net6(0xa, 0x1201000000002, 0x2) r1 = syz_open_dev$dspn(&(0x7f0000000200)='/dev/dsp#\x00', 0x80000001, 0x0) ioctl$VHOST_VSOCK_SET_RUNNING(r1, 0x4004af61, &(0x7f0000000240)=0x1) r2 = fcntl$dupfd(r0, 0x406, r0) r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) setsockopt$bt_hci_HCI_FILTER(r3, 0x0, 0x2, &(0x7f0000000080), 0x10) fcntl$setflags(r3, 0x2, 0x0) r4 = msgget(0x3, 0x0) msgctl$IPC_RMID(r4, 0x0) ioctl$KDDISABIO(r2, 0x4b37) ptrace$PTRACE_SECCOMP_GET_FILTER(0x420c, 0x0, 0x64c1, &(0x7f0000000100)=""/200) getsockopt$sock_int(r3, 0x1, 0x2e, &(0x7f0000000040), &(0x7f00000000c0)=0x4) 09:05:29 executing program 5: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r1, &(0x7f0000000180)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x8}, 0x1c) sendto$inet6(r1, &(0x7f0000000300), 0xfdb8, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e23, 0x0, @ipv4={[], [0xff, 0xff], @multicast2=0xe0000002}}, 0x1c) setsockopt$sock_int(r1, 0x1, 0xb, &(0x7f0000000000)=0x8, 0x4) sendmmsg(r1, &(0x7f00000092c0), 0x4ff, 0x0) ioctl$sock_SIOCOUTQ(r0, 0x5411, &(0x7f0000000040)) 09:05:29 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)) 09:05:29 executing program 2: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000640)='/dev/net/tun\x00', 0x0, 0x0) r1 = request_key(&(0x7f0000000100)='syzkaller\x00', &(0x7f0000000140)={0x73, 0x79, 0x7a, 0x3}, &(0x7f0000000180)='/\x00', 0xfffffffffffffffe) keyctl$get_keyring_id(0x0, r1, 0x100000000) open_by_handle_at(r0, &(0x7f0000000000)={0xe9, 0x6, "cfcd1bcce05d95317b421fe9d034a07909a10fd7fba32452f5c201f8c838c9c2650e982163ab75f221fc238b2b616e0e6598651d774fd48a374b41ca1dfd576367ed24ff8366059cfba49ad00a5e93c96983ad5911dbcc26355a431c4862f2b440787985d8a3f5912a510c57d6c7ddbbd7c06eb2abddad42d5650969a6ddc721b32afd68a08dc01a9aa22a40378e3a1cb3c475dc63942425f93fca517bd955de62845dbe346c9b469b40f22c178bb9a90e2351d115bf7304d153f91a7dca210a23e6b8cac713295dbcf44e101d394033bdb4c8fcc0fd66ad6d7cce6fbea37cde14"}, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000600)={"00ac730000000000ec973f820f7c4000", 0xc201}) ioctl$TUNSETLINK(r0, 0x400454cd, 0x7) close(r0) request_key(&(0x7f00000001c0)='encrypted\x00', &(0x7f0000000200)={0x73, 0x79, 0x7a, 0x0}, &(0x7f0000000240)='system\x00', r1) 09:05:29 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_open_dev$audion(&(0x7f0000000100)='/dev/audio#\x00', 0xb73, 0x800) write$FUSE_NOTIFY_STORE(r1, &(0x7f0000000140)=ANY=[@ANYBLOB="2a0000000400000000000000000000000200000000000000ff0700000000000000000000000000000000"], 0x2a) sendmsg$nl_generic(r0, &(0x7f0000000040)={&(0x7f0000000000)={0x10}, 0xc, &(0x7f0000000080)={&(0x7f0000000200)=ANY=[@ANYBLOB="200000001c0001000000000000000000010000000c0001000000000100000000a81db57ac155f18c51ec25699e4657fc8a275d2b06387de0d37c9c070e6a5cf56d6b112d9a96bb350f8441ec75ce1ef662d2011759538677acac9aa0536894ac72a0f5c02c27380e9d1094ee9db8d88461aa1d0a9550511bfcd96f622b4946fc49f23cf392b61b7237ebc853f1732d17b4dfd36c0a1598bb89b8ae47b165d85a142e19c4ca6301938361395f30e51e"], 0x20}, 0x1}, 0x0) ioctl$TIOCLINUX3(r0, 0x541c, &(0x7f00000000c0)=0x3) getsockopt$inet6_mtu(r1, 0x29, 0x17, &(0x7f0000000180), &(0x7f00000001c0)=0x4) 09:05:29 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x8915, &(0x7f0000000040)={'lo\x00', {0x2}}) 09:05:29 executing program 6: perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000140)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$minix(&(0x7f00000000c0)='minix\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000140)=[{&(0x7f00000019c0)="600084e02d9a198b900cda40ff1ad5c98f13", 0x12, 0x400}], 0x0, 0x0) vmsplice(0xffffffffffffffff, &(0x7f00005a1000), 0x0, 0x0) setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x0, &(0x7f0000000200), 0x2) r0 = syz_open_dev$mouse(&(0x7f00000001c0)='/dev/input/mouse#\x00', 0x46c4, 0x400000) setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x1, &(0x7f0000000180)={0x303, 0x33}, 0x4) 09:05:29 executing program 4: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r1, &(0x7f0000000580)={&(0x7f0000000000)={0x10}, 0xc, &(0x7f0000000540)={&(0x7f00000003c0)=@newlink={0x48, 0x10, 0x705, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x28, 0x12, @veth={{0xc, 0x1, 'veth\x00'}, {0x18, 0x2, @VETH_INFO_PEER={0x14, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x201}}}}}]}, 0x48}, 0x1}, 0x0) r2 = fcntl$dupfd(r1, 0x406, r1) epoll_ctl$EPOLL_CTL_MOD(r2, 0x3, r0, &(0x7f0000000040)={0x40000000}) 09:05:29 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)) [ 139.857369] netlink: 'syz-executor0': attribute type 1 has an invalid length. [ 139.882171] MINIX-fs: bad superblock or unable to read bitmaps [ 139.895694] netlink: 'syz-executor0': attribute type 1 has an invalid length. 09:05:29 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891b, &(0x7f0000000040)={'lo\x00', {0x2}}) [ 139.932894] MINIX-fs: bad superblock or unable to read bitmaps 09:05:30 executing program 2: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet(0x10, 0x3, 0xffffffff) sendmsg(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f0000000000)="24000000260007031dfffd946fa2830020200a00090000000600000000ffffffff00ff7e", 0x24}], 0x1}, 0x0) 09:05:30 executing program 4: r0 = socket(0xa, 0x1, 0x0) fstat(r0, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setgid(r1) sendmsg$inet_sctp(r0, &(0x7f0000000280)={&(0x7f0000000000)=@in6={0xa, 0x4e20, 0x5, @remote={0xfe, 0x80, [], 0xbb}, 0x1478}, 0x1c, &(0x7f0000000100)=[{&(0x7f0000000040)="5880b9ce9230dc396bc03fc1bb527e9d92c395a540b2945b856be338ffb4b48c1d291bc998890c3d98b251c9903877b1cea5fc34174ab0a23e37a07598a91560ab1bfeb85f6416300d3a8c54d183e4b8abf66a0c4250f8c1a822676f95a886a4a116fd2a6a97bed4021167d5b2e58965413ecd43a75f7111ba328bc80d740f895fe4549a7919c61ecfa25fe62afb89a6fc0178aaeee77df08ee6426b5291962a418db40f7443509bea8bcab8369e0810d7b281", 0xb3}, {&(0x7f00000001c0)="119d550245a6fa5f61ca0861edc03ac757511f676f5c1e9aaf8c458aa273c20166e1c0d4d7dbb3d05b327f4b3765501ab381160fa77daa06570b70cbced0fbc526c85b00662857c1712119edb03d8ef351e8b86e67c6cd07d4f7acec3892163ede58700e", 0x64}, {&(0x7f0000000340)="d05bef25ea3d443774f37b5b24e6a20440beb55d940fef98849f7991551476b7afe5506accb9269d2690fc1b7b52fbef35444c2b50df3462dca80bb6759479e155de6a666caa89f2dca6434d5a0f3e18ef7b87ad6d657ff0a896f88ac36e5dd83173dc4736116fe0db5b8c4e901dfda48a1fe6d7c2c1182582a34dfe29fab32d1c3e0fd1c79ce5c060ef32bf687ae861a1ad0080756cd828bbf31f2f4dd9f6fcd73a12bfe336da5766d16392d6ed2b19418001b696d9ddf19166443c2d3ed7a1e023ae3237ec7e57db9b762e081cea3a9aa1992be1303c", 0xd7}], 0x3, &(0x7f0000000240)=ANY=[@ANYBLOB="20004000000000009b0000000800000000000000000000000000ffff00000000"], 0x20, 0x40}, 0x0) r2 = socket(0x10, 0x2, 0x0) getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xc) setgroups(0x0, &(0x7f0000000000)) setresuid(0x0, r3, 0x0) shmget$private(0x0, 0x3000, 0x820, &(0x7f0000ffd000/0x3000)=nil) r4 = syz_open_dev$mice(&(0x7f0000000440)='/dev/input/mice\x00', 0x0, 0x0) ioctl$EVIOCSKEYCODE_V2(r4, 0x40284504, &(0x7f0000000480)={0x1, 0x11, 0x1f, 0x7, "65aa8a165dec830e132e3114da055d5cf192e18f90955c22ea2b9104d4c61681"}) 09:05:30 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)) 09:05:30 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x5452, &(0x7f0000000040)={'lo\x00', {0x2}}) 09:05:30 executing program 0: r0 = syz_open_dev$dspn(&(0x7f0000000040)='/dev/dsp#\x00', 0xb, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x2, 0x0, 0x0, 0x4}, 0x0) io_setup(0x6, &(0x7f00000012c0)=0x0) socketpair$inet_sctp(0x2, 0x1, 0x84, &(0x7f0000000080)) io_getevents(r1, 0x2, 0x2, &(0x7f0000d83f60)=[{}, {}], &(0x7f00005cfff0)={0x77359400}) io_destroy(r1) readv(r0, &(0x7f0000000140)=[{&(0x7f0000006f07)=""/249, 0xff50}], 0x26d) ioctl$int_in(r0, 0x80000000005001, &(0x7f00000000c0)) 09:05:30 executing program 6: perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ppp\x00', 0x40000, 0x0) ioctl$TIOCGPGRP(0xffffffffffffff9c, 0x540f, &(0x7f0000000300)=0x0) write$P9_RGETLOCK(r0, &(0x7f0000000340)={0x3d, 0x37, 0x1, {0x1, 0x7, 0xffffffff00000001, r1, 0x1f, '\'\\{,-^keyringeth0em1]vmnet1ppp1'}}, 0x3d) mmap(&(0x7f0000000000/0xa000)=nil, 0xa000, 0xd, 0x2172, 0xffffffffffffffff, 0x0) mremap(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x4000, 0x3, &(0x7f0000002000/0x4000)=nil) openat$fuse(0xffffffffffffff9c, &(0x7f0000000000)='/dev/fuse\x00', 0x2, 0x0) mq_open(&(0x7f0000000100)='/dev/fuse\x00', 0x842, 0x100, &(0x7f0000000140)={0x8, 0x8, 0x1, 0x4, 0x5, 0x0, 0xfffffffffffffff8, 0x8000}) r2 = syz_open_dev$usbmon(&(0x7f00000000c0)='/dev/usbmon#\x00', 0x2, 0x101000) mkdirat(r2, &(0x7f00000001c0)='./file0\x00', 0x5) setsockopt$IP6T_SO_SET_REPLACE(r2, 0x29, 0x40, &(0x7f0000000ac0)=@mangle={'mangle\x00', 0x1f, 0x6, 0x760, 0x3d8, 0x690, 0x0, 0x510, 0x510, 0x690, 0x690, 0x690, 0x690, 0x690, 0x6, &(0x7f0000000280), {[{{@ipv6={@mcast2={0xff, 0x2, [], 0x1}, @loopback={0x0, 0x1}, [0xffffff00, 0x0, 0xffffffff, 0xffffffff], [0xffffffff, 0xff000000, 0xffffff00, 0xffffff00], 'team_slave_1\x00', 'sit0\x00', {0xff}, {0xff}, 0x2e, 0x4000000000000000, 0x1, 0x10}, 0x0, 0x118, 0x158, 0x0, {}, [@inet=@rpfilter={0x28, 'rpfilter\x00', 0x0, {0x2}}, @inet=@rpfilter={0x28, 'rpfilter\x00', 0x0, {0xa}}]}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x7c, 0x2, @ipv4=@local={0xac, 0x14, 0x14, 0xaa}, 0x4e20}}}, {{@uncond, 0x0, 0x118, 0x140, 0x0, {}, [@inet=@rpfilter={0x28, 'rpfilter\x00', 0x0, {0x9}}, @inet=@rpfilter={0x28, 'rpfilter\x00', 0x0, {0x4}}]}, @unspec=@CHECKSUM={0x28, 'CHECKSUM\x00', 0x0, {0x1}}}, {{@uncond, 0x0, 0x118, 0x140, 0x0, {}, [@inet=@rpfilter={0x28, 'rpfilter\x00'}, @common=@mh={0x28, 'mh\x00', 0x0, {0xd0, 0x7}}]}, @inet=@TOS={0x28, 'TOS\x00', 0x0, {0x8001}}}, {{@uncond, 0x0, 0xf0, 0x138, 0x0, {}, [@common=@mh={0x28, 'mh\x00', 0x0, {0x5, 0x7fff, 0x1}}]}, @SNPT={0x48, 'SNPT\x00', 0x0, {@ipv4=@local={0xac, 0x14, 0x14, 0xaa}, @ipv4, 0x12, 0x3}}}, {{@ipv6={@empty, @local={0xfe, 0x80, [], 0xaa}, [0xffffffff, 0x0, 0x0, 0xffffffff], [0xffffff00, 0xffffffff, 0xff, 0xffffff00], 'veth0\x00', 'teql0\x00', {0xff}, {}, 0x88, 0x5, 0x4, 0x40}, 0x0, 0x138, 0x180, 0x0, {}, [@common=@hbh={0x48, 'hbh\x00', 0x0, {0x3, 0x2, 0x1, [0xfff, 0x4, 0x20, 0xff, 0x7f, 0x7, 0x5, 0xffffffff, 0x0, 0x7, 0x10000, 0x0, 0x8, 0x8, 0xe0c, 0x7ff], 0xc}}, @common=@ipv6header={0x28, 'ipv6header\x00', 0x0, {0x2, 0x40}}]}, @SNPT={0x48, 'SNPT\x00', 0x0, {@ipv4=@loopback=0x7f000001, @ipv4=@rand_addr=0x80000001, 0x19, 0x4, 0x7}}}], {{[], 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x0, 0xfffffffffffffffe}}}}, 0x7c0) mq_open(&(0x7f0000000040)='/dev/fuse\x00', 0x8c3, 0x1, &(0x7f0000000080)={0xfff, 0x6, 0x400, 0x4, 0xffffffffffffffff, 0x3, 0x8, 0x7fff}) 09:05:30 executing program 1: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000e5b000)={0x2, 0x10000004e20, @multicast1=0xe0000001}, 0x10) connect$inet(r1, &(0x7f0000ccb000)={0x2, 0x4e20}, 0x10) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x1, 0x3, &(0x7f00009ff000)=ANY=[@ANYBLOB="18000000030000007c00fbff000000000000000000000000"], &(0x7f00002bf000)='syzkaller\x00', 0x1, 0xb7, &(0x7f0000000440)=""/183}, 0x48) r3 = socket$kcm(0x29, 0x1000000000002, 0x0) ioctl$sock_kcm_SIOCKCMATTACH(r3, 0x89e0, &(0x7f000031aff8)={r1, r2}) ioctl$sock_kcm_SIOCKCMCLONE(r3, 0x89e2, &(0x7f0000000000)={0xffffffffffffffff}) sendmsg$IPVS_CMD_GET_CONFIG(r4, &(0x7f0000000400)={&(0x7f0000000280)={0x10}, 0xc, &(0x7f00000003c0)={&(0x7f0000000300)={0x14, 0x0, 0x0, 0x0, 0x0, {0xd}}, 0x5580}, 0x1}, 0x0) recvmmsg(r4, &(0x7f0000004540)=[{{0x0, 0x0, &(0x7f0000003c80), 0x0, &(0x7f0000003d00)=""/205, 0xcd}}, {{0x0, 0x0, &(0x7f0000001580)=[{&(0x7f0000000040)=""/129}, {&(0x7f0000000100)=""/99}, {&(0x7f0000000180)=""/239}, {&(0x7f0000000500)=""/98}, {&(0x7f0000000580)=""/4096}], 0x0, &(0x7f0000004480)=""/178, 0xb2}}], 0x400000000000253, 0x0, 0x0) 09:05:30 executing program 5: r0 = socket$inet(0x2, 0x3, 0x6) sendto$inet(r0, &(0x7f0000000000)="8aa1f03d4b4884d2d78da7638f78c302e73169df0509f7ccf3345b937b7c449b", 0x20, 0x0, &(0x7f0000000140)={0x2, 0x0, @loopback=0x7f000001}, 0x10) r1 = socket$packet(0x11, 0x2, 0x300) sendmmsg(r1, &(0x7f0000000140)=[{{&(0x7f00000000c0)=@nfc={0x27, 0x1}, 0x80, &(0x7f0000000080), 0x0, &(0x7f0000000000)}}, {{&(0x7f0000002400)=@in6={0xa, 0x0, 0x0, @loopback={0x0, 0x1}}, 0x2, &(0x7f00000057c0), 0x0, &(0x7f0000000580)=[{0x10}], 0x10}}], 0x2, 0x0) ioctl$TCGETS(r1, 0x5401, &(0x7f0000000000)) 09:05:30 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)) 09:05:30 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r1 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r1, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r2 = gettid() madvise(&(0x7f00005ca000/0x3000)=nil, 0x3000, 0x10) process_vm_writev(r2, &(0x7f0000000000)=[{&(0x7f0000000040)=""/247, 0xffffff50}], 0x1000000000000005, &(0x7f0000000180)=[{&(0x7f0000217f28)=""/231, 0xffffff4e}], 0x23a, 0x0) madvise(&(0x7f000062f000/0x2000)=nil, 0x2000, 0xf) 09:05:30 executing program 5: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$inet6(0xa, 0x1, 0x8010000000000084) bind$inet6(r1, &(0x7f0000ef8cfd)={0xa, 0x4e23, 0x0, @loopback={0x0, 0x1}}, 0x1c) listen(r1, 0xffffffffffffff7f) fsetxattr(r0, &(0x7f0000000100)=@random={'system.', '\x00'}, &(0x7f0000000140)='em1\\em0!bdevlocgroup-vmnet0\x00', 0x1c, 0x3) r2 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp_SCTP_INITMSG(r1, 0x84, 0x2, &(0x7f0000000000)={0x0, 0x2}, 0x8) setsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(r2, 0x84, 0x22, &(0x7f00000000c0)={0x9}, 0x10) sendto$inet6(r2, &(0x7f0000000040)="f5", 0x1, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback={0x0, 0x1}}, 0x1c) getsockopt$inet6_IPV6_IPSEC_POLICY(r1, 0x29, 0x22, &(0x7f0000000200)={{{@in6=@dev, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@remote}, 0x0, @in6=@local}}, &(0x7f0000000080)=0xe8) ioprio_get$uid(0x3, r3) 09:05:30 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0xc0045878, &(0x7f0000000040)={'lo\x00', {0x2}}) 09:05:30 executing program 2: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vsock\x00', 0x8000, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000080)={0x101ff, 0x2, 0x4000, 0x2000, &(0x7f0000ffd000/0x2000)=nil}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) lstat(&(0x7f0000000240)='./file0\x00', &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0}) r5 = getgid() mount$fuse(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='fuse\x00', 0x810, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xe000}, 0x2c, {'user_id', 0x3d, r4}, 0x2c, {'group_id', 0x3d, r5}, 0x2c, {[{@allow_other='allow_other', 0x2c}, {@allow_other='allow_other', 0x2c}, {@allow_other='allow_other', 0x2c}]}}) ioctl$SCSI_IOCTL_PROBE_HOST(r0, 0x5385, &(0x7f0000000100)={0x8a, ""/138}) ioctl$KVM_ENABLE_CAP_CPU(r3, 0xc008ae88, &(0x7f0000000380)={0x7b, 0xbff, [0x4b564d03]}) write$FUSE_IOCTL(r0, &(0x7f00000000c0)={0x20, 0x0, 0x8, {0x400, 0x4, 0x0, 0x7}}, 0x20) 09:05:30 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)) [ 140.407441] Unknown ioctl 1075883590 09:05:30 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)={{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff00000000}}) 09:05:30 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x8955, &(0x7f0000000040)={'lo\x00', {0x2}}) [ 140.463079] Unknown ioctl 21381 [ 140.478621] Unknown ioctl 1075883590 09:05:30 executing program 6: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) readahead(r0, 0x2, 0xf11) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) getcwd(&(0x7f0000000080)=""/65, 0x41) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_VCPU_EVENTS(r3, 0x4040aea0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa, 0x3}) [ 140.505652] Unknown ioctl 21381 09:05:30 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x40049409, &(0x7f0000000040)={'lo\x00', {0x2}}) 09:05:30 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)={{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3f00}}) 09:05:30 executing program 2: r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fuse\x00', 0x2, 0x0) io_setup(0x3, &(0x7f0000000080)=0x0) io_submit(r1, 0x1, &(0x7f0000001640)=[&(0x7f00000001c0)={0x0, 0x0, 0x0, 0x8, 0x0, r0, &(0x7f0000000480)}]) r2 = accept4$inet6(0xffffffffffffff9c, &(0x7f0000000000)={0x0, 0x0, 0x0, @ipv4={[], [], @remote}}, &(0x7f0000000040)=0x1c, 0x80800) getsockopt$inet_sctp6_SCTP_EVENTS(r2, 0x84, 0xb, &(0x7f0000000140), &(0x7f0000000100)=0xb) 09:05:30 executing program 0: r0 = socket$alg(0x26, 0x5, 0x0) r1 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r1, 0x8912, &(0x7f0000000080)="025cc83d6d345f8f762070") bind$alg(r0, &(0x7f00000001c0)={0x26, 'hash\x00', 0x0, 0x0, 'crc32-generic\x00'}, 0x58) r2 = accept$alg(r0, 0x0, 0x0) recvmmsg(r2, &(0x7f0000001a00)=[{{&(0x7f00000000c0)=@nl=@unspec, 0x80, &(0x7f00000011c0), 0x0, &(0x7f0000001200)=""/182, 0xb6}}, {{0x0, 0x0, &(0x7f0000001940), 0x0, &(0x7f0000001980)=""/115, 0x73}}], 0x2, 0x0, 0x0) accept$alg(r1, 0x0, 0x0) 09:05:30 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x890d, &(0x7f0000000040)={'lo\x00', {0x2}}) 09:05:31 executing program 1: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x1000000008912, &(0x7f0000000280)="024a903d6d345f8f762070") r1 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback={0x0, 0x1}}, 0x1c) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r2, &(0x7f0000000080)={&(0x7f0000000100)={0x10}, 0x12f, &(0x7f00000bfff0)={&(0x7f0000006440)=@updpolicy={0xb8, 0x19, 0x1, 0x0, 0x0, {{@in6=@mcast1={0xff, 0x1, [], 0x1}, @in=@multicast1=0xe0000001, 0x0, 0x0, 0x0, 0x0, 0xa}}}, 0xb8}, 0x1}, 0x0) setsockopt$IP6T_SO_SET_ADD_COUNTERS(r1, 0x29, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="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"], 0x48) 09:05:31 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)={{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfeffffff}}) 09:05:31 executing program 6: r0 = socket$inet6(0xa, 0x5, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0) r1 = userfaultfd(0x0) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000003fe8)={0xaa}) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000001fe2)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1}) r2 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp6_SCTP_DISABLE_FRAGMENTS(r2, 0x84, 0x8, &(0x7f0000013e95), 0x4) ioctl$sock_SIOCETHTOOL(r2, 0x8948, &(0x7f0000000000)={'gre0\x00', &(0x7f0000000180)=ANY=[@ANYRESDEC, @ANYRESDEC]}) close(r2) close(r1) openat$uinput(0xffffffffffffff9c, &(0x7f0000000040)='/dev/uinput\x00', 0x10000, 0x0) 09:05:31 executing program 4: mkdir(&(0x7f0000cb3ff8)='./file0\x00', 0x0) r0 = accept4$bt_l2cap(0xffffffffffffff9c, &(0x7f0000000180), &(0x7f0000000280)=0xe, 0x80000) r1 = syz_open_dev$sndtimer(&(0x7f00000002c0)='/dev/snd/timer\x00', 0x0, 0x288000) ioctl$FICLONE(r0, 0x40049409, r1) r2 = open(&(0x7f0000625000)='./file0\x00', 0x3, 0x8) mkdirat(r2, &(0x7f0000643ff8)='./file0\x00', 0x0) r3 = open$dir(&(0x7f00004daff8)='./file0\x00', 0x0, 0x0) r4 = openat(r3, &(0x7f00006e9ff8)='./file0\x00', 0x0, 0x0) mount(&(0x7f0000000140)='./file0\x00', &(0x7f0000000000)='./file0\x00', &(0x7f00009b9000)="0500de00667300", 0x8000000001008, &(0x7f0000000040)="ac542e39652846c31866bdee5e568c2b37c36d6fe44b167226a1b8d8ed5d6688db133c8a4a9d09603b6a2f081df7ed67b37795872d1ffd74fac32cbf5da74d429641dfeaf25bcd4cce097fc61ef4e4c8982ad54dc23c9dc1954440bb58b064b3fc03ac5e60912149b387916afc1dd7f3f7212fe1fc1acc00edaec6becd3c75fdb898ecbb63af41d365f6536d0da4968cce47453d67b422aeea5f8575ca3336cc02c322ba3005e803c3f74a992d6e0cb9d4b7473c793533") getsockopt$inet_IP_IPSEC_POLICY(r2, 0x0, 0x10, &(0x7f0000000380)={{{@in=@dev, @in6=@dev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@broadcast}, 0x0, @in=@dev}}, &(0x7f0000000480)=0xe8) r6 = geteuid() setsockopt$EBT_SO_SET_COUNTERS(r4, 0x0, 0x81, &(0x7f0000000600)={'nat\x00', 0x0, 0x0, 0x0, [], 0x5, &(0x7f0000000540)=[{}, {}, {}, {}, {}, {}, {}, {}, {}], 0x0, [{}, {}, {}, {}, {}]}, 0xc8) syz_mount_image$hfsplus(&(0x7f0000000100)='hfsplus\x00', &(0x7f0000000200)='./file0/file0/file0/file0\x00', 0xfffffffffffffff9, 0x1, &(0x7f0000000240)=[{&(0x7f0000000300)="f013f9c517788380e1a550ff038dacac2f4597a03f36a1737aafd4c4987948be4a17e2b06f6cf212585a215e77ef1e49517378bf8542b1270104613dcafb74ce2d5d41cef6437bd6256a01b8957ef47a5a11eff112a38fe266e6ec42836719d4cc7b03af2f367676fe8ff901064627908e141719", 0x74, 0x4}], 0x808000, &(0x7f0000001880)=ANY=[@ANYBLOB="73657373696f6e3d3078303030303030303036313535353832642c7569643d346c36d0b7f2b8805407762d078454f7dfd40c26a49fb642897cc829fc2fe36d55667aa2356e1187eff7a99e5c0f73e9926dc3b5085a9ae02455ca0d63f1b5b6d11c0b03de9f3d914034d9f3750f037d82ed5c66293095e3d2b9cdf5c9517874fe563d419c700fb57d226ae9", @ANYRESHEX=r5, @ANYBLOB=',barrier,uid=', @ANYRESHEX=r6, @ANYBLOB=',\x00']) symlinkat(&(0x7f000001fff7)='./file0/file0\x00', r4, &(0x7f000001fff8)='./file0\x00') fstat(r2, &(0x7f00000017c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) syz_mount_image$hfsplus(&(0x7f0000000700)='hfsplus\x00', &(0x7f0000000740)='./file0/file0/file0/file0\x00', 0xb339, 0x1, &(0x7f0000001780)=[{&(0x7f0000000780)="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", 0x1000, 0xd34f}], 0x1010020, &(0x7f0000001840)={[{@type={'type', 0x3d, "b0eea8a9"}, 0x2c}, {@gid={'gid', 0x3d, r7}, 0x2c}, {@nobarrier='nobarrier', 0x2c}, {@type={'type', 0x3d, "0b249279"}, 0x2c}]}) renameat2(r3, &(0x7f00000001c0)='./file0/file0/file0/file0\x00', r4, &(0x7f0000284000)='./file0/file0/file0/file0\x00', 0x0) 09:05:31 executing program 2: r0 = socket(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)=@ipv6_getroute={0x1c, 0x1a, 0x201, 0x0, 0x0, {0xa}}, 0x1c}, 0x1}, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) socketpair$inet6_udplite(0xa, 0x2, 0x88, &(0x7f0000000080)) getsockopt$inet6_mreq(r0, 0x29, 0x1b, &(0x7f0000000100)={@mcast1, 0x0}, &(0x7f0000000180)=0x14) setsockopt$inet_mreqn(r0, 0x0, 0x23, &(0x7f00000001c0)={@multicast1=0xe0000001, @broadcast=0xffffffff, r2}, 0xc) sendmsg$nl_route(r1, &(0x7f0000000140)={&(0x7f0000000040)={0x10}, 0xc, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB="2800000010005fc0000000000000000000000000", @ANYBLOB="000000000000000008001b0000000000"], 0x2}, 0x1}, 0x0) recvmsg(r0, &(0x7f0000000600)={&(0x7f00000002c0)=@nl=@proc, 0x80, &(0x7f0000000580), 0x0, &(0x7f00000005c0)=""/47, 0x2f}, 0x0) 09:05:31 executing program 5: perf_event_open(&(0x7f0000c86f88)={0x2, 0xea, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup\x00', 0x200002, 0x0) openat$cgroup_int(r0, &(0x7f0000000080)='io.weight\x00', 0x2, 0x0) r1 = accept4(0xffffffffffffffff, &(0x7f0000000100)=@nfc_llcp, &(0x7f0000000180)=0x80, 0x80800) getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f00000001c0)={0x2, [0x0, 0x0]}, &(0x7f0000000200)=0xc) setsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(r1, 0x84, 0x22, &(0x7f0000000240)={0x2, 0x1, 0x9, 0x3, r2}, 0x10) pselect6(0x40, &(0x7f0000f33fc0)={0x3ffffd}, &(0x7f0000768000), &(0x7f0000086000), &(0x7f0000349000), &(0x7f0000f14000)={&(0x7f00000000c0), 0x8}) 09:05:31 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x89a1, &(0x7f0000000040)={'lo\x00', {0x2}}) 09:05:31 executing program 0: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00009e3ff6)='/dev/ptmx\x00', 0x0, 0x0) r1 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000040)='/dev/cuse\x00', 0x20000, 0x0) ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000080)={0x15002, 0x6000, 0x7, 0x7, 0x400}) ioctl$TCSETS(r0, 0x40045431, &(0x7f00005befdc)) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='syscall\x00') chroot(&(0x7f0000000180)='./file0\x00') ioctl$RTC_PIE_OFF(r2, 0x7006) write$FUSE_WRITE(r2, &(0x7f0000000380)={0x18, 0x765960abeff7b0b3, 0x7, {0x794}}, 0x18) syz_open_dev$sndpcmc(&(0x7f00000003c0)='/dev/snd/pcmC#D#c\x00', 0x80, 0x40000) r3 = syz_open_pts(r0, 0x20201) ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TIMER(r2, 0x40605346, &(0x7f0000000100)={0xa9, 0x1, {0x1, 0x0, 0xf3a5, 0x0, 0x80}}) fcntl$setstatus(r3, 0x4, 0x2800) setsockopt$IP_VS_SO_SET_ZERO(r1, 0x0, 0x48f, &(0x7f0000000200)={0x7f, @empty, 0x4e20, 0x0, 'wlc\x00', 0x22, 0x5, 0x76}, 0x2c) ioctl$TCXONC(r3, 0x540a, 0x0) write(r3, &(0x7f0000fd6000)='z', 0x1) r4 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000480)='IPVS\x00') sendmsg$IPVS_CMD_SET_SERVICE(r2, &(0x7f0000000340)={&(0x7f00000001c0)={0x10}, 0xc, &(0x7f0000000300)={&(0x7f0000000240)={0xa8, r4, 0xb20, 0x70bd2a, 0x25dfdbfb, {0x2}, [@IPVS_CMD_ATTR_DEST={0x34, 0x2, [@IPVS_DEST_ATTR_ADDR_FAMILY={0x8, 0xb, 0xa}, @IPVS_DEST_ATTR_INACT_CONNS={0x8, 0x8, 0x1f}, @IPVS_DEST_ATTR_PERSIST_CONNS={0x8, 0x9, 0xffffffff7fffffff}, @IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0x1}, @IPVS_DEST_ATTR_PERSIST_CONNS={0x8, 0x9, 0x599}, @IPVS_DEST_ATTR_PERSIST_CONNS={0x8, 0x9, 0xb032}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x5}, @IPVS_CMD_ATTR_SERVICE={0x50, 0x1, [@IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x81}, @IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x3d, 0x4}}, @IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv6=@loopback={0x0, 0x1}}, @IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0xb245}, @IPVS_SVC_ATTR_SCHED_NAME={0xc, 0x6, 'lblcr\x00'}, @IPVS_SVC_ATTR_NETMASK={0x8, 0x9, 0x4b}, @IPVS_SVC_ATTR_AF={0x8, 0x1, 0x2}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0xffff}]}, 0xa8}, 0x1, 0x0, 0x0, 0x8000}, 0x40000) setsockopt$bt_BT_POWER(r2, 0x112, 0x9, &(0x7f00000000c0)=0x232, 0x1) ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000698000)=0x3) ioctl$TCFLSH(r0, 0x540b, 0x2) 09:05:31 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)={{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3f000000}}) 09:05:31 executing program 2: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f06762070") r1 = perf_event_open(&(0x7f000001d000)={0x200000002, 0x70, 0x0, 0x108000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp\x00', 0x2, 0x0) getsockopt$inet_sctp_SCTP_RTOINFO(r2, 0x84, 0x0, &(0x7f0000000080)={0x0, 0x1, 0x1, 0xdfa4}, &(0x7f00000001c0)=0x10) getsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000200)={r3}, &(0x7f0000000240)=0xc) write$binfmt_elf32(r2, &(0x7f00000000c0)=ANY=[@ANYPTR64=&(0x7f0000000040)=ANY=[]], 0x8) mmap$binder(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x1000003, 0x1813, r2, 0x0) ioctl$ASHMEM_GET_NAME(r2, 0x81007702, &(0x7f0000000100)=""/130) getsockopt$inet_sctp_SCTP_DELAYED_SACK(r2, 0x84, 0x10, &(0x7f00000002c0)=@sack_info={r3, 0x7, 0x7f}, &(0x7f0000000300)=0xc) r4 = socket$nl_route(0x10, 0x3, 0x0) getsockname(r4, &(0x7f0000000000)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @loopback}}}, &(0x7f00000000c0)=0xf4) dup2(r1, r5) mmap(&(0x7f0000e00000/0x200000)=nil, 0x200002, 0x0, 0x211, r5, 0x0) 09:05:31 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x4020940d, &(0x7f0000000040)={'lo\x00', {0x2}}) 09:05:31 executing program 5: perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00003e0000)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100)=0x4000000011) r1 = openat$null(0xffffffffffffff9c, &(0x7f0000000000)='/dev/null\x00', 0x400, 0x0) bind$netlink(r1, &(0x7f0000000040)={0x10, 0x0, 0x25dfdbfe, 0x20}, 0xc) 09:05:31 executing program 1: r0 = socket$alg(0x26, 0x5, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000680)='mountstats\x00') ioctl(r0, 0x5, &(0x7f0000000080)="b87848dc2dcc86a46c653d04422a99") perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) bind$alg(r0, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(aes)\x00'}, 0x58) r2 = accept4$alg(r1, 0x0, 0x0, 0xfffffffffffffffc) sendfile(r2, r1, &(0x7f000025d000), 0x734) 09:05:31 executing program 0: semop(0x0, &(0x7f0000000100)=[{0x0, 0xfffffffffffefffc}], 0x1) semop(0x0, &(0x7f0000000080)=[{0x0, 0xffffffff}], 0x1) r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") semop(0x0, &(0x7f0000000000)=[{0x1, 0x7}], 0x1) r1 = semget$private(0x0, 0x4, 0x100) semop(r1, &(0x7f0000000040)=[{0x0, 0x0, 0x1000}, {0x3, 0x3, 0x1800}, {0x0, 0x6, 0x1000}], 0x3) 09:05:31 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)={{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000}}) 09:05:31 executing program 4: mkdir(&(0x7f00000001c0)='./file0\x00', 0x0) mount(&(0x7f0000000040)='./file0/file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000300)='ramfs\x00', 0x0, &(0x7f00000007c0)) mkdir(&(0x7f0000000100)='./file0/file0\x00', 0x0) r0 = syz_open_dev$sndpcmp(&(0x7f00000000c0)='/dev/snd/pcmC#D#p\x00', 0x0, 0x200) getsockopt$inet_sctp6_SCTP_ASSOCINFO(0xffffffffffffff9c, 0x84, 0x1, &(0x7f0000000140)={0x0, 0x400, 0x20, 0x5, 0x100000001, 0x5}, &(0x7f0000000200)=0x14) getsockopt$inet_sctp_SCTP_LOCAL_AUTH_CHUNKS(r0, 0x84, 0x1b, &(0x7f00000003c0)={r1, 0xea, "bd515bafdb013c129111fbec714c81e14e562c0d14c4961d031cce5bc4c1976ce21ec8101b69d99d8bc4ab2f5e4b1322c05a63d5c038ed5fdec15312eb3dda7593f5da13294a139c296352dff1d399d581d2484b79616fad50548ac6422ad144d741da7ee892d3b2e70f36f85ae7460ee517b1631d4613d23eb149428757b7f80003021727e1826164b21006054a2f9a843f7c3905d62a2cc45f05800b79a382be4f711b0d0a5eae5894cbf603e5074a4ac5ed21584b7dc45466f9e979c56f4704c25967bd56ffe610d56d4339e197675cf079d319c5f6d1a86e2dc27a563f8c10f9aa41a155719a1b72"}, &(0x7f0000000240)=0xf2) mount(&(0x7f0000000380)='.', &(0x7f0000000880)='./file0/file0\x00', &(0x7f0000753000)='mslos\x00', 0x5010, &(0x7f0000000640)) openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x101800, 0x1) umount2(&(0x7f0000000180)='./file0\x00', 0x0) socket$inet6_sctp(0xa, 0x5, 0x84) 09:05:31 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)={{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}}) 09:05:31 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x8903, &(0x7f0000000040)={'lo\x00', {0x2}}) 09:05:31 executing program 6: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f00000002c0)="025cc83d6d345f8f762070") r1 = socket$inet_tcp(0x2, 0x1, 0x0) r2 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040)='/dev/rtc0\x00', 0x40, 0x0) ioctl$TIOCSLCKTRMIOS(r2, 0x5457, &(0x7f0000000080)) ioctl$sock_inet_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f0000000140)={0x0, {0x2, 0x0, @local={0xac, 0x14, 0x14, 0xaa}}, {0x2, 0x0, @multicast1=0xe0000001}, {0x2, 0x0, @rand_addr}, 0x0, 0x0, 0x0, 0x0, 0x3, &(0x7f0000000000)='erspan0\x00'}) setsockopt$inet_tcp_int(r1, 0x6, 0x10000000013, &(0x7f0000d06000)=0x1, 0x4) connect$inet(r1, &(0x7f00000000c0)={0x2, 0x0, @loopback=0x7f000001}, 0x10) setsockopt$inet_tcp_int(r1, 0x6, 0x16, &(0x7f0000000100), 0x18a) 09:05:31 executing program 5: ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000000)) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000040)=0x0) r1 = syz_open_procfs(r0, &(0x7f0000002500)='net/protocols\x00') ioctl$VT_GETMODE(r1, 0x5601, &(0x7f0000000080)) r2 = msgget$private(0x0, 0xa0) socket$vsock_dgram(0x28, 0x2, 0x0) msgrcv(r2, &(0x7f00000000c0)=ANY=[@ANYBLOB="000000000000000000000000000000dd3025000000000000002000"], 0x1b, 0x3, 0x800) readv(r1, &(0x7f0000000000), 0x2) 09:05:31 executing program 1: r0 = socket$inet6_sctp(0xa, 0x3, 0x84) r1 = syz_open_dev$midi(&(0x7f0000000000)='/dev/midi#\x00', 0x203, 0x1) ioctl$TCFLSH(r1, 0x540b, 0x400) bind$can_raw(r0, &(0x7f00000001c0)={0x1d}, 0x10) 09:05:31 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)={{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}}) 09:05:31 executing program 4: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e6}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = memfd_create(&(0x7f0000002600)='vmnet0wlan1]\x00', 0x0) write$binfmt_elf32(r0, &(0x7f0000000040)=ANY=[@ANYBLOB="003440d80cff7f454c4600000000000000000000e5000300030000000000000000ffffff7b0001000000000000000008200001860cc58054c1932739106ced49222074f903d4a7e3dfaed39565ed9eb3c6e8942df2e97414997d7a85d0d213990200e5d7bbe846503dc8ede2a6cfb3e26c26aa441ff7ea346a8236f422193ba0842e5eb559bb894ce25d42f62b06"], 0x2d) execveat(r0, &(0x7f0000000000)='\x00', &(0x7f0000000040), &(0x7f0000000500), 0x800) 09:05:31 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x8934, &(0x7f0000000040)={'lo\x00', {0x2}}) 09:05:31 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)={{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfeffffff00000000}}) 09:05:32 executing program 2: madvise(&(0x7f0000003000/0x1000)=nil, 0x1000, 0x2) prctl$getreaper(0x100400000000000, &(0x7f0000000080)) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, &(0x7f0000bf3000)) madvise(&(0x7f0000003000/0x3000)=nil, 0x3000, 0x0) 09:05:32 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @broadcast=0xffffffff}, 0x10) sendto$inet(r0, &(0x7f0000000140), 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x4e23}, 0x10) write$binfmt_script(r0, &(0x7f0000000000)={'#! ', './file0', [{0x20}, {0x20, '+%'}, {0x20, '&-'}, {0x20, "27265e2fce5c232d276e6f646576"}], 0xa, "2d9546cc1524e8fb52debdf4fa30b5c9ccbb6db3e6b7f7577d05656d49bb65950feecff21ccd831c5bc0f3e0f62ada8b6145f6d3ccc502b150774905c7cf95fe341c8d91cac8b429cb410377da227e013560bb935e495c8f3ff3fd3cfd00fabcee56ea42611c65e3bca507b8045c3415642d0a353e1718"}, 0x98) setsockopt$sock_int(r0, 0x1, 0x9, &(0x7f0000000140), 0x4) 09:05:32 executing program 5: syz_mount_image$jfs(&(0x7f00000000c0)='jfs\x00', &(0x7f0000000100)='./file0\x00', 0x788, 0x7, &(0x7f0000000640)=[{&(0x7f0000000140)="8ff81df9ef0bac93b94f7e4ed9df4d7937af7125ca96e1487a31bb6e9975eac65b7faf2c3655d0617aaadaed0b60706b73d66b9280b7492148fa888c74515d7bc086239b02b7602564a4d41b7ea625840836f37be1208c166ae7c353c20819b1a9b0b0719e202d557656d533ecb7851e9f250a5a30502279c0e2b26414043250fd23aac9e903749df4419ba7901b7bf08be6b5ae97f36ed4b1dc77878bee9518485ef87cc4cf3bcc625ec1d7c59d8bcce6bddcbea00d1788eeb12c5df99ccae5cd899c1f68a6b86601d7af8bb7c752532a867882a49d08a88d2ae87351b0575c400c8a63", 0xe4, 0xfffffffffffffffd}, {&(0x7f0000000240)="1fceef2f0e8a51785ddda7c36a87233cc21d83bcc79e5b507472c8c9e1f29533dff1e92ec766078acdbb56f992d76b62afd2cf629c046f0e2fe53a5c87c2bf70bd342d909aca7fcb7f7522a8eefef4a50eddd9b3dda096710d865a5c687611b333c6928ce5989e0c66d5f61cb56ef8b20c6df899391e1d1e531bb1f8062ad3d8eee8b2b376c269425b713b0908c53cfac8ae", 0x92, 0x6}, {&(0x7f0000000300)="95ee6e9bcda3cdc9dc9271e56d49c945fa5f60ae9f7f606ff3225cd0748cbe5ee1b6c68d5d28a02ac821e84a41155bdc1203553b89bf8dd86954a0e04b5efefb434bc0a14198752c6a53b9c85fe678cf158b6543594bb8", 0x57, 0x7fff}, {&(0x7f0000000380)="a085f2cff4aab84877d035233cbd23a58746fabc8a6aa89ef5e2b6be7694038db4eeb5ca393107d416", 0x29, 0x3}, {&(0x7f00000003c0)="4af79297f1eb677ca037eaf373ad03164f1787c80fd6300b1c2d798c03f488b98b4a3365bb4c55046ed19b41e43f6f06c6ce20be339415956e20a17495a5ac972cac7fadba9e0387", 0x48, 0x80000000}, {&(0x7f0000000440)="b598fb728189d604ec478cecba72d1e89043e9e9fdf97337e5417164d2780ff6719679b1419c84b2a02906291edb09a2e8a8d84d388fe3c82b593e2eefeca6f36d6548b2c0851343547ced9948e1d9ab803a400242ddf844ebf4edd03b99f3f2c5cc7b3231abb1df95c0c520dabe807168582c936d3962244ada416f8609c5839142b9180003389be75f1b5689d530c8a0d7377860a4a6862fd003beca3b841b1b214c163688ecc96975ba80418b5d51df4c54fbcd5328e233311056448dc5dae4695f384f58ed3e2b2cefb145c6d7898fd2bc24d0b7635bf3907f2ae460", 0xde}, {&(0x7f0000000540)="fbf4a7968e9f8a70f3cac17f24acc7819d1c38d1313d25305c4408e8a11f47779c9198ba8526066d70dd23688254516c146141679b1a5c4e577640f6c028234584bb33a8a2759ff56d438fc1f00c9c59309b7858af07e0dcfc7ca014f62e32aaa006f47c5f20d1bbd58445ffd43a3ece76f30cf660eae63381fff7c9d355f1fb4808cb1cdadd9f84b25c5d35213eb63c3971edda5d6f35b6a53b95c8fe479a2e3bdc2fed276cb255f4538fc88ba219c79f83990ada827727fe61ef26828efe06becc47b1f8f1eb090c51dff82d25a251bf4879a2d3ca5a608ce95b4d2298149d0eeb9e0f9e85c91ea4743eaafaf4c57ca9", 0xf1, 0x4}], 0x4000, &(0x7f0000000700)={[{@discard='discard', 0x2c}]}) r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000000)=@broute={'broute\x00', 0x20, 0x1, 0xa78, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20001780], 0x0, &(0x7f0000000080), &(0x7f0000001780)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff010000000500000000000000000073797a6b616c6c657231000000000000626f6e645f736c6186079f13a50187c874756e6c30000000000000000000000076657468310000000000000000000000ffffffffffff000000000000aaaaaaaaaaaa000000000000000070090000b8090000e80900006d61726b5f6d00000000000000000000000000000000000000000000000000001800000000000000000000000000000000000000000000000001000000000000616d6f6e6700000000000000000000000000000000000000000000000000000098080000000000000001000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000030000000000100000000000000000000000000000000000e00000020000000000000000ac1414bb000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b300000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000070000000000000000000000ac1414aa00000000000000007f0000010000000000000000ac1414aa0000000000000000ac1414bb0000000000000000000000000000000000000000e00000010000000000000000ffffffff000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a310000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001000000fcffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000001000000feffffff00000000"]}, 0xaf0) 09:05:32 executing program 4: r0 = socket$inet_sctp(0x2, 0x1, 0x84) sendto$inet(r0, &(0x7f0000000100)='H', 0x1, 0x0, &(0x7f0000000300)={0x2, 0x0, @local={0xac, 0x14, 0xffffffffffffffff, 0xaa}}, 0x10) sendto$inet(r0, &(0x7f000026cfff)="c6", 0x1, 0x0, &(0x7f000052a000)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff, 0xbb}}, 0x10) shutdown(r0, 0x100000000002) r1 = syz_open_procfs(0x0, &(0x7f0000000040)="2f65786500000000000035abe1e80d903e0d717ac1889a45e581c9e14a5c8f95f5d2968ae8c767e9d18fd69a") mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x800000000004, 0x20011, r1, 0x0) getsockopt$inet_sctp_SCTP_RTOINFO(r0, 0x84, 0x6d, &(0x7f0000000200), &(0x7f0000000240)=0x10) sendmsg$nl_generic(r1, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20200}, 0xc, &(0x7f0000000080)={&(0x7f0000000340)={0x11a8, 0x41, 0x0, 0x70bd2b, 0x25dfdbff, {0x1b}, [@generic="0e014fe0606ad789b7ecc57bddb6ce76c1d3", @typed={0x8, 0x8a, @fd=r0}, @generic="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", @generic="e4536400596bbf151a1a7809a600861fb0c25f78588774ca8f5c14", @nested={0x6c, 0x50, [@typed={0x8, 0x94, @fd=r0}, @generic="983d035fbe476c3bc9003b4e45158b153aa65b4075264c0c1ee7ca56c5aa098372d074ac1de7d3fe6a30b5a1c76a790ca682f510d8c59388102a2c3f1964558fec72bdb546f97c7038b4", @typed={0x8, 0x6d, @ipv4=@rand_addr}, @typed={0x8, 0x79, @u32=0x4}, @typed={0x4, 0x3a}]}, @typed={0x8, 0x7f, @u32=0x7}, @typed={0x4, 0x39}, @generic="0f3351534b3acc714839d14c1e0c0a595fe692f16ba47a528b9d05779bd3ff35eca7432b7f18ba61e4276395376aa172f9cf6064987d165b18779374cb1154b20b24d8f7748029f8ef608e70807990efa938985cf81fc1ad41bbef6a6ffcdd21948fc06e0c4672760873f3d6d98e74e36c30de500950d6661f3ece00dab7786f5982a47e51d64410f3787488cc82072a1402d67f3897a22ef396caafb15f0a757d2338481c298e07eb0f14a2379873ec15a760cce6e264d7089d866ac6156c85b659a5a119adec891613fb97c4aa35dd712685b6ce459e88b520909e218c119c019cdfe4a716"]}, 0x11a8}, 0x1}, 0x20000080) 09:05:32 executing program 0: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f00000002c0)="025cc83d6d345f8f762070") mkdir(&(0x7f0000000080)='./control\x00', 0x0) setsockopt$inet_sctp6_SCTP_INITMSG(r0, 0x84, 0x2, &(0x7f0000000100)={0x9, 0x0, 0x63, 0xffff}, 0x8) r1 = open(&(0x7f0000028000)='./control\x00', 0x2100, 0x0) ioctl$FS_IOC_FSSETXATTR(r1, 0x401c5820, &(0x7f0000000040)={0x200}) mknodat(r1, &(0x7f0000000140)='./control\x00', 0x0, 0x0) ioctl$RTC_RD_TIME(r1, 0x80247009, &(0x7f00000000c0)) renameat2(r1, &(0x7f00000003c0)='./control\x00', r1, &(0x7f0000000000)='./file0\x00', 0x0) 09:05:32 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x8907, &(0x7f0000000040)={'lo\x00', {0x2}}) 09:05:32 executing program 6: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = socket$inet_sctp(0x2, 0x800000000001, 0x84) connect$inet(r1, &(0x7f0000f6fff0)={0x2, 0x4e23, @local={0xac, 0x14, 0xffffffffffffffff, 0xaa}}, 0x10) r2 = openat$mixer(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/mixer\x00', 0x40, 0x0) ioctl$RNDGETENTCNT(r2, 0x80045200, &(0x7f00000002c0)) clock_gettime(0x0, &(0x7f0000000140)={0x0, 0x0}) setsockopt$IP_VS_SO_SET_DELDEST(r1, 0x0, 0x488, &(0x7f00000001c0)={{0x8f, @broadcast=0xffffffff, 0x4e23, 0x3, 'rr\x00', 0x1, 0x8, 0x5b}, {@multicast2=0xe0000002, 0x4e24, 0x2000, 0xffffffff80000001, 0x75}}, 0x44) mq_timedreceive(r2, &(0x7f0000000100)=""/4, 0x4, 0x2, &(0x7f0000000180)={r3, r4+30000000}) listen(r1, 0x11000000000b) r5 = accept(r1, &(0x7f00000013c0)=ANY=[], &(0x7f0000123000)) getsockopt$inet_sctp6_SCTP_PR_SUPPORTED(r0, 0x84, 0x71, &(0x7f0000000000)={0x0, 0x1}, &(0x7f0000000040)=0x8) getsockopt$inet_sctp6_SCTP_DELAYED_SACK(r5, 0x84, 0xd, &(0x7f0000000080)=@assoc_value={r6, 0x8}, &(0x7f0000000240)=0xfffffffffffffcbd) 09:05:32 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)={{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3f00000000000000}}) 09:05:32 executing program 2: ioctl(0xffffffffffffffff, 0x8912, &(0x7f0000000000)="025cc83d6d345f8f762070") r0 = socket(0x40000000015, 0x0, 0x4000000000) bind$inet(r0, &(0x7f00000001c0)={0x2, 0x0, @rand_addr=0x4}, 0xffffffffffffff58) ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000040)) close(r0) 09:05:32 executing program 1: mkdir(&(0x7f0000fd5ff8)='./file0\x00', 0x0) mount(&(0x7f0000000080)='./file0\x00', &(0x7f00000015c0)='./file0\x00', &(0x7f0000000280)='configfs\x00', 0x0, &(0x7f0000000040)) r0 = socket$inet6(0xa, 0x1000000000002, 0xffffffffffffffff) ioctl(r0, 0x1000000000008912, &(0x7f0000000180)="025cc83d6d345f8f762070") r1 = open(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0) fchmod(r1, 0x0) getresuid(&(0x7f0000000000), &(0x7f0000000040)=0x0, &(0x7f0000000100)) fstat(r0, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) write$FUSE_ATTR(r1, &(0x7f00000002c0)={0x78, 0x0, 0x8, {0x5, 0x2, 0x0, {0x0, 0x100, 0x10001, 0x3, 0xf38, 0x0, 0xba, 0xf3d, 0x0, 0x5, 0x1, r2, r3, 0xfff, 0x2}}}, 0x78) 09:05:32 executing program 5: r0 = socket$inet6(0xa, 0xa, 0x200) ioctl(r0, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") r1 = socket$alg(0x26, 0x5, 0x0) bind$alg(r1, &(0x7f00009f3fa8)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-serpent-sse2\x00'}, 0x58) setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f00003c1000), 0x0) r2 = accept$alg(r1, 0x0, 0x0) syncfs(r2) sendmmsg(r2, &(0x7f00000036c0)=[{{0x0, 0x0, &(0x7f0000000340)=[{&(0x7f00000007c0)="a122ed4387349a1be3a21a0f3c044dd420772bb20a446d10d1f85eda2cc919a3c7547f76b2fda9c3fa153a8830bac045d40f5897c7ab6dbbbcdd2bb8da5db1be4f273fe76b1168e0f48df5ff61edf95e45d44db5595539068aab79172651db4d02a4a79d704a5823e4fb181199fe23d4de6637c3fa3484727fa0ee565893db8e", 0x80}], 0x1, &(0x7f0000000500)}}], 0x1, 0x0) r3 = fcntl$dupfd(r0, 0x406, r2) setsockopt$bt_BT_POWER(r3, 0x112, 0x9, &(0x7f0000000000), 0x1) recvmsg(r2, &(0x7f0000003580)={&(0x7f00000003c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @mcast1}}}, 0x80, &(0x7f00000034c0)=[{&(0x7f0000003440)=""/112, 0x200034b0}], 0x1, &(0x7f0000003500)=""/106, 0x6a}, 0x0) 09:05:32 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)={{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000000000000}}) 09:05:32 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x5421, &(0x7f0000000040)={'lo\x00', {0x2}}) 09:05:32 executing program 2: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") syz_mount_image$reiserfs(&(0x7f0000000140)='reiserfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000010000)="00084000998681ff130200001200100000030100000200000001000084811f4ce10000001e001e00000000000010ec0302008100526549734572324673", 0x3d, 0x10000}], 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB='\x00']) socket$inet6(0xa, 0xf, 0x9) 09:05:32 executing program 1: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="025cc83d6d345f8f762070") r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ptmx\x00', 0x2, 0x0) writev(r1, &(0x7f0000003440)=[{&(0x7f0000000000)="6816", 0x2}], 0x1) ioctl$TCSETSF(r1, 0x5404, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x6}) ioctl$TCSETS(r1, 0x40045431, &(0x7f00003b9fdc)) r2 = syz_open_pts(r1, 0x422000) ioctl$TCSETA(r2, 0x5406, &(0x7f0000000080)={0x0, 0x0, 0x0, 0xfffffffffffffffe}) ioctl$TCSETSF(r2, 0x5412, &(0x7f0000000040)) 09:05:32 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x8917, &(0x7f0000000040)={'lo\x00', {0x2}}) 09:05:32 executing program 0: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = syz_open_dev$binder(&(0x7f0000000100)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) mmap(&(0x7f0000001000/0x3000)=nil, 0x3000, 0x0, 0x20011, r1, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) sendto$inet6(r2, &(0x7f0000000140), 0x0, 0x8000, &(0x7f0000000180)={0xa, 0x4e20, 0x0, @mcast1={0xff, 0x1, [], 0x1}}, 0x1c) r3 = syz_open_procfs(0x0, &(0x7f0000000440)='pagemap\x00') sendfile(r2, r3, &(0x7f0000000100), 0x4) write$binfmt_elf32(r2, &(0x7f0000000cc0)=ANY=[@ANYBLOB="7f454c460000000000c6a856490e5702e500000000000000000000003800000000000000000000000000200000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000500000000005000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000010000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000"], 0x341) 09:05:32 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)={{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3f000000}}) 09:05:32 executing program 5: futex(&(0x7f0000000080), 0x6, 0x0, &(0x7f0000000100)={0x400000000}, &(0x7f00000000c0)=0x800000000, 0xfffffffffffffffc) [ 142.740919] REISERFS (device loop2): found reiserfs format "3.6" with standard journal [ 142.749122] REISERFS warning (device loop2): reiserfs_fill_super: Filesystem cannot be mounted because it is bigger than the device [ 142.761412] REISERFS warning (device loop2): reiserfs_fill_super: You may need to run fsck or increase size of your LVM partition [ 142.773324] REISERFS warning (device loop2): reiserfs_fill_super: Or may be you forgot to reboot after fdisk when it told you to [ 142.829717] REISERFS warning (device loop2): reiserfs_fill_super: Cannot allocate commit workqueue 09:05:33 executing program 4: r0 = socket$netlink(0x10, 0x3, 0xc) writev(r0, &(0x7f0000000240)=[{&(0x7f0000000100)="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", 0x1f}], 0xe1) openat$mixer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mixer\x00', 0x80001, 0x0) 09:05:33 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)={{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3f00000000000000}}) 09:05:33 executing program 1: r0 = syz_open_dev$loop(&(0x7f00000000c0)='/dev/loop#\x00', 0x6, 0x800) r1 = memfd_create(&(0x7f0000000140)="74086e750000000000000000008c00", 0x0) pwritev(r1, &(0x7f0000000340)=[{&(0x7f00000001c0)='\'', 0x1}], 0x1, 0x1081806) ioctl$LOOP_CHANGE_FD(r0, 0x4c00, r1) memfd_create(&(0x7f0000000040)='selfsystem-GPL,&\x00', 0x2) sendfile(r0, r0, &(0x7f0000000000), 0x2000005) [ 143.399549] netlink: 11 bytes leftover after parsing attributes in process `syz-executor4'. [ 143.413742] netlink: 11 bytes leftover after parsing attributes in process `syz-executor4'. [ 143.418376] IPVS: set_ctl: invalid protocol: 143 255.255.255.255:20003 [ 143.574088] IPVS: set_ctl: invalid protocol: 143 255.255.255.255:20003 09:05:33 executing program 6: r0 = timerfd_create(0x0, 0x0) unshare(0x400) timerfd_settime(r0, 0x0, &(0x7f00000a5ff0), &(0x7f000010bff0)) r1 = syz_open_dev$audion(&(0x7f0000000300)='/dev/audio#\x00', 0x1, 0x80) ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_CLIENT(r1, 0xc04c5349, &(0x7f0000000340)={0x2, 0x7f, 0x400}) membarrier(0x8, 0x0) sendmsg$nl_netfilter(r0, &(0x7f00000002c0)={&(0x7f0000000000)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000040)={0x220, 0xa, 0x1, 0x1, 0x70bd27, 0x25dfdbfc, {0x5, 0x0, 0x7}, [@typed={0x54, 0x82, @binary="dc0ea3b0a62634607dd7dbdcf530119bb99c212c6445a87786393190e42afdd2d0d4d713a4203de8f41bda0405ca222a54a13017b664fd713da90069c482e8ace27a6f9192d534f9bd461692b648fc"}, @nested={0x1b8, 0x4e, [@typed={0x18, 0x94, @str='posix_acl_access\x00'}, @generic, @generic="1c7019ae95f16c531b6a49429c491e7bd1a75bbd2d3f983a0392427dacc6c58a95c80e5fbe4be2cfea8b7c6838ac30c405969eca1b4dcfaf7a2e70e2400093e9d0e2c6a653f4ea4ff247e5b6fce165a1bba76a899212972bf6fe71a2cce8a6ffd424ba2ae1f942cc5696d32d9de45fcb2e533ee7f30fe64f478d8f5926b6898de97a2fcce7b467aeaacda24ff93c650856e3bfb4d7e8c50dc81ff217896761307a986eaa474b30479285efc2744140ae40e13602", @generic="41fdd69e1938329f1bd5617503529906b0712adaf12918fd3adc53ba747204a6fcd611c89d456d14ed1be068198766e9b51ad7eefb5a3cbf0cc6ad8e98dd7aef6284080b37ab0ac400f45834df036b3be76d3f1e320f9a80677181c1f7fbddaccaafe78b3a6f0b4381b08ae68fe475dc93ff1ae30920dcc0f1831df5edcdb96864e0356abe0c4f42c8ad4d1d781c037a001e7fda86faa9429c6c06a0878588ab432bc1f5ab59b2af64bc21792d711f9c5aad5dc5f3f50b5da7704a190a4041fc19e459a9bb6149360cf258f44f33dece853a9d4854600a8cfe254b6de43aae141688d98f4bae67"]}]}, 0x220}, 0x1, 0x0, 0x0, 0x8044}, 0x1) 09:05:33 executing program 0: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/cuse\x00', 0x8000, 0x0) getsockopt$IPT_SO_GET_INFO(r0, 0x0, 0x40, &(0x7f00000000c0)={'raw\x00'}, &(0x7f0000000140)=0x54) setrlimit(0x400000000000007, &(0x7f0000000040)) openat$dsp(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp\x00', 0x2000, 0x0) socket(0x1e, 0x805, 0x0) 09:05:33 executing program 5: r0 = socket$inet_udp(0x2, 0x2, 0x0) connect$netlink(r0, &(0x7f0000000080)=@proc={0x10, 0x0, 0x25dfdbfd, 0x40000}, 0xa) setsockopt$sock_int(r0, 0x1, 0x3f, &(0x7f0000000000)=0x9699, 0x4) 09:05:33 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0xc020660b, &(0x7f0000000040)={'lo\x00', {0x2}}) 09:05:33 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ptmx\x00', 0x0, 0x0) r1 = syz_open_dev$sndpcmp(&(0x7f00000000c0)='/dev/snd/pcmC#D#p\x00', 0x6, 0x101000) ioctl$SNDRV_CTL_IOCTL_CARD_INFO(r1, 0x81785501, &(0x7f0000000140)=""/89) read(r0, &(0x7f0000000040)=""/11, 0xb) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100)) r2 = pkey_alloc(0x0, 0x3) pkey_free(r2) r3 = epoll_create1(0x0) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r0, &(0x7f0000000080)) r4 = gettid() kcmp$KCMP_EPOLL_TFD(r4, r4, 0x7, r3, &(0x7f0000000000)={r3, r0, 0xfeffffff}) r5 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r5, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r6 = gettid() timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, &(0x7f0000040000)) tkill(r6, 0x1000000000016) 09:05:33 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)={{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}}) 09:05:33 executing program 4: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") socket$pptp(0x18, 0x1, 0x3) socketpair$inet_dccp(0x2, 0x6, 0x0, &(0x7f0000000000)) openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/vhost-vsock\x00', 0x2, 0x0) r1 = dup2(0xffffffffffffffff, r0) getsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000000040)={{{@in=@broadcast, @in6=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@multicast2}, 0x0, @in=@broadcast}}, &(0x7f0000000140)=0xe8) connect$packet(r1, &(0x7f0000000180)={0x11, 0xf, r2, 0x1, 0x4, 0x6, @remote={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xbb}}, 0x14) 09:05:33 executing program 1: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000080)={0x73, 0x79, 0x7a}, 0x0, 0x0, 0xfffffffffffffffb) keyctl$setperm(0x5, r1, 0x24000008) keyctl$get_security(0x11, r1, &(0x7f00000000c0)=""/207, 0xcf) 09:05:33 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)={{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000000000000}}) 09:05:33 executing program 5: r0 = syz_open_dev$mice(&(0x7f0000000180)='/dev/input/mice\x00', 0x0, 0x80000000) ioctl$SNDRV_SEQ_IOCTL_QUERY_SUBS(r0, 0xc058534f, &(0x7f00000000c0)={{0x4, 0x9}, 0x0, 0xde, 0xfffffffffffffff8, {0x2946}, 0x2800000000000000}) r1 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r1, &(0x7f0000000140)={&(0x7f0000000040)={0x10}, 0xc, &(0x7f0000000000)={&(0x7f0000000200)=@newlink={0x28, 0x10, 0xc362e63b3f31ba5f, 0x0, 0x0, {}, [@IFLA_GROUP={0x8, 0x1b, 0x4000000}]}, 0x28}, 0x1}, 0x0) ioctl$GIO_CMAP(r0, 0x4b70, &(0x7f0000000080)) 09:05:33 executing program 0: ioctl$EVIOCSMASK(0xffffffffffffffff, 0x40104593, &(0x7f0000000040)={0xfff7fffffffffffe, 0xffffffffffffff17, &(0x7f0000000080)}) r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x210640, 0x0) setsockopt$netlink_NETLINK_PKTINFO(r0, 0x10e, 0x3, &(0x7f0000000080)=0x9, 0x4) 09:05:33 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x5460, &(0x7f0000000040)={'lo\x00', {0x2}}) 09:05:33 executing program 1: syz_open_dev$dspn(&(0x7f0000000000)='/dev/dsp#\x00', 0x3ff, 0x101000) syz_emit_ethernet(0x66, &(0x7f0000000040)={@random="5ebf98864f8e", @random="b42d87402e52", [], {@ipv6={0x86dd, {0x0, 0x6, "06f526", 0x30, 0x3a, 0x4001, @remote={0xfe, 0x80, [], 0xffffffffffffffff}, @mcast2={0xff, 0x2, [], 0x1}, {[], @icmpv6=@pkt_toobig={0xffffff82, 0x0, 0x0, 0x0, {0x0, 0x6, "0a07ec", 0x0, 0x0, 0x0, @remote={0xfe, 0x80, [], 0xffffffffffffffff}, @ipv4={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2], [0xff, 0xff], @dev={0xac, 0x14}}}}}}}}}, &(0x7f00000016c0)) 09:05:33 executing program 4: pipe2(&(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) mmap(&(0x7f0000011000/0x1000)=nil, 0x1000, 0x1, 0x32, 0xffffffffffffffff, 0x0) r2 = userfaultfd(0x0) ioctl$UFFDIO_API(r2, 0xc018aa3f, &(0x7f0000bc8000)={0xaa}) ioctl$UFFDIO_REGISTER(r2, 0xc020aa00, &(0x7f0000000080)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1}) r3 = creat(&(0x7f0000000040)='./file0\x00', 0x0) ioctl$SNDRV_SEQ_IOCTL_GET_PORT_INFO(r0, 0xc0a85322, &(0x7f0000000180)) write$sndseq(r3, &(0x7f0000011fd2)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {0x2}, @time=@time={0x77359400}}], 0x30) ioctl$LOOP_SET_FD(r3, 0x4c00, r0) ioctl$RTC_VL_CLR(r1, 0x7014) fallocate(r3, 0x3, 0x0, 0x100000000) creat(&(0x7f0000000000)='./file0\x00', 0x0) ioctl$LOOP_CHANGE_FD(r1, 0x4c06, r0) dup2(r0, r2) 09:05:33 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)={{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfeffffff00000000}}) 09:05:33 executing program 6: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) r1 = syz_open_dev$midi(&(0x7f0000000040)='/dev/midi#\x00', 0x1e55, 0x40) ioctl$SNDRV_SEQ_IOCTL_GET_PORT_INFO(r1, 0xc0a85322, &(0x7f0000000080)) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r4, 0xc008ae88, &(0x7f00000004c0)={0x7b, 0x0, [0x40000021]}) 09:05:33 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x8982, &(0x7f0000000040)={'lo\x00', {0x2}}) 09:05:33 executing program 0: r0 = socket$inet6(0xa, 0x2, 0x0) setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000f59ffc)=0x4, 0x4) bind$inet6(r0, &(0x7f0000000480)={0xa, 0x4e20, 0x0, @loopback={0x0, 0x1}}, 0x1c) r1 = socket$inet6(0xa, 0x2, 0x0) setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000d1c000)=0x6, 0x4) setsockopt$inet6_int(r1, 0x29, 0x1a, &(0x7f0000000080)=0xdf5, 0x4) bind$inet6(r1, &(0x7f0000f67fe4)={0xa, 0x4e20}, 0x1c) r2 = syz_open_dev$dmmidi(&(0x7f0000000000)='/dev/dmmidi#\x00', 0x9, 0x40881) ioctl$RTC_WIE_OFF(r2, 0x7010) 09:05:33 executing program 1: syz_emit_ethernet(0x1, &(0x7f00000002c0)=ANY=[@ANYBLOB="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"], &(0x7f00000000c0)={0x0, 0x0, [0x0, 0x50a, 0x0, 0xfffffffffffffffd]}) 09:05:33 executing program 5: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = socket$alg(0x26, 0x5, 0x0) bind$alg(r1, &(0x7f0000002a40)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts-cast6-avx\x00'}, 0x58) setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000080)="b7f2288a911993f0265df5cf1cdd8b55b062950b86bc01abc8464d4f8a906151", 0x20) setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000140), 0x0) r2 = accept$alg(r1, 0x0, 0x0) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000040)={0x0, 0x0}, &(0x7f00000000c0)=0xc) quotactl(0x7fff, &(0x7f0000000000)='./file0\x00', r3, &(0x7f0000000100)="f4c9b4448b05e5bdc4a887f052d7608d2530bf") sendmsg$alg(r2, &(0x7f0000001380)={0x0, 0x0, &(0x7f00000012c0), 0x0, &(0x7f0000001300)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}, 0x0) write$binfmt_script(r2, &(0x7f0000000300)=ANY=[], 0xffffffaa) recvmsg(r2, &(0x7f0000001480)={0x0, 0x0, &(0x7f00000013c0)=[{&(0x7f00000002c0)=""/4096, 0x1116c}], 0x1, &(0x7f0000001400)=""/123, 0x7b}, 0x0) 09:05:34 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000002000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x0, &(0x7f0000000000), 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x10201, 0x0, 0x0, 0x2000, &(0x7f0000006000/0x2000)=nil}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 09:05:34 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)={{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff00000000}}) 09:05:34 executing program 6: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000080)={0x20000}) ioctl$KVM_RUN(r2, 0x8090ae81, 0x70a000) 09:05:34 executing program 1: r0 = syz_open_dev$sndpcmc(&(0x7f0000004fee)='/dev/snd/pcmC#D#c\x00', 0x0, 0x0) r1 = syz_open_dev$sndpcmc(&(0x7f0000000080)='/dev/snd/pcmC#D#c\x00', 0x0, 0x0) fstat(r1, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) sendmmsg$unix(0xffffffffffffffff, &(0x7f000000a000)=[{&(0x7f000000a000)=@abs, 0x6a, &(0x7f000000d000), 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="20000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000024a37ae0505edfed79f950b654986ded90870942cdb2ff037b63f710030d654e0a8f63b1211d11e9", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000020000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000020000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="0000000020000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=r2, @ANYBLOB='\x00\x00\x00\x00'], 0xa0}], 0x1, 0x0) fcntl$getownex(r1, 0x10, &(0x7f0000000000)={0x0, 0x0}) syz_open_procfs(r3, &(0x7f0000000040)='net/icmp6\x00') ioctl$KVM_S390_INTERRUPT_CPU(0xffffffffffffffff, 0x4010ae94, &(0x7f0000002000)={0x0, 0x15}) ioctl(r0, 0xc1004110, &(0x7f0000001f64)) 09:05:34 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x2, &(0x7f0000000040)={'lo\x00', {0x2}}) 09:05:34 executing program 0: r0 = memfd_create(&(0x7f0000000040)="00000600000000000000", 0x0) write$binfmt_elf64(r0, &(0x7f0000000080)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x3e, 0x0, 0x0, 0x40, 0x0, 0x0, 0x0, 0x38, 0x2}, [{0x3, 0x0, 0x0, 0x0, 0x0, 0x7f}]}, 0x2ed) syz_genetlink_get_family_id$ipvs(&(0x7f0000000100)='IPVS\x00') execveat(r0, &(0x7f0000000000)='\x00', &(0x7f0000000280), &(0x7f0000000500), 0x1000) 09:05:34 executing program 4: mkdir(&(0x7f0000000040)='./file0/file0\x00', 0x91) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000005c0)={0x0, 0x0}) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000280)='./cgroup.cpu\x00', 0x200002, 0x0) fchdir(r0) ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(r0, 0x40405515, &(0x7f0000000000)={0x1, 0x0, 0x1, 0xd11, 'syz0\x00', 0x1000}) sendmmsg(r0, &(0x7f0000008600)=[{{0x0, 0x0, &(0x7f0000003140)}}, {{&(0x7f00000072c0)=@un=@file={0x1, './file0\x00'}, 0xa, &(0x7f0000007380), 0x0, &(0x7f0000000600)}}], 0x2, 0x0) 09:05:34 executing program 5: r0 = openat$ion(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ion\x00', 0x0, 0x0) ioctl$ION_IOC_ALLOC(r0, 0xc0184900, &(0x7f0000009fe8)={0xeffb, 0x2, 0x0, 0xffffffffffffffff}) mmap(&(0x7f0000004000/0x4000)=nil, 0x4000, 0x0, 0x6012, r1, 0x2000) r2 = syz_open_dev$vcsn(&(0x7f0000000000)='/dev/vcs#\x00', 0x8, 0x2) ioctl$VT_SETMODE(r2, 0x5602, &(0x7f0000000040)={0x100000000, 0xff, 0x80000000, 0x4, 0x4800000000000000}) syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) 09:05:34 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x8953, &(0x7f0000000040)={'lo\x00', {0x2}}) 09:05:34 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)={{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000}}) 09:05:34 executing program 1: r0 = syz_open_dev$dmmidi(&(0x7f0000000000)='/dev/dmmidi#\x00', 0x34, 0x0) r1 = getpgrp(0xffffffffffffffff) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000080)={0x0}, &(0x7f00000000c0)=0xc) sendmsg$nl_netfilter(r0, &(0x7f00000004c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000480)={&(0x7f0000000140)={0x340, 0x9, 0x1, 0xb00, 0x70bd2a, 0x25dfdbff, {0xf, 0x0, 0x8}, [@nested={0x324, 0x52, [@generic="7a3129474e5a1fd9ac8235f533c8f8cc0743b256e74eaae925d53a5cd87212afc00e3eccb21711fb65906855368be69d936520d306e743cb67446eda889af8fc53276aaa26fb1df3708cf431f85b599a6d47ae155c1591ac7c1aece6e02ea4f6874e1529de08d4792d3f67a3036b1cd47bb661bc6fa4830a0abbe1bb0dc1eb9cbac76ba037b6436b6214c2bb316e493b3bb01f0809b831d43fe3ff842b679bc63bcf2d71d96ce1baa89be3fc16f34c8fb5e5cbccfa86689b5575600e1a88e8e25c192fea310a714e62d270f52f56ae78953e5704f3293437529f", @typed={0x8, 0x81, @pid=r1}, @generic="391c4d090559c84366f16d55201a4eb8ecfd8ebb8d1bee739787647a713a0c352c74490a2093b9e752add93863343c9b48a554afcbe1c708839c276d039c600f601241204f9b3293cc0df782bec482fd7171c17b986e847e74f21e0646d835900c93e51926671f96b87e4210a9cbcc0d5b0ec4b187de660494204abb39f4333570b982b6ce0d5aa73a403cf4c20243ab8efbb574128aa9b24efe75d6799dae80214566e3220ee3b6670fddf5121a118a84469e6773a176", @generic="a396d0688a68994d4412fb231fc05d1d2c32087f958d44ec1022dcdb6f33eda9bac34de9f017178ec12a71fa888303bc0166cd33d617c66091b4742a025bf7e901750c9c06671f0a2e8368c3a208d7693c3cd81c3afd40470d701fc2d12b070719f7a810b51d01728d18ad81d3fabac39255675c894212dc40ff1f221d1e26788ac4cf2c9036459bf80fa1", @typed={0x14, 0x14, @ipv6=@local={0xfe, 0x80, [], 0xaa}}, @generic="7e72f72e12047dc2b2d0f9d6942eff7cc7011730d0ad89ed426baeca3a0f0b3ebd2d678087f9423ab3374471c399149fc01a99d5895029695ba794ab07e3f57ef84f69e61e550dcaa8922a4ee8e13ef41c887aface751a926d4f5e1496aad448af100a1e2bd727f4030eee6e73abf7ccf4b4c388322223dc788a77fe0d80efe8636ef004f798ed9c85d036749c6a08fa4ecc92805e793ea98b76d00ed58dd2dff96162273ef3e6187e", @generic="7c1253767f99bd2d5bd79adbe885a17337cca2ef38a05cd5a55db0724d3852cc69c9b32613da6aa52b6d817c68271130f997791ba17749b7f3215c8d"]}, @typed={0x8, 0xa, @pid=r2}]}, 0x340}, 0x1, 0x0, 0x0, 0x10}, 0x4084) r3 = syz_open_dev$binder(&(0x7f0000001000)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x20011, r0, 0x0) dup(r3) ioctl$int_out(r0, 0xc0385720, &(0x7f0000000100)) 09:05:34 executing program 0: r0 = socket$inet6(0xa, 0x8000f, 0x0) bpf$BPF_MAP_GET_NEXT_ID(0xc, &(0x7f0000000040)=0x2, 0x4) r1 = syz_open_dev$audion(&(0x7f0000000080)='/dev/audio#\x00', 0xfb01, 0x20000) ioctl$TCSETAF(r1, 0x5408, &(0x7f00000000c0)={0x8, 0x8, 0x8000, 0x0, 0x2, 0xf126, 0x5, 0x1, 0x100000000, 0x2}) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r2 = socket$inet6(0xa, 0x900000003, 0xfffffffffffffffd) setsockopt$inet_int(r2, 0x0, 0xf, &(0x7f0000d10ffc)=0x3, 0x4) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r2, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x0, 0x0, @ipv4={[0xfec0], [0xff, 0xff], @dev={0xac, 0x14}}}, @in={0x2, 0x0, @multicast1=0xe0000001}, @in={0x2, 0x0, @loopback=0x7f000001}], 0x3c) [ 144.907634] x86/PAT: syz-executor5:9735 map pfn RAM range req write-combining for [mem 0x192f52000-0x192f55fff], got write-back 09:05:34 executing program 4: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0) r1 = userfaultfd(0x0) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000003fe8)={0xaa}) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000001fe2)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1}) r2 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r2, 0x84, 0x6e, &(0x7f0000000040)=[@in6={0xa, 0x0, 0x0, @remote={0xfe, 0x80, [], 0xbb}, 0x6}, @in6={0xa, 0x0, 0x0, @remote={0xfe, 0x80, [], 0xbb}}], 0x38) setsockopt$inet_sctp6_SCTP_DISABLE_FRAGMENTS(r2, 0x84, 0x8, &(0x7f0000013e95), 0x4) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r2, 0x84, 0x1e, &(0x7f0000000000)=[@in6={0xa, 0x0, 0x0, @mcast1={0xff, 0x1, [], 0x1}}], 0x1c) close(r2) close(r1) r3 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, &(0x7f00000004c0)=@mangle={'mangle\x00', 0x1f, 0x6, 0x5e8, 0x0, 0x0, 0x368, 0x4e8, 0x208, 0x5d8, 0x5d8, 0x5d8, 0x5d8, 0x5d8, 0x6, &(0x7f0000000140), {[{{@ipv6={@ipv4={[], [0xff, 0xff]}, @loopback={0x0, 0x1}, [], [], 'bridge0\x00', 'yam0\x00'}, 0x0, 0xf0, 0x118, 0x0, {}, [@inet=@rpfilter={0x28, 'rpfilter\x00', 0x0, {0x4}}]}, @common=@inet=@SYNPROXY={0x28, 'SYNPROXY\x00'}}, {{@uncond, 0x0, 0xc8, 0xf0}, @HL={0x28, 'HL\x00'}}, {{@uncond, 0x0, 0xc8, 0x110}, @SNPT={0x48, 'SNPT\x00', 0x0, {@ipv6=@mcast1={0xff, 0x1, [], 0x1}, @ipv6=@remote={0xfe, 0x80, [], 0xbb}}}}, {{@ipv6={@local={0xfe, 0x80, [], 0xaa}, @mcast2={0xff, 0x2, [], 0x1}, [], [], 'team_slave_0\x00', 'ip6gretap0\x00'}, 0x0, 0xc8, 0x110}, @common=@unspec=@LED={0x48, 'LED\x00', 0x0, {'syz1\x00'}}}, {{@uncond, 0x0, 0xc8, 0xf0}, @HL={0x28, 'HL\x00'}}], {{[], 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x0, 0xfffffffffffffffe}}}}, 0x648) setsockopt$inet_tcp_int(r3, 0x6, 0x10000000013, &(0x7f0000d06000)=0x1, 0x4) connect$inet(r3, &(0x7f00000000c0)={0x2}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r3, 0x6, 0x16, &(0x7f0000000480)=[{}, {}, {}, {}], 0x50d) 09:05:34 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)={{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfeffffff}}) 09:05:34 executing program 6: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) r1 = syz_open_dev$usbmon(&(0x7f0000000180)='/dev/usbmon#\x00', 0xfffffffffffffeff, 0x80080) ioctl$PIO_FONTX(r1, 0x4b6c, &(0x7f00000001c0)="076e693414a04f376f76397fcfb7d1dd0d021c6d1c2faa13e4c7b63cb087de3086ba486d0dec36245d5f0d85b43679f2dbc6ae750391f5772d810b18dfa76d095a9fecf0db71baba95f36f7fa9d7562211e7a4") ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f0000000100)='./file0\x00', 0x100000000000dffc, 0x1, &(0x7f0000000040)=[{&(0x7f00000000c0)="eb64c86d4f66732e66617400020441000500077008f8", 0x16}], 0x0, &(0x7f0000000140)=ANY=[]) chroot(&(0x7f0000000080)='./file0\x00') mknod(&(0x7f0000000500)='./file0/file0\x00', 0x0, 0x0) acct(&(0x7f0000000280)='./file0/file0\x00') umount2(&(0x7f0000000140)='./file0\x00', 0x0) 09:05:34 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x890c, &(0x7f0000000040)={'lo\x00', {0x2}}) 09:05:34 executing program 2: r0 = socket(0xa, 0x3, 0x6) r1 = perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x59c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) dup3(r0, r1, 0x0) [ 145.016837] x86/PAT: syz-executor5:9757 map pfn RAM range req write-combining for [mem 0x192f52000-0x192f55fff], got write-back 09:05:34 executing program 1: mknod$loop(&(0x7f0000000000)='./file0\x00', 0x0, 0xffffffffffffffff) r0 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dsp\x00', 0x8000, 0x0) getpeername$packet(r0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @dev}, &(0x7f00000000c0)=0x14) mount$fuse(0x0, &(0x7f0000000400)='./file0\x00', &(0x7f0000000440)='fuse\x00', 0x40, &(0x7f0000000600)={{'fd', 0x3d}, 0x2c, {'rootmode', 0x3d}, 0x2c, {'user_id', 0x3d}, 0x2c, {'group_id', 0x3d}, 0x2c}) 09:05:34 executing program 0: syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f0000000100)='./file0\x00', 0xe004, 0xc4, &(0x7f0000000380)=[{&(0x7f0000000180)="eb3c906d6b66732e66617400020401000200027000f801", 0x17}], 0x0, &(0x7f00000001c0)=ANY=[]) r0 = open(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0) mkdirat(r0, &(0x7f0000000040)='./file0\x00', 0x0) rmdir(&(0x7f0000000080)='./file0/file0\x00') ioctl$EVIOCGRAB(r0, 0x40044590, &(0x7f0000000140)=0x1) unlink(&(0x7f00000001c0)='./file0/file1\x00') 09:05:34 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)={{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3f00}}) 09:05:34 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x8916, &(0x7f0000000040)={'lo\x00', {0x2}}) 09:05:34 executing program 2: r0 = socket$inet_sctp(0x2, 0x80000001, 0x84) connect(r0, &(0x7f0000000800)=@pptp={0x18, 0x2, {0x3, @local={0xac, 0x14, 0x14, 0xaa}}}, 0x80) socket$inet6(0xa, 0x1000000000004, 0x0) syz_mount_image$msdos(&(0x7f0000000000)='msdos\x00', &(0x7f0000000040)='\x00', 0x10001, 0x6, &(0x7f0000000540)=[{&(0x7f0000000200)="3910fb4f371f2fa6f4509c327db1718a6f7d3099d8f2f3767876c19fe15ba364c892af4fa3358d678c5adc7b4f71dc1bd0e4c7ee2db7f053deadf1cdd8dbf53125e8996e6d54834951eb9795ca3966bbe0e91073f273f311920625e4a9c417b36b450ec2ed2393b002be64d18f1811f8487b2ad5b67164341d47", 0x7a, 0x1}, {&(0x7f0000000280)="f38e4552bb9884f9207ea8edd3ed1402a70e5a37b2ad6a1c710a1854ba0b7cb44573c1e0ce519501bee0ad0f34c53c68ef16d9b00a6d77f98a117f6e72796a1d13eed6fea05cab068b231e6fa65718414773c6acd538ace7e629130cd35a986ee0ecd5bbcb26701e8204587babdbdf4e401113813b75d6b722dc2e83e334345d464eba4a1a36204c9d87e730cdad09a7a0b76992fbe7a30a8a17c16345cb529e3c7047660f82af6e9bea787337ea244a3d3843355c9c1270114306ffdd3b9dd2c29b5375fc404e490a129370e2b9777d63e33c1620c558de608f05770f44", 0xde}, {&(0x7f0000000380)="8f68cc5de39ad78019ffdf5feb4511c91820ec63663fadd51a712deca98eb2c1bd27a563f3160a2e66d58b76e9d4a219e0f3475055d79f03f585636265ace5879abe", 0x42, 0x4318}, {&(0x7f0000000140)="7f2cb2f548bea78f4654e4880c598357bc4b0ec1f32dd5d1d423a21dcc0fae97b9d4d96044fee1a1f69b86ccc37f1603328ff52740", 0x35, 0x6a1}, {&(0x7f0000000400)="972e81b58704c42494e733864276287a180b", 0x12, 0x2}, {&(0x7f0000000440)="6b27eb2ccdf08c85925a90b75b59125b0e9fb006649d955ddfb8c0806dbfa9e28e9c58c81c9d091eb4b8c74ca1b5677218bbed900c595a778218cf308407ca2fb91f36dfa7a7b1e6f89ccb249ecd15c65533b4aed1910d5333b18e5f337436506c4c2efcc1822881cf91a089aec63483de44d4a43ab8dbbc63a7f19b94b4ffa58879bd42bbfd47f68cfed1717cdf78ae7a8410e4e3e3095c06b05e82430f6d643c993cec6d6a3c5c41444b7520d8fb8ed0efdb664925ce9cddbb7b8eef9f19dc6fa94eaa2673a01e51ccd2e621c5", 0xce, 0x10000}], 0x0, &(0x7f0000000600)={[{@fat=@errors_remount='errors=remount-ro', 0x2c}, {@dots='dots', 0x2c}, {@dots='dots', 0x2c}, {@dots='dots', 0x2c}, {@nodots='nodots', 0x2c}, {@fat=@nocase='nocase', 0x2c}, {@dots='dots', 0x2c}]}) r1 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vga_arbiter\x00', 0x400000, 0x0) ioctl$UFFDIO_WAKE(r1, 0x8010aa02, &(0x7f0000000780)={&(0x7f0000ffd000/0x3000)=nil, 0x3000}) statx(r1, &(0x7f0000000640)='./file0\x00', 0x7500, 0x50, &(0x7f0000000880)) r2 = socket$nl_route(0x10, 0x3, 0x0) fremovexattr(r1, &(0x7f00000007c0)=@known='com.apple.FinderInfo\x00') sendmsg$nl_route(r2, &(0x7f00000001c0)={&(0x7f0000000080)={0x10}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)=@newlink={0x34, 0x10, 0x60d, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, @erspan={{0xc, 0x1, 'er%pan\x00'}, {0x4, 0x2}}}]}, 0x34}, 0x1}, 0x0) [ 145.124754] Process accounting resumed 09:05:35 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)={{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}}) 09:05:35 executing program 6: mknod$loop(&(0x7f0000000100)='./file0\x00', 0x0, 0xffffffffffffffff) syz_open_dev$usbmon(&(0x7f0000000040)='/dev/usbmon#\x00', 0x9a, 0x100) r0 = open(&(0x7f0000000000)='./file0\x00', 0x40002, 0x0) ioctl$FUSE_DEV_IOC_CLONE(r0, 0xc028660f, &(0x7f0000000780)) r1 = syz_open_dev$binder(&(0x7f00000001c0)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_REM(r0, 0x84, 0x65, &(0x7f0000000140)=[@in={0x2, 0x4e21, @multicast2=0xe0000002}, @in={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x14}}, @in={0x2, 0x4e24, @loopback=0x7f000001}, @in6={0xa, 0x4e24, 0x400, @dev={0xfe, 0x80, [], 0x1c}, 0x4}, @in={0x2, 0x4e21, @multicast1=0xe0000001}], 0x5c) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000007000)={0x4, 0x0, &(0x7f0000005fd4)=[@acquire_done={0x40486311}], 0x0, 0x0, &(0x7f0000002000)}) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000000)={0x0, 0x0, &(0x7f000000dfac), 0x1, 0x100000000000000, &(0x7f0000000080)="12"}) 09:05:35 executing program 1: syz_open_procfs$namespace(0x0, &(0x7f0000000040)='ns/user\x00') syz_open_procfs$namespace(0x0, &(0x7f0000000100)='ns/user\x00') r0 = syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x82d4, 0x20080) ioctl$EVIOCGABS3F(r0, 0x8018457f, &(0x7f0000000140)=""/192) r1 = add_key$user(&(0x7f0000000080)='user\x00', &(0x7f00000000c0)={0x73, 0x79, 0x7a, 0x2}, &(0x7f0000000200)="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", 0xfb, 0xfffffffffffffffd) r2 = request_key(&(0x7f0000000380)='id_legacy\x00', &(0x7f00000003c0)={0x73, 0x79, 0x7a, 0x1}, &(0x7f0000000400)='ns/user\x00', 0xfffffffffffffffa) keyctl$search(0xa, r1, &(0x7f0000000300)='rxrpc\x00', &(0x7f0000000340)={0x73, 0x79, 0x7a, 0x3}, r2) 09:05:35 executing program 0: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000180)="025cc83d6d345f8f762070") r1 = socket$inet6(0xa, 0x10000000003, 0x6) r2 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snapshot\x00', 0x10040, 0x0) personality(0x400000f) r3 = shmget(0x1, 0x3000, 0x180, &(0x7f0000ffa000/0x3000)=nil) shmctl$SHM_LOCK(r3, 0xb) ioctl$KVM_GET_MP_STATE(r2, 0x8004ae98, &(0x7f0000000080)) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000040)='ip6_vti0\x00', 0x10) mmap$xdp(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x1000008, 0x10, r2, 0x180000000) syz_emit_ethernet(0x4a, &(0x7f0000000100)=ANY=[@ANYBLOB="aaaaaaaaaaab00000b86dd64d8652b00140600fe800000000000000000000000000a00000000000000000000000000000000", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB="5000000090780000"], &(0x7f00000002c0)) 09:05:35 executing program 5: r0 = openat$null(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/null\x00', 0x200, 0x0) ioctl$TIOCGSID(0xffffffffffffff9c, 0x5429, &(0x7f0000000300)=0x0) write$P9_RGETLOCK(r0, &(0x7f00000004c0)={0x29, 0x37, 0x1, {0x2, 0x1f, 0x3ff, r1, 0xb, '/dev/audio\x00'}}, 0x29) r2 = memfd_create(&(0x7f0000000000)='/dev/audio\x00', 0x3) getsockopt$inet_sctp_SCTP_LOCAL_AUTH_CHUNKS(0xffffffffffffffff, 0x84, 0x1b, &(0x7f0000000200)={0x0, 0x7f, "67a8fd11322341e7952e4f0cd993e7d938ffdea64d58f873b67e598019e3cb2092183f4edee15a3337ea2a9d8fbff0793ba99caa4a5576c651fb13e5422a2e205de50263012674f091237cda944c4d4f65875de5c20a7617d4655e94e4fd06b3986ec18c9c2fcbb5cd220bf1df0482c6e0d3b15a13d4baa4f93edf05b6b5c8"}, &(0x7f0000000080)=0x87) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDR_INFO(r2, 0x84, 0xf, &(0x7f0000000540)={r3, @in={{0x2, 0x4e22, @loopback=0x7f000001}}, 0x1000, 0x81, 0x0, 0x6, 0x4}, &(0x7f0000000500)=0x3ab5d132) r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x20060fffd, 0x0) ioctl$int_in(r4, 0x5473, &(0x7f00000000c0)=0x1) clock_gettime(0x0, &(0x7f0000000340)={0x0}) ppoll(&(0x7f00000001c0)=[{r4}], 0x1, &(0x7f0000000440)={r5}, &(0x7f0000000480), 0x8) readv(r4, &(0x7f0000000040)=[{&(0x7f0000000140)=""/51, 0x33}], 0x1) 09:05:35 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891a, &(0x7f0000000040)={'lo\x00', {0x2}}) [ 145.268121] binder: 9807:9809 transaction failed 29189/-22, size 0-0 line 2852 [ 145.335348] binder: 9807:9809 ioctl c0306201 20000000 returned -14 [ 145.368096] binder: 9807:9831 transaction failed 29189/-22, size 0-0 line 2852 [ 145.378500] binder: undelivered TRANSACTION_ERROR: 29189 09:05:35 executing program 4: r0 = syz_open_dev$usbmon(&(0x7f0000000040)='/dev/usbmon#\x00', 0x0, 0x0) r1 = semget$private(0x0, 0x0, 0xb2) semctl$SETVAL(r1, 0x7, 0x10, &(0x7f0000000140)=0x2) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x2, &(0x7f0000000080)={0xffffffffffffffff}, 0x2}}, 0x20) write$RDMA_USER_CM_CMD_DISCONNECT(r0, &(0x7f0000000100)={0xa, 0x4, 0xfa00, {r2}}, 0xc) perf_event_open(&(0x7f0000000280)={0x2, 0x70, 0x3e5, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fsetxattr(r0, &(0x7f00000003c0)=@known='security.evm\x00', &(0x7f0000001480)='ext2\x00', 0x5, 0x0) 09:05:35 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)={{}, 0xfeffffff}) 09:05:35 executing program 2: ioctl(0xffffffffffffffff, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f00000001c0)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_pr_sha256\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000180), 0x0) r1 = accept$alg(r0, 0x0, 0x0) recvmmsg(r1, &(0x7f0000001a00)=[{{&(0x7f00000000c0)=@nl=@unspec, 0x80, &(0x7f00000011c0)=[{&(0x7f0000001140)=""/76, 0x4c}], 0x1, &(0x7f0000001200)=""/182, 0xb6}}, {{0x0, 0x0, &(0x7f0000001940)=[{&(0x7f0000001900)=""/63, 0x3f}], 0x14e, &(0x7f0000001980)=""/115, 0x73}}], 0x2, 0x0, 0x0) 09:05:35 executing program 0: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x2e, 0xffffff87}, [], {0x95}}, &(0x7f0000000180)="4550d4001f91eb2f57b73224433025039c3096b20c6b439348bf689c08608537d6223e63adc0624fbae2e109359dce6922324ccc13160b68cae6430697259dd52d1f73e16adc3592d02925dffae85e9cd2398c6c67c87fb5b12602f145b484be45912966e8b7e2f66069c56dd76c1dc112013c3a6b4de999cdcdc8855aee3437dcc87580cfbe546fbbfbc0eb56d8bbbea2904a7c73c2", 0x1, 0x2c2, &(0x7f0000000000)=""/195}, 0x48) 09:05:35 executing program 1: socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_sctp6_SCTP_AUTOCLOSE(0xffffffffffffffff, 0x84, 0x4, &(0x7f0000002ffc), &(0x7f0000002000)=0x1) 09:05:35 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x8918, &(0x7f0000000040)={'lo\x00', {0x2}}) 09:05:35 executing program 6: r0 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000000140)={{{@in=@multicast1=0xe0000001, @in=@dev={0xac, 0x14, 0x14}, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x20}, {0x0, 0x0, 0x0, 0x0, 0x9, 0xfffffffffffffffd}, {0x1}, 0x0, 0x0, 0x1}, {{@in=@local={0xac, 0x14, 0x14, 0xaa}, 0x0, 0x33}, 0x0, @in=@rand_addr}}, 0xe8) connect$inet6(r0, &(0x7f0000000380)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x4}, 0x1c) 09:05:35 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)={{}, 0x3f000000}) 09:05:35 executing program 1: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/kvm\x00', 0x0, 0x0) getsockopt$inet_sctp_SCTP_PEER_AUTH_CHUNKS(0xffffffffffffff9c, 0x84, 0x1a, &(0x7f0000000100)=ANY=[@ANYBLOB="92523caff3a7dfd278f358feaf"], &(0x7f0000000340)=0x1) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000000)="4626262c8523bf012cf6") syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x0, 0x0, &(0x7f0000000040), 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000008000/0x18000)=nil, &(0x7f0000000080)=[@text64={0x40, &(0x7f0000000040)="0f3266b8ee008ec0f3e10065f30f01c8b9a10200000f3236740866430ff1c4c4c3816bab0f8e0000006426480f6e1ab96a0b00000f32", 0x36}], 0x1, 0x0, &(0x7f00000000c0), 0x0) getsockopt$inet_sctp_SCTP_GET_PEER_ADDRS(r3, 0x84, 0x6c, &(0x7f0000000140)={0x0, 0x9a, "a0b8fc81bcbb97bb5b5d208246e95b25b04d3fe603de19aa2a643e8249cd3a9b1d059a06d1fcfe4a54becd4da6a17c6c56f7f9dbc8e9b7fbabcab97c55f238bb14839f00addcca555263a80491da70145317c2a1b310c3e68f1af01f9ca83ab0c6210f5c1a8a3e376d2a48e201c2d5cacc3e2a26f7dc4c0b4e1f514ed0f621079f78c38903a2d2b9c1bfd75cb9ca77710a6cf5e836f3f0dd37de"}, &(0x7f00000000c0)=0xa2) getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(r0, 0x84, 0x6d, &(0x7f0000000200)={r4, 0x31, "f09bc9115dec5f4ec78e1a32d463770946b15733af551e695d588607b8698bd618b018f42a633b0ac4d9880d794bc4f876"}, &(0x7f0000000240)=0x39) ioctl$KVM_RUN(r3, 0xae80, 0x0) r5 = syz_open_dev$adsp(&(0x7f00000002c0)='/dev/adsp#\x00', 0x200, 0x200000) faccessat(r5, &(0x7f0000000300)='./file0\x00', 0x2, 0x900) 09:05:35 executing program 2: r0 = socket(0x10, 0x2, 0x0) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xc) setresuid(0x0, r1, 0x0) 09:05:35 executing program 6: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000000)="025cc83d6d345f8f762070") r1 = syz_open_procfs(0x0, &(0x7f0000000280)='environ\x00') close(r1) ioctl$SCSI_IOCTL_TEST_UNIT_READY(r1, 0x2) 09:05:35 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x8904, &(0x7f0000000040)={'lo\x00', {0x2}}) 09:05:35 executing program 0: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000100)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(camellia-asm)\x00'}, 0x58) r1 = syz_open_dev$vcsn(&(0x7f00000000c0)='/dev/vcs#\x00', 0x6, 0x20000) ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f00000002c0)={0x0, 0x3, 0xdea, 0x7, 0x4}) getsockopt$inet6_udp_int(r1, 0x11, 0x66, &(0x7f0000000240), &(0x7f0000000280)=0x4) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000001c0)={'ip6tnl0\x00', 0x0}) setsockopt$packet_drop_memb(r1, 0x107, 0x2, &(0x7f0000000200)={r2, 0x1, 0x6, @broadcast=[0xff, 0xff, 0xff, 0xff, 0xff, 0xff]}, 0x10) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="71e67a11cdf8311cfc093a52a7d86bd1", 0x10) r3 = accept4$alg(r0, 0x0, 0x0, 0x0) sendmsg$alg(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000440)=[{&(0x7f0000000180)="f2ec0638d7899e891dcd824fc9e4e54cadcff7244bc8f5f213d715ab26e0a4e2", 0x20}], 0x1, &(0x7f0000000240)}, 0x0) recvmmsg(r3, &(0x7f000000bb40)=[{{&(0x7f0000007a00)=@hci, 0x80, &(0x7f0000007bc0)=[{&(0x7f0000007ac0)=""/222, 0xde}], 0x1, &(0x7f0000007c00)=""/214, 0xd6}}], 0x1, 0x0, &(0x7f0000000040)) 09:05:35 executing program 4: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000001080)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = userfaultfd(0x0) ioctl$UFFDIO_API(r2, 0xc018aa3f, &(0x7f00000000c0)={0xaa}) ioctl$UFFDIO_REGISTER(r2, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1}) read(r1, &(0x7f0000465f8e)=""/114, 0x47) r3 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp\x00', 0x4200, 0x0) ioctl$SNDRV_CTL_IOCTL_POWER_STATE(r3, 0x800455d1, &(0x7f0000000080)) ioctl$sock_kcm_SIOCKCMUNATTACH(r1, 0xc008240a, &(0x7f0000000040)={r0}) close(r1) ioctl$UFFDIO_UNREGISTER(r2, 0x8010aa01, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000}) 09:05:36 executing program 5: unshare(0x40000000) r0 = syz_open_dev$amidi(&(0x7f0000000000)='/dev/amidi#\x00', 0x0, 0x200) ioctl$EVIOCSABS3F(r0, 0x401845ff, &(0x7f0000000040)={0x48a9fb61, 0x1, 0x7, 0x100000000, 0x3, 0x6}) r1 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_inet_SIOCSIFFLAGS(r1, 0x8914, &(0x7f00000000c0)={'lo\x00@\x00', 0x101}) r2 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$IP_VS_SO_SET_STARTDAEMON(r2, 0x0, 0x48b, &(0x7f00000005c0)={0x1, 'lo\x00'}, 0x18) 09:05:36 executing program 2: mkdir(&(0x7f0000001000)='./file0\x00', 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) getsockopt$IP_VS_SO_GET_INFO(r0, 0x0, 0x481, &(0x7f00000001c0), &(0x7f0000000200)=0xc) r1 = memfd_create(&(0x7f0000000000)='cgroup%\x00', 0x3) r2 = add_key(&(0x7f0000000240)='syzkaller\x00', &(0x7f0000000300)={0x73, 0x79, 0x7a, 0x2}, &(0x7f0000001040)="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", 0x1000, 0xfffffffffffffffd) keyctl$clear(0x7, r2) ioctl$TCXONC(r1, 0x540a, 0xff) perf_event_open(&(0x7f0000000080)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000380)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mount(&(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='overlay\x00', 0x4, 0x0) syz_open_dev$amidi(&(0x7f0000000280)='/dev/amidi#\x00', 0x0, 0x0) ioctl$sock_inet6_tcp_SIOCATMARK(0xffffffffffffffff, 0x8905, &(0x7f00000002c0)) 09:05:36 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)={{}, 0x2000000}) 09:05:36 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0xc0189436, &(0x7f0000000040)={'lo\x00', {0x2}}) 09:05:36 executing program 6: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_open_dev$sndseq(&(0x7f0000000040)='/dev/snd/seq\x00', 0x0, 0x0) clock_gettime(0x0, &(0x7f00000000c0)={0x0, 0x0}) ppoll(&(0x7f0000000080)=[{r0, 0x9}, {r1, 0x2000}, {r1, 0x200}], 0x3, &(0x7f0000000100)={r2, r3+10000000}, &(0x7f0000000140)={0x1800000}, 0x8) ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_TEMPO(r1, 0xc0bc5310, &(0x7f0000000280)) 09:05:36 executing program 0: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000640)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={"005d900000000000000000000000001f", 0x102}) ioctl$TUNSETQUEUE(r0, 0x400454d9, &(0x7f0000000000)={'ip6_vti0\x00', 0x400}) ioctl$TUNATTACHFILTER(r0, 0x401054d5, &(0x7f0000000100)={0x1, &(0x7f0000000040)=[{0x6}]}) r1 = memfd_create(&(0x7f00000000c0)='-&&trustedmd5sum@\x00', 0x3) ioctl$EVIOCGLED(r1, 0x80404519, &(0x7f0000000200)=""/154) ioctl$TUNSETQUEUE(r0, 0x400454d9, &(0x7f0000000140)={'tunl0\x00', 0x600}) 09:05:36 executing program 1: r0 = socket$inet(0x10, 0x800000000000003, 0x0) r1 = dup3(r0, r0, 0x80000) ioctl$TIOCOUTQ(r1, 0x5411, &(0x7f0000000140)) getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f0000000040)={0x0, 0x1}, &(0x7f0000000080)=0x8) setsockopt$inet_sctp_SCTP_ENABLE_STREAM_RESET(r0, 0x84, 0x76, &(0x7f00000000c0)={r2, 0x9}, 0x8) r3 = syz_open_dev$adsp(&(0x7f0000000180)='/dev/adsp#\x00', 0x9, 0x400000) ioctl$EVIOCSFF(r3, 0x40304580, &(0x7f00000001c0)=ANY=[@ANYBLOB="5b3c080001000100faff00800080000080004100000402005c0006003f00080000000aec20000600"]) fcntl$F_GET_RW_HINT(r0, 0x40b, &(0x7f0000000200)) sendmsg(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f0000000000)="24000000110007031dfffd946fa2830020200a0009000000001d85680c1ba3a20400ff7e", 0x24}], 0x1}, 0x0) 09:05:36 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)={{}, 0x3f00}) 09:05:36 executing program 6: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f000001f000)={0x26, 'hash\x00', 0x0, 0x0, 'hmac(sha384-ssse3)\x00'}, 0x58) r1 = syz_open_dev$mice(&(0x7f00000000c0)='/dev/input/mice\x00', 0x0, 0x840) ioctl$EVIOCGLED(r1, 0x80404519, &(0x7f0000000100)=""/57) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000000)="02baa81ed0ee8bc23c146314a73c89d51d0c32f145fd028e76154af9a5e352527e187c307457ce1b04c69918a092d53e52c1c84c60a6a0c0891fcff50a194111477a0f605133e622e91455209338d7f1e185666a59441a8fa1dcbdb2871b18010a7956e4757a4c80f335df4c106e36f90a971069da9be963e324eac4a2129f6c42", 0x81) 09:05:36 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x8919, &(0x7f0000000040)={'lo\x00', {0x2}}) 09:05:36 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)={{}, 0xfeffffff00000000}) [ 146.353349] overlayfs: missing 'lowerdir' [ 146.365505] IPVS: ftp: loaded support on port[0] = 21 [ 146.379940] overlayfs: missing 'lowerdir' 09:05:36 executing program 0: sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000100)={0x10}, 0xc, &(0x7f0000000140)={&(0x7f0000000880)=ANY=[]}, 0x1, 0x0, 0x0, 0x800}, 0x0) r0 = socket(0x10, 0x3, 0x0) ioctl$sock_ifreq(r0, 0x89f1, &(0x7f0000000000)={'ip6tnl0\x00', @ifru_data=&(0x7f00000000c0)="a325d3c91116bf66fed2b246a94500aa6593352d29be1746fd84168b6ef37b32"}) 09:05:36 executing program 2: syz_mount_image$vfat(&(0x7f0000000180)='vfat\x00', &(0x7f0000000080)='./file0/file0\x00', 0x0, 0x0, &(0x7f0000001580), 0x0, &(0x7f0000000340)={[{@shortname_win95='shortname=win95', 0x2c}]}) syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f0000000100)='./file0\x00', 0xe004, 0x1, &(0x7f0000000380)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020401000200027000f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) r0 = open(&(0x7f0000032ff8)='./file0\x00', 0x0, 0x0) mkdirat(r0, &(0x7f0000001600)='./file0\x00', 0x0) mkdirat(r0, &(0x7f0000000040)='./file0/file0\x00', 0x0) 09:05:36 executing program 1: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") mmap(&(0x7f000053b000/0x2000)=nil, 0x2000, 0x3, 0x40000002871, 0xffffffffffffffff, 0x0) mremap(&(0x7f000053b000/0x1000)=nil, 0x1000, 0x4000, 0x3, &(0x7f00000cc000/0x4000)=nil) mmap(&(0x7f0000000000/0xfd8000)=nil, 0xfd8000, 0x0, 0x32, 0xffffffffffffffff, 0x0) r1 = mq_open(&(0x7f0000000000)="5da670726f63656d3076626f786e6574312d00", 0x1, 0x0, &(0x7f0000000040)={0x10000, 0x7, 0x2a, 0x1, 0x200, 0x81, 0x150, 0x6}) preadv(r1, &(0x7f0000001540)=[{&(0x7f0000001600)=""/125, 0x7d}, {&(0x7f0000000100)=""/63, 0x23}, {&(0x7f0000000140)=""/210, 0xd2}, {&(0x7f00000002c0)=""/102, 0x66}, {&(0x7f0000000340)=""/118, 0x76}, {&(0x7f00000003c0)=""/4096, 0x1000}, {&(0x7f0000000240)=""/50, 0x32}, {&(0x7f00000013c0)=""/170, 0xaa}, {&(0x7f0000001480)=""/136, 0x88}], 0x9, 0x0) 09:05:36 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)={{}, 0xffffffff00000000}) [ 146.559368] device lo entered promiscuous mode [ 146.580357] IPVS: You probably need to specify IP address on multicast interface. [ 146.602905] IPVS: sync thread started: state = MASTER, mcast_ifn = lo, syncid = 0, id = 0 [ 146.616527] IPVS: ftp: loaded support on port[0] = 21 [ 146.718109] IPVS: stopping master sync thread 9956 ... 09:05:36 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000380)='/dev/ptmx\x00', 0x41, 0x0) ioctl$TIOCOUTQ(r0, 0x5411, &(0x7f0000000440)) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r1, &(0x7f0000deb000)={0x2, 0x4e23, @broadcast=0xffffffff}, 0x10) accept4$inet(r1, &(0x7f00000003c0)={0x0, 0x0, @multicast1}, &(0x7f0000000400)=0x10, 0x800) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000b86000)={0x1, &(0x7f00006dc000)=[{0x6, 0x0, 0x0, 0xa1}]}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000080)='dctcp\x00', 0x36f) sendto$inet(r1, &(0x7f00000003c0), 0x0, 0x200007ff, &(0x7f0000000280)={0x2, 0x4e23}, 0x10) sendto$inet(r1, &(0x7f00006fd000)="c3401c344654f3c7d9b41ba48c8e399aa4eedc3d6bd8ebd65c856a27d61154adc2b2a9763ae0201c0d32e11f38e9dd18c58f6bd779650fc30f93653bdaecf323c9f6502ceab47e58114347b289546465a5eb278de12b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d08d4154004997e317b79", 0x82, 0x51, &(0x7f0000e66000)={0x2, 0x0, @rand_addr}, 0x10) readv(r1, &(0x7f00000005c0)=[{&(0x7f0000000180)=""/101, 0x65}, {&(0x7f00000000c0)=""/101, 0x65}], 0x2) recvmsg(r1, &(0x7f0000001c00)={&(0x7f00000019c0)=@hci, 0x80, &(0x7f0000001b00)=[{&(0x7f0000001a80)=""/80, 0x50}], 0x1, &(0x7f0000001b40)=""/150, 0x96}, 0x0) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000200)='cubic\x00', 0x6) r2 = syz_open_dev$usbmon(&(0x7f00000004c0)='/dev/usbmon#\x00', 0x5, 0x0) getsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r2, 0x84, 0x1f, &(0x7f00000002c0)={0x0, @in={{0x2, 0x4e21, @remote={0xac, 0x14, 0x14, 0xbb}}}, 0x4, 0x3}, &(0x7f0000000040)=0x90) getsockopt$inet_sctp6_SCTP_CONTEXT(r2, 0x84, 0x11, &(0x7f0000000240)={r3}, &(0x7f0000000000)=0x8) ioctl$KDDISABIO(r2, 0x4b37) sendto$inet(r1, &(0x7f0000000140)="c2", 0x1, 0x0, 0x0, 0x0) 09:05:36 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x8981, &(0x7f0000000040)={'lo\x00', {0x2}}) 09:05:36 executing program 6: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000080)={[], 0x0, 0x6, 0x7, 0xfffffffffffffffc}) ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0) r1 = fcntl$dupfd(r0, 0x406, r0) write$P9_RLERROR(r1, &(0x7f0000000140)=ANY=[@ANYBLOB='six_acl]ac`ess\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00'], 0x1d) r2 = request_key(&(0x7f00000001c0)='big_key\x00', &(0x7f0000000200)={0x73, 0x79, 0x7a, 0x3}, &(0x7f0000000240)='/dev/sg#\x00', 0xfffffffffffffff9) keyctl$get_security(0x11, r2, &(0x7f0000001280)=""/4096, 0xffffffffffffff42) r3 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000000)='/dev/rtc0\x00', 0xbd83004e234c86f2, 0x0) ioctl$BLKROSET(r1, 0x125d, &(0x7f0000000180)=0x2) write$FUSE_LSEEK(r3, &(0x7f0000000100)={0x18, 0x0, 0x3, {0x9b3}}, 0x18) 09:05:36 executing program 0: r0 = syz_open_dev$mouse(&(0x7f0000000180)='/dev/input/mouse#\x00', 0x7379, 0x2001) getsockopt$inet6_tcp_int(r0, 0x6, 0x11, &(0x7f0000000140), &(0x7f0000000100)=0x4) r1 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r1, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") setsockopt$inet6_tcp_TCP_REPAIR_WINDOW(r1, 0x6, 0x1d, &(0x7f0000000040)={0xff, 0x101, 0x548, 0x5, 0xfffffffffffffff9}, 0x14) perf_event_open(&(0x7f000001d000)={0x5, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @perf_bp={&(0x7f0000000000), 0x1}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 09:05:36 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)={{}, 0x3f00000000000000}) 09:05:36 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbbf4}, 0xc, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[@ANYBLOB="240000002200010000f7ff00000000000400000010001100e2abb4ec7645192056d52f00"], 0x24}, 0x1}, 0x0) ioctl$sock_proto_private(r0, 0x89e8, &(0x7f00000001c0)="6e6aeadf3bb248a13a6701c00ec6f201b3ce21c172bbb71be49c8176a80c1ef0cfb71aec3b87c30614c2c851a84ca0e20b458697e2b3f296e55d45bb4f853ba91b0345aa11dc8f0f7c15fabd83f8684dc35c46622e8453de7db59ae15388f7d14dd56a9e41908f34773f2bf5430894d099196e45482ff53a6bb9f9f940fbf22cbaf95613137da510b211750eb01ead58dfdbb774a997d208f4f2718c0e21ead6b8f7f9f788add3f684f59f4331bcd8a34863512beb123ae8dca0895ebee83fe1734ad2ac9e7345c1c4f08188da20da6af701531ff26b4b09f9357fa5a93275c6301f752299583d74583f") pipe2(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}, 0x84800) ioctl$EVIOCGBITSW(r1, 0x80404525, &(0x7f0000000100)=""/191) 09:05:36 executing program 2: syz_mount_image$vfat(&(0x7f0000000180)='vfat\x00', &(0x7f0000000080)='./file0/file0\x00', 0x0, 0x0, &(0x7f0000001580), 0x0, &(0x7f0000000340)={[{@shortname_win95='shortname=win95', 0x2c}]}) syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f0000000100)='./file0\x00', 0xe004, 0x1, &(0x7f0000000380)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020401000200027000f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) r0 = open(&(0x7f0000032ff8)='./file0\x00', 0x0, 0x0) mkdirat(r0, &(0x7f0000001600)='./file0\x00', 0x0) mkdirat(r0, &(0x7f0000000040)='./file0/file0\x00', 0x0) 09:05:36 executing program 5: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='clear_refs\x00') r1 = syz_open_procfs(0x0, &(0x7f0000000180)='oom_score\x00') ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r0, 0xc0045516, &(0x7f00000000c0)) syz_open_dev$sndseq(&(0x7f0000000040)='/dev/snd/seq\x00', 0x0, 0x105040) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sendfile(r0, r1, &(0x7f0000000080), 0x1) ioctl(r0, 0xc609, &(0x7f0000000100)="efaa3c20a106ef193a95fc75a8ec90c1625cdd06e4b304f16d4e2c361a6b97c094261c26c23acaee922039949c6effc59a604ac475") write$binfmt_aout(r0, &(0x7f0000000200)=ANY=[@ANYBLOB="0801080044010000af01000007000000e900000004000000000000000000000059363a93e7b54153629a46899a4678292e7959f37ee2bc2ed377cb3b10266e1db0452d04e8eb41f486b4fce4bbeda26997e1eee4779acbcb685e3b33d5636283b8e9b3ed992bb5a05b646f5d6aa15df27efaf3e2978f00359483ed2eb01ba767c9b049d5775c5f5704d53120322851f0aa0ce72f15e1f3d5dc6849db74d400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000"], 0x79e) [ 146.976220] sysfs: cannot create duplicate filename '/class/ieee80211/â«´ìvE VÕ!' [ 146.984047] CPU: 1 PID: 9974 Comm: syz-executor1 Not tainted 4.18.0-rc5-next-20180720+ #12 [ 146.992453] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 147.001808] Call Trace: [ 147.004407] dump_stack+0x1c9/0x2b4 [ 147.008046] ? dump_stack_print_info.cold.2+0x52/0x52 [ 147.013246] ? trace_hardirqs_on+0xd/0x10 [ 147.017404] sysfs_warn_dup.cold.3+0x1c/0x2b [ 147.021844] sysfs_do_create_link_sd.isra.2+0x116/0x130 [ 147.027235] sysfs_create_link+0x65/0xc0 [ 147.031302] device_add+0x5d0/0x17b0 [ 147.035023] ? hwsim_new_radio_nl+0x7c0/0xa80 [ 147.039523] ? genl_family_rcv_msg+0x8a3/0x1140 [ 147.044204] ? get_device_parent.isra.27+0x5a0/0x5a0 [ 147.049311] ? do_syscall_64+0x1b9/0x820 [ 147.053376] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 147.058577] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 147.064122] wiphy_register+0x1a21/0x2740 [ 147.068277] ? wiphy_unregister+0x12c0/0x12c0 [ 147.072771] ? kasan_unpoison_shadow+0x35/0x50 [ 147.077360] ? kasan_kmalloc+0xc4/0xe0 [ 147.081255] ? __kmalloc+0x315/0x760 [ 147.084972] ? __lockdep_init_map+0x105/0x590 [ 147.089475] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 147.095037] ? ieee80211_cs_list_valid+0x7c/0x440 [ 147.099890] ? ieee80211_register_hw+0xc61/0x3890 [ 147.104743] ieee80211_register_hw+0x146b/0x3890 [ 147.109517] ? init_timer_on_stack_key+0xd1/0xe0 [ 147.114279] ? ieee80211_free_ack_frame+0x60/0x60 [ 147.119136] mac80211_hwsim_new_radio+0x1e55/0x3490 [ 147.124174] ? __rhashtable_insert_fast.constprop.52+0xf60/0xf60 [ 147.130336] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 147.135885] ? vsnprintf+0x20d/0x1b60 [ 147.139692] ? pointer+0x990/0x990 [ 147.143243] ? lock_release+0xa30/0xa30 [ 147.147227] ? lock_downgrade+0x8f0/0x8f0 [ 147.151384] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 147.156413] ? kvasprintf+0xea/0x140 [ 147.160129] ? bust_spinlocks+0xe0/0xe0 [ 147.164117] ? __mutex_lock+0x6c4/0x1680 [ 147.168211] ? trace_hardirqs_on+0x10/0x10 [ 147.172452] ? kasprintf+0xab/0xe0 09:05:36 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)={{}, 0x2}) 09:05:36 executing program 2: syz_mount_image$vfat(&(0x7f0000000180)='vfat\x00', &(0x7f0000000080)='./file0/file0\x00', 0x0, 0x0, &(0x7f0000001580), 0x0, &(0x7f0000000340)={[{@shortname_win95='shortname=win95', 0x2c}]}) syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f0000000100)='./file0\x00', 0xe004, 0x1, &(0x7f0000000380)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020401000200027000f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) r0 = open(&(0x7f0000032ff8)='./file0\x00', 0x0, 0x0) mkdirat(r0, &(0x7f0000001600)='./file0\x00', 0x0) mkdirat(r0, &(0x7f0000000040)='./file0/file0\x00', 0x0) 09:05:36 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)={{}, 0xfffffffe}) 09:05:36 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x40000, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) mprotect(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x4) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x3000, 0x2000, &(0x7f0000ffc000/0x2000)=nil}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f0000000040)={0x7a, 0x0, [0x4b564d00, 0x35fd]}) 09:05:36 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)={{}, 0x200000000000000}) 09:05:36 executing program 6: r0 = accept4(0xffffffffffffffff, &(0x7f0000000000)=@nfc_llcp, &(0x7f0000000080)=0x80, 0x0) ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffff9c, 0x8933, &(0x7f0000000100)={'team0\x00', 0x0}) connect$packet(r0, &(0x7f0000000200)={0x11, 0x19, r1, 0x1, 0x7, 0x6, @remote={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xbb}}, 0xffffffffffffffec) bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)=@raw, &(0x7f00000000c0)='GPL\x00', 0x0, 0x12, &(0x7f00000002c0)=""/18, 0x0, 0x1}, 0x48) 09:05:36 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)) 09:05:36 executing program 6: sched_setattr(0x0, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x0, 0x1}, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0) readv(r0, &(0x7f0000dcdff0)=[{&(0x7f0000cd8000)=""/1, 0x1}], 0x1) openat$rfkill(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/rfkill\x00', 0x0, 0x0) r1 = add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000100)={0x73, 0x79, 0x7a, 0x1}, 0x0, 0x0, 0xfffffffffffffff8) keyctl$instantiate(0xc, r1, &(0x7f0000000140)="f73a47e76f9ad04b19d67a679e8ff69d", 0x10, 0xfffffffffffffffa) ioctl$TCSETSF(r0, 0x5412, &(0x7f0000000080)) [ 147.175994] ? kvasprintf_const+0x190/0x190 [ 147.180325] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 147.185520] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 147.191057] hwsim_new_radio_nl+0x7c0/0xa80 [ 147.195364] ? nla_parse+0x32b/0x4e0 [ 147.199063] ? mac80211_hwsim_new_radio+0x3490/0x3490 [ 147.204241] ? __netlink_ns_capable+0x100/0x130 [ 147.208894] genl_family_rcv_msg+0x8a3/0x1140 [ 147.213379] ? genl_unregister_family+0x8b0/0x8b0 [ 147.218216] ? lock_downgrade+0x8f0/0x8f0 [ 147.222364] ? lock_release+0xa30/0xa30 [ 147.226328] ? __netlink_lookup+0x5e1/0xab0 [ 147.230643] ? lock_acquire+0x1e4/0x540 [ 147.234608] ? genl_rcv+0x19/0x40 [ 147.238048] genl_rcv_msg+0xc6/0x168 [ 147.241745] netlink_rcv_skb+0x172/0x440 [ 147.245798] ? genl_family_rcv_msg+0x1140/0x1140 [ 147.250536] ? netlink_ack+0xbe0/0xbe0 [ 147.254418] genl_rcv+0x28/0x40 [ 147.257681] netlink_unicast+0x5a0/0x760 [ 147.261734] ? netlink_attachskb+0x9a0/0x9a0 [ 147.266128] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 147.271656] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 147.276658] netlink_sendmsg+0xa18/0xfc0 [ 147.280705] ? netlink_unicast+0x760/0x760 [ 147.284924] ? move_addr_to_kernel.part.20+0x100/0x100 [ 147.290183] ? security_socket_sendmsg+0x94/0xc0 [ 147.294921] ? netlink_unicast+0x760/0x760 [ 147.299147] sock_sendmsg+0xd5/0x120 [ 147.302845] ___sys_sendmsg+0x7fd/0x930 [ 147.306821] ? copy_msghdr_from_user+0x580/0x580 [ 147.311572] ? __sched_text_start+0x8/0x8 [ 147.315807] ? __fget_light+0x2f7/0x440 [ 147.319766] ? fget_raw+0x20/0x20 [ 147.323203] ? __fd_install+0x2db/0x880 [ 147.327172] ? get_unused_fd_flags+0x1a0/0x1a0 [ 147.331762] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 147.337283] ? sockfd_lookup_light+0xc5/0x160 [ 147.341850] __sys_sendmsg+0x11d/0x290 [ 147.345725] ? __ia32_sys_shutdown+0x80/0x80 [ 147.350117] ? __x64_sys_futex+0x47f/0x6a0 [ 147.354333] ? fd_install+0x4d/0x60 [ 147.357948] ? syscall_slow_exit_work+0x500/0x500 [ 147.362772] ? ksys_ioctl+0x81/0xd0 [ 147.366383] __x64_sys_sendmsg+0x78/0xb0 [ 147.370426] do_syscall_64+0x1b9/0x820 [ 147.374303] ? finish_task_switch+0x1d3/0x870 [ 147.378779] ? syscall_return_slowpath+0x5e0/0x5e0 [ 147.383693] ? syscall_return_slowpath+0x31d/0x5e0 [ 147.388616] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 147.393618] ? prepare_exit_to_usermode+0x291/0x3b0 [ 147.398617] ? perf_trace_sys_enter+0xb10/0xb10 [ 147.403269] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 147.408101] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 147.413271] RIP: 0033:0x455ab9 [ 147.416456] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 147.435638] RSP: 002b:00007f9bfad97c68 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 147.443332] RAX: ffffffffffffffda RBX: 00007f9bfad986d4 RCX: 0000000000455ab9 [ 147.450585] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000000000016 [ 147.457846] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 147.465098] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 147.472352] R13: 00000000004c10c0 R14: 00000000004d1758 R15: 0000000000000000 09:05:37 executing program 4: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_mreqsrc(r0, 0x0, 0x27, &(0x7f00000f8ff4)={@multicast2=0xe0000002, @loopback=0x7f000001, @broadcast=0xffffffff}, 0xc) bind$inet(r0, &(0x7f00000000c0)={0x2, 0x4e1e}, 0x10) setsockopt$inet_MCAST_JOIN_GROUP(r0, 0x0, 0x2a, &(0x7f0000000000)={0x4, {{0x2, 0x0, @multicast1=0xe0000001}}}, 0x88) r1 = accept$inet(r0, &(0x7f0000000100)={0x0, 0x0, @rand_addr}, &(0x7f0000000140)=0x10) getsockopt$inet_sctp_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000180)={0x2, [0x8, 0xffff]}, &(0x7f00000001c0)=0x8) setsockopt$inet_mreqsrc(r0, 0x0, 0x26, &(0x7f000001b000)={@multicast1=0xe0000001, @loopback=0x7f000001, @broadcast=0xffffffff}, 0xc) 09:05:37 executing program 0: r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) syz_open_dev$audion(&(0x7f0000000100)='/dev/audio#\x00', 0xf18, 0x4000) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, &(0x7f0000000140)={'teql0\x00', 0x1}) prctl$setmm(0x23, 0x5, &(0x7f0000ffe000/0x2000)=nil) r1 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000140)='/dev/uinput\x00', 0x800, 0x0) ioctl$RTC_WKALM_RD(r1, 0x80287010, &(0x7f0000000080)) bpf$BPF_PROG_GET_NEXT_ID(0xb, &(0x7f0000000040)=0x7, 0x4) getsockopt$inet_sctp_SCTP_I_WANT_MAPPED_V4_ADDR(r1, 0x84, 0xc, &(0x7f0000000000), &(0x7f00000000c0)=0x4) 09:05:37 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)) 09:05:37 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x5450, &(0x7f0000000040)={'lo\x00', {0x2}}) 09:05:37 executing program 1: r0 = socket(0xa, 0x400003, 0x1) r1 = epoll_create1(0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000001c00)) syz_mount_image$vfat(&(0x7f0000001780)='vfat\x00', &(0x7f00000017c0)='./file0\x00', 0x8000, 0x5, &(0x7f0000001b40)=[{&(0x7f0000001800)="d34acf7ce225a4dc289eca639d722905a491c549270896b07f97bed0a94256e680f86d893c45572db220bb013c1c80437bcf5190054d4758ea02482650187ccd95a87ab72afc2ff445fbd4204d0595c28382d9e0376e20ffd4d9ec7ec934274539850c5662d528f8b211f368b6ab54a7ae9bcc56fb592d21627ec464a84b4b0d2f763f2b2409513138446bcf0da02368f7efecb2193d7498a77867b2eb91031417346af320f6206e7ed6d744927f303e8c3f036da7102d5557377919d45a940a3ca5bf839505d62b62a7731fb8edcfa74d59347f7f6028c9428ec13d54f4", 0xde, 0x7fffffff}, {&(0x7f0000001900)="cbfd7025cd885bf1fb8c89e0e55eb7a3c4b217f51a00ab9c73307a5b3aa4024bb2e15b54770fc1aaba8442622d58a91ceee733728e9877273e7bdf8e99c40ef0a20f3df88918bcd9d5938bf0de84f8297e619939a133d924b51ac729eb7aa78aa3a7d4f35d481171533023f390a5cf96c149482da023447f31019e85d166070d86a324d692d29b", 0x87, 0xcc}, {&(0x7f00000019c0)="56a6936fd662869d90deff68", 0xc, 0x6ce}, {&(0x7f0000001a00)="f2c6057ddbd8b1c42e10ef9676933a533a57aef8b300173e4d48fa8188052808089a1226df473edce7a4c8b0c0ef7c900ece7908233ac0c756320be484ce400adecb653c4b50f8b84067e6fef751fe160da94edf1465f808f1793ff082751f0f5998fe5d8ee96d213a34a0b7a9c04c48fe58469da149acb62fdf051fa5f01008bf2caf2eeb058ce30a8dfcdbccd6b6b84939d79ee1cdbadc570e5656148c2c41010f18", 0xa3, 0x401}, {&(0x7f0000001ac0)="aec40d748fc8ba8c47383e362303c0a7a1d632943abfbd901c1579d4a3a930dd4d83f84a5746403650267bf27073ca7373e9e713903d956e84d59364cff86f9dbe053be2a63b14f258fdcc597171c0638458b32ad89e", 0x56, 0x100000001}], 0x10004, &(0x7f0000001bc0)={[{@uni_xlate='uni_xlate=1', 0x2c}]}) sendmsg(r0, &(0x7f0000000700)={&(0x7f00000005c0)=@in6={0xa, 0x4e24}, 0xfcf5, &(0x7f00000003c0)=[{&(0x7f0000000040)}, {&(0x7f0000000080)="93aa0757f2e05b34577d53c25160a53173", 0x182}, {&(0x7f00000000c0)="9576de78da4efa9480c025d6bb3c5d7865287f8d8f8262d06655953d51ddfc945bdce70674978d1b835c992ff0932f81a03c72e9d864839c949295b027e1fe106145c4338f6a24d6b50be7a692b9c188faaa52dcee3ac79da37a57ac5a4d7b209f2b38116c7800766d2597fc8dee4d6bb14a1648969ab5e13f7af52930fe801a5f3b40568d7e23acad97f4ebfa9c963462cf11a5b619001c5c7442115ea46ddb99d72efa3441a03100d33023ebb4d9e4d727193494b3a48f92d8c99d6d5a2f95c93d177f2e7bcdb3144fcb0c8aeb798f32938b1df8988df0212c6529cceb1a397bbbc3ddec02012a33"}, {&(0x7f00000001c0)="6873f23617efc8b7efd53d4d3cac79bba2824384544ce025f9eec57e7c96f13d27054991a87e6c0ea0a3fa6889aaefee8bde24ea1e934bc6fb9e7754aadb70dd1e8e"}, {&(0x7f0000000740)="51dc1a40208133815b3f99d1b12d52599b5e3d26e153c343be4edc33cf1828a20cd753477802b02b96926d26cb42132f6a94189a21940927022566816b6f239e236d3f0d4356f20fe22a5fbb7d59d3a99cf0ecf3314bdc45c6becf8a713f2bbc0312c78803b3d3e05231007672a0947eeabd5aa05e7b21b842adeba9ba50899ab1e32da8c713a286e960f50e9cdce4ae19dfc954d42eebc6b80c38e97caee369e0b47795f75ae5f0774ae658c0fefc7888b01c6a4414f28f159ef522e91f6c2e4cf5535e0b413e2eec3c6d651f09fc50f4002ea92a3aa7eaecb0f13b7f9203cc5f75274b1dfb41e571e8e1fb375d85ee3bdaf4323ebf181c01e1e86347cb8f7657b87644f698be2a529c797222afb18f42d08de1ab5857148417e910e345d75ab18e3f985b39d0160610ae826543bd123783b6cb21c6fc44ab56b743e207a08c959214a52aa4f6d98d58baa4d3496bb8f900544681dbe30d933ec38fab10885549d863d6cb95ce78da595380b1523d3b1d49d7fb176ed7aa955d18a7092b621d78940f378f9942be5cbd04980407cbaa39dc1b3e143f1419f30ef8f29c8a2a4f5f63f512ea6fe3cd063302621a7b2efdc81bf4ce22757e929d0f3fd2535d9430db57c2c2205e150fec8ae006818e8d47c824234d934de26f2ebf6d9151d4e2e1281b1a633eddde367cc47a8ea8dac299969c8ca77999c9f4f9c1b4ed8622d71421ce66112bd74c093e2d46123032e5c9f1137b5431f999e85dcfdfe2e514e5c97e0a877db6e8a694c1fdd38b9226c92ca691b3388720b74dadf84ed588aed46590a391566f1b2e85ef9b45422206f1bf1fe0580f44a2f8a1b5fe35d9328741bd95144075c7b55c3f4d2c1075bcfe6a24b387ff45298fd98dc6b78c2398d9f5491370904ffdc89a6d3d0284e3ea1d5bccb1902f31cb98c045e3c23e6f0727a6ef1879e95f95064ff74353ca754c6f34c6404c56275dc6b5aa8cd6bd73a14537321090a4f881f656d1c39d85b173e7db7fee35f7213d411658bcd7339b570a283e2bf5cceb6136d3cbd024ce096e3682fbc1f26fee9129a49743b5aef63d8b43a24d0e3284015f89403fe01a75ec829a5fc53d39aa261e6762a733502f319c6131be457287956f278525cb34feebe264dac9adb3b2b75ed39244b338531e96f329a1cedcd134c90529368ff386320e9d104084d6d01687383066d7fe8d0db17d497796244fa702cc4a3d2f705788e416848d22f5ebcd1fcae157373cf3ba94581bb2f3205a7ffaa6e09e743af16655eb2ccdc93cb116fa0d46c4f44666ea8aa9f05ec63659d5c2724e9d9e6612b872dfa0ef6dbf6b3a7914e23507e27586d4c47e9fa42222bd2c3e8f03df566ec6de81557be78bbb6659a1ec2edb458eddd5055313fd6d87ba80007216c06f38a222b5611a4634e02b754fc7d9c8176a949885e25fb7045a5e75f7abca4517c8726c880cbe41dd54fa80f1264f7fb26dd281b276b687ff59083c2d53ed873ad1bdbee32955e29305d477df5545925c86d3cdc38df5e310f18f96945057bf42e12de02f89c62e75566afdbdffeaea7d79a80a22bedfa69602a86390765eade92ec0f37a6e5cf3ea564841eb2a191c11566b6ead948f159fabd473b38bdf2ac2cf1a84c1ffac662ba87b374753d8ec4ac2a03bbb7cd05e20accd447ffce10a37696ddc4ac9d0b7d57bfbce63274cd2779999fa2f74b42fe2862097b9620f467c9f74f0f978069eea4bb297b904469003ef48bb2894c60c37898401c6deefb3bf2fab38a2b7e4422e391f7bc5e4355430775f4811ceda04a6cae77a6c931ba43e63d9c95ec62eb5de6221131f838187b9b80daa9e989c62395e4b5051b5c4d5302555ae00a1abaea83d9b1f95ea2b212391dbe6fc0e1f21cdf53ca843af7a139ccbbc56c9847f65d2a21b342dd80505b67f6c70837c98f8b377b5f43dfddf046069fc4369e7fc1851bd200fc637a9aedd1bcb212439b4cf7a80c56fc611f54e1bfd38d048774143c75609a706f83f187de0650eae62cd8938607180607ee2cc727dd13d4cfb00a62f37330574e6d4e097441bea26c260f5077d7ec718a157bd29007daf7fbd96aa1ab0a6eb7810994b3a3734cc0bac6b26f969465877577980826a4433e8f55d02bd4d8391478bd33519aaba5528017d1a9b04fb91ca62839c67e9e93fe9013b9a6fe043fb5da29afe19c4389e48fd6b51d89c8e5fa32363d7f680968eff1a80281ea0b7ec3c809009630dfb5a01149e193663bd9c92abaa9b59c5b3914717555402f86b8c701d78917d31634238283b83c0301713dff81e1ccd28ebf57d41be754dadf8a71b8c7c927133ebafba206ffb715afa4e63b3bfe47f9bd9ae4b7a1c47d44ef8a5c40ba452d5efcbfc5d3e5a523557ed9ef75db781faabc19497749142e0a35d2e804b695f461b87f3fb2ba297a8d79ac47bd294bd0f5737965983b54b4b4fbe69f232be6913956e2b440ed33656ee245977583b5b1a55bcf5cbb81297ce74a08eac5044c34322a600b0b8537eaf8b92038e28950a9f8787041ff9b9529597d25eb91735fa3600e319b49e301d219077fd5d6ce9179e8eb431164e9c559d8a334864e9b367c63e3bbe23c527b8b2a2a17ecb2b3350380f459d11e656cd5255df8380c800da12b90ec55f221bfb1ee973d81f8cc1b7f456fac10867de1ae5e1443797617fd8d4dbd38a8e19a3f8d498fe495cdf61acb7c7e1ec5065cf18390d798f388ed4e2755b81d6bd6a9cea3d11f63b553f1e401d91459481dda32df5508c1a77fc626e01661c44112f6d44ba96979a2b5f4fc9c9425ff0dbf743f354c9e761fc258071d9da795ccf0d522fcb11be857ae881da664c65b6a286519b8c5f962a52b671b93c7f636a5799424bf740f5000c8f1cb740145ff2fbb15f83b5e39007ea62092d4fba71adc77fefc0d0135feb0011d55ffbb4af62d74b484bcec77bf00df6b8234ed25ac0dd827595bee3e3ab9fde6a35d10b7124b381c8e5063534e90a9e614dfaf2656e9e8e00f2d24de7aae6036467c3fcf8f8c69bbc8adb62e4d17bba8adb7b2cf442be73b8b6b77441e75bfa3875586b6ad2a50f42c1998b853bcaede9c5bab221e300ee7f057bf6a90c3ae2292ea829ecc8ed12be9fe3a89d6759cdd09c7181d37dbdbd60645d0d646c1295183097ed5c9985cfa5baf2b23db227a7f1c1fcb5f119114af3b54d4f174b14bc09000cb288c4d7ec55277ec4b683901e3b56c93248c3f4fdd886f27afe8d870a376b64fd14fadee9dc22ee546e754b75ef63d2c7085b1d9e48085b50a70cda7e2018848750ca307cca3b0f8f7d511dbe7ae8f469dff471aa819e3af221f2484852d2780ac72679f019440a5f718ffce4a1ae58770b22dc07ff77709839c3129fa800d481f7846757e19689a4aca1c11bfe9b67a715ad96f7b9de1b535f423e64d12969305e0b905ac95641ebbca6d10f62ffb394298d97ccc7f4643b0a5167fe3d22d5005033c956bcd15b5b792ad43bbd3ce7b7ef4ceb080edd885680bdf31a85c5f26c42dbe49bd84645a244fbcd926ded0b6a77eab329c87953f1fc9a928954a988dea1417fe1622dc2c7de4fd9e99f7f5b8d89452e74d6923875000bc2af5f59e70ec6caa0982aced77f947589e97839d28141262a4b2d96b885ef9ad59b3fb9a532b8e35361919dd143b1a4315beff9f2fde320d783ac964cce14f8399f99e1355a20817ac2450efed01c73a8b9028e52db751fbfbb3b1184ff5f7e1f189be2c3b86a07d33c8bb45a00a023251bccf7bb462ebf045617b2aae98fadb2967bf94f170aecf8de4387a596436d39f6881ffbc4f03c8d06f0883a24965c843b45340b25b8dd0e5fb1cd2a992414efc94b37153a6eeec2ca498e1f43055f2d39a28138e0afb6e7a893e9406d28fb777df500f2e7ae014f9d528fba8689a0f60607c658753c1df9f5eb6105d92cc6877c4f0f5caac1a130ffe6de236cd31931031748a947567658ed13b93ad6dc59d9934bd1daba8c848701fc88db3beba70ba21a10262e1ac7f6cf062048f6381642c65d3c6e964cca2e4716dfece88ec6603b5bfcac7bc2bb0c2daa2a5a0351a51675f662137e1e147f53493888fc5ea37de025678b67d653089bde2a65f375abf30e7b6eaacb1387a51b44e605020c7aa24633517e0b105f3ccf912741273aad6b2d7f6f632e0b7b97797d7d79c6888bb68bc9012ac3ea6a2ca74afae7acb4924026ea9dab164795e50dd72166635c36b497ca20b90dbed646a460d332cce4c67b2cd40a294d8d45ada086ae3ca0b0675f48a75f3150f33f5c19f4937a762d5aaf5806bb5a8202d4e9c1ea4f9c0f2a94c4c49e240facdd8af8ecd0423a9d96a755ef3fffff9894427f66cb9b10bb93cf735e583e3d1c96711f5f47412a1f37b9397990257a9e18cdf0be4959114590caa09770e61a0fd8cbab9174d9a6cb3768b000bbb68a35c0f12fe2bfe39f5a0f145576cedd71da48beada92120b71d71e78df61af7e8cd8d019f363296af558e4a4732c721a162af67e837b8152ab7a63ed59240264f622be8e3e865def5561f744d050eb4ca83b0863edc887b4e953a3145b81a1cdc9fe3aa2568b8cefa472ad3abdc08ad55161e1ad170c2312206878252808f8566e8ccc32d5d560abcc279975df6252322333a8524f0282b457f0de95de868a223228c80454ca12eb711d2b196f58c11e1136010349b8f14e8c124195e10fcb45e7e9ba054427af0853ffdc4e0f77178dfae4e7cea13500b0939b60a4d695f4a26eb1de60f71ee02c8b4c02dc0413fe89ab7bb12c3db204e323e0b1746efa7cc90dcb108ca927098457ae4696cc74864fee1ac18de429cfab97cb4e9a8a147a898fe5ed0bfa931fc5ca3c47d8aa7064025029483d1a6567b8ce86cd011a46e35b7ed2ddeafff17a5feb97d0779318eeca1111d37158d13c0e247fc36e943672233e8972fda88151077ac39b8126b1fa583b3f3eb4603931ec26ff21de1274ab279699ec4361657c8332e8129c886d20e9077480892bf859832f670e5c4dc6688522eafd1ffa16ea1f2ce0bc37527e993660d8cb927904688db6ca413d88092382828a9451e0bbcf57845f8d8b12831b5c11d55e144b515adbc690678f0b5029ac56df4fc1d71c18cacb9a01652f4c8919b192b79ff03056979f50e7086c6fd9a6b9d8ba4d4ad2bbc5e5cd3d0dce513b6786e66aaf49bd4aa35db223959acc747fd93232b7faadeacb54c4b284801e084c42f6f7e2f07eb5c1c935dfef61acd81de3ed084411aff68c01db20c68818a894590b9d86f23d8be7035212e0834e7192262024d1ad470b31bf25c52adb721d9fc7ba744d9fba9cd2de994c7ae2c62087311b59322789a437350b93a50a948eb1528d186fbef2c817fda6d57bc09ac2170bc5f2bf1f89e7aef526bbdead391300b03b4edae871dbc372c00517c8f44c53249b8b222df5f40cf053f50efe02ee84e46437bb5e03cdefc00c74a5940ad989e8ee0833f9ac0d1703601636f16d924cd00f319ec459c070cb9a2fefebb97ecb3289a70c6a032bd7b4ca7a56512d8deadcbaebf3f63c2147e827631e1d8997235140ebbec6f8c59e9339f0331ca24a6f64c0f0e3ecfb6e8e56c569891a84c0670e2167eef1e0ab310dcc11d3f350368389a509360626832a6cc34f9fc0f4d1a65f798846adfbc1d38559f8ef55099e6facf7be190b6cf2a2fd0db04f3f460b9d75b4b67ee0bf80570f2661f6fb56d870a0795863978f4272bdf21cadebfdf00d84206808612"}, {&(0x7f0000000240)="3afde2e6884af64d338ef375b804b980c2ec89540152f6c519a3328e75c398956971e412bc21c7c87926"}, {&(0x7f0000000280)="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", 0x116}, {&(0x7f0000000380)="8a1e90c67efd39933f1ea3a8"}], 0x0, &(0x7f0000001000), 0x0, 0x8000000000000}, 0x0) syz_mount_image$xfs(&(0x7f0000000040)='xfs\x00', &(0x7f0000000440)='./file0\x00', 0x0, 0x2, &(0x7f0000000580)=[{&(0x7f0000000480)="a76aad8147b2f204a2604ef713686f4f6054e19a474ad2c6ad07db553b20c0b56807ab2cea700e34ed32d38d7ec4541ba6915832ea070435721c07681b448481642447ed0fbb0c22b6b5b203d051c4b259bc1b7e39b3837e88039f9d4905aa7ee97982fcda97888dfcab977425995dc0c25f648ee2892c39c9425749f0cd148acc51daea07ffc5c999798d78f15aec30923ca56fe5176eec380a6b878178d7e7999983ad1c281684555f7c095affea213ab4565ee72b186cc41954e7a54e23312b6cdc024e8d27d617822401b8e51ca949aca6aeb06eb5f4d06b7723509234da33aac0feead7a3f919fde8c9252e615d318fca814eeee5ca8c", 0xf9, 0x5642}, {&(0x7f0000000640)="1f4e6196e044136d8090a0e82695dc3227a87db1a8b9a081feba378ae789f3fc338752c463d35678e9d365b191e1b745bb1380e450f920259b6e9a8a95f145bdabafbcfabf9059abdd81985baa69b322412df17d0d30dec3db2230d0eaaba5bc22d54a804e7be13df813a52c039178d51287d0e9f98f19f45b64d12916f42649787a2ab6ac3a25a5f8cf7376a1e40539fb85641447be22fd", 0x98, 0x3f}], 0x80000, &(0x7f0000001740)={[{@wsync='wsync', 0x2c}, {@noikeep='noikeep', 0x2c}, {@rtdev={'rtdev', 0x3d, './file0'}, 0x2c}]}) 09:05:37 executing program 5: r0 = syz_open_dev$sndpcmp(&(0x7f0000000000)='/dev/snd/pcmC#D#p\x00', 0x0, 0x2) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x40031, 0xffffffffffffffff, 0x0) getsockopt$bt_sco_SCO_CONNINFO(r0, 0x11, 0x2, &(0x7f0000000080)=""/247, &(0x7f0000000180)=0xf7) finit_module(r0, &(0x7f00000001c0)='/dev/snd/pcmC#D#p\x00', 0x3) ioctl$int_out(r0, 0xf230f314c0f4248e, &(0x7f0000000200)) setsockopt$packet_tx_ring(r0, 0x107, 0xd, &(0x7f0000000040)=@req={0x80, 0x2, 0x1, 0x3}, 0x10) keyctl$join(0x1, &(0x7f0000000240)={0x73, 0x79, 0x7a, 0x1}) 09:05:37 executing program 2: syz_mount_image$vfat(&(0x7f0000000180)='vfat\x00', &(0x7f0000000080)='./file0/file0\x00', 0x0, 0x0, &(0x7f0000001580), 0x0, &(0x7f0000000340)={[{@shortname_win95='shortname=win95', 0x2c}]}) syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f0000000100)='./file0\x00', 0xe004, 0x1, &(0x7f0000000380)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020401000200027000f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) r0 = open(&(0x7f0000032ff8)='./file0\x00', 0x0, 0x0) mkdirat(r0, &(0x7f0000001600)='./file0\x00', 0x0) mkdirat(r0, &(0x7f0000000040)='./file0/file0\x00', 0x0) 09:05:37 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)) 09:05:37 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x8940, &(0x7f0000000040)={'lo\x00', {0x2}}) 09:05:37 executing program 0: r0 = socket$alg(0x26, 0x5, 0x0) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000000)={0x0, 0x0}, &(0x7f0000000040)=0xc) setfsuid(r1) r2 = syz_open_dev$adsp(&(0x7f0000000080)='/dev/adsp#\x00', 0x1000, 0x800) r3 = openat$uinput(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/uinput\x00', 0x341040, 0x0) pipe2(&(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}, 0x84002) ioctl$KVM_IRQFD(r2, 0x4020ae76, &(0x7f0000000140)={r3, 0x8, 0x1, r4}) 09:05:37 executing program 5: r0 = getpgrp(0x0) sched_setaffinity(r0, 0x8, &(0x7f0000000080)=0x5) r1 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r1, &(0x7f0000000180)={&(0x7f0000000000)={0x10}, 0xc, &(0x7f0000000140)={&(0x7f0000000480)=@newlink={0x38, 0x10, 0xf0b, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x18, 0x12, @gre={{0x8, 0x1, 'gre\x00'}, {0xc, 0x2, [@IFLA_GRE_REMOTE={0x8, 0x3, @dev={0xac, 0x14, 0x14}}]}}}]}, 0x38}, 0x1}, 0x0) r2 = syz_open_dev$dmmidi(&(0x7f0000000040)='/dev/dmmidi#\x00', 0x5, 0x400) setsockopt$l2tp_PPPOL2TP_SO_RECVSEQ(r2, 0x111, 0x2, 0x0, 0x4) 09:05:37 executing program 6: r0 = socket$key(0xf, 0x3, 0x2) r1 = fcntl$getown(r0, 0x9) ptrace$getenv(0x4201, r1, 0x7, &(0x7f0000000080)) connect(r0, &(0x7f0000000180)=@hci={0x1f}, 0x80) exit_group(0x5) r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/vs/backup_only\x00', 0x2, 0x0) ioctl$TCSETA(r2, 0x5406, &(0x7f0000000040)={0x800, 0x0, 0x8, 0x0, 0x80, 0x4, 0x6, 0x9, 0x3, 0x10000}) 09:05:37 executing program 2: syz_mount_image$vfat(&(0x7f0000000180)='vfat\x00', &(0x7f0000000080)='./file0/file0\x00', 0x0, 0x0, &(0x7f0000001580), 0x0, &(0x7f0000000340)={[{@shortname_win95='shortname=win95', 0x2c}]}) syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f0000000100)='./file0\x00', 0xe004, 0x1, &(0x7f0000000380)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020401000200027000f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) r0 = open(&(0x7f0000032ff8)='./file0\x00', 0x0, 0x0) mkdirat(r0, &(0x7f0000001600)='./file0\x00', 0x0) 09:05:38 executing program 4: r0 = openat$ion(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ion\x00', 0x0, 0x0) r1 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r1, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") ioctl$ION_IOC_ALLOC(r0, 0xc0184900, &(0x7f0000000500)={0x10000009, 0xffffffffffffffff, 0x0, 0xffffffffffffffff}) getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER(0xffffffffffffff9c, 0x84, 0x7b, &(0x7f0000000000)={0x0, 0x7}, &(0x7f0000000040)=0x8) getsockopt$inet_sctp6_SCTP_PEER_AUTH_CHUNKS(r1, 0x84, 0x1a, &(0x7f0000000080)={r3, 0x7c, "074922372611ae63c64db06bfac38704a9ee3309fddcc232e239e825634e4851976c8add524fcdbb12701f51bf0534aa7d0a2ff25aac9388c7072157181be976f8545630c15a0616504a1d4c64c7a268e1324109cfa75bfaef5011796808fbe7c6a99c9a39916883811b7a0d40923e961d4ca7c7a9dc42a1db9510ce"}, &(0x7f0000000140)=0x84) mmap(&(0x7f0000bfe000/0x400000)=nil, 0x400000, 0xffffffffffffefff, 0x811, r2, 0x0) 09:05:38 executing program 0: r0 = socket$alg(0x26, 0x5, 0x0) r1 = syz_open_dev$admmidi(&(0x7f0000000080)='/dev/admmidi#\x00', 0x1, 0x101002) getsockopt$inet_sctp6_SCTP_ASSOCINFO(0xffffffffffffffff, 0x84, 0x1, &(0x7f00000000c0)={0x0, 0x8, 0x8000000000003, 0xa5e, 0x4a}, &(0x7f0000000100)=0x14) getsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(r1, 0x84, 0x18, &(0x7f0000000140)={r2, 0x9}, &(0x7f0000000180)=0x8) accept$packet(r1, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, &(0x7f0000000240)=0x14) bind$alg(r0, &(0x7f0000000000)={0x26, 'aead\x00', 0x0, 0x0, 'echainiv(aegis128l-generic)\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f00000001c0)="71e67a15cdf0319fa22748f9a91c66b3", 0x10) r3 = accept4$alg(r0, 0x0, 0x0, 0x0) sendmmsg$alg(r3, &(0x7f0000003640)=[{0x0, 0x0, &(0x7f00000028c0)=[{&(0x7f0000002780)="503b6859a9d323b803f961a5fdbd9490f262ef292afb383acb53688914d98f818e", 0x21}], 0x1, &(0x7f0000002900)}], 0x1, 0x0) recvmmsg(r3, &(0x7f0000004e40)=[{{0x0, 0x0, &(0x7f0000000100)}}, {{&(0x7f00000002c0)=@sco, 0x80, &(0x7f00000003c0)=[{&(0x7f0000000580)=""/80, 0x50}], 0x1}}], 0x2, 0x0, 0x0) 09:05:38 executing program 6: r0 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000100)='/dev/vga_arbiter\x00', 0x10000, 0x0) bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000180)={r0, &(0x7f0000000040), &(0x7f00000000c0)}, 0xffa3) r1 = openat$cuse(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/cuse\x00', 0x82, 0x0) ioctl$VHOST_VSOCK_SET_GUEST_CID(r1, 0x4008af60, &(0x7f0000000000)={@reserved=0x1}) io_setup(0x9, &(0x7f0000000240)=0x0) io_submit(r2, 0x1, &(0x7f0000000440)=[&(0x7f0000000200)={0x0, 0x0, 0x0, 0x8, 0x0, r1, &(0x7f0000000140)="10000000f0", 0x5}]) 09:05:38 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)) 09:05:38 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x8914, &(0x7f0000000040)={'lo\x00', {0x2}}) [ 148.169520] netlink: 'syz-executor5': attribute type 3 has an invalid length. [ 148.231264] netlink: 'syz-executor5': attribute type 3 has an invalid length. 09:05:38 executing program 2: syz_mount_image$vfat(&(0x7f0000000180)='vfat\x00', &(0x7f0000000080)='./file0/file0\x00', 0x0, 0x0, &(0x7f0000001580), 0x0, &(0x7f0000000340)={[{@shortname_win95='shortname=win95', 0x2c}]}) syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f0000000100)='./file0\x00', 0xe004, 0x1, &(0x7f0000000380)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020401000200027000f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) open(&(0x7f0000032ff8)='./file0\x00', 0x0, 0x0) 09:05:38 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)) [ 148.485734] FAT-fs (loop1): bogus number of reserved sectors [ 148.491649] FAT-fs (loop1): Can't find a valid FAT filesystem 09:05:38 executing program 1: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = openat$zero(0xffffffffffffff9c, &(0x7f0000000040)='/dev/zero\x00', 0x440040, 0x0) setsockopt$inet_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f0000000100)='tls\x00', 0xfed3) getsockopt$inet_tcp_TCP_REPAIR_WINDOW(r1, 0x6, 0x1d, &(0x7f0000000240), &(0x7f00000002c0)=0x14) r2 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp\x00', 0x3fff, 0x0) getsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(r2, 0x84, 0x75, &(0x7f0000000080)={0x0, 0x962}, &(0x7f00000000c0)=0x8) getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r2, 0x84, 0x9, &(0x7f0000000140)={r3, @in={{0x2, 0x4e21, @multicast1=0xe0000001}}, 0x42d, 0xae03, 0xffffffff, 0x8000, 0x66}, &(0x7f0000000200)=0x98) 09:05:38 executing program 6: mkdir(&(0x7f0000fd5ff8)='./file0\x00', 0x0) mount(&(0x7f0000018000)='./file0\x00', &(0x7f0000027000)='./file0\x00', &(0x7f0000018ffa)='ramfs\x00', 0x50, &(0x7f000000a000)) r0 = creat(&(0x7f0000df1000)='./file0/bus\x00', 0xbc9dc8fbd81cb4b1) fcntl$lock(r0, 0x7, &(0x7f0000000000)={0x1}) unshare(0x40600) writev(r0, &(0x7f0000000440)=[{&(0x7f0000000380)="db", 0x1}], 0x1) r1 = creat(&(0x7f0000000080)='./file0/bus\x00', 0x0) ioctl$sock_netdev_private(r1, 0x89f7, &(0x7f0000000480)="7839f5ef91fb13ee3901888ecab2b8f3011e2a5ed76d64c8cc1325aff94f4e4082485949687685b3e1ae59ab4f544b95ce7eeb562cc88e1f51452a9d6019f2a46a5faeded81637487d77dd204ccfcaa0c4bafe6b686aedcf2992d5c6357d7c7b95f338d6ad95d131ed091d52f1dd38d71066e970033d6c15adf1573ac4720e0026b3b6d681e0528f99728c84792073fb2f68d5897a199e04a5f5c29a492d15465844bab725360c5db4af3e18c1e1d25a5fc725d68f9ec3cbca37a08dcedc71deb87d39a26205c1dfcae8ba16e44ad5cad7756eb6f6371e0303acb1a400b423476b0379060fd316eb732870cb8752e546bc332f0027441903ea312704b77c22bfe1431df6fe84bcfc3828117cef588519a54d5134bbdcebe37dabfba82cec2ba5fa285ce6c264527aa3d59b11e70051e224948a55c0aa3237ca056660391ec695c88b6fd1ee0ce5cc74f007cffc9958bb8680d0bed6125d1eb817482839224a323f54b09c528023da384eddeb6402628cdb0151bcb49d5a36ee409ea1a38a5d3c174d814e91abfdf3b85935610d9bacc35449020c048a4ab2690df5cc1e9eb4966a3a6cbe03d3faab704362ebfddc832e0669e03291a42d20e4a6e30d081449114f2ecd791225b158be92e7bc4f0ced11e1f118c1311bb8f9df5fbccfbc65639798d2896920b33daefaaaf413ce9b04bc2d13e992562248f0a4f12687293a145be67d6e148e4bd55b354622bfb33ba793d4699178e9e46ed86424a64da8f39c0440439375157ca47b6c970dfead655fd0de25ca748e2f0f52d0a6a998f469a589706637b5bdeaab1ddbea4a64bff65b14ee3f7e867d9e9934ca0920d39bff9ad0f47b7061b9ea00962040a512daf2154c5069b28809b749f0ed5dfdd63bb242e5d4354bb9323a513ce547eceef6ee1f2cba02a4ad171fca4f39e3f7957aff3f16220228da223cd2c729472e419be83e785068a5d429f0a2233e45099768795819213f3f8ec863d61a2902f8d4ea41eb5978399ed0b67e3a5e4916ccac2f5e0c14c497c899a283ab516c6be435f02f6092ff6e5c0382beb7e3a3bd443e41e4e25d00e7cb0ec96280fc9fe30ae768fb9573230b53feb252169f92d6d4f19c251a60100e0cf37daac439c01f3b8a987dbe7379aefa89ac337fa8281d3b0eb3d1accbd4572bd947a41b827a417230eadab061bd9f675ff9d7ed954f02ef01e0e1b63c570b367d0b3a9bd25cdb850f2b2119401e46b02b3da5cd7e421be9d1ff06981074ad4f74ec5b31ecc6896ee4d78d95667a5f8a0c6465711c414ba8250cbc83e8b829d493bafceb3f3f40b2f32ed2bbc597f3c1ffed805a8ade71706764e51a7ecc0105f8554dcbda711b316e99cb05331a73fbf42b239ac55bc8a49b5f487d02a7f987307bb471f3b87e77d947db22605ec6a4cd24ec36145e623802d4a4c6cbcc6c2c5fd77d6a282605a9411ac512e9c6e11a5cb3f68264a283f012fcb10de4a1f085652363aad531799323fd8a36fb5129d03d0e35a4a4997deff8effb15564602181a3ceae27a521c310aaab88ddadfbde982fc8f95c074a1c89b6bff3596de2bb4f6aace3223dc72c1a23c88758ba6e8832061791200f702292e03c8255983b1bbc5a7e22039164f1a96375fd776353e21dda4fcad02936f21634e7c1705cdb11448f610824c068bb0681c67d0712837af51315330b6495f144df2c8a3b04107547beaee167bcb84844a5a7a316be77f890eaf9e3db9386ff26c21dcb0da68662c2e2f7c5f7f0c47b69a897e7537054ba69e504603abd6af13f2d886f2446387a1c709f6b45f5c8ca4d4eb131d16347241564f7aa1a86d309d11bb72de3328066fe3c08a11ac679b57da53e70a851d40c13be45dc2f3ebfe25c2820a9efb9219c272c1ba8611107db3df28508e15c5a2069ad9f4ce8538975a72ee8c158dc1aacbb2e47c8c35a37e883096007259a232296648c16ec4fab0635ec757e88599b2dc01cb26b3d21f338dc1acc23b9e087e3b68f9278a4957525ecd67e42aabce61186982c07f284405a00c3dfeded4a535110d1fe3a6d14ff68d9049d2a3287d5fb4bb8bcc268c91ce6f406e0c08c1f6f1339220b86c5996b4568351f28aa61936f4766ae18b0442a753c9f9b6422b39f3729193a098a0cbb56cc2570d672d60d9df619b3c8542eb88a242c5934c8a3824878e47638193d1ccf408ba0591ea18396b97a31b5413c49f9e37ddc1a6f9a723fa9a065b4f6c750b36b723d1eab27ea5713cef56507a7262d76c9da46bfdc137e6e65ff7cee57348808783ee1b5b81f201de18431cf48ae1d874370076dc6fdb077fa867e12fb8939184e2a4e4144927984ccaf3969f3d8dd461e8fe5239ae69f0eb366fca4c500e2b7cbcc11981a120997853dba2dd65885c0886f4be0968b8e415f91880f3c90ca00b0b7295bcff592bbbdc510782431198ca19be5d4a10017f16349ecc1e8fbafd730894668c72b2b7da7541f182a9b04a8ee22969c0e53a14997318e41e73630aa24610bc10dd4e3b68a215ed9f2c7b1d8929287e9064102b10b5cbf2cfa2ffd6950b68438d918c9f717c5edf4c1756174e82ec717869a1481a36e1d48d82b60cbf138d9b0f5fd352291765da5cb32ba6c0369808f0fe2543c183f201272a8655aff390e9ce8463feefdd13572b71171c6b9ba0054fcec3485058b9ec8a2428f294e716349ee2debfc70aba1448ca106ee56ced2902550a627caa8ce6819d634f576c87f9e55371dcb1a5bd81daca03ee53cd4bd6de23a7bb726c2161da74bffb4a959b8280b4346bc991854e2472523d370b7ecc38ee28c0747c4a160133a76f60210144f7fced024a3ce870ec521c7ca93643326e0bad1bb001008b49d4077eb2720dd43822fea49759f2402824136f47a024e56145ee5b5b4c48e73c95ba0c675bcd50fcef19cbb7dddb58849d124045a2142a3a7ec41fc029e8b775006ed968410d928aaf5e18b2fcc1e51634d680057656b9d503d165e5cab006a61220eefdcd9dc669c9dd86dffe0834edb0cdc81b43401a21f30bf145535ea629f76520d7712c8a1d89395aec6badccb02ac35fd0558e0fdbc2dd79c5225926895301c791b6569fa7a7c64752d2fb0759e475d0edfbd784ba1c39583ba874a2f4234a8a7142e9a658d02485d3b68916ecbb4d34334a0b77f15cbbb4143073b407b704d71fdcf092155f86758a6713ea548f0708575e733bf360ecd839ba0635c0fb7e99396a4fc5d48fa4266e8ca3ddf0d1311004a730173df006139dafdae60a34c51f7aba36e1e4bb71aa38ad53ca2a4d2e842526b91761fe6f2f0055aafae83f9a8648d908a19ded369f94021b6b60264bfcbc91abcd77c5c3f78bcbe0e059793e78c716336696243e3a07fbb75033212fa918254c2e2a7af5ee3babf0d8d7ed8763d48387cdacae927d6da332aabe7f0eb4a3c3e2a5f4bed15490cd403a4e673683725df19e6faf1407912bfdb6d9b5f9c2fe29be479dcdeb87ca45d42232df3a25c47ee5a6091e1a29364f009f130c40b526124739741b1975de8da2143b14aee11c497ea95ad01b83bece45bb7f1726e9440c05f2e720c2031f174e9488b7df5e74df57598e653c9e7df73be1ffc4e9d16784412de87c4b16928fed7e51afcd7ba5a029b1cb725ccfa523fdff595d72fd2af8866ed00d7ce52782c355fdd1bd8ea6276bb0144e00ba6be9c6974c04bb44bc8c0c77ac4a08e7a1948d644067a5fe6eca66e3f075695b517e0c08046de88619ecfb95ac84809a864fe2f4e6ed2e9705e575491d4446adcc17037475e92dcc05e8aec24c71ce53a7565aa8ab2c5977f6b0556d5452d7845052b3566e25e83cf9c817c7a14114fad14232a4c8f9a3f7909bef28117b54ca85d37ac1d2ffa8556804980699140f607d94f52996792c1727529d64c2ae7505e18b59533efe737e36aa595a6c374ae0a618f4ce0f80dfb79f9babad9aae6815d51a1fa779fd88cd5a4c631275c8be7846f19930054a4e5b14502b99fd0d021fcd1ca6da399ee400c6b1181b0d8727700018d704b75d3491d91b8b9cce5682074d3a6c18e505da14ec1a625e1101263a74721e8792ca9ef4ae0b51e0065071777444727d367178aaa59fe1a3d4f689070a2b65163dc98c63404fcde0501d2fb847da1a0d42147254bdbffdd7478d7346027712ecb4106f75a60d8a4baf82106255c3c2bacef7281609a17ecd321849634f31320dcfad9db0532c2fadebe07b1cf6899265c6f7a3bb1cddca1aa206698f7576ab51ae5a627cd9f0d145b42c927d03af3fb3a8a52ecfda09f89123940206d221c5a8ba7581e6dc2849c809813fdb0ba4cecd830942dde15ee2497a8535325aaa3d5187b3224c4b3ff26c3090f1f4c74691ad3c4600756e5b89a0b41682e0ac6f31e1eee77f004a455b72eb280be53e45d4561cdd46789ede0e73bd905aa21e9bcff4cfc4644ef34373f0c44e9fa431b0541e4b7c9c0579f038395c5267040762c3c32d03ed1d4acf50ad1630c62e2a082bbf73afc7b75cc7be9dedcd03563a0b3018dfffa2187b286f12254847de30c90e5ef06f542b01b2843696b869b1f7e327022274f597e06f856e439c739ae15b39377ab834b79c4fc1dc326b7a016cd97e7853f48fa9a19226e75ee8b335a779eb213adb26686587b21eb6828039d45e57ebe0011c247f30764de3fa185358867734cda3b17baff3efea0a1d7b111d3d4896c72700d379d187f3c4ce50bb05d46b10512f088a50e4458c813ff06e89bd6f2727685d27c70bc04b4e2a1c636b05c270df6266b6aba39fc7aa3508b2fe3214e4d7fc95e613498ba82125a530bc3e4348f15892be9b5755e9b882c6e695cbe059689ad8b055a48936465e713420ad3cfc621103b3ce62ea5d353da0c747020de21ca840a0d3e8648cf470d45190a623151db9148f33dd8781144b83bc504e50a1298f64033752938b86072fddf669615e749a1e9b37c2135965cca37ec647727700071c7407692f12fa6123c1dc86e6c18dc5484c689f696d74d12fb6acb9659f31aa51cd75efd262a0c6e5d6fc961826e2091725c6fefda9652d5d67858a9347e26b5304a8dfa0dbcb853a729bb0a30e8e6be21db043ec29fa2d5ec532b125196ab3ace17a2229fab913bdf41ec97118cd55373831c09ce3e05130ef8531ae7de5614842dff46ca848e9111456cc0098ed1ada7645f593062d5757ffdaf98fcafb13a4ddfd8dc38579aa768e2c26791d9f690f460cdf443e4dc93e1da4518e2ae4e2124df929d5d6864123df0d1b592abf6320de7ee15b211d4e12f3ed5f9af2da810808d2a6ce4bcfb3efb56ca56d9b1ec694ddf36f8cefddee0b363fb92d8e6262b8686a8870298a2bface86f106e626c8bf783cc5071ddffdb75dcc0c9ec6c02fdec475d8b18eb6bbb05f7fbb18560f86d6527ffa26681a0a78ddb924993b9ad8a1f8954b6c4045d9c83fc3bfc10e001622ef536abbd2474587a64b1928f6031d1483afd62b4b11ad63063f1dd260f4901b11682d40df7d3a4d915276b45119ea7ab769a80d80def8a58875fc657b2196dcf735cfde76c6c4fa2e529f63c8bfeeed5447cce958d57d135dd34509e0f9049ef5c2431a45c56a18ff4c9c4ea085fd91d751cc2b9368692caa2367c26d8c4a98bdf198f1800c8ef3211221003026544a34280a897d46c27ecf3130a88c4b6c40a35f289087cd969985804dfed535f676ea817da6d34e4f222ce37cb68fa0661687cb54e6a6662bf342d194d4228e67689261a052fb8e") recvfrom$llc(r0, &(0x7f0000000040)=""/38, 0x26, 0x40000060, &(0x7f00000000c0)={0x1a, 0x0, 0xffff, 0x3f, 0xe5, 0x101, @dev={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0x16}}, 0x10) lseek(r0, 0x0, 0x0) dup2(r1, r0) 09:05:38 executing program 5: r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x103800, 0x0) getsockopt$inet_mtu(r0, 0x0, 0xa, &(0x7f0000000080), &(0x7f00000000c0)=0x4) syz_mount_image$iso9660(&(0x7f0000000000)='iso9660\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000400), 0x0, &(0x7f0000000480)={[{@sbsector={'sbsector', 0x3d, 0xffffffffffffffe0}, 0x2c}]}) 09:05:38 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x8941, &(0x7f0000000040)={'lo\x00', {0x2}}) 09:05:38 executing program 0: r0 = socket$alg(0x26, 0x5, 0x0) r1 = syz_open_dev$admmidi(&(0x7f0000000080)='/dev/admmidi#\x00', 0x1, 0x101002) getsockopt$inet_sctp6_SCTP_ASSOCINFO(0xffffffffffffffff, 0x84, 0x1, &(0x7f00000000c0)={0x0, 0x8, 0x8000000000003, 0xa5e, 0x4a}, &(0x7f0000000100)=0x14) getsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(r1, 0x84, 0x18, &(0x7f0000000140)={r2, 0x9}, &(0x7f0000000180)=0x8) accept$packet(r1, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, &(0x7f0000000240)=0x14) bind$alg(r0, &(0x7f0000000000)={0x26, 'aead\x00', 0x0, 0x0, 'echainiv(aegis128l-generic)\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f00000001c0)="71e67a15cdf0319fa22748f9a91c66b3", 0x10) r3 = accept4$alg(r0, 0x0, 0x0, 0x0) sendmmsg$alg(r3, &(0x7f0000003640)=[{0x0, 0x0, &(0x7f00000028c0)=[{&(0x7f0000002780)="503b6859a9d323b803f961a5fdbd9490f262ef292afb383acb53688914d98f818e", 0x21}], 0x1, &(0x7f0000002900)}], 0x1, 0x0) recvmmsg(r3, &(0x7f0000004e40)=[{{0x0, 0x0, &(0x7f0000000100)}}, {{&(0x7f00000002c0)=@sco, 0x80, &(0x7f00000003c0)=[{&(0x7f0000000580)=""/80, 0x50}], 0x1}}], 0x2, 0x0, 0x0) 09:05:38 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)) 09:05:38 executing program 2: syz_mount_image$vfat(&(0x7f0000000180)='vfat\x00', &(0x7f0000000080)='./file0/file0\x00', 0x0, 0x0, &(0x7f0000001580), 0x0, &(0x7f0000000340)={[{@shortname_win95='shortname=win95', 0x2c}]}) syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f0000000100)='./file0\x00', 0xe004, 0x1, &(0x7f0000000380)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020401000200027000f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) [ 148.607935] ISOFS: Unable to identify CD-ROM format. 09:05:38 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)) 09:05:38 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x8935, &(0x7f0000000040)={'lo\x00', {0x2}}) [ 148.637999] ISOFS: Unable to identify CD-ROM format. 09:05:38 executing program 1: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) r1 = dup2(r0, r0) ioctl$EVIOCSREP(r1, 0x40084503, &(0x7f0000000000)=[0x1, 0x1]) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") syz_open_dev$evdev(&(0x7f00000000c0)='/dev/input/event#\x00', 0xa6, 0x2000) r2 = socket$inet6(0xa, 0x801, 0x0) setsockopt$sock_int(r2, 0x1, 0x2, &(0x7f0000000040)=0x3f, 0x2a) bind$inet6(r2, &(0x7f0000000080)={0xa, 0x0, 0xfffffffffffffffe, @ipv4={[], [0xff, 0xff], @broadcast=0xffffffff}, 0x80}, 0x1c) listen(r2, 0x0) 09:05:38 executing program 0: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$IP_VS_SO_SET_DEL(r0, 0x0, 0x484, &(0x7f0000000080)={0x11, @empty, 0x0, 0x1, 'ovf\x00', 0xfffffffffffffffe}, 0x2c) 09:05:38 executing program 2: syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f0000000100)='./file0\x00', 0xe004, 0x1, &(0x7f0000000380)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020401000200027000f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) 09:05:38 executing program 4: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet(0x15, 0x5, 0x0) bind$inet(r0, &(0x7f0000000040)={0x2, 0x0, @remote={0xac, 0x14, 0x14, 0xbb}}, 0x10) accept4$inet(r0, &(0x7f0000000080)={0x0, 0x0, @rand_addr}, &(0x7f0000000140)=0x10, 0x80000) connect$inet(r0, &(0x7f0000000000)={0x2, 0x0, @broadcast=0xffffffff}, 0x10) r1 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000200)='/dev/vcs\x00', 0x10000, 0x0) write$P9_RATTACH(r1, &(0x7f0000000240)={0x14, 0x69, 0x2, {0x0, 0x2, 0x3}}, 0x14) sendmsg(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000500)=[{&(0x7f0000000440)}], 0x1}, 0x0) setsockopt$RDS_CANCEL_SENT_TO(r0, 0x114, 0x1, &(0x7f0000000100)={0x2, 0x0, @broadcast=0xffffffff}, 0x10) 09:05:38 executing program 5: r0 = socket$inet_sctp(0x2, 0x800000000000001, 0x84) sendto$inet(r0, &(0x7f0000a34fff)='H', 0x1, 0x0, &(0x7f0000030ff0)={0x2, 0x0, @local={0xac, 0x14, 0xffffffffffffffff, 0xaa}}, 0x10) sendto$inet(r0, &(0x7f000026cfff)="c6", 0x1, 0x0, &(0x7f0000033ff0)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff, 0xbb}}, 0x10) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f0000000000)={0x7, 0x101, 0x9, 0xcb, 0x5, 0x4, 0x2000000000000000, 0x4, 0x0}, &(0x7f0000000040)=0x20) setsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x1f, &(0x7f0000000080)={r1, @in6={{0xa, 0x4e22, 0x9, @ipv4={[], [0xff, 0xff], @multicast2=0xe0000002}, 0x1}}, 0x7, 0x8}, 0x90) getsockopt$IP_VS_SO_GET_INFO(r0, 0x0, 0x481, &(0x7f0000000140), &(0x7f0000000180)=0xc21a1c7239f98f9d) shutdown(r0, 0x1) setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f00000004c0)={0x0, @in={{0x2}}, 0x0, 0x0, 0x5dc, 0x0, 0x34}, 0x98) 09:05:38 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)) 09:05:38 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x894c, &(0x7f0000000040)={'lo\x00', {0x2}}) 09:05:38 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)) 09:05:39 executing program 1: r0 = socket(0x10, 0x3, 0x0) setsockopt$inet_sctp6_SCTP_I_WANT_MAPPED_V4_ADDR(r0, 0x84, 0xc, &(0x7f0000000040)=0x8, 0x4) ioctl$sock_ifreq(r0, 0x89f2, &(0x7f0000000080)={'ip_vti0\x00', @ifru_data=&(0x7f0000000000)="b06f31673d3da2b793d4f9a507e3c9133ba7ce8f5e6e538ecf8829b08f7f4aae"}) 09:05:39 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x5451, &(0x7f0000000040)={'lo\x00', {0x2}}) 09:05:39 executing program 0: r0 = perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000140)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = accept4(r0, &(0x7f0000000000)=@pppol2tpin6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @remote}}}, &(0x7f0000000080)=0x80, 0x80800) setsockopt$packet_rx_ring(r1, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x0, 0x4, 0xfffffffffffffc00, 0x1ff, 0x2, 0x4, 0x3}, 0x1c) syz_emit_ethernet(0x6e, &(0x7f0000000180)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaa0086dd6006f52600383a002e1930c83768691d79a045fe8000000000000000000000000000ffff0200000000000000000000000000010200907800000000600a07ec00002900fe8000000000000000000000000000ff30000000000000000002ffffac140000a82f7ae1cd16d2e2"], &(0x7f0000000100)) 09:05:39 executing program 4: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet(0x15, 0x5, 0x0) bind$inet(r0, &(0x7f0000000040)={0x2, 0x0, @remote={0xac, 0x14, 0x14, 0xbb}}, 0x10) accept4$inet(r0, &(0x7f0000000080)={0x0, 0x0, @rand_addr}, &(0x7f0000000140)=0x10, 0x80000) connect$inet(r0, &(0x7f0000000000)={0x2, 0x0, @broadcast=0xffffffff}, 0x10) r1 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000200)='/dev/vcs\x00', 0x10000, 0x0) write$P9_RATTACH(r1, &(0x7f0000000240)={0x14, 0x69, 0x2, {0x0, 0x2, 0x3}}, 0x14) sendmsg(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000500)=[{&(0x7f0000000440)}], 0x1}, 0x0) setsockopt$RDS_CANCEL_SENT_TO(r0, 0x114, 0x1, &(0x7f0000000100)={0x2, 0x0, @broadcast=0xffffffff}, 0x10) 09:05:39 executing program 2: syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f0000000100)='./file0\x00', 0xe004, 0x1, &(0x7f0000000380)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020401000200027000f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) 09:05:39 executing program 6: mkdir(&(0x7f0000fd5ff8)='./file0\x00', 0x0) mount(&(0x7f0000018000)='./file0\x00', &(0x7f0000027000)='./file0\x00', &(0x7f0000018ffa)='ramfs\x00', 0x50, &(0x7f000000a000)) r0 = creat(&(0x7f0000df1000)='./file0/bus\x00', 0xbc9dc8fbd81cb4b1) fcntl$lock(r0, 0x7, &(0x7f0000000000)={0x1}) unshare(0x40600) writev(r0, &(0x7f0000000440)=[{&(0x7f0000000380)="db", 0x1}], 0x1) r1 = creat(&(0x7f0000000080)='./file0/bus\x00', 0x0) ioctl$sock_netdev_private(r1, 0x89f7, &(0x7f0000000480)="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") recvfrom$llc(r0, &(0x7f0000000040)=""/38, 0x26, 0x40000060, &(0x7f00000000c0)={0x1a, 0x0, 0xffff, 0x3f, 0xe5, 0x101, @dev={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0x16}}, 0x10) lseek(r0, 0x0, 0x0) dup2(r1, r0) 09:05:39 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)) 09:05:39 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)={{}, 0x0, 0x2000000}) 09:05:39 executing program 1: openat$hwrng(0xffffffffffffff9c, &(0x7f0000000140)='/dev/hwrng\x00', 0x440080, 0x0) r0 = socket$inet6(0xa, 0x6, 0x0) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffdad}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='cpu.stat\x00', 0x0, 0x0) ioctl$EVIOCSKEYCODE_V2(r1, 0x40284504, &(0x7f0000000100)={0x40, 0x18, 0x80000001, 0x81, "69259129b7e747f542570c0a624a04775f0e5c793b8a577fbf151de4e343f2b4"}) io_setup(0x1f0, &(0x7f0000000000)=0x0) io_submit(r2, 0x200000000000000e, &(0x7f0000000780)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, r0, &(0x7f0000000040)="ab", 0xfffffd52}]) 09:05:39 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x8906, &(0x7f0000000040)={'lo\x00', {0x2}}) 09:05:39 executing program 2: syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f0000000100)='./file0\x00', 0xe004, 0x1, &(0x7f0000000380)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020401000200027000f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) 09:05:39 executing program 0: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000000c0)={&(0x7f0000000000)={0x10}, 0xc, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB="18000059dce1a80a54be02f2559cf7c66c7d1f0031001901"], 0x18}, 0x1}, 0x0) 09:05:39 executing program 5: r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/loop-control\x00', 0x0, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/kvm\x00', 0x0, 0x0) socketpair$inet6_tcp(0xa, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) getsockopt$inet6_tcp_TCP_REPAIR_WINDOW(r2, 0x6, 0x1d, &(0x7f0000000040), &(0x7f0000000100)=0x14) r3 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) r5 = timerfd_create(0x4, 0x800) ioctl$void(r5, 0xc0045c79) r6 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000200)='IPVS\x00') sendmsg$IPVS_CMD_GET_DAEMON(r4, &(0x7f00000002c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x5020}, 0xc, &(0x7f0000000280)={&(0x7f00000003c0)=ANY=[@ANYBLOB="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", @ANYRES16=r6, @ANYBLOB="080428bd7000fddbdf250b00000008000600960000000800040029000000"], 0x24}, 0x1}, 0x10) syz_kvm_setup_cpu$x86(r0, r4, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, &(0x7f0000000180)="67660f384075800f01d166b8be0000000f23d80f21f86635400000e00f23f8a5440f20c0663502000000440f22c0670f22dd652680e7020fc71d0f01bfb3bf9a0020ae00", 0x44}], 0x1, 0x0, &(0x7f0000000200), 0x0) 09:05:39 executing program 2: syz_mount_image$vfat(&(0x7f0000000180)='vfat\x00', &(0x7f0000000080)='./file0/file0\x00', 0x0, 0x0, &(0x7f0000001580), 0x0, &(0x7f0000000340)) syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f0000000100)='./file0\x00', 0xe004, 0x1, &(0x7f0000000380)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020401000200027000f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) 09:05:39 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)={{}, 0x0, 0x3f00}) 09:05:39 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x8901, &(0x7f0000000040)={'lo\x00', {0x2}}) 09:05:39 executing program 0: mkdir(&(0x7f0000000300)='./control\x00', 0x0) mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0) r0 = userfaultfd(0x0) r1 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/vs/sync_sock_size\x00', 0x2, 0x0) getsockopt$ARPT_SO_GET_INFO(r1, 0x0, 0x60, &(0x7f0000000100)={'filter\x00'}, &(0x7f0000000080)=0x44) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000480)={0xaa}) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000200)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1}) r2 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) unlink(&(0x7f0000000180)='./control/file0\x00') write$sndseq(r2, &(0x7f0000011fd2)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x3eb) r3 = openat$ppp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ppp\x00', 0x0, 0x0) ftruncate(r2, 0x7c) dup2(r3, r2) close(r0) 09:05:39 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) getsockopt$ARPT_SO_GET_ENTRIES(r0, 0x0, 0x61, &(0x7f0000000140)={'filter\x00', 0xc4, "1a11ad9e103c16f7b3cc141b42df6db271276364c26319e16da8d1da9ab685efe97787c3acf8d6713f994f200ea4478273d0ffb09d42474900d32fd8359cb8629eb90b8f041abb145911d30ba1acf1f142a4d09d53057eb788c69b8fae8cba759e8575e975b0baa114cd2f38114321b791e6b95b5c1606d8ce68d4222f6572e0ad48def8d3c943e7e197585f83743e6cc6016a52ab966c93bc5c9a720cb6c3ce9b86274e307745983608af054d76ec22368e6521a2723fb4728bad929ea7c83d1c079a69"}, &(0x7f0000000040)=0xe8) r1 = socket$inet6(0xa, 0x1, 0x0) ioctl(r1, 0x4000008912, &(0x7f0000000100)="295ee1311f16f477671070") setsockopt$inet_sctp_SCTP_RTOINFO(0xffffffffffffffff, 0x84, 0x0, &(0x7f0000001000)={0x10000, 0x4, 0x100, 0x400}, 0x6) r2 = socket(0x11, 0x3, 0x0) setsockopt(r2, 0x107, 0x5, &(0x7f0000001000), 0xc5) r3 = syz_open_dev$dspn(&(0x7f0000000300)='/dev/dsp#\x00', 0x9c, 0x6041) epoll_ctl$EPOLL_CTL_MOD(r3, 0x3, r0, &(0x7f0000000340)={0x40000000}) sendto$inet(r0, &(0x7f0000a88f88), 0xfffffffffffffe6e, 0x20000000, &(0x7f0000e68000)={0x2, 0x0, @local={0xac, 0x14, 0x14, 0xaa}}, 0x10) poll(&(0x7f0000000000)=[{r2, 0x480}], 0x264, 0xfffffffffffffff7) setsockopt$packet_buf(r2, 0x107, 0x16, &(0x7f0000000080)="7b188a87c1b891907f70343c336ea5ffaa509bd11fb1a887b7c0956d79496a092e3be8afec54226af6e14447b3704b0476de66eacc5747820cf152c7c0c1d554490e973492167d069f32e7eba0b4f4f708abaf9cade8c24a3d460efb3645c3bb80a50c7b22a6cec8384d69b7c39763", 0x6f) setsockopt$inet_MCAST_JOIN_GROUP(r0, 0x0, 0x2a, &(0x7f0000000240)={0x9, {{0x2, 0x4e21, @multicast1=0xe0000001}}}, 0x88) 09:05:39 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)={{}, 0x0, 0xfffffffe}) 09:05:40 executing program 4: mmap(&(0x7f0000000000/0xfd0000)=nil, 0xfd0000, 0x0, 0x32, 0xffffffffffffffff, 0x0) r0 = socket$inet_sctp(0x2, 0x3, 0x84) setsockopt$inet_sctp_SCTP_ADAPTATION_LAYER(r0, 0x84, 0x7, &(0x7f00000000c0), 0x4) 09:05:40 executing program 2: syz_mount_image$vfat(&(0x7f0000000180)='vfat\x00', &(0x7f0000000080)='./file0/file0\x00', 0x0, 0x0, &(0x7f0000001580), 0x0, &(0x7f0000000340)) syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f0000000100)='./file0\x00', 0xe004, 0x1, &(0x7f0000000380)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020401000200027000f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) 09:05:40 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x890b, &(0x7f0000000040)={'lo\x00', {0x2}}) 09:05:40 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)={{}, 0x0, 0x3f00000000000000}) 09:05:40 executing program 5: r0 = shmget$private(0x0, 0x4000, 0x0, &(0x7f0000ffc000/0x4000)=nil) r1 = syz_open_dev$midi(&(0x7f0000000100)='/dev/midi#\x00', 0x101, 0x400) shmctl$IPC_RMID(r0, 0x0) recvfrom$inet6(r1, &(0x7f0000000040)=""/56, 0x38, 0x2000, &(0x7f0000000080)={0xa, 0x4e23, 0x9, @loopback={0x0, 0x1}, 0x1ff}, 0x1c) openat$random(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/urandom\x00', 0x200, 0x0) r2 = shmat(r0, &(0x7f0000ffc000/0x4000)=nil, 0x4000) mlock(&(0x7f0000ffa000/0x4000)=nil, 0x4000) shmctl$IPC_RMID(r0, 0x0) r3 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r3, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") shmdt(r2) shmget(0x2, 0x3000, 0x200, &(0x7f0000ff8000/0x3000)=nil) 09:05:40 executing program 6: mkdir(&(0x7f0000fd5ff8)='./file0\x00', 0x0) mount(&(0x7f0000018000)='./file0\x00', &(0x7f0000027000)='./file0\x00', &(0x7f0000018ffa)='ramfs\x00', 0x50, &(0x7f000000a000)) r0 = creat(&(0x7f0000df1000)='./file0/bus\x00', 0xbc9dc8fbd81cb4b1) fcntl$lock(r0, 0x7, &(0x7f0000000000)={0x1}) unshare(0x40600) writev(r0, &(0x7f0000000440)=[{&(0x7f0000000380)="db", 0x1}], 0x1) r1 = creat(&(0x7f0000000080)='./file0/bus\x00', 0x0) ioctl$sock_netdev_private(r1, 0x89f7, &(0x7f0000000480)="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") recvfrom$llc(r0, &(0x7f0000000040)=""/38, 0x26, 0x40000060, &(0x7f00000000c0)={0x1a, 0x0, 0xffff, 0x3f, 0xe5, 0x101, @dev={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0x16}}, 0x10) lseek(r0, 0x0, 0x0) dup2(r1, r0) 09:05:40 executing program 1: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcs\x00', 0x1, 0x0) sendmmsg$alg(r1, &(0x7f0000003b40)=[{0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000100)="4a1a30f7a5fda4b17213227436cce03a40c7541afd01e05459baf42d", 0x1c}, {&(0x7f0000000140)="b7272e2d81abce2ddb65d58181d2194f00b657f9bba519017cdc570da34a305425e152", 0x23}, {&(0x7f0000000180)="dd8c766de054e495ba1364f3eefaeaf47f8e5b58f790ab2cddc74349ae37b5c106b9545f5b7d3c5c604b263823db3fc7c21fc850a9d39767eef79c23f36ec3aba1c16dac0a3c24cc1a4db4c0b6520949fb68cb993225f16e27f6176c810b5ab151", 0x61}], 0x3, &(0x7f00000002c0)=[@op={0x18, 0x117, 0x3, 0x1}, @op={0x18, 0x117, 0x3}, @op={0x18, 0x117, 0x3, 0x1}, @iv={0x20, 0x117, 0x2, 0xc, "954824db9fe1809905aed49c"}, @op={0x18, 0x117, 0x3, 0x1}, @iv={0xf8, 0x117, 0x2, 0xe3, "e4c0eb197ed20677d08cba9c0eda4c494c1d947713fdc4b873116c3810596af3ab701c5c03c07cf3f282c6f2be82837ee5b23407fc6be0b494274873860aec8f1649528df055bbdde996404881106627f3ee55a7d5d076e0d473a066ca4330a4e802388557673fc4cc85bec11e31dd98d9f21d688b79282018faaec4bb50e06d8d1835bd3ab2dfd61cf83d6e4ba7902b27a72050896df6aa425cf6de1fdedba4226079525d3c0237f2dc8bedc09edfcea0ff98c4d06edd6e8b5ce557433db2bd62c6482100c5a26223f91e4437d1a607575467b4687a8b99f01556cdfff55c38351af7"}, @assoc={0x18, 0x117, 0x4, 0x20}, @iv={0x50, 0x117, 0x2, 0x35, "5020947cbb22af03ce4bc1d15c3019448c4769385a9b1c4de61a30d121684aa30e3d9ed9c60533ccef1e0aedaef3a4696622ce553d"}], 0x1e0, 0x4}, {0x0, 0x0, &(0x7f0000001780)=[{&(0x7f0000000240)="0181a8a0ca27d67193dd5807fdb8b474fc9d3262a0a744cdbc", 0x19}, {&(0x7f00000004c0)="303e412f9c353a34c4962cd9b5c763b30a5187b995265e41b7d16843a24ec33077d1d6bf986395fc3624c5182f81acb6d7f3a7113f17ee4490a75bce47cc0dbeb014a355eecad2742aad30ac15660a3480d86aa985d3c0a9af826d1bc6f808e16118dd87f4ac23b15099130c3cc8da87a87fdee7d165ce42616e4271f81da0b6efbd8b13f76f07393d64e787e21187a89b7d61a32ed890d97229cd8bb96c4b43629e5cf919f5480de7782bd2247b7ec82e574502b0752c27e45b91b06cbab4dffe", 0xc1}, {&(0x7f00000005c0)="906a8a210604b1ab7b3e065b4d09dff987dc9e7e2ba46f70288a52997c573c15ea86d587e01995d88d18e6c2bf7bb6ea2686f698f5402fcd24215f05adb8adbfdfc10944c20d028228ddd36bff5edf65e4141bd0f1eedec910bd75b37d31dc57fe8922e0fa4f921eb190bfe23b4374968f32a9cfce0d908eb9c4a09e09b998709a03c2dde103122adab3fa0115bb1cf457ea161246fa3599bfc25eb99825d69347921c14082bc0e8940fb54dafb7328ebe5c674c8a7b93c9b8f43e0060df0fbfa3b357238f60924cda4a", 0xca}, {&(0x7f00000006c0)="094169e5ac2cf11ecbf58d455515fa4745e24e5d37bf2615ff2419b9f9b2618d9bcccf95063b76eb272cc653d0f584f5d1256b5a7df58d011ae883", 0x3b}, {&(0x7f0000000700)="516b5279af6ccb391cc66f7949426368dd054e7d4dcf815cabd5bcc3637515787fdfba4ee4d1c7afdb9c2c55df0ef210c332dd644377ad0bf3515db72a915062a0dd81b5b086f881b01e3a5e069a4aec60376e874d44fa96b636831b95fc1b68", 0x60}, {&(0x7f0000000780)="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", 0x1000}], 0x6, &(0x7f0000001800)=[@assoc={0x18, 0x117, 0x4, 0x100}, @iv={0xd0, 0x117, 0x2, 0xb9, "01fa94e0a8d6d55652ba3187fa0e834c4967c1c1d35e8165175dedc11afd1718ce418dc89a4369f5a25bd264824ca3102141467300057795e789b2d31741cf15f449862f4a0d6373eaefc308204881d04abd56e1aa7752aa28428cbc85a83431839ae65eefd8d8415d133d722edcd260b941685c4bf132351eb2db4be2b07afc5ce79bf470a43971e239b668d795d9d47d650c980c9cebd05eb441efc2f1ba61e4d6e6f01e74f6dda78c7d99bdcb3a0d0edc1f4ebb063f7d2c"}, @assoc={0x18, 0x117, 0x4, 0x101}, @op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x401}, @op={0x18, 0x117, 0x3, 0x1}], 0x148, 0x4}, {0x0, 0x0, &(0x7f0000001a40)=[{&(0x7f0000001980)="a15090caf52d0f0822ea1cf57df79fb9cb285b98db82d60b1100752054c2e8e04ee2d50a87c822f3ec4c84c8dc814aaac54286d4e9e2358bde8ecf2dc69ab97097fcd91be3520fd3b9eee5c0a9f16bf1f1016a34dbd7d5d7f1e2be1584c90bd3b399361272540fc0ab20adaaf1d1493c5040daea709d3a1ac9d6ca249c7755f2260da11aaaa8ade01b84b2c01e072a", 0x8f}], 0x1, 0x0, 0x0, 0x1}, {0x0, 0x0, &(0x7f0000001b80)=[{&(0x7f0000001a80)="c2e34af088a0f2ec412d9666987f21b6a18075da7662d478a81512c694490e6523c82f16c540555457a665efd54f3706be6aad33fe8cfdbeeb7fccad190633dd7217c8b86323f8ab4203ba9b2cfc406ae78561c403bf4e77aa8c38c5d07a56d0d9f7d0cca648c49b946b9f7236bf32db6b110780a95943b3a7b503454ea5743a5e78f3e62360a3eff3509fce34b462f7c01ef93f8f0a976049b45c9f909ab8357d5dbb0c2c4871915c5c07ccb351f596627067896825c440af73ac82fe4509e05995aec1b23928a00a5dd10e3a79cd958ed0f730fe8f5b370fdc7079e3cc08cdc3f575c94f20", 0xe6}], 0x1, 0x0, 0x0, 0x4000000}, {0x0, 0x0, &(0x7f0000001c80)=[{&(0x7f0000001bc0)="739f616af31bc46aabcc724dab44e03f2814b82bfa29834674947c898f2826ba306da1fddab28b7d503b365537cff139fc026e59b2a1b721e963d9ef3efc9b796761503539bc789df58a62b7ca9155b2dd707f888fb46b89df37751096a70f39d58cdb12a49a629ec212d0848360cdd89e2b1d3c483ea32c5f0a3fa9dfaaeba11c5c064b", 0x84}], 0x1, &(0x7f0000001cc0)=[@assoc={0x18, 0x117, 0x4, 0x3}, @iv={0x68, 0x117, 0x2, 0x4d, "d8289f96c8b5408f6d8c4265df9f7814b8873d6865f5bf5cc9cd137e17e6d1f72b4ccd712d32cd2dd55fdec69da0c7e0cccb953b9ce12944f662032fc680c035d645592a306446eebc03140150"}, @assoc={0x18, 0x117, 0x4, 0x6}], 0x98, 0x254f1fe8d4ea0305}, {0x0, 0x0, &(0x7f0000001ec0)=[{&(0x7f0000001d80)="2f30c75ad5852ca716fca4a0a0d16c50525143185ebf45846a952bc1b042f9912ba2e1cf9a9582996e56d5ec4882ebf1304585e3e4a71dfc227b248ce4e90f43ef65006d7a91925b95074278efbc70a1011a460909d00604ab51122f05d34f6113bbad153f7ed785e9059c6aff0f879d396de054ded8336f5c851d5fa414672ca8e76286d9631662debc4ebf5c95220291ae54fd1beaf84dfa55cd9eb123b50501d8b354bba63e35b0817fcf7aed19f8bdee100f3bf522", 0xb7}, {&(0x7f0000001e40)="a6553263748df98a00515f6b252ebfba1bda7cbd78c0ecc5bfc11ba06d24288c3759b294923094ad55702ad88cb14722661593b1f5ea3e279fc4311f336c96783595426cc6971546c8a906d39612e2c12ed190dc62a32b5b1f2418f9a4b9e109", 0x60}], 0x2}, {0x0, 0x0, &(0x7f0000002240)=[{&(0x7f0000001f00)="e8b29bf874fd4fe03ca012897dbd6e4203bcff3ed76748d38e04b94554d1ea10b671f4f99066a6630503d5ba3aa69b486b90705d3f89cc0c292a96136f1fbbfffd3929237a83b3d20d791408a4ce2270f83790ff1105034b254b6f8f86c3793269acba8b99bf175b8415b11889285adbc02470f1aeff1d", 0x77}, {&(0x7f0000001f80)="7fba2972e813733ec7048bcd0d23f55069ae7f4068449e69dac7f151571fa69600b7b88cf38a0f821fa6dba091a8ff98e02fe4e7cefd6d310011e8077a5f034b962d7f17201782fe9643457c6e46c253a974a1f137bf909fedff50d4c42ecda329b1ebe8695e85f89075ca7ef75c0b2d40ead5d1d953da7b2567211a8c1d504a272491eda530b7a97305f50f25f08752364089f06f3e3f3d855262d941c8e41bd8813bcd731f7271ca3cc073aeaca2fdbf69ff3311d5fe12074145bdcdb39ad71eec503a055ecb7933ea45e36b30e2", 0xcf}, {&(0x7f0000002080)="ca36e4dc700e51405288e2c0071d67383bc54a9e604d13da072a94939e71a1fa37b81272b5aa78ef909e33b7bb3ad7a8a19602986b4a41c192eb83415ab24e11f8a9e6e28a158d84d10e5bd311cf476398b35390ca575a16f0077028dc08ac336bb6c81390c47d637484b3d3010485b540d3f94efaa6549386eb4b1ddc3dc09a558a143a23a83153945e2f75bc4018204826c4a63dc0685341bbf613f9df4f23f82cd802611b73099fb1bfa11fbcb182724d495ed3dddacc85d347484bd86b25a3e20aad91f6766b8ea663334d", 0xcd}, {&(0x7f0000002180)="abe9d51c2103ec95aeaf2bef8a88ea4a316c3331b8b2461236fb5cf3e04425d79301d5c6cb271bc6bc0d15dccfb074c9a8afc8b3de30b9ea9d4be3ea9d4d39f0c5906415455359c1ed39c78532a044bd7ac1b882b9e0630a1318de91dd662d755b408c89fc836c1c6de82005da1bc13eac62dc3d9de1d7dbb11fd274504d84dce42467c9a2e2884eb7a74b910ea61e495c6b3c827501c28fea15010c737301541cc3f2794146fa7137ee0e43cb2f851a37cecafc532abbcac58535ea6864ac", 0xbf}], 0x4, &(0x7f0000002280)=[@op={0x18, 0x117, 0x3}, @op={0x18, 0x117, 0x3}, @assoc={0x18, 0x117, 0x4, 0x9}, @assoc={0x18, 0x117, 0x4, 0x100}, @assoc={0x18, 0x117, 0x4, 0x7f}, @iv={0x78, 0x117, 0x2, 0x63, "11e43a1ae4404267a1b79de167591c47cc05ddecb48c4ea64c966e98a5bb022130908cb9b00a14a9f6a027334cdb0cdbb1a3d994ff84ef1e582c14fc1c549d8f3daad788007a544feb7165c269d3af19a5a2412edd28a1f91ffa9cee3a9c6de396da2c"}, @iv={0x70, 0x117, 0x2, 0x5b, "09da259f70314f80d3548491de134f12084e16bc1c3fb68f2ca22c522e47d38c8c3e7f64ecde5b739d5ffb95735eb2a5eeb875f2e02afd9de19b695a0ac5f7023ea5325651a71a09443ab034c9a13f8a0b992c0d578421b6dbe2c3"}], 0x160, 0x4001}, {0x0, 0x0, &(0x7f0000003840)=[{&(0x7f0000002400)="15fc8bd4d5642fecbee901d622c5ff06072ebbcdd062679e6c7c5db00977451bb2bdb524aaaafd3c3be5414439347d23b26f427af31859619fbc8b38b5bcef1e67c34bbda497b0278e47af9e9814446c266dddb560a817ed209964d700a92be40c31c322b9f625ca62e32118e07fd1e90ec06f5a11814a9c1af61b50f598e9fda8500c28f557ffabb1b37739c01c730c9df4d810b23282f7806fc6012471ecd28a2040d0444affda0c46bb96f68f5658e54b5a066ba1d74019408e3f3e9c913961ee8973e848dfe93f882aa3c66cd16357f7eeb4213fc47ac25281738f759e2d3e9b8ff3b1", 0xe5}, {&(0x7f0000002500)="5554f856a9e2a08bdf231be10c2f4e989371", 0x12}, {&(0x7f0000002540)="68c5", 0x2}, {&(0x7f0000002580)="ddea88193da46fbb46ce27b575a687fcd85a713c185ed2e79b092bd122dbfde0c144b490980a6e443f791e9b2f2559c5c9f896e21dee4d8c858bf38d8cd648db9c6c0edb7ffc69191cf189d28d44292ff17283863d37e6ddaa99c636bde26344c9865e3ca7b1b4d2d2b8e51f9ac2690ed7a187f58b95e1a4863a98c1828434eade93d561f7e91ac7f0374b3bae630b5279ddaf2c90485968e4e6cb98b77b27bd2ba97e5b312cfafe88d56d23", 0xac}, {&(0x7f0000002640)="cbbe834023c5fbd2667b9067c6f6c5ab9f86f77f1898351347537a1aae3f132e5cf5be4d5e0ade1078868ac0c789a5f7165743c91960c1633be567bcf02faa15899498c92cd52c619412ed82448bb1", 0x4f}, {&(0x7f00000026c0)="c52b50546b62e084d229728570147114d368fa293ea96a479c0d7415fb4102e50760c439ccb0b6bdcd7d0e67de77109472d2a16fb12e7aa6d79f4a3e159e6dca8c1b1ba0b0eb6129fdc04e2c3317986f74e8f4f12f915adf2d2eb8889e7c23ef0e45edfe585ca166d39c949a9c5983e1694bf8422b0c0a19523e4f169628110884c09456aba035921edf6c7cdcfbb702579c4ed650540f427b66adc383f16a5229b93c286cd128f881f72b956a30ccc093e4998733bcda43e81e213a44", 0xbd}, {&(0x7f0000002780)="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", 0x1000}, {&(0x7f0000003780)="05fb12ff39eb0e23155a9304b943b6e09e981bab9dda955f5f2224607a5c3196b12b816feafae24e58cc790a9f0528d7396207c22ff8651a37aa3cfdad21afd1ce9f2a7767a8c131defe0156c50311761b6bc702f2a4c129edf4d0e282a4814944cd7ee3d57811dcf6f6735396c101b0fd91c98217095abb9d35a4ddbc7622756d139487ca102fd3cbd55575a60f76235f48bb5137f681bfafadffd6f3a0b53617d6a5e52387758841", 0xa9}], 0x8, &(0x7f00000038c0)=[@op={0x18, 0x117, 0x3, 0x1}, @iv={0x48, 0x117, 0x2, 0x2f, "3448cb9a43607ee033193093efbad1f27a831bb83aa8d375b924ff02363f55e5dfb8399e8f4a901457e1783cce1dc5"}, @op={0x18, 0x117, 0x3, 0x1}, @op={0x18, 0x117, 0x3, 0x1}, @iv={0x58, 0x117, 0x2, 0x3d, "2f5a97c75888e2efa5908b87699d4177954042585fecc0a76802528f7d08139f83242a9dcc211b576aeebec6022e73686dbdfc7e53c884b02b483f066f"}], 0xe8, 0x4004800}, {0x0, 0x0, &(0x7f0000003a00)=[{&(0x7f00000039c0)="de4a1e0acf9e8b3ebc1b912a2a5e014630e1b44444f1aa2b4b93422c1ed8703249329b4cbdefd958", 0x28}], 0x1, &(0x7f0000003a40)=[@assoc={0x18, 0x117, 0x4, 0x9a6}, @op={0x18, 0x117, 0x3}, @iv={0x98, 0x117, 0x2, 0x7d, "87baa5d989afedd92b9d9a3f8a3c3b2d53038384ca69b575092a9f2698e14760411aa9761e11d55cf49bef4eaf1f1f3cfb0bb0c1ff7e611019602de4b1a6e975f0fac5ec1569e68fa5d855eadbc45b93b2e2ac3d05cd7cdd3e6b2b94678323f038b7ea12b61fa5f5fe09361e97454cecdbf7f4d968e5651ede0a2a454a"}], 0xc8, 0x48000}], 0x9, 0x4000000) r2 = socket$netlink(0x10, 0x3, 0x4) writev(r2, &(0x7f0000000000)=[{&(0x7f0000000040)="580000001400192340834b80040d8c5602062200010400004001000000005800004824ca944f64009400050028825a003b5fbe907902008000f0fffefffffe03edf8fef5dd00000010000100000c0900fcff4d00040e05a5", 0x58}], 0x1) 09:05:40 executing program 5: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000480)="025cc83d6d345f8f762070") r1 = socket$alg(0x26, 0x5, 0x0) bind$alg(r1, &(0x7f0000000180)={0x26, 'skcipher\x00', 0x0, 0x0, 'kw(aes-fixed-time)\x00'}, 0x58) r2 = getpgid(0xffffffffffffffff) fcntl$getownex(r1, 0x10, &(0x7f0000000280)) fcntl$getown(r0, 0x9) r3 = getpgid(r2) r4 = perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xedd5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r5 = socket$inet(0x2, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(r0, 0x84, 0x6, &(0x7f0000000340)={0x0, @in6={{0xa, 0x4e22, 0x75, @dev={0xfe, 0x80, [], 0x1b}, 0x70f}}}, &(0x7f0000000080)=0x84) getsockopt$inet_sctp_SCTP_GET_PEER_ADDRS(r5, 0x84, 0x6c, &(0x7f0000000980)=ANY=[@ANYRES32=r6, @ANYBLOB="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"], &(0x7f0000000100)=0x2) setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(0xffffffffffffffff, 0x84, 0x75, &(0x7f00000000c0)={0x0, 0x20000000040002}, 0xfffffffffffffcd0) r7 = socket(0xa, 0x1, 0x0) fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000000)) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000440)) fcntl$getown(0xffffffffffffffff, 0x9) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000580)) fstat(r7, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) setgid(r8) r9 = socket(0x10, 0x2, 0x0) getsockopt$sock_cred(r9, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xc) openat$audio(0xffffffffffffff9c, &(0x7f0000000400)='/dev/audio\x00', 0x10000, 0x0) setgroups(0x0, &(0x7f0000000000)) setresuid(0x0, r10, 0x0) shmget$private(0x0, 0x4000, 0x1808, &(0x7f0000ffb000/0x4000)=nil) syz_genetlink_get_family_id$ipvs(&(0x7f00000005c0)='IPVS\x00') ptrace(0x4219, r3) setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(r7, 0x84, 0x19, &(0x7f0000000140)={r6, 0x1ff}, 0x8) ioctl$RTC_AIE_ON(r4, 0x7001) setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000040)="71e67a15cdf0311cfc093a52a7d86bd1", 0x10) setsockopt$inet_group_source_req(r9, 0x0, 0x2f, &(0x7f0000000740)={0x2, {{0x2, 0x4e22, @loopback=0x7f000001}}, {{0x2, 0x4e1e, @multicast2=0xe0000002}}}, 0xfd25) personality(0x5000002) 09:05:40 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)={{}, 0x0, 0x200000000000000}) 09:05:40 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x8983, &(0x7f0000000040)={'lo\x00', {0x2}}) 09:05:40 executing program 2: syz_mount_image$vfat(&(0x7f0000000180)='vfat\x00', &(0x7f0000000080)='./file0/file0\x00', 0x0, 0x0, &(0x7f0000001580), 0x0, &(0x7f0000000340)) syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f0000000100)='./file0\x00', 0xe004, 0x1, &(0x7f0000000380)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020401000200027000f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) 09:05:40 executing program 1: r0 = socket$inet_udp(0x2, 0x2, 0x0) r1 = socket$inet6(0xa, 0x1000000000002, 0x5) ioctl(r1, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") bind$inet6(0xffffffffffffffff, &(0x7f00000000c0)={0xa, 0x0, 0x0, @mcast1={0xff, 0x1, [], 0x1}}, 0x1c) close(r0) r2 = socket(0x840000000002, 0x3, 0xff) setsockopt$SO_BINDTODEVICE(r2, 0x1, 0x19, &(0x7f0000000040)='erspan0\x00', 0x10) connect$inet(r0, &(0x7f0000593000)={0x2, 0x0, @multicast1=0xe0000001}, 0x10) sendto$inet(r0, &(0x7f00000000c0), 0x366, 0x0, 0x0, 0xfffffffffffffe7c) setsockopt$inet_udp_int(r0, 0x11, 0x67, &(0x7f0000000000)=0x5, 0x4) 09:05:40 executing program 4: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0) r1 = userfaultfd(0x0) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000003fe8)={0xaa}) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000001fe2)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1}) r2 = socket$inet6_sctp(0xa, 0x1, 0x84) removexattr(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)=@random={'btrfs.'}) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r2, 0x84, 0x64, &(0x7f0000000040)=[@in={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x1c}}], 0x10) setsockopt$inet_sctp6_SCTP_DISABLE_FRAGMENTS(r2, 0x84, 0x8, &(0x7f0000013e95), 0x4) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r2, 0x84, 0x65, &(0x7f0000000000)=[@in6={0xa, 0x0, 0x0, @mcast1={0xff, 0x1, [], 0x1}}], 0x1c) close(r2) close(r1) [ 150.594968] hugetlbfs: syz-executor5 (10308): Using mlock ulimits for SHM_HUGETLB is deprecated 09:05:40 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_SET_GSI_ROUTING(r1, 0x4008ae6a, &(0x7f0000000000)=ANY=[@ANYBLOB="0200000000000000000000000192079aacd9db8c8bdb9775337341cc37c49684e9f21e35d9a3a49c31113ce6d458662ed7651bb5251fc013fe0d32bf04eed56e5e93e3d4bf4282b9c7c38ee7a65c65666963db4dc25037e70ba78af03807c4fd63dd325b804c099afae0eb3a844360383c9c46e427b5534e9682db2a23c14915914b50fea110d1fd958fa6f8df7ab4a5aefa6504ae648f9bf1259cbbcedc8c"]) 09:05:40 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)={{}, 0x0, 0xfeffffff}) 09:05:40 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x8902, &(0x7f0000000040)={'lo\x00', {0x2}}) 09:05:40 executing program 2: syz_mount_image$vfat(&(0x7f0000000180)='vfat\x00', &(0x7f0000000080)='./file0/file0\x00', 0x0, 0x0, &(0x7f0000001580), 0x0, &(0x7f0000000340)={[{@shortname_win95='shortname=win95', 0x2c}]}) syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000380)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020401000200027000f801", 0x17}], 0x0, &(0x7f0000000340)=ANY=[]) 09:05:40 executing program 1: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r1, 0x40045431, &(0x7f0000000040)) ioctl$TIOCPKT(r1, 0x5420, &(0x7f0000000000)=0x1f) r2 = syz_open_pts(r1, 0x0) ioctl$TCFLSH(r2, 0x5437, 0x103) 09:05:40 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x80080, 0x0) ioctl(r0, 0x890e, &(0x7f0000000040)="025cc83d6d345f8f762070") r1 = syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1) recvmmsg(r1, &(0x7f0000002480)=[{{0x0, 0x0, &(0x7f0000001dc0), 0x0, &(0x7f0000001e00)=""/190, 0xbe}}, {{&(0x7f0000002300)=@generic, 0x80, &(0x7f0000002400), 0x0, &(0x7f0000002440)=""/16, 0x10}}], 0x2, 0x0, &(0x7f0000002600)={0x0, 0x1c9c380}) 09:05:40 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={"6c6f0600", {0x2}}) 09:05:40 executing program 1: mmap(&(0x7f0000001000/0x4000)=nil, 0x4000, 0xfffffffffffffffe, 0x32, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$dmmidi(&(0x7f0000000080)='/dev/dmmidi#\x00', 0xffffffff, 0x200040) connect$inet(r0, &(0x7f00000000c0)={0x2, 0x4e22, @multicast2=0xe0000002}, 0x10) r1 = syz_open_procfs(0x0, &(0x7f0000000040)="006400ecff0345") r2 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x82000, 0x0) getdents64(r1, &(0x7f0000000180)=""/66, 0x42) setsockopt$inet_tcp_TLS_TX(r1, 0x6, 0x1, &(0x7f0000000000)={0x303, 0x33}, 0x4) ioctl$VHOST_SET_VRING_KICK(r2, 0x4008af20, &(0x7f0000000140)={0x2, r0}) getdents64(r1, &(0x7f0000000df0)=""/528, 0x7f355eb8) 09:05:40 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)={{}, 0x0, 0x3f000000}) [ 150.892872] FAT-fs (loop2): bogus number of reserved sectors [ 150.898793] FAT-fs (loop2): Can't find a valid FAT filesystem 09:05:41 executing program 6: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = eventfd(0x0) ioctl$KVM_IRQFD(r1, 0x4020ae76, &(0x7f00000015c0)={r2, 0x0, 0x2, r2}) socketpair$inet(0x2, 0x0, 0x0, &(0x7f0000000080)) r3 = syz_open_dev$admmidi(&(0x7f0000000000)='/dev/admmidi#\x00', 0x9, 0x2000) ioctl$EVIOCGSW(r3, 0x8040451b, &(0x7f00000000c0)=""/137) close(r2) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) 09:05:41 executing program 5: r0 = socket$inet6(0xa, 0x1000000000006, 0x0) ioctl(r0, 0x108912, &(0x7f00000000c0)="025cc83d6d345f8f76f577") syz_mount_image$ext4(&(0x7f0000000400)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000440)="0001000000ff000000000000c9030000ec00000001000800000011cc0a56d4a9a75900000020000000010000000000006e5fbe5c0000ffff53ef0100010000006e5fbe5a0000c9ca68e30d69e5000000000000010000000000800000002c00000000000088", 0x65, 0x400}], 0x8000, &(0x7f0000000000)) 09:05:41 executing program 0: r0 = socket$kcm(0xa, 0x1, 0x0) setsockopt$sock_attach_bpf(r0, 0x1, 0x3d, &(0x7f00000000c0), 0x177) r1 = syz_open_dev$admmidi(&(0x7f0000000180)='/dev/admmidi#\x00', 0x10001, 0x34002) ioctl$KVM_SET_REGS(r1, 0x4090ae82, &(0x7f00000001c0)={[0xebf, 0x9, 0x81, 0x401, 0x8, 0x4, 0x200000000001000, 0x5, 0x0, 0xff, 0x1, 0x100000000, 0x5, 0x9, 0x3, 0xfff], 0x100000, 0x810}) openat$cgroup_subtree(r1, &(0x7f0000000140)='cgroup.subtree_control\x00', 0x2, 0x0) r2 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/qat_adf_ctl\x00', 0x0, 0x0) ioctl$FIONREAD(r2, 0x541b, &(0x7f0000000080)) getsockopt$inet_sctp6_SCTP_RESET_STREAMS(r1, 0x84, 0x77, &(0x7f0000000100)=ANY=[@ANYRES32=0x0, @ANYBLOB="71fb0300060001001800"], &(0x7f0000000280)=0xe) getsockopt$inet_sctp_SCTP_RTOINFO(r2, 0x84, 0x0, &(0x7f00000002c0)={r3, 0x1f, 0x2, 0x3ff}, &(0x7f0000000300)=0x10) ioctl$IOC_PR_REGISTER(r2, 0x401870c8, &(0x7f0000000040)={0xbd8, 0x3, 0x1}) 09:05:41 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={"6c6f0000000000000100", {0x2}}) 09:05:41 executing program 2: syz_mount_image$vfat(&(0x7f0000000180)='vfat\x00', &(0x7f0000000080)='./file0/file0\x00', 0x0, 0x0, &(0x7f0000001580), 0x0, &(0x7f0000000340)={[{@shortname_win95='shortname=win95', 0x2c}]}) syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f0000000100)='./file0\x00', 0xe004, 0x0, &(0x7f0000000380), 0x0, &(0x7f0000000340)=ANY=[]) 09:05:41 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, &(0x7f0000000180)={'team0\x00', 0x0}) stat(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0}) setsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0x10, &(0x7f0000000280)={{{@in6=@local={0xfe, 0x80, [], 0xaa}, @in6, 0x4e22, 0x0, 0x4e20, 0x0, 0x2, 0xa0, 0x80, 0xbb, r1, r2}, {0x3f, 0x8, 0x2, 0xffff, 0x1, 0x3, 0x8001, 0x9}, {0x3ff, 0x8, 0x70, 0x3}, 0x3, 0x6e6bb1, 0x1, 0x0, 0x2, 0x2}, {{@in6=@ipv4={[], [0xff, 0xff], @local={0xac, 0x14, 0x14, 0xaa}}, 0x4d2, 0xff}, 0x2, @in6=@dev={0xfe, 0x80, [], 0x10}, 0x3503, 0x7, 0x1, 0x80000001, 0x6f2, 0xed, 0x8}}, 0xe8) getsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000000380), &(0x7f00000003c0)=0x4) r3 = syz_open_dev$midi(&(0x7f0000000400)='/dev/midi#\x00', 0x3ff, 0x200000) ioctl$KVM_SET_MP_STATE(r3, 0x4004ae99, &(0x7f0000000440)=0x6) r4 = request_key(&(0x7f0000000540)='dns_resolver\x00', &(0x7f0000000580)={0x73, 0x79, 0x7a, 0x2}, &(0x7f00000005c0)='eth0)vboxnet0bdev\x00', 0xfffffffffffffff9) request_key(&(0x7f0000000480)='ceph\x00', &(0x7f00000004c0)={0x73, 0x79, 0x7a, 0x1}, &(0x7f0000000500)='team0\x00', r4) getsockopt$inet_sctp_SCTP_NODELAY(r3, 0x84, 0x3, &(0x7f0000000600), &(0x7f0000000640)=0x4) write$FUSE_OPEN(r3, &(0x7f0000000680)={0x20, 0x0, 0x1, {0x0, 0x7}}, 0x20) setsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX_OLD(r3, 0x84, 0x6b, &(0x7f00000006c0)=[@in={0x2, 0x4e22, @local={0xac, 0x14, 0x14, 0xaa}}], 0x10) geteuid() fanotify_init(0xa, 0x40000) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000700)='GPLem0keyringvboxnet0eth1[cpuset;\x00', r3}, 0x10) setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f0000000780)={@empty, @multicast1=0xe0000001, 0x1, 0x8, [@empty, @empty, @local={0xac, 0x14, 0x14, 0xaa}, @dev={0xac, 0x14, 0x14, 0x21}, @loopback=0x7f000001, @multicast2=0xe0000002, @empty, @dev={0xac, 0x14, 0x14, 0x13}]}, 0x30) setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r3, 0x84, 0x20, &(0x7f00000007c0)=0x80000001, 0x4) setsockopt$inet6_udp_encap(r3, 0x11, 0x64, &(0x7f0000000800)=0x5, 0x4) bind$inet6(r5, &(0x7f0000000840)={0xa, 0x4e20, 0xf3, @local={0xfe, 0x80, [], 0xaa}, 0xd60f}, 0x1c) getsockopt$inet_sctp_SCTP_GET_ASSOC_STATS(r5, 0x84, 0x70, &(0x7f0000000880)={0x0, @in={{0x2, 0x4e21, @rand_addr=0x7a1f}}, [0x2, 0xfffffffffffffffb, 0x6, 0x0, 0x1ba, 0x2, 0x3, 0x8, 0x101, 0x5, 0x40, 0x5, 0xaf8f, 0x4, 0xffffffff80000000]}, &(0x7f0000000980)=0x100) getsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(r5, 0x84, 0x22, &(0x7f00000009c0)={0x6, 0x200, 0x7, 0x4b6, r6}, &(0x7f0000000a00)=0x10) ioctl$SG_SET_COMMAND_Q(r5, 0x2271, &(0x7f0000000a40)=0x1) ioctl$TIOCNOTTY(r5, 0x5422) socket$inet6(0xa, 0x8000f, 0x395) llistxattr(&(0x7f0000000a80)='./file0\x00', &(0x7f0000000ac0)=""/115, 0x73) ioctl$SNDRV_CTL_IOCTL_HWDEP_INFO(r3, 0x80dc5521, &(0x7f0000000b40)=""/4096) accept4$nfc_llcp(r5, 0x0, &(0x7f0000001b40), 0x800) ioctl$EVIOCGVERSION(r5, 0x80044501, &(0x7f0000001b80)=""/35) keyctl$get_keyring_id(0x0, r4, 0x2) ioctl$KVM_GET_DIRTY_LOG(r5, 0x4010ae42, &(0x7f0000001bc0)={0x10001, 0x0, &(0x7f0000ffc000/0x2000)=nil}) [ 151.260308] QAT: Invalid ioctl [ 151.266854] QAT: Invalid ioctl [ 151.278696] EXT4-fs (loop5): couldn't mount RDWR because of unsupported optional features (80) [ 151.287521] EXT4-fs (loop5): couldn't mount as ext2 due to feature incompatibilities [ 151.290692] QAT: Invalid ioctl [ 151.302257] FAT-fs (loop2): bogus number of reserved sectors [ 151.308141] FAT-fs (loop2): Can't find a valid FAT filesystem 09:05:41 executing program 4: r0 = perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x4, &(0x7f0000001380)=ANY=[@ANYBLOB="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", @ANYRES32=0x41424344, @ANYPTR=&(0x7f0000000300)=ANY=[@ANYBLOB="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", @ANYPTR64=&(0x7f00000000c0)=ANY=[@ANYPTR], @ANYRESDEC=r0, @ANYRES64=r0, @ANYRESHEX=r0, @ANYPTR64=&(0x7f0000000100)=ANY=[@ANYRES64=r0, @ANYPTR, @ANYRESDEC=r0, @ANYRES16=r0], @ANYRESDEC, @ANYRESHEX=r0], @ANYBLOB="00000000000000006944584c80fc47751fb6610d018b6c045e1f8b90c226bdd85359ecaa6e198b1c9a5c0845c70e985a3df2b36eb5dd0a69cb1d42143e096f093beebf888acf0cb5ad6924b3d9c15f4e613292bab4c3fd0720366fefc6cb5415"], &(0x7f00000002c0)={0x0, 0x0, [0x0, 0x0, 0xfffffffffffffffd]}) r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ppp\x00', 0x40, 0x0) ioctl$KDSETMODE(r1, 0x4b3a, 0x5) ioctl$TIOCSTI(r1, 0x5412, 0x1ff) 09:05:41 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)={{}, 0x0, 0x2}) 09:05:41 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={"6c6fffffff00", {0x2}}) 09:05:41 executing program 1: r0 = socket(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000840)={&(0x7f0000000080)={0x10}, 0xc, &(0x7f0000000800)={&(0x7f00000002c0)=ANY=[@ANYBLOB="2800000010002103008a26000000000000000000", @ANYRES32=0x0, @ANYBLOB="000000000000000008001a0004000a00"], 0x3}, 0x1}, 0x4080) getsockopt$inet_sctp_SCTP_LOCAL_AUTH_CHUNKS(r0, 0x84, 0x1b, &(0x7f0000000000)={0x0, 0x4a, "16b53e216227fd904d423ccc42a9558fba4387545b5905f6eb9edd80c238835a8ccb5ef873affd723f506b5461d074105b236f92ea84926b29a4a7cd9f543b387866965cd5234b915f2f"}, &(0x7f00000000c0)=0x52) ioctl$SNDRV_RAWMIDI_IOCTL_DRAIN(r0, 0x40045731, &(0x7f0000000100)) socket(0xf, 0x800, 0x2cb) 09:05:41 executing program 0: r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$int_out(r0, 0x5462, &(0x7f0000000000)) mmap(&(0x7f00002c6000/0x3000)=nil, 0x3000, 0x8, 0x10, r0, 0x0) mmap(&(0x7f0000000000/0xd25000)=nil, 0xd25000, 0x1000001, 0x32, 0xffffffffffffffff, 0x0) getsockopt(r0, 0x400000000000003a, 0x1, &(0x7f0000261f44)=""/188, &(0x7f0000000ffc)=0xbc) [ 151.344401] EXT4-fs (loop5): couldn't mount RDWR because of unsupported optional features (80) [ 151.353235] EXT4-fs (loop5): couldn't mount as ext2 due to feature incompatibilities 09:05:41 executing program 2: syz_mount_image$vfat(&(0x7f0000000180)='vfat\x00', &(0x7f0000000080)='./file0/file0\x00', 0x0, 0x0, &(0x7f0000001580), 0x0, &(0x7f0000000340)={[{@shortname_win95='shortname=win95', 0x2c}]}) syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f0000000100)='./file0\x00', 0xe004, 0x1, &(0x7f0000000380)=[{&(0x7f0000010000)}], 0x0, &(0x7f0000000340)=ANY=[]) 09:05:41 executing program 6: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000480)="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", 0x200002, 0x0) r1 = openat$cgroup_int(r0, &(0x7f0000000100)='cpuset.cpus\x00', 0x2, 0x0) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x8}, 0x0, 0x0, 0xffffffffffffffff, 0x400000) sendfile(r1, r1, &(0x7f0000000040), 0x1) 09:05:41 executing program 0: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") shmat(0x0, &(0x7f0000ffc000/0x4000)=nil, 0x4000) shmget$private(0x0, 0x4000, 0x404, &(0x7f0000ffc000/0x4000)=nil) shmget$private(0x0, 0x4000, 0x210, &(0x7f0000ffb000/0x4000)=nil) r1 = shmget$private(0x0, 0x2000, 0x808, &(0x7f0000ffe000/0x2000)=nil) ioctl$VT_ACTIVATE(r0, 0x5606, 0x9) shmctl$SHM_LOCK(r1, 0xb) mlock(&(0x7f0000ffc000/0x2000)=nil, 0x2000) shmctl$SHM_UNLOCK(0x0, 0xc) 09:05:41 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)={{}, 0x0, 0xfeffffff00000000}) 09:05:41 executing program 5: perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket(0x10, 0x2, 0x0) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xc) socket$inet6_udplite(0xa, 0x2, 0x88) setuid(r1) ioprio_get$uid(0x3, r1) 09:05:41 executing program 1: r0 = socket$inet6(0xa, 0x6, 0x0) bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20}, 0x1c) r1 = socket$inet_dccp(0x2, 0x6, 0x0) listen(r0, 0x6) connect$inet(r1, &(0x7f0000e5c000)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x20}}, 0x10) r2 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$TIOCGSID(r2, 0x5429, &(0x7f0000000240)=0x0) r4 = gettid() kcmp(r3, r4, 0x7, r1, r0) sendmmsg(r1, &(0x7f0000005700)=[{{&(0x7f0000003900)=@pptp={0x18, 0x2, {0x0, @rand_addr}}, 0x80, &(0x7f0000003b80), 0x3a5, &(0x7f0000003bc0)}}], 0x3a6, 0x0) getsockopt$IP6T_SO_GET_REVISION_TARGET(r0, 0x29, 0x45, &(0x7f0000000140)={'TPROXY\x00'}, &(0x7f0000000200)=0x1e) r5 = openat$zero(0xffffffffffffff9c, &(0x7f0000000040)='/dev/zero\x00', 0x400000, 0x0) getpeername$unix(r5, &(0x7f0000000080)=@abs, &(0x7f0000000100)=0x6e) 09:05:41 executing program 2: syz_mount_image$vfat(&(0x7f0000000180)='vfat\x00', &(0x7f0000000080)='./file0/file0\x00', 0x0, 0x0, &(0x7f0000001580), 0x0, &(0x7f0000000340)={[{@shortname_win95='shortname=win95', 0x2c}]}) syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f0000000100)='./file0\x00', 0xe004, 0x1, &(0x7f0000000380)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400", 0xc}], 0x0, &(0x7f0000000340)=ANY=[]) 09:05:41 executing program 4: r0 = socket$inet6(0xa, 0x1, 0x0) ioctl(r0, 0x4000008912, &(0x7f0000000100)="295ee1311f16f477671070") r1 = socket$alg(0x26, 0x5, 0x0) rename(&(0x7f0000000000)='./file0\x00', &(0x7f0000000140)='./file0\x00') bind$alg(r1, &(0x7f0000000080)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-des3_ede-asm\x00'}, 0x58) setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000000), 0x18) 09:05:41 executing program 6: r0 = syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x2, 0x28001) write$evdev(r0, &(0x7f0000000080)=[{{}, 0x1, 0x47, 0x2}, {{0x0, 0x7530}}], 0x30) syz_open_dev$evdev(&(0x7f0000000040)='/dev/input/event#\x00', 0x7, 0x2000) 09:05:41 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)={{}, 0x0, 0xffffffff00000000}) 09:05:41 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) unshare(0x400) semget$private(0x0, 0x3, 0x420) r2 = openat$cuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/cuse\x00', 0x4002, 0x0) ioctl$TUNSETQUEUE(r2, 0x400454d9, &(0x7f0000000100)={'ifb0\x00'}) r3 = eventfd(0x3bc7) ioctl$KVM_IRQFD(r1, 0x4020ae76, &(0x7f0000000080)={r3}) r4 = syz_open_procfs(0x0, &(0x7f0000000040)='fd/3\x00') ioctl$KDSETMODE(r4, 0x4b3a, 0x3) ioctl$KVM_IRQFD(r1, 0x4020ae76, &(0x7f0000000000)={r3, 0x0, 0x2, r3, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3f000000]}) 09:05:41 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={"6c6f000000000000001e00", {0x2}}) 09:05:41 executing program 0: r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000140)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, &(0x7f0000000000)) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f00000009c0)={0x1, 0x1, &(0x7f0000000180)=""/193, &(0x7f0000000c40)=""/97, &(0x7f0000000300)=""/127, 0x10000}) r1 = syz_open_dev$admmidi(&(0x7f0000000600)='/dev/admmidi#\x00', 0x0, 0x20000) getsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(0xffffffffffffffff, 0x84, 0x18, &(0x7f0000000640)={0x0, 0x65}, &(0x7f0000000700)=0x8) getsockopt$inet_sctp_SCTP_DEFAULT_PRINFO(r1, 0x84, 0x72, &(0x7f0000000740)={r2, 0x1, 0x10}, &(0x7f0000000780)=0xc) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f00000000c0)={0x1, 0x0, &(0x7f0000000040)=""/83, &(0x7f0000000380)=""/181, &(0x7f0000000440)=""/141}) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000001900)=ANY=[]) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f00000006c0)=0x1) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000002bc0)=ANY=[@ANYBLOB="01000000000000002000000000000000e3ffffffffffffff", @ANYPTR=&(0x7f0000000a00)=ANY=[@ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00'], @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00']) r3 = request_key(&(0x7f00000007c0)='id_resolver\x00', &(0x7f0000000800)={0x73, 0x79, 0x7a, 0x1}, &(0x7f0000000840)='/dev/audio\x00', 0x0) r4 = add_key(&(0x7f0000000900)='.request_key_auth\x00', &(0x7f0000000940)={0x73, 0x79, 0x7a, 0x2}, &(0x7f0000000b00)="56fde96dd0a119627519e2c1621f9929e61dae9e2a1dc92ee017c75973e557238e1e0021e63b19ea7d8cf752e36c42c55f55509203f64afc91992bf1ac5568f6c7ae115761831d92df872fb4b078065ef3431b42e4d4fa65ba1571cc781d13f61b321f6a550caad6fca7b9ee1862292f3cb596113b5f67362ab9200ec434ba9746f549e5ade44c4d5818855a5ba94d37283bd43c7029d1", 0x97, 0xfffffffffffffff9) keyctl$negate(0xd, r3, 0x3e8a, r4) r5 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x1, 0x0) getsockopt$inet_sctp_SCTP_PARTIAL_DELIVERY_POINT(0xffffffffffffff9c, 0x84, 0x13, &(0x7f0000000280)={0x0, 0x6}, &(0x7f00000002c0)=0x8) r7 = getpgid(0x0) fcntl$lock(r5, 0x0, &(0x7f0000000980)={0x0, 0x0, 0x8000, 0x4, r7}) getsockopt$inet_sctp_SCTP_GET_PEER_ADDR_INFO(r1, 0x84, 0xf, &(0x7f0000000500)={r6, @in6={{0xa, 0x4e20, 0x10001, @mcast1={0xff, 0x1, [], 0x1}, 0x3ff}}, 0x6f9, 0x80000001, 0x2, 0x1, 0xffff}, &(0x7f00000005c0)=0x98) 09:05:41 executing program 6: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x0, 0x11, r2, 0x0) r3 = creat(&(0x7f0000000040)='./file0\x00', 0x3) ioctl$SIOCGIFHWADDR(r3, 0x8927, &(0x7f0000000100)) r4 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhost-net\x00', 0x2, 0x0) ioctl$VHOST_SET_FEATURES(r4, 0x4008af00, &(0x7f0000000080)=0x200000000) ioctl$int_in(r4, 0x40000000af01, &(0x7f0000000300)) r5 = openat$audio(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/audio\x00', 0x0, 0x0) close(r5) socket$packet(0x11, 0x3, 0x300) readv(r4, &(0x7f00000002c0)=[{&(0x7f0000001980)=""/150, 0x96}], 0x1) ioctl$VHOST_SET_MEM_TABLE(r4, 0x4008af03, &(0x7f00000007c0)=ANY=[]) ioctl$VHOST_NET_SET_BACKEND(r4, 0x4008af30, &(0x7f0000f1dff8)={0x0, r5}) 09:05:41 executing program 1: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") ioctl$FIDEDUPERANGE(r0, 0xc0189436, &(0x7f00000002c0)={0x9, 0x8, 0x7, 0x0, 0x0, [{r0, 0x0, 0x6}, {r0}, {r0, 0x0, 0x4}, {r0, 0x0, 0x7f}, {r0, 0x0, 0x9}, {r0, 0x0, 0x1ff}, {r0, 0x0, 0x5}]}) syz_read_part_table(0x0, 0xaaaaaaaaaaaabcd, &(0x7f0000001ac0)=[{&(0x7f0000000000)="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", 0x200}]) write$binfmt_aout(r0, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], 0x6fe) 09:05:41 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)={{}, 0x0, 0x0, 0x200000000000000}) 09:05:41 executing program 4: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000000)="025cc83d6d345f8f762070") r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0xf, 0x4, 0x4, 0x9}, 0x11) r2 = bpf$PROG_LOAD(0x5, &(0x7f00002a0fb8)={0xe, 0x3, &(0x7f0000c91000)=ANY=[@ANYBLOB="850000002f00000027000000000022009500000000000000"], &(0x7f0000000000)="f4206cd55d3174fccd51d063ca3dda5cbf5a01cc7ea92c43b604ffc53727d2d60f55ddeb757cf36a8457125ab48bcbcce4011a423df186cc8d8e6e9a66b1a0a6035a2fc0578cf5aad8b3a24a9c646a37eb26c6212ffc9658f152194b880765d169d550beb059984a10c2", 0x1, 0x99, &(0x7f000000d000)=""/153}, 0x48) bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000080)={r1, r2, 0x4}, 0x10) dup2(r2, r1) socket$kcm(0x29, 0x2, 0x0) 09:05:41 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={"6c6f00000000ffffffff00", {0x2}}) [ 151.667487] FAT-fs (loop2): bogus number of reserved sectors [ 151.673463] FAT-fs (loop2): Can't find a valid FAT filesystem [ 151.707586] irq bypass consumer (token 00000000f6cba87a) registration fails: -16 09:05:41 executing program 2: syz_mount_image$vfat(&(0x7f0000000180)='vfat\x00', &(0x7f0000000080)='./file0/file0\x00', 0x0, 0x0, &(0x7f0000001580), 0x0, &(0x7f0000000340)={[{@shortname_win95='shortname=win95', 0x2c}]}) syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f0000000100)='./file0\x00', 0xe004, 0x1, &(0x7f0000000380)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020401000200", 0x12}], 0x0, &(0x7f0000000340)=ANY=[]) 09:05:41 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)={{}, 0x0, 0x0, 0xfeffffff00000000}) 09:05:41 executing program 0: r0 = socket$inet6(0xa, 0x2, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000380)={0x1, &(0x7f0000000340)=[{0x6}]}, 0x10) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$LOOP_SET_STATUS64(r1, 0x4c04, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x3, 0x5, 0x0, 0x7, 0x11, 0x10, "dac2102b97a2b03cb21ea54a88f11a070e1ffc0dc85f222d765b4a7d2805384814d30ef05e680e7d256c34340ea37eedb0cbf28eb4cbe84e659a1280ae99cb45", "1833032fea99fa3e464ffc25517f9bd36fc14fc2949f0e0b6a1cc5f4f58c74d0bd177103f4c16c0e621b71cfb04d8cac89ffc5eb75baa8fc92298aca8e8b194d", "6b86b9a335c57380e5babefbf5ad197a267e2633250ff75e90c7f503a3444171", [0x5, 0x1ff]}) bind$inet6(r0, &(0x7f0000f13000)={0xa, 0x4e22}, 0x1c) syz_emit_ethernet(0x3e, &(0x7f0000694ffe)=ANY=[@ANYBLOB="ffffffffffff0180c200000086dd6006f5260008114000000000000000000000000000110000ff22000000000000000000000000000100004e2200089078"], &(0x7f0000775000)) 09:05:41 executing program 5: r0 = getpid() ptrace$peekuser(0x3, r0, 0x0) clone(0x18000000, &(0x7f0000000400)="0021bc65b7fac0eb0d27b66929ab5feb2f57b122005cd86ad85814a8535749024d562859ba59241731f2e697f956640bb7c5f34506cf695d2c01ed060000", &(0x7f0000000040), &(0x7f0000000380), &(0x7f00000003c0)) r1 = openat$uinput(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/uinput\x00', 0x0, 0x0) setsockopt$inet6_IPV6_PKTINFO(0xffffffffffffffff, 0x29, 0x32, &(0x7f0000000180)={@mcast1={0xff, 0x1, [], 0x1}}, 0x14) futex(&(0x7f000000cffc), 0x0, 0x0, &(0x7f0000000000)={0x77359400}, &(0x7f0000048000), 0x0) kcmp$KCMP_EPOLL_TFD(r0, r0, 0x7, r1, &(0x7f0000000080)={r1, r1, 0x3}) futex(&(0x7f000000cffc), 0x4, 0x1, &(0x7f0000cc3ff0), &(0x7f000044b000), 0x0) 09:05:41 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={"6c6ffffffdfd00", {0x2}}) 09:05:41 executing program 4: r0 = socket$packet(0x11, 0x3, 0x300) uname(&(0x7f0000000140)=""/244) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'ip6gre0\x00', 0x0}) bind$packet(r0, &(0x7f00000000c0)={0x11, 0x0, r1, 0x1, 0x0, 0x6}, 0x14) setsockopt$packet_int(r0, 0x107, 0xa, &(0x7f0000000000)=0x2, 0x4) setsockopt$packet_tx_ring(r0, 0x107, 0x5, &(0x7f0000000040)=@req3={0x10000, 0x100000001, 0x10000, 0x1}, 0x1c) [ 151.819530] Dev loop1: RDB in block 0 has bad checksum [ 151.824896] Dev loop1: unable to read RDB block 1 [ 151.829789] loop1: unable to read partition table 09:05:41 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)={{}, 0x0, 0x0, 0x3f000000}) 09:05:41 executing program 2: syz_mount_image$vfat(&(0x7f0000000180)='vfat\x00', &(0x7f0000000080)='./file0/file0\x00', 0x0, 0x0, &(0x7f0000001580), 0x0, &(0x7f0000000340)={[{@shortname_win95='shortname=win95', 0x2c}]}) syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f0000000100)='./file0\x00', 0xe004, 0x1, &(0x7f0000000380)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020401000200027000", 0x15}], 0x0, &(0x7f0000000340)=ANY=[]) 09:05:41 executing program 0: r0 = userfaultfd(0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000c34000)={0xaa}) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000040)={{&(0x7f000028a000/0x3000)=nil, 0x3000}, 0x1}) r1 = gettid() ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000000)={{&(0x7f000001b000/0x3000)=nil, 0x3000}, 0x1}) process_vm_writev(r1, &(0x7f0000c22000)=[{&(0x7f000034afa4)=""/1, 0x1}], 0x1, &(0x7f0000c22fa0)=[{&(0x7f0000000080)=""/1, 0x7ffff000}], 0x1, 0x0) mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2000001, 0x32, 0xffffffffffffffff, 0x0) close(r0) r2 = fcntl$dupfd(r0, 0x0, r0) ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r2, 0x40045532, &(0x7f00000000c0)=0x4) [ 151.911284] loop1: partition table beyond EOD, truncated [ 151.916991] loop_reread_partitions: partition scan of loop1 () failed (rc=-5) 09:05:41 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)={{}, 0x0, 0x0, 0x2000000}) 09:05:41 executing program 4: r0 = socket$inet6(0xa, 0x0, 0x0) r1 = socket$inet6(0xa, 0x1000000000002, 0x0) getsockopt$inet_sctp_SCTP_ENABLE_STREAM_RESET(0xffffffffffffff9c, 0x84, 0x76, &(0x7f0000000340)={0x0, 0x1}, &(0x7f0000000380)=0x8) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDR_INFO(r0, 0x84, 0xf, &(0x7f00000004c0)={r2, @in6={{0xa, 0x4e20, 0x8cd, @local={0xfe, 0x80, [], 0xaa}, 0x3}}, 0x8, 0x7, 0x0, 0x2, 0x3ff}, &(0x7f0000000480)=0x98) ioctl(r1, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x81000000000002, &(0x7f0000000000)=0x75, 0x4) bind$inet(0xffffffffffffffff, &(0x7f0000deb000)={0x2, 0x4e23, @multicast1=0xe0000001}, 0x10) setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f00000000c0)={0x1, &(0x7f0000f40ff8)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(0xffffffffffffffff, &(0x7f0000a88f88), 0x29f, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @loopback=0x7f000001}, 0x10) pipe(&(0x7f00000003c0)={0xffffffffffffffff}) ioctl$TCSETAF(r3, 0x5408, &(0x7f0000000400)={0x8f, 0x7fffffff, 0xb68, 0xfffffffffffff801, 0x2, 0x2, 0x5, 0x3f4b, 0x1, 0x3}) r4 = msgget$private(0x0, 0x200) msgctl$IPC_INFO(r4, 0x3, &(0x7f0000000140)=""/110) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x1b, &(0x7f0000000440)=0x89, 0xfffffffffffffd76) recvmsg(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000040)=@nfc, 0x80, &(0x7f00000001c0)=[{&(0x7f0000003ac0)=""/4096, 0x1000}], 0x1, &(0x7f0000000200)=""/20, 0x14}, 0x100) write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000580)=ANY=[@ANYBLOB="7f454c4600250000050000000000000003003e00060000002c010000000000004000000000000000e1000000000000000500000087003800020002000700ea000200007001000000ea0a000010000000f7ffffffffffffff00000000ffffffff0000000000000000010000000100000001000000000000000100007004d23cce77ebfcecf5000000000000000000000005000000000000000100000001000000ff0f00000000000000fcffffffffff70d723273d395b5dfe49a633eb0eb0263328129db30c89090000000000000093d1149401363a977a2b10bc8394762bab8dc889b26829f721e3098b0f80c2f4ee55bcf0df04911af0a6a16e0ab5b5bb1e2227df0cb7c103be567ea3b9adef738dd4b7efbd9e56dfc0dc488a064d4ad246d477bc8f01b6c1fbcdb1469e544a6ac9afa9987b94c8d1209a41a79416931a8f43bd761418a2c47221a2a4d6bee2592cd6eab8fa3ac582965b48d68fb1dde7d102a327e9f073a52942892de4cc87c25e76cde841dd1e09db3f59955450018b682981af9bf3133a11fbf7915b41105bd663e6f7116777b3cb43f260d25a06d22119ca7674f7d9eeb496cccae5ea73758600072b6f0c2a39d824fa2081cb9377fbc132be60c8b0bf6ac0a892b355685d62cb70778de889c359d7bfc544111c6ca232e6c6593a0b8f085567b065536d649fea6d4e202254fc1a0dedba780af208b0457ed33958cfd97c0155f59b06d997423bb3b6f3d5e01c8b74030434cacb0e50dcc661aff03a72021b6011f6ff05f6070f0bcb7d75cbf1668562cd6599dcf1eac792c47370ac83b2730215d9955f6fa81f59d3209fbaf52f41f8c413432d976fe6eb3ae98661de6250e09bcf7b82d0492b349ca022abade27ee2d41aa83ba7d2ed5193dda7e9c78769b1430e5a171e12e0fa1d057e1aef4b856ab0f2dabc8b207f09d78e1f83461ccac0b2558732ea70d369973971d2c6d94081f33308b1e4b27a2ce6f45838809407045aa63b6219d82564c7323f73bfc2260fd95e5e8eeca550ba9adcca47883c43dacae12ac88e7fea5a99df90755e5caf59185794edb7d9d45d51827f6419a22fe36d9070ed6558b090cb871914491e2a135047b729107896b784bf87c941f7b993033898b993c83b8bcec93aed20e900921e8c8e716306215c5554e11ff4839258d1477a2e8fceaa921a0180000000000000dc53b5ed4bd907c3942d8fac1eff961bf3040ae0faed3985bccc35551fdfcd52907750828fc988e60aec5b577af9769cebc8d6e87a826826f8362c84fe7ec9e6d3cc39c1b6b6b9005eaaf0d9037fa476757018d3f60fbab576284cd7343e70a4b8143dc67e94c1090b7376eec330f5995c4b3a119646b4a953cf0669d6e52264827bbbae2c7565529a68f46f5e1a23137059867d0192caf6b22e2d74f8fbe12a139bc90a0d12b6acc0a106ba4fc2baf87c254bb540835206fc5f63dbc82581cec68813c331af00086cae9716106b7c4683d5f1b0dd68b8a419f583f0387cc9d1a435e329a0595d73a4489b1ea23c331ca752bfd46de13faee26e7e2e9b11dd7151883ac8112c0ba049070bcf00881cc0a37395f1a102cddda4b0b903b0233461e70254e6a75b9c29c02f87bcb630d5cd58867e5f8e5b47fdb2fb53e0b97be9a08714575e454274581a8ad758ba53da32d2c893e8a40de0febf31f80116558a9db7c53dec27895d69fa1a34e4b5b856f4d0974a9dd4031e28632a245b921a576ffa19f47d7ba08e9ca94a7ae46c89b379d90e0dfdcffb790586d920ea79f94af735aa51695dfe0c9c73a44b277e877b473b43f5c3a960d7c5e22678ab3f7cf46bdf23cbbd31df6138080000000500000025eab7dbd56f7b426b784583ec97db1659afc57c54ed115a4ded5f21a84e709cd879f8e5afe72366ffcd05c29b929f6049a02ff6ad59b3fe569e0b92c7978630ff418af3b81e35a19df805a2b89b9b87a13109c19ea941e9b9f6ee1c47708a70abfda2debce7eae0f356bc896a5a207f6bc3ed4186117e1ae9b861d3a9a94520a6df99fd700c6fc3b82467a1257c2040dd34b2fb30c032224e6b864900f93168e387edaeeedaebf8b7b40d4caaa97c85229e63770ced3382013fd11010d0ee46333666aaec98aacc511c92be9e55eee400c74ab4614552624ad88f5d55b6f87e85826ee7cf6f15418f9712c6d07f36a54f097d9bc48b3035ae569af4753e7851dc520fe4726d0c96d0cb7b45e5ca5002884d38ed8e8ead8d4a7da76f9bcfd848fd27345bec7dd4356ef7b11a0cd3113bd9d9bd72597daf8e25b987b6a17329b9c581e7e647eddd060553fd6e6d90bc07ffc5ca9eb6e9ce36aa545ac0f6e242e381282522481668f05909a69db9c8f417ce2406fb727c11fa8ed3ec6f0c7fed51414f3286075c414753979f58a70d97539c1215ad15f4f2bdc9cb27e00245bb2291f767d4c581387a63022c727026043c0180a848edd1c3fffff21c3fe0b11c65caca8941959552882277e3dc9e61da52527a24e2d79a497a80b33b24f1ca184d56ad13194867d7a0a424977b5f256a4643460a03007ccf2abb042c6a8f357e8c67298fcee68fa10d82aecc9c63884f43927635db04bfa6651a630ff1e9450cd69830f257e5d2b500e4447f0301000000d82871b7075be875dee546cd23ae617356f51fe8f1fb11417e63a436d7ca0ecd22fab3719ab5b4a4fa0ac2b6a44002fdddb61f7d6fe2be0600000000000000da4cb487c430a42cd6de823dddf4567d7a6ac785662eb272ea9ea2b425ef707c5746dbdb071ad14023e0d63a2d027fc3bfa6da9c1537a5c207c9f2495bd45eee778875ba641ceb20f3fb23d572b9a4e40e0b088374bdaea56d0b4247f12ebb7cf6ee0e64b0d521c8634ce945287f752adfde004e37bee0451540bcabf4326a39a9f41c785055b43233e287e4ce36ebbf2cf0dde125b72b90c40cc5bdf77f66b07bf5423a80409e1e95424e2d63c09e621354d87d29d28758c290f29746e00e72e1f6ee9fc93841a7a4ec7420c1d78c09f9355b41c5b6a2e94d84218428a4e4e40bcab84f0cdc9a230101146a11e1f36367b4b5f21e76b5e58c31aec27a47e7ce6c22d29c553f03d0515199b541750e92718c53542cb8c0e42014e3b5bc2a4e3cd4fd1e33ba846b2d2d1c94d2e73327b1d327fe80ff1113634e2e94769b97a1088c2f00001fd26ffbf3b4b82036e960a01efd1eecb0e4cff78f350221728060a27f2ebaa20ac131cddf19065dad03237cca7406b5c30228494fe25d1be39d26631795f3b0a1ff6ac6c8c27e37a75bce127c582beed29fe6137efe5ac28a2a89597db794c570055e318e92f17f36e3fcbc68c8233d0800433f9e11b2819ade8026682c9c966d13605ba9cfa66d91f8203260ed06d8c53912b2c25be01165ebda24e3b70c4fa4a99c56470ee40080aa92272d6ba4a0906d5b8df7039b82bf83378b78ce124aca8b7944fffdd65bfca51e33614282fb1738dd43c6b95f2bc5e9b24605ff3fb5a06ece40c2c4a86b93acdde534777d47c5196e7ef7d65ff45606324b402aa6b81afa46572991041a3f63f96bc442cd25a033b7b6feed08de0f00bccb16c439813c6c4b1d1733bb55a6245ab080ec71a7f31631613c60afbaa9e3811250989103000000dfe0dccb4141f74e366a28b4fdeef59bb22f6f525c493912a044bd99a3b4b86b2834b4f837d58d4292a22a730b6a2e5ec7bf358c2016326fff4889d5d5e1beec898a3a88d0f4a450d86548a1a9b1cc1bee45e6a4e2c4e09cd69a51d46190755bd42c1e53d4a1f80010da651d6c500a066afa9c98755acf643ff381af66742c6e091746c77e0f14f2583d6d70339ed50e9da34a0aa8820359872132179f087f16cdaf3636688927e39a857a99f911d08406b6addefa9f895f3b29812234eaf4d5a93b9363fa02a4ee9fe8676811004fabc8121f7639e9f92c0d7f796a6355e984d7a85aadc6220847666f8f52c4571516eb1a9fc487e918956411823e1edef555a61ba7d45931457b221bdcc8aaad58e8007497a8846278e0aed68926d3ea9fd96a89ccc8880f25b343eea6e3109627c86da315c3eb5445bf799df613befe958390660f6c9f7ac02e3187100f18ea3bfacf9662601fc9868329b3524cb8c07850726355bd748f7c51b32e6c4341676cef6af55351e5fd6128c616127b9799d196d38d63bf0cd20b85f4bc79a2895b9c5c4d46090b4e1a10394f8ba7201d45d3878dc9b3e7ec3510073424b92a7448f9d8d9c15fff2a1c0e6dde7e6ad83f6243b21c6c14bd1b36e834b9cdc2b09022c0ddad8b5cdedb4a9e401acd96b77825cf6cb459e0c70b310c4d6f7a192c6766e75bab1099cd3219b69e5814d64b50e64680b8bbe41065eac33f24c280ae6d89ef5fad05d8a9b635b052176cc3a9c2c9ffd43c0530deafd29079147dd34b5cd866e7feffe95f7e695a40c216729ab52614cb603b6065e88ce689e29e016313ebc63814b33ffc28f8bbe846e6c5aceb44e92af060d2e3407c2ecb95be53e68a2dd5cac2cebc0d202fb01557e017fccda71d8dfab8c686dd8b0aba628417e3e39dbfa08ba07f8faeb2edf59a513dbf07325bf6e2604d1896e7ecaef489fa240d7c962c654c803898146af6ff04c01117033cb7e1d960e0996d5ad4261514c61ea804e2effcaa4478cf3e39cfd79f8649886892bc2ee8459333e00600000047a728f4543619037f0e4e461ded523d75cc9fa8461a46ffa6ace8015f062df6f9ef9af0ee03bc156b3197fe6348a4d84e5da4c058e9d4e8722e30cea964e8f1c96070a8f973c6646c0730f5c46309d37c87ef3c61eaa3ee8947ded16b4012c120000000000000006de562f749dfcb22d80c6d998c5b1cfba66cb84a803f5cfcb1c68a08711308f536f5c2ba4daa8b14f90132012efb0749df28fcf75bc3afc818706550a2f07398745d67b1dda4014e816daf6655c8540e23a5719e413a59cbdab51bf05a8c65f1b3270386676f22bb81351d9480675f1c169bf833467c832d736364bcfc2f314cc43656e1ea5077c9433362e96b4fde669f97a2b4d70b66ab2dea08953a9d4223a5be36bd3bb93d7a0d51b3770f656f698e272e6c8cf175df0729b3000000007a245fd65cd227beced78d2f3816ddc6e458de06b859efc50dfc719a93d60ad660a7fac045631bbff7401d8db635dfc0f14bf297b4e03103bea91a94cfbdac5d4ffb6e6d371369a2744537539b5d1220f2555509996acc58a9a21b0b607a9062fccd469133c5b2db1c0b62ed0205d07bc55e457e44e6a509863ccfca7dd770d2687e3e8430b1586e2be9572fdbe002db7305d0dd50d8810143f0947ca665726d71bceb3976775e0dc8fb548c43b81f6d3be87a090750371f6059e4270005b61f9f46e0ba5e49313055cf1c25c20945ae0ae7564f246c3c6cd61a59c69f091edb454c0e8a265e50135c3d7ac5a8a0c57d0c5663125c947ffb1b80f2b7b4f5b82a4f4011446f675bace00000750ccf6e145285bf4e294825b25f45ff78cf787ba58e28595fe76d023109c363f27b4236b4063e8cf4e28bf5e27887f912970eff09ebd02258df3b6d1047d53be10c58efab6849353c9287a4376a05eedb5e049363d3882feaa030cd868b912c1d4754248f7a0a0338f0d3b3c5147f3db59ab3300e5781c006499efdb1064908b03c373e42a2204e3f984c3fced1601bf067ea20b567627580477f58e393a25c81a680da7f00000000726722863be650d125c08b9bd28a9d1b69b59e0de9e82acdaf745a831d680afb10293d331f921ef5596e7274618714122700802f7f03656df693e707c4a5ffa4317b688112d6c05d3d71d9107e2b2d3c678ecd3c23cb757856e179aa4a1c837798796d528d0ab20e7a60cd090e71ebc9b3b51e04ca48fded61d927853b7f078df020baa7942f0c1309b0d653853969a34e2626ccfd5c2ae55d152b133ec3fbba287876420b96a4ebb6b8273e568731970c6d05ac00000000"], 0x1000) ioctl$sock_SIOCSIFBR(r1, 0x8941, &(0x7f0000000300)=@get={0x1, &(0x7f00000002c0)=""/62, 0x5}) [ 151.966923] FAT-fs (loop2): invalid media value (0x00) [ 151.972309] FAT-fs (loop2): Can't find a valid FAT filesystem [ 152.053520] Dev loop1: RDB in block 0 has bad checksum [ 152.058919] Dev loop1: unable to read RDB block 1 [ 152.063903] loop1: unable to read partition table [ 152.082679] loop1: partition table beyond EOD, truncated [ 152.088266] loop_reread_partitions: partition scan of loop1 () failed (rc=-5) 09:05:42 executing program 2: syz_mount_image$vfat(&(0x7f0000000180)='vfat\x00', &(0x7f0000000080)='./file0/file0\x00', 0x0, 0x0, &(0x7f0000001580), 0x0, &(0x7f0000000340)={[{@shortname_win95='shortname=win95', 0x2c}]}) syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f0000000100)='./file0\x00', 0xe004, 0x1, &(0x7f0000000380)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020401000200027000f8", 0x16}], 0x0, &(0x7f0000000340)=ANY=[]) 09:05:42 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)={{}, 0x0, 0x0, 0x3f00}) 09:05:42 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={'lo\x00\x00\x00`\x00', {0x2}}) 09:05:42 executing program 1: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu\x00', 0x200002, 0x0) r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000340)='/dev/audio\x00', 0x200000, 0x0) setsockopt$bt_BT_DEFER_SETUP(r1, 0x112, 0x7, &(0x7f0000000380)=0x3, 0x4) r2 = openat$cgroup_ro(r0, &(0x7f0000000140)='hugetlb.2MB.usage_in_bytes\x00', 0x0, 0x0) r3 = socket(0x40000000015, 0x5, 0x0) setsockopt$SO_RDS_TRANSPORT(r3, 0x114, 0x8, &(0x7f0000000200)=0x2, 0xa) setsockopt$sock_int(r3, 0x1, 0x8, &(0x7f00006dbffc), 0x4) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) bind$inet(r2, &(0x7f0000000240)={0x2, 0x4e20, @loopback=0x7f000001}, 0x10) ioctl$sock_inet_SIOCDELRT(r3, 0x890c, &(0x7f00000002c0)={0xfffffffffffffffa, {0x2, 0x4e20}, {0x2, 0x4e24, @local={0xac, 0x14, 0x14, 0xaa}}, {0x2, 0x4e23, @local={0xac, 0x14, 0x14, 0xaa}}, 0x8, 0xe74, 0x6, 0x3f, 0xb8d, &(0x7f0000000280)='rose0\x00', 0x7, 0x1, 0x1}) setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f0000000040)="a6e2640304acfa90a3c75b27474a5d58c4627361b98ab9e4f9f4aed7fbd118dfbc1c480f7f915313c736f42c1b386c57cc2c720d0fdb1ee2939b46949a0d84169be40c41e14d45507eb2d4b5bdc255ee5d4d42a062b6a7fb404e03438765600cf2355b8aa35fab08a00ba1bcb2b254e71089f80cc3e4f72a9650edfae1e89c0e2bcbaece70fd9cb1cca3e06feb114484930abbe8bd606224ef5979bcb2db567bcf61c43923189ee2f9283598c326647ef2b73eceb5ce70fbce204133b44878081ea26a749119ac", 0xc7) sendto$inet(r3, &(0x7f0000000e40)="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", 0x481, 0x0, &(0x7f00000004c0)={0x2, 0x4e20, @loopback=0x7f000001}, 0x10) sendto$inet(r3, &(0x7f00004b3fff), 0x0, 0x0, &(0x7f00002b4000)={0x2, 0x4e20, @loopback=0x7f000001}, 0x10) recvmmsg(r3, &(0x7f0000004440)=[{{&(0x7f0000003c80)=@l2, 0x80, &(0x7f0000004380)}}], 0x1, 0x0, &(0x7f0000004540)={0x0, 0x989680}) 09:05:42 executing program 4: r0 = socket(0x2000000000010, 0x2, 0x0) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, 0x0}, &(0x7f0000cab000)=0xc) setresuid(0x0, r1, 0x0) pipe(&(0x7f0000000140)={0xffffffffffffffff}) write$FUSE_DIRENTPLUS(r3, &(0x7f0000000200)={0x1f0, 0x0, 0x6, [{{0x3, 0x2, 0x6, 0x10001, 0x80, 0xb5e2, {0x2, 0x4, 0x16cb, 0x0, 0xec5d, 0xffff, 0x66, 0x20, 0x2, 0x401, 0xf17, r1, r2, 0x60c, 0x8}}, {0x1, 0x0, 0x8, 0x9, '[wlan0-*'}}, {{0x1, 0x1, 0xb1, 0x2, 0xbfb, 0x3f, {0x5, 0x5, 0x532e, 0x0, 0x5, 0x3, 0x5a, 0x4, 0x7fffffff, 0x5, 0x11, r1, r2, 0x1, 0x4}}, {0x3, 0x66, 0x8, 0x0, 'keyring\x00'}}, {{0x4, 0x3, 0x2, 0x0, 0x4, 0x4, {0x2, 0x9, 0x6, 0x9, 0xffffffffffffff80, 0x120000000000000, 0x3, 0x8, 0x3, 0x80000000, 0x80000000, r1, r2, 0x2, 0x81}}, {0x6, 0x7ff, 0x1, 0xfffffffffffff9ed, '{'}}]}, 0x1f0) r4 = add_key$keyring(&(0x7f0000000040)='keyring\x00', &(0x7f0000000080)={0x73, 0x79, 0x7a}, 0x0, 0x0, 0xfffffffffffffffe) getsockopt$inet_sctp6_SCTP_ASSOCINFO(r0, 0x84, 0x1, &(0x7f0000000000)={0x0, 0x0, 0x10001, 0x3, 0x3, 0x5bdd}, &(0x7f00000000c0)=0x14) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f00000001c0)={r5, 0x38, &(0x7f0000000100)=[@in6={0xa, 0x4e21, 0x5, @ipv4={[], [0xff, 0xff]}, 0x2}, @in6={0xa, 0x4e20, 0x9, @local={0xfe, 0x80, [], 0xaa}, 0x800}]}, &(0x7f0000000180)=0x10) keyctl$chown(0x4, r4, r1, r2) 09:05:42 executing program 6: r0 = socket$inet(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000500)=@broute={'broute\x00', 0x20, 0x1, 0x208, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000140], 0x0, &(0x7f0000000100), &(0x7f0000000140)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1, [{{{0x11, 0x0, 0x0, 'ip_vti0\x00', 'bond_slave_0\x00', 'gre0\x00', 'bcsf0\x00', @dev={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa]}, [], @remote={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xbb}, [], 0xf8, 0x128, 0x178, [@cluster={'cluster\x00', 0x10}, @nfacct={'nfacct\x00', 0x28, {{'syz0\x00'}}}]}, [@common=@CLASSIFY={'CLASSIFY\x00', 0x8}]}, @common=@IDLETIMER={'IDLETIMER\x00', 0x28, {{0x0, 'syz1\x00'}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff}]}, 0x280) setsockopt$inet_mreq(r0, 0x0, 0x27, &(0x7f0000000000)={@broadcast=0xffffffff}, 0x8) 09:05:42 executing program 5: r0 = getpid() ptrace$peekuser(0x3, r0, 0x0) clone(0x18000000, &(0x7f0000000400)="0021bc65b7fac0eb0d27b66929ab5feb2f57b122005cd86ad85814a8535749024d562859ba59241731f2e697f956640bb7c5f34506cf695d2c01ed060000", &(0x7f0000000040), &(0x7f0000000380), &(0x7f00000003c0)) r1 = openat$uinput(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/uinput\x00', 0x0, 0x0) setsockopt$inet6_IPV6_PKTINFO(0xffffffffffffffff, 0x29, 0x32, &(0x7f0000000180)={@mcast1={0xff, 0x1, [], 0x1}}, 0x14) futex(&(0x7f000000cffc), 0x0, 0x0, &(0x7f0000000000)={0x77359400}, &(0x7f0000048000), 0x0) kcmp$KCMP_EPOLL_TFD(r0, r0, 0x7, r1, &(0x7f0000000080)={r1, r1, 0x3}) futex(&(0x7f000000cffc), 0x4, 0x1, &(0x7f0000cc3ff0), &(0x7f000044b000), 0x0) 09:05:42 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={'lo\x00@\x00', {0x2}}) 09:05:42 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)={{}, 0x0, 0x0, 0xfffffffe}) 09:05:42 executing program 4: r0 = socket$key(0xf, 0x3, 0x2) seccomp(0x0, 0x1, &(0x7f0000000140)={0x9, &(0x7f0000000080)=[{0x6, 0x6, 0x0, 0x7}, {0x3, 0xb1, 0x5, 0xfff}, {0x3, 0x1, 0x80000000, 0xffffffff}, {0x5, 0x9, 0x7f, 0x5}, {0x0, 0x1ff, 0x3ff, 0x7}, {0x7, 0x81, 0x1, 0x4d1}, {0xa, 0x0, 0x5647, 0x7fff}, {0x5, 0x73c, 0x3, 0x8}, {0x20, 0x1000, 0x7e, 0x8001}]}) sendmsg$key(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)={0x2, 0x8, 0x0, 0x3, 0x2}, 0x10}, 0x1}, 0x0) 09:05:42 executing program 2: syz_mount_image$vfat(&(0x7f0000000180)='vfat\x00', &(0x7f0000000080)='./file0/file0\x00', 0x0, 0x0, &(0x7f0000001580), 0x0, &(0x7f0000000340)={[{@shortname_win95='shortname=win95', 0x2c}]}) syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f0000000100)='./file0\x00', 0xe004, 0x1, &(0x7f0000000380)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020401000200027000", 0x15}], 0x0, &(0x7f0000000340)=ANY=[]) 09:05:42 executing program 0: r0 = syz_open_dev$sndctrl(&(0x7f000000a000)='/dev/snd/controlC#\x00', 0x0, 0x0) perf_event_open(&(0x7f0000001000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8ce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$SNDRV_CTL_IOCTL_PVERSION(r0, 0xc1105517, &(0x7f0000001000)) r1 = open(&(0x7f0000000080)='./file0\x00', 0x10200, 0x8) write$P9_RXATTRWALK(r1, &(0x7f0000000100)={0xf, 0x1f, 0x2, 0x20}, 0xf) r2 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r3 = syz_open_dev$sndctrl(&(0x7f00000000c0)='/dev/snd/controlC#\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(r3, 0xc0505510, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 'syz0\x00'}) fcntl$getflags(r2, 0x0) 09:05:42 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={"6c6f0000000400", {0x2}}) 09:05:42 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)={{}, 0x0, 0x0, 0x2}) [ 152.830988] xt_nfacct: accounting object `syz0' does not exists 09:05:42 executing program 4: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") syz_mount_image$msdos(&(0x7f00000000c0)='msdos\x00', &(0x7f0000000180)='./file0\x00', 0xe800, 0x1, &(0x7f00000001c0)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020401000200027400f8", 0x16}], 0x0, &(0x7f0000000240)=ANY=[]) open(&(0x7f0000021000)='./file0\x00', 0x200, 0x9) 09:05:42 executing program 6: r0 = socket$inet6(0xa, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='oom_score_adj\x00') write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x1, &(0x7f0000000080)={0xffffffffffffffff}, 0x106, 0x3}}, 0x20) write$RDMA_USER_CM_CMD_SET_OPTION(r1, &(0x7f0000000180)={0xe, 0x18, 0xfa00, @id_tos={&(0x7f0000000040)=0x56, r2, 0x0, 0x0, 0x1}}, 0x20) r3 = socket$inet(0x10, 0x3, 0xc) socket$can_raw(0x1d, 0x3, 0x1) sendmsg(r3, &(0x7f0000011fc8)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f0000000100)="240000000d0607031dfffd946fa2830020200a0009000100021d85680c1baba20400ff7e28000000110affffba16a0aa1c0009b356da5a80d18bec4c8546c8243929db2406b20cd37ed01cc0", 0x4c}], 0x1}, 0x0) [ 152.887926] FAT-fs (loop2): invalid media value (0x00) [ 152.893420] FAT-fs (loop2): Can't find a valid FAT filesystem [ 152.906634] xt_nfacct: accounting object `syz0' does not exists 09:05:42 executing program 0: bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000001780)=ANY=[], &(0x7f0000000180)="3efce7a1777c026d6ff7a03e8984074dbdadf4382a5af6e700003098e65077a6156fedae03cef1b4d3a0408b7bf9bf95ff10343b7bdb0d978e8c05c1569470588e9e9f9f75da9736d622eb263b55c6d17daaec41a1e1f4d489b254e763e87703ab00052098ae524474", 0x0, 0x252}, 0x48) socketpair(0x1, 0x2000000001, 0x0, &(0x7f0000000740)={0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x89f0, &(0x7f0000000080)="6970000100003000") modify_ldt$read_default(0x2, &(0x7f00000000c0)=""/5, 0x5) 09:05:42 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={'lo\x00\x00\x00@\x00', {0x2}}) 09:05:42 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)={{}, 0x0, 0x0, 0xffffffff00000000}) [ 152.983777] netlink: 'syz-executor6': attribute type 1 has an invalid length. [ 153.010980] netlink: 20 bytes leftover after parsing attributes in process `syz-executor6'. 09:05:43 executing program 1: r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000180)='/proc/sys/net/ipv4/vs/lblcr_expiration\x00', 0x2, 0x0) sendfile(r0, r0, &(0x7f00000000c0), 0x1) recvmmsg(r0, &(0x7f00000008c0)=[{{&(0x7f0000000280)=@hci={0x0, 0x0}, 0x80, &(0x7f0000000580)=[{&(0x7f0000000300)=""/202, 0xca}, {&(0x7f0000000400)=""/55, 0x37}, {&(0x7f0000000440)=""/191, 0xbf}, {&(0x7f0000000500)=""/106, 0x6a}], 0x4, &(0x7f00000005c0)=""/82, 0x52, 0x8000}, 0xfffffffffffffffd}, {{0x0, 0x0, &(0x7f00000007c0)=[{&(0x7f0000000640)=""/124, 0x7c}, {&(0x7f00000006c0)=""/72, 0x48}, {&(0x7f0000000740)=""/110, 0x6e}], 0x3, &(0x7f0000000800)=""/149, 0x95, 0x80000000}, 0x1}], 0x2, 0x40002040, &(0x7f0000000940)={0x0, 0x1c9c380}) ioctl$TUNSETIFINDEX(r0, 0x400454da, &(0x7f0000000980)=r1) ioctl$KDSKBLED(r0, 0x4b65, 0x9) 09:05:43 executing program 2 (fault-call:1 fault-nth:0): syz_mount_image$vfat(&(0x7f0000000180)='vfat\x00', &(0x7f0000000080)='./file0/file0\x00', 0x0, 0x0, &(0x7f0000001580), 0x0, &(0x7f0000000340)={[{@shortname_win95='shortname=win95', 0x2c}]}) syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f0000000100)='./file0\x00', 0xe004, 0x1, &(0x7f0000000380)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020401000200027000f8", 0x16}], 0x0, &(0x7f0000000340)=ANY=[]) 09:05:43 executing program 6: r0 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000080)='/dev/mixer\x00', 0xfffe, 0x0) ioctl$TIOCSLCKTRMIOS(r0, 0x5457, &(0x7f0000000040)) ioctl$PIO_SCRNMAP(r0, 0x4b41, &(0x7f00000000c0)="c6bbf39c8d6cc67e71a69a71b3b40fb1a12b6ce78a0a005e2abe9486af46e774bcc26f49a1a73ca79fe2fc3e89dd92b970482979caeee4a61b6b7b087b507d7d3203649b7a80282875aae5708f21dd602bd130fe08b8df818c1c5d8ad695c7ef60a05cb3ebc8d46fcbf89be59b10df54d4a7fa5ccda0e4cbd9fbcc8ae199dd8c27a3a9ec1e41ca6fc0a63770fc2aa58d22a7964d767c24e9d518455e0964efef92a9f1f083a681af07ecb1104825bb74c37f0791e93b8263e1595304b0b84e4758cbbc0ea613b0ad7d0f") r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000300)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSBRK(r1, 0x5409, 0x7) 09:05:43 executing program 4: r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0xb, 0x40, 0xa9, 0xa37, 0x1, 0x1}, 0x2c) bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x0, 0x3, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000230000000002800000850000000000fc0095"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0xce, &(0x7f0000000180)=""/206, 0x1, 0x0, [], 0x0, 0xf}, 0x48) r1 = syz_open_dev$mice(&(0x7f0000000100)='/dev/input/mice\x00', 0x0, 0x40) ioctl$FIONREAD(r1, 0x541b, &(0x7f0000000280)) socket$nl_route(0x10, 0x3, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0xc, 0x4, &(0x7f0000000040)=@raw=[@map={0x18, 0x0, 0x1, 0x0, r0}, @call={0x85, 0x0, 0x0, 0x1e}], &(0x7f0000000140)='GPL\x00', 0x41, 0xffc4, &(0x7f00000004c0)=""/167}, 0x48) 09:05:43 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)={{}, 0x0, 0x0, 0x3f00000000000000}) 09:05:43 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={"6c6f0000000200", {0x2}}) 09:05:43 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4068aea3, &(0x7f0000000140)={0x94}) 09:05:43 executing program 5: r0 = socket$inet_tcp(0x2, 0x1, 0x0) getpeername(r0, &(0x7f0000000000)=@hci={0x0, 0x0}, &(0x7f0000000080)=0x80) setsockopt$inet_mreqn(r0, 0x0, 0x27, &(0x7f0000683ff4)={@multicast2=0xe0000002, @loopback=0x7f000001, r1}, 0xc) setsockopt$inet_msfilter(r0, 0x0, 0x29, &(0x7f0000000200)={@multicast2=0xe0000002, @loopback=0x7f000001, 0x0, 0xa, [@remote={0xac, 0x14, 0x14, 0xbb}, @broadcast=0xffffffff, @multicast1=0xe0000001, @rand_addr, @empty, @broadcast=0xffffffff, @empty, @multicast2=0xe0000002, @remote={0xac, 0x14, 0x14, 0xbb}, @broadcast=0xffffffff]}, 0x38) setsockopt$inet_mreqsrc(r0, 0x0, 0x26, &(0x7f0000231000)={@multicast2=0xe0000002, @loopback=0x7f000001, @broadcast=0xffffffff}, 0xc) [ 153.610361] FAULT_INJECTION: forcing a failure. [ 153.610361] name failslab, interval 1, probability 0, space 0, times 0 [ 153.621740] CPU: 1 PID: 10698 Comm: syz-executor2 Not tainted 4.18.0-rc5-next-20180720+ #12 [ 153.630239] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 153.639667] Call Trace: [ 153.642269] dump_stack+0x1c9/0x2b4 [ 153.645977] ? dump_stack_print_info.cold.2+0x52/0x52 [ 153.651190] ? get_pid_task+0xd8/0x1a0 [ 153.655126] should_fail.cold.4+0xa/0x11 [ 153.659198] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 153.664726] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 153.669820] ? lock_downgrade+0x8f0/0x8f0 [ 153.673961] ? proc_fail_nth_write+0x9e/0x210 [ 153.678441] ? proc_cwd_link+0x1d0/0x1d0 [ 153.682486] ? kasan_check_read+0x11/0x20 [ 153.686631] ? do_raw_spin_unlock+0xa7/0x2f0 [ 153.691043] ? lock_acquire+0x1e4/0x540 [ 153.695002] ? fs_reclaim_acquire+0x20/0x20 [ 153.699319] ? lock_downgrade+0x8f0/0x8f0 [ 153.703461] ? check_same_owner+0x340/0x340 [ 153.707771] ? rcu_note_context_switch+0x730/0x730 [ 153.712687] __should_failslab+0x124/0x180 [ 153.716907] should_failslab+0x9/0x14 [ 153.720691] __kmalloc+0x2c8/0x760 [ 153.724213] ? strncpy_from_user+0x510/0x510 [ 153.728607] ? fput+0x130/0x1a0 [ 153.731872] ? __x64_sys_memfd_create+0x142/0x4f0 [ 153.736709] __x64_sys_memfd_create+0x142/0x4f0 [ 153.741363] ? memfd_fcntl+0x1e80/0x1e80 [ 153.745412] do_syscall_64+0x1b9/0x820 [ 153.749282] ? finish_task_switch+0x1d3/0x870 [ 153.754119] ? syscall_return_slowpath+0x5e0/0x5e0 [ 153.759035] ? syscall_return_slowpath+0x31d/0x5e0 [ 153.763949] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 153.769130] ? prepare_exit_to_usermode+0x291/0x3b0 [ 153.774138] ? perf_trace_sys_enter+0xb10/0xb10 [ 153.778794] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 153.783630] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 153.788832] RIP: 0033:0x455ab9 [ 153.792017] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 09:05:43 executing program 6: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) getsockopt$inet_sctp6_SCTP_ADAPTATION_LAYER(r0, 0x84, 0x7, &(0x7f0000000140), &(0x7f0000000200)=0x4) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = socket$inet6_udp(0xa, 0x2, 0x0) socket$inet6(0xa, 0xe, 0x10000000000000) setsockopt$inet6_int(r0, 0x29, 0x10000000000004b, &(0x7f0000000500)=0x2, 0x4) r2 = syz_open_dev$sndpcmc(&(0x7f00000000c0)='/dev/snd/pcmC#D#c\x00', 0x3, 0x201) getsockopt$bt_rfcomm_RFCOMM_LM(r2, 0x12, 0x3, &(0x7f0000000240), &(0x7f0000000300)=0x4) getsockopt$inet6_int(r1, 0x29, 0x48, &(0x7f0000000180), &(0x7f00000001c0)=0x4) stat(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)) r3 = syz_open_dev$audion(&(0x7f00000002c0)='/dev/audio#\x00', 0x0, 0x8004000410000) ioctl$IOC_PR_REGISTER(r3, 0x401870c8, &(0x7f0000000100)={0x0, 0x8}) 09:05:43 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={"6c6f00ffffff00", {0x2}}) 09:05:43 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)={{}, 0x0, 0x0, 0xfeffffff}) [ 153.811205] RSP: 002b:00007fb8b6388a88 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 153.819082] RAX: ffffffffffffffda RBX: 0000000020000380 RCX: 0000000000455ab9 [ 153.826334] RDX: 0000000020000398 RSI: 0000000000000000 RDI: 00000000004ba6a1 [ 153.833616] RBP: 000000000072bea0 R08: 0000000020000398 R09: 00000000fbad8001 [ 153.840882] R10: fe03f80fe03f80ff R11: 0000000000000246 R12: 0000000000000013 [ 153.848132] R13: 00000000004c233d R14: 00000000004d3de0 R15: 0000000000000000 09:05:43 executing program 5: r0 = socket$inet6(0xa, 0x6, 0x0) ioctl(r0, 0x8912, &(0x7f0000000100)="025cc83d6d345f8f762070") socket$inet6_icmp_raw(0xa, 0x3, 0x3a) syz_emit_ethernet(0x66, &(0x7f0000000040)={@link_local={0x1, 0x80, 0xc2}, @random="b42d87402e52", [], {@ipv6={0x86dd, {0x0, 0x6, "06f526", 0x30, 0x3a, 0x0, @remote={0xfe, 0x80, [], 0xffffffffffffffff}, @mcast2={0xff, 0x2, [], 0x1}, {[], @icmpv6=@pkt_toobig={0xffffff80, 0xfffffff5, 0x0, 0x0, {0x0, 0x6, "0a07ec", 0x0, 0x0, 0x0, @remote={0xfe, 0x80, [], 0xffffffffffffffff}, @ipv4={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2], [0xff, 0xff], @dev={0xac, 0x14}}}}}}}}}, &(0x7f00000016c0)={0x0, 0x2, [0x0, 0xc1]}) socket$inet6(0xa, 0x5, 0x7) 09:05:43 executing program 4: clone(0x0, &(0x7f0000000180), &(0x7f00000001c0), &(0x7f0000000000), &(0x7f0000000200)) r0 = getpid() r1 = syz_open_dev$mouse(&(0x7f0000000200)='/dev/input/mouse#\x00', 0x80, 0x101000) getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f0000000240)=ANY=[@ANYBLOB="0800e7ff", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0], &(0x7f00000002c0)=0x24) setsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r1, 0x84, 0x6, &(0x7f0000000300)={r2, @in={{0x2, 0x4e23, @rand_addr=0x16b}}}, 0x84) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) dup2(r4, r3) r5 = socket$inet6(0xa, 0x6, 0x1) ioctl(r5, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") fcntl$setownex(r3, 0xf, &(0x7f0000704000)={0x2, r0}) ioctl$sock_FIOGETOWN(r4, 0x8903, &(0x7f0000000040)=0x0) setsockopt$sock_linger(r5, 0x1, 0xd, &(0x7f0000000180)={0x1, 0x200}, 0x8) wait4(r6, 0x0, 0x1040080000000, &(0x7f0000000080)) 09:05:43 executing program 1: r0 = socket(0xa, 0x1, 0x0) setsockopt$EBT_SO_SET_COUNTERS(r0, 0x0, 0x81, &(0x7f0000000300)={'filter\x00', 0x0, 0x0, 0x0, [], 0x1, &(0x7f0000000280)=[{}, {}, {}, {}, {}], 0x0, [{}]}, 0x60) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r0, 0x84, 0x73, &(0x7f0000000000)={0x0, 0xfff, 0x10, 0x81, 0x2}, &(0x7f0000000040)=0x18) setsockopt$inet_sctp_SCTP_STREAM_SCHEDULER_VALUE(r0, 0x84, 0x7c, &(0x7f0000000080)={r1, 0xee, 0x6}, 0x8) 09:05:43 executing program 6: semget(0xffffffffffffffff, 0x4, 0x0) 09:05:43 executing program 0: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f00000005c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cts(cbc-camellia-asm)\x00'}, 0x7f) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000040)="0a0775b0d5e383e5b3b60ced5c54dbb7", 0x10) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg$alg(r1, &(0x7f0000000580)=[{0x0, 0x0, &(0x7f0000000780)=[{&(0x7f0000001900)="64621e4f65345b315561c915741bdd63cd", 0x11}], 0x1, &(0x7f0000000300)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x0) recvmsg(r1, &(0x7f0000000000)={&(0x7f0000000080)=@ethernet, 0x80, &(0x7f0000000200)=[{&(0x7f0000000140)=""/170, 0xffffff04}], 0x1, &(0x7f0000000240)=""/148, 0xfffffffffffffe78}, 0x0) 09:05:43 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)={{}, 0x0, 0x0, 0x0, 0x2}) 09:05:43 executing program 2 (fault-call:1 fault-nth:1): syz_mount_image$vfat(&(0x7f0000000180)='vfat\x00', &(0x7f0000000080)='./file0/file0\x00', 0x0, 0x0, &(0x7f0000001580), 0x0, &(0x7f0000000340)={[{@shortname_win95='shortname=win95', 0x2c}]}) syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f0000000100)='./file0\x00', 0xe004, 0x1, &(0x7f0000000380)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020401000200027000f8", 0x16}], 0x0, &(0x7f0000000340)=ANY=[]) 09:05:43 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={"6c6f001f00", {0x2}}) 09:05:43 executing program 1: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x20000000011, 0x4, 0x4, 0x400, 0x0, 0xffffffffffffffff, 0x0, [0x14]}, 0x2c) 09:05:43 executing program 6: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000deb000)={0x2, 0x3, @broadcast=0xffffffff}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000140)='bbr\x00', 0x4) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f00006dc000)=[{0x6, 0x0, 0x0, 0xa1}]}, 0x10) setsockopt$sock_int(r0, 0x1, 0xa, &(0x7f0000f59000)=0x5, 0x2cf) sendto$inet(r0, &(0x7f0000000440), 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback=0x7f000001}, 0x10) sendto$inet(r0, &(0x7f00005c8000)="c3401c344654f3c7d9fe1ba48c8e399aa4eedc3d6bd8ebd65c856a45d61154adc2b2a976fbffffffffffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9f6502ceab47e58114347b289546465a5eb278de12b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d08d4154004997e317b79", 0x82, 0x81, &(0x7f0000e66000)={0x2, 0x0, @multicast2=0xe0000002}, 0x10) sendto$inet(r0, &(0x7f0000000300)='^', 0x1, 0x0, &(0x7f0000000000)={0x2, 0x0, @loopback=0x7f000001}, 0x10) sendto$inet(r0, &(0x7f0000000540)="d0b115b1d69900fd38983ba83a9edace62e7e04b33b1bba6ed83415e2a4cb8e79c140896173f9059e799b42ee6e38bfc4722e8e6fb382e4bb60cead1097aac90a80797f25c6b64592c171b4b2058ed7dfbd8314c13237ea1911bc402eebef18bdd5d3d49a6b29bf979a6a2695756e341b47545c7f0e699ea7bff55f396b09ca6852252e16a0ee95af29c96b068e8247befdce6e8708aabe0349faede228c3bd4c55bbfacbe9275a539ec72702e795a153ea500296c7c391da463040000004a5a3a9384f409c70b390b402d68cb7744b0e420268472667b7a9d3336c881380474c0a9fabc60e9aa119be95d15fb983b97494f500021f1cc", 0xf7, 0x0, &(0x7f0000000180)={0x2, 0x0, @local={0xac, 0x14, 0x14, 0xaa}}, 0x10) sendto$inet(r0, &(0x7f00000001c0)="322792bd6734dd44edf52c6b1b6bd3d06437e1e682eb000607563dce8c1ea0d242ec93d19116fd4473eb0cd7fa177bb17891c0280f5cb6be7baa2d486f0a69b787279e192b671926ca10bfcdfa59c718c154739f4e3644d56bddd0f97cb88a8e3bec09d0a7216c03cc9bb5f778759032cf1a549f5df8623af43791d6246056932e21", 0x82, 0x0, &(0x7f00000000c0)={0x2, 0x0, @multicast2=0xe0000002}, 0x10) getsockopt$IP_VS_SO_GET_INFO(r0, 0x0, 0x481, &(0x7f0000000040), &(0x7f0000000080)=0xc) read(r0, &(0x7f0000000340)=""/206, 0xce) shutdown(r0, 0x1) 09:05:43 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)={{}, 0x0, 0x0, 0x0, 0xffffffff00000000}) 09:05:43 executing program 0: r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ppp\x00', 0x0, 0x0) setsockopt$inet6_udp_int(r0, 0x11, 0x67, &(0x7f0000000040)=0x2, 0x4) fadvise64(r0, 0x0, 0x1, 0x0) write$binfmt_misc(r0, &(0x7f0000000080)={'syz1', "54d2964cb750b68041edf4bdc7cfe48ee2f2d2bce45d56d337b5a05205f13f93c75e72cb7f4baa6a5307defe1e3f7881b19b2fb8e2881fedde495ab38d0d4763afe5d5edb562a30387ba01ce17ae5af1af3b6b8bf91dd530ef5a5c6ce47b22db26f73df3c23d384fe0d4afb5ae7fc00599f4913d1dafd3334580ddaf6a1a640f48117a4ad0ee9fd18d5f0e1cc67b25d1d998dc84a51c945beef20c463e95ea863c72220ad28521cbc1f683148bf48567b1326c5b5e05b16e5b931c4a1c72f841ce7a5ade57f699a4a0cde13a5d1c6b4e3ad71658eec6f0cdf4c5e1d01bf11a635b72ad978c751c5c520360ac45541345e85049"}, 0xf7) ioctl$RTC_AIE_OFF(r0, 0x7002) r1 = syz_genetlink_get_family_id$ipvs(&(0x7f00000001c0)='IPVS\x00') sendmsg$IPVS_CMD_GET_INFO(r0, &(0x7f0000000380)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000340)={&(0x7f0000000200)={0x128, r1, 0x400, 0x70bd25, 0x25dfdbfd, {0xf}, [@IPVS_CMD_ATTR_DAEMON={0x2c, 0x3, [@IPVS_DAEMON_ATTR_MCAST_PORT={0x8, 0x7, 0x4e24}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x3}, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x8, 0x4, 0x8001}, @IPVS_DAEMON_ATTR_SYNC_ID={0x8, 0x3, 0x4}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}, @IPVS_CMD_ATTR_DEST={0x34, 0x2, [@IPVS_DEST_ATTR_L_THRESH={0x8, 0x6, 0xffffffffffffffff}, @IPVS_DEST_ATTR_L_THRESH={0x8, 0x6, 0x1}, @IPVS_DEST_ATTR_ADDR_FAMILY={0x8, 0xb, 0xa}, @IPVS_DEST_ATTR_FWD_METHOD={0x8, 0x3, 0x4}, @IPVS_DEST_ATTR_WEIGHT={0x8, 0x4, 0x2}, @IPVS_DEST_ATTR_INACT_CONNS={0x8, 0x8, 0x6}]}, @IPVS_CMD_ATTR_DAEMON={0x44, 0x3, [@IPVS_DAEMON_ATTR_MCAST_PORT={0x8, 0x7, 0x4e22}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x8, 0x7, 0x4e23}, @IPVS_DAEMON_ATTR_SYNC_ID={0x8, 0x3, 0x1}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x8, 0x8, 0x1}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x3}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}, @IPVS_DAEMON_ATTR_SYNC_ID={0x8, 0x3, 0x1}]}, @IPVS_CMD_ATTR_SERVICE={0x68, 0x1, [@IPVS_SVC_ATTR_AF={0x8, 0x1}, @IPVS_SVC_ATTR_FWMARK={0x8, 0x5, 0x4}, @IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x8}, @IPVS_SVC_ATTR_PROTOCOL={0x8, 0x2, 0x21}, @IPVS_SVC_ATTR_AF={0x8, 0x1, 0xa}, @IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv6=@local={0xfe, 0x80, [], 0xaa}}, @IPVS_SVC_ATTR_FWMARK={0x8, 0x5, 0x1}, @IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv4=@multicast1=0xe0000001}, @IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x8, 0x29}}]}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x4}]}, 0x128}, 0x1, 0x0, 0x0, 0x40}, 0x4000000) ioctl$SNDRV_TIMER_IOCTL_INFO(r0, 0x80e85411, &(0x7f00000003c0)) fchdir(r0) r2 = socket$unix(0x1, 0x2, 0x0) openat$urandom(0xffffffffffffff9c, &(0x7f0000000400)='/dev/urandom\x00', 0x200000, 0x0) ioctl$SNDRV_CTL_IOCTL_ELEM_LIST(r0, 0xc0505510, &(0x7f0000000480)={0x6, 0x1, 0x4, 0x401, &(0x7f0000000440)=[{}]}) readv(r0, &(0x7f0000002840)=[{&(0x7f0000000500)=""/31, 0x1f}, {&(0x7f0000000540)=""/160, 0xa0}, {&(0x7f0000000600)}, {&(0x7f0000000640)=""/112, 0x70}, {&(0x7f00000006c0)=""/138, 0x8a}, {&(0x7f0000000780)=""/4096, 0x1000}, {&(0x7f0000001780)=""/130, 0x82}, {&(0x7f0000001840)=""/4096, 0x1000}], 0x8) r3 = openat$cuse(0xffffffffffffff9c, &(0x7f00000028c0)='/dev/cuse\x00', 0x82000, 0x0) r4 = semget$private(0x0, 0x3, 0xa6) semctl$IPC_STAT(r4, 0x0, 0x2, &(0x7f0000002900)=""/214) socketpair$inet6(0xa, 0x2, 0x3b6a8e35, &(0x7f0000002a00)) pipe2(&(0x7f0000002a40)={0xffffffffffffffff, 0xffffffffffffffff}, 0x80000) ioctl$TCSETA(r6, 0x5406, &(0x7f0000002a80)={0x9, 0xa, 0x100000001, 0x0, 0x1, 0x60c, 0x2aacdd7f, 0x3ff, 0x6, 0x1}) r7 = getpgid(0xffffffffffffffff) write$cgroup_pid(r2, &(0x7f0000002ac0)=r7, 0x12) ptrace$getregs(0xe, r7, 0x8e0a, &(0x7f0000002b00)=""/8) getsockopt$bt_hci(r5, 0x0, 0x1, &(0x7f0000002b40)=""/123, &(0x7f0000002bc0)=0x7b) getsockopt$inet_mreqn(r5, 0x0, 0x24, &(0x7f0000002c00)={@local, @local, 0x0}, &(0x7f0000002c40)=0xc) bind$xdp(r3, &(0x7f0000002c80)={0x2c, 0x5, r8, 0x5, r0}, 0x10) setsockopt$inet6_dccp_int(r0, 0x21, 0x0, &(0x7f0000002cc0)=0x401, 0x4) rt_tgsigqueueinfo(r7, r7, 0xd, &(0x7f0000002d00)={0x1a, 0x10000000100000, 0x4, 0x5}) msgget(0x3, 0x80) recvfrom(r3, &(0x7f0000002d40)=""/194, 0xc2, 0x40000000, &(0x7f0000002e40)=@ipx={0x4, 0x0, 0xffffffff, "6bfded04186b", 0x23}, 0x80) ptrace$getregs(0xffffffffffffffff, r7, 0xffffffffffffffc0, &(0x7f0000002ec0)=""/94) 09:05:43 executing program 5: r0 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/autofs\x00', 0xc003, 0x0) ioctl$KDENABIO(r0, 0x4b36) ioctl$KVM_X86_SETUP_MCE(r0, 0x4008ae9c, &(0x7f0000000040)={0x7f, 0x2, 0x80}) getsockopt$inet_sctp6_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f0000000080)={0x4, 0xffffffff, 0x2, 0x7360, 0x40, 0x4, 0x7fff, 0x7ff, 0x0}, &(0x7f00000000c0)=0x20) setsockopt$inet_sctp6_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000100)={r1, 0x7b, 0xfff}, 0x8) ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000140)={0x1, 0x0, 0x5, 0x80000001, 0x6}) r2 = accept$packet(r0, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @remote}, &(0x7f00000001c0)=0x14) write$FUSE_POLL(r0, &(0x7f0000000200)={0x18, 0x0, 0x6, {0x8}}, 0x18) sysfs$3(0x3) getsockopt$bt_l2cap_L2CAP_CONNINFO(r0, 0x6, 0x2, &(0x7f0000000240), &(0x7f0000000280)=0x6) getsockopt$inet_sctp6_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000002c0)={0x7, 0x290, 0x200, 0xefb, 0x7, 0x6c, 0xf3, 0x2, r1}, &(0x7f0000000300)=0x20) rt_sigsuspend(&(0x7f0000000340)={0x100}, 0x8) setsockopt$IP_VS_SO_SET_EDIT(r0, 0x0, 0x483, &(0x7f0000000380)={0x7f, @loopback=0x7f000001, 0x4e23, 0x3, 'lblcr\x00', 0x1, 0x7e, 0x4}, 0x2c) ioctl$VT_RELDISP(r0, 0x5605) ioctl$KVM_SET_GSI_ROUTING(r0, 0x4008ae6a, &(0x7f00000003c0)={0x3, 0x0, [{0x20000, 0x4, 0x0, 0x0, @sint={0x7, 0x10001}}, {0x0, 0x7, 0x0, 0x0, @sint={0x3, 0x9}}, {0x0, 0x1, 0x0, 0x0, @sint={0x1, 0x9}}]}) ioctl$TIOCMBIC(r0, 0x5417, &(0x7f0000000480)=0x1f) link(&(0x7f00000004c0)='./file0\x00', &(0x7f0000000500)='./file0\x00') setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r0, 0x84, 0x16, &(0x7f0000000540)={0x1, [0x8]}, 0x6) ioctl$ASHMEM_GET_NAME(r0, 0x81007702, &(0x7f0000000580)=""/113) ioctl$EVIOCSMASK(r0, 0x40104593, &(0x7f00000006c0)={0x11, 0xa8, &(0x7f0000000600)="3796880820560c321bed397ff9b5ed8e1610aafd1d26b5007f84fb3acfd4cb21677c58023d60ef58b230d660237941453526306672a7f933529e416f4a998d828839acc12a7c51d1b6c2ab6dedaed1b59f7f438b98b9b1c734818003284187583292b37983d1369585763de6a15e494461dfdaf23d4297d426fa2bc7397fe7a24544270231c8c634bc6cf663279da079f9f23883fe8ab0984c839daef9d1c1dfd14adb6972494b03"}) getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000000700)={0x0}, &(0x7f0000000740)=0xc) capset(&(0x7f0000000780)={0x0, r3}, &(0x7f00000007c0)={0x80000000, 0x10001, 0x754, 0x10001, 0x9, 0x3}) ioctl$RTC_PLL_GET(r0, 0x80207011, &(0x7f0000000800)) r4 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000880)='IPVS\x00') sendmsg$IPVS_CMD_SET_DEST(r0, &(0x7f0000000a40)={&(0x7f0000000840)={0x10}, 0xc, &(0x7f0000000a00)={&(0x7f00000008c0)={0x124, r4, 0x30, 0x70bd2a, 0x25dfdbfe, {0x6}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x6}, @IPVS_CMD_ATTR_SERVICE={0x70, 0x1, [@IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv6}, @IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x2}, @IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x8, 0xa}}, @IPVS_SVC_ATTR_PE_NAME={0x8, 0xb, 'sip\x00'}, @IPVS_SVC_ATTR_FWMARK={0x8, 0x5, 0x2}, @IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x1, 0x3e}}, @IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv4=@remote={0xac, 0x14, 0x14, 0xbb}}, @IPVS_SVC_ATTR_SCHED_NAME={0x8, 0x6, 'dh\x00'}, @IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x0, 0x36}}]}, @IPVS_CMD_ATTR_DAEMON={0x30, 0x3, [@IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2f8ff70fbb11864f}, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x8, 0x4, 0x6}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x8, 0x7, 0x8}]}, @IPVS_CMD_ATTR_SERVICE={0x44, 0x1, [@IPVS_SVC_ATTR_FWMARK={0x8, 0x5, 0x4}, @IPVS_SVC_ATTR_PROTOCOL={0x8, 0x2}, @IPVS_SVC_ATTR_SCHED_NAME={0xc, 0x6, 'lblc\x00'}, @IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv6=@ipv4={[], [0xff, 0xff], @remote={0xac, 0x14, 0x14, 0xbb}}}, @IPVS_SVC_ATTR_SCHED_NAME={0x8, 0x6, 'wrr\x00'}, @IPVS_SVC_ATTR_PE_NAME={0x8, 0xb, 'sip\x00'}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x9}, @IPVS_CMD_ATTR_DEST={0xc, 0x2, [@IPVS_DEST_ATTR_PERSIST_CONNS={0x8, 0x9, 0xa92}]}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x8000}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x7ff}]}, 0x124}, 0x1, 0x0, 0x0, 0x40000}, 0x40084) write$FUSE_NOTIFY_INVAL_ENTRY(r0, &(0x7f0000000a80)={0x26, 0x3, 0x0, {0x3, 0x5, 0x0, 'lblc\x00'}}, 0x26) listen(r0, 0x1) connect$rds(r0, &(0x7f0000000ac0)={0x2, 0x4e22, @loopback=0x7f000001}, 0x10) getsockname$inet(r0, &(0x7f0000000b00)={0x0, 0x0, @multicast2}, &(0x7f0000000b40)=0x10) bind$pptp(r2, &(0x7f0000000b80)={0x18, 0x2, {0x1, @multicast1=0xe0000001}}, 0x1e) 09:05:43 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)={{}, 0x0, 0x0, 0x0, 0x2000000}) 09:05:43 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={"6c6f000600", {0x2}}) [ 154.148508] FAULT_INJECTION: forcing a failure. [ 154.148508] name failslab, interval 1, probability 0, space 0, times 0 [ 154.159866] CPU: 0 PID: 10780 Comm: syz-executor2 Not tainted 4.18.0-rc5-next-20180720+ #12 [ 154.168366] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 154.177809] Call Trace: [ 154.180412] dump_stack+0x1c9/0x2b4 [ 154.184060] ? dump_stack_print_info.cold.2+0x52/0x52 [ 154.189263] ? mnt_get_count+0x150/0x150 [ 154.193338] should_fail.cold.4+0xa/0x11 [ 154.197413] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 154.202323] 9pnet_virtio: no channels available for device / [ 154.202523] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 154.202542] ? bpf_prog_kallsyms_find+0xde/0x4c0 [ 154.217766] 9pnet_virtio: no channels available for device / [ 154.218097] ? lock_acquire+0x1e4/0x540 [ 154.218115] ? is_bpf_text_address+0xae/0x170 [ 154.232357] ? lock_downgrade+0x8f0/0x8f0 [ 154.236514] ? lock_release+0xa30/0xa30 [ 154.240497] ? kasan_check_read+0x11/0x20 [ 154.244655] ? lock_acquire+0x1e4/0x540 09:05:43 executing program 0: mkdir(&(0x7f0000000100)='./file1\x00', 0x0) r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000080)='/dev/rfkill\x00', 0x4000, 0x0) r1 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000180)='/dev/vsock\x00', 0x88f3f5c3408d2ef7, 0x0) renameat(r0, &(0x7f0000000140)='./file1\x00', r1, &(0x7f00000001c0)='./file1\x00') mount$9p_xen(&(0x7f00000000c0)='/\x00', &(0x7f0000000040)='./file1\x00', &(0x7f00000002c0)='9p\x00', 0x10000, &(0x7f0000000140)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000440)='./file1\x00', 0x0, 0x0, &(0x7f00000005c0), 0x30, &(0x7f0000000300)={[{@commit={'commit', 0x3d}, 0x2c}]}) 09:05:44 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={"6c6ffdfdffff00", {0x2}}) [ 154.248648] ? fs_reclaim_acquire+0x20/0x20 [ 154.252979] ? lock_downgrade+0x8f0/0x8f0 [ 154.257135] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 154.262154] ? check_same_owner+0x340/0x340 [ 154.266481] ? rcu_note_context_switch+0x730/0x730 [ 154.271415] ? iterate_fd+0x4b0/0x4b0 [ 154.275224] __should_failslab+0x124/0x180 [ 154.279464] should_failslab+0x9/0x14 [ 154.283271] kmem_cache_alloc+0x2af/0x760 [ 154.287546] ? lock_downgrade+0x8f0/0x8f0 [ 154.291701] ? shmem_destroy_callback+0xc0/0xc0 09:05:44 executing program 4: r0 = openat$ppp(0xffffffffffffff9c, &(0x7f00000018c0)='/dev/ppp\x00', 0x121200, 0x0) setsockopt$SO_RDS_TRANSPORT(r0, 0x114, 0x8, &(0x7f0000001900)=0xffffffffffffffff, 0x4) clone(0x10000, &(0x7f00000003c0), &(0x7f0000000240), &(0x7f0000000300), &(0x7f0000000380)) 09:05:44 executing program 0: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet(0x10, 0x3, 0xc) sendmsg(r0, &(0x7f0000011fc8)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f00000000c0)="2400000006061f001cfffd946fa2830020207c88a6f021d6090a000900010001e7000000", 0x24}], 0x1}, 0x0) r1 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040)='/dev/uinput\x00', 0x10042, 0x0) epoll_ctl$EPOLL_CTL_DEL(r1, 0x2, r0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000080)=[@in={0x2, 0x4e21, @multicast2=0xe0000002}], 0x10) 09:05:44 executing program 1: r0 = socket(0x10, 0x80002, 0x0) sendmsg$IPVS_CMD_NEW_SERVICE(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000000)={0x10}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x14, 0x0, 0x0, 0x0, 0x0, {0x1}}, 0x14}, 0x1}, 0x0) sendmsg$nl_crypto(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000040)={0x10}, 0xc, &(0x7f00000000c0)={&(0x7f00000003c0)=@upd={0xe0, 0x12, 0x0, 0x0, 0x0, {{'drbg_nopr_sha384\x00'}}}, 0xe0}, 0x1}, 0x0) sendmmsg$alg(r0, &(0x7f0000000140)=[{0x0, 0x0, &(0x7f0000000100), 0x0, &(0x7f0000000100)}], 0x492492492492805, 0x0) getsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000240)={{{@in, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@loopback}, 0x0, @in6=@local}}, &(0x7f0000000340)=0xe8) sendmsg$nl_route_sched(r0, &(0x7f0000000580)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x20008401}, 0xc, &(0x7f0000000380)={&(0x7f00000004c0)=@delqdisc={0x9c, 0x25, 0x408, 0x70bd2d, 0x25dfdbfd, {0x0, r1, {0x0, 0xffff}, {0xfff3, 0xf}, {0x804d32558ae8f0f0, 0xffff}}, [@TCA_INGRESS_BLOCK={0x8, 0xd, 0x5}, @qdisc_kind_options=@q_hhf={{0x8, 0x1, 'hhf\x00'}, {0xc, 0x2, [@TCA_HHF_HH_FLOWS_LIMIT={0x8, 0x3, 0x8000000000000000}]}}, @TCA_EGRESS_BLOCK={0x8, 0xe, 0x9}, @TCA_STAB={0x1c, 0x8, [@TCA_STAB_DATA={0x18, 0x2, [0x4, 0x8, 0x59ac, 0x4, 0x800, 0x7, 0x401, 0x5, 0x8]}]}, @TCA_EGRESS_BLOCK={0x8, 0xe}, @qdisc_kind_options=@q_red={{0x8, 0x1, 'red\x00'}, {0x28, 0x2, [@TCA_RED_MAX_P={0x8, 0x3, 0x6}, @TCA_RED_PARMS={0x14, 0x1, {0x3f, 0x24de, 0x7, 0x15, 0x1d, 0xd, 0x2}}, @TCA_RED_MAX_P={0x8, 0x3, 0xab}]}}]}, 0x9c}, 0x1, 0x0, 0x0, 0x800}, 0x20008000) 09:05:44 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={"6c6f0400", {0x2}}) [ 154.296394] shmem_alloc_inode+0x1b/0x40 [ 154.300566] alloc_inode+0x63/0x190 [ 154.304202] new_inode_pseudo+0x71/0x1a0 [ 154.308268] ? prune_icache_sb+0x1b0/0x1b0 [ 154.312507] ? _raw_spin_unlock+0x22/0x30 [ 154.316662] new_inode+0x1c/0x40 [ 154.320035] shmem_get_inode+0xf1/0x910 [ 154.324019] ? shmem_encode_fh+0x340/0x340 [ 154.328258] ? lock_downgrade+0x8f0/0x8f0 [ 154.332416] ? lock_release+0xa30/0xa30 [ 154.336390] ? check_same_owner+0x340/0x340 [ 154.340701] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 154.345710] ? __check_object_size+0xa3/0x5d7 [ 154.350202] __shmem_file_setup.part.48+0x83/0x2a0 [ 154.355125] shmem_file_setup+0x65/0x90 [ 154.359176] __x64_sys_memfd_create+0x2af/0x4f0 [ 154.363839] ? memfd_fcntl+0x1e80/0x1e80 [ 154.368586] do_syscall_64+0x1b9/0x820 [ 154.372459] ? syscall_slow_exit_work+0x500/0x500 [ 154.377285] ? syscall_return_slowpath+0x5e0/0x5e0 [ 154.382200] ? syscall_return_slowpath+0x31d/0x5e0 [ 154.387116] ? prepare_exit_to_usermode+0x291/0x3b0 [ 154.392129] ? perf_trace_sys_enter+0xb10/0xb10 [ 154.396784] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 154.401630] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 154.406819] RIP: 0033:0x455ab9 [ 154.409992] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 154.429268] RSP: 002b:00007fb8b6388a88 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 154.436963] RAX: ffffffffffffffda RBX: 0000000020000380 RCX: 0000000000455ab9 [ 154.444225] RDX: 0000000020000398 RSI: 0000000000000000 RDI: 00000000004ba6a1 [ 154.452878] RBP: 000000000072bea0 R08: 0000000020000398 R09: 00000000fbad8001 [ 154.460133] R10: fe03f80fe03f80ff R11: 0000000000000246 R12: 0000000000000013 [ 154.467388] R13: 00000000004c233d R14: 00000000004d3de0 R15: 0000000000000001 09:05:44 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)={{}, 0x0, 0x0, 0x0, 0x3f00}) 09:05:44 executing program 2 (fault-call:1 fault-nth:2): syz_mount_image$vfat(&(0x7f0000000180)='vfat\x00', &(0x7f0000000080)='./file0/file0\x00', 0x0, 0x0, &(0x7f0000001580), 0x0, &(0x7f0000000340)={[{@shortname_win95='shortname=win95', 0x2c}]}) syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f0000000100)='./file0\x00', 0xe004, 0x1, &(0x7f0000000380)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020401000200027000f8", 0x16}], 0x0, &(0x7f0000000340)=ANY=[]) 09:05:44 executing program 6: r0 = memfd_create(&(0x7f000003e000)='\'', 0x0) r1 = syz_open_dev$sndseq(&(0x7f00000001c0)='/dev/snd/seq\x00', 0x0, 0x82) r2 = dup2(r1, r0) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r2, 0xc08c5332, &(0x7f0000001000)={0x0, 0x0, 0x0, "9ec77a8c5ae95ec8672c93340f643a664f13eeab65c0322901dc6bd36cde2c51f01b7f0b014f9f91eeb7c37c7240f476c8d753d000aa8faf8fb574dbcfa6dc4d"}) r3 = memfd_create(&(0x7f000003e000)='\t', 0x0) r4 = syz_open_dev$sndseq(&(0x7f000011c000)='/dev/snd/seq\x00', 0x0, 0x8000000000102) write$sndseq(r2, &(0x7f0000000200)=[{0x0, 0x0, 0x0, 0x0, @time={0x0, 0x989680}, {}, {}, @raw32}, {0x0, 0x0, 0x0, 0x0, @time, {}, {}, @connect}, {0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @addr}, {0x0, 0x0, 0xbb, 0x0, @time, {}, {}, @time}], 0xc0) r5 = dup2(r4, r3) write$sndseq(r3, &(0x7f0000e6ffd0)=[{0x1e, 0x0, 0x0, 0x3fd, @time}], 0x30) setsockopt$inet_msfilter(r5, 0x0, 0x29, &(0x7f0000000000)={@dev={0xac, 0x14, 0x14, 0x1f}, @multicast2=0xe0000002, 0x1, 0x4, [@remote={0xac, 0x14, 0x14, 0xbb}, @local={0xac, 0x14, 0x14, 0xaa}, @multicast2=0xe0000002, @remote={0xac, 0x14, 0x14, 0xbb}]}, 0x20) 09:05:44 executing program 1: r0 = socket$inet(0x2, 0x200000002, 0x0) r1 = socket$l2tp(0x18, 0x1, 0x1) r2 = syz_open_dev$mouse(&(0x7f0000000180)='/dev/input/mouse#\x00', 0xfffffffffffffff8, 0x80000) ioctl$UFFDIO_API(r2, 0xc018aa3f, &(0x7f0000000100)={0xaa, 0x4}) connect$l2tp(r1, &(0x7f0000000080)=@pppol2tpv3in6={0x18, 0x1, {0x0, r0, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @mcast2={0xff, 0x2, [], 0x1}}}}, 0x26) getsockname$inet(r1, &(0x7f0000000040)={0x0, 0x0, @rand_addr}, &(0x7f00000000c0)=0x10) 09:05:44 executing program 4: mkdir(&(0x7f00000006c0)='./file0\x00', 0x0) perf_event_open(&(0x7f0000000000)={0x4, 0xfffffffffffffd77, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x4000200000000, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000140)={0xffffffffffffffff, 0x0, 0x0, 0xf3, &(0x7f0000000380), &(0x7f0000000280)=""/243, 0x0, 0x8}, 0x28) r0 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vga_arbiter\x00', 0x400, 0x0) ioctl$TIOCLINUX3(r0, 0x541c, &(0x7f0000000100)=0x3) mount(&(0x7f00008deff8)='./file0\x00', &(0x7f0000343ff8)='./file0\x00', &(0x7f000015bffc)='nfs\x00', 0x0, &(0x7f0000000000)) 09:05:44 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)={{}, 0x0, 0x0, 0x0, 0xfffffffe}) 09:05:44 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={'lo\x00\x00\x00\x00\x00\x00\x00@\x00', {0x2}}) [ 154.556079] netlink: 16 bytes leftover after parsing attributes in process `syz-executor0'. [ 154.615981] netlink: 16 bytes leftover after parsing attributes in process `syz-executor0'. [ 154.647348] FAULT_INJECTION: forcing a failure. [ 154.647348] name fail_page_alloc, interval 1, probability 0, space 0, times 1 [ 154.659214] CPU: 0 PID: 10844 Comm: syz-executor2 Not tainted 4.18.0-rc5-next-20180720+ #12 [ 154.667704] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 154.677084] Call Trace: [ 154.679664] dump_stack+0x1c9/0x2b4 [ 154.683297] ? dump_stack_print_info.cold.2+0x52/0x52 [ 154.688487] ? perf_trace_lock+0xde/0x920 [ 154.692621] ? zap_class+0x740/0x740 [ 154.696325] should_fail.cold.4+0xa/0x11 [ 154.700374] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 154.705462] ? lock_acquire+0x1e4/0x540 [ 154.709443] ? perf_trace_lock+0xde/0x920 [ 154.713580] ? zap_class+0x740/0x740 [ 154.717279] ? trace_hardirqs_on+0x10/0x10 [ 154.721506] ? percpu_ref_tryget_live+0x15b/0x440 [ 154.726338] ? mem_cgroup_id_get_many+0x160/0x160 [ 154.731166] ? get_mem_cgroup_from_mm+0x1ea/0x440 [ 154.735993] ? lock_downgrade+0x8f0/0x8f0 [ 154.740129] ? lock_release+0xa30/0xa30 [ 154.744095] ? lock_acquire+0x1e4/0x540 [ 154.748061] ? rcu_read_unlock+0x16/0x70 [ 154.752111] __alloc_pages_nodemask+0x36e/0xdb0 [ 154.756767] ? lock_release+0xa30/0xa30 [ 154.760735] ? __alloc_pages_slowpath+0x2d00/0x2d00 [ 154.765752] ? rcu_read_unlock+0x35/0x70 [ 154.769812] ? mem_cgroup_handle_over_high+0x130/0x130 [ 154.775076] ? fs_reclaim_acquire+0x20/0x20 [ 154.779386] ? lock_downgrade+0x8f0/0x8f0 [ 154.783541] ? lock_release+0xa30/0xa30 [ 154.787526] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 154.792538] ? check_same_owner+0x340/0x340 [ 154.796860] cache_grow_begin+0x91/0x710 [ 154.801010] kmem_cache_alloc+0x689/0x760 [ 154.805149] ? lock_downgrade+0x8f0/0x8f0 [ 154.809291] ? shmem_destroy_callback+0xc0/0xc0 [ 154.813955] shmem_alloc_inode+0x1b/0x40 [ 154.818005] alloc_inode+0x63/0x190 [ 154.821625] new_inode_pseudo+0x71/0x1a0 [ 154.825683] ? prune_icache_sb+0x1b0/0x1b0 [ 154.829937] ? _raw_spin_unlock+0x22/0x30 [ 154.834080] new_inode+0x1c/0x40 [ 154.837525] shmem_get_inode+0xf1/0x910 [ 154.841488] ? shmem_encode_fh+0x340/0x340 [ 154.845724] ? lock_downgrade+0x8f0/0x8f0 [ 154.849862] ? lock_release+0xa30/0xa30 [ 154.853823] ? check_same_owner+0x340/0x340 [ 154.858129] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 154.863390] ? __check_object_size+0xa3/0x5d7 [ 154.867878] __shmem_file_setup.part.48+0x83/0x2a0 [ 154.872798] shmem_file_setup+0x65/0x90 [ 154.876762] __x64_sys_memfd_create+0x2af/0x4f0 [ 154.881424] ? memfd_fcntl+0x1e80/0x1e80 [ 154.885480] do_syscall_64+0x1b9/0x820 [ 154.889361] ? finish_task_switch+0x1d3/0x870 [ 154.893843] ? syscall_return_slowpath+0x5e0/0x5e0 [ 154.898762] ? syscall_return_slowpath+0x31d/0x5e0 [ 154.903680] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 154.908685] ? prepare_exit_to_usermode+0x291/0x3b0 [ 154.913691] ? perf_trace_sys_enter+0xb10/0xb10 [ 154.918349] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 154.923195] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 154.928379] RIP: 0033:0x455ab9 [ 154.931548] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 154.950824] RSP: 002b:00007fb8b6388a88 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 154.958521] RAX: ffffffffffffffda RBX: 0000000020000380 RCX: 0000000000455ab9 [ 154.965774] RDX: 0000000020000398 RSI: 0000000000000000 RDI: 00000000004ba6a1 [ 154.973028] RBP: 000000000072bea0 R08: 0000000020000398 R09: 00000000fbad8001 [ 154.980280] R10: fe03f80fe03f80ff R11: 0000000000000246 R12: 0000000000000013 [ 154.987533] R13: 00000000004c233d R14: 00000000004d3de0 R15: 0000000000000002 09:05:45 executing program 4: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = syz_open_dev$adsp(&(0x7f0000000000)='/dev/adsp#\x00', 0x1, 0x0) bind$unix(r1, &(0x7f0000000040)=@abs={0x0, 0x0, 0x4e21}, 0x6e) syz_mount_image$hfs(&(0x7f00000000c0)='hfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000240), 0x0, &(0x7f0000000400)={[{@file_umask={'file_umask', 0x3d}, 0x2c}]}) 09:05:45 executing program 5: r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000180)='/dev/vhost-vsock\x00', 0x2, 0x0) r1 = syz_open_dev$adsp(&(0x7f00000000c0)='/dev/adsp#\x00', 0x6, 0x640801) getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x9, &(0x7f00000001c0)={0x0, @in={{0x2, 0x4e20, @remote={0xac, 0x14, 0x14, 0xbb}}}, 0x81, 0x6, 0x3, 0x40, 0x70}, &(0x7f0000000100)=0x98) setsockopt$inet_sctp6_SCTP_ADD_STREAMS(r1, 0x84, 0x79, &(0x7f0000000140)={r2, 0x5, 0x8}, 0x8) ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, &(0x7f0000000000)) r3 = open(&(0x7f0000000080)='./file0\x00', 0x200001, 0x86) setsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(r3, 0x84, 0x75, &(0x7f00000003c0)={r2, 0x5}, 0x8) accept4$alg(r3, 0x0, 0x0, 0x80800) getsockopt$inet_sctp_SCTP_GET_LOCAL_ADDRS(r1, 0x84, 0x6d, &(0x7f0000000280)={r2, 0xca, "31e5a01e18a5d03f975daa5fcc88da4fdb3b72f6ae0490314e8361e691a229bab6c1e1f4ab1c66b139bc57e481765e6be076bfcd58efb7ddf3726a01563ac00f3a5262cee40eec6632a103687ad1468c70ea23cfceaf70ec3bd32d2fffaa6d4b14ad8a6ca92fcf07605e832c955460e682070d6df0eb91c7617e02cd424ce73d250c4b6d154f72a41f8a7ad0b1debc7255d968280830f09804198386802f036e34e6bd04b79c5cbcdc9e4671dd1e981a4a84476f85c5339769ff5a9fc20d9a5d18d69eb7920b8d03ddee"}, &(0x7f0000000380)=0xd2) ioctl$VHOST_SET_VRING_CALL(r0, 0x4008af21, &(0x7f0000000040)={0x0, 0xffffffffffffff9c}) 09:05:45 executing program 6: r0 = shmget(0x2, 0x2000, 0x1000, &(0x7f0000ffd000/0x2000)=nil) shmat(r0, &(0x7f0000ffc000/0x4000)=nil, 0x3000) shmat(r0, &(0x7f0000ffd000/0x2000)=nil, 0x3000) mincore(&(0x7f0000ffc000/0x1000)=nil, 0x1000, &(0x7f0000000000)=""/209) r1 = openat$null(0xffffffffffffff9c, &(0x7f0000000100)='/dev/null\x00', 0x20000, 0x0) ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82) ioctl$RNDCLEARPOOL(r1, 0x5206, &(0x7f0000000140)=0xffff) ioctl$SG_GET_COMMAND_Q(r1, 0x2270, &(0x7f0000000180)) ioctl$LOOP_SET_FD(r1, 0x4c00, r1) ioctl$SNDRV_SEQ_IOCTL_GET_CLIENT_INFO(r1, 0xc0bc5310, &(0x7f00000001c0)) setsockopt$inet_buf(r1, 0x0, 0x2c, &(0x7f0000000280)="a6e6b4600e2b03b50ea6f421399968f3cc1eb3bd5f5f68532959e5d9fd699c4330e5af023098b616a1df208424d64b7976fe0095c78e5db3b9c266f2a8b431e9355a0bdaddb32ab0a5d0b8", 0x4b) ioctl$sock_SIOCGIFCONF(r1, 0x8910, &(0x7f0000000340)=@req={0x28, &(0x7f0000000300)={'bcsh0\x00', @ifru_names='bond_slave_0\x00'}}) getsockopt$bt_BT_SECURITY(r1, 0x112, 0x4, &(0x7f0000000380), 0x2) ioctl$sock_SIOCBRDELBR(r1, 0x89a1, &(0x7f00000003c0)='sit0\x00') pwrite64(r1, &(0x7f0000000400)="d83f0c12c135101f63f3bc3884868f767c2205f8b1221e13c9fbc925cc569fab25a3440d5a191d7cb3c069e9d9c4d422ec71453240cde12c80269060e860fcc28185662abc404eae52659347889c0bf039e73ddfc8213642e42a54aeb5aa33d849555840a24ab1c65a888356fb90ece8504ce553dd9f57c37c2f6709842e8a3ee61f022272fd57ec8d05c7e0842a54", 0x8f, 0x3d) ioctl$PERF_EVENT_IOC_PAUSE_OUTPUT(r1, 0x40042409, 0x1) setsockopt$inet6_MCAST_MSFILTER(r1, 0x29, 0x30, &(0x7f00000004c0)={0xffff, {{0xa, 0x4e24, 0x3, @local={0xfe, 0x80, [], 0xaa}, 0x4}}, 0x0, 0x8, [{{0xa, 0x4e21, 0x5, @mcast1={0xff, 0x1, [], 0x1}, 0x3}}, {{0xa, 0x4e24, 0x6, @mcast1={0xff, 0x1, [], 0x1}, 0x5}}, {{0xa, 0x4e21, 0x8, @mcast2={0xff, 0x2, [], 0x1}, 0x9}}, {{0xa, 0x4e21, 0x10000, @ipv4={[], [0xff, 0xff], @loopback=0x7f000001}, 0xd209}}, {{0xa, 0x4e22, 0x8, @ipv4={[], [0xff, 0xff], @loopback=0x7f000001}, 0xff}}, {{0xa, 0x4e24, 0x4, @mcast2={0xff, 0x2, [], 0x1}, 0x10000}}, {{0xa, 0x4e22, 0xfe8, @ipv4={[], [0xff, 0xff], @dev={0xac, 0x14, 0x14, 0xa}}}}, {{0xa, 0x4e24, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0xf57}}]}, 0x490) setns(r1, 0x20000) ioctl$TUNGETIFF(r1, 0x800454d2, &(0x7f0000000980)) ioctl$ifreq_SIOCGIFINDEX_team(r1, 0x8933, &(0x7f0000002d80)={'team0\x00', 0x0}) sendmsg$nl_route(r1, &(0x7f0000002e80)={&(0x7f00000009c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000002e40)={&(0x7f0000002dc0)=@bridge_newneigh={0x5c, 0x1c, 0xa21, 0x70bd2b, 0x25dfdbff, {0x2, 0x0, 0x0, r2, 0x46, 0x20, 0x9}, [@NDA_DST_IPV4={0x8, 0x1, @rand_addr=0x3}, @NDA_DST_MAC={0xc, 0x1, @remote={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xbb}}, @NDA_CACHEINFO={0x14, 0x3, {0x1ff, 0x1, 0xffffffffffffff81, 0x7}}, @NDA_MASTER={0x8, 0x9, 0x80000001}, @NDA_PROBES={0x8, 0x4, 0x1}, @NDA_PORT={0x8, 0x6, 0x4e22}]}, 0x5c}, 0x1, 0x0, 0x0, 0x4801}, 0x4008800) poll(&(0x7f0000002ec0)=[{r1, 0x10}, {r1, 0x6061}, {r1, 0x2002}, {r1, 0x2}, {r1, 0x8000}], 0x5, 0x3) setsockopt$inet6_MRT6_ADD_MIF(r1, 0x29, 0xca, &(0x7f0000002f00)={0x238a, 0x1, 0xfffffffffffffffb, 0x434, 0x5}, 0xc) fcntl$setpipe(r1, 0x407, 0xffffffffffffffff) fchmod(r1, 0x0) ioctl$RTC_ALM_SET(r1, 0x40247007, &(0x7f0000002f40)={0x1a, 0x5, 0x5, 0x6, 0x6, 0x891, 0x6, 0xb3, 0xffffffffffffffff}) socket$xdp(0x2c, 0x3, 0x0) ioctl$VHOST_SET_VRING_ERR(r1, 0x4008af22, &(0x7f0000002f80)={0x1, r1}) fstat(r1, &(0x7f0000002fc0)={0x0, 0x0, 0x0, 0x0, 0x0}) stat(&(0x7f0000003040)='./file0\x00', &(0x7f0000003080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) write$FUSE_ENTRY(r1, &(0x7f0000003100)={0x90, 0xfffffffffffffff5, 0x6, {0x0, 0x3, 0x2, 0x7091, 0x2, 0x1, {0x2, 0x80, 0x100000001, 0x4, 0x4, 0x6, 0x9, 0x0, 0x40, 0xa178, 0x0, r3, r4, 0x200, 0x81}}}, 0x90) 09:05:45 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)={{}, 0x0, 0x0, 0x0, 0x3f00000000000000}) 09:05:45 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={'lo\x00\x00\x00\x00\x00\x00\x00`\x00', {0x2}}) 09:05:45 executing program 2 (fault-call:1 fault-nth:3): syz_mount_image$vfat(&(0x7f0000000180)='vfat\x00', &(0x7f0000000080)='./file0/file0\x00', 0x0, 0x0, &(0x7f0000001580), 0x0, &(0x7f0000000340)={[{@shortname_win95='shortname=win95', 0x2c}]}) syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f0000000100)='./file0\x00', 0xe004, 0x1, &(0x7f0000000380)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020401000200027000f8", 0x16}], 0x0, &(0x7f0000000340)=ANY=[]) 09:05:45 executing program 0: r0 = openat$full(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/full\x00', 0x440000, 0x0) ioctl$sock_inet_sctp_SIOCINQ(r0, 0x541b, &(0x7f0000000300)) r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x7, 0x2000) perf_event_open(&(0x7f0000000140)={0x1, 0x70, 0x2, 0x0, 0x0, 0x0, 0x0, 0x6, 0x106, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}, 0x0, 0x0, 0x0, 0x7}, 0x0, 0x0, r1, 0x0) ioctl$SG_GET_RESERVED_SIZE(r1, 0x2272, &(0x7f0000000340)) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$int_in(r0, 0x5452, &(0x7f0000000400)=0xffff) clone(0x40000, &(0x7f00000002c0), &(0x7f0000000000), &(0x7f0000000040), &(0x7f0000000480)) getsockopt$inet_sctp6_SCTP_GET_ASSOC_STATS(r1, 0x84, 0x70, &(0x7f00000001c0)={0x0, @in={{0x2, 0x4e20, @broadcast=0xffffffff}}, [0x3, 0x3f, 0x80000001, 0x800000000000, 0x5, 0x2, 0x101, 0x17, 0x6, 0x0, 0x7f, 0x1, 0x0, 0x3, 0x4]}, &(0x7f00000000c0)=0x100) setsockopt$inet_sctp_SCTP_PR_SUPPORTED(r1, 0x84, 0x71, &(0x7f0000000100)={r2, 0x4}, 0x8) 09:05:45 executing program 1: r0 = socket$inet6_sctp(0xa, 0x1, 0x84) ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000080)={'syz_tun\x00', &(0x7f0000000240)=@ethtool_stats={0x7}}) r1 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x40, 0x0) r2 = syz_genetlink_get_family_id$team(&(0x7f00000000c0)='team\x00') accept4$packet(0xffffffffffffff9c, &(0x7f0000000100)={0x0, 0x0, 0x0}, &(0x7f0000000140)=0x14, 0x80000) getpeername$packet(0xffffffffffffffff, &(0x7f00000014c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @remote}, &(0x7f0000001500)=0x14) getsockopt$inet_pktinfo(r0, 0x0, 0x8, &(0x7f0000001540)={0x0, @multicast1, @remote}, &(0x7f0000001580)=0xc) getsockopt$inet6_mreq(r0, 0x29, 0x15, &(0x7f00000015c0)={@mcast1, 0x0}, &(0x7f0000001600)=0x14) getresgid(&(0x7f0000000180), &(0x7f00000001c0), &(0x7f0000000200)) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f0000001700)={{{@in, @in=@multicast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@remote}, 0x0, @in6=@mcast1}}, &(0x7f0000001800)=0xe8) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffff9c, 0x0, 0x10, &(0x7f0000001840)={{{@in6=@remote, @in=@multicast2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@loopback}, 0x0, @in6=@mcast2}}, &(0x7f0000001940)=0xe8) accept$packet(0xffffffffffffff9c, &(0x7f0000004c80)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @remote}, &(0x7f0000004cc0)=0x14) accept(r0, &(0x7f0000004d00)=@ll={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @broadcast}, &(0x7f0000004d80)=0x80) accept4$packet(0xffffffffffffff9c, &(0x7f0000004ec0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @link_local}, &(0x7f0000004f00)=0x14, 0x80000) accept4$packet(0xffffffffffffffff, &(0x7f0000004f40)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, &(0x7f0000004f80)=0x14, 0x800) getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffff9c, 0x0, 0x11, &(0x7f0000005080)={{{@in=@multicast2, @in6=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@dev}, 0x0, @in=@rand_addr}}, &(0x7f0000005180)=0xe8) getsockopt$inet6_mreq(r0, 0x29, 0x1f, &(0x7f00000051c0)={@local, 0x0}, &(0x7f0000005200)=0x14) recvmsg$kcm(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000005240)=@ll={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @dev}, 0x80, &(0x7f0000000280)=[{&(0x7f00000052c0)=""/90, 0x5a}, {&(0x7f0000005340)=""/52, 0x34}], 0x2, &(0x7f00000053c0), 0x0, 0x3}, 0x100) getsockopt$inet6_mreq(r0, 0x29, 0x1f, &(0x7f0000005440)={@mcast1, 0x0}, &(0x7f0000005480)=0x14) sendmsg$TEAM_CMD_OPTIONS_GET(r1, &(0x7f0000005a00)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x180}, 0xc, &(0x7f00000059c0)={&(0x7f00000054c0)={0x4fc, r2, 0x0, 0x70bd25, 0x25dfdbfb, {0x2}, [{{0x8, 0x1, r3}, {0x1e8, 0x2, [{0x3c, 0x1, @user_linkup_enabled={{{0x24, 0x1, 'user_linkup_enabled\x00'}, {0x8, 0x3, 0x6}, {0x4, 0x4}}, {0x8, 0x6, r4}}}, {0x40, 0x1, @queue_id={{{0x24, 0x1, 'queue_id\x00'}, {0x8, 0x3, 0x3}, {0x8, 0x4, 0x400}}, {0x8, 0x6, r5}}}, {0x44, 0x1, @bpf_hash_func={{0x24, 0x1, 'bpf_hash_func\x00'}, {0x8, 0x3, 0xb}, {0x14, 0x4, [{0x3f, 0x2, 0x40, 0xa049}, {0x7ff, 0x100000000, 0x2, 0x800}]}}}, {0x38, 0x1, @lb_stats_refresh_interval={{0x24, 0x1, 'lb_stats_refresh_interval\x00'}, {0x8, 0x3, 0x3}, {0x8, 0x4, 0x51}}}, {0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24, 0x1, 'lb_tx_hash_to_port_mapping\x00'}, {0x8, 0x3, 0x3}, {0x8, 0x4, r6}}, {0x8, 0x7}}}, {0x38, 0x1, @notify_peers_count={{0x24, 0x1, 'notify_peers_count\x00'}, {0x8, 0x3, 0x3}, {0x8, 0x4, 0x1}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24, 0x1, 'mcast_rejoin_interval\x00'}, {0x8, 0x3, 0x3}, {0x8, 0x4, 0xc00}}}, {0x3c, 0x1, @name={{0x24, 0x1, 'mode\x00'}, {0x8, 0x3, 0x5}, {0xc, 0x4, 'random\x00'}}}]}}, {{0x8, 0x1, r7}, {0x130, 0x2, [{0x38, 0x1, @lb_stats_refresh_interval={{0x24, 0x1, 'lb_stats_refresh_interval\x00'}, {0x8, 0x3, 0x3}, {0x8, 0x4, 0x4}}}, {0x40, 0x1, @lb_port_stats={{{0x24, 0x1, 'lb_port_stats\x00'}, {0x8, 0x3, 0xb}, {0x8, 0x4, 0x1ff}}, {0x8, 0x6, r8}}}, {0x3c, 0x1, @user_linkup={{{0x24, 0x1, 'user_linkup\x00'}, {0x8, 0x3, 0x6}, {0x4, 0x4}}, {0x8, 0x6, r9}}}, {0x38, 0x1, @lb_stats_refresh_interval={{0x24, 0x1, 'lb_stats_refresh_interval\x00'}, {0x8, 0x3, 0x3}, {0x8, 0x4, 0xfffffffffffffffc}}}, {0x40, 0x1, @queue_id={{{0x24, 0x1, 'queue_id\x00'}, {0x8, 0x3, 0x3}, {0x8, 0x4, 0x3ff}}, {0x8, 0x6, r10}}}]}}, {{0x8, 0x1, r11}, {0x7c, 0x2, [{0x38, 0x1, @notify_peers_interval={{0x24, 0x1, 'notify_peers_interval\x00'}, {0x8, 0x3, 0x3}, {0x8, 0x4, 0x7}}}, {0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24, 0x1, 'lb_tx_hash_to_port_mapping\x00'}, {0x8, 0x3, 0x3}, {0x8, 0x4, r12}}, {0x8, 0x7}}}]}}, {{0x8, 0x1, r13}, {0x84, 0x2, [{0x40, 0x1, @name={{0x24, 0x1, 'mode\x00'}, {0x8, 0x3, 0x5}, {0x10, 0x4, 'loadbalance\x00'}}}, {0x40, 0x1, @priority={{{0x24, 0x1, 'priority\x00'}, {0x8, 0x3, 0xe}, {0x8, 0x4, 0x1f}}, {0x8, 0x6, r14}}}]}}, {{0x8, 0x1, r15}, {0xa8, 0x2, [{0x64, 0x1, @bpf_hash_func={{0x24, 0x1, 'bpf_hash_func\x00'}, {0x8, 0x3, 0xb}, {0x34, 0x4, [{0x5, 0x6, 0x3f, 0xff}, {0x4568, 0x60000, 0xcfe7, 0x22}, {0x5c, 0x6, 0x3ff, 0xf2}, {0x300, 0x6, 0x1000, 0x1}, {0x30, 0xffff, 0x5, 0xfffffffffffffffb}, {0x3, 0x8001, 0x384, 0x8}]}}}, {0x40, 0x1, @lb_port_stats={{{0x24, 0x1, 'lb_port_stats\x00'}, {0x8, 0x3, 0xb}, {0x8, 0x4, 0x6}}, {0x8, 0x6, r16}}}]}}]}, 0x4fc}, 0x1, 0x0, 0x0, 0x1}, 0xf2ecc15e47a74d89) close(r0) [ 155.342611] FAULT_INJECTION: forcing a failure. [ 155.342611] name failslab, interval 1, probability 0, space 0, times 0 [ 155.353970] CPU: 0 PID: 10868 Comm: syz-executor2 Not tainted 4.18.0-rc5-next-20180720+ #12 [ 155.356196] hfs: can't find a HFS filesystem on dev loop4 [ 155.363022] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 155.363031] Call Trace: [ 155.363061] dump_stack+0x1c9/0x2b4 [ 155.363085] ? dump_stack_print_info.cold.2+0x52/0x52 09:05:45 executing program 0: r0 = socket$packet(0x11, 0x3, 0x300) r1 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) sendto$inet6(r1, &(0x7f0000000300), 0xfdb8, 0x0, &(0x7f00000000c0)={0xa, 0x4e23, 0x0, @ipv4={[], [0xff, 0xff], @multicast2=0xe0000002}}, 0x1c) getsockopt$inet6_mreq(r1, 0x29, 0x15, &(0x7f0000001200)={@local, 0x0}, &(0x7f0000001240)=0x14) bpf$PROG_LOAD(0x5, &(0x7f0000001280)={0x8, 0xb, &(0x7f0000000000)=@framed={{0x18, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0xffffffffffffff30}, [@exit={0x95}, @map={0x18, 0xb, 0x1, 0x0, r0}, @exit={0x95}, @generic={0x4, 0x400, 0x1, 0x6}], {0x95}}, &(0x7f0000000080)='GPL\x00', 0xffffffff, 0xaf, &(0x7f0000001140)=""/175, 0x41f00, 0x1, [], r2, 0xb}, 0x48) recvfrom(r0, &(0x7f0000000140)=""/4096, 0x1000, 0x20, 0x0, 0x0) [ 155.389808] should_fail.cold.4+0xa/0x11 [ 155.393884] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 155.398998] ? kasan_kmalloc+0xc4/0xe0 [ 155.402891] ? kasan_slab_alloc+0x12/0x20 [ 155.407048] ? kmem_cache_alloc+0x12e/0x760 [ 155.411473] ? __d_alloc+0xc8/0xd50 [ 155.415101] ? d_alloc_pseudo+0x1d/0x30 [ 155.419062] ? alloc_file_pseudo+0x158/0x3f0 [ 155.423457] ? __shmem_file_setup.part.48+0x110/0x2a0 [ 155.428652] ? shmem_file_setup+0x65/0x90 [ 155.432818] ? trace_hardirqs_on+0x10/0x10 [ 155.437041] ? lock_acquire+0x1e4/0x540 [ 155.441002] ? percpu_ref_put_many+0x119/0x240 [ 155.445572] ? lock_downgrade+0x8f0/0x8f0 [ 155.449707] ? lock_release+0xa30/0xa30 [ 155.453671] ? memcg_kmem_get_cache+0x3a9/0x9d0 [ 155.458333] ? mem_cgroup_handle_over_high+0x130/0x130 [ 155.464128] ? lock_acquire+0x1e4/0x540 [ 155.468086] ? fs_reclaim_acquire+0x20/0x20 [ 155.472406] ? lock_downgrade+0x8f0/0x8f0 [ 155.476553] ? check_same_owner+0x340/0x340 [ 155.480857] ? lock_downgrade+0x8f0/0x8f0 [ 155.484993] ? rcu_note_context_switch+0x730/0x730 [ 155.489927] __should_failslab+0x124/0x180 [ 155.494145] should_failslab+0x9/0x14 [ 155.497946] kmem_cache_alloc+0x2af/0x760 [ 155.502077] ? kasan_check_write+0x14/0x20 [ 155.506305] ? do_raw_spin_lock+0xc1/0x200 [ 155.510526] __alloc_file+0xac/0x400 [ 155.514226] ? file_free_rcu+0x90/0x90 [ 155.518099] ? select_collect+0x610/0x610 [ 155.522251] ? d_instantiate+0x79/0xa0 [ 155.526142] ? lock_downgrade+0x8f0/0x8f0 [ 155.530390] ? kasan_check_read+0x11/0x20 [ 155.534528] ? do_raw_spin_unlock+0xa7/0x2f0 [ 155.538936] ? do_raw_spin_trylock+0x1c0/0x1c0 [ 155.543513] alloc_empty_file+0x72/0x170 [ 155.547567] alloc_file+0x5c/0x430 [ 155.551095] alloc_file_pseudo+0x261/0x3f0 [ 155.555317] ? alloc_file+0x430/0x430 [ 155.559117] ? check_same_owner+0x340/0x340 [ 155.563437] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 155.568464] ? __check_object_size+0xa3/0x5d7 [ 155.572950] ? kasan_check_write+0x14/0x20 [ 155.577174] __shmem_file_setup.part.48+0x110/0x2a0 [ 155.582178] shmem_file_setup+0x65/0x90 [ 155.586140] __x64_sys_memfd_create+0x2af/0x4f0 [ 155.590809] ? memfd_fcntl+0x1e80/0x1e80 [ 155.594860] do_syscall_64+0x1b9/0x820 [ 155.598730] ? finish_task_switch+0x1d3/0x870 [ 155.603211] ? syscall_return_slowpath+0x5e0/0x5e0 [ 155.608220] ? syscall_return_slowpath+0x31d/0x5e0 [ 155.613151] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 155.618154] ? prepare_exit_to_usermode+0x291/0x3b0 [ 155.623159] ? perf_trace_sys_enter+0xb10/0xb10 [ 155.627816] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 155.632671] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 155.637857] RIP: 0033:0x455ab9 [ 155.641032] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 155.660207] RSP: 002b:00007fb8b6388a88 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 155.668252] RAX: ffffffffffffffda RBX: 0000000020000380 RCX: 0000000000455ab9 [ 155.675507] RDX: 0000000020000398 RSI: 0000000000000000 RDI: 00000000004ba6a1 [ 155.682777] RBP: 000000000072bea0 R08: 0000000020000398 R09: 00000000fbad8001 09:05:45 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)={{}, 0x0, 0x0, 0x0, 0x200000000000000}) 09:05:45 executing program 1: bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x0, 0x3f, 0x5c, 0x1, 0xe, 0xffffffffffffffff, 0x6}, 0x2c) r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000006c0)={&(0x7f0000000340)={0x10}, 0xc, &(0x7f0000000680)={&(0x7f0000000640)=@ipv4_newroute={0x30, 0x18, 0xe01, 0x0, 0x0, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, [@RTA_MULTIPATH={0xc, 0x9, {0x8}}, @RTA_GATEWAY={0x8, 0xb, @rand_addr=0x75f}]}, 0x30}, 0x1}, 0x0) [ 155.690037] R10: fe03f80fe03f80ff R11: 0000000000000246 R12: 0000000000000013 [ 155.697306] R13: 00000000004c233d R14: 00000000004d3de0 R15: 0000000000000003 09:05:45 executing program 6: r0 = socket$inet_sctp(0x2, 0x1, 0x84) ioctl$sock_SIOCINQ(r0, 0x541b, &(0x7f0000000040)) r1 = syz_open_dev$amidi(&(0x7f0000000000)='/dev/amidi#\x00', 0x0, 0x2000) ioctl$UFFDIO_WAKE(r1, 0x8010aa02, &(0x7f0000000080)={&(0x7f0000ffa000/0x3000)=nil, 0x3000}) 09:05:45 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={"6c6f0000001f00", {0x2}}) 09:05:45 executing program 5: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000100)='/dev/uinput\x00', 0x440d01, 0x0) bind$nfc_llcp(r0, &(0x7f0000000280)={0x27, 0xfffffffffffffffe, 0x1, 0x7, 0x7fff, 0x9, "def85c93c2566055e2a8058988466e104f232a48bf836fa4712dd967df5d9c4d177edef408729217fc8929b18601b6b9926e48739216228c0832dd926d5374", 0x26}, 0xffffff7b) perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_open_dev$sndctrl(&(0x7f0000000000)='/dev/snd/controlC#\x00', 0x5, 0x40) ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r1, 0xc0045516, &(0x7f0000000040)=0x6) r2 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$sock_inet_SIOCGARP(r2, 0x8954, &(0x7f0000000080)={{0x2, 0x0, @remote={0xac, 0x14, 0x14, 0xbb}}, {0x0, @remote={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xbb}}, 0x0, {0x2, 0x0, @loopback=0x7f000001}, 'syz_tun\x00'}) 09:05:45 executing program 2 (fault-call:1 fault-nth:4): syz_mount_image$vfat(&(0x7f0000000180)='vfat\x00', &(0x7f0000000080)='./file0/file0\x00', 0x0, 0x0, &(0x7f0000001580), 0x0, &(0x7f0000000340)={[{@shortname_win95='shortname=win95', 0x2c}]}) syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f0000000100)='./file0\x00', 0xe004, 0x1, &(0x7f0000000380)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020401000200027000f8", 0x16}], 0x0, &(0x7f0000000340)=ANY=[]) [ 155.739317] hfs: can't find a HFS filesystem on dev loop4 09:05:45 executing program 4: r0 = open(&(0x7f0000000000)='./file0\x00', 0x2000, 0x150) write$P9_RSYMLINK(r0, &(0x7f0000000040)={0x14, 0x11, 0x1, {0x1, 0x1, 0x8}}, 0x14) getsockopt$bt_rfcomm_RFCOMM_LM(r0, 0x12, 0x3, &(0x7f0000000080), &(0x7f00000000c0)=0x4) r1 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000100)='/proc/self/net/pfkey\x00', 0x20100, 0x0) ioctl$EVIOCSFF(r1, 0x40304580, &(0x7f0000000140)={0x56, 0xffffffffffffffc0, 0x1000, {0x0, 0x5}, {0x1f, 0xffffffff80000000}, @rumble={0x800, 0x6}}) getsockopt$inet_udp_int(r1, 0x11, 0x67, &(0x7f0000000180), &(0x7f00000001c0)=0x4) r2 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000200)='/dev/vcs\x00', 0xc8001, 0x0) epoll_wait(r0, &(0x7f0000000240)=[{}, {}, {}], 0x3, 0x40) write$binfmt_script(r1, &(0x7f0000000280)={'#! ', './file0', [{0x20, '/dev/vcs\x00'}, {0x20, '}vboxnet1$'}], 0xa, "6962caa7f955bc40c568c9a3be82ec4f395f92280d1772999ff0961c217da0731510770ae0f6d4b8a45c3deb097abf94a1bcd9d8bdf2d87f2a258f127f173661c38838b7db6d30e0e137c86d8a4790af3c64219edf861ae406060f0931c8cd7b9af770fabc0b15563cedec0af80c499e4fb52c98aea98e3674659c81da5821882c1e584e9a26ae942ae33242fa862e4434d62d14f6dd4dd279a951afb4cf25b6c3ce56896b7baaef2d6d9a16f6f74631b48211ea39268bedb242c5"}, 0xdb) ioctl$EVIOCGNAME(r1, 0x80404506, &(0x7f0000000380)=""/129) ioctl$sock_SIOCINQ(r2, 0x541b, &(0x7f0000000440)) r3 = creat(&(0x7f0000000480)='./file0\x00', 0x10) setsockopt$inet_sctp6_SCTP_DISABLE_FRAGMENTS(r1, 0x84, 0x8, &(0x7f00000004c0)=0x3, 0x4) syz_open_dev$binder(&(0x7f0000000500)='/dev/binder#\x00', 0x0, 0x2) ioctl$PERF_EVENT_IOC_QUERY_BPF(r3, 0xc008240a, &(0x7f0000000540)={0x2, 0x0, [0x0, 0x0]}) accept$unix(r3, 0x0, &(0x7f0000000580)) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r3, 0x29, 0x20, &(0x7f00000005c0)={@remote={0xfe, 0x80, [], 0xbb}, 0x10001, 0x0, 0x3, 0xd, 0x9, 0x7f, 0x2}, 0x20) bind$pptp(r2, &(0x7f0000000600)={0x18, 0x2, {0x1, @remote={0xac, 0x14, 0x14, 0xbb}}}, 0x1e) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000640)={0x3, 0x0, @pic={0x1, 0xffff, 0x7fffffff, 0x5, 0x7, 0x7, 0x3, 0x1, 0x8, 0xfffffffffffff7b1, 0x7ff, 0x8000, 0x1, 0x1, 0x8, 0x3}}) getsockopt$inet_pktinfo(r1, 0x0, 0x8, &(0x7f0000000740)={0x0, @local, @multicast1}, &(0x7f0000000780)=0xc) setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX_OLD(r0, 0x84, 0x6b, &(0x7f00000007c0)=[@in={0x2, 0x4e22, @local={0xac, 0x14, 0x14, 0xaa}}, @in={0x2, 0x4e24, @multicast1=0xe0000001}, @in6={0xa, 0x4e24, 0x9752, @mcast1={0xff, 0x1, [], 0x1}, 0x5}, @in={0x2, 0x4e21, @multicast1=0xe0000001}, @in={0x2, 0x4e20}, @in6={0xa, 0x4e24, 0x1f, @ipv4={[], [0xff, 0xff], @loopback=0x7f000001}, 0x9}, @in6={0xa, 0x4e24, 0x80000000, @ipv4={[], [0xff, 0xff], @multicast1=0xe0000001}, 0xb1}, @in={0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0xa}}, @in6={0xa, 0x4e20, 0x8, @mcast2={0xff, 0x2, [], 0x1}}], 0xc0) clock_gettime(0x0, &(0x7f0000000880)={0x0, 0x0}) clock_gettime(0x0, &(0x7f00000008c0)={0x0, 0x0}) clock_gettime(0x0, &(0x7f0000000900)={0x0, 0x0}) write$evdev(r2, &(0x7f0000000940)=[{{r4, r5/1000+10000}, 0x4d69cbfe, 0x6, 0xfffffffffffffffd}, {{}, 0x6, 0x9, 0x1}, {{}, 0x2, 0x8, 0xf94}, {{}, 0x6522a6f6, 0x3f, 0x8}, {{r6, r7/1000+10000}, 0x9, 0x3, 0x8}, {{r8, r9/1000+10000}, 0x1, 0x7, 0x7}], 0x90) ioctl$KVM_IOEVENTFD(r2, 0x4040ae79, &(0x7f0000000a40)={0x100000, &(0x7f0000000a00), 0x8, r1, 0x9}) getsockopt$inet6_tcp_TCP_REPAIR_WINDOW(r1, 0x6, 0x1d, &(0x7f0000000a80), &(0x7f0000000ac0)=0x14) ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_TIMER(r3, 0xc0605345, &(0x7f0000000b00)={0xee72, 0x3, {0x1, 0x3, 0x80000000, 0x3, 0x3ff}}) setsockopt$inet_sctp6_SCTP_ADAPTATION_LAYER(r0, 0x84, 0x7, &(0x7f0000000b80), 0x4) setsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX(r0, 0x84, 0x6e, &(0x7f0000000bc0)=[@in={0x2, 0x4e20, @rand_addr=0xffffffff}, @in={0x2, 0x4e23, @multicast1=0xe0000001}, @in6={0xa, 0x4e21, 0x3, @mcast2={0xff, 0x2, [], 0x1}, 0x7fff}, @in6={0xa, 0x4e20, 0xdd, @empty, 0x7f}], 0x58) 09:05:45 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil}) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_NMI(r2, 0xae9a) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000001000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000180)="baf80c66b882c8dc8166efbafc0cb000ee0f186de666b8f02000000f23d00f21f86635200000080f23f80f01d181c481680f01f0bad104b83f00ef660faebc0100dadcd282e8d4"}], 0x1, 0x0, &(0x7f00000000c0), 0x1000000000000005) ioctl$KVM_RUN(r2, 0xae80, 0x0) 09:05:45 executing program 6: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = openat$full(0xffffffffffffff9c, &(0x7f0000000000)='/dev/full\x00', 0x840, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000080)={0xd000, 0x100000}) ioctl$KDSKBMODE(r1, 0x4b45, &(0x7f0000000040)=0x3ff) ioctl$KVM_CREATE_IRQCHIP(r0, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000140)={0x80000000000007b, 0x0, [0x40000070]}) [ 155.892453] FAULT_INJECTION: forcing a failure. [ 155.892453] name failslab, interval 1, probability 0, space 0, times 0 [ 155.903889] CPU: 1 PID: 10915 Comm: syz-executor2 Not tainted 4.18.0-rc5-next-20180720+ #12 [ 155.912394] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 155.921759] Call Trace: [ 155.924366] dump_stack+0x1c9/0x2b4 [ 155.928021] ? dump_stack_print_info.cold.2+0x52/0x52 [ 155.933247] should_fail.cold.4+0xa/0x11 [ 155.937324] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 155.942445] ? kasan_kmalloc+0xc4/0xe0 [ 155.946947] ? kasan_slab_alloc+0x12/0x20 [ 155.951102] ? kmem_cache_alloc+0x12e/0x760 [ 155.955454] ? __d_alloc+0xc8/0xd50 [ 155.959089] ? d_alloc_pseudo+0x1d/0x30 [ 155.963106] ? alloc_file_pseudo+0x158/0x3f0 [ 155.963137] ? __shmem_file_setup.part.48+0x110/0x2a0 [ 155.963155] ? shmem_file_setup+0x65/0x90 [ 155.976993] ? trace_hardirqs_on+0x10/0x10 [ 155.977006] ? lock_acquire+0x1e4/0x540 [ 155.977023] ? percpu_ref_put_many+0x119/0x240 09:05:45 executing program 5: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) ioctl$TIOCGSID(0xffffffffffffff9c, 0x5429, &(0x7f0000000240)=0x0) r2 = syz_open_procfs(r1, &(0x7f0000000200)='net/ip6_tables_matches\x00') ioctl$PERF_EVENT_IOC_PERIOD(r2, 0x40082404, &(0x7f0000000100)=0x8) sendmsg$nl_netfilter(r0, &(0x7f0000000080)={&(0x7f0000000040)={0x10}, 0xc, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="18000000040470bc3d7e8f1f06ce1b542c8fb0665d6a15bff9bf8992ce1d6128c3bef37541391f4aed233a6624af69929e66fcdbcf320d72d5e6f1b1af8ae18a7be269a1ce7eeba93f4bc5a607eed5214e0ebec68eff1784dd611abd999810fbe3540278d279d43a3cd90dd0a49dc34b0eda9e88f3f9967bf224a36fdfa5c0261f1a79a9239b714bfdf5bade792b2b594391"], 0x18}, 0x1}, 0x0) 09:05:45 executing program 6: r0 = syz_open_dev$vcsn(&(0x7f0000000080)='/dev/vcs#\x00', 0x2, 0x80) getsockopt$inet_sctp6_SCTP_ASSOCINFO(0xffffffffffffff9c, 0x84, 0x1, &(0x7f00000000c0)={0x0, 0x4, 0xffffffffffffff80, 0x7, 0x79b, 0x994}, &(0x7f0000000100)=0x14) setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(r0, 0x84, 0x7c, &(0x7f0000000140)={r1, 0x5, 0x3e08}, 0x8) bpf$MAP_LOOKUP_ELEM(0x8, &(0x7f00000001c0)={0xffffffffffffffff, &(0x7f0000000100), &(0x7f0000000840)=""/4096}, 0x18) r2 = syz_open_dev$midi(&(0x7f0000000000)='/dev/midi#\x00', 0x4, 0x0) setsockopt$inet_sctp_SCTP_AUTH_CHUNK(r2, 0x84, 0x15, &(0x7f0000000040)={0x101}, 0x1) 09:05:45 executing program 5: ioctl(0xffffffffffffffff, 0x4000008912, &(0x7f0000000100)="295ee1311f16f477671070") r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) getsockopt(r0, 0x400000000000003a, 0x1, &(0x7f0000261f44)=""/188, &(0x7f0000000040)=0xbc) 09:05:45 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)={{}, 0x0, 0x0, 0x0, 0x3f000000}) 09:05:45 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={'lo`\x00', {0x2}}) [ 155.977039] ? lock_downgrade+0x8f0/0x8f0 [ 155.977054] ? lock_release+0xa30/0xa30 [ 155.977068] ? memcg_kmem_get_cache+0x3a9/0x9d0 [ 155.977085] ? mem_cgroup_handle_over_high+0x130/0x130 [ 155.977102] ? lock_acquire+0x1e4/0x540 [ 155.977123] ? fs_reclaim_acquire+0x20/0x20 [ 155.977139] ? lock_downgrade+0x8f0/0x8f0 [ 155.977159] ? check_same_owner+0x340/0x340 [ 156.024739] ? lock_downgrade+0x8f0/0x8f0 [ 156.024756] ? rcu_note_context_switch+0x730/0x730 [ 156.024775] __should_failslab+0x124/0x180 [ 156.024788] should_failslab+0x9/0x14 09:05:45 executing program 5: r0 = syz_open_dev$sndseq(&(0x7f0000000440)='/dev/snd/seq\x00', 0x0, 0x0) pwrite64(r0, &(0x7f0000000480)="4671f2808f84c733b07a03897f239b6bc677a010cba128fdc0e36ab1862a73d2d07da9da88483ecdae163d7ec2884968e4bea225c0d5d57f01fd99e9967d09", 0x3f, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_GET_LAPIC(r3, 0x8400ae8e, &(0x7f0000000040)={"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"}) ioctl$KVM_SET_VCPU_EVENTS(r3, 0x4040aea0, &(0x7f0000000500)={0x81, 0x2}) [ 156.024802] kmem_cache_alloc+0x2af/0x760 [ 156.024817] ? kasan_check_write+0x14/0x20 [ 156.024829] ? do_raw_spin_lock+0xc1/0x200 [ 156.024847] __alloc_file+0xac/0x400 [ 156.024860] ? file_free_rcu+0x90/0x90 [ 156.024873] ? select_collect+0x610/0x610 [ 156.024885] ? d_instantiate+0x79/0xa0 [ 156.024899] ? lock_downgrade+0x8f0/0x8f0 [ 156.024918] ? kasan_check_read+0x11/0x20 [ 156.024930] ? do_raw_spin_unlock+0xa7/0x2f0 [ 156.024943] ? do_raw_spin_trylock+0x1c0/0x1c0 [ 156.024959] alloc_empty_file+0x72/0x170 [ 156.024974] alloc_file+0x5c/0x430 [ 156.024989] alloc_file_pseudo+0x261/0x3f0 [ 156.025004] ? alloc_file+0x430/0x430 [ 156.025018] ? check_same_owner+0x340/0x340 [ 156.025032] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 156.025046] ? __check_object_size+0xa3/0x5d7 [ 156.025062] ? kasan_check_write+0x14/0x20 [ 156.025081] __shmem_file_setup.part.48+0x110/0x2a0 [ 156.025096] shmem_file_setup+0x65/0x90 [ 156.025120] __x64_sys_memfd_create+0x2af/0x4f0 [ 156.134964] ? memfd_fcntl+0x1e80/0x1e80 09:05:45 executing program 0: ioctl$RTC_PLL_SET(0xffffffffffffffff, 0x40207012, &(0x7f0000000100)={0x3, 0x8000000000, 0xffffffff, 0x3ab0, 0x1, 0x3f1, 0x6}) r0 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/qat_adf_ctl\x00', 0x1, 0x0) getsockopt$ARPT_SO_GET_REVISION_TARGET(r0, 0x0, 0x63, &(0x7f0000000240)={'NETMAP\x00'}, &(0x7f0000000140)=0x1e) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$EVIOCGREP(r1, 0x80084503, &(0x7f0000000280)=""/169) sendmsg$nl_xfrm(r1, &(0x7f0000000040)={&(0x7f0000000000)={0x10}, 0xc, &(0x7f0000000080)={&(0x7f0000000600)=ANY=[@ANYBLOB="6c010000170001000000000000000000e0000001000000000000000000000000000000000000000080000000000000000000ffffac1414007f000001000000000000000000000000fe8000000000000000000000000000aa00000000000000000000000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="00000000000000000000000000000000e000000100000000000000000000000000000000000000000200000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b880084f40010507a0000000000000000000000000000000000000000000000000000000000000000000000000000000000000044000500ff010000000000000000000000000100374c2e2414a66795ac0f000040ab438a00000000000000000000e00000014000000000000000000000000000000000000000000000000000000000000000000000000000000000"], 0x16c}, 0x1}, 0x0) 09:05:45 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)={{}, 0x0, 0x0, 0x0, 0xfeffffff}) [ 156.134980] do_syscall_64+0x1b9/0x820 [ 156.134990] ? finish_task_switch+0x1d3/0x870 [ 156.135001] ? syscall_return_slowpath+0x5e0/0x5e0 09:05:46 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)={{}, 0x0, 0x0, 0x0, 0xfeffffff00000000}) 09:05:46 executing program 2 (fault-call:1 fault-nth:5): syz_mount_image$vfat(&(0x7f0000000180)='vfat\x00', &(0x7f0000000080)='./file0/file0\x00', 0x0, 0x0, &(0x7f0000001580), 0x0, &(0x7f0000000340)={[{@shortname_win95='shortname=win95', 0x2c}]}) syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f0000000100)='./file0\x00', 0xe004, 0x1, &(0x7f0000000380)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020401000200027000f8", 0x16}], 0x0, &(0x7f0000000340)=ANY=[]) 09:05:46 executing program 5: r0 = syz_open_dev$binder(&(0x7f0000000080)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) r1 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vsock\x00', 0xa202, 0x0) r2 = geteuid() lstat(&(0x7f0000000040)='./file0\x00', &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) write$FUSE_ENTRY(r1, &(0x7f0000000200)={0x90, 0xfffffffffffffff5, 0x8, {0x5, 0x2, 0x6, 0x9, 0x5, 0x7, {0x0, 0xb8a, 0x3, 0x7fffffff, 0x0, 0x4, 0x73cc, 0x4, 0x7, 0xfffffffffffffffc, 0x10000, r2, r3, 0x80000001, 0x80000000}}}, 0x90) r4 = syz_open_dev$binder(&(0x7f0000009ff3)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) ioctl$BINDER_SET_CONTEXT_MGR(r4, 0x40046207, 0x0) mmap(&(0x7f0000010000/0x4000)=nil, 0x4000, 0x0, 0x20011, r4, 0x0) epoll_create1(0x80000) ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f00004edfd0)={0x4, 0x0, &(0x7f0000003fe8)=ANY=[@ANYBLOB="ffffffff"]}) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000007000)={0x4, 0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="11634840"], 0x0, 0x0, &(0x7f00004ee64e)}) dup3(r4, r0, 0x0) ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f000000efd0)={0x0, 0x0, &(0x7f0000000000), 0x1, 0xfdfd, &(0x7f00000001c0)="ef"}) 09:05:46 executing program 1: r0 = openat$vnet(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/vhost-net\x00', 0x2, 0x0) ioctl$int_in(r0, 0x40000000af01, &(0x7f0000000140)) r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x0, 0x0) close(r1) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f00000007c0)=ANY=[]) mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x2000000, 0x50, r0, 0x0) ioctl$VHOST_NET_SET_BACKEND(r0, 0x4008af30, &(0x7f0000f1dff8)={0x0, r1}) 09:05:46 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={"6c6f000000000000000200", {0x2}}) [ 156.135016] ? syscall_return_slowpath+0x31d/0x5e0 [ 156.135027] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 156.135038] ? prepare_exit_to_usermode+0x291/0x3b0 [ 156.135048] ? perf_trace_sys_enter+0xb10/0xb10 [ 156.135059] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 156.135075] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 156.135082] RIP: 0033:0x455ab9 [ 156.135085] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 156.135251] RSP: 002b:00007fb8b6388a88 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 156.135261] RAX: ffffffffffffffda RBX: 0000000020000380 RCX: 0000000000455ab9 [ 156.135267] RDX: 0000000020000398 RSI: 0000000000000000 RDI: 00000000004ba6a1 [ 156.135272] RBP: 000000000072bea0 R08: 0000000020000398 R09: 00000000fbad8001 [ 156.135278] R10: fe03f80fe03f80ff R11: 0000000000000246 R12: 0000000000000013 [ 156.135283] R13: 00000000004c233d R14: 00000000004d3de0 R15: 0000000000000004 [ 156.225912] netlink: 68 bytes leftover after parsing attributes in process `syz-executor0'. [ 156.300921] FAULT_INJECTION: forcing a failure. [ 156.300921] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 156.300939] CPU: 0 PID: 10978 Comm: syz-executor2 Not tainted 4.18.0-rc5-next-20180720+ #12 [ 156.300947] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 156.300951] Call Trace: [ 156.300970] dump_stack+0x1c9/0x2b4 [ 156.300986] ? dump_stack_print_info.cold.2+0x52/0x52 [ 156.300999] ? update_load_avg+0x389/0x27d0 [ 156.301024] should_fail.cold.4+0xa/0x11 [ 156.301039] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 156.301055] ? lock_acquire+0x1e4/0x540 [ 156.301069] ? find_get_entry+0xa6d/0x1120 [ 156.301081] ? lock_downgrade+0x8f0/0x8f0 [ 156.301094] ? trace_hardirqs_on+0x10/0x10 [ 156.301109] ? lock_release+0xa30/0xa30 [ 156.301125] ? d_alloc_parallel+0x15a/0x1ea0 [ 156.301139] ? __lookup_slow+0x1e6/0x540 [ 156.301151] ? lookup_slow+0x57/0x80 [ 156.301163] ? walk_component+0x94a/0x2630 [ 156.301175] ? link_path_walk.part.42+0x6e0/0x1540 [ 156.301192] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 156.301207] ? lock_acquire+0x1e4/0x540 [ 156.301219] ? fs_reclaim_acquire+0x20/0x20 [ 156.301231] ? lock_downgrade+0x8f0/0x8f0 [ 156.301246] ? check_same_owner+0x340/0x340 [ 156.301260] ? rcu_note_context_switch+0x730/0x730 [ 156.301277] __alloc_pages_nodemask+0x36e/0xdb0 [ 156.301290] ? lock_release+0xa30/0xa30 [ 156.301305] ? __alloc_pages_slowpath+0x2d00/0x2d00 [ 156.301318] ? rcu_is_watching+0x8c/0x150 [ 156.301332] ? rcu_cleanup_dead_rnp+0x200/0x200 [ 156.301347] ? trace_hardirqs_on+0x10/0x10 [ 156.301360] ? is_bpf_text_address+0xd7/0x170 [ 156.301375] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 156.301390] ? percpu_counter_add_batch+0xf2/0x150 [ 156.301406] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 156.301418] ? __vm_enough_memory+0x590/0x980 [ 156.301434] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 156.301449] alloc_pages_vma+0xdd/0x540 [ 156.301463] shmem_alloc_page+0xa8/0x190 [ 156.301477] ? shmem_swapin+0x230/0x230 [ 156.301506] shmem_alloc_and_acct_page+0x1f1/0x820 [ 156.301523] ? shmem_getattr+0x2c0/0x2c0 [ 156.301536] ? lock_release+0xa30/0xa30 [ 156.301551] ? kasan_check_read+0x11/0x20 [ 156.301569] shmem_getpage_gfp+0x6ea/0x3ec0 [ 156.301604] ? shmem_writepage+0x13a0/0x13a0 [ 156.301619] ? trace_hardirqs_on+0xd/0x10 [ 156.301633] ? __wake_up_common_lock+0x1d0/0x330 [ 156.301650] ? __wake_up_common+0x740/0x740 [ 156.301670] ? trace_hardirqs_on+0x10/0x10 [ 156.301685] ? lockdep_init_map+0x9/0x10 [ 156.301702] ? trace_hardirqs_on+0x10/0x10 [ 156.301720] ? trace_hardirqs_on+0x10/0x10 [ 156.301734] ? trace_hardirqs_on+0x10/0x10 [ 156.301751] ? trace_hardirqs_on+0x10/0x10 [ 156.301765] ? trace_hardirqs_on+0x10/0x10 [ 156.301781] ? trace_hardirqs_on+0x10/0x10 [ 156.301797] ? trace_hardirqs_on+0x10/0x10 [ 156.301814] ? trace_hardirqs_on+0x10/0x10 [ 156.301829] ? trace_hardirqs_on+0x10/0x10 [ 156.301844] ? kasan_check_read+0x11/0x20 [ 156.301859] ? trace_hardirqs_on+0x10/0x10 [ 156.301873] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 156.301891] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 156.301903] ? bpf_prog_kallsyms_find+0xde/0x4c0 [ 156.301920] ? lock_acquire+0x1e4/0x540 [ 156.301931] ? is_bpf_text_address+0xae/0x170 [ 156.301946] ? lock_downgrade+0x8f0/0x8f0 [ 156.301961] ? lock_release+0xa30/0xa30 [ 156.301977] ? trace_hardirqs_on+0x10/0x10 [ 156.301992] ? rcu_is_watching+0x8c/0x150 [ 156.302008] ? trace_hardirqs_on+0x10/0x10 [ 156.302025] ? lock_acquire+0x1e4/0x540 [ 156.302039] ? simple_xattr_get+0x106/0x180 [ 156.302056] ? current_time+0x72/0x1b0 [ 156.302071] ? lock_downgrade+0x8f0/0x8f0 [ 156.302085] ? kasan_check_read+0x11/0x20 [ 156.302100] ? lock_release+0xa30/0xa30 [ 156.302115] ? kasan_check_write+0x14/0x20 [ 156.302128] ? do_raw_spin_lock+0xc1/0x200 [ 156.302145] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 156.302159] ? iov_iter_fault_in_readable+0x23d/0x460 [ 156.302172] ? copy_page_from_iter+0x890/0x890 [ 156.302187] ? __sanitizer_cov_trace_const_cmp4+0x1b/0x20 [ 156.302202] ? ktime_get_coarse_real_ts64+0x243/0x3a0 [ 156.302219] shmem_write_begin+0x10a/0x1e0 [ 156.302236] generic_perform_write+0x3ae/0x6c0 [ 156.302257] ? add_page_wait_queue+0x2c0/0x2c0 [ 156.302270] ? file_update_time+0xe4/0x640 [ 156.302286] ? current_time+0x1b0/0x1b0 [ 156.302305] ? down_write+0x8f/0x130 [ 156.302322] __generic_file_write_iter+0x26e/0x630 [ 156.302339] generic_file_write_iter+0x438/0x870 [ 156.302354] ? __generic_file_write_iter+0x630/0x630 [ 156.302370] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 156.302382] ? iov_iter_init+0xc9/0x1f0 [ 156.302397] __vfs_write+0x6af/0x9d0 [ 156.302412] ? kernel_read+0x120/0x120 [ 156.302425] ? lock_release+0xa30/0xa30 [ 156.302438] ? check_same_owner+0x340/0x340 [ 156.302449] ? __fget_light+0x2f7/0x440 [ 156.302460] ? fget_raw+0x20/0x20 [ 156.302478] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 156.302491] ? __sb_start_write+0x17f/0x300 [ 156.302505] vfs_write+0x1fc/0x560 [ 156.302518] ksys_pwrite64+0x181/0x1b0 [ 156.302531] ? __ia32_sys_pread64+0xf0/0xf0 [ 156.302542] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 156.302553] ? fput+0x130/0x1a0 [ 156.302564] ? do_sys_ftruncate+0x44e/0x560 [ 156.302577] __x64_sys_pwrite64+0x97/0xf0 [ 156.302604] do_syscall_64+0x1b9/0x820 [ 156.302617] ? finish_task_switch+0x1d3/0x870 [ 156.302633] ? syscall_return_slowpath+0x5e0/0x5e0 [ 156.302649] ? syscall_return_slowpath+0x31d/0x5e0 [ 156.302665] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 156.302681] ? prepare_exit_to_usermode+0x291/0x3b0 [ 156.302694] ? perf_trace_sys_enter+0xb10/0xb10 [ 156.302709] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 156.302728] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 156.302739] RIP: 0033:0x40fd77 [ 156.302744] Code: 12 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 51 17 00 00 c3 48 83 ec 08 e8 27 fa ff ff 48 89 04 24 49 89 ca b8 12 00 00 00 0f 05 <48> 8b 3c 24 48 89 c2 e8 6d fa ff ff 48 89 d0 48 83 c4 08 48 3d 01 [ 156.302963] RSP: 002b:00007fb8b6388a80 EFLAGS: 00000293 ORIG_RAX: 0000000000000012 [ 156.302977] RAX: ffffffffffffffda RBX: 0000000020000390 RCX: 000000000040fd77 [ 156.302983] RDX: 0000000000000016 RSI: 0000000020010000 RDI: 0000000000000014 [ 156.302990] RBP: 0000000000000000 R08: 0000000020000398 R09: 00000000fbad8001 [ 156.302997] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000014 [ 156.303003] R13: 0000000000000001 R14: 00000000004d3de0 R15: 0000000000000005 [ 156.330380] binder: 10984:10990 unknown command -1 [ 156.330395] binder: 10984:10990 ioctl c0306201 204edfd0 returned -22 09:05:46 executing program 4: r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000040)={0x0, 0x6, 0xfa00, {0x0, &(0x7f0000000240)={0xffffffffffffffff}, 0x111}}, 0x20) write$RDMA_USER_CM_CMD_SET_OPTION(r0, &(0x7f00000001c0)={0xe, 0x12, 0xfa00, @id_afonly={&(0x7f0000000180), r1, 0x1000000, 0x2, 0x4}}, 0xfffa) write$RDMA_USER_CM_CMD_JOIN_MCAST(r0, &(0x7f00000000c0)={0x16, 0x98, 0xfa00, {&(0x7f0000000080), 0x4, r1, 0x30, 0x0, @in={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x14}}}}, 0xa0) 09:05:46 executing program 0: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f000001f000)={0x26, 'aead\x00', 0x0, 0x0, 'authencesn(sha3-224-generic,cbc-camellia-asm)\x00'}, 0x58) setsockopt$SO_TIMESTAMPING(0xffffffffffffffff, 0x1, 0x25, &(0x7f0000000000)=0x240, 0x4) r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_S390_UCAS_UNMAP(r1, 0x4018ae51, &(0x7f0000000040)={0x6, 0x818}) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000000), 0x2a4) 09:05:46 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)={{}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}) 09:05:46 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_NEXT_CMD_LEN(r0, 0x2283, &(0x7f0000000000)=0xb7) write$binfmt_elf64(r0, &(0x7f0000000300)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, 0x0, 0x0, 0x0, 0x38}, [{}]}, 0x78) 09:05:46 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={"6c6f000000000000001f00", {0x2}}) 09:05:46 executing program 2 (fault-call:1 fault-nth:6): syz_mount_image$vfat(&(0x7f0000000180)='vfat\x00', &(0x7f0000000080)='./file0/file0\x00', 0x0, 0x0, &(0x7f0000001580), 0x0, &(0x7f0000000340)={[{@shortname_win95='shortname=win95', 0x2c}]}) syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f0000000100)='./file0\x00', 0xe004, 0x1, &(0x7f0000000380)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020401000200027000f8", 0x16}], 0x0, &(0x7f0000000340)=ANY=[]) 09:05:46 executing program 6: r0 = socket(0x100000009, 0x3, 0x6) perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, &(0x7f00000002c0)={"6272696467653000000100"}) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, &(0x7f0000000000)={'bridge0\x00', 0xfffffffffffffff9}) socket(0x10, 0xa, 0xab48) [ 156.330661] binder: release 10984:10990 transaction 12 out, still active [ 156.330666] binder: undelivered TRANSACTION_COMPLETE [ 156.330837] FAT-fs (loop2): bogus number of reserved sectors [ 156.330845] FAT-fs (loop2): Can't find a valid FAT filesystem [ 157.129093] binder: BINDER_SET_CONTEXT_MGR already set [ 157.156148] binder: 10984:11012 ioctl 40046207 0 returned -16 [ 157.166232] FAULT_INJECTION: forcing a failure. [ 157.166232] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 157.174093] binder_alloc: binder_alloc_mmap_handler: 10984 20010000-20014000 already mapped failed -16 [ 157.178081] CPU: 0 PID: 11020 Comm: syz-executor2 Not tainted 4.18.0-rc5-next-20180720+ #12 [ 157.178090] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 157.178095] Call Trace: [ 157.178124] dump_stack+0x1c9/0x2b4 [ 157.205386] binder: 10984:11012 unknown command -1 [ 157.205690] ? dump_stack_print_info.cold.2+0x52/0x52 [ 157.212811] binder_alloc: 10984: binder_alloc_buf, no vma [ 157.216841] ? shmem_unused_huge_scan+0x180/0x180 [ 157.216859] ? current_time+0x72/0x1b0 [ 157.216881] should_fail.cold.4+0xa/0x11 [ 157.222159] binder: 10984:11031 transaction failed 29189/-3, size 0-0 line 2967 [ 157.227673] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 157.227690] ? iov_iter_advance+0x2ec/0x14e0 [ 157.243142] binder: 10984:11012 ioctl c0306201 204edfd0 returned -22 [ 157.247897] ? trace_hardirqs_on+0x10/0x10 [ 157.247911] ? check_same_owner+0x340/0x340 [ 157.247932] ? shmem_write_begin+0x10a/0x1e0 [ 157.271854] binder: undelivered TRANSACTION_ERROR: 29189 [ 157.272455] ? shmem_write_begin+0x113/0x1e0 [ 157.272473] ? shmem_unused_huge_scan+0x180/0x180 [ 157.291545] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 157.297094] ? generic_perform_write+0x305/0x6c0 [ 157.301862] ? generic_file_write_iter+0x447/0x870 09:05:47 executing program 1: r0 = socket(0x10, 0x2, 0x0) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000000000)=0xc) setuid(r1) setresuid(r1, r1, r1) 09:05:47 executing program 1: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000240)=@mangle={'mangle\x00', 0x1f, 0x6, 0x620, 0x110, 0x438, 0x328, 0x438, 0x438, 0x550, 0x550, 0x550, 0x550, 0x550, 0x6, &(0x7f00000001c0), {[{{@uncond, 0x0, 0xc8, 0x110}, @DNPT={0x48, 'DNPT\x00', 0x0, {@ipv6=@mcast1={0xff, 0x1, [], 0x1}, @ipv6=@loopback={0x0, 0x1}, 0x14, 0x3c, 0x80}}}, {{@ipv6={@local={0xfe, 0x80, [], 0xaa}, @loopback={0x0, 0x1}, [0x0, 0xffffff00, 0xff000000, 0xff], [0xffffffff, 0xffffff00, 0xffffff00, 0xff], 'team_slave_0\x00', 'veth1_to_bond\x00', {}, {0xff}, 0x6c, 0x1, 0x6, 0x40}, 0x0, 0xc8, 0x110}, @SNPT={0x48, 'SNPT\x00', 0x0, {@ipv4=@multicast1=0xe0000001, @ipv6=@loopback={0x0, 0x1}, 0x22, 0x1f, 0x5d0}}}, {{@ipv6={@loopback={0x0, 0x1}, @empty, [0xffffffff, 0xff, 0xff0000ff, 0xff000000], [0xffffffff, 0xffffffff, 0xffffff00, 0xb2687600acae9076], 'bcsh0\x00', 'ip_vti0\x00', {}, {}, 0x73, 0x7f, 0x6, 0x40}, 0x0, 0xc8, 0x108}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x7fffffff, 0xbbe9, @ipv6=@loopback={0x0, 0x1}, 0x4e20}}}, {{@ipv6={@loopback={0x0, 0x1}, @local={0xfe, 0x80, [], 0xaa}, [0xffffffff, 0xff000000, 0xffffff00], [0xff000000, 0xff, 0x0, 0xffffffff], 'ipddp0\x00', 'erspan0\x00', {0xff}, {0xff}, 0x66, 0x9, 0x1, 0x12}, 0x0, 0xc8, 0x110}, @DNPT={0x48, 'DNPT\x00', 0x0, {@ipv6=@loopback={0x0, 0x1}, @ipv6, 0x18, 0x19, 0x1}}}, {{@uncond, 0x0, 0xf0, 0x118, 0x0, {}, [@inet=@rpfilter={0x28, 'rpfilter\x00', 0x0, {0x9}}]}, @HL={0x28, 'HL\x00', 0x0, {0x0, 0x358c}}}], {{[], 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x0, 0xfffffffffffffffe}}}}, 0x680) r1 = accept4$inet(0xffffffffffffffff, 0x0, &(0x7f0000000040), 0x800) getsockopt$inet_dccp_buf(r1, 0x21, 0xc, &(0x7f0000000100)=""/175, &(0x7f0000000080)=0xaf) getsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000000)={@local={0xfe, 0x80, [], 0xaa}, 0x0, 0x0, 0x0, 0x8}, &(0x7f00000000c0)=0x20) 09:05:47 executing program 1: sendmsg(0xffffffffffffffff, &(0x7f00000016c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000180)="cf61", 0x2}], 0x1, &(0x7f00000002c0)}, 0x0) mkdir(&(0x7f0000000000)='.', 0xfffffffffffffffe) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='fusectl\x00', 0x4, 0x0) 09:05:47 executing program 1: syz_mount_image$msdos(&(0x7f0000000000)='msdos\x00', &(0x7f00000003c0)='./file0\x00', 0xe800, 0x1, &(0x7f0000000200)=[{&(0x7f0000000040)="eb3c906d6b660800666174000204010a0200027400f8000000000283224ea4224b5494fab2", 0x25}], 0x0, &(0x7f00000000c0)) r0 = syz_open_dev$sndpcmp(&(0x7f0000000100)='/dev/snd/pcmC#D#p\x00', 0x6ed, 0x8000) openat$cgroup_type(r0, &(0x7f0000000140)='cgroup.type\x00', 0x2, 0x0) umount2(&(0x7f0000000080)='./file0\x00', 0x0) [ 157.306816] ? perf_trace_lock_acquire+0xeb/0x9a0 [ 157.311669] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 157.317215] ? should_fail+0x246/0xd86 [ 157.321116] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 157.326262] __alloc_pages_nodemask+0x36e/0xdb0 [ 157.330967] ? up_write+0x7b/0x220 [ 157.334551] ? __alloc_pages_slowpath+0x2d00/0x2d00 [ 157.339681] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 157.345578] ? generic_file_write_iter+0x4a3/0x870 [ 157.350530] ? lock_acquire+0x1e4/0x540 09:05:47 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={"6c6f0000000100", {0x2}}) [ 157.354519] ? fs_reclaim_acquire+0x20/0x20 [ 157.358854] ? lock_downgrade+0x8f0/0x8f0 [ 157.363015] ? lock_release+0xa30/0xa30 [ 157.367002] ? check_same_owner+0x340/0x340 [ 157.371118] FAT-fs (loop1): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) [ 157.371330] cache_grow_begin+0x91/0x710 [ 157.383704] kmem_cache_alloc+0x689/0x760 [ 157.387862] getname_flags+0xd0/0x5a0 [ 157.391670] getname+0x19/0x20 [ 157.394867] do_sys_open+0x3a2/0x720 [ 157.398071] binder: send failed reply for transaction 12, target dead [ 157.398585] ? filp_open+0x80/0x80 [ 157.408804] ? do_sys_ftruncate+0x44e/0x560 [ 157.413125] __x64_sys_open+0x7e/0xc0 [ 157.416915] do_syscall_64+0x1b9/0x820 [ 157.420788] ? finish_task_switch+0x1d3/0x870 [ 157.425270] ? syscall_return_slowpath+0x5e0/0x5e0 [ 157.430183] ? syscall_return_slowpath+0x31d/0x5e0 [ 157.435099] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 157.440103] ? prepare_exit_to_usermode+0x291/0x3b0 [ 157.445110] ? perf_trace_sys_enter+0xb10/0xb10 [ 157.450112] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 157.454943] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 157.460114] RIP: 0033:0x40fd11 [ 157.463291] Code: 75 14 b8 02 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 b4 17 00 00 c3 48 83 ec 08 e8 8a fa ff ff 48 89 04 24 b8 02 00 00 00 0f 05 <48> 8b 3c 24 48 89 c2 e8 d3 fa ff ff 48 89 d0 48 83 c4 08 48 3d 01 [ 157.482920] RSP: 002b:00007fb8b6388a80 EFLAGS: 00000293 ORIG_RAX: 0000000000000002 [ 157.490624] RAX: ffffffffffffffda RBX: 00000000200003a8 RCX: 000000000040fd11 [ 157.497885] RDX: 00007fb8b6388afa RSI: 0000000000000002 RDI: 00007fb8b6388af0 09:05:47 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)={{}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfeffffff}) [ 157.505135] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 157.512390] R10: 0000000000000075 R11: 0000000000000293 R12: 0000000000000014 [ 157.519739] R13: 0000000000000001 R14: 00000000004d3de0 R15: 0000000000000006 09:05:47 executing program 5: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000600)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(aes-aesni)\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f00000028c0)="b7f2288a933d559166593ae164c990a0", 0x10) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg$alg(r1, &(0x7f0000000c80)=[{0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000000)="8f318752a78685d17f71f6306cb3e8ef3ac7758242bbdd8416fa53419cb5f201f5760f7583254a1daef843b02a2dce95", 0x30}], 0x1, &(0x7f0000000100)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x0) r2 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x18000, 0x0) ioctl$RTC_WIE_OFF(r2, 0x7010) readv(r1, &(0x7f0000000680)=[{&(0x7f0000000280)=""/129, 0x81}], 0x1) 09:05:47 executing program 0: r0 = openat$vnet(0xffffffffffffff9c, &(0x7f00002ac000)='/dev/vhost-net\x00', 0x2, 0x0) ioctl$int_in(r0, 0x40000000af01, &(0x7f0000000040)) r1 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r1, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f00000002c0)=ANY=[@ANYRES64=r0, @ANYBLOB="f4c97efd259ccb3d0180367c2b7429e0c3c8e13ee143db9de807e8c600a91d929f0911d8260f255af998c6a7f0dffe85e56e9193b06fcb98503daab814b0e6deb4b5d889ab0607465b728c6304ec1a25c5474efd499ba3d04535af497727c794790024b5aeb53cbd79a54891fd2577c91ff99f8be550d46014d1850f0b439a43590a79c9598041e2e85a0646059a98c340e9426c4c9d15426aa972e555557a9099672be287a3c221562d5698f261eab90c6243c674def66de1e55e4f1dd5c6184b4c2c5bbaefb4c33c0800077a2df7fe6023931f2d76a4e76229fcc01d733e92ef0f019dc94677d8d2e25aaca134d955af9950de2f1eba2435627aff5b2293046f213979868e51d82f7d25264bdc83b73c5bf85ce86dafa03b08ddcb57569cdee4e17b72e110c5cd339d56aaf1899f1089ba80b66d9c1af274cb88f0a34879463738a50c0161836901dbade6a50c1785c2eec363b264c982666e340d4224f6c619b6c86da697d375bfaade0e5781379ba2927690d1f82c1eaa09870fccbdb063a905b4ca57f27da8cdf6d53ff29abcb7a0d6667781f995b73f90f9ce464c483afcb03f84a20613e0"]) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000180)) 09:05:47 executing program 2 (fault-call:1 fault-nth:7): syz_mount_image$vfat(&(0x7f0000000180)='vfat\x00', &(0x7f0000000080)='./file0/file0\x00', 0x0, 0x0, &(0x7f0000001580), 0x0, &(0x7f0000000340)={[{@shortname_win95='shortname=win95', 0x2c}]}) syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f0000000100)='./file0\x00', 0xe004, 0x1, &(0x7f0000000380)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020401000200027000f8", 0x16}], 0x0, &(0x7f0000000340)=ANY=[]) [ 157.566044] FAT-fs (loop1): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) 09:05:47 executing program 4: getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000000)={0x0}, &(0x7f0000000040)=0xc) r1 = fcntl$getown(0xffffffffffffffff, 0x9) r2 = socket$inet_tcp(0x2, 0x1, 0x0) r3 = socket$inet_udp(0x2, 0x2, 0x0) kcmp(r0, r1, 0x4, r2, r3) r4 = openat$uinput(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/uinput\x00', 0x0, 0x0) ioctl$sock_SIOCGIFINDEX(r4, 0xc06855c8, &(0x7f00000008c0)={'veth0_to_team\x00'}) 09:05:47 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)={{}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3f00}) 09:05:47 executing program 6: r0 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @multicast1=0xe0000001}, 0x10) connect$inet(r0, &(0x7f0000ccb000)={0x2, 0x4e20}, 0x10) sendto(r0, &(0x7f0000000100)="a0", 0x1, 0x0, &(0x7f0000000140)=@rc={0x1f}, 0x80) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x1, 0x3, &(0x7f00009ff000)=@framed={{0x18}, [], {0x95}}, &(0x7f00002bf000)='syzkaller\x00', 0x1, 0xb7, &(0x7f0000000440)=""/183}, 0x48) r2 = socket$kcm(0x29, 0x1000000000002, 0x0) ioctl$sock_kcm_SIOCKCMATTACH(r2, 0x89e0, &(0x7f000031aff8)={r0, r1}) ioctl$sock_kcm_SIOCKCMCLONE(r2, 0x89e2, &(0x7f0000000000)={0xffffffffffffffff}) ioctl$sock_kcm_SIOCKCMCLONE(r3, 0x89e1, &(0x7f00000000c0)={r2}) 09:05:47 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={'lo\x00`\x00', {0x2}}) 09:05:47 executing program 1: r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000340)='/dev/ppp\x00', 0x4100, 0x0) r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000240)='}ppp1trustedet0selinux!\x00\x00', r0}, 0x10) ioctl$PPPIOCSFLAGS(r1, 0x40047459, &(0x7f0000000300)=0x80000) r2 = semget(0x1, 0x4, 0x100) semctl$GETNCNT(r2, 0x7, 0xe, &(0x7f0000000380)=""/240) r3 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r3, 0x8912, &(0x7f0000000280)="025cc83dd4d86d345f8ff6") getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(r1, 0x84, 0x7c, &(0x7f0000000180)={0x0, 0xffffffffffffffff, 0x9}, &(0x7f00000001c0)=0x8) setsockopt$inet_sctp6_SCTP_RTOINFO(r1, 0x84, 0x0, &(0x7f0000000200)={r4, 0x937, 0x3c, 0x2}, 0x10) getsockopt$inet6_udp_int(r3, 0x11, 0x65, &(0x7f0000000080), &(0x7f00000000c0)=0x4) getsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(r1, 0x84, 0x75, &(0x7f0000000000)={0x0, 0x10001}, &(0x7f0000000040)=0x8) getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r1, 0x84, 0x7b, &(0x7f0000000100)={r5, 0x1f}, &(0x7f0000000140)=0x8) 09:05:47 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)={{}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3f00000000000000}) [ 157.702977] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead. [ 157.730346] FAULT_INJECTION: forcing a failure. [ 157.730346] name failslab, interval 1, probability 0, space 0, times 0 [ 157.741745] CPU: 1 PID: 11090 Comm: syz-executor2 Not tainted 4.18.0-rc5-next-20180720+ #12 [ 157.750243] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 157.759598] Call Trace: [ 157.762195] dump_stack+0x1c9/0x2b4 [ 157.765834] ? dump_stack_print_info.cold.2+0x52/0x52 [ 157.771037] should_fail.cold.4+0xa/0x11 [ 157.775093] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 157.780184] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 157.785723] ? lock_acquire+0x1e4/0x540 [ 157.789685] ? lo_ioctl+0x8e/0x1d70 [ 157.793310] ? disk_unblock_events+0x49/0x60 [ 157.797705] ? lock_release+0xa30/0xa30 [ 157.801664] ? check_same_owner+0x340/0x340 [ 157.805977] ? rcu_note_context_switch+0x730/0x730 [ 157.810895] ? lock_acquire+0x1e4/0x540 [ 157.814855] ? fs_reclaim_acquire+0x20/0x20 [ 157.819169] ? lock_downgrade+0x8f0/0x8f0 [ 157.823304] ? check_same_owner+0x340/0x340 [ 157.827607] ? mutex_trylock+0x2b0/0x2b0 [ 157.831653] ? rcu_note_context_switch+0x730/0x730 [ 157.836572] __should_failslab+0x124/0x180 [ 157.840821] should_failslab+0x9/0x14 [ 157.844612] kmem_cache_alloc_trace+0x2cb/0x780 [ 157.849297] ? init_wait_entry+0x1c0/0x1c0 [ 157.853514] ? lock_release+0xa30/0xa30 [ 157.857473] ? trace_hardirqs_on+0x10/0x10 [ 157.861697] ? loop_get_status64+0x140/0x140 [ 157.866090] __kthread_create_on_node+0x127/0x4c0 [ 157.870919] ? __kthread_parkme+0x1b0/0x1b0 [ 157.875312] ? __fget+0x4d5/0x740 [ 157.878765] ? __lockdep_init_map+0x105/0x590 [ 157.883246] ? loop_get_status64+0x140/0x140 [ 157.887646] kthread_create_on_node+0xb1/0xe0 [ 157.892144] ? __kthread_create_on_node+0x4c0/0x4c0 [ 157.897158] lo_ioctl+0x7f6/0x1d70 [ 157.900685] ? lo_rw_aio_complete+0x450/0x450 [ 157.905168] blkdev_ioctl+0x9cd/0x2030 [ 157.909060] ? lock_acquire+0x1e4/0x540 [ 157.913028] ? blkpg_ioctl+0xc40/0xc40 [ 157.916899] ? lock_release+0xa30/0xa30 [ 157.920858] ? save_stack+0xa9/0xd0 [ 157.924466] ? save_stack+0x43/0xd0 [ 157.928078] ? __fget+0x4d5/0x740 [ 157.931515] ? ksys_dup3+0x690/0x690 [ 157.935210] ? do_raw_spin_trylock+0x1c0/0x1c0 [ 157.939781] ? kasan_check_write+0x14/0x20 [ 157.944001] ? do_raw_spin_lock+0xc1/0x200 [ 157.948228] block_ioctl+0xee/0x130 [ 157.951854] ? blkdev_fallocate+0x400/0x400 [ 157.956162] do_vfs_ioctl+0x1de/0x1720 [ 157.960042] ? ioctl_preallocate+0x300/0x300 [ 157.964444] ? __fget_light+0x2f7/0x440 [ 157.968403] ? fget_raw+0x20/0x20 [ 157.971843] ? trace_hardirqs_on+0xd/0x10 [ 157.975977] ? kmem_cache_free+0x22e/0x2d0 [ 157.980201] ? putname+0xf7/0x130 [ 157.983640] ? do_sys_open+0x3cb/0x720 [ 157.987516] ? security_file_ioctl+0x94/0xc0 [ 157.991907] ksys_ioctl+0xa9/0xd0 [ 157.995344] __x64_sys_ioctl+0x73/0xb0 [ 157.999225] do_syscall_64+0x1b9/0x820 [ 158.003189] ? finish_task_switch+0x1d3/0x870 [ 158.007666] ? syscall_return_slowpath+0x5e0/0x5e0 [ 158.012585] ? syscall_return_slowpath+0x31d/0x5e0 [ 158.017498] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 158.022497] ? prepare_exit_to_usermode+0x291/0x3b0 [ 158.027498] ? perf_trace_sys_enter+0xb10/0xb10 [ 158.032150] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 158.037004] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 158.042189] RIP: 0033:0x455927 [ 158.045367] Code: 48 83 c4 08 48 89 d8 5b 5d c3 66 0f 1f 84 00 00 00 00 00 48 89 e8 48 f7 d8 48 39 c3 0f 92 c0 eb 92 66 90 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 7d bb fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 158.064888] RSP: 002b:00007fb8b6388a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 158.072581] RAX: ffffffffffffffda RBX: 00000000200003a8 RCX: 0000000000455927 [ 158.079831] RDX: 0000000000000014 RSI: 0000000000004c00 RDI: 0000000000000015 [ 158.087081] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 158.094341] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000014 09:05:47 executing program 4: r0 = openat$null(0xffffffffffffff9c, &(0x7f0000000040)='/dev/null\x00', 0x280202, 0x0) connect$rds(r0, &(0x7f0000000080)={0x2, 0x4e23, @local={0xac, 0x14, 0x14, 0xaa}}, 0x10) ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f00000002c0)=0x0) r2 = getpgrp(0xffffffffffffffff) kcmp$KCMP_EPOLL_TFD(r1, r2, 0x7, r0, &(0x7f0000000300)={r0, r0, 0x7}) r3 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r4 = dup(r3) getsockopt$inet_sctp_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000000c0)={0x0, 0x1, 0x10}, &(0x7f0000000100)=0xc) ioctl$TIOCGETD(r0, 0x5424, &(0x7f00000003c0)) setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r4, 0x84, 0x72, &(0x7f0000000140)={r5, 0xfffffffffffffff8}, 0xc) accept4$packet(r0, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @link_local}, &(0x7f0000000380)=0x14, 0x80800) perf_event_open$cgroup(&(0x7f0000000240)={0x0, 0x70, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x7, 0x1f7c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000200)}}, r4, 0x0, 0xffffffffffffffff, 0x0) 09:05:47 executing program 0: r0 = socket$inet6(0x10, 0x3, 0x0) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(0xffffffffffffff9c, 0x84, 0x9, &(0x7f0000000080)={0x0, @in={{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x14}}}, 0x7, 0x3, 0xca20, 0x1, 0x2}, &(0x7f0000000140)=0x306) getsockopt$inet_sctp6_SCTP_GET_ASSOC_STATS(r0, 0x84, 0x70, &(0x7f0000000200)={r1, @in={{0x2, 0x4e24, @local={0xac, 0x14, 0x14, 0xaa}}}, [0x401, 0x49, 0x9, 0x5, 0x4ba8, 0x0, 0x8, 0x0, 0x9d, 0x6, 0x7ff, 0xfffffffffffffff7, 0x7, 0x9f6c, 0x6]}, &(0x7f0000000300)=0x100) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, &(0x7f0000000340)={'vlan0\x00', 0x1000}) sendmsg(r0, &(0x7f0000002fc8)={&(0x7f0000000000)=@nl=@kern={0x10}, 0x80, &(0x7f0000002000)=[{&(0x7f000000dfaa)="5500000019007f5300fe01b2a4a280930a60000000a8430891000000390009000a000c00060000001900a30700000005008bab92e28c8a1a00009b84136ef75afb83de448daa7227c43ab8220000060cec4fab91d4", 0x55}], 0x1, &(0x7f0000000400)}, 0x0) [ 158.101599] R13: 0000000000000001 R14: 00000000004d3de0 R15: 0000000000000007 09:05:47 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={"6c6f0000001e00", {0x2}}) 09:05:47 executing program 5: r0 = socket$alg(0x26, 0x5, 0x0) r1 = syz_open_dev$vcsn(&(0x7f0000000040)='/dev/vcs#\x00', 0xffffffffffff2274, 0x10000) getsockopt$inet_sctp_SCTP_PR_SUPPORTED(r0, 0x84, 0x71, &(0x7f0000000100)={0x0, 0xfff}, &(0x7f0000000140)=0x8) setsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(r1, 0x84, 0x22, &(0x7f0000000180)={0x40, 0x8207, 0x2541, 0x4, r2}, 0x10) bind$alg(r0, &(0x7f0000df9000)={0x26, 'hash\x00', 0x0, 0x0, 'rmd160\x00'}, 0x58) r3 = accept$alg(r0, 0x0, 0x0) bind$alg(r1, &(0x7f0000000200)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_nopr_hmac_sha1\x00'}, 0x58) sendmsg$alg(r3, &(0x7f00002d2000)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)='E', 0x1}], 0x1, &(0x7f000089ce88)}, 0x0) r4 = syz_open_dev$sndpcmc(&(0x7f0000000000)='/dev/snd/pcmC#D#c\x00', 0x81, 0x0) setsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(r4, 0x84, 0x22, &(0x7f0000000080)={0xff, 0x0, 0x2, 0x7}, 0x10) r5 = fcntl$dupfd(0xffffffffffffff9c, 0x0, r0) socketpair$inet_dccp(0x2, 0x6, 0x0, &(0x7f0000000280)) ioctl$BLKRRPART(r5, 0x125f, 0x0) 09:05:48 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)={{}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000000000000}) 09:05:48 executing program 1: r0 = socket$inet6(0x10, 0xfffffffff7ffffff, 0x3) sendmsg(r0, &(0x7f0000002fc8)={&(0x7f0000000000)=@nl=@kern={0x10}, 0x80, &(0x7f0000002000)=[{&(0x7f000000dfaa)="5500000018007fbdb72d1cb2a4a280930a06000000a84308910000000900140003000500000000001900a30700000000000000dc1338d54400009b84136ef75afb83de448daa7227c43ab8220000060cec4fab91d4", 0x55}], 0x1, &(0x7f0000006000)}, 0x0) r1 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000080)='/dev/mixer\x00', 0x0, 0x0) ioctl$EVIOCSREP(r1, 0x40084503, &(0x7f00000000c0)=[0x3ff, 0x7]) 09:05:48 executing program 4: socketpair(0x1e, 0x2, 0x0, &(0x7f0000000140)={0x0, 0x0}) r2 = getpid() ptrace$setregset(0x4205, r2, 0x3, &(0x7f0000001680)={&(0x7f0000001640)="cd104b1e32b92e5ee345fb70912b6517", 0x10}) r3 = perf_event_open(&(0x7f0000001740)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, r2, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(r3, 0x2403, 0x0) setsockopt$inet6_mtu(r3, 0x29, 0x17, &(0x7f0000000040), 0x4) mlockall(0x0) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000003c0)={{{@in=@multicast1, @in, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@local}, 0x0, @in6=@remote}}, &(0x7f00000004c0)=0xe8) getgroups(0x1, &(0x7f0000000500)=[0x0]) lstat(&(0x7f0000000540)='./file0\x00', &(0x7f0000000580)={0x0, 0x0, 0x0, 0x0, 0x0}) stat(&(0x7f0000000600)='./file0\x00', &(0x7f0000000640)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) r8 = getpid() getsockopt$inet_IP_XFRM_POLICY(r1, 0x0, 0x11, &(0x7f00000006c0)={{{@in6=@mcast2, @in=@multicast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@remote}, 0x0, @in6=@local}}, &(0x7f00000007c0)=0xe8) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000800)={0x0, 0x0, 0x0}, &(0x7f0000000840)=0xc) getresuid(&(0x7f0000000c40), &(0x7f0000000c80), &(0x7f0000000cc0)=0x0) stat(&(0x7f0000000d00)='./file0\x00', &(0x7f0000000d40)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) fstat(r3, &(0x7f0000000dc0)={0x0, 0x0, 0x0, 0x0, 0x0}) stat(&(0x7f0000000e40)='./file0\x00', &(0x7f0000000e80)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000f00)={0x0, 0x0}, &(0x7f0000000f40)=0xc) lstat(&(0x7f0000000f80)='./file0\x00', &(0x7f0000000fc0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) stat(&(0x7f0000001200)='./file0\x00', &(0x7f0000001240)={0x0, 0x0, 0x0, 0x0, 0x0}) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f00000012c0)={0x0, 0x0, 0x0}, &(0x7f0000001300)=0xc) fstat(r1, &(0x7f0000001340)={0x0, 0x0, 0x0, 0x0, 0x0}) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f00000013c0)={0x0, 0x0, 0x0}, &(0x7f0000001400)=0xc) sendmmsg$unix(r0, &(0x7f0000001580)=[{&(0x7f0000000080)=@abs={0x1, 0x0, 0x4e24}, 0x6e, &(0x7f0000000380)=[{&(0x7f0000000180)="67733ce8798296bd4dba3226de88a2b9d8c4f844f542652f66286e7b4431004244dc0bed6fa2c7d9e47d64bd4b67bd384a5871cd1371e805a97c5ac8a76abbeb692b169c2f0a72d797011dd2e7843fd3e5af0546fa896626089e834ea750eb0596918de6e95b714085bf4442f5b82eb9b67ff8df85549ead3b207a70c9716566977cc8feaa74b7020f91250e73321e6bec", 0x91}, {&(0x7f0000000100)="33bf884d591cebc55fa36d23f6f0a46b2df24f7a02c1e0dbc6189e2bc03fa86d139f48", 0x23}, {&(0x7f0000000240)="428dffd1d3165903b280d9fb4598fd7ff0222786421d5b0b258c7ba550240bd84b7ec761e1caa1405b03f259c79614fd5452f055a5cd22b00beea5e66f57e7c8716083313ce17338f3d2eccae2117ca1e1e2e9a5c34de57b5d69a1619c230454d8fead5cf96e0e3ffbae64fc60f3cf7641edd61d9f82c23dea3186953d21be60c50a9b20d4dba496bd87e6ed52fe5777", 0x90}, {&(0x7f0000000300)="6926b5f45262f0ad7fd41ddcdfc516dd84370f8f57ebc596d00eda101b765abaad15cabacca0f005002ec739fbfdc7341fa59698ae49d47e159fca197c2e9a5f7371406ff81fa5bde4303aa3dcd6294deb639dd2fb1e65c05c636fbf8da42f0a4b9714e3bf8aa3155ea163ccb1d99ce0675eed01", 0x74}], 0x4, &(0x7f0000000880)=[@cred={0x20, 0x1, 0x2, r2, r4, r5}, @cred={0x20, 0x1, 0x2, r2, r6, r7}, @cred={0x20, 0x1, 0x2, r8, r9, r10}], 0x60, 0x40000}, {&(0x7f0000000900)=@abs={0x1, 0x0, 0x4e20}, 0x6e, &(0x7f0000000c00)=[{&(0x7f0000000980)="b1d3cf46d5d77171e9ad6e1ae6d7a5bba2bd93f27ede338899785f62819e18619d3ff9bf6f492eb286b9d62c96f956b3992c7f490462bfb1492fafbddbc6513f3f819ec935f146cbfd117cfbf36fd18f12df7a2bf16a0c53d1f9a1454b2810b21e25abf4271adbfc5b624abc59133aac7a73d84720d3e8dda6e0cd6b0656edd5e69643b3", 0x84}, {&(0x7f0000000a40)="e7ffe9551c31fb48fdd50d3798e0225c161bbb339e3c739edc905bc3b18f2aaec64856a0dd1404604e400e92933c8b64079b6ba3e2da500afa2059ba92adc7c15cb525da3025db3d89e152d72bb5860808a43afcfcc90cb9e31dd0954f12bc3bf158bf919f0b4ae46b42dfd94d29d09faf8bf732b1d6279e78ab1a86457734fd9a235888c94fe24a2256810526c09c7aa49321f59c1300552f8c84141d1724bbc0a6c08d4a4c2c64b094027e21e3653296132de423778d321c5b08722b2da5fdd1cef144de14ba3bb920b5816f75e6d5740908e842039031918fefd7ea164bc646b1ea8e8188339d27682aa89a141adc0f2d5f", 0xf3}, {&(0x7f0000000b40)="c99076ef1a7190505c7f2f633fc86b77", 0x10}, {&(0x7f0000000b80)="e066084b4050f0c823adb39fd95b1c60c381f8d2d56bb886b8f5c5658fb1b3db3eb858bff52224016b1dbf67fc5ec1453f032a1738e07fa0293602bad1643e3ec0ca87c489c5de44dba51b40c9ef8ec73f0a3bbaefb79313730984c37d901550fe666baee54f33669f2bfab90b9754e4d4f1ef44f5573efe4da0", 0x7a}], 0x4, &(0x7f0000001040)=[@rights={0x38, 0x1, 0x1, [r0, r3, r0, r0, r1, r0, r1, r3, r0]}, @cred={0x20, 0x1, 0x2, r2, r11, r12}, @cred={0x20, 0x1, 0x2, r2, r13, r14}, @cred={0x20, 0x1, 0x2, r2, r15, r16}], 0x98, 0x805}, {&(0x7f0000001100)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f00000011c0)=[{&(0x7f0000001180)='\'L', 0x2}], 0x1, &(0x7f0000001440)=[@cred={0x20, 0x1, 0x2, r2, r17, r18}, @rights={0x20, 0x1, 0x1, [r3, r0, r0]}, @rights={0x20, 0x1, 0x1, [r0, r0, r0, r0]}, @rights={0x30, 0x1, 0x1, [r3, r1, r1, r1, r0, r0, r3, r3]}, @rights={0x30, 0x1, 0x1, [r3, r3, r1, r3, r0, r3, r0]}, @cred={0x20, 0x1, 0x2, r2, r19, r20}, @rights={0x38, 0x1, 0x1, [r0, r3, r0, r0, r3, r1, r0, r1, r1]}], 0x118, 0x810}], 0x3, 0x80) 09:05:48 executing program 2 (fault-call:1 fault-nth:8): syz_mount_image$vfat(&(0x7f0000000180)='vfat\x00', &(0x7f0000000080)='./file0/file0\x00', 0x0, 0x0, &(0x7f0000001580), 0x0, &(0x7f0000000340)={[{@shortname_win95='shortname=win95', 0x2c}]}) syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f0000000100)='./file0\x00', 0xe004, 0x1, &(0x7f0000000380)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020401000200027000f8", 0x16}], 0x0, &(0x7f0000000340)=ANY=[]) 09:05:48 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={"6c6f0000000600", {0x2}}) 09:05:48 executing program 0: r0 = socket(0x40000000002, 0x2000000000000003, 0x2) perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$llc_int(r0, 0x10c, 0x0, &(0x7f0000000080)=0x7, 0x4) syz_init_net_socket$llc(0x1a, 0x0, 0x0) getsockopt$IP_VS_SO_GET_DAEMON(r0, 0x0, 0x487, &(0x7f00000001c0), &(0x7f0000000280)=0x30) r1 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vga_arbiter\x00', 0x80, 0x0) ioctl$TUNSETTXFILTER(r1, 0x400454d1, &(0x7f0000000040)={0x1}) 09:05:48 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)={{}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3f000000}) 09:05:48 executing program 4: bpf$MAP_CREATE(0x0, &(0x7f0000733000)={0x5, 0x1, 0x5, 0xb}, 0x1c) r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000000)='/dev/cuse\x00', 0x8000, 0x0) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00005f1000)={0xffffffffffffffff, &(0x7f0000eed000), &(0x7f0000b88000)="13"}, 0x20) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r0, 0x84, 0x16, &(0x7f0000000040)={0x4, [0x9, 0xfffffffffffffe01, 0xfffffffffffff179, 0x7]}, 0xc) [ 158.402800] FAULT_INJECTION: forcing a failure. [ 158.402800] name failslab, interval 1, probability 0, space 0, times 0 [ 158.414155] CPU: 1 PID: 11162 Comm: syz-executor2 Not tainted 4.18.0-rc5-next-20180720+ #12 [ 158.422645] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 158.432099] Call Trace: [ 158.434817] dump_stack+0x1c9/0x2b4 [ 158.438458] ? dump_stack_print_info.cold.2+0x52/0x52 [ 158.443673] should_fail.cold.4+0xa/0x11 [ 158.447753] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 158.452872] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 158.458425] ? lock_acquire+0x1e4/0x540 [ 158.462410] ? lo_ioctl+0x8e/0x1d70 [ 158.466046] ? disk_unblock_events+0x49/0x60 [ 158.470473] ? lock_release+0xa30/0xa30 [ 158.474464] ? check_same_owner+0x340/0x340 [ 158.478797] ? rcu_note_context_switch+0x730/0x730 [ 158.483738] ? lock_acquire+0x1e4/0x540 [ 158.487718] ? fs_reclaim_acquire+0x20/0x20 [ 158.492049] ? lock_downgrade+0x8f0/0x8f0 [ 158.496205] ? check_same_owner+0x340/0x340 [ 158.500533] ? mutex_trylock+0x2b0/0x2b0 [ 158.504602] ? rcu_note_context_switch+0x730/0x730 [ 158.509543] __should_failslab+0x124/0x180 [ 158.513784] should_failslab+0x9/0x14 [ 158.517594] kmem_cache_alloc_trace+0x2cb/0x780 [ 158.522278] ? init_wait_entry+0x1c0/0x1c0 [ 158.526517] ? lock_release+0xa30/0xa30 [ 158.530496] ? trace_hardirqs_on+0x10/0x10 [ 158.534737] ? loop_get_status64+0x140/0x140 [ 158.539155] __kthread_create_on_node+0x127/0x4c0 [ 158.544037] ? __kthread_parkme+0x1b0/0x1b0 [ 158.548393] ? __fget+0x4d5/0x740 09:05:48 executing program 6: r0 = socket$kcm(0xa, 0x2, 0x88) r1 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vga_arbiter\x00', 0x400000, 0x0) r2 = openat$null(0xffffffffffffff9c, &(0x7f0000000100)='/dev/null\x00', 0x20000, 0x0) fanotify_mark(r1, 0x40, 0x30011, r2, &(0x7f0000000280)='./file0\x00') r3 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x4000, 0x0) ioctl$GIO_UNISCRNMAP(r3, 0x4b69, &(0x7f0000000180)=""/206) sendmsg$kcm(r0, &(0x7f0000000580)={&(0x7f0000000080)=@in6={0xa, 0x4e24, 0x0, @mcast2={0xff, 0x2, [], 0x1}}, 0x80, &(0x7f0000001cc0), 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="380080000000000029000000041517c8c93128a90200000000000000002a422784a08b81c70000000000000000"], 0x38}, 0xe803) sendmsg$kcm(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000340), 0x0, &(0x7f00000003c0)}, 0x0) 09:05:48 executing program 5: syz_mount_image$hfsplus(&(0x7f0000000080)='hfsplus\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001480), 0x0, &(0x7f00000003c0)={[{@type={'type', 0x3d, "4922fd3f"}, 0x2c}]}) r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='cgroup.controllers\x00', 0x0, 0x0) getpeername$unix(r0, &(0x7f0000000100)=@abs, &(0x7f0000000040)=0x6e) 09:05:48 executing program 1: r0 = getpgid(0x0) r1 = syz_open_dev$midi(&(0x7f00000000c0)='/dev/midi#\x00', 0xffffffffffff87e0, 0xc696381a79d5d986) perf_event_open(&(0x7f0000000040)={0x3, 0x70, 0x7, 0x0, 0x3ff, 0xfff, 0x0, 0x100, 0x40, 0x1, 0x0, 0x1ff, 0x6, 0x9, 0x1ff, 0x3, 0x3f, 0xffffffffffff05f7, 0x6, 0xb733, 0x0, 0x81, 0xfffffffffffffffe, 0xd6e1, 0x8, 0xbb1, 0x3ff, 0x9, 0x6, 0x800, 0x8, 0xefc, 0x9, 0x4, 0x3, 0x3, 0x6, 0x0, 0x0, 0x3f, 0x0, @perf_config_ext={0x1, 0x8}, 0x300, 0x7, 0x80000000000000, 0x2, 0x8001, 0x5, 0x100}, r0, 0xe, r1, 0x3) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r1, 0x6, 0x16, &(0x7f0000000100)=[{0x3, 0x1000}, {0x3, 0xffffffffffffffc2}], 0x2) capset(&(0x7f0000000000)={0x4000019980330}, &(0x7f0000001fe8)) r2 = syz_open_dev$sg(&(0x7f0000000140)='/dev/sg#\x00', 0x0, 0x0) ioctl$SG_SCSI_RESET(r2, 0x2284, 0x0) 09:05:48 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)={{}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000}) 09:05:48 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={"6c6ffffffffe00", {0x2}}) 09:05:48 executing program 4: io_setup(0x6, &(0x7f0000000000)) socket(0x8, 0xfffffffffffffffe, 0x0) 09:05:48 executing program 0: r0 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vga_arbiter\x00', 0x800, 0x0) ioctl$sock_inet_udp_SIOCINQ(r0, 0x541b, &(0x7f0000000080)) r1 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r1, &(0x7f0000000100)={&(0x7f00000000c0)={0x10}, 0xc, &(0x7f0000000000)={&(0x7f00000001c0)=ANY=[@ANYBLOB="280000001000ffffff7f00000000000000000000", @ANYRES32=0x0, @ANYBLOB="030000000000000008001b0000000000"], 0x28}, 0x1}, 0x0) pwrite64(r0, &(0x7f0000000140)="2070eed0e2fe88e4e9", 0x9, 0x0) 09:05:48 executing program 1: r0 = socket$inet(0x2, 0x803, 0x1) setsockopt$IP_VS_SO_SET_FLUSH(r0, 0x0, 0x3, 0x7fffffffefff, 0x485) r1 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000040)='/dev/cuse\x00', 0x1, 0x0) ioctl$ASHMEM_GET_PIN_STATUS(r1, 0x7709, 0x0) openat$autofs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/autofs\x00', 0x20080, 0x0) 09:05:48 executing program 6: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/uinput\x00', 0x20100, 0x0) getsockopt$inet_mreqn(0xffffffffffffff9c, 0x0, 0x24, &(0x7f0000000100)={@remote, @local, 0x0}, &(0x7f0000000140)=0xc) setsockopt$inet6_IPV6_PKTINFO(r0, 0x29, 0x32, &(0x7f0000000180)={@ipv4={[], [0xff, 0xff], @local={0xac, 0x14, 0x14, 0xaa}}, r1}, 0x14) perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = socket$inet(0x10, 0x3, 0xc) sendmsg(r2, &(0x7f0000011fc8)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f0000000000)="24000000030607031dfffd946fa2830020200a0009000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 09:05:48 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)={{}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}) 09:05:48 executing program 0: r0 = gettid() timer_create(0x400000000004, &(0x7f0000000440)={0x0, 0x30, 0x0, @thr={&(0x7f0000000240), &(0x7f0000000340)}}, &(0x7f0000044000)) r1 = syz_open_dev$usbmon(&(0x7f00008be000)='/dev/usbmon#\x00', 0x0, 0x0) fsetxattr(r1, &(0x7f0000000080)=@known='trusted.syz\x00', &(0x7f00000000c0)='bdevcgroup*vboxnet0wlan1--nodev\x00', 0x20, 0x2) process_vm_writev(r0, &(0x7f0000001900)=[{&(0x7f0000000400)=""/7, 0x7}, {&(0x7f0000001680)}, {&(0x7f00000016c0)=""/235, 0xeb}, {&(0x7f00000017c0)=""/131, 0x83}, {&(0x7f0000001880)=""/114, 0x72}], 0x5, &(0x7f0000001f80)=[{&(0x7f0000001980)=""/52, 0x34}, {&(0x7f00000019c0)=""/25, 0x19}, {&(0x7f0000001a00)}, {&(0x7f0000001a40)=""/16, 0x10}, {&(0x7f0000001a80)=""/165, 0xa5}, {&(0x7f0000001b40)=""/77, 0x4d}, {&(0x7f0000001bc0)=""/204, 0xcc}, {&(0x7f0000001cc0)=""/241, 0xf1}, {&(0x7f0000001dc0)=""/133, 0x85}, {&(0x7f0000001e80)=""/255, 0xff}], 0xa, 0x0) process_vm_readv(r0, &(0x7f0000000140)=[{&(0x7f0000000240)=""/224, 0xe0}], 0x1, &(0x7f0000001600)=[{&(0x7f0000000180)=""/9, 0x9}, {&(0x7f0000000480)=""/4096, 0x1000}, {&(0x7f0000000340)=""/69, 0x45}, {&(0x7f00000003c0)=""/28, 0x1c}, {&(0x7f0000001480)=""/166, 0xa6}, {&(0x7f0000001540)=""/177, 0xb1}], 0x6, 0x0) write$FUSE_IOCTL(r1, &(0x7f0000000100)={0x20, 0xffffffffffffffda, 0x6, {0x3, 0x4, 0x7ff, 0x7ff}}, 0x20) read(r1, &(0x7f00000001c0)=""/105, 0x69) ioctl$KVM_SET_NR_MMU_PAGES(r1, 0x9208, 0xffff) r2 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r2, 0x8912, &(0x7f0000000040)="025cc83d6d345f8f762070") timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) read(r2, &(0x7f0000000000)=""/37, 0x25) tkill(r0, 0x15) [ 158.551868] ? __lockdep_init_map+0x105/0x590 [ 158.556385] ? loop_get_status64+0x140/0x140 [ 158.560803] kthread_create_on_node+0xb1/0xe0 [ 158.565309] ? __kthread_create_on_node+0x4c0/0x4c0 [ 158.570344] lo_ioctl+0x7f6/0x1d70 [ 158.573908] ? lo_rw_aio_complete+0x450/0x450 [ 158.578414] blkdev_ioctl+0x9cd/0x2030 [ 158.582312] ? lock_acquire+0x1e4/0x540 [ 158.586297] ? blkpg_ioctl+0xc40/0xc40 [ 158.590194] ? lock_release+0xa30/0xa30 [ 158.594176] ? save_stack+0xa9/0xd0 [ 158.597817] ? save_stack+0x43/0xd0 [ 158.601437] ? __fget+0x4d5/0x740 [ 158.604900] ? ksys_dup3+0x690/0x690 [ 158.608603] ? do_raw_spin_trylock+0x1c0/0x1c0 [ 158.613174] ? kasan_check_write+0x14/0x20 [ 158.617395] ? do_raw_spin_lock+0xc1/0x200 [ 158.621619] block_ioctl+0xee/0x130 [ 158.625241] ? blkdev_fallocate+0x400/0x400 [ 158.629546] do_vfs_ioctl+0x1de/0x1720 [ 158.633433] ? ioctl_preallocate+0x300/0x300 [ 158.637838] ? __fget_light+0x2f7/0x440 [ 158.641799] ? fget_raw+0x20/0x20 [ 158.645239] ? trace_hardirqs_on+0xd/0x10 [ 158.649371] ? kmem_cache_free+0x22e/0x2d0 [ 158.653593] ? putname+0xf7/0x130 [ 158.657037] ? do_sys_open+0x3cb/0x720 [ 158.660915] ? security_file_ioctl+0x94/0xc0 [ 158.665321] ksys_ioctl+0xa9/0xd0 [ 158.668772] __x64_sys_ioctl+0x73/0xb0 [ 158.672646] do_syscall_64+0x1b9/0x820 [ 158.676516] ? finish_task_switch+0x1d3/0x870 [ 158.681030] ? syscall_return_slowpath+0x5e0/0x5e0 [ 158.685960] ? syscall_return_slowpath+0x31d/0x5e0 [ 158.690877] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 158.696051] ? prepare_exit_to_usermode+0x291/0x3b0 [ 158.701058] ? perf_trace_sys_enter+0xb10/0xb10 [ 158.705716] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 158.710649] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 158.715836] RIP: 0033:0x455927 [ 158.719010] Code: 48 83 c4 08 48 89 d8 5b 5d c3 66 0f 1f 84 00 00 00 00 00 48 89 e8 48 f7 d8 48 39 c3 0f 92 c0 eb 92 66 90 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 7d bb fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 158.738295] RSP: 002b:00007fb8b6388a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 158.745993] RAX: ffffffffffffffda RBX: 00000000200003a8 RCX: 0000000000455927 [ 158.753251] RDX: 0000000000000014 RSI: 0000000000004c00 RDI: 0000000000000015 [ 158.760508] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 158.767765] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000014 [ 158.775022] R13: 0000000000000001 R14: 00000000004d3de0 R15: 0000000000000008 [ 158.810123] hfsplus: unable to find HFS+ superblock [ 158.860508] netlink: 'syz-executor6': attribute type 1 has an invalid length. [ 158.886370] hfsplus: unable to find HFS+ superblock 09:05:48 executing program 2 (fault-call:1 fault-nth:9): syz_mount_image$vfat(&(0x7f0000000180)='vfat\x00', &(0x7f0000000080)='./file0/file0\x00', 0x0, 0x0, &(0x7f0000001580), 0x0, &(0x7f0000000340)={[{@shortname_win95='shortname=win95', 0x2c}]}) syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f0000000100)='./file0\x00', 0xe004, 0x1, &(0x7f0000000380)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020401000200027000f8", 0x16}], 0x0, &(0x7f0000000340)=ANY=[]) 09:05:48 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)={{}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfeffffff00000000}) 09:05:48 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={"6c6ffeffffff00", {0x2}}) 09:05:48 executing program 4: r0 = socket$inet6(0xa, 0x80000, 0x1) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00') sendfile(r1, r1, &(0x7f0000000040)=0x13fffe, 0xffffffff) 09:05:48 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f00001ed000/0x4000)=nil, 0x4000, 0x0, 0x4012, r1, 0x0) getsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000140)={{{@in=@dev, @in6=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@local}, 0x0, @in=@dev}}, &(0x7f0000000040)=0xe8) getresuid(&(0x7f0000000080), &(0x7f0000000280), &(0x7f0000000300)=0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f0000000340)={{{@in=@broadcast=0xffffffff, @in=@dev={0xac, 0x14, 0x14, 0x16}, 0x4e24, 0x0, 0x4e24, 0xffffffffffff8000, 0xa, 0x0, 0xa0, 0x84, r2, r3}, {0x100000000, 0x1, 0x6, 0x6, 0x1, 0x10001, 0x2, 0x83}, {0x6, 0x4, 0x1, 0x7}, 0x1, 0x6e6bba, 0x2, 0x1, 0x3}, {{@in, 0x4d3, 0xff}, 0x2, @in6=@remote={0xfe, 0x80, [], 0xbb}, 0x3504, 0x1, 0x3, 0x5, 0x4, 0x6, 0x891}}, 0xe8) bind$inet(r0, &(0x7f0000000440)={0x2, 0x4e24, @rand_addr=0x9}, 0x10) connect$inet(r0, &(0x7f0000000100)={0x2, 0x4e20, @loopback=0x7f000001}, 0x10) sendto$inet(r0, &(0x7f0000000000)="bf", 0x1, 0x48089, &(0x7f00000000c0)={0x2, 0x0, @remote={0xac, 0x14, 0x14, 0xbb}}, 0x10) getsockopt$inet_tcp_TCP_ZEROCOPY_RECEIVE(r0, 0x6, 0x23, &(0x7f0000000240)={&(0x7f00001ee000/0x2000)=nil, 0x2000}, &(0x7f00000002c0)=0x10) 09:05:48 executing program 5: r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) write$RDMA_USER_CM_CMD_INIT_QP_ATTR(r0, &(0x7f00000013c0)={0xb, 0x10, 0xfa00, {&(0x7f0000001280)}}, 0x18) [ 158.914297] netlink: 'syz-executor6': attribute type 1 has an invalid length. 09:05:48 executing program 1: r0 = memfd_create(&(0x7f00000000c0)='dev ', 0x3) write(r0, &(0x7f0000000040)="16", 0x1) sendfile(r0, r0, &(0x7f0000001000), 0xffff) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r1, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") shmat(0x0, &(0x7f0000ffc000/0x4000)=nil, 0x5000) shmctl$IPC_RMID(0x0, 0x0) 09:05:48 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)={{}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff00000000}) [ 158.994227] FAULT_INJECTION: forcing a failure. [ 158.994227] name failslab, interval 1, probability 0, space 0, times 0 [ 159.005615] CPU: 0 PID: 11231 Comm: syz-executor2 Not tainted 4.18.0-rc5-next-20180720+ #12 [ 159.014108] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 159.023466] Call Trace: [ 159.026063] dump_stack+0x1c9/0x2b4 [ 159.029697] ? dump_stack_print_info.cold.2+0x52/0x52 [ 159.034927] should_fail.cold.4+0xa/0x11 [ 159.039022] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 159.044155] ? run_rebalance_domains+0x4c0/0x4c0 [ 159.048913] ? __enqueue_entity+0x10d/0x1f0 [ 159.053242] ? trace_hardirqs_on+0x10/0x10 [ 159.057494] ? enqueue_entity+0x34b/0x2130 [ 159.061728] ? rcu_sched_qs+0xe/0x150 [ 159.065527] ? rcu_note_context_switch+0x571/0x730 [ 159.070453] ? rcu_sched_qs+0x150/0x150 [ 159.074435] ? lock_acquire+0x1e4/0x540 [ 159.078423] ? fs_reclaim_acquire+0x20/0x20 [ 159.082747] ? lock_downgrade+0x8f0/0x8f0 [ 159.086896] ? check_same_owner+0x340/0x340 [ 159.091215] ? do_raw_spin_trylock+0x1c0/0x1c0 [ 159.095978] ? rcu_note_context_switch+0x730/0x730 [ 159.100913] ? kasan_check_write+0x14/0x20 [ 159.105163] __should_failslab+0x124/0x180 [ 159.109402] should_failslab+0x9/0x14 [ 159.113203] kmem_cache_alloc+0x2af/0x760 [ 159.117375] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 159.122923] __kernfs_new_node+0xef/0x5a0 [ 159.127076] ? kernfs_dop_revalidate+0x3c0/0x3c0 [ 159.131837] ? bd_set_size+0x2c1/0x370 [ 159.135726] ? lock_downgrade+0x8f0/0x8f0 [ 159.139873] ? enqueue_entity+0x2130/0x2130 [ 159.144197] ? lock_release+0xa30/0xa30 [ 159.148172] ? check_same_owner+0x340/0x340 [ 159.152497] ? lock_acquire+0x1e4/0x540 [ 159.156475] ? blk_queue_write_cache+0x1b8/0x43a [ 159.161241] ? lock_downgrade+0x8f0/0x8f0 [ 159.165394] kernfs_new_node+0x80/0xf0 [ 159.169290] kernfs_create_dir_ns+0x3d/0x140 [ 159.173703] internal_create_group+0x3c9/0x9e0 [ 159.178282] ? do_raw_spin_lock+0xc1/0x200 [ 159.182528] sysfs_create_group+0x1f/0x30 [ 159.186680] lo_ioctl+0x1307/0x1d70 [ 159.190308] ? lo_rw_aio_complete+0x450/0x450 [ 159.194808] blkdev_ioctl+0x9cd/0x2030 [ 159.198701] ? lock_acquire+0x1e4/0x540 [ 159.202684] ? blkpg_ioctl+0xc40/0xc40 [ 159.206574] ? lock_release+0xa30/0xa30 [ 159.210547] ? save_stack+0xa9/0xd0 [ 159.214170] ? save_stack+0x43/0xd0 [ 159.217797] ? __fget+0x4d5/0x740 [ 159.221256] ? ksys_dup3+0x690/0x690 [ 159.224971] ? do_raw_spin_trylock+0x1c0/0x1c0 [ 159.229563] ? kasan_check_write+0x14/0x20 [ 159.233809] ? do_raw_spin_lock+0xc1/0x200 [ 159.238046] block_ioctl+0xee/0x130 [ 159.241672] ? blkdev_fallocate+0x400/0x400 [ 159.245991] do_vfs_ioctl+0x1de/0x1720 [ 159.249875] ? ioctl_preallocate+0x300/0x300 [ 159.254284] ? __fget_light+0x2f7/0x440 [ 159.258283] ? fget_raw+0x20/0x20 [ 159.261741] ? trace_hardirqs_on+0xd/0x10 [ 159.265895] ? kmem_cache_free+0x22e/0x2d0 [ 159.270136] ? putname+0xf7/0x130 [ 159.273588] ? do_sys_open+0x3cb/0x720 [ 159.277475] ? security_file_ioctl+0x94/0xc0 [ 159.281880] ksys_ioctl+0xa9/0xd0 [ 159.285337] __x64_sys_ioctl+0x73/0xb0 [ 159.289224] do_syscall_64+0x1b9/0x820 [ 159.293111] ? syscall_return_slowpath+0x5e0/0x5e0 [ 159.298037] ? syscall_return_slowpath+0x31d/0x5e0 [ 159.302963] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 159.307979] ? prepare_exit_to_usermode+0x291/0x3b0 [ 159.313090] ? perf_trace_sys_enter+0xb10/0xb10 [ 159.317759] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 159.322605] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 159.327786] RIP: 0033:0x455927 09:05:49 executing program 4: syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000004c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000040), 0x0, &(0x7f0000000240)=ANY=[]) r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x0, 0x0) mknodat(r0, &(0x7f0000000180)="2e2f66692e65318c", 0x4000000000000, 0x5) socketpair$packet(0x11, 0x3, 0x300, &(0x7f0000000200)) r1 = fanotify_init(0x2, 0x0) fanotify_mark(r1, 0x11, 0x2, r0, &(0x7f0000000380)="2e2f66692e65318c00") r2 = creat(&(0x7f00000005c0)='./file1\x00', 0x0) write$evdev(r2, &(0x7f0000000680)=[{}], 0x18) fchdir(r0) write$binfmt_script(r0, &(0x7f0000000040)={'#! ', './file0', [{0x20, '.$,'}, {0x20, 'em0'}, {0x20, 'vfat\x00'}, {0x20}, {0x20, 'vfat\x00'}, {0x20}, {0x20, '/.security'}, {0x20}, {0x20, 'posix_acl_access-posix_acl_accessuser\x00('}, {0x20, '%user'}], 0xa, "dd6e47c661d1cadf8296c2f591cadebb1a4f6d00505d4ee5ddc76124bf28b67cabeff996f9d7fdda4a67d1105aedde3442c8bae3f9bf79f898cb4b2de6be8c47c427e6a888ae5b2b91cccb973e711df981bd7327f847fbf59d35316e79b353d1e442093812128c110948f08c129a55ec01495eb5902a72a1060c477d625b999546e07b78334e3665ec40ba1ba7688ea321beaf2ce04d87e15aef3fac48a3b4cf6d972f"}, 0xfe) readv(r1, &(0x7f00000001c0)=[{&(0x7f00000006c0)=""/4096, 0x1000}], 0x1) 09:05:49 executing program 6: r0 = socket$inet6(0xa, 0x1000000000002, 0xe362) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000080)={'irlan0\x00', 0x1}) ioctl$TUNSETOFFLOAD(r1, 0x800454d7, 0xa07000) [ 159.330963] Code: 48 83 c4 08 48 89 d8 5b 5d c3 66 0f 1f 84 00 00 00 00 00 48 89 e8 48 f7 d8 48 39 c3 0f 92 c0 eb 92 66 90 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 7d bb fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 159.350234] RSP: 002b:00007fb8b6388a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 159.357944] RAX: ffffffffffffffda RBX: 00000000200003a8 RCX: 0000000000455927 [ 159.365211] RDX: 0000000000000014 RSI: 0000000000004c00 RDI: 0000000000000015 [ 159.372476] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 159.379742] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000014 [ 159.387006] R13: 0000000000000001 R14: 00000000004d3de0 R15: 0000000000000009 09:05:49 executing program 2 (fault-call:1 fault-nth:10): syz_mount_image$vfat(&(0x7f0000000180)='vfat\x00', &(0x7f0000000080)='./file0/file0\x00', 0x0, 0x0, &(0x7f0000001580), 0x0, &(0x7f0000000340)={[{@shortname_win95='shortname=win95', 0x2c}]}) syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f0000000100)='./file0\x00', 0xe004, 0x1, &(0x7f0000000380)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020401000200027000f8", 0x16}], 0x0, &(0x7f0000000340)=ANY=[]) 09:05:49 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) recvmsg(r0, &(0x7f0000000380)={&(0x7f00000001c0)=@hci, 0x80, &(0x7f0000000300)}, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000340)={&(0x7f00000002c0)={0x10, 0x4}, 0xc, &(0x7f0000000280)={&(0x7f0000000ac0)={0x14, 0x27, 0xffffffffffffffff, 0x0, 0x0, {0x10}}, 0x32a}, 0x1}, 0x0) r1 = memfd_create(&(0x7f0000000000)='@\x00', 0x2) ioctl$RTC_IRQP_READ(r1, 0x8008700b, &(0x7f0000000040)) 09:05:49 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)={{}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3f00000000000000}) [ 159.455388] FAT-fs (loop4): bogus number of reserved sectors [ 159.461287] FAT-fs (loop4): Can't find a valid FAT filesystem 09:05:49 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={"6c6f1e00", {0x2}}) 09:05:49 executing program 6: getpid() socketpair$inet6_dccp(0xa, 0x6, 0x0, &(0x7f0000000000)) epoll_create(0x1) pipe2(&(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0) r2 = userfaultfd(0x0) ioctl$UFFDIO_API(r2, 0xc018aa3f, &(0x7f0000bc8000)={0xaa}) ioctl$UFFDIO_REGISTER(r2, 0xc020aa00, &(0x7f00000000c0)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1}) write$FUSE_POLL(r1, &(0x7f0000000100)={0x18, 0x0, 0x5, {0x100000000}}, 0x18) r3 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$sndseq(r3, &(0x7f0000011fd2), 0xfff6) fallocate(r3, 0x0, 0x0, 0x8004) creat(&(0x7f0000000080)='./file1\x00', 0x0) dup2(r0, r2) [ 159.561320] FAT-fs (loop4): bogus number of reserved sectors [ 159.567221] FAT-fs (loop4): Can't find a valid FAT filesystem [ 159.610288] FAULT_INJECTION: forcing a failure. [ 159.610288] name failslab, interval 1, probability 0, space 0, times 0 [ 159.621612] CPU: 0 PID: 11282 Comm: syz-executor2 Not tainted 4.18.0-rc5-next-20180720+ #12 [ 159.630102] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 159.639451] Call Trace: [ 159.642045] dump_stack+0x1c9/0x2b4 [ 159.645678] ? dump_stack_print_info.cold.2+0x52/0x52 [ 159.650885] should_fail.cold.4+0xa/0x11 [ 159.654957] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 159.660065] ? __update_load_avg_se+0xb80/0xb80 [ 159.664737] ? trace_hardirqs_on+0x10/0x10 [ 159.668974] ? update_load_avg+0x389/0x27d0 [ 159.673293] ? update_load_avg+0x389/0x27d0 [ 159.677624] ? attach_entity_load_avg+0x860/0x860 [ 159.682465] ? attach_entity_load_avg+0x860/0x860 [ 159.687317] ? lock_release+0xa30/0xa30 [ 159.691319] ? lock_acquire+0x1e4/0x540 [ 159.695299] ? update_curr+0x4c8/0xc00 [ 159.699184] ? rb_erase+0x3550/0x3550 [ 159.702988] ? lock_release+0xa30/0xa30 [ 159.706964] ? cpuacct_css_alloc+0x160/0x160 [ 159.711381] __should_failslab+0x124/0x180 [ 159.715616] should_failslab+0x9/0x14 [ 159.719415] kmem_cache_alloc+0x47/0x760 [ 159.723476] ? lock_acquire+0x1e4/0x540 [ 159.727447] ? is_bpf_text_address+0xae/0x170 [ 159.731941] ? lock_downgrade+0x8f0/0x8f0 [ 159.736089] radix_tree_node_alloc.constprop.19+0x1e6/0x310 [ 159.741804] idr_get_free+0x887/0x10d0 [ 159.745695] ? radix_tree_iter_tag_clear+0xd0/0xd0 [ 159.750627] ? __kernel_text_address+0xd/0x40 [ 159.755126] ? unwind_get_return_address+0x61/0xa0 [ 159.760061] ? __save_stack_trace+0x8d/0xf0 [ 159.764388] ? save_stack+0xa9/0xd0 [ 159.768008] ? save_stack+0x43/0xd0 [ 159.771631] ? kasan_kmalloc+0xc4/0xe0 [ 159.775520] ? kasan_slab_alloc+0x12/0x20 [ 159.779670] ? kmem_cache_alloc+0x12e/0x760 [ 159.783989] ? __kernfs_new_node+0xef/0x5a0 [ 159.788316] ? kernfs_new_node+0x80/0xf0 [ 159.792381] ? kernfs_create_dir_ns+0x3d/0x140 [ 159.796983] ? internal_create_group+0x3c9/0x9e0 [ 159.801748] ? sysfs_create_group+0x1f/0x30 [ 159.806069] ? lo_ioctl+0x1307/0x1d70 [ 159.809862] ? block_ioctl+0xee/0x130 [ 159.813665] ? do_vfs_ioctl+0x1de/0x1720 [ 159.817714] ? ksys_ioctl+0xa9/0xd0 [ 159.821334] ? __x64_sys_ioctl+0x73/0xb0 [ 159.825392] ? do_syscall_64+0x1b9/0x820 [ 159.829442] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 159.834796] ? trace_hardirqs_on+0x10/0x10 [ 159.839016] ? reweight_task+0x130/0x130 [ 159.843080] idr_alloc_u32+0x1d4/0x3a0 [ 159.846959] ? __fprop_inc_percpu_max+0x2d0/0x2d0 [ 159.851788] ? lock_acquire+0x1e4/0x540 [ 159.855757] ? __kernfs_new_node+0x116/0x5a0 [ 159.860164] idr_alloc_cyclic+0x173/0x360 [ 159.864301] ? idr_alloc+0x1b0/0x1b0 [ 159.867999] ? kasan_check_write+0x14/0x20 [ 159.872222] ? do_raw_spin_lock+0xc1/0x200 [ 159.876446] __kernfs_new_node+0x1ab/0x5a0 [ 159.880665] ? kernfs_dop_revalidate+0x3c0/0x3c0 [ 159.885414] ? bd_set_size+0x2c1/0x370 [ 159.889301] ? lock_downgrade+0x8f0/0x8f0 [ 159.893444] ? enqueue_entity+0x2130/0x2130 [ 159.897750] ? lock_release+0xa30/0xa30 [ 159.901716] ? check_same_owner+0x340/0x340 [ 159.906023] ? lock_acquire+0x1e4/0x540 [ 159.909981] ? rcu_note_context_switch+0x730/0x730 [ 159.914894] ? lock_downgrade+0x8f0/0x8f0 [ 159.919121] kernfs_new_node+0x80/0xf0 [ 159.922993] kernfs_create_dir_ns+0x3d/0x140 [ 159.927389] internal_create_group+0x3c9/0x9e0 [ 159.931965] ? do_raw_spin_lock+0xc1/0x200 [ 159.936188] sysfs_create_group+0x1f/0x30 [ 159.940323] lo_ioctl+0x1307/0x1d70 [ 159.943938] ? lo_rw_aio_complete+0x450/0x450 [ 159.948420] blkdev_ioctl+0x9cd/0x2030 [ 159.952295] ? lock_acquire+0x1e4/0x540 [ 159.956254] ? blkpg_ioctl+0xc40/0xc40 [ 159.960132] ? lock_release+0xa30/0xa30 [ 159.964097] ? save_stack+0xa9/0xd0 [ 159.967708] ? save_stack+0x43/0xd0 [ 159.971323] ? __fget+0x4d5/0x740 [ 159.974765] ? ksys_dup3+0x690/0x690 [ 159.978463] ? do_raw_spin_trylock+0x1c0/0x1c0 [ 159.983033] ? kasan_check_write+0x14/0x20 [ 159.987250] ? do_raw_spin_lock+0xc1/0x200 [ 159.991478] block_ioctl+0xee/0x130 [ 159.995092] ? blkdev_fallocate+0x400/0x400 [ 159.999406] do_vfs_ioctl+0x1de/0x1720 [ 160.003286] ? ioctl_preallocate+0x300/0x300 [ 160.007680] ? __fget_light+0x2f7/0x440 [ 160.011638] ? fget_raw+0x20/0x20 [ 160.015077] ? trace_hardirqs_on+0xd/0x10 [ 160.019209] ? kmem_cache_free+0x22e/0x2d0 [ 160.023438] ? putname+0xf7/0x130 [ 160.026886] ? do_sys_open+0x3cb/0x720 [ 160.030764] ? security_file_ioctl+0x94/0xc0 [ 160.035161] ksys_ioctl+0xa9/0xd0 [ 160.038602] __x64_sys_ioctl+0x73/0xb0 [ 160.042474] do_syscall_64+0x1b9/0x820 [ 160.046358] ? finish_task_switch+0x1d3/0x870 [ 160.050838] ? syscall_return_slowpath+0x5e0/0x5e0 [ 160.055755] ? syscall_return_slowpath+0x31d/0x5e0 [ 160.060670] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 160.065680] ? prepare_exit_to_usermode+0x291/0x3b0 [ 160.070682] ? perf_trace_sys_enter+0xb10/0xb10 [ 160.075335] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 160.080170] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 160.085354] RIP: 0033:0x455927 [ 160.088523] Code: 48 83 c4 08 48 89 d8 5b 5d c3 66 0f 1f 84 00 00 00 00 00 48 89 e8 48 f7 d8 48 39 c3 0f 92 c0 eb 92 66 90 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 7d bb fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 160.107794] RSP: 002b:00007fb8b6388a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 160.115491] RAX: ffffffffffffffda RBX: 00000000200003a8 RCX: 0000000000455927 [ 160.122745] RDX: 0000000000000014 RSI: 0000000000004c00 RDI: 0000000000000015 [ 160.129999] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 160.137260] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000014 [ 160.144512] R13: 0000000000000001 R14: 00000000004d3de0 R15: 000000000000000a 09:05:51 executing program 0: r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001140)={0x7, 0x4, 0x10, 0x5}, 0x2c) bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0xd, 0x1, 0x7, 0x5, 0x14, r0, 0x100}, 0x2c) bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000000c0)={r0, &(0x7f0000000200), &(0x7f0000000040)=""/102}, 0x18) 09:05:51 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)={{}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000}) 09:05:51 executing program 4: clock_getres(0x7, &(0x7f0000000000)) r0 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snapshot\x00', 0x42000, 0x0) getsockname$packet(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, 0x0}, &(0x7f0000000300)=0x14) connect$packet(r0, &(0x7f0000000340)={0x11, 0x1b, r1, 0x1, 0x785, 0x6, @local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}}, 0x14) 09:05:51 executing program 2 (fault-call:1 fault-nth:11): syz_mount_image$vfat(&(0x7f0000000180)='vfat\x00', &(0x7f0000000080)='./file0/file0\x00', 0x0, 0x0, &(0x7f0000001580), 0x0, &(0x7f0000000340)={[{@shortname_win95='shortname=win95', 0x2c}]}) syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f0000000100)='./file0\x00', 0xe004, 0x1, &(0x7f0000000380)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020401000200027000f8", 0x16}], 0x0, &(0x7f0000000340)=ANY=[]) 09:05:51 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={"6c6f00000000fffffdfd00", {0x2}}) 09:05:51 executing program 5: r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)={0x3, 0x4, 0x4, 0x7}, 0x2c) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000280)={0x2, 0x0, [{0x1, 0x23, &(0x7f00000001c0)=""/35}, {0xd000, 0x47, &(0x7f0000000200)=""/71}]}) r1 = bpf$PROG_LOAD(0x5, &(0x7f00002a0fb8)={0xe, 0x1, &(0x7f0000000180)=ANY=[@ANYRES64], &(0x7f0000000000)="f4206cd55d3174fccd51d063ca3dda5cbf5a01cc7ea92c43b604ffc53727d2d60f55ddeb757cf36a8457125ab48bcbcce4011a423df186cc8d8e6e9a66b1a0a6035a2fc0578cf5aad8b3a24a9c646a37eb26c6212ffc9658f152194b880765d169d550beb059984a10c2", 0x1, 0x99, &(0x7f000000d000)=""/153}, 0x48) bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000080)={r0, r1, 0x5}, 0x10) r2 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f00000000c0)='cpuacct.stat\x00', 0x0, 0x0) ioctl$RNDADDTOENTCNT(r2, 0x40045201, &(0x7f0000000140)=0x8) 09:05:51 executing program 1: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = socket(0x40a, 0x1, 0x80000004) ioctl$sock_ifreq(r1, 0x89f8, &(0x7f0000000040)={"7369743000000000b5c7b9026c7fc5e5", @ifru_addrs=@in={0x2, 0x4e20, @rand_addr}}) 09:05:51 executing program 6: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_open_dev$mouse(&(0x7f0000000000)='/dev/input/mouse#\x00', 0x7f, 0x8000) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000002c0)={0x7b, 0x0, [0xc0010058, 0x3]}) 09:05:51 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)={{}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3f000000}) 09:05:51 executing program 1: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = msgget$private(0x0, 0x0) msgctl$IPC_SET(r1, 0x1, &(0x7f0000258f88)) r2 = msgget(0x1, 0x201) msgctl$MSG_INFO(r2, 0xc, &(0x7f00000002c0)=""/194) msgsnd(r1, &(0x7f0000000040)={0x3}, 0x8, 0x0) msgrcv(r1, &(0x7f0000000080)=ANY=[@ANYBLOB="0000004f88e9ca9e81a192a752000000000000000000000000000000000000ab66ea6d8e9222d5f017f8ce75ab80db1aad0e322192bf7d96519105061a473a288b5a2b8d5a0cf17847dc8de37c85b5920983855581b39cf12f4d489ce8ae972582a30e21636643b637"], 0x15, 0x0, 0x0) clone(0x0, &(0x7f0000000080), &(0x7f0000000040), &(0x7f0000000180), &(0x7f0000000000)) select(0x40, &(0x7f0000000000)={0x9, 0xffffffff, 0x401, 0x200, 0x9f, 0x3, 0x7, 0x3}, &(0x7f0000000100)={0x9, 0x3, 0x40, 0x0, 0x8, 0x6, 0x401, 0x7}, &(0x7f0000000140)={0x8, 0x2af1c4be, 0x0, 0xfffffffffffffffb, 0x1, 0x4, 0x3c5, 0x5}, &(0x7f00000001c0)={0x0, 0x2710}) r3 = syz_open_dev$audion(&(0x7f0000000200)='/dev/audio#\x00', 0x20, 0x0) getsockopt$inet_pktinfo(r3, 0x0, 0x8, &(0x7f00000003c0)={0x0, @broadcast, @loopback}, &(0x7f0000000400)=0xc) ioctl$sock_inet6_SIOCDIFADDR(r0, 0x8936, &(0x7f0000000440)={@remote={0xfe, 0x80, [], 0xbb}, 0x22, r4}) ioctl$PERF_EVENT_IOC_PERIOD(r3, 0x40082404, &(0x7f0000000240)=0x7fffffff) msgctl$IPC_SET(r1, 0x1, &(0x7f0000000700)={{}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}) [ 161.838456] kvm [11313]: vcpu0, guest rIP: 0xfff0 unimplemented MMIO_CONF_BASE wrmsr: 0x3 [ 161.853521] FAULT_INJECTION: forcing a failure. [ 161.853521] name failslab, interval 1, probability 0, space 0, times 0 [ 161.864823] CPU: 1 PID: 11323 Comm: syz-executor2 Not tainted 4.18.0-rc5-next-20180720+ #12 [ 161.873310] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 09:05:51 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={"6c6f000000000000000600", {0x2}}) 09:05:51 executing program 4: r0 = perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = epoll_create1(0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r1, &(0x7f0000000080)={0x20000000}) epoll_ctl$EPOLL_CTL_MOD(r1, 0x3, r0, &(0x7f0000000040)) [ 161.875385] kvm [11313]: vcpu0, guest rIP: 0xfff0 unimplemented MMIO_CONF_BASE wrmsr: 0x3 [ 161.882664] Call Trace: [ 161.882690] dump_stack+0x1c9/0x2b4 [ 161.882707] ? dump_stack_print_info.cold.2+0x52/0x52 [ 161.882729] should_fail.cold.4+0xa/0x11 [ 161.906482] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 161.911595] ? kasan_check_write+0x14/0x20 [ 161.915821] ? __mutex_lock+0x6c4/0x1680 [ 161.919867] ? kernfs_activate+0x8e/0x2c0 [ 161.923999] ? mutex_trylock+0x2b0/0x2b0 [ 161.928049] ? kasan_check_write+0x14/0x20 [ 161.932270] ? __mutex_lock+0x6c4/0x1680 [ 161.936407] ? kernfs_add_one+0x4f/0x4d0 [ 161.940462] ? lock_acquire+0x1e4/0x540 [ 161.944422] ? fs_reclaim_acquire+0x20/0x20 [ 161.948724] ? lock_downgrade+0x8f0/0x8f0 [ 161.952870] ? check_same_owner+0x340/0x340 [ 161.957212] ? kernfs_add_one+0x2d4/0x4d0 [ 161.961343] ? rcu_note_context_switch+0x730/0x730 [ 161.966259] __should_failslab+0x124/0x180 [ 161.970477] should_failslab+0x9/0x14 [ 161.974269] kmem_cache_alloc+0x2af/0x760 [ 161.978400] ? wait_for_completion+0x8d0/0x8d0 [ 161.983401] ? kasan_check_read+0x11/0x20 [ 161.987544] ? do_raw_spin_unlock+0xa7/0x2f0 [ 161.991950] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 161.996950] __kernfs_new_node+0xef/0x5a0 [ 162.001084] ? kernfs_dop_revalidate+0x3c0/0x3c0 [ 162.005835] ? kasan_check_write+0x14/0x20 [ 162.010053] ? __kernfs_new_node+0x426/0x5a0 [ 162.014453] ? mutex_unlock+0xd/0x10 [ 162.018151] ? kernfs_activate+0x21a/0x2c0 [ 162.022382] kernfs_new_node+0x80/0xf0 [ 162.026258] __kernfs_create_file+0x4d/0x330 [ 162.030653] sysfs_add_file_mode_ns+0x21a/0x560 [ 162.035307] internal_create_group+0x26d/0x9e0 [ 162.039877] sysfs_create_group+0x1f/0x30 [ 162.044014] lo_ioctl+0x1307/0x1d70 [ 162.047631] ? lo_rw_aio_complete+0x450/0x450 [ 162.052123] blkdev_ioctl+0x9cd/0x2030 [ 162.055995] ? lock_acquire+0x1e4/0x540 [ 162.059954] ? blkpg_ioctl+0xc40/0xc40 [ 162.063823] ? lock_release+0xa30/0xa30 [ 162.067780] ? save_stack+0xa9/0xd0 [ 162.071386] ? save_stack+0x43/0xd0 [ 162.074996] ? __fget+0x4d5/0x740 [ 162.078437] ? ksys_dup3+0x690/0x690 [ 162.082134] ? do_raw_spin_trylock+0x1c0/0x1c0 [ 162.086701] ? kasan_check_write+0x14/0x20 [ 162.090918] ? do_raw_spin_lock+0xc1/0x200 [ 162.095137] block_ioctl+0xee/0x130 [ 162.098748] ? blkdev_fallocate+0x400/0x400 [ 162.103051] do_vfs_ioctl+0x1de/0x1720 [ 162.106924] ? ioctl_preallocate+0x300/0x300 [ 162.111313] ? __fget_light+0x2f7/0x440 [ 162.115286] ? fget_raw+0x20/0x20 [ 162.118732] ? trace_hardirqs_on+0xd/0x10 [ 162.122875] ? kmem_cache_free+0x22e/0x2d0 [ 162.127092] ? putname+0xf7/0x130 [ 162.130526] ? do_sys_open+0x3cb/0x720 [ 162.134397] ? security_file_ioctl+0x94/0xc0 [ 162.138787] ksys_ioctl+0xa9/0xd0 [ 162.142223] __x64_sys_ioctl+0x73/0xb0 [ 162.146095] do_syscall_64+0x1b9/0x820 [ 162.149962] ? finish_task_switch+0x1d3/0x870 [ 162.154441] ? syscall_return_slowpath+0x5e0/0x5e0 [ 162.159355] ? syscall_return_slowpath+0x31d/0x5e0 [ 162.164266] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 162.169278] ? prepare_exit_to_usermode+0x291/0x3b0 [ 162.174277] ? perf_trace_sys_enter+0xb10/0xb10 [ 162.178931] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 162.183764] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 162.188936] RIP: 0033:0x455927 [ 162.192103] Code: 48 83 c4 08 48 89 d8 5b 5d c3 66 0f 1f 84 00 00 00 00 00 48 89 e8 48 f7 d8 48 39 c3 0f 92 c0 eb 92 66 90 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 7d bb fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 162.211278] RSP: 002b:00007fb8b6388a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 162.218969] RAX: ffffffffffffffda RBX: 00000000200003a8 RCX: 0000000000455927 [ 162.226221] RDX: 0000000000000014 RSI: 0000000000004c00 RDI: 0000000000000015 09:05:52 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$sndpcmp(&(0x7f0000000000)='/dev/snd/pcmC#D#p\x00', 0x10001, 0x6e0580) getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x9, &(0x7f0000000040)={0x0, @in={{0x2, 0x4e23, @multicast1=0xe0000001}}, 0x0, 0x1000, 0x2, 0x4}, &(0x7f0000000100)=0x98) getsockopt$inet_sctp_SCTP_GET_PEER_ADDR_INFO(r0, 0x84, 0xf, &(0x7f0000000240)={r1, @in={{0x2, 0x4e22, @local={0xac, 0x14, 0x14, 0xaa}}}, 0x80, 0x6f, 0x583e, 0x7f, 0x6}, &(0x7f0000000300)=0x98) mkdir(&(0x7f0000000480)='./file0\x00', 0x0) utime(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)) 09:05:52 executing program 0: r0 = socket$inet6(0xa, 0x7, 0x0) ioctl(r0, 0x8912, &(0x7f00000002c0)="025cc83d6d345f8f762070") syz_emit_ethernet(0x66, &(0x7f0000000000)={@local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}, @empty=[0xffffa888], [], {@ipv6={0x86dd, {0x0, 0x6, "110c11", 0x30, 0x21, 0x0, @remote={0xfe, 0x80, [], 0xffffffffffffffff}, @mcast2={0xff, 0x2, [], 0x1}, {[], @icmpv6=@dest_unreach={0x1, 0x0, 0x0, 0x6, [], {0x41, 0x6, "cb155d", 0x0, 0x0, 0x0, @mcast2={0xff, 0x2, [], 0x1}, @dev={0xfe, 0x80}}}}}}}}, 0x0) r1 = creat(&(0x7f0000000080)='./file0\x00', 0x0) ioctl$KVM_IRQ_LINE(r1, 0x4008ae61, &(0x7f00000000c0)={0x80000000, 0x4}) fchmodat(r1, &(0x7f0000000100)='./file0\x00', 0x1) [ 162.233472] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 162.240724] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000014 [ 162.247987] R13: 0000000000000001 R14: 00000000004d3de0 R15: 000000000000000b 09:05:52 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)={{}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3f00}) 09:05:52 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={"6c6f0000000000ffffff00", {0x2}}) 09:05:52 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)={{}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}) 09:05:52 executing program 2 (fault-call:1 fault-nth:12): syz_mount_image$vfat(&(0x7f0000000180)='vfat\x00', &(0x7f0000000080)='./file0/file0\x00', 0x0, 0x0, &(0x7f0000001580), 0x0, &(0x7f0000000340)={[{@shortname_win95='shortname=win95', 0x2c}]}) syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f0000000100)='./file0\x00', 0xe004, 0x1, &(0x7f0000000380)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020401000200027000f8", 0x16}], 0x0, &(0x7f0000000340)=ANY=[]) 09:05:52 executing program 6: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000300)='./cgroup\x00', 0x200002, 0x0) r1 = openat$cgroup_int(r0, &(0x7f0000000000)='io.bfq.weight\x00', 0x2, 0x0) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_MP_STATE(r0, 0x8004ae98, &(0x7f00000000c0)) sendfile(r1, r1, &(0x7f0000000080), 0xd) open$dir(&(0x7f0000000040)='./file0\x00', 0x80000, 0x19c) 09:05:52 executing program 5: mknod(&(0x7f0000000180)='./file0\x00', 0x1040, 0x0) r0 = gettid() timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) r1 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mixer\x00', 0x8000, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffff9c, 0x29, 0x23, &(0x7f00000002c0)={{{@in, @in=@broadcast, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6}, 0x0, @in=@local}}, &(0x7f0000000080)=0xe8) ioctl$sock_inet6_SIOCDIFADDR(r1, 0x8936, &(0x7f0000000100)={@empty, 0x67, r2}) r3 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r3, 0x8915, &(0x7f0000000400)="025cc83d6d345f8f762070") timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, &(0x7f0000000140)) getsockopt$inet_sctp_SCTP_GET_LOCAL_ADDRS(0xffffffffffffff9c, 0x84, 0x6d, &(0x7f00000001c0)={0x0, 0x90, "dea582011536f5fc03bbf5be3146246f42ce9522f1ae27641b4e13cb20c9e2cf28a0e3871184321aa1acb131edb3d8d50c9a68245c8d97df402527045c6087eb2d890538f37ebf39d6fa465d2e075e593267f66367bf79b7b4c3a73612fddb356fbbc4d4cba51da2b9a1352fb818caeb97a9faf50085b02838b88847ae1f84e8623da2e22de77211081f281ec6a303bb"}, &(0x7f0000000040)=0x98) open$dir(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0) tkill(r0, 0x15) open$dir(&(0x7f0000000540)='./file0\x00', 0x27e, 0x0) 09:05:52 executing program 4: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f0000000040)='./file0\x00', 0x2f, 0x1, &(0x7f0000000140)=[{&(0x7f0000000080)="2c104282f05ab9c27cd7bacfc63a23350bc3ae814fa132e1b2b52a3d79ca3e77a4aeb303b2708dd18651006f2c4044cde7ae35a666a28371707fa66f8abd0cdd14ce1db900b4f2d61602bf6e5bef328ff8fc9f53ff9d330b0822f89cac055fdf9a7961264f0ef181b7e4d765aa8e369a0bc547b460d2aa735ffca942b41d738d49546c68979b4ce55384d45539a76f42cab92bec52312d25bfabb6a39c224e455a58983a5e98", 0xa6}], 0x2, &(0x7f0000000180)={[{@shortname_winnt='shortname=winnt', 0x2c}, {@utf8='utf8=1', 0x2c}, {@utf8='utf8=1', 0x2c}, {@utf8='utf8=1', 0x2c}, {@nonumtail='nnonumtail=1', 0x2c}, {@numtail='nonumtail=0', 0x2c}]}) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") syz_mount_image$reiserfs(&(0x7f0000000200)='reiserfs\x00', &(0x7f0000000240)='./file0\x00', 0x0, 0x0, &(0x7f0000000480), 0x0, &(0x7f0000000500)={[{@notail='notail', 0x64}]}) [ 162.381325] dccp_v6_rcv: dropped packet with invalid checksum [ 162.424716] dccp_v6_rcv: dropped packet with invalid checksum 09:05:52 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={"6c6f001e00", {0x2}}) 09:05:52 executing program 6: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000180)="025cc80a2b345f8f762070") perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) lstat(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) semctl$IPC_SET(0x0, 0x0, 0x1, &(0x7f00000003c0)={{0x0, 0x0, r1, 0x0, 0x0, 0x0, 0xfffffffffffffffd}, 0x20, 0xffffffffffffffff}) [ 162.465540] FAT-fs (loop4): Unrecognized mount option "nnonumtail=1" or missing value [ 162.486981] FAULT_INJECTION: forcing a failure. [ 162.486981] name failslab, interval 1, probability 0, space 0, times 0 [ 162.498324] CPU: 1 PID: 11383 Comm: syz-executor2 Not tainted 4.18.0-rc5-next-20180720+ #12 09:05:52 executing program 0: r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='/group.stat\x00', 0x2761, 0x0) r1 = perf_event_open(&(0x7f0000000180)={0x6, 0x70}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) close(r1) ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000000040)={0x100, 0x7, 0x7, 0x4, 0x1}) 09:05:52 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)={{}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}) [ 162.506816] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 162.516169] Call Trace: [ 162.518765] dump_stack+0x1c9/0x2b4 [ 162.522404] ? dump_stack_print_info.cold.2+0x52/0x52 [ 162.527607] ? rcu_note_context_switch+0x730/0x730 [ 162.532563] should_fail.cold.4+0xa/0x11 [ 162.536638] ? kasan_check_write+0x14/0x20 [ 162.540882] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 162.546181] ? kernfs_activate+0x8e/0x2c0 [ 162.550337] ? ___ratelimit.cold.2+0x6b/0x6b [ 162.554747] ? mutex_trylock+0x2b0/0x2b0 [ 162.558815] ? kasan_check_write+0x14/0x20 [ 162.563059] ? __radix_tree_replace+0x188/0x2f0 [ 162.567730] ? kernfs_add_one+0x4f/0x4d0 [ 162.571802] ? kernfs_activate+0x21a/0x2c0 [ 162.576043] ? lock_downgrade+0x8f0/0x8f0 [ 162.580202] ? lock_acquire+0x1e4/0x540 [ 162.584184] ? fs_reclaim_acquire+0x20/0x20 [ 162.588508] ? lock_downgrade+0x8f0/0x8f0 [ 162.592662] ? check_same_owner+0x340/0x340 [ 162.596992] ? kasan_check_write+0x14/0x20 [ 162.601229] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 162.606160] ? rcu_note_context_switch+0x730/0x730 [ 162.611097] __should_failslab+0x124/0x180 [ 162.615335] should_failslab+0x9/0x14 [ 162.619142] kmem_cache_alloc+0x2af/0x760 [ 162.623293] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 162.628228] ? kasan_check_write+0x14/0x20 [ 162.632463] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 162.637463] __kernfs_new_node+0xef/0x5a0 [ 162.641602] ? kernfs_dop_revalidate+0x3c0/0x3c0 [ 162.646350] ? mutex_unlock+0xd/0x10 [ 162.650047] ? kernfs_activate+0x21a/0x2c0 [ 162.654266] ? kernfs_walk_and_get_ns+0x340/0x340 [ 162.659106] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 162.664635] ? kernfs_link_sibling+0x1d2/0x3b0 [ 162.669201] kernfs_new_node+0x80/0xf0 [ 162.673075] __kernfs_create_file+0x4d/0x330 [ 162.677486] sysfs_add_file_mode_ns+0x21a/0x560 [ 162.682145] internal_create_group+0x26d/0x9e0 [ 162.686710] sysfs_create_group+0x1f/0x30 [ 162.690853] lo_ioctl+0x1307/0x1d70 [ 162.694463] ? lo_rw_aio_complete+0x450/0x450 [ 162.698939] blkdev_ioctl+0x9cd/0x2030 [ 162.702809] ? lock_acquire+0x1e4/0x540 [ 162.706763] ? blkpg_ioctl+0xc40/0xc40 [ 162.710638] ? lock_release+0xa30/0xa30 [ 162.714595] ? save_stack+0xa9/0xd0 [ 162.718201] ? save_stack+0x43/0xd0 [ 162.721811] ? __fget+0x4d5/0x740 [ 162.725257] ? ksys_dup3+0x690/0x690 [ 162.728953] ? do_raw_spin_trylock+0x1c0/0x1c0 [ 162.733529] ? kasan_check_write+0x14/0x20 [ 162.737755] ? do_raw_spin_lock+0xc1/0x200 [ 162.741971] block_ioctl+0xee/0x130 [ 162.745580] ? blkdev_fallocate+0x400/0x400 [ 162.749882] do_vfs_ioctl+0x1de/0x1720 [ 162.753752] ? ioctl_preallocate+0x300/0x300 [ 162.758158] ? __fget_light+0x2f7/0x440 [ 162.762115] ? fget_raw+0x20/0x20 [ 162.765566] ? trace_hardirqs_on+0xd/0x10 [ 162.769709] ? kmem_cache_free+0x22e/0x2d0 [ 162.773930] ? putname+0xf7/0x130 [ 162.777366] ? do_sys_open+0x3cb/0x720 [ 162.781247] ? security_file_ioctl+0x94/0xc0 [ 162.785643] ksys_ioctl+0xa9/0xd0 [ 162.789085] __x64_sys_ioctl+0x73/0xb0 [ 162.792962] do_syscall_64+0x1b9/0x820 [ 162.796832] ? syscall_slow_exit_work+0x500/0x500 [ 162.801668] ? syscall_return_slowpath+0x5e0/0x5e0 [ 162.806591] ? syscall_return_slowpath+0x31d/0x5e0 [ 162.811526] ? prepare_exit_to_usermode+0x291/0x3b0 [ 162.816554] ? perf_trace_sys_enter+0xb10/0xb10 [ 162.821230] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 162.826068] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 162.831244] RIP: 0033:0x455927 [ 162.834417] Code: 48 83 c4 08 48 89 d8 5b 5d c3 66 0f 1f 84 00 00 00 00 00 48 89 e8 48 f7 d8 48 39 c3 0f 92 c0 eb 92 66 90 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 7d bb fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 162.853569] RSP: 002b:00007fb8b6388a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 162.861280] RAX: ffffffffffffffda RBX: 00000000200003a8 RCX: 0000000000455927 [ 162.868538] RDX: 0000000000000014 RSI: 0000000000004c00 RDI: 0000000000000015 [ 162.875793] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 162.883056] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000014 [ 162.890313] R13: 0000000000000001 R14: 00000000004d3de0 R15: 000000000000000c [ 162.921338] REISERFS warning (device loop4): super-6505 reiserfs_getopt: head of option "notail" is only correct [ 162.921338] 09:05:53 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='/group.stat\x00', 0x2761, 0x0) r1 = perf_event_open(&(0x7f0000000180)={0x6, 0x70}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) close(r1) ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000000040)={0x100, 0x7, 0x7, 0x4, 0x1}) 09:05:53 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)={{}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfeffffff00000000}) 09:05:53 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={"6c6f0200", {0x2}}) 09:05:53 executing program 2 (fault-call:1 fault-nth:13): syz_mount_image$vfat(&(0x7f0000000180)='vfat\x00', &(0x7f0000000080)='./file0/file0\x00', 0x0, 0x0, &(0x7f0000001580), 0x0, &(0x7f0000000340)={[{@shortname_win95='shortname=win95', 0x2c}]}) syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f0000000100)='./file0\x00', 0xe004, 0x1, &(0x7f0000000380)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020401000200027000f8", 0x16}], 0x0, &(0x7f0000000340)=ANY=[]) 09:05:53 executing program 6: r0 = openat$tun(0xffffffffffffff9c, &(0x7f00000006c0)='/dev/net/tun\x00', 0x2, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000240)={'\x00', 0x411}) r1 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r1, &(0x7f0000000100)={&(0x7f00000000c0)={0x10}, 0xc, &(0x7f0000000000)={&(0x7f00000001c0)=@newlink={0x28, 0x10, 0xc362e63b3f31ba5f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x3}, [@IFLA_GROUP={0x8, 0x1b}]}, 0x28}, 0x1}, 0x0) r2 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2, 0x0) connect$bt_l2cap(r2, &(0x7f0000000080)={0x1f, 0x8d, {0x9, 0x10e, 0x1da, 0x2, 0xf7, 0x100000000}, 0xcff6}, 0xe) connect$bt_l2cap(0xffffffffffffffff, &(0x7f0000000200)={0x1f, 0x8, {0x7ff}}, 0xe) pwrite64(r0, &(0x7f0000000200), 0xa00, 0x0) 09:05:53 executing program 4: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000580)={&(0x7f00000001c0)={0x10}, 0xc, &(0x7f0000000540)={&(0x7f0000000440)=@newlink={0x44, 0x10, 0xc09, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x24, 0x12, @ipip={{0x10, 0x1, 'ipip\x00'}, {0x14, 0x2, [@IFLA_IPTUN_PMTUDISC={0x8, 0xa}, @IFLA_IPTUN_REMOTE={0x8, 0x3, @rand_addr}]}}}]}, 0x44}, 0x1}, 0x0) pipe(&(0x7f0000000000)={0xffffffffffffffff}) ioctl$sock_inet_udp_SIOCINQ(r1, 0x541b, &(0x7f0000000040)) chroot(&(0x7f0000000080)='./file0\x00') 09:05:53 executing program 0: r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='/group.stat\x00', 0x2761, 0x0) r1 = perf_event_open(&(0x7f0000000180)={0x6, 0x70}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) close(r1) ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000000040)={0x100, 0x7, 0x7, 0x4, 0x1}) 09:05:53 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)={{}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff00000000}) [ 163.236555] FAULT_INJECTION: forcing a failure. [ 163.236555] name failslab, interval 1, probability 0, space 0, times 0 [ 163.240399] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 163.247876] CPU: 1 PID: 11434 Comm: syz-executor2 Not tainted 4.18.0-rc5-next-20180720+ #12 [ 163.247885] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 163.247888] Call Trace: [ 163.247911] dump_stack+0x1c9/0x2b4 [ 163.247928] ? dump_stack_print_info.cold.2+0x52/0x52 [ 163.247943] ? rcu_note_context_switch+0x730/0x730 [ 163.247960] should_fail.cold.4+0xa/0x11 [ 163.247976] ? kasan_check_write+0x14/0x20 [ 163.247991] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 163.248007] ? kernfs_activate+0x8e/0x2c0 [ 163.248023] ? ___ratelimit.cold.2+0x6b/0x6b [ 163.248038] ? mutex_trylock+0x2b0/0x2b0 [ 163.248054] ? kasan_check_write+0x14/0x20 [ 163.248070] ? __radix_tree_replace+0x188/0x2f0 [ 163.248082] ? kernfs_add_one+0x4f/0x4d0 [ 163.248096] ? kernfs_activate+0x21a/0x2c0 [ 163.248111] ? lock_downgrade+0x8f0/0x8f0 [ 163.248126] ? lock_acquire+0x1e4/0x540 [ 163.248141] ? fs_reclaim_acquire+0x20/0x20 [ 163.248156] ? lock_downgrade+0x8f0/0x8f0 [ 163.248173] ? check_same_owner+0x340/0x340 [ 163.248187] ? kasan_check_write+0x14/0x20 [ 163.248201] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 163.248213] ? rcu_note_context_switch+0x730/0x730 [ 163.248226] __should_failslab+0x124/0x180 [ 163.248239] should_failslab+0x9/0x14 [ 163.248250] kmem_cache_alloc+0x2af/0x760 [ 163.248262] ? __mutex_unlock_slowpath+0x197/0x8c0 09:05:53 executing program 0: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000000)={"766574000000000000000000bd6800", 0x43732e5398416f1a}) r2 = memfd_create(&(0x7f0000000140)="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", 0x0) ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000880)={'team0\x00', 0x0}) bind$xdp(r2, &(0x7f00000008c0)={0x2c, 0x2, r3, 0x38, r2}, 0x10) socket$nl_route(0x10, 0x3, 0x0) ioctl$KDGKBTYPE(r2, 0x4b33, &(0x7f0000000340)) getgroups(0x3, &(0x7f0000000400)=[0x0, 0xee00, 0xee00]) r5 = getgid() getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000000440)={0x0, 0x0, 0x0}, &(0x7f0000000480)=0xc) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f00000004c0)={0x0, 0x0, 0x0}, &(0x7f0000000500)=0xc) getgroups(0x6, &(0x7f0000000540)=[0xee00, 0xee00, 0xee01, 0xffffffffffffffff, 0xee00, 0xee01]) lstat(&(0x7f0000000580)='./file0\x00', &(0x7f00000005c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) getresgid(&(0x7f0000000640)=0x0, &(0x7f0000000680), &(0x7f00000006c0)) r11 = getgid() lstat(&(0x7f0000000700)='./file0\x00', &(0x7f0000000740)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) stat(&(0x7f00000007c0)='./file0\x00', &(0x7f0000000800)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) setgroups(0xa, &(0x7f0000000900)=[r4, r5, r6, r7, r8, r9, r10, r11, r12, r13]) write$eventfd(r2, &(0x7f0000000100)=0xa, 0x2) getsockopt$inet_sctp_SCTP_DISABLE_FRAGMENTS(r2, 0x84, 0x8, &(0x7f0000000380), &(0x7f00000003c0)=0x4) sendfile(r2, r2, &(0x7f0000001000), 0xffff) timer_create(0x7, &(0x7f00000000c0)={0x0, 0x25, 0x3, @tid=0xffffffffffffffff}, &(0x7f00000002c0)=0x0) flistxattr(r1, &(0x7f0000000300)=""/30, 0x1e) timer_getoverrun(r14) mmap(&(0x7f0000000000/0x7000)=nil, 0x7000, 0x80000000004, 0x11, r2, 0x0) ioctl$TUNSETSNDBUF(r1, 0x400454d4, &(0x7f0000000040)) 09:05:53 executing program 4: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") unshare(0x400) r1 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r1, &(0x7f0000000140)={0xa, 0x0, 0x0, @loopback={0x0, 0x1}}, 0x1c) r2 = getegid() setfsgid(r2) lstat(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) stat(&(0x7f0000000100)='./file0\x00', &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) setresgid(r2, r3, r4) getsockopt$inet6_buf(r1, 0x29, 0x3d, &(0x7f0000000240)=""/40, &(0x7f00000002c0)=0xfffffffffffffe9a) 09:05:53 executing program 5: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = socket$netlink(0x10, 0x3, 0xf) bind$netlink(r1, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc) r2 = openat$tun(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/net/tun\x00', 0x0, 0x0) pipe(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) write$P9_ROPEN(r3, &(0x7f0000000080)={0x18, 0x71, 0x2, {{0x41, 0x4, 0x4}, 0x3636}}, 0x18) ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000040)={"6e72300100", 0x2}) 09:05:53 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)={{}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000000000000}) 09:05:53 executing program 2 (fault-call:1 fault-nth:14): syz_mount_image$vfat(&(0x7f0000000180)='vfat\x00', &(0x7f0000000080)='./file0/file0\x00', 0x0, 0x0, &(0x7f0000001580), 0x0, &(0x7f0000000340)={[{@shortname_win95='shortname=win95', 0x2c}]}) syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f0000000100)='./file0\x00', 0xe004, 0x1, &(0x7f0000000380)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020401000200027000f8", 0x16}], 0x0, &(0x7f0000000340)=ANY=[]) [ 163.248275] ? kasan_check_write+0x14/0x20 [ 163.248289] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 163.248304] __kernfs_new_node+0xef/0x5a0 [ 163.260087] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 163.263303] ? kernfs_dop_revalidate+0x3c0/0x3c0 [ 163.263320] ? mutex_unlock+0xd/0x10 [ 163.263332] ? kernfs_activate+0x21a/0x2c0 [ 163.263350] ? kernfs_walk_and_get_ns+0x340/0x340 [ 163.295572] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 163.297428] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 09:05:53 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)={{}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfeffffff}) [ 163.297442] ? kernfs_link_sibling+0x1d2/0x3b0 [ 163.297457] kernfs_new_node+0x80/0xf0 [ 163.297473] __kernfs_create_file+0x4d/0x330 [ 163.297492] sysfs_add_file_mode_ns+0x21a/0x560 [ 163.297508] internal_create_group+0x26d/0x9e0 [ 163.297523] sysfs_create_group+0x1f/0x30 [ 163.297535] lo_ioctl+0x1307/0x1d70 [ 163.297550] ? lo_rw_aio_complete+0x450/0x450 [ 163.297564] blkdev_ioctl+0x9cd/0x2030 [ 163.297578] ? lock_acquire+0x1e4/0x540 [ 163.297592] ? blkpg_ioctl+0xc40/0xc40 [ 163.297606] ? lock_release+0xa30/0xa30 09:05:53 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)) 09:05:53 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)) [ 163.297619] ? save_stack+0xa9/0xd0 [ 163.297631] ? save_stack+0x43/0xd0 [ 163.297643] ? __fget+0x4d5/0x740 [ 163.297655] ? ksys_dup3+0x690/0x690 [ 163.297667] ? do_raw_spin_trylock+0x1c0/0x1c0 [ 163.297682] ? kasan_check_write+0x14/0x20 [ 163.297694] ? do_raw_spin_lock+0xc1/0x200 [ 163.297709] block_ioctl+0xee/0x130 [ 163.297721] ? blkdev_fallocate+0x400/0x400 [ 163.297735] do_vfs_ioctl+0x1de/0x1720 [ 163.297748] ? ioctl_preallocate+0x300/0x300 [ 163.297758] ? __fget_light+0x2f7/0x440 [ 163.297769] ? fget_raw+0x20/0x20 [ 163.297781] ? trace_hardirqs_on+0xd/0x10 [ 163.297793] ? kmem_cache_free+0x22e/0x2d0 [ 163.297808] ? putname+0xf7/0x130 [ 163.297822] ? do_sys_open+0x3cb/0x720 [ 163.297841] ? security_file_ioctl+0x94/0xc0 [ 163.297855] ksys_ioctl+0xa9/0xd0 [ 163.297869] __x64_sys_ioctl+0x73/0xb0 [ 163.297885] do_syscall_64+0x1b9/0x820 [ 163.297898] ? finish_task_switch+0x1d3/0x870 [ 163.297913] ? syscall_return_slowpath+0x5e0/0x5e0 [ 163.297927] ? syscall_return_slowpath+0x31d/0x5e0 [ 163.297941] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 163.297955] ? prepare_exit_to_usermode+0x291/0x3b0 [ 163.297969] ? perf_trace_sys_enter+0xb10/0xb10 [ 163.297982] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 163.298001] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 163.298011] RIP: 0033:0x455927 [ 163.298014] Code: 48 83 c4 08 48 89 d8 5b 5d c3 66 0f 1f 84 00 00 00 00 00 48 89 e8 48 f7 d8 48 39 c3 0f 92 c0 eb 92 66 90 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 7d bb fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 163.298232] RSP: 002b:00007fb8b6388a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 09:05:53 executing program 1: r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000180)='/dev/full\x00', 0x238000, 0x0) ioctl$EVIOCGNAME(r0, 0x80404506, &(0x7f0000000040)=""/177) r1 = syz_open_dev$evdev(&(0x7f00003a3000)='/dev/input/event#\x00', 0x0, 0x1) ioctl$TIOCSBRK(r1, 0x40044591) write(r1, &(0x7f0000fdd000), 0x0) 09:05:53 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)) [ 163.298244] RAX: ffffffffffffffda RBX: 00000000200003a8 RCX: 0000000000455927 [ 163.298252] RDX: 0000000000000014 RSI: 0000000000004c00 RDI: 0000000000000015 [ 163.298259] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 163.298267] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000014 [ 163.298274] R13: 0000000000000001 R14: 00000000004d3de0 R15: 000000000000000d [ 163.731972] FAULT_INJECTION: forcing a failure. [ 163.731972] name failslab, interval 1, probability 0, space 0, times 0 [ 163.743296] CPU: 0 PID: 11475 Comm: syz-executor2 Not tainted 4.18.0-rc5-next-20180720+ #12 [ 163.751781] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 163.761133] Call Trace: [ 163.763708] dump_stack+0x1c9/0x2b4 [ 163.767324] ? dump_stack_print_info.cold.2+0x52/0x52 [ 163.772497] ? rcu_note_context_switch+0x730/0x730 [ 163.777424] should_fail.cold.4+0xa/0x11 [ 163.781479] ? kasan_check_write+0x14/0x20 [ 163.785707] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 163.791085] ? kernfs_activate+0x8e/0x2c0 [ 163.795246] ? ___ratelimit.cold.2+0x6b/0x6b [ 163.799655] ? mutex_trylock+0x2b0/0x2b0 [ 163.803711] ? kasan_check_write+0x14/0x20 [ 163.807972] ? __radix_tree_replace+0x188/0x2f0 [ 163.812632] ? kernfs_add_one+0x4f/0x4d0 [ 163.816687] ? kernfs_activate+0x21a/0x2c0 [ 163.820921] ? lock_downgrade+0x8f0/0x8f0 [ 163.825063] ? lock_acquire+0x1e4/0x540 [ 163.829026] ? fs_reclaim_acquire+0x20/0x20 [ 163.833334] ? lock_downgrade+0x8f0/0x8f0 [ 163.837486] ? check_same_owner+0x340/0x340 [ 163.841803] ? kasan_check_write+0x14/0x20 [ 163.846047] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 163.850974] ? rcu_note_context_switch+0x730/0x730 [ 163.855890] __should_failslab+0x124/0x180 [ 163.860119] should_failslab+0x9/0x14 [ 163.863903] kmem_cache_alloc+0x2af/0x760 [ 163.868043] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 163.872978] ? kasan_check_write+0x14/0x20 [ 163.877211] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 163.882219] __kernfs_new_node+0xef/0x5a0 [ 163.886360] ? kernfs_dop_revalidate+0x3c0/0x3c0 [ 163.891100] ? mutex_unlock+0xd/0x10 [ 163.894794] ? kernfs_activate+0x21a/0x2c0 [ 163.899028] ? kernfs_walk_and_get_ns+0x340/0x340 [ 163.903866] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 163.909385] ? kernfs_link_sibling+0x1d2/0x3b0 [ 163.913982] kernfs_new_node+0x80/0xf0 [ 163.917863] __kernfs_create_file+0x4d/0x330 [ 163.922254] sysfs_add_file_mode_ns+0x21a/0x560 [ 163.926916] internal_create_group+0x26d/0x9e0 [ 163.931485] sysfs_create_group+0x1f/0x30 [ 163.935622] lo_ioctl+0x1307/0x1d70 [ 163.939240] ? lo_rw_aio_complete+0x450/0x450 [ 163.943719] blkdev_ioctl+0x9cd/0x2030 [ 163.947586] ? lock_acquire+0x1e4/0x540 [ 163.951548] ? blkpg_ioctl+0xc40/0xc40 [ 163.955419] ? lock_release+0xa30/0xa30 [ 163.959384] ? save_stack+0xa9/0xd0 [ 163.963000] ? save_stack+0x43/0xd0 [ 163.966617] ? __fget+0x4d5/0x740 [ 163.970063] ? ksys_dup3+0x690/0x690 [ 163.973763] ? do_raw_spin_trylock+0x1c0/0x1c0 [ 163.978328] ? kasan_check_write+0x14/0x20 [ 163.982542] ? do_raw_spin_lock+0xc1/0x200 [ 163.986766] block_ioctl+0xee/0x130 [ 163.990377] ? blkdev_fallocate+0x400/0x400 [ 163.994677] do_vfs_ioctl+0x1de/0x1720 [ 163.998551] ? ioctl_preallocate+0x300/0x300 [ 164.002961] ? __fget_light+0x2f7/0x440 [ 164.006941] ? fget_raw+0x20/0x20 [ 164.010380] ? trace_hardirqs_on+0xd/0x10 [ 164.014512] ? kmem_cache_free+0x22e/0x2d0 [ 164.018732] ? putname+0xf7/0x130 [ 164.022344] ? do_sys_open+0x3cb/0x720 [ 164.026215] ? security_file_ioctl+0x94/0xc0 [ 164.030602] ksys_ioctl+0xa9/0xd0 [ 164.034041] __x64_sys_ioctl+0x73/0xb0 [ 164.037909] do_syscall_64+0x1b9/0x820 [ 164.041781] ? finish_task_switch+0x1d3/0x870 [ 164.046265] ? syscall_return_slowpath+0x5e0/0x5e0 [ 164.051175] ? syscall_return_slowpath+0x31d/0x5e0 [ 164.056085] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 164.061091] ? prepare_exit_to_usermode+0x291/0x3b0 [ 164.066090] ? perf_trace_sys_enter+0xb10/0xb10 [ 164.070754] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 164.075592] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 164.080785] RIP: 0033:0x455927 [ 164.083968] Code: 48 83 c4 08 48 89 d8 5b 5d c3 66 0f 1f 84 00 00 00 00 00 48 89 e8 48 f7 d8 48 39 c3 0f 92 c0 eb 92 66 90 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 7d bb fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 164.103184] RSP: 002b:00007fb8b6388a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 164.110882] RAX: ffffffffffffffda RBX: 00000000200003a8 RCX: 0000000000455927 [ 164.118142] RDX: 0000000000000014 RSI: 0000000000004c00 RDI: 0000000000000015 [ 164.125393] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 164.132652] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000014 [ 164.139900] R13: 0000000000000001 R14: 00000000004d3de0 R15: 000000000000000e 09:05:54 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)) 09:05:54 executing program 4: r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/conn_reuse_mode\x00', 0x2, 0x0) ioctl$PPPIOCGL2TPSTATS(r0, 0x80487436, &(0x7f0000000100)="c818c20b80c45ea04fc2144f0be368ecb93d66b2fa628d242eca3697654ff83818386fe199b5f771d1eb58d375e666a3ea282d2d2d0ecdb2f105f04a2b31aebf9270e8e269ed38ea63dd8301428df5d4") perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$xdp(0x2c, 0x3, 0x0) setsockopt$XDP_UMEM_REG(r1, 0x11b, 0x4, &(0x7f0000000040)={&(0x7f0000000000)=""/2, 0x2000, 0x800}, 0x18) openat$fuse(0xffffffffffffff9c, &(0x7f0000000200)='/dev/fuse\x00', 0x2, 0x0) setsockopt$XDP_UMEM_FILL_RING(r1, 0x11b, 0x5, &(0x7f00000000c0), 0x4) 09:05:54 executing program 6: r0 = socket$inet6(0xa, 0x1, 0x0) ftruncate(r0, 0x1) r1 = dup(r0) bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20}, 0x1c) setsockopt$l2tp_PPPOL2TP_SO_REORDERTO(r1, 0x111, 0x5, 0x0, 0x4) sendto$inet6(r1, &(0x7f00000007c0), 0x0, 0x20000008, &(0x7f0000000640)={0xa, 0x4e20, 0x0, @loopback={0x0, 0x1}}, 0x1c) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000002100)={0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f00000020c0)}, 0x20) setsockopt$inet_tcp_buf(0xffffffffffffffff, 0x6, 0x0, &(0x7f0000002180), 0x0) ioctl$sock_inet6_tcp_SIOCATMARK(0xffffffffffffffff, 0x8905, &(0x7f0000000680)) setsockopt$SO_TIMESTAMPING(0xffffffffffffffff, 0x1, 0x25, &(0x7f0000000740), 0x209) ioctl$KDSETKEYCODE(0xffffffffffffffff, 0x4b4d, &(0x7f0000002080)) mlockall(0x0) r2 = dup(r0) ioctl$SCSI_IOCTL_DOORLOCK(0xffffffffffffffff, 0x5380) r3 = open(&(0x7f00000008c0)='./file0\x00', 0x20141042, 0x66) mlockall(0x61a652e989738ec2) msync(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x2) setsockopt$l2tp_PPPOL2TP_SO_RECVSEQ(r1, 0x111, 0x2, 0x0, 0x4) ioctl$sock_SIOCGSKNS(r2, 0x894c, &(0x7f00000002c0)=0x3e0000000000) getdents64(0xffffffffffffffff, &(0x7f0000000900)=""/252, 0xfc) ioctl$sock_inet6_tcp_SIOCOUTQNSD(r1, 0x894b, &(0x7f0000002140)) ioctl$PPPIOCGMRU(r2, 0x80047453, &(0x7f0000000040)) recvmmsg(r2, &(0x7f0000002000)=[{{&(0x7f0000000080), 0x80, &(0x7f0000000000)=[{&(0x7f0000000140)=""/217, 0xd9}], 0x1, &(0x7f0000000300)=""/242, 0xf2, 0x4}}, {{&(0x7f0000000240)=@generic, 0x80, &(0x7f0000000780)=[{&(0x7f0000000a00)=""/4096, 0x1000}, {&(0x7f0000000400)=""/119, 0x77}, {&(0x7f0000000480)=""/129, 0x81}, {&(0x7f0000000540)=""/170, 0xaa}, {&(0x7f0000000600)=""/33, 0x21}, {&(0x7f00000006c0)=""/122, 0x7a}], 0x6, &(0x7f00000007c0)=""/234, 0xfffffffffffffedd}}, {{&(0x7f0000001a00)=@xdp, 0x80, &(0x7f0000001e00)=[{&(0x7f0000001a80)=""/17, 0x11}, {&(0x7f0000001ac0)=""/225, 0xe1}, {&(0x7f0000001bc0)=""/109, 0x6d}, {&(0x7f0000001c40)=""/154, 0x9a}, {&(0x7f0000001d00)=""/225, 0xe1}], 0x5}}, {{&(0x7f0000001e40)=@pppol2tpin6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @local}}}, 0x80, &(0x7f0000001f80)=[{&(0x7f0000001ec0)=""/188, 0xffffffffffffffb9}], 0x1, &(0x7f0000001fc0)=""/13, 0xd}}], 0x4, 0x0, 0x0) ioctl$SCSI_IOCTL_DOORLOCK(0xffffffffffffffff, 0x5380) ftruncate(r3, 0x80080) sendfile(r1, r3, &(0x7f0000d83ff8), 0x2008000fffffffe) 09:05:54 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={"6c6f000000000000000400", {0x2}}) 09:05:54 executing program 2 (fault-call:1 fault-nth:15): syz_mount_image$vfat(&(0x7f0000000180)='vfat\x00', &(0x7f0000000080)='./file0/file0\x00', 0x0, 0x0, &(0x7f0000001580), 0x0, &(0x7f0000000340)={[{@shortname_win95='shortname=win95', 0x2c}]}) syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f0000000100)='./file0\x00', 0xe004, 0x1, &(0x7f0000000380)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020401000200027000f8", 0x16}], 0x0, &(0x7f0000000340)=ANY=[]) 09:05:54 executing program 1: perf_event_open(&(0x7f000001d000)={0x200000002, 0x70, 0x6, 0x108000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6(0xa, 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000080)="2f65786500000000000409004bddd9de91be10eebf000ee9a90f798058439ed554fa07424ada75af1f02acc7edbcd7a071fb35331ce39c5a00000000") fsetxattr(0xffffffffffffffff, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f00000002c0)="2f0409004bddd9de91be10eebf000ee9a90f798058439ed554af1f02acc7edbcd7a071fb35331ce39c5a0000000000000000080000000000000000000aaad955a3c93f9d248b46a7c99eb35b406bf918ff01739e56187b2db8f1074424745271062042fb3808186e0a837132f9108c583073a4ca94b3e4e58717fe2b659fa3903c7b73bd66b83f5ecc0a7361257896883f1b43ff4ec0a1e336b92f705461af0b60825a7834ffd0a7339d85c51b8db7b4c0e4f40953dd2d9f2110f04c9fdf8489eaa996", 0xc3, 0x0) fremovexattr(r0, &(0x7f0000000000)=@known='user.syz\x00') [ 164.439525] FAULT_INJECTION: forcing a failure. [ 164.439525] name failslab, interval 1, probability 0, space 0, times 0 [ 164.450886] CPU: 1 PID: 11510 Comm: syz-executor2 Not tainted 4.18.0-rc5-next-20180720+ #12 [ 164.459375] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 164.468744] Call Trace: [ 164.471448] dump_stack+0x1c9/0x2b4 [ 164.475110] ? dump_stack_print_info.cold.2+0x52/0x52 [ 164.480334] ? rcu_note_context_switch+0x730/0x730 [ 164.485270] should_fail.cold.4+0xa/0x11 [ 164.489338] ? kasan_check_write+0x14/0x20 [ 164.493584] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 164.498697] ? kernfs_activate+0x8e/0x2c0 [ 164.502855] ? ___ratelimit.cold.2+0x6b/0x6b [ 164.507275] ? mutex_trylock+0x2b0/0x2b0 [ 164.511348] ? kasan_check_write+0x14/0x20 [ 164.515684] ? __radix_tree_replace+0x188/0x2f0 [ 164.520714] ? kernfs_add_one+0x4f/0x4d0 [ 164.524788] ? kernfs_activate+0x21a/0x2c0 [ 164.529035] ? lock_downgrade+0x8f0/0x8f0 [ 164.533202] ? lock_acquire+0x1e4/0x540 [ 164.537189] ? fs_reclaim_acquire+0x20/0x20 [ 164.541518] ? lock_downgrade+0x8f0/0x8f0 [ 164.545673] ? check_same_owner+0x340/0x340 [ 164.550008] ? kasan_check_write+0x14/0x20 [ 164.554253] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 164.559190] ? rcu_note_context_switch+0x730/0x730 [ 164.564127] __should_failslab+0x124/0x180 [ 164.568372] should_failslab+0x9/0x14 [ 164.572194] kmem_cache_alloc+0x2af/0x760 [ 164.576353] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 164.581326] ? kasan_check_write+0x14/0x20 [ 164.585577] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 164.590601] __kernfs_new_node+0xef/0x5a0 [ 164.594755] ? kernfs_dop_revalidate+0x3c0/0x3c0 [ 164.599518] ? mutex_unlock+0xd/0x10 [ 164.603235] ? kernfs_activate+0x21a/0x2c0 [ 164.607474] ? kernfs_walk_and_get_ns+0x340/0x340 [ 164.612322] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 164.617863] ? kernfs_link_sibling+0x1d2/0x3b0 [ 164.622456] kernfs_new_node+0x80/0xf0 [ 164.626347] __kernfs_create_file+0x4d/0x330 [ 164.630765] sysfs_add_file_mode_ns+0x21a/0x560 [ 164.635438] internal_create_group+0x26d/0x9e0 [ 164.640024] sysfs_create_group+0x1f/0x30 [ 164.644176] lo_ioctl+0x1307/0x1d70 [ 164.647807] ? lo_rw_aio_complete+0x450/0x450 [ 164.652306] blkdev_ioctl+0x9cd/0x2030 [ 164.656193] ? lock_acquire+0x1e4/0x540 [ 164.660169] ? blkpg_ioctl+0xc40/0xc40 [ 164.664057] ? lock_release+0xa30/0xa30 [ 164.668033] ? save_stack+0xa9/0xd0 [ 164.671656] ? save_stack+0x43/0xd0 [ 164.675282] ? __fget+0x4d5/0x740 [ 164.678738] ? ksys_dup3+0x690/0x690 [ 164.682452] ? do_raw_spin_trylock+0x1c0/0x1c0 [ 164.687039] ? kasan_check_write+0x14/0x20 [ 164.691639] ? do_raw_spin_lock+0xc1/0x200 [ 164.695970] block_ioctl+0xee/0x130 [ 164.699599] ? blkdev_fallocate+0x400/0x400 [ 164.703922] do_vfs_ioctl+0x1de/0x1720 [ 164.707817] ? ioctl_preallocate+0x300/0x300 [ 164.712225] ? __fget_light+0x2f7/0x440 [ 164.716207] ? fget_raw+0x20/0x20 [ 164.719663] ? trace_hardirqs_on+0xd/0x10 [ 164.723854] ? kmem_cache_free+0x22e/0x2d0 [ 164.728106] ? putname+0xf7/0x130 [ 164.731556] ? do_sys_open+0x3cb/0x720 [ 164.735444] ? security_file_ioctl+0x94/0xc0 [ 164.739854] ksys_ioctl+0xa9/0xd0 [ 164.743302] __x64_sys_ioctl+0x73/0xb0 [ 164.747175] do_syscall_64+0x1b9/0x820 [ 164.751058] ? finish_task_switch+0x1d3/0x870 [ 164.755538] ? syscall_return_slowpath+0x5e0/0x5e0 [ 164.760450] ? syscall_return_slowpath+0x31d/0x5e0 [ 164.765361] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 164.770370] ? prepare_exit_to_usermode+0x291/0x3b0 [ 164.775396] ? perf_trace_sys_enter+0xb10/0xb10 [ 164.780058] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 164.784890] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 164.790063] RIP: 0033:0x455927 [ 164.793230] Code: 48 83 c4 08 48 89 d8 5b 5d c3 66 0f 1f 84 00 00 00 00 00 48 89 e8 48 f7 d8 48 39 c3 0f 92 c0 eb 92 66 90 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 7d bb fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 164.812424] RSP: 002b:00007fb8b6388a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 164.820119] RAX: ffffffffffffffda RBX: 00000000200003a8 RCX: 0000000000455927 [ 164.827386] RDX: 0000000000000014 RSI: 0000000000004c00 RDI: 0000000000000015 09:05:54 executing program 0: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) r1 = open(&(0x7f0000000000)='./file0\x00', 0x40000, 0x24) ioctl$LOOP_SET_STATUS(r1, 0x4c02, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x7ff, 0x13, 0x2, 0x10, "b1e1ddc693f227e9307f3ac65554f1c21d50753f0db975fb723548817b4fbd6562450c1c62d20c2afef78ea0d4aa57055789184135e2b58db0f64cf287a37298", "a65c80382b870d8179c17ab71b33bd91d6c519528817cd469051751e2142299a", [0x0, 0x6]}) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r2 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_mreqn(r2, 0x0, 0x27, &(0x7f00000002c0)={@multicast2=0xe0000002, @loopback=0x7f000001}, 0xc) perf_event_open(&(0x7f0000aaa000)={0x2, 0x70, 0x857, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = socket$inet6(0xa, 0x400000000001, 0x0) sendto$unix(r1, &(0x7f0000000300)="809162f654097b659c210d9cc395c486e56e69fbe92fa2a4847e84c9c298160b93ce388ba0afadbae5b76699b22ce187a1d1aeae2fe07c084dec012516624c216b36b3d8b707ce0dda09e5cc5aa1ec8e", 0x50, 0x800, &(0x7f0000000380)=@abs={0x1, 0x0, 0x4e20}, 0x6e) ioctl$int_in(r3, 0x5421, &(0x7f0000000040)=0x8ad) setsockopt$inet6_tcp_int(r3, 0x6, 0x19, &(0x7f000074fffc)=0x3, 0x348) r4 = dup(r3) setsockopt$inet6_tcp_int(r4, 0x6, 0x20000000000002, &(0x7f00007b1000)=0x81, 0x4) setsockopt$SO_TIMESTAMPING(r4, 0x1, 0x25, &(0x7f0000000080)=0x412, 0x4) socketpair$inet(0x2, 0x2, 0x200000000000, &(0x7f00000000c0)) setns(r4, 0x0) ioctl$sock_inet_SIOCDELRT(r4, 0x890c, &(0x7f00000001c0)={0x2, {0x2, 0x4e21}, {0x2, 0x4e23}, {0x2, 0x4e20, @multicast1=0xe0000001}, 0xa56cc5f933fdfe1, 0xfffffffffffff974, 0x401, 0x1e, 0x8e5, 0x0, 0xffffffffffffff00, 0x2, 0x5}) ioctl$int_in(r3, 0x5452, &(0x7f0000000000)=0x7) bind$inet6(r3, &(0x7f0000000180)={0xa, 0x4e20, 0x0, @loopback={0x0, 0x1}}, 0x1c) sendto$inet6(r3, &(0x7f0000e77fff), 0x2bd, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @loopback={0x0, 0x1}}, 0x1c) connect$inet6(r0, &(0x7f0000000240)={0xa, 0x4e22, 0x9, @mcast1={0xff, 0x1, [], 0x1}}, 0x1c) r5 = open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) ftruncate(r5, 0x7fff) sendfile(r4, r5, &(0x7f0000d83ff8), 0x8000fffffffe) 09:05:54 executing program 5: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") perf_event_open(&(0x7f00000002c0)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000000085, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000000)='/dev/fuse\x00', 0x2, 0x0) ioctl$FUSE_DEV_IOC_CLONE(r1, 0x8004e500, &(0x7f0000000080)) 09:05:54 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)) 09:05:54 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={"6c6f00000000fffffffe00", {0x2}}) 09:05:54 executing program 6: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)) 09:05:54 executing program 4: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f00000021c0)={&(0x7f0000001280)={0x10}, 0xc, &(0x7f0000002180)={&(0x7f0000001ec0)=@migrate={0xac, 0x21, 0x3, 0x0, 0x0, {{@in=@rand_addr, @in6=@ipv4={[], [0xff, 0xff], @multicast2=0xe0000002}}}, [@migrate={0x5c, 0x11, [{@in=@rand_addr, @in6}, {@in6=@mcast1={0xff, 0x1, [], 0x1}}]}]}, 0xac}, 0x1}, 0x0) [ 164.834640] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 164.841908] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000014 [ 164.849168] R13: 0000000000000001 R14: 00000000004d3de0 R15: 000000000000000f 09:05:54 executing program 1: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000080)="025cc83d6d345f8f762070") r1 = socket$inet(0x2, 0x6000000000000001, 0x0) bind$inet(r1, &(0x7f0000deb000)={0x2, 0x4e23, @broadcast=0xffffffff}, 0x10) sendto$inet(r1, &(0x7f0000000000), 0x0, 0x20000802, &(0x7f0000000000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0xa}}, 0x10) sendto$inet(r1, &(0x7f00000002c0)="ce", 0x1, 0x0, &(0x7f0000000040)={0x2, 0x0, @local={0xac, 0x14, 0x14, 0xaa}}, 0x10) close(r1) 09:05:54 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)) 09:05:54 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={"6c6f000000000000000100", {0x2}}) 09:05:54 executing program 5: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f00009f3fa8)={0x26, 'skcipher\x00', 0x0, 0x0, 'kw(aes-generic)\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f00003c1000)="0a0775b0d5e383e5b3b60ced5c54dbb7", 0x10) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg(r1, &(0x7f00000031c0)=[{{&(0x7f0000000140)=@can={0x1d}, 0x80, &(0x7f0000000780)=[{&(0x7f00000006c0)="1436430d48d97d3a32f6d8a3b38a641d", 0x10}], 0x1, &(0x7f0000003640)=ANY=[]}}], 0x1, 0x0) recvmsg(r1, &(0x7f0000003580)={&(0x7f00000003c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @mcast1}}}, 0x80, &(0x7f00000034c0)=[{&(0x7f0000003440)=""/112, 0x200034b0}], 0x1, &(0x7f0000003500)=""/106, 0x6a}, 0x0) 09:05:54 executing program 2 (fault-call:1 fault-nth:16): syz_mount_image$vfat(&(0x7f0000000180)='vfat\x00', &(0x7f0000000080)='./file0/file0\x00', 0x0, 0x0, &(0x7f0000001580), 0x0, &(0x7f0000000340)={[{@shortname_win95='shortname=win95', 0x2c}]}) syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f0000000100)='./file0\x00', 0xe004, 0x1, &(0x7f0000000380)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020401000200027000f8", 0x16}], 0x0, &(0x7f0000000340)=ANY=[]) 09:05:54 executing program 4: perf_event_open(&(0x7f000001d000)={0x200000002, 0x70, 0x6, 0x108000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000080)="2f65786500000000000409004bddd9de91be10eebf000ee9a90f798058439ed554fa07424ada75af1f02acc7edbcd7a071fb35331ce39c5a00000000") fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f00000002c0)="2f0409004bddd9de91be10eebf000ee9a90f798058439ed554af1f02acc7edbcd7a071fb35331ce39c5a0000000000000000080000000000000000000aaad955a3c93f9d248b46a7c99eb35b406bf918ff01739e56187b2db8f1074424745271062042fb3808186e0a837132f9108c583073a4ca94b3e4e58717fe2b659fa3903c7b73bd66b83f5ecc0a7361257896883f1b43ff4ec0a1e336b92f705461af0b60825a7834ffd0a7339d85c51b8db7b4c0e4f40953dd2d9f2110f04c9fdf8489eaa996", 0xc3, 0x0) 09:05:54 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={"6c6f00fffffffe00", {0x2}}) 09:05:54 executing program 6: [ 165.060095] FAULT_INJECTION: forcing a failure. [ 165.060095] name failslab, interval 1, probability 0, space 0, times 0 [ 165.071410] CPU: 1 PID: 11570 Comm: syz-executor2 Not tainted 4.18.0-rc5-next-20180720+ #12 [ 165.079900] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 165.089259] Call Trace: [ 165.091858] dump_stack+0x1c9/0x2b4 [ 165.095496] ? dump_stack_print_info.cold.2+0x52/0x52 [ 165.100698] ? rcu_note_context_switch+0x730/0x730 [ 165.105642] should_fail.cold.4+0xa/0x11 [ 165.109715] ? kasan_check_write+0x14/0x20 [ 165.116938] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 165.122047] ? kernfs_activate+0x8e/0x2c0 [ 165.126207] ? ___ratelimit.cold.2+0x6b/0x6b [ 165.130626] ? mutex_trylock+0x2b0/0x2b0 [ 165.134699] ? kasan_check_write+0x14/0x20 [ 165.138938] ? __radix_tree_replace+0x188/0x2f0 [ 165.143594] ? kernfs_add_one+0x4f/0x4d0 [ 165.147640] ? kernfs_activate+0x21a/0x2c0 [ 165.151861] ? lock_downgrade+0x8f0/0x8f0 [ 165.156012] ? lock_acquire+0x1e4/0x540 [ 165.159977] ? fs_reclaim_acquire+0x20/0x20 [ 165.164289] ? lock_downgrade+0x8f0/0x8f0 [ 165.168425] ? check_same_owner+0x340/0x340 [ 165.172729] ? kasan_check_write+0x14/0x20 [ 165.176949] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 165.181879] ? rcu_note_context_switch+0x730/0x730 [ 165.186798] __should_failslab+0x124/0x180 [ 165.191032] should_failslab+0x9/0x14 [ 165.194818] kmem_cache_alloc+0x2af/0x760 [ 165.198964] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 165.203879] ? kasan_check_write+0x14/0x20 [ 165.208103] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 165.213103] __kernfs_new_node+0xef/0x5a0 [ 165.217252] ? kernfs_dop_revalidate+0x3c0/0x3c0 [ 165.221996] ? mutex_unlock+0xd/0x10 [ 165.225698] ? kernfs_activate+0x21a/0x2c0 [ 165.229918] ? kernfs_walk_and_get_ns+0x340/0x340 [ 165.234748] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 165.240284] ? kernfs_link_sibling+0x1d2/0x3b0 [ 165.244864] kernfs_new_node+0x80/0xf0 [ 165.248740] __kernfs_create_file+0x4d/0x330 [ 165.253137] sysfs_add_file_mode_ns+0x21a/0x560 [ 165.257794] internal_create_group+0x26d/0x9e0 [ 165.262378] sysfs_create_group+0x1f/0x30 [ 165.266528] lo_ioctl+0x1307/0x1d70 [ 165.270152] ? lo_rw_aio_complete+0x450/0x450 [ 165.274632] blkdev_ioctl+0x9cd/0x2030 [ 165.278503] ? lock_acquire+0x1e4/0x540 [ 165.282461] ? blkpg_ioctl+0xc40/0xc40 [ 165.286337] ? lock_release+0xa30/0xa30 [ 165.290307] ? save_stack+0xa9/0xd0 [ 165.293919] ? save_stack+0x43/0xd0 [ 165.297530] ? __fget+0x4d5/0x740 [ 165.300966] ? ksys_dup3+0x690/0x690 [ 165.304661] ? do_raw_spin_trylock+0x1c0/0x1c0 [ 165.309247] ? kasan_check_write+0x14/0x20 [ 165.313463] ? do_raw_spin_lock+0xc1/0x200 [ 165.317681] block_ioctl+0xee/0x130 [ 165.321289] ? blkdev_fallocate+0x400/0x400 [ 165.325593] do_vfs_ioctl+0x1de/0x1720 [ 165.329462] ? ioctl_preallocate+0x300/0x300 [ 165.333865] ? __fget_light+0x2f7/0x440 [ 165.338399] ? fget_raw+0x20/0x20 [ 165.341840] ? trace_hardirqs_on+0xd/0x10 [ 165.345972] ? kmem_cache_free+0x22e/0x2d0 [ 165.350207] ? putname+0xf7/0x130 [ 165.353645] ? do_sys_open+0x3cb/0x720 [ 165.357529] ? security_file_ioctl+0x94/0xc0 [ 165.361933] ksys_ioctl+0xa9/0xd0 [ 165.365373] __x64_sys_ioctl+0x73/0xb0 [ 165.369246] do_syscall_64+0x1b9/0x820 [ 165.373119] ? finish_task_switch+0x1d3/0x870 [ 165.377600] ? syscall_return_slowpath+0x5e0/0x5e0 [ 165.382514] ? syscall_return_slowpath+0x31d/0x5e0 [ 165.387426] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 165.392423] ? prepare_exit_to_usermode+0x291/0x3b0 [ 165.397423] ? perf_trace_sys_enter+0xb10/0xb10 [ 165.402080] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 165.406911] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 165.412087] RIP: 0033:0x455927 [ 165.415256] Code: 48 83 c4 08 48 89 d8 5b 5d c3 66 0f 1f 84 00 00 00 00 00 48 89 e8 48 f7 d8 48 39 c3 0f 92 c0 eb 92 66 90 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 7d bb fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 165.434428] RSP: 002b:00007fb8b6388a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 165.442133] RAX: ffffffffffffffda RBX: 00000000200003a8 RCX: 0000000000455927 [ 165.449385] RDX: 0000000000000014 RSI: 0000000000004c00 RDI: 0000000000000015 [ 165.456637] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a 09:05:54 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)) 09:05:54 executing program 4: [ 165.463891] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000014 [ 165.471156] R13: 0000000000000001 R14: 00000000004d3de0 R15: 0000000000000010 09:05:55 executing program 2 (fault-call:1 fault-nth:17): syz_mount_image$vfat(&(0x7f0000000180)='vfat\x00', &(0x7f0000000080)='./file0/file0\x00', 0x0, 0x0, &(0x7f0000001580), 0x0, &(0x7f0000000340)={[{@shortname_win95='shortname=win95', 0x2c}]}) syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f0000000100)='./file0\x00', 0xe004, 0x1, &(0x7f0000000380)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020401000200027000f8", 0x16}], 0x0, &(0x7f0000000340)=ANY=[]) 09:05:55 executing program 1: 09:05:55 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={"6c6f000600", {0x2}}) 09:05:55 executing program 6: 09:05:55 executing program 5: 09:05:55 executing program 4: 09:05:55 executing program 0: r0 = socket(0xa, 0x1, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000440)={'veth0_to_bridge\x00', 0x0}) sendmsg$nl_route(r1, &(0x7f0000000180)={&(0x7f0000000000)={0x10}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)=@setlink={0x28, 0x13, 0xf2f, 0x0, 0x0, {0x0, 0x0, 0x0, r2}, [@IFLA_VFINFO_LIST={0x8, 0x16, [{0x4, 0x1}]}]}, 0x28}, 0x1}, 0x0) 09:05:55 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)) 09:05:55 executing program 1: perf_event_open(&(0x7f000001d000)={0x200000002, 0x70, 0x6, 0x108000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000080)="2f65786500000000000409004bddd9de91be10eebf000ee9a90f798058439ed554fa07424ada75af1f02acc7edbcd7a071fb35331ce39c5a00000000") fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f00000002c0)="2f0409004bddd9de91be10eebf000ee9a90f798058439ed554af1f02acc7edbcd7a071fb35331ce39c5a0000000000000000080000000000000000000aaad955a3c93f9d248b46a7c99eb35b406bf918ff01739e56187b2db8f1074424745271062042fb3808186e0a837132f9108c583073a4ca94b3e4e58717fe2b659fa3903c7b73bd66b83f5ecc0a7361257896883f1b43ff4ec0a1e336b92f705461af0b60825a7834ffd0a7339d85c51b8db7b4c0e4f40953dd2d9f2110f04c9fdf8489eaa996", 0xc3, 0x0) 09:05:55 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)) 09:05:55 executing program 6: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") mmap$xdp(&(0x7f0000002000/0x1000)=nil, 0x1000, 0x0, 0x9c1644c867048cb1, 0xffffffffffffffff, 0x0) [ 165.646188] FAULT_INJECTION: forcing a failure. [ 165.646188] name failslab, interval 1, probability 0, space 0, times 0 [ 165.657633] CPU: 1 PID: 11607 Comm: syz-executor2 Not tainted 4.18.0-rc5-next-20180720+ #12 [ 165.666217] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 165.675607] Call Trace: [ 165.678212] dump_stack+0x1c9/0x2b4 [ 165.681854] ? dump_stack_print_info.cold.2+0x52/0x52 [ 165.687064] ? radix_tree_iter_tag_clear+0x97/0xd0 [ 165.692003] ? radix_tree_iter_replace+0x49/0x60 [ 165.696762] should_fail.cold.4+0xa/0x11 [ 165.700820] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 165.705917] ? kasan_check_write+0x14/0x20 [ 165.710233] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 165.715155] ? lock_downgrade+0x8f0/0x8f0 [ 165.719298] ? wait_for_completion+0x8d0/0x8d0 [ 165.723867] ? kasan_check_read+0x11/0x20 [ 165.727998] ? do_raw_spin_unlock+0xa7/0x2f0 [ 165.732395] ? kasan_check_write+0x14/0x20 [ 165.736616] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 165.741530] ? kasan_check_write+0x14/0x20 [ 165.746190] ? wait_for_completion+0x8d0/0x8d0 [ 165.750769] ? kasan_check_write+0x14/0x20 [ 165.754988] ? __kernfs_new_node+0x426/0x5a0 [ 165.759386] ? lock_acquire+0x1e4/0x540 [ 165.763345] ? fs_reclaim_acquire+0x20/0x20 [ 165.767674] ? lock_downgrade+0x8f0/0x8f0 [ 165.771812] ? kernfs_walk_and_get_ns+0x340/0x340 [ 165.776653] ? check_same_owner+0x340/0x340 [ 165.780972] ? rcu_note_context_switch+0x730/0x730 [ 165.785901] __should_failslab+0x124/0x180 [ 165.790123] should_failslab+0x9/0x14 [ 165.793923] kmem_cache_alloc_trace+0x2cb/0x780 [ 165.798584] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 165.804136] ? sysfs_add_file_mode_ns+0x22c/0x560 [ 165.808970] ? sysfs_add_file_mode_ns+0x23c/0x560 [ 165.813804] ? device_create_file+0x1e0/0x1e0 [ 165.818301] kobject_uevent_env+0x20f/0x1110 [ 165.822708] ? internal_create_group+0x39a/0x9e0 [ 165.827451] kobject_uevent+0x1f/0x30 [ 165.831236] lo_ioctl+0x1385/0x1d70 [ 165.834853] ? lo_rw_aio_complete+0x450/0x450 [ 165.839519] blkdev_ioctl+0x9cd/0x2030 [ 165.843406] ? lock_acquire+0x1e4/0x540 [ 165.847366] ? blkpg_ioctl+0xc40/0xc40 [ 165.851239] ? lock_release+0xa30/0xa30 [ 165.855211] ? save_stack+0xa9/0xd0 [ 165.858821] ? save_stack+0x43/0xd0 [ 165.862431] ? __fget+0x4d5/0x740 [ 165.865884] ? ksys_dup3+0x690/0x690 [ 165.869579] ? do_raw_spin_trylock+0x1c0/0x1c0 [ 165.874147] ? kasan_check_write+0x14/0x20 [ 165.878376] ? do_raw_spin_lock+0xc1/0x200 [ 165.882598] block_ioctl+0xee/0x130 [ 165.886208] ? blkdev_fallocate+0x400/0x400 [ 165.890518] do_vfs_ioctl+0x1de/0x1720 [ 165.894389] ? ioctl_preallocate+0x300/0x300 [ 165.898791] ? __fget_light+0x2f7/0x440 [ 165.902747] ? fget_raw+0x20/0x20 [ 165.906184] ? trace_hardirqs_on+0xd/0x10 [ 165.910327] ? kmem_cache_free+0x22e/0x2d0 [ 165.914544] ? putname+0xf7/0x130 [ 165.917983] ? do_sys_open+0x3cb/0x720 [ 165.921858] ? security_file_ioctl+0x94/0xc0 [ 165.926260] ksys_ioctl+0xa9/0xd0 [ 165.929704] __x64_sys_ioctl+0x73/0xb0 [ 165.933585] do_syscall_64+0x1b9/0x820 [ 165.937457] ? finish_task_switch+0x1d3/0x870 [ 165.942807] ? syscall_return_slowpath+0x5e0/0x5e0 [ 165.947722] ? syscall_return_slowpath+0x31d/0x5e0 [ 165.952633] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 165.957633] ? prepare_exit_to_usermode+0x291/0x3b0 [ 165.962645] ? perf_trace_sys_enter+0xb10/0xb10 [ 165.967296] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 165.972125] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 165.977308] RIP: 0033:0x455927 09:05:55 executing program 5: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000040)={0x26, 'aead\x00', 0x0, 0x0, 'seqiv(rfc4106(gcm(aes)))\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000000)="78733976000898fcffff6054be13cfe62785ce10", 0x14) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg$alg(r1, &(0x7f0000000840)=[{0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f0000000400)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x0) write$binfmt_script(r1, &(0x7f0000000340)=ANY=[], 0x1b6) recvmmsg(r1, &(0x7f0000001280)=[{{&(0x7f0000000180)=@pptp={0x0, 0x0, {0x0, @loopback}}, 0x80, &(0x7f0000000200), 0x0, &(0x7f0000000240)=""/223, 0xdf}}, {{&(0x7f00000010c0)=@nfc, 0x80, &(0x7f0000001240)=[{&(0x7f0000001180)=""/161, 0xa1}], 0x1}}], 0x2, 0x0, &(0x7f0000001400)={0x0, 0x1c9c380}) 09:05:55 executing program 4: request_key(&(0x7f000000aff5)='asymmetric\x00', &(0x7f0000000140)={0x73, 0x79, 0x7a}, &(0x7f0000000080)='asymmetric\x00', 0x0) [ 165.980486] Code: 48 83 c4 08 48 89 d8 5b 5d c3 66 0f 1f 84 00 00 00 00 00 48 89 e8 48 f7 d8 48 39 c3 0f 92 c0 eb 92 66 90 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 7d bb fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 165.999650] RSP: 002b:00007fb8b6388a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 166.007341] RAX: ffffffffffffffda RBX: 00000000200003a8 RCX: 0000000000455927 [ 166.014592] RDX: 0000000000000014 RSI: 0000000000004c00 RDI: 0000000000000015 [ 166.021855] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 166.029121] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000014 [ 166.036557] R13: 0000000000000001 R14: 00000000004d3de0 R15: 0000000000000011 09:05:55 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={'lo\x00\x00\x00\x00\x00\x00\x00\x00@\x00', {0x2}}) 09:05:55 executing program 0: socketpair(0x1e, 0x1, 0x0, &(0x7f0000000140)={0x0, 0x0}) recvmmsg(r0, &(0x7f000000a580)=[{{&(0x7f0000007e40)=@nfc_llcp, 0x80, &(0x7f00000090c0)=[{&(0x7f00000080c0)=""/4096, 0x1000}], 0x1, &(0x7f0000009100)=""/240, 0xf0}}, {{0x0, 0x0, &(0x7f000000a440), 0x0, &(0x7f000000a480)=""/248, 0xf8}}], 0x2, 0x0, &(0x7f000000a780)={0x77359400}) recvmsg$kcm(r0, &(0x7f0000000200)={&(0x7f0000000040)=@ax25, 0x2, &(0x7f0000000000)=[{&(0x7f0000000080)=""/151, 0xffffff77}], 0x1, &(0x7f00000001c0)=""/17, 0xffda}, 0x0) sendmsg(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000001840)=[{&(0x7f0000001740)="c5", 0x1}], 0x1, &(0x7f0000000000)}, 0x0) 09:05:55 executing program 1: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000180)="025cc83d6d345f8f762070") r1 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x3}, 0x1c) 09:05:56 executing program 2 (fault-call:1 fault-nth:18): syz_mount_image$vfat(&(0x7f0000000180)='vfat\x00', &(0x7f0000000080)='./file0/file0\x00', 0x0, 0x0, &(0x7f0000001580), 0x0, &(0x7f0000000340)={[{@shortname_win95='shortname=win95', 0x2c}]}) syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f0000000100)='./file0\x00', 0xe004, 0x1, &(0x7f0000000380)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020401000200027000f8", 0x16}], 0x0, &(0x7f0000000340)=ANY=[]) 09:05:56 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)) 09:05:56 executing program 6: r0 = socket$inet6(0xa, 0x3, 0x82) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) bind$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @mcast1={0xff, 0x1, [], 0x1}}, 0x1a) 09:05:56 executing program 4: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000000)=[@textreal={0x8, &(0x7f00000005c0)="82780000260f017731f3d87e0b0f20e06635000020000f22e066b9800000c00f326635002000000f30640f02d766b8008000000f23d80f21f86635400000f00f23f8db13b85f078ee82e0f01cf"}], 0xaaaaaaaaaaaac60, 0x0, &(0x7f0000000100), 0x330) r1 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000180)={'veth0_to_bridge\x00', 0x0}) sendmsg$nl_route(r1, &(0x7f0000000100)={&(0x7f0000000080)={0x10}, 0xc, &(0x7f00000000c0)={&(0x7f00000005c0)=@setlink={0x28, 0x13, 0xf2f, 0x0, 0x0, {0x0, 0x0, 0x0, r2}, [@IFLA_OPERSTATE={0x8, 0x4}]}, 0xffffffffffffff70}, 0x1}, 0x0) 09:05:56 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={"6c6f00000000000000000200", {0x2}}) 09:05:56 executing program 5: r0 = inotify_init1(0x2000080000) r1 = syz_open_dev$dspn(&(0x7f0000000040)='/dev/dsp#\x00', 0x0, 0x0) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f0000000080)={0xd001, 0x10000}) fcntl$setown(r0, 0x8, 0xffffffffffffffff) fcntl$getownex(r0, 0x10, &(0x7f000045fff8)={0x0, 0x0}) ptrace$setopts(0x4206, r2, 0x0, 0x0) ptrace(0x4207, r2) sched_setparam(r2, &(0x7f0000000000)=0x9) epoll_ctl$EPOLL_CTL_DEL(r1, 0x2, r1) ptrace$setregs(0xf, r2, 0x0, &(0x7f0000000340)) 09:05:56 executing program 6: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) write$P9_RVERSION(r0, &(0x7f00000000c0)={0x15, 0x65, 0xffff, 0xa4, 0x8, '9P2000.u'}, 0x15) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f0000000040)={0x2, 0x0, [0x4000006e]}) 09:05:56 executing program 1: r0 = socket$inet6(0xa, 0x806, 0x0) ioctl(r0, 0x890f, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = getpid() sched_setattr(r1, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x0, 0x1}, 0x0) mkdir(&(0x7f0000000300)='./control\x00', 0x0) mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0xfffffffffffffffd, 0x20018, r0, 0x0) r2 = userfaultfd(0x80000) r3 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000240)='/dev/vcs\x00', 0x0, 0x0) r4 = syz_open_dev$usbmon(&(0x7f00000004c0)='/dev/usbmon#\x00', 0x4, 0x80) bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000440)={r3, r4, 0x6, 0x2}, 0x10) ioctl$UFFDIO_API(r2, 0xc018aa3f, &(0x7f0000000480)={0xaa}) mount(&(0x7f00000006c0)='./file0\x00', &(0x7f0000000680)='./file0\x00', &(0x7f0000000300)='ramfs\x00', 0x0, &(0x7f00000007c0)) unshare(0x8020000) r5 = syz_open_procfs$namespace(0x0, &(0x7f0000000140)='ns/mnt\x00') setns(r5, 0x0) clone(0x70024000, &(0x7f0000000180), &(0x7f0000000080), &(0x7f0000000000), &(0x7f0000000240)) mount(&(0x7f0000fb6000)='./file0\x00', &(0x7f0000d78000)='.', &(0x7f0000fdb000)='ubifs\x00', 0x0, 0x0) ioctl$UFFDIO_REGISTER(r2, 0xc020aa00, &(0x7f0000000200)={{&(0x7f0000011000/0x1000)=nil, 0x1000}, 0xfffffffffffffffd}) r6 = creat(&(0x7f0000000040)='./control/file1\x00', 0x0) write$sndseq(r6, &(0x7f0000000100)=[{0x0, 0x3, 0x0, 0x0, @time, {}, {0x0, 0x8000}, @time=@time={0x77359400}}], 0x30) fgetxattr(r6, &(0x7f0000000700)=ANY=[@ANYBLOB="5c347266732e6367864e5a3163a2f2ce7500081ec2694776637075736574002ec07642b1208e9a8794f80cc4ff461b27d8cb28146b4f3e5753db0989aa4165cd53ed5bf89a31b7bca7df74a39789c3c98abc3aeb0a8229ac03cad9e7acfeb396e1cfa665f63c7b8ec1d39a8f4e80ab7f67d72ab121e0f8"], &(0x7f0000000340)=""/197, 0xc5) ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r2, 0x4040534e, &(0x7f0000000140)={0x42, @tick=0x7269, 0x5, {0x6, 0x7}, 0x10001, 0x3, 0x3}) mkdir(&(0x7f0000000000)='./file0\x00', 0xfffdfffffffffffe) fchmod(r5, 0x20) ioctl$RTC_PIE_OFF(r4, 0x7006) unlink(&(0x7f00000000c0)='./control/file0\x00') rename(&(0x7f00000001c0)='./file0\x00', &(0x7f00000002c0)='./control\x00') mkdir(&(0x7f0000000080)='./control/file1\x00', 0x0) getsockopt$inet_tcp_buf(r3, 0x6, 0x1f, &(0x7f0000000500)=""/184, &(0x7f00000005c0)=0xb8) 09:05:56 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={"6c6f0000000000fffffdfd00", {0x2}}) 09:05:56 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)={{}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3f000000}) 09:05:56 executing program 4: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") pipe(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$TUNSETVNETHDRSZ(r1, 0x400454d8, &(0x7f0000000040)=0x5) perf_event_open(&(0x7f0000000140)={0x0, 0x70, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioprio_get$pid(0x1, 0x0) 09:05:56 executing program 5: mount(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='.', &(0x7f0000000000)='9p\x00', 0x0, 0x0) r0 = syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x8000, 0x0) ioctl$EVIOCGEFFECTS(r0, 0x80044584, &(0x7f0000000100)=""/2) [ 166.275311] kvm [11670]: vcpu0, guest rIP: 0xfff0 Hyper-V uhandled wrmsr: 0x4000006e data 0x0 [ 166.327896] 9pnet_virtio: no channels available for device ./file0 [ 166.328085] FAULT_INJECTION: forcing a failure. [ 166.328085] name failslab, interval 1, probability 0, space 0, times 0 [ 166.341297] 9pnet_virtio: no channels available for device ./file0 [ 166.345534] CPU: 0 PID: 11680 Comm: syz-executor2 Not tainted 4.18.0-rc5-next-20180720+ #12 [ 166.345549] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 166.369683] Call Trace: [ 166.372306] dump_stack+0x1c9/0x2b4 09:05:56 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)={{}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000}) 09:05:56 executing program 5: r0 = openat$vnet(0xffffffffffffff9c, &(0x7f00000005c0)='/dev/vhost-net\x00', 0x2, 0x0) ioctl$VHOST_SET_FEATURES(r0, 0x4008af00, &(0x7f0000e4e000)=0x200000000) write$vnet(r0, &(0x7f00000003c0)={0x1, {&(0x7f00000002c0)=""/207, 0xcf, &(0x7f0000000100)=""/50, 0x0, 0x2402}}, 0x68) write$vnet(r0, &(0x7f0000a8d000)={0x1, {&(0x7f0000000000)=""/24, 0xffffffc7, &(0x7f0000b4cf9b)=""/101, 0x0, 0x2}}, 0x68) write$vnet(r0, &(0x7f0000000140)={0x1, {&(0x7f00000000c0)=""/28, 0x1c, &(0x7f0000000040)=""/73, 0x0, 0x3}}, 0x68) [ 166.375948] ? dump_stack_print_info.cold.2+0x52/0x52 [ 166.381144] ? is_bpf_text_address+0xd7/0x170 [ 166.385652] should_fail.cold.4+0xa/0x11 [ 166.389728] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 166.394841] ? save_stack+0xa9/0xd0 [ 166.398471] ? save_stack+0x43/0xd0 [ 166.402100] ? kasan_kmalloc+0xc4/0xe0 [ 166.405996] ? kmem_cache_alloc_trace+0x152/0x780 [ 166.410846] ? kobject_uevent_env+0x20f/0x1110 [ 166.415438] ? kobject_uevent+0x1f/0x30 [ 166.419420] ? lo_ioctl+0x1385/0x1d70 [ 166.423226] ? blkdev_ioctl+0x9cd/0x2030 [ 166.427291] ? block_ioctl+0xee/0x130 [ 166.431097] ? do_vfs_ioctl+0x1de/0x1720 [ 166.435165] ? ksys_ioctl+0xa9/0xd0 [ 166.438792] ? __x64_sys_ioctl+0x73/0xb0 [ 166.442856] ? do_syscall_64+0x1b9/0x820 [ 166.446926] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 166.452300] ? kasan_check_write+0x14/0x20 [ 166.456547] ? lock_acquire+0x1e4/0x540 [ 166.460529] ? fs_reclaim_acquire+0x20/0x20 [ 166.465035] ? lock_downgrade+0x8f0/0x8f0 [ 166.469196] ? check_same_owner+0x340/0x340 [ 166.473530] ? lock_release+0xa30/0xa30 [ 166.477511] ? rcu_note_context_switch+0x730/0x730 [ 166.482450] __should_failslab+0x124/0x180 [ 166.486694] should_failslab+0x9/0x14 [ 166.490511] __kmalloc+0x2c8/0x760 [ 166.494060] ? kobject_get_path+0xc2/0x1a0 [ 166.498294] kobject_get_path+0xc2/0x1a0 [ 166.502369] kobject_uevent_env+0x234/0x1110 [ 166.506791] ? internal_create_group+0x39a/0x9e0 [ 166.511550] kobject_uevent+0x1f/0x30 [ 166.515337] lo_ioctl+0x1385/0x1d70 [ 166.518963] ? lo_rw_aio_complete+0x450/0x450 [ 166.523454] blkdev_ioctl+0x9cd/0x2030 [ 166.527326] ? lock_acquire+0x1e4/0x540 [ 166.531282] ? blkpg_ioctl+0xc40/0xc40 [ 166.535162] ? lock_release+0xa30/0xa30 [ 166.539128] ? save_stack+0xa9/0xd0 [ 166.542758] ? save_stack+0x43/0xd0 [ 166.546375] ? __fget+0x4d5/0x740 [ 166.549823] ? ksys_dup3+0x690/0x690 [ 166.553527] ? do_raw_spin_trylock+0x1c0/0x1c0 [ 166.558096] ? kasan_check_write+0x14/0x20 [ 166.562312] ? do_raw_spin_lock+0xc1/0x200 [ 166.566531] block_ioctl+0xee/0x130 [ 166.570810] ? blkdev_fallocate+0x400/0x400 [ 166.575133] do_vfs_ioctl+0x1de/0x1720 [ 166.579013] ? ioctl_preallocate+0x300/0x300 [ 166.583426] ? __fget_light+0x2f7/0x440 [ 166.587389] ? fget_raw+0x20/0x20 [ 166.590837] ? trace_hardirqs_on+0xd/0x10 [ 166.594968] ? kmem_cache_free+0x22e/0x2d0 [ 166.599184] ? putname+0xf7/0x130 [ 166.602617] ? do_sys_open+0x3cb/0x720 [ 166.606489] ? security_file_ioctl+0x94/0xc0 [ 166.610878] ksys_ioctl+0xa9/0xd0 [ 166.614327] __x64_sys_ioctl+0x73/0xb0 [ 166.618198] do_syscall_64+0x1b9/0x820 [ 166.622069] ? syscall_return_slowpath+0x5e0/0x5e0 [ 166.626983] ? syscall_return_slowpath+0x31d/0x5e0 [ 166.631903] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 166.636915] ? prepare_exit_to_usermode+0x291/0x3b0 [ 166.641916] ? perf_trace_sys_enter+0xb10/0xb10 [ 166.646580] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 166.651428] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 166.656600] RIP: 0033:0x455927 [ 166.659770] Code: 48 83 c4 08 48 89 d8 5b 5d c3 66 0f 1f 84 00 00 00 00 00 48 89 e8 48 f7 d8 48 39 c3 0f 92 c0 eb 92 66 90 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 7d bb fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 166.678902] RSP: 002b:00007fb8b6388a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 166.686595] RAX: ffffffffffffffda RBX: 00000000200003a8 RCX: 0000000000455927 [ 166.693865] RDX: 0000000000000014 RSI: 0000000000004c00 RDI: 0000000000000015 [ 166.701214] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 166.708485] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000014 [ 166.715739] R13: 0000000000000001 R14: 00000000004d3de0 R15: 0000000000000012 [ 166.727228] kvm [11670]: vcpu0, guest rIP: 0xfff0 Hyper-V uhandled wrmsr: 0x4000006e data 0x0 [ 166.744423] IPVS: ftp: loaded support on port[0] = 21 [ 166.829983] IPVS: ftp: loaded support on port[0] = 21 09:05:56 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x20000000000, 0x0) r1 = syz_open_dev$admmidi(&(0x7f0000000180)='/dev/admmidi#\x00', 0x5, 0x100) getsockopt$inet_sctp6_SCTP_CONTEXT(r1, 0x84, 0x11, &(0x7f0000000240)={0x0, 0x100}, &(0x7f00000002c0)=0x8) getsockopt$inet_sctp_SCTP_DELAYED_SACK(r1, 0x84, 0x10, &(0x7f0000000340)=@sack_info={r2, 0x6, 0x8001}, &(0x7f0000000380)=0xc) ioctl$BLKROSET(r1, 0x125d, &(0x7f00000004c0)=0x5) r3 = socket$inet6(0xa, 0x1000000000002, 0x0) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f0000000500)={{{@in=@loopback, @in=@broadcast, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6}, 0x0, @in6=@mcast1}}, &(0x7f0000000300)=0xe8) setsockopt$packet_drop_memb(r1, 0x107, 0x2, &(0x7f0000000480)={r4, 0x1, 0x6, @random="483f2dc0c826"}, 0x4) ioctl(r3, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") ioctl$SNDRV_CTL_IOCTL_PCM_NEXT_DEVICE(r1, 0x80045530, &(0x7f00000003c0)=""/58) ioctl$sock_SIOCSIFBR(r1, 0x8941, &(0x7f0000000400)=@generic={0x3, 0x3, 0x100000001}) ioctl$SG_IO(r0, 0x2285, &(0x7f00000001c0)={0x53, 0xffffffffffffffff, 0x21, 0x0, @buffer={0x0, 0x40, &(0x7f0000000000)=""/64}, &(0x7f0000000080)="9d6a966adae32ae00178f30e9f050392cdc46e1533569d6bcf76bca512fc45cd91", &(0x7f00000000c0)=""/93, 0x0, 0x0, 0x0, &(0x7f0000000140)}) 09:05:56 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)={{}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3f00}) 09:05:56 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={'lo\x00`\x00', {0x2}}) 09:05:56 executing program 4: pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) write$tun(r1, &(0x7f0000000000)=ANY=[@ANYBLOB], 0x1) write(r3, &(0x7f00000001c0), 0xfffffef3) preadv(r2, &(0x7f0000000040)=[{&(0x7f0000000000)=""/11, 0xb}], 0x1, 0x0) tee(r0, r3, 0x400ffffffff, 0x2) 09:05:56 executing program 5: r0 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={"76657468300000000000000000000001", 0x0}) chroot(&(0x7f00000000c0)='./file0\x00') sendmsg$nl_route_sched(r0, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000b80)=@newtaction={0x2348, 0x30, 0x301, 0x70bd2d, 0x25dfdbfb, {0x0, 0x896, 0x7}, [{0x8c, 0x1, @m_gact={0x88, 0x8, {{0xc, 0x1, 'gact\x00'}, {0x64, 0x2, [@TCA_GACT_PARMS={0x18, 0x2, {0x0, 0x9, 0x10000008, 0xab6c, 0x5}}, @TCA_GACT_PARMS={0x18, 0x2, {0x7ff, 0x6, 0x3, 0x400}}, @TCA_GACT_PROB={0xc, 0x3, {0x1, 0x1f90, 0x3}}, @TCA_GACT_PARMS={0x18, 0x2, {0x2, 0x646c1992, 0xe, 0x2, 0xa64}}, @TCA_GACT_PROB={0xc, 0x3, {0x3, 0x1174, 0x10000007}}]}, {0x10, 0x6, "36369252fc12140df1a97a"}}}}, {0x98, 0x1, @m_ife={0x94, 0x19, {{0x8, 0x1, 'ife\x00'}, {0x54, 0x2, [@TCA_IFE_DMAC={0xc, 0x3, @remote={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xbb}}, @TCA_IFE_METALST={0x44, 0x6, [@IFE_META_SKBMARK={0x8, 0x1, @val=0x2}, @IFE_META_SKBMARK={0x8, 0x1}, @IFE_META_PRIO={0x8, 0x3, @val=0x9}, @IFE_META_TCINDEX={0x8, 0x5, @val=0xffc}, @IFE_META_TCINDEX={0x4, 0x5, @void}, @IFE_META_TCINDEX={0x8, 0x5, @val=0x80000000}, @IFE_META_TCINDEX={0x4, 0x5, @void}, @IFE_META_TCINDEX={0x8, 0x5, @val=0x5}, @IFE_META_SKBMARK={0x8, 0x1, @val=0x6}]}]}, {0x30, 0x6, "bbf663f53eb697eeacd38cd8c26c3b839b95083d4d2647a532bd1fbb6b37159f31a9187c90a111f72d"}}}}, {0xf8, 0x1, @m_vlan={0xf4, 0x18, {{0xc, 0x1, 'vlan\x00'}, {0x30, 0x2, [@TCA_VLAN_PARMS={0x1c, 0x2, {{0xe8, 0x3, 0x10000005, 0x8, 0x8}, 0x3}}, @TCA_VLAN_PUSH_VLAN_PROTOCOL={0x8, 0x4, 0x89a8}, @TCA_VLAN_PUSH_VLAN_PRIORITY={0x8, 0x6, 0x2}]}, {0xb0, 0x6, "04af24383231cb8334766a35ba7085c3c06aa3b4241eeb3760bbe1f4af2473d542a2cbf71c18edbb1f7e67fbfbdb2499ced51f86400e47dfc4faa94a69f7afed64fa6460a3a211b445fa995d1f521c8ac581f6c43ecc8bf953fb03537b1d8b763a3838592bc1e1c2f2048097b106ee64d9550dae3e7b048b44d501b4df959a19e3f0539a12915790d1d13d13ce44960ca5da8912dae52f9be7ea65da102451f61953a70b59ba711f51"}}}}, {0x103c, 0x1, @m_csum={0x1038, 0xd, {{0xc, 0x1, 'csum\x00'}, {0x20, 0x2, @TCA_CSUM_PARMS={0x1c, 0x1, {{0x89, 0xe6, 0xffffffffffffffff, 0x40, 0x8}, 0x1a}}}, {0x1004, 0x6, "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"}}}}, {0xd28, 0x1, @m_police={0xd24, 0x0, {{0xc, 0x1, 'police\x00'}, {0xc88, 0x2, [@TCA_POLICE_PEAKRATE={0x404, 0x3, [0x1, 0x100000000, 0x7, 0xffffffff00000000, 0x92, 0x80, 0xb, 0x9, 0x6, 0xbe2, 0xffffffff, 0x4, 0x3, 0x9, 0x4, 0x5, 0x3, 0x7, 0x0, 0x32, 0x20, 0x7, 0x3, 0xfff, 0x80000000, 0x7, 0x124, 0x4, 0x8000, 0x3, 0x87, 0x8, 0x10000, 0xffffffffffffffff, 0x9, 0x9d5, 0x74a3f489, 0xceed, 0x100000001, 0x3f, 0x1f, 0x400, 0x4, 0x3, 0xfffffffffffffff9, 0x101, 0x269, 0x1, 0x81, 0x81, 0x84b, 0x1, 0x9, 0x7, 0x8, 0x5, 0x4, 0x0, 0x3, 0x0, 0x0, 0x100000000, 0x100000001, 0xffffffffffffff84, 0x6, 0x983, 0x5, 0x2, 0x7f, 0x8, 0x1f, 0x400, 0x0, 0x8, 0x3e7, 0x8, 0x9, 0x0, 0xfffffffffffffffd, 0x0, 0x9, 0x5c3, 0x40, 0x6, 0xffffffff, 0x8, 0x176, 0x5, 0x9, 0x2, 0x800, 0x4, 0x1, 0xc30, 0x81, 0x900000000000, 0x2, 0x7ff, 0x0, 0x3, 0x3, 0x0, 0x100000000, 0x6, 0xe437, 0x9, 0xf7, 0xfff, 0x1857, 0x2, 0x3, 0x9, 0x1, 0xfffffffffffff801, 0xd78, 0x3, 0x1, 0x0, 0x7, 0x80000001, 0x5, 0x5, 0xfffffffffffffff7, 0x3537c2a, 0x2, 0x3, 0x5, 0xffff, 0x7ebb5f4f, 0x9bf8, 0x9, 0x401, 0x1, 0x185, 0xfffffffffffffff8, 0x1, 0x8, 0x5, 0xf7, 0x101, 0x0, 0x2, 0x8, 0x2ef, 0x7fff, 0x3, 0x100000000, 0x3, 0x3f, 0x7, 0x8, 0x9, 0x9, 0x7, 0x75, 0x0, 0x2, 0x2, 0x9, 0x6, 0x5, 0x47, 0x0, 0x5, 0x5, 0x6, 0x0, 0x1ff, 0x3, 0x3, 0x400, 0x80, 0x6, 0x0, 0x4, 0xfffffffffffffff7, 0x5, 0x401, 0x6, 0x2, 0xffffffff, 0x3, 0x6d24c715, 0x7, 0x65a2, 0xfffffffffffffffe, 0x7fff, 0x6, 0x5, 0x4, 0x750, 0x6, 0xffffffffffffff00, 0x9d5, 0x1, 0x7fffffff, 0x38000000000000, 0x7, 0x7fff, 0x7, 0x80, 0x7fffffff, 0x2, 0x9, 0x7, 0x10001, 0x9, 0x3, 0xfffffffffffffff9, 0x2, 0x5, 0x2, 0x3, 0x8, 0x2e, 0x8, 0x4, 0x3db, 0x4090, 0x40, 0x8, 0x9, 0x1, 0x5, 0x7, 0x4, 0x8, 0x3, 0x10001, 0x8, 0x2, 0x4, 0x100, 0x5, 0x7fffffff, 0x6, 0x7fffffff, 0xfe59, 0x3, 0x7ff, 0x5, 0x4, 0x8, 0x100000000, 0x8, 0x9, 0x3ff, 0x3ff, 0x7ff, 0x9, 0x3, 0x1f, 0x8, 0x7, 0x3, 0x5]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x9, 0x20000006, 0xb1a, 0x3bdd, 0x1, {0xfffffffeffffffff, 0x1, 0x2, 0x80000000, 0x9}, {0x1f, 0x2, 0x5, 0x100000000, 0x2d, 0x7ff}, 0xfffffffffffffff8, 0xddb6, 0x2}}, @TCA_POLICE_TBF={0x3c, 0x1, {0x20, 0x20000001, 0x414, 0x7, 0x0, {0x1, 0x0, 0x2, 0x240000000, 0x3fff800000000, 0x3}, {0x7, 0x0, 0x4, 0x5, 0x0, 0x2}, 0x8001, 0x348dfd12, 0x40}}, @TCA_POLICE_RATE={0x404, 0x2, [0x20, 0x8000, 0x432, 0x3f, 0x20, 0x80000000, 0x0, 0xffff, 0x9, 0x8, 0x3f, 0x100000001, 0x100000001, 0x7f, 0xfe, 0x6, 0x6, 0x2, 0x3ff, 0x8, 0x3, 0x1, 0xfffffffffffff801, 0x0, 0x4, 0x8484, 0x6, 0x20, 0x8, 0x4, 0x1, 0x8, 0x5, 0xc3, 0x80000001, 0x5, 0x2, 0x601, 0x5, 0x7, 0x2, 0x8, 0x0, 0x7fffffff, 0xf73d, 0x200, 0x9, 0xf1, 0x5, 0x10000, 0x4, 0x7f, 0x64, 0x80000001, 0x3ff, 0x673edbce, 0x56, 0x5d, 0x210, 0x4, 0x1, 0x5, 0x0, 0xcd3, 0x7fffffff, 0xfffffffffffffffa, 0x2, 0x0, 0x4, 0x3, 0x2c, 0x9, 0x9, 0x2, 0x3, 0x1, 0x6, 0x7ff, 0x7ff, 0x101, 0x7fffffff, 0x0, 0x7, 0x5, 0x3, 0xffffffff, 0xb0cb, 0x8, 0x24d4, 0x20, 0x5, 0x7ff, 0x8b, 0x6, 0x800, 0x8001, 0xffff, 0xed, 0x100000001, 0x96, 0x1, 0x0, 0x3, 0x9, 0x6a9, 0x3, 0x6ab, 0x6d, 0x8, 0xb379, 0x80000001, 0x97, 0xd3d, 0xffffffff, 0x4, 0x7, 0x2, 0x6, 0x1, 0x7d9000, 0x5, 0x200, 0x7, 0x7d, 0x1ff, 0x4, 0x81, 0x4, 0x5, 0x500000000000000, 0x6, 0xff, 0xffffffffffff8000, 0x3, 0x0, 0x4, 0x5, 0x7, 0x3f, 0x6, 0x8, 0x3, 0x7, 0x3, 0x656, 0x1, 0xffffffffffffff01, 0x7ff, 0x9, 0x0, 0x80000000, 0x2455, 0x2, 0x6, 0x7fffffff, 0x6d42, 0x1, 0x100, 0xea45, 0x8001, 0x0, 0x1ff, 0x61d, 0xffffffffffffffff, 0x100000001, 0x9, 0x7fffffff, 0x20000, 0x27, 0x1, 0x3, 0xc8, 0x80000000, 0x7, 0xe609, 0x100, 0xf4, 0xfff, 0x9, 0x7, 0x100000000, 0x100, 0x3, 0x6, 0x3ff, 0x4, 0x0, 0x51, 0x10000, 0x7fff, 0x0, 0x5, 0x9, 0x0, 0x97c0000, 0x1, 0x400, 0x1, 0x7fffffff, 0x7fff, 0x7dec, 0x5, 0x2, 0x0, 0x0, 0x80, 0xffffffffffffffff, 0x3, 0x0, 0x8000, 0x0, 0xb9, 0x6, 0x8, 0x9, 0x20a4d423, 0x8, 0x1, 0x2, 0xd634, 0x62ef, 0x3, 0x6, 0xffffffffffffffce, 0x109e, 0xed7, 0xe1b, 0x80000001, 0x2, 0x8, 0x4, 0x1, 0x2, 0xcfd, 0x4, 0x3, 0x6, 0x8, 0x9, 0x85, 0x5, 0x100, 0x3, 0x81, 0xe0, 0x1, 0x5fe, 0x4, 0x60a9, 0x8, 0x9, 0x2, 0x1000, 0x1, 0x2, 0x2]}, @TCA_POLICE_PEAKRATE={0x404, 0x3, [0x5, 0x7ff, 0xfff, 0x400, 0x3ff, 0x5, 0xff, 0x1, 0x96, 0x7, 0x5, 0x7, 0x8, 0x7f, 0x8, 0x8, 0x101, 0x101, 0xfff, 0x4, 0x4, 0x2d663b10, 0x2, 0x2, 0x3, 0x3cde, 0x7, 0x80, 0xcebd, 0x3, 0xa14ab84, 0xf9, 0x0, 0x7fff, 0x7, 0x7, 0x3ff, 0x7, 0x7, 0x7fff, 0x9, 0x7ed, 0x9, 0x2, 0x5, 0x1ff, 0x1, 0x401, 0xffffffffffffae00, 0x3ff, 0xe80d, 0x80000001, 0x778, 0xe1a, 0x5, 0xcf08, 0x0, 0x9, 0x100000001, 0x6, 0x1, 0x2, 0x7, 0x7, 0xfffffffffffffff9, 0xd561, 0x3b15b6e3, 0xfffffffffffffff8, 0x3c56d3b4, 0x1, 0x165d, 0x4, 0x7, 0x7f, 0x6, 0x6af, 0xb8d, 0xffff, 0x3, 0x3, 0x24, 0x3, 0x1, 0xf159, 0x9, 0x2, 0x401, 0x32164caf, 0x4, 0x1, 0x0, 0x0, 0x5, 0x6, 0x4, 0x3, 0x5, 0x7fff, 0x80000001, 0x100000000, 0xfffffffffffff7b8, 0x8, 0x10000, 0x5, 0xffff, 0x5, 0x3, 0x401, 0x8, 0x96, 0xf1ee, 0x3, 0x0, 0x7, 0x6ba, 0x4, 0x8fa, 0x8, 0x1f, 0x0, 0x707f66d2, 0x0, 0x1f, 0x1, 0x1, 0x9, 0x7, 0xfffffffffffffff8, 0x6, 0x4a2e, 0x20, 0x7, 0x401, 0x21, 0x100, 0x4, 0x2, 0x66, 0xeb, 0x10001, 0xfffffffffffff51c, 0x2, 0x8ab2, 0xffffffffffffffff, 0x4000, 0x6b, 0x4, 0xfe, 0x6, 0x100000001, 0x95, 0x1, 0x9, 0x3, 0x9, 0xffffffff80000001, 0x5, 0x100, 0x5, 0xff, 0x20, 0x8001, 0x7ff, 0x0, 0xfffffffffffff270, 0xfffffffffffffc00, 0x2, 0x32, 0xffffffffffffffff, 0x3, 0x401, 0x3ff, 0x4, 0x2, 0x8000, 0x7f, 0x3, 0x5, 0x3, 0x101, 0x7, 0x8, 0x9, 0x0, 0x2, 0x7, 0x9, 0x1, 0x0, 0x9, 0x9, 0x2, 0xa2c, 0x380, 0x2, 0x0, 0x1ff, 0x0, 0x37, 0x5, 0x6, 0xffffffffffffff81, 0x7, 0x800, 0xc5, 0x33b, 0x5, 0x7f, 0x7ff, 0x7, 0x8, 0x2d, 0x2, 0x7, 0x9, 0x7, 0x1, 0x9, 0xffffffffffff8001, 0x8, 0x0, 0x2, 0xff, 0xffffffff7fffffff, 0x28000000000, 0xe659, 0x6, 0x9, 0x8, 0x20, 0x1f, 0xfffffffffffffffa, 0x2, 0x1c, 0x6, 0x9, 0x10000, 0x10001, 0x6, 0x0, 0x9, 0x14020000000, 0x8, 0x4, 0x2, 0xc2, 0x2, 0xfffffffffffffc00, 0x0, 0x2, 0x29, 0x5, 0x5, 0x100, 0x2, 0x1]}]}, {0x88, 0x6, "78eecde6a36ce15dd34b9fcd57849f12752a732595fc10d8f9d5ae5e704937be5a3103c988ba54b65e8fc1e6076541718e221d773569d7215dc169ec742473764953d7133e166addf3b6f680ad03e1bb4ba484eb18b563cb9d56e5accd6b029174709834554cc039a5b36246bf2ea2b4d28d4e8e23ad6aafd137c925f18cc16c5c3c"}}}}, {0x4c, 0x1, @m_nat={0x48, 0xe, {{0x8, 0x1, 'nat\x00'}, {0x2c, 0x2, @TCA_NAT_PARMS={0x28, 0x1, {{0x5, 0x9, 0x7, 0x8, 0x7ff}, @loopback=0x7f000001, @loopback=0x7f000001, 0xffffffff, 0x1}}}, {0xc, 0x6, "6b84eddca27aee"}}}}, {0xe4, 0x1, @m_nat={0xe0, 0xb, {{0x8, 0x1, 'nat\x00'}, {0x2c, 0x2, @TCA_NAT_PARMS={0x28, 0x1, {{0x5, 0x0, 0x2000000e, 0xf56, 0x8}, @loopback=0x7f000001, @dev={0xac, 0x14, 0x14, 0x1d}, 0xff000000, 0x1}}}, {0xa4, 0x6, "7fac9900dbdb553f2b8d905b75f6e13b2a79aac979264d68a8b6a0dec7788052c7f65bfc8c601ad4a5c4dfd04619ec8d1ef00590c8f2bc2d19049755e12502dc28fe523913f83c8779d1ee55f9a55a333b134202441d0ee86e18cc1f624dc72a6edc8abaf73df6202e68cd65fc608d0e67af6bc3678ff3d6c5c0de7cf578ba7d5ccd8316ee0c0581c31ca6f9a144b054e481e817ae5711bafcc42ab28e"}}}}, {0x100, 0x1, @m_skbmod={0xfc, 0x2, {{0xc, 0x1, 'skbmod\x00'}, {0x30, 0x2, [@TCA_SKBMOD_SMAC={0xc, 0x4, @remote={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xbb}}, @TCA_SKBMOD_DMAC={0xc, 0x3, @random="4554118dfee5"}, @TCA_SKBMOD_ETYPE={0x8, 0x5, 0x7ff}, @TCA_SKBMOD_DMAC={0xc, 0x3, @broadcast=[0xff, 0xff, 0xff, 0xff, 0xff, 0xff]}]}, {0xb8, 0x6, "283608d5b8b9e2e10dcdb5aa6d0540973b069f83e53de9665547072b3582e314490c23aa9934ccc9ae9a6f6ff31ecb8526ad83aecffb01b7abf3278d26522f90b3b848e677885f730a2273e056a13841aa2f9fae18cf9d4c0f5a86e801ae1ebaee8883008abd5d413d4abdc99f0f8e841e58f34b582f3252335411d999c2dd3a38735bb105296af10f4ee079dd48a96652e55d421be442175653428f98f76fac0dec8f56d5a1b303f894a5bc2532e85f02a8"}}}}, {0x184, 0x1, @m_ife={0x180, 0xe, {{0x8, 0x1, 'ife\x00'}, {0xe4, 0x2, [@TCA_IFE_TYPE={0x8, 0x5, 0xff}, @TCA_IFE_METALST={0x28, 0x6, [@IFE_META_TCINDEX={0x4, 0x5, @void}, @IFE_META_PRIO={0x4, 0x3, @void}, @IFE_META_TCINDEX={0x8, 0x5, @val=0x47d}, @IFE_META_SKBMARK={0x4, 0x1, @void}, @IFE_META_SKBMARK={0x4, 0x1, @void}, @IFE_META_PRIO={0x4, 0x3, @void}, @IFE_META_PRIO={0x8, 0x3, @val=0x2}]}, @TCA_IFE_METALST={0x34, 0x6, [@IFE_META_SKBMARK={0x8, 0x1, @val=0x10001}, @IFE_META_TCINDEX={0x8, 0x5, @val=0x7}, @IFE_META_PRIO={0x8, 0x3, @val=0x3ff}, @IFE_META_SKBMARK={0x8, 0x1, @val=0xdf7d}, @IFE_META_PRIO={0x8, 0x3, @val=0xbd2}, @IFE_META_SKBMARK={0x4, 0x1, @void}, @IFE_META_PRIO={0x4, 0x3, @void}]}, @TCA_IFE_METALST={0xc, 0x6, [@IFE_META_PRIO={0x4, 0x3, @void}, @IFE_META_TCINDEX={0x4, 0x5, @void}]}, @TCA_IFE_SMAC={0xc, 0x4}, @TCA_IFE_PARMS={0x1c, 0x1, {{0x5, 0x2, 0x7, 0xffffffff, 0x2}}}, @TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x8, 0x10000000, 0x3, 0x1}}}, @TCA_IFE_METALST={0x2c, 0x6, [@IFE_META_TCINDEX={0x8, 0x5, @val=0x2}, @IFE_META_SKBMARK={0x4, 0x1, @void}, @IFE_META_SKBMARK={0x4, 0x1, @void}, @IFE_META_SKBMARK={0x4, 0x1, @void}, @IFE_META_TCINDEX={0x8, 0x5, @val=0x9}, @IFE_META_TCINDEX={0x4, 0x5, @void}, @IFE_META_SKBMARK={0x4, 0x1, @void}, @IFE_META_TCINDEX={0x4, 0x5, @void}]}]}, {0x8c, 0x6, "14267ef889e2a9412e3b9d6da8749e8d4d357eba12a139253339f8ff8c4192cb7115f8831c8de5ec63c298c95f6de10cba9c294cd4989889d3aa08ce8d6b2a7afc5480fe2919cc9fd6847a4f5f2b6dccaae39666cbfc28379448b43d5ff0f348d63b2318321c62ce3aa671f0646495b35d4d3ed3078c8a672faae7b0bfeb5099f842ff473411"}}}}]}, 0x2348}, 0x1, 0x0, 0x0, 0x4000}, 0x4000000) sendmsg$nl_route(r0, &(0x7f0000004300)={&(0x7f0000000180)={0x10}, 0xc, &(0x7f00000042c0)={&(0x7f0000000b40)=ANY=[@ANYBLOB="3800000010000100000000000000000000000000", @ANYRES32=r1, @ANYBLOB="00000000000000001800128d4b1c1a65e72abed89cfcf5b90010000100697036"], 0x3}, 0x1}, 0x40000) 09:05:56 executing program 2 (fault-call:1 fault-nth:19): syz_mount_image$vfat(&(0x7f0000000180)='vfat\x00', &(0x7f0000000080)='./file0/file0\x00', 0x0, 0x0, &(0x7f0000001580), 0x0, &(0x7f0000000340)={[{@shortname_win95='shortname=win95', 0x2c}]}) syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f0000000100)='./file0\x00', 0xe004, 0x1, &(0x7f0000000380)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020401000200027000f8", 0x16}], 0x0, &(0x7f0000000340)=ANY=[]) 09:05:56 executing program 6: r0 = socket$inet6(0xa, 0x1, 0x8010000000000084) bind$inet6(r0, &(0x7f0000ef8cfd)={0xa, 0x4e23, 0x0, @dev={0xfe, 0x80, [], 0xa}}, 0x1c) listen(r0, 0x80000000) r1 = accept4(r0, &(0x7f0000000340)=@alg, &(0x7f0000000040)=0x80, 0x0) r2 = socket$inet6_sctp(0xa, 0x1, 0x84) sendto$inet6(r2, &(0x7f0000000080)='X', 0x1, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback={0x0, 0x1}}, 0x1c) write$binfmt_misc(r2, &(0x7f0000000240)=ANY=[@ANYBLOB], 0x34000) sendto$unix(r1, &(0x7f0000000100)="de06cc789e9a979a213644", 0xb, 0x8050, 0x0, 0x0) write$binfmt_misc(r1, &(0x7f0000000000)={'syz1'}, 0x40e8) 09:05:56 executing program 1: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = socket$inet_udp(0x2, 0x2, 0x0) connect(r1, &(0x7f0000000080)=@in={0x2}, 0x80) r2 = syz_open_procfs(0x0, &(0x7f0000000340)='net/softnet_stat\x00') getsockopt$bt_rfcomm_RFCOMM_CONNINFO(r2, 0x12, 0x2, &(0x7f0000000000)=""/25, &(0x7f0000000100)=0x19) sendfile(r1, r2, &(0x7f0000000140)=0xffffffffffffffff, 0x40) 09:05:57 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={"6c6f00000000000000001f00", {0x2}}) 09:05:57 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)={{}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}) [ 167.171097] FAULT_INJECTION: forcing a failure. [ 167.171097] name failslab, interval 1, probability 0, space 0, times 0 [ 167.182460] CPU: 1 PID: 11732 Comm: syz-executor2 Not tainted 4.18.0-rc5-next-20180720+ #12 [ 167.190955] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 167.200320] Call Trace: [ 167.202945] dump_stack+0x1c9/0x2b4 [ 167.206591] ? dump_stack_print_info.cold.2+0x52/0x52 [ 167.211803] should_fail.cold.4+0xa/0x11 [ 167.216206] ? __kernel_text_address+0xd/0x40 09:05:57 executing program 0: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = epoll_create1(0x0) r2 = socket(0x1000000000008, 0x1, 0x3f) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r2, &(0x7f0000000000)) epoll_ctl$EPOLL_CTL_MOD(r1, 0x3, r2, &(0x7f00000000c0)={0x20000000}) 09:05:57 executing program 5: mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='fuse\x00', 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="6672a1", @ANYRESHEX=r0, @ANYBLOB="2c726f6f746d6f64653d30303030303030303030303030303030303034303030302c0b9965725f69643d", @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB=',allow_other,\x00']) read$FUSE(r0, &(0x7f0000001000), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000100)={0x50, 0x0, 0x1, {0x7, 0x1b}}, 0x50) mkdirat(0xffffffffffffff9c, &(0x7f0000000500)='./file0/file0\x00', 0x0) read$FUSE(r0, &(0x7f0000001000), 0x1000) write$FUSE_ENTRY(r0, &(0x7f0000002000)={0x90, 0x0, 0x2}, 0x90) read$FUSE(r0, &(0x7f0000001000), 0x1000) r1 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r1, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") write$FUSE_ENTRY(r0, &(0x7f0000003000)={0x90, 0x0, 0x3, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000}}}, 0x90) 09:05:57 executing program 1: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") pipe2$9p(&(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) fremovexattr(r2, &(0x7f0000000000)=@known='trusted.syz\x00') r3 = add_key$keyring(&(0x7f0000000040)='keyring\x00', &(0x7f0000000080)={0x73, 0x79, 0x7a, 0x0}, 0x0, 0x0, 0xfffffffffffffff9) keyctl$assume_authority(0x10, r3) r4 = open(&(0x7f0000000140)='./file1\x00', 0x400, 0x2) ioctl$BINDER_SET_CONTEXT_MGR(r4, 0x40046207, 0x0) mkdir(&(0x7f0000000300)='./file0\x00', 0x0) mount$9p_fd(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000340)='9p\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB='\x00\x00\x00\x00\x00\x00', @ANYRESHEX=r2, @ANYBLOB=',nodevmap,\x00']) ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f00000000c0)=0x0) setpriority(0x2, r5, 0x100000001) [ 167.220713] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 167.225933] ? __save_stack_trace+0x8d/0xf0 [ 167.230295] ? save_stack+0xa9/0xd0 [ 167.233930] ? save_stack+0x43/0xd0 [ 167.237568] ? kasan_kmalloc+0xc4/0xe0 [ 167.241466] ? kasan_slab_alloc+0x12/0x20 [ 167.245626] ? kmem_cache_alloc_node+0x144/0x780 [ 167.250387] ? __alloc_skb+0x119/0x770 [ 167.254630] ? alloc_uevent_skb+0x89/0x220 [ 167.258909] ? kobject_uevent_env+0x866/0x1110 [ 167.263497] ? kobject_uevent+0x1f/0x30 [ 167.267476] ? lo_ioctl+0x1385/0x1d70 09:05:57 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)={{}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}) [ 167.271284] ? blkdev_ioctl+0x9cd/0x2030 [ 167.275351] ? block_ioctl+0xee/0x130 [ 167.279163] ? do_vfs_ioctl+0x1de/0x1720 [ 167.283224] ? ksys_ioctl+0xa9/0xd0 [ 167.286859] ? do_syscall_64+0x1b9/0x820 [ 167.290930] ? lock_acquire+0x1e4/0x540 [ 167.294909] ? fs_reclaim_acquire+0x20/0x20 [ 167.299240] ? lock_downgrade+0x8f0/0x8f0 [ 167.303398] ? kasan_check_write+0x14/0x20 [ 167.307111] 9pnet: Insufficient options for proto=fd [ 167.307640] ? check_same_owner+0x340/0x340 [ 167.317048] ? lock_downgrade+0x8f0/0x8f0 09:05:57 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)={{}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff00000000}) 09:05:57 executing program 5: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc)) r1 = syz_open_pts(r0, 0x0) capset(&(0x7f0000000080)={0x19980330}, &(0x7f0000000240)) ioctl$TIOCCONS(r1, 0x541d) r2 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000000)='/dev/rfkill\x00', 0x2080, 0x0) ioctl$UFFDIO_REGISTER(r2, 0xc020aa00, &(0x7f0000000040)={{&(0x7f0000ffd000/0x2000)=nil, 0x2000}}) [ 167.321206] ? rcu_note_context_switch+0x730/0x730 [ 167.326141] __should_failslab+0x124/0x180 [ 167.330383] should_failslab+0x9/0x14 [ 167.334193] kmem_cache_alloc_node_trace+0x26f/0x770 [ 167.335459] 9pnet: Insufficient options for proto=fd [ 167.339292] ? kasan_kmalloc+0xc4/0xe0 [ 167.339312] __kmalloc_node_track_caller+0x33/0x70 [ 167.339329] __kmalloc_reserve.isra.41+0x3a/0xe0 [ 167.339342] __alloc_skb+0x155/0x770 [ 167.339361] ? netlink_has_listeners+0x2a6/0x4a0 [ 167.366563] ? skb_scrub_packet+0x490/0x490 09:05:57 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)={{}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3f00000000000000}) 09:05:57 executing program 1: r0 = socket$packet(0x11, 0x3, 0x300) ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000040)={"79616d01000117000000000200000300"}) r1 = accept$inet(0xffffffffffffff9c, &(0x7f0000000000)={0x0, 0x0, @remote}, &(0x7f00000000c0)=0x10) getsockopt$inet_sctp6_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000280)=@assoc_value={0x0, 0x1}, &(0x7f00000002c0)=0x8) socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r1, 0x84, 0x1f, &(0x7f0000000380)={r2, @in6={{0xa, 0x4e23, 0x0, @mcast1={0xff, 0x1, [], 0x1}, 0xbad}}, 0x3, 0x1}, 0x90) setsockopt$packet_buf(r0, 0x107, 0xf, &(0x7f0000000240)="9ff98c7a", 0x4) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) getsockopt$IPT_SO_GET_REVISION_MATCH(r3, 0x0, 0x42, &(0x7f00000004c0)={'TPROXY\x00'}, &(0x7f0000000500)=0x1e) r4 = openat(0xffffffffffffffff, &(0x7f0000000580)='./file0\x00', 0x0, 0x1b0) setsockopt$bt_BT_CHANNEL_POLICY(r4, 0x112, 0xa, &(0x7f00000005c0)=0x5, 0x4) ioctl$SNDRV_TIMER_IOCTL_START(r4, 0x54a0) getsockopt$inet_sctp_SCTP_GET_ASSOC_STATS(0xffffffffffffff9c, 0x84, 0x70, &(0x7f0000000100)={0x0, @in={{0x2}}}, &(0x7f0000000040)=0x100) ioctl$KVM_GET_XSAVE(r4, 0x9000aea4, &(0x7f0000000600)) r5 = dup2(r0, r3) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000300)={r5, 0x1, 0x1, 0x7, &(0x7f0000000200)=[0x0, 0x0, 0x0, 0x0], 0x4}, 0x20) setsockopt$inet_int(r5, 0x0, 0x14, &(0x7f0000000540)=0x5, 0x4) r6 = request_key(&(0x7f0000000340)='cifs.idmap\x00', &(0x7f0000000440)={0x73, 0x79, 0x7a, 0x1}, &(0x7f0000000480)='mime_typeselinux\x00', 0x0) keyctl$clear(0x7, r6) sendto$inet6(r3, &(0x7f0000000040), 0xfc87, 0x0, &(0x7f0000000080)={0xa, 0x0, 0x3, @dev={0xfe, 0x80}}, 0x1c) [ 167.370897] ? lock_release+0xa30/0xa30 [ 167.374880] ? pointer+0x990/0x990 [ 167.378429] ? device_get_devnode+0x2e0/0x2e0 [ 167.382955] ? kasan_unpoison_shadow+0x35/0x50 [ 167.387549] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 167.392574] ? netlink_has_listeners+0x2cf/0x4a0 [ 167.397338] ? netlink_tap_init_net+0x3e0/0x3e0 [ 167.402016] alloc_uevent_skb+0x89/0x220 [ 167.406091] kobject_uevent_env+0x866/0x1110 [ 167.410507] ? internal_create_group+0x39a/0x9e0 [ 167.415273] kobject_uevent+0x1f/0x30 09:05:57 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)={{}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000000000000}) [ 167.419079] lo_ioctl+0x1385/0x1d70 [ 167.422714] ? lo_rw_aio_complete+0x450/0x450 [ 167.427216] blkdev_ioctl+0x9cd/0x2030 [ 167.431106] ? lock_acquire+0x1e4/0x540 [ 167.435090] ? blkpg_ioctl+0xc40/0xc40 [ 167.438981] ? lock_release+0xa30/0xa30 [ 167.442960] ? save_stack+0xa9/0xd0 [ 167.446587] ? save_stack+0x43/0xd0 [ 167.450222] ? __fget+0x4d5/0x740 [ 167.453680] ? ksys_dup3+0x690/0x690 [ 167.457397] ? do_raw_spin_trylock+0x1c0/0x1c0 [ 167.461987] ? kasan_check_write+0x14/0x20 [ 167.466229] ? do_raw_spin_lock+0xc1/0x200 [ 167.470490] block_ioctl+0xee/0x130 [ 167.474122] ? blkdev_fallocate+0x400/0x400 [ 167.478451] do_vfs_ioctl+0x1de/0x1720 [ 167.482375] ? ioctl_preallocate+0x300/0x300 [ 167.486805] ? __fget_light+0x2f7/0x440 [ 167.490782] ? fget_raw+0x20/0x20 [ 167.494228] ? trace_hardirqs_on+0xd/0x10 [ 167.498371] ? kmem_cache_free+0x22e/0x2d0 [ 167.502613] ? putname+0xf7/0x130 [ 167.506055] ? do_sys_open+0x3cb/0x720 [ 167.509942] ? security_file_ioctl+0x94/0xc0 [ 167.514335] ksys_ioctl+0xa9/0xd0 [ 167.517774] __x64_sys_ioctl+0x73/0xb0 [ 167.521655] do_syscall_64+0x1b9/0x820 [ 167.525550] ? finish_task_switch+0x1d3/0x870 [ 167.530039] ? syscall_return_slowpath+0x5e0/0x5e0 [ 167.534959] ? syscall_return_slowpath+0x31d/0x5e0 [ 167.539885] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 167.544898] ? prepare_exit_to_usermode+0x291/0x3b0 [ 167.549904] ? perf_trace_sys_enter+0xb10/0xb10 [ 167.554561] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 167.559394] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 167.564569] RIP: 0033:0x455927 [ 167.567753] Code: 48 83 c4 08 48 89 d8 5b 5d c3 66 0f 1f 84 00 00 00 00 00 48 89 e8 48 f7 d8 48 39 c3 0f 92 c0 eb 92 66 90 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 7d bb fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 167.586904] RSP: 002b:00007fb8b6388a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 167.594599] RAX: ffffffffffffffda RBX: 00000000200003a8 RCX: 0000000000455927 [ 167.601862] RDX: 0000000000000014 RSI: 0000000000004c00 RDI: 0000000000000015 [ 167.609118] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 167.616394] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000014 [ 167.623656] R13: 0000000000000001 R14: 00000000004d3de0 R15: 0000000000000013 09:05:57 executing program 4: syz_mount_image$vfat(&(0x7f0000000140)='vfat\x00', &(0x7f0000000100)='./file0\x00', 0x10001, 0x1, &(0x7f0000000040)=[{&(0x7f0000010000)="eb64c86d6b66732e66617400020441000500077008f8", 0x16}], 0x0, &(0x7f0000000240)=ANY=[]) r0 = open(&(0x7f00000001c0)='./file0/file0\x00', 0x3bffa, 0x0) io_setup(0x5, &(0x7f0000000080)=0x0) fcntl$setstatus(r0, 0x4, 0x6000) setsockopt$inet6_int(r0, 0x29, 0x34, &(0x7f0000000000)=0x9, 0x4) io_submit(r1, 0x1, &(0x7f0000000400)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f00000002c0)="80", 0x1}]) 09:05:57 executing program 5: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = dup(r0) ioctl$int_in(r1, 0x5452, &(0x7f0000000200)=0x6) ioctl$sock_bt_hidp_HIDPGETCONNINFO(r1, 0x800448d3, &(0x7f0000000000)={{0x3, 0xbdb0, 0x4377, 0xfffffffffffffffe, 0x6, 0x3ff}, 0xcb, 0x7fffffff, 0x0, 0x6, 0x7f, "883ab40812a0ab3ddfae1bc8fbb1a0351d9336eb2a0fd10be585af32387f7a795b7631c9a88f6cb2fc18a05e917681c10f3a7c8dd6780914c7eb1e55f063e888ed92615500911f0b925e41fe012a05454f8b32d1dac96d7742e333bb8657c2a23ccf6cc6dbc0eff82a082b8c181ab1fd21f62a3d06ddfbfa6f902133005045ce"}) sendto$inet6(r1, &(0x7f00000007c0), 0x0, 0x0, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @loopback={0x0, 0x1}}, 0x1c) 09:05:57 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)={{}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfeffffff00000000}) [ 168.107868] FAT-fs (loop4): Directory bread(block 128) failed [ 168.122591] FAT-fs (loop4): Directory bread(block 129) failed [ 168.138441] FAT-fs (loop4): Directory bread(block 130) failed 09:05:57 executing program 6: r0 = socket$inet6(0xa, 0x1000000000006, 0x3f) ioctl(r0, 0x8912, &(0x7f00000000c0)="025cc83d6d345f8f762070") ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000180)={'team0\x00'}) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ptmx\x00', 0x2, 0x0) writev(r1, &(0x7f0000003440)=[{&(0x7f0000000200)="681604810bf9fcffe352b28ef7e9f7d4363ee17901a6850e4ae33c2194e48d61da7263f1c233feafbc9f424f80f34c3e59763a766f63f65a8c5ef063370f487fbe302b7a68ad55c34c3afd8e5c0dfee3c3fe720232ffb27b75d8795446b648feb6903c1eeacdd8fd4c4002f2911dc7fb4e408ccdaeba7b87024901d7e6a2aac4ee3611ec9188215005e06f4cdb31c958ae5e13a9e058a0f9c773d668fe6afd6ae2470a417760376ff88272052872baf485c50023934860653afae3d24e721316", 0xc0}], 0x1) ioctl$TCSETS(r1, 0x40045431, &(0x7f00003b9fdc)) ioctl$TCSETSF(r1, 0x5404, &(0x7f0000000000)={0xfffffffffffffffe, 0x0, 0x0, 0x3}) r2 = syz_open_dev$adsp(&(0x7f00000002c0)='/dev/adsp#\x00', 0x101, 0x4002) ioctl$KVM_SET_ONE_REG(r2, 0x4010aeac, &(0x7f0000000380)={0x3}) syz_open_pts(r1, 0x0) r3 = socket$inet6(0xa, 0x6, 0x0) bind$inet6(r3, &(0x7f0000000140)={0xa, 0x4e23, 0x0, @loopback={0x0, 0x1}, 0xfb}, 0x65) sendfile(r3, r3, &(0x7f0000000000), 0x8000) listen(r3, 0x1000007ffe) socketpair$inet_sctp(0x2, 0x5, 0x84, &(0x7f00000005c0)={0xffffffffffffffff, 0xffffffffffffffff}) connect$inet(r4, &(0x7f0000000100)={0x2, 0x4e24, @local={0xac, 0x14, 0x14, 0xaa}}, 0x10) ioctl$sock_SIOCOUTQ(r3, 0x5411, &(0x7f0000000600)) socket$inet_dccp(0x2, 0x6, 0x0) r5 = socket$inet6(0xa, 0x3, 0x3a) personality(0xc) setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r5, 0x84, 0x20, &(0x7f0000000200)=0x400, 0x4) getsockopt$inet_sctp_SCTP_SOCKOPT_PEELOFF(r4, 0x84, 0x66, &(0x7f0000000040)={0x0, 0x3}, &(0x7f0000000240)=0x8) r7 = request_key(&(0x7f00000003c0)='asymmetric\x00', &(0x7f0000000400)={0x73, 0x79, 0x7a, 0x0}, &(0x7f0000000440)='@eth0system#proc\x00', 0xfffffffffffffffb) r8 = add_key$keyring(&(0x7f00000004c0)='keyring\x00', &(0x7f0000000500)={0x73, 0x79, 0x7a, 0x1}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$link(0x8, r7, r8) setsockopt$inet_sctp6_SCTP_CONTEXT(r3, 0x84, 0x11, &(0x7f0000000280)={r6, 0x3a82}, 0x8) r9 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x0, 0x0) setsockopt$inet6_int(r9, 0x29, 0xc8, &(0x7f00000007c0), 0x4) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r5, 0x29, 0xd2, &(0x7f0000000300)={{0xa, 0x4e23, 0x3, @local={0xfe, 0x80, [], 0xaa}, 0x1}, {0xa, 0x4e20, 0x1000, @mcast1={0xff, 0x1, [], 0x1}, 0x7d}, 0x0, [0xfffffffffffffe00, 0x9, 0x7, 0x7a1, 0x20, 0x3, 0x2, 0x8]}, 0x5c) setsockopt$inet6_MRT6_ADD_MFC(r5, 0x29, 0xc9, &(0x7f0000000180)={{0xa, 0x0, 0x0, @ipv4={[], [0xff, 0xff], @multicast1=0xe0000001}}, {0xa, 0x0, 0x0, @remote={0xfe, 0x80, [], 0xbb}}}, 0x3) 09:05:57 executing program 0: r0 = openat$cgroup_procs(0xffffffffffffff9c, &(0x7f0000000080)='tasks\x00', 0x2, 0x0) ioctl(r0, 0x1, &(0x7f00000000c0)="fb11e2041c693e7c479f4a193fdf5f18dce9fbd1363cb57fd8ee057a4d78801ebd502718a18af04de62a8b341c7bbfec24b5946605a328648fbe4c215f4ae23c52def0999103da0b6e996875227caf23be88c25e55d46b3c33cf277671615c9f4fd9d01c103c5759a1c30799db968413d1af21d135a896df207f6d7d0ed6ceb5a66c9fe2bcd61c648156") r1 = syz_open_dev$mice(&(0x7f00000002c0)='/dev/input/mice\x00', 0x0, 0xffffffffffffffff) r2 = fcntl$getown(r0, 0x9) ioctl$sock_SIOCSPGRP(r1, 0x8902, &(0x7f0000000280)=r2) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r3 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r3, &(0x7f0000000200)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x8}, 0x1c) r4 = syz_open_procfs(0x0, &(0x7f00000001c0)='net/ip6_mr_vif\x00') sendfile(r3, r4, &(0x7f0000000040), 0x800c) 09:05:57 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={'lo\x00\x00\x00\x00\x00\x00\x00\x00`\x00', {0x2}}) 09:05:58 executing program 2 (fault-call:1 fault-nth:20): syz_mount_image$vfat(&(0x7f0000000180)='vfat\x00', &(0x7f0000000080)='./file0/file0\x00', 0x0, 0x0, &(0x7f0000001580), 0x0, &(0x7f0000000340)={[{@shortname_win95='shortname=win95', 0x2c}]}) syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f0000000100)='./file0\x00', 0xe004, 0x1, &(0x7f0000000380)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020401000200027000f8", 0x16}], 0x0, &(0x7f0000000340)=ANY=[]) 09:05:58 executing program 1: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f0000000000)=[{0x8, 0xffffffff}], 0x1) fallocate(r0, 0x60, 0x1f, 0x9f) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = add_key$keyring(&(0x7f0000000100)='keyring\x00', &(0x7f00000000c0)={0x73, 0x79, 0x7a, 0x2}, 0x0, 0x0, 0xfffffffffffffffd) add_key$keyring(&(0x7f0000000200)='keyring\x00', &(0x7f0000000240)={0x73, 0x79, 0x7a, 0x2}, 0x0, 0x0, 0xfffffffffffffffd) r2 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000140)='/dev/qat_adf_ctl\x00', 0x880, 0x0) ioctl$VHOST_SET_VRING_NUM(r2, 0x4008af10, &(0x7f0000000180)={0x3, 0x1ff}) keyctl$restrict_keyring(0x1d, r1, &(0x7f00000002c0)='big_key\x00', &(0x7f00000001c0)='wlan0&\x00') socketpair$inet6_tcp(0xa, 0x1, 0x0, &(0x7f0000000300)) r3 = syz_open_dev$admmidi(&(0x7f0000000040)='/dev/admmidi#\x00', 0x8001, 0x0) ioctl$SNDRV_RAWMIDI_IOCTL_DROP(r3, 0x40045730, &(0x7f0000000080)=0x9) 09:05:58 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)={{}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfeffffff}) 09:05:58 executing program 5: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000040)=""/148, 0x94}], 0x1, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ip_mr_cache\x00') preadv(r1, &(0x7f0000000480), 0x10000000000002a1, 0x7ffff000) [ 168.153121] FAT-fs (loop4): Directory bread(block 131) failed [ 168.159137] FAT-fs (loop4): Directory bread(block 132) failed [ 168.165098] FAT-fs (loop4): Directory bread(block 133) failed [ 168.171045] FAT-fs (loop4): Directory bread(block 134) failed [ 168.177114] FAT-fs (loop4): Directory bread(block 135) failed [ 168.183165] FAT-fs (loop4): Directory bread(block 136) failed [ 168.189133] FAT-fs (loop4): Directory bread(block 137) failed [ 168.207920] QAT: Invalid ioctl [ 168.225269] QAT: Invalid ioctl [ 168.239381] FAULT_INJECTION: forcing a failure. [ 168.239381] name failslab, interval 1, probability 0, space 0, times 0 [ 168.250654] CPU: 0 PID: 11815 Comm: syz-executor2 Not tainted 4.18.0-rc5-next-20180720+ #12 [ 168.259150] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 168.268505] Call Trace: [ 168.271119] dump_stack+0x1c9/0x2b4 [ 168.274759] ? dump_stack_print_info.cold.2+0x52/0x52 [ 168.279958] ? lock_acquire+0x1e4/0x540 [ 168.283942] ? is_bpf_text_address+0xae/0x170 [ 168.288446] ? lock_downgrade+0x8f0/0x8f0 [ 168.292614] should_fail.cold.4+0xa/0x11 [ 168.296688] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 168.301797] ? rcu_cleanup_dead_rnp+0x200/0x200 09:05:58 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={"6c6f0000ffffff00", {0x2}}) 09:05:58 executing program 5: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)={"766574000000000000000000bd6800", 0x43732e5398416f1a}) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x0, 0x0) r2 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl$TUNSETGROUP(r0, 0x400454ce, 0x0) ioctl(r2, 0x8912, &(0x7f0000000100)="025cc83d6d345f8f762070") ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000180)={"766574000000000000000000bd6800", 0x43732e5398416f1b}) syz_open_dev$ndb(&(0x7f00000000c0)='/dev/nbd#\x00', 0x0, 0x40000) 09:05:58 executing program 0: r0 = syz_open_dev$sndctrl(&(0x7f000000a000)='/dev/snd/controlC#\x00', 0x0, 0x0) perf_event_open(&(0x7f0000001000)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000005000)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mprotect(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x8) ioctl$SNDRV_CTL_IOCTL_PVERSION(r0, 0xc4c85512, &(0x7f0000001000)) 09:05:58 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)={{}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3f00000000000000}) 09:05:58 executing program 1: munlock(&(0x7f0000fff000/0x1000)=nil, 0x1000) pipe2$9p(&(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$P9_RUNLINKAT(r1, &(0x7f0000000040)={0xffffffffffffffca, 0x4d}, 0x7) mkdir(&(0x7f0000000140)='./file0\x00', 0x0) mount$9p_fd(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000340)='9p\x00', 0x0, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u='version=9p2000.u', 0x2c}]}}) write$P9_RREADDIR(r1, &(0x7f0000000000)=ANY=[@ANYBLOB="2a00000029010000000000000000000000000000000000000000000000006c59fe700a735e6f5283378b5d4a339500000007002e2f66696c6530"], 0x2a) write$P9_RREADDIR(r1, &(0x7f00000004c0)={0x49, 0x29, 0x1, {0x0, [{{}, 0x0, 0x0, 0x7, './file0'}, {{}, 0x0, 0x0, 0x7, './file0'}]}}, 0x49) mount$9p_fd(0x0, &(0x7f0000000240)='./file0\x00', &(0x7f0000000180)='9p\x00', 0x0, &(0x7f00000001c0)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@access_client='access=client', 0x2c}]}}) mknodat(r0, &(0x7f0000000080)='./file0\x00', 0x8000, 0x7) [ 168.301840] attempt to access beyond end of device [ 168.306466] ? is_bpf_text_address+0xd7/0x170 [ 168.306484] ? kernel_text_address+0x79/0xf0 [ 168.306499] ? __kernel_text_address+0xd/0x40 [ 168.306515] ? unwind_get_return_address+0x61/0xa0 [ 168.311456] loop4: rw=2049, want=310, limit=128 [ 168.315922] ? __save_stack_trace+0x8d/0xf0 [ 168.315943] ? lock_acquire+0x1e4/0x540 [ 168.315961] ? fs_reclaim_acquire+0x20/0x20 [ 168.346996] ? lock_downgrade+0x8f0/0x8f0 [ 168.351150] ? __alloc_skb+0x155/0x770 09:05:58 executing program 0: r0 = socket$inet6(0xa, 0x1, 0x8010000000000084) bind$inet6(r0, &(0x7f0000ef8cfd)={0xa, 0x4e23, 0x0, @loopback={0x0, 0x1}}, 0x1c) listen(r0, 0xffffffffffffff7f) r1 = socket$inet6_sctp(0xa, 0x1, 0x84) sendto$inet6(r1, &(0x7f0000e33fe0)='X', 0x1, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback={0x0, 0x1}}, 0x1c) write$binfmt_misc(r1, &(0x7f0000000240)=ANY=[@ANYBLOB='\x00\x00\x00\x00'], 0x34000) r2 = accept4(r0, 0x0, &(0x7f0000000080), 0x0) setsockopt$inet6_opts(r1, 0x29, 0x37, &(0x7f0000000280)=ANY=[@ANYBLOB="000604030000000000000000000000000000ffff0000000000000000000000000000000000000001fe8000000000cffc5a0c2ab5f20c61fb68fe540d9fbf6c4f2b6fc2f17abf7c275be04baf922fc59694d7c94419cf324898d660dac15ab93a7935d959bd59e000356efdde2f932d59f96976b34539d327f859b839263f4ebf6fa59d3342c6d6035b617c9460e176cd043ec3bc465474782e3e89091318669601de5a51173292613d55a061dc6cfa39614f7aafbea9ead2d439a612549005577fe8f8101838e128da47ffc2555ed1821123e53f18ebb988dfabcc12a2bed3ad"], 0x38) r3 = dup(r0) write$P9_RREADLINK(r3, &(0x7f0000000000)={0x10, 0x17, 0x2, {0x7, './file0'}}, 0x10) r4 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r4, 0x8912, &(0x7f0000000100)="025cc83d6d345f8f762070") shutdown(r2, 0x1) [ 168.355039] ? check_same_owner+0x340/0x340 [ 168.359362] ? block_ioctl+0xee/0x130 [ 168.363168] ? do_vfs_ioctl+0x1de/0x1720 [ 168.367229] ? ksys_ioctl+0xa9/0xd0 [ 168.370857] ? rcu_note_context_switch+0x730/0x730 [ 168.375796] __should_failslab+0x124/0x180 [ 168.380036] should_failslab+0x9/0x14 [ 168.383838] kmem_cache_alloc+0x2af/0x760 [ 168.387991] ? lock_acquire+0x1e4/0x540 [ 168.391972] skb_clone+0x1be/0x500 [ 168.395521] ? refcount_add_not_zero_checked+0x2e0/0x330 [ 168.400979] ? skb_split+0x11f0/0x11f0 [ 168.404875] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 168.409893] ? netlink_trim+0x1ba/0x380 [ 168.413874] ? netlink_skb_destructor+0x210/0x210 [ 168.418726] netlink_broadcast_filtered+0x10b7/0x1620 [ 168.423931] ? __netlink_sendskb+0xd0/0xd0 [ 168.428175] ? pointer+0x990/0x990 [ 168.431723] ? device_get_devnode+0x2e0/0x2e0 [ 168.436223] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 168.441752] ? refcount_inc_not_zero_checked+0x1e5/0x2f0 [ 168.447186] ? refcount_add_not_zero_checked+0x330/0x330 [ 168.452620] ? netlink_has_listeners+0x2cf/0x4a0 [ 168.457358] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 168.462357] netlink_broadcast+0x3a/0x50 [ 168.466406] kobject_uevent_env+0x829/0x1110 [ 168.470802] ? internal_create_group+0x39a/0x9e0 [ 168.475555] kobject_uevent+0x1f/0x30 [ 168.479344] lo_ioctl+0x1385/0x1d70 [ 168.482957] ? lo_rw_aio_complete+0x450/0x450 [ 168.487439] blkdev_ioctl+0x9cd/0x2030 [ 168.491311] ? lock_acquire+0x1e4/0x540 [ 168.495287] ? blkpg_ioctl+0xc40/0xc40 [ 168.499163] ? lock_release+0xa30/0xa30 [ 168.503130] ? save_stack+0xa9/0xd0 [ 168.506740] ? save_stack+0x43/0xd0 [ 168.510355] ? __fget+0x4d5/0x740 [ 168.513795] ? ksys_dup3+0x690/0x690 [ 168.517493] ? do_raw_spin_trylock+0x1c0/0x1c0 [ 168.522074] ? kasan_check_write+0x14/0x20 [ 168.526299] ? do_raw_spin_lock+0xc1/0x200 [ 168.530518] block_ioctl+0xee/0x130 [ 168.534128] ? blkdev_fallocate+0x400/0x400 [ 168.538449] do_vfs_ioctl+0x1de/0x1720 [ 168.542332] ? ioctl_preallocate+0x300/0x300 [ 168.546735] ? __fget_light+0x2f7/0x440 [ 168.550700] ? fget_raw+0x20/0x20 [ 168.554148] ? trace_hardirqs_on+0xd/0x10 [ 168.558276] ? kmem_cache_free+0x22e/0x2d0 [ 168.562501] ? putname+0xf7/0x130 [ 168.565955] ? do_sys_open+0x3cb/0x720 [ 168.570403] ? security_file_ioctl+0x94/0xc0 [ 168.574812] ksys_ioctl+0xa9/0xd0 [ 168.578247] __x64_sys_ioctl+0x73/0xb0 [ 168.582126] do_syscall_64+0x1b9/0x820 [ 168.586005] ? finish_task_switch+0x1d3/0x870 [ 168.590501] ? syscall_return_slowpath+0x5e0/0x5e0 [ 168.595435] ? syscall_return_slowpath+0x31d/0x5e0 [ 168.600347] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 168.605357] ? prepare_exit_to_usermode+0x291/0x3b0 [ 168.610384] ? perf_trace_sys_enter+0xb10/0xb10 [ 168.615060] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 168.619895] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 168.625068] RIP: 0033:0x455927 [ 168.628236] Code: 48 83 c4 08 48 89 d8 5b 5d c3 66 0f 1f 84 00 00 00 00 00 48 89 e8 48 f7 d8 48 39 c3 0f 92 c0 eb 92 66 90 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 7d bb fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 168.648077] RSP: 002b:00007fb8b6388a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 168.655770] RAX: ffffffffffffffda RBX: 00000000200003a8 RCX: 0000000000455927 [ 168.663036] RDX: 0000000000000014 RSI: 0000000000004c00 RDI: 0000000000000015 [ 168.670313] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 168.677584] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000014 [ 168.684844] R13: 0000000000000001 R14: 00000000004d3de0 R15: 0000000000000014 09:05:58 executing program 4: rt_sigaction(0x400000000000007, &(0x7f0000000000)={0x40246f, {0xffffffbfffbff270}}, &(0x7f0000000380), 0x8, &(0x7f0000000100)) r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") mmap(&(0x7f0000000000/0x95c000)=nil, 0x95c000, 0x0, 0x44031, r0, 0x0) 09:05:58 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)={{}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfeffffff}) 09:05:58 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={"6c6f000000000200", {0x2}}) 09:05:58 executing program 6: r0 = memfd_create(&(0x7f0000002901)='dev ', 0x0) write(r0, &(0x7f0000000080)="16", 0x1) mmap(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x4, 0x20000000000001f, r0, 0xffffffffffffffff) perf_event_open(&(0x7f0000000fc5)={0x0, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 09:05:58 executing program 0: r0 = socket(0x1e, 0x805, 0x0) setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000040)=@req3={0x80000000}, 0xfeda) getsockopt$inet_sctp6_SCTP_PEER_AUTH_CHUNKS(r0, 0x84, 0x1a, &(0x7f0000000080)={0x0, 0x9c, "0be09bb571b8404d030e3a5042f5e57941c4a30103e90df1a55eb944d5cb49dbd8fa5da20519d38a62238b1d09ab133337a509554b9afd1249ddb5fed2dc7cfa4b556240182966b4f761f3787de5395b371035d9ef9986bbe098ca814329e03449226642d5ec2e4a0ca7917fe7a051da1585163d55c4f1085c9368d7fc251f055f538c185182aac21d771f23ac0c983e4db757367895977c0551b262"}, &(0x7f0000000140)=0xa4) setsockopt$inet_sctp_SCTP_PR_SUPPORTED(r0, 0x84, 0x71, &(0x7f0000000180)={r1, 0x7}, 0x8) connect$can_bcm(r0, &(0x7f0000000000)={0x1d}, 0x10) 09:05:58 executing program 5: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = request_key(&(0x7f0000000040)='trusted\x00', &(0x7f00000000c0)={0x73, 0x79, 0x7a, 0x0}, &(0x7f0000000100)='/dev/sequencer2\x00', 0xfffffffffffffffc) keyctl$get_security(0x11, r1, &(0x7f0000000140)=""/70, 0x46) r2 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x0, 0x0) ioctl$TCSETSF(r2, 0x5111, &(0x7f0000000000)) 09:05:58 executing program 2 (fault-call:1 fault-nth:21): syz_mount_image$vfat(&(0x7f0000000180)='vfat\x00', &(0x7f0000000080)='./file0/file0\x00', 0x0, 0x0, &(0x7f0000001580), 0x0, &(0x7f0000000340)={[{@shortname_win95='shortname=win95', 0x2c}]}) syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f0000000100)='./file0\x00', 0xe004, 0x1, &(0x7f0000000380)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020401000200027000f8", 0x16}], 0x0, &(0x7f0000000340)=ANY=[]) 09:05:58 executing program 1: r0 = creat(&(0x7f0000001380)='./file0\x00', 0x0) ioctl$fiemap(r0, 0xc020660b, &(0x7f0000000000)=ANY=[@ANYBLOB="0000000000000000e90700000000000001b2b2f8388c44dd229c0000c239df00d62fd0556d9966d31cdea664b8ba3ecf26da956ee8d9001f154bc288c7d0233347940a7851d841b5553ad26cced80735dcaeac4a8242ff7f38a8b0ef05"]) 09:05:58 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={"6c6f000000000100", {0x2}}) 09:05:58 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)={{}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000}) 09:05:58 executing program 4: r0 = socket$inet(0x2, 0x80000, 0x7fffffff) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0, 0x32, 0xffffffffffffffff, 0x0) r1 = syz_open_dev$adsp(&(0x7f0000000000)='/dev/adsp#\x00', 0x7, 0x8140) getsockname$packet(r1, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @random}, &(0x7f0000000540)=0x14) ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f0000000580)={'vcan0\x00', r2}) epoll_ctl$EPOLL_CTL_DEL(r1, 0x2, r1) ioctl$KVM_DIRTY_TLB(r1, 0x4010aeaa, &(0x7f00000000c0)={0x7, 0x7}) connect(r1, &(0x7f0000000040)=@alg={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(aes)\x00'}, 0x80) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1) getsockopt$sock_cred(r0, 0x1, 0x37, &(0x7f0000002fc0), &(0x7f0000003000)=0xc) ioctl$KVM_GET_LAPIC(r1, 0x8400ae8e, &(0x7f0000000100)={"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"}) ioctl$RTC_PIE_ON(r1, 0x7005) [ 168.870310] FAULT_INJECTION: forcing a failure. [ 168.870310] name failslab, interval 1, probability 0, space 0, times 0 [ 168.882153] CPU: 1 PID: 11870 Comm: syz-executor2 Not tainted 4.18.0-rc5-next-20180720+ #12 [ 168.890651] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 168.900020] Call Trace: [ 168.902615] dump_stack+0x1c9/0x2b4 [ 168.906242] ? dump_stack_print_info.cold.2+0x52/0x52 [ 168.911520] ? lock_acquire+0x1e4/0x540 [ 168.915494] ? is_bpf_text_address+0xae/0x170 [ 168.919988] ? lock_downgrade+0x8f0/0x8f0 [ 168.924140] should_fail.cold.4+0xa/0x11 [ 168.928202] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 168.933403] ? rcu_cleanup_dead_rnp+0x200/0x200 [ 168.938080] ? is_bpf_text_address+0xd7/0x170 [ 168.942573] ? kernel_text_address+0x79/0xf0 [ 168.947039] ? __kernel_text_address+0xd/0x40 [ 168.951549] ? unwind_get_return_address+0x61/0xa0 [ 168.956490] ? __save_stack_trace+0x8d/0xf0 [ 168.960831] ? lock_acquire+0x1e4/0x540 [ 168.964820] ? fs_reclaim_acquire+0x20/0x20 09:05:58 executing program 1: perf_event_open(&(0x7f00000004c0)={0x2, 0x70, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sched_setaffinity(0x0, 0x7, &(0x7f00000000c0)) mkdir(&(0x7f00000001c0)='./file0\x00', 0x0) mount(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000380)='./file0\x00', &(0x7f0000000300)='cgroup2\x00', 0x0, 0x0) ioctl$sock_inet_SIOCGIFADDR(0xffffffffffffffff, 0x8915, &(0x7f0000000180)={'sit0\x00', {0x2, 0x0, @dev={0xac, 0x14, 0x14}}}) sched_setaffinity(0x0, 0x7, &(0x7f00000000c0)=0x9) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0x0, 0xffffffffffffffff, 0x0) stat(&(0x7f0000000400)='./file0\x00', &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) setregid(0x0, r0) rmdir(&(0x7f0000000240)='./file0//ile0\x00') syz_genetlink_get_family_id$team(&(0x7f0000000440)='team\x00') syz_mount_image$hfs(&(0x7f0000000200)='hfs\x00', &(0x7f0000000280)='./file0\x00', 0x1f, 0x1, &(0x7f00000002c0)=[{&(0x7f00000005c0)="560d2febf4f92d3c2e691adb365186dc430aa420cdd0c3bc499c4be18ecc8d7497460bc592344bc050b10d13f2cf763736846e4a5a0b4658a6130e2cf8cec55c9d13fb755a97958b731873dd330060735e16ddcca8a05a9d7a403184a8c1f29c4229c29f1b10e1aea2369625bede3f0d015b3a2f94696aaecccd01ea1da21b4c497e9021cfb04faa137a3f729d41b334a1852d0d86744e47088979e38534d0433dd250ce1902fcec8cb52f54c29f7fda67118f6e1a3ccc929f1a194f9bd43a6999f188500be2", 0xc6}], 0x800, &(0x7f00000006c0)={[{@file_umask={'file_umask', 0x3d, 0x8}, 0x2c}, {@quiet='quiet', 0x2c}, {@codepage={'codepage', 0x3d, 'iso8859-9'}, 0x2c}, {@iocharset={'iocharset', 0x3d, 'iso8859-6'}, 0x2c}]}) openat$rtc(0xffffffffffffff9c, &(0x7f0000000340)='/dev/rtc0\x00', 0x0, 0x0) accept4$packet(0xffffffffffffffff, &(0x7f0000001000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @remote}, &(0x7f0000001040)=0x14, 0x0) mkdir(&(0x7f0000000140)='./file0//ile0\x00', 0x0) ioprio_get$pid(0x0, 0x0) 09:05:58 executing program 6: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) r1 = syz_open_dev$admmidi(&(0x7f0000000040)='/dev/admmidi#\x00', 0xd2, 0x4000) getsockopt$bt_BT_POWER(r1, 0x112, 0x9, &(0x7f0000000080)=0x3, &(0x7f00000000c0)=0x1) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r2 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x3}, 0x4) getsockopt$packet_int(r2, 0x107, 0x15, &(0x7f0000004000), &(0x7f0000001ffc)=0x4) 09:05:58 executing program 4: r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/rfkill\x00', 0x8044000000201, 0x0) write$binfmt_elf32(r0, &(0x7f0000000000)=ANY=[@ANYBLOB="7f454c4600038a000000000000000075cbc6994e5bc3fe6cd7a5d9119d740000000000000000000d010000380000000000000000000000000500000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000"], 0x58) 09:05:58 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)={{}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}) [ 168.969156] ? lock_downgrade+0x8f0/0x8f0 [ 168.973319] ? __alloc_skb+0x155/0x770 [ 168.977217] ? check_same_owner+0x340/0x340 [ 168.981544] ? block_ioctl+0xee/0x130 [ 168.985344] ? do_vfs_ioctl+0x1de/0x1720 [ 168.989402] ? ksys_ioctl+0xa9/0xd0 [ 168.993030] ? rcu_note_context_switch+0x730/0x730 [ 168.997973] __should_failslab+0x124/0x180 [ 169.002212] should_failslab+0x9/0x14 [ 169.006015] kmem_cache_alloc+0x2af/0x760 [ 169.010165] ? lock_acquire+0x1e4/0x540 [ 169.014149] skb_clone+0x1be/0x500 09:05:58 executing program 0: r0 = syz_open_dev$sndtimer(&(0x7f0000000000)='/dev/snd/timer\x00', 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_SELECT(r0, 0x40345410, &(0x7f0000000040)={{0x1}}) r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='/dev/snd/timer\x00'}, 0x10) getsockopt$inet_sctp6_SCTP_PEER_AUTH_CHUNKS(0xffffffffffffff9c, 0x84, 0x1a, &(0x7f0000000a00)=ANY=[@ANYRES32=0x0, @ANYBLOB="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"], &(0x7f0000000100)=0xb0) setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r1, 0x84, 0x7b, &(0x7f0000000940)={r2, 0x10000}, 0x8) ioctl$FICLONE(r0, 0x40049409, r0) ioctl$SNDRV_TIMER_IOCTL_CONTINUE(r0, 0x54a2) ioctl$SNDRV_TIMER_IOCTL_PAUSE(r0, 0x54a3) ioctl$SNDRV_TIMER_IOCTL_CONTINUE(r0, 0x54a2) socket$vsock_dgram(0x28, 0x2, 0x0) mkdir(&(0x7f0000fd5ff8)='./file0\x00', 0x0) setsockopt$inet_sctp_SCTP_ADD_STREAMS(0xffffffffffffffff, 0x84, 0x79, &(0x7f0000000140)={0x0, 0x0, 0x79d}, 0x8) write$binfmt_aout(r0, &(0x7f0000000180)=ANY=[@ANYBLOB="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"], 0x6f0) ioctl$SNDRV_TIMER_IOCTL_CONTINUE(r0, 0x54a2) 09:05:58 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={"6c6f000400", {0x2}}) [ 169.017698] ? refcount_add_not_zero_checked+0x2e0/0x330 [ 169.023159] ? skb_split+0x11f0/0x11f0 [ 169.027068] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 169.032092] ? netlink_trim+0x1ba/0x380 [ 169.036079] ? netlink_skb_destructor+0x210/0x210 [ 169.040934] netlink_broadcast_filtered+0x10b7/0x1620 [ 169.046129] ? __netlink_sendskb+0xd0/0xd0 [ 169.050369] ? pointer+0x990/0x990 [ 169.053909] ? device_get_devnode+0x2e0/0x2e0 [ 169.058406] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 169.063946] ? refcount_inc_not_zero_checked+0x1e5/0x2f0 09:05:58 executing program 5: r0 = syz_open_dev$loop(&(0x7f0000000100)='/dev/loop#\x00', 0x0, 0x0) r1 = socket$inet6(0xa, 0x1, 0x0) r2 = dup(r0) ioctl$SNDRV_RAWMIDI_IOCTL_DRAIN(r2, 0x40045731, &(0x7f0000000000)=0x6) ioctl(r1, 0x4000008912, &(0x7f0000000040)="295ee1311f16f477671070") unshare(0x400) ioctl$BLKFRASET(r0, 0x1264, &(0x7f0000000080)) [ 169.069394] ? refcount_add_not_zero_checked+0x330/0x330 [ 169.074863] ? netlink_has_listeners+0x2cf/0x4a0 [ 169.079628] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 169.084653] netlink_broadcast+0x3a/0x50 [ 169.088722] kobject_uevent_env+0x829/0x1110 [ 169.093140] ? internal_create_group+0x39a/0x9e0 [ 169.097908] kobject_uevent+0x1f/0x30 [ 169.101717] lo_ioctl+0x1385/0x1d70 [ 169.105348] ? lo_rw_aio_complete+0x450/0x450 [ 169.109848] blkdev_ioctl+0x9cd/0x2030 [ 169.113739] ? lock_acquire+0x1e4/0x540 [ 169.117714] ? blkpg_ioctl+0xc40/0xc40 [ 169.121607] ? lock_release+0xa30/0xa30 [ 169.125591] ? save_stack+0xa9/0xd0 [ 169.129225] ? save_stack+0x43/0xd0 [ 169.132863] ? __fget+0x4d5/0x740 [ 169.136345] ? ksys_dup3+0x690/0x690 [ 169.140076] ? do_raw_spin_trylock+0x1c0/0x1c0 [ 169.144651] ? kasan_check_write+0x14/0x20 [ 169.148874] ? do_raw_spin_lock+0xc1/0x200 [ 169.153101] block_ioctl+0xee/0x130 [ 169.156714] ? blkdev_fallocate+0x400/0x400 [ 169.161026] do_vfs_ioctl+0x1de/0x1720 [ 169.164919] ? ioctl_preallocate+0x300/0x300 [ 169.169324] ? __fget_light+0x2f7/0x440 [ 169.173283] ? fget_raw+0x20/0x20 [ 169.176722] ? trace_hardirqs_on+0xd/0x10 [ 169.180856] ? kmem_cache_free+0x22e/0x2d0 [ 169.185087] ? putname+0xf7/0x130 [ 169.188526] ? do_sys_open+0x3cb/0x720 [ 169.192403] ? security_file_ioctl+0x94/0xc0 [ 169.196796] ksys_ioctl+0xa9/0xd0 [ 169.200236] __x64_sys_ioctl+0x73/0xb0 [ 169.204120] do_syscall_64+0x1b9/0x820 [ 169.208011] ? finish_task_switch+0x1d3/0x870 [ 169.212498] ? syscall_return_slowpath+0x5e0/0x5e0 [ 169.217416] ? syscall_return_slowpath+0x31d/0x5e0 [ 169.222344] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 169.227346] ? prepare_exit_to_usermode+0x291/0x3b0 [ 169.232348] ? perf_trace_sys_enter+0xb10/0xb10 [ 169.237026] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 169.241860] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 169.247034] RIP: 0033:0x455927 [ 169.250199] Code: 48 83 c4 08 48 89 d8 5b 5d c3 66 0f 1f 84 00 00 00 00 00 48 89 e8 48 f7 d8 48 39 c3 0f 92 c0 eb 92 66 90 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 7d bb fb ff c3 66 2e 0f 1f 84 00 00 00 00 09:05:59 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={"6c6f000000000000ffffff00", {0x2}}) [ 169.269365] RSP: 002b:00007fb8b6388a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 169.277059] RAX: ffffffffffffffda RBX: 00000000200003a8 RCX: 0000000000455927 [ 169.284314] RDX: 0000000000000014 RSI: 0000000000004c00 RDI: 0000000000000015 [ 169.291570] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 169.299530] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000014 [ 169.306786] R13: 0000000000000001 R14: 00000000004d3de0 R15: 0000000000000015 09:05:59 executing program 6: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) r1 = syz_open_dev$admmidi(&(0x7f0000000040)='/dev/admmidi#\x00', 0xd2, 0x4000) getsockopt$bt_BT_POWER(r1, 0x112, 0x9, &(0x7f0000000080)=0x3, &(0x7f00000000c0)=0x1) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r2 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x3}, 0x4) getsockopt$packet_int(r2, 0x107, 0x15, &(0x7f0000004000), &(0x7f0000001ffc)=0x4) 09:05:59 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)={{}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}) 09:05:59 executing program 5: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f00009f3fa8)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-twofish-3way\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f00003c1000)="0a0775b0d5e383e5b3b60ced5c54dbb7", 0x10) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg(r1, &(0x7f00000031c0)=[{{&(0x7f0000000140)=@can={0x1d}, 0x80, &(0x7f0000000780)=[{&(0x7f00000006c0)="1436430d48d97d3a32f6d8a3b38a641d2645315dde43a6bd599b18781b751695b1a8e759c119cf225c14fa707eba93bedb51b627eabdca612b078440427bed079dcfcc5fb24e11f19e50a4f3e3e2db8a3e9a1cebc4811c20f1e9425968cfa6a30aa224e202ee3bbea69d6a2611bad64f", 0x70}], 0x1, &(0x7f0000003640)=ANY=[]}}], 0x1, 0x48015) sendmsg$alg(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000040), 0x0, &(0x7f0000000000)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}, 0x0) recvmsg(r1, &(0x7f0000003580)={&(0x7f00000003c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @mcast1}}}, 0x80, &(0x7f00000034c0)=[{&(0x7f0000003440)=""/112, 0x200034b0}], 0x1, &(0x7f0000003500)=""/106, 0x6a}, 0x0) 09:05:59 executing program 2 (fault-call:1 fault-nth:22): syz_mount_image$vfat(&(0x7f0000000180)='vfat\x00', &(0x7f0000000080)='./file0/file0\x00', 0x0, 0x0, &(0x7f0000001580), 0x0, &(0x7f0000000340)={[{@shortname_win95='shortname=win95', 0x2c}]}) syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f0000000100)='./file0\x00', 0xe004, 0x1, &(0x7f0000000380)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020401000200027000f8", 0x16}], 0x0, &(0x7f0000000340)=ANY=[]) 09:05:59 executing program 4: r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000003000)='/dev/sequencer2\x00', 0x0, 0x0) ioctl$KVM_HYPERV_EVENTFD(r0, 0x4018aebd, &(0x7f0000000000)={0x1, r0}) ioctl$KDSKBLED(r0, 0x4b65, 0x83) ioctl$TIOCSCTTY(r0, 0x540e, 0x3) ioctl$KDGETMODE(r0, 0x4b3b, &(0x7f0000000100)) ioctl$KDGKBLED(r0, 0x4004510d, &(0x7f0000000040)) ioctl$ASHMEM_PURGE_ALL_CACHES(r0, 0x770a, 0x0) 09:05:59 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={"6c6f000000000000000100", {0x2}}) 09:05:59 executing program 0: r0 = socket(0x1e, 0x4, 0x0) setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000265000)=@req={0x3fc, 0x0, 0x0, 0xfffffffffffffffe}, 0x10) r1 = socket(0x0, 0x4, 0x6) setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000265000)=@req={0x3fc}, 0x10) r2 = dup3(r0, r1, 0x0) recvfrom(r2, &(0x7f0000000000)=""/247, 0xf7, 0x0, 0x0, 0x0) 09:05:59 executing program 6: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = eventfd(0xdd) r4 = eventfd(0x0) ioctl$KVM_IRQFD(r2, 0x4020ae76, &(0x7f00000015c0)={r4}) r5 = eventfd(0x0) ioctl$KVM_IRQFD(r2, 0x4020ae76, &(0x7f0000000180)={r5}) socket$kcm(0x29, 0x5, 0x0) ioctl$KVM_IRQFD(r2, 0x4020ae76, &(0x7f0000000000)={r3}) [ 169.478270] FAULT_INJECTION: forcing a failure. [ 169.478270] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 169.480135] irq bypass consumer (token 00000000cc19a5d8) registration fails: -16 [ 169.490142] CPU: 1 PID: 11922 Comm: syz-executor2 Not tainted 4.18.0-rc5-next-20180720+ #12 [ 169.490151] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 169.490155] Call Trace: [ 169.490177] dump_stack+0x1c9/0x2b4 [ 169.490197] ? dump_stack_print_info.cold.2+0x52/0x52 [ 169.523137] irq bypass consumer (token 00000000fae9f370) registration fails: -16 [ 169.526984] ? trace_hardirqs_off+0xd/0x10 [ 169.527004] should_fail.cold.4+0xa/0x11 [ 169.527021] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 169.527032] ? trace_hardirqs_off+0xd/0x10 [ 169.527046] ? wait_for_completion+0x8d0/0x8d0 [ 169.527059] ? __kasan_slab_free+0x131/0x170 [ 169.527080] ? trace_hardirqs_on+0x10/0x10 [ 169.565384] ? kobject_uevent_env+0x288/0x1110 [ 169.569958] ? internal_create_group+0x39a/0x9e0 [ 169.574701] ? mutex_unlock+0xd/0x10 [ 169.578401] ? lo_ioctl+0xe6/0x1d70 [ 169.582021] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 169.587629] ? should_fail+0x246/0xd86 [ 169.591513] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 169.596601] ? blkpg_ioctl+0xc40/0xc40 [ 169.600476] __alloc_pages_nodemask+0x36e/0xdb0 [ 169.605132] ? __alloc_pages_slowpath+0x2d00/0x2d00 [ 169.610130] ? save_stack+0xa9/0xd0 [ 169.613740] ? save_stack+0x43/0xd0 [ 169.617353] ? __fget+0x4d5/0x740 [ 169.620797] ? lock_acquire+0x1e4/0x540 [ 169.624766] ? fs_reclaim_acquire+0x20/0x20 [ 169.629074] ? lock_downgrade+0x8f0/0x8f0 [ 169.633220] ? lock_release+0xa30/0xa30 [ 169.637191] ? check_same_owner+0x340/0x340 [ 169.641511] cache_grow_begin+0x91/0x710 [ 169.645560] kmem_cache_alloc+0x689/0x760 [ 169.649694] ? fget_raw+0x20/0x20 [ 169.653145] getname_flags+0xd0/0x5a0 [ 169.656945] do_mkdirat+0xc5/0x310 [ 169.660482] ? __ia32_sys_mknod+0xb0/0xb0 [ 169.664638] ? fput+0x130/0x1a0 [ 169.667905] ? ksys_ioctl+0x81/0xd0 [ 169.671532] __x64_sys_mkdir+0x5c/0x80 [ 169.675408] do_syscall_64+0x1b9/0x820 [ 169.679281] ? finish_task_switch+0x1d3/0x870 [ 169.683773] ? syscall_return_slowpath+0x5e0/0x5e0 [ 169.688699] ? syscall_return_slowpath+0x31d/0x5e0 [ 169.693611] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 169.698610] ? prepare_exit_to_usermode+0x291/0x3b0 [ 169.703610] ? perf_trace_sys_enter+0xb10/0xb10 [ 169.708263] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 169.713095] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 169.718270] RIP: 0033:0x454ef7 [ 169.721449] Code: 1f 40 00 b8 5a 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 cd c5 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 ad c5 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 169.740618] RSP: 002b:00007fb8b6388a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 169.748313] RAX: ffffffffffffffda RBX: 00000000200003a8 RCX: 0000000000454ef7 [ 169.755586] RDX: 0000000000000014 RSI: 00000000000001ff RDI: 0000000020000100 [ 169.762839] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 169.770093] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000014 [ 169.777346] R13: 0000000000000001 R14: 00000000004d3de0 R15: 0000000000000016 [ 169.843496] hfs: can't find a HFS filesystem on dev loop1 [ 169.850027] hrtimer: interrupt took 24764 ns [ 169.934975] hfs: can't find a HFS filesystem on dev loop1 09:05:59 executing program 1: creat(&(0x7f0000000040)='./file0\x00', 0x120) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_X86_SET_MCE(r2, 0x4048ae9b, &(0x7f0000000140)={0xfffffdfd}) ioctl$KVM_GET_DEBUGREGS(r2, 0x8080aea1, &(0x7f0000000180)) ioctl$KVM_ASSIGN_DEV_IRQ(r1, 0x4040ae70, &(0x7f0000000000)={0x80000000, 0x2, 0xffffffff, 0x2}) 09:05:59 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)={{}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff00000000}) 09:05:59 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7ffffffffffb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) syz_genetlink_get_family_id$ipvs(&(0x7f00000000c0)='IPVS\x00') r3 = socket$inet6(0xa, 0x1, 0x0) ioctl(r3, 0x4000008912, &(0x7f0000000100)="295ee1311f16f477671070") mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x0) ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, &(0x7f00000000c0)={'veth1_to_bridge\x00', &(0x7f0000000140)=ANY=[]}) close(0xffffffffffffffff) close(0xffffffffffffffff) ioctl$KVM_GET_CLOCK(r2, 0x8030ae7c, &(0x7f00000001c0)) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000022000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000140)="b805000000b9008000000f01c1f080a4b000600000000fc3180f09c744240000000000c744240200080000c7442406000000000f0114240f08f3a5650f050f20da0f01cf", 0x44}], 0x1, 0x0, &(0x7f0000000380), 0x0) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) shutdown(0xffffffffffffffff, 0x0) memfd_create(&(0x7f0000000380)='veth1_to_bridge\x00', 0x1) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000280)={@in={{0x2, 0x0, @loopback=0x7f000001}}, 0x0, 0x2, 0x0, "a77760f5a7645bc43c241d69912dda0c63c2a66702000000000000007ba44947a79015f0fe57917c7c2a93987a938fdedfce7bbba4fec2d8a09c41fb233245f2604b9e07b8ab79ec15ef3818a17900"}, 0xd8) bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @multicast1=0xe0000001}, 0x10) setsockopt$sock_linger(r0, 0x1, 0xd, &(0x7f0000000040)={0x1, 0x7}, 0x8) sendto$inet(r0, &(0x7f0000a88f88), 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @loopback=0x7f000001}, 0x10) getsockopt$bt_hci(0xffffffffffffffff, 0x0, 0x0, &(0x7f00000000c0)=""/39, &(0x7f0000000140)=0x27) sendto$inet(r0, &(0x7f0000000000)="1b", 0x1, 0x8000, &(0x7f0000000100)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) close(r0) 09:05:59 executing program 0: r0 = socket$inet(0x2, 0x3, 0x2) r1 = syz_open_dev$dspn(&(0x7f0000005240)='/dev/dsp#\x00', 0x7, 0x200) recvfrom$llc(r1, &(0x7f0000005280)=""/181, 0xb5, 0x0, &(0x7f0000005340)={0x1a, 0x0, 0x5, 0x8001, 0x401, 0x8ced, @broadcast=[0xff, 0xff, 0xff, 0xff, 0xff, 0xff]}, 0x10) connect$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x0, @local={0xac, 0x14, 0x14, 0xaa}}, 0x10) setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x23, &(0x7f0000000000)={{{@in=@multicast2=0xe0000002, @in=@multicast1=0xe0000001}}, {{@in6}, 0x0, @in6=@loopback={0x0, 0x1}}}, 0xe8) syz_emit_ethernet(0xd02d646b08319e8f, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaa0107000000000000008100190008004500001c000000000002907800000000a9ffffff11009078e0000001"], &(0x7f00003b5000)={0x0, 0x0, [0x0, 0x200000000]}) 09:05:59 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={"6c6f00000000000000000400", {0x2}}) 09:05:59 executing program 4: mkdir(&(0x7f0000000180)='./file0\x00', 0x0) r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") syz_mount_image$reiserfs(&(0x7f0000000080)='reiserfs\x00', &(0x7f00000000c0)='./file0/file1\x00', 0x0, 0x0, &(0x7f0000000000), 0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB='usrjquota=']) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz1\x00', 0x1ff) 09:05:59 executing program 2 (fault-call:1 fault-nth:23): syz_mount_image$vfat(&(0x7f0000000180)='vfat\x00', &(0x7f0000000080)='./file0/file0\x00', 0x0, 0x0, &(0x7f0000001580), 0x0, &(0x7f0000000340)={[{@shortname_win95='shortname=win95', 0x2c}]}) syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f0000000100)='./file0\x00', 0xe004, 0x1, &(0x7f0000000380)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020401000200027000f8", 0x16}], 0x0, &(0x7f0000000340)=ANY=[]) 09:05:59 executing program 6: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$alg(0x26, 0x5, 0x0) bind$alg(r1, &(0x7f0000000200)={0x26, 'aead\x00', 0x0, 0x0, 'morus640-sse2\x00'}, 0x58) r2 = socket$inet6(0xa, 0x1000000000002, 0x0) r3 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vga_arbiter\x00', 0x40, 0x0) ioctl$SNDRV_SEQ_IOCTL_RUNNING_MODE(r0, 0xc0105303, &(0x7f0000000140)={0x3, 0x4, 0x8}) ioctl$TCSBRKP(r3, 0x5425, 0x7fffffff) ioctl(r2, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") accept(r1, &(0x7f0000000080)=@pppol2tpin6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @mcast2}}}, &(0x7f0000000100)=0x2ba) [ 170.041270] REISERFS warning (device loop4): sh-2021 reiserfs_fill_super: can not find reiserfs on loop4 [ 170.060012] FAULT_INJECTION: forcing a failure. [ 170.060012] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 170.071858] CPU: 0 PID: 11946 Comm: syz-executor2 Not tainted 4.18.0-rc5-next-20180720+ #12 [ 170.080355] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 170.089716] Call Trace: [ 170.092314] dump_stack+0x1c9/0x2b4 [ 170.095948] ? dump_stack_print_info.cold.2+0x52/0x52 [ 170.101148] ? trace_hardirqs_off+0xd/0x10 [ 170.105393] should_fail.cold.4+0xa/0x11 [ 170.109450] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 170.114558] ? trace_hardirqs_off+0xd/0x10 [ 170.118783] ? wait_for_completion+0x8d0/0x8d0 [ 170.123367] ? __kasan_slab_free+0x131/0x170 [ 170.127767] ? trace_hardirqs_on+0x10/0x10 [ 170.131993] ? kobject_uevent_env+0x288/0x1110 [ 170.136577] ? internal_create_group+0x39a/0x9e0 [ 170.141327] ? mutex_unlock+0xd/0x10 [ 170.145028] ? lo_ioctl+0xe6/0x1d70 [ 170.148643] ? perf_trace_lock+0xde/0x920 [ 170.152793] ? perf_trace_lock_acquire+0xeb/0x9a0 [ 170.157627] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 170.163168] ? should_fail+0x246/0xd86 [ 170.167041] ? zap_class+0x740/0x740 [ 170.170746] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 170.175942] ? blkpg_ioctl+0xc40/0xc40 [ 170.179833] __alloc_pages_nodemask+0x36e/0xdb0 [ 170.184595] ? __alloc_pages_slowpath+0x2d00/0x2d00 [ 170.189597] ? save_stack+0xa9/0xd0 [ 170.193215] ? __fget+0x4d5/0x740 [ 170.196679] ? lock_acquire+0x1e4/0x540 [ 170.200653] ? fs_reclaim_acquire+0x20/0x20 [ 170.204962] ? lock_downgrade+0x8f0/0x8f0 [ 170.209099] ? lock_release+0xa30/0xa30 [ 170.213072] ? check_same_owner+0x340/0x340 [ 170.217396] cache_grow_begin+0x91/0x710 [ 170.221470] kmem_cache_alloc+0x689/0x760 [ 170.225606] ? fget_raw+0x20/0x20 [ 170.229075] getname_flags+0xd0/0x5a0 [ 170.232864] do_mkdirat+0xc5/0x310 [ 170.236393] ? __ia32_sys_mknod+0xb0/0xb0 [ 170.240533] ? fput+0x130/0x1a0 [ 170.243798] ? ksys_ioctl+0x81/0xd0 [ 170.247431] __x64_sys_mkdir+0x5c/0x80 [ 170.251307] do_syscall_64+0x1b9/0x820 [ 170.255178] ? finish_task_switch+0x1d3/0x870 [ 170.259663] ? syscall_return_slowpath+0x5e0/0x5e0 [ 170.264580] ? syscall_return_slowpath+0x31d/0x5e0 [ 170.269510] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 170.274515] ? prepare_exit_to_usermode+0x291/0x3b0 [ 170.279519] ? perf_trace_sys_enter+0xb10/0xb10 [ 170.284187] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 170.289040] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 170.294213] RIP: 0033:0x454ef7 [ 170.297385] Code: 1f 40 00 b8 5a 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 cd c5 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 ad c5 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 170.316689] RSP: 002b:00007fb8b6388a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 170.324402] RAX: ffffffffffffffda RBX: 00000000200003a8 RCX: 0000000000454ef7 [ 170.331672] RDX: 0000000000000014 RSI: 00000000000001ff RDI: 0000000020000100 09:06:00 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)={{}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3f000000}) 09:06:00 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={"6c6f000200", {0x2}}) [ 170.338928] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 170.346181] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000014 [ 170.353435] R13: 0000000000000001 R14: 00000000004d3de0 R15: 0000000000000017 09:06:00 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)={{}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3f00}) 09:06:00 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={"6c6f00001e00", {0x2}}) [ 170.393346] REISERFS warning (device loop4): sh-2021 reiserfs_fill_super: can not find reiserfs on loop4 09:06:00 executing program 2 (fault-call:1 fault-nth:24): syz_mount_image$vfat(&(0x7f0000000180)='vfat\x00', &(0x7f0000000080)='./file0/file0\x00', 0x0, 0x0, &(0x7f0000001580), 0x0, &(0x7f0000000340)={[{@shortname_win95='shortname=win95', 0x2c}]}) syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f0000000100)='./file0\x00', 0xe004, 0x1, &(0x7f0000000380)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020401000200027000f8", 0x16}], 0x0, &(0x7f0000000340)=ANY=[]) 09:06:00 executing program 4: r0 = openat$mixer(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/mixer\x00', 0x0, 0x0) socketpair$inet_sctp(0x2, 0x5, 0x84, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) getsockopt$IPT_SO_GET_ENTRIES(r1, 0x0, 0x41, &(0x7f00000001c0)=ANY=[@ANYBLOB="72617700000000000000000000000000000000400000000000000000000000004a000000ccb241ab3f4e54768eb4499eaaa5b0d8bd586df4586f01fc70fa09f0e3209957f45d35b237c667712bd912d83809292da99b4cd0b9b78605920efae7ddcc4e06b28ff402426782cad9acc54b3e897ad691781c"], &(0x7f0000000140)=0x6e) ioctl$VHOST_GET_FEATURES(r0, 0x80044d76, &(0x7f0000000100)) ioctl$EVIOCGSND(r0, 0x8040451a, &(0x7f0000000180)=""/42) 09:06:00 executing program 1: ioctl(0xffffffffffffffff, 0x20, &(0x7f0000000280)="025cc83d6d345f8f762070") r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000d0fff5)='/dev/audio\x00', 0x0, 0x0) ioctl$int_in(r0, 0x80000080045005, &(0x7f00006e1000)=0xfffffffffffffffc) r1 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040)='/dev/rfkill\x00', 0x416080, 0x0) ioctl$KVM_GET_REGS(r1, 0x8090ae81, &(0x7f0000000080)) connect$bt_rfcomm(r0, &(0x7f0000000000)={0x1f, {0x0, 0x6, 0x9933931, 0xffffffffffff394e, 0x800, 0x10001}, 0x5}, 0xa) [ 170.514571] FAULT_INJECTION: forcing a failure. [ 170.514571] name failslab, interval 1, probability 0, space 0, times 0 [ 170.525887] CPU: 0 PID: 11977 Comm: syz-executor2 Not tainted 4.18.0-rc5-next-20180720+ #12 [ 170.534388] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 170.543764] Call Trace: [ 170.546377] dump_stack+0x1c9/0x2b4 [ 170.550019] ? dump_stack_print_info.cold.2+0x52/0x52 [ 170.555228] should_fail.cold.4+0xa/0x11 [ 170.559302] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 170.564418] ? do_raw_spin_lock+0xc1/0x200 [ 170.569473] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 170.575019] ? kernel_poison_pages+0x136/0x220 [ 170.579616] ? get_page_from_freelist+0x3c2d/0x4620 [ 170.584646] ? trace_hardirqs_on+0x10/0x10 [ 170.588901] ? __isolate_free_page+0x690/0x690 [ 170.593492] ? perf_trace_lock+0xde/0x920 [ 170.597647] ? check_same_owner+0x340/0x340 [ 170.601977] ? rcu_note_context_switch+0x730/0x730 [ 170.606911] ? zap_class+0x740/0x740 [ 170.610630] __should_failslab+0x124/0x180 [ 170.614871] should_failslab+0x9/0x14 [ 170.618672] kmem_cache_alloc+0x2af/0x760 [ 170.622831] ext4_alloc_inode+0xc9/0x880 [ 170.626901] ? ratelimit_state_init+0xb0/0xb0 [ 170.631419] ? lock_acquire+0x1e4/0x540 [ 170.635398] ? get_cached_acl+0x370/0x480 [ 170.639555] ? lock_downgrade+0x8f0/0x8f0 [ 170.643706] ? lock_release+0xa30/0xa30 [ 170.647685] ? trace_hardirqs_on+0x10/0x10 [ 170.651918] ? perf_trace_lock+0xde/0x920 [ 170.656069] ? ratelimit_state_init+0xb0/0xb0 [ 170.660566] alloc_inode+0x63/0x190 [ 170.664189] new_inode_pseudo+0x71/0x1a0 [ 170.668246] ? prune_icache_sb+0x1b0/0x1b0 [ 170.672477] ? perf_trace_lock+0xde/0x920 [ 170.676626] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 170.682188] ? __ext4_xattr_set_credits+0x3aa/0x520 [ 170.687214] new_inode+0x1c/0x40 [ 170.690591] __ext4_new_inode+0x4af/0x6620 [ 170.694821] ? save_stack+0xa9/0xd0 [ 170.698457] ? do_syscall_64+0x1b9/0x820 [ 170.702520] ? ext4_free_inode+0x1aa0/0x1aa0 [ 170.706928] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 170.711938] ? bpf_prog_kallsyms_find+0xde/0x4c0 [ 170.716696] ? lock_acquire+0x1e4/0x540 [ 170.720666] ? is_bpf_text_address+0xae/0x170 [ 170.725157] ? lock_downgrade+0x8f0/0x8f0 [ 170.729305] ? lock_release+0xa30/0xa30 [ 170.733280] ? kasan_check_read+0x11/0x20 [ 170.737430] ? rcu_is_watching+0x8c/0x150 [ 170.741579] ? rcu_cleanup_dead_rnp+0x200/0x200 [ 170.746243] ? zap_class+0x740/0x740 [ 170.749956] ? is_bpf_text_address+0xd7/0x170 [ 170.754453] ? kernel_text_address+0x79/0xf0 [ 170.758859] ? __kernel_text_address+0xd/0x40 [ 170.763349] ? unwind_get_return_address+0x61/0xa0 [ 170.768283] ? __save_stack_trace+0x8d/0xf0 [ 170.772608] ? save_stack+0xa9/0xd0 [ 170.776229] ? save_stack+0x43/0xd0 [ 170.779870] ? __kasan_slab_free+0x11a/0x170 [ 170.784276] ? kasan_slab_free+0xe/0x10 [ 170.788248] ? kmem_cache_free+0x86/0x2d0 [ 170.792398] ? putname+0xf2/0x130 [ 170.795853] ? filename_create+0x2b2/0x5b0 [ 170.800087] ? do_mkdirat+0xda/0x310 [ 170.803800] ? __x64_sys_mkdir+0x5c/0x80 [ 170.807862] ? do_syscall_64+0x1b9/0x820 [ 170.811923] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 170.817292] ? kasan_check_read+0x11/0x20 [ 170.821441] ? do_raw_spin_unlock+0xa7/0x2f0 [ 170.825872] ? do_raw_spin_trylock+0x1c0/0x1c0 [ 170.830459] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 170.836016] ? __dquot_initialize+0x61d/0xde0 [ 170.840510] ? do_raw_spin_lock+0xc1/0x200 [ 170.844747] ? trace_hardirqs_off+0xd/0x10 [ 170.848997] ? _raw_spin_unlock_irqrestore+0x63/0xc0 [ 170.854097] ? dquot_get_next_dqblk+0x180/0x180 [ 170.858771] ? debug_check_no_obj_freed+0x30b/0x595 [ 170.863792] ? trace_hardirqs_off+0xd/0x10 [ 170.868026] ext4_mkdir+0x2e1/0xe60 [ 170.871661] ? ext4_init_dot_dotdot+0x510/0x510 [ 170.876334] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 170.881877] ? security_inode_permission+0xd2/0x100 [ 170.886893] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 170.892430] ? security_inode_mkdir+0xe8/0x120 [ 170.897015] vfs_mkdir+0x42e/0x6b0 [ 170.900553] do_mkdirat+0x27b/0x310 [ 170.904177] ? __ia32_sys_mknod+0xb0/0xb0 [ 170.908321] ? ksys_ioctl+0x81/0xd0 [ 170.911949] __x64_sys_mkdir+0x5c/0x80 [ 170.915838] do_syscall_64+0x1b9/0x820 [ 170.919720] ? finish_task_switch+0x1d3/0x870 [ 170.924214] ? syscall_return_slowpath+0x5e0/0x5e0 [ 170.929142] ? syscall_return_slowpath+0x31d/0x5e0 [ 170.934073] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 170.939095] ? prepare_exit_to_usermode+0x291/0x3b0 [ 170.944115] ? perf_trace_sys_enter+0xb10/0xb10 [ 170.948791] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 170.953640] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 170.958826] RIP: 0033:0x454ef7 [ 170.962015] Code: 1f 40 00 b8 5a 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 cd c5 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 ad c5 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 170.981362] RSP: 002b:00007fb8b6388a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 170.989073] RAX: ffffffffffffffda RBX: 00000000200003a8 RCX: 0000000000454ef7 [ 170.996344] RDX: 0000000000000014 RSI: 00000000000001ff RDI: 0000000020000100 [ 171.003608] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a 09:06:00 executing program 0: perf_event_open(&(0x7f00000001c0)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$dspn(&(0x7f0000000040)='/dev/dsp#\x00', 0x8000000000, 0x410a40) ioctl$KVM_ASSIGN_SET_MSIX_NR(r0, 0x4008ae73, &(0x7f0000000680)={0x40000000001, 0x7}) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='{selfwlan1', 0xffffffffffffff9c}, 0x10) ioctl$sock_bt_bnep_BNEPCONNADD(r0, 0x400442c8, &(0x7f00000002c0)=ANY=[@ANYRES32=r0, @ANYBLOB="0800005434452c841bd0197a8200004c012665bba9a4705be7754c8d"]) fcntl$F_SET_RW_HINT(r0, 0x40c, &(0x7f0000000180)=0x4) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/loop-control\x00', 0x0, 0x0) perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82) ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r0, 0xc0305302, &(0x7f0000000140)={0x7163dc41, 0xffffffff, 0xfffffffffffffffb, 0x1ff8000000, 0x1, 0x3fc}) ioctl$TIOCMGET(r0, 0x5415, &(0x7f0000000280)) 09:06:00 executing program 1: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='pids.events\x00', 0x0, 0x0) ioctl$sock_inet_SIOCDELRT(r1, 0x890c, &(0x7f0000000200)={0x3, {0x2, 0x4e20}, {0x2, 0x4e22, @multicast1=0xe0000001}, {0x2, 0x4e23, @multicast2=0xe0000002}, 0x88, 0x0, 0x3, 0x3, 0x8, &(0x7f00000001c0)='veth0\x00', 0x100000001, 0x1, 0x20}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_CPUID(r4, 0x4008ae8a, &(0x7f0000000480)=ANY=[@ANYBLOB="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"]) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, &(0x7f00000000c0)="c4824da82b66ba2100b801000000efb9270900000f323640a7650f30c4e2899c8e02000000f02046452ef3440f6fb800f0ff7fc42101dbc40f2047"}], 0x0, 0x0, &(0x7f0000000080), 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_SET_MSRS(r4, 0x4008ae89, &(0x7f0000000040)=ANY=[@ANYBLOB="01000000001e00fb034d564b0000000001"]) ioctl$KVM_ENABLE_CAP_CPU(r4, 0x4008ae89, &(0x7f0000000140)={0x7b, 0x0, [0xc0010140]}) openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/kvm\x00', 0x0, 0x0) 09:06:00 executing program 4: r0 = openat$ion(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ion\x00', 0x0, 0x0) r1 = open(&(0x7f00000012c0)='./file0\x00', 0x400, 0x1cc) getsockopt$bt_BT_POWER(r1, 0x112, 0x9, &(0x7f0000001300)=0xfffffffffffffffc, &(0x7f0000001340)=0x1) ioctl$ION_IOC_ALLOC(r0, 0xc0184900, &(0x7f0000000180)={0x10000009, 0xffffffffffffffff, 0x1000000, 0xffffffffffffffff}) perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7ffffffffffb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$XDP_RX_RING(0xffffffffffffffff, 0x11b, 0x2, &(0x7f00000001c0), 0x4) ioctl$DMA_BUF_IOCTL_SYNC(r2, 0x40086200, &(0x7f0000000040)=0x3) r3 = syz_open_dev$amidi(&(0x7f0000000100)='/dev/amidi#\x00', 0xa9f82ee, 0x403) epoll_pwait(r3, &(0x7f0000000140)=[{}, {}, {}, {}], 0x4, 0x3, &(0x7f0000001280)={0x5}, 0x8) ioctl$DMA_BUF_IOCTL_SYNC(r2, 0x40086200, &(0x7f0000000000)=0x5) r4 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000080)='/dev/mixer\x00', 0x1, 0x0) read$FUSE(r4, &(0x7f0000000280), 0x1000) [ 171.010876] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000014 [ 171.018141] R13: 0000000000000001 R14: 00000000004d3de0 R15: 0000000000000018 09:06:00 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={"6c6f00ffffff00", {0x2}}) 09:06:00 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)={{}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000000000000}) 09:06:00 executing program 6: ioctl(0xffffffffffffffff, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") capset(&(0x7f0000000200)={0x20071026}, &(0x7f0000000000)) syz_open_procfs(0x0, &(0x7f0000000240)='fd\x00') fchdir(0xffffffffffffffff) r0 = memfd_create(&(0x7f0000000580)="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", 0x0) ioctl$IOC_PR_RELEASE(r0, 0x401070ca, &(0x7f00000001c0)={0x8, 0x7fff}) write(r0, &(0x7f0000000300)="6963e64243ea486da3a74e3deec6fc5bb9650b5de56946c568f95d22467190ba406d59a5958d6f156c9c8a2ac4677b00000000000000000000200000f8bf54da33", 0x41) getsockopt$inet_sctp6_SCTP_GET_ASSOC_NUMBER(0xffffffffffffffff, 0x84, 0x1c, &(0x7f00000000c0), &(0x7f0000000100)=0x4) sendto$unix(r0, &(0x7f0000000380)="88f5e7a2e35420d4194049258580d86b1271162ad82abe6dc8d894305e3af4657e098299c86f90803e005773bedfbc2d8cc4656dc68f632571a01d638b9a035f53ca696645349d3a20ed528ad82f1166ce74ef64c2c9866bebf7f271df1ead1b925b67106a29a417b57af9f053bb215224edafbb4760807534e91295edf0a07965aa09c78c9a5074ddfa0bef2f8c73cfce2624dd6ba927e8bea62587551b189308637f9093d03fe63e3a9e95e3cfbd25ff82ac2832715e01546ea6e34b7af07a6dc0a7cedddeaa35d912f3f27ca3aa632de9723885e5348e953817203dfaab80dc2cf458a9b3cbe56724b3bfc6d1c5e8590ee0cdc62193f9393dac10", 0xfc, 0x8000, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e22}, 0x6e) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x1, 0x11, r0, 0x0) open(&(0x7f0000000040)='./file0\x00', 0x8040, 0x0) ioctl$IOC_PR_RELEASE(r0, 0x401070ca, &(0x7f0000000080)={0x9, 0x73ed, 0x1}) r1 = semget$private(0x0, 0x3, 0x20) semctl$SETVAL(r1, 0x2, 0x10, &(0x7f00000002c0)=0x6) 09:06:00 executing program 2 (fault-call:1 fault-nth:25): syz_mount_image$vfat(&(0x7f0000000180)='vfat\x00', &(0x7f0000000080)='./file0/file0\x00', 0x0, 0x0, &(0x7f0000001580), 0x0, &(0x7f0000000340)={[{@shortname_win95='shortname=win95', 0x2c}]}) syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f0000000100)='./file0\x00', 0xe004, 0x1, &(0x7f0000000380)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020401000200027000f8", 0x16}], 0x0, &(0x7f0000000340)=ANY=[]) 09:06:00 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = open(&(0x7f0000001740)='./file0\x00', 0x200, 0x1) ioctl$KVM_X86_SETUP_MCE(r2, 0x4008ae9c, &(0x7f0000001780)={0x1b, 0x2, 0x53}) r3 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/autofs\x00', 0x84, 0x0) mremap(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x1000, 0x2, &(0x7f0000ffc000/0x1000)=nil) recvmsg$kcm(r3, &(0x7f0000001580)={&(0x7f0000000100)=@pppol2tpin6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @dev}}}, 0x80, &(0x7f0000000500)=[{&(0x7f0000000280)=""/244, 0xf4}, {&(0x7f0000000040)=""/47, 0x2f}, {&(0x7f0000000180)=""/157, 0x9d}, {&(0x7f0000000380)=""/78, 0x4e}, {&(0x7f0000000400)=""/234, 0xea}], 0x5, &(0x7f0000000580)=""/4096, 0x1000, 0xff}, 0x2020) getsockopt$inet6_IPV6_XFRM_POLICY(r4, 0x29, 0x23, &(0x7f00000015c0)={{{@in=@loopback, @in6=@ipv4={[], [], @multicast1}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@rand_addr}, 0x0, @in=@local}}, &(0x7f00000016c0)=0xe8) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000001700)={'ip6_vti0\x00', r5}) r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1) ioctl$KVM_SET_GUEST_DEBUG(r6, 0x4048ae9b, &(0x7f0000000080)={0x70003}) ioctl$KVM_RUN(r6, 0x4048ae9b, 0x70a000) 09:06:00 executing program 0: r0 = syz_open_dev$mice(&(0x7f0000000000)='/dev/input/mice\x00', 0x0, 0x2) write(r0, &(0x7f0000000180)="8d", 0x1) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0) read(r0, &(0x7f0000000080)=""/52, 0x34) write(r0, &(0x7f00000000c0)="23c5552dc3805f15344613733eba584e74946bbefd068e177f2346ef3a071475e6e709da824213d7d17cdd09e22c6fabdc19db7ba35fa6d35aae036dae8c26cd70ccd24d108c071575dd74fe4481a530e2398f923e72f350944cb4fed42fe344666077cdad262fd8b1e1f2f3962dae757a58e705a4d9ff2c7c93cf23fd292463c7accf98b9442e49ea6560445925947601e0b8d61261cd377eaff870ddedd281ddd697c3fe6f096f1db6d864035e93d0c04b7c138deb1dd50f", 0xb9) 09:06:01 executing program 5: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r1, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") bind$inet(r0, &(0x7f0000000140)={0x2, 0x4e20, @multicast1=0xe0000001}, 0x10) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000001c0)={@in={{0x2, 0x0, @loopback=0x7f000001}}, 0x0, 0x1, 0x0, "1ab7670182978f0300000000000004bf764095d43a5094f4b23c1c29b51dda91c51e08a14591eacd58d1107eb341398d6c0d70cdd1579b31460082f27dabdcdbeae7f5d8e8f9706468579ae10010a75b"}, 0xd8) ioctl$KDSETLED(r0, 0x4b32, 0x4) sendto$inet(r0, &(0x7f0000de1fff), 0xfffffffffffffd43, 0x20008005, &(0x7f0000db4ff0)={0x2, 0x4e20, @loopback=0x7f000001}, 0x10) 09:06:01 executing program 1: mknod$loop(&(0x7f0000000000)='./file0\x00', 0x0, 0xffffffffffffffff) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='fuse\x00', 0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0000000eb1e6837dd232af5750620d326ec9804cf5d812a0f72d7b01b708de50f0f704d9f9e5785fd7d165361a7fe7798f0178ec862d7e518d7fd501eb354bb7c217ca95386c75a5d7cef6f6fb4d02000000e397106e8b065901844622575bebe63235", @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000140000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB=',default_permissions,max_read=0x0000000000000000,\x00']) r1 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sequencer\x00', 0x20000, 0x0) setsockopt$inet_group_source_req(r1, 0x0, 0x2f, &(0x7f0000000340)={0x81, {{0x2, 0x4e23, @remote={0xac, 0x14, 0x14, 0xbb}}}, {{0x2, 0x4e20, @remote={0xac, 0x14, 0x14, 0xbb}}}}, 0x108) r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000300)='/dev/full\x00', 0x1ffc, 0x0) setsockopt$bt_BT_SECURITY(r2, 0x112, 0x4, &(0x7f0000000140)={0x6, 0x1ff}, 0x2) [ 171.184112] capability: warning: `syz-executor6' uses deprecated v2 capabilities in a way that may be insecure [ 171.210862] FAULT_INJECTION: forcing a failure. [ 171.210862] name failslab, interval 1, probability 0, space 0, times 0 [ 171.222191] CPU: 1 PID: 11998 Comm: syz-executor2 Not tainted 4.18.0-rc5-next-20180720+ #12 09:06:01 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={"6c6f0000000000fffffffe00", {0x2}}) 09:06:01 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)={{}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfeffffff00000000}) [ 171.230696] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 171.240060] Call Trace: [ 171.242665] dump_stack+0x1c9/0x2b4 [ 171.246339] ? dump_stack_print_info.cold.2+0x52/0x52 [ 171.251553] should_fail.cold.4+0xa/0x11 [ 171.255630] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 171.260753] ? trace_hardirqs_on+0x10/0x10 [ 171.265001] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 171.270025] ? bpf_prog_kallsyms_find+0xde/0x4c0 [ 171.274795] ? lock_acquire+0x1e4/0x540 [ 171.278815] ? is_bpf_text_address+0xae/0x170 09:06:01 executing program 6: mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0) r0 = userfaultfd(0x0) write$binfmt_misc(r0, &(0x7f0000000080)={'syz1', "32c53ccac3364b879ccbd09cc5838403678a70613f41566375fa0f93936788c39e2da40f5e7ad0117dbab8567bbce016891f2721dabfb246c51e3514056f6b9ba5fe5daa7e53b72aca73f9358928e20cf04604489dfa565cf4790ef97ad2106d0500661c1fb5714dbebde128e5e00d75a0b3a82e52"}, 0x79) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000040)={0xaa}) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000180)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1}) r1 = openat$vnet(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/vhost-net\x00', 0x2, 0x0) r2 = dup(r1) ioctl$VHOST_SET_OWNER(r1, 0xaf01, 0x0) ioctl$ifreq_SIOCGIFINDEX_team(r2, 0x4008af13, &(0x7f00000127c0)={'team0\x00'}) ioctl$VHOST_SET_OWNER(r2, 0xaf02, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) close(r0) [ 171.283337] ? lock_downgrade+0x8f0/0x8f0 [ 171.287521] ? perf_trace_lock_acquire+0xeb/0x9a0 [ 171.292378] ? lock_release+0xa30/0xa30 [ 171.296380] ? perf_trace_lock_acquire+0xeb/0x9a0 [ 171.301238] ? perf_trace_lock+0x920/0x920 [ 171.305481] ? is_bpf_text_address+0xd7/0x170 [ 171.309990] ? kernel_text_address+0x79/0xf0 [ 171.314414] __should_failslab+0x124/0x180 [ 171.318658] should_failslab+0x9/0x14 [ 171.322469] kmem_cache_alloc+0x47/0x760 [ 171.326543] ? __es_tree_search.isra.13+0x1ba/0x220 09:06:01 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={'lo\x00\x00\x00\x00@\x00', {0x2}}) 09:06:01 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000000)={{}, 0x10}) 09:06:01 executing program 1: r0 = socket$alg(0x26, 0x5, 0x0) close(r0) r1 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ctr(des3_ede)\x00'}, 0x58) setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f00000bbfe8)="ad56b6c5820faeb995298992ea54c7beef9f5d56534c90c2", 0x18) r2 = accept$alg(r0, 0x0, 0x0) write$binfmt_aout(r2, &(0x7f0000000240)=ANY=[@ANYBLOB="ffff0000000000000000ffee000000000000000000ff000000000000000000003823d6b3355facfbd98066792e89d37244806c04d31e005f"], 0x38) recvmsg(r2, &(0x7f0000000340)={&(0x7f0000000080)=@pppol2tpv3={0x0, 0x0, {0x0, 0xffffffffffffffff, {0x0, 0x0, @loopback}}}, 0x80, &(0x7f00000002c0)=[{&(0x7f0000000100)=""/34, 0x22}, {&(0x7f0000000140)=""/27, 0x1b}], 0x2, &(0x7f0000000300)=""/42, 0x2a}, 0x0) [ 171.331570] __es_insert_extent+0x305/0x1140 [ 171.335989] ? ext4_es_insert_extent+0x21c/0x7e0 [ 171.340753] ? ext4_es_free_extent+0x820/0x820 [ 171.345350] ? lock_release+0xa30/0xa30 [ 171.349332] ? __x64_sys_mkdir+0x5c/0x80 [ 171.353409] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 171.358791] ? kasan_check_write+0x14/0x20 [ 171.367742] ? do_raw_write_lock+0xbd/0x1b0 [ 171.372080] ext4_es_insert_extent+0x2ea/0x7e0 [ 171.376683] ? ext4_es_find_delayed_extent_range+0xd80/0xd80 09:06:01 executing program 1: mmap(&(0x7f0000000000/0x95c000)=nil, 0x95c000, 0x0, 0x44031, 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f0000c86f88)={0x2, 0x70, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa}, 0x0, 0x0, 0xffffffffffffffff, 0x0) read(r0, &(0x7f0000000140)=""/117, 0x75) r1 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dsp\x00', 0x80000, 0x0) ioctl$LOOP_CHANGE_FD(r1, 0x4c06, r0) [ 171.382497] ? kasan_unpoison_shadow+0x35/0x50 [ 171.387090] ? kasan_kmalloc+0xc4/0xe0 [ 171.390992] ? __kmalloc+0x315/0x760 [ 171.394719] ext4_ext_put_gap_in_cache+0x158/0x1f0 [ 171.399655] ? ext4_zeroout_es+0x160/0x160 [ 171.403901] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 171.409449] ext4_ext_map_blocks+0x2453/0x62e0 [ 171.414035] ? perf_trace_lock+0x920/0x920 [ 171.418280] ? perf_trace_lock_acquire+0xeb/0x9a0 [ 171.423129] ? ext4_find_delalloc_cluster+0xc0/0xc0 [ 171.428154] ? perf_trace_lock+0x920/0x920 [ 171.432400] ? __ext4_new_inode+0xb0d/0x6620 [ 171.436821] ? lock_acquire+0x1e4/0x540 [ 171.440815] ? ext4_es_lookup_extent+0x42c/0xde0 [ 171.445561] ? lock_downgrade+0x8f0/0x8f0 [ 171.449699] ? lock_release+0xa30/0xa30 [ 171.453927] ? lock_acquire+0x1e4/0x540 [ 171.457891] ? ext4_map_blocks+0x480/0x1b60 [ 171.462201] ? lock_release+0xa30/0xa30 [ 171.466163] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 171.471689] ? ext4_es_lookup_extent+0x465/0xde0 [ 171.476429] ? rcu_note_context_switch+0x730/0x730 [ 171.481360] ? down_read+0xb5/0x1d0 [ 171.484983] ? ext4_map_blocks+0x480/0x1b60 [ 171.489290] ? __down_interruptible+0x700/0x700 [ 171.493964] ? kernel_text_address+0x79/0xf0 [ 171.498358] ext4_map_blocks+0xe31/0x1b60 [ 171.502489] ? __save_stack_trace+0x8d/0xf0 [ 171.506802] ? ext4_issue_zeroout+0x190/0x190 [ 171.511285] ? save_stack+0x43/0xd0 [ 171.514900] ? __kasan_slab_free+0x11a/0x170 [ 171.519293] ? kasan_slab_free+0xe/0x10 [ 171.523250] ? kmem_cache_free+0x86/0x2d0 [ 171.527393] ext4_getblk+0x10e/0x630 [ 171.531105] ? ext4_iomap_begin+0x1350/0x1350 [ 171.535588] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 171.541110] ? __dquot_initialize+0x61d/0xde0 [ 171.545591] ext4_bread+0x95/0x2b0 [ 171.549116] ? ext4_getblk+0x630/0x630 [ 171.552990] ? dquot_get_next_dqblk+0x180/0x180 [ 171.557660] ? debug_check_no_obj_freed+0x30b/0x595 [ 171.562668] ext4_append+0x14e/0x370 [ 171.566371] ext4_mkdir+0x532/0xe60 [ 171.570000] ? ext4_init_dot_dotdot+0x510/0x510 [ 171.574676] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 171.580226] ? security_inode_permission+0xd2/0x100 [ 171.585232] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 171.590756] ? security_inode_mkdir+0xe8/0x120 [ 171.595325] vfs_mkdir+0x42e/0x6b0 [ 171.598851] do_mkdirat+0x27b/0x310 [ 171.602464] ? __ia32_sys_mknod+0xb0/0xb0 [ 171.606595] ? ksys_ioctl+0x81/0xd0 [ 171.610218] __x64_sys_mkdir+0x5c/0x80 [ 171.614178] do_syscall_64+0x1b9/0x820 [ 171.618050] ? finish_task_switch+0x1d3/0x870 [ 171.622530] ? syscall_return_slowpath+0x5e0/0x5e0 [ 171.627443] ? syscall_return_slowpath+0x31d/0x5e0 [ 171.632360] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 171.637362] ? prepare_exit_to_usermode+0x291/0x3b0 [ 171.642364] ? perf_trace_sys_enter+0xb10/0xb10 [ 171.647023] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 171.651866] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 171.657038] RIP: 0033:0x454ef7 [ 171.660207] Code: 1f 40 00 b8 5a 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 cd c5 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 ad c5 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 171.679402] RSP: 002b:00007fb8b6388a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 171.687106] RAX: ffffffffffffffda RBX: 00000000200003a8 RCX: 0000000000454ef7 [ 171.694373] RDX: 0000000000000014 RSI: 00000000000001ff RDI: 0000000020000100 [ 171.701626] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 171.708890] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000014 [ 171.716229] R13: 0000000000000001 R14: 00000000004d3de0 R15: 0000000000000019 09:06:01 executing program 4: r0 = openat$ion(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ion\x00', 0x0, 0x0) r1 = open(&(0x7f00000012c0)='./file0\x00', 0x400, 0x1cc) getsockopt$bt_BT_POWER(r1, 0x112, 0x9, &(0x7f0000001300)=0xfffffffffffffffc, &(0x7f0000001340)=0x1) ioctl$ION_IOC_ALLOC(r0, 0xc0184900, &(0x7f0000000180)={0x10000009, 0xffffffffffffffff, 0x1000000, 0xffffffffffffffff}) perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7ffffffffffb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$XDP_RX_RING(0xffffffffffffffff, 0x11b, 0x2, &(0x7f00000001c0), 0x4) ioctl$DMA_BUF_IOCTL_SYNC(r2, 0x40086200, &(0x7f0000000040)=0x3) r3 = syz_open_dev$amidi(&(0x7f0000000100)='/dev/amidi#\x00', 0xa9f82ee, 0x403) epoll_pwait(r3, &(0x7f0000000140)=[{}, {}, {}, {}], 0x4, 0x3, &(0x7f0000001280)={0x5}, 0x8) ioctl$DMA_BUF_IOCTL_SYNC(r2, 0x40086200, &(0x7f0000000000)=0x5) r4 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000080)='/dev/mixer\x00', 0x1, 0x0) read$FUSE(r4, &(0x7f0000000280), 0x1000) 09:06:01 executing program 0: setrlimit(0x6, &(0x7f0000000000)) clone(0x0, &(0x7f0000001340), &(0x7f0000000100), &(0x7f0000000080), &(0x7f0000000140)) r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x0, 0x0) ioctl$KVM_GET_PIT2(r0, 0x8070ae9f, &(0x7f0000000140)) 09:06:01 executing program 7: ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000080)=0x0) ioctl$TIOCGPGRP(0xffffffffffffff9c, 0x540f, &(0x7f00000000c0)=0x0) shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000000)={{0xbfa5}, 0x0, 0x0, 0x0, 0x0, r0, r1}) 09:06:01 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={'lo\x00\x00\x00\x00`\x00', {0x2}}) 09:06:01 executing program 5: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r1, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") bind$inet(r0, &(0x7f0000000140)={0x2, 0x4e20, @multicast1=0xe0000001}, 0x10) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000001c0)={@in={{0x2, 0x0, @loopback=0x7f000001}}, 0x0, 0x1, 0x0, "1ab7670182978f0300000000000004bf764095d43a5094f4b23c1c29b51dda91c51e08a14591eacd58d1107eb341398d6c0d70cdd1579b31460082f27dabdcdbeae7f5d8e8f9706468579ae10010a75b"}, 0xd8) ioctl$KDSETLED(r0, 0x4b32, 0x4) sendto$inet(r0, &(0x7f0000de1fff), 0xfffffffffffffd43, 0x20008005, &(0x7f0000db4ff0)={0x2, 0x4e20, @loopback=0x7f000001}, 0x10) 09:06:01 executing program 2 (fault-call:1 fault-nth:26): syz_mount_image$vfat(&(0x7f0000000180)='vfat\x00', &(0x7f0000000080)='./file0/file0\x00', 0x0, 0x0, &(0x7f0000001580), 0x0, &(0x7f0000000340)={[{@shortname_win95='shortname=win95', 0x2c}]}) syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f0000000100)='./file0\x00', 0xe004, 0x1, &(0x7f0000000380)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020401000200027000f8", 0x16}], 0x0, &(0x7f0000000340)=ANY=[]) [ 171.916674] FAULT_INJECTION: forcing a failure. [ 171.916674] name failslab, interval 1, probability 0, space 0, times 0 [ 171.928000] CPU: 1 PID: 12055 Comm: syz-executor2 Not tainted 4.18.0-rc5-next-20180720+ #12 [ 171.936499] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 171.945856] Call Trace: [ 171.948458] dump_stack+0x1c9/0x2b4 [ 171.952098] ? dump_stack_print_info.cold.2+0x52/0x52 [ 171.957291] ? kasan_check_read+0x11/0x20 [ 171.961437] ? rcu_is_watching+0x8c/0x150 09:06:01 executing program 5: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$sndseq(&(0x7f0000000180)='/dev/snd/seq\x00', 0x0, 0xfffffffffffffffc) r1 = syz_open_dev$midi(&(0x7f0000000140)='/dev/midi#\x00', 0x8, 0x0) recvmsg(r1, &(0x7f0000001880)={&(0x7f0000000200)=@pppol2tp={0x0, 0x0, {0x0, 0xffffffffffffffff, {0x0, 0x0, @multicast1}}}, 0x80, &(0x7f0000001700)=[{&(0x7f0000000280)=""/172, 0xac}, {&(0x7f0000000340)=""/250, 0xfa}, {&(0x7f0000000440)=""/235, 0xeb}, {&(0x7f0000000540)=""/157, 0x9d}, {&(0x7f0000000600)=""/4096, 0x1000}, {&(0x7f0000001600)=""/255, 0xff}], 0x6, &(0x7f0000001780)=""/249, 0xf9, 0x753}, 0x12000) r2 = openat(0xffffffffffffffff, &(0x7f00000000c0)='./file0\x00', 0x40000, 0x40) fchmodat(r2, &(0x7f0000000100)='./file0\x00', 0x1) fsync(r1) ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r0, 0xc0a85320, &(0x7f0000000000)={{0x80}, 'port1\x00'}) ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(r0, 0x40505330, &(0x7f0000ec6fb0)={{0x0, 0x8001}, {0x80}, 0x0, 0xffffffffffffffff}) 09:06:01 executing program 7: openat$sequencer(0xffffffffffffff9c, &(0x7f0000000140)='/dev/sequencer\x00', 0x400, 0x0) shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)) 09:06:01 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={"6c6f00fdfdffff00", {0x2}}) [ 171.965616] should_fail.cold.4+0xa/0x11 [ 171.969677] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 171.974785] ? kernel_text_address+0x79/0xf0 [ 171.979191] ? __kernel_text_address+0xd/0x40 [ 171.983695] ? unwind_get_return_address+0x61/0xa0 [ 171.988640] ? __save_stack_trace+0x8d/0xf0 [ 171.992975] ? save_stack+0xa9/0xd0 [ 171.996607] ? save_stack+0x43/0xd0 [ 172.000236] ? __kasan_slab_free+0x11a/0x170 [ 172.004648] ? kasan_slab_free+0xe/0x10 [ 172.008625] ? kfree+0xd9/0x260 [ 172.011899] ? ext4_ext_map_blocks+0xede/0x62e0 [ 172.016559] ? ext4_map_blocks+0xe31/0x1b60 [ 172.020870] ? ext4_getblk+0x10e/0x630 [ 172.024749] ? ext4_bread+0x95/0x2b0 [ 172.028451] ? ext4_append+0x14e/0x370 [ 172.032341] ? ext4_mkdir+0x532/0xe60 [ 172.036131] ? vfs_mkdir+0x42e/0x6b0 [ 172.039832] ? __x64_sys_mkdir+0x5c/0x80 [ 172.043882] ? do_syscall_64+0x1b9/0x820 [ 172.047947] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 172.053309] ? kasan_check_read+0x11/0x20 [ 172.057453] ? check_same_owner+0x340/0x340 [ 172.061771] ? kasan_check_write+0x14/0x20 [ 172.066012] ? rcu_note_context_switch+0x730/0x730 [ 172.070936] __should_failslab+0x124/0x180 [ 172.075160] should_failslab+0x9/0x14 [ 172.078948] __kmalloc+0x2c8/0x760 [ 172.082490] ? trace_hardirqs_off+0xd/0x10 [ 172.086745] ? ext4_find_extent+0x775/0xa10 [ 172.091059] ext4_find_extent+0x775/0xa10 [ 172.095196] ? trace_hardirqs_on+0xd/0x10 [ 172.099331] ext4_ext_map_blocks+0x293/0x62e0 [ 172.103831] ? ext4_find_delalloc_cluster+0xc0/0xc0 [ 172.108835] ? block_commit_write+0x30/0x30 [ 172.113161] ? __ext4_new_inode+0xb0d/0x6620 [ 172.117560] ? lock_acquire+0x1e4/0x540 [ 172.121519] ? ext4_es_lookup_extent+0x42c/0xde0 [ 172.126262] ? lock_downgrade+0x8f0/0x8f0 [ 172.130399] ? lock_release+0xa30/0xa30 [ 172.134363] ? lock_acquire+0x1e4/0x540 [ 172.138321] ? ext4_map_blocks+0x480/0x1b60 [ 172.142638] ? lock_acquire+0x1e4/0x540 [ 172.146597] ? ext4_map_blocks+0x88b/0x1b60 [ 172.150909] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 172.156445] ? lock_release+0xa30/0xa30 [ 172.160403] ? check_same_owner+0x340/0x340 [ 172.164710] ? ext4_map_blocks+0x66a/0x1b60 [ 172.169027] ? rcu_note_context_switch+0x730/0x730 [ 172.173949] ? down_write+0x8f/0x130 [ 172.177646] ? ext4_map_blocks+0x88b/0x1b60 [ 172.181965] ? down_read+0x1d0/0x1d0 [ 172.185670] ext4_map_blocks+0x8f3/0x1b60 [ 172.189808] ? __save_stack_trace+0x8d/0xf0 [ 172.194121] ? ext4_issue_zeroout+0x190/0x190 [ 172.198605] ? save_stack+0x43/0xd0 [ 172.202231] ? __kasan_slab_free+0x11a/0x170 [ 172.206625] ? kasan_slab_free+0xe/0x10 [ 172.210586] ? kmem_cache_free+0x86/0x2d0 [ 172.214721] ext4_getblk+0x10e/0x630 [ 172.218514] ? ext4_iomap_begin+0x1350/0x1350 [ 172.223000] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 172.228529] ? __dquot_initialize+0x61d/0xde0 [ 172.233020] ext4_bread+0x95/0x2b0 [ 172.236549] ? ext4_getblk+0x630/0x630 [ 172.240420] ? dquot_get_next_dqblk+0x180/0x180 [ 172.245074] ? debug_check_no_obj_freed+0x30b/0x595 [ 172.250083] ext4_append+0x14e/0x370 [ 172.253788] ext4_mkdir+0x532/0xe60 [ 172.257411] ? ext4_init_dot_dotdot+0x510/0x510 [ 172.262073] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 172.267600] ? security_inode_permission+0xd2/0x100 [ 172.272606] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 172.278130] ? security_inode_mkdir+0xe8/0x120 [ 172.282703] vfs_mkdir+0x42e/0x6b0 [ 172.286254] do_mkdirat+0x27b/0x310 [ 172.289870] ? __ia32_sys_mknod+0xb0/0xb0 [ 172.294009] ? ksys_ioctl+0x81/0xd0 [ 172.297629] __x64_sys_mkdir+0x5c/0x80 [ 172.301506] do_syscall_64+0x1b9/0x820 [ 172.305380] ? finish_task_switch+0x1d3/0x870 [ 172.309863] ? syscall_return_slowpath+0x5e0/0x5e0 [ 172.314780] ? syscall_return_slowpath+0x31d/0x5e0 [ 172.319750] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 172.324764] ? prepare_exit_to_usermode+0x291/0x3b0 [ 172.329768] ? perf_trace_sys_enter+0xb10/0xb10 [ 172.334424] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 172.339262] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 172.345055] RIP: 0033:0x454ef7 [ 172.348227] Code: 1f 40 00 b8 5a 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 cd c5 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 ad c5 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 172.367499] RSP: 002b:00007fb8b6388a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 172.375197] RAX: ffffffffffffffda RBX: 00000000200003a8 RCX: 0000000000454ef7 [ 172.382455] RDX: 0000000000000014 RSI: 00000000000001ff RDI: 0000000020000100 [ 172.389709] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 172.396968] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000014 [ 172.404987] R13: 0000000000000001 R14: 00000000004d3de0 R15: 000000000000001a 09:06:02 executing program 1: syz_mount_image$vfat(&(0x7f0000000200)='vfat\x00', &(0x7f00000002c0)='.//ile0\x00', 0x0, 0x0, &(0x7f0000000300), 0x80400, &(0x7f0000000340)={[{@iocharset={'iocharset', 0x3d, 'ascii'}, 0x2c}, {@iocharset={'iocharset', 0x3d, 'iso8859-2'}, 0x2c}]}) syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f0000000100)='./file0\x00', 0xe005, 0x1, &(0x7f0000000380)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020401000200027000f8", 0x16}], 0x0, &(0x7f0000000340)=ANY=[]) r0 = syz_open_dev$mice(&(0x7f0000000040)='/dev/input/mice\x00', 0x0, 0x40) ioctl$SIOCGIFMTU(r0, 0x8921, &(0x7f0000000080)) 09:06:02 executing program 2 (fault-call:1 fault-nth:27): syz_mount_image$vfat(&(0x7f0000000180)='vfat\x00', &(0x7f0000000080)='./file0/file0\x00', 0x0, 0x0, &(0x7f0000001580), 0x0, &(0x7f0000000340)={[{@shortname_win95='shortname=win95', 0x2c}]}) syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f0000000100)='./file0\x00', 0xe004, 0x1, &(0x7f0000000380)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020401000200027000f8", 0x16}], 0x0, &(0x7f0000000340)=ANY=[]) 09:06:02 executing program 6: move_pages(0x0, 0x2, &(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0), 0x0) r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000000)='/dev/full\x00', 0x101800, 0x0) getsockopt$SO_COOKIE(r0, 0x1, 0x39, &(0x7f0000000040), &(0x7f0000000080)=0x8) 09:06:02 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)) r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000100)='/dev/rtc0\x00', 0x100, 0x0) ioctl$TUNGETFILTER(r0, 0x801054db, &(0x7f0000000400)=""/4096) getsockname(0xffffffffffffff9c, &(0x7f0000000000)=@pppol2tpin6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @dev}}}, &(0x7f0000000080)=0x80) setsockopt$XDP_UMEM_COMPLETION_RING(r1, 0x11b, 0x6, &(0x7f00000000c0)=0x8080, 0x4) 09:06:02 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={"6c6f00000000000000001e00", {0x2}}) 09:06:02 executing program 5: r0 = socket$bt_rfcomm(0x1f, 0x3, 0x3) r1 = socket$bt_bnep(0x1f, 0x3, 0x4) bind(r0, &(0x7f00000000c0)=@pppol2tpv3={0x18, 0x1, {0x0, r1, {0x2, 0x4e20, @loopback=0x7f000001}, 0x0, 0x2, 0x2, 0x3}}, 0x80) r2 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r2, 0x2, &(0x7f0000000080)="025cc83d6d345f8f762070") r3 = dup(r0) accept4$nfc_llcp(r2, &(0x7f00000002c0), &(0x7f0000000340)=0x60, 0x0) r4 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000140)='IPVS\x00') sendmsg$IPVS_CMD_FLUSH(r3, &(0x7f0000000280)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000240)={&(0x7f0000000380)=ANY=[@ANYBLOB="9100000005d048e032d9f6b403653d7550568e033b638098ff92c47584158df88c704d58a1babcca5f07a075799d0f433e8e97e83b1e2c8e662b66b515a05938f0b1d7e16548d10b17570200b726d67d6c4e7eb66521383cf626f593866e03ed6e93caf2fa4aecdaeb145f59f90101ff42249d23caede28d4b2d984a99069381", @ANYRES16=r4, @ANYBLOB="200825bd7000fbdbdf25110000000800050002000000080005009630000008000600b4540000080004000800000054000100140003007f0000010000000000000000000000000c0007000900000000000000080004003e240000080002003b000000080004004e200000080002003c0000000800080000000100080004004e2000000800050001010000"], 0x90}, 0x1, 0x0, 0x0, 0x20008055}, 0x800) r5 = socket$inet6(0xa, 0x2, 0x0) setsockopt$SO_TIMESTAMPING(r5, 0x1, 0x25, &(0x7f0000000000)=0x178, 0x4) dup2(r2, r1) 09:06:02 executing program 0: socketpair$inet6_icmp_raw(0xa, 0x3, 0x3a, &(0x7f0000000040)) r0 = syz_open_dev$midi(&(0x7f0000000080)='/dev/midi#\x00', 0xffffffffffffffe0, 0x80) getsockopt$bt_BT_FLUSHABLE(r0, 0x112, 0x8, &(0x7f00000000c0)=0x8, &(0x7f0000000100)=0x4) r1 = openat$full(0xffffffffffffff9c, &(0x7f0000000140)='/dev/full\x00', 0x88042, 0x0) ioctl$int_in(r1, 0x8800000c1045006, &(0x7f0000000200)=0xff) ioctl$SCSI_IOCTL_GET_BUS_NUMBER(r0, 0x5386, &(0x7f0000000000)) [ 172.531984] FAULT_INJECTION: forcing a failure. [ 172.531984] name failslab, interval 1, probability 0, space 0, times 0 [ 172.543338] CPU: 1 PID: 12076 Comm: syz-executor2 Not tainted 4.18.0-rc5-next-20180720+ #12 [ 172.551832] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 172.561196] Call Trace: [ 172.563800] dump_stack+0x1c9/0x2b4 [ 172.567444] ? dump_stack_print_info.cold.2+0x52/0x52 [ 172.572648] ? lock_acquire+0x1e4/0x540 [ 172.576637] should_fail.cold.4+0xa/0x11 [ 172.580720] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 172.585844] ? trace_hardirqs_on+0x10/0x10 [ 172.591350] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 172.596384] ? bpf_prog_kallsyms_find+0xde/0x4c0 [ 172.601160] ? lock_acquire+0x1e4/0x540 [ 172.605149] ? is_bpf_text_address+0xae/0x170 [ 172.609661] ? lock_downgrade+0x8f0/0x8f0 [ 172.613837] ? lock_release+0xa30/0xa30 [ 172.617838] ? rcu_is_watching+0x8c/0x150 [ 172.622030] ? rcu_cleanup_dead_rnp+0x200/0x200 [ 172.626731] ? is_bpf_text_address+0xd7/0x170 [ 172.631281] ? kernel_text_address+0x79/0xf0 [ 172.635719] __should_failslab+0x124/0x180 [ 172.639966] should_failslab+0x9/0x14 [ 172.643775] kmem_cache_alloc+0x47/0x760 [ 172.647850] ? __es_tree_search.isra.13+0x1ba/0x220 [ 172.652878] __es_insert_extent+0x305/0x1140 [ 172.657320] ? ext4_es_insert_extent+0x21c/0x7e0 [ 172.662087] ? ext4_es_free_extent+0x820/0x820 [ 172.666683] ? lock_release+0xa30/0xa30 [ 172.670671] ? __x64_sys_mkdir+0x5c/0x80 [ 172.674744] ? do_syscall_64+0x1b9/0x820 [ 172.678819] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 172.690634] ? kasan_check_write+0x14/0x20 [ 172.694883] ? do_raw_write_lock+0xbd/0x1b0 [ 172.699218] ext4_es_insert_extent+0x2ea/0x7e0 [ 172.703803] ? ext4_es_find_delayed_extent_range+0xd80/0xd80 [ 172.709600] ? kasan_unpoison_shadow+0x35/0x50 [ 172.714176] ? kasan_kmalloc+0xc4/0xe0 [ 172.718510] ? __kmalloc+0x315/0x760 [ 172.722221] ext4_ext_put_gap_in_cache+0x158/0x1f0 [ 172.727140] ? ext4_zeroout_es+0x160/0x160 [ 172.731366] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 172.736906] ext4_ext_map_blocks+0x2453/0x62e0 [ 172.741483] ? unregister_lsm_notifier+0x20/0x20 [ 172.746226] ? ext4_init_acl+0x1d6/0x300 [ 172.750277] ? ext4_find_delalloc_cluster+0xc0/0xc0 [ 172.755284] ? block_commit_write+0x30/0x30 [ 172.759600] ? __ext4_new_inode+0xb0d/0x6620 [ 172.764000] ? lock_acquire+0x1e4/0x540 [ 172.767964] ? ext4_es_lookup_extent+0x42c/0xde0 [ 172.772711] ? lock_downgrade+0x8f0/0x8f0 [ 172.776861] ? lock_release+0xa30/0xa30 [ 172.780827] ? lock_acquire+0x1e4/0x540 [ 172.784787] ? ext4_map_blocks+0x480/0x1b60 [ 172.789116] ? lock_release+0xa30/0xa30 [ 172.793078] ? check_same_owner+0x340/0x340 [ 172.797407] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 172.802948] ? ext4_es_lookup_extent+0x465/0xde0 [ 172.807699] ? rcu_note_context_switch+0x730/0x730 [ 172.812625] ? down_read+0xb5/0x1d0 [ 172.816237] ? ext4_map_blocks+0x480/0x1b60 [ 172.820565] ? __down_interruptible+0x700/0x700 [ 172.825229] ? kernel_text_address+0x79/0xf0 [ 172.829627] ext4_map_blocks+0xe31/0x1b60 [ 172.834555] ? __save_stack_trace+0x8d/0xf0 [ 172.838868] ? ext4_issue_zeroout+0x190/0x190 [ 172.843354] ? save_stack+0x43/0xd0 [ 172.846964] ? __kasan_slab_free+0x11a/0x170 [ 172.851359] ? kasan_slab_free+0xe/0x10 [ 172.855334] ? kmem_cache_free+0x86/0x2d0 [ 172.859469] ext4_getblk+0x10e/0x630 [ 172.863171] ? ext4_iomap_begin+0x1350/0x1350 [ 172.867657] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 172.873189] ? __dquot_initialize+0x61d/0xde0 [ 172.877681] ext4_bread+0x95/0x2b0 [ 172.881212] ? ext4_getblk+0x630/0x630 [ 172.885084] ? dquot_get_next_dqblk+0x180/0x180 [ 172.889739] ? debug_check_no_obj_freed+0x30b/0x595 [ 172.894749] ext4_append+0x14e/0x370 [ 172.898466] ext4_mkdir+0x532/0xe60 [ 172.902089] ? ext4_init_dot_dotdot+0x510/0x510 [ 172.906759] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 172.912306] ? security_inode_permission+0xd2/0x100 [ 172.917324] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 172.922848] ? security_inode_mkdir+0xe8/0x120 [ 172.927421] vfs_mkdir+0x42e/0x6b0 [ 172.930950] do_mkdirat+0x27b/0x310 [ 172.934565] ? __ia32_sys_mknod+0xb0/0xb0 [ 172.938700] ? ksys_ioctl+0x81/0xd0 [ 172.942327] __x64_sys_mkdir+0x5c/0x80 [ 172.946203] do_syscall_64+0x1b9/0x820 [ 172.950090] ? finish_task_switch+0x1d3/0x870 [ 172.954573] ? syscall_return_slowpath+0x5e0/0x5e0 [ 172.959490] ? syscall_return_slowpath+0x31d/0x5e0 [ 172.964408] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 172.969415] ? prepare_exit_to_usermode+0x291/0x3b0 [ 172.974420] ? perf_trace_sys_enter+0xb10/0xb10 [ 172.979080] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 172.983919] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 172.989096] RIP: 0033:0x454ef7 [ 172.992270] Code: 1f 40 00 b8 5a 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 cd c5 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 ad c5 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 173.011548] RSP: 002b:00007fb8b6388a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 173.019244] RAX: ffffffffffffffda RBX: 00000000200003a8 RCX: 0000000000454ef7 [ 173.026503] RDX: 0000000000000014 RSI: 00000000000001ff RDI: 0000000020000100 [ 173.033769] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 173.041027] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000014 [ 173.048296] R13: 0000000000000001 R14: 00000000004d3de0 R15: 000000000000001b 09:06:03 executing program 4: r0 = openat$ion(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ion\x00', 0x0, 0x0) r1 = open(&(0x7f00000012c0)='./file0\x00', 0x400, 0x1cc) getsockopt$bt_BT_POWER(r1, 0x112, 0x9, &(0x7f0000001300)=0xfffffffffffffffc, &(0x7f0000001340)=0x1) ioctl$ION_IOC_ALLOC(r0, 0xc0184900, &(0x7f0000000180)={0x10000009, 0xffffffffffffffff, 0x1000000, 0xffffffffffffffff}) perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7ffffffffffb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$XDP_RX_RING(0xffffffffffffffff, 0x11b, 0x2, &(0x7f00000001c0), 0x4) ioctl$DMA_BUF_IOCTL_SYNC(r2, 0x40086200, &(0x7f0000000040)=0x3) r3 = syz_open_dev$amidi(&(0x7f0000000100)='/dev/amidi#\x00', 0xa9f82ee, 0x403) epoll_pwait(r3, &(0x7f0000000140)=[{}, {}, {}, {}], 0x4, 0x3, &(0x7f0000001280)={0x5}, 0x8) ioctl$DMA_BUF_IOCTL_SYNC(r2, 0x40086200, &(0x7f0000000000)=0x5) r4 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000080)='/dev/mixer\x00', 0x1, 0x0) read$FUSE(r4, &(0x7f0000000280), 0x1000) 09:06:03 executing program 0: r0 = getpid() sched_setattr(r0, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x0, 0x1}, 0x0) mkdir(&(0x7f0000000100)='./control\x00', 0x0) r1 = accept(0xffffffffffffff9c, &(0x7f0000000640)=@nfc_llcp, &(0x7f00000003c0)=0x80) mmap(&(0x7f0000012000/0x1000)=nil, 0x1000, 0x1, 0x32, r1, 0x0) r2 = userfaultfd(0x0) ioctl$UFFDIO_API(r2, 0xc018aa3f, &(0x7f0000000380)={0xaa}) ioctl$UFFDIO_REGISTER(r2, 0xc020aa00, &(0x7f0000000200)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1}) r3 = creat(&(0x7f0000000040)='./control/file0\x00', 0x0) write$sndseq(r3, &(0x7f0000011fd2)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f0000000180)='./control/file0\x00') syz_mount_image$hfs(&(0x7f0000000000)='hfs\x00', &(0x7f0000000140)='./file0\x00', 0x1, 0x4, &(0x7f0000000580)=[{&(0x7f0000000280)="a5eabe28c3e9e40d3633bd4814ad2fef8d3a51cedb5d6db8adf9ef69e16e97e315a7f892d914e630237fa14d88dac61e7d849775b726d482b58ca908410fd041df2acc0fc7fcf577e5a0a25db7bba3fc14d6f60700a34b529b28ba622b4701db5822dde64de5f992b8acaeccf5c5fcc12a4e787c91f1facb077179618d1b1661d27b476741321ada0549fe0e3abe6b14b0be6963ce1551b820abfb3df9f62acf72e067e118f1ea9dc35a1ff53ec94cb84e7db872991852c7a9f80fe72d1dc9acdeccd8ab0380bd5191fdadc8118d8c52bda429c10e55685687b127de28b2b535e56df1b58e304d22baf188069675ed", 0xef, 0x2c7}, {&(0x7f00000003c0), 0x0, 0x3}, {&(0x7f0000000400)="62072e063ed4fb14d7e74cd936f60e55aa61027cbc3b05cdcc117ce10fd6238f508e956195ffd1490bfadf7a69bb3b2f7f24eb2b1dd507d85967d55361dbdd1a193912cd18", 0x45, 0x7fffffff}, {&(0x7f0000000480)="09800ebdf671b8dbae01ba9223265b1bfa45bc607dfc40538ad724a07576feef6731c3014609a20c4346923e1f272fae8e84cbd85d8f62cd287402cee89e894e50f95019866b4298fe3fa636786ed5094a8a4e4b563186cdedc06e181921571e075ee13880b6480b60e28cb9e81ea7365da0cc10a9ecdb87fb74545405dcca2853a1e426beab0fb7d2755f9a90c170d7fd1455002add118d12649090ec79a5578efb051e3c26071cadef1da8433ab834444129eacade0d6585a28388774c69e9f5769487622cfb053d7dfeefdc19e1667be7f6c64d645fcf68ffecf896c30d7c0e36dbb6b3882ca1fe56f78f435f1fbab2e5", 0xf2, 0x6}], 0x200000, &(0x7f0000000600)={[{@file_umask={'file_umask', 0x3d, 0x7}, 0x2c}, {@part={'part', 0x3d, 0x4}, 0x2c}]}) open$dir(&(0x7f00000000c0)='./control/file1\x00', 0x2f0, 0x0) rename(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000240)='./control/file0\x00') close(r2) 09:06:03 executing program 5: r0 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r0, &(0x7f000099e000)={0x2, 0x4e20, @multicast1=0xe0000001}, 0x10) sendto$inet(r0, &(0x7f0000000200), 0xfffffffffffffeb4, 0x20008005, &(0x7f0000db4ff0)={0x2, 0x4e20, @loopback=0x7f000001}, 0x10) recvfrom(r0, &(0x7f0000f9cf9b)=""/101, 0x6478c8501c739c9d, 0x0, 0x0, 0x35) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000ec0)='veno\x00', 0x5) openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/qat_adf_ctl\x00', 0x400, 0x0) recvmmsg(r0, &(0x7f0000000d40)=[{{0x0, 0x0, &(0x7f0000000cc0)}}], 0x1, 0x0, 0x0) 09:06:03 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={"6c6f0000000000ffffffff00", {0x2}}) 09:06:03 executing program 7: r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000000)='/dev/full\x00', 0x8800, 0x0) read$FUSE(r0, &(0x7f0000000400), 0x1000) shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)) 09:06:03 executing program 6: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) munmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000) r1 = syz_open_dev$sndpcmc(&(0x7f0000000380)='/dev/snd/pcmC#D#c\x00', 0x4, 0xb85aeaed563e589d) ioctl$BLKZEROOUT(r1, 0x127f, &(0x7f00000003c0)={0x8ba8936, 0xdfbf}) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="74d067589cdb852f1dda151f2919512de000ae67e043959f9dcfb6353124518d1800eb596d8dc67e5eea38be51d77870e9000ab04ab6e76185fde5a0df4aa403c562fad1c40b865340bbb0c8f67bbc7ae29b0c6b8a7f9ef9d8bcd344f5b76daae9656c4ca3031c59633b514d7b0a38383cc129613c6454af1336cf2fef90ecea", 0x80) r2 = fcntl$dupfd(0xffffffffffffff9c, 0x406, r0) write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000000)={0xffffffffffffffff}, 0x113, 0x100b}}, 0x20) write$RDMA_USER_CM_CMD_QUERY(r2, &(0x7f0000000340)={0x13, 0x10, 0xfa00, {&(0x7f0000000100), r3}}, 0x18) ioctl$int_out(r0, 0x1, &(0x7f0000fd3ffc)) 09:06:03 executing program 1: unshare(0x20000000) perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$dspn(&(0x7f0000000000)='/dev/dsp#\x00', 0x4, 0x40) ioctl$KDGETKEYCODE(r0, 0x4b4c, &(0x7f0000000080)={0x3, 0x5}) clone(0x0, &(0x7f00000000c0), &(0x7f0000000280), &(0x7f0000000240), &(0x7f0000000400)) clone(0x0, &(0x7f0000000000), &(0x7f0000000100), &(0x7f0000000040), &(0x7f0000000140)) wait4(0x0, 0x0, 0x40000000, &(0x7f0000781f70)) 09:06:03 executing program 2 (fault-call:1 fault-nth:28): syz_mount_image$vfat(&(0x7f0000000180)='vfat\x00', &(0x7f0000000080)='./file0/file0\x00', 0x0, 0x0, &(0x7f0000001580), 0x0, &(0x7f0000000340)={[{@shortname_win95='shortname=win95', 0x2c}]}) syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f0000000100)='./file0\x00', 0xe004, 0x1, &(0x7f0000000380)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020401000200027000f8", 0x16}], 0x0, &(0x7f0000000340)=ANY=[]) 09:06:03 executing program 6: msgget$private(0x0, 0x500) msgget$private(0x0, 0xd) msgget$private(0x0, 0x10) r0 = msgget$private(0x0, 0x8) msgctl$IPC_RMID(r0, 0x4) [ 173.281964] FAULT_INJECTION: forcing a failure. [ 173.281964] name failslab, interval 1, probability 0, space 0, times 0 [ 173.300657] CPU: 1 PID: 12103 Comm: syz-executor2 Not tainted 4.18.0-rc5-next-20180720+ #12 [ 173.309154] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 173.318514] Call Trace: [ 173.321146] dump_stack+0x1c9/0x2b4 [ 173.324818] ? dump_stack_print_info.cold.2+0x52/0x52 09:06:03 executing program 6: r0 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x4003ff) fcntl$setlease(r0, 0x400, 0x3) [ 173.330030] ? kasan_check_read+0x11/0x20 [ 173.334204] ? rcu_is_watching+0x8c/0x150 [ 173.338463] should_fail.cold.4+0xa/0x11 [ 173.342629] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 173.347756] ? kernel_text_address+0x79/0xf0 [ 173.352183] ? __kernel_text_address+0xd/0x40 [ 173.356691] ? unwind_get_return_address+0x61/0xa0 [ 173.361650] ? __save_stack_trace+0x8d/0xf0 [ 173.365992] ? save_stack+0xa9/0xd0 [ 173.369629] ? save_stack+0x43/0xd0 [ 173.373266] ? __kasan_slab_free+0x11a/0x170 [ 173.377683] ? kasan_slab_free+0xe/0x10 09:06:03 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)) r0 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vsock\x00', 0x823fe, 0x0) finit_module(r0, &(0x7f0000000040)="3a3a7b6e6f6465765e656d30776c616e312b5e706f7369785f61636c5f616363657373112e26657468312d3a5b5b7365637572697479656d312d00", 0x3) 09:06:03 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={"6c6f000000000400", {0x2}}) [ 173.381665] ? kfree+0xd9/0x260 [ 173.384957] ? ext4_ext_map_blocks+0xede/0x62e0 [ 173.389640] ? ext4_map_blocks+0xe31/0x1b60 [ 173.393994] ? ext4_getblk+0x10e/0x630 [ 173.397891] ? ext4_bread+0x95/0x2b0 [ 173.403026] ? ext4_append+0x14e/0x370 [ 173.406919] ? ext4_mkdir+0x532/0xe60 [ 173.410730] ? vfs_mkdir+0x42e/0x6b0 [ 173.414453] ? __x64_sys_mkdir+0x5c/0x80 [ 173.418523] ? do_syscall_64+0x1b9/0x820 [ 173.422596] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 173.427982] ? kasan_check_read+0x11/0x20 09:06:03 executing program 6: r0 = socket$packet(0x11, 0xffffffffffffffff, 0x300) r1 = accept4(r0, &(0x7f0000000140)=@ax25, &(0x7f0000000080)=0x80, 0x80000) ioctl$sock_bt_hidp_HIDPGETCONNINFO(r1, 0x800448d3, &(0x7f00000001c0)={{0x6, 0x84, 0x3ff, 0x8, 0x20000000, 0x2}, 0x4706, 0x7, 0x6, 0x6, 0x1, "4e1fd37a89797262721a8a1f70cf54030beca468fc9c4a9bbc2c91a1fdc98b0dc622c1bc2e6442361b452c06116c7725ab5f22b0624e406c7609cbae5c7fc11daaa66584f4431e016bd8803d470a1b9fdc3903d4f8f747a94b7a680264a59ec9a0fd3c89832197d5bfb8cb71ce7741936e4e0cec7818030ea395ee5b1a1803ee"}) setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000000040)=0x100, 0xff1f) sendto$inet6(r0, &(0x7f00000000c0)="0404000000c000ddb8460900fff55b4202938207d9fb3780398d5375000000007929301ee616d5c01843e06590080053c0e385472da7222a94192f2dbd94c3b500352c0f118d00000fe7667924b829fccb60c62600001b0800000000000004010000aeb4", 0x64, 0x40000, &(0x7f0000000000)={0xa, 0x200800800, 0x1, @loopback={0x0, 0x1}, 0xbd33}, 0x1c) [ 173.432139] ? check_same_owner+0x340/0x340 [ 173.436470] ? kasan_check_write+0x14/0x20 [ 173.440713] ? rcu_note_context_switch+0x730/0x730 [ 173.445658] __should_failslab+0x124/0x180 [ 173.449901] should_failslab+0x9/0x14 [ 173.453709] __kmalloc+0x2c8/0x760 [ 173.457263] ? trace_hardirqs_off+0xd/0x10 [ 173.461504] ? ext4_find_extent+0x775/0xa10 [ 173.465836] ext4_find_extent+0x775/0xa10 [ 173.469995] ? trace_hardirqs_on+0xd/0x10 [ 173.474154] ext4_ext_map_blocks+0x293/0x62e0 [ 173.478672] ? perf_trace_lock+0x920/0x920 09:06:03 executing program 7: r0 = getegid() r1 = gettid() shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000080)={{0x0, 0x0, 0x0, 0x0, r0}, 0x0, 0x0, 0x0, 0x1, 0x0, r1}) 09:06:03 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={"6c6f000000000600", {0x2}}) [ 173.482918] ? ext4_find_delalloc_cluster+0xc0/0xc0 [ 173.487942] ? perf_trace_lock+0x920/0x920 [ 173.492189] ? perf_trace_lock+0x920/0x920 [ 173.496431] ? __ext4_new_inode+0xb0d/0x6620 [ 173.500853] ? lock_acquire+0x1e4/0x540 [ 173.504857] ? ext4_es_lookup_extent+0x42c/0xde0 [ 173.509631] ? lock_downgrade+0x8f0/0x8f0 [ 173.513788] ? lock_release+0xa30/0xa30 [ 173.517771] ? lock_acquire+0x1e4/0x540 [ 173.521748] ? ext4_map_blocks+0x480/0x1b60 [ 173.526081] ? lock_acquire+0x1e4/0x540 09:06:03 executing program 6: r0 = syz_open_dev$sndctrl(&(0x7f00000000c0)='/dev/snd/controlC#\x00', 0x0, 0x0) pipe(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$EVIOCGKEYCODE(r1, 0x80084504, &(0x7f0000000100)=""/99) perf_event_open(&(0x7f0000000280)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8ce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000005000), 0x2}, 0x1000000000c}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r0, 0xc0045516, &(0x7f0000000040)=0x100000006) getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffff9c, 0x84, 0x73, &(0x7f000000d000), &(0x7f0000001000)=0xfea6) ioctl$SNDRV_CTL_IOCTL_PVERSION(r0, 0xc1105517, &(0x7f0000001000)) [ 173.530060] ? ext4_map_blocks+0x88b/0x1b60 [ 173.534410] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 173.539960] ? lock_release+0xa30/0xa30 [ 173.543942] ? ext4_map_blocks+0x66a/0x1b60 [ 173.548270] ? rcu_note_context_switch+0x730/0x730 [ 173.553216] ? down_write+0x8f/0x130 [ 173.556937] ? ext4_map_blocks+0x88b/0x1b60 [ 173.561263] ? down_read+0x1d0/0x1d0 [ 173.564985] ext4_map_blocks+0x8f3/0x1b60 [ 173.569137] ? __save_stack_trace+0x8d/0xf0 [ 173.573471] ? ext4_issue_zeroout+0x190/0x190 [ 173.577975] ? save_stack+0x43/0xd0 [ 173.581608] ? __kasan_slab_free+0x11a/0x170 [ 173.586027] ? kasan_slab_free+0xe/0x10 [ 173.590004] ? kmem_cache_free+0x86/0x2d0 [ 173.594184] ext4_getblk+0x10e/0x630 [ 173.597903] ? ext4_iomap_begin+0x1350/0x1350 [ 173.602419] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 173.607958] ? __dquot_initialize+0x61d/0xde0 [ 173.612455] ext4_bread+0x95/0x2b0 [ 173.615997] ? ext4_getblk+0x630/0x630 [ 173.619881] ? dquot_get_next_dqblk+0x180/0x180 [ 173.624573] ? debug_check_no_obj_freed+0x30b/0x595 [ 173.629628] ext4_append+0x14e/0x370 [ 173.633355] ext4_mkdir+0x532/0xe60 [ 173.636993] ? ext4_init_dot_dotdot+0x510/0x510 [ 173.641667] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 173.647381] ? security_inode_permission+0xd2/0x100 [ 173.652492] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 173.658058] ? security_inode_mkdir+0xe8/0x120 [ 173.662649] vfs_mkdir+0x42e/0x6b0 [ 173.666196] do_mkdirat+0x27b/0x310 [ 173.669829] ? __ia32_sys_mknod+0xb0/0xb0 [ 173.673982] ? ksys_ioctl+0x81/0xd0 [ 173.677618] __x64_sys_mkdir+0x5c/0x80 [ 173.681512] do_syscall_64+0x1b9/0x820 [ 173.685403] ? finish_task_switch+0x1d3/0x870 [ 173.689906] ? syscall_return_slowpath+0x5e0/0x5e0 [ 173.694843] ? syscall_return_slowpath+0x31d/0x5e0 [ 173.699777] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 173.704799] ? prepare_exit_to_usermode+0x291/0x3b0 [ 173.709819] ? perf_trace_sys_enter+0xb10/0xb10 [ 173.714490] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 173.724750] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 173.729939] RIP: 0033:0x454ef7 [ 173.733121] Code: 1f 40 00 b8 5a 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 cd c5 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 ad c5 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 173.752433] RSP: 002b:00007fb8b6388a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 173.760148] RAX: ffffffffffffffda RBX: 00000000200003a8 RCX: 0000000000454ef7 [ 173.767419] RDX: 0000000000000014 RSI: 00000000000001ff RDI: 0000000020000100 [ 173.774684] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 173.781965] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000014 [ 173.789235] R13: 0000000000000001 R14: 00000000004d3de0 R15: 000000000000001c 09:06:03 executing program 4: r0 = openat$ion(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ion\x00', 0x0, 0x0) r1 = open(&(0x7f00000012c0)='./file0\x00', 0x400, 0x1cc) getsockopt$bt_BT_POWER(r1, 0x112, 0x9, &(0x7f0000001300)=0xfffffffffffffffc, &(0x7f0000001340)=0x1) ioctl$ION_IOC_ALLOC(r0, 0xc0184900, &(0x7f0000000180)={0x10000009, 0xffffffffffffffff, 0x1000000, 0xffffffffffffffff}) perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7ffffffffffb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$XDP_RX_RING(0xffffffffffffffff, 0x11b, 0x2, &(0x7f00000001c0), 0x4) ioctl$DMA_BUF_IOCTL_SYNC(r2, 0x40086200, &(0x7f0000000040)=0x3) r3 = syz_open_dev$amidi(&(0x7f0000000100)='/dev/amidi#\x00', 0xa9f82ee, 0x403) epoll_pwait(r3, &(0x7f0000000140)=[{}, {}, {}, {}], 0x4, 0x3, &(0x7f0000001280)={0x5}, 0x8) ioctl$DMA_BUF_IOCTL_SYNC(r2, 0x40086200, &(0x7f0000000000)=0x5) r4 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000080)='/dev/mixer\x00', 0x1, 0x0) read$FUSE(r4, &(0x7f0000000280), 0x1000) 09:06:04 executing program 0: r0 = socket$inet6(0xa, 0x1, 0x8010000000000084) listen(r0, 0x2) r1 = accept4(r0, &(0x7f0000c71ff0)=@llc={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @broadcast}, &(0x7f0000f5effc)=0x10, 0x0) recvfrom$packet(r1, &(0x7f0000000300)=""/89, 0xffffffffffffff1c, 0x0, &(0x7f0000000040)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @remote={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xbb}}, 0x709000) setsockopt$inet_sctp_SCTP_EVENTS(r1, 0x84, 0xb, &(0x7f0000238000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0xb) syz_mount_image$nfs4(&(0x7f0000000000)='nfs4\x00', &(0x7f0000000080)='./file0\x00', 0x10001, 0x5, &(0x7f0000000540)=[{&(0x7f00000000c0)="4bea56e227d7854e488484754792905fc992f8b037515ffa351d1b191033c0052e4a5f2c288ece910cc0b342dbb9494f60bc91a3942e5945dc1f7195cc742b239c8e3bf7645718ed6f205b76562cb56eb846f839f376f9058f3a9fdac07f12bc7f69b0e946755b27b5", 0x69, 0x7}, {&(0x7f0000000240)="8526d4911d8ee9359fd9ba6b9d59ad720e8ee13848967ffe9df54b31705c5016123f40652e05a709bd3a4f81d9c6aa7809744983f28d21debe68438048eaeba4c0ec119b207ae22f2fa3194a34e8265127", 0x51, 0x400}, {&(0x7f0000000380)="d6f79a0203273b2da2e5e90e37977d5259f03a378a6b0ec2dc0001df9c6be66c64f744aa66bac6bff904404f4d4ce077f23fbbc8d822a40055ec93420cd73cbeb19598b4ffa45a518285fc24fa0b013a494bea7e6750129f1cc003b08be5521a8c584476340b797c66ac47a07fb265f2318237b13242eb0d50a6c633afd875eb83fb46a1435bf9f7fcfa1d9dc58ccc1abc57bee4c5a62606883fb13bd2f1b69f3c08a875e30a0a6007d69b37b7", 0xad, 0x9}, {&(0x7f0000000440)="08b67b4033bda68bda28efccc159c2d913d3b74e3f1f37cd13cf92f453f2fa28fc98aff2fb38fdec75e6d81c6858cb11f1b0c4bfcd099e26957f9f856e4f54bd25a079e6a9df2838a33d28d14dd7e75303692d687a129ddfb64ab941b1354d4403ebf89ed0b40412e514", 0x6a, 0x1ba0}, {&(0x7f00000004c0)="04882a6460af056bd365fbba522674f0a276ac8c6df04ca3d707359edb838a07023c7cfe35e5b80edf4b3890cc45e7e3390c8b7ebfa6388c0a28a79f607ed582b29d7fa133912b7d38e254ae271964b3ee2754", 0x53, 0x9}], 0x4000, &(0x7f0000000140)='\x00') 09:06:04 executing program 5: syz_emit_ethernet(0x32, &(0x7f0000000080)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaa73295216e9d265a0b24bb57eaaaabb0800450000240006000000119078ac1414bbac1414aa00000000"], &(0x7f0000000100)={0x0, 0x8000, [0x2, 0xffffffffffffffff]}) r0 = syz_open_dev$midi(&(0x7f0000000000)='/dev/midi#\x00', 0x80000001, 0x8000) ioctl$KVM_SET_XCRS(r0, 0x4188aea7, &(0x7f0000000140)={0xa, 0x1, [{0x5, 0x0, 0xff}, {0x7, 0x0, 0x8}, {0x6, 0x0, 0x4}, {0x6, 0x0, 0x80}, {0x7f, 0x0, 0x3}, {0xbf, 0x0, 0x31}, {0x8000, 0x0, 0x2}, {0x9, 0x0, 0x7fffffff}, {0x6, 0x0, 0x800}, {0x401, 0x0, 0x40}]}) 09:06:04 executing program 6: r0 = syz_open_dev$sndctrl(&(0x7f00000000c0)='/dev/snd/controlC#\x00', 0x0, 0x0) pipe(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$EVIOCGKEYCODE(r1, 0x80084504, &(0x7f0000000100)=""/99) perf_event_open(&(0x7f0000000280)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8ce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000005000), 0x2}, 0x1000000000c}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r0, 0xc0045516, &(0x7f0000000040)=0x100000006) getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffff9c, 0x84, 0x73, &(0x7f000000d000), &(0x7f0000001000)=0xfea6) ioctl$SNDRV_CTL_IOCTL_PVERSION(r0, 0xc1105517, &(0x7f0000001000)) 09:06:04 executing program 1: unshare(0x20000000) perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$dspn(&(0x7f0000000000)='/dev/dsp#\x00', 0x4, 0x40) ioctl$KDGETKEYCODE(r0, 0x4b4c, &(0x7f0000000080)={0x3, 0x5}) clone(0x0, &(0x7f00000000c0), &(0x7f0000000280), &(0x7f0000000240), &(0x7f0000000400)) clone(0x0, &(0x7f0000000000), &(0x7f0000000100), &(0x7f0000000040), &(0x7f0000000140)) wait4(0x0, 0x0, 0x40000000, &(0x7f0000781f70)) 09:06:04 executing program 7: 09:06:04 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={"6c6f00001f00", {0x2}}) 09:06:04 executing program 2 (fault-call:1 fault-nth:29): syz_mount_image$vfat(&(0x7f0000000180)='vfat\x00', &(0x7f0000000080)='./file0/file0\x00', 0x0, 0x0, &(0x7f0000001580), 0x0, &(0x7f0000000340)={[{@shortname_win95='shortname=win95', 0x2c}]}) syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f0000000100)='./file0\x00', 0xe004, 0x1, &(0x7f0000000380)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020401000200027000f8", 0x16}], 0x0, &(0x7f0000000340)=ANY=[]) 09:06:04 executing program 4: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = getpgid(0x0) sched_setaffinity(r0, 0xffffff42, &(0x7f0000000000)=0x339) [ 174.374841] FAULT_INJECTION: forcing a failure. [ 174.374841] name failslab, interval 1, probability 0, space 0, times 0 [ 174.386156] CPU: 0 PID: 12168 Comm: syz-executor2 Not tainted 4.18.0-rc5-next-20180720+ #12 [ 174.394650] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 174.404009] Call Trace: [ 174.406618] dump_stack+0x1c9/0x2b4 [ 174.410264] ? dump_stack_print_info.cold.2+0x52/0x52 [ 174.415485] ? ext4_getblk+0x10e/0x630 [ 174.419423] ? ext4_bread+0x95/0x2b0 [ 174.423145] ? ext4_append+0x14e/0x370 [ 174.427039] ? ext4_mkdir+0x532/0xe60 [ 174.430858] ? do_mkdirat+0x27b/0x310 [ 174.434679] should_fail.cold.4+0xa/0x11 [ 174.438763] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 174.443877] ? kasan_check_write+0x14/0x20 [ 174.448127] ? do_raw_spin_lock+0xc1/0x200 [ 174.452386] ? trace_hardirqs_on+0x10/0x10 [ 174.456641] ? debug_check_no_obj_freed+0x30b/0x595 [ 174.461678] ? trace_hardirqs_off+0xd/0x10 [ 174.465928] ? quarantine_put+0x10d/0x1b0 [ 174.470094] ? __kasan_slab_free+0x131/0x170 [ 174.474520] ? perf_trace_lock_acquire+0xeb/0x9a0 [ 174.479377] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 174.484928] ? ext4_ext_map_blocks+0xfb2/0x62e0 [ 174.489617] ? perf_trace_lock+0x920/0x920 [ 174.493876] __should_failslab+0x124/0x180 [ 174.498125] should_failslab+0x9/0x14 [ 174.501940] kmem_cache_alloc+0x47/0x760 [ 174.506019] ? perf_trace_lock+0x920/0x920 [ 174.510279] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 174.515310] ? ext4_es_can_be_merged+0x238/0x2a0 [ 174.520091] __es_insert_extent+0x305/0x1140 [ 174.524539] ? ext4_es_free_extent+0x820/0x820 [ 174.529137] ? lock_release+0xa30/0xa30 [ 174.533429] ? lock_acquire+0x1e4/0x540 [ 174.537425] ? ext4_map_blocks+0x480/0x1b60 [ 174.541778] ? kasan_check_write+0x14/0x20 [ 174.546026] ? do_raw_write_lock+0xbd/0x1b0 [ 174.550372] ext4_es_insert_extent+0x2ea/0x7e0 [ 174.554968] ? lock_release+0xa30/0xa30 [ 174.558957] ? ext4_es_find_delayed_extent_range+0xd80/0xd80 [ 174.564769] ? rcu_note_context_switch+0x730/0x730 [ 174.570596] ? down_write+0x8f/0x130 [ 174.574316] ? ext4_map_blocks+0x88b/0x1b60 [ 174.578665] ? down_read+0x1d0/0x1d0 [ 174.582399] ext4_map_blocks+0xb08/0x1b60 [ 174.586557] ? __save_stack_trace+0x8d/0xf0 [ 174.590904] ? ext4_issue_zeroout+0x190/0x190 [ 174.596209] ? save_stack+0x43/0xd0 [ 174.599849] ? __kasan_slab_free+0x11a/0x170 [ 174.604268] ? kasan_slab_free+0xe/0x10 [ 174.608252] ? kmem_cache_free+0x86/0x2d0 [ 174.612409] ext4_getblk+0x10e/0x630 [ 174.616136] ? ext4_iomap_begin+0x1350/0x1350 [ 174.620664] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 174.626217] ? __dquot_initialize+0x61d/0xde0 [ 174.630733] ext4_bread+0x95/0x2b0 [ 174.634294] ? ext4_getblk+0x630/0x630 [ 174.638189] ? dquot_get_next_dqblk+0x180/0x180 [ 174.642845] ? debug_check_no_obj_freed+0x30b/0x595 [ 174.647849] ext4_append+0x14e/0x370 [ 174.651554] ext4_mkdir+0x532/0xe60 [ 174.655173] ? ext4_init_dot_dotdot+0x510/0x510 [ 174.659846] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 174.665372] ? security_inode_permission+0xd2/0x100 [ 174.670378] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 174.675903] ? security_inode_mkdir+0xe8/0x120 [ 174.680477] vfs_mkdir+0x42e/0x6b0 [ 174.684013] do_mkdirat+0x27b/0x310 [ 174.687898] ? __ia32_sys_mknod+0xb0/0xb0 [ 174.692041] ? ksys_ioctl+0x81/0xd0 [ 174.695659] __x64_sys_mkdir+0x5c/0x80 [ 174.699535] do_syscall_64+0x1b9/0x820 [ 174.703407] ? finish_task_switch+0x1d3/0x870 [ 174.707894] ? syscall_return_slowpath+0x5e0/0x5e0 [ 174.712819] ? syscall_return_slowpath+0x31d/0x5e0 [ 174.717736] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 174.722737] ? prepare_exit_to_usermode+0x291/0x3b0 [ 174.727742] ? perf_trace_sys_enter+0xb10/0xb10 [ 174.732415] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 174.737338] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 174.742528] RIP: 0033:0x454ef7 [ 174.745700] Code: 1f 40 00 b8 5a 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 cd c5 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 ad c5 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 174.764899] RSP: 002b:00007fb8b6388a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 09:06:04 executing program 7: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vsock\x00', 0x80c02, 0x0) getsockopt$packet_buf(r0, 0x107, 0x6, &(0x7f00000000c0)=""/239, &(0x7f00000001c0)=0xef) socketpair$inet_sctp(0x2, 0x0, 0x84, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$IP_VS_SO_SET_ADD(r1, 0x0, 0x482, &(0x7f0000000040)={0x87, @dev={0xac, 0x14, 0x14, 0x20}, 0x4e23, 0x2, 'ovf\x00', 0x6, 0x9, 0x6c}, 0x2c) shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)) 09:06:04 executing program 4: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_int(r1, 0x29, 0x19, &(0x7f00000000c0)=0x1, 0x4) sendto$inet6(r1, &(0x7f0000000000), 0xfee5, 0x48000, &(0x7f0000000200)={0xa, 0x4e20, 0x0, @remote={0xfe, 0x80, [], 0xbb}}, 0x1c) sendto$inet6(r1, &(0x7f0000737000), 0xffffffffffffff80, 0x0, &(0x7f0000000140)={0xa}, 0x1c) socket$inet6(0xa, 0x7, 0x8) 09:06:04 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={"6c6f001e00", {0x2}}) 09:06:04 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)={{0x5}, 0x3, 0x80000001, 0x0, 0x15f}) r0 = syz_open_dev$sndpcmp(&(0x7f00000008c0)='/dev/snd/pcmC#D#p\x00', 0xffffffff, 0x101000) ioctl$EVIOCRMFF(r0, 0x40044581, &(0x7f0000000000)=0x80000000) ioctl$sock_bt(r0, 0xdd1f, &(0x7f00000000c0)="fc5d81b327b6435763e835d830956e1bfddd7c6c08feaa9e6824a8b8a9ff9a244ab8405c5d694f1c0b650bc115258084b3c2587435c6fa009dcb72cae1a7c0482c7bb1cb920b8693aad27a35fc305f309f2d5c397da05ef59e677c9d76b6db4aa4ef39c78ed816a5c55d") 09:06:04 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={"6c6f00feffffff00", {0x2}}) 09:06:04 executing program 7: r0 = syz_open_dev$adsp(&(0x7f0000000000)='/dev/adsp#\x00', 0x0, 0x400001) ioctl$KVM_ARM_SET_DEVICE_ADDR(r0, 0x4010aeab, &(0x7f0000000040)={0x10001, 0x16004}) shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)) 09:06:04 executing program 4: r0 = syz_open_dev$sndmidi(&(0x7f0000000000)='/dev/snd/midiC#D#\x00', 0xe440, 0xc000000001) r1 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/vs/sync_refresh_period\x00', 0x2, 0x0) pipe(&(0x7f0000000080)={0xffffffffffffffff}) ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f00000000c0)={0x5, 0x15, 0x1, r2}) ioctl$SNDRV_RAWMIDI_IOCTL_STATUS(r0, 0xc0305710, &(0x7f0000000100)={0x1, {0x77359400}}) 09:06:04 executing program 7: getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000000)={0x0, 0x0, 0x0}, &(0x7f0000000040)=0xc) shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)={{0x0, 0x0, r0}, 0x0, 0x0, 0xffffffffffffffff}) [ 174.772596] RAX: ffffffffffffffda RBX: 00000000200003a8 RCX: 0000000000454ef7 [ 174.779855] RDX: 0000000000000014 RSI: 00000000000001ff RDI: 0000000020000100 [ 174.787109] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 174.794386] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000014 [ 174.801647] R13: 0000000000000001 R14: 00000000004d3de0 R15: 000000000000001d 09:06:04 executing program 0: r0 = getpid() sched_setattr(r0, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x0, 0x3}, 0x0) pipe2(&(0x7f0000989000)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0) r3 = userfaultfd(0x0) ioctl$UFFDIO_API(r3, 0xc018aa3f, &(0x7f0000bc8000)={0xaa}) ioctl$UFFDIO_REGISTER(r3, 0xc020aa00, &(0x7f0000000040)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1}) r4 = creat(&(0x7f0000000100)='./file0\x00', 0x0) write$sndseq(r4, &(0x7f0000011fd2)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f0000000940)=@filter={'filter\x00', 0xe, 0x4, 0x7a8, [0x0, 0x20000180, 0x20000340, 0x20000680], 0x0, &(0x7f00000000c0), &(0x7f0000000180)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x11, 0x1, 0x6001, 'veth0_to_team\x00', 'ip6tnl0\x00', 'erspan0\x00', 'veth0_to_bond\x00', @remote={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xbb}, [0xff, 0x0, 0xff, 0x0, 0xff], @remote={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xbb}, [0xff, 0xff, 0xff, 0xff, 0x0, 0xff], 0xe0, 0x158, 0x190, [@stp={'stp\x00', 0x48, {{0x7e6, {0x1, 0x8, 0x1, @remote={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xbb}, [0x0, 0xff, 0x0, 0xff, 0xff, 0xff], 0x2, 0x1ff, 0x1, 0x800, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}, [0xff, 0x0, 0x0, 0xff, 0x0, 0xff], 0x4e23, 0x4e24, 0xffa, 0x8001, 0x0, 0x3, 0x0, 0x2, 0x100, 0x2}, 0x0, 0x88}}}]}, [@common=@NFLOG={'NFLOG\x00', 0x50, {{0x66e1, 0x40, 0x9, 0x0, 0x0, "762a78f7c4c2a44488ad0c1b48b682f9f87e6db8a4286c9b0182f7d7e4ebf8f4bf37023bbb323236244f54a6eaf26c0ad1a27f19b34b6e89dc7b238815d2f13f"}}}]}, @common=@dnat={'dnat\x00', 0x10, {{@broadcast=[0xff, 0xff, 0xff, 0xff, 0xff, 0xff], 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x1b, 0x14, 0x80f3, 'nr0\x00', 'bond0\x00', 'syzkaller0\x00', 'tunl0\x00', @remote={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xbb}, [0xff, 0x0, 0xff, 0xff], @random="9d9207fc1328", [0x0, 0x0, 0x0, 0x0, 0xff, 0xff], 0xc0, 0x160, 0x198, [@helper={'helper\x00', 0x28, {{0x1, 'H.245\x00'}}}]}, [@common=@log={'log\x00', 0x28, {{0x2, "cc1c057e7c2f1f91208917ff0e430b4cfdddeb7a2589d282995a7fd694fd", 0x4}}}, @common=@IDLETIMER={'IDLETIMER\x00', 0x28, {{0x1, 'syz1\x00', 0x5}}}]}, @common=@dnat={'dnat\x00', 0x10, {{@broadcast=[0xff, 0xff, 0xff, 0xff, 0xff, 0xff], 0xfffffffffffffffe}}}}, {{{0x5, 0x0, 0x88f5, 'veth1_to_team\x00', 'ipddp0\x00', 'bridge_slave_1\x00', 'lo\x00', @dev={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xb}, [0xff, 0xff, 0xff, 0x0, 0x0, 0xff], @remote={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xbb}, [0xff, 0x0, 0xff, 0x0, 0x0, 0xff], 0xd0, 0x148, 0x178, [@cpu={'cpu\x00', 0x8, {{0x0, 0x1}}}, @connlabel={'connlabel\x00', 0x8, {{0x81, 0x3}}}]}, [@common=@CLASSIFY={'CLASSIFY\x00', 0x8}, @common=@RATEEST={'RATEEST\x00', 0x20, {{'syz1\x00', 0x0, 0x8, 0x4}}}]}, @common=@redirect={'redirect\x00', 0x8, {{0xffffffffffffffff}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffc, 0x1, [{{{0x15, 0x8, 0x9360, 'rose0\x00', 'bond_slave_0\x00', 'ipddp0\x00', 'bcsf0\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xf}, [0xff, 0xff, 0x0, 0xff, 0xff, 0xff], @broadcast=[0xff, 0xff, 0xff, 0xff, 0xff, 0xff], [0xff, 0xff, 0x0, 0xff, 0xff], 0x118, 0x148, 0x278, [@ip6={'ip6\x00', 0x50, {{@local={0xfe, 0x80, [], 0xaa}, @mcast2={0xff, 0x2, [], 0x1}, [0xffffffff, 0xff0000ff, 0xffffffff, 0xffffffff], [0xffffffff, 0xffffff00, 0xff, 0xffffffff], 0x2, 0x3a, 0x20, 0x4, 0x4e24, 0x4e21, 0x4e23, 0x4e23}}}, @pkttype={'pkttype\x00', 0x8, {{0x4}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x2}}}]}, @common=@SECMARK={'SECMARK\x00', 0x108, {{0x1, 0x5, 'system_u:object_r:hwdata_t:s0\x00'}}}}]}]}, 0x820) fallocate(r4, 0x3, 0x0, 0x5) write$P9_RXATTRCREATE(r4, &(0x7f0000000000)={0x7, 0x21}, 0x7) creat(&(0x7f0000000140)='./file0\x00', 0x0) dup2(r1, r3) 09:06:04 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000280)={&(0x7f0000000080)={0x10}, 0xc, &(0x7f0000000240)={&(0x7f0000000440)=@bridge_getlink={0x34, 0x12, 0xd, 0x0, 0x0, {0x7}, [@IFLA_IFNAME={0x14, 0x3, 'vcan0\x00'}]}, 0x34}, 0x1}, 0x0) pipe(&(0x7f0000000000)={0xffffffffffffffff}) getsockopt$XDP_STATISTICS(r1, 0x11b, 0x7, &(0x7f0000000040), &(0x7f00000000c0)=0x18) memfd_create(&(0x7f0000000100)='vcan0\x00', 0x2) socket$bt_rfcomm(0x1f, 0x1, 0x3) 09:06:04 executing program 5: r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e24, 0x0, @ipv4={[], [0xff, 0xff], @loopback=0x7f000001}}, 0x1c) sendmmsg(r0, &(0x7f00000092c0), 0x4ff, 0x0) setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f00000000c0)=@security={'security\x00', 0xe, 0x4, 0x4c0, 0x130, 0x260, 0x0, 0x260, 0x0, 0x3f0, 0x3f0, 0x3f0, 0x3f0, 0x3f0, 0x4, &(0x7f0000000000), {[{{@uncond, 0x0, 0xf0, 0x130, 0x0, {}, [@common=@eui64={0x28, 'eui64\x00'}]}, @common=@inet=@LOG={0x40, 'LOG\x00', 0x0, {0xfffffffffffffff9, 0x0, "530a96ea24fd30b39f25a1fc36a114b26f0adabad74a2ac22dde591ed5be"}}}, {{@ipv6={@mcast2={0xff, 0x2, [], 0x1}, @empty, [0xffffff00], [0xffffff00, 0xffffff00, 0xffffffff, 0xffffffff], 'irlan0\x00', 'veth1_to_team\x00', {0xff}, {0xff}, 0x8, 0x3, 0x2, 0xe}, 0x0, 0xf0, 0x130, 0x0, {}, [@common=@hl={0x28, 'hl\x00', 0x0, {0x2, 0x4}}]}, @common=@unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00', 0x3, 0xffff, 0x1}}}, {{@ipv6={@empty, @empty, [0xffffffff, 0x1a0665e37100125f, 0xff, 0xffffffff], [0x0, 0xffffff00, 0x0, 0xff], 'eql\x00', 'erspan0\x00', {}, {0x8dad7014fee2246}, 0x6f, 0x0, 0x7, 0x21}, 0x0, 0x120, 0x190, 0x0, {}, [@common=@ah={0x30, 'ah\x00', 0x0, {0x4d6, 0x4d4, 0x4, 0x3, 0x1}}, @common=@icmp6={0x28, 'icmp6\x00', 0x0, {0x1f, 0x7, 0x1}}]}, @common=@unspec=@NFLOG={0x70, 'NFLOG\x00', 0x0, {0x80000000, 0x100, 0x7, 0x1, 0x0, "bbba4fa6767678efeab16f6350203e98c82129f4e6874a3ac4ecb737c1bfbff3c6310102610469ff82d3f281186273617c067f95940a54bc146b585d0176f252"}}}], {{[], 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x0, 0xfffffffffffffffe}}}}, 0x520) 09:06:04 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)) r0 = syz_open_dev$amidi(&(0x7f0000000000)='/dev/amidi#\x00', 0xffffffffffffffe1, 0x140) getsockopt$inet_sctp_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000040)={0x0, 0x9f8d, 0x2, [0x0, 0x0]}, &(0x7f0000000080)=0xc) setsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_id=r1, 0x4) socketpair$inet6_icmp_raw(0xa, 0x3, 0x3a, &(0x7f0000000100)) 09:06:04 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={"6c6f000000001e00", {0x2}}) 09:06:04 executing program 2 (fault-call:1 fault-nth:30): syz_mount_image$vfat(&(0x7f0000000180)='vfat\x00', &(0x7f0000000080)='./file0/file0\x00', 0x0, 0x0, &(0x7f0000001580), 0x0, &(0x7f0000000340)={[{@shortname_win95='shortname=win95', 0x2c}]}) syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f0000000100)='./file0\x00', 0xe004, 0x1, &(0x7f0000000380)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020401000200027000f8", 0x16}], 0x0, &(0x7f0000000340)=ANY=[]) 09:06:04 executing program 6: r0 = syz_open_dev$sndctrl(&(0x7f00000000c0)='/dev/snd/controlC#\x00', 0x0, 0x0) pipe(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$EVIOCGKEYCODE(r1, 0x80084504, &(0x7f0000000100)=""/99) perf_event_open(&(0x7f0000000280)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8ce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000005000), 0x2}, 0x1000000000c}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r0, 0xc0045516, &(0x7f0000000040)=0x100000006) getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffff9c, 0x84, 0x73, &(0x7f000000d000), &(0x7f0000001000)=0xfea6) ioctl$SNDRV_CTL_IOCTL_PVERSION(r0, 0xc1105517, &(0x7f0000001000)) 09:06:04 executing program 4: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000280)='/dev/nullb0\x00', 0x4002, 0x0) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x200000e, 0x13, r0, 0x0) sendfile(r0, r0, &(0x7f0000000080), 0x400) r1 = dup2(r0, r0) write$P9_ROPEN(r1, &(0x7f0000000000)={0x18, 0x71, 0x1, {{0x0, 0x2, 0x2}, 0x8}}, 0x18) [ 175.229702] FAULT_INJECTION: forcing a failure. [ 175.229702] name failslab, interval 1, probability 0, space 0, times 0 [ 175.241054] CPU: 1 PID: 12217 Comm: syz-executor2 Not tainted 4.18.0-rc5-next-20180720+ #12 [ 175.249554] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 175.258907] Call Trace: [ 175.261503] dump_stack+0x1c9/0x2b4 [ 175.265136] ? dump_stack_print_info.cold.2+0x52/0x52 [ 175.270327] ? ext4_getblk+0x10e/0x630 [ 175.274211] ? ext4_bread+0x95/0x2b0 [ 175.278022] ? ext4_append+0x14e/0x370 [ 175.281906] ? ext4_mkdir+0x532/0xe60 [ 175.285710] ? do_mkdirat+0x27b/0x310 [ 175.289534] should_fail.cold.4+0xa/0x11 [ 175.293618] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 175.298723] ? kasan_check_write+0x14/0x20 [ 175.302976] ? do_raw_spin_lock+0xc1/0x200 [ 175.307214] ? trace_hardirqs_on+0x10/0x10 [ 175.311459] ? debug_check_no_obj_freed+0x30b/0x595 [ 175.316497] ? trace_hardirqs_off+0xd/0x10 [ 175.320732] ? quarantine_put+0x10d/0x1b0 [ 175.324892] ? __kasan_slab_free+0x131/0x170 [ 175.329341] ? perf_trace_lock_acquire+0xeb/0x9a0 [ 175.334198] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 175.339757] ? ext4_ext_map_blocks+0xfb2/0x62e0 [ 175.344446] ? perf_trace_lock+0x920/0x920 [ 175.348713] __should_failslab+0x124/0x180 [ 175.352936] should_failslab+0x9/0x14 [ 175.356723] kmem_cache_alloc+0x47/0x760 [ 175.360770] ? perf_trace_lock+0x920/0x920 [ 175.364995] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 175.370015] ? ext4_es_can_be_merged+0x238/0x2a0 [ 175.374761] __es_insert_extent+0x305/0x1140 [ 175.379163] ? ext4_es_free_extent+0x820/0x820 [ 175.383735] ? lock_release+0xa30/0xa30 [ 175.387699] ? lock_acquire+0x1e4/0x540 [ 175.391662] ? ext4_map_blocks+0x480/0x1b60 [ 175.395979] ? kasan_check_write+0x14/0x20 [ 175.400216] ? do_raw_write_lock+0xbd/0x1b0 [ 175.404528] ext4_es_insert_extent+0x2ea/0x7e0 [ 175.409108] ? lock_release+0xa30/0xa30 [ 175.413070] ? ext4_es_find_delayed_extent_range+0xd80/0xd80 [ 175.418861] ? rcu_note_context_switch+0x730/0x730 [ 175.423778] ? down_write+0x8f/0x130 [ 175.427479] ? ext4_map_blocks+0x88b/0x1b60 [ 175.431813] ? down_read+0x1d0/0x1d0 [ 175.435521] ext4_map_blocks+0xb08/0x1b60 [ 175.439657] ? __save_stack_trace+0x8d/0xf0 [ 175.443965] ? ext4_issue_zeroout+0x190/0x190 [ 175.448445] ? save_stack+0x43/0xd0 [ 175.452062] ? __kasan_slab_free+0x11a/0x170 [ 175.456457] ? kasan_slab_free+0xe/0x10 [ 175.460426] ? kmem_cache_free+0x86/0x2d0 [ 175.464565] ext4_getblk+0x10e/0x630 [ 175.468265] ? ext4_iomap_begin+0x1350/0x1350 [ 175.472754] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 175.478283] ? __dquot_initialize+0x61d/0xde0 [ 175.482759] ext4_bread+0x95/0x2b0 [ 175.486279] ? ext4_getblk+0x630/0x630 [ 175.490145] ? dquot_get_next_dqblk+0x180/0x180 [ 175.494799] ? debug_check_no_obj_freed+0x30b/0x595 [ 175.499801] ext4_append+0x14e/0x370 [ 175.503498] ext4_mkdir+0x532/0xe60 [ 175.507111] ? ext4_init_dot_dotdot+0x510/0x510 [ 175.511763] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 175.517283] ? security_inode_permission+0xd2/0x100 [ 175.522282] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 175.527813] ? security_inode_mkdir+0xe8/0x120 [ 175.532377] vfs_mkdir+0x42e/0x6b0 [ 175.535898] do_mkdirat+0x27b/0x310 [ 175.539510] ? __ia32_sys_mknod+0xb0/0xb0 [ 175.543640] ? ksys_ioctl+0x81/0xd0 [ 175.547248] __x64_sys_mkdir+0x5c/0x80 [ 175.551127] do_syscall_64+0x1b9/0x820 [ 175.554997] ? finish_task_switch+0x1d3/0x870 [ 175.559488] ? syscall_return_slowpath+0x5e0/0x5e0 [ 175.564399] ? syscall_return_slowpath+0x31d/0x5e0 [ 175.569312] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 175.574326] ? prepare_exit_to_usermode+0x291/0x3b0 [ 175.579324] ? perf_trace_sys_enter+0xb10/0xb10 [ 175.583976] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 175.588807] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 175.593986] RIP: 0033:0x454ef7 [ 175.597156] Code: 1f 40 00 b8 5a 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 cd c5 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 ad c5 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 175.616338] RSP: 002b:00007fb8b6388a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 175.624043] RAX: ffffffffffffffda RBX: 00000000200003a8 RCX: 0000000000454ef7 09:06:05 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={"6c6f000000001f00", {0x2}}) 09:06:05 executing program 5: openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup\x00', 0x200002, 0x0) write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000040)={[{0x2f, 'pids', 0x20}]}, 0x6) 09:06:05 executing program 4: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000040)='/dev/cuse\x00', 0x800, 0x0) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f00000000c0)={r1, 0x28}, 0x10) ioctl$SNDRV_TIMER_IOCTL_PAUSE(r1, 0x54a3) bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0xc, 0xf, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000002000000000008000200000085000000000000000018170000", @ANYRES32=r1, @ANYBLOB="0000000000fd960095000000000000000000000000000000357ab7ffff080000000000000000000000950000000000000000000000000000009500000100000000000000000000000000000000000000"], &(0x7f0000000180)='syzkaller\x00', 0x1, 0x65, &(0x7f000000cf3d)=""/195, 0x800000000000, 0x1}, 0x48) getsockopt$inet_sctp_SCTP_RECVNXTINFO(r1, 0x84, 0x21, &(0x7f00000002c0), &(0x7f0000000300)=0x4) ioctl$sock_SIOCBRDELBR(r0, 0x89a1, &(0x7f0000000080)='yam0\x00') removexattr(&(0x7f0000000240)='./file0\x00', &(0x7f0000000280)=@known='security.capability\x00') 09:06:05 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)) r0 = accept$inet6(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0, @remote}, &(0x7f0000000040)=0x1c) clock_gettime(0x0, &(0x7f0000000b40)={0x0, 0x0}) recvmmsg(r0, &(0x7f0000000a40)=[{{&(0x7f0000000080)=@in={0x0, 0x0, @loopback}, 0x80, &(0x7f0000000180)=[{&(0x7f0000000100)=""/105, 0x69}], 0x1, &(0x7f00000001c0)=""/212, 0xd4, 0xff}, 0x1000}, {{&(0x7f00000002c0)=@ll={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @dev}, 0x80, &(0x7f0000000340)=[{&(0x7f0000000400)=""/181, 0xb5}], 0x1, &(0x7f00000004c0)=""/249, 0xf9, 0x4}, 0x7}, {{&(0x7f00000005c0)=@rc, 0x80, &(0x7f0000000700)=[{&(0x7f0000000640)=""/71, 0x47}, {&(0x7f00000006c0)=""/20, 0x14}], 0x2, &(0x7f0000000740)=""/18, 0x12, 0x1}, 0x9}, {{&(0x7f0000000780)=@pppol2tpv3={0x0, 0x0, {0x0, 0xffffffffffffffff, {0x0, 0x0, @multicast2}}}, 0x80, &(0x7f0000000900)=[{&(0x7f0000000800)=""/200, 0xc8}], 0x1, &(0x7f0000000940)=""/194, 0xc2, 0x100}, 0xc3}], 0x4, 0x2001, &(0x7f0000000b80)={r1, r2+10000000}) r4 = shmget(0x0, 0x4000, 0x0, &(0x7f0000ffb000/0x4000)=nil) getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000000bc0)={0x0, 0x0}, &(0x7f0000000c00)=0xc) getresgid(&(0x7f0000000c40), &(0x7f0000000c80)=0x0, &(0x7f0000000cc0)) getsockopt$inet6_IPV6_IPSEC_POLICY(r0, 0x29, 0x22, &(0x7f0000000d00)={{{@in=@multicast1, @in6=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@dev}, 0x0, @in6=@ipv4={[], [], @remote}}}, &(0x7f0000000e00)=0xe8) getgroups(0x1, &(0x7f0000000e40)=[0xffffffffffffffff]) r9 = getpgrp(0xffffffffffffffff) ioctl$TIOCGSID(0xffffffffffffff9c, 0x5429, &(0x7f0000000e80)=0x0) shmctl$IPC_SET(r4, 0x1, &(0x7f0000000ec0)={{0x65a9, r5, r6, r7, r8, 0x61, 0xdba}, 0xf, 0x1, 0xc9e, 0xfff, r9, r10, 0x1}) 09:06:05 executing program 1: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f000069c000)='/dev/sequencer2\x00', 0x0, 0x0) ioctl$TIOCSWINSZ(r1, 0x5414, &(0x7f0000000000)={0x4, 0x9, 0x3ff9, 0x10001}) ioctl$SNDRV_SEQ_IOCTL_GET_SUBSCRIPTION(r1, 0x40085112, &(0x7f0000b18000)={{0xffffff92}, {0xffffffb0}}) ioctl$SG_GET_TIMEOUT(r1, 0x2202, 0x0) 09:06:05 executing program 6: r0 = syz_open_dev$sndctrl(&(0x7f00000000c0)='/dev/snd/controlC#\x00', 0x0, 0x0) pipe(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$EVIOCGKEYCODE(r1, 0x80084504, &(0x7f0000000100)=""/99) perf_event_open(&(0x7f0000000280)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8ce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000005000), 0x2}, 0x1000000000c}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r0, 0xc0045516, &(0x7f0000000040)=0x100000006) getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffff9c, 0x84, 0x73, &(0x7f000000d000), &(0x7f0000001000)=0xfea6) ioctl$SNDRV_CTL_IOCTL_PVERSION(r0, 0xc1105517, &(0x7f0000001000)) [ 175.631293] RDX: 0000000000000014 RSI: 00000000000001ff RDI: 0000000020000100 [ 175.638545] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 175.645825] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000014 [ 175.653686] R13: 0000000000000001 R14: 00000000004d3de0 R15: 000000000000001e 09:06:05 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={"6c6f00000600", {0x2}}) 09:06:05 executing program 2 (fault-call:1 fault-nth:31): syz_mount_image$vfat(&(0x7f0000000180)='vfat\x00', &(0x7f0000000080)='./file0/file0\x00', 0x0, 0x0, &(0x7f0000001580), 0x0, &(0x7f0000000340)={[{@shortname_win95='shortname=win95', 0x2c}]}) syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f0000000100)='./file0\x00', 0xe004, 0x1, &(0x7f0000000380)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020401000200027000f8", 0x16}], 0x0, &(0x7f0000000340)=ANY=[]) [ 175.791810] FAULT_INJECTION: forcing a failure. [ 175.791810] name failslab, interval 1, probability 0, space 0, times 0 [ 175.803124] CPU: 1 PID: 12255 Comm: syz-executor2 Not tainted 4.18.0-rc5-next-20180720+ #12 [ 175.811608] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 175.820976] Call Trace: [ 175.823567] dump_stack+0x1c9/0x2b4 [ 175.827195] ? dump_stack_print_info.cold.2+0x52/0x52 [ 175.832389] should_fail.cold.4+0xa/0x11 [ 175.836471] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 175.841585] ? kasan_check_write+0x14/0x20 [ 175.845819] ? __brelse+0x104/0x180 [ 175.849446] ? block_commit_write+0x30/0x30 [ 175.853771] ? kasan_check_write+0x14/0x20 [ 175.858001] ? do_raw_spin_lock+0xc1/0x200 [ 175.862236] ? __find_get_block+0x36d/0xe60 [ 175.866591] ? block_invalidatepage+0x520/0x520 [ 175.871261] ? do_raw_write_trylock+0x1c0/0x1c0 [ 175.875932] ? check_same_owner+0x340/0x340 [ 175.880253] ? lock_downgrade+0x8f0/0x8f0 [ 175.884403] ? check_same_owner+0x340/0x340 [ 175.888906] ? rcu_note_context_switch+0x730/0x730 [ 175.894099] __should_failslab+0x124/0x180 [ 175.898335] should_failslab+0x9/0x14 [ 175.902136] kmem_cache_alloc+0x2af/0x760 [ 175.906286] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 175.911323] ? __find_get_block+0xe60/0xe60 [ 175.915648] jbd2_journal_add_journal_head+0x1ef/0x5d0 [ 175.920925] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 175.926472] ? jbd2_journal_write_metadata_buffer+0xf00/0xf00 [ 175.932367] jbd2_journal_get_create_access+0x42/0x600 [ 175.937671] ? rcu_note_context_switch+0x730/0x730 [ 175.942601] __ext4_journal_get_create_access+0x46/0x90 [ 175.947969] ext4_getblk+0x2be/0x630 [ 175.951684] ? ext4_iomap_begin+0x1350/0x1350 [ 175.956182] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 175.961722] ? __dquot_initialize+0x61d/0xde0 [ 175.966217] ext4_bread+0x95/0x2b0 [ 175.969754] ? ext4_getblk+0x630/0x630 [ 175.973640] ? dquot_get_next_dqblk+0x180/0x180 [ 175.978307] ? debug_check_no_obj_freed+0x30b/0x595 [ 175.983322] ext4_append+0x14e/0x370 [ 175.987035] ext4_mkdir+0x532/0xe60 [ 175.990662] ? ext4_init_dot_dotdot+0x510/0x510 [ 175.995331] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 176.000869] ? security_inode_permission+0xd2/0x100 [ 176.005889] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 176.011432] ? security_inode_mkdir+0xe8/0x120 [ 176.016019] vfs_mkdir+0x42e/0x6b0 [ 176.019560] do_mkdirat+0x27b/0x310 [ 176.023194] ? __ia32_sys_mknod+0xb0/0xb0 [ 176.027342] ? ksys_ioctl+0x81/0xd0 [ 176.030968] __x64_sys_mkdir+0x5c/0x80 [ 176.034877] do_syscall_64+0x1b9/0x820 [ 176.038762] ? finish_task_switch+0x1d3/0x870 [ 176.043257] ? syscall_return_slowpath+0x5e0/0x5e0 [ 176.048186] ? syscall_return_slowpath+0x31d/0x5e0 [ 176.053116] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 176.058134] ? prepare_exit_to_usermode+0x291/0x3b0 [ 176.063146] ? perf_trace_sys_enter+0xb10/0xb10 [ 176.067812] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 176.072660] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 176.077843] RIP: 0033:0x454ef7 [ 176.081019] Code: 1f 40 00 b8 5a 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 cd c5 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 ad c5 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 176.100384] RSP: 002b:00007fb8b6388a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 176.108128] RAX: ffffffffffffffda RBX: 00000000200003a8 RCX: 0000000000454ef7 [ 176.115401] RDX: 0000000000000014 RSI: 00000000000001ff RDI: 0000000020000100 [ 176.122670] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 176.129962] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000014 [ 176.137234] R13: 0000000000000001 R14: 00000000004d3de0 R15: 000000000000001f [ 176.144653] ENOMEM in journal_alloc_journal_head, retrying. 09:06:06 executing program 0: r0 = syz_open_dev$amidi(&(0x7f0000000100)='/dev/amidi#\x00', 0x3, 0x40) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r0, 0xc10c5541, &(0x7f00000004c0)={0x9, 0x2, 0x0, 0x0, 0x0, [], [], [], 0x1, 0x4}) r1 = openat(0xffffffffffffffff, &(0x7f0000000080)='./file0\x00', 0x80000, 0x80) ioctl$RTC_ALM_SET(r1, 0x40247007, &(0x7f00000000c0)={0x9, 0x20, 0x7, 0x10, 0x6, 0x3, 0x0, 0x31, 0x1}) r2 = socket(0x48d7f39f3852d085, 0x80006, 0x1d58) getsockopt$inet_sctp6_SCTP_DISABLE_FRAGMENTS(r2, 0x84, 0x8, &(0x7f0000000140), &(0x7f0000000040)=0xfffffffffffffce2) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptmx\x00', 0x8400, 0x0) ioctl$SNDRV_CTL_IOCTL_PCM_NEXT_DEVICE(r1, 0x80045530, &(0x7f00000003c0)=""/195) r3 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r3, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r4 = bpf$MAP_CREATE(0x0, &(0x7f0000dec000)={0x6, 0x4, 0x1, 0x7}, 0x2c) readahead(r4, 0xff, 0xfffffffffffffffe) setsockopt$inet6_IPV6_ADDRFORM(r1, 0x29, 0x1, &(0x7f0000000000)=0x2, 0x374) bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000c88000)={r4, &(0x7f0000847f95), &(0x7f000089b000)}, 0x18) 09:06:06 executing program 7: r0 = syz_open_dev$sndpcmp(&(0x7f0000000040)='/dev/snd/pcmC#D#p\x00', 0x9, 0x2) r1 = memfd_create(&(0x7f0000000140)='\x00', 0x2) renameat(r0, &(0x7f0000000080)='./file0\x00', r1, &(0x7f0000000180)='./file0\x00') lstat(&(0x7f0000000000)='./file0\x00', &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) renameat(r0, &(0x7f00000001c0)='./file0\x00', r0, &(0x7f0000000200)='./file0\x00') fcntl$F_SET_FILE_RW_HINT(r1, 0x40e, &(0x7f0000000240)) fallocate(r1, 0x13, 0x1, 0x20) shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)={{0x0, 0x0, 0x0, 0x0, r2, 0x0, 0x3}}) 09:06:06 executing program 6: r0 = syz_open_dev$sndctrl(&(0x7f00000000c0)='/dev/snd/controlC#\x00', 0x0, 0x0) pipe(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$EVIOCGKEYCODE(r1, 0x80084504, &(0x7f0000000100)=""/99) perf_event_open(&(0x7f0000000280)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8ce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000005000), 0x2}, 0x1000000000c}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r0, 0xc0045516, &(0x7f0000000040)=0x100000006) ioctl$SNDRV_CTL_IOCTL_PVERSION(r0, 0xc1105517, &(0x7f0000001000)) 09:06:06 executing program 5: sendmsg$inet_sctp(0xffffffffffffffff, &(0x7f0000001880)={&(0x7f0000000180)=@in={0x2, 0x0, @dev={0xac, 0x14, 0x14}}, 0x10, &(0x7f00000017c0)=[{&(0x7f0000000500)="79c9", 0x2}], 0x1, &(0x7f0000001840)}, 0x0) r0 = syz_open_dev$sndpcmc(&(0x7f0000001fee)='/dev/snd/pcmC#D#c\x00', 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x2400, 0x5) ioctl(r0, 0xc2604110, &(0x7f0000000300)="50c228c7a7fe43a82e7a1cbb1e97c83bd6c249d73fbb77c79691813e0f5f03e35909b50a239839b430d79eabea8067d9dd073c677726631cc36d8c006c98e443d096cea05c") r1 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000240)='IPVS\x00') openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x1, 0x0) sendmsg$IPVS_CMD_GET_SERVICE(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x70, r1, 0x100, 0x70bd29, 0x25dfdbfc, {0x4}, [@IPVS_CMD_ATTR_SERVICE={0x28, 0x1, [@IPVS_SVC_ATTR_PROTOCOL={0x8, 0x2, 0x1f}, @IPVS_SVC_ATTR_SCHED_NAME={0x8, 0x6, 'ovf\x00'}, @IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv6=@local={0xfe, 0x80, [], 0xaa}}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0xad}, @IPVS_CMD_ATTR_DEST={0x1c, 0x2, [@IPVS_DEST_ATTR_FWD_METHOD={0x8, 0x3, 0x1}, @IPVS_DEST_ATTR_L_THRESH={0x8, 0x6, 0x400000000000}, @IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0x1}]}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x100000001}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x101}]}, 0x70}, 0x1, 0x0, 0x0, 0x40000}, 0x4000) 09:06:06 executing program 1: r0 = syz_open_dev$usbmon(&(0x7f0000000080)='/dev/usbmon#\x00', 0x8, 0x400) ioctl$SNDRV_CTL_IOCTL_PCM_NEXT_DEVICE(r0, 0x80045530, &(0x7f0000000140)=""/77) bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0xe, 0x200000000000021a, &(0x7f0000001000)=ANY=[@ANYRES64], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, [], 0x0, 0xf}, 0x48) ioctl$RNDGETENTCNT(r0, 0x80045200, &(0x7f00000000c0)) setsockopt$inet6_dccp_buf(r0, 0x21, 0xf, &(0x7f00000001c0)="beb6230a963a54da47e91bd2e6268ee07e34e3d63af415b6276b18237ef1fe42819b5e853c7a2ba7535913b1b18f36e481313fb83a28841b3a7a028599257ba5c5c25e25fb3f7855acdb9463b72b4e16df469d104f5f365d335896a81e8efa198f254a179185066095c7b8dbdb40404b27479a0a4b7b8982a9e5c8e8", 0x7c) setsockopt$SO_VM_SOCKETS_BUFFER_MAX_SIZE(r0, 0x28, 0x2, &(0x7f0000000240)=0xa89, 0x8) 09:06:06 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={'lo\x00\x00`\x00', {0x2}}) 09:06:06 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000080)={0x0, 0x0}, &(0x7f00000000c0)=0xc) fstat(r1, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) fcntl$addseals(r0, 0x409, 0x0) lchown(&(0x7f0000000040)="e91f7189591e9233614b00", r2, r3) openat$sequencer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x40000, 0x0) 09:06:06 executing program 2 (fault-call:1 fault-nth:32): syz_mount_image$vfat(&(0x7f0000000180)='vfat\x00', &(0x7f0000000080)='./file0/file0\x00', 0x0, 0x0, &(0x7f0000001580), 0x0, &(0x7f0000000340)={[{@shortname_win95='shortname=win95', 0x2c}]}) syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f0000000100)='./file0\x00', 0xe004, 0x1, &(0x7f0000000380)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020401000200027000f8", 0x16}], 0x0, &(0x7f0000000340)=ANY=[]) [ 176.289114] snd_dummy snd_dummy.0: control 112:0:0:Î:0 is already present [ 176.319719] FAULT_INJECTION: forcing a failure. [ 176.319719] name failslab, interval 1, probability 0, space 0, times 0 [ 176.331049] CPU: 1 PID: 12267 Comm: syz-executor2 Not tainted 4.18.0-rc5-next-20180720+ #12 [ 176.339542] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 176.348903] Call Trace: [ 176.351491] dump_stack+0x1c9/0x2b4 [ 176.355113] ? dump_stack_print_info.cold.2+0x52/0x52 [ 176.360354] ? jbd2_buffer_abort_trigger+0x90/0x90 [ 176.365314] should_fail.cold.4+0xa/0x11 [ 176.369369] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 176.374468] ? select_collect+0x610/0x610 [ 176.378606] ? lock_downgrade+0x8f0/0x8f0 [ 176.382748] ? lock_acquire+0x1e4/0x540 [ 176.386712] ? mntput_no_expire+0x160/0xbc0 [ 176.391025] ? lock_downgrade+0x8f0/0x8f0 [ 176.395160] ? lock_release+0xa30/0xa30 [ 176.399137] ? dput.part.26+0x248/0x7a0 [ 176.403895] ? lock_acquire+0x1e4/0x540 [ 176.407864] ? fs_reclaim_acquire+0x20/0x20 [ 176.412173] ? lock_downgrade+0x8f0/0x8f0 [ 176.416324] ? check_same_owner+0x340/0x340 [ 176.420630] ? mnt_get_count+0x150/0x150 [ 176.424676] ? rcu_note_context_switch+0x730/0x730 [ 176.429590] ? dput.part.26+0x276/0x7a0 [ 176.433557] __should_failslab+0x124/0x180 [ 176.437779] should_failslab+0x9/0x14 [ 176.441567] __kmalloc_track_caller+0x2c4/0x760 [ 176.446223] ? strncpy_from_user+0x510/0x510 [ 176.450615] ? strndup_user+0x77/0xd0 [ 176.454404] memdup_user+0x2c/0xa0 [ 176.457927] strndup_user+0x77/0xd0 [ 176.461543] ksys_mount+0x3c/0x140 [ 176.465069] __x64_sys_mount+0xbe/0x150 [ 176.469036] do_syscall_64+0x1b9/0x820 [ 176.472921] ? finish_task_switch+0x1d3/0x870 [ 176.477421] ? syscall_return_slowpath+0x5e0/0x5e0 [ 176.482348] ? syscall_return_slowpath+0x31d/0x5e0 [ 176.487281] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 176.492285] ? prepare_exit_to_usermode+0x291/0x3b0 [ 176.497308] ? perf_trace_sys_enter+0xb10/0xb10 [ 176.501964] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 176.506801] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 176.511980] RIP: 0033:0x4584ea [ 176.515167] Code: b8 a6 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 dd 8f fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 ba 8f fb ff c3 66 0f 1f 84 00 00 00 00 00 09:06:06 executing program 6: r0 = syz_open_dev$sndctrl(&(0x7f00000000c0)='/dev/snd/controlC#\x00', 0x0, 0x0) pipe(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$EVIOCGKEYCODE(r1, 0x80084504, &(0x7f0000000100)=""/99) perf_event_open(&(0x7f0000000280)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8ce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000005000), 0x2}, 0x1000000000c}, 0x0, 0x0, 0xffffffffffffffff, 0x0) getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffff9c, 0x84, 0x73, &(0x7f000000d000), &(0x7f0000001000)=0xfea6) ioctl$SNDRV_CTL_IOCTL_PVERSION(r0, 0xc1105517, &(0x7f0000001000)) 09:06:06 executing program 5: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f000001f000)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_nopr_hmac_sha512\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x5, &(0x7f0000000280)="8e52b9cf7f6b2910e01d92ece8c5bbb11f730000c489b713378e01bef2b7897d9b", 0x21) r1 = fcntl$getown(r0, 0x9) fcntl$setown(r0, 0x8, r1) r2 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x208000, 0x0) r3 = geteuid() mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f00000000c0)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r0}, 0x2c, {[{@loose='loose', 0x2c}, {@posixacl='posixacl', 0x2c}, {@fscache='fscache', 0x2c}, {@access_any='access=any', 0x2c}, {@fscache='fscache', 0x2c}, {@afid={'afid', 0x3d, 0x1ff}, 0x2c}, {@noextend='noextend', 0x2c}, {@msize={'msize', 0x3d}, 0x2c}, {@debug={'debug', 0x3d, 0x85}, 0x2c}, {@access_uid={'access', 0x3d, r3}, 0x2c}]}}) 09:06:06 executing program 4: r0 = open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) r1 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r1, 0x8912, &(0x7f0000000080)="025cc83d6d345f8f762070") mmap(&(0x7f0000003000/0x2000)=nil, 0x2000, 0x4, 0x1012, r0, 0x0) write$tun(r0, &(0x7f00000000c0)=ANY=[@ANYBLOB="210ac581cc8bc19e1eb9d938eeda4811060000000000000000000000000000"], 0x1) r2 = perf_event_open(&(0x7f0000000180)={0x6, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r2) 09:06:06 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={"6c6f00000000000000000100", {0x2}}) 09:06:06 executing program 7: r0 = shmget(0x3, 0x3000, 0x0, &(0x7f0000ffd000/0x3000)=nil) stat(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) shmctl$IPC_SET(r0, 0x1, &(0x7f0000000380)={{0x80000000000000, 0x0, r1}, 0x0, 0x0, 0x800000}) unshare(0x50000400) r2 = syz_open_dev$sndpcmp(&(0x7f0000000000)='/dev/snd/pcmC#D#p\x00', 0x800, 0x600400) setsockopt$inet6_dccp_buf(r2, 0x21, 0xf, &(0x7f0000000400)="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", 0x1000) [ 176.534458] RSP: 002b:00007fb8b6388a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 176.542164] RAX: ffffffffffffffda RBX: 00007fb8b6388b30 RCX: 00000000004584ea [ 176.549420] RDX: 00007fb8b6388ad0 RSI: 0000000020000100 RDI: 00007fb8b6388af0 [ 176.556678] RBP: 0000000020000100 R08: 00007fb8b6388b30 R09: 00007fb8b6388ad0 [ 176.563939] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000014 [ 176.571212] R13: 0000000000000000 R14: 00000000004d3de0 R15: 0000000000000020 09:06:06 executing program 1: r0 = creat(&(0x7f0000001380)='./file0\x00', 0x0) r1 = creat(&(0x7f0000000140)='./file0\x00', 0x0) write$cgroup_type(r0, &(0x7f0000000040)='threaded\x00', 0x8) r2 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r2, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") ioctl$fiemap(r2, 0xc020660b, &(0x7f0000000180)={0x9, 0x100000001, 0x2, 0x8000, 0x3, [{0x9, 0x5, 0x9, 0x0, 0x0, 0x3000}, {0x6, 0x0, 0x5, 0x0, 0x0, 0x908}, {0x5, 0x0, 0x3f, 0x0, 0x0, 0xac32f291caba997a}]}) fallocate(r1, 0x3, 0x4, 0xffff) ioctl$KDGKBSENT(r1, 0x4b48, &(0x7f0000000000)={0x80000001, 0x82, 0x10000}) 09:06:06 executing program 0: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ptmx\x00', 0x2, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x1}) write$binfmt_elf64(r0, &(0x7f00000004c0)=ANY=[@ANYBLOB="a06182ab1b11d509a75ff6da530c55f294f1eb7eea259209f53187bfb914b76270ae788b0c252ed5673fca1dbe5adbf94b21df891ad7ae19bc91abe0c7e5708ee7561754b860f5c5518e10667095e61f04925fd122151fd066a2fbf262076f7a28bfe501fc6d3037081be2e5017fedea2333a1a024303a4526a357f34393cb76c379ea34d98874cc7e70aafeaf507e22bffd81cb4c3976039aaf81510f1239582d9ea97034f06ab4595fa4faf12720cd8cdbbaff4975d84c00b731c79eab32691b0000000000000000000000000000000000ade4b67a452e68b29a7dc4118896010c0e292bfbe4586822cd9387bb20b619256ce5c082f64b66b7ec8acc27af06d225a5ef7b7d9ef167bdf5111dfcf94603826868604a02c4de7b5df5e7af69c3046edc7f93137e66e939fc8d5742aa3bad34c6233472e34a4a84789d8b9200f063a2f174356b4c2b00bf47cc344b920fceb4bd738cd5ce19c8f87c4b77499942f3635058f6fcba736448b0c3aebd358cd1662354e5ccf1564f17dd7f7440c13f59f1f0c547a68b931aeffff529833449b8cdb990c679f975c1e89def778e4222c3f629d0ae78604b739d567d75138a43710dabfa0f84d56b3ee16dae316df5c194c91ff030d1aa5552428af0c7c0825d00000000000000000000000016b0d4ceb761dc092d63ff90a1a4269c66d36c084920b86518b865b76e0ba94862a4e2644ea079958558fc64b570e44d34ac6c0eebd104c9c1eddccadbc074dec01a4ff621160ddcdfd4d4abc5da2f05ed9d2ee5ffb64de1bbf25133d4f74f5d59bd0cab49f83cc035ea1b8da1f95e749ac8cebd6e35f1a43be39812bef3abbf0ab8f937e4674f0b9fd9b351a36091d07f63070ad7d5b78534982d7986ea3fd5b5b4b9baaee89ebc6061c273af3a7ddda3bc5e51e3162d4f05cbb7f14f8c7af93eca7832f15ba721e15d2433fdb75d2e610145267d536274e564736a3e82c9851b2680087e01da00000000000000000000000000"], 0x2d0) r1 = syz_open_pts(r0, 0x0) ioctl$TCSETAW(r0, 0x5407, &(0x7f0000000000)={0xffffffffffffffff, 0x0, 0x0, 0x87f, 0x0, 0x0, 0x0, 0x0, 0x7f}) ioctl$TCSETSF(r1, 0x5412, &(0x7f0000000040)={0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x101, 0x0, 0x0, 0x2}) 09:06:06 executing program 6: r0 = syz_open_dev$sndctrl(&(0x7f00000000c0)='/dev/snd/controlC#\x00', 0x0, 0x0) pipe(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$EVIOCGKEYCODE(r1, 0x80084504, &(0x7f0000000100)=""/99) perf_event_open(&(0x7f0000000280)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8ce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000005000), 0x2}, 0x1000000000c}, 0x0, 0x0, 0xffffffffffffffff, 0x0) getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffff9c, 0x84, 0x73, &(0x7f000000d000), &(0x7f0000001000)=0xfea6) ioctl$SNDRV_CTL_IOCTL_PVERSION(r0, 0xc1105517, &(0x7f0000001000)) 09:06:06 executing program 5: bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0x3, &(0x7f0000000040)=ANY=[@ANYBLOB="180000000000000000000000028000007a0a00fffffffffd630120"], &(0x7f0000000000)="47504c00bc2e070000004823122000000000000000000000000000", 0x0, 0xce, &(0x7f0000000300)=""/206}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0xe, 0x5, &(0x7f0000000080)=@framed={{0x18}, [@jmp={0x5}], {0x95}}, &(0x7f00000004c0)="73797a6b584e3e2f9afed6d0ee3d5d5de2f791e4545b69c564e359a02949ab535c1b25caa665b968d2f1a32e3febe4189befa5f044722bae83e5b6959e392e8d24e41b4ce153c97b5a23e135e38d3b1d14ad7a9eeb7069347fee053569544f1a0000000000000000", 0x80000001, 0xbb, &(0x7f0000000300)=""/187}, 0x48) 09:06:06 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={"6c6f00000000000000000600", {0x2}}) 09:06:06 executing program 7: r0 = socket$inet6(0xa, 0x3, 0x8000) ioctl$sock_ifreq(r0, 0x0, &(0x7f0000000140)={'bcsf0\x00', @ifru_mtu=0x81}) fcntl$getownex(0xffffffffffffff9c, 0x10, &(0x7f0000000100)={0x0, 0x0}) shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000080)={{}, 0x0, 0x0, 0x0, 0x0, 0x0, r1}) r2 = socket$inet_dccp(0x2, 0x6, 0x0) getsockopt$IPT_SO_GET_REVISION_MATCH(r2, 0x0, 0x42, &(0x7f0000000000)={'icmp\x00'}, &(0x7f0000000040)=0x1e) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000180)={@empty, 0x0, 0x0, 0x0, 0x4, 0x4c03, 0x10000, 0x5}, 0x20) 09:06:06 executing program 1: r0 = socket$can_bcm(0x1d, 0x2, 0x2) getsockopt$inet_pktinfo(0xffffffffffffff9c, 0x0, 0x8, &(0x7f0000000300)={0x0, @dev}, &(0x7f0000000340)=0xc) getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x14, &(0x7f00000028c0)={@local}, &(0x7f0000002900)=0x14) connect$can_bcm(r0, &(0x7f0000000180)={0x1d, r1}, 0xfe4f) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000026c0)={'bond_slave_0\x00', 0x0}) r3 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000080)='/dev/rfkill\x00', 0x80000, 0x0) ioctl$KDSETMODE(r3, 0x4b3a, 0x100) ioctl$sock_bt_hidp_HIDPCONNADD(r3, 0x400448c8, &(0x7f0000000400)={r0, r3, 0xffff, 0x0, &(0x7f00000000c0)="7b1d0314400fd8d56968f0d30ea9382d2e96f01bd5bd5877bba604693b85070dfb11838999d7f69e15b2fe0f8eca14f3ca729a1352ba9a98aeaa670b8959ffc2befeed54b99301aaaa9bfe433f5e312c071e53b375a078e66364cbeb89852cc1", 0x3, 0x7ff, 0x5, 0x9da6, 0x10b, 0xffffffffffff3b08, 0x5a99692e, "51eb3a9c0de081b081a6f2035a9c74bfb19ac987ed67e0253e38e7b20dca8044164ca942ac7dc5e56f57f52f1605e7e7b0f9e27229a8ba019c247540bef73233db0a7b66995bd12dadfbf2efaea2642d037c996d78b78a8e436f1627f46882358d0a0b79453733d4c34c72284d65ee30976bf1aa58a6f80af75a70a0fdfe07f96d38228dfc09cad7bc25fb593bdb44104aa9e8da5e9c8c47777a77177fde1c949782c20ed7c85cc18cb9bc55ffedf9699d5a320e2d5d290882ada61330625029601d3a0fd7"}) sendmsg$can_bcm(r0, &(0x7f00000003c0)={&(0x7f0000000280)={0x1d, r2}, 0x3ce, &(0x7f0000000380)={&(0x7f0000000000)=ANY=[@ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00', @ANYRES64=0x0, @ANYRES64=0x0, @ANYRES64=0x0, @ANYRES64=0x7530, @ANYBLOB="00000000010000000000000000000000388dbba2b150d176c26a11e8765b5a7fcba980a37eb498"], 0x48}, 0x1}, 0x0) 09:06:06 executing program 4: socket$packet(0x11, 0x3, 0x300) r0 = socket$netlink(0x10, 0x3, 0x4) write(r0, &(0x7f0000fa8000)="2700000014000707030e0000120f0a0011000100f5fe0012ff000000078a151f75080039000500", 0x27) socket$packet(0x11, 0x2, 0x300) socket$packet(0x11, 0x3, 0x300) r1 = socket(0x11, 0x3, 0x0) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000100)=[{0x6}]}, 0x10) r2 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r2, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") pipe(&(0x7f0000000000)={0xffffffffffffffff}) ioctl$KVM_SET_SIGNAL_MASK(r3, 0x4004ae8b, &(0x7f0000000180)={0xd6, "3a6b59001bf0505936caba00601eb55e94a483a59c1be8b4397d0bda77fee17e342fbb7debe0975e0c2069f1388b5023a0938b756f4ef3993deb8127c883e9731b6e35e1f965fbf4c74ddcb3592910a7f751639c24f0983dd76bc2cfc325d79e6e98e81e24ad2312f776c64f7922ac9975a6863a6d64e726c5162d6bab622b0e350a1209a630eeecc19d753c4dec7c8c98f6e0e526560f4ec02dae69d52db768ea8fd50454ba88bf9159b49ea709bd0f1eabbd81c079446f4e618d5b9312cdfb059702d8be7b5f7954c8a330f8b4fdb37f27ee6eaa8c"}) socket(0x2, 0xa, 0x0) recvmsg(r0, &(0x7f0000000640)={&(0x7f0000000040)=@rc, 0x80, &(0x7f0000000580), 0x0, &(0x7f00000005c0)=""/124, 0x7c}, 0x0) 09:06:06 executing program 0: r0 = syz_open_procfs$namespace(0x0, &(0x7f0000000040)='ns/ipc\x00') r1 = socket$inet6(0xa, 0x80003, 0x6) r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/vs/backup_only\x00', 0x2, 0x0) r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000100)='vmnet0ppp1!\x00', r2}, 0x10) bind$alg(r2, &(0x7f0000000080)={0x26, 'hash\x00', 0x0, 0x0, 'sha1-avx2\x00'}, 0x58) ioctl(r1, 0x8912, &(0x7f00000002c0)="0000c83d6dff7f8f092070b0b33499da77fe94ee01b42a5eb431afa382091545674d10e886194cd3b998bd3aee0000002cc48ae1508b8224a60bafb771b702020c7b7c7c77f2a288894ddb4cfe421edf8133d7cd4468a05b44f0d1c6573b243a12cecd70f0c66450499edcadf124bb7456937e75d9f5a2d9000000000000000000000000000000db78bd62e55b5dbbe2e02785fe5674fc6d7d8d0aa4e8400c6d940eb5b4e3a27ef2980a4043c6deef33848e905c3149b542f7cb2f5b07be76df71da4af80af744055b64672eb2acbb8bad414a394dacd2e7edfc53d2e48d57953478eb0c4aed6bf05dde820e131e6b82f06bb966da561924") write$P9_RLCREATE(r3, &(0x7f0000000180)={0x18, 0xf, 0x1, {{0x0, 0x4, 0x6}, 0x100000000}}, 0x18) setns(r0, 0x8000000) 09:06:06 executing program 5: r0 = socket$inet6(0xa, 0x1, 0xf898) ioctl$fiemap(r0, 0xc020660b, &(0x7f00000000c0)={0x80000000, 0x4, 0x4, 0x3, 0x6, [{0x8, 0x7, 0x2, 0x0, 0x0, 0x2400}, {0xfffffffffffffffc, 0x95, 0x0, 0x0, 0x0, 0x1}, {0x6, 0x401, 0x7, 0x0, 0x0, 0x80}, {0x0, 0x5ee, 0x8000, 0x0, 0x0, 0x4}, {0x2, 0xffffffffffffff00, 0x7, 0x0, 0x0, 0x2200}, {0xffffffffffffffff, 0xd9, 0x3, 0x0, 0x0, 0xc00}]}) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = bpf$MAP_CREATE(0x0, &(0x7f0000346fd4)={0x0, 0x0, 0x0, 0x8d4, 0x10}, 0x2c) bpf$PROG_LOAD(0x5, &(0x7f00000ba000)={0xe, 0xa, &(0x7f0000000040)=@raw=[@map={0x18, 0x0, 0x1, 0x0, r1}, @call={0x85, 0x0, 0x0, 0x4c}, @jmp={0x5, 0x5, 0x0, 0x0, 0xb, 0xffffffffffffffe0, 0xfffffffffffffffc}, @ldst={0x1, 0x2, 0x0, 0xf, 0x9, 0x10, 0x4}, @exit={0x95}], &(0x7f0000000000)='GPL\x00', 0x0, 0xfb, &(0x7f00001a7f05)=""/251, 0x800000000}, 0x48) r2 = syz_open_dev$midi(&(0x7f0000000240)='/dev/midi#\x00', 0x2000000000000000, 0x8400) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, &(0x7f0000000440)={0x2, [0x0, 0x0]}, &(0x7f0000000300)=0x1c9) getsockopt$inet_sctp_SCTP_LOCAL_AUTH_CHUNKS(r2, 0x84, 0x1b, &(0x7f0000000340)={r3, 0x3e, "6302ef087eb420a7c2ee09b137b1164748accb356ef17611006a94f2061349f31ee97ad5e606aa4e9272a4c3fd71cc30d0bbc2c2481a09ea59719bd3d7fc"}, &(0x7f00000003c0)=0x46) 09:06:06 executing program 2 (fault-call:1 fault-nth:33): syz_mount_image$vfat(&(0x7f0000000180)='vfat\x00', &(0x7f0000000080)='./file0/file0\x00', 0x0, 0x0, &(0x7f0000001580), 0x0, &(0x7f0000000340)={[{@shortname_win95='shortname=win95', 0x2c}]}) syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f0000000100)='./file0\x00', 0xe004, 0x1, &(0x7f0000000380)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020401000200027000f8", 0x16}], 0x0, &(0x7f0000000340)=ANY=[]) 09:06:06 executing program 6: r0 = syz_open_dev$sndctrl(&(0x7f00000000c0)='/dev/snd/controlC#\x00', 0x0, 0x0) pipe(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$EVIOCGKEYCODE(r1, 0x80084504, &(0x7f0000000100)=""/99) perf_event_open(&(0x7f0000000280)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8ce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000005000), 0x2}, 0x1000000000c}, 0x0, 0x0, 0xffffffffffffffff, 0x0) getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffff9c, 0x84, 0x73, &(0x7f000000d000), &(0x7f0000001000)=0xfea6) ioctl$SNDRV_CTL_IOCTL_PVERSION(r0, 0xc1105517, &(0x7f0000001000)) 09:06:06 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)) pipe(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$KVM_CREATE_DEVICE(r0, 0xc00caee0, &(0x7f0000000040)={0x3, 0xffffffffffffffff, 0x1}) 09:06:06 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={"6c6f00fffffdfd00", {0x2}}) 09:06:06 executing program 1: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) r1 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000080)='/dev/rfkill\x00', 0x101001, 0x0) ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f00000000c0)=0x0) write$P9_RGETLOCK(r1, &(0x7f0000000300)=ANY=[@ANYBLOB="1e00000037020000170f000000000000035c5210fd0000000000000000000000000000", @ANYRES32=r2, @ANYBLOB="00000282a29facb48b2595f92bc3970ba978fbdccfb63d9014f006cf680b67ff835805e8c291c61c45792a36f93db2154b9f552b8190588b32b04c654d7d75885cd2cebfbd"], 0x1e) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") connect$inet6(r1, &(0x7f00000002c0)={0xa, 0x4e24, 0xf4b, @ipv4={[], [0xff, 0xff]}, 0x2bd}, 0x1c) r3 = syz_open_dev$sndtimer(&(0x7f0000000000)='/dev/snd/timer\x00', 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_CONTINUE(r3, 0x54a2) ioctl$sock_proto_private(r0, 0x89ee, &(0x7f0000000100)="b40668aa0539e59ab686f25756771f6950ac86b8d78999d136") ioctl$SNDRV_TIMER_IOCTL_SELECT(r3, 0x40345410, &(0x7f0000000040)={{0x3}}) write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000180)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000140)={0xffffffffffffffff}, 0x13f, 0x5}}, 0x20) write$RDMA_USER_CM_CMD_BIND_IP(r1, &(0x7f00000001c0)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x4e23, 0x8, @mcast2={0xff, 0x2, [], 0x1}, 0x7}, r4}}, 0x30) ioctl$SNDRV_TIMER_IOCTL_INFO(r3, 0x80e85411, &(0x7f0000001340)=""/142) 09:06:06 executing program 5: r0 = inotify_init1(0x0) r1 = getpid() fcntl$setown(r0, 0x8, 0xffffffffffffffff) fcntl$getownex(r0, 0x10, &(0x7f0000000180)={0x0, 0x0}) kcmp$KCMP_EPOLL_TFD(r2, r1, 0x6, 0xffffffffffffffff, &(0x7f0000000000)) r3 = accept4(0xffffffffffffff9c, &(0x7f00000003c0)=@pppol2tpv3, &(0x7f0000000440)=0x80, 0x80000) connect$rds(r3, &(0x7f0000000480)={0x2, 0x4e22, @multicast2=0xe0000002}, 0x10) 09:06:06 executing program 0: r0 = socket$inet6(0xa, 0x2, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @remote={0xfe, 0x80, [], 0xbb}, 0x2}, 0x1c) r1 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000080)='/dev/mixer\x00', 0x2080, 0x0) ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(r1, 0xc08c5336, &(0x7f00000000c0)={0x40, 0x88f9, 0x8, 'queue1\x00', 0xff34}) getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r0, 0x6, 0x23, &(0x7f0000000180)={&(0x7f0000ffd000/0x1000)=nil, 0x1000}, &(0x7f00000001c0)=0x10) bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @mcast2={0xff, 0x2, [], 0x1}}, 0x1b) 09:06:06 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)) r0 = syz_open_dev$mice(&(0x7f0000000000)='/dev/input/mice\x00', 0x0, 0x10000) ioctl$TUNSETPERSIST(r0, 0x400454cb, 0x1) 09:06:06 executing program 6: r0 = syz_open_dev$sndctrl(&(0x7f00000000c0)='/dev/snd/controlC#\x00', 0x0, 0x0) pipe(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$EVIOCGKEYCODE(r1, 0x80084504, &(0x7f0000000100)=""/99) perf_event_open(&(0x7f0000000280)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r0, 0xc0045516, &(0x7f0000000040)=0x100000006) getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffff9c, 0x84, 0x73, &(0x7f000000d000), &(0x7f0000001000)=0xfea6) ioctl$SNDRV_CTL_IOCTL_PVERSION(r0, 0xc1105517, &(0x7f0000001000)) 09:06:06 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={'lo\x00\x00@\x00', {0x2}}) 09:06:06 executing program 5: mkdir(&(0x7f0000fd5ff8)='./file0\x00', 0x0) mount(&(0x7f0000000000)='./file0\x00', &(0x7f0000000880)='./file0\x00', &(0x7f0000000100)='ramfs\x00', 0x0, &(0x7f0000000980)) r0 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0) readahead(r0, 0x0, 0x0) set_robust_list(&(0x7f00000001c0)={&(0x7f00000000c0), 0xfffffffffffff000, &(0x7f0000000180)={&(0x7f0000000140)}}, 0x18) r1 = syz_open_dev$amidi(&(0x7f0000000040)='/dev/amidi#\x00', 0x7, 0x4000) ioctl$VT_RELDISP(r1, 0x5605) 09:06:06 executing program 7: r0 = shmget(0x0, 0x1000, 0x2, &(0x7f0000ffc000/0x1000)=nil) r1 = getgid() shmctl$IPC_SET(r0, 0x1, &(0x7f0000000380)={{0x0, 0x0, 0x0, 0x0, r1}}) 09:06:06 executing program 0: syz_emit_ethernet(0x3e, &(0x7f00000000c0)={@random="8f7beaa59366", @broadcast=[0xff, 0xff, 0xff, 0xff, 0xff, 0xff], [], {@ipv4={0x800, {{0x5, 0x4, 0x0, 0x0, 0x30, 0x0, 0x0, 0x0, 0x1, 0x0, @remote={0xac, 0x30, 0x14, 0xbb}, @dev={0xac, 0x14, 0x14, 0x11}}, @icmp=@parameter_prob={0x8, 0x2, 0x0, 0x0, 0x0, 0x0, {0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @local={0xac, 0x14, 0x14, 0xaa}, @dev={0xac, 0x14, 0x14}}}}}}}, &(0x7f0000000000)) r0 = openat$dsp(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/dsp\x00', 0x20000, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000100)={{{@in=@dev, @in6=@dev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@dev}, 0x0, @in6=@local}}, &(0x7f0000000080)=0xe8) r2 = fcntl$getown(r0, 0x9) ptrace$setregs(0xf, r2, 0x2, &(0x7f0000000040)="79ca31fdb39d8037471925b2569bbbe6b5ae2db1b0b1a8118b83") r3 = getgid() r4 = getuid() ioctl$RNDADDENTROPY(r0, 0x40085203, &(0x7f00000003c0)={0x10001, 0xbf, "638ae0825846519faba9102c4730ea1936e4ecdb66fe8f90fdf9e8cc060989239f8c73859b120041493381523bbc126e3f1f208c0846d0e0b17311c9b1b7e3e0a8acae27238068870cb1320d2d6a650cf11a1492f2ccef375fb1e6dd23371413bdcd7216c62a7584fc6a306c044b86fc375c1e57c4b5fa36f1de53a9aa1cda53bb31ed95c890ec8b6ca74f938933d917ccfcb3c9486f8c232e23b9354dcc2586bdabf5e8ba84f4ec0da053ef8ecb4205c2e5299db55b78efa838610db67762"}) write$P9_RSTATu(r0, &(0x7f0000000300)=ANY=[@ANYBLOB="930000007d0200000071000900ffffff7f40032820000100000000000000000000042000000000000000020000000000000016006b657972696e672a5c3a62646576776c616e306c6f2f01002920006574683026213a706f7369785f61636c5f616363657373407070703127656d300700747275737465640d006c6f232c76626f786e6574302e432fb11c48c33766a10894267d600c0e417c2a896f1073a15c2bad3ecca5b2821da70a2f32f6f451d4", @ANYRES32=r1, @ANYRES32=r3, @ANYRES32=r4], 0x93) [ 177.019401] FAULT_INJECTION: forcing a failure. [ 177.019401] name failslab, interval 1, probability 0, space 0, times 0 [ 177.030727] CPU: 0 PID: 12363 Comm: syz-executor2 Not tainted 4.18.0-rc5-next-20180720+ #12 [ 177.039253] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 177.048620] Call Trace: [ 177.051211] dump_stack+0x1c9/0x2b4 [ 177.054840] ? dump_stack_print_info.cold.2+0x52/0x52 [ 177.060202] ? __kernel_text_address+0xd/0x40 [ 177.064705] ? unwind_get_return_address+0x61/0xa0 [ 177.069635] should_fail.cold.4+0xa/0x11 [ 177.073715] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 177.078823] ? save_stack+0xa9/0xd0 [ 177.082444] ? save_stack+0x43/0xd0 [ 177.086068] ? kasan_kmalloc+0xc4/0xe0 [ 177.089952] ? __kmalloc_track_caller+0x14a/0x760 [ 177.094827] ? memdup_user+0x2c/0xa0 [ 177.098534] ? strndup_user+0x77/0xd0 [ 177.102328] ? ksys_mount+0x3c/0x140 [ 177.106042] ? do_syscall_64+0x1b9/0x820 [ 177.110101] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 177.115460] ? lock_acquire+0x1e4/0x540 [ 177.119432] ? mntput_no_expire+0x160/0xbc0 [ 177.123750] ? lock_downgrade+0x8f0/0x8f0 [ 177.127895] ? lock_release+0xa30/0xa30 [ 177.131864] ? dput.part.26+0x248/0x7a0 [ 177.135844] ? lock_acquire+0x1e4/0x540 [ 177.139816] ? fs_reclaim_acquire+0x20/0x20 [ 177.144657] ? lock_downgrade+0x8f0/0x8f0 [ 177.148808] ? check_same_owner+0x340/0x340 [ 177.153141] ? lock_release+0xa30/0xa30 [ 177.157111] ? rcu_note_context_switch+0x730/0x730 [ 177.162039] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 177.167052] __should_failslab+0x124/0x180 [ 177.171283] should_failslab+0x9/0x14 [ 177.175080] __kmalloc_track_caller+0x2c4/0x760 [ 177.179776] ? strncpy_from_user+0x510/0x510 [ 177.184196] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 177.189730] ? strndup_user+0x77/0xd0 [ 177.193529] memdup_user+0x2c/0xa0 [ 177.197067] strndup_user+0x77/0xd0 [ 177.200692] ksys_mount+0x73/0x140 [ 177.204235] __x64_sys_mount+0xbe/0x150 [ 177.208213] do_syscall_64+0x1b9/0x820 [ 177.212098] ? finish_task_switch+0x1d3/0x870 [ 177.216596] ? syscall_return_slowpath+0x5e0/0x5e0 [ 177.221525] ? syscall_return_slowpath+0x31d/0x5e0 [ 177.226456] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 177.231470] ? prepare_exit_to_usermode+0x291/0x3b0 [ 177.236688] ? perf_trace_sys_enter+0xb10/0xb10 [ 177.241360] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 177.246202] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 177.251386] RIP: 0033:0x4584ea 09:06:07 executing program 4: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = socket(0xa, 0x2, 0x0) ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, &(0x7f0000000100)={'veth1_to_team\x00', &(0x7f00000000c0)=ANY=[@ANYBLOB="ffff000000000089b423968e450400000000000060"]}) setsockopt$inet_int(r1, 0x0, 0x40, &(0x7f0000000080), 0x4) 09:06:07 executing program 1: r0 = socket$inet(0x10, 0x3, 0x0) sendmsg(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f0000000000)="24000000110007031dfffd946fa283008100000002000000001d85680c1ba3a20400ff7e", 0x24}], 0x1}, 0x0) r1 = syz_open_dev$vcsa(&(0x7f0000000040)='/dev/vcsa#\x00', 0x7ff, 0x0) r2 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcs\x00', 0x2, 0x0) getsockopt$inet6_mreq(r1, 0x29, 0x14, &(0x7f0000000400)={@mcast2, 0x0}, &(0x7f0000000440)=0x14) setsockopt$inet_pktinfo(r2, 0x0, 0x8, &(0x7f0000000480)={r3, @dev={0xac, 0x14, 0x14, 0xd}}, 0xc) r4 = getuid() setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f00000001c0)={{{@in=@loopback=0x7f000001, @in, 0x4e20, 0x7fffffff, 0x4e24, 0x46a, 0x0, 0x20, 0x80, 0x8, 0x0, r4}, {0x0, 0x3, 0xd0c, 0x1ff, 0x9, 0x8, 0x3ff, 0x3288d377}, {0x9, 0x4, 0x3, 0x10000}, 0x0, 0x6e6bb9, 0x1, 0x1, 0x2, 0x2}, {{@in6=@loopback={0x0, 0x1}, 0x4d5}, 0x6054a43555d2d7a4, @in6, 0x3505, 0x1, 0x1, 0x3f, 0x7fff, 0x6, 0x1000}}, 0xe8) write$P9_RLERROR(r1, &(0x7f0000000140)=ANY=[@ANYBLOB="2000000007020017003a707070102d2547504c757365727b7365637572697479cefb7779bfce8773cfbaf4d7ea1a07076d550dbf0e8df1f3d2595d2624f82890862cbef33949a9abee822ae396e3b98c9ad60cfa83f5a1b8824f816d8a5e4d14a9c7004b14bbc72d300000"], 0x20) 09:06:07 executing program 6: r0 = syz_open_dev$sndctrl(&(0x7f00000000c0)='/dev/snd/controlC#\x00', 0x0, 0x0) pipe(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$EVIOCGKEYCODE(r1, 0x80084504, &(0x7f0000000100)=""/99) perf_event_open(&(0x7f0000001000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8ce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000005000), 0x2}, 0x1000000000c}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r0, 0xc0045516, &(0x7f0000000040)=0x100000006) getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffff9c, 0x84, 0x73, &(0x7f000000d000), &(0x7f0000001000)=0xfea6) ioctl$SNDRV_CTL_IOCTL_PVERSION(r0, 0xc1105517, &(0x7f0000001000)) [ 177.254563] Code: b8 a6 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 dd 8f fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 ba 8f fb ff c3 66 0f 1f 84 00 00 00 00 00 [ 177.274004] RSP: 002b:00007fb8b6388a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 177.281713] RAX: ffffffffffffffda RBX: 00007fb8b6388b30 RCX: 00000000004584ea [ 177.288977] RDX: 00007fb8b6388ad0 RSI: 0000000020000100 RDI: 00007fb8b6388af0 [ 177.296242] RBP: 0000000020000100 R08: 00007fb8b6388b30 R09: 00007fb8b6388ad0 [ 177.303868] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000014 [ 177.311133] R13: 0000000000000000 R14: 00000000004d3de0 R15: 0000000000000021 09:06:07 executing program 2 (fault-call:1 fault-nth:34): syz_mount_image$vfat(&(0x7f0000000180)='vfat\x00', &(0x7f0000000080)='./file0/file0\x00', 0x0, 0x0, &(0x7f0000001580), 0x0, &(0x7f0000000340)={[{@shortname_win95='shortname=win95', 0x2c}]}) syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f0000000100)='./file0\x00', 0xe004, 0x1, &(0x7f0000000380)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020401000200027000f8", 0x16}], 0x0, &(0x7f0000000340)=ANY=[]) 09:06:07 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={"6c6f0000fdfdffff00", {0x2}}) 09:06:07 executing program 5: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet(r1, &(0x7f0000000000)={0x2, 0x0, @remote={0xac, 0x14, 0x14, 0xbb}}, 0x10) r2 = socket(0xa, 0x1, 0x0) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f0000000040)={0x2, {{0x2, 0x0, @multicast2=0xe0000002}}}, 0x88) setsockopt$inet_msfilter(r1, 0x0, 0x6, &(0x7f0000000100)={@rand_addr=0x9, @loopback=0x7f000001, 0x0, 0x18b, [@remote={0xac, 0x14, 0x14, 0xbb}, @local={0xac, 0x14, 0x14, 0xaa}, @rand_addr=0x5]}, 0xce) 09:06:07 executing program 7: getsockopt$sock_cred(0xffffffffffffff9c, 0x1, 0x11, &(0x7f00000014c0)={0x0}, &(0x7f0000001500)=0xc) ptrace$poke(0x5, r0, &(0x7f0000001540), 0x10000) r1 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='cpuacct.usage_percpu_user\x00', 0x0, 0x0) getsockopt$inet_sctp_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, &(0x7f0000000040)=ANY=[@ANYRES32=0x0, @ANYBLOB="60000000a68c0986ddf8b78e5aac086e6426bbed381eec0a07ccecee6ae74fa720646a4b23d72b047ddc22389f8ced38de0f127a285450b05d2786866bba72014644f7edab07be029c44afce8babbed38a72f71c53ded9666c8657fc26427de123d735d5"], &(0x7f00000000c0)=0x68) ioctl$UFFDIO_UNREGISTER(r1, 0x8010aa01, &(0x7f0000001680)={&(0x7f0000ffe000/0x1000)=nil, 0x1000}) getsockopt$inet_sctp_SCTP_PEER_AUTH_CHUNKS(r1, 0x84, 0x1a, &(0x7f0000000100)=ANY=[@ANYRES32=r2, @ANYBLOB="9700000017464c99269bfa52898c70ce9ca59c14c65f58a334d203dc91982ea88d3685db454e462ca312b6a3435526d7d16c3bdcf93933920fd7ac94c37f976bf1d2667c8b5c0c7f7526cd0ef508e6d90ff638fcc75fd9f3442ea24371e10cc51ef6102de36ec7bbac3fee041c3e0981a78a1edea8006ac3369f3588c9c5f743996d87b0a57131febdf21cb2"], &(0x7f00000001c0)=0x9f) setsockopt$inet_dccp_int(r1, 0x21, 0xb, &(0x7f00000016c0)=0x8cf, 0x4) shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)) ioctl$sock_SIOCGPGRP(r1, 0x8904, &(0x7f0000000200)) r3 = request_key(&(0x7f0000001600)='dns_resolver\x00', &(0x7f0000001440)={0x73, 0x79, 0x7a, 0x2}, &(0x7f00000015c0)='\x00', 0xfffffffffffffffa) add_key$user(&(0x7f0000000240)='user\x00', &(0x7f0000000280)={0x73, 0x79, 0x7a, 0x3}, &(0x7f00000002c0)="40c6deb7613e969cafddc465329c18e701bb5581b67fb6da48a90afb42cdba7e625038fc875ba17315c9437a3870a788ee21c4374de1b048a765260cdf35797475107fa8b1b2a1dbd542029d1285decd14c65d9e26c4f54b5d1ea1255c0c181e8203586b81341b4f395174b87509b9afe8e549a1edc0952ff4d819998bbf6874391086dd65e41a383ca5ec4c41cc9ff59e9b7c3c5d092a5518e82987c0e68c1f78f6", 0xa2, r3) ptrace$getregs(0xe, r0, 0x7ffffffc, &(0x7f0000000400)=""/4096) getsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(r1, 0x84, 0x18, &(0x7f0000001400)={0x0, 0x6}, &(0x7f0000001480)=0x8) getsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(r1, 0x84, 0x18, &(0x7f0000001580)={r4, 0x1}, &(0x7f0000001640)=0x8) 09:06:07 executing program 0: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") socket$kcm(0x29, 0x2, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x10, 0xe, &(0x7f0000000000)=ANY=[@ANYBLOB="b702000000000000bfa30000000000000703000000feffff7a0af0fff8ffffff79a4f0ff00000000b7060000ffffffff2d6405000000000065040400010000000404000001000000b7050000240000006a0a00fe00000000850000003f000000b7000000000000009500000000000000"], &(0x7f0000000340)='syzkaller\x00'}, 0x48) 09:06:07 executing program 6: r0 = syz_open_dev$sndctrl(&(0x7f00000000c0)='/dev/snd/controlC#\x00', 0x0, 0x0) pipe(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$EVIOCGKEYCODE(r1, 0x80084504, &(0x7f0000000100)=""/99) perf_event_open(&(0x7f0000001000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8ce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000005000), 0x2}, 0x1000000000c}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r0, 0xc0045516, &(0x7f0000000040)=0x100000006) getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffff9c, 0x84, 0x73, &(0x7f000000d000), &(0x7f0000001000)=0xfea6) ioctl$SNDRV_CTL_IOCTL_PVERSION(r0, 0xc1105517, &(0x7f0000001000)) 09:06:07 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={"6c6f0000000000000000000100", {0x2}}) 09:06:07 executing program 4: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000000)="025cc83d6d345f8f762070") bpf$MAP_CREATE(0x0, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x102d, 0x3b}, 0x2c) set_robust_list(&(0x7f0000000040)={0x0, 0x5}, 0x18) bpf$PROG_LOAD(0x5, &(0x7f00000ba000)={0x6, 0x5, &(0x7f0000346fc8)=@framed={{0x18}, [@alu={0x8000000201a7f19, 0x0, 0x201a7fa6, 0x0, 0x1, 0x4}], {0x95}}, &(0x7f0000f6bffb)='GPL\x00', 0x1, 0x7f, &(0x7f00001a7f05)=""/251}, 0xfffffffffffffe8d) 09:06:07 executing program 5: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setpriority(0x2, 0x0, 0x0) fstatfs(r0, &(0x7f0000000040)=""/118) 09:06:07 executing program 1: r0 = userfaultfd(0x0) r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000340)='net/if_inet6\x00') ioctl$KVM_CREATE_DEVICE(r0, 0xc00caee0, &(0x7f0000000380)={0x1, r1, 0x1}) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000009fe8)={0xaa, 0xe}) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000000)={{&(0x7f0000909000/0x4000)=nil, 0x4000}, 0x1}) r2 = getpid() sched_setattr(r2, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x0, 0x3}, 0x0) clone(0x200, &(0x7f0000000100), &(0x7f0000000100), &(0x7f0000fef000), &(0x7f0000000180)) mknod(&(0x7f00000000c0)='./file0\x00', 0x103e, 0x0) creat(&(0x7f0000000300)='./file0\x00', 0x2a) execve(&(0x7f0000000140)='./file0\x00', &(0x7f0000000280)=[&(0x7f0000000180)='proc\x00', &(0x7f00000001c0)='\x00', &(0x7f00000002c0)="6d696d655f747970652476626f000000000000ef09c4b937c01bea0f64df88ec35b418c4206f8c459eb381b3000000000000", &(0x7f0000000240)='(\x00'], &(0x7f00000000c0)) r3 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$FUSE_WRITE(r3, &(0x7f0000000200)={0x18, 0x0, 0x3, {0x9}}, 0x18) [ 177.438995] FAULT_INJECTION: forcing a failure. [ 177.438995] name failslab, interval 1, probability 0, space 0, times 0 [ 177.450299] CPU: 1 PID: 12390 Comm: syz-executor2 Not tainted 4.18.0-rc5-next-20180720+ #12 [ 177.458794] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 177.468151] Call Trace: [ 177.470757] dump_stack+0x1c9/0x2b4 [ 177.474398] ? dump_stack_print_info.cold.2+0x52/0x52 [ 177.479611] ? __kernel_text_address+0xd/0x40 [ 177.484122] ? unwind_get_return_address+0x61/0xa0 09:06:07 executing program 6: r0 = syz_open_dev$sndctrl(&(0x7f00000000c0)='/dev/snd/controlC#\x00', 0x0, 0x0) pipe(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$EVIOCGKEYCODE(r1, 0x80084504, &(0x7f0000000100)=""/99) perf_event_open(&(0x7f0000001000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8ce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000005000), 0x2}, 0x1000000000c}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r0, 0xc0045516, &(0x7f0000000040)=0x100000006) getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffff9c, 0x84, 0x73, &(0x7f000000d000), &(0x7f0000001000)=0xfea6) ioctl$SNDRV_CTL_IOCTL_PVERSION(r0, 0xc1105517, &(0x7f0000001000)) 09:06:07 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={"6c6f00000000000400", {0x2}}) [ 177.489074] should_fail.cold.4+0xa/0x11 [ 177.493139] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 177.498241] ? save_stack+0xa9/0xd0 [ 177.501868] ? kasan_kmalloc+0xc4/0xe0 [ 177.505761] ? __kmalloc_track_caller+0x14a/0x760 [ 177.510609] ? memdup_user+0x2c/0xa0 [ 177.514326] ? strndup_user+0x77/0xd0 [ 177.518127] ? ksys_mount+0x73/0x140 [ 177.521837] ? __x64_sys_mount+0xbe/0x150 [ 177.525988] ? do_syscall_64+0x1b9/0x820 [ 177.530057] ? lock_acquire+0x1e4/0x540 [ 177.534034] ? mntput_no_expire+0x160/0xbc0 [ 177.538364] ? lock_downgrade+0x8f0/0x8f0 [ 177.542518] ? lock_release+0xa30/0xa30 [ 177.546491] ? dput.part.26+0x248/0x7a0 [ 177.550469] ? lock_acquire+0x1e4/0x540 [ 177.554451] ? fs_reclaim_acquire+0x20/0x20 [ 177.558799] ? lock_downgrade+0x8f0/0x8f0 [ 177.562951] ? check_same_owner+0x340/0x340 [ 177.567283] ? lock_release+0xa30/0xa30 [ 177.571288] ? check_same_owner+0x340/0x340 [ 177.575613] ? rcu_note_context_switch+0x730/0x730 [ 177.580558] ? __check_object_size+0xa3/0x5d7 [ 177.585060] __should_failslab+0x124/0x180 [ 177.589298] should_failslab+0x9/0x14 [ 177.593101] kmem_cache_alloc_trace+0x2cb/0x780 [ 177.597780] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 177.603319] ? _copy_from_user+0xdf/0x150 [ 177.607484] copy_mount_options+0x5f/0x380 [ 177.611720] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 177.617262] ksys_mount+0xd0/0x140 [ 177.621291] __x64_sys_mount+0xbe/0x150 [ 177.625267] do_syscall_64+0x1b9/0x820 [ 177.629158] ? finish_task_switch+0x1d3/0x870 [ 177.633656] ? syscall_return_slowpath+0x5e0/0x5e0 09:06:07 executing program 0: r0 = socket$alg(0x26, 0x5, 0x0) r1 = syz_open_dev$sndpcmp(&(0x7f00000000c0)='/dev/snd/pcmC#D#p\x00', 0xd5, 0x0) flistxattr(r1, &(0x7f0000000b80)=""/175, 0xaf) bind$alg(r0, &(0x7f0000e15000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ctr(blowfish)\x00'}, 0x58) sendmmsg(r0, &(0x7f0000000ac0)=[{{&(0x7f0000000180)=@llc={0x1a, 0x322, 0x100000000, 0xffff, 0x3ff9, 0x0, @remote={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xbb}}, 0x80, &(0x7f00000000c0), 0x0, 0x0, 0x0, 0x20000801}, 0x8}, {{&(0x7f0000000200)=@alg={0x26, 'aead\x00', 0x0, 0x0, 'rfc4543(morus640-generic)\x00'}, 0x80, &(0x7f00000002c0)=[{&(0x7f00000003c0)="38119fb8091bff0ef84c781320736aa8a61c9e7d6c09d4714676f75e514a14fdb832112e8754ecc71ebe4bdd4eb4d67380a2d2b70b118ffa2567fb04eae645d5374a8862bdb009d6b42b0ddbbe6c87a0794eae9de94f884e56e114ed118ca6265f682f76f543135bad69b654501225428591a889380372f68888144804f6a55f075a3ca07c56b4fe3e3fdccc4768b3525e8305d21eeeac5a5195fda6c91360d52d53c715b7565e23e872ce837955a1ba668b7c47084de2eddf1f7c0654f8", 0xbe}, {&(0x7f0000000280)="a7b0d49d41f18487d46a8a1570d44a05138b134ffc0c1a2394d35c86c9ab6353bc7010292fbbc89bc8b289d9e14f6c5377328783cd01b866e043643a", 0x3c}, {&(0x7f0000000480)="c7104bc0dc0402bb7acd6834bbb8b1efa44c9c8cbb49d5e36fba3fe5e241a40dfed650f6af27b04521a06efa4040cedd6d422071685efbaddaaa7314a7066142a0e414d39161824e1752df4f05b06063d6ed0d99573fd9204b50e368a7ac", 0x5e}], 0x3, &(0x7f0000000500)=[{0x90, 0x0, 0xfffffffffffffffc, "f54f9e7fd946ef0a197377b931bfad3426536f5005113c2b5955e70aeb817828497be777d5feaa643e05d4bee436c21cd4b25c3fc0c063a1f3ed2cddbaf1061243b53779d94e159d57647c647590e721cf0d90eab46a06193556da5f79652292bed698ad8011f70c953463c9782765543cf43058fd2dd59a9b45fb293df3d3cf"}], 0x90, 0x10}, 0x8}, {{&(0x7f00000005c0)=@vsock={0x28, 0x0, 0x2711, @reserved=0x1}, 0x80, &(0x7f0000000a40)=[{&(0x7f0000000640)="8ee62d4eea9fbd0f03b7304b421b54645d4b865c62e6d3f692ad45bb1b4a70c5cb755ebf23058f1e963bd1e38350cc94efa22f251deb173dda4cbb05e35bf3be97540fa175c2a3baec81075503a4", 0x4e}, {&(0x7f00000006c0)="f8e7de904975232f53148ac6df185a2db6d44bfa1ebb210fffac51615ad92e439d5b7bc71f865f365cae470c205a4203f7edadefcaee43a83d2aa1ff0d1e87cbf27230bd04dc85bdcd2c0df31b7b7b9d904580d15e1ad4e1aec767926fee0c7747e28e1aac4860dcf0a18b152d433f5cf357a349058074740686db72a889eb948a8561e1fcdaac8baadde01263eb5cab1bd31e9ca32571fe66d1d4e0202d26a49318c177c1b17f341ea1181a", 0xac}, {&(0x7f0000000780)="4d25649c882031a7c85cf9b5a0aed3cd41a7c15c6aa6a48c5a239b80fe399925083483da51da55cc237aa7664a86aca0d14530568ace946e0aa2a9aa8acdf09d7461684c29f8d1813fd4aeeb75ebc1acf6bc71202df1f1e1151aed7305d456bc0ba0ef5c21d2ef11856ff030198d8159e5c261728dfce9c208be9bbbf52645c9936e29809d1fd41e5daf2c0bd6f85141fab0fe372d7ccc38316319a5899cade8c8fbe09a7892ffa5c099905e8d8f4232cd5aec95f5e0343508e17b060641b2ba3ef0dfef8eaad03b8871a790b811e6eac335ab92d77d8ff48b8ee87d3f0d3255bd12e8fad667f3390506", 0xea}, {&(0x7f0000000880)="e8cb93db14a527024bf49b4e89b0043a90b916e349fb56ef588138255272224b7fd30b1ffc91db9c15626e47451fc1761a163ebaee10b451471e11aaa5907a75e0779ebcb8c70a1b87d1ec4dd8b8af0b2fc3ae12f40d3960af88fb6a09a6e7a4d3c7c1c46d1243bf6a70ec00282d5ea568e40980fa85a29e6e1891aef118d11ebf47f0aa2069eb76b984b9c207171d35eb", 0x91}, {&(0x7f0000000940)="f11eb037bf31b00279e09ff96c9e7976115e831158a6bb0aec5b37fce811b953450091050ed9a23e70f21de520fb8d406d94c0e2be2bc10823d414ae1b256ca79c5f842f388f149b5644088ecc67611be1fedc4b5bb7ae302f71e51fef9cd86b28edbb235981a16bd29dc8b8897d4d2bba21b08418b7da4478f6d332ee8504470e78a4eaa7d3aa0f6f3038776ccdffa7235a91dee40a04ca99024214ae60ac164a7cf0e87fe51ae3e3bc4ba69de8c29f2a4e7996163243f9be36506e5a884363fa67d39a29b82bf75e4b3f8a84eb50f0d4b68826fad87039", 0xd8}], 0x5, &(0x7f0000000fc0)=[{0x1010, 0x112, 0x7f, "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"}, {0xb0, 0x114, 0x4, "205fe4d1bfc9326930e4bf117b0a24db05098a79f2d4f95a22e2d28abce12c3d5af542edcf09fcb72285837c396fe9b9d5ffc97a2806d302e22db4d5da0e076ba70b31f99f509dc5b1a80e503fa78110c71c1991429b6a6a7e2a7c11dd2c89f306b64cf7240866cffcbb4dceafd4010eb3034c7395b79b106a5d9e2e31638e3476af2b44304857325dae8fe234cfd520d96efb0e6e0cbb956513978be18b"}, {0x68, 0x1ff, 0x4, "096f832ed1c094eab94c39305d9e926b63989b3b029da610a5fcc55c6907ef438659b03c75df3b52140d6bfa982c1a6b74ed2c83830af726737df2fbeb5fd2910d610f398d89241d43072e4db752b0ef6532"}, {0x110, 0x88, 0x7fffffff, "cca55f06e3dc34ada6dc6fd59a4d09b01e76082932331b46aa339416376d7eb1b60c62d00805b7adbcddefb40968bfd23a353c97fc683047eda1b8e6a44eb20cb8fbb99d768dca2cd876296ba4a501cb7a3239861499afbbb0e96b73b948aad484023599ddb0c220ddba14107642974e4ec43b1f56e963c13cc18c1ad39b5fe0ace1f6893a54b12f4d06f979ffa39249e4a8eb73bbf026d8be03e94e5c9d6e2445bca9b2c81adbbfd78de749ccf23d2676ce1d2a8ac46b85a8c2f76bb5cb8920ae880a9fdc0ca2394e9c5b94f82f133290740d664b8958b02225d1507f70343ff5b2061a9e61c128075b58937f01d5a23be718bbb7dc3feac9"}, {0x60, 0x11f, 0x4, "2037ec6c9969dfa684a71ec8079f79ae5e19feb228c4ba0e98de83e25bed5e51c23d0fe6a9f7c5aeba10abbc6e927a9491f1e6b8c460508c89cc2526c3a89d76f434c10c27a7d8837635037748"}], 0x1298}, 0x6}], 0x3, 0x4000801) r2 = accept4$alg(r0, 0x0, 0x0, 0x80800) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000380)="7026f2c5", 0x4) sendmmsg(r2, &(0x7f0000000c40)=[{{&(0x7f0000000100)=@ethernet={0x0, @local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}}, 0x80, &(0x7f00000002c0), 0x0, 0x0, 0xfffffffffffffe20}}, {{&(0x7f0000000300)=@nl=@unspec, 0x80, &(0x7f0000000500), 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000000017010000020000006800000000000000b1c12a0617d05662624874b552f35e638dfab4bfdffe7a8144ba6c67d6741c63f379fbeea18fa8d7e7d21765e964a27b3384023d8137299d60d990c2ab251f1c30f1b0777bef4ee38db2f5dbe674cfb41fc5cde8bd014f96326f16edf6c7b57b4d83c1c02984429ace866b45ed0385f21d7bc511bd6da3b040fec4be4d53abf76a42f828f2742e816185de1647b54afd0d28036a549f"], 0x18}}], 0x2, 0x0) [ 177.638586] ? syscall_return_slowpath+0x31d/0x5e0 [ 177.643530] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 177.648563] ? prepare_exit_to_usermode+0x291/0x3b0 [ 177.653595] ? perf_trace_sys_enter+0xb10/0xb10 [ 177.658286] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 177.663149] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 177.668344] RIP: 0033:0x4584ea 09:06:07 executing program 6: r0 = syz_open_dev$sndctrl(&(0x7f00000000c0)='/dev/snd/controlC#\x00', 0x0, 0x0) pipe(&(0x7f0000000000)) perf_event_open(&(0x7f0000000280)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8ce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000005000), 0x2}, 0x1000000000c}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r0, 0xc0045516, &(0x7f0000000040)=0x100000006) getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffff9c, 0x84, 0x73, &(0x7f000000d000), &(0x7f0000001000)=0xfea6) ioctl$SNDRV_CTL_IOCTL_PVERSION(r0, 0xc1105517, &(0x7f0000001000)) 09:06:07 executing program 7: r0 = shmget$private(0x0, 0x4000, 0x54000000, &(0x7f0000ff9000/0x4000)=nil) getresgid(&(0x7f0000000000), &(0x7f0000000040), &(0x7f0000000080)=0x0) r2 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/vcs\x00', 0x90280, 0x0) shmctl$IPC_RMID(r0, 0x0) write$FUSE_NOTIFY_INVAL_ENTRY(r2, &(0x7f0000000180)={0x21, 0x3, 0x0, {0x6}}, 0x21) r3 = getpgrp(0x0) shmget$private(0x0, 0x1000, 0x20, &(0x7f0000ffa000/0x1000)=nil) ioctl$KDSETKEYCODE(r2, 0x4b4d, &(0x7f00000001c0)={0x1f, 0x9}) r4 = shmget(0x3, 0x5000, 0x78000004, &(0x7f0000ff5000/0x5000)=nil) shmctl$IPC_SET(r4, 0x1, &(0x7f00000000c0)={{0x9, 0x0, 0x0, 0x0, r1, 0x4}, 0x0, 0x100000003ff, 0x0, 0x0, r3}) [ 177.671550] Code: b8 a6 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 dd 8f fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 ba 8f fb ff c3 66 0f 1f 84 00 00 00 00 00 [ 177.690823] RSP: 002b:00007fb8b6388a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 177.698545] RAX: ffffffffffffffda RBX: 00007fb8b6388b30 RCX: 00000000004584ea [ 177.705859] RDX: 00007fb8b6388ad0 RSI: 0000000020000100 RDI: 00007fb8b6388af0 [ 177.713135] RBP: 0000000020000100 R08: 00007fb8b6388b30 R09: 00007fb8b6388ad0 [ 177.720403] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000014 [ 177.727669] R13: 0000000000000000 R14: 00000000004d3de0 R15: 0000000000000022 09:06:07 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={"6c6f000000ffffff00", {0x2}}) 09:06:07 executing program 2 (fault-call:1 fault-nth:35): syz_mount_image$vfat(&(0x7f0000000180)='vfat\x00', &(0x7f0000000080)='./file0/file0\x00', 0x0, 0x0, &(0x7f0000001580), 0x0, &(0x7f0000000340)={[{@shortname_win95='shortname=win95', 0x2c}]}) syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f0000000100)='./file0\x00', 0xe004, 0x1, &(0x7f0000000380)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020401000200027000f8", 0x16}], 0x0, &(0x7f0000000340)=ANY=[]) 09:06:07 executing program 0: r0 = syz_open_dev$sndctrl(&(0x7f00000000c0)='/dev/snd/controlC#\x00', 0x0, 0x0) pipe(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$EVIOCGKEYCODE(r1, 0x80084504, &(0x7f0000000100)=""/99) perf_event_open(&(0x7f0000001000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8ce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000005000), 0x2}, 0x1000000000c}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r0, 0xc0045516, &(0x7f0000000040)=0x100000006) getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffff9c, 0x84, 0x73, &(0x7f000000d000), &(0x7f0000001000)=0xfea6) ioctl$SNDRV_CTL_IOCTL_PVERSION(r0, 0xc1105517, &(0x7f0000001000)) 09:06:07 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)) r0 = dup2(0xffffffffffffff9c, 0xffffffffffffff9c) ioctl$TUNATTACHFILTER(r0, 0x401054d5, &(0x7f0000000040)={0x2, &(0x7f0000000000)=[{0x1, 0x81, 0xffffffffc2dc3af4, 0x1}, {0x7, 0xcf1, 0x0, 0x6}]}) 09:06:07 executing program 4: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = socket$alg(0x26, 0x5, 0x0) bind$alg(r1, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'poly1305-simd\x00'}, 0x58) r2 = accept4(r1, 0x0, &(0x7f00000000c0), 0x0) sendmsg$rds(r2, &(0x7f0000001f00)={&(0x7f00000003c0)={0x2, 0x0, @multicast2=0xe0000002}, 0x10, &(0x7f00000006c0)=[{&(0x7f0000000500)=""/73, 0x7ffff000}, {&(0x7f0000000580)=""/11, 0xb}, {&(0x7f00000005c0)=""/30, 0x1e}, {&(0x7f0000000600)=""/127, 0x7f}, {&(0x7f0000000680)=""/23, 0x17}], 0x5, &(0x7f0000001bc0)}, 0x0) readv(r2, &(0x7f0000000100)=[{&(0x7f0000000080)=""/38, 0x26}], 0x1) 09:06:07 executing program 6: r0 = syz_open_dev$sndctrl(&(0x7f00000000c0)='/dev/snd/controlC#\x00', 0x0, 0x0) perf_event_open(&(0x7f0000000280)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8ce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000005000), 0x2}, 0x1000000000c}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r0, 0xc0045516, &(0x7f0000000040)=0x100000006) getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffff9c, 0x84, 0x73, &(0x7f000000d000), &(0x7f0000001000)=0xfea6) ioctl$SNDRV_CTL_IOCTL_PVERSION(r0, 0xc1105517, &(0x7f0000001000)) 09:06:07 executing program 7: r0 = gettid() r1 = shmget$private(0x0, 0x4000, 0x40, &(0x7f0000ffc000/0x4000)=nil) shmctl$IPC_SET(r1, 0x1, &(0x7f00000001c0)={{}, 0x0, 0x0, 0x0, 0x0, 0x0, r0, 0xb47}) r2 = openat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x44080, 0x1) getsockopt$inet_sctp_SCTP_ASSOCINFO(0xffffffffffffffff, 0x84, 0x1, &(0x7f0000000040)={0x0, 0x2, 0xf, 0x1, 0x191, 0x3}, &(0x7f0000000080)=0x14) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(r2, 0x84, 0x6c, &(0x7f00000000c0)={r3, 0x93, "bcaba084ede444600a8c4b641c060d194589b1170ac2f906addc1d7f32aa1ea6496f904dc4c468afb297b873d85e943a6f9f384786fc9fe24540d24b1b3ca1ff9f93f1ca5144e1ca4dd057592b32aec880526fe8bff5713755eaf9fcdd1f84ea142e5fb574381e6fe7a2c684f4cad11ec1e52c8eede98089ca398a88c03d0a98605cdd85ce98b7689f2f1cbc9b2c831034c0c8"}, &(0x7f0000000180)=0x9b) 09:06:07 executing program 5: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8952, &(0x7f00000000c0)="025cc83d6d345f8f76207048e8e23c441709bad3765315115d7fe905b044dc4dfe644062be365d10d4ef593fba2e4c30c2ae05cd81574b5f2593caf0b9f0eb7c7e4c57460fa8cd2f49c40180000000000000c55edad24d31edadb0debb16ed85f2ad4b90029611c2776339df7247e8647f65a81ba1b07c0645880de96112e70583ad01cc85e4026361556f567a2fc74dba5a78f94bf58fc025b3e79134adc3e90d98bc64f238b9dc4429e827c4505a2c61635155191ed9f3caca8b9b2d26b155f716ec8ede4457eaea737a4c584fa036e2f8df33c641601351a8f36ecd1bbff5f25b28d56123c8ecbbacffd3ca") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r1, 0xc008ae88, &(0x7f00000001c0)={0x2, 0x0, [0x10a]}) 09:06:07 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={"6c6f00000200", {0x2}}) 09:06:07 executing program 0: r0 = socket$inet6(0xa, 0x800, 0x9) ioctl(r0, 0x8912, &(0x7f0000000000)="025cc83d6d345f8f762070") r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='@GPLlo{mime_type*.\'ppp1[ppp0selfprocbdev.bdevvmnet1cpuset}ppp1\x00eth1).trustedvboxnet0!-}}[\'{\x00', 0xffffffffffffff9c}, 0x10) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r1, 0xc0045520, &(0x7f0000000140)=0x1000) syz_mount_image$hfs(&(0x7f0000000380)='hfs\x00', &(0x7f0000001480)='./file0\x00', 0x0, 0x0, &(0x7f0000001640), 0x0, &(0x7f0000000040)={[{@file_umask={'file_umask', 0x3d, 0xffffffff00000001}, 0x30}]}) [ 178.021641] FAULT_INJECTION: forcing a failure. [ 178.021641] name failslab, interval 1, probability 0, space 0, times 0 [ 178.033004] CPU: 0 PID: 12434 Comm: syz-executor2 Not tainted 4.18.0-rc5-next-20180720+ #12 [ 178.041510] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 178.050861] Call Trace: [ 178.053472] dump_stack+0x1c9/0x2b4 [ 178.057106] ? dump_stack_print_info.cold.2+0x52/0x52 [ 178.062297] ? __kernel_text_address+0xd/0x40 [ 178.066809] ? unwind_get_return_address+0x61/0xa0 [ 178.071749] should_fail.cold.4+0xa/0x11 [ 178.075813] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 178.080915] ? save_stack+0xa9/0xd0 [ 178.084540] ? kasan_kmalloc+0xc4/0xe0 [ 178.088425] ? __kmalloc_track_caller+0x14a/0x760 [ 178.093285] ? memdup_user+0x2c/0xa0 [ 178.096996] ? strndup_user+0x77/0xd0 [ 178.100798] ? ksys_mount+0x73/0x140 [ 178.104507] ? __x64_sys_mount+0xbe/0x150 [ 178.108681] ? do_syscall_64+0x1b9/0x820 [ 178.112752] ? lock_acquire+0x1e4/0x540 [ 178.116725] ? mntput_no_expire+0x160/0xbc0 [ 178.121080] ? lock_downgrade+0x8f0/0x8f0 [ 178.125232] ? lock_release+0xa30/0xa30 [ 178.129210] ? dput.part.26+0x248/0x7a0 [ 178.133205] ? lock_acquire+0x1e4/0x540 [ 178.137175] ? fs_reclaim_acquire+0x20/0x20 [ 178.141491] ? lock_downgrade+0x8f0/0x8f0 [ 178.145642] ? check_same_owner+0x340/0x340 [ 178.149966] ? lock_release+0xa30/0xa30 [ 178.153939] ? check_same_owner+0x340/0x340 [ 178.158261] ? rcu_note_context_switch+0x730/0x730 [ 178.163188] ? __check_object_size+0xa3/0x5d7 [ 178.167699] __should_failslab+0x124/0x180 [ 178.171957] should_failslab+0x9/0x14 [ 178.175849] kmem_cache_alloc_trace+0x2cb/0x780 [ 178.180524] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 178.186061] ? _copy_from_user+0xdf/0x150 [ 178.190208] copy_mount_options+0x5f/0x380 [ 178.194444] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 178.199981] ksys_mount+0xd0/0x140 [ 178.203697] __x64_sys_mount+0xbe/0x150 [ 178.207674] do_syscall_64+0x1b9/0x820 [ 178.211557] ? finish_task_switch+0x1d3/0x870 [ 178.216050] ? syscall_return_slowpath+0x5e0/0x5e0 [ 178.220976] ? syscall_return_slowpath+0x31d/0x5e0 [ 178.225903] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 178.230915] ? prepare_exit_to_usermode+0x291/0x3b0 [ 178.235927] ? perf_trace_sys_enter+0xb10/0xb10 [ 178.240597] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 178.245440] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 178.250638] RIP: 0033:0x4584ea [ 178.253818] Code: b8 a6 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 dd 8f fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 ba 8f fb ff c3 66 0f 1f 84 00 00 00 00 00 [ 178.273083] RSP: 002b:00007fb8b6388a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 178.280791] RAX: ffffffffffffffda RBX: 00007fb8b6388b30 RCX: 00000000004584ea [ 178.288056] RDX: 00007fb8b6388ad0 RSI: 0000000020000100 RDI: 00007fb8b6388af0 [ 178.295319] RBP: 0000000020000100 R08: 00007fb8b6388b30 R09: 00007fb8b6388ad0 [ 178.302596] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000014 [ 178.309952] R13: 0000000000000000 R14: 00000000004d3de0 R15: 0000000000000023 09:06:08 executing program 1: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000040)={0x0, 0x0}, &(0x7f0000000080)=0xc) ioprio_get$uid(0x3, r1) r2 = socket$inet6(0xa, 0x2000000802, 0x0) connect$inet6(r2, &(0x7f000000cfe4)={0xa}, 0x1c) sendmmsg(r2, &(0x7f0000000000)=[{{0x0, 0x0, &(0x7f0000000480), 0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="01010000000000000000000000000000"], 0x18}}], 0x1, 0x0) 09:06:08 executing program 6: perf_event_open(&(0x7f0000000280)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8ce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000005000), 0x2}, 0x1000000000c}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(0xffffffffffffffff, 0xc0045516, &(0x7f0000000040)=0x100000006) getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffff9c, 0x84, 0x73, &(0x7f000000d000), &(0x7f0000001000)=0xfea6) ioctl$SNDRV_CTL_IOCTL_PVERSION(0xffffffffffffffff, 0xc1105517, &(0x7f0000001000)) 09:06:08 executing program 5: futex(&(0x7f0000000200)=0x1, 0x800000000006, 0x1, &(0x7f0000000040)={0x77359400}, &(0x7f00000000c0)=0x3, 0x2) uname(&(0x7f0000000000)=""/11) r0 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) tkill(r0, 0x1000000000016) r1 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/net/pfkey\x00', 0x0, 0x0) ioctl$SCSI_IOCTL_GET_IDLUN(r1, 0x5382, &(0x7f0000000140)) ioctl$SNDRV_RAWMIDI_IOCTL_DRAIN(r1, 0x40045731, &(0x7f0000000100)=0x8) 09:06:08 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)) r0 = socket$inet_sctp(0x2, 0x1, 0x84) ioctl$sock_SIOCADDDLCI(r0, 0x8980, &(0x7f0000000000)={'ip6gretap0\x00'}) 09:06:08 executing program 4: r0 = bpf$MAP_CREATE(0x0, &(0x7f0000006000)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x7}, 0x2c) recvmmsg(0xffffffffffffff9c, &(0x7f00000050c0)=[{{&(0x7f0000000080)=@pppol2tp={0x0, 0x0, {0x0, 0xffffffffffffffff, {0x0, 0x0, @loopback}}}, 0x80, &(0x7f0000001740)=[{&(0x7f0000000100)=""/216, 0xd8}, {&(0x7f0000000200)=""/195, 0xc3}, {&(0x7f0000000300)=""/69, 0x45}, {&(0x7f0000000380)=""/229, 0xe5}, {&(0x7f0000000480)=""/239, 0xef}, {&(0x7f0000000580)=""/172, 0xac}, {&(0x7f0000000640)=""/46, 0x2e}, {&(0x7f0000000680)=""/145, 0x91}, {&(0x7f0000000740)=""/4096, 0x1000}], 0x9, &(0x7f0000001800), 0x0, 0x5}, 0xc9fa}, {{&(0x7f0000001840)=@generic, 0x80, &(0x7f00000018c0), 0x0, &(0x7f0000001900)=""/31, 0x1f, 0x3}, 0x9}, {{&(0x7f0000001940)=@ll={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @dev}, 0x80, &(0x7f0000001a80)=[{&(0x7f00000019c0)=""/157, 0x9d}], 0x1, &(0x7f0000001ac0)=""/138, 0x8a, 0x9}, 0xfff}, {{&(0x7f0000001b80)=@un=@abs, 0x80, &(0x7f0000003000)=[{&(0x7f0000001c00)=""/28, 0x1c}, {&(0x7f0000001c40)=""/4096, 0x1000}, {&(0x7f0000002c40)=""/120, 0x78}, {&(0x7f0000002cc0)=""/109, 0x6d}, {&(0x7f0000002d40)=""/185, 0xb9}, {&(0x7f0000002e00)=""/77, 0x4d}, {&(0x7f0000002e80)=""/86, 0x56}, {&(0x7f0000002f00)=""/253, 0xfd}], 0x8, &(0x7f0000003080)=""/236, 0xec, 0x80}, 0x101}, {{&(0x7f0000003180)=@ethernet={0x0, @link_local}, 0x80, &(0x7f0000003300)=[{&(0x7f0000003200)=""/105, 0x69}, {&(0x7f0000003280)=""/15, 0xf}, {&(0x7f00000032c0)=""/57, 0x39}], 0x3, &(0x7f0000003340)=""/198, 0xc6, 0x2}, 0x8001}, {{&(0x7f0000003440)=@ethernet={0x0, @random}, 0x80, &(0x7f00000035c0)=[{&(0x7f00000034c0)=""/225, 0xe1}], 0x1, 0x0, 0x0, 0x7}, 0x5}, {{&(0x7f0000003600)=@pppol2tp={0x0, 0x0, {0x0, 0xffffffffffffffff, {0x0, 0x0, @local}}}, 0x80, &(0x7f0000003780)=[{&(0x7f0000003680)=""/44, 0x2c}, {&(0x7f0000004000)=""/4096, 0x1000}, {&(0x7f00000036c0)=""/78, 0x4e}, {&(0x7f0000003740)=""/54, 0x36}], 0x4, &(0x7f00000037c0)=""/106, 0x6a, 0x2}, 0x8}, {{0x0, 0x0, &(0x7f0000005000)=[{&(0x7f0000003840)=""/157, 0x9d}, {&(0x7f0000003900)=""/130, 0x82}, {&(0x7f00000039c0)=""/167, 0xa7}, {&(0x7f0000003a80)=""/125, 0x7d}, {&(0x7f0000003b00)=""/231, 0xe7}, {&(0x7f0000003c00)=""/243, 0xf3}, {&(0x7f0000003d00)=""/169, 0xa9}, {&(0x7f0000003dc0)=""/218, 0xda}, {&(0x7f0000003ec0)=""/145, 0x91}], 0x9, &(0x7f0000003f80), 0x0, 0x9}, 0x200}], 0x8, 0x40000022, 0x0) openat$ipvs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/vs/sync_ports\x00', 0x2, 0x0) pwritev(r0, &(0x7f0000001800)=[{&(0x7f0000005300)="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", 0xff}], 0x1, 0x0) setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f00000052c0)='tls\x00', 0x4) syz_open_dev$admmidi(&(0x7f0000000040)='/dev/admmidi#\x00', 0x0, 0x202000) 09:06:08 executing program 0: ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000280)="025cc83d6d345f8f") socketpair(0x1e, 0x1, 0x0, &(0x7f0000000140)={0x0, 0x0}) close(r0) ioctl$sock_SIOCGSKNS(r1, 0x894c, &(0x7f00000000c0)) ioctl$FIDEDUPERANGE(r0, 0xc0189436, &(0x7f0000000000)={0x0, 0x0, 0x61}) ioctl$KVM_SET_VAPIC_ADDR(r1, 0x4008ae93, &(0x7f0000000040)=0xf004) 09:06:08 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={"6c6f0000ffffff00", {0x2}}) 09:06:08 executing program 2 (fault-call:1 fault-nth:36): syz_mount_image$vfat(&(0x7f0000000180)='vfat\x00', &(0x7f0000000080)='./file0/file0\x00', 0x0, 0x0, &(0x7f0000001580), 0x0, &(0x7f0000000340)={[{@shortname_win95='shortname=win95', 0x2c}]}) syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f0000000100)='./file0\x00', 0xe004, 0x1, &(0x7f0000000380)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020401000200027000f8", 0x16}], 0x0, &(0x7f0000000340)=ANY=[]) [ 178.733127] FAULT_INJECTION: forcing a failure. [ 178.733127] name failslab, interval 1, probability 0, space 0, times 0 [ 178.744708] CPU: 0 PID: 12466 Comm: syz-executor2 Not tainted 4.18.0-rc5-next-20180720+ #12 [ 178.753202] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 178.762559] Call Trace: [ 178.765157] dump_stack+0x1c9/0x2b4 [ 178.768798] ? dump_stack_print_info.cold.2+0x52/0x52 [ 178.774000] ? filename_lookup+0x397/0x510 [ 178.778247] ? user_path_at_empty+0x40/0x50 [ 178.782581] ? do_mount+0x17f/0x1e20 [ 178.786308] ? ksys_mount+0x12d/0x140 [ 178.790141] ? do_syscall_64+0x1b9/0x820 [ 178.794228] should_fail.cold.4+0xa/0x11 [ 178.798450] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 178.803926] ? kasan_check_write+0x14/0x20 [ 178.808185] ? do_raw_spin_lock+0xc1/0x200 [ 178.813557] ? _raw_spin_unlock_irqrestore+0x63/0xc0 [ 178.818729] ? debug_check_no_obj_freed+0x30b/0x595 [ 178.823839] ? trace_hardirqs_off+0xd/0x10 [ 178.828069] ? quarantine_put+0x10d/0x1b0 [ 178.832217] ? lock_acquire+0x1e4/0x540 [ 178.836181] ? fs_reclaim_acquire+0x20/0x20 [ 178.840512] ? lock_downgrade+0x8f0/0x8f0 [ 178.844656] ? check_same_owner+0x340/0x340 [ 178.848971] ? lock_downgrade+0x8f0/0x8f0 [ 178.853110] ? rcu_note_context_switch+0x730/0x730 [ 178.858035] __should_failslab+0x124/0x180 [ 178.862263] should_failslab+0x9/0x14 [ 178.866054] kmem_cache_alloc_trace+0x2cb/0x780 [ 178.870745] ? kasan_check_write+0x14/0x20 [ 178.874969] ? do_raw_read_unlock+0x3f/0x60 [ 178.879285] vfs_new_fs_context+0x5a/0x6d0 [ 178.883516] do_mount+0x605/0x1e20 [ 178.887050] ? check_same_owner+0x340/0x340 [ 178.891362] ? lock_release+0xa30/0xa30 [ 178.895332] ? copy_mount_string+0x40/0x40 [ 178.899585] ? retint_kernel+0x10/0x10 [ 178.903473] ? copy_mount_options+0x1a1/0x380 [ 178.907978] ? __sanitizer_cov_trace_pc+0x48/0x50 [ 178.912813] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 178.918341] ? copy_mount_options+0x285/0x380 [ 178.922842] ksys_mount+0x12d/0x140 [ 178.926483] __x64_sys_mount+0xbe/0x150 [ 178.930464] do_syscall_64+0x1b9/0x820 [ 178.934346] ? finish_task_switch+0x1d3/0x870 [ 178.938835] ? syscall_return_slowpath+0x5e0/0x5e0 [ 178.943757] ? syscall_return_slowpath+0x31d/0x5e0 [ 178.948690] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 178.953700] ? prepare_exit_to_usermode+0x291/0x3b0 [ 178.958711] ? perf_trace_sys_enter+0xb10/0xb10 [ 178.963376] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 178.968216] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 178.973397] RIP: 0033:0x4584ea [ 178.976570] Code: b8 a6 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 dd 8f fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 ba 8f fb ff c3 66 0f 1f 84 00 00 00 00 00 [ 178.995872] RSP: 002b:00007fb8b6388a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 179.003575] RAX: ffffffffffffffda RBX: 00007fb8b6388b30 RCX: 00000000004584ea [ 179.010852] RDX: 00007fb8b6388ad0 RSI: 0000000020000100 RDI: 00007fb8b6388af0 [ 179.018135] RBP: 0000000020000100 R08: 00007fb8b6388b30 R09: 00007fb8b6388ad0 [ 179.025394] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000014 09:06:08 executing program 0: r0 = socket$inet6(0xa, 0x803, 0x46) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = socket$inet_dccp(0x2, 0x6, 0x0) socket$nl_crypto(0x10, 0x3, 0x15) socket$inet_tcp(0x2, 0x1, 0x0) getsockopt$inet_int(r1, 0x10d, 0x2, &(0x7f000079bffc), &(0x7f0000000000)=0x4) r2 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x0, 0x0) write$FUSE_WRITE(r2, &(0x7f0000000080)={0x18, 0x0, 0x4, {0x8}}, 0x18) 09:06:08 executing program 4: r0 = syz_open_dev$audion(&(0x7f0000000000)='/dev/audio#\x00', 0xffff, 0x0) setsockopt$l2tp_PPPOL2TP_SO_REORDERTO(r0, 0x111, 0x5, 0x8, 0x4) perf_event_open(&(0x7f0000000100)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f000031f000)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_open_procfs$namespace(0x0, &(0x7f00000004c0)='ns/mnt\x00') syz_open_procfs$namespace(0x0, &(0x7f0000000940)='ns/mnt\x00') 09:06:08 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={"6c6f00000000000000ffffff00", {0x2}}) 09:06:08 executing program 6: perf_event_open(&(0x7f0000000280)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8ce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000005000), 0x2}, 0x1000000000c}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(0xffffffffffffffff, 0xc0045516, &(0x7f0000000040)=0x100000006) getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffff9c, 0x84, 0x73, &(0x7f000000d000), &(0x7f0000001000)=0xfea6) ioctl$SNDRV_CTL_IOCTL_PVERSION(0xffffffffffffffff, 0xc1105517, &(0x7f0000001000)) 09:06:08 executing program 0: socketpair(0x15, 0x805, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$KVM_S390_INTERRUPT_CPU(r1, 0x4010ae94, &(0x7f0000000040)={0x2, 0x100000001, 0x6}) r2 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000080)='IPVS\x00') sendmsg$IPVS_CMD_SET_CONFIG(r0, &(0x7f00000002c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f00000000c0)={&(0x7f0000000140)={0x17c, r2, 0x2, 0x70bd2b, 0x25dfdbfb, {0xc}, [@IPVS_CMD_ATTR_DAEMON={0x64, 0x3, [@IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @mcast1={0xff, 0x1, [], 0x1}}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x8, 0x7, 0x4e22}, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x8, 0x4, 0x9}, @IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'ipddp0\x00'}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x8, 0x8, 0x8}, @IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @multicast1=0xe0000001}, @IPVS_DAEMON_ATTR_SYNC_ID={0x8, 0x3, 0x3}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x8, 0x8, 0x10001}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x8, 0x7, 0x4e20}]}, @IPVS_CMD_ATTR_SERVICE={0x44, 0x1, [@IPVS_SVC_ATTR_SCHED_NAME={0x8, 0x6, 'wlc\x00'}, @IPVS_SVC_ATTR_PORT={0x8, 0x4, 0x4e24}, @IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x0, 0x28}}, @IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x9}, @IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x200}, @IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv6=@mcast1={0xff, 0x1, [], 0x1}}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x5}, @IPVS_CMD_ATTR_DAEMON={0x34, 0x3, [@IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @remote={0xfe, 0x80, [], 0xbb}}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x8, 0x7, 0x4e23}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @mcast1={0xff, 0x1, [], 0x1}}]}, @IPVS_CMD_ATTR_DEST={0x50, 0x2, [@IPVS_DEST_ATTR_PERSIST_CONNS={0x8, 0x9, 0xd8ea}, @IPVS_DEST_ATTR_ACTIVE_CONNS={0x8, 0x7, 0xffff}, @IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv6=@mcast1={0xff, 0x1, [], 0x1}}, @IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0x7}, @IPVS_DEST_ATTR_INACT_CONNS={0x8, 0x8, 0x100000000}, @IPVS_DEST_ATTR_WEIGHT={0x8, 0x4, 0xfffffffffffffffd}, @IPVS_DEST_ATTR_ACTIVE_CONNS={0x8, 0x7, 0x5}, @IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0x1}]}, @IPVS_CMD_ATTR_DAEMON={0x28, 0x3, [@IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @local={0xfe, 0x80, [], 0xaa}}, @IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @broadcast=0xffffffff}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x8, 0x7, 0x4e23}]}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, [@IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x17c}, 0x1, 0x0, 0x0, 0x4004850}, 0x8000) dup3(r1, r1, 0x80000) [ 179.032657] R13: 0000000000000000 R14: 00000000004d3de0 R15: 0000000000000024 09:06:08 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={"6c6f0000000000000000001e00", {0x2}}) 09:06:08 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x0, 0x0) name_to_handle_at(r0, &(0x7f0000000300)='\x00', &(0x7f0000000200)={0x81, 0x0, "a684405d6d555cb163a08e5e667c56e7fe548757c7fbaa71613db2ae0c31ca6373d891d235c367fc54c3b8a8aa24ef5f1cce0ee73ea144d2ec903a701346f0f8dcd1fc6290187762365a36372a8e5e7a1b47110718c5ad5f039d52dcb5dc9b0ca2f48c168d6db0915994dce34788d12ed958eedff287ce0e53"}, &(0x7f0000000100), 0x1000) r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000600)='/dev/sequencer2\x00', 0x20000, 0x0) ioctl$sock_kcm_SIOCKCMCLONE(r1, 0x89e2, &(0x7f0000000640)={0xffffffffffffff9c}) getsockopt$inet_sctp_SCTP_GET_LOCAL_ADDRS(0xffffffffffffff9c, 0x84, 0x6d, &(0x7f0000000480)={0x0, 0x7, "bac614aebc435a"}, &(0x7f00000004c0)=0xf) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(r2, 0x84, 0x6c, &(0x7f0000000500)=ANY=[@ANYRES32=r3, @ANYBLOB="990000000835d93cc137e3aeedacdae256ebbc5276dc920c4e8ac55a6b9d7d02623cba5e4933553887b9ee4d2f5ec7fcdcc0f1ac585a403bbdd144e6c0bf7b16d8fd9bda458079c97cc10eca28efa3a973c635c7c245f570fe09738c40b278385b42142f372bcbdd95feb9a25d1e0d1b70edcbc69b8d0cb63270ff34d5f974371555e2facfed4204cf939d69570f5d224fd22afcd3ef"], &(0x7f00000005c0)=0xa1) r4 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/pfkey\x00', 0x0, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(r4, 0x84, 0x6c, &(0x7f0000000240)=ANY=[@ANYRES32=0x0, @ANYBLOB="a70000009a61d3800d30c0066387f4f6dc0dc1ef64b1ba005fd12b06441396f21b6f3d43ce9f96729a68de4435df011675df883de22b5be61caf6958f0a133e8f41ef1ee3aad0ca608091ebc5bd173836bd1c618dc72542b28de2546817ea492807381b3f793d765410a68f3621fbe13c41b8dff316229729ae244c4918baa1e8b0afe9135aca8029f8000ec13a2806f9b4fb39f719e09e5d402156d40a6ee6a0000000000000000000000"], &(0x7f0000000300)=0xaf) getsockopt$inet_sctp6_SCTP_DEFAULT_SEND_PARAM(r4, 0x84, 0xa, &(0x7f0000000340)={0x0, 0x8000, 0x3, 0x81, 0x80000001, 0x6, 0x4, 0x5, r5}, &(0x7f0000000400)=0x20) getsockopt$inet6_IPV6_IPSEC_POLICY(r4, 0x29, 0x22, &(0x7f0000000040)={{{@in6=@remote, @in=@broadcast}}, {{@in6=@ipv4={[], [], @rand_addr}}, 0x0, @in6=@ipv4={[], [], @loopback}}}, &(0x7f0000000140)=0xe8) getsockopt$inet_sctp_SCTP_MAXSEG(r4, 0x84, 0xd, &(0x7f0000000180)=@assoc_id=0x0, &(0x7f00000001c0)=0x4) setsockopt$inet_sctp6_SCTP_ASSOCINFO(r4, 0x84, 0x1, &(0x7f0000000200)={r6, 0x8, 0x6, 0xffffffff, 0xa1f, 0x7a}, 0x14) 09:06:08 executing program 0: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000080)='/dev/audio\x00', 0x800, 0x0) setsockopt$inet_buf(r1, 0x0, 0x0, &(0x7f00000000c0)="81578621b3b6e516feb389b9feb3074380db18a6488e0c7663bacbd49efd91b08e527f4177f859ffc7", 0x29) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r2 = openat$null(0xffffffffffffff9c, &(0x7f0000000000)='/dev/null\x00', 0x10000, 0x0) setsockopt$IP_VS_SO_SET_STARTDAEMON(r2, 0x0, 0x48b, &(0x7f0000000040)={0x0, 'bcsh0\x00', 0x4}, 0x18) mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0) r3 = creat(&(0x7f0000000100)='./file0\x00', 0x0) fcntl$setstatus(r3, 0x4, 0x6100) pwrite64(r3, &(0x7f0000003000)="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", 0x200, 0x0) 09:06:08 executing program 1: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") getpeername(r0, &(0x7f0000000000)=@ll={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @remote}, &(0x7f0000000080)=0x80) ioctl$sock_inet6_SIOCSIFDSTADDR(r0, 0x8918, &(0x7f00000000c0)={@mcast1={0xff, 0x1, [], 0x1}, 0x3a, r1}) r2 = syz_open_dev$dmmidi(&(0x7f0000000200)='/dev/dmmidi#\x00', 0x6, 0x402) r3 = inotify_add_watch(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x40) inotify_rm_watch(r2, r3) syz_mount_image$gfs2(&(0x7f0000000400)='gfs2\x00', &(0x7f0000000440)='./file0\x00', 0x0, 0x0, &(0x7f0000000000), 0x7, &(0x7f0000000100)=ANY=[@ANYBLOB="7374617466735f70657263656e743d3030303030303239382c00000000000000000000c1992e4daaad06a085abae1dc7a7075f3685077ef1c7b515cbc0a516289f1df1d17cbf8e113fe819981cccad1590275b419a752ca1511179c2f9e69af809f06f3b610d8bed31d3982b8b2bebf80ea80b6e9538f7eb001e7c0707eaf76627d3f72674c7bb9703ddc22cde8de9946bf63806f89db7b5d6f2957bf47aaad867c77f8b6e741500979b0b2d0e92ef6b500ea22eebd3f3fa9a5aeb520e2b9c6c502d90bf78f1e9b70f8b24a15dee6917835ede81c7b54cf02a8f2f41eca982ee85a05e62"]) 09:06:08 executing program 2 (fault-call:1 fault-nth:37): syz_mount_image$vfat(&(0x7f0000000180)='vfat\x00', &(0x7f0000000080)='./file0/file0\x00', 0x0, 0x0, &(0x7f0000001580), 0x0, &(0x7f0000000340)={[{@shortname_win95='shortname=win95', 0x2c}]}) syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f0000000100)='./file0\x00', 0xe004, 0x1, &(0x7f0000000380)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020401000200027000f8", 0x16}], 0x0, &(0x7f0000000340)=ANY=[]) [ 179.166149] gfs2: invalid mount option: statfs_percent=000000298 [ 179.172449] gfs2: can't parse mount arguments [ 179.184783] FAULT_INJECTION: forcing a failure. [ 179.184783] name failslab, interval 1, probability 0, space 0, times 0 [ 179.196075] CPU: 0 PID: 12509 Comm: syz-executor2 Not tainted 4.18.0-rc5-next-20180720+ #12 [ 179.204563] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 179.213914] Call Trace: [ 179.216510] dump_stack+0x1c9/0x2b4 [ 179.220138] ? dump_stack_print_info.cold.2+0x52/0x52 [ 179.225333] ? kernel_text_address+0x79/0xf0 [ 179.229796] should_fail.cold.4+0xa/0x11 [ 179.233873] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 179.238986] ? save_stack+0xa9/0xd0 [ 179.242670] ? save_stack+0x43/0xd0 [ 179.246298] ? kasan_kmalloc+0xc4/0xe0 [ 179.250187] ? vfs_new_fs_context+0x5a/0x6d0 [ 179.254601] ? do_mount+0x605/0x1e20 [ 179.258319] ? ksys_mount+0x12d/0x140 [ 179.262123] ? __x64_sys_mount+0xbe/0x150 [ 179.266278] ? do_syscall_64+0x1b9/0x820 [ 179.270350] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 179.275726] ? trace_hardirqs_off+0xd/0x10 [ 179.280000] ? quarantine_put+0x10d/0x1b0 [ 179.284158] ? lock_acquire+0x1e4/0x540 [ 179.288142] ? fs_reclaim_acquire+0x20/0x20 [ 179.292474] ? lock_downgrade+0x8f0/0x8f0 [ 179.296643] ? fs_reclaim_acquire+0x20/0x20 [ 179.300989] ? check_same_owner+0x340/0x340 [ 179.305314] ? debug_mutex_init+0x2d/0x60 [ 179.309469] ? rcu_note_context_switch+0x730/0x730 [ 179.314412] __should_failslab+0x124/0x180 [ 179.318653] should_failslab+0x9/0x14 [ 179.322473] kmem_cache_alloc_trace+0x2cb/0x780 [ 179.327153] ? put_fs_context+0x500/0x500 [ 179.331305] legacy_init_fs_context+0x49/0xd0 [ 179.335821] ? refcount_inc_checked+0x29/0x70 [ 179.340581] vfs_new_fs_context+0x2c3/0x6d0 [ 179.345019] do_mount+0x605/0x1e20 [ 179.348563] ? check_same_owner+0x340/0x340 [ 179.352890] ? lock_release+0xa30/0xa30 [ 179.356881] ? copy_mount_string+0x40/0x40 [ 179.361120] ? kasan_kmalloc+0xc4/0xe0 [ 179.365034] ? kmem_cache_alloc_trace+0x318/0x780 [ 179.369888] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 179.375427] ? _copy_from_user+0xdf/0x150 [ 179.379576] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 179.385121] ? copy_mount_options+0x285/0x380 [ 179.389628] ksys_mount+0x12d/0x140 [ 179.393259] __x64_sys_mount+0xbe/0x150 [ 179.397342] do_syscall_64+0x1b9/0x820 [ 179.401239] ? syscall_return_slowpath+0x5e0/0x5e0 [ 179.406176] ? syscall_return_slowpath+0x31d/0x5e0 [ 179.411110] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 179.416129] ? prepare_exit_to_usermode+0x291/0x3b0 [ 179.421168] ? perf_trace_sys_enter+0xb10/0xb10 [ 179.425838] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 179.430691] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 179.435877] RIP: 0033:0x4584ea [ 179.439057] Code: b8 a6 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 dd 8f fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 ba 8f fb ff c3 66 0f 1f 84 00 00 00 00 00 [ 179.458330] RSP: 002b:00007fb8b6388a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 179.466306] RAX: ffffffffffffffda RBX: 00007fb8b6388b30 RCX: 00000000004584ea [ 179.473580] RDX: 00007fb8b6388ad0 RSI: 0000000020000100 RDI: 00007fb8b6388af0 [ 179.480858] RBP: 0000000020000100 R08: 00007fb8b6388b30 R09: 00007fb8b6388ad0 [ 179.488150] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000014 [ 179.495435] R13: 0000000000000000 R14: 00000000004d3de0 R15: 0000000000000025 09:06:09 executing program 5: syz_mount_image$btrfs(&(0x7f0000000480)='btrfs\x00', &(0x7f0000000580)='./file0\x00', 0x0, 0x1, &(0x7f0000000840)=[{&(0x7f00000005c0), 0x0, 0xfffffffffffffffe}], 0x0, &(0x7f00000008c0)) r0 = syz_open_dev$mouse(&(0x7f0000000000)='/dev/input/mouse#\x00', 0x1, 0x107001) setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000080)=@raw={'raw\x00', 0x9, 0x3, 0x2e8, 0x130, 0x130, 0x130, 0x130, 0x0, 0x218, 0x218, 0x218, 0x218, 0x218, 0x3, &(0x7f0000000040), {[{{@ipv6={@remote={0xfe, 0x80, [], 0xbb}, @loopback={0x0, 0x1}, [0x0, 0x0, 0x0, 0xffffffff], [0xffffffff, 0xffffff00, 0xff, 0xff000000], 'yam0\x00', 'team0\x00', {}, {}, 0xff, 0x920, 0x2, 0x1}, 0x0, 0xf0, 0x130, 0x0, {}, [@inet=@rpfilter={0x28, 'rpfilter\x00', 0x0, {0x2}}]}, @common=@unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00', 0x0, 0x5fed, 0x2b0}}}, {{@ipv6={@local={0xfe, 0x80, [], 0xaa}, @loopback={0x0, 0x1}, [0xffffff00, 0x0, 0xffffff00, 0xff000000], [0xff0000ff, 0xffffff00, 0x0, 0xffffffff], 'bond_slave_0\x00', 'veth0\x00', {0xff}, {0xff}, 0x33, 0xe2f8, 0x1, 0x2}, 0x0, 0xc8, 0xe8}, @unspec=@TRACE={0x20, 'TRACE\x00'}}], {{[], 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x0, 0xfffffffffffffffe}}}}, 0x348) 09:06:09 executing program 6: perf_event_open(&(0x7f0000000280)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8ce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000005000), 0x2}, 0x1000000000c}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(0xffffffffffffffff, 0xc0045516, &(0x7f0000000040)=0x100000006) getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffff9c, 0x84, 0x73, &(0x7f000000d000), &(0x7f0000001000)=0xfea6) ioctl$SNDRV_CTL_IOCTL_PVERSION(0xffffffffffffffff, 0xc1105517, &(0x7f0000001000)) 09:06:09 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000000)) r0 = syz_open_dev$adsp(&(0x7f0000000080)='/dev/adsp#\x00', 0xffff, 0x2000) ioctl$SNDRV_TIMER_IOCTL_STOP(r0, 0x54a1) 09:06:09 executing program 4: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x4, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r3, 0xc008ae88, &(0x7f0000000040)={0x100000010, 0x0, [0x40000000, 0x1]}) 09:06:09 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={"6c6f0000fffffffe00", {0x2}}) 09:06:09 executing program 1: r0 = socket$inet6(0xa, 0x40000000002, 0x0) setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000000000)=0xbff, 0x4) ioctl$GIO_CMAP(0xffffffffffffffff, 0x4b70, &(0x7f00000000c0)) connect$inet6(r0, &(0x7f0000000100)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x4}, 0x1c) write$P9_RCLUNK(r0, &(0x7f0000000040)={0x7, 0x79}, 0x7) r1 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r1, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r2 = socket$inet_sctp(0x2, 0x1, 0x84) sendto$inet(r2, &(0x7f0000000080)="0f", 0x1, 0x0, &(0x7f0000000040)={0x2, 0x0, @local={0xac, 0x14, 0xffffffffffffffff, 0xaa}}, 0x10) mkdir(&(0x7f0000c92000)='./file0\x00', 0x0) r3 = creat(&(0x7f0000f66ff4)='./file0/bus\x00', 0x0) r4 = open$dir(&(0x7f0000000180)='./file0/bus\x00', 0x0, 0x0) writev(r3, &(0x7f00002c8000)=[{&(0x7f00007fbf5f)="b7", 0x1}], 0x1) r5 = dup(r4) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x1, 0x2011, r5, 0x0) sendto$inet(r2, &(0x7f0000029000)="c6", 0x1, 0x0, &(0x7f0000007ff0)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff, 0xbb}}, 0x10) shutdown(r2, 0x1) getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r2, 0x84, 0x6c, &(0x7f0000018000)={0x0, @in6={{0xa}}}, &(0x7f0000000000)=0x8c) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f00000001c0)=ANY=[@ANYBLOB="140000005d614814774ddb593389beba44319228c2e5c4d7b4c822ca06ca075be45c28e07fb7536a08ac362bd7a60394eb88ab793c4b17c0987e09cb0dadcd1c", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0], &(0x7f0000000180)=0x14) signalfd4(r0, &(0x7f0000000080)={0x7}, 0x8, 0x80800) 09:06:09 executing program 0: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) r1 = openat$null(0xffffffffffffff9c, &(0x7f0000000140)='/dev/null\x00', 0x42240, 0x0) ioctl$sock_inet_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180)) r2 = syz_open_dev$sndpcmc(&(0x7f0000000000)='/dev/snd/pcmC#D#c\x00', 0x100000001, 0x0) getsockopt$inet_sctp_SCTP_ADAPTATION_LAYER(r2, 0x84, 0x7, &(0x7f0000000040), &(0x7f0000000080)=0x4) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") syz_mount_image$xfs(&(0x7f00000000c0)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000002c0)={[{@inode64='inode64', 0x2c}]}) 09:06:09 executing program 2 (fault-call:1 fault-nth:38): syz_mount_image$vfat(&(0x7f0000000180)='vfat\x00', &(0x7f0000000080)='./file0/file0\x00', 0x0, 0x0, &(0x7f0000001580), 0x0, &(0x7f0000000340)={[{@shortname_win95='shortname=win95', 0x2c}]}) syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f0000000100)='./file0\x00', 0xe004, 0x1, &(0x7f0000000380)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020401000200027000f8", 0x16}], 0x0, &(0x7f0000000340)=ANY=[]) 09:06:09 executing program 6: r0 = syz_open_dev$sndctrl(&(0x7f00000000c0)='/dev/snd/controlC#\x00', 0x0, 0x0) perf_event_open(&(0x7f0000000280)={0x0, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8ce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000005000), 0x2}, 0x1000000000c}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r0, 0xc0045516, &(0x7f0000000040)=0x100000006) getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffff9c, 0x84, 0x73, &(0x7f000000d000), &(0x7f0000001000)=0xfea6) ioctl$SNDRV_CTL_IOCTL_PVERSION(r0, 0xc1105517, &(0x7f0000001000)) [ 179.852609] FAULT_INJECTION: forcing a failure. [ 179.852609] name failslab, interval 1, probability 0, space 0, times 0 [ 179.863931] CPU: 0 PID: 12523 Comm: syz-executor2 Not tainted 4.18.0-rc5-next-20180720+ #12 [ 179.872513] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 179.881886] Call Trace: [ 179.884469] dump_stack+0x1c9/0x2b4 [ 179.888089] ? dump_stack_print_info.cold.2+0x52/0x52 [ 179.893265] ? bpf_prog_kallsyms_find+0xde/0x4c0 [ 179.898028] should_fail.cold.4+0xa/0x11 [ 179.902091] ? is_bpf_text_address+0xae/0x170 [ 179.906574] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 179.911672] ? lock_release+0xa30/0xa30 [ 179.915653] ? kasan_check_read+0x11/0x20 [ 179.919813] ? rcu_is_watching+0x8c/0x150 [ 179.923951] ? rcu_cleanup_dead_rnp+0x200/0x200 [ 179.928610] ? is_bpf_text_address+0xd7/0x170 [ 179.933098] ? kernel_text_address+0x79/0xf0 [ 179.937507] ? __kernel_text_address+0xd/0x40 [ 179.941992] ? lock_acquire+0x1e4/0x540 [ 179.945955] ? fs_reclaim_acquire+0x20/0x20 [ 179.950264] ? lock_downgrade+0x8f0/0x8f0 [ 179.954686] ? check_same_owner+0x340/0x340 [ 179.958994] ? rcu_note_context_switch+0x730/0x730 [ 179.963918] ? copy_mount_options+0x5f/0x380 [ 179.968314] ? ksys_mount+0xd0/0x140 [ 179.972020] __should_failslab+0x124/0x180 [ 179.976243] should_failslab+0x9/0x14 [ 179.980029] kmem_cache_alloc+0x2af/0x760 [ 179.984248] ? lock_release+0xa30/0xa30 [ 179.988209] ? dput.part.26+0x248/0x7a0 [ 179.992191] getname_flags+0xd0/0x5a0 [ 179.995989] ? fs_reclaim_acquire+0x20/0x20 [ 180.000310] user_path_at_empty+0x2d/0x50 [ 180.004441] do_mount+0x17f/0x1e20 [ 180.007969] ? check_same_owner+0x340/0x340 [ 180.012276] ? lock_release+0xa30/0xa30 [ 180.016250] ? copy_mount_string+0x40/0x40 [ 180.020470] ? kasan_kmalloc+0xc4/0xe0 [ 180.024444] ? kmem_cache_alloc_trace+0x318/0x780 [ 180.029276] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 180.034810] ? _copy_from_user+0xdf/0x150 [ 180.038944] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 180.044660] ? copy_mount_options+0x285/0x380 [ 180.049142] ksys_mount+0x12d/0x140 [ 180.052756] __x64_sys_mount+0xbe/0x150 [ 180.056718] do_syscall_64+0x1b9/0x820 [ 180.060588] ? finish_task_switch+0x1d3/0x870 [ 180.065070] ? syscall_return_slowpath+0x5e0/0x5e0 [ 180.069984] ? syscall_return_slowpath+0x31d/0x5e0 [ 180.074997] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 180.080000] ? prepare_exit_to_usermode+0x291/0x3b0 [ 180.085000] ? perf_trace_sys_enter+0xb10/0xb10 [ 180.089657] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 180.094497] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 180.099668] RIP: 0033:0x4584ea [ 180.102836] Code: b8 a6 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 dd 8f fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 ba 8f fb ff c3 66 0f 1f 84 00 00 00 00 00 [ 180.122026] RSP: 002b:00007fb8b6388a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 180.129731] RAX: ffffffffffffffda RBX: 00007fb8b6388b30 RCX: 00000000004584ea [ 180.136996] RDX: 00007fb8b6388ad0 RSI: 0000000020000100 RDI: 00007fb8b6388af0 09:06:09 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x72) sync() ioctl$SG_GET_RESERVED_SIZE(r0, 0x2272, &(0x7f0000000040)) ioctl$TCXONC(r0, 0x540a, 0x85) shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)) ioctl$TIOCSBRK(r0, 0x5427) 09:06:09 executing program 0: r0 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000080)='/dev/dsp\x00', 0x3b4c32f54482cedd, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x40080000}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)=@dellink={0x48, 0x11, 0x0, 0x70bd2a, 0x25dfdbfe, {0x0, 0x0, 0x0, 0x0, 0x400, 0x10000}, [@IFLA_MTU={0x8, 0xe, 0x1ff}, @IFLA_MTU={0x8, 0xe, 0x7}, @IFLA_MASTER={0x8, 0xa, 0x9}, @IFLA_NUM_TX_QUEUES={0x8, 0x1f, 0x8}, @IFLA_AF_SPEC={0x8, 0x1a, [{0x4, 0x1c}]}]}, 0x48}, 0x1}, 0x4001) ioctl$TIOCGPGRP(0xffffffffffffff9c, 0x540f, &(0x7f0000000000)=0x0) syz_open_procfs(r1, &(0x7f0000000040)='gid_map\x00') r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r2, &(0x7f0000000580)={&(0x7f0000000500)={0x10}, 0xc, &(0x7f0000000540)={&(0x7f00000015c0)=@ipv4_newroute={0x28, 0x18, 0x331, 0x0, 0x0, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfe, 0x2}, [@RTA_MULTIPATH={0xc, 0xb, {0x8}}]}, 0x28}, 0x1}, 0x0) setsockopt$inet6_udp_encap(r0, 0x11, 0x64, &(0x7f0000000200)=0x1, 0x4) 09:06:09 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={"6c6f0000fffffdfd00", {0x2}}) [ 180.144254] RBP: 0000000020000100 R08: 00007fb8b6388b30 R09: 00007fb8b6388ad0 [ 180.156813] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000014 [ 180.164153] R13: 0000000000000000 R14: 00000000004d3de0 R15: 0000000000000026 [ 180.178422] netlink: 'syz-executor0': attribute type 11 has an invalid length. 09:06:10 executing program 6: r0 = syz_open_dev$sndctrl(&(0x7f00000000c0)='/dev/snd/controlC#\x00', 0x0, 0x0) perf_event_open(&(0x7f0000000280)={0x0, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8ce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000005000), 0x2}, 0x1000000000c}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r0, 0xc0045516, &(0x7f0000000040)=0x100000006) getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffff9c, 0x84, 0x73, &(0x7f000000d000), &(0x7f0000001000)=0xfea6) ioctl$SNDRV_CTL_IOCTL_PVERSION(r0, 0xc1105517, &(0x7f0000001000)) 09:06:10 executing program 5: r0 = syz_open_dev$sndseq(&(0x7f00000001c0)='/dev/snd/seq\x00', 0x0, 0x0) ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r0, 0x80045300, &(0x7f0000000580)={{}, 'port1\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000000000000}) 09:06:10 executing program 4: r0 = socket$key(0xf, 0x3, 0x2) r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x20000001000002, 0x0) ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000000040)={0x401, 0xa9ec}) sendmsg$key(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f0000000080)=ANY=[@ANYBLOB="020300000c000000800000000000000005000600000000000a0000000000fe800000000036fed5cc40e3d013ad68bcfb05d1f81a450000000000000000ff0000000000000000020001000000000000000000000000000300050000000000020000007f000001000000000000"], 0x25a}, 0x1}, 0x0) [ 180.200148] netlink: 'syz-executor0': attribute type 11 has an invalid length. 09:06:10 executing program 0: r0 = creat(&(0x7f00000001c0)='./bus\x00', 0x0) mount$9p_virtio(&(0x7f0000000200)='&*\x00', &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='9p\x00', 0x20000, &(0x7f0000000180)={'trans=virtio,', {[{@uname={'uname', 0x3d, 'cgroupppp0wlan0ppp1'}, 0x2c}]}}) rename(&(0x7f0000000040)='./bus\x00', &(0x7f0000000240)='./file0\x00') fcntl$setlease(r0, 0x400, 0x0) link(&(0x7f0000000080)='./bus\x00', &(0x7f00000000c0)='./file0\x00') ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000000)={{&(0x7f0000ffb000/0x2000)=nil, 0x2000}, 0x3}) 09:06:10 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={'lo\x00\x00\x00\x00\x00`\x00', {0x2}}) 09:06:10 executing program 6: r0 = syz_open_dev$sndctrl(&(0x7f00000000c0)='/dev/snd/controlC#\x00', 0x0, 0x0) perf_event_open(&(0x7f0000000280)={0x0, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8ce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000005000), 0x2}, 0x1000000000c}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r0, 0xc0045516, &(0x7f0000000040)=0x100000006) getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffff9c, 0x84, 0x73, &(0x7f000000d000), &(0x7f0000001000)=0xfea6) ioctl$SNDRV_CTL_IOCTL_PVERSION(r0, 0xc1105517, &(0x7f0000001000)) 09:06:10 executing program 6: r0 = syz_open_dev$sndctrl(&(0x7f00000000c0)='/dev/snd/controlC#\x00', 0x0, 0x0) perf_event_open(&(0x7f0000000280)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8ce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000005000), 0x2}, 0x1000000000c}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r0, 0xc0045516, &(0x7f0000000040)=0x100000006) getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffff9c, 0x84, 0x73, &(0x7f000000d000), &(0x7f0000001000)=0xfea6) ioctl$SNDRV_CTL_IOCTL_PVERSION(r0, 0xc1105517, &(0x7f0000001000)) 09:06:10 executing program 0: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = add_key$user(&(0x7f0000000000)='user\x00', &(0x7f0000000040)={0x73, 0x79, 0x7a, 0x1}, &(0x7f0000000100)="4a22e0d89666796def26efce86bb1864c0b577cf63de076266639c223e920496d20858bf2b1df4c0e87dd2a4d09f13fd5d7ce495afd0b270fe1620baed016b319a6323583469d652252188884d92ab43e034ba96bc9c36439e7704357c17b3885a5ad56f3cf20ea0341ee10ab231f7a9453bdb3b82fc1ff9fb6d6610648d3fd2d46cf91f3a82c22f62cb7ff7f579f8a4ebf3bd9b23f28ce6de40166f45ea0063961f1e6ad4be6000baf382cc6a70b219a4d1f5a6780cc2bd14", 0xb9, 0xfffffffffffffffe) r2 = add_key$user(&(0x7f0000000600)='user\x00', &(0x7f0000000640)={0x73, 0x79, 0x7a, 0x1}, &(0x7f0000000400)="33f2a69895", 0x5, 0xfffffffffffffffe) r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000680)='net/ip_mr_cache\x00') setsockopt$inet_tcp_buf(r3, 0x6, 0x1f, &(0x7f00000006c0)="b8f8fa1685c746ac9152fe17a5de7d56f7991bfbf9fac2330823ba5301cedb50b9946cb7f93381be7978ccd7da5715b65c1e33273a41b3cce6f4d3c05653694449b2ba658901cacf917589dff2a57aad6dcd29d3c488b051b833fc95b3e5265ba08e81b3e2a7ae134b70dacab3a555081535d7c5288db0a9c8fae3d76952dbf8995fd1877e40e5ed9efcb4ef5b7ee0029c", 0x91) keyctl$instantiate_iov(0x14, r1, &(0x7f0000000580)=[{&(0x7f00000001c0)="ae71e3a8c3433162b4e5ce1d7dd8d57dec45db5b0643a31ad722b929a2349337b919afedf45d77826f02fea47df85faa011ba7f2df2629db38f4fe8f0d8140aa9493d64c40815b8e1e842fa3264ada749bbb74a3385eb71a2f530625a3573fb9cb6b033552e70a26956fdcc656ed133002278297ab3f6c95ed1a", 0x7a}, {&(0x7f00000002c0)="06b75800aef6a0b392f37d9625302c0ea798a1c6012d7643d05655af92ea303124372c3410f97c9a1e1d81bda4e84067d165f9a4937dbfe1c4eafb09963b5a337e71333c", 0x44}, {&(0x7f0000000240)="42ba8dfb202b2ea2f1baea4c07785ad620075c20a29c52ceedf3066d9667bad79d7ad92069d3064fc029d23aadc86b13b9137335ee2553f58c30c7ce", 0x3c}, {&(0x7f0000000340)="97477226d2953b7c2a899a2d5936df89cc8fadc1dd9ff20cbe5b9c108fc562b126078e10e3c83bbc17211650d4838aad8b58f55098dff880afe69c644291f8c3d257a8a6bceeee0774c862a823a1aa4a6099f258b122d7d7e717a6375cb7355de3b207065723c52c2ae10e4b43ce7ad8f7aaa14cdbd020aded61398b924f04113b72154677609d3b7c3c8b18c686bb492f59b18f6a4edf03ded6b447dd845e", 0x9f}, {&(0x7f0000000400)}, {&(0x7f0000000440)="4eda37cfc39fb8dafeb8df4f90", 0xd}, {&(0x7f0000000480)="704bfefc24e324078463a5636a8f769cd67f0de2dfbcf2130eff041d85319a8d21d8695eae902945c2aba8ebb83813bdfa793bc5f7f5c2735675409919da47ee9233367657ac727e54f6a6e9ee3623c5e9284f66448e5971d697e2f9c689e5d323ada8cfb4357898f0ab91e676b15d3989ccfb5f62216e8ada940609bd079c1ac52933d655229b57378696bf83ed44aa7760255740f83ba36868cfb2441168a44d4e1ec9b1ac1c54a6cfd7001c59bc4342b69ce2858cbcb635240f313422a2be0d0d4afb3e", 0xc5}], 0x7, r2) r4 = socket$inet(0x10, 0x3, 0xc) sendmsg(r4, &(0x7f000001d000)={0x0, 0x0, &(0x7f0000024000)=[{&(0x7f0000000080)="24000000170a07041dfffd946fa2830020200a0009000200001d85687f0000000400ff7e280000000b0a43ba5d8060000000060000000029ec2400020cd37ed01cc0730ec279b2fcbf4042d1", 0x4c}], 0x1}, 0x0) 09:06:10 executing program 4: perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) getsockopt$IP_VS_SO_GET_DESTS(r0, 0x0, 0x484, &(0x7f0000000280)=""/228, &(0x7f0000000080)=0x18) [ 180.374984] netlink: 20 bytes leftover after parsing attributes in process `syz-executor0'. [ 180.405631] netlink: 20 bytes leftover after parsing attributes in process `syz-executor0'. 09:06:10 executing program 1: mkdir(&(0x7f0000fd5ff8)='./file0\x00', 0xfffffffffffffffe) mount(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000880)='./file0\x00', &(0x7f0000005440)='hugetlbfs\x00', 0x0, &(0x7f0000001d80)) readlinkat(0xffffffffffffffff, &(0x7f0000000540)='./file0\x00', &(0x7f0000000580)=""/15, 0xf) syz_mount_image$ntfs(&(0x7f0000000180)='ntfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x4, &(0x7f00000005c0), 0x1008068, &(0x7f0000000100)=ANY=[@ANYBLOB="007f9d881ddcc215eab2994dd8123dd75f5783c3a674e1560ef27837cc4e7db75d0c6593e3592bffab56fd9237c799161e378a3f29cf22c6d70f3cafa3f5ff07696073d9303661e21e92127b229f635119cde7c37244cbf38a"]) r0 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000500)='/dev/mixer\x00', 0x105000, 0x0) getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(r0, 0x84, 0x73, &(0x7f00000007c0)={0x0, 0x6, 0x20, 0x0, 0xfffffffffffffffa}, &(0x7f0000000600)=0xffffffffffffff24) getsockopt$inet_sctp_SCTP_SOCKOPT_PEELOFF(r0, 0x84, 0x66, &(0x7f0000000740)={r1, 0x7fffffff}, &(0x7f0000000780)=0x8) getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(r0, 0x84, 0x6d, &(0x7f0000000640)={r1, 0x7a, "0e2c250fb76304c654d95a63692cb5de250bad4ea24d0bb82c00dff82181bd9b6d614c75564c6e8207ed84693708555eb8ceed3968e117d60f00e2fc4fcea8c5db9d28e0b74cd8eeeefe16ae001f92e8485068b169dcab66708a0ad38654df92aaaf28faa345751514b784b3b6e987d4c1a83f4f2a5a50073efe"}, &(0x7f0000000700)=0x82) pipe(&(0x7f00000004c0)) syz_mount_image$bfs(&(0x7f0000000000)='bfs\x00', &(0x7f0000000080)='./file0\x00', 0x20, 0x5, &(0x7f0000000440)=[{&(0x7f00000001c0)="2b52766b964dde5985f152f7e8107d35068ccbd771de1425e64240014b00343ee85fff3d4c3c913a7528e7e351a497dfe97cdd4be11347", 0x37, 0x2}, {&(0x7f0000000200)="b473738502d8720fdd1db44d9e146751cd8e31e1dda16b10651a6402cdbf266aa3003be8f5404baf83ef78fa8f9859de4b6923bcd8d8a3ea3a2067d00b86d55a4cbcff01442f61b44dcb4ec4d9b97f1901d5fe1d097da01f54360550367fbd3f8d6b96586739507688883b59ca1cd5a9ff75ab0a634b27121ac684370d359cdb0da2c28684affac41a69d6efa6f42600d5fafe462585924c2d6d14a216c0726a2802b1219c74b98d0398a9284b9a2e1e361c7f8ecd689c2bc6453af918e3b43435d0a22918593b7703b1f6735e037d75a5a795bfe16380238bab8a03c4f1e992f3", 0xe1}, {&(0x7f0000000300)="e64beca55389d351406f578a95191c7f0ed87cadd7557b21c10a9428", 0x1c, 0x11}, {&(0x7f0000000340)="b7d17a84f09f18f118981fb90e8c97f875b4a4ab0268c8904da29c4d11e9d121c3c408d8262580cdb6a1d8cf1b132c2523d4db5c48193805df4f8c4e043bb5ee7466253910f6b1067deba9f1d0851a43026ebe3353cb6df0065acb380e7cb57f19c8835b1673172a519c98cc78396e4c130d923fa0afca7c07efc0740792d239ee40ba6bc7b3b4a557720c5b74016680978725fdf10e83c71bd9b8eb977ee57709346955cf58", 0xa6, 0x4}, {&(0x7f0000000400)="42aae05bbf12fd347cf6495957ed25ec5f", 0x11, 0x7}], 0x10000, 0x0) 09:06:10 executing program 5: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000140)="025cc83d6d345f8f762070") r1 = syz_open_dev$evdev(&(0x7f00000000c0)='/dev/input/event#\x00', 0x0, 0x0) ioctl$PIO_UNISCRNMAP(r0, 0x4b6a, &(0x7f0000000100)="62a184f1fbe9c2090c58f5f9d0143a2b536d521f3ea9d0c5da79c912fb26a9b36e591c36e8aeb453e0172796c0bf71") mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0) r2 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000040)='/dev/cuse\x00', 0x400000, 0x0) ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r2, 0x40045532, &(0x7f0000000080)=0x100) ioctl$EVIOCSFF(r1, 0x40304580, &(0x7f0000000180)=ANY=[@ANYBLOB="000000000000a24d8bd2226e859edba0358b0c7b7807ebbd87f6e14a7603672eb3f545979ee8f4e00164e9f9ca99ea0389f0b324bd4a2ad953f0a18a3a3fa4f4e2ed5ad258f4762fa5682e1418c6c22fecf116b0d08da67c87ebfe3e06dade0088942e39777421bd8dc03e20908df1d6fab7f0994c"]) getsockopt$inet6_dccp_buf(r0, 0x21, 0xcf, &(0x7f0000000300)=""/4096, &(0x7f0000000000)=0x1000) getsockopt$IP6T_SO_GET_REVISION_MATCH(r0, 0x29, 0x44, &(0x7f00000002c0)={'TPROXY\x00'}, &(0x7f0000000280)=0x1e) 09:06:10 executing program 2 (fault-call:1 fault-nth:39): syz_mount_image$vfat(&(0x7f0000000180)='vfat\x00', &(0x7f0000000080)='./file0/file0\x00', 0x0, 0x0, &(0x7f0000001580), 0x0, &(0x7f0000000340)={[{@shortname_win95='shortname=win95', 0x2c}]}) syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f0000000100)='./file0\x00', 0xe004, 0x1, &(0x7f0000000380)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020401000200027000f8", 0x16}], 0x0, &(0x7f0000000340)=ANY=[]) 09:06:10 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={"6c6f0000001f00", {0x2}}) 09:06:10 executing program 6: r0 = syz_open_dev$sndctrl(&(0x7f00000000c0)='/dev/snd/controlC#\x00', 0x0, 0x0) perf_event_open(&(0x7f0000000280)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8ce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000005000), 0x2}, 0x1000000000c}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r0, 0xc0045516, &(0x7f0000000040)=0x100000006) getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffff9c, 0x84, 0x73, &(0x7f000000d000), &(0x7f0000001000)=0xfea6) ioctl$SNDRV_CTL_IOCTL_PVERSION(r0, 0xc1105517, &(0x7f0000001000)) 09:06:10 executing program 4: r0 = fcntl$dupfd(0xffffffffffffff9c, 0x406, 0xffffffffffffff9c) write$sndseq(r0, &(0x7f00000000c0), 0x0) futex(&(0x7f0000000000), 0xc, 0x0, &(0x7f0000000040)={0x0, 0x989680}, &(0x7f0000000080), 0x0) 09:06:10 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)={{}, 0x4}) 09:06:10 executing program 0: r0 = open$dir(&(0x7f0000000000)='./file0\x00', 0x2040, 0x0) mount$fuse(0x20000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080)='fuse\x00', 0x17cd, &(0x7f0000000300)={{'fd', 0x3d}, 0x2c, {'rootmode', 0x3d}, 0x2c, {'user_id', 0x3d}, 0x2c, {'group_id', 0x3d}, 0x2c}) getgroups(0x4, &(0x7f0000000100)=[0xee01, 0xffffffffffffffff, 0xee01, 0xffffffffffffffff]) setfsgid(r1) unlinkat(r0, &(0x7f0000000140)='./file0\x00', 0x0) mount$fuse(0x20000000, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000580)='fuse\x00', 0x79fd, &(0x7f0000000240)=ANY=[]) r2 = open(&(0x7f0000000040)='./file0\x00', 0x0, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f00000001c0)={0x0, 0x18, 0xfa00, {0x1, &(0x7f0000000180)={0xffffffffffffffff}, 0x0, 0x2}}, 0x20) write$RDMA_USER_CM_CMD_BIND_IP(r2, &(0x7f0000000200)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x4e22, 0x7, @local={0xfe, 0x80, [], 0xaa}, 0xd63}, r3}}, 0x30) ioctl$FUSE_DEV_IOC_CLONE(r2, 0x40087602, &(0x7f0000000080)) 09:06:10 executing program 6: r0 = syz_open_dev$sndctrl(&(0x7f00000000c0)='/dev/snd/controlC#\x00', 0x0, 0x0) perf_event_open(&(0x7f0000000280)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8ce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000005000), 0x2}, 0x1000000000c}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r0, 0xc0045516, &(0x7f0000000040)=0x100000006) getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffff9c, 0x84, 0x73, &(0x7f000000d000), &(0x7f0000001000)=0xfea6) ioctl$SNDRV_CTL_IOCTL_PVERSION(r0, 0xc1105517, &(0x7f0000001000)) 09:06:10 executing program 4: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000001540)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc(aes-generic)\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000000)="0a0740b26b3de26e74b1b14175b005e381", 0x11) [ 180.885751] FAULT_INJECTION: forcing a failure. [ 180.885751] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 180.897729] CPU: 1 PID: 12590 Comm: syz-executor2 Not tainted 4.18.0-rc5-next-20180720+ #12 [ 180.906225] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 180.915582] Call Trace: [ 180.918354] dump_stack+0x1c9/0x2b4 [ 180.921997] ? dump_stack_print_info.cold.2+0x52/0x52 [ 180.927206] should_fail.cold.4+0xa/0x11 09:06:10 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={"6c6f0000feffffff00", {0x2}}) 09:06:10 executing program 7: r0 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000280)='/dev/qat_adf_ctl\x00', 0x8000, 0x0) r1 = dup(r0) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000140)={0x0, 0x0, 0x0}, &(0x7f0000000180)=0xfffffffffffffe1b) shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)={{0x0, 0x0, r2}, 0x0, 0x0, 0x80000000}) ioctl$sock_bt_bnep_BNEPCONNADD(r1, 0x400442c8, &(0x7f0000000000)={r1, 0x293, 0x1, "4eac47bde425efae61116fbfd93eb45931ecd02a9a5592d9d8b2095d5c00216dca05ad55667931ba4b6d944f4dbe4b4eae5958b15eab8f8b2a71315729344c2cc87ce19400a54730730f4d285b3acf6bef67585e6d811561d3f3254800688593d52869fca5a7b25388f07e90e4b58deb9b5ad8b53ef1ab65d0893f04c3f51bf7967056506d0fb5b4df9002103d646418294a1b00e0d7aadcffe88e0c66ba0eca7ad78c2026c398e51fed1a8f19aa6582451eb86ac8620c0edd31ff82ffd96b316a526c3327140e5492825d4c768f5364720b66ae"}) clock_gettime(0x0, &(0x7f00000001c0)={0x0, 0x0}) clock_gettime(0x0, &(0x7f0000000200)={0x0, 0x0}) utimensat(r1, &(0x7f0000000100)='./file0\x00', &(0x7f0000000240)={{r3, r4/1000+30000}, {r5, r6/1000+30000}}, 0x100) 09:06:10 executing program 5: socket$inet_tcp(0x2, 0x1, 0x0) 09:06:10 executing program 0: socket$packet(0x11, 0x3, 0x300) r0 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x0, 0x0) getsockopt$inet_sctp_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, &(0x7f0000000040)={0x0, 0x15, "dbac1d8c1f6971be7cdf25f0224bd0d090c69d46d6"}, &(0x7f00000000c0)=0x1d) getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f0000000100)={r1, 0x14000000}, &(0x7f0000000140)=0x8) r2 = socket$netlink(0x10, 0x3, 0x4) write(r2, &(0x7f0000000080)="2700000014000707030e0000120f0a0011000100f51d060000c98c11aebaf9c40414ce0080401f", 0x27) [ 180.931280] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 180.936396] ? kasan_check_read+0x11/0x20 [ 180.940559] ? rcu_is_watching+0x8c/0x150 [ 180.944725] ? is_bpf_text_address+0xd7/0x170 [ 180.949233] ? kernel_text_address+0x79/0xf0 [ 180.953688] ? __kernel_text_address+0xd/0x40 [ 180.958200] ? unwind_get_return_address+0x61/0xa0 [ 180.963144] ? lock_acquire+0x1e4/0x540 [ 180.967161] ? fs_reclaim_acquire+0x20/0x20 [ 180.971506] ? lock_downgrade+0x8f0/0x8f0 [ 180.975675] ? check_same_owner+0x340/0x340 [ 180.980040] ? rcu_note_context_switch+0x730/0x730 09:06:10 executing program 6: r0 = syz_open_dev$sndctrl(&(0x7f00000000c0)='/dev/snd/controlC#\x00', 0x0, 0x0) perf_event_open(&(0x7f0000000280)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000005000), 0x2}, 0x1000000000c}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r0, 0xc0045516, &(0x7f0000000040)=0x100000006) getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffff9c, 0x84, 0x73, &(0x7f000000d000), &(0x7f0000001000)=0xfea6) ioctl$SNDRV_CTL_IOCTL_PVERSION(r0, 0xc1105517, &(0x7f0000001000)) 09:06:10 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={"6c6f000000000000fffffffe00", {0x2}}) [ 180.985020] ? legacy_parse_monolithic+0xde/0x1e0 [ 180.989883] __alloc_pages_nodemask+0x36e/0xdb0 [ 180.994585] ? trace_hardirqs_off+0xd/0x10 [ 180.998718] QAT: Invalid ioctl [ 180.998863] ? __alloc_pages_slowpath+0x2d00/0x2d00 [ 181.007057] ? lock_acquire+0x1e4/0x540 [ 181.011089] ? fs_reclaim_acquire+0x20/0x20 [ 181.015424] ? lock_downgrade+0x8f0/0x8f0 [ 181.019582] ? lock_release+0xa30/0xa30 [ 181.023567] ? check_same_owner+0x340/0x340 [ 181.027894] ? check_same_owner+0x340/0x340 [ 181.032223] ? debug_mutex_init+0x2d/0x60 [ 181.036382] ? kasan_unpoison_shadow+0x35/0x50 [ 181.040965] ? kasan_kmalloc+0xc4/0xe0 [ 181.044859] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 181.050398] alloc_pages_current+0x10c/0x210 [ 181.054804] get_zeroed_page+0x14/0x50 [ 181.058695] legacy_validate+0x133/0x220 [ 181.062745] ? vfs_set_fs_source+0x180/0x180 [ 181.067145] vfs_get_tree+0x144/0x5c0 [ 181.070930] ? vfs_set_fs_source+0x12c/0x180 [ 181.075329] do_mount+0x6f2/0x1e20 [ 181.078858] ? check_same_owner+0x340/0x340 [ 181.083167] ? lock_release+0xa30/0xa30 [ 181.087132] ? copy_mount_string+0x40/0x40 [ 181.091353] ? kasan_kmalloc+0xc4/0xe0 [ 181.095230] ? kmem_cache_alloc_trace+0x318/0x780 [ 181.100073] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 181.105606] ? _copy_from_user+0xdf/0x150 [ 181.109849] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 181.115373] ? copy_mount_options+0x285/0x380 [ 181.119858] ksys_mount+0x12d/0x140 [ 181.123476] __x64_sys_mount+0xbe/0x150 [ 181.127443] do_syscall_64+0x1b9/0x820 [ 181.131313] ? finish_task_switch+0x1d3/0x870 [ 181.135795] ? syscall_return_slowpath+0x5e0/0x5e0 [ 181.140711] ? syscall_return_slowpath+0x31d/0x5e0 [ 181.145630] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 181.150633] ? prepare_exit_to_usermode+0x291/0x3b0 [ 181.155649] ? perf_trace_sys_enter+0xb10/0xb10 [ 181.160313] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 181.165159] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 181.170342] RIP: 0033:0x4584ea [ 181.173514] Code: b8 a6 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 dd 8f fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 ba 8f fb ff c3 66 0f 1f 84 00 00 00 00 00 [ 181.192777] RSP: 002b:00007fb8b6388a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 181.200474] RAX: ffffffffffffffda RBX: 00007fb8b6388b30 RCX: 00000000004584ea [ 181.207743] RDX: 00007fb8b6388ad0 RSI: 0000000020000100 RDI: 00007fb8b6388af0 [ 181.214996] RBP: 0000000020000100 R08: 00007fb8b6388b30 R09: 00007fb8b6388ad0 [ 181.222257] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000014 [ 181.229604] R13: 0000000000000000 R14: 00000000004d3de0 R15: 0000000000000027 [ 181.242066] QAT: Invalid ioctl [ 181.250405] BFS-fs: bfs_fill_super(): No BFS filesystem on loop1 (magic=00000000) 09:06:11 executing program 7: r0 = shmget$private(0x0, 0x1000, 0x800, &(0x7f0000fff000/0x1000)=nil) shmctl$IPC_SET(r0, 0x1, &(0x7f0000000380)={{0x0, 0x0, 0x0, 0x0, 0x0, 0x40}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200004}) 09:06:11 executing program 5: socket$packet(0x11, 0x3, 0x300) syz_mount_image$hfs(&(0x7f0000000000)='hfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x0, &(0x7f0000000080), 0x0, &(0x7f00000000c0)={[{@uid={'uid', 0x3d}, 0x2c}, {@quiet='quiet', 0x2c}, {@codepage={'codepage', 0x3d, 'cp855'}, 0x2c}, {@codepage={'codepage', 0x3d, 'iso8859-15'}, 0x2c}]}) 09:06:11 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={'lo\x00\x00\x00\x00\x00\x00\x00\x00\x00`\x00', {0x2}}) 09:06:11 executing program 2 (fault-call:1 fault-nth:40): syz_mount_image$vfat(&(0x7f0000000180)='vfat\x00', &(0x7f0000000080)='./file0/file0\x00', 0x0, 0x0, &(0x7f0000001580), 0x0, &(0x7f0000000340)={[{@shortname_win95='shortname=win95', 0x2c}]}) syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f0000000100)='./file0\x00', 0xe004, 0x1, &(0x7f0000000380)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020401000200027000f8", 0x16}], 0x0, &(0x7f0000000340)=ANY=[]) 09:06:11 executing program 1: open(&(0x7f00000001c0)='./file0\x00', 0x101142, 0x4000000000000) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='9p\x00', 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB="00000000000000e80ad9a13b1ce9e29d88444b12ca88bc166184162fb68019b443ed61976563ba415b89ab903cf40d9625a70f2841b277e9e7dbb13f80fa0c66c61535605919cb6241365607c330e4f9834935edbd885b25f8c86d79379408676a3e20dcc255f22c27c6f373a7067582d0280e6c4565e5af1d85c2d878c9724af16bf6d6c56e4aa47c000000000000000000", @ANYRESHEX=r1, @ANYBLOB=',access=c#ient,\x00']) 09:06:11 executing program 0: memfd_create(&(0x7f0000000000)='vboxnet1ppp0.\x00', 0x3) r0 = socket$inet6(0xa, 0x7, 0xffffffffffffffff) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xe, 0x3, &(0x7f00000000c0)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x2a, 0x27}, [], {0x95}}, &(0x7f00000002c0)='syzkaller\x00', 0x9, 0x4ae, &(0x7f0000000340)=""/207}, 0x48) 09:06:11 executing program 4: r0 = msgget$private(0x0, 0x3) msgsnd(r0, &(0x7f0000001c80)={0x2, "8b2ad33afd7e9ecd9e56e2fbae57f1f89c1c2a7838f384502ba3b8e48f3e3bfdd5681103892430817207418ddefa67cd358604454e78ae250999fc3b59a184004980b5c8186d6a43ca4de339e099a70f183522a640cf6fb1cf89f02a9d5cf8c75d49c3e6a2daa4e0015e576646bf82b542820d2f847efefb09d83bb1bca77c9d6692c0551d3be49f8407e91131324f960a55b08ffc5881bad74991127a7d74dfd79a3df63778c462e036e34df7314fb2c67761f4d31d74b39f7ae2d59102b1afb92a53e79c0e1157"}, 0xd0, 0x800) r1 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$unix(0x1, 0x2, 0x0) r3 = syz_open_dev$vcsa(&(0x7f0000001a40)='/dev/vcsa#\x00', 0x1b, 0x101000) getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER(0xffffffffffffffff, 0x84, 0x7b, &(0x7f0000001a80)={0x0, 0x1}, &(0x7f0000001ac0)=0x8) r5 = getgid() setfsgid(r5) getsockopt$inet_sctp6_SCTP_RTOINFO(0xffffffffffffff9c, 0x84, 0x0, &(0x7f0000001b00)={0x0, 0x401, 0xffffffffffffffff, 0x4}, &(0x7f0000001b40)=0x10) getsockopt$inet_sctp_SCTP_STATUS(r3, 0x84, 0xe, &(0x7f0000001b80)={r4, 0x887, 0x100000001, 0x97b, 0x4, 0xb7b, 0x6, 0x1, {r6, @in6={{0xa, 0x4e22, 0x0, @ipv4={[], [0xff, 0xff], @loopback=0x7f000001}, 0xffffffffffffffff}}, 0x0, 0x6d, 0x0, 0x2, 0x6d5}}, &(0x7f0000001c40)=0xb0) r7 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000001300)='/dev/snapshot\x00', 0x40000, 0x0) ioctl$TIOCGSOFTCAR(r7, 0x5419, &(0x7f0000001340)) r8 = request_key(&(0x7f0000001880)='trusted\x00', &(0x7f00000018c0)={0x73, 0x79, 0x7a, 0x3}, &(0x7f0000001900)='\\lo\x00', 0xfffffffffffffffd) r9 = add_key$keyring(&(0x7f00000019c0)='keyring\x00', &(0x7f0000001a00)={0x73, 0x79, 0x7a, 0x3}, 0x0, 0x0, 0xfffffffffffffffc) keyctl$search(0xa, r8, &(0x7f0000001940)='id_resolver\x00', &(0x7f0000001980)={0x73, 0x79, 0x7a, 0x0}, r9) sendmsg$nl_route_sched(r7, &(0x7f00000015c0)={&(0x7f00000013c0)={0x10, 0x0, 0x0, 0x88}, 0xc, &(0x7f0000001580)={&(0x7f0000001400)=ANY=[@ANYRESHEX=r7], 0x1}, 0x1, 0x0, 0x0, 0x8}, 0x801) r10 = syz_open_dev$audion(&(0x7f0000001440)='/dev/audio#\x00', 0x7, 0x240) fsetxattr(r7, &(0x7f00000014c0)=@random={'system.', 'keyring\x00'}, &(0x7f0000001500)='#vboxnet1trustedvboxnet1proc(eth1GPL\x00', 0x25, 0x2) ioctl$TUNSETVNETBE(r10, 0x400454de, &(0x7f0000000140)=0x1) getpeername(r2, &(0x7f0000000080)=@nfc, &(0x7f0000000100)=0x80) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000001200)={0x1, 0x0, @pic={0x1ff, 0x5, 0xfff, 0x9, 0x3, 0x100000001, 0x6, 0x8, 0xfff, 0x0, 0x7, 0x5, 0xd1b7, 0x3f, 0x80, 0xba}}) r11 = open(&(0x7f0000001380)='./file0\x00', 0x80000, 0x166) add_key$user(&(0x7f0000001600)='user\x00', &(0x7f0000001640)={0x73, 0x79, 0x7a, 0x2}, &(0x7f0000001680)="85a2472e39093d34ee6afed65e6a04f46bd6a8dedec1ea45982d554dd9357e8a6be3c3ab941e5531736b", 0x2a, 0xfffffffffffffffd) r12 = request_key(&(0x7f00000016c0)='.request_key_auth\x00', &(0x7f0000001700)={0x73, 0x79, 0x7a, 0x3}, &(0x7f0000001740)='skbedit\x00', 0x0) ioctl$TUNSETLINK(r7, 0x400454cd, 0x304) keyctl$reject(0x13, 0x0, 0x10001, 0x0, r12) getrandom(&(0x7f0000000200)=""/4096, 0x1000, 0x3) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r11, 0x84, 0x6f, &(0x7f00000017c0)={0x0, 0x2c, &(0x7f0000001780)=[@in6={0xa, 0x4e20, 0x1, @remote={0xfe, 0x80, [], 0xbb}, 0x48}, @in={0x2, 0x4e23, @local={0xac, 0x14, 0x14, 0xaa}}]}, &(0x7f0000001800)=0x10) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r7, 0x84, 0x76, &(0x7f0000001840)={r13, 0x7ff}, 0x8) ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0) 09:06:11 executing program 6: r0 = syz_open_dev$sndctrl(&(0x7f00000000c0)='/dev/snd/controlC#\x00', 0x0, 0x0) perf_event_open(&(0x7f0000000280)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8ce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000005000)}, 0x1000000000c}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r0, 0xc0045516, &(0x7f0000000040)=0x100000006) getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffff9c, 0x84, 0x73, &(0x7f000000d000), &(0x7f0000001000)=0xfea6) ioctl$SNDRV_CTL_IOCTL_PVERSION(r0, 0xc1105517, &(0x7f0000001000)) 09:06:11 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={"6c6f0000000000000000000400", {0x2}}) [ 181.356740] hfs: unable to change codepage [ 181.361099] hfs: unable to parse mount options [ 181.364117] 9pnet: Insufficient options for proto=fd [ 181.380000] FAULT_INJECTION: forcing a failure. [ 181.380000] name failslab, interval 1, probability 0, space 0, times 0 [ 181.392220] CPU: 0 PID: 12640 Comm: syz-executor2 Not tainted 4.18.0-rc5-next-20180720+ #12 [ 181.400710] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 181.410070] Call Trace: [ 181.412659] dump_stack+0x1c9/0x2b4 [ 181.416295] ? dump_stack_print_info.cold.2+0x52/0x52 [ 181.421491] ? perf_trace_lock+0xde/0x920 [ 181.425662] should_fail.cold.4+0xa/0x11 [ 181.429726] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 181.434833] ? save_stack+0xa9/0xd0 [ 181.438461] ? save_stack+0x43/0xd0 [ 181.442083] ? kasan_kmalloc+0xc4/0xe0 [ 181.445966] ? __kmalloc_track_caller+0x14a/0x760 [ 181.450808] ? kmemdup_nul+0x31/0xa0 [ 181.454524] ? vfs_set_fs_source+0x67/0x180 [ 181.458845] ? ksys_mount+0x12d/0x140 [ 181.462644] ? __x64_sys_mount+0xbe/0x150 [ 181.466795] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 181.472175] ? do_syscall_64+0x1b9/0x820 [ 181.476234] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 181.481624] ? lock_acquire+0x1e4/0x540 [ 181.485594] ? fs_reclaim_acquire+0x20/0x20 [ 181.489913] ? lock_downgrade+0x8f0/0x8f0 [ 181.494055] ? lock_downgrade+0x8f0/0x8f0 [ 181.498200] ? lock_release+0xa30/0xa30 [ 181.502173] ? check_same_owner+0x340/0x340 [ 181.506490] ? check_same_owner+0x340/0x340 [ 181.510808] ? debug_mutex_init+0x2d/0x60 [ 181.514956] ? rcu_note_context_switch+0x730/0x730 [ 181.519885] __should_failslab+0x124/0x180 [ 181.524120] should_failslab+0x9/0x14 [ 181.527926] __kmalloc_track_caller+0x2c4/0x760 [ 181.532592] ? __kmalloc_track_caller+0x311/0x760 [ 181.537454] ? legacy_parse_monolithic+0xde/0x1e0 [ 181.542296] kmemdup+0x24/0x50 [ 181.545493] legacy_parse_monolithic+0xde/0x1e0 [ 181.550335] ? vfs_set_fs_source+0x12c/0x180 [ 181.554740] ? legacy_fs_context_dup+0x1d0/0x1d0 [ 181.559510] do_mount+0x6d1/0x1e20 [ 181.563048] ? do_raw_spin_unlock+0xa7/0x2f0 [ 181.567461] ? copy_mount_string+0x40/0x40 [ 181.571701] ? retint_kernel+0x10/0x10 [ 181.575590] ? copy_mount_options+0x1e3/0x380 [ 181.580084] ? copy_mount_options+0x1e3/0x380 [ 181.584580] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 181.590116] ? copy_mount_options+0x285/0x380 [ 181.594608] ksys_mount+0x12d/0x140 [ 181.598240] __x64_sys_mount+0xbe/0x150 [ 181.602228] do_syscall_64+0x1b9/0x820 [ 181.606113] ? finish_task_switch+0x1d3/0x870 [ 181.610609] ? syscall_return_slowpath+0x5e0/0x5e0 [ 181.615537] ? syscall_return_slowpath+0x31d/0x5e0 [ 181.620475] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 181.625495] ? prepare_exit_to_usermode+0x291/0x3b0 [ 181.630521] ? perf_trace_sys_enter+0xb10/0xb10 [ 181.635190] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 181.640481] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 181.645682] RIP: 0033:0x4584ea [ 181.648859] Code: b8 a6 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 dd 8f fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 ba 8f fb ff c3 66 0f 1f 84 00 00 00 00 00 [ 181.668184] RSP: 002b:00007fb8b6388a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 181.675890] RAX: ffffffffffffffda RBX: 00007fb8b6388b30 RCX: 00000000004584ea [ 181.683153] RDX: 00007fb8b6388ad0 RSI: 0000000020000100 RDI: 00007fb8b6388af0 [ 181.690417] RBP: 0000000020000100 R08: 00007fb8b6388b30 R09: 00007fb8b6388ad0 [ 181.697688] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000014 09:06:11 executing program 7: r0 = shmget$private(0x0, 0x3000, 0x54000000, &(0x7f0000ffd000/0x3000)=nil) shmctl$IPC_SET(r0, 0x1, &(0x7f0000000380)) shmctl$IPC_INFO(r0, 0x3, &(0x7f0000000000)=""/72) r1 = syz_open_dev$audion(&(0x7f0000000080)='/dev/audio#\x00', 0xffff, 0x80) ioctl$BINDER_SET_CONTEXT_MGR(r1, 0x40046207, 0x0) sendmsg$rds(r1, &(0x7f0000002700)={&(0x7f0000000100)={0x2, 0x4e22, @remote={0xac, 0x14, 0x14, 0xbb}}, 0x10, &(0x7f0000000180)=[{&(0x7f0000001400)=""/4096, 0x1000}, {&(0x7f0000000140)=""/54, 0x36}], 0x2, &(0x7f0000002680)=[@rdma_args={0x48, 0x114, 0x1, {{}, {&(0x7f00000001c0)=""/221, 0xdd}, &(0x7f0000002600)=[{&(0x7f00000002c0)=""/27, 0x1b}, {&(0x7f0000000300)=""/74, 0x4a}, {&(0x7f0000002400)=""/198, 0xc6}, {&(0x7f0000002500)=""/6, 0x6}, {&(0x7f0000002540)=""/142, 0x8e}], 0x5, 0x0, 0x2}}], 0x48, 0x4000000}, 0x4000080) getsockopt$inet_sctp6_SCTP_PR_STREAM_STATUS(r1, 0x84, 0x74, &(0x7f0000000400)=""/4096, &(0x7f00000000c0)=0x1000) [ 181.704950] R13: 0000000000000000 R14: 00000000004d3de0 R15: 0000000000000028 09:06:11 executing program 7: r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='memory.current\x00', 0x0, 0x0) setsockopt$inet_udp_int(r0, 0x11, 0x65, &(0x7f0000000040)=0x9, 0x4) shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)) 09:06:11 executing program 5: r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)={0x1, 0x10, 0x5, 0x2}, 0x2c) bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f00000002c0)={r0, &(0x7f0000000200)="1baf9868712c0af988535e1654ea2334cf7f8eecdbce6f11a15cac7c05ed25ace5a4ea378e9c8a930f47b365d7e8057481ec6420568dd9f4bbd37bec419b851481d3918443243569b41ae81a3d641ac2cadb593ff132c229d7d9c68d967a08ca364b2e588708bb081e251fd08610761e81f7ef5725d32eae1dcb0e9be43dfffc2d5af61c37d2bc7ca0cac834097350c2307b62e8d0ff6e82da74a826f49545d936595edb1dd70a6fb225751f", &(0x7f0000000000)=""/27}, 0x18) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000100)={r0, &(0x7f0000000000), &(0x7f0000000080)}, 0x20) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000440)={r0, &(0x7f00000003c0)="860cc5a6", &(0x7f0000000540)}, 0x20) r1 = fcntl$dupfd(r0, 0x406, r0) ioctl$EVIOCGNAME(r1, 0x80404506, &(0x7f0000000140)=""/145) setsockopt$netlink_NETLINK_NO_ENOBUFS(r1, 0x10e, 0x5, &(0x7f0000000300)=0x4, 0x4) bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f00000000c0)={r0, &(0x7f0000000040)='`', &(0x7f0000000540)=""/4096}, 0x18) bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000080)={r0, &(0x7f0000000540)}, 0x10) [ 181.740840] 9pnet: Insufficient options for proto=fd 09:06:11 executing program 0: perf_event_open(&(0x7f0000aaa000)={0x2, 0x70, 0x1f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$bt_rfcomm(0x1f, 0x0, 0x3) mkdir(&(0x7f0000000380)='./file0\x00', 0x0) openat$null(0xffffffffffffff9c, &(0x7f0000000080)='/dev/null\x00', 0x40, 0x0) syz_mount_image$nfs(&(0x7f0000000100)='nfs\x00', &(0x7f00000003c0)='./file0\x00', 0x9, 0x1, &(0x7f0000001840)=[{&(0x7f0000000680), 0x0, 0x6}], 0x220010, &(0x7f0000001900)='&#\x00') r0 = getpid() sched_setaffinity(r0, 0x8, &(0x7f0000000040)=0x10001) 09:06:11 executing program 6: r0 = syz_open_dev$sndctrl(&(0x7f00000000c0)='/dev/snd/controlC#\x00', 0x0, 0x0) perf_event_open(&(0x7f0000000280)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8ce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000005000), 0x2}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r0, 0xc0045516, &(0x7f0000000040)=0x100000006) getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffff9c, 0x84, 0x73, &(0x7f000000d000), &(0x7f0000001000)=0xfea6) ioctl$SNDRV_CTL_IOCTL_PVERSION(r0, 0xc1105517, &(0x7f0000001000)) 09:06:11 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={'lo\x00\x00\x00\x00\x00\x00\x00\x00\x00@\x00', {0x2}}) 09:06:11 executing program 4: r0 = socket$inet6(0xa, 0x400000000001, 0x0) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000001c0)={@in6={{0xa, 0x0, 0x0, @loopback={0x0, 0x1}}}, 0x0, 0x1, 0x0, "e4e69e173951f8d6032d82efe36ac970b43d0366c13ad5b31b8379a058c2bdaa456364b258c612c946a8c41fcc6aabfb6f858e89470f966ea60a050000005e8000cea23baaeb2875f6ffd6b0e8210eca"}, 0x340) socketpair$inet6_tcp(0xa, 0x1, 0x0, &(0x7f0000000000)) bind$inet6(r0, &(0x7f0000000180)={0xa, 0x4e20, 0x0, @loopback={0x0, 0x1}}, 0x1c) sendto$inet6(r0, &(0x7f0000e77fff), 0xfffffffffffffe64, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @loopback={0x0, 0x1}}, 0x1c) 09:06:11 executing program 1: r0 = creat(&(0x7f0000000140)='./file0\x00', 0x0) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000140)='/dev/sequencer2\x00', 0x0, 0x0) bind$xdp(r0, &(0x7f00000006c0)={0x2c}, 0x10) write$cgroup_type(0xffffffffffffffff, &(0x7f0000000040)='threaded\x00', 0xfd87) fallocate(0xffffffffffffffff, 0x0, 0x0, 0x0) connect$pppoe(r0, &(0x7f0000000000)={0x18, 0x0, {0x1, @empty, 'veth1\x00'}}, 0x1e) r1 = gettid() syz_open_procfs$namespace(r1, &(0x7f00000005c0)='ns/mnt\x00') 09:06:11 executing program 7: getresuid(&(0x7f0000000100)=0x0, &(0x7f0000000140), &(0x7f0000000180)) fstat(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000240)={{0x0, 0x0, 0x0, r0, r1, 0x2}, 0x3, 0x2, 0x800}) r2 = openat$zero(0xffffffffffffff9c, &(0x7f0000000040)='/dev/zero\x00', 0x4040, 0x0) getsockopt$inet_tcp_buf(r2, 0x6, 0x1a, &(0x7f0000000080)=""/43, &(0x7f00000000c0)=0x2b) pipe2(&(0x7f0000000000)={0xffffffffffffffff}, 0x80000) ioctl$TIOCCONS(r3, 0x541d) 09:06:11 executing program 6: r0 = syz_open_dev$sndctrl(&(0x7f00000000c0)='/dev/snd/controlC#\x00', 0x0, 0x0) perf_event_open(&(0x7f0000000280)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8ce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000005000), 0x2}, 0x1000000000c}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(0xffffffffffffffff, 0xc0045516, &(0x7f0000000040)=0x100000006) getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffff9c, 0x84, 0x73, &(0x7f000000d000), &(0x7f0000001000)=0xfea6) ioctl$SNDRV_CTL_IOCTL_PVERSION(r0, 0xc1105517, &(0x7f0000001000)) [ 181.847407] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead. 09:06:11 executing program 2 (fault-call:1 fault-nth:41): syz_mount_image$vfat(&(0x7f0000000180)='vfat\x00', &(0x7f0000000080)='./file0/file0\x00', 0x0, 0x0, &(0x7f0000001580), 0x0, &(0x7f0000000340)={[{@shortname_win95='shortname=win95', 0x2c}]}) syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f0000000100)='./file0\x00', 0xe004, 0x1, &(0x7f0000000380)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020401000200027000f8", 0x16}], 0x0, &(0x7f0000000340)=ANY=[]) 09:06:11 executing program 5: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vsock\x00', 0x80000, 0x0) getsockopt$inet_sctp_SCTP_STATUS(0xffffffffffffffff, 0x84, 0xe, &(0x7f00000000c0)={0x0, 0x3, 0x8, 0xa6f, 0x35, 0x6, 0x6, 0xfff, {0x0, @in={{0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0xd}}}, 0x8f0, 0x1, 0x81, 0x80000000, 0x5}}, &(0x7f0000000180)=0xb0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDR_INFO(r0, 0x84, 0xf, &(0x7f0000000380)={r1, @in6={{0xa, 0x4e23, 0x40, @empty, 0x2}}, 0x7, 0x8001, 0x9, 0x7, 0x6}, &(0x7f00000002c0)=0x98) r2 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x2) write$binfmt_elf64(r2, &(0x7f0000000300)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, 0x0, 0x0, 0x0, 0x38}, [{}]}, 0xfe7a) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000480)={&(0x7f0000000440)='/dev/vsock\x00', r0}, 0x10) ioctl$SG_SET_FORCE_PACK_ID(r2, 0x227b, &(0x7f0000000040)=0x1) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x3, 0x31, 0xffffffffffffffff, 0x0) read(r2, &(0x7f00000001c0)=""/196, 0xc4) 09:06:11 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={'lo\x00\x00\x00@\x00', {0x2}}) 09:06:11 executing program 1: r0 = socket$inet_sctp(0x2, 0x1, 0x84) sendto$inet(r0, &(0x7f0000a34fff)='H', 0x1, 0x0, &(0x7f0000030ff0)={0x2, 0x0, @local={0xac, 0x14, 0xffffffffffffffff, 0xaa}}, 0x10) sendto$inet(r0, &(0x7f000026cfff)="c6", 0x1, 0x0, &(0x7f0000033ff0)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff, 0xbb}}, 0x10) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x100, 0x10) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r1, 0x0, 0x88, 0x1a, &(0x7f0000000040)="57fe6ea9437d161ccad95f45b2ef326b991e341b7ede65f5ea3fb9c9d4a8e836c45ad2c78c201d07e300a46b324e671e97cc963d44f51a2e8f4fea7fbd96561e316542398bae31aae505af4d1e6be002303ace733b68ac30f3c240b160108abc3da836b9733d95ce759c80c8c4b5094b756937a1981d802b77dc6653d55e1c2269d2ebc0a86a4d78", &(0x7f0000000100)=""/26, 0x4}, 0x28) shutdown(r0, 0x1) setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000140)={0x0, @in6={{0xa}}, 0x0, 0x0, 0x0, 0x0, 0x10}, 0x98) setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000200)={0x0, @in={{0x2}}, 0x0, 0x0, 0x0, 0x0, 0x30}, 0x98) 09:06:11 executing program 0: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) r1 = fcntl$dupfd(r0, 0x0, r0) pwrite64(r0, &(0x7f00000001c0)="bf7a1c76b866716dcb15a2491bdac65228f4af79aab5ea260d51daa2d605c55eb529fd3836af7c8972ef988fbf74266214e67c67e7227236017fb9b05dcec2eecdcea6798076ef5a03c72ba853aef6ebca9eb7f7ca3b04481d89b59b0fa6deb51ffa8d8e1e71ab24a7ec9407c5044561faf0579e0ed42d86fa3a99755b7a4a525408c7eab79ab92ad61aa80e0d60ead570f95004c2375e33f029e6e466fd22431054265bf8b344c2ac4c1c32e46fd5fb8d26ccc3835433cbdb72dea971e025502ee9e69cba4aa6ba836d549d6cb9203748", 0xd1, 0x0) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) accept$packet(r1, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @broadcast}, &(0x7f00000000c0)=0x14) 09:06:11 executing program 6: r0 = syz_open_dev$sndctrl(&(0x7f00000000c0)='/dev/snd/controlC#\x00', 0x0, 0x0) perf_event_open(&(0x7f0000000280)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8ce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000005000), 0x2}, 0x1000000000c}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(0xffffffffffffffff, 0xc0045516, &(0x7f0000000040)=0x100000006) getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffff9c, 0x84, 0x73, &(0x7f000000d000), &(0x7f0000001000)=0xfea6) ioctl$SNDRV_CTL_IOCTL_PVERSION(r0, 0xc1105517, &(0x7f0000001000)) 09:06:11 executing program 7: semget(0x0, 0x7, 0x400) shmctl$IPC_SET(0x0, 0x1, &(0x7f00000000c0)) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x40100, 0x0) ioctl$VT_WAITACTIVE(r0, 0x5607) r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040)='/dev/fuse\x00', 0x2, 0x0) socket$nl_generic(0x10, 0x3, 0x10) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000080)={0x8, 0x3, 0x8000}, 0x4) 09:06:11 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={"6c6f0000000000000000000200", {0x2}}) 09:06:11 executing program 6: r0 = syz_open_dev$sndctrl(&(0x7f00000000c0)='/dev/snd/controlC#\x00', 0x0, 0x0) perf_event_open(&(0x7f0000000280)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8ce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000005000), 0x2}, 0x1000000000c}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(0xffffffffffffffff, 0xc0045516, &(0x7f0000000040)=0x100000006) getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffff9c, 0x84, 0x73, &(0x7f000000d000), &(0x7f0000001000)=0xfea6) ioctl$SNDRV_CTL_IOCTL_PVERSION(r0, 0xc1105517, &(0x7f0000001000)) 09:06:11 executing program 7: getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f0000001400)={{{@in6=@dev, @in6}}, {{}, 0x0, @in6=@ipv4={[], [], @remote}}}, &(0x7f0000001500)=0xe8) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x3, &(0x7f0000000280)=[{&(0x7f0000000080)="8ae0c1b5a037549fdcc7f38380230769526892c58f3566b19d76aceabac14edef7232a46a189ae064d859c714f6fa6d241e65e55701425909d305e56788b46100cccdc62cb6f6fded7001f352674defa11a9663cf9314c82234546819665ae78c42c57083350be32ee2da309354063c2d15103666e449a5f2a38d30faa6322e856d94f2f86ca940a0b786cb20d6d0488f5553162361765ac0bda74780b48717cc17888ebfd8105f1028da6922d6538f775633e56d0592eff11f759cf354d35b6e77f5f841d36e9f5032f79fa068aacbe775ab815", 0xd4, 0x8}, {&(0x7f0000000180)="4550094fcaced9a945076386a6c17c3bdf48dd82d7173bd675c91b0385935147c72973f30d54f83c5de3f0faaa24aefad2c812c780cbd1ae070936bc2b425cc8b1caa36f2418e0bd16df8f79a6132a58a7a581a10874164bac54fb50e39e8314499d2cdd422914059abaae0ba77c1f0b414f7522e1daa4f8f032226ba5efa1e871f414348c7722e7d144443e4dadcd3a0ce28774f34d1035a576ba95f6917ad88c941e23ccbb368b673fd5c1f01f58b0261f51f779d3cc2334684ff793df74610ede80cb1a49d6080446afd86300168e884a1a1d528f094fd54c8a09ad9aafecd5cc66d68c247995b3ca8768215ac443", 0xf0, 0x218}, {&(0x7f0000000400)="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", 0x1000, 0x1}], 0x1000, &(0x7f0000000300)=ANY=[@ANYBLOB="6e6f61636c2c64656772616465642c7373645f7370726561642c6461746173756d2c636f6d6d69743d3078303030303030ff3030303030303030332c6465766963653d2e2f66696c65302c7373645f7370726561642c6e6f666c7573686f6e636f6d6d69742c636865636b5f696e745f646174612c6e6f6461746173756d2c00"]) r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000380)='/dev/rtc0\x00', 0x800, 0x0) r1 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000001540)={&(0x7f00000003c0)='./file0\x00', 0x0, 0x10}, 0x10) dup2(r0, r1) 09:06:11 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000080)='/dev/sg#\x00', 0xab8, 0x2000) setsockopt(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000100)="56dca09e", 0x4) ioctl(r0, 0x20000000002201, &(0x7f0000000100)) clock_gettime(0x0, &(0x7f00000098c0)={0x0, 0x0}) r3 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000002700)='cpuset.effective_mems\x00', 0x0, 0x0) r4 = syz_open_dev$audion(&(0x7f0000009980)='/dev/audio#\x00', 0x800, 0x200) ioctl$VHOST_SET_VRING_KICK(r3, 0x4008af20, &(0x7f00000099c0)={0x3, r4}) recvmmsg(0xffffffffffffffff, &(0x7f0000009680)=[{{&(0x7f0000000000)=@ipx, 0x80, &(0x7f00000000c0)=[{&(0x7f0000000140)=""/193, 0xc1}], 0x1, &(0x7f0000000240)=""/138, 0x8a, 0x20}, 0x6}, {{0x0, 0x0, &(0x7f0000002540)=[{&(0x7f0000000300)=""/123, 0x7b}, {&(0x7f0000000380)=""/4096, 0x1000}, {&(0x7f0000001380)=""/4096, 0x1000}, {&(0x7f0000002380)=""/173, 0xad}, {&(0x7f0000002440)=""/77, 0x4d}, {&(0x7f00000024c0)=""/101, 0x65}], 0x6, 0x0, 0x0, 0x40008000000000}, 0x78108c62}, {{&(0x7f00000025c0)=@pppol2tpv3in6, 0x80, &(0x7f0000003b00)=[{&(0x7f0000002640)=""/174, 0xae}, {&(0x7f0000002700)}, {&(0x7f0000002740)=""/14, 0xe}, {&(0x7f0000002780)=""/166, 0xa6}, {&(0x7f0000002840)=""/199, 0xc7}, {&(0x7f0000002940)=""/239, 0xef}, {&(0x7f0000002a40)=""/48, 0x30}, {&(0x7f0000002a80)=""/73, 0x49}, {&(0x7f0000002b00)=""/4096, 0x1000}], 0x9, &(0x7f0000003bc0)=""/236, 0xec, 0x9}, 0x7}, {{&(0x7f0000003cc0)=@pppol2tpv3={0x0, 0x0, {0x0, 0xffffffffffffffff, {0x0, 0x0, @rand_addr}}}, 0x80, &(0x7f0000006f00)=[{&(0x7f0000003d40)=""/69, 0x45}, {&(0x7f0000003dc0)=""/4096, 0x1000}, {&(0x7f0000004dc0)=""/65, 0x41}, {&(0x7f0000004e40)=""/4096, 0x1000}, {&(0x7f0000005e40)=""/4096, 0x1000}, {&(0x7f0000006e40)=""/137, 0x89}], 0x6, &(0x7f0000006f80)=""/93, 0x5d, 0x9}, 0x101}, {{&(0x7f0000007000)=@nfc, 0x80, &(0x7f0000007380)=[{&(0x7f0000007080)=""/254, 0xfe}, {&(0x7f0000007180)=""/115, 0x73}, {&(0x7f0000007200)=""/201, 0xc9}, {&(0x7f0000007300)=""/122, 0x7a}], 0x4, &(0x7f00000073c0)=""/145, 0x91, 0x7}, 0x5}, {{&(0x7f0000007480)=@pppol2tpv3={0x0, 0x0, {0x0, 0xffffffffffffffff, {0x0, 0x0, @dev}}}, 0x80, &(0x7f0000007600)=[{&(0x7f0000007500)=""/243, 0xf3}], 0x1, &(0x7f0000007640)=""/61, 0x3d, 0x40}, 0x40}, {{&(0x7f0000007680)=@pppol2tp, 0x80, &(0x7f0000007c80)=[{&(0x7f0000007700)=""/196, 0xc4}, {&(0x7f0000007800)=""/163, 0xa3}, {&(0x7f00000078c0)=""/160, 0xa0}, {&(0x7f0000007980)=""/251, 0xfb}, {&(0x7f0000007a80)=""/246, 0xf6}, {&(0x7f0000007b80)=""/193, 0xc1}], 0x6, &(0x7f0000007d00)=""/214, 0xd6, 0x2}, 0x401}, {{&(0x7f0000007e00)=@in={0x0, 0x0, @loopback}, 0x80, &(0x7f00000090c0)=[{&(0x7f0000007e80)=""/192, 0xc0}, {&(0x7f0000007f40)=""/4096, 0x1000}, {&(0x7f0000008f40)=""/225, 0xe1}, {&(0x7f0000009040)=""/123, 0x7b}], 0x4, &(0x7f0000009100)=""/33, 0x21, 0x2}}, {{&(0x7f0000009140)=@hci, 0x80, &(0x7f0000009540)=[{&(0x7f00000091c0)=""/65, 0x41}, {&(0x7f0000009240)=""/100, 0x64}, {&(0x7f00000092c0)=""/220, 0xdc}, {&(0x7f00000093c0)=""/223, 0xdf}, {&(0x7f00000094c0)=""/71, 0x47}], 0x5, &(0x7f00000095c0)=""/157, 0x9d, 0x3}, 0x4133}], 0x9, 0x1, &(0x7f0000009900)={r1, r2+10000000}) setsockopt$inet6_dccp_buf(r5, 0x21, 0xf, &(0x7f0000009940)="0a358e8c75ce351fa0a3f8e44a7773f9874fb7ed122a2b6024a1463e558df6122d39e55f343b8a930d", 0x29) [ 182.026819] FAULT_INJECTION: forcing a failure. [ 182.026819] name failslab, interval 1, probability 0, space 0, times 0 [ 182.038297] CPU: 0 PID: 12704 Comm: syz-executor2 Not tainted 4.18.0-rc5-next-20180720+ #12 [ 182.047142] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 182.056502] Call Trace: [ 182.059106] dump_stack+0x1c9/0x2b4 [ 182.062745] ? dump_stack_print_info.cold.2+0x52/0x52 [ 182.067950] ? __kernel_text_address+0xd/0x40 [ 182.072482] should_fail.cold.4+0xa/0x11 09:06:11 executing program 4: openat$snapshot(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snapshot\x00', 0x0, 0x0) openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x0, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000001b00)={0xb, 0x1f, 0x6, 0x9, 0x1, 0xffffffffffffffff, 0x0, [0x10]}, 0x2c) 09:06:11 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={"6c6f00000000000100", {0x2}}) 09:06:11 executing program 0: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$binder(&(0x7f0000d59ff3)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) r1 = syz_open_dev$binder(&(0x7f0000000540)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) mmap(&(0x7f0000001000/0x3000)=nil, 0x3000, 0x0, 0x20011, r1, 0x0) statfs(&(0x7f0000000100)='./file0\x00', &(0x7f0000000200)=""/6) ioctl$BINDER_SET_CONTEXT_MGR(r1, 0x40046207, 0x0) mmap$binder(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x1012, r0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000180)={0x14, 0x0, &(0x7f0000005fd4)=[@acquire_done={0x40486311}], 0x0, 0x0, &(0x7f0000000680)}) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000140)={0x4, 0x0, &(0x7f0000000000)=[@register_looper={0x630b}], 0x1, 0x0, &(0x7f0000000040)="f0"}) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f00000002c0)={0x4c, 0x0, &(0x7f00000003c0)=[@reply_sg={0x40486312, {{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50, 0x8, &(0x7f0000000080)=[@fda={0x66646185}, @fd={0x66642a85}, @flat={0x73622a85}], &(0x7f0000000240)=[0x38]}}}], 0x0, 0x0, &(0x7f0000000480)}) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000280)={0x14, 0x0, &(0x7f0000000440)=[@acquire_done={0x40106309}], 0x0, 0x0, &(0x7f00000004c0)}) ioctl$EVIOCREVOKE(0xffffffffffffffff, 0x40044591, &(0x7f0000000380)) [ 182.076553] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 182.081703] ? save_stack+0xa9/0xd0 [ 182.085342] ? save_stack+0x43/0xd0 [ 182.088977] ? kasan_kmalloc+0xc4/0xe0 [ 182.092878] ? __kmalloc_track_caller+0x14a/0x760 [ 182.097733] ? kmemdup_nul+0x31/0xa0 [ 182.101455] ? vfs_set_fs_source+0x67/0x180 [ 182.105786] ? ksys_mount+0x12d/0x140 [ 182.109595] ? __x64_sys_mount+0xbe/0x150 [ 182.113750] ? do_syscall_64+0x1b9/0x820 [ 182.117817] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 182.123185] ? do_syscall_64+0x1b9/0x820 09:06:11 executing program 5: removexattr(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)=@known='system.advise\x00') vmsplice(0xffffffffffffffff, &(0x7f0000000480)=[{&(0x7f0000001000)="b5f0", 0x2}], 0x1, 0x0) r0 = socket$nl_generic(0xa, 0x3, 0x10) syz_mount_image$f2fs(&(0x7f0000000080)='f2fs\x00', &(0x7f00000000c0)='./file0\x00', 0x76000000000, 0x3, &(0x7f0000000280)=[{&(0x7f0000000100)="76704f1883dc75f34c0991a1c3ecfa0d9dbd0f8b308e6ccd7acc93959557fecd410426653a0e94e2c38c9e2d9129092e7416e769bcc1a95e1f5a607152b7c16c8605e59b87459d5bd8a0936c3a04c59f1123b57ea76fa378c318fed30095a14d92b50ac5209d070ebe52a868896048b668b1be7258a428d37174ffb702bfaf2afc6bca65da85985636e727e3911d11c4c0f050e9fb98e0", 0x97, 0x5}, {&(0x7f00000001c0)="841815865164c77871c683eb8760d0075d74b85faa7bdf2b52972da834bdb04009823ff38c52a3c70ced20736c81", 0x2e, 0x8}, {&(0x7f0000000200)="d395dd25bff325a65361b6725c2e2558589be1907ba0a45f5915f7d495a09c3205a9e509704a492c1b82462cf3c71042331048ca041c19cd0704e80d32b427194a01d35ca812dfa867f1abde2707", 0x4e, 0x6b7d}], 0x2000, &(0x7f0000000300)={[{@background_gc_off='background_gc=off', 0x2c}, {@whint_mode_user='whint_mode=user-based', 0x2c}, {@user_xattr='user_xattr', 0x2c}, {@noinline_data='noinline_data', 0x2c}, {@test_dummy_encryption='test_dummy_encryption', 0x2c}, {@disable_roll_forward='disable_roll_forward', 0x2c}, {@fsync_mode_posix='fsync_mode=posix', 0x2c}, {@grpquota={'grpquota', 0x3d, 'system.advise\x00'}, 0x2c}, {@background_gc_on='background_gc=on', 0x2c}]}) setsockopt$netlink_NETLINK_RX_RING(r0, 0x29, 0x6, &(0x7f0000000ff0)={0x14, 0x0, 0x29, 0x43}, 0x14) [ 182.127257] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 182.132633] ? trace_hardirqs_off+0xd/0x10 [ 182.136874] ? quarantine_put+0x10d/0x1b0 [ 182.141030] ? lock_acquire+0x1e4/0x540 [ 182.145019] ? fs_reclaim_acquire+0x20/0x20 [ 182.149362] ? lock_downgrade+0x8f0/0x8f0 [ 182.153510] ? lock_downgrade+0x8f0/0x8f0 [ 182.157649] ? lock_release+0xa30/0xa30 [ 182.161614] ? check_same_owner+0x340/0x340 [ 182.165922] ? check_same_owner+0x340/0x340 [ 182.170246] ? debug_mutex_init+0x2d/0x60 [ 182.174388] ? rcu_note_context_switch+0x730/0x730 [ 182.179306] __should_failslab+0x124/0x180 [ 182.183618] should_failslab+0x9/0x14 [ 182.187409] __kmalloc_track_caller+0x2c4/0x760 [ 182.192064] ? __kmalloc_track_caller+0x311/0x760 [ 182.196899] ? legacy_parse_monolithic+0xde/0x1e0 [ 182.201729] kmemdup+0x24/0x50 [ 182.204909] legacy_parse_monolithic+0xde/0x1e0 [ 182.209561] ? vfs_set_fs_source+0x12c/0x180 [ 182.213953] ? legacy_fs_context_dup+0x1d0/0x1d0 [ 182.218698] do_mount+0x6d1/0x1e20 [ 182.222223] ? check_same_owner+0x340/0x340 [ 182.226547] ? lock_release+0xa30/0xa30 [ 182.230514] ? copy_mount_string+0x40/0x40 [ 182.234750] ? kasan_kmalloc+0xc4/0xe0 [ 182.238640] ? kmem_cache_alloc_trace+0x318/0x780 [ 182.243478] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 182.249004] ? _copy_from_user+0xdf/0x150 [ 182.253145] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 182.258682] ? copy_mount_options+0x285/0x380 [ 182.263171] ksys_mount+0x12d/0x140 [ 182.266801] __x64_sys_mount+0xbe/0x150 [ 182.270766] do_syscall_64+0x1b9/0x820 [ 182.274642] ? finish_task_switch+0x1d3/0x870 [ 182.279126] ? syscall_return_slowpath+0x5e0/0x5e0 [ 182.284045] ? syscall_return_slowpath+0x31d/0x5e0 [ 182.288963] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 182.293968] ? prepare_exit_to_usermode+0x291/0x3b0 [ 182.298974] ? perf_trace_sys_enter+0xb10/0xb10 [ 182.303630] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 182.308468] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 182.313645] RIP: 0033:0x4584ea [ 182.316819] Code: b8 a6 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 dd 8f fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 ba 8f fb ff c3 66 0f 1f 84 00 00 00 00 00 [ 182.336096] RSP: 002b:00007fb8b6388a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 182.343792] RAX: ffffffffffffffda RBX: 00007fb8b6388b30 RCX: 00000000004584ea [ 182.351050] RDX: 00007fb8b6388ad0 RSI: 0000000020000100 RDI: 00007fb8b6388af0 [ 182.358305] RBP: 0000000020000100 R08: 00007fb8b6388b30 R09: 00007fb8b6388ad0 [ 182.365572] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000014 09:06:12 executing program 6: r0 = syz_open_dev$sndctrl(&(0x7f00000000c0)='/dev/snd/controlC#\x00', 0x0, 0x0) perf_event_open(&(0x7f0000000280)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8ce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000005000), 0x2}, 0x1000000000c}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r0, 0xc0045516, &(0x7f0000000040)) getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffff9c, 0x84, 0x73, &(0x7f000000d000), &(0x7f0000001000)=0xfea6) ioctl$SNDRV_CTL_IOCTL_PVERSION(r0, 0xc1105517, &(0x7f0000001000)) [ 182.372830] R13: 0000000000000000 R14: 00000000004d3de0 R15: 0000000000000029 09:06:12 executing program 2 (fault-call:1 fault-nth:42): syz_mount_image$vfat(&(0x7f0000000180)='vfat\x00', &(0x7f0000000080)='./file0/file0\x00', 0x0, 0x0, &(0x7f0000001580), 0x0, &(0x7f0000000340)={[{@shortname_win95='shortname=win95', 0x2c}]}) syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f0000000100)='./file0\x00', 0xe004, 0x1, &(0x7f0000000380)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020401000200027000f8", 0x16}], 0x0, &(0x7f0000000340)=ANY=[]) 09:06:12 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={"6c6f00000600", {0x2}}) 09:06:12 executing program 4: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x1, 0x1) ioctl$EVIOCRMFF(r0, 0x40044581, &(0x7f0000000140)=0x7fff) openat$tun(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/net/tun\x00', 0x0, 0x0) r1 = inotify_init1(0x0) socket$inet_sctp(0x2, 0x1, 0x84) fcntl$setown(r1, 0x8, 0xffffffffffffffff) fcntl$getownex(r1, 0x10, &(0x7f0000000080)={0x0, 0x0}) ptrace$setopts(0x4206, r2, 0x0, 0x0) ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000000)={"79616d300001178b00", 0x4013}) tgkill(r2, r2, 0x1a) ptrace$setregset(0x4209, r2, 0x20000004, &(0x7f0000000100)={&(0x7f0000000040)}) [ 182.524665] FAULT_INJECTION: forcing a failure. [ 182.524665] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 182.537215] CPU: 0 PID: 12743 Comm: syz-executor2 Not tainted 4.18.0-rc5-next-20180720+ #12 [ 182.545723] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 182.555084] Call Trace: [ 182.557690] dump_stack+0x1c9/0x2b4 [ 182.561323] ? dump_stack_print_info.cold.2+0x52/0x52 [ 182.567164] ? perf_trace_lock+0xde/0x920 [ 182.571322] should_fail.cold.4+0xa/0x11 [ 182.575387] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 182.580488] ? kasan_check_read+0x11/0x20 [ 182.584634] ? rcu_is_watching+0x8c/0x150 [ 182.588781] ? is_bpf_text_address+0xd7/0x170 [ 182.593286] ? kernel_text_address+0x79/0xf0 [ 182.597690] ? __kernel_text_address+0xd/0x40 [ 182.602185] ? lock_acquire+0x1e4/0x540 [ 182.606153] ? fs_reclaim_acquire+0x20/0x20 [ 182.610471] ? lock_downgrade+0x8f0/0x8f0 [ 182.614616] ? check_same_owner+0x340/0x340 [ 182.618933] ? rcu_note_context_switch+0x730/0x730 [ 182.623857] ? legacy_parse_monolithic+0xde/0x1e0 [ 182.628701] __alloc_pages_nodemask+0x36e/0xdb0 [ 182.633378] ? __alloc_pages_slowpath+0x2d00/0x2d00 [ 182.638395] ? lock_acquire+0x1e4/0x540 [ 182.642374] ? __kmalloc_track_caller+0x549/0x760 [ 182.647213] ? lock_downgrade+0x8f0/0x8f0 [ 182.651365] ? do_raw_spin_unlock+0xa7/0x2f0 [ 182.655769] ? do_raw_spin_trylock+0x1c0/0x1c0 [ 182.660368] ? kasan_unpoison_shadow+0x35/0x50 [ 182.664947] ? kasan_kmalloc+0xc4/0xe0 [ 182.668835] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 182.674381] alloc_pages_current+0x10c/0x210 [ 182.677510] binder: 12721:12722 ERROR: BC_REGISTER_LOOPER called without request [ 182.678793] get_zeroed_page+0x14/0x50 [ 182.678815] legacy_validate+0x133/0x220 [ 182.694281] ? vfs_set_fs_source+0x180/0x180 [ 182.695493] binder: 12721:12722 BC_ACQUIRE_DONE node 14 has no pending acquire request [ 182.698695] vfs_get_tree+0x144/0x5c0 [ 182.698707] ? vfs_set_fs_source+0x12c/0x180 [ 182.698726] do_mount+0x6f2/0x1e20 [ 182.718505] ? check_same_owner+0x340/0x340 [ 182.722859] ? lock_release+0xa30/0xa30 [ 182.726836] ? copy_mount_string+0x40/0x40 [ 182.727392] binder: BINDER_SET_CONTEXT_MGR already set [ 182.731068] ? kasan_kmalloc+0xc4/0xe0 [ 182.731084] ? kmem_cache_alloc_trace+0x318/0x780 [ 182.731105] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 182.744252] binder: 12721:12722 ioctl 40046207 0 returned -16 [ 182.745057] ? _copy_from_user+0xdf/0x150 [ 182.745080] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 182.758385] binder_alloc: 12721: binder_alloc_buf, no vma [ 182.760617] ? copy_mount_options+0x285/0x380 [ 182.760638] ksys_mount+0x12d/0x140 [ 182.766201] binder: 12721:12746 transaction failed 29189/-3, size 0-0 line 2967 [ 182.771691] __x64_sys_mount+0xbe/0x150 [ 182.771707] do_syscall_64+0x1b9/0x820 [ 182.771725] ? syscall_slow_exit_work+0x500/0x500 [ 182.790121] binder: 12721:12747 ERROR: BC_REGISTER_LOOPER called without request [ 182.791209] ? syscall_return_slowpath+0x5e0/0x5e0 [ 182.791223] ? syscall_return_slowpath+0x31d/0x5e0 [ 182.791239] ? prepare_exit_to_usermode+0x291/0x3b0 [ 182.803493] binder: 12721:12749 BC_ACQUIRE_DONE u0000000000000000 no match [ 182.807481] ? perf_trace_sys_enter+0xb10/0xb10 [ 182.807497] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 182.807517] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 182.820112] binder: 12721:12748 got reply transaction with no transaction stack [ 182.822372] RIP: 0033:0x4584ea [ 182.822375] Code: b8 a6 00 [ 182.829434] binder: 12721:12748 transaction failed 29201/-71, size 80-8 line 2759 [ 182.834045] 00 00 0f 05 48 3d 01 f0 ff [ 182.864228] binder: undelivered TRANSACTION_COMPLETE [ 182.865251] ff 0f 83 dd 8f [ 182.869252] binder: undelivered transaction 16, process died. [ 182.874312] fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 ba 8f fb ff c3 66 0f 1f 84 00 00 00 00 00 [ 182.897340] RSP: 002b:00007fb8b6388a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 182.905041] RAX: ffffffffffffffda RBX: 00007fb8b6388b30 RCX: 00000000004584ea [ 182.912295] RDX: 00007fb8b6388ad0 RSI: 0000000020000100 RDI: 00007fb8b6388af0 [ 182.919551] RBP: 0000000020000100 R08: 00007fb8b6388b30 R09: 00007fb8b6388ad0 [ 182.926806] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000014 [ 182.934061] R13: 0000000000000000 R14: 00000000004d3de0 R15: 000000000000002a [ 182.948078] binder: undelivered TRANSACTION_COMPLETE [ 183.041875] binder: undelivered TRANSACTION_ERROR: 29189 [ 183.047626] binder: undelivered TRANSACTION_ERROR: 29201 09:06:12 executing program 1: r0 = socket$inet6(0xa, 0xa, 0x3) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x1, 0x0, @ipv4={[], [0xff, 0xff], @broadcast=0xffffffff}, 0x4}, 0x1c) r1 = dup3(r0, r0, 0x0) sysfs$1(0x1, &(0x7f0000000140)='^\x00') getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f0000000200)={{{@in=@loopback, @in=@multicast2}}, {{@in6=@ipv4}, 0x0, @in6=@mcast2}}, &(0x7f0000000100)=0xe8) r2 = getegid() ioctl$TUNSETGROUP(r1, 0x400454ce, r2) sendmsg(r0, &(0x7f0000000580)={0x0, 0xffffffffffffffac, &(0x7f0000000040)=[{&(0x7f00000005c0)="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", 0x52d}], 0xfffffffffffff68, &(0x7f0000000080)}, 0x0) init_module(&(0x7f0000000000)='^\x00', 0x2, &(0x7f00000000c0)="a35c5b2d6367726f757070707031637075736574656d3000") socket$inet6(0xa, 0x4000000007, 0xd0) ioctl$sock_netdev_private(0xffffffffffffffff, 0x89fa, &(0x7f0000000180)="9e22ff5f0a760289ef2204365bd2ac0206d29a34f7146f6020fc1ec8d01464aa29099278657d60a598cbd33cc73768e4fe496dba54716c59506e1bf50cd018a30e6f1b9d97e94fcf904d10e5d687e129d0ff19a220f771bb956c90ac772f48ea2c47a14faf50acf1b3973dddfbd928ef2602346303309d7e34589e27f852afad") 09:06:12 executing program 7: socketpair(0x4, 0xa, 0x10000000000, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(r0, 0x4008ae48, &(0x7f0000000040)=0x7000) ioctl$sock_FIOGETOWN(r1, 0x8903, &(0x7f0000000080)=0x0) ptrace$peekuser(0x3, r2, 0x8000) 09:06:12 executing program 5: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x22, &(0x7f00000001c0)=0x1, 0x4) r1 = syz_open_dev$admmidi(&(0x7f0000000000)='/dev/admmidi#\x00', 0x1, 0x2) getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x9, &(0x7f0000000080)={0x0, @in={{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1b}}}, 0x100000000, 0x1, 0x0, 0x100000000, 0xa4}, &(0x7f0000000140)=0x98) setsockopt$inet_sctp_SCTP_ENABLE_STREAM_RESET(r1, 0x84, 0x76, &(0x7f0000000180)={r2, 0x3}, 0x8) accept$inet6(r1, &(0x7f00000002c0), &(0x7f0000000300)=0x1c) setsockopt$inet_sctp_SCTP_EVENTS(r1, 0x84, 0xb, &(0x7f0000000480)={0x8, 0x200, 0x4, 0x9, 0x7, 0x1f, 0xff, 0x8, 0x100, 0x401, 0x1000}, 0xb) r3 = socket$inet6(0xa, 0x1000000000002, 0x0) setsockopt$EBT_SO_SET_COUNTERS(r1, 0x0, 0x81, &(0x7f0000000380)={'broute\x00', 0x0, 0x0, 0x0, [], 0x7, &(0x7f0000000340)=[{}], 0x0, [{}, {}, {}, {}, {}, {}, {}]}, 0xe8) ioctl(r3, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") getsockopt$inet_mreq(r0, 0x0, 0x20, &(0x7f0000000200)={@remote, @remote}, &(0x7f0000000240)=0x8) setsockopt$inet_tcp_int(r0, 0x6, 0xa, &(0x7f0000000040)=0x347, 0x4) bind$inet(r0, &(0x7f0000c16ff0)={0x2, 0xffffffffffffffff, @multicast1=0xe0000001}, 0xffffffffffffffb8) sendto$inet(r0, &(0x7f0000fa0fff), 0xffffffffffffffc3, 0x20020007, &(0x7f0000e97fcf)={0x2, 0x1, @loopback=0x7f000001}, 0x10) recvmmsg(r0, &(0x7f000000a6c0)=[{{&(0x7f0000001bc0)=@in={0x0, 0x0, @multicast1}, 0x80, &(0x7f0000002cc0)=[{&(0x7f0000001cc0)=""/4096, 0x1000}], 0x1, &(0x7f0000002d00)=""/244, 0xf4}}], 0x1, 0x100, &(0x7f000000a900)={0x0, 0x989680}) 09:06:12 executing program 4: socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r1, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") close(r0) mkdir(&(0x7f0000fd5ff8)='./file0\x00', 0x0) mount(&(0x7f000000a000)='./file0\x00', &(0x7f0000026ff8)='./file0\x00', &(0x7f000000c000)='ramfs\x00', 0x0, &(0x7f000000a000)) creat(&(0x7f0000000000)='./file0/file0\x00', 0x0) umount2(&(0x7f0000000200)='./file0\x00', 0x0) io_setup(0x8, &(0x7f0000000100)=0x0) openat$null(0xffffffffffffff9c, &(0x7f0000000040)='/dev/null\x00', 0x0, 0x0) io_submit(r2, 0x0, &(0x7f0000001840)) io_submit(r2, 0x1400, &(0x7f0000000600)=[&(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, r0, &(0x7f0000000140), 0xfe}]) 09:06:12 executing program 6: r0 = syz_open_dev$sndctrl(&(0x7f00000000c0)='/dev/snd/controlC#\x00', 0x0, 0x0) perf_event_open(&(0x7f0000000280)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8ce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000005000), 0x2}, 0x1000000000c}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r0, 0xc0045516, &(0x7f0000000040)) getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffff9c, 0x84, 0x73, &(0x7f000000d000), &(0x7f0000001000)=0xfea6) ioctl$SNDRV_CTL_IOCTL_PVERSION(r0, 0xc1105517, &(0x7f0000001000)) 09:06:12 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={"6c6f0000000000000000001f00", {0x2}}) 09:06:12 executing program 2 (fault-call:1 fault-nth:43): syz_mount_image$vfat(&(0x7f0000000180)='vfat\x00', &(0x7f0000000080)='./file0/file0\x00', 0x0, 0x0, &(0x7f0000001580), 0x0, &(0x7f0000000340)={[{@shortname_win95='shortname=win95', 0x2c}]}) syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f0000000100)='./file0\x00', 0xe004, 0x1, &(0x7f0000000380)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020401000200027000f8", 0x16}], 0x0, &(0x7f0000000340)=ANY=[]) 09:06:12 executing program 0: r0 = getgid() getsockopt$sock_cred(0xffffffffffffff9c, 0x1, 0x11, &(0x7f00000003c0)={0x0, 0x0, 0x0}, &(0x7f0000000400)=0xc) syz_mount_image$jfs(&(0x7f0000000000)='jfs\x00', &(0x7f0000000040)='./file0\x00', 0x5, 0x4, &(0x7f0000000340)=[{&(0x7f0000000080)="86ab1fa30fdee33f6c9904426c732c0424acc25e6067c072491c95f24c195e2f0d8f39696d641a1b286565f2e4523a10bad016d98db48d7187", 0x39, 0x8}, {&(0x7f00000000c0)="3a6b1d08f37a04abe0b65c0202addfcc03393168671b3cd31de7bd3dc9f2ea817bacde6fbff689471807a45776eb490aaec86d9c3cbe8a57a030338413afc57b2138b7fade4597d897a388f06556d8a305d0edd265eb80109522c61f95cf059e660ef976ee4b8f97a6e186a1c30d4033ea3f61e735a85c1f", 0x78, 0x728}, {&(0x7f00000001c0)="ac87210496064277b6b46cbe25ee2277a7ec64a8093864532b7473eae759ece6c85b21ceaf20778cb55cb87d275e026c4068fa699dfb96be04e15691b5e8a51bf71aac653948713208c6c750d17c4804da3ff8c294791d019826a493e70ce4b31fd3dcc30a6e8d676b111585d07d1fa7b9e50948553bb0840322a131fae685ab4d37575b413e2ecef8000c28b637ee56982060182f40f0cff59ec5ad0309b1cacfacc6317096bbb5ae92eccd7286e86ad6602cd94c83", 0xb6, 0x4}, {&(0x7f0000000280)="1cf33ed77f3f0061729103b44e83e60ff273d51fdfd8ddf6c13c959adf7b5eb6894b037482629815e804a59674b9c8df30674a7fb28adfac0f089e87b895c49eb1892430b180924bc18509ff08c90b331da5d8158b3a9fcff792ef80c16187d70d8d525629d5908fc485626f88b900e9b91c798d89c0406c46231afedc6d49caa753bf270e87a64ff7940ec4f7e9418acd407cb3bff8586e2e45c7290e7a24a752dab0839ac0c904e0a25a1585614f7b372ef6711500d534b866f75cc24f", 0xbe, 0x9}], 0x1, &(0x7f0000000440)={[{@gid={'gid', 0x3d, r0}, 0x2c}, {@gid={'gid', 0x3d, r1}, 0x2c}, {@iocharset={'iocharset', 0x3d, 'none'}, 0x2c}, {@quota='quota', 0x2c}, {@discard_size={'discard', 0x3d, 0xfff}, 0x2c}]}) r2 = dup2(0xffffffffffffffff, 0xffffffffffffff9c) ioctl$LOOP_SET_STATUS(r2, 0x4c02, &(0x7f00000004c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x10, 0x8, "c8c6115704f9a795188d16ff038be62a5d94d56bad413de8cc57fb6c1c4cf6e27e0b95554e3da6eac9b351bb228d53b182bbcab1e2f75d2249d6355720a62b10", "bc38ec9e4ebd51d5182539328cdcbbf899c610cd8618e466cf299309b1c7ddb0", [0x7, 0xc04b]}) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 183.200783] FAULT_INJECTION: forcing a failure. [ 183.200783] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 183.212648] CPU: 0 PID: 12768 Comm: syz-executor2 Not tainted 4.18.0-rc5-next-20180720+ #12 [ 183.221143] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 183.230839] Call Trace: [ 183.233431] dump_stack+0x1c9/0x2b4 [ 183.237059] ? dump_stack_print_info.cold.2+0x52/0x52 [ 183.242250] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 09:06:13 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={"6c6f00000000001e00", {0x2}}) [ 183.247817] should_fail.cold.4+0xa/0x11 [ 183.251900] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 183.257005] ? perf_trace_lock+0xde/0x920 [ 183.261158] ? zap_class+0x740/0x740 [ 183.264882] ? zap_class+0x740/0x740 [ 183.268605] ? bpf_prog_kallsyms_find+0xde/0x4c0 [ 183.273375] ? trace_hardirqs_on+0x10/0x10 [ 183.277613] ? trace_hardirqs_on+0x10/0x10 [ 183.281837] ? lock_acquire+0x1e4/0x540 [ 183.285800] ? is_bpf_text_address+0xae/0x170 [ 183.290285] ? lock_downgrade+0x8f0/0x8f0 [ 183.294433] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 183.299438] ? perf_trace_lock+0xde/0x920 [ 183.303569] ? perf_trace_lock+0xde/0x920 [ 183.307708] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 183.313236] ? should_fail+0x246/0xd86 [ 183.317108] ? zap_class+0x740/0x740 [ 183.320812] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 183.325898] ? should_fail+0x246/0xd86 [ 183.329775] __alloc_pages_nodemask+0x36e/0xdb0 [ 183.334432] ? kasan_check_read+0x11/0x20 [ 183.338568] ? rcu_is_watching+0x8c/0x150 [ 183.342707] ? __alloc_pages_slowpath+0x2d00/0x2d00 [ 183.347714] ? is_bpf_text_address+0xd7/0x170 [ 183.352197] ? kernel_text_address+0x79/0xf0 [ 183.356599] ? lock_acquire+0x1e4/0x540 [ 183.360561] ? fs_reclaim_acquire+0x20/0x20 [ 183.364871] ? lock_downgrade+0x8f0/0x8f0 [ 183.369009] ? lock_release+0xa30/0xa30 [ 183.372976] ? check_same_owner+0x340/0x340 [ 183.377285] ? check_same_owner+0x340/0x340 [ 183.381595] cache_grow_begin+0x91/0x710 [ 183.385666] kmem_cache_alloc+0x689/0x760 [ 183.389803] ? __alloc_pages_nodemask+0x6e3/0xdb0 [ 183.394641] getname_kernel+0x54/0x370 [ 183.398522] kern_path+0x1e/0x40 [ 183.401875] lookup_bdev+0x10c/0x250 [ 183.405575] ? blkdev_open+0x280/0x280 [ 183.409449] ? check_same_owner+0x340/0x340 [ 183.413757] ? check_same_owner+0x340/0x340 [ 183.418067] ? debug_mutex_init+0x2d/0x60 [ 183.422206] blkdev_get_by_path+0x1f/0xe0 [ 183.426341] mount_bdev+0x61/0x3e0 [ 183.429870] ? vfat_mount+0x50/0x50 [ 183.433494] vfat_mount+0x3c/0x50 [ 183.437112] ? setup+0x120/0x120 [ 183.440467] legacy_get_tree+0x131/0x460 [ 183.444516] vfs_get_tree+0x1cb/0x5c0 [ 183.448312] ? vfs_set_fs_source+0x12c/0x180 [ 183.452710] do_mount+0x6f2/0x1e20 [ 183.456237] ? check_same_owner+0x340/0x340 [ 183.460552] ? lock_release+0xa30/0xa30 [ 183.464521] ? copy_mount_string+0x40/0x40 [ 183.468754] ? kasan_kmalloc+0xc4/0xe0 [ 183.472636] ? kmem_cache_alloc_trace+0x318/0x780 [ 183.477467] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 183.482995] ? _copy_from_user+0xdf/0x150 [ 183.487137] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 183.492662] ? copy_mount_options+0x285/0x380 [ 183.497153] ksys_mount+0x12d/0x140 [ 183.500770] __x64_sys_mount+0xbe/0x150 [ 183.504743] do_syscall_64+0x1b9/0x820 [ 183.508616] ? finish_task_switch+0x1d3/0x870 [ 183.513109] ? syscall_return_slowpath+0x5e0/0x5e0 [ 183.518033] ? syscall_return_slowpath+0x31d/0x5e0 [ 183.522950] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 183.527955] ? prepare_exit_to_usermode+0x291/0x3b0 [ 183.532956] ? perf_trace_sys_enter+0xb10/0xb10 [ 183.537616] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 183.542455] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 183.547630] RIP: 0033:0x4584ea [ 183.550797] Code: b8 a6 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 dd 8f fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 ba 8f fb ff c3 66 0f 1f 84 00 00 00 00 00 [ 183.570072] RSP: 002b:00007fb8b6388a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 183.577782] RAX: ffffffffffffffda RBX: 00007fb8b6388b30 RCX: 00000000004584ea [ 183.585036] RDX: 00007fb8b6388ad0 RSI: 0000000020000100 RDI: 00007fb8b6388af0 [ 183.592299] RBP: 0000000020000100 R08: 00007fb8b6388b30 R09: 00007fb8b6388ad0 09:06:13 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)) pipe(&(0x7f0000000000)={0xffffffffffffffff}) setsockopt$inet_sctp_SCTP_HMAC_IDENT(r0, 0x84, 0x16, &(0x7f0000000040)={0x3, [0xe7, 0x400, 0x90]}, 0xa) 09:06:13 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = accept4(0xffffffffffffff9c, &(0x7f0000000000)=@nfc_llcp, &(0x7f0000000140)=0x80, 0x80800) ioctl$sock_inet_SIOCGIFNETMASK(r3, 0x891b, &(0x7f0000000180)={'veth1_to_bond\x00', {0x2, 0x4e21}}) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000080)="b8010000000f01d90f22db0f20d835080000000f22d8f26db9004d564bb84b000000ba000000000f30ea00300000a6000fc72d0000000026f30f01c966b850008ee0b8070000000f23d00f21f8353000000a0f23f8", 0x55}], 0x1, 0x0, &(0x7f0000000140), 0x0) ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000200)) ioctl$KVM_RUN(r2, 0xae80, 0x0) 09:06:13 executing program 6: r0 = syz_open_dev$sndctrl(&(0x7f00000000c0)='/dev/snd/controlC#\x00', 0x0, 0x0) perf_event_open(&(0x7f0000000280)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8ce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000005000), 0x2}, 0x1000000000c}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r0, 0xc0045516, &(0x7f0000000040)) getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffff9c, 0x84, 0x73, &(0x7f000000d000), &(0x7f0000001000)=0xfea6) ioctl$SNDRV_CTL_IOCTL_PVERSION(r0, 0xc1105517, &(0x7f0000001000)) [ 183.599560] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000014 [ 183.606812] R13: 0000000000000000 R14: 00000000004d3de0 R15: 000000000000002b 09:06:13 executing program 7: r0 = socket$inet6_udp(0xa, 0x2, 0x0) r1 = socket$inet_sctp(0x2, 0x0, 0x84) getsockopt$inet_sctp_SCTP_ADAPTATION_LAYER(r1, 0x84, 0x7, &(0x7f0000000000), &(0x7f0000000080)=0x4) r2 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vsock\x00', 0x82, 0x0) getsockopt$inet_sctp_SCTP_GET_ASSOC_STATS(r2, 0x84, 0x70, &(0x7f00000000c0)={0x0, @in={{0x2, 0x4e20, @broadcast=0xffffffff}}, [0x3, 0x6a, 0xffffffff, 0x2, 0x8, 0x5, 0x17129595, 0xfffffffffffffffd, 0x400, 0xffffffffffffffd0, 0x3, 0x9, 0x3, 0x7, 0x4]}, &(0x7f00000001c0)=0x100) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r2, 0x84, 0xa, &(0x7f0000000200)={0x5, 0x0, 0x200, 0x5, 0xfffffffffffff906, 0x4, 0x3ff, 0x3, r3}, &(0x7f0000000240)=0x20) tee(r0, r0, 0x100000010, 0x4) 09:06:13 executing program 5: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x800000008912, &(0x7f00000002c0)="025cc800000000000000034f63e6d4d7df7c82b4a024e176b6002a67282e2de8f980dd484e4e238d442bb570bbf244de17b62bbb7459f2e6cc567cc6621b7faa504ff477db6b035f1059f1f9d31431d4ebadf12c85bd292c3ae48ffe8ffee76e8995fe9299b1565dce713d8f85bd90b509e0979dc93a7dd802179280a07a2b1e4bf45b2b1641fced30c4d2e0b6b21105cd5e684172c99d2758211c197134c7425c6cb5255cac") r1 = gettid() rt_sigprocmask(0x0, &(0x7f0000024000)={0xfffffffffffffffe}, 0x0, 0x8) timer_create(0x3, &(0x7f0000044000)={0x0, 0x14, 0x4, @tid=r1}, &(0x7f0000044000)) timer_settime(0x0, 0x0, &(0x7f0000046fe0)={{}, {0x0, 0x9}}, &(0x7f0000046000)) timer_settime(0x0, 0xfffffffffffffffd, &(0x7f0000040fe0)={{}, {0x0, 0x9}}, &(0x7f0000000080)) 09:06:13 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={"6c6f00000000000200", {0x2}}) 09:06:13 executing program 5: r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x10, 0x4, 0x4, 0x5, 0x0, 0x1}, 0x2c) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000080)={r0, &(0x7f0000000100)="a4084d2350d892b6e4c074c8b5abba6d2454af1ed25645f250090a5ea0ae6d6743fef7bfe6f4083866adbd401fb482a71317f6d13cb890c6329611778aed8bbaee286aabf96001000000000000006e2ce65fc333df8f42782fbc5529f027f69615392253bd2e936a5c07f767db8f66a9b20000000000000000000000", &(0x7f0000000280), 0x1}, 0x3df) 09:06:13 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) ioctl$KVM_S390_UCAS_UNMAP(r2, 0x4018ae51, &(0x7f0000000040)={0x1, 0x8, 0x200}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r2, 0x8040ae9f, &(0x7f0000000000)) 09:06:13 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={"6c6f00000400", {0x2}}) 09:06:13 executing program 6: r0 = syz_open_dev$sndctrl(&(0x7f00000000c0)='/dev/snd/controlC#\x00', 0x0, 0x0) perf_event_open(&(0x7f0000000280)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8ce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000005000), 0x2}, 0x1000000000c}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r0, 0xc0045516, &(0x7f0000000040)=0x100000006) getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffff9c, 0x84, 0x73, &(0x7f000000d000), &(0x7f0000001000)=0xfea6) ioctl$SNDRV_CTL_IOCTL_PVERSION(0xffffffffffffffff, 0xc1105517, &(0x7f0000001000)) 09:06:13 executing program 4: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = socket$alg(0x26, 0x5, 0x0) bind$alg(r1, &(0x7f0000001680)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(camellia-generic)\x00'}, 0x58) setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000080)="bcd6a76e96c6856800000ced5c54befef7008e72e8cfe269", 0x18) r2 = accept$alg(r1, 0x0, 0x0) sendmmsg$alg(r2, &(0x7f0000005200)=[{0x0, 0x0, &(0x7f0000000240)=[{&(0x7f00000036c0)="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", 0xc50}], 0x1}], 0x1, 0x0) recvmsg(r2, &(0x7f0000001440)={&(0x7f0000000280)=@sco, 0x80, &(0x7f0000000000)=[{&(0x7f00000003c0)=""/4096, 0x1000}], 0x1, &(0x7f0000001400)=""/6, 0x6}, 0x0) mq_unlink(&(0x7f0000000040)='skcipher\x00') 09:06:13 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)) r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x6000, 0x0) write$FUSE_STATFS(r0, &(0x7f0000000040)={0x60, 0x0, 0x5, {{0xff, 0x10000, 0x9, 0x5, 0x0, 0x200, 0x4, 0x81}}}, 0x60) 09:06:13 executing program 5: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) openat$vsock(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vsock\x00', 0x408040, 0x0) bind$alg(r0, &(0x7f00000002c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'ctr(aes-generic)\x00'}, 0x58) r1 = accept4(r0, 0x0, &(0x7f0000000100)=0xb0712f51, 0x0) sendmsg$IPVS_CMD_NEW_SERVICE(r1, &(0x7f0000000140)={&(0x7f0000000040)={0x10}, 0xc, &(0x7f00000000c0)={&(0x7f0000000440)={0x14, 0x0, 0x0, 0x0, 0x0, {0x1}}, 0x14}, 0x1}, 0x0) 09:06:13 executing program 2 (fault-call:1 fault-nth:44): syz_mount_image$vfat(&(0x7f0000000180)='vfat\x00', &(0x7f0000000080)='./file0/file0\x00', 0x0, 0x0, &(0x7f0000001580), 0x0, &(0x7f0000000340)={[{@shortname_win95='shortname=win95', 0x2c}]}) syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f0000000100)='./file0\x00', 0xe004, 0x1, &(0x7f0000000380)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020401000200027000f8", 0x16}], 0x0, &(0x7f0000000340)=ANY=[]) 09:06:13 executing program 0: r0 = socket$packet(0x11, 0x2000000002, 0x300) setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f000095bffc)={0x0, 0x0, 0xfffffffffffffffc}, 0x4) timer_create(0x2, &(0x7f0000000140)={0x0, 0x27, 0x1}, &(0x7f0000000180)=0x0) timer_delete(r1) r2 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r2, &(0x7f0000000100)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x4}, 0x1c) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x9}]}, 0x10) sendto$inet6(r2, &(0x7f0000000300), 0xfdb8, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e23, 0x0, @ipv4={[], [0xff, 0xff], @multicast2=0xe0000002}}, 0x1c) r3 = syz_open_dev$amidi(&(0x7f0000000080)='/dev/amidi#\x00', 0x8000, 0x0) ioctl$VHOST_SET_OWNER(r3, 0xaf01, 0x0) sendmmsg(r2, &(0x7f00000092c0), 0x4f, 0x0) 09:06:13 executing program 6 (fault-call:5 fault-nth:0): r0 = syz_open_dev$sndctrl(&(0x7f00000000c0)='/dev/snd/controlC#\x00', 0x0, 0x0) perf_event_open(&(0x7f0000000280)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8ce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000005000), 0x2}, 0x1000000000c}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r0, 0xc0045516, &(0x7f0000000040)=0x100000006) getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffff9c, 0x84, 0x73, &(0x7f000000d000), &(0x7f0000001000)=0xfea6) ioctl$SNDRV_CTL_IOCTL_PVERSION(r0, 0xc1105517, &(0x7f0000001000)) 09:06:13 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={'lo\x00\x00`\x00', {0x2}}) 09:06:13 executing program 7: getsockopt$sock_cred(0xffffffffffffff9c, 0x1, 0x11, &(0x7f0000000080)={0x0}, &(0x7f00000000c0)=0xc) r1 = syz_open_dev$dmmidi(&(0x7f0000000200)='/dev/dmmidi#\x00', 0x10, 0x88000) setsockopt$inet_sctp6_SCTP_NODELAY(r1, 0x84, 0x3, &(0x7f0000000240)=0x3, 0x4) shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000000)={{}, 0x0, 0x0, 0x0, 0x0, 0x0, r0}) r2 = fcntl$dupfd(0xffffffffffffff9c, 0x0, 0xffffffffffffffff) getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f0000000100)={0x7, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, &(0x7f0000000140)=0x20) getsockopt$inet_sctp_SCTP_MAXSEG(r2, 0x84, 0xd, &(0x7f0000000180)=@assoc_id=r3, &(0x7f00000001c0)=0x4) setsockopt$inet_sctp6_SCTP_MAXSEG(r2, 0x84, 0xd, &(0x7f0000000280)=@assoc_id=r4, 0x4) 09:06:13 executing program 1: r0 = syz_open_dev$sndseq(&(0x7f0000000240)='/dev/snd/seq\x00', 0x0, 0x0) read(r0, &(0x7f0000000040)=""/28, 0x1c) ioctl$SNDRV_SEQ_IOCTL_UNSUBSCRIBE_PORT(0xffffffffffffffff, 0x80045300, &(0x7f0000000180)) r1 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/vcs\x00', 0x0, 0x0) ioctl$RTC_AIE_ON(r1, 0x7001) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000003, 0x8031, r0, 0x0) r2 = syz_open_dev$sndpcmc(&(0x7f0000000080)='/dev/snd/pcmC#D#c\x00', 0x4, 0xea000) ioctl$KVM_ASSIGN_PCI_DEVICE(r2, 0x8040ae69, &(0x7f00000000c0)={0xffff, 0x101, 0x800, 0x1, 0x7fff}) openat$vcs(0xffffffffffffff9c, &(0x7f0000000200)='/dev/vcs\x00', 0x0, 0x0) mbind(&(0x7f0000012000/0xc00000)=nil, 0xc00000, 0x0, &(0x7f0000000000), 0x4, 0x2) get_mempolicy(&(0x7f0000000040), &(0x7f0000000180), 0xfffffffffffffffc, &(0x7f00005be000/0x2000)=nil, 0x2) openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x0, 0x0) 09:06:13 executing program 5: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = dup2(r0, r0) write$P9_RLOCK(r1, &(0x7f0000000040)={0x8, 0x35, 0x2, 0x3}, 0x8) r2 = socket$inet6_udp(0xa, 0x2, 0x0) r3 = memfd_create(&(0x7f0000000000)='\x00', 0x3) mmap$binder(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x6, 0x60010, r3, 0x0) setsockopt$inet6_int(r1, 0x29, 0xdf, &(0x7f00000000c0)=0x400010000000d, 0xff1f) getsockopt$inet6_int(r2, 0x29, 0x48, &(0x7f0000000180), &(0x7f00000001c0)=0x4) 09:06:13 executing program 4: lstat(&(0x7f0000000300)='./file0\x00', &(0x7f0000000340)) r0 = creat(&(0x7f0000000080)='./file0\x00', 0x2) write$FUSE_NOTIFY_INVAL_ENTRY(r0, &(0x7f00000001c0)={0x21, 0x3, 0x0, {0x2}}, 0x21) syz_mount_image$msdos(&(0x7f0000000000)='msdos\x00', &(0x7f00000003c0)='./file0\x00', 0xe800, 0x1, &(0x7f00000000c0)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000210010a020002260af8", 0x27c, 0xfffffffffffffffe}], 0xffffffff, &(0x7f0000000180)=ANY=[@ANYBLOB="0000a000161b3cebd03eef54f10f"]) 09:06:13 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={"6c6f000000000000ffffffff00", {0x2}}) [ 183.988830] FAULT_INJECTION: forcing a failure. [ 183.988830] name failslab, interval 1, probability 0, space 0, times 0 [ 184.000187] CPU: 0 PID: 12855 Comm: syz-executor6 Not tainted 4.18.0-rc5-next-20180720+ #12 [ 184.008712] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 184.018148] Call Trace: [ 184.020772] dump_stack+0x1c9/0x2b4 [ 184.024429] ? dump_stack_print_info.cold.2+0x52/0x52 [ 184.029685] should_fail.cold.4+0xa/0x11 [ 184.033790] ? fault_create_debugfs_attr+0x1f0/0x1f0 09:06:13 executing program 5: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) r1 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000200)='IPVS\x00') sendmsg$IPVS_CMD_GET_DAEMON(r0, &(0x7f0000000300)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x21000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000240)={0x58, r1, 0xd11, 0x70bd25, 0x25dfdbfb, {0xb}, [@IPVS_CMD_ATTR_SERVICE={0x44, 0x1, [@IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x4, 0xa}}, @IPVS_SVC_ATTR_PE_NAME={0x8, 0xb, 'sip\x00'}, @IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x10, 0x10}}, @IPVS_SVC_ATTR_NETMASK={0x8, 0x9, 0x5f}, @IPVS_SVC_ATTR_PROTOCOL={0x8, 0x2, 0x2c}, @IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0xfffffffffffffffc}, @IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0xffffffff}]}]}, 0x58}, 0x1, 0x0, 0x0, 0x40810}, 0x4040040) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)={"766574000000000000000000bd6800", 0x43732e5398416f1a}) openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x80741, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r2, &(0x7f0000000140)={&(0x7f00000000c0)={0x10}, 0xc, &(0x7f0000000100)={&(0x7f0000000180)=@newlink={0x28, 0x10, 0xc362e63b3f31ba5f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x3}, [@IFLA_GROUP={0x8, 0x1b}]}, 0x28}, 0x1}, 0x0) ioctl$TUNSETLINK(r0, 0x400454cd, 0x0) [ 184.038933] ? filemap_map_pages+0xca2/0x1990 [ 184.043461] ? memset+0x31/0x40 [ 184.046818] ? lock_acquire+0x1e4/0x540 [ 184.050820] ? fs_reclaim_acquire+0x20/0x20 [ 184.055235] ? lock_downgrade+0x8f0/0x8f0 [ 184.059413] ? check_same_owner+0x340/0x340 [ 184.063757] ? rcu_note_context_switch+0x730/0x730 [ 184.068702] ? perf_trace_run_bpf_submit+0x269/0x3b0 [ 184.073823] __should_failslab+0x124/0x180 [ 184.078069] should_failslab+0x9/0x14 [ 184.081880] __kmalloc+0x2c8/0x760 [ 184.085441] ? lock_acquire+0x1e4/0x540 [ 184.089422] ? snd_ctl_new+0x5c/0x180 [ 184.093239] ? __might_fault+0x12b/0x1e0 [ 184.097325] snd_ctl_new+0x5c/0x180 [ 184.100972] snd_ctl_elem_add+0x565/0x14c0 [ 184.105238] ? snd_ctl_new1+0x700/0x700 [ 184.109770] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 184.115349] ? _copy_from_user+0xdf/0x150 [ 184.119537] snd_ctl_elem_add_user+0xb8/0x170 [ 184.124062] ? snd_ctl_elem_add_compat+0x3e0/0x3e0 [ 184.129041] ? lock_release+0xa30/0xa30 [ 184.133024] ? pid_task+0x115/0x200 09:06:13 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)) shmget$private(0x0, 0x1000, 0x9, &(0x7f0000ffc000/0x1000)=nil) [ 184.136667] snd_ctl_ioctl+0x480/0x1110 [ 184.140654] ? snd_ctl_elem_add_user+0x170/0x170 [ 184.145605] ? __fget+0x4d5/0x740 [ 184.149088] ? ksys_dup3+0x690/0x690 [ 184.152825] ? kasan_check_write+0x14/0x20 [ 184.157069] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 184.162012] ? fsnotify+0xbac/0x14e0 [ 184.165743] ? vfs_write+0x2f3/0x560 [ 184.169486] ? snd_ctl_elem_add_user+0x170/0x170 [ 184.174262] do_vfs_ioctl+0x1de/0x1720 [ 184.178169] ? fsnotify_first_mark+0x350/0x350 [ 184.182763] ? __fsnotify_parent+0xcc/0x420 [ 184.187096] ? ioctl_preallocate+0x300/0x300 [ 184.191510] ? __fget_light+0x2f7/0x440 [ 184.195490] ? fget_raw+0x20/0x20 [ 184.198952] ? __sb_end_write+0xac/0xe0 [ 184.202940] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 184.208483] ? fput+0x130/0x1a0 [ 184.211858] ? ksys_write+0x1ae/0x260 [ 184.215673] ? security_file_ioctl+0x94/0xc0 [ 184.220090] ksys_ioctl+0xa9/0xd0 [ 184.223555] __x64_sys_ioctl+0x73/0xb0 [ 184.227455] do_syscall_64+0x1b9/0x820 [ 184.231370] ? finish_task_switch+0x1d3/0x870 [ 184.235864] ? syscall_return_slowpath+0x5e0/0x5e0 [ 184.240787] ? syscall_return_slowpath+0x31d/0x5e0 [ 184.245713] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 184.250904] ? prepare_exit_to_usermode+0x291/0x3b0 [ 184.255912] ? perf_trace_sys_enter+0xb10/0xb10 [ 184.260572] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 184.265415] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 184.270616] RIP: 0033:0x455ab9 [ 184.273790] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 184.293171] RSP: 002b:00007f62bece7c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 184.300881] RAX: ffffffffffffffda RBX: 00007f62bece86d4 RCX: 0000000000455ab9 [ 184.308149] RDX: 0000000020001000 RSI: 00000000c1105517 RDI: 0000000000000013 [ 184.315405] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 184.322670] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015 [ 184.329927] R13: 00000000004c5848 R14: 00000000004cd630 R15: 0000000000000000 09:06:14 executing program 6 (fault-call:5 fault-nth:1): r0 = syz_open_dev$sndctrl(&(0x7f00000000c0)='/dev/snd/controlC#\x00', 0x0, 0x0) perf_event_open(&(0x7f0000000280)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8ce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000005000), 0x2}, 0x1000000000c}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r0, 0xc0045516, &(0x7f0000000040)=0x100000006) getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffff9c, 0x84, 0x73, &(0x7f000000d000), &(0x7f0000001000)=0xfea6) ioctl$SNDRV_CTL_IOCTL_PVERSION(r0, 0xc1105517, &(0x7f0000001000)) 09:06:14 executing program 7: r0 = syz_open_dev$vcsn(&(0x7f0000000000)='/dev/vcs#\x00', 0x1, 0x800) mq_timedsend(r0, &(0x7f0000000040)="faf9723507f831903744473eb6e6c13fd62abc63d31a093a37c0a094d1667fbb3ca2730c6081d291779f6ed1705e78e429a610eed9db", 0x36, 0xfe, &(0x7f0000000080)={0x0, 0x989680}) shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)={{}, 0x0, 0x0, 0x3}) 09:06:14 executing program 4: r0 = perf_event_open(&(0x7f0000940000)={0x2, 0x70, 0xfffffffffffffffd}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_open_dev$admmidi(&(0x7f0000000040)='/dev/admmidi#\x00', 0xb1f, 0x20000) getsockopt$inet6_mreq(0xffffffffffffff9c, 0x29, 0x15, &(0x7f0000000080)={@loopback, 0x0}, &(0x7f0000000100)=0xfdc1) ioctl$ifreq_SIOCGIFINDEX_team(r1, 0x8933, &(0x7f0000000140)={'team0\x00', r2}) ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x40082406, &(0x7f00000001c0)="d7dc59a26c925bee7f043a45858b6cce5b0883b0f328f3d0a5fdf3e728e7ab29e46104ad0cd3165aca156b7c7c0655b0c687c7bb5161369d35bc229673fb40d918adaef28d506ee996bca7e6eab4cb8c017114859bd347a371de2210349bac7d82527702bc95443594eda26ad223230000101ec5d6eb33be05b103675888a96b01c8f2d375ee1551b28a28f5bf77aba9257a6f8115d15fffc005b8bd91b2000000000000000000") ioctl$EVIOCGSW(r1, 0x8040451b, &(0x7f00000000c0)=""/38) 09:06:14 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={"6c6f000000000000fffffdfd00", {0x2}}) [ 184.399541] FAULT_INJECTION: forcing a failure. [ 184.399541] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 184.411497] CPU: 0 PID: 12869 Comm: syz-executor2 Not tainted 4.18.0-rc5-next-20180720+ #12 [ 184.414110] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 184.419983] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 184.419989] Call Trace: [ 184.420013] dump_stack+0x1c9/0x2b4 [ 184.420030] ? dump_stack_print_info.cold.2+0x52/0x52 [ 184.420052] should_fail.cold.4+0xa/0x11 [ 184.420072] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 184.435469] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 184.435941] ? kasan_check_read+0x11/0x20 [ 184.468113] ? rcu_is_watching+0x8c/0x150 [ 184.472273] ? is_bpf_text_address+0xd7/0x170 [ 184.476778] ? kernel_text_address+0x79/0xf0 [ 184.481204] ? __kernel_text_address+0xd/0x40 [ 184.485704] ? unwind_get_return_address+0x61/0xa0 [ 184.490642] ? lock_acquire+0x1e4/0x540 [ 184.494636] ? fs_reclaim_acquire+0x20/0x20 [ 184.498963] ? lock_downgrade+0x8f0/0x8f0 [ 184.503120] ? check_same_owner+0x340/0x340 [ 184.507446] ? rcu_note_context_switch+0x730/0x730 [ 184.510535] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 184.512374] ? legacy_parse_monolithic+0xde/0x1e0 [ 184.512396] __alloc_pages_nodemask+0x36e/0xdb0 [ 184.512412] ? __alloc_pages_slowpath+0x2d00/0x2d00 [ 184.512428] ? lock_downgrade+0x8f0/0x8f0 [ 184.512447] ? kasan_check_read+0x11/0x20 [ 184.512459] ? do_raw_spin_unlock+0xa7/0x2f0 [ 184.512473] ? kasan_check_write+0x14/0x20 [ 184.512483] ? do_raw_spin_lock+0xc1/0x200 [ 184.512494] ? kasan_unpoison_shadow+0x35/0x50 [ 184.512506] ? kasan_kmalloc+0xc4/0xe0 [ 184.512523] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 184.512537] alloc_pages_current+0x10c/0x210 [ 184.512551] get_zeroed_page+0x14/0x50 [ 184.512564] legacy_validate+0x133/0x220 [ 184.512577] ? vfs_set_fs_source+0x180/0x180 [ 184.512594] vfs_get_tree+0x144/0x5c0 [ 184.512608] ? vfs_set_fs_source+0x12c/0x180 [ 184.512623] do_mount+0x6f2/0x1e20 [ 184.512639] ? copy_mount_string+0x40/0x40 [ 184.512650] ? kasan_kmalloc+0xc4/0xe0 [ 184.512666] ? kmem_cache_alloc_trace+0x318/0x780 [ 184.512682] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 184.512699] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 184.512713] ? copy_mount_options+0x285/0x380 [ 184.512729] ksys_mount+0x12d/0x140 [ 184.512743] __x64_sys_mount+0xbe/0x150 [ 184.512759] do_syscall_64+0x1b9/0x820 [ 184.512771] ? finish_task_switch+0x1d3/0x870 [ 184.512783] ? syscall_return_slowpath+0x5e0/0x5e0 [ 184.512800] ? syscall_return_slowpath+0x31d/0x5e0 [ 184.652245] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 184.657268] ? prepare_exit_to_usermode+0x291/0x3b0 [ 184.662285] ? perf_trace_sys_enter+0xb10/0xb10 [ 184.666953] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 184.671810] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 184.676998] RIP: 0033:0x4584ea [ 184.680183] Code: b8 a6 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 dd 8f fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 ba 8f fb ff c3 66 0f 1f 84 00 00 00 00 00 [ 184.699478] RSP: 002b:00007fb8b6388a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 184.707203] RAX: ffffffffffffffda RBX: 00007fb8b6388b30 RCX: 00000000004584ea [ 184.714474] RDX: 00007fb8b6388ad0 RSI: 0000000020000100 RDI: 00007fb8b6388af0 [ 184.721759] RBP: 0000000020000100 R08: 00007fb8b6388b30 R09: 00007fb8b6388ad0 [ 184.729026] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000014 [ 184.736299] R13: 0000000000000000 R14: 00000000004d3de0 R15: 000000000000002c 09:06:14 executing program 2 (fault-call:1 fault-nth:45): syz_mount_image$vfat(&(0x7f0000000180)='vfat\x00', &(0x7f0000000080)='./file0/file0\x00', 0x0, 0x0, &(0x7f0000001580), 0x0, &(0x7f0000000340)={[{@shortname_win95='shortname=win95', 0x2c}]}) syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f0000000100)='./file0\x00', 0xe004, 0x1, &(0x7f0000000380)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020401000200027000f8", 0x16}], 0x0, &(0x7f0000000340)=ANY=[]) [ 184.756909] FAULT_INJECTION: forcing a failure. [ 184.756909] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 184.768786] CPU: 0 PID: 12876 Comm: syz-executor6 Not tainted 4.18.0-rc5-next-20180720+ #12 [ 184.777290] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 184.786660] Call Trace: [ 184.789273] dump_stack+0x1c9/0x2b4 [ 184.792938] ? dump_stack_print_info.cold.2+0x52/0x52 [ 184.798236] should_fail.cold.4+0xa/0x11 [ 184.802373] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 184.807518] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 184.813089] ? perf_trace_run_bpf_submit+0x269/0x3b0 [ 184.818257] ? trace_hardirqs_on+0x10/0x10 [ 184.822538] ? perf_tp_event+0xc40/0xc40 [ 184.826639] ? lock_release+0xa30/0xa30 [ 184.830630] ? memset+0x31/0x40 [ 184.833933] ? perf_trace_lock_acquire+0x4f9/0x9a0 [ 184.838914] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 184.844492] ? should_fail+0x246/0xd86 [ 184.848408] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 184.853540] __alloc_pages_nodemask+0x36e/0xdb0 [ 184.858237] ? __alloc_pages_slowpath+0x2d00/0x2d00 [ 184.863380] ? memset+0x31/0x40 [ 184.866693] ? lock_acquire+0x1e4/0x540 [ 184.870690] ? fs_reclaim_acquire+0x20/0x20 [ 184.875026] ? lock_downgrade+0x8f0/0x8f0 [ 184.879221] ? lock_release+0xa30/0xa30 [ 184.883219] ? check_same_owner+0x340/0x340 [ 184.887563] cache_grow_begin+0x91/0x710 [ 184.891653] __kmalloc+0x688/0x760 [ 184.895212] ? snd_ctl_new+0x5c/0x180 [ 184.899032] snd_ctl_new+0x5c/0x180 [ 184.902695] snd_ctl_elem_add+0x565/0x14c0 [ 184.906956] ? snd_ctl_new1+0x700/0x700 [ 184.910952] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 184.916537] ? _copy_from_user+0xdf/0x150 [ 184.920712] snd_ctl_elem_add_user+0xb8/0x170 [ 184.925230] ? snd_ctl_elem_add_compat+0x3e0/0x3e0 [ 184.930218] ? lock_release+0xa30/0xa30 [ 184.934206] ? pid_task+0x115/0x200 [ 184.937848] snd_ctl_ioctl+0x480/0x1110 [ 184.941838] ? snd_ctl_elem_add_user+0x170/0x170 [ 184.946635] ? __fget+0x4d5/0x740 [ 184.950109] ? ksys_dup3+0x690/0x690 [ 184.953851] ? kasan_check_write+0x14/0x20 [ 184.958100] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 184.963061] ? fsnotify+0xbac/0x14e0 [ 184.963081] ? vfs_write+0x2f3/0x560 [ 184.963103] ? snd_ctl_elem_add_user+0x170/0x170 [ 184.963122] do_vfs_ioctl+0x1de/0x1720 [ 184.963139] ? fsnotify_first_mark+0x350/0x350 [ 184.963161] ? __fsnotify_parent+0xcc/0x420 [ 184.963183] ? ioctl_preallocate+0x300/0x300 [ 184.963200] ? __fget_light+0x2f7/0x440 [ 184.963219] ? fget_raw+0x20/0x20 [ 184.963241] ? __sb_end_write+0xac/0xe0 [ 184.963264] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 185.009525] ? fput+0x130/0x1a0 [ 185.012820] ? ksys_write+0x1ae/0x260 [ 185.016763] ? security_file_ioctl+0x94/0xc0 [ 185.021214] ksys_ioctl+0xa9/0xd0 [ 185.024708] __x64_sys_ioctl+0x73/0xb0 [ 185.028611] do_syscall_64+0x1b9/0x820 [ 185.032509] ? finish_task_switch+0x1d3/0x870 [ 185.037025] ? syscall_return_slowpath+0x5e0/0x5e0 [ 185.041970] ? syscall_return_slowpath+0x31d/0x5e0 [ 185.047005] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 185.052039] ? prepare_exit_to_usermode+0x291/0x3b0 [ 185.057073] ? perf_trace_sys_enter+0xb10/0xb10 [ 185.061762] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 185.066743] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 185.074128] RIP: 0033:0x455ab9 [ 185.077328] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 185.096910] RSP: 002b:00007f62bece7c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 09:06:14 executing program 0: r0 = add_key(&(0x7f0000000100)='big_key\x00', &(0x7f0000000140)={0x73, 0x79, 0x7a}, &(0x7f0000000400)='V', 0x1, 0xffffffffffffffff) keyctl$setperm(0x5, r0, 0x100) r1 = socket(0x40000000015, 0x5, 0x0) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f00000001c0)={0x0, 0x0}, &(0x7f0000000200)=0x5) r3 = syz_open_dev$admmidi(&(0x7f00000003c0)='/dev/admmidi#\x00', 0x81, 0x2000) ioctl$PERF_EVENT_IOC_PAUSE_OUTPUT(r3, 0x40042409, 0x1) getsockopt$inet_sctp_SCTP_PR_SUPPORTED(r1, 0x84, 0x71, &(0x7f0000000000)={0x0, 0x80000001}, &(0x7f0000000040)=0x8) setsockopt$inet_sctp6_SCTP_RESET_STREAMS(r1, 0x84, 0x77, &(0x7f0000000080)={r4, 0x8703, 0x5, [0x5, 0x1d, 0x4, 0x61a0, 0x5]}, 0x12) syz_mount_image$vfat(&(0x7f00000000c0)='vfat\x00', &(0x7f0000000180)='./file0\x00', 0x37efd77d, 0x1, &(0x7f00000002c0)=[{&(0x7f0000000240)="e96d1c3a490d71d01f407ff441b21cb9578afb9659c892f37c0dce29a426", 0x1e, 0x4}], 0x10, &(0x7f0000000300)={[{@fat=@discard='discard', 0x2c}]}) getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(r1, 0x84, 0x7c, &(0x7f0000000340)={r4, 0x7fff, 0x2}, &(0x7f0000000380)=0x8) ioctl(0xffffffffffffffff, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") setreuid(0x0, r2) keyctl$setperm(0x11, r0, 0x0) [ 185.104643] RAX: ffffffffffffffda RBX: 00007f62bece86d4 RCX: 0000000000455ab9 [ 185.111927] RDX: 0000000020001000 RSI: 00000000c1105517 RDI: 0000000000000013 [ 185.119218] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 185.126503] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015 [ 185.133790] R13: 00000000004c5848 R14: 00000000004cd630 R15: 0000000000000001 09:06:15 executing program 7: r0 = syz_open_dev$sndpcmc(&(0x7f0000000000)='/dev/snd/pcmC#D#c\x00', 0x11100000000, 0x4000000000020100) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r0, 0xc0045520, &(0x7f0000000040)=0x1ff) exit_group(0x1) 09:06:15 executing program 5: getpeername(0xffffffffffffff9c, &(0x7f0000000000)=@pppol2tp={0x0, 0x0, {0x0, 0xffffffffffffffff, {0x0, 0x0, @rand_addr}}}, &(0x7f0000000080)=0x80) getsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(0xffffffffffffffff, 0x84, 0x18, &(0x7f00000000c0)={0x0, 0x4}, &(0x7f0000000100)=0x8) getsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(r0, 0x84, 0x18, &(0x7f00000001c0)={r1, 0x9}, &(0x7f0000000200)=0x8) syz_open_dev$dmmidi(&(0x7f0000000240)='/dev/dmmidi#\x00', 0x3, 0x400000) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0) 09:06:15 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={"6c6f0000000600", {0x2}}) [ 185.202926] FAULT_INJECTION: forcing a failure. [ 185.202926] name failslab, interval 1, probability 0, space 0, times 0 [ 185.214255] CPU: 0 PID: 12894 Comm: syz-executor2 Not tainted 4.18.0-rc5-next-20180720+ #12 [ 185.222755] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 185.232121] Call Trace: [ 185.234741] dump_stack+0x1c9/0x2b4 [ 185.238386] ? dump_stack_print_info.cold.2+0x52/0x52 [ 185.243598] should_fail.cold.4+0xa/0x11 [ 185.247679] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 185.252797] ? do_raw_spin_unlock+0xa7/0x2f0 [ 185.257217] ? do_raw_spin_trylock+0x1c0/0x1c0 [ 185.261818] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 185.266883] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 185.271904] ? find_next_bit+0x104/0x130 [ 185.275977] ? cpumask_next+0x24/0x30 [ 185.279794] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 185.285343] ? pcpu_alloc+0x190/0x13a0 [ 185.289242] ? kmem_cache_alloc_trace+0x152/0x780 [ 185.294100] ? lock_acquire+0x1e4/0x540 [ 185.298088] ? fs_reclaim_acquire+0x20/0x20 09:06:15 executing program 4: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/vsock\x00', 0x2004, 0x0) ioctl$VHOST_SET_OWNER(r0, 0xaf01, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000340)={0x10}, 0xc, &(0x7f0000000380)={&(0x7f0000000080)=@ipv6_getroute={0x24, 0x1a, 0x0, 0x0, 0x0, {0xa}, [@RTA_OIF={0x8, 0x10}]}, 0x73}, 0x1}, 0x0) getsockopt$llc_int(r0, 0x10c, 0x2, &(0x7f0000000100), &(0x7f0000000140)=0x4) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={&(0x7f0000000180)={0x10, 0x40030000000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000080)={0x20, 0x2e, 0x119, 0x0, 0x0, {0x2}, [@nested={0xc, 0x0, [@typed={0x8, 0x1, @binary="04"}]}]}, 0x20}, 0x1}, 0x0) [ 185.302424] ? lock_downgrade+0x8f0/0x8f0 [ 185.306587] ? check_same_owner+0x340/0x340 [ 185.310916] ? rcu_note_context_switch+0x730/0x730 [ 185.315950] ? lock_acquire+0x1e4/0x540 [ 185.319938] __should_failslab+0x124/0x180 [ 185.324184] should_failslab+0x9/0x14 [ 185.328019] __kmalloc+0x2c8/0x760 [ 185.331573] ? kasan_check_write+0x14/0x20 [ 185.335823] ? __init_rwsem+0x1cc/0x2a0 [ 185.339807] ? do_raw_write_unlock.cold.8+0x49/0x49 [ 185.344832] ? prealloc_shrinker+0x124/0x480 [ 185.349249] ? __lockdep_init_map+0x105/0x590 [ 185.353743] prealloc_shrinker+0x124/0x480 [ 185.357968] ? __init_waitqueue_head+0x9e/0x150 [ 185.362633] ? inactive_list_is_low+0x850/0x850 [ 185.367300] ? __lockdep_init_map+0x105/0x590 [ 185.371793] alloc_super+0x8dd/0xb10 [ 185.375501] ? destroy_unused_super.part.11+0x110/0x110 [ 185.380854] ? lock_downgrade+0x8f0/0x8f0 [ 185.384996] ? kasan_check_read+0x11/0x20 [ 185.389240] ? do_raw_spin_trylock+0x1c0/0x1c0 [ 185.393819] ? kasan_check_write+0x14/0x20 [ 185.398041] ? do_raw_spin_lock+0xc1/0x200 [ 185.402280] sget_userns+0x276/0x860 [ 185.405988] ? kill_litter_super+0x60/0x60 [ 185.410221] ? test_single_super+0x10/0x10 [ 185.414448] ? vfs_get_super+0x270/0x270 [ 185.418494] ? kasan_check_read+0x11/0x20 [ 185.422627] ? do_raw_spin_unlock+0xa7/0x2f0 [ 185.427027] ? do_raw_spin_trylock+0x1c0/0x1c0 [ 185.431612] ? kasan_check_write+0x14/0x20 [ 185.435837] ? do_raw_spin_lock+0xc1/0x200 [ 185.440079] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 185.445605] ? ns_capable_common+0x13f/0x170 [ 185.450009] ? kill_litter_super+0x60/0x60 [ 185.454235] sget+0x10b/0x150 [ 185.457330] ? test_single_super+0x10/0x10 [ 185.461557] mount_bdev+0x115/0x3e0 [ 185.465176] ? vfat_mount+0x50/0x50 [ 185.468792] vfat_mount+0x3c/0x50 [ 185.472246] ? setup+0x120/0x120 [ 185.475600] legacy_get_tree+0x131/0x460 [ 185.479666] vfs_get_tree+0x1cb/0x5c0 [ 185.483465] ? vfs_set_fs_source+0x12c/0x180 [ 185.487866] do_mount+0x6f2/0x1e20 [ 185.491407] ? check_same_owner+0x340/0x340 [ 185.495716] ? lock_release+0xa30/0xa30 [ 185.499683] ? copy_mount_string+0x40/0x40 [ 185.503903] ? kasan_kmalloc+0xc4/0xe0 [ 185.507783] ? kmem_cache_alloc_trace+0x318/0x780 [ 185.512615] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 185.518149] ? _copy_from_user+0xdf/0x150 [ 185.522288] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 185.527812] ? copy_mount_options+0x285/0x380 [ 185.532300] ksys_mount+0x12d/0x140 [ 185.535916] __x64_sys_mount+0xbe/0x150 [ 185.539882] do_syscall_64+0x1b9/0x820 [ 185.543756] ? finish_task_switch+0x1d3/0x870 [ 185.548243] ? syscall_return_slowpath+0x5e0/0x5e0 [ 185.553168] ? syscall_return_slowpath+0x31d/0x5e0 [ 185.558086] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 185.563098] ? prepare_exit_to_usermode+0x291/0x3b0 [ 185.568106] ? perf_trace_sys_enter+0xb10/0xb10 [ 185.572772] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 185.577609] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 185.582782] RIP: 0033:0x4584ea [ 185.585954] Code: b8 a6 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 dd 8f fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 ba 8f fb ff c3 66 0f 1f 84 00 00 00 00 00 [ 185.605279] RSP: 002b:00007fb8b6388a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 185.612975] RAX: ffffffffffffffda RBX: 00007fb8b6388b30 RCX: 00000000004584ea [ 185.620229] RDX: 00007fb8b6388ad0 RSI: 0000000020000100 RDI: 00007fb8b6388af0 [ 185.627498] RBP: 0000000020000100 R08: 00007fb8b6388b30 R09: 00007fb8b6388ad0 [ 185.634754] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000014 [ 185.642012] R13: 0000000000000000 R14: 00000000004d3de0 R15: 000000000000002d [ 185.667322] Unknown ioctl 44801 [ 185.678332] openvswitch: netlink: IP tunnel dst address not specified [ 185.714660] Unknown ioctl 44801 09:06:15 executing program 1: r0 = socket$netlink(0x10, 0x3, 0xc) r1 = socket$netlink(0x10, 0x3, 0xc) writev(r0, &(0x7f000037d000)=[{&(0x7f0000199fe1)="1f00000002031900000007000000068100ed853b09000100010100ff3ffe58", 0x1f}], 0x1) writev(r1, &(0x7f0000fb5ff0)=[{&(0x7f0000fb6000)="1f00000002031900000007000000e3800802bb0509000100010100493ffe58", 0x1f}], 0x1) r2 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_inet_SIOCSIFFLAGS(r2, 0x8914, &(0x7f00000000c0)={'lo\x00@\x00', 0x101}) ioctl$sock_inet_SIOCSIFFLAGS(r2, 0x8914, &(0x7f0000000080)={'lo\x00', 0x48100}) 09:06:15 executing program 0: syslog(0x2, &(0x7f0000000000)=""/8, 0x2b0) prctl$seccomp(0x16, 0x1, &(0x7f0000000080)) 09:06:15 executing program 7: r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x1, 0x0) write$RDMA_USER_CM_CMD_JOIN_MCAST(0xffffffffffffff9c, &(0x7f00000000c0)={0x16, 0x98, 0xfa00, {&(0x7f0000000080)={0xffffffffffffffff}, 0x4, 0xffffffffffffffff, 0x30, 0x1, @ib={0x1b, 0x6, 0x1, {"f8fcaf0ec83ae8b4b4ea701c2de4e2a4"}, 0x0, 0x0, 0x9}}}, 0xa0) write$RDMA_USER_CM_CMD_LEAVE_MCAST(r0, &(0x7f0000000180)={0x11, 0x10, 0xfa00, {&(0x7f0000000040), r1}}, 0x18) ioctl$VT_SETMODE(r0, 0x5602, &(0x7f0000000240)={0x0, 0x0, 0x2, 0xffffffff80000000, 0x1}) getsockopt$XDP_STATISTICS(r0, 0x11b, 0x7, &(0x7f00000001c0), &(0x7f0000000200)=0x18) r2 = shmget$private(0x0, 0x1000, 0x1, &(0x7f0000fff000/0x1000)=nil) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000280)={0x0, 0x0, 0x0}, &(0x7f00000002c0)=0xc) shmctl$IPC_SET(r2, 0x1, &(0x7f0000000380)={{0x0, 0x0, 0x0, 0x0, r3}, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0x40000000000000}) 09:06:15 executing program 2 (fault-call:1 fault-nth:46): syz_mount_image$vfat(&(0x7f0000000180)='vfat\x00', &(0x7f0000000080)='./file0/file0\x00', 0x0, 0x0, &(0x7f0000001580), 0x0, &(0x7f0000000340)={[{@shortname_win95='shortname=win95', 0x2c}]}) syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f0000000100)='./file0\x00', 0xe004, 0x1, &(0x7f0000000380)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020401000200027000f8", 0x16}], 0x0, &(0x7f0000000340)=ANY=[]) 09:06:15 executing program 6 (fault-call:5 fault-nth:2): r0 = syz_open_dev$sndctrl(&(0x7f00000000c0)='/dev/snd/controlC#\x00', 0x0, 0x0) perf_event_open(&(0x7f0000000280)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8ce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000005000), 0x2}, 0x1000000000c}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r0, 0xc0045516, &(0x7f0000000040)=0x100000006) getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffff9c, 0x84, 0x73, &(0x7f000000d000), &(0x7f0000001000)=0xfea6) ioctl$SNDRV_CTL_IOCTL_PVERSION(r0, 0xc1105517, &(0x7f0000001000)) 09:06:15 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={"6c6f00001e00", {0x2}}) 09:06:15 executing program 4: capset(&(0x7f0000000100)={0x20080522}, &(0x7f0000000140)) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000480)={'bond_slave_1\x00', &(0x7f0000000040)=ANY=[@ANYBLOB="7b00c972015ce50f30128ca61e0000f746c200000400"]}) [ 185.830813] FAULT_INJECTION: forcing a failure. [ 185.830813] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 185.842704] CPU: 0 PID: 12912 Comm: syz-executor6 Not tainted 4.18.0-rc5-next-20180720+ #12 [ 185.851201] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 185.860552] Call Trace: [ 185.863146] dump_stack+0x1c9/0x2b4 [ 185.866774] ? dump_stack_print_info.cold.2+0x52/0x52 [ 185.871959] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 185.876966] ? bpf_prog_kallsyms_find+0xde/0x4c0 [ 185.881720] should_fail.cold.4+0xa/0x11 [ 185.885789] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 185.890885] ? lock_downgrade+0x8f0/0x8f0 [ 185.895039] ? perf_trace_run_bpf_submit+0x269/0x3b0 [ 185.900140] ? kasan_check_read+0x11/0x20 [ 185.904284] ? trace_hardirqs_on+0x10/0x10 [ 185.908515] ? perf_tp_event+0xc40/0xc40 [ 185.912576] ? is_bpf_text_address+0xd7/0x170 [ 185.917083] ? kernel_text_address+0x79/0xf0 [ 185.921487] ? memset+0x31/0x40 [ 185.924760] ? perf_trace_lock+0xde/0x920 [ 185.928900] ? perf_trace_lock_acquire+0x4f9/0x9a0 [ 185.933823] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 185.939367] ? should_fail+0x246/0xd86 [ 185.943255] ? zap_class+0x740/0x740 [ 185.946961] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 185.952052] ? save_stack+0x43/0xd0 [ 185.955681] __alloc_pages_nodemask+0x36e/0xdb0 [ 185.960337] ? __x64_sys_ioctl+0x73/0xb0 [ 185.964386] ? do_syscall_64+0x1b9/0x820 [ 185.968435] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 185.973811] ? __alloc_pages_slowpath+0x2d00/0x2d00 [ 185.978831] ? perf_trace_lock+0xde/0x920 [ 185.982995] ? lock_acquire+0x1e4/0x540 [ 185.986973] ? fs_reclaim_acquire+0x20/0x20 [ 185.991285] ? lock_downgrade+0x8f0/0x8f0 [ 185.995425] ? lock_release+0xa30/0xa30 [ 185.999393] ? check_same_owner+0x340/0x340 [ 186.003704] ? kasan_unpoison_shadow+0x35/0x50 [ 186.008279] cache_grow_begin+0x91/0x710 [ 186.012340] __kmalloc+0x688/0x760 [ 186.015874] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 186.020878] ? snd_ctl_elem_add+0x5ce/0x14c0 [ 186.025294] snd_ctl_elem_add+0x5ce/0x14c0 [ 186.029530] ? snd_ctl_new1+0x700/0x700 [ 186.033511] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 186.039039] ? _copy_from_user+0xdf/0x150 [ 186.043185] snd_ctl_elem_add_user+0xb8/0x170 [ 186.047671] ? snd_ctl_elem_add_compat+0x3e0/0x3e0 [ 186.052617] ? lock_release+0xa30/0xa30 [ 186.056579] ? zap_class+0x740/0x740 [ 186.060284] snd_ctl_ioctl+0x480/0x1110 [ 186.064250] ? snd_ctl_elem_add_user+0x170/0x170 [ 186.069020] ? __fget+0x4d5/0x740 [ 186.072479] ? ksys_dup3+0x690/0x690 [ 186.076194] ? kasan_check_write+0x14/0x20 [ 186.080418] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 186.085335] ? fsnotify+0xbac/0x14e0 [ 186.089059] ? vfs_write+0x2f3/0x560 [ 186.093035] ? snd_ctl_elem_add_user+0x170/0x170 [ 186.097785] do_vfs_ioctl+0x1de/0x1720 [ 186.101663] ? fsnotify_first_mark+0x350/0x350 [ 186.106236] ? ioctl_preallocate+0x300/0x300 [ 186.110632] ? __fget_light+0x2f7/0x440 [ 186.114596] ? fget_raw+0x20/0x20 [ 186.118045] ? __sb_end_write+0xac/0xe0 [ 186.122029] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 186.127561] ? fput+0x130/0x1a0 [ 186.130841] ? ksys_write+0x1ae/0x260 [ 186.134639] ? security_file_ioctl+0x94/0xc0 [ 186.139043] ksys_ioctl+0xa9/0xd0 [ 186.142493] __x64_sys_ioctl+0x73/0xb0 [ 186.146389] do_syscall_64+0x1b9/0x820 [ 186.150273] ? finish_task_switch+0x1d3/0x870 [ 186.154759] ? syscall_return_slowpath+0x5e0/0x5e0 [ 186.159678] ? syscall_return_slowpath+0x31d/0x5e0 [ 186.164606] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 186.169612] ? prepare_exit_to_usermode+0x291/0x3b0 [ 186.174626] ? perf_trace_sys_enter+0xb10/0xb10 [ 186.179284] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 186.184125] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 186.189302] RIP: 0033:0x455ab9 [ 186.192475] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 186.211866] RSP: 002b:00007f62bece7c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 186.219567] RAX: ffffffffffffffda RBX: 00007f62bece86d4 RCX: 0000000000455ab9 [ 186.226821] RDX: 0000000020001000 RSI: 00000000c1105517 RDI: 0000000000000013 [ 186.234077] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 186.241335] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015 [ 186.248591] R13: 00000000004c5848 R14: 00000000004cd630 R15: 0000000000000002 [ 186.268550] device lo entered promiscuous mode 09:06:16 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={"6c6f0000001e00", {0x2}}) [ 186.276703] audit: type=1326 audit(1532163976.086:3): auid=4294967295 uid=0 gid=0 ses=4294967295 pid=12915 comm="syz-executor0" exe="/root/syz-executor0" sig=9 arch=c000003e syscall=202 compat=0 ip=0x455ab9 code=0x0 [ 186.307717] FAULT_INJECTION: forcing a failure. [ 186.307717] name failslab, interval 1, probability 0, space 0, times 0 [ 186.319052] CPU: 1 PID: 12919 Comm: syz-executor2 Not tainted 4.18.0-rc5-next-20180720+ #12 [ 186.327543] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 186.337756] Call Trace: [ 186.340358] dump_stack+0x1c9/0x2b4 [ 186.343986] ? dump_stack_print_info.cold.2+0x52/0x52 [ 186.349173] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 186.354185] ? perf_trace_lock+0xde/0x920 [ 186.358337] should_fail.cold.4+0xa/0x11 [ 186.362399] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 186.367519] ? should_fail+0x246/0xd86 [ 186.371417] ? perf_trace_lock+0x920/0x920 [ 186.375652] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 186.380756] ? kasan_check_read+0x11/0x20 [ 186.384915] ? rcu_is_watching+0x8c/0x150 [ 186.389066] ? is_bpf_text_address+0xd7/0x170 [ 186.393567] ? lock_acquire+0x1e4/0x540 [ 186.397542] ? fs_reclaim_acquire+0x20/0x20 [ 186.402402] ? lock_downgrade+0x8f0/0x8f0 [ 186.406557] ? check_same_owner+0x340/0x340 [ 186.410873] ? check_same_owner+0x340/0x340 [ 186.415193] ? rcu_note_context_switch+0x730/0x730 [ 186.420120] ? rcu_note_context_switch+0x730/0x730 [ 186.425050] __should_failslab+0x124/0x180 [ 186.429284] should_failslab+0x9/0x14 [ 186.433084] kmem_cache_alloc+0x2af/0x760 [ 186.437232] ? __alloc_pages_nodemask+0x6e3/0xdb0 [ 186.442085] getname_kernel+0x54/0x370 [ 186.445975] kern_path+0x1e/0x40 [ 186.449349] lookup_bdev+0x10c/0x250 [ 186.453058] ? blkdev_open+0x280/0x280 [ 186.456944] ? kasan_check_write+0x14/0x20 [ 186.461177] ? do_raw_spin_lock+0xc1/0x200 [ 186.465434] blkdev_get_by_path+0x1f/0xe0 [ 186.469591] mount_bdev+0x61/0x3e0 [ 186.473131] ? vfat_mount+0x50/0x50 [ 186.476760] vfat_mount+0x3c/0x50 [ 186.480214] ? setup+0x120/0x120 [ 186.483579] legacy_get_tree+0x131/0x460 [ 186.487644] vfs_get_tree+0x1cb/0x5c0 [ 186.491443] ? vfs_set_fs_source+0x12c/0x180 [ 186.495849] do_mount+0x6f2/0x1e20 [ 186.499385] ? check_same_owner+0x340/0x340 [ 186.503702] ? lock_release+0xa30/0xa30 [ 186.507677] ? copy_mount_string+0x40/0x40 [ 186.511908] ? kasan_kmalloc+0xc4/0xe0 [ 186.515809] ? kmem_cache_alloc_trace+0x318/0x780 [ 186.520654] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 186.526186] ? _copy_from_user+0xdf/0x150 [ 186.530363] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 186.535894] ? copy_mount_options+0x285/0x380 [ 186.540392] ksys_mount+0x12d/0x140 [ 186.544020] __x64_sys_mount+0xbe/0x150 [ 186.547996] do_syscall_64+0x1b9/0x820 [ 186.551881] ? finish_task_switch+0x1d3/0x870 [ 186.556373] ? syscall_return_slowpath+0x5e0/0x5e0 [ 186.561300] ? syscall_return_slowpath+0x31d/0x5e0 [ 186.566230] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 186.571250] ? prepare_exit_to_usermode+0x291/0x3b0 [ 186.576264] ? perf_trace_sys_enter+0xb10/0xb10 [ 186.580932] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 186.585782] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 186.590968] RIP: 0033:0x4584ea [ 186.594145] Code: b8 a6 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 dd 8f fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 ba 8f fb ff c3 66 0f 1f 84 00 00 00 00 00 [ 186.613494] RSP: 002b:00007fb8b6388a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 186.621204] RAX: ffffffffffffffda RBX: 00007fb8b6388b30 RCX: 00000000004584ea 09:06:16 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)) r0 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vsock\x00', 0x80, 0x0) setsockopt$IPT_SO_SET_ADD_COUNTERS(r0, 0x0, 0x41, &(0x7f0000000040)={'security\x00', 0x5, [{}, {}, {}, {}, {}]}, 0x78) 09:06:16 executing program 4: r0 = socket$inet6(0xa, 0x1, 0x0) ioctl(r0, 0x4000008912, &(0x7f0000000100)="295ee1311f16f477671070") r1 = socket$alg(0x26, 0x5, 0x0) bind$alg(r1, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'tgr160\x00'}, 0x58) r2 = accept$alg(r1, 0x0, 0x0) sendmmsg(r2, &(0x7f0000007f00)=[{{&(0x7f00000056c0)=@can={0x1d}, 0x10, &(0x7f00000000c0)}}, {{&(0x7f0000005900)=@pppoe={0x18, 0x0, {0x0, @link_local={0x1, 0x80, 0xc2}, 'syzkaller0\x00'}}, 0x80, &(0x7f0000007ac0), 0x6c, &(0x7f0000007b00)}}], 0x3fffffffffffe0d, 0x0) r3 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/net/pfkey\x00', 0x400000, 0x0) ioctl$EVIOCGBITSND(r3, 0x80404532, &(0x7f0000000140)=""/107) [ 186.628479] RDX: 00007fb8b6388ad0 RSI: 0000000020000100 RDI: 00007fb8b6388af0 [ 186.635750] RBP: 0000000020000100 R08: 00007fb8b6388b30 R09: 00007fb8b6388ad0 [ 186.643028] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000014 [ 186.650294] R13: 0000000000000000 R14: 00000000004d3de0 R15: 000000000000002e 09:06:16 executing program 2: syz_mount_image$vfat(&(0x7f0000000180)='vfat\x00', &(0x7f0000000080)='./file0/file0\x00', 0x0, 0x0, &(0x7f0000001580), 0x0, &(0x7f0000000340)={[{@shortname_win95='shortname=win95', 0x2c}]}) syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f0000000100)='./file0\x00', 0xe004, 0x1, &(0x7f0000000380)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020401000200027000f8", 0x16}], 0x0, &(0x7f0000000340)=ANY=[]) 09:06:16 executing program 0: getsockopt$sock_cred(0xffffffffffffff9c, 0x1, 0x11, &(0x7f00000001c0)={0x0, 0x0}, &(0x7f0000000200)=0xc) lstat(&(0x7f0000000240)='./file0\x00', &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) r2 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000380)='/dev/sequencer\x00', 0x80, 0x0) r3 = syz_genetlink_get_family_id$team(&(0x7f0000000400)='team\x00') getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000000440)={{{@in=@broadcast, @in, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@local}}}, &(0x7f0000000540)=0xe8) getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffff9c, 0x29, 0x23, &(0x7f0000000580)={{{@in6=@remote, @in=@multicast2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@multicast1}, 0x0, @in6=@ipv4={[], [], @multicast2}}}, &(0x7f0000000680)=0xe8) getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f00000006c0)={{{@in=@dev, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@ipv4={[], [], @multicast1}}, 0x0, @in=@multicast2}}, &(0x7f00000007c0)=0xe8) sendmsg$TEAM_CMD_OPTIONS_SET(r2, &(0x7f00000009c0)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x402080}, 0xc, &(0x7f0000000980)={&(0x7f0000000800)={0x170, r3, 0x800, 0x70bd27, 0x25dfdbff, {0x1}, [{{0x8, 0x1, r4}, {0xc4, 0x2, [{0x40, 0x1, @priority={{{0x24, 0x1, 'priority\x00'}, {0x8, 0x3, 0xe}, {0x8, 0x4, 0x100}}, {0x8, 0x6, r5}}}, {0x44, 0x1, @name={{0x24, 0x1, 'mode\x00'}, {0x8, 0x3, 0x5}, {0x14, 0x4, 'activebackup\x00'}}}, {0x3c, 0x1, @lb_tx_method={{0x24, 0x1, 'lb_tx_method\x00'}, {0x8, 0x3, 0x5}, {0xc, 0x4, 'hash\x00'}}}]}}, {{0x8, 0x1, r6}, {0x88, 0x2, [{0x38, 0x1, @mcast_rejoin_interval={{0x24, 0x1, 'mcast_rejoin_interval\x00'}, {0x8, 0x3, 0x3}, {0x8, 0x4, 0x100000000}}}, {0x4c, 0x1, @lb_tx_method={{0x24, 0x1, 'lb_tx_method\x00'}, {0x8, 0x3, 0x5}, {0x1c, 0x4, 'hash_to_port_mapping\x00'}}}]}}]}, 0x170}, 0x1, 0x0, 0x0, 0x200000c0}, 0x800) syz_mount_image$iso9660(&(0x7f0000000040)='iso9660\x00', &(0x7f0000000080)='./file0\x00', 0x4da0, 0x1, &(0x7f0000000180)=[{&(0x7f00000000c0)="7e0ca315a76e2dce1a0246747b3af004190a40694d42dbf5315780c69cb4467467eaab4696022266d97aa0955b14c0eb0c7efe5bfa442a9979d288c4f63576f82d7f870e7b8c825bc415038fde07026e76f73dd75f18228a098391575c230e930448f1777f23d4ffed3adb47603d39c3fd250cf80d1749a40ccaeeb0b1231d97b0f394b56b52124215a47a65c4f6a917c8212439fdf884332b44d3df80a8", 0x9e, 0x8}], 0x10810, &(0x7f0000000a00)=ANY=[@ANYBLOB="636865636b3d7374726963742c6d61703d61636f726e2c63727566742c6d61703d61636f726e2c757466382c6d61703d6f66662c636865636b3d7374726963742c7569643d929fd11c9a2c6fd7832af930ba3f84b189eebd78912db57ef60d2106092adb03c6282adff9316b3c65851b1f40fb", @ANYRESHEX=r0, @ANYBLOB=',gid=', @ANYRESHEX=r1, @ANYBLOB=',\x00']) request_key(&(0x7f0000000000)='asymmetric\x00', &(0x7f0000001ffb)={0x73, 0x79, 0x7a}, &(0x7f0000001fee)="520972757374e363757367725669693a4465", 0x0) 09:06:16 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)) r0 = syz_open_dev$admmidi(&(0x7f0000000000)='/dev/admmidi#\x00', 0x9, 0x2) getsockopt$inet_sctp_SCTP_NODELAY(r0, 0x84, 0x3, &(0x7f00000002c0), &(0x7f0000000300)=0x4) getsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r0, 0x84, 0x76, &(0x7f0000000100)={0x0, 0x8d}, &(0x7f0000000140)=0x8) getsockopt$inet_sctp6_SCTP_GET_ASSOC_STATS(r0, 0x84, 0x70, &(0x7f0000000180)={r1, @in6={{0xa, 0x4e21, 0xd0e, @mcast2={0xff, 0x2, [], 0x1}, 0x8}}, [0x80, 0x7, 0x4, 0x4, 0x8, 0x5b, 0x1884, 0x1, 0x8000, 0x800000000000, 0x0, 0xffff, 0x7, 0xfffffffffffffffa, 0x6]}, &(0x7f0000000280)=0x100) getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f0000000340)={r2, 0xe4c8}, &(0x7f0000000400)=0x8) ioctl$KDGKBDIACR(r0, 0x4b4a, &(0x7f0000000040)=""/185) 09:06:16 executing program 5: r0 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080)='/dev/snapshot\x00', 0x0, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x3, 0x4, 0x4, 0x3e, 0x0, r0, 0x4, [0x305f, 0xa]}, 0x2c) setsockopt$ALG_SET_AEAD_AUTHSIZE(r0, 0x117, 0x5, 0x0, 0x1) 09:06:16 executing program 7: r0 = socket$vsock_stream(0x28, 0x1, 0x0) r1 = dup3(r0, 0xffffffffffffffff, 0x80000) ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_TIMER(r1, 0xc0605345, &(0x7f0000000000)={0x2, 0x1, {0xffffffffffffffff, 0x2, 0x4, 0x3, 0xfff}}) shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)) 09:06:16 executing program 5: r0 = socket$inet_sctp(0x2, 0x1, 0x84) sendto$inet(r0, &(0x7f0000a34fff)='H', 0x1, 0x0, &(0x7f0000030ff0)={0x2, 0x0, @local={0xac, 0x14, 0xffffffffffffffff, 0xaa}}, 0x10) sendto$inet(r0, &(0x7f000026cfff)="c6", 0x1, 0x0, &(0x7f000052a000)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff, 0xbb}}, 0x10) shutdown(r0, 0x1) setsockopt$inet_sctp_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f000062fff8)={0x0, 0x2000000001}, 0x8) setsockopt$inet_sctp_SCTP_STREAM_SCHEDULER_VALUE(r0, 0x84, 0x7c, &(0x7f0000b94ff8)={0x0, 0x0, 0x1}, 0x8) setsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00005c0fe0)={0x3}, 0x20) write(r0, &(0x7f0000ce6ffe)="da", 0x1) setsockopt$inet_sctp_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f0000000180), 0x8) bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e23}, 0x10) 09:06:16 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000000)) socketpair(0x1, 0x4000006, 0x4, &(0x7f0000000100)) 09:06:16 executing program 0: r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001fec)={0x5, 0x100000084, 0xff, 0x1}, 0x2c) r1 = syz_open_dev$sndpcmp(&(0x7f0000000100)='/dev/snd/pcmC#D#p\x00', 0x6a2, 0x100) mmap(&(0x7f000000d000/0x1000)=nil, 0x1000, 0xfffffffffffffffe, 0x34, 0xffffffffffffffff, 0x0) r2 = socket$inet6(0xa, 0x1000000000002, 0x0) inotify_add_watch(r1, &(0x7f0000000180)='./file0\x00', 0x20000000) ioctl(r2, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r3 = socket$inet(0x2, 0x4000000000000001, 0x0) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000040)={r0, 0x28, &(0x7f0000000000)={0x0, 0x0}}, 0x10) bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000080)={r4, 0x49, 0x10}, 0xc) bind$inet(r3, &(0x7f0000deb000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14}}, 0x10) sendto$inet(r3, &(0x7f0000000040), 0x0, 0x20000800, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) sendto$inet(r3, &(0x7f0000000000), 0xfffffffffffffe4e, 0x0, &(0x7f00000000c0)={0x2}, 0x6) socket$inet(0x2, 0x806, 0xd7e) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f000000cff9)={r0, 0xfffffede, &(0x7f000000c000)}, 0x10) 09:06:16 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={'lo\x00\x00\x00`\x00', {0x2}}) 09:06:16 executing program 1: mkdir(&(0x7f0000000300)='./control\x00', 0x0) mmap(&(0x7f0000010000/0x2000)=nil, 0x2000, 0x1, 0x31, 0xffffffffffffffff, 0x0) r0 = userfaultfd(0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000e4c000)={0xaa}) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000043fe0)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1}) r1 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r1, &(0x7f0000011fd2)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f0000f86000)='./control/file0\x00') rmdir(&(0x7f0000000040)='./control/file0\x00') setsockopt$inet_MCAST_MSFILTER(r1, 0x0, 0x30, &(0x7f0000000440)={0x20, {{0x2}}, 0x1, 0x2, [{{0x2, 0x0, @rand_addr}}, {{0x2, 0x4e22, @dev={0xac, 0x14, 0x14}}}]}, 0x190) lgetxattr(&(0x7f00000003c0)='\x00', &(0x7f0000000400)=@known='security.selinux\x00', &(0x7f00000001c0)=""/197, 0xc5) mkdir(&(0x7f0000000100)='./file0\x00', 0x0) mount(&(0x7f0000000180)='./file0\x00', &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000300)='ramfs\x00', 0x0, &(0x7f0000000380)) umount2(&(0x7f0000000380)='./file0\x00', 0x0) close(r0) socket$nl_netfilter(0x10, 0x3, 0xc) 09:06:16 executing program 6 (fault-call:5 fault-nth:3): r0 = syz_open_dev$sndctrl(&(0x7f00000000c0)='/dev/snd/controlC#\x00', 0x0, 0x0) perf_event_open(&(0x7f0000000280)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8ce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000005000), 0x2}, 0x1000000000c}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r0, 0xc0045516, &(0x7f0000000040)=0x100000006) getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffff9c, 0x84, 0x73, &(0x7f000000d000), &(0x7f0000001000)=0xfea6) ioctl$SNDRV_CTL_IOCTL_PVERSION(r0, 0xc1105517, &(0x7f0000001000)) 09:06:16 executing program 7: shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)) r0 = semget(0x0, 0x7, 0x284) semctl$SEM_STAT(r0, 0x6, 0x12, &(0x7f0000000400)=""/4096) r1 = syz_open_dev$adsp(&(0x7f0000000000)='/dev/adsp#\x00', 0x5, 0x82000) recvfrom$inet(r1, &(0x7f0000000040)=""/45, 0x2d, 0x41, &(0x7f0000000080)={0x2, 0x4e20, @multicast1=0xe0000001}, 0x10) [ 187.048257] FAULT_INJECTION: forcing a failure. [ 187.048257] name failslab, interval 1, probability 0, space 0, times 0 [ 187.059523] CPU: 0 PID: 12970 Comm: syz-executor6 Not tainted 4.18.0-rc5-next-20180720+ #12 [ 187.068022] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 187.077382] Call Trace: [ 187.079989] dump_stack+0x1c9/0x2b4 [ 187.083641] ? dump_stack_print_info.cold.2+0x52/0x52 [ 187.088848] ? perf_tp_event+0xc40/0xc40 [ 187.092959] should_fail.cold.4+0xa/0x11 [ 187.097054] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 187.102187] ? perf_trace_lock_acquire+0x4f9/0x9a0 [ 187.107149] ? perf_trace_lock+0x920/0x920 [ 187.111421] ? perf_trace_lock+0x920/0x920 [ 187.115693] ? kernel_text_address+0x79/0xf0 [ 187.120139] ? lock_acquire+0x1e4/0x540 [ 187.124133] ? snd_ctl_notify+0x266/0x7e0 [ 187.128308] __should_failslab+0x124/0x180 [ 187.132554] should_failslab+0x9/0x14 [ 187.136368] kmem_cache_alloc_trace+0x4b/0x780 [ 187.140998] ? kasan_check_write+0x14/0x20 [ 187.145253] ? do_raw_spin_lock+0xc1/0x200 [ 187.149513] snd_ctl_notify+0x3ad/0x7e0 [ 187.153513] ? snd_ctl_register_ioctl_compat+0x20/0x20 [ 187.158800] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 187.163827] ? snd_ctl_find_hole+0x183/0x240 [ 187.168253] snd_ctl_add+0x7c7/0xae0 [ 187.172000] ? snd_ctl_dev_free+0x250/0x250 [ 187.176336] ? kasan_unpoison_shadow+0x35/0x50 [ 187.180933] ? kasan_kmalloc+0xc4/0xe0 [ 187.184869] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 187.189893] ? snd_ctl_elem_add+0x5ce/0x14c0 [ 187.194317] snd_ctl_elem_add+0x99d/0x14c0 09:06:17 executing program 2: syz_mount_image$vfat(&(0x7f0000000180)='vfat\x00', &(0x7f0000000080)='./file0/file0\x00', 0x0, 0x0, &(0x7f0000001580), 0x0, &(0x7f0000000340)={[{@shortname_win95='shortname=win95', 0x2c}]}) syz_mount_image$vfat(&(0x7f0000000000)='v.at\x00', &(0x7f0000000100)='./file0\x00', 0xe004, 0x1, &(0x7f0000000380)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020401000200027000f8", 0x16}], 0x0, &(0x7f0000000340)=ANY=[]) 09:06:17 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={"6c6f0000000000000000000600", {0x2}}) [ 187.198575] ? snd_ctl_new1+0x700/0x700 [ 187.202561] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 187.208104] ? _copy_from_user+0xdf/0x150 [ 187.212265] snd_ctl_elem_add_user+0xb8/0x170 [ 187.216772] ? snd_ctl_elem_add_compat+0x3e0/0x3e0 [ 187.221751] ? lock_release+0xa30/0xa30 [ 187.225734] ? pid_task+0x115/0x200 [ 187.229372] snd_ctl_ioctl+0x480/0x1110 [ 187.233443] ? snd_ctl_elem_add_user+0x170/0x170 [ 187.238222] ? __fget+0x4d5/0x740 [ 187.241699] ? ksys_dup3+0x690/0x690 [ 187.245434] ? kasan_check_write+0x14/0x20 [ 187.249678] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 187.254617] ? fsnotify+0xbac/0x14e0 [ 187.258340] ? vfs_write+0x2f3/0x560 [ 187.262066] ? snd_ctl_elem_add_user+0x170/0x170 [ 187.266832] do_vfs_ioctl+0x1de/0x1720 [ 187.270729] ? fsnotify_first_mark+0x350/0x350 [ 187.275315] ? __fsnotify_parent+0xcc/0x420 [ 187.279651] ? ioctl_preallocate+0x300/0x300 [ 187.284066] ? __fget_light+0x2f7/0x440 [ 187.288048] ? fget_raw+0x20/0x20 [ 187.292128] ? __sb_end_write+0xac/0xe0 09:06:17 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x123000, 0x0) sendto$llc(r2, &(0x7f0000000180)="bb1ff0c80f10f1d9fd94811f0f629ce0af990e52796a6f47c044b722a9f9d10866c0a1e2c2fd4fb2200e0b40880f6fe9c379f1ac2f41080821ec15487521e482216d29317958bda7da658a27297d66577e9e7c5a552fbabdf4a9baa5f44334d88511c50213e03a4f8ce95665c2b96afffea0f80fae779a5f50aa80ca8ba83f937ab0f733474b71302202413ac2470c98bc531c02bf3901b4816d8197a825303567a0272a490bd42ce1c33e0a3ff5ee47a1aa8965294379c9fc1c217f828024e1c45c0988b5f641b6881bcf1fd508b5", 0xcf, 0x4000, 0x0, 0x0) bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x25dfdbfc, 0x800}, 0xc) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0) ioctl$KVM_GET_CLOCK(r1, 0x8030ae7c, &(0x7f0000000040)) [ 187.296137] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 187.301680] ? fput+0x130/0x1a0 [ 187.304976] ? ksys_write+0x1ae/0x260 [ 187.308799] ? security_file_ioctl+0x94/0xc0 [ 187.313223] ksys_ioctl+0xa9/0xd0 [ 187.316695] __x64_sys_ioctl+0x73/0xb0 [ 187.320600] do_syscall_64+0x1b9/0x820 [ 187.324498] ? finish_task_switch+0x1d3/0x870 [ 187.329004] ? syscall_return_slowpath+0x5e0/0x5e0 [ 187.333938] ? syscall_return_slowpath+0x31d/0x5e0 [ 187.338889] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 187.343908] ? prepare_exit_to_usermode+0x291/0x3b0 [ 187.348917] ? perf_trace_sys_enter+0xb10/0xb10 [ 187.353580] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 187.358421] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 187.363595] RIP: 0033:0x455ab9 [ 187.366766] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 187.386138] RSP: 002b:00007f62bece7c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 187.393836] RAX: ffffffffffffffda RBX: 00007f62bece86d4 RCX: 0000000000455ab9 [ 187.401094] RDX: 0000000020001000 RSI: 00000000c1105517 RDI: 0000000000000013 [ 187.408349] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 187.415605] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015 [ 187.422860] R13: 00000000004c5848 R14: 00000000004cd630 R15: 0000000000000003 [ 187.430159] snd_dummy snd_dummy.0: No memory available to allocate event 09:06:17 executing program 7: fstat(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) getresuid(&(0x7f0000000080), &(0x7f00000000c0)=0x0, &(0x7f0000000100)) r2 = shmget(0x0, 0x1000, 0x10, &(0x7f0000ffe000/0x1000)=nil) shmctl$IPC_SET(r2, 0x1, &(0x7f0000000380)={{0x0, r1, 0x0, 0x0, r0}, 0x0, 0x0, 0xffffffff}) 09:06:17 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={"6c6f00000000000000000100", {0x2}}) 09:06:17 executing program 4: r0 = getpid() sched_setattr(r0, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x0, 0x3}, 0x0) pipe2(&(0x7f0000989000)={0xffffffffffffffff}, 0x0) mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0) r2 = userfaultfd(0x0) ioctl$UFFDIO_API(r2, 0xc018aa3f, &(0x7f0000000000)={0xaa}) ioctl$UFFDIO_REGISTER(r2, 0xc020aa00, &(0x7f0000d62fe0)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1}) r3 = creat(&(0x7f000009aff8)='./file0\x00', 0x0) write$sndseq(r3, &(0x7f0000011fd2)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) syz_mount_image$vfat(&(0x7f00000000c0)='vfat\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000180), 0x1149002, &(0x7f0000000000)=ANY=[]) mount(&(0x7f0000434ff8)='./file0\x00', &(0x7f0000abf000)='./file0\x00', &(0x7f0000f4c000)='jfs\x00', 0x1023402, 0x0) unlink(&(0x7f00003b3000)='./file0\x00') getpeername$packet(r3, &(0x7f0000000040)={0x0, 0x0, 0x0}, &(0x7f0000000100)=0x14) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000140)={'bpq0\x00', r4}) dup2(r1, r2) [ 187.526305] FAT-fs (loop2): bogus number of reserved sectors [ 187.532236] FAT-fs (loop2): Can't find a valid FAT filesystem 09:06:17 executing program 7: r0 = syz_open_dev$audion(&(0x7f00000000c0)='/dev/audio#\x00', 0x8, 0x24000) lstat(&(0x7f0000000100)='./file0\x00', &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0}) ioctl$BLKTRACESTART(r0, 0x1274, 0x0) getgroups(0x9, &(0x7f00000001c0)=[0xffffffffffffffff, 0xee01, 0xffffffffffffffff, 0xee00, 0xee00, 0xee01, 0xffffffffffffffff, 0xee00, 0xee00]) getsockopt$inet6_dccp_int(r0, 0x21, 0xb, &(0x7f0000000140), &(0x7f0000000180)=0x4) mount$fuseblk(&(0x7f0000000000)='/dev/loop0\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='fuseblk\x00', 0x290000, &(0x7f0000000200)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x8000}, 0x2c, {'user_id', 0x3d, r1}, 0x2c, {'group_id', 0x3d, r2}, 0x2c, {[{@allow_other='allow_other', 0x2c}]}}) shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)={{0xfffffffffffffffc}, 0x0, 0x0, 0x7}) accept$packet(r0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @dev}, &(0x7f0000000340)=0x14) 09:06:17 executing program 2: syz_mount_image$vfat(&(0x7f0000000180)='vfat\x00', &(0x7f0000000080)='./file0/file0\x00', 0x0, 0x0, &(0x7f0000001580), 0x0, &(0x7f0000000340)={[{@shortname_win95='shortname=win95', 0x2c}]}) syz_mount_image$vfat(&(0x7f0000000000)='v/at\x00', &(0x7f0000000100)='./file0\x00', 0xe004, 0x1, &(0x7f0000000380)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020401000200027000f8", 0x16}], 0x0, &(0x7f0000000340)=ANY=[]) 09:06:17 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={'lo\x00\x00\x00\x00\x00@\x00', {0x2}}) [ 187.732587] FAT-fs (loop2): bogus number of reserved sectors [ 187.738496] FAT-fs (loop2): Can't find a valid FAT filesystem 09:06:17 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={"6c6f00000000001f00", {0x2}}) 09:06:17 executing program 7: r0 = getegid() shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)={{0x0, 0x0, 0x0, 0x0, r0}}) 09:06:17 executing program 6 (fault-call:5 fault-nth:4): r0 = syz_open_dev$sndctrl(&(0x7f00000000c0)='/dev/snd/controlC#\x00', 0x0, 0x0) perf_event_open(&(0x7f0000000280)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8ce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000005000), 0x2}, 0x1000000000c}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r0, 0xc0045516, &(0x7f0000000040)=0x100000006) getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffff9c, 0x84, 0x73, &(0x7f000000d000), &(0x7f0000001000)=0xfea6) ioctl$SNDRV_CTL_IOCTL_PVERSION(r0, 0xc1105517, &(0x7f0000001000)) 09:06:17 executing program 2: syz_mount_image$vfat(&(0x7f0000000180)='vfat\x00', &(0x7f0000000080)='./file0/file0\x00', 0x0, 0x0, &(0x7f0000001580), 0x0, &(0x7f0000000340)={[{@shortname_win95='shortname=win95', 0x2c}]}) syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f0000000100)='./file0\x00', 0xe004, 0x1, &(0x7f0000000380)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020401000200027000f8", 0x16}], 0x0, &(0x7f0000000340)=ANY=[]) 09:06:17 executing program 5: r0 = socket$inet_sctp(0x2, 0x1, 0x84) sendto$inet(r0, &(0x7f0000a34fff)='H', 0x1, 0x0, &(0x7f0000030ff0)={0x2, 0x0, @local={0xac, 0x14, 0xffffffffffffffff, 0xaa}}, 0x10) sendto$inet(r0, &(0x7f000026cfff)="c6", 0x1, 0x0, &(0x7f000052a000)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff, 0xbb}}, 0x10) shutdown(r0, 0x1) setsockopt$inet_sctp_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f000062fff8)={0x0, 0x2000000001}, 0x8) setsockopt$inet_sctp_SCTP_STREAM_SCHEDULER_VALUE(r0, 0x84, 0x7c, &(0x7f0000b94ff8)={0x0, 0x0, 0x1}, 0x8) setsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00005c0fe0)={0x3}, 0x20) write(r0, &(0x7f0000ce6ffe)="da", 0x1) setsockopt$inet_sctp_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f0000000180), 0x8) bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e23}, 0x10) 09:06:17 executing program 7: r0 = shmget$private(0x0, 0x2000, 0x4, &(0x7f0000ffc000/0x2000)=nil) getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffff9c, 0x0, 0x11, &(0x7f0000000040)={{{@in=@loopback, @in=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@dev}, 0x0, @in=@multicast1}}, &(0x7f0000000140)=0xe8) fstat(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) shmctl$IPC_SET(r0, 0x1, &(0x7f0000000380)={{0x0, 0x0, r2, r1}}) socketpair$inet6(0xa, 0x80800, 0x7fffffffd, &(0x7f0000000000)) 09:06:17 executing program 1: perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) prctl$void(0x4000200000000) 09:06:17 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={"6c6f00000000000600", {0x2}}) 09:06:17 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_inet_SIOCGIFBRDADDR(r0, 0x8919, &(0x7f0000000180)={'syz_tun\x00', {0x2, 0x4e24}}) sendmsg$nl_xfrm(r0, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000000)=@newsa={0x104, 0x1a, 0x1, 0x0, 0x0, {{@in=@multicast1=0xe0000001, @in=@local={0xac, 0x14, 0x14, 0xaa}}, {@in=@multicast1=0xe0000008, 0x0, 0x3c}, @in=@rand_addr, {}, {}, {}, 0x0, 0x0, 0xa, 0x2}, [@coaddr={0x14, 0xe, @in=@rand_addr}]}, 0x104}, 0x1}, 0x0) [ 187.994971] FAULT_INJECTION: forcing a failure. [ 187.994971] name failslab, interval 1, probability 0, space 0, times 0 [ 188.006235] CPU: 0 PID: 13025 Comm: syz-executor6 Not tainted 4.18.0-rc5-next-20180720+ #12 [ 188.014716] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 188.024083] Call Trace: [ 188.026693] dump_stack+0x1c9/0x2b4 [ 188.030328] ? dump_stack_print_info.cold.2+0x52/0x52 [ 188.035937] ? perf_tp_event+0xc40/0xc40 [ 188.040016] should_fail.cold.4+0xa/0x11 [ 188.044082] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 188.049193] ? perf_trace_lock_acquire+0x4f9/0x9a0 [ 188.054124] ? perf_trace_lock+0x920/0x920 [ 188.058367] ? perf_trace_lock+0x920/0x920 [ 188.062699] ? kernel_text_address+0x79/0xf0 [ 188.067116] ? lock_acquire+0x1e4/0x540 [ 188.071086] ? snd_ctl_notify+0x266/0x7e0 [ 188.075269] __should_failslab+0x124/0x180 [ 188.079506] should_failslab+0x9/0x14 [ 188.083312] kmem_cache_alloc_trace+0x4b/0x780 [ 188.087903] ? kasan_check_write+0x14/0x20 [ 188.092131] ? do_raw_spin_lock+0xc1/0x200 [ 188.096367] snd_ctl_notify+0x3ad/0x7e0 [ 188.100354] ? snd_ctl_register_ioctl_compat+0x20/0x20 [ 188.105641] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 188.110662] ? snd_ctl_find_hole+0x183/0x240 [ 188.115114] snd_ctl_add+0x7c7/0xae0 [ 188.118853] ? snd_ctl_dev_free+0x250/0x250 [ 188.123176] ? kasan_unpoison_shadow+0x35/0x50 [ 188.127752] ? kasan_kmalloc+0xc4/0xe0 [ 188.131670] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 188.136714] ? snd_ctl_elem_add+0x5ce/0x14c0 [ 188.141141] snd_ctl_elem_add+0x99d/0x14c0 [ 188.145380] ? snd_ctl_new1+0x700/0x700 [ 188.149347] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 188.154872] ? _copy_from_user+0xdf/0x150 [ 188.159032] snd_ctl_elem_add_user+0xb8/0x170 [ 188.163523] ? snd_ctl_elem_add_compat+0x3e0/0x3e0 [ 188.168478] ? lock_release+0xa30/0xa30 [ 188.172446] ? pid_task+0x115/0x200 [ 188.176064] snd_ctl_ioctl+0x480/0x1110 [ 188.180038] ? snd_ctl_elem_add_user+0x170/0x170 [ 188.184799] ? __fget+0x4d5/0x740 [ 188.188259] ? ksys_dup3+0x690/0x690 [ 188.191975] ? kasan_check_write+0x14/0x20 [ 188.196197] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 188.201125] ? fsnotify+0xbac/0x14e0 [ 188.204838] ? vfs_write+0x2f3/0x560 [ 188.208550] ? snd_ctl_elem_add_user+0x170/0x170 [ 188.213307] do_vfs_ioctl+0x1de/0x1720 [ 188.217211] ? fsnotify_first_mark+0x350/0x350 [ 188.221793] ? __fsnotify_parent+0xcc/0x420 [ 188.226107] ? ioctl_preallocate+0x300/0x300 [ 188.230518] ? __fget_light+0x2f7/0x440 [ 188.234498] ? fget_raw+0x20/0x20 [ 188.237966] ? __sb_end_write+0xac/0xe0 [ 188.242044] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 188.247574] ? fput+0x130/0x1a0 [ 188.250842] ? ksys_write+0x1ae/0x260 [ 188.254641] ? security_file_ioctl+0x94/0xc0 [ 188.259059] ksys_ioctl+0xa9/0xd0 [ 188.262508] __x64_sys_ioctl+0x73/0xb0 [ 188.266402] do_syscall_64+0x1b9/0x820 [ 188.270280] ? finish_task_switch+0x1d3/0x870 [ 188.274770] ? syscall_return_slowpath+0x5e0/0x5e0 [ 188.279705] ? syscall_return_slowpath+0x31d/0x5e0 [ 188.284646] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 188.289667] ? prepare_exit_to_usermode+0x291/0x3b0 [ 188.294688] ? perf_trace_sys_enter+0xb10/0xb10 [ 188.299366] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 188.304219] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 188.309398] RIP: 0033:0x455ab9 [ 188.312579] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 188.331972] RSP: 002b:00007f62bece7c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 188.339680] RAX: ffffffffffffffda RBX: 00007f62bece86d4 RCX: 0000000000455ab9 [ 188.346948] RDX: 0000000020001000 RSI: 00000000c1105517 RDI: 0000000000000013 [ 188.354218] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 188.362093] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015 [ 188.369386] R13: 00000000004c5848 R14: 00000000004cd630 R15: 0000000000000004 [ 188.376693] snd_dummy snd_dummy.0: No memory available to allocate event 09:06:18 executing program 6 (fault-call:5 fault-nth:5): r0 = syz_open_dev$sndctrl(&(0x7f00000000c0)='/dev/snd/controlC#\x00', 0x0, 0x0) perf_event_open(&(0x7f0000000280)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8ce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000005000), 0x2}, 0x1000000000c}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r0, 0xc0045516, &(0x7f0000000040)=0x100000006) getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffff9c, 0x84, 0x73, &(0x7f000000d000), &(0x7f0000001000)=0xfea6) ioctl$SNDRV_CTL_IOCTL_PVERSION(r0, 0xc1105517, &(0x7f0000001000)) 09:06:18 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x80240, 0x4) ioctl$sock_inet_tcp_SIOCOUTQ(r0, 0x5411, &(0x7f0000000040)) shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000380)) getsockopt$inet6_IPV6_IPSEC_POLICY(r0, 0x29, 0x22, &(0x7f00000001c0)={{{@in6=@ipv4={[], [], @loopback}, @in=@multicast2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6}, 0x0, @in6=@ipv4={[], [], @multicast2}}}, &(0x7f00000002c0)=0xe8) mount$9p_fd(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000180)='9p\x00', 0x1, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r0}, 0x2c, {[{@dfltuid={'dfltuid', 0x3d, r1}, 0x2c}, {@msize={'msize', 0x3d, 0x8001}, 0x2c}, {@version_L='version=9p2000.L', 0x2c}, {@mmap='mmap', 0x2c}]}}) ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000080)={'vcan0\x00', 0x0}) openat$null(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/null\x00', 0x0, 0x0) ioctl$sock_inet6_SIOCSIFADDR(r0, 0x8916, &(0x7f0000000140)={@mcast2={0xff, 0x2, [], 0x1}, 0x5d, r2}) 09:06:18 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r1, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'lo\x00', {0x2, 0x0, @broadcast=0xffffffff}}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={"6c6f0000000600", {0x2}}) [ 188.466904] FAULT_INJECTION: forcing a failure. [ 188.466904] name failslab, interval 1, probability 0, space 0, times 0 [ 188.478289] CPU: 0 PID: 13048 Comm: syz-executor6 Not tainted 4.18.0-rc5-next-20180720+ #12 [ 188.486784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 188.496139] Call Trace: [ 188.498742] dump_stack+0x1c9/0x2b4 [ 188.502381] ? dump_stack_print_info.cold.2+0x52/0x52 [ 188.507613] ? perf_tp_event+0xc40/0xc40 [ 188.511689] ? unwind_get_return_address+0x61/0xa0 [ 188.516665] should_fail.cold.4+0xa/0x11 [ 188.520750] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 188.525884] ? perf_trace_lock_acquire+0x4f9/0x9a0 [ 188.530841] ? perf_trace_lock+0x920/0x920 [ 188.535094] ? lock_acquire+0x1e4/0x540 [ 188.539081] ? lock_downgrade+0x8f0/0x8f0 [ 188.543247] ? kasan_check_read+0x11/0x20 [ 188.547401] ? do_raw_spin_trylock+0x1c0/0x1c0 [ 188.551992] ? kasan_check_write+0x14/0x20 [ 188.556240] ? lock_acquire+0x1e4/0x540 [ 188.560242] ? snd_ctl_notify+0x266/0x7e0 [ 188.564410] __should_failslab+0x124/0x180 [ 188.569225] should_failslab+0x9/0x14 [ 188.573035] kmem_cache_alloc_trace+0x4b/0x780 [ 188.577636] ? kasan_check_write+0x14/0x20 [ 188.581879] ? do_raw_spin_lock+0xc1/0x200 [ 188.586134] snd_ctl_notify+0x3ad/0x7e0 [ 188.590138] ? snd_ctl_register_ioctl_compat+0x20/0x20 [ 188.595432] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 188.600545] ? snd_ctl_find_hole+0x183/0x240 [ 188.604973] snd_ctl_add+0x7c7/0xae0 [ 188.608703] ? snd_ctl_dev_free+0x250/0x250 [ 188.613028] ? kasan_unpoison_shadow+0x35/0x50 [ 188.617621] ? kasan_kmalloc+0xc4/0xe0 [ 188.621532] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 188.626561] ? snd_ctl_elem_add+0x5ce/0x14c0 [ 188.630984] snd_ctl_elem_add+0x99d/0x14c0 [ 188.635244] ? snd_ctl_new1+0x700/0x700 [ 188.639237] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 188.644785] ? _copy_from_user+0xdf/0x150 [ 188.648944] snd_ctl_elem_add_user+0xb8/0x170 [ 188.653446] ? snd_ctl_elem_add_compat+0x3e0/0x3e0 [ 188.658428] ? lock_release+0xa30/0xa30 [ 188.662405] ? pid_task+0x115/0x200 [ 188.666046] snd_ctl_ioctl+0x480/0x1110 [ 188.670031] ? snd_ctl_elem_add_user+0x170/0x170 [ 188.674801] ? __fget+0x4d5/0x740 [ 188.678275] ? ksys_dup3+0x690/0x690 [ 188.682010] ? kasan_check_write+0x14/0x20 [ 188.686251] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 188.691198] ? fsnotify+0xbac/0x14e0 [ 188.694945] ? vfs_write+0x2f3/0x560 [ 188.698668] ? snd_ctl_elem_add_user+0x170/0x170 [ 188.703428] do_vfs_ioctl+0x1de/0x1720 [ 188.707320] ? fsnotify_first_mark+0x350/0x350 [ 188.711909] ? __fsnotify_parent+0xcc/0x420 [ 188.716240] ? ioctl_preallocate+0x300/0x300 [ 188.720658] ? __fget_light+0x2f7/0x440 [ 188.724641] ? fget_raw+0x20/0x20 [ 188.728109] ? __sb_end_write+0xac/0xe0 [ 188.732094] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 188.737655] ? fput+0x130/0x1a0 [ 188.740944] ? ksys_write+0x1ae/0x260 [ 188.744764] ? security_file_ioctl+0x94/0xc0 [ 188.749186] ksys_ioctl+0xa9/0xd0 [ 188.752651] __x64_sys_ioctl+0x73/0xb0 [ 188.756547] do_syscall_64+0x1b9/0x820 [ 188.760440] ? finish_task_switch+0x1d3/0x870 [ 188.764943] ? syscall_return_slowpath+0x5e0/0x5e0 [ 188.769916] ? syscall_return_slowpath+0x31d/0x5e0 [ 188.774858] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 188.779882] ? prepare_exit_to_usermode+0x291/0x3b0 [ 188.784904] ? perf_trace_sys_enter+0xb10/0xb10 [ 188.789581] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 188.794440] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 188.799639] RIP: 0033:0x455ab9 [ 188.803116] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 188.822688] RSP: 002b:00007f62bece7c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 188.830410] RAX: ffffffffffffffda RBX: 00007f62bece86d4 RCX: 0000000000455ab9 [ 188.837701] RDX: 0000000020001000 RSI: 00000000c1105517 RDI: 0000000000000013 [ 188.844974] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 188.852244] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015 [ 188.859515] R13: 00000000004c5848 R14: 00000000004cd630 R15: 0000000000000005 [ 188.866825] snd_dummy snd_dummy.0: No memory available to allocate event [ 188.879697] ================================================================== [ 188.887127] BUG: KASAN: slab-out-of-bounds in pdu_read+0x90/0xd0 [ 188.893267] Read of size 65417 at addr ffff880190a25ead by task syz-executor7/13050 [ 188.901063] [ 188.902681] CPU: 1 PID: 13050 Comm: syz-executor7 Not tainted 4.18.0-rc5-next-20180720+ #12 [ 188.911157] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 188.920489] Call Trace: [ 188.923065] dump_stack+0x1c9/0x2b4 [ 188.926681] ? dump_stack_print_info.cold.2+0x52/0x52 [ 188.931856] ? printk+0xa7/0xcf [ 188.935121] ? kmsg_dump_rewind_nolock+0xe4/0xe4 [ 188.939866] ? pdu_read+0x90/0xd0 [ 188.943314] print_address_description+0x6c/0x20b [ 188.948140] ? pdu_read+0x90/0xd0 [ 188.951582] kasan_report.cold.7+0x242/0x30d [ 188.955986] check_memory_region+0x13e/0x1b0 [ 188.960398] memcpy+0x23/0x50 [ 188.963497] pdu_read+0x90/0xd0 [ 188.966765] p9pdu_readf+0x579/0x2170 [ 188.970554] ? p9pdu_writef+0xe0/0xe0 [ 188.974343] ? ksys_dup3+0x690/0x690 [ 188.978043] ? check_same_owner+0x340/0x340 [ 188.982349] ? p9_fd_poll+0x2b0/0x2b0 [ 188.986150] ? finish_wait+0x430/0x430 [ 188.990032] ? kasan_unpoison_shadow+0x35/0x50 [ 188.994609] ? p9_fd_show_options+0x1c0/0x1c0 [ 188.999107] p9_client_create+0x6d0/0x1537 [ 189.003335] ? p9_client_read+0xbb0/0xbb0 [ 189.007471] ? lock_acquire+0x1e4/0x540 [ 189.011442] ? fs_reclaim_acquire+0x20/0x20 [ 189.015756] ? lock_release+0xa30/0xa30 [ 189.019715] ? __lockdep_init_map+0x105/0x590 [ 189.024202] ? kasan_check_write+0x14/0x20 [ 189.028422] ? __init_rwsem+0x1cc/0x2a0 [ 189.032382] ? do_raw_write_unlock.cold.8+0x49/0x49 [ 189.037390] ? __kmalloc_track_caller+0x311/0x760 [ 189.042220] ? save_stack+0xa9/0xd0 [ 189.045829] ? save_stack+0x43/0xd0 [ 189.049449] ? kasan_kmalloc+0xc4/0xe0 [ 189.053324] ? memcpy+0x45/0x50 [ 189.056596] v9fs_session_init+0x21a/0x1a80 [ 189.060905] ? rcu_note_context_switch+0x730/0x730 [ 189.065821] ? legacy_parse_monolithic+0xde/0x1e0 [ 189.070656] ? v9fs_show_options+0x7e0/0x7e0 [ 189.075062] ? lock_release+0xa30/0xa30 [ 189.079026] ? lock_downgrade+0x8f0/0x8f0 [ 189.083161] ? check_same_owner+0x340/0x340 [ 189.087472] ? kasan_unpoison_shadow+0x35/0x50 [ 189.092040] ? kasan_kmalloc+0xc4/0xe0 [ 189.095930] ? kmem_cache_alloc_trace+0x318/0x780 [ 189.100759] ? kasan_unpoison_shadow+0x35/0x50 [ 189.105326] ? kasan_kmalloc+0xc4/0xe0 [ 189.109204] v9fs_mount+0x7c/0x900 [ 189.112733] ? v9fs_drop_inode+0x150/0x150 [ 189.116961] legacy_get_tree+0x131/0x460 [ 189.121013] vfs_get_tree+0x1cb/0x5c0 [ 189.124805] do_mount+0x6f2/0x1e20 [ 189.128341] ? copy_mount_string+0x40/0x40 [ 189.132559] ? kasan_kmalloc+0xc4/0xe0 [ 189.136434] ? kmem_cache_alloc_trace+0x318/0x780 [ 189.141268] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 189.146800] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 189.152322] ? copy_mount_options+0x285/0x380 [ 189.156805] ksys_mount+0x12d/0x140 [ 189.160420] __x64_sys_mount+0xbe/0x150 [ 189.164382] do_syscall_64+0x1b9/0x820 [ 189.168255] ? finish_task_switch+0x1d3/0x870 [ 189.172735] ? syscall_return_slowpath+0x5e0/0x5e0 [ 189.177648] ? syscall_return_slowpath+0x31d/0x5e0 [ 189.182562] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 189.187588] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 189.192421] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 189.197604] RIP: 0033:0x455ab9 [ 189.200778] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 189.220053] RSP: 002b:00007fbfbaa1ac68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 189.227751] RAX: ffffffffffffffda RBX: 00007fbfbaa1b6d4 RCX: 0000000000455ab9 [ 189.235019] RDX: 0000000020000180 RSI: 0000000020000100 RDI: 0000000000000000 [ 189.242277] RBP: 000000000072bea0 R08: 0000000020000400 R09: 0000000000000000 [ 189.249534] R10: 0000000000000001 R11: 0000000000000246 R12: 00000000ffffffff [ 189.256786] R13: 00000000004c0201 R14: 00000000004cfe50 R15: 0000000000000000 [ 189.264056] [ 189.265665] Allocated by task 13050: [ 189.269363] save_stack+0x43/0xd0 [ 189.272800] kasan_kmalloc+0xc4/0xe0 [ 189.276496] __kmalloc+0x14e/0x760 [ 189.280026] p9_fcall_alloc+0x1e/0x90 [ 189.283811] p9_client_prepare_req.part.8+0x132/0xa00 [ 189.288993] p9_client_rpc+0x242/0x1330 [ 189.292953] p9_client_create+0xca4/0x1537 [ 189.297173] v9fs_session_init+0x21a/0x1a80 [ 189.301480] v9fs_mount+0x7c/0x900 [ 189.305009] legacy_get_tree+0x131/0x460 [ 189.309059] vfs_get_tree+0x1cb/0x5c0 [ 189.312845] do_mount+0x6f2/0x1e20 [ 189.316370] ksys_mount+0x12d/0x140 [ 189.319979] __x64_sys_mount+0xbe/0x150 [ 189.323942] do_syscall_64+0x1b9/0x820 [ 189.327813] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 189.332978] [ 189.334588] Freed by task 10976: [ 189.337940] save_stack+0x43/0xd0 [ 189.341376] __kasan_slab_free+0x11a/0x170 [ 189.345591] kasan_slab_free+0xe/0x10 [ 189.349373] kfree+0xd9/0x260 [ 189.352473] kvfree+0x61/0x70 [ 189.355573] vhost_net_release+0x157/0x190 [ 189.359794] __fput+0x376/0x8a0 [ 189.363058] ____fput+0x15/0x20 [ 189.366321] task_work_run+0x1ec/0x2a0 [ 189.370201] exit_to_usermode_loop+0x318/0x380 [ 189.374767] do_syscall_64+0x6be/0x820 [ 189.378642] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 189.383818] [ 189.385429] The buggy address belongs to the object at ffff880190a25e80 [ 189.385429] which belongs to the cache kmalloc-65536 of size 65536 [ 189.398416] The buggy address is located 45 bytes inside of [ 189.398416] 65536-byte region [ffff880190a25e80, ffff880190a35e80) [ 189.410356] The buggy address belongs to the page: [ 189.415283] page:ffffea0006428800 count:1 mapcount:0 mapping:ffff8801da802500 index:0x0 compound_mapcount: 0 [ 189.425236] flags: 0x2fffc0000010200(slab|head) [ 189.429899] raw: 02fffc0000010200 ffffea0006430008 ffffea0006522808 ffff8801da802500 [ 189.437773] raw: 0000000000000000 ffff880190a25e80 0000000100000001 0000000000000000 [ 189.445631] page dumped because: kasan: bad access detected [ 189.451318] [ 189.452925] Memory state around the buggy address: [ 189.457841] ffff880190a2dd80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 189.465184] ffff880190a2de00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 189.472523] >ffff880190a2de80: 00 00 00 00 01 fc fc fc fc fc fc fc fc fc fc fc [ 189.479861] ^ [ 189.484268] ffff880190a2df00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 189.493966] ffff880190a2df80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 189.501396] ================================================================== [ 189.509068] Kernel panic - not syncing: panic_on_warn set ... [ 189.509068] [ 189.516432] CPU: 1 PID: 13050 Comm: syz-executor7 Tainted: G B 4.18.0-rc5-next-20180720+ #12 [ 189.526284] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 189.535631] Call Trace: [ 189.538203] dump_stack+0x1c9/0x2b4 [ 189.541815] ? dump_stack_print_info.cold.2+0x52/0x52 [ 189.546989] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 189.551734] panic+0x238/0x4e7 [ 189.554908] ? add_taint.cold.5+0x16/0x16 [ 189.559044] ? do_raw_spin_unlock+0xa7/0x2f0 [ 189.563441] ? pdu_read+0x90/0xd0 [ 189.566878] kasan_end_report+0x47/0x4f [ 189.570840] kasan_report.cold.7+0x76/0x30d [ 189.575154] check_memory_region+0x13e/0x1b0 [ 189.579542] memcpy+0x23/0x50 [ 189.582717] pdu_read+0x90/0xd0 [ 189.585987] p9pdu_readf+0x579/0x2170 [ 189.589785] ? p9pdu_writef+0xe0/0xe0 [ 189.593566] ? ksys_dup3+0x690/0x690 [ 189.597264] ? check_same_owner+0x340/0x340 [ 189.601569] ? p9_fd_poll+0x2b0/0x2b0 [ 189.605352] ? finish_wait+0x430/0x430 [ 189.609221] ? kasan_unpoison_shadow+0x35/0x50 [ 189.613789] ? p9_fd_show_options+0x1c0/0x1c0 [ 189.618275] p9_client_create+0x6d0/0x1537 [ 189.622494] ? p9_client_read+0xbb0/0xbb0 [ 189.626622] ? lock_acquire+0x1e4/0x540 [ 189.630578] ? fs_reclaim_acquire+0x20/0x20 [ 189.634888] ? lock_release+0xa30/0xa30 [ 189.638855] ? __lockdep_init_map+0x105/0x590 [ 189.643337] ? kasan_check_write+0x14/0x20 [ 189.647551] ? __init_rwsem+0x1cc/0x2a0 [ 189.651508] ? do_raw_write_unlock.cold.8+0x49/0x49 [ 189.656516] ? __kmalloc_track_caller+0x311/0x760 [ 189.661346] ? save_stack+0xa9/0xd0 [ 189.664952] ? save_stack+0x43/0xd0 [ 189.668557] ? kasan_kmalloc+0xc4/0xe0 [ 189.672427] ? memcpy+0x45/0x50 [ 189.675705] v9fs_session_init+0x21a/0x1a80 [ 189.680008] ? rcu_note_context_switch+0x730/0x730 [ 189.684922] ? legacy_parse_monolithic+0xde/0x1e0 [ 189.689749] ? v9fs_show_options+0x7e0/0x7e0 [ 189.694152] ? lock_release+0xa30/0xa30 [ 189.698110] ? lock_downgrade+0x8f0/0x8f0 [ 189.702252] ? check_same_owner+0x340/0x340 [ 189.706556] ? kasan_unpoison_shadow+0x35/0x50 [ 189.711118] ? kasan_kmalloc+0xc4/0xe0 [ 189.714990] ? kmem_cache_alloc_trace+0x318/0x780 [ 189.719823] ? kasan_unpoison_shadow+0x35/0x50 [ 189.724382] ? kasan_kmalloc+0xc4/0xe0 [ 189.728257] v9fs_mount+0x7c/0x900 [ 189.731784] ? v9fs_drop_inode+0x150/0x150 [ 189.736002] legacy_get_tree+0x131/0x460 [ 189.740052] vfs_get_tree+0x1cb/0x5c0 [ 189.743834] do_mount+0x6f2/0x1e20 [ 189.747359] ? copy_mount_string+0x40/0x40 [ 189.751574] ? kasan_kmalloc+0xc4/0xe0 [ 189.755450] ? kmem_cache_alloc_trace+0x318/0x780 [ 189.760278] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 189.765802] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 189.771323] ? copy_mount_options+0x285/0x380 [ 189.775800] ksys_mount+0x12d/0x140 [ 189.779411] __x64_sys_mount+0xbe/0x150 [ 189.783370] do_syscall_64+0x1b9/0x820 [ 189.787585] ? finish_task_switch+0x1d3/0x870 [ 189.792059] ? syscall_return_slowpath+0x5e0/0x5e0 [ 189.796970] ? syscall_return_slowpath+0x31d/0x5e0 [ 189.801882] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 189.806883] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 189.811723] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 189.816893] RIP: 0033:0x455ab9 [ 189.820060] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 189.839223] RSP: 002b:00007fbfbaa1ac68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 189.846916] RAX: ffffffffffffffda RBX: 00007fbfbaa1b6d4 RCX: 0000000000455ab9 [ 189.854166] RDX: 0000000020000180 RSI: 0000000020000100 RDI: 0000000000000000 [ 189.861415] RBP: 000000000072bea0 R08: 0000000020000400 R09: 0000000000000000 [ 189.868668] R10: 0000000000000001 R11: 0000000000000246 R12: 00000000ffffffff [ 189.875916] R13: 00000000004c0201 R14: 00000000004cfe50 R15: 0000000000000000 [ 189.883664] Dumping ftrace buffer: [ 189.887187] (ftrace buffer empty) [ 189.890882] Kernel Offset: disabled [ 189.894490] Rebooting in 86400 seconds..