fput+0xd4/0x150 [ 252.979701] ? SyS_write+0x15e/0x230 [ 252.983394] SyS_clone+0x37/0x50 [ 252.986741] ? sys_vfork+0x30/0x30 [ 252.990262] do_syscall_64+0x1e8/0x640 [ 252.994124] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 252.998948] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 253.004117] RIP: 0033:0x459829 [ 253.007306] RSP: 002b:00007f664e1cac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 253.014997] RAX: ffffffffffffffda RBX: 00007f664e1cac90 RCX: 0000000000459829 [ 253.022245] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000 [ 253.029512] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000 [ 253.036761] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f664e1cb6d4 [ 253.044026] R13: 00000000004bfce6 R14: 00000000004d1a58 R15: 0000000000000004 [ 253.122365] ------------[ cut here ]------------ [ 253.127303] WARNING: CPU: 0 PID: 12019 at arch/x86/mm/pat.c:1020 untrack_pfn+0x1dc/0x220 [ 253.135529] Kernel panic - not syncing: panic_on_warn set ... [ 253.135529] [ 253.142898] CPU: 0 PID: 12019 Comm: syz-executor.3 Not tainted 4.14.139 #35 [ 253.149995] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 253.159347] Call Trace: [ 253.161945] dump_stack+0x138/0x19c [ 253.165579] panic+0x1f2/0x426 [ 253.168768] ? add_taint.cold+0x16/0x16 [ 253.172725] ? untrack_pfn+0x1dc/0x220 [ 253.176587] ? __warn.cold+0x14/0x36 [ 253.180374] ? untrack_pfn+0x1dc/0x220 [ 253.184244] __warn.cold+0x2f/0x36 [ 253.187761] ? ist_end_non_atomic+0x10/0x10 [ 253.192070] ? untrack_pfn+0x1dc/0x220 [ 253.195937] report_bug+0x216/0x254 [ 253.199545] do_error_trap+0x1bb/0x310 [ 253.203412] ? math_error+0x360/0x360 [ 253.207194] ? lock_downgrade+0x6e0/0x6e0 [ 253.211360] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 253.216196] do_invalid_op+0x1b/0x20 [ 253.219890] invalid_op+0x1b/0x40 [ 253.223341] RIP: 0010:untrack_pfn+0x1dc/0x220 [ 253.227819] RSP: 0018:ffff88821aef7948 EFLAGS: 00010246 [ 253.233175] RAX: 0000000000040000 RBX: ffff88809459a778 RCX: ffffc9000ba6b000 [ 253.240432] RDX: 0000000000040000 RSI: ffffffff812a656c RDI: 0000000000000001 [ 253.247705] RBP: ffff88821aef79d8 R08: ffff888050622400 R09: 0000000000000000 [ 253.254974] R10: 0000000000000000 R11: ffff888050622400 R12: 1ffff110435def2a [ 253.262223] R13: 0000000000000000 R14: 0000000000000000 R15: ffff88821aef79b0 [ 253.269487] ? untrack_pfn+0x1dc/0x220 [ 253.273359] ? untrack_pfn+0x1dc/0x220 [ 253.277225] ? track_pfn_insert+0x150/0x150 [ 253.281526] ? vm_normal_page_pmd+0x360/0x360 [ 253.286002] ? uprobe_munmap+0x94/0x210 [ 253.289955] unmap_single_vma+0x182/0x2c0 [ 253.294083] unmap_vmas+0xac/0x170 [ 253.297603] exit_mmap+0x285/0x4e0 [ 253.301122] ? SyS_munmap+0x30/0x30 [ 253.304735] ? kmem_cache_free+0x244/0x2b0 [ 253.308950] ? __khugepaged_exit+0xcf/0x3d0 [ 253.313251] ? lock_downgrade+0x6e0/0x6e0 [ 253.317380] mmput+0x114/0x440 [ 253.320552] copy_process.part.0+0x4743/0x6a00 [ 253.325123] ? __cleanup_sighand+0x50/0x50 [ 253.329337] ? lock_downgrade+0x6e0/0x6e0 [ 253.333477] _do_fork+0x19e/0xce0 [ 253.336913] ? fork_idle+0x280/0x280 [ 253.340647] ? fput+0xd4/0x150 [ 253.343824] ? SyS_write+0x15e/0x230 [ 253.347537] SyS_clone+0x37/0x50 [ 253.350883] ? sys_vfork+0x30/0x30 [ 253.354413] do_syscall_64+0x1e8/0x640 [ 253.358284] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 253.363111] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 253.368284] RIP: 0033:0x459829 [ 253.371455] RSP: 002b:00007f664e1cac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 253.379145] RAX: ffffffffffffffda RBX: 00007f664e1cac90 RCX: 0000000000459829 [ 253.386393] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000 [ 253.393639] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000 [ 253.400889] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f664e1cb6d4 [ 253.408137] R13: 00000000004bfce6 R14: 00000000004d1a58 R15: 0000000000000004 [ 253.416514] Kernel Offset: disabled [ 253.420144] Rebooting in 86400 seconds..