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") r1 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcs\x00', 0x12000, 0x0) ioctl$TCSETSF(r1, 0x5404, &(0x7f0000001100)={0x0, 0x80000001, 0x100000001, 0x4, 0xac2, 0x9, 0xfffffffffffffa22, 0x9, 0x4, 0x0, 0x2, 0x3}) bind$vsock_stream(r0, &(0x7f0000000040)={0x28, 0x0, 0x0, @any=0xffffffff}, 0x10) bind$vsock_stream(r0, &(0x7f00000000c0)={0x28, 0x0, 0x0, @host=0x2}, 0x10) flock(r1, 0x9) 2018/04/30 22:50:16 executing program 2: syz_mount_image$iso9660(&(0x7f0000000040)='iso9660\x00', &(0x7f00000000c0)='./file0\x00', 0xfffffffffffffffe, 0x1, &(0x7f0000000280)=[{&(0x7f0000000140)="01434430303101004c494e55582020202020202020202020202020202020202020202020202020204344524f4d20202020202020202020203020202020202020202020202020202000000000000000de4f0200200000024f000000000000000000000000000000000000000000000000000000000000000001000001010000010008", 0x82, 0x8000}], 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="22e18799cc3fe1241b6deee0c19ae8ff03dff146cea9cf52050ea0e599f99b0eb800"]) 2018/04/30 22:50:16 executing program 6: r0 = socket$inet6(0xa, 0x80800, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000f5ffe0)={@dev={0xfe, 0x80}, 0x1e, 0x0, 0x3, 0x1, 0x0, 0xfffffffffffffffc}, 0xffa5) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000080)={@dev={0xfe, 0x80}, 0x400000000400, 0x0, 0x3}, 0x20) 2018/04/30 22:50:16 executing program 3: r0 = syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x8, 0x319000) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000000000, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x8000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0x0, r0, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) socketpair(0x1, 0x80803, 0x8a, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$TUNSETVNETHDRSZ(r2, 0x400454d8, &(0x7f0000000080)=0x81) r4 = syz_genetlink_get_family_id$ipvs(&(0x7f00000001c0)='IPVS\x00') sendmsg$IPVS_CMD_DEL_DEST(r2, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x102000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000200)=ANY=[@ANYBLOB, @ANYRES16=r4, @ANYBLOB="000525bd7000fddbdf25070000000800050000800000480003000800030002000000080008000400000014000200626f6e645f736c6176655f30000000000800030003000000080003000200000008000300000000000800080001000000080004000600000008000400ab0000002c000300080003000400000008000500e000000208000500ac1414aa08000400050000000800080040000000"], 0xa0}, 0x1, 0x0, 0x0, 0x40084}, 0x20000000) connect$inet6(r1, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x2000000}, 0x1c) syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1) setsockopt$netlink_NETLINK_PKTINFO(r3, 0x10e, 0x3, &(0x7f0000000140), 0x4) 2018/04/30 22:50:16 executing program 0: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_inet_tcp_SIOCINQ(r0, 0x541b, &(0x7f0000000040)) 2018/04/30 22:50:16 executing program 5: mkdir(&(0x7f0000000100)='./control\x00', 0x0) r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000001340)='/dev/vcs\x00', 0x400000, 0x0) ioctl$EVIOCGVERSION(r0, 0x80044501, &(0x7f0000001380)=""/172) r1 = creat(&(0x7f0000000080)='./control/file0\x00', 0x0) mmap(&(0x7f0000011000/0x2000)=nil, 0x2000, 0x1, 0x31, 0xffffffffffffffff, 0x0) r2 = userfaultfd(0x0) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000000200)={0xaa}) ioctl$UFFDIO_REGISTER(r2, 0xc020aa00, &(0x7f00000000c0)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1}) r3 = creat(&(0x7f000078dff8)='./file0\x00', 0x0) write$sndseq(r3, &(0x7f0000011fd2)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) getsockname$netrom(r1, &(0x7f0000000000), &(0x7f0000000040)=0x10) pwrite64(r3, &(0x7f00000003c0), 0x0, 0x0) utime(&(0x7f0000000180)='./file0\x00', &(0x7f0000001440)) dup2(r1, r2) r4 = request_key(&(0x7f00000001c0)='.dead\x00', &(0x7f0000001480)={0x73, 0x79, 0x7a, 0x0}, &(0x7f00000014c0)='/dev/vcs\x00', 0xfffffffffffffffb) r5 = request_key(&(0x7f0000001500)='rxrpc_s\x00', &(0x7f0000001540)={0x73, 0x79, 0x7a, 0x1}, &(0x7f0000001580)="8176626f786e65743100", r4) r6 = request_key(&(0x7f00000015c0)='.request_key_auth\x00', &(0x7f0000001600)={0x73, 0x79, 0x7a, 0x3}, &(0x7f0000001640)='/dev/vcs\x00', 0xfffffffffffffff9) keyctl$dh_compute(0x17, &(0x7f0000001680)={r4, r5, r6}, &(0x7f00000016c0)=""/227, 0xe3, &(0x7f0000001880)={&(0x7f00000017c0)={'poly1305-simd\x00'}, &(0x7f0000001800)="7d444a5a2be84719289d7cbf0b7bf0d3b445b1e34dfb2c0686270774435f30e532eaad1834cf53484c7c0be20ba80e4b833ac36a378a9fc7dd949aef0ab650916245c5a49bf06029289a9f7a7732955100", 0x51}) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000140)={r3, &(0x7f0000000240)="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", &(0x7f0000001240)="8479f4df8948db574dad45f08d8604e4b3e77dbdf38c921753e90f00f140bd25b8431eef1fb05612ea6a21789bd3e761ec414249c4b2e17c8a7d3e4c63e9758a4cc6ebc036850564736bb9b25d8d955821b07681ccf10c3a35cd3256bc8810ed25b5c201bc68bb74ac27c4bfd29b6111d9b2df7046310e5498eaf5497830b0f7281e3a2a33aec349ba1ca0c901e29c830ce593b9870a4480a3292770a1b4f7d71bf50d12c718bed847478ecc71d3c7dad0367dd2ff785574c4bff46880988c72665a74121f288a99271b30f7b48045e74197cf1f", 0x2}, 0x20) 2018/04/30 22:50:16 executing program 4: syz_emit_ethernet(0x66, &(0x7f0000000240)=ANY=[@ANYBLOB="aaaaaaaaaaaa9a148be70e7686dd6076605100303afffe449bb5d147f59d7980f5000000000000000000000000ffff020000000000000000000000000001870090780094000060c5961e00000000ff010000000000001811000100000001ff020000000000000000000000000001"], 0x0) r0 = add_key(&(0x7f0000000000)='keyring\x00', &(0x7f0000000040)={0x73, 0x79, 0x7a, 0x2}, &(0x7f0000000100)="bb6f080686f70b4fdcffb1c1045025a196d2985d992341980f3e8f9ee468d2f3d21fb8e07c705194035b140fa460e6e252d3868723da72e8cbb509d7e07f0bf5c96e072b16ea6b8ef69016ed34c26ce12be947140dbe413e379b34c16a53a0f43d418d7799d0d7bf0a3d3e61738775f8365b363e67d34e8a2613958856d3a908524eaf61cb030a09706a30f5822ebb3510e6b42fcf1851dd670c02a1", 0x9c, 0xfffffffffffffffd) keyctl$setperm(0x5, r0, 0x80010) keyctl$link(0x8, r0, r0) r1 = fcntl$dupfd(0xffffffffffffffff, 0x406, 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX(0xffffffffffffff9c, 0x8933, &(0x7f0000000080)={'ip6tnl0\x00', 0x0}) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000000c0)={'bridge0\x00', r2}) r3 = fcntl$dupfd(0xffffffffffffff9c, 0x0, 0xffffffffffffff9c) ioctl$TUNGETIFF(r3, 0x800454d2, &(0x7f00000002c0)) mq_getsetattr(r3, &(0x7f00000001c0)={0x99, 0x1, 0x8000, 0x2, 0x101, 0xe2, 0x0, 0x8}, &(0x7f0000000200)) 2018/04/30 22:50:16 executing program 7: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0xc003, 0x0, 0x0, 0x0, 0x0) stat(&(0x7f0000000480)='./file0\x00', &(0x7f00000004c0)) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x1, 0x0) umount2(&(0x7f0000000200)='./file0\x00', 0x3) 2018/04/30 22:50:16 executing program 1: r0 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/qat_adf_ctl\x00', 0x40, 0x0) fcntl$F_SET_FILE_RW_HINT(r0, 0x40e, &(0x7f0000000040)=0x2) r1 = syz_open_dev$midi(&(0x7f0000001000)='/dev/midi#\x00', 0x200, 0x81) syz_open_dev$midi(&(0x7f0000009ff5)='/dev/midi#\x00', 0x2, 0x2103) close(r1) 2018/04/30 22:50:16 executing program 2: mkdir(&(0x7f0000a09000)='./file0\x00', 0x160) r0 = dup(0xffffffffffffffff) getsockopt$inet_sctp_SCTP_NODELAY(r0, 0x84, 0x3, &(0x7f0000000100), &(0x7f0000000140)=0x4) ioctl$PIO_CMAP(r0, 0x4b71, &(0x7f00000000c0)={0x8000, 0x39, 0x80000001, 0x5}) ioctl$KVM_DEASSIGN_PCI_DEVICE(r0, 0x4040ae72, &(0x7f0000000000)={0x7, 0x1000000000000020, 0x0, 0x2, 0x40}) r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0) mkdirat(r1, &(0x7f0000000080)='./file0\x00', 0x0) fcntl$F_GET_RW_HINT(r1, 0x40b, &(0x7f0000000180)) ioctl$EVIOCGID(r0, 0x80084502, &(0x7f0000000740)=""/135) ioctl$sock_inet_tcp_SIOCOUTQNSD(r0, 0x894b, &(0x7f00000001c0)) lstat(&(0x7f0000000540)='./file0\x00', &(0x7f0000000580)={0x0, 0x0, 0x0, 0x0, 0x0}) setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000600)={{{@in6=@local={0xfe, 0x80, [], 0xaa}, @in=@broadcast=0xffffffff, 0x4e24, 0x6, 0x4e24, 0x0, 0xa, 0x20, 0x20, 0x5e, 0x0, r2}, {0x7, 0xf88, 0x9, 0x9, 0x5, 0x5, 0x3, 0x3ff}, {0x8001, 0x0, 0x2782, 0x6}, 0x7, 0x0, 0x2, 0x1, 0x3, 0x3}, {{@in=@local={0xac, 0x14, 0x14, 0xaa}, 0x4d3, 0x7f}, 0xa, @in6=@dev={0xfe, 0x80, [], 0x1b}, 0x3501, 0x3, 0x3, 0x10000, 0x16db, 0x1, 0xfffffffffffffffc}}, 0xe8) bind$rds(r0, &(0x7f0000000700)={0x2, 0x4e22}, 0x10) syz_open_dev$dspn(&(0x7f0000000500)='/dev/dsp#\x00', 0x3f, 0x941) syz_mount_image$xfs(&(0x7f0000000200)='xfs\x00', &(0x7f0000000240)='./file0\x00', 0x9e, 0x2, &(0x7f0000000440)=[{&(0x7f0000000280)="fdabad07decde900c525405aeba75eb60f5279584fc40ebb0ad8a7e22b7436c83a090befa7232f0adb0bac5aad13743c8f1a2511c7c2c300e50166aaf9640a1669ef887f3766452b2f0b5c102530342a1ecc89241fb652690498173ecb1c1592009f45f36bc549b85ddd9d31d708f6ce4666fbcbb878e11832dab6a9a4b9ee1cce3775c6521dc9171c82407878a0661216beb9273211a0b3bd9ecb54bcc0ca8378f778a2ad791d2a631a7cdaf2efdbe11cfb0b6ff6ccf80f0b4d8761140682025c7ef69a39bc10b92185c8a99a2b5e79a50b3b5a12515fabbcd2284b9d6105077d3eff7c08b087", 0xe7, 0x8001}, {&(0x7f0000000380)="38b8a1513e71ca1c85f3772457fc8458dc57e00fd26f68993a6baa7075677e9ad51d335e5a016b9071321280c11bb2bea303fb5ea08832b83d12dc71c3c2673bfb5aa1f834926466b15d35b5de224ea0c9dd38c5dadb073a0ad0b8c24b7589541fec265cf26b90d51864b58fb505a6b27ed02eba67e480cc904f216aef5b990ab1f413ac663540a5f950b826bff44a425937ef13b4e6ab375d1dbaeda9a635ba00707bd1ab2eaeb021adfe", 0xab}], 0x40, &(0x7f0000000480)={'nouuid,', {[{@noalign='noalign', 0x2c}, {@ikeep='ikeep', 0x2c}, {@nolargeio='nolargeio', 0x2c}, {@allocsize={'allocsize', 0x3d, [0x0, 0x32, 0x6d, 0x7f]}, 0x2c}, {@uqnoenforce='uqnoenforce', 0x2c}, {@logbsize={'logbsize', 0x3d, [0x31, 0x31, 0x70, 0x0, 0x7e, 0x30]}, 0x2c}]}}) 2018/04/30 22:50:16 executing program 4: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet(0x2, 0x3, 0x800000800000001) r1 = socket(0xb, 0x20000405, 0x9) accept4$alg(r1, 0x0, 0x0, 0x800) bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x8, 0x6}, 0x2c) getsockopt$inet_mreqsrc(r0, 0x0, 0x53, &(0x7f0000000000)={@dev, @local, @broadcast}, &(0x7f0000000040)=0x2c) ioctl$sock_SIOCGSKNS(r0, 0x894c, &(0x7f0000000080)=0x5) [ 83.678560] XFS (loop2): unknown mount option [allocsize=]. 2018/04/30 22:50:16 executing program 0: r0 = socket$inet6(0xa, 0x2000000000001, 0x0) setsockopt$inet6_int(r0, 0x29, 0x2, &(0x7f0000000080), 0x26a) fdatasync(r0) 2018/04/30 22:50:16 executing program 5: r0 = getpid() sched_setattr(r0, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x0, 0x3}, 0x0) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x0, 0x0) readv(r1, &(0x7f00003fd000)=[{&(0x7f0000853000)=""/255, 0xffffff1f}], 0x1) pipe(&(0x7f0000ef1000)={0xffffffffffffffff}) ioctl$VHOST_VSOCK_SET_GUEST_CID(r2, 0x4008af60, &(0x7f00000000c0)={@reserved=0x1}) vmsplice(r2, &(0x7f00005e5fd0)=[{&(0x7f00005e5000)='r', 0x1}], 0x1, 0x0) r3 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vga_arbiter\x00', 0x2, 0x0) dup2(r3, r3) 2018/04/30 22:50:16 executing program 1: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) r1 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040)='/dev/uinput\x00', 0x1a77889a48606b8d, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x2) bind$alg(r0, &(0x7f0000c73fa8)={0x26, 'hash\x00', 0x0, 0x0, 'cryptd(hmac(sha256-generic))\x00'}, 0x58) r2 = accept$alg(r0, 0x0, 0x0) accept4(r2, 0x0, &(0x7f00000000c0)=0xfd0c, 0x0) [ 83.744685] XFS (loop2): unknown mount option [allocsize=]. 2018/04/30 22:50:16 executing program 3: r0 = syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x8, 0x319000) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000000000, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x8000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0x0, r0, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) socketpair(0x1, 0x80803, 0x8a, &(0x7f0000000040)={0xffffffffffffffff}) ioctl$TUNSETVNETHDRSZ(r2, 0x400454d8, &(0x7f0000000080)=0x81) r3 = syz_genetlink_get_family_id$ipvs(&(0x7f00000001c0)='IPVS\x00') sendmsg$IPVS_CMD_DEL_DEST(r2, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x102000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000200)=ANY=[@ANYBLOB, @ANYRES16=r3, @ANYBLOB="000525bd7000fddbdf25070000000800050000800000480003000800030002000000080008000400000014000200626f6e645f736c6176655f30000000000800030003000000080003000200000008000300000000000800080001000000080004000600000008000400ab0000002c000300080003000400000008000500e000000208000500ac1414aa08000400050000000800080040000000"], 0xa0}, 0x1, 0x0, 0x0, 0x40084}, 0x20000000) connect$inet6(r1, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x2000000}, 0x1c) syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1) 2018/04/30 22:50:17 executing program 2: r0 = socket$inet(0x2, 0x3, 0x800000800000001) setsockopt$inet_mtu(r0, 0x0, 0xa, &(0x7f0000000080)=0x5, 0x4) bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x7, 0x6, 0xffffffffffffffff, 0x0, 0x0, 0xffffffffffffffff, 0x18}, 0x2c) getsockopt$inet_mreqsrc(r0, 0x0, 0x53, &(0x7f0000000000)={@dev, @local, @broadcast}, &(0x7f0000000040)=0x28) 2018/04/30 22:50:18 executing program 0: socket$inet(0x2, 0x2, 0x0) 2018/04/30 22:50:18 executing program 6: r0 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_int(r0, 0x107, 0x7, &(0x7f0000cf9ffc), 0xfffffffffffffeed) 2018/04/30 22:50:18 executing program 4: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e6}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$sndseq(&(0x7f0000000640)='/dev/snd/seq\x00', 0x0, 0x0) read(r0, &(0x7f0000000780)=""/28, 0x1c) ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r0, 0xc0a85320, &(0x7f0000418f50)={{0x80}, 'port1\x00', 0xa9824f69d1376637, 0x20000010800a}) ioctl$SNDRV_SEQ_IOCTL_RUNNING_MODE(r0, 0xc0105303, &(0x7f0000000040)={0x7fff, 0xf03d, 0x3ff}) r1 = memfd_create(&(0x7f0000000000)='[,\x00', 0x0) mmap(&(0x7f0000000000/0xa000)=nil, 0xa000, 0x0, 0x12, r1, 0x0) openat$sequencer2(0xffffffffffffff9c, &(0x7f0000fdbff0)='/dev/sequencer2\x00', 0x0, 0x0) 2018/04/30 22:50:18 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x0, 0x32, r0, 0x800) socket$nl_xfrm(0x10, 0x3, 0x6) r1 = syz_open_dev$adsp(&(0x7f0000000200)='/dev/adsp#\x00', 0x2, 0x0) r2 = socket$alg(0x26, 0x5, 0x0) bind$alg(r2, &(0x7f0000000080)={0x26, 'skcipher\x00', 0x0, 0x0, 'kw(seed-generic)\x00'}, 0x58) bind$alg(r2, &(0x7f0000000600)={0x26, 'aead\x00', 0x0, 0x0, 'seqiv(rfc4106(gcm_base(ctr(aes-aesni),ghash-generic)))\x00'}, 0x58) setsockopt$l2tp_PPPOL2TP_SO_RECVSEQ(0xffffffffffffffff, 0x111, 0x2, 0x0, 0x4) ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, &(0x7f0000001fe8)={0xaa}) getsockopt$inet_sctp_SCTP_LOCAL_AUTH_CHUNKS(r1, 0x84, 0x1b, &(0x7f0000002000)=ANY=[@ANYRES32=0x0, @ANYBLOB="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"], &(0x7f0000000340)=0x1008) getsockopt$inet_sctp_SCTP_PR_SUPPORTED(r1, 0x84, 0x71, &(0x7f0000000380)={r3, 0x2}, &(0x7f00000003c0)=0x8) socketpair$inet6_udp(0xa, 0x2, 0x0, &(0x7f0000000400)) getsockopt$inet_sctp_SCTP_PARTIAL_DELIVERY_POINT(r1, 0x84, 0x13, &(0x7f0000000100)={r4, 0x7}, &(0x7f0000000480)=0xfffffffffffffc67) getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r1, 0x84, 0x7b, &(0x7f0000000180)={r5, 0x80000000}, &(0x7f00000002c0)=0x8) syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0) setsockopt$bt_BT_RCVMTU(0xffffffffffffffff, 0x112, 0xd, &(0x7f0000000300), 0x2) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup\x00', 0x200002, 0x0) ioctl$EVIOCREVOKE(0xffffffffffffffff, 0x40044591, &(0x7f0000000280)=0x4) ioctl$sock_ifreq(0xffffffffffffffff, 0x89b3, &(0x7f00000004c0)={'eql\x00', @ifru_hwaddr=@dev={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa]}}) lseek(0xffffffffffffffff, 0x0, 0x7) getpeername$inet6(r1, &(0x7f0000000700)={0x0, 0x0, 0x0, @local}, &(0x7f0000000740)=0x1c) getpeername$ipx(0xffffffffffffffff, &(0x7f00000001c0), &(0x7f0000000240)=0x10) close(r2) 2018/04/30 22:50:18 executing program 3: r0 = syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x8, 0x319000) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000000000, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x8000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0x0, r0, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) socketpair(0x1, 0x80803, 0x8a, &(0x7f0000000040)={0xffffffffffffffff}) ioctl$TUNSETVNETHDRSZ(r2, 0x400454d8, &(0x7f0000000080)=0x81) r3 = syz_genetlink_get_family_id$ipvs(&(0x7f00000001c0)='IPVS\x00') sendmsg$IPVS_CMD_DEL_DEST(r2, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x102000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000200)=ANY=[@ANYBLOB, @ANYRES16=r3, @ANYBLOB="000525bd7000fddbdf25070000000800050000800000480003000800030002000000080008000400000014000200626f6e645f736c6176655f30000000000800030003000000080003000200000008000300000000000800080001000000080004000600000008000400ab0000002c000300080003000400000008000500e000000208000500ac1414aa08000400050000000800080040000000"], 0xa0}, 0x1, 0x0, 0x0, 0x40084}, 0x20000000) connect$inet6(r1, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x2000000}, 0x1c) 2018/04/30 22:50:18 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x3f, &(0x7f0000000140)=0x6, 0x4) listen(r0, 0x0) socketpair(0x0, 0x7, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000965fec)={0x0, 0xfffffffffffffffd, 0xfffffffffffffffe}, 0x14) munlock(&(0x7f0000ffa000/0x4000)=nil, 0x4000) ioctl$sock_SIOCGPGRP(r2, 0x8904, &(0x7f0000000040)=0x0) sched_setscheduler(r3, 0x2, &(0x7f0000000080)=0x2) bind$inet6(r1, &(0x7f0000000200)={0xa, 0x4e20, 0x8, @empty, 0x10001}, 0x1c) getsockopt$inet_sctp6_SCTP_AUTOCLOSE(r2, 0x84, 0x4, &(0x7f00000000c0), &(0x7f0000000100)=0x4) shutdown(r0, 0x0) get_mempolicy(&(0x7f0000000180), &(0x7f00000001c0), 0x6, &(0x7f0000ffe000/0x1000)=nil, 0x6) 2018/04/30 22:50:18 executing program 5: socketpair$inet6_dccp(0xa, 0x6, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f00000000c0)={@local={0xfe, 0x80, [], 0xaa}, 0x1d6c, 0x2, 0xff, 0x1, 0x2, 0x5, 0x1ff}, 0x20) r2 = socket$inet6(0xa, 0xa, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r2, 0x29, 0x20, &(0x7f0000f5ffe0)={@loopback={0x0, 0x1}, 0x400, 0x0, 0xff, 0x1}, 0x20) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r2, 0x29, 0x20, &(0x7f0000000180)={@loopback={0x0, 0x1}, 0x0, 0x0, 0x3, 0x1}, 0x20) setsockopt$inet6_MCAST_LEAVE_GROUP(r1, 0x29, 0x2d, &(0x7f00000001c0)={0x81, {{0xa, 0x4e20, 0x401, @empty, 0x1f}}}, 0x88) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r2, 0x29, 0x20, &(0x7f0000000080)={@mcast2={0xff, 0x2, [], 0x1}, 0x0, 0x0, 0x3, 0x3}, 0x20) openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x4000, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r2, 0x29, 0x20, &(0x7f0000000000)={@dev={0xfe, 0x80}, 0x400, 0x2}, 0x20) ioctl$void(r2, 0x5451) openat$pfkey(0xffffffffffffff9c, &(0x7f0000000280)='/proc/self/net/pfkey\x00', 0x4000, 0x0) 2018/04/30 22:50:18 executing program 7: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0xc003, 0x0, 0x0, 0x0, 0x0) stat(&(0x7f0000000480)='./file0\x00', &(0x7f00000004c0)) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x1, 0x0) umount2(&(0x7f0000000200)='./file0\x00', 0x3) 2018/04/30 22:50:18 executing program 0: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000080)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(ecb-camellia-asm)\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000ff8000)="0a0775b005e381e5b3b60ced5c54dbb7295df0df8217ad4000000000000000e6", 0x20) r1 = accept$alg(r0, 0x0, 0x0) r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000140)='/dev/hwrng\x00', 0x80, 0x0) ioctl$PIO_FONTRESET(r2, 0x4b6d, 0x0) sendmmsg$alg(r1, &(0x7f0000000180)=[{0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000003680)="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", 0x10cc}], 0x1, &(0x7f0000003880)}], 0x13d, 0x0) recvfrom(r1, &(0x7f0000000000)=""/39, 0x27, 0x0, 0x0, 0x0) recvmsg(r1, &(0x7f0000001440)={&(0x7f0000000280)=@sco, 0x80, &(0x7f00000013c0)=[{&(0x7f0000000300)=""/171, 0xab}, {&(0x7f00000003c0)=""/4096, 0x1000}], 0x2, &(0x7f0000001400)=""/6, 0x6}, 0x0) ioctl$sock_inet_SIOCGIFNETMASK(r1, 0x891b, &(0x7f0000000100)={'bond_slave_0\x00', {0x2, 0x4e20, @rand_addr=0x7fff}}) 2018/04/30 22:50:18 executing program 1: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet(0x2, 0x803, 0x3) setsockopt$IP_VS_SO_SET_ADD(r0, 0x0, 0x482, &(0x7f00000001c0)={0x11, @multicast1=0xe0000001, 0x0, 0x0, 'lblc\x00'}, 0x2c) alarm(0x40) setsockopt$IP_VS_SO_SET_FLUSH(r0, 0x0, 0x485, 0x0, 0x0) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f0000000040)={0x7, 0x401, 0x1, 0x8f, 0x6, 0x967, 0x7, 0x8, 0x0}, &(0x7f00000000c0)=0x20) getsockopt$inet_sctp_SCTP_GET_PEER_ADDRS(r0, 0x84, 0x6c, &(0x7f0000000100)={r1, 0x65, "0b2f3d126eb44552ceced2a8295840bd076ec44c911321aab7115a3b1aa55d9e6fcd3f4c91da3a78a964d32cc9e0f182541a1e59545c25de4f3eaa089bbbaf992eafe2e2887ab9add4f78a4c4f8fd67dcaa6b410bfee99dd3511bb7c36a23d97b912957465"}, &(0x7f0000000180)=0x6d) 2018/04/30 22:50:18 executing program 3: r0 = syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x8, 0x319000) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000000000, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x8000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0x0, r0, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) socketpair(0x1, 0x80803, 0x8a, &(0x7f0000000040)={0xffffffffffffffff}) ioctl$TUNSETVNETHDRSZ(r2, 0x400454d8, &(0x7f0000000080)=0x81) r3 = syz_genetlink_get_family_id$ipvs(&(0x7f00000001c0)='IPVS\x00') sendmsg$IPVS_CMD_DEL_DEST(r2, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x102000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000200)=ANY=[@ANYBLOB, @ANYRES16=r3, @ANYBLOB="000525bd7000fddbdf25070000000800050000800000480003000800030002000000080008000400000014000200626f6e645f736c6176655f30000000000800030003000000080003000200000008000300000000000800080001000000080004000600000008000400ab0000002c000300080003000400000008000500e000000208000500ac1414aa08000400050000000800080040000000"], 0xa0}, 0x1, 0x0, 0x0, 0x40084}, 0x20000000) connect$inet6(r1, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x2000000}, 0x1c) 2018/04/30 22:50:18 executing program 6: r0 = socket$inet6_sctp(0xa, 0x5, 0x84) setsockopt$inet_sctp6_SCTP_I_WANT_MAPPED_V4_ADDR(r0, 0x84, 0xc, &(0x7f0000662000), 0x1) getsockopt$inet_sctp_SCTP_PEER_AUTH_CHUNKS(0xffffffffffffff9c, 0x84, 0x1a, &(0x7f0000000000)={0x0, 0x63, "eb982624235525a73f7aa5bfd85c7b311c2ada4b17a56e302b1b299a951e47ffccf688cfd4a73a920122acfc1e0c6852079a4132924517007c6f12b74cdc8382af162c39496aa3e55bcefd0c82d22c686fb7e0f7d99239cc526d101ecb512a44f119ba"}, &(0x7f0000000080)=0x6b) setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f00000000c0)={r1, @in6={{0xa, 0x4e22, 0x5, @dev={0xfe, 0x80, [], 0x1a}, 0x80000001}}, 0x1, 0x5, 0x6, 0x7fffffff, 0x2}, 0x98) 2018/04/30 22:50:18 executing program 1: perf_event_open(&(0x7f0000348f88)={0x2, 0x70, 0x3e6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_init_net_socket$nfc_llcp(0x27, 0x3, 0x1) bind$nfc_llcp(r0, &(0x7f0000000000)={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "6cb782e4ad88b89d1fd309169f44812107130ee55db70510420aaa96759ecbc36eb9bb12a0124793608dd0e73120004f4dbac39806e4ac714b7ecefa8a934b", 0x15}, 0x60) r1 = openat$urandom(0xffffffffffffff9c, &(0x7f0000000080)='/dev/urandom\x00', 0x40, 0x0) ioctl$sock_bt_cmtp_CMTPCONNADD(r1, 0x400443c8, &(0x7f00000000c0)={r0, 0x6}) close(r0) r2 = openat$sequencer2(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/sequencer2\x00', 0x10001, 0x0) ioctl$SNDRV_CTL_IOCTL_TLV_COMMAND(r2, 0xc008551c, &(0x7f0000000200)=ANY=[@ANYBLOB="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"]) 2018/04/30 22:50:18 executing program 5: r0 = socket(0x10, 0x2, 0xc) socket(0x3, 0xa, 0x20) write(r0, &(0x7f0000594000)="1f0000000104ff00fd4354c007110000f305010008000100010423dcffdf00", 0x1f) write(r0, &(0x7f0000000200)="1f0000000104fffff13bdbc007110009f30501000b000240000000004f6644", 0x1f) [ 85.296798] netlink: 3 bytes leftover after parsing attributes in process `syz-executor5'. [ 85.319189] netlink: 3 bytes leftover after parsing attributes in process `syz-executor5'. 2018/04/30 22:50:18 executing program 6: open(&(0x7f0000000000)='./file0\x00', 0x3fd, 0x0) syz_mount_image$vfat(&(0x7f0000000600)='vfat\x00', &(0x7f0000000740)='./file0\x00', 0x0, 0xe5, &(0x7f0000000980), 0x1800, &(0x7f0000000a00)=ANY=[]) r0 = open(&(0x7f0000000080)='./file0\x00', 0x4000, 0x0) syz_mount_image$ext4(&(0x7f00000002c0)="6536fb6f00", &(0x7f0000000300)='./file1\x00', 0x0, 0xaaaabf1, &(0x7f0000000580), 0x0, &(0x7f0000000040)=ANY=[]) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x0, 0x32, 0xffffffffffffffff, 0x0) symlinkat(&(0x7f0000000040)='./file1\x00', r0, &(0x7f00000000c0)='./file1\x00') read(r0, &(0x7f0000000200)=""/81, 0x10000015b) 2018/04/30 22:50:18 executing program 2: r0 = pkey_alloc(0x0, 0x2) pkey_free(r0) perf_event_open(&(0x7f0000348f88)={0x2, 0x70, 0x3e6}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0xcb5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone(0x0, &(0x7f0000000080), &(0x7f0000000000), &(0x7f0000000100), &(0x7f0000000140)) r1 = open(&(0x7f0000000040)='./file0\x00', 0x4000, 0x80) ioctl$sock_SIOCGSKNS(r1, 0x894c, &(0x7f0000000080)=0xa848) 2018/04/30 22:50:18 executing program 3: r0 = syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x8, 0x319000) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000000000, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x8000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0x0, r0, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) socketpair(0x1, 0x80803, 0x8a, &(0x7f0000000040)={0xffffffffffffffff}) ioctl$TUNSETVNETHDRSZ(r2, 0x400454d8, &(0x7f0000000080)=0x81) r3 = syz_genetlink_get_family_id$ipvs(&(0x7f00000001c0)='IPVS\x00') sendmsg$IPVS_CMD_DEL_DEST(r2, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x102000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000200)=ANY=[@ANYBLOB, @ANYRES16=r3, @ANYBLOB="000525bd7000fddbdf25070000000800050000800000480003000800030002000000080008000400000014000200626f6e645f736c6176655f30000000000800030003000000080003000200000008000300000000000800080001000000080004000600000008000400ab0000002c000300080003000400000008000500e000000208000500ac1414aa08000400050000000800080040000000"], 0xa0}, 0x1, 0x0, 0x0, 0x40084}, 0x20000000) connect$inet6(r1, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x2000000}, 0x1c) 2018/04/30 22:50:18 executing program 0: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x1000000000}, 0x0, 0x0, 0xffffffffffffffff, 0x0) set_mempolicy(0x3, &(0x7f0000000040)=0x1, 0x37) clone(0x0, &(0x7f0000b6b000), &(0x7f0000744000), &(0x7f0000fef000), &(0x7f0000dacfc9)) 2018/04/30 22:50:18 executing program 5: mkdir(&(0x7f0000000000)='./file0\x00', 0xfffffffffffffffc) lsetxattr(&(0x7f000008eff8)='./file0\x00', &(0x7f000067b000)=@known='user.syz\x00', &(0x7f0000000080), 0x0, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) lgetxattr(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)=@known='user.syz\x00', &(0x7f0000000140)=""/221, 0xdd) 2018/04/30 22:50:18 executing program 1: syz_open_procfs(0xffffffffffffffff, &(0x7f0000000180)='smaps\x00') set_mempolicy(0x2, &(0x7f0000000400)=0xffffffff, 0x2) 2018/04/30 22:50:18 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fd8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000140)="0f060f009aab791aa666b869008ed066baf80cb868401288ef66bafc0ced0fc71966ba4100ed0f300f080f300f01c8", 0x2f}], 0xaaaaaaaaaaaad2c, 0x1, &(0x7f00000001c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = syz_open_procfs(0x0, &(0x7f0000000040)='children\x00') r4 = syz_genetlink_get_family_id$team(&(0x7f00000000c0)='team\x00') getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000700)={0x0, @local, @multicast2}, &(0x7f0000000740)=0xc) getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffff9c, 0x29, 0x23, &(0x7f0000000780)={{{@in6, @in=@multicast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@mcast2}, 0x0, @in6=@local}}, &(0x7f0000000880)=0xe8) sendmsg$TEAM_CMD_OPTIONS_SET(r3, &(0x7f00000009c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000980)={&(0x7f00000008c0)={0x98, r4, 0x400, 0x70bd2b, 0x25dfdbfc, {0x1}, [{{0x8, 0x1, r5}, {0x7c, 0x2, [{0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24, 0x1, 'lb_tx_hash_to_port_mapping\x00'}, {0x8, 0x3, 0x3}, {0x8, 0x4, r6}}, {0x8, 0x7}}}, {0x38, 0x1, @lb_stats_refresh_interval={{0x24, 0x1, 'lb_stats_refresh_interval\x00'}, {0x8, 0x3, 0x3}, {0x8, 0x4, 0x8001}}}]}}]}, 0x98}, 0x1, 0x0, 0x0, 0x84}, 0x41) 2018/04/30 22:50:19 executing program 7: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0xc003, 0x0, 0x0, 0x0, 0x0) stat(&(0x7f0000000480)='./file0\x00', &(0x7f00000004c0)) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x1, 0x0) umount2(&(0x7f0000000200)='./file0\x00', 0x3) 2018/04/30 22:50:19 executing program 5: r0 = syz_open_dev$dspn(&(0x7f0000af6ff6)='/dev/dsp#\x00', 0x1, 0x0) mmap$binder(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x1000000, 0x201f, r0, 0x10000000000000) getgroups(0x1, &(0x7f0000000000)=[0xffffffffffffffff]) getgroups(0x1, &(0x7f0000000040)=[r1]) getsockopt$inet_sctp6_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f0000000080)={0x538c, 0x0, 0x8000, 0x1400000000000000, 0xbf, 0x1800, 0x10001, 0x1b, 0x0}, &(0x7f00000000c0)=0x20) setsockopt$inet_sctp6_SCTP_AUTH_DELETE_KEY(r0, 0x84, 0x19, &(0x7f0000000100)={r2, 0x20200000000}, 0x8) 2018/04/30 22:50:19 executing program 3: r0 = syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x8, 0x319000) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000000000, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x8000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0x0, r0, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) socketpair(0x1, 0x80803, 0x8a, &(0x7f0000000040)={0xffffffffffffffff}) ioctl$TUNSETVNETHDRSZ(r2, 0x400454d8, &(0x7f0000000080)=0x81) r3 = syz_genetlink_get_family_id$ipvs(&(0x7f00000001c0)='IPVS\x00') sendmsg$IPVS_CMD_DEL_DEST(r2, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x102000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000200)=ANY=[@ANYBLOB, @ANYRES16=r3, @ANYBLOB="000525bd7000fddbdf25070000000800050000800000480003000800030002000000080008000400000014000200626f6e645f736c6176655f30000000000800030003000000080003000200000008000300000000000800080001000000080004000600000008000400ab0000002c000300080003000400000008000500e000000208000500ac1414aa08000400050000000800080040000000"], 0xa0}, 0x1, 0x0, 0x0, 0x40084}, 0x20000000) connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x2000000}, 0x1c) syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1) 2018/04/30 22:50:19 executing program 1: r0 = openat$vnet(0xffffffffffffff9c, &(0x7f00002ac000)='/dev/vhost-net\x00', 0x2, 0x0) ioctl$int_in(r0, 0x40000000af01, &(0x7f0000000040)) r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000480)='/dev/audio\x00', 0x0, 0x0) close(r1) socket$packet(0x11, 0x20000000000003, 0x300) ioctl$VHOST_SET_FEATURES(r0, 0x4008af00, &(0x7f0000000640)=0x200000000) io_setup(0x6, &(0x7f0000000080)=0x0) io_submit(r2, 0x1, &(0x7f00000001c0)=[&(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, r0, &(0x7f00000000c0)="0a20873cfa2d1bae8e6889f4264bc998abf9983affee1a9056aaabf84e5a4b339c2413d514dc9b35ca673d733fb45ff3a7df37d670762a8d51c7a45d14a01a03c85cb45c56dc61b7", 0x48}]) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000002c40)=ANY=[]) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000380)=""/171, &(0x7f00000004c0)=""/216, &(0x7f0000000300)=""/48}) ioctl$VHOST_NET_SET_BACKEND(r0, 0x4008af30, &(0x7f0000d7c000)={0x0, r1}) write$vnet(r0, &(0x7f0000000280)={0x1, {&(0x7f0000000140)=""/7, 0x7, &(0x7f0000000200)=""/76, 0x0, 0x2}}, 0x68) ioctl$DRM_IOCTL_ADD_MAP(r1, 0xc0286415, &(0x7f0000000000)={&(0x7f0000ffd000/0x3000)=nil, 0x6, 0x7, 0x20, &(0x7f0000fff000/0x1000)=nil, 0x4}) [ 86.021843] kvm [7054]: vcpu0, guest rIP: 0x9126 disabled perfctr wrmsr: 0xc1 data 0xe0000011 [ 86.053078] kvm [7054]: vcpu0, guest rIP: 0x912a disabled perfctr wrmsr: 0xc1 data 0xe0000011 2018/04/30 22:50:19 executing program 3: r0 = syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x8, 0x319000) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000000000, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x8000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0x0, r0, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) socketpair(0x1, 0x80803, 0x8a, &(0x7f0000000040)={0xffffffffffffffff}) ioctl$TUNSETVNETHDRSZ(r2, 0x400454d8, &(0x7f0000000080)=0x81) r3 = syz_genetlink_get_family_id$ipvs(&(0x7f00000001c0)='IPVS\x00') sendmsg$IPVS_CMD_DEL_DEST(r2, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x102000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000200)=ANY=[@ANYBLOB, @ANYRES16=r3, @ANYBLOB="000525bd7000fddbdf25070000000800050000800000480003000800030002000000080008000400000014000200626f6e645f736c6176655f30000000000800030003000000080003000200000008000300000000000800080001000000080004000600000008000400ab0000002c000300080003000400000008000500e000000208000500ac1414aa08000400050000000800080040000000"], 0xa0}, 0x1, 0x0, 0x0, 0x40084}, 0x20000000) connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x2000000}, 0x1c) syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1) 2018/04/30 22:50:19 executing program 0: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x1000000000}, 0x0, 0x0, 0xffffffffffffffff, 0x0) set_mempolicy(0x3, &(0x7f0000000040)=0x1, 0x37) clone(0x0, &(0x7f0000b6b000), &(0x7f0000744000), &(0x7f0000fef000), &(0x7f0000dacfc9)) 2018/04/30 22:50:19 executing program 5: r0 = getpgid(0xffffffffffffffff) waitid(0x3, r0, &(0x7f0000000000), 0x80000009, &(0x7f0000000040)) rt_sigtimedwait(&(0x7f0000000140), &(0x7f0000000180), &(0x7f0000000200), 0x1d3) [ 86.091370] kvm [7054]: vcpu0, guest rIP: 0x9126 disabled perfctr wrmsr: 0xc2 data 0xe0000011 [ 86.122260] kvm [7054]: vcpu0, guest rIP: 0x912a disabled perfctr wrmsr: 0xc2 data 0xe0000011 2018/04/30 22:50:19 executing program 2: r0 = syz_open_dev$sndseq(&(0x7f0000dcc000)='/dev/snd/seq\x00', 0x0, 0x0) read(r0, &(0x7f0000fb6000)=""/28, 0x1c) r1 = getpid() sched_setaffinity(r1, 0x8, &(0x7f0000d4b000)=0x2) ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r0, 0xc0a85320, &(0x7f0000418f50)={{0x80}, "0a4ceaa05d9a00000000000000039b3fd4cec307e8ef3d13eb790ec9c65abaf90d229db692542e5b78f8b29e0a27800f0000000000000009fb42f376589701a4", 0xa9824f69d1376637, 0x10800a}) r2 = openat$pfkey(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0x101000, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r0, 0x4040534e, &(0x7f000019ffe9)={0xc1}) ioctl$SNDRV_SEQ_IOCTL_GET_CLIENT_INFO(r0, 0xc0bc5310, &(0x7f0000000080)) ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r0, 0x4058534c, &(0x7f000035d000)) r3 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000180)='/dev/sequencer2\x00', 0x0, 0x0) getsockopt$inet_pktinfo(r3, 0x0, 0x8, &(0x7f0000000000)={0x0, @loopback, @multicast2}, &(0x7f0000000040)=0xc) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) shutdown(r5, 0x3) recvmmsg(r4, &(0x7f0000525000), 0x411, 0x0, 0x0) modify_ldt$write2(0x11, &(0x7f0000000140), 0x10) 2018/04/30 22:50:19 executing program 6: modify_ldt$write2(0x11, &(0x7f00000000c0), 0x10) perf_event_open(&(0x7f0000348f88)={0x2, 0x70, 0x3e6}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000140)='/dev/rtc0\x00', 0x0, 0x0) connect$vsock_stream(r0, &(0x7f0000000040)={0x28, 0x0, 0x80000000002, @my=0x0}, 0xfffffffffffffe1d) mremap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x4000, 0x3, &(0x7f0000ffc000/0x4000)=nil) madvise(&(0x7f0000b23000/0x1000)=nil, 0x1000, 0x10200000003) [ 86.207693] kvm [7054]: vcpu0, guest rIP: 0x9126 disabled perfctr wrmsr: 0xc1 data 0xe0000011 2018/04/30 22:50:19 executing program 3: r0 = syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x8, 0x319000) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000000000, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x8000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0x0, r0, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) socketpair(0x1, 0x80803, 0x8a, &(0x7f0000000040)={0xffffffffffffffff}) ioctl$TUNSETVNETHDRSZ(r2, 0x400454d8, &(0x7f0000000080)=0x81) r3 = syz_genetlink_get_family_id$ipvs(&(0x7f00000001c0)='IPVS\x00') sendmsg$IPVS_CMD_DEL_DEST(r2, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x102000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000200)=ANY=[@ANYBLOB, @ANYRES16=r3, @ANYBLOB="000525bd7000fddbdf25070000000800050000800000480003000800030002000000080008000400000014000200626f6e645f736c6176655f30000000000800030003000000080003000200000008000300000000000800080001000000080004000600000008000400ab0000002c000300080003000400000008000500e000000208000500ac1414aa08000400050000000800080040000000"], 0xa0}, 0x1, 0x0, 0x0, 0x40084}, 0x20000000) connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x2000000}, 0x1c) syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1) [ 86.248520] kvm [7054]: vcpu0, guest rIP: 0x912a disabled perfctr wrmsr: 0xc1 data 0xe0000011 [ 86.294801] kvm [7054]: vcpu0, guest rIP: 0x9126 disabled perfctr wrmsr: 0xc2 data 0xe0000011 [ 86.327836] kvm [7054]: vcpu0, guest rIP: 0x912a disabled perfctr wrmsr: 0xc2 data 0xe0000011 [ 86.393365] kvm [7054]: vcpu0, guest rIP: 0x9126 disabled perfctr wrmsr: 0xc1 data 0xe0000011 [ 86.402467] kvm [7054]: vcpu0, guest rIP: 0x912a disabled perfctr wrmsr: 0xc1 data 0xe0000011 2018/04/30 22:50:20 executing program 5: r0 = socket(0xa, 0x5, 0x0) iopl(0x4) getsockopt(r0, 0x0, 0x400000050, &(0x7f000000d000)=""/8, &(0x7f0000fedffc)=0x2db) 2018/04/30 22:50:20 executing program 3: r0 = syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x8, 0x319000) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000000000, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x8000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0x0, r0, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) socketpair(0x1, 0x80803, 0x8a, &(0x7f0000000040)={0xffffffffffffffff}) ioctl$TUNSETVNETHDRSZ(r2, 0x400454d8, &(0x7f0000000080)=0x81) syz_genetlink_get_family_id$ipvs(&(0x7f00000001c0)='IPVS\x00') connect$inet6(r1, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x2000000}, 0x1c) syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1) 2018/04/30 22:50:20 executing program 6: r0 = syz_open_dev$sndpcmc(&(0x7f0000000100)='/dev/snd/pcmC#D#c\x00', 0xf9, 0x200000) ioctl$KDSIGACCEPT(r0, 0x4b4e, 0x1e) mkdir(&(0x7f0000000080)='./file0\x00', 0x0) lsetxattr(&(0x7f0000000000)='./file0\x00', &(0x7f0000faffe7)=@known='system.posix_acl_default\x00', &(0x7f0000000040)="0200000002000000fffffffffffffe0100", 0x11, 0x0) ioctl$sock_SIOCGPGRP(0xffffffffffffff9c, 0x8904, &(0x7f00000000c0)=0x0) socket(0x1, 0x3, 0x3) ioprio_get$pid(0x1, r1) 2018/04/30 22:50:20 executing program 0: r0 = socket$inet(0x10, 0x3, 0x9) capset(&(0x7f0000be6ff8)={0x19980330}, &(0x7f000032e000)) sendmsg(r0, &(0x7f0000011fc8)={0x0, 0x0, &(0x7f000001e000)=[{&(0x7f0000000000)="24000000000b07031dff1f946fa2830020200a00090001004003ffffffeca3a20400ff7e", 0x24}], 0x1}, 0x0) prctl$seccomp(0x16, 0x2, &(0x7f0000000080)={0x4, &(0x7f0000000040)=[{0xff, 0x3, 0x9, 0x1}, {0x2, 0x39, 0xae, 0x756}, {0x7f, 0x7, 0x100000, 0x9}, {0x2, 0x100000001, 0x1, 0xfffffffffffffffd}]}) 2018/04/30 22:50:20 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fd8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000140)="0f060f009aab791aa666b869008ed066baf80cb868401288ef66bafc0ced0fc71966ba4100ed0f300f080f300f01c8", 0x2f}], 0xaaaaaaaaaaaad2c, 0x1, &(0x7f00000001c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = syz_open_procfs(0x0, &(0x7f0000000040)='children\x00') r4 = syz_genetlink_get_family_id$team(&(0x7f00000000c0)='team\x00') getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000700)={0x0, @local, @multicast2}, &(0x7f0000000740)=0xc) getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffff9c, 0x29, 0x23, &(0x7f0000000780)={{{@in6, @in=@multicast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@mcast2}, 0x0, @in6=@local}}, &(0x7f0000000880)=0xe8) sendmsg$TEAM_CMD_OPTIONS_SET(r3, &(0x7f00000009c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000980)={&(0x7f00000008c0)={0x98, r4, 0x400, 0x70bd2b, 0x25dfdbfc, {0x1}, [{{0x8, 0x1, r5}, {0x7c, 0x2, [{0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24, 0x1, 'lb_tx_hash_to_port_mapping\x00'}, {0x8, 0x3, 0x3}, {0x8, 0x4, r6}}, {0x8, 0x7}}}, {0x38, 0x1, @lb_stats_refresh_interval={{0x24, 0x1, 'lb_stats_refresh_interval\x00'}, {0x8, 0x3, 0x3}, {0x8, 0x4, 0x8001}}}]}}]}, 0x98}, 0x1, 0x0, 0x0, 0x84}, 0x41) 2018/04/30 22:50:20 executing program 7: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0xc003, 0x0, 0x0, 0x0, 0x0) stat(&(0x7f0000000480)='./file0\x00', &(0x7f00000004c0)) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x1, 0x0) 2018/04/30 22:50:20 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f000016d000)={"8a927799b01a029f25061eda96dd379385fc78b28fcbf8eb8455a6fb67a8de46d4d40000a01a47191dc792f414ac8437036bb34b6632c980073c4cdc084a1966c440f15811d016f5b50e90810603f10a2c83eb8c062194269ab67e4bb4b3c5199cadd60d3f6fc72a7eb011b622072532229fbc9d9c4d1e045191ee2b0d584c8fd736ee3e7d73d5267b67a69251b1a8647e90692d30ecfb806326f17f0a7a24aa58b111193c88181907d958cb00807d63dfb58775215937ae2b62b46c6d5816f2fc52eeab0000000000000003252929e628ad2c34a0ef717fb2504d9bd66eabce002faf0512145c072f3087a5566c38fda729442c3ebd62e970a9a3eb242747993601a1a186b8376d39c69c4ce503b2638feeae79436a9708b3bb19f38377382ea7b4c9c2d674b80ef220109f8fa8200de4794547b4da6430ac512116d358949a298812c5d54017aa2fc8b814ecf28c41d4c83474ba93a8ad32b16371b42350bf984abb465228cfd848e54abc383d21d0a3315f1b8599efa1bf10bd30a1371757b13aed4a19db7c777995fd42ad446d9d2755f8552563c7639ce00da8ee3ece9ded52625aa3f0a1d7b76b32536d39eeae158271064ea79bddf1032b6e6ac794f37ec9d0c3bc4923cc7b631c6df64f28d75d99443d6653db3c6b7961190e8f82a233000001002ce4f47168ef93f01aef51c60000000000000006af34b21ed8437a371c0b427cd8c94f3952ee752b758eb5bff60a0c4f4793cd6638a2a23d68cb6e86925599fbc1361b8ce27b41d79027894b6c0003cc97a64088edf383a51eef947915369bdd4fc3cded2663d17515838f8fbba284c5b6ffc5251019eaee59d117d34c73e50fbd33ceb4508cfa4eecb7d6bb11fc4a114a13542dee77b2651783f6a5d9260036ccc70d695105d1ddb56f1ac26584547d8d5cecb3c672068cc7ab31ddc5ae0a253b587d712c6113acdf49fa0100de0f7b3717528e35b7e70733538a8eec8fb17616d2198d02ba4e7690fab7933b676deddb27755d6a8f29c643dfff0e4bd7c2b13b7a57a3120cb2cbb70200339dc0862dafad481a63e7f90d14c54803d8b100e0ad5cae9a0a7b2f329c3b0000000000000002f4b2eebf5bcd42688b08ff0a6575a31f81f01c13c7cb674ff41cb3c7f6896d41e86bda845164825e28b9fb719e695a9eb9710f924aefde1c96bebe4274594038347691a088f9bcaeba90315d3b3cfc24388cc15dffeda1bd610582c5b74fa6c6e789ce440f71871a5e8b85000000005806743e8e075b8624686feb21dbdb9afd74dd0067d82a72c099a2d52a599494388cb56cdb5ef9190980f9128e689e07e98b2ed59e1537fc7de144dc2030374b0f5fcfd8f2ef242803f7bcbc07145f65b8912a4a335b858de8acf080852c49d353a00a5aac3d6a33e0075506a1fd25799f1637b1bafaf09954ef"}) ioctl$KVM_SIGNAL_MSI(r1, 0x4020aea5, &(0x7f0000000040)={0xdffffffffffffff5, 0x0, 0xf902}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 2018/04/30 22:50:20 executing program 1: r0 = socket$inet6(0xa, 0x802, 0x88) sendto$inet6(r0, &(0x7f0000000080)="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", 0x821, 0x0, &(0x7f0000089000)={0xa, 0x3, 0x0, @remote={0xfe, 0x80, [], 0xffffffffffffffff}}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x7, &(0x7f0000000040), 0x4) sendto$inet6(r0, &(0x7f0000000a40), 0x0, 0x0, &(0x7f0000000ac0)={0xa, 0x4e20, 0x0, @ipv4={[], [0xff, 0xff], @rand_addr}}, 0x1c) r1 = syz_open_dev$mouse(&(0x7f0000000c00)='/dev/input/mouse#\x00', 0x7af, 0x800) ioctl$TIOCLINUX7(r1, 0x541c, &(0x7f0000000c40)={0x7, 0x5}) sendmsg(r0, &(0x7f0000000a00)={&(0x7f00000008c0)=@nl=@unspec, 0x80, &(0x7f0000000000)=[{&(0x7f0000000940)="5aaef23720ef9ed4db01dd56af5c41a892e3f7bcec461b39b3cf44c04900157f85ce018b16bbf2eccd97ca654f9b003d9573a8b942e493002e7e6d82a04a850367993f8f24bbb99054063f3835f88f3c69f159399ccf2dd0ec069e267fed6afb9263ac1f1d59f93e10f1725ac5d1329652ffdaa6cc4493ea619b35caf1e4d38d245e4c", 0x83}], 0x1, &(0x7f0000000b00)=ANY=[@ANYBLOB="480000000000000017010000010000005abe6c338448a719e98ea04de584d7a2f07372c0fd7d1ce059a1172f0acaa4dadadfe387ad42561868f400980000e2ffffffff8c010000020000006c4ed1f9be7353b0568fd7f6f6916876dcac538d3ca09d941c8329b1a90a05c331a553da991c3d19f022f13f0816661ce022f0c7e1c2c88588f94a8359ee347300596d5f552cb8d8fe6856f96bcad5609729a571f87d651bd047f6dea371ed63d004563a1f5c8594d57c2ae07b8bffcbe7253799e6d61320d3f5021dd3bd7c150f0c46cd3a90fa9900000000000000000000000000"], 0xe0, 0x4000011}, 0x80) clock_nanosleep(0x7, 0x0, &(0x7f0000000a40)={0x0, 0x1c9c380}, &(0x7f0000000a80)) [ 87.405415] capability: warning: `syz-executor0' uses 32-bit capabilities (legacy support in use) 2018/04/30 22:50:20 executing program 1: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f00000000c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'ctr-camellia-aesni\x00'}, 0x58) r1 = accept$alg(r0, 0x0, 0x0) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f00003bcfd0)="d3ab27191a01002356ba602dff05000bfef9b9d2a4b20079", 0x18) r2 = syz_open_dev$sg(&(0x7f00000001c0)='/dev/sg#\x00', 0x6, 0x200000) ioctl$KVM_GET_CLOCK(r0, 0x8030ae7c, &(0x7f0000000000)) ioctl$TIOCCBRK(r0, 0x5428) r3 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/autofs\x00', 0x101003, 0x0) ioctl$KVM_S390_UCAS_UNMAP(r3, 0x4018ae51, &(0x7f0000000140)={0x7, 0x8, 0x8}) ioctl$SG_GET_RESERVED_SIZE(r2, 0x2272, &(0x7f0000000040)) ioctl$sock_SIOCBRDELBR(r0, 0x89a1, &(0x7f0000000180)='bond_slave_1\x00') sendmmsg$alg(r1, &(0x7f0000002c80)=[{0x0, 0x0, &(0x7f00000024c0), 0x0, &(0x7f0000000200)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x0) recvmsg(r1, &(0x7f0000000d40)={&(0x7f0000000a40)=@pppol2tp={0x0, 0x0, {0x0, 0xffffffffffffffff, {0x0, 0x0, @local}}}, 0x80, &(0x7f0000000c40)=[{&(0x7f00000009c0)=""/18, 0x12}], 0x1, &(0x7f0000000cc0)=""/97, 0x61}, 0x0) 2018/04/30 22:50:20 executing program 3: r0 = syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x8, 0x319000) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000000000, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x8000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0x0, r0, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) socketpair(0x1, 0x80803, 0x8a, &(0x7f0000000040)={0xffffffffffffffff}) ioctl$TUNSETVNETHDRSZ(r2, 0x400454d8, &(0x7f0000000080)=0x81) syz_genetlink_get_family_id$ipvs(&(0x7f00000001c0)='IPVS\x00') connect$inet6(r1, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x2000000}, 0x1c) syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1) 2018/04/30 22:50:20 executing program 5: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(&(0x7f000000a000)='./file0\x00', &(0x7f0000014ff8)='./file0\x00', &(0x7f0000014000)='proc\x00', 0x0, &(0x7f0000fc9000)) syz_mount_image$msdos(&(0x7f0000000080)='msdos\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000240), 0x20, &(0x7f0000000300)=ANY=[@ANYBLOB="676964eecf00703d020000000000"]) socketpair(0xb, 0x80007, 0xffffffff, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$TIOCEXCL(r0, 0x540c) r2 = msgget$private(0x0, 0x100) msgctl$MSG_STAT(r2, 0xb, &(0x7f0000000100)=""/141) getsockopt$inet_sctp_SCTP_MAXSEG(r1, 0x84, 0xd, &(0x7f00000001c0)=@assoc_value={0x0, 0x5}, &(0x7f0000000200)=0x8) getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(r0, 0x84, 0x7c, &(0x7f0000000240)={r3, 0x8, 0xfffffffffffffffa}, &(0x7f0000000280)=0x8) 2018/04/30 22:50:20 executing program 6: r0 = userfaultfd(0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000000c0)={0xaa}) readv(r0, &(0x7f0000d32fc0)=[{&(0x7f000039a000)=""/185, 0xb9}], 0x1) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000000)={{&(0x7f0000003000/0x4000)=nil, 0x4000}, 0x1}) socketpair(0x0, 0x1, 0xbb5c, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$inet_icmp_ICMP_FILTER(r2, 0x1, 0x1, &(0x7f0000000240)={0x4}, 0x4) r3 = syz_open_dev$mice(&(0x7f0000000040)='/dev/input/mice\x00', 0x0, 0x0) getsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(0xffffffffffffffff, 0x84, 0x1f, &(0x7f0000000100)={0x0, @in6={{0xa, 0x4e24, 0x3, @empty, 0x3}}, 0x7, 0x8e}, &(0x7f0000000080)=0x90) delete_module(&(0x7f00000003c0)='@,\x00', 0xa00) ioctl$sock_inet_udp_SIOCINQ(r2, 0x541b, &(0x7f0000000380)) setsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(r3, 0x84, 0x22, &(0x7f00000001c0)={0x9, 0x8005, 0x7, 0x40, r4}, 0x10) mremap(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x3000, 0x3, &(0x7f0000005000/0x3000)=nil) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r3, 0x84, 0x64, &(0x7f0000000280)=[@in={0x2, 0x4e20}, @in6={0xa, 0x4e22, 0x6, @remote={0xfe, 0x80, [], 0xbb}, 0xfffffffffffffff9}, @in={0x2, 0xe6, @multicast2=0xe0000002}, @in6={0xa, 0x4e22, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0xfffffffffffffff7}, @in={0x2, 0x4e23, @local={0xac, 0x14, 0x14, 0xaa}}, @in6={0xa, 0x4e21, 0xca, @mcast2={0xff, 0x2, [], 0x1}, 0x8}], 0x84) ioctl$VHOST_SET_VRING_ERR(r1, 0x4008af22, &(0x7f0000000340)={0x3, r2}) 2018/04/30 22:50:20 executing program 0: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/autofs\x00', 0x640202, 0x0) ioctl$BLKRRPART(r1, 0x125f, 0x0) setsockopt$inet6_tcp_buf(r1, 0x6, 0x1f, &(0x7f0000000080)="edcfab63dc8f4648df4fc186507811ee58672de5b0e2fb81e95a275d391e9dd34a494a23f86a9cf5435075c88881b8bc", 0x30) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={&(0x7f0000de2ff4)={0x10}, 0xc, &(0x7f0000403000)={&(0x7f0000000000)={0x20, 0x3, 0x1, 0xffffffffffffffff, 0x0, 0x0, {}, [@nested={0xc, 0x8, [@typed={0x8, 0x0, @pid}]}]}, 0x20}, 0x1}, 0x0) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, &(0x7f00000000c0)={'sit0\x00', 0x1000}) 2018/04/30 22:50:20 executing program 2: perf_event_open(&(0x7f00000000c0)={0x2, 0x70, 0x3e6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x36, &(0x7f0000000180)={@local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}, @broadcast=[0xff, 0xff, 0xff, 0xff, 0xff, 0xff], [{[{0x9100, 0x9, 0xfffffff000000000}], {0x8100, 0x8, 0xfffffffffffffc00, 0x3}}], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, @dev={0xac, 0x14, 0x14}, @remote={0xac, 0x14, 0x14, 0xbb}, {[@rr={0x44, 0x3}]}}, @icmp=@address_reply={0x12}}}}}, &(0x7f0000000080)) r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040)='/dev/rfkill\x00', 0x200, 0x0) r1 = pkey_alloc(0x0, 0x1) pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x0, r1) setsockopt$bt_hci_HCI_DATA_DIR(r0, 0x0, 0x1, &(0x7f0000000140)=0x1ff, 0x4) [ 87.588344] proc: unrecognized mount option "gidîÏ" or missing value [ 87.629685] netlink: 'syz-executor0': attribute type 8 has an invalid length. 2018/04/30 22:50:20 executing program 4: mkdir(&(0x7f000053bff8)='./file0\x00', 0x0) syz_mount_image$gfs2(&(0x7f00000000c0)='gfs2\x00', &(0x7f0000000100)='./file0/file0\x00', 0x0, 0x0, &(0x7f00000001c0), 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="71756f54613d6f5480f8ac45974d66662c00"]) 2018/04/30 22:50:20 executing program 3: r0 = syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x8, 0x319000) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000000000, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x8000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0x0, r0, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) socketpair(0x1, 0x80803, 0x8a, &(0x7f0000000040)={0xffffffffffffffff}) ioctl$TUNSETVNETHDRSZ(r2, 0x400454d8, &(0x7f0000000080)=0x81) connect$inet6(r1, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x2000000}, 0x1c) syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1) 2018/04/30 22:50:20 executing program 2: r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) write$rdma_cm(r0, &(0x7f00000050c0)=@create_id={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000005080)={0xffffffff}, 0x13f}}, 0x20) perf_event_open(&(0x7f0000348f88)={0x2, 0x70, 0x3e6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) write$rdma_cm(r0, &(0x7f0000000040)=ANY=[@ANYBLOB="14000600890000fa6176de0c030ae7ec8b2f6d774b338253cf98d4b35479c8143e721de91957982164c8f94a6d796f73d36feb382467caf285a510a9c7aa34333522e9c242194e6957e0f8edffaf4de536224dc07227dfb8c7f73dc76eda64ef00b6c4b194341e3ce2d96d89ea5c27b91b576b7acd8763c1054d9bfdbe08a11d762b6269408e7cc31d2951e24bbd6bc8d65e553460708e94cc2b592c0cfe33d99acbf617cb60cee5", @ANYRES32=r1, @ANYBLOB="1000000002000000ac1414aa000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000"], 0x90) 2018/04/30 22:50:20 executing program 1: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/cuse\x00', 0x86, 0x0) io_setup(0x9, &(0x7f0000000040)=0x0) io_submit(r1, 0x1, &(0x7f0000000440)=[&(0x7f0000000200)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000080)="10000000040000000000000000000000", 0x10}]) mmap(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x0, 0x70, r0, 0x0) setsockopt$sock_void(r0, 0x1, 0x3f, 0x0, 0x0) clock_gettime(0x0, &(0x7f00000000c0)={0x0, 0x0}) futimesat(r0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000100)={{r2, r3/1000+10000}, {0x77359400}}) [ 87.766471] proc: unrecognized mount option "gidîÏ" or missing value [ 87.797918] netlink: 'syz-executor0': attribute type 8 has an invalid length. [ 87.800209] gfs2: invalid mount option: quoTa=oT€ø¬E—Mff [ 87.811137] gfs2: can't parse mount arguments 2018/04/30 22:50:21 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) 2018/04/30 22:50:21 executing program 3: r0 = syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x8, 0x319000) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000000000, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x8000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0x0, r0, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) socketpair(0x1, 0x80803, 0x8a, &(0x7f0000000040)) connect$inet6(r1, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x2000000}, 0x1c) syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1) 2018/04/30 22:50:21 executing program 2: syz_mount_image$xfs(&(0x7f0000000000)='xfs\x00', &(0x7f0000000080)='./file0\x00', 0x1, 0x5, &(0x7f0000000480)=[{&(0x7f00000000c0)="41aaa49e54c04d2cf1aa961d30c955468a8fc2a9afd2172dd971391b733643904fe3c609b92aa175e56ed6be78d7b3338eec8787b65beae7905575819e0e5c579b25397627f6221701e7f8ccef2ff0b4c3425d2a0dafd79cded58bd5138adbd8d810b2159d710e30fdadc33da5d0df15f0adef0ed52daa2d05536dd8e23572af817a0a98b4f6306cac934e0540cfc5c058e3c5887cb0b37f6f551bdea08d3e3a8c73aad69280a7c2bdb043060ba1488dee9b35cf9d1e5a6e84746cd6a2", 0xbd, 0x2}, {&(0x7f0000000180)="5b002276ef6a1b076dcef0a277c5ae3375a55184606a2be509168648d31a281568ca63c74b856ed46ebaa65550d1845121c8baafa6dce1609bbd8f9dd6885e7075abf458f80d57a816de8f38ca39fb53ba0e2bd7ecd653479f44d59e55d7623f34d973afdf482e07d41f1068acbbbfce129f66a96cc16c5ef5ff6f26295e0e32b2559840b7310ea978a371c7468998551797598516bf1705aeb05e02247128bf40842e821fd9e0cce7c5629d2b0aa0e5f615f48fec984b074dc458abbfdb44c7634a4919d5ca7eb69a1a5c700b2bd3a6cc5739eb550107b47537ebdfc29d71a95461de26928c736003ca2cbdabb2", 0xee, 0x7ff}, {&(0x7f0000000280)="112a0b1b4914667708f3cdf102e653b9f2eedc4a75e0b8ea5674b84e86c8879832c63ba004138b3a07c781defd327c4e6ada33ee4da896938d4ff421925b0512f349385dbb5d1a0165b96f5dab931c2fc63e8855d9e6095156e5d336b142f3f5cc5f493454ba9a337a89cf7e2b5529cf2210b3681b33", 0x76, 0x9}, {&(0x7f0000000300)="a59e080b552c3aaebadb5ec486209df71147be4923b4d20ecdcd6f492cca68c599955dd01a1a17dd4a2f08f12d36a9d7e48676c15534367806a58cb434d16e139b5c5c9012fc401d09f3ec0fd0a99f20b76a755a6e098025788b39ac63cc7dbe3431aa2a400055a976b30b306449cec37950ec3df9d4a4a428a0a204fb9bb704397b04671748748da60495bc64ed449e38931729394fcfdbfa5e04146617c9fb9b30eba626cad012bc256232f4ee29ae7ef2751ae737060b65c46c6fff904432927ca2d26a487ac0", 0xc8, 0xbd1c}, {&(0x7f0000000400)="18b555fa54daa6494cb63634568eb81918919c9ce0f9228b18153fb1e6f6aca1ac0ffd392e3ad7cc7f4967ef2f21028cc054b52b2639b1ee4d1c9ea19d3190f02376e0c3e7e1040aace315a7e857a6b7239fa9bf", 0x54, 0x1}], 0x840000, &(0x7f0000000500)={'nouuid,', {[{@dax='dax', 0x2c}, {@noquota='noquota', 0x2c}, {@logbsize={'logbsize', 0x3d, [0x67, 0x30]}, 0x2c}, {@logbufs={'logbufs', 0x3d, [0x7f]}, 0x2c}, {@rtdev={'rtdev', 0x3d, './file0'}, 0x2c}, {@gqnoenforce='gqnoenforce', 0x2c}]}}) r0 = socket(0x400020000000010, 0x2, 0x0) write(r0, &(0x7f0000000040)="1f00000054000d0022000000fc07ff1b07c40e0000000000000001fe000009", 0x1f) syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000580)='./file0\x00', 0x0, 0x14) ioctl$TIOCGWINSZ(r1, 0x5413, &(0x7f00000005c0)) [ 88.050466] netlink: 7 bytes leftover after parsing attributes in process `syz-executor2'. [ 88.059094] PF_BRIDGE: br_mdb_parse() with invalid ifindex [ 88.097275] netlink: 7 bytes leftover after parsing attributes in process `syz-executor2'. [ 88.105812] PF_BRIDGE: br_mdb_parse() with invalid ifindex [ 88.470642] device bridge_slave_1 left promiscuous mode [ 88.476747] bridge0: port 2(bridge_slave_1) entered disabled state [ 88.492754] device bridge_slave_0 left promiscuous mode [ 88.498427] bridge0: port 1(bridge_slave_0) entered disabled state [ 88.538506] team0 (unregistering): Port device team_slave_1 removed [ 88.552496] team0 (unregistering): Port device team_slave_0 removed [ 88.563924] bond0 (unregistering): Releasing backup interface bond_slave_1 [ 88.584071] bond0 (unregistering): Releasing backup interface bond_slave_0 2018/04/30 22:50:21 executing program 0: ioctl$sock_SIOCGPGRP(0xffffffffffffff9c, 0x8904, &(0x7f0000000040)=0x0) r1 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vga_arbiter\x00', 0x10200, 0x0) ioctl$KVM_CHECK_EXTENSION(r1, 0xae03, 0x9) r2 = getpgrp(r0) r3 = getpgrp(r2) openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vga_arbiter\x00', 0x80000, 0x0) r4 = gettid() mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x31, 0xffffffffffffffff, 0x0) rt_sigprocmask(0x0, &(0x7f0000032ff8)={0xfffffffffffffffe}, 0x0, 0x8) rt_tgsigqueueinfo(r3, r4, 0x2, &(0x7f00000001c0)={0x0, 0x0, 0x100000001}) 2018/04/30 22:50:21 executing program 4: r0 = socket$key(0xf, 0x3, 0x2) r1 = socket$key(0xf, 0x3, 0x2) r2 = dup3(r0, r1, 0x0) getsockopt$inet_sctp_SCTP_RESET_STREAMS(r2, 0x84, 0x77, &(0x7f0000000000)={0x0, 0x5, 0x5, [0x5, 0x8001, 0x9b87, 0x0, 0x101]}, &(0x7f0000000040)=0x12) setsockopt$inet_sctp_SCTP_PR_SUPPORTED(r2, 0x84, 0x71, &(0x7f0000000080)={r3, 0x80}, 0x8) 2018/04/30 22:50:21 executing program 1: r0 = getpgrp(0x0) perf_event_open(&(0x7f00000000c0)={0x2, 0x70, 0x3e6}, r0, 0x0, 0xffffffffffffffff, 0x0) kexec_load(0x0, 0x2, &(0x7f00000003c0)=[{&(0x7f0000000140)}, {&(0x7f0000000300), 0x0, 0x0, 0x8}], 0x0) 2018/04/30 22:50:21 executing program 3: r0 = syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x8, 0x319000) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000000000, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x8000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0x0, r0, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r1, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x2000000}, 0x1c) syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1) 2018/04/30 22:50:21 executing program 2: r0 = syz_open_dev$dspn(&(0x7f0000af6ff6)='/dev/dsp#\x00', 0x1, 0x0) setsockopt$ipx_IPX_TYPE(r0, 0x100, 0x1, &(0x7f0000000000)=0x3, 0x4) ioctl$int_in(r0, 0x800000c0045002, &(0x7f0000003ff8)=0x1f40) 2018/04/30 22:50:21 executing program 5: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000100)='/dev/vsock\x00', 0x101000, 0x0) setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r0, 0x10e, 0x1, &(0x7f0000000140)=0x17, 0x4) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000c6eff6)='/dev/ptmx\x00', 0x0, 0x0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x2040, 0x0) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCOUTQ(r1, 0x5411, &(0x7f0000000000)) r3 = openat$pfkey(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/self/net/pfkey\x00', 0x0, 0x0) ioctl$LOOP_SET_FD(r3, 0x4c00, r2) 2018/04/30 22:50:21 executing program 6: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0xc003, 0x0, 0x0, 0x0, 0x0) stat(&(0x7f0000000480)='./file0\x00', &(0x7f00000004c0)) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x1, 0x0) 2018/04/30 22:50:21 executing program 7: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0xc003, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x1, 0x0) [ 88.610306] bond0 (unregistering): Released all slaves 2018/04/30 22:50:21 executing program 0: r0 = socket$inet(0x2, 0x2, 0x0) getsockname(r0, &(0x7f0000000080)=@pppol2tpin6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @dev}}}, &(0x7f0000000000)=0x80) getsockopt$inet_pktinfo(r1, 0x0, 0x8, &(0x7f0000000180)={0x0, @remote, @loopback}, &(0x7f00000001c0)=0xc) accept$packet(r1, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @random}, &(0x7f0000000280)=0x14) r3 = accept$packet(r1, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @broadcast}, &(0x7f0000000300)=0x14) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000400)={'vcan0\x00'}) getsockopt$inet_mreqn(r0, 0x0, 0x23, &(0x7f0000000440)={@rand_addr, @remote, 0x0}, &(0x7f0000000480)=0xc) ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000640)={'team0\x00', r4}) sendmsg$nl_route(r1, &(0x7f0000000700)={&(0x7f0000000100)={0x10}, 0xc, &(0x7f00000006c0)={&(0x7f0000000680)=@bridge_delneigh={0x24, 0x1d, 0x300, 0x70bd28, 0x25dfdbfd, {0x264ccab6e2055f4f, 0x0, 0x0, r5, 0x0, 0x82, 0x9}, [@NDA_MASTER={0x8, 0x9, 0x8}]}, 0x24}, 0x1, 0x0, 0x0, 0x800}, 0x10) syz_emit_ethernet(0x9, &(0x7f0000000740)=ANY=[@ANYRES64=r0, @ANYRES16, @ANYRES16, @ANYBLOB="e45874eff584b0a1e9f203430e8d06220d427fa5f2529cc0ad9d24319539", @ANYBLOB="06ee1f5f62d26ac0bb88b731538af90205959cfac720e0431c98a32a8c66271cd1e7ac48274705b6b967e9c76e4de45914e81c80f300d681f00a73a0c522a6ecea744aa823ae26d329b56d9d4993c78596bf80d972d72003c635b5c7c57adb2b5446766fea1e9da05f2d862c848e35f697dd058beabaaf1dd2e0ac34122a286339967fa629ec5f6884c699a5e11f53b55179e09799f37b0c7b13976b6709eabc7e13b18c6d3c3edbb746dbc40c477f744254211f6ddcb41c66f289e1c719c5ce0ecd718f7a645219a0f5c5d47773010306684a8eb4ec496b06e9830b7e", @ANYRES16=r3, @ANYPTR64=&(0x7f0000000540)=ANY=[@ANYPTR64=&(0x7f0000000340)=ANY=[@ANYBLOB="b9991766d664abdaa00fabe1ac30a38d43491d7b98b65d6238c760aca1c574ff6ba8b4d2972e8565051d91b278a03d174ea109627c851eb67820c594610fe33b45fc1e252c3ee30313823faa0f00f11e78"], @ANYPTR=&(0x7f00000004c0)=ANY=[@ANYPTR, @ANYBLOB="72cfcd37632550e4b25f1b07c63ad414a000ab545c31a89654d42699160d9dc71b6477b3c18558849bbef47b1774c0df782cc1874303d623c322853bf02d66ed0ae1824f923439883007b4cb528ae9", @ANYPTR64], @ANYRES16=r5, @ANYRES32=r1, @ANYRES32=r5, @ANYPTR=&(0x7f00000003c0)=ANY=[@ANYRES64=r4, @ANYRES16=r2], @ANYPTR], @ANYRES64=r4, @ANYBLOB="5789b663f69799a895814adff73a3dd4200d884e25f1db6d1e6a0b418fc94f04ea6647762ddca0511a7a3def4072f6005daefa2bc7a0aa84436397842b1fcf8c077e42234d2dc52d3f828427b4264dbbf12f00d051c675c434f4fc58eac4fe7713f82af57e5d746d86351160953001992356c584bc07616fc5cffbba5557ca648a4ffad4d2a8c4c8b03c0a85b2d3f89832e0930204352d06b25b323edc6cefa20f907ad48757e61e2d3ef80db5593476736b6b10e4e9daeadecd299faba9988e3c44bad05929831102e5104cfe200906bf327740abed9e921106de50d949e6e10ab703409ca8da4d53ada1b5c6d5927440fd8bef5479"], 0x0) 2018/04/30 22:50:21 executing program 4: socket$can_bcm(0x1d, 0x2, 0x2) syz_mount_image$nfs4(&(0x7f0000000040)='nfs4\x00', &(0x7f0000000080)='./bus\x00', 0x0, 0x0, &(0x7f00000000c0), 0x2010400, &(0x7f0000000140)='ext3\x00') syz_mount_image$ext4(&(0x7f0000000000)='ext3\x00', &(0x7f0000000100)='./bus\x00', 0x0, 0x0, &(0x7f0000000240), 0x0, &(0x7f0000000280)) 2018/04/30 22:50:21 executing program 5: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x3fd) r1 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x8000, 0x0) ioctl$TIOCGSID(r1, 0x5429, &(0x7f0000000080)) ioctl$KDMKTONE(r0, 0x5382, 0x200000080000004) 2018/04/30 22:50:21 executing program 1: r0 = creat(&(0x7f0000000040)='./file0\x00', 0xa) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={'tunl0\x00', 0x100}) r1 = perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000389000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = perf_event_open(&(0x7f0000348f88)={0x2, 0x78, 0x3e2}, 0x0, 0xffffffffffffffff, r1, 0x0) perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e2}, 0x0, 0xffffffffffffffff, r1, 0x0) readv(r2, &(0x7f0000000140)=[{&(0x7f0000000180)=""/203, 0xcb}], 0x1) close(r1) 2018/04/30 22:50:21 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f000016d000)={"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"}) ioctl$KVM_SIGNAL_MSI(r1, 0x4020aea5, &(0x7f00000000c0)={0xcffd, 0x0, 0x200010001}) fcntl$F_GET_RW_HINT(r1, 0x40b, &(0x7f0000000000)) 2018/04/30 22:50:22 executing program 3: r0 = syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x8, 0x319000) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000000000, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x8000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0x0, r0, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(0xffffffffffffffff, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x2000000}, 0x1c) syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1) 2018/04/30 22:50:22 executing program 0: r0 = socket(0x2011, 0x4800000000080003, 0x0) ioctl$sock_ifreq(r0, 0x891e, &(0x7f0000000000)={'bond0\x00', @ifru_names='gretap0\x00'}) 2018/04/30 22:50:22 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_open_dev$amidi(&(0x7f0000000100)='/dev/amidi#\x00', 0x2, 0x40000) ioctl$DRM_IOCTL_ADD_CTX(0xffffffffffffff9c, 0xc0086420, &(0x7f0000000040)={0x0}) ioctl$DRM_IOCTL_NEW_CTX(r2, 0x40086425, &(0x7f0000000080)={r3, 0x3}) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x5) close(r1) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) 2018/04/30 22:50:22 executing program 0: r0 = accept$inet(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, @local}, &(0x7f0000000040)=0x10) fchdir(r0) r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000ca3000)='/dev/autofs\x00', 0x0, 0x0) ioctl(r1, 0x8000000000009382, &(0x7f0000000040)) [ 88.955000] Disabled LAPIC found during irq injection 2018/04/30 22:50:22 executing program 1: r0 = creat(&(0x7f0000000040)='./file0\x00', 0xa) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={'tunl0\x00', 0x100}) r1 = perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000389000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = perf_event_open(&(0x7f0000348f88)={0x2, 0x78, 0x3e2}, 0x0, 0xffffffffffffffff, r1, 0x0) perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e2}, 0x0, 0xffffffffffffffff, r1, 0x0) readv(r2, &(0x7f0000000140)=[{&(0x7f0000000180)=""/203, 0xcb}], 0x1) close(r1) 2018/04/30 22:50:22 executing program 3: r0 = syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x8, 0x319000) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000000000, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x8000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0x0, r0, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(0xffffffffffffffff, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x2000000}, 0x1c) syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1) 2018/04/30 22:50:22 executing program 0: perf_event_open(&(0x7f00000000c0)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000080)={0x10}, 0xc, &(0x7f00000002c0)={&(0x7f0000000040)=@bridge_getneigh={0x20, 0x1e, 0x2f86669e0438147, 0x0, 0x0, {0x7}}, 0x20}, 0x1, 0x0, 0x0, 0x8000000000000}, 0x0) 2018/04/30 22:50:22 executing program 2: r0 = syz_open_dev$sndctrl(&(0x7f0000000040)='/dev/snd/controlC#\x00', 0x5, 0x0) mmap(&(0x7f0000000000/0xf50000)=nil, 0xf50000, 0x0, 0x32, 0xffffffffffffffff, 0x0) ioctl$SNDRV_CTL_IOCTL_ELEM_LIST(r0, 0xc0505510, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000140)}) syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x1, 0x1) 2018/04/30 22:50:22 executing program 5: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x400000, 0x0) writev(r0, &(0x7f00009d5ff0)=[{&(0x7f0000be9000)="440ada610000fe82fd9b56e22f9d6cd47c2ec78b000000096bc82d5d4800008884134508d746c4ad1921a782f9639b020800a708140007ae62731f010850ba19ef41771617e8da13866d15", 0x4b}], 0x1) ioctl$TCSETA(r0, 0x5402, &(0x7f0000f9f000)={0x4bc4, 0x0, 0x401}) r1 = syz_open_dev$dmmidi(&(0x7f0000000040)='/dev/dmmidi#\x00', 0x1, 0x0) setsockopt$RDS_CONG_MONITOR(r1, 0x114, 0x6, &(0x7f0000000080), 0x4) [ 89.720358] EXT4-fs (loop4): VFS: Can't find ext4 filesystem 2018/04/30 22:50:23 executing program 0: r0 = perf_event_open(&(0x7f00000000c0)={0x2, 0x70, 0x3e6}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$int_out(r0, 0x5460, &(0x7f00000006c0)) setsockopt$packet_int(0xffffffffffffffff, 0x107, 0x7, &(0x7f0000000000)=0x3, 0x4) sendto$inet6(0xffffffffffffffff, &(0x7f0000000040), 0x0, 0x0, &(0x7f0000008000)={0xa, 0x0, 0x7, @dev={0xfe, 0x80}}, 0x1c) r1 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snapshot\x00', 0x40, 0x0) ioctl$SNDRV_CTL_IOCTL_ELEM_READ(r1, 0xc4c85512, &(0x7f0000000140)={{0x0, 0x5, 0x5, 0x10001, "a015334f4eb156efd3f2ff9af0c46c7e73ba77c628eb0ba827338be34d5b53475624c95d239d549e0b9f26a1", 0x4}, 0x7f, [0xfffffffffffffffc, 0x6, 0x84e, 0xfffffffffffff277, 0x4, 0x1, 0xfffffffffffffffe, 0x7f, 0xffff, 0xc3, 0x2, 0x7, 0x8, 0x101, 0x7f, 0x8, 0x7fff, 0x0, 0x71, 0x9, 0x1, 0x3ff, 0x1000, 0x0, 0x7fffffff, 0x13, 0x4, 0x2, 0x3, 0x9, 0x48e, 0x590, 0x6e, 0xad22, 0x8, 0x640, 0x4, 0x2, 0x3, 0x7, 0x2, 0xffff, 0x8e8, 0x2, 0x7, 0xf395, 0xcf15, 0x6, 0x75, 0x7fffffff, 0x80000000, 0x3c97, 0x3fc2, 0x1, 0xfffffffffffffffc, 0x5, 0x8d83, 0x7, 0x695, 0x4c6d, 0x20, 0x0, 0x6, 0x5fcafaf3, 0x7ff, 0x9, 0x1ff, 0x0, 0x8d5e, 0x200, 0x6, 0xe8, 0x4, 0x7fffffff, 0x9, 0x0, 0x6, 0xfffffffffffffffa, 0x100000001, 0x4, 0x5, 0x800, 0x100, 0x0, 0x1, 0x6, 0x93, 0x1000, 0x1, 0x4, 0x3, 0x2, 0x1, 0x3, 0x1, 0x1ff, 0x3ff, 0x8000, 0xcb, 0xffffffff00000000, 0x2, 0x2, 0x2, 0x3, 0x100, 0x0, 0x5, 0x9, 0x29e, 0xffffffff, 0x9, 0x7ff, 0x1, 0x4, 0x2, 0x1000, 0x5, 0x80000001, 0x8, 0x2, 0xffffffff80000000, 0xff, 0xbe3, 0x8, 0x1, 0x5e, 0x1f, 0x1000]}) fcntl$addseals(0xffffffffffffffff, 0x409, 0x0) getsockopt$IPT_SO_GET_INFO(r1, 0x0, 0x40, &(0x7f0000000640)={'filter\x00'}, &(0x7f0000000080)=0x54) [ 89.883220] EXT4-fs (loop4): VFS: Can't find ext4 filesystem [ 90.449441] device bridge_slave_1 left promiscuous mode [ 90.455103] bridge0: port 2(bridge_slave_1) entered disabled state [ 90.465827] device bridge_slave_0 left promiscuous mode [ 90.471372] bridge0: port 1(bridge_slave_0) entered disabled state [ 90.504392] team0 (unregistering): Port device team_slave_1 removed [ 90.514586] team0 (unregistering): Port device team_slave_0 removed [ 90.525644] bond0 (unregistering): Releasing backup interface bond_slave_1 [ 90.545296] bond0 (unregistering): Releasing backup interface bond_slave_0 [ 90.572761] bond0 (unregistering): Released all slaves [ 90.916205] IPVS: ftp: loaded support on port[0] = 21 [ 91.488854] bridge0: port 1(bridge_slave_0) entered blocking state [ 91.495288] bridge0: port 1(bridge_slave_0) entered disabled state [ 91.503142] device bridge_slave_0 entered promiscuous mode [ 91.539603] bridge0: port 2(bridge_slave_1) entered blocking state [ 91.546087] bridge0: port 2(bridge_slave_1) entered disabled state [ 91.553298] device bridge_slave_1 entered promiscuous mode [ 91.589199] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 91.626148] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 91.695388] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 91.722475] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 91.827698] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 91.834832] team0: Port device team_slave_0 added [ 91.858247] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 91.865576] team0: Port device team_slave_1 added [ 91.889060] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 91.915281] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 91.941679] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 91.967655] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 92.192355] bridge0: port 2(bridge_slave_1) entered blocking state [ 92.198746] bridge0: port 2(bridge_slave_1) entered forwarding state [ 92.205394] bridge0: port 1(bridge_slave_0) entered blocking state [ 92.211765] bridge0: port 1(bridge_slave_0) entered forwarding state [ 93.021277] 8021q: adding VLAN 0 to HW filter on device bond0 [ 93.103970] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 93.184616] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 93.190948] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 93.198492] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 93.273910] 8021q: adding VLAN 0 to HW filter on device team0 2018/04/30 22:50:26 executing program 7: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x1, 0x0) 2018/04/30 22:50:26 executing program 3: r0 = syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x8, 0x319000) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000000000, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x8000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0x0, r0, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(0xffffffffffffffff, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x2000000}, 0x1c) syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1) 2018/04/30 22:50:26 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000240)={{{@in6=@dev, @in6=@mcast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@remote}, 0x0, @in6=@ipv4={[], [], @remote}}}, &(0x7f0000000040)=0xe8) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000200)={'bond0\x00', r1}) sendmsg$nl_route(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10}, 0xc, &(0x7f00000000c0)={&(0x7f0000000400)=@setlink={0x2c, 0x13, 0x205, 0x0, 0x0, {0x0, 0x0, 0x0, r2}, [@IFLA_VFINFO_LIST={0xc, 0x16, [{0x8, 0x1, [@generic='g']}]}]}, 0x2c}, 0x1}, 0x0) 2018/04/30 22:50:26 executing program 2: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_init_net_socket$nfc_raw(0x27, 0xfffffffffffffffc, 0x0) recvmmsg(r0, &(0x7f0000000180)=[{{0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000080)=""/92, 0x5c}, {&(0x7f00000003c0)=""/242, 0xf2}, {&(0x7f0000000100)=""/40, 0x28}, {&(0x7f0000000500)=""/221, 0xdd}], 0x4, &(0x7f0000000600)=""/241, 0xf1, 0x7}, 0x49}], 0x1, 0x40002000, &(0x7f0000000200)) mkdir(&(0x7f0000000040)='./file0\x00', 0x0) syz_mount_image$xfs(&(0x7f00000008c0)='xfs\x00', &(0x7f0000000900)='./file0\x00', 0x3, 0x3, &(0x7f0000000b40)=[{&(0x7f0000000940)="2c5c79d0592b9e5d8c205da7fbb9ab13949ffaf508c5d7a66e0479af3d0ffdf320266b7300c18960b1f9d4508aa37b3c0c6a5db4a67e60334e2117db4340f6b9d30617561b5fa9f5514572a9a947fc1751bf3e4e088b84a54b591114f3c7ec8bd44346f313bead03558386be2b36d661ca355d9a8384c94c2184aa42fc3c19e1faaed2bc3569fceb2c57ab00f5", 0x8d}, {&(0x7f0000000a00)="5ff5c141a44167bd9eb39ae1d8c890ddb5d281127028170e08ec1e7c1389a5b988a5f94c4f1134aecb92ad015f7cf2521f0502980c875a5bb18638e62522f6af46151137e76e804ffec5a2cd78c5bec2284745e0cf8538", 0x57, 0x6}, {&(0x7f0000000a80)="0845b4366d8781a6786ff40e7ada181d327e3060d0cc50c3895596d676a7e4a458f1989ab6e084f342c11f6b7e278bba4936fafe2f36e902089e8c8dd7c4ca373cfbf0cc86143283cb0fbab97d0c6acb71e62ba216405354b01d7e86cd2e685797ec5b097a7383b20a84b3865027203624012acb9297d04fcf2bba26b3e2d4acdf7e486c4c88c9800dd5fb6d1404104ccf552d5d0842b8032cf6bc8574", 0x9d, 0x2}], 0x1000, &(0x7f0000000bc0)={'nouuid,', {[{@norecovery='norecovery', 0x2c}]}}) mount(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000300)='./file0\x00', &(0x7f0000000380)='proc\x00', 0x0, &(0x7f00000005c0)) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f0000000280)={'sit0\x00', {0x2, 0x4e21, @loopback=0x7f000001}}) r1 = getgid() r2 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000340)='/dev/vsock\x00', 0x400000, 0x0) ioctl$KVM_GET_MSR_INDEX_LIST(r2, 0xc004ae02, &(0x7f00000004c0)=ANY=[@ANYBLOB="0300000000000400000000"]) syz_fuseblk_mount(&(0x7f00000002c0)='./file0\x00', &(0x7f0000000240)='./file0\x00', 0x0, 0x0, r1, 0x0, 0x0, 0x0) socket$unix(0x1, 0x2, 0x0) r3 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000880)='/dev/rtc0\x00', 0x8000, 0x0) getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r2, 0x84, 0x9, &(0x7f0000000700)={0x0, @in={{0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x15}}}, 0x2a13, 0x200, 0x7f, 0x5, 0x40}, &(0x7f00000007c0)=0x98) getsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r2, 0x84, 0x13, &(0x7f0000000800)={r4, 0x369}, &(0x7f0000000840)=0x8) sendmmsg$unix(r3, &(0x7f00000008c0), 0x0, 0x4014) 2018/04/30 22:50:26 executing program 5: r0 = open(&(0x7f0000000000)='./file0\x00', 0x80040, 0x0) r1 = open(&(0x7f00007e2ff8)='./file0\x00', 0x0, 0x0) fcntl$setlease(r1, 0x400, 0x0) fcntl$setlease(r0, 0x400, 0x0) fcntl$setlease(r0, 0x400, 0x2) 2018/04/30 22:50:26 executing program 0: getsockopt$sock_cred(0xffffffffffffff9c, 0x1, 0x11, &(0x7f0000000040), &(0x7f0000000080)=0xc) r0 = openat$zero(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/zero\x00', 0x400, 0x0) r1 = mmap$binder(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000001, 0x41050, 0xffffffffffffff9c, 0x0) ioctl$BINDER_GET_NODE_DEBUG_INFO(r0, 0xc018620b, &(0x7f0000000200)={r1}) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f00000000c0)={0x0}, &(0x7f0000000100)=0xc) r3 = getpgrp(r2) restart_syscall() r4 = gettid() ioctl$DRM_IOCTL_MARK_BUFS(r0, 0x40206417, &(0x7f0000000240)={0x4, 0x4, 0x5, 0x9, 0x8}) rt_sigprocmask(0x0, &(0x7f0000032ff8)={0xfffffffffffffffe}, 0x0, 0x8) r5 = dup3(0xffffffffffffff9c, 0xffffffffffffff9c, 0x80000) connect$netlink(r5, &(0x7f0000000180)=@kern={0x10, 0x0, 0x0, 0x2000080}, 0xc) ioctl$KVM_X86_SET_MCE(r5, 0x4040ae9e, &(0x7f0000000280)={0x100000000000000, 0x1000, 0x7ff, 0x5, 0x15}) ioctl$KVM_X86_SET_MCE(r5, 0x4040ae9e, &(0x7f0000000000)={0x6400000000000000, 0x10000, 0x3f, 0x8, 0x20}) rt_tgsigqueueinfo(r3, r4, 0x4, &(0x7f000058a000)={0x9, 0x0, 0x5, 0x1}) r6 = signalfd4(0xffffffffffffffff, &(0x7f0000006000)={0x7fffffff}, 0x8, 0x0) setsockopt$inet_sctp_SCTP_AUTO_ASCONF(r5, 0x84, 0x1e, &(0x7f0000000140)=0x7, 0x4) ioctl$SG_GET_REQUEST_TABLE(r6, 0x2286, &(0x7f0000000400)) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x8) readv(r6, &(0x7f00000003c0)=[{&(0x7f0000000300)=""/133, 0x85}], 0x1) 2018/04/30 22:50:26 executing program 6: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0xc003, 0x0, 0x0, 0x0, 0x0) stat(&(0x7f0000000480)='./file0\x00', &(0x7f00000004c0)) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x1, 0x0) 2018/04/30 22:50:26 executing program 4: r0 = socket$inet6_sctp(0xa, 0x5, 0x84) r1 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vga_arbiter\x00', 0x1ab143, 0x0) bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f00000000c0)={r1, &(0x7f0000000080)="a5ae04c58d0e7e30609209b3c69bc28f6866634cbfd21a212e4af31eb69afa78", &(0x7f0000000140)=""/122}, 0x18) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [0x0]}, &(0x7f000095dffc)=0x8) getsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(r0, 0x84, 0x22, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, r2}, &(0x7f0000000100)=0x10) [ 93.780681] netlink: 4 bytes leftover after parsing attributes in process `syz-executor1'. 2018/04/30 22:50:27 executing program 5: r0 = socket$inet6(0xa, 0x1, 0x0) pipe(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) accept$packet(r1, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, &(0x7f0000000140)=0x14) ioctl$TIOCLINUX5(r1, 0x541c, &(0x7f0000000300)={0x5, 0x36, 0x3, 0x20, 0x7b39}) getsockopt$sock_buf(r0, 0x1, 0x3b, &(0x7f0000000080)=""/112, &(0x7f0000000100)=0x70) getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r2, 0x84, 0x9, &(0x7f0000000180)={0x0, @in6={{0xa, 0x4e23, 0xffff, @dev={0xfe, 0x80, [], 0x14}, 0x80000000}}, 0x0, 0x9ba, 0xfffffffffffffffa, 0x0, 0x4}, &(0x7f0000000240)=0x98) getsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(r0, 0x84, 0x18, &(0x7f0000000280)={r3, 0x6}, &(0x7f00000002c0)=0x8) 2018/04/30 22:50:27 executing program 4: sched_setattr(0x0, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x0, 0x3}, 0x0) pipe2(&(0x7f0000f61000)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r1, 0x84, 0x6, &(0x7f00000002c0)={0x0, @in6={{0xa, 0x4e24, 0x1, @empty, 0x1f}}}, &(0x7f0000000100)=0x84) ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82) setsockopt$inet_sctp_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f00000001c0)={r2, 0x5}, 0x8) r3 = dup2(r1, r0) getsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r0, 0x84, 0x75, &(0x7f0000000200)={r2, 0x80000001}, &(0x7f0000000380)=0x8) getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER(r3, 0x84, 0x7b, &(0x7f0000000000)={0x0, 0x5}, &(0x7f0000000040)=0x8) setsockopt$inet_sctp6_SCTP_RESET_ASSOC(r0, 0x84, 0x78, &(0x7f00000000c0)=r4, 0x4) clock_gettime(0x0, &(0x7f0000000180)={0x0, 0x0}) ppoll(&(0x7f0000000140)=[{r3}], 0x1, &(0x7f00000003c0)={0x0, r5+30000000}, &(0x7f0000000280), 0x8) 2018/04/30 22:50:27 executing program 3: syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x8, 0x319000) r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x2000000}, 0x1c) syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1) 2018/04/30 22:50:27 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = memfd_create(&(0x7f0000000240)='#\x00', 0x0) read$eventfd(r1, &(0x7f0000000100), 0x8) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) ioctl$KVM_IRQ_LINE(r2, 0x4008ae61, &(0x7f00000000c0)={0x8, 0xa96}) ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000000140)={0x3, 0x1}) getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r1, 0x84, 0x66, &(0x7f0000000000)={0x0, 0x6}, &(0x7f0000000080)=0x8) setsockopt$inet_sctp6_SCTP_RESET_STREAMS(r1, 0x84, 0x77, &(0x7f0000000180)={r3, 0x625, 0x7, [0x11aa, 0xee, 0xb6, 0x7, 0x10001, 0x13489acd, 0xfffffffffffffff8]}, 0x16) 2018/04/30 22:50:27 executing program 1: r0 = msgget(0x0, 0x20) msgctl$MSG_INFO(r0, 0xc, &(0x7f0000000080)=""/124) r1 = syz_open_dev$evdev(&(0x7f0000000040)='/dev/input/event#\x00', 0x0, 0x0) ioctl(r1, 0x800000080004539, &(0x7f0000a8d000)) 2018/04/30 22:50:27 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x4000000000001f) writev(r0, &(0x7f0000493000)=[{&(0x7f0000bae000)="58000000140019f700db4b01040d8c560a06000000000410489619c3001158a2e04a03ca8164243e8900000028215a0004fbf50dfff90004a50b00ff001c0843000000000000221f080001000a000400000100ec6b0f076e", 0x58}], 0x1) 2018/04/30 22:50:27 executing program 2: mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000348f88)={0x2, 0x70, 0x3e6}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = userfaultfd(0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000002000)={0xaa}) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000001000)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1}) r1 = socket$inet_udp(0x2, 0x2, 0x0) getsockopt$inet_udp_int(r1, 0x11, 0x0, &(0x7f0000000000), &(0x7f0000012000)=0xf125c8470b668d4a) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) r2 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x400400, 0x0) getsockopt$inet_dccp_int(r2, 0x21, 0xf, &(0x7f00000000c0), &(0x7f0000000100)=0xfffffffffffffc99) r3 = syz_open_dev$dspn(&(0x7f0000000200)='/dev/dsp#\x00', 0x0, 0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000040)={0xaa, 0x2}) ioctl$UFFDIO_ZEROPAGE(r0, 0x8010aa02, &(0x7f0000908ff0)={&(0x7f0000011000/0x3000)=nil, 0x3000}) ioctl$VHOST_RESET_OWNER(r3, 0xaf02, 0x0) 2018/04/30 22:50:27 executing program 3: syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x8, 0x319000) r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x2000000}, 0x1c) syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1) [ 94.173168] device bridge_slave_1 left promiscuous mode [ 94.179102] bridge0: port 2(bridge_slave_1) entered disabled state [ 94.215965] device bridge_slave_0 left promiscuous mode [ 94.221632] bridge0: port 1(bridge_slave_0) entered disabled state [ 94.331760] team0 (unregistering): Port device team_slave_1 removed [ 94.358773] team0 (unregistering): Port device team_slave_0 removed [ 94.377904] bond0 (unregistering): Releasing backup interface bond_slave_1 [ 94.393235] bond0 (unregistering): Releasing backup interface bond_slave_0 [ 94.424772] bond0 (unregistering): Released all slaves [ 95.455136] IPVS: ftp: loaded support on port[0] = 21 [ 95.828791] bridge0: port 1(bridge_slave_0) entered blocking state [ 95.835204] bridge0: port 1(bridge_slave_0) entered disabled state [ 95.842529] device bridge_slave_0 entered promiscuous mode [ 95.866672] bridge0: port 2(bridge_slave_1) entered blocking state [ 95.873081] bridge0: port 2(bridge_slave_1) entered disabled state [ 95.880308] device bridge_slave_1 entered promiscuous mode [ 95.904715] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 95.929174] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 95.997713] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 96.024323] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 96.128474] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 96.135642] team0: Port device team_slave_0 added [ 96.158839] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 96.166118] team0: Port device team_slave_1 added [ 96.189865] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 96.216151] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 96.241987] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 96.249312] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 96.258464] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 96.277546] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 96.284693] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 96.293868] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 96.509535] bridge0: port 2(bridge_slave_1) entered blocking state [ 96.515955] bridge0: port 2(bridge_slave_1) entered forwarding state [ 96.522617] bridge0: port 1(bridge_slave_0) entered blocking state [ 96.529003] bridge0: port 1(bridge_slave_0) entered forwarding state [ 96.536525] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 96.927171] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 97.337721] 8021q: adding VLAN 0 to HW filter on device bond0 [ 97.416562] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 97.494502] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 97.500724] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 97.508360] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 97.584229] 8021q: adding VLAN 0 to HW filter on device team0 2018/04/30 22:50:32 executing program 7: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x1, 0x0) 2018/04/30 22:50:32 executing program 6: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0xc003, 0x0, 0x0, 0x0, 0x0) stat(&(0x7f0000000480)='./file0\x00', &(0x7f00000004c0)) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x1, 0x0) 2018/04/30 22:50:32 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000018000)={&(0x7f000001a000)={0x10}, 0xc, &(0x7f000000e000)={&(0x7f00005e4000)={0x18, 0x1d, 0xffffffffffffffff, 0x0, 0x0, {0x5}, [@nested={0x4, 0x200000000000001}]}, 0x18}, 0x1}, 0x0) r1 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vga_arbiter\x00', 0x20c0, 0x0) ioctl$sock_bt_hidp_HIDPCONNADD(r1, 0x400448c8, &(0x7f0000000100)={r0, r0, 0x8001, 0x0, &(0x7f0000000040)="2d5d3e65d6108dfa894876b4702bff9a3fcfde9eafb09180a3d2ab638bc723e4cdbe6753f2011d6209aa9ee584272ec564640a31a64c1c684fe96acb33c6de7551739fdad428f593af10a49063e0516829ed3116a47516a3e1ce051df75e9a4fb187517cf143cf05cfaf90cc28838759e9d6d94ab9ec430d26317e13990722c29610cc126678266819d319398175806c4fa8c2582d78633eafef254ec9e28585cc709b97dad1311e5f", 0x4, 0xfffffffffffffff9, 0xffffffff, 0x3, 0x7, 0x800, 0x4, "2505bf"}) socket$nl_generic(0x10, 0x3, 0x10) 2018/04/30 22:50:32 executing program 3: syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x8, 0x319000) r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x2000000}, 0x1c) syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1) 2018/04/30 22:50:32 executing program 5: r0 = socket$can_bcm(0x1d, 0x2, 0x2) getsockopt$sock_buf(r0, 0x1, 0x37, &(0x7f00000000c0)=""/182, &(0x7f00000001c0)=0xb6) r1 = socket$vsock_stream(0x28, 0x1, 0x0) connect$can_bcm(r0, &(0x7f0000000180)={0x1d}, 0x10) sendmsg$key(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000005ff0)={&(0x7f0000000040)={0x5, 0x0, 0x0, 0x0, 0xf, 0x0, 0x0, 0x0, [@sadb_x_filter={0x5, 0x1a, @in=@loopback=0x7f000001, @in6=@dev={0xfe, 0x80}}, @sadb_x_kmaddress={0x7, 0x19, 0x0, @in={0x2, 0x0, @broadcast=0xffffffff}, @in6={0xa, 0x0, 0x0, @mcast2={0xff, 0x2, [], 0x1}}}, @sadb_x_nat_t_type={0x1, 0x14}]}, 0x78}, 0x1}, 0xfffffffffffffffc) dup2(r1, r0) 2018/04/30 22:50:32 executing program 2: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_crypto(r0, &(0x7f0000000180)={&(0x7f0000000000)={0x10}, 0xc, &(0x7f0000000140)={&(0x7f0000000040)=@upd={0xe0, 0x12, 0x401, 0x0, 0x0, {{'chacha20-generic\x00'}}}, 0x3a4}, 0x1}, 0x0) r1 = socket$inet(0x2, 0x800, 0x7) bind$inet(r1, &(0x7f00000001c0)={0x2, 0x4e21, @loopback=0x7f000001}, 0x10) 2018/04/30 22:50:32 executing program 4: r0 = socket$nl_xfrm(0x11, 0x3, 0x6) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f00000000c0)={0x0, 0x0}, &(0x7f0000000180)=0x7) setreuid(0x0, r2) ptrace$poke(0x5, r1, &(0x7f0000000000), 0x3) r3 = socket$inet_tcp(0x2, 0x1, 0x0) shutdown(r0, 0x1) r4 = getpgrp(0x0) bind$inet(r3, &(0x7f0000b9bff0)={0x2, 0x4e21, @loopback=0x7f000001}, 0x10) fcntl$setownex(r3, 0xf, &(0x7f0000000840)={0x0, r4}) sendto$inet(r3, &(0x7f0000fa0fff), 0xffffffffffffffbb, 0x20020003, &(0x7f0000385ff0)={0x2, 0x4e21, @loopback=0x7f000001}, 0x10) r5 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/vcs\x00', 0x80000, 0x0) setsockopt$l2tp_PPPOL2TP_SO_SENDSEQ(r5, 0x111, 0x3, 0x0, 0x4) 2018/04/30 22:50:32 executing program 1: r0 = getpgrp(0x0) r1 = gettid() rt_sigprocmask(0x0, &(0x7f0000032ff8)={0xffffffffffffff7f}, 0x0, 0x8) rt_tgsigqueueinfo(r0, r1, 0x11, &(0x7f0000000000)={0x0, 0x0, 0x3}) r2 = signalfd4(0xffffffffffffffff, &(0x7f0000000ff8)={0xfffffffffffffdb0}, 0x8, 0x0) openat$cgroup_root(0xffffffffffffff9c, &(0x7f00000000c0)='./cgroup/syz1\x00', 0x200002, 0x0) memfd_create(&(0x7f0000000080)='fou\x00', 0x3) fsync(r2) syz_genetlink_get_family_id$fou(&(0x7f0000000040)='fou\x00') read(r2, &(0x7f0000000280)=""/128, 0xffffff39) 2018/04/30 22:50:32 executing program 5: r0 = gettid() r1 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) perf_event_open(&(0x7f0000000100)={0x7, 0x70, 0x7, 0xfffffffffffffffa, 0x5ba6, 0x85, 0x0, 0x1, 0x1000, 0x4, 0x1000, 0x1000, 0x1f, 0x0, 0x5, 0x5d, 0xf6a2, 0x1, 0x8, 0x8, 0x6, 0x4, 0x3, 0x27, 0xa1, 0x1, 0x8, 0x4, 0x0, 0x3, 0xf3ab, 0x5, 0xcc3, 0x6, 0x8, 0x0, 0x6, 0x40, 0x0, 0x9, 0x3, @perf_bp={&(0x7f00000000c0), 0x8}, 0x18004, 0x1ff, 0x7, 0x0, 0x3, 0x1, 0x400}, r0, 0xb, r1, 0x1) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = epoll_create1(0x0) epoll_pwait(r2, &(0x7f0000000040)=[{}], 0x1, 0x9, &(0x7f0000000080), 0x8) tgkill(r0, r0, 0xf) 2018/04/30 22:50:32 executing program 3: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000000000, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x8000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x2000000}, 0x1c) syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1) [ 98.974679] netlink: 'syz-executor0': attribute type 1 has an invalid length. [ 98.990530] netlink: 192 bytes leftover after parsing attributes in process `syz-executor2'. [ 99.002982] netlink: 'syz-executor0': attribute type 1 has an invalid length. 2018/04/30 22:50:32 executing program 1: recvmsg(0xffffffffffffffff, &(0x7f0000346fc8)={&(0x7f0000baefec)=@ll={0x0, 0x0, 0x0}, 0x14, &(0x7f0000ca3000)=[{&(0x7f0000000100)=""/15, 0xf}, {&(0x7f0000000240)=""/87, 0x57}, {&(0x7f00008e3f35)=""/203, 0xcb}, {&(0x7f0000cd5ffe)=""/2, 0x2}], 0x4, &(0x7f0000a01f13)=""/237, 0xfffffffffffffdd8}, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x6, 0x5, &(0x7f0000346fc8)=@framed={{0x18}, [@alu={0x201a7f1b, 0x0, 0x6, 0x1}], {0x95}}, &(0x7f0000000080)="03000000", 0x40, 0xfb, &(0x7f0000000140)=""/251, 0x0, 0x0, [], r0}, 0x48) r1 = openat$zero(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/zero\x00', 0x193d00, 0x0) ioctl$VHOST_RESET_OWNER(r1, 0xaf02, 0x0) 2018/04/30 22:50:32 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000018000)={&(0x7f000001a000)={0x10}, 0xc, &(0x7f000000e000)={&(0x7f00005e4000)={0x18, 0x1d, 0xffffffffffffffff, 0x0, 0x0, {0x5}, [@nested={0x4, 0x200000000000001}]}, 0x18}, 0x1}, 0x0) r1 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vga_arbiter\x00', 0x20c0, 0x0) ioctl$sock_bt_hidp_HIDPCONNADD(r1, 0x400448c8, &(0x7f0000000100)={r0, r0, 0x8001, 0x0, &(0x7f0000000040)="2d5d3e65d6108dfa894876b4702bff9a3fcfde9eafb09180a3d2ab638bc723e4cdbe6753f2011d6209aa9ee584272ec564640a31a64c1c684fe96acb33c6de7551739fdad428f593af10a49063e0516829ed3116a47516a3e1ce051df75e9a4fb187517cf143cf05cfaf90cc28838759e9d6d94ab9ec430d26317e13990722c29610cc126678266819d319398175806c4fa8c2582d78633eafef254ec9e28585cc709b97dad1311e5f", 0x4, 0xfffffffffffffff9, 0xffffffff, 0x3, 0x7, 0x800, 0x4, "2505bf"}) socket$nl_generic(0x10, 0x3, 0x10) 2018/04/30 22:50:32 executing program 4: syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f0000000100)='./file0\x00', 0xe000, 0x1, &(0x7f0000000040)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020401000200027000f8", 0x16}], 0x0, &(0x7f0000000240)=ANY=[]) r0 = open$dir(&(0x7f0000000200)='./file0\x00', 0x0, 0x141) lseek(r0, 0x1, 0x4) r1 = syz_open_dev$mouse(&(0x7f0000000340)='/dev/input/mouse#\x00', 0xee, 0x10000) write$sndseq(r1, &(0x7f0000000440)=[{0x1, 0xda7, 0x2, 0x9, @time={0x0, 0x1c9c380}, {0x81, 0x7}, {0x3, 0xffffffffffffffff}, @queue={0x7, {0x80000001, 0x4}}}, {0x3, 0xffff, 0x8, 0x1, @time, {0x2b0d, 0x100000000}, {0x8000, 0x5}, @addr={0x80, 0x3}}, {0x40, 0x7, 0x979, 0x8000, @tick=0x76, {0x0, 0xfff}, {0x4, 0x80000001}, @queue={0xe3, {0x2, 0x1960}}}, {0x10001, 0xffffffffffffffe0, 0x2, 0xf4, @tick, {0x8000, 0x7c8}, {0x800, 0x1}, @ext={0xb5, &(0x7f0000000380)="c6d35e415a3482352998651a616aeebaaa2f44eb3fd902355c034f5d97816053d6cbdfbef99a0fc6ade8d7c2c86845529d8c4128b228e21f286a283b0b32c984705381a5443d22879cc5fba04cce99e0a690e8fa8e4df0a7fac55b3c60948cab582ba6a6b28baf62259730671f80852d508ada29e930907ee8ec6fe9d2a02172947cec5a8980269b87af76f3cfc50f01e8701bbaf1f2484ab4045994ab1f4eb2cd6d25f8940a785252dceb9738d1336fcb32eefab4"}}, {0x1ff, 0x0, 0x8, 0x3, @tick=0x3, {0x2, 0x3f}, {0xb0, 0x1}, @note={0x3, 0x20, 0x0, 0x6, 0xffffffff}}, {0x1, 0x8, 0x9, 0x358, @time={0x77359400}, {0x9, 0xffffffff}, {0x57a6, 0x200}, @addr={0xffffffffffffffc0, 0x54}}, {0x1, 0x9, 0xfff, 0x7f, @time, {0x0, 0x109800000}, {0x100, 0x6}, @control={0x0, 0xc62b, 0x80}}], 0x150) r2 = syz_open_dev$dmmidi(&(0x7f0000000080)='/dev/dmmidi#\x00', 0x1f, 0x400) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffff9c, 0x0, 0x10, &(0x7f0000000240)={{{@in=@remote, @in, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@local}, 0x0, @in=@local}}, &(0x7f00000000c0)=0xe8) ioctl$sock_inet6_SIOCDELRT(r2, 0x890c, &(0x7f0000000180)={@mcast2={0xff, 0x2, [], 0x1}, @remote={0xfe, 0x80, [], 0xbb}, @local={0xfe, 0x80, [], 0xaa}, 0x4, 0x6, 0xfffffffffffff9db, 0x500, 0xa7ba, 0x40304, r3}) getsockopt$inet_sctp_SCTP_LOCAL_AUTH_CHUNKS(r1, 0x84, 0x1b, &(0x7f0000000700)=ANY=[@ANYRES32=0x0, @ANYBLOB="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"], &(0x7f0000000640)=0x5d) setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(r1, 0x84, 0x7c, &(0x7f0000000680)={r4, 0x8000, 0x8}, 0x8) getdents(r0, &(0x7f0000000140)=""/50, 0x7) 2018/04/30 22:50:32 executing program 6: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0xc003, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x1, 0x0) [ 99.191397] netlink: 192 bytes leftover after parsing attributes in process `syz-executor2'. [ 99.216346] netlink: 'syz-executor0': attribute type 1 has an invalid length. 2018/04/30 22:50:32 executing program 3: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000000000, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x8000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x2000000}, 0x1c) syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1) [ 99.253451] IPVS: ftp: loaded support on port[0] = 21 2018/04/30 22:50:32 executing program 5: perf_event_open(&(0x7f00000000c0)={0x2, 0x70, 0x3e6}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$kcm(0x2, 0x3, 0x2) r1 = syz_open_dev$vcsa(&(0x7f0000000040)='/dev/vcsa#\x00', 0xffffffff, 0x0) setsockopt$inet_sctp6_SCTP_EVENTS(r1, 0x84, 0xb, &(0x7f0000000080)={0x9, 0x2e1, 0x80000000, 0x8000, 0xcbaa, 0x1, 0xd6, 0x6, 0x2, 0x2, 0x8}, 0xb) ioctl$sock_kcm_SIOCKCMUNATTACH(r0, 0x89e1, &(0x7f00000002c0)) [ 99.445594] device bridge_slave_1 left promiscuous mode [ 99.451283] bridge0: port 2(bridge_slave_1) entered disabled state [ 99.479508] device bridge_slave_0 left promiscuous mode [ 99.483800] IPVS: ftp: loaded support on port[0] = 21 [ 99.485177] bridge0: port 1(bridge_slave_0) entered disabled state [ 99.536583] team0 (unregistering): Port device team_slave_1 removed [ 99.546725] team0 (unregistering): Port device team_slave_0 removed [ 99.558149] bond0 (unregistering): Releasing backup interface bond_slave_1 [ 99.574479] bond0 (unregistering): Releasing backup interface bond_slave_0 [ 99.602506] bond0 (unregistering): Released all slaves [ 100.613916] bridge0: port 1(bridge_slave_0) entered blocking state [ 100.620383] bridge0: port 1(bridge_slave_0) entered disabled state [ 100.631908] device bridge_slave_0 entered promiscuous mode [ 100.703108] bridge0: port 1(bridge_slave_0) entered blocking state [ 100.709532] bridge0: port 1(bridge_slave_0) entered disabled state [ 100.717821] device bridge_slave_0 entered promiscuous mode [ 100.725415] bridge0: port 2(bridge_slave_1) entered blocking state [ 100.731922] bridge0: port 2(bridge_slave_1) entered disabled state [ 100.743971] device bridge_slave_1 entered promiscuous mode [ 100.766695] bridge0: port 2(bridge_slave_1) entered blocking state [ 100.773132] bridge0: port 2(bridge_slave_1) entered disabled state [ 100.780684] device bridge_slave_1 entered promiscuous mode [ 100.799332] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 100.816091] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 100.873303] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 100.886208] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 101.000768] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 101.038921] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 101.054813] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 101.093163] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 101.129493] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 101.136426] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 101.172959] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 101.179929] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 101.224807] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 101.232430] team0: Port device team_slave_0 added [ 101.266338] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 101.273791] team0: Port device team_slave_1 added [ 101.282745] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 101.290663] team0: Port device team_slave_0 added [ 101.307853] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 101.326166] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 101.333718] team0: Port device team_slave_1 added [ 101.345175] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 101.369097] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 101.383961] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 101.391215] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 101.401996] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 101.413761] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 101.434870] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 101.442379] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 101.450909] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 101.461220] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 101.468404] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 101.476492] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 101.513370] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 101.520514] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 101.528990] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 101.831430] bridge0: port 2(bridge_slave_1) entered blocking state [ 101.837985] bridge0: port 2(bridge_slave_1) entered forwarding state [ 101.844675] bridge0: port 1(bridge_slave_0) entered blocking state [ 101.851096] bridge0: port 1(bridge_slave_0) entered forwarding state [ 101.859670] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 101.896501] bridge0: port 2(bridge_slave_1) entered blocking state [ 101.902942] bridge0: port 2(bridge_slave_1) entered forwarding state [ 101.909633] bridge0: port 1(bridge_slave_0) entered blocking state [ 101.916057] bridge0: port 1(bridge_slave_0) entered forwarding state [ 101.923320] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 102.175587] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 102.188884] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 103.164812] 8021q: adding VLAN 0 to HW filter on device bond0 [ 103.243357] 8021q: adding VLAN 0 to HW filter on device bond0 [ 103.285440] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 103.370890] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 103.409382] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 103.415698] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 103.424817] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 103.501784] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 103.508147] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 103.515771] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 103.558366] 8021q: adding VLAN 0 to HW filter on device team0 [ 103.631950] 8021q: adding VLAN 0 to HW filter on device team0 2018/04/30 22:50:37 executing program 4: r0 = socket(0xa, 0x3, 0x2) ioctl$fiemap(0xffffffffffffffff, 0xc020660b, &(0x7f0000000000)=ANY=[@ANYBLOB="00686316ebffffffd640170009e8ff800600000002"]) ioctl(r0, 0x8916, &(0x7f0000000000)) ioctl(r0, 0x100000008936, &(0x7f0000000000)) 2018/04/30 22:50:37 executing program 1: r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ppp\x00', 0x0, 0x0) ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_CLIENT(r0, 0xc04c5349, &(0x7f00000001c0)={0x0, 0x7}) getsockopt$inet6_buf(0xffffffffffffffff, 0x29, 0x0, &(0x7f0000000280)=""/128, &(0x7f0000000300)=0x80) syz_open_procfs(0x0, &(0x7f0000000580)='mounts\x00') r1 = getpid() mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x0, 0x10, 0xffffffffffffffff, 0x3) r2 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r2, 0x29, 0xd2, &(0x7f0000000000)={{0xa, 0x4e20, 0x0, @ipv4={[], [0xff, 0xff], @local={0xac, 0x14, 0x14, 0xaa}}}, {0xa, 0x4e20, 0x0, @mcast1={0xff, 0x1, [], 0x1}}}, 0x5c) setsockopt$inet6_MRT6_DEL_MFC(r2, 0x29, 0xcd, &(0x7f0000e93fb4)={{0xa, 0x4e20, 0x0, @mcast2={0xff, 0x2, [], 0x1}}, {0xa, 0x0, 0x0, @ipv4={[], [0xff, 0xff], @dev={0xac, 0x14, 0x14}}}}, 0x5c) r3 = syz_open_procfs(r1, &(0x7f0000000240)='fdinfo\x00') sched_setattr(r1, &(0x7f0000000380)={0x0, 0x0, 0x1, 0x0, 0x0, 0xd7c7}, 0x0) ioctl$EVIOCSCLOCKID(r3, 0x400445a0, &(0x7f0000000340)=0x9) setsockopt$inet_sctp_SCTP_INITMSG(r0, 0x84, 0x2, &(0x7f0000000180)={0xb2a, 0x7ff}, 0x7) r4 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/loop-control\x00', 0x0, 0x0) fcntl$setlease(0xffffffffffffffff, 0x400, 0x1) ptrace$peekuser(0x3, 0x0, 0x0) ioctl$LOOP_CTL_GET_FREE(r4, 0x4c82) r5 = ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82) ioctl$SNDRV_SEQ_IOCTL_RUNNING_MODE(r0, 0xc0105303, &(0x7f0000000640)={0x6, 0x6, 0x5}) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, r5) madvise(&(0x7f000000e000/0x4000)=nil, 0x4000, 0x3) ioctl$LOOP_CTL_GET_FREE(r4, 0x4c82) r6 = socket$netlink(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000080)={'bridge_slave_0\x00', 0x0}) sendmsg$nl_route(r6, &(0x7f0000000280)={&(0x7f0000000040)={0x10}, 0xc, &(0x7f00000001c0)={&(0x7f00000007c0)=ANY=[@ANYBLOB="20000000110001040000000000000000070000009d80aee7be678bfe2b524f2480f2aaa221456b1d1f85a5a5c69276b03df63f2146d21bbc361b17528abe11ea0a26d44f3450c67c04f7186a671a0442898652cf0d00f0f724ed1f6ad446d43d981131059afde43678385eeae7a57bf5a3b8ee6b765330bbdf42a6107f163d9daac288c7eaed3f4f06673eb78d720c51b89fcbe95d7ef28444b6985439b54e9a354c10e2fcda32ec28b2a5e5281c60e113d90e95fc6568e438bfafbed7901834d9297105106fd2cf158be973c79b642c861c7e5a4c49bf7f75a586f0220b632886c3cb872e058a283a5708978cf0a36e5ac8e018d026", @ANYRES32=r7, @ANYBLOB="e90d0200000075d998d1f2b0523145fb04b035d059bc940d7c5794bf207f6bbf859a82cab729f4ee27133374e890ba34015186a44c16aace56d4a9a71ddd0d9798"], 0x20}, 0x1}, 0x0) setsockopt$inet_udp_encap(0xffffffffffffffff, 0x11, 0x64, &(0x7f00000001c0), 0x4) r8 = add_key$keyring(&(0x7f0000000540)='keyring\x00', &(0x7f00000005c0)={0x73, 0x79, 0x7a, 0x3}, 0x0, 0x0, 0xfffffffffffffffb) keyctl$setperm(0x5, r8, 0x400) getsockopt$IP6T_SO_GET_INFO(0xffffffffffffffff, 0x29, 0x40, &(0x7f0000000400)={'mangle\x00'}, &(0x7f0000000480)=0x54) pwrite64(0xffffffffffffffff, &(0x7f0000000000)="a81cbe49008bf1", 0x7, 0x0) 2018/04/30 22:50:37 executing program 7: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x1, 0x0) 2018/04/30 22:50:37 executing program 0: r0 = socket$packet(0x11, 0x2, 0x300) setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000ff5ffc)={0x0, 0x3}, 0x4) r1 = socket$packet(0x11, 0x3, 0x300) getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f00000001c0)={0x0, @broadcast, @rand_addr}, &(0x7f0000000200)=0xc) bind$packet(r1, &(0x7f0000000940)={0x11, 0x16, r2, 0x1, 0x400ebc5e, 0x6, @dev={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xd}}, 0x14) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'gre0\x00'}) bind$packet(r1, &(0x7f0000000040)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}}, 0x14) r3 = socket$inet(0x2, 0x5, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r3, 0x0, 0x80, &(0x7f00000008c0)=@broute={'broute\x00', 0x20, 0x2, 0x3e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000280], 0x0, &(0x7f0000000240), &(0x7f0000000280)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1, [{{{0x11, 0x0, 0x0, 'ip6gretap0\x00', 'syz_tun\x00', 'ip6tnl0\x00', 'syz_tun\x00', @link_local={0x1, 0x80, 0xc2}, [0x0, 0x0, 0x0, 0x0, 0xff], @remote={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xbb}, [], 0x70, 0x108, 0x158}, [@common=@RATEEST={'RATEEST\x00', 0x20, {{'syz0\x00'}}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}]}, @common=@IDLETIMER={'IDLETIMER\x00', 0x28, {{0x10000, 'syz0\x00'}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0xd, 0x0, 0x86dd, 'syzkaller0\x00', 'tunl0\x00', 'sit0\x00', 'ifb0\x00', @empty, [], @broadcast=[0xff, 0xff, 0xff, 0xff, 0xff, 0xff], [], 0x130, 0x1b0, 0x200, [@ip6={'ip6\x00', 0x50, {{@empty, @ipv4={[], [0xff, 0xff], @local={0xac, 0x14, 0x14, 0xaa}}}}}, @limit={'limit\x00', 0x20, {{0x0, 0xec}}}]}, [@common=@IDLETIMER={'IDLETIMER\x00', 0x28, {{0x81, 'syz1\x00'}}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8}]}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}]}, 0x460) getsockopt$inet_sctp6_SCTP_CONTEXT(0xffffffffffffff9c, 0x84, 0x11, &(0x7f0000000000)={0x0, 0x7}, &(0x7f0000000040)=0x8) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r3, 0x84, 0xa, &(0x7f0000000140)={0x2, 0xa2b, 0x4, 0x7, 0x2, 0x20, 0x10000, 0x0, r4}, &(0x7f0000000180)=0x20) r5 = socket(0xf, 0x7ff, 0x6f) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0x0, 0x0}) ioctl$sock_SIOCETHTOOL(r6, 0x8946, &(0x7f0000000040)={'syz_tun\x00', &(0x7f0000000080)=@ethtool_link_settings={0x4d}}) setsockopt$inet_group_source_req(r5, 0x0, 0xfe0d64ad1c6cb9f1, &(0x7f0000000680)={0x1000, {{0x2, 0x4e23, @multicast1=0xe0000001}}, {{0x2, 0x4e22, @broadcast=0xffffffff}}}, 0x108) r7 = socket$inet6(0x10, 0x2, 0x0) sendmsg(r7, &(0x7f0000000080)={&(0x7f0000000240)=@nl=@kern={0x10}, 0x80, &(0x7f0000000040), 0x0, &(0x7f00000000c0)}, 0x0) setsockopt$inet6_tcp_TCP_ULP(r5, 0x6, 0x1f, &(0x7f00000007c0)='tls\x00', 0x4) setsockopt$EBT_SO_SET_ENTRIES(r3, 0x0, 0x80, &(0x7f0000001640)=@broute={'broute\x00', 0x20, 0x1, 0x1e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20001700], 0x0, &(0x7f0000001980), &(0x7f0000001700)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1, [{{{0x13, 0x0, 0x0, 'vcan0\x00', 'ifb0\x00', 'syzkaller0\x00', 'vcan0\x00', @remote={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xbb}, [], @link_local={0x1, 0x80, 0xc2}, [], 0x70, 0xf8, 0x128}, [@common=@dnat={'dnat\x00', 0x10, {{@dev={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa]}, 0xffffffffffffffff}}}, @common=@IDLETIMER={'IDLETIMER\x00', 0x28, {{0x4, 'syz0\x00'}}}]}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8}}]}, {0x0, '\x00', 0x1, 0xffffbffffffffffe}]}, 0x260) socketpair$inet(0x2, 0x80000, 0x1000, &(0x7f0000000880)) getsockopt$inet6_mtu(r5, 0x29, 0x17, &(0x7f0000000800), &(0x7f0000000840)=0x4) r8 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='schedstat\x00') setsockopt$bt_hci_HCI_FILTER(r8, 0x0, 0x2, &(0x7f00000000c0)={0x2, 0x8, 0x7, 0x3}, 0x10) setsockopt$packet_fanout(r5, 0x107, 0x12, &(0x7f0000000100)={0xfffffffffffffffe, 0x5, 0x2}, 0x4) 2018/04/30 22:50:37 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, &(0x7f0000000040)="0f20e06635020000000f22e0a736360f01c40f35660f3a41a4080044660fe9f7baf80c66b84ee1e88666efbafc0ced0f0766b93009000066b83700000066ba000000000f300ff7ee", 0x48}], 0x1, 0x0, &(0x7f0000000100), 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 2018/04/30 22:50:37 executing program 3: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000000000, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x8000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x2000000}, 0x1c) syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1) 2018/04/30 22:50:37 executing program 5: r0 = syz_open_dev$midi(&(0x7f0000000080)='/dev/midi#\x00', 0x4, 0x268000) write$binfmt_script(r0, &(0x7f00000000c0)={'#! ', './file0', [{0x20}, {0x20}, {0x20, 'lo'}], 0xa, "2053ecc56d4fc25e2065addbc61a1441882c387c585820a54f7ffd7536090b1e3072aa9fbdb7b3cad757ba52b9e9dde50f70c86496ac7fcd9cfd5ef10dc440ecb5838b9b25cfde3e4928b4c6d671ccf97fd2c664660b7827b1caf106602bd12ed831447f7282"}, 0x76) r1 = socket(0x10, 0x200000000002, 0xc) perf_event_open(&(0x7f0000348f88)={0x2, 0x70, 0x3e6}, 0x0, 0x0, 0xffffffffffffffff, 0x0) write(r1, &(0x7f0000000040)="1f0000000806fd00060000000000005e80ff150109000180060007ec000000", 0x280) 2018/04/30 22:50:37 executing program 6: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x1, 0x0) [ 104.413482] netlink: 'syz-executor5': attribute type 1 has an invalid length. 2018/04/30 22:50:37 executing program 3: r0 = syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x0, 0x319000) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000000000, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x8000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0x0, r0, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r1, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x2000000}, 0x1c) syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1) [ 104.470140] netlink: 'syz-executor5': attribute type 1 has an invalid length. [ 104.525343] netlink: 'syz-executor5': attribute type 1 has an invalid length. [ 104.556219] netlink: 'syz-executor5': attribute type 1 has an invalid length. 2018/04/30 22:50:37 executing program 4: r0 = socket$inet6(0xa, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000002c0)={'vcan0\x00', 0x0}) setsockopt$inet6_mreq(r0, 0x29, 0x1b, &(0x7f00000007c0)={@remote={0xfe, 0x80, [], 0xbb}, r1}, 0x14) r2 = dup(r0) write$eventfd(r2, &(0x7f0000000000), 0x8) 2018/04/30 22:50:37 executing program 1: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0xc003, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x1, 0x0) 2018/04/30 22:50:37 executing program 0: r0 = socket$packet(0x11, 0x2, 0x300) setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000ff5ffc)={0x0, 0x3}, 0x4) r1 = socket$packet(0x11, 0x3, 0x300) getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f00000001c0)={0x0, @broadcast, @rand_addr}, &(0x7f0000000200)=0xc) bind$packet(r1, &(0x7f0000000940)={0x11, 0x16, r2, 0x1, 0x400ebc5e, 0x6, @dev={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xd}}, 0x14) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'gre0\x00'}) bind$packet(r1, &(0x7f0000000040)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}}, 0x14) r3 = socket$inet(0x2, 0x5, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r3, 0x0, 0x80, &(0x7f00000008c0)=@broute={'broute\x00', 0x20, 0x2, 0x3e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000280], 0x0, &(0x7f0000000240), &(0x7f0000000280)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1, [{{{0x11, 0x0, 0x0, 'ip6gretap0\x00', 'syz_tun\x00', 'ip6tnl0\x00', 'syz_tun\x00', @link_local={0x1, 0x80, 0xc2}, [0x0, 0x0, 0x0, 0x0, 0xff], @remote={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xbb}, [], 0x70, 0x108, 0x158}, [@common=@RATEEST={'RATEEST\x00', 0x20, {{'syz0\x00'}}}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}]}, @common=@IDLETIMER={'IDLETIMER\x00', 0x28, {{0x10000, 'syz0\x00'}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0xd, 0x0, 0x86dd, 'syzkaller0\x00', 'tunl0\x00', 'sit0\x00', 'ifb0\x00', @empty, [], @broadcast=[0xff, 0xff, 0xff, 0xff, 0xff, 0xff], [], 0x130, 0x1b0, 0x200, [@ip6={'ip6\x00', 0x50, {{@empty, @ipv4={[], [0xff, 0xff], @local={0xac, 0x14, 0x14, 0xaa}}}}}, @limit={'limit\x00', 0x20, {{0x0, 0xec}}}]}, [@common=@IDLETIMER={'IDLETIMER\x00', 0x28, {{0x81, 'syz1\x00'}}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8}]}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}}]}]}, 0x460) getsockopt$inet_sctp6_SCTP_CONTEXT(0xffffffffffffff9c, 0x84, 0x11, &(0x7f0000000000)={0x0, 0x7}, &(0x7f0000000040)=0x8) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r3, 0x84, 0xa, &(0x7f0000000140)={0x2, 0xa2b, 0x4, 0x7, 0x2, 0x20, 0x10000, 0x0, r4}, &(0x7f0000000180)=0x20) r5 = socket(0xf, 0x7ff, 0x6f) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0x0, 0x0}) ioctl$sock_SIOCETHTOOL(r6, 0x8946, &(0x7f0000000040)={'syz_tun\x00', &(0x7f0000000080)=@ethtool_link_settings={0x4d}}) setsockopt$inet_group_source_req(r5, 0x0, 0xfe0d64ad1c6cb9f1, &(0x7f0000000680)={0x1000, {{0x2, 0x4e23, @multicast1=0xe0000001}}, {{0x2, 0x4e22, @broadcast=0xffffffff}}}, 0x108) r7 = socket$inet6(0x10, 0x2, 0x0) sendmsg(r7, &(0x7f0000000080)={&(0x7f0000000240)=@nl=@kern={0x10}, 0x80, &(0x7f0000000040), 0x0, &(0x7f00000000c0)}, 0x0) setsockopt$inet6_tcp_TCP_ULP(r5, 0x6, 0x1f, &(0x7f00000007c0)='tls\x00', 0x4) setsockopt$EBT_SO_SET_ENTRIES(r3, 0x0, 0x80, &(0x7f0000001640)=@broute={'broute\x00', 0x20, 0x1, 0x1e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20001700], 0x0, &(0x7f0000001980), &(0x7f0000001700)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1, [{{{0x13, 0x0, 0x0, 'vcan0\x00', 'ifb0\x00', 'syzkaller0\x00', 'vcan0\x00', @remote={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xbb}, [], @link_local={0x1, 0x80, 0xc2}, [], 0x70, 0xf8, 0x128}, [@common=@dnat={'dnat\x00', 0x10, {{@dev={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa]}, 0xffffffffffffffff}}}, @common=@IDLETIMER={'IDLETIMER\x00', 0x28, {{0x4, 'syz0\x00'}}}]}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8}}]}, {0x0, '\x00', 0x1, 0xffffbffffffffffe}]}, 0x260) socketpair$inet(0x2, 0x80000, 0x1000, &(0x7f0000000880)) getsockopt$inet6_mtu(r5, 0x29, 0x17, &(0x7f0000000800), &(0x7f0000000840)=0x4) r8 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='schedstat\x00') setsockopt$bt_hci_HCI_FILTER(r8, 0x0, 0x2, &(0x7f00000000c0)={0x2, 0x8, 0x7, 0x3}, 0x10) setsockopt$packet_fanout(r5, 0x107, 0x12, &(0x7f0000000100)={0xfffffffffffffffe, 0x5, 0x2}, 0x4) 2018/04/30 22:50:37 executing program 7: syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0xc003, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x1, 0x0) 2018/04/30 22:50:37 executing program 6: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x1, 0x0) 2018/04/30 22:50:37 executing program 2: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet(0x2, 0x2, 0x0) sendmmsg(r0, &(0x7f0000001e80)=[{{&(0x7f0000000000)=@in={0x2, 0x4e20}, 0x80, &(0x7f0000000080), 0x0, &(0x7f0000000080)}}, {{&(0x7f00000002c0)=@in={0x2, 0x4e21, @broadcast=0xffffffff}, 0x80, &(0x7f0000000600), 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="2000000000000000000000000700000083090400000077f60200000000000000"], 0x20}}], 0x2, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/audio\x00', 0x502, 0x0) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f0000000140)={'syzkaller0\x00', {0x2, 0x4e23, @remote={0xac, 0x14, 0x14, 0xbb}}}) r1 = semget(0x3, 0x3, 0xa) semctl$IPC_RMID(r1, 0x0, 0x0) r2 = semget(0x0, 0x7, 0x200) semctl$IPC_STAT(r2, 0x0, 0x2, &(0x7f0000000080)=""/57) 2018/04/30 22:50:37 executing program 5: mkdir(&(0x7f00000001c0)='./file0\x00', 0xffffffffffffffff) mount(&(0x7f0000018000)='./file0\x00', &(0x7f000001c000)='./file0\x00', &(0x7f0000018ffa)='ramfs\x00', 0x0, &(0x7f000000a000)) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040)='/dev/usbmon#\x00', 0x10001, 0x4041) socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000080)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58) setsockopt$sock_void(r0, 0x1, 0x1b, 0x0, 0x0) setsockopt$SO_VM_SOCKETS_BUFFER_MAX_SIZE(r0, 0x28, 0x2, &(0x7f0000000100)=0xc25, 0x8) chroot(&(0x7f0000000000)='./file0\x00') clone(0x3002017f, &(0x7f00000007c0), &(0x7f0000695000), &(0x7f000014e000), &(0x7f0000000040)) setsockopt$inet_tcp_buf(r0, 0x6, 0x0, &(0x7f0000000200)="412f1f9fa3c3919fdf3f28a5ae2435bfd54abe8c5e5edd10d184e21ba19ff36f0ed838e4a0a4e4d8e4afb5b7b2bfe20f1bd9efa9781a66582bd08405d90b09096d52e210ca2459fb5d3466c6b44f221ff8cc88b861270c073b3a0397645d8f1730", 0x61) seccomp(0x0, 0x1, &(0x7f0000000180)={0x4, &(0x7f0000000140)=[{0x7fffffff, 0x1c00, 0xfffffffffffffe01}, {0xffffffffffffff5f, 0x200, 0xf9b177f, 0x10001}, {0x10000, 0xfff, 0x8, 0x1}, {0x0, 0x21, 0x0, 0x480000}]}) 2018/04/30 22:50:37 executing program 3: r0 = syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x0, 0x0) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000000000, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x8000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0x0, r0, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r1, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x2000000}, 0x1c) syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1) [ 104.660343] device bridge_slave_1 left promiscuous mode [ 104.666081] bridge0: port 2(bridge_slave_1) entered disabled state [ 104.709411] device bridge_slave_0 left promiscuous mode [ 104.715113] bridge0: port 1(bridge_slave_0) entered disabled state 2018/04/30 22:50:38 executing program 7: syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0xc003, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x1, 0x0) 2018/04/30 22:50:38 executing program 1: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0xc003, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x1, 0x0) [ 104.894686] team0 (unregistering): Port device team_slave_1 removed [ 104.908262] IPVS: ftp: loaded support on port[0] = 21 [ 104.940431] team0 (unregistering): Port device team_slave_0 removed [ 104.954652] bond0 (unregistering): Releasing backup interface bond_slave_1 [ 104.977137] bond0 (unregistering): Releasing backup interface bond_slave_0 [ 105.010795] bond0 (unregistering): Released all slaves [ 105.726412] bridge0: port 1(bridge_slave_0) entered blocking state [ 105.732852] bridge0: port 1(bridge_slave_0) entered disabled state [ 105.740259] device bridge_slave_0 entered promiscuous mode [ 105.778436] bridge0: port 2(bridge_slave_1) entered blocking state [ 105.784874] bridge0: port 2(bridge_slave_1) entered disabled state [ 105.792761] device bridge_slave_1 entered promiscuous mode [ 105.829973] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 105.867682] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 105.978225] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 106.018074] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 106.181292] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 106.189134] team0: Port device team_slave_0 added [ 106.226481] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 106.233872] team0: Port device team_slave_1 added [ 106.270248] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 106.304675] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 106.342367] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 106.375740] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 106.497281] device bridge_slave_1 left promiscuous mode [ 106.502886] bridge0: port 2(bridge_slave_1) entered disabled state [ 106.513671] device bridge_slave_0 left promiscuous mode [ 106.519192] bridge0: port 1(bridge_slave_0) entered disabled state [ 106.550220] team0 (unregistering): Port device team_slave_1 removed [ 106.560194] team0 (unregistering): Port device team_slave_0 removed [ 106.570428] bond0 (unregistering): Releasing backup interface bond_slave_1 [ 106.586278] bond0 (unregistering): Releasing backup interface bond_slave_0 [ 106.616189] bond0 (unregistering): Released all slaves [ 106.824919] bridge0: port 2(bridge_slave_1) entered blocking state [ 106.831454] bridge0: port 2(bridge_slave_1) entered forwarding state [ 106.838164] bridge0: port 1(bridge_slave_0) entered blocking state [ 106.844647] bridge0: port 1(bridge_slave_0) entered forwarding state [ 106.852634] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 107.487487] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 108.070065] 8021q: adding VLAN 0 to HW filter on device bond0 [ 108.150506] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 108.232727] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 108.238960] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 108.246529] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 108.323039] 8021q: adding VLAN 0 to HW filter on device team0 2018/04/30 22:50:41 executing program 3: r0 = syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x0, 0x0) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000000000, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x8000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0x0, r0, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r1, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x2000000}, 0x1c) syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1) 2018/04/30 22:50:41 executing program 5: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$midi(&(0x7f0000000040)='/dev/midi#\x00', 0x1, 0x88000) getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(0xffffffffffffffff, 0x84, 0x6, &(0x7f0000000100)={0x0, @in={{0x2, 0x4e22, @multicast2=0xe0000002}}}, &(0x7f0000000080)=0x84) getsockopt$inet_sctp_SCTP_ASSOCINFO(r0, 0x84, 0x1, &(0x7f00000001c0)={r1, 0x4, 0x9, 0x9, 0x1, 0x200}, &(0x7f0000000200)=0x14) set_mempolicy(0x1, &(0x7f00000000c0)=0x20, 0x3216) 2018/04/30 22:50:41 executing program 7: syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0xc003, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x1, 0x0) 2018/04/30 22:50:41 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000480)={&(0x7f0000000280)={0x10}, 0xc, &(0x7f0000000300)={&(0x7f0000000800)={0x1c, 0x27, 0x1ff307543bf68163, 0x0, 0x0, {0x15}, [@typed={0x8, 0x1, @pid}]}, 0x1c}, 0x1}, 0x0) r1 = syz_open_dev$mouse(&(0x7f0000000000)='/dev/input/mouse#\x00', 0x100000001, 0x400000) getpeername$packet(r0, &(0x7f0000000040)={0x0, 0x0, 0x0}, &(0x7f0000000080)=0x14) ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f00000000c0)={'vcan0\x00', r2}) 2018/04/30 22:50:41 executing program 4: syz_mount_image$xfs(&(0x7f0000000000)='xfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={'nouuid,', {[{@wsync='wsync', 0x2c}, {@logbufs={'logbufs', 0x3d, [0x31]}, 0x2c}]}}) r0 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000080)='/dev/dsp\x00', 0x10201, 0x0) read$eventfd(r0, &(0x7f00000000c0), 0x8) 2018/04/30 22:50:41 executing program 1: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0xc003, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x1, 0x0) 2018/04/30 22:50:41 executing program 6: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x1, 0x0) 2018/04/30 22:50:41 executing program 2: r0 = memfd_create(&(0x7f0000614000)="74086e750000000000000000008c00", 0x0) pwritev(r0, &(0x7f0000f50f90)=[{&(0x7f00001f2000)="aa", 0x1}], 0x1, 0x81003) r1 = socket$alg(0x26, 0x5, 0x0) bind$alg(r1, &(0x7f0000000080)={0x26, 'hash\x00', 0x0, 0x0, 'vmac(aes)\x00'}, 0x58) ioctl$VHOST_SET_VRING_ENDIAN(r0, 0x4008af13, &(0x7f0000000000)={0x3, 0x9}) setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000f3eff0)="01010000000ef40000000300409d9254", 0x10) r2 = accept4(r1, 0x0, &(0x7f0000000140), 0x0) ioctl$PPPOEIOCSFWD(r2, 0x4008b100, &(0x7f0000000040)={0x18, 0x0, {0x3, @random="1427a19dcd16", 'bridge_slave_0\x00'}}) sendfile(r2, r0, &(0x7f00000ddff8), 0x3) [ 108.816496] netlink: 4 bytes leftover after parsing attributes in process `syz-executor0'. [ 108.826835] XFS (loop4): invalid logbufs value: 1 [not 2-8] [ 108.851373] XFS (loop4): invalid logbufs value: 1 [not 2-8] 2018/04/30 22:50:42 executing program 7: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x1, 0x0) 2018/04/30 22:50:42 executing program 5: r0 = perf_event_open(&(0x7f00000000c0)={0x8, 0x70, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(r0, 0x2403, 0x0) ioctl$sock_SIOCGPGRP(0xffffffffffffff9c, 0x8904, &(0x7f0000000080)=0x0) perf_event_open(&(0x7f0000000000)={0x5, 0x70, 0x8, 0x5, 0x7, 0x2, 0x0, 0x6, 0x1, 0x8, 0x5, 0x5, 0x6, 0x7f, 0xcc79, 0x8001, 0x5, 0x3, 0x0, 0x7, 0x991, 0x9, 0x6, 0x666, 0x5, 0x43e, 0xfffffffffffffeff, 0x2, 0xfffffffffffffffb, 0x80000001, 0x8, 0x6176, 0x9, 0xff, 0x6, 0xff, 0x8, 0x8, 0x0, 0x3, 0x0, @perf_config_ext={0x5, 0x8cd8}, 0x40, 0x5, 0x1f, 0x7, 0x0, 0x2, 0x3}, r1, 0x8, r0, 0xb) 2018/04/30 22:50:42 executing program 6: syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0xc003, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x1, 0x0) [ 108.906176] netlink: 4 bytes leftover after parsing attributes in process `syz-executor0'. 2018/04/30 22:50:42 executing program 3: r0 = syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x0, 0x0) perf_event_open(&(0x7f000025c000)={0x0, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000000000, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x8000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0x0, r0, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r1, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x2000000}, 0x1c) syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1) 2018/04/30 22:50:42 executing program 4: syslog(0x0, &(0x7f0000000000), 0x0) 2018/04/30 22:50:42 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)="87ff0100", &(0x7f0000000040)='./file0\x00', 0x10001, 0x3, &(0x7f0000000300)=[{&(0x7f0000000580)="1c079138620bc9c9546c4d3343aea1d83a1e269fc2077fb6c84fd78a460c1f9604f6662c23b08ec9713ebf6ea4318a3d68f571d216ec38fdd0cfb9da2db486bf8c12fc857456f04744fcdc9b3b39f88edf32edab23fadf4fc0052b5c51bfba99a260a099eaf03248298d758b88c1ffe3714c3db3453cff2d7bcde1b1515e7bb38d50bbd9d80726030515864c", 0x8c, 0x1f}, {&(0x7f00000003c0)="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", 0x1af, 0x4}, {&(0x7f0000000240)="3579dd0655b6128b91392601e9f00aab33026c59266839062f55f117374fac6345d7f944e208bb2d19f13e4031be64443b7a42312f18ec4c58b0002ededca4919132e9da940029b622e800ecc377ac1c36bef5f79318f0ea7f4e4f4ae17d33a12103dff4b5b741a84f2a7a2c70ada8ffc0cb789be6f0b095ff5e69bb872d93fda857486ed5a301f515b5483f607abf", 0x8f, 0xa7}], 0x2, &(0x7f0000000380)=ANY=[@ANYBLOB='block_validity,u\a\x00jquot0,\x00']) r0 = socket$inet6(0xa, 0x800802, 0xb) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000080)={@mcast1={0xff, 0x1, [], 0x1}, 0x0, 0xf7fffffffffffffc, 0x0, 0xc, 0x0, 0x0, 0x8001}, 0x20) 2018/04/30 22:50:42 executing program 7: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x1, 0x0) 2018/04/30 22:50:42 executing program 5: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'hmac(sha1)\x00'}, 0x58) r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={0xffffffffffffffff, 0x2, 0x1, 0x8, &(0x7f00000000c0)=[0x0], 0x1}, 0x20) ioctl$DRM_IOCTL_CONTROL(r1, 0x40086414, &(0x7f0000000140)={0x3, 0x2}) r2 = getpgrp(0xffffffffffffffff) close(r1) ioctl$sock_SIOCSPGRP(0xffffffffffffffff, 0x8902, &(0x7f0000000080)=r2) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000740)="e0b247ccd821719ea347772c8866d609866c795b3bb8a6142e5cd9ed42bcea10f1072733453c396f6aadb5e429fcb6c7b0bbb9f7d674442e883e80fa17e57fc808", 0x41) ioctl$TUNSETTXFILTER(r1, 0x400454d1, &(0x7f0000000180)={0x1, 0x6, [@random="cb58eef9d791", @empty, @broadcast=[0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}, @dev={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0x1e}, @broadcast=[0xff, 0xff, 0xff, 0xff, 0xff, 0xff]]}) 2018/04/30 22:50:42 executing program 0: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000580)='net/ipv6_route\x00') ioctl$GIO_UNIMAP(r0, 0x4b66, &(0x7f0000000600)={0x5, &(0x7f00000005c0)=[{}, {}, {}, {}, {}]}) r1 = openat$full(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/full\x00', 0x10000, 0x0) getsockopt$inet_sctp_SCTP_DEFAULT_PRINFO(0xffffffffffffffff, 0x84, 0x72, &(0x7f0000000400)={0x0, 0x800, 0x20}, &(0x7f0000000440)=0xc) getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r1, 0x84, 0x9, &(0x7f0000000480)={r2, @in={{0x2, 0x4e23, @remote={0xac, 0x14, 0x14, 0xbb}}}, 0xffffffffffff7fff, 0x5, 0x40, 0x7, 0x8}, &(0x7f0000000540)=0x98) perf_event_open(&(0x7f0000348f88)={0x2, 0x70, 0x3e6}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r3 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ashmem\x00', 0x0, 0x0) lseek(r3, 0x0, 0x0) r4 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040)='/dev/rfkill\x00', 0x228000, 0x0) getrusage(0x0, &(0x7f0000000200)) r5 = add_key$user(&(0x7f0000000080)='user\x00', &(0x7f00000000c0)={0x73, 0x79, 0x7a, 0x2}, &(0x7f00000002c0)="a6fcafdb2f527d714872bb97fdd552de1d9b7b9e37181a3c1d8ebcd763edd279bfb2abbc3f552dbb8d9683cd953efd93049708c3d81366d5f1a9f37a75b171146e3ed2b69044c7ada6bb1e866496ac6ab2374ba009b2ca712674b77cd0ca1204b51f9fff80989cf3372e018f00446061d858712928a79fd6ecb26eb9742af34a4a75c7a7867848ac98e7281cc095262f8280e034df2dabca81c61091455610f391f5d62a285479e448086332372bf9bf5a2519d038ce10fd085ee90ca7caaafe77f27488773a", 0xc6, 0xfffffffffffffff8) keyctl$get_keyring_id(0x0, r5, 0x4) ioctl$EVIOCGBITKEY(r4, 0x80404521, &(0x7f0000000140)=""/137) 2018/04/30 22:50:42 executing program 3: r0 = syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x0, 0x0) perf_event_open(&(0x7f000025c000)={0x0, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000000000, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x8000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0x0, r0, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r1, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x2000000}, 0x1c) syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1) 2018/04/30 22:50:42 executing program 4: mkdir(&(0x7f0000fb3000)='./file0\x00', 0x0) r0 = perf_event_open(&(0x7f00000000c0)={0x2, 0x70, 0x3e6}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = dup2(0xffffffffffffffff, r0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={r1, 0x0, 0x1000, 0x0, &(0x7f0000000140)}, 0x20) r2 = memfd_create(&(0x7f00000000c0)="70726f63ae6d696d655f74797065776c616e316e6f64657600", 0x6) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0, 0x5011, r2, 0x0) ioctl$TUNSETVNETLE(r2, 0x400454dc, &(0x7f0000000140)) ioctl$TCXONC(r2, 0x540a, 0x5) clone(0x23000000, &(0x7f00000001c0), &(0x7f000084effc), &(0x7f0000c35ffc), &(0x7f0000000200)="b50405ccd9834e084c0cd33fddc994f742000000000000000000") get_mempolicy(&(0x7f0000000040), &(0x7f0000000180), 0x4, &(0x7f0000001000/0x2000)=nil, 0x3) munlock(&(0x7f0000ffd000/0x1000)=nil, 0x1000) 2018/04/30 22:50:42 executing program 6: syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0xc003, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x1, 0x0) [ 109.206875] IPVS: ftp: loaded support on port[0] = 21 [ 109.729795] bridge0: port 1(bridge_slave_0) entered blocking state [ 109.736214] bridge0: port 1(bridge_slave_0) entered disabled state [ 109.743432] device bridge_slave_0 entered promiscuous mode [ 109.768331] bridge0: port 2(bridge_slave_1) entered blocking state [ 109.774758] bridge0: port 2(bridge_slave_1) entered disabled state [ 109.781994] device bridge_slave_1 entered promiscuous mode [ 109.806753] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 109.831929] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 109.899846] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 109.928513] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 110.034542] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 110.041693] team0: Port device team_slave_0 added [ 110.065205] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 110.072672] team0: Port device team_slave_1 added [ 110.096577] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 110.122366] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 110.148345] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 110.174978] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 110.402262] bridge0: port 2(bridge_slave_1) entered blocking state [ 110.408674] bridge0: port 2(bridge_slave_1) entered forwarding state [ 110.415328] bridge0: port 1(bridge_slave_0) entered blocking state [ 110.421717] bridge0: port 1(bridge_slave_0) entered forwarding state [ 111.238566] 8021q: adding VLAN 0 to HW filter on device bond0 [ 111.320733] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 111.401546] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 111.407859] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 111.415471] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 111.491070] 8021q: adding VLAN 0 to HW filter on device team0 2018/04/30 22:50:45 executing program 3: r0 = syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x0, 0x0) perf_event_open(&(0x7f000025c000)={0x0, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000000000, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x8000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0x0, r0, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r1, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x2000000}, 0x1c) syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1) 2018/04/30 22:50:45 executing program 7: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x1, 0x0) 2018/04/30 22:50:45 executing program 5: r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0) getpeername(r0, &(0x7f00000000c0)=@ax25, &(0x7f0000000080)=0x80) 2018/04/30 22:50:45 executing program 6: syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0xc003, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x1, 0x0) 2018/04/30 22:50:45 executing program 0: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000580)='net/ipv6_route\x00') ioctl$GIO_UNIMAP(r0, 0x4b66, &(0x7f0000000600)={0x5, &(0x7f00000005c0)=[{}, {}, {}, {}, {}]}) r1 = openat$full(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/full\x00', 0x10000, 0x0) getsockopt$inet_sctp_SCTP_DEFAULT_PRINFO(0xffffffffffffffff, 0x84, 0x72, &(0x7f0000000400)={0x0, 0x800, 0x20}, &(0x7f0000000440)=0xc) getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r1, 0x84, 0x9, &(0x7f0000000480)={r2, @in={{0x2, 0x4e23, @remote={0xac, 0x14, 0x14, 0xbb}}}, 0xffffffffffff7fff, 0x5, 0x40, 0x7, 0x8}, &(0x7f0000000540)=0x98) perf_event_open(&(0x7f0000348f88)={0x2, 0x70, 0x3e6}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r3 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ashmem\x00', 0x0, 0x0) lseek(r3, 0x0, 0x0) r4 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040)='/dev/rfkill\x00', 0x228000, 0x0) getrusage(0x0, &(0x7f0000000200)) r5 = add_key$user(&(0x7f0000000080)='user\x00', &(0x7f00000000c0)={0x73, 0x79, 0x7a, 0x2}, &(0x7f00000002c0)="a6fcafdb2f527d714872bb97fdd552de1d9b7b9e37181a3c1d8ebcd763edd279bfb2abbc3f552dbb8d9683cd953efd93049708c3d81366d5f1a9f37a75b171146e3ed2b69044c7ada6bb1e866496ac6ab2374ba009b2ca712674b77cd0ca1204b51f9fff80989cf3372e018f00446061d858712928a79fd6ecb26eb9742af34a4a75c7a7867848ac98e7281cc095262f8280e034df2dabca81c61091455610f391f5d62a285479e448086332372bf9bf5a2519d038ce10fd085ee90ca7caaafe77f27488773a", 0xc6, 0xfffffffffffffff8) keyctl$get_keyring_id(0x0, r5, 0x4) ioctl$EVIOCGBITKEY(r4, 0x80404521, &(0x7f0000000140)=""/137) 2018/04/30 22:50:45 executing program 1: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x1, 0x0) 2018/04/30 22:50:45 executing program 4: r0 = socket$inet_sctp(0x2, 0x1, 0x84) getsockopt$IP_VS_SO_GET_SERVICE(r0, 0x0, 0x483, &(0x7f0000000000), &(0x7f0000000140)=0x68) r1 = syz_open_procfs(0x0, &(0x7f0000004ffb)='task\x00') getdents(r1, &(0x7f0000000080)=""/34, 0x22) getdents64(r1, &(0x7f00000000c0)=""/120, 0x78) 2018/04/30 22:50:45 executing program 2: mmap(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x1000001, 0x223f, 0xffffffffffffffff, 0x0) r0 = socket$inet6_sctp(0xa, 0x1, 0x84) getsockopt$inet_sctp6_SCTP_ASSOCINFO(r0, 0x84, 0x1, &(0x7f0000000200), &(0x7f0000000240)=0x14) r1 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/vs/conntrack\x00', 0x2, 0x0) bind$bt_l2cap(r1, &(0x7f0000000040)={0x1f, 0x3ff, {0x1, 0x7, 0x100000001, 0x7, 0x10001}, 0x8009, 0x7}, 0xe) 2018/04/30 22:50:45 executing program 7: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:50:45 executing program 2: r0 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f00000000c0)=[@in={0x2, 0x0, @local={0xac, 0x14, 0x14, 0xaa}}], 0x10) r1 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/pfkey\x00', 0x280, 0x0) socket$inet(0x2, 0x0, 0x3) setsockopt$inet_sctp_SCTP_I_WANT_MAPPED_V4_ADDR(r1, 0x84, 0xc, &(0x7f0000000140)=0x6, 0xbd) getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(r0, 0x84, 0x6d, &(0x7f00000002c0)=ANY=[@ANYRES32=0x0, @ANYBLOB="00000000000000000000000000000000064eb9112848757174f3c57e0af53d22e5b876fb2041f4be6172b20033ff7656813f1dfcc3b89d6a2b0f2a87bcd5638483c57057f3e002a0b56f47d3dab5be782e080dae7b7d1ac5c0f4516efc9db506a12bab17913abf40ce06a649c0fc45de390ac092c3dc0c9b25f712b1c38981b1b6cd7e5e6fb3a19c33f246df6cff7e9d6b2dad818726320fe4e6bb69db2f598367b09aa96a6f0cdddc73283e4b2c77f8b5d010543f1ac5c9c82554d90e1d"], &(0x7f0000991000)=0x2) ioctl$PPPOEIOCDFWD(r1, 0xb101, 0x0) 2018/04/30 22:50:45 executing program 0: openat$sequencer2(0xffffffffffffff9c, &(0x7f0000556ff0)='/dev/sequencer2\x00', 0x0, 0x0) 2018/04/30 22:50:45 executing program 6: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x1, 0x0) 2018/04/30 22:50:45 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f000051f000)='./file0\x00', 0x40, 0x43e) sched_setattr(0x0, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x0, 0x3}, 0x0) sendto$inet(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0, &(0x7f0000000040)={0x2, 0x0, @remote={0xac, 0x14, 0x14, 0xbb}}, 0x10) execveat(r0, &(0x7f0000001ff8)='./file0\x00', &(0x7f0000000ff0), &(0x7f0000001fe4)=[&(0x7f0000000000)='/dev/vcs\x00', &(0x7f0000001000)="747275737465641e00", &(0x7f0000001fff)='\x00'], 0x1000) execveat(r0, &(0x7f00000000c0)='./file0\x00', &(0x7f00000002c0)=[&(0x7f0000000100)='lo\'+$^em0proc[]:vboxnet1:*}-@nodev:trusted]\x00', &(0x7f0000000140)='/dev/vcs\x00', &(0x7f0000000180)='/dev/vcs\x00', &(0x7f00000001c0)='/dev/vcs\x00', &(0x7f0000000200)='@(system-\x00', &(0x7f0000000240)='vmnet0\x00', &(0x7f0000000280)="747275737465641e00"], &(0x7f0000000480)=[&(0x7f0000000300)='selfvboxnet1-md5sum..\rproc\x00', &(0x7f0000000340)="747275737465641e00", &(0x7f0000000380)='+]user*ppp1eth1\x00', &(0x7f00000003c0)='\x00', &(0x7f0000000400)='eth1).vmnet0posix_acl_accessselinux\x00', &(0x7f0000000440)='/dev/vcs\x00'], 0x800) 2018/04/30 22:50:45 executing program 4: r0 = creat(&(0x7f00000011c0)='./file0/file0\x00', 0xa0) ioctl$sock_ipx_SIOCGIFADDR(r0, 0x8915, &(0x7f0000001200)={"7465616d300000149500", {0x4, 0x4, 0x40, "1924c0551dec", 0x7c6bdc8d}}) mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) getresuid(&(0x7f0000001100), &(0x7f0000001140), &(0x7f0000001180)) syz_fuse_mount(&(0x7f0000000080)='./file0\x00', 0x8000, 0x0, 0x0, 0x0, 0x0) r1 = syz_open_procfs(0x0, &(0x7f00004c6f8b)='mounts\x00') bpf$OBJ_GET_MAP(0x7, &(0x7f00000000c0)={&(0x7f0000000040)='./file1\x00', 0x0, 0x10}, 0x10) preadv(r1, &(0x7f00000023c0)=[{&(0x7f0000000100)=""/4096, 0x1000}], 0x1, 0x0) 2018/04/30 22:50:45 executing program 3: r0 = syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x0, 0x0) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000000000, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x8000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0x0, r0, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r1, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x2000000}, 0x1c) syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1) 2018/04/30 22:50:45 executing program 7: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:50:45 executing program 5: sched_setattr(0x0, &(0x7f0000000100)={0x0, 0x1, 0x0, 0x0, 0x8}, 0x0) r0 = perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mkdir(&(0x7f00000003c0)='./file0\x00', 0x0) setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(0xffffffffffffffff, 0x84, 0x7c, &(0x7f0000000480)={0x0, 0xa2b}, 0x8) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x4000, 0x0, 0x0, 0x0, 0x0) r1 = syz_open_dev$admmidi(&(0x7f0000000140)='/dev/admmidi#\x00', 0x0, 0x0) ioctl$KVM_GET_MP_STATE(r1, 0x8004ae98, &(0x7f0000000280)) getsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(0xffffffffffffffff, 0x84, 0x6, &(0x7f0000000180)={0x0, @in6={{0xa, 0x4e22, 0x0, @mcast2={0xff, 0x2, [], 0x1}}}}, &(0x7f0000000240)=0x84) syz_fuse_mount(&(0x7f0000000040)='./file0/file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) open(&(0x7f0000000080)="2e2f66696c65302f66696c653104", 0x0, 0x0) dup2(r0, r0) 2018/04/30 22:50:45 executing program 6: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x1, 0x0) 2018/04/30 22:50:45 executing program 3: r0 = syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x0, 0x0) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000000000, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x8000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0x0, r0, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r1, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x2000000}, 0x1c) syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1) 2018/04/30 22:50:45 executing program 1: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x1, 0x0) 2018/04/30 22:50:45 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000018000)={&(0x7f0000000040)={0x10}, 0xc, &(0x7f000000e000)={&(0x7f0000000100)=ANY=[@ANYBLOB="2c0000001dff7fff0000003ffcdbdff70500000218000a0ea2b41bea74a6246d995e07c6bf71fb0a2c000000"], 0x2c}, 0x1}, 0x0) r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000)='/dev/hwrng\x00', 0x40, 0x0) ioctl$KDSKBMODE(r1, 0x4b45, &(0x7f0000000080)) syz_genetlink_get_family_id$fou(&(0x7f00000000c0)='fou\x00') ioctl$TIOCSBRK(r1, 0x5427) getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r1, 0x84, 0x9, &(0x7f0000000140)={0x0, @in6={{0xa, 0x4e22, 0x9, @mcast2={0xff, 0x2, [], 0x1}, 0x7f}}, 0x3, 0x30f, 0x9, 0x1, 0x80}, &(0x7f0000000200)=0x98) setsockopt$inet_sctp6_SCTP_RESET_ASSOC(r1, 0x84, 0x78, &(0x7f0000000240)=r2, 0x4) 2018/04/30 22:50:45 executing program 4: r0 = socket$netlink(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'syz_tun\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f00000018c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x100}, 0xa, &(0x7f0000001880)={&(0x7f0000000040)=@setlink={0x2c, 0x13, 0x105, 0x0, 0x0, {0x0, 0x0, 0x0, r1}, [@IFLA_XDP={0xc, 0x2b, [@nested={0x8, 0x1, [@generic="4b97e19e"]}]}]}, 0x2c}, 0x1}, 0x3) r2 = syz_open_dev$mouse(&(0x7f0000000000)='/dev/input/mouse#\x00', 0x8, 0x240082) ioctl$LOOP_SET_BLOCK_SIZE(r2, 0x4c09, 0x0) [ 112.397893] device bridge_slave_1 left promiscuous mode [ 112.403536] bridge0: port 2(bridge_slave_1) entered disabled state [ 112.462636] device bridge_slave_0 left promiscuous mode [ 112.468402] bridge0: port 1(bridge_slave_0) entered disabled state [ 112.547647] team0 (unregistering): Port device team_slave_1 removed [ 112.560428] team0 (unregistering): Port device team_slave_0 removed [ 112.563815] IPVS: ftp: loaded support on port[0] = 21 [ 112.572308] bond0 (unregistering): Releasing backup interface bond_slave_1 [ 112.590988] bond0 (unregistering): Releasing backup interface bond_slave_0 [ 112.623097] bond0 (unregistering): Released all slaves [ 113.284095] bridge0: port 1(bridge_slave_0) entered blocking state [ 113.290545] bridge0: port 1(bridge_slave_0) entered disabled state [ 113.298163] device bridge_slave_0 entered promiscuous mode [ 113.339936] bridge0: port 2(bridge_slave_1) entered blocking state [ 113.346414] bridge0: port 2(bridge_slave_1) entered disabled state [ 113.353863] device bridge_slave_1 entered promiscuous mode [ 113.394925] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 113.436946] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 113.549804] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 113.615858] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 113.786275] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 113.795128] team0: Port device team_slave_0 added [ 113.830475] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 113.837900] team0: Port device team_slave_1 added [ 113.873319] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 113.912721] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 113.945930] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 113.984362] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 114.289321] device bridge_slave_1 left promiscuous mode [ 114.294936] bridge0: port 2(bridge_slave_1) entered disabled state [ 114.311641] device bridge_slave_0 left promiscuous mode [ 114.317173] bridge0: port 1(bridge_slave_0) entered disabled state [ 114.329978] device bridge_slave_1 left promiscuous mode [ 114.335554] bridge0: port 2(bridge_slave_1) entered disabled state [ 114.346777] device bridge_slave_0 left promiscuous mode [ 114.352327] bridge0: port 1(bridge_slave_0) entered disabled state [ 114.404181] team0 (unregistering): Port device team_slave_1 removed [ 114.416239] team0 (unregistering): Port device team_slave_0 removed [ 114.426120] bond0 (unregistering): Releasing backup interface bond_slave_1 [ 114.442374] bond0 (unregistering): Releasing backup interface bond_slave_0 [ 114.468233] bond0 (unregistering): Released all slaves [ 114.487563] team0 (unregistering): Port device team_slave_1 removed [ 114.497643] team0 (unregistering): Port device team_slave_0 removed [ 114.507767] bond0 (unregistering): Releasing backup interface bond_slave_1 [ 114.521276] bond0 (unregistering): Releasing backup interface bond_slave_0 [ 114.546049] bond0 (unregistering): Released all slaves [ 114.566438] bridge0: port 2(bridge_slave_1) entered blocking state [ 114.572846] bridge0: port 2(bridge_slave_1) entered forwarding state [ 114.579507] bridge0: port 1(bridge_slave_0) entered blocking state [ 114.585912] bridge0: port 1(bridge_slave_0) entered forwarding state [ 114.593532] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 115.167781] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 115.917835] 8021q: adding VLAN 0 to HW filter on device bond0 [ 116.003701] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 116.083940] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 116.090199] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 116.097774] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 116.173561] 8021q: adding VLAN 0 to HW filter on device team0 2018/04/30 22:50:49 executing program 2: r0 = socket$inet(0xa, 0x7fc, 0xee1) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f000068a000)=@broute={'broute\x00', 0x20, 0x1, 0x290, [0x0, 0x0, 0x0, 0x0, 0x0, 0x209a3000], 0x0, &(0x7f0000641000), &(0x7f0000000000)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff010000001100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000aaaaaaaa00ff0000000000000180c20000000000000000000000e0000000ef000000600200007374700000000000000000000000000000000000000000000000000000000000480000000000000000000000000000000000aaaaaaaa00ff0000000000000000000000000400000000000000aaaaaaaa000000000000000000000000000000000000000000000000000000000000feff49444c4509494d4552000000000000000000000000000000000000000000000028000000000000000000000073797a3000000000000000000000000000000000000000000000000000000000000000005345434d41524b000000000000000000000000000000000000000000000000000801000000000000000000000000000073797374656d5f753a6f626a6563745f723a6b6c6f67645f7661725f72756e5f743a73300000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000081f9143a8fc1086c4d1adfff590795077dff753e3d8582a386"]}, 0x321) 2018/04/30 22:50:49 executing program 7: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:50:49 executing program 3: r0 = syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x0, 0x0) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000000000, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x8000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0x0, r0, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r1, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x2000000}, 0x1c) syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1) 2018/04/30 22:50:49 executing program 6: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:50:49 executing program 0 (fault-call:2 fault-nth:0): mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:50:49 executing program 1: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x1, 0x0) 2018/04/30 22:50:49 executing program 4: r0 = socket$packet(0x11, 0x3, 0x300) r1 = open(&(0x7f0000000080)='./file0\x00', 0x20080, 0xa) r2 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000100)='IPVS\x00') sendmsg$IPVS_CMD_SET_INFO(r1, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x3000}, 0xc, &(0x7f0000000280)={&(0x7f0000000140)={0x104, r2, 0x104, 0x70bd2b, 0x25dfdbfe, {0xe}, [@IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x7c9c}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x8}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x100}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x100000001}, @IPVS_CMD_ATTR_DAEMON={0x58, 0x3, [@IPVS_DAEMON_ATTR_SYNC_ID={0x8, 0x3, 0x4}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x8, 0x8, 0x340}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x3}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @mcast1={0xff, 0x1, [], 0x1}}, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x8, 0x4, 0x9}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x8, 0x7, 0x4e23}, @IPVS_DAEMON_ATTR_SYNC_ID={0x8, 0x3, 0x1}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x8, 0x8, 0x2}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x8, 0x8, 0x7f}]}, @IPVS_CMD_ATTR_SERVICE={0x1c, 0x1, [@IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x400}, @IPVS_SVC_ATTR_PORT={0x8, 0x4, 0x7}, @IPVS_SVC_ATTR_AF={0x8, 0x1, 0x2}]}, @IPVS_CMD_ATTR_DEST={0x14, 0x2, [@IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0x39}, @IPVS_DEST_ATTR_ADDR_FAMILY={0x8, 0xb}]}, @IPVS_CMD_ATTR_DEST={0x38, 0x2, [@IPVS_DEST_ATTR_ADDR_FAMILY={0x8, 0xb, 0x2}, @IPVS_DEST_ATTR_PERSIST_CONNS={0x8, 0x9, 0x5}, @IPVS_DEST_ATTR_L_THRESH={0x8, 0x6, 0x7}, @IPVS_DEST_ATTR_ACTIVE_CONNS={0x8, 0x7, 0x101}, @IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv6=@ipv4={[], [0xff, 0xff], @broadcast=0xffffffff}}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x3f}]}, 0x104}, 0x1, 0x0, 0x0, 0x80}, 0x10) setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000006ffc)=0x6, 0x4) sendto$inet6(r0, &(0x7f0000000040)="0404000071aadeeae80309c14609004e75c52cf7c219755cca3b98ae4e1ef4788a2fde47d0ece697b02f5c566b2b2ff0dac8897c6b178793886b6621d8d207cc", 0x40, 0x0, &(0x7f0000000000)={0xa, 0x800, 0x5, @mcast1={0xff, 0x1, [], 0x1}}, 0x1c) ioctl$BLKDISCARD(r1, 0x1277, &(0x7f0000000300)=0x8) openat$rtc(0xffffffffffffff9c, &(0x7f0000000340)='/dev/rtc0\x00', 0x208000, 0x0) 2018/04/30 22:50:49 executing program 5: r0 = perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0xcb5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = dup2(r0, r0) ioctl$VT_RELDISP(r1, 0x5605) ioctl$IOC_PR_RESERVE(r1, 0x401070c9, &(0x7f0000000180)={0x6, 0x1, 0x1}) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000001c0)={{{@in=@multicast2}}, {{@in=@multicast1}, 0x0, @in=@broadcast}}, &(0x7f00000002c0)=0xe8) io_setup(0x6942, &(0x7f0000000080)) r2 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040)='/dev/rfkill\x00', 0x4000, 0x0) bind$alg(r2, &(0x7f00000000c0)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_nopr_ctr_aes192\x00'}, 0x58) ioctl$SNDRV_SEQ_IOCTL_PVERSION(r2, 0x80045300, &(0x7f0000000140)) [ 116.686813] FAULT_INJECTION: forcing a failure. [ 116.686813] name failslab, interval 1, probability 0, space 0, times 1 [ 116.698172] CPU: 0 PID: 9478 Comm: syz-executor0 Not tainted 4.17.0-rc3+ #26 [ 116.705400] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 116.714881] Call Trace: [ 116.717485] dump_stack+0x1b9/0x294 [ 116.721140] ? dump_stack_print_info.cold.2+0x52/0x52 [ 116.726496] ? preempt_notifier_register+0x1e0/0x1e0 [ 116.731636] should_fail.cold.4+0xa/0x1a [ 116.735736] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 116.740863] ? __schedule+0x809/0x1e30 [ 116.744786] ? __sched_text_start+0x8/0x8 [ 116.748982] ? proc_fail_nth_write+0x96/0x1f0 [ 116.753503] ? proc_cwd_link+0x1d0/0x1d0 [ 116.757589] ? find_held_lock+0x36/0x1c0 [ 116.761697] ? check_same_owner+0x320/0x320 [ 116.766046] ? rcu_note_context_switch+0x710/0x710 [ 116.770995] ? schedule+0xef/0x430 [ 116.774557] __should_failslab+0x124/0x180 [ 116.778818] should_failslab+0x9/0x14 [ 116.782645] __kmalloc_track_caller+0x2c4/0x760 [ 116.787342] ? strncpy_from_user+0x500/0x500 [ 116.791777] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 116.797344] ? strndup_user+0x77/0xd0 [ 116.801173] memdup_user+0x2c/0xa0 [ 116.804748] strndup_user+0x77/0xd0 [ 116.808399] ksys_mount+0x3c/0x140 [ 116.811960] __x64_sys_mount+0xbe/0x150 [ 116.815954] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 116.820996] do_syscall_64+0x1b1/0x800 [ 116.824904] ? finish_task_switch+0x1ca/0x810 [ 116.829419] ? syscall_return_slowpath+0x5c0/0x5c0 2018/04/30 22:50:49 executing program 7: mlock2(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0x1) socketpair(0x3, 0x0, 0x0, &(0x7f0000000000)) mremap(&(0x7f0000a93000/0x3000)=nil, 0x3000, 0xe000, 0x3, &(0x7f0000b18000/0xe000)=nil) ioctl$DRM_IOCTL_RM_MAP(0xffffffffffffffff, 0x4028641b, &(0x7f0000b1d000)={&(0x7f0000a93000/0x3000)=nil, 0x0, 0x0, 0x0, &(0x7f0000b1b000/0x3000)=nil}) mprotect(&(0x7f0000b1d000/0x2000)=nil, 0x2000, 0x5) epoll_ctl$EPOLL_CTL_MOD(0xffffffffffffffff, 0x3, 0xffffffffffffffff, &(0x7f0000b1eff4)) munlockall() [ 116.834375] ? syscall_return_slowpath+0x30f/0x5c0 [ 116.839336] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 116.844737] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 116.849614] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 116.854826] RIP: 0033:0x455979 [ 116.858029] RSP: 002b:00007fcdf93d8c68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 116.865754] RAX: ffffffffffffffda RBX: 00007fcdf93d96d4 RCX: 0000000000455979 [ 116.873069] RDX: 0000000020000100 RSI: 0000000020000080 RDI: 0000000020000040 [ 116.880355] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 116.887654] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000014 [ 116.894941] R13: 0000000000000440 R14: 00000000006fa6a0 R15: 0000000000000000 [ 117.031526] IPVS: ftp: loaded support on port[0] = 21 [ 117.452061] bridge0: port 1(bridge_slave_0) entered blocking state [ 117.458474] bridge0: port 1(bridge_slave_0) entered disabled state [ 117.465685] device bridge_slave_0 entered promiscuous mode [ 117.490821] bridge0: port 2(bridge_slave_1) entered blocking state [ 117.497782] bridge0: port 2(bridge_slave_1) entered disabled state [ 117.504905] device bridge_slave_1 entered promiscuous mode [ 117.528658] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 117.554110] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 117.622303] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 117.649326] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 117.755990] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 117.763298] team0: Port device team_slave_0 added [ 117.786503] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 117.793815] team0: Port device team_slave_1 added [ 117.818156] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 117.843616] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 117.870437] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 117.896466] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 118.121809] bridge0: port 2(bridge_slave_1) entered blocking state [ 118.128333] bridge0: port 2(bridge_slave_1) entered forwarding state [ 118.135118] bridge0: port 1(bridge_slave_0) entered blocking state [ 118.141505] bridge0: port 1(bridge_slave_0) entered forwarding state [ 118.213411] IPVS: ftp: loaded support on port[0] = 21 [ 118.744218] bridge0: port 1(bridge_slave_0) entered blocking state [ 118.751015] bridge0: port 1(bridge_slave_0) entered disabled state [ 118.758812] device bridge_slave_0 entered promiscuous mode [ 118.795557] bridge0: port 2(bridge_slave_1) entered blocking state [ 118.801984] bridge0: port 2(bridge_slave_1) entered disabled state [ 118.809268] device bridge_slave_1 entered promiscuous mode [ 118.845666] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 118.879245] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 118.980945] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 119.018190] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 119.176898] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 119.184582] team0: Port device team_slave_0 added [ 119.219235] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 119.226610] team0: Port device team_slave_1 added [ 119.260079] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 119.294966] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 119.331124] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 119.366630] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 119.373786] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 119.382212] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 119.599798] 8021q: adding VLAN 0 to HW filter on device bond0 [ 119.720112] bridge0: port 2(bridge_slave_1) entered blocking state [ 119.726532] bridge0: port 2(bridge_slave_1) entered forwarding state [ 119.733189] bridge0: port 1(bridge_slave_0) entered blocking state [ 119.739565] bridge0: port 1(bridge_slave_0) entered forwarding state [ 119.747247] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 119.756255] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 119.880463] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 119.886816] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 119.899312] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 120.012200] 8021q: adding VLAN 0 to HW filter on device team0 [ 120.359426] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 120.944527] 8021q: adding VLAN 0 to HW filter on device bond0 [ 121.021758] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 121.103469] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 121.109700] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 121.117387] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 121.191425] 8021q: adding VLAN 0 to HW filter on device team0 2018/04/30 22:50:54 executing program 5: r0 = getpgid(0x0) sched_setaffinity(r0, 0x8, &(0x7f0000000400)=0x1) pipe2(&(0x7f0000f61000)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0) r3 = userfaultfd(0x0) syz_mount_image$msdos(&(0x7f0000000280)='msdos\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x2, &(0x7f0000001700)=[{&(0x7f0000001540)="b90d0a9c4ccfba35af61", 0xa, 0x7}, {&(0x7f0000001600), 0x0, 0xafc}], 0x218001, &(0x7f00000017c0)) ioctl$UFFDIO_API(r3, 0xc018aa3f, &(0x7f0000bc8000)={0xaa}) ioctl$UFFDIO_REGISTER(r3, 0xc020aa00, &(0x7f0000d62fe0)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1}) write$sndseq(r2, &(0x7f0000011fd2)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x1c) ioctl$sock_inet_tcp_SIOCINQ(r2, 0x541b, &(0x7f0000000000)) fcntl$setpipe(r1, 0x407, 0x0) dup2(r1, r3) 2018/04/30 22:50:54 executing program 1: syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0xc003, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x1, 0x0) 2018/04/30 22:50:54 executing program 6: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:50:54 executing program 7: mlock2(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0x1) socketpair(0x3, 0x0, 0x0, &(0x7f0000000000)) mremap(&(0x7f0000a93000/0x3000)=nil, 0x3000, 0xe000, 0x3, &(0x7f0000b18000/0xe000)=nil) ioctl$DRM_IOCTL_RM_MAP(0xffffffffffffffff, 0x4028641b, &(0x7f0000b1d000)={&(0x7f0000a93000/0x3000)=nil, 0x0, 0x0, 0x0, &(0x7f0000b1b000/0x3000)=nil}) mprotect(&(0x7f0000b1d000/0x2000)=nil, 0x2000, 0x5) epoll_ctl$EPOLL_CTL_MOD(0xffffffffffffffff, 0x3, 0xffffffffffffffff, &(0x7f0000b1eff4)) munlockall() 2018/04/30 22:50:54 executing program 2: r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000140)='/dev/vhost-vsock\x00', 0x2, 0x0) openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhost-vsock\x00', 0x2, 0x0) r1 = dup2(r0, r0) ioctl$VHOST_VSOCK_SET_GUEST_CID(r1, 0x4008af60, &(0x7f0000000000)={@my=0x1}) 2018/04/30 22:50:54 executing program 0 (fault-call:2 fault-nth:1): mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:50:54 executing program 3: r0 = syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x0, 0x0) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x8000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0x0, r0, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r1, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x2000000}, 0x1c) syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1) 2018/04/30 22:50:54 executing program 4: r0 = socket$vsock_dgram(0x28, 0x2, 0x0) getsockopt$IP_VS_SO_GET_DESTS(r0, 0x0, 0x484, &(0x7f00000000c0)=""/6, &(0x7f0000000100)=0x6) r1 = socket$inet_sctp(0x2, 0x1, 0x84) sendto$inet(r1, &(0x7f0000000000)="be47d013a52d24176db33494b88b84e92e4f6dfc4ff3cff03fddf23ad525c0f48ac508bc26d7f146bceb85642a7dad399e80af785edd5195117c2eaa48ad151346c77ce9767368f45d41ec5ba1f29ab53c9d27043c7aa5a987c7c3826d50768236140304ec327763b3dbea922735c97532c86f2706cea58399891ba92c613be470efa781346cb0e56906237139e3e93bd2fab9ae8e9769c81f30ed", 0x9b, 0xfffffffffffffffd, &(0x7f0000030ff0)={0x2, 0x4e23, @local={0xac, 0x14, 0xffffffffffffffff, 0xaa}}, 0x10) sendto$inet(r1, &(0x7f000026cfff)="c6", 0x1, 0x0, &(0x7f0000033ff0)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff, 0xbb}}, 0x10) shutdown(r1, 0x1) setsockopt$inet_sctp_SCTP_STREAM_SCHEDULER(r1, 0x84, 0x7b, &(0x7f00001afff8)={0x0, 0x2000000002}, 0x8) write(r1, &(0x7f00000001c0)="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", 0x4e5) shutdown(r1, 0x1) ioctl$sock_inet_SIOCGIFPFLAGS(r1, 0x8935, &(0x7f0000000740)={'vlan0\x00', 0xa391}) recvfrom(r0, &(0x7f0000000140)=""/109, 0x6d, 0x10000, &(0x7f00000006c0)=@vsock={0x28, 0x0, 0xffffffff, @my=0x0}, 0x80) socket$inet(0x2, 0x2, 0xc00000000) [ 121.724822] FAULT_INJECTION: forcing a failure. [ 121.724822] name failslab, interval 1, probability 0, space 0, times 0 [ 121.736341] CPU: 1 PID: 10022 Comm: syz-executor0 Not tainted 4.17.0-rc3+ #26 [ 121.743635] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 121.753010] Call Trace: [ 121.755630] dump_stack+0x1b9/0x294 [ 121.759287] ? dump_stack_print_info.cold.2+0x52/0x52 [ 121.764503] ? __save_stack_trace+0x7e/0xd0 [ 121.768854] should_fail.cold.4+0xa/0x1a [ 121.772935] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 121.778104] ? save_stack+0x43/0xd0 [ 121.781725] ? kasan_kmalloc+0xc4/0xe0 [ 121.785647] ? __kmalloc_track_caller+0x14a/0x760 [ 121.790484] ? memdup_user+0x2c/0xa0 [ 121.794187] ? strndup_user+0x77/0xd0 [ 121.797985] ? graph_lock+0x170/0x170 [ 121.801781] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 121.807144] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 121.812675] ? proc_fail_nth_write+0x96/0x1f0 [ 121.817169] ? find_held_lock+0x36/0x1c0 [ 121.821294] ? check_same_owner+0x320/0x320 [ 121.825613] ? lock_release+0xa10/0xa10 [ 121.829580] ? rcu_note_context_switch+0x710/0x710 [ 121.834503] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 121.839542] ? __check_object_size+0x95/0x5d9 [ 121.844041] __should_failslab+0x124/0x180 [ 121.848278] should_failslab+0x9/0x14 [ 121.852074] __kmalloc_track_caller+0x2c4/0x760 [ 121.856745] ? strncpy_from_user+0x500/0x500 [ 121.861162] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 121.866697] ? strndup_user+0x77/0xd0 [ 121.870499] memdup_user+0x2c/0xa0 [ 121.874037] strndup_user+0x77/0xd0 [ 121.877659] ksys_mount+0x73/0x140 [ 121.881198] __x64_sys_mount+0xbe/0x150 [ 121.885168] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 121.890181] do_syscall_64+0x1b1/0x800 [ 121.894065] ? finish_task_switch+0x1ca/0x810 [ 121.898569] ? syscall_return_slowpath+0x5c0/0x5c0 [ 121.903496] ? syscall_return_slowpath+0x30f/0x5c0 [ 121.908434] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 121.913797] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 121.918645] entry_SYSCALL_64_after_hwframe+0x49/0xbe 2018/04/30 22:50:55 executing program 3: r0 = syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x0, 0x0) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x8000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0x0, r0, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r1, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x2000000}, 0x1c) syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1) [ 121.923826] RIP: 0033:0x455979 [ 121.927004] RSP: 002b:00007fcdf93d8c68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 121.934731] RAX: ffffffffffffffda RBX: 00007fcdf93d96d4 RCX: 0000000000455979 [ 121.942010] RDX: 0000000020000100 RSI: 0000000020000080 RDI: 0000000020000040 [ 121.949275] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 121.956544] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000014 [ 121.963807] R13: 0000000000000440 R14: 00000000006fa6a0 R15: 0000000000000001 2018/04/30 22:50:55 executing program 2: r0 = open(&(0x7f0000000300)='./file0\x00', 0x10000, 0x0) getsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0x10, &(0x7f0000000400)={{{@in6=@mcast1, @in=@broadcast, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@local}, 0x0, @in=@multicast2}}, &(0x7f0000000500)=0xe8) r2 = getpgid(0x0) getsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000540)={{{@in=@local, @in=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6}, 0x0, @in6=@dev}}, &(0x7f0000000640)=0xe8) sendmsg$nl_netfilter(r0, &(0x7f0000003b40)={&(0x7f00000003c0)={0x10}, 0xc, &(0x7f0000003b00)={&(0x7f0000000680)={0x3450, 0x4, 0xb, 0x800, 0x70bd25, 0x25dfdbfe, {0x7, 0x0, 0xa}, [@generic="f5f7182eb2e0e158acd9fd98886461c62d136d18f58698b132cf11385324d321dc8a955582ed73", @typed={0x4, 0x6c}, @typed={0x8, 0xd, @uid=r1}, @generic="78b6bb0f270043e938684546cfca7e1516641c180bf8cda737f8c4bcd909816f0a9ffb5581ee0b6ad4ad495fef569c5bb6112535fa1ab3086b7071a07fda4967183b0850c42b2e2a67564554dfd86432bd8b5a2a66a13e716fb122295661397f9ebb52f684a0fff25157ad9d0a876b3ba960cfee3a59736f3a140b9328d2a3a2480dc50b2a5d2346ab79", @typed={0x4, 0x45}, @nested={0xcc, 0x7c, [@generic="ce84ed7162951ec0d76709bc48e97374e47522272cac27ad5e668db8d135ae7a2c77502dbe7ea2f26b76a4f577950e4c98bb66874bf3f616cab8194cf7ea472ab6d8b4ec6192fbdd333759ade3ff71f653fa8ed2d598742967141ce9d9528927dfc1686312996201f6bc2e66ac027b0df79348721dd34b9ce825535bc47f7c6c60d1002e8e5dc4ae5e8ee9d34d3e99a24d2ba6980ad1fb7887475ad8fd0c2b6d79b3ce1ab1b65d3558c81e0d7c22", @generic="1f02c35598d0be97d9892a02f8a819fa793c54e5523071e8db"]}, @typed={0x8, 0x41, @pid=r2}, @generic="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", @generic="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", @nested={0x12a4, 0x8f, [@generic="1279b75cede22f63be403bc753fb8bffa6800943d24275e8366cc07f7e09d090c8ba8d1ff50ce64a41b4212ebfccc1e77fbbd476c613a98e5452124b144456c178b276d04339", @generic="786318c39d22d45b2f58296a934f6c3f40b40f39b683621c6e898ef80d0ad097fa7cba9aeeb1ce1456c2995cefb7f74fcf6cf57027d2115e4394cf88d122bb0137eb541b98a0ca42e063f1e100da3a80d144b272c95f28a1fd490458b44d2f6507732d475fb66b50c2d76ab2f575e24216fb316d9bf32f3f0c", @generic, @generic="1a6e946bc4e40f468eff35e59ae3af293c2b6a6583a5fea72d12e9c6e50676f31bb9b336ece971cf0793eba91a7bf0aa9c8e2177812a97eb50894932feddbf7ec4f55763a92dd9e17e0378649ca4d0d7f9108a1ec59820205276138250e350f74b99eda35d28b24d9e5de334563fafe722207279ad8345", @generic="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", @typed={0x8, 0x47, @uid=r3}, @generic="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", @generic="47f432c30fd5542d1d6d36cb9f4b08b3a2ee707be8f498e39ddb5a885b650f80d31ba529fb5e82e79825290b7f49cf8eb69376992506b2baeec4ff2eb7d5a6f3fd0c00a60f16405f09515c6a669fff8153d50ce60a91091dc3ac59c77056a07de25be6052e"]}]}, 0x3450}, 0x1, 0x0, 0x0, 0x4}, 0x800) timerfd_settime(r0, 0x1, &(0x7f0000000340)={{0x77359400}, {0x77359400}}, &(0x7f0000000380)) r4 = socket$inet_icmp_raw(0x2, 0x3, 0x1) pipe2(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}, 0x800) getsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(0xffffffffffffff9c, 0x84, 0x1f, &(0x7f0000000100)={0x0, @in6={{0xa, 0x80000001, 0x80000000, @empty, 0x1}}, 0x401, 0x200}, &(0x7f00000001c0)=0x90) setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r5, 0x84, 0x72, &(0x7f0000000200)={r6, 0x100000001, 0x10}, 0xc) setsockopt$SO_BINDTODEVICE(r4, 0x1, 0x19, &(0x7f00000000c0)='syz_tun\x00', 0x10) syz_emit_ethernet(0xfffffffffffffe9f, &(0x7f0000000000)={@broadcast=[0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @dev={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa]}, [], {@llc={0x4, {@snap={0x0, 0x0, "17", "ad26fd", 0x88a2, "0db98313499d4ddc26f6186edd1b9116"}}}}}, &(0x7f0000000040)={0x0, 0x0, [0x0, 0xa]}) getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(r5, 0x84, 0x6d, &(0x7f0000000240)={r6, 0x68, "8e9920960354c9e8567d8ea2d85588dd17b1fe2a6aa5564093354b2a93765b6f1f12ee4414bf0136b8a448121590c45e24b4d6cd885105315a451d3868d86ae02af9739ecdf9524cf803d56c6a10c4bd1275489a9662d5602c2f9bf699e24fa3eb92742b6726d556"}, &(0x7f00000002c0)=0x70) 2018/04/30 22:50:55 executing program 7: r0 = syz_open_dev$binder(&(0x7f00000003c0)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) r1 = mmap$binder(&(0x7f0000265000/0x14000)=nil, 0x14000, 0x0, 0x10011, r0, 0x0) ioctl$BINDER_SET_CONTEXT_MGR(r0, 0x40046207, 0x0) r2 = syz_open_dev$binder(&(0x7f0000005ff3)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000300)={0x2e, 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="04630440020000000063404000000000000000000200000000000000000000000100000000000000000000d40048"], 0x0, 0x0, &(0x7f0000000500)}) madvise(&(0x7f0000269000/0x2000)=nil, 0x2000, 0xe) ioctl$BINDER_GET_NODE_DEBUG_INFO(r2, 0xc018620b, &(0x7f00000000c0)={r1}) syz_init_net_socket$nfc_raw(0x27, 0x3, 0x0) ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f0000000000)={0x4c, 0x0, &(0x7f0000000040)=[@transaction_sg={0x40486311, {{0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000003fc0), &(0x7f000000eff8)}, 0xe4a6}}], 0x0, 0x0, &(0x7f00000000c0)}) 2018/04/30 22:50:55 executing program 1: syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0xc003, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x1, 0x0) 2018/04/30 22:50:55 executing program 0 (fault-call:2 fault-nth:2): mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:50:55 executing program 6: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) [ 122.126808] binder: 10046:10047 IncRefs 0 refcount change on invalid ref 2 ret -22 [ 122.130215] FAULT_INJECTION: forcing a failure. [ 122.130215] name failslab, interval 1, probability 0, space 0, times 0 [ 122.146323] CPU: 1 PID: 10053 Comm: syz-executor0 Not tainted 4.17.0-rc3+ #26 [ 122.153625] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 122.163096] Call Trace: [ 122.165714] dump_stack+0x1b9/0x294 [ 122.169360] ? dump_stack_print_info.cold.2+0x52/0x52 [ 122.174571] ? find_held_lock+0x36/0x1c0 [ 122.178662] should_fail.cold.4+0xa/0x1a [ 122.182748] ? __lock_acquire+0x7f5/0x5140 [ 122.186688] binder: 10046:10047 got transaction to context manager from process owning it [ 122.186999] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 122.197932] binder: 10046:10047 transaction failed 29201/-22, size 18432-0 line 2847 [ 122.202924] ? debug_check_no_locks_freed+0x310/0x310 [ 122.202942] ? find_held_lock+0x36/0x1c0 [ 122.202977] ? check_same_owner+0x320/0x320 [ 122.224399] ? zap_class+0x720/0x720 [ 122.228118] ? rcu_note_context_switch+0x710/0x710 [ 122.233065] __should_failslab+0x124/0x180 [ 122.237317] should_failslab+0x9/0x14 [ 122.241133] kmem_cache_alloc+0x2af/0x760 [ 122.245291] ? find_held_lock+0x36/0x1c0 [ 122.249353] getname_flags+0xd0/0x5a0 [ 122.253164] user_path_at_empty+0x2d/0x50 [ 122.257309] do_mount+0x172/0x3070 [ 122.260845] ? lock_downgrade+0x8e0/0x8e0 [ 122.264990] ? copy_mount_string+0x40/0x40 [ 122.269223] ? check_same_owner+0x320/0x320 [ 122.273544] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 122.278564] ? __check_object_size+0x95/0x5d9 [ 122.283061] ? __might_sleep+0x95/0x190 [ 122.287038] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 122.292571] ? _copy_from_user+0xdf/0x150 [ 122.296720] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 122.302266] ? copy_mount_options+0x285/0x380 [ 122.306768] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 122.312307] ksys_mount+0x12d/0x140 [ 122.315930] __x64_sys_mount+0xbe/0x150 [ 122.319896] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 122.324918] do_syscall_64+0x1b1/0x800 [ 122.329670] ? finish_task_switch+0x1ca/0x810 [ 122.334162] ? syscall_return_slowpath+0x5c0/0x5c0 [ 122.339098] ? syscall_return_slowpath+0x30f/0x5c0 [ 122.344042] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 122.349405] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 122.354336] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 122.359524] RIP: 0033:0x455979 [ 122.362704] RSP: 002b:00007fcdf93d8c68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 122.370423] RAX: ffffffffffffffda RBX: 00007fcdf93d96d4 RCX: 0000000000455979 2018/04/30 22:50:55 executing program 2: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000b97000)={0x2000000000000080, &(0x7f0000000000)=[{0x6}]}, 0xf) getsockopt$sock_buf(r0, 0x1, 0x1a, &(0x7f0000baf000)=""/1, &(0x7f0000561ffc)) r1 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000080)='IPVS\x00') sendmsg$IPVS_CMD_DEL_DAEMON(r0, &(0x7f0000000240)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1001}, 0xc, &(0x7f0000000200)={&(0x7f0000000400)=ANY=[@ANYBLOB="07010000", @ANYRES16=r1, @ANYBLOB="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"], 0x160}, 0x1, 0x0, 0x0, 0x40000}, 0x40000) 2018/04/30 22:50:55 executing program 1: syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0xc003, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x1, 0x0) [ 122.377703] RDX: 0000000020000100 RSI: 0000000020000080 RDI: 0000000020000040 [ 122.384965] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 122.392227] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000014 [ 122.399497] R13: 0000000000000440 R14: 00000000006fa6a0 R15: 0000000000000002 [ 122.470208] binder_alloc: 10046: binder_alloc_buf failed to map page at 20265000 in userspace [ 122.499675] binder: 10046:10047 transaction failed 29201/-12, size 0-0 line 2971 [ 122.530756] binder: BINDER_SET_CONTEXT_MGR already set [ 122.545317] binder: 10046:10070 ioctl 40046207 0 returned -16 [ 122.552770] binder: 10046:10070 IncRefs 0 refcount change on invalid ref 2 ret -22 [ 122.560658] binder_alloc: 10046: binder_alloc_buf, no vma [ 122.566438] binder: 10046:10070 transaction failed 29189/-3, size 18432-0 line 2971 [ 122.576739] binder_alloc: 10046: binder_alloc_buf, no vma [ 122.582423] binder: 10046:10070 transaction failed 29189/-3, size 0-0 line 2971 [ 122.614690] binder: undelivered TRANSACTION_ERROR: 29189 [ 122.621410] binder: undelivered TRANSACTION_ERROR: 29201 2018/04/30 22:50:55 executing program 7: syz_open_procfs$namespace(0x0, &(0x7f0000000000)='\x00\x00\x00\x00\x00\x00\x00') r0 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0xffffffffffffff9c, 0x2, 0x1, 0xffffffffffffffff, &(0x7f0000000040)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0xa}, 0x20) userfaultfd(0x80800) ioctl$UFFDIO_WAKE(r0, 0x8010aa02, &(0x7f00000000c0)={&(0x7f0000ffd000/0x2000)=nil, 0x2000}) 2018/04/30 22:50:55 executing program 4: r0 = perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$packet(0x11, 0x800000000002, 0x300) r2 = dup2(r0, r0) r3 = syz_genetlink_get_family_id$team(&(0x7f00000000c0)='team\x00') getsockopt$inet_mreqn(0xffffffffffffff9c, 0x0, 0x20, &(0x7f00000001c0)={@broadcast, @loopback, 0x0}, &(0x7f0000000200)=0xc) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffff9c, 0x0, 0x10, &(0x7f0000000240)={{{@in6, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@mcast2}}}, &(0x7f0000000340)=0xe8) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f0000000380)={{{@in=@broadcast, @in6=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{}, 0x0, @in=@broadcast}}, &(0x7f0000000480)=0xe8) getsockname$packet(r1, &(0x7f00000004c0)={0x0, 0x0, 0x0}, &(0x7f0000000500)=0x14) recvmsg(r1, &(0x7f0000000b00)={&(0x7f0000000540)=@can={0x0, 0x0}, 0x80, &(0x7f00000009c0)=[{&(0x7f00000005c0)}, {&(0x7f0000000600)=""/49, 0x31}, {&(0x7f0000000640)=""/255, 0xff}, {&(0x7f0000000740)=""/73, 0x49}, {&(0x7f00000007c0)=""/4, 0x4}, {&(0x7f0000000800)=""/191, 0xbf}, {&(0x7f00000008c0)=""/226, 0xe2}], 0x7, &(0x7f0000000a40)=""/129, 0x81, 0x3}, 0x20) getsockopt$inet6_mreq(0xffffffffffffff9c, 0x29, 0x14, &(0x7f0000002140)={@loopback, 0x0}, &(0x7f0000002180)=0x14) getpeername$packet(r1, &(0x7f0000002280)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @link_local}, &(0x7f00000022c0)=0x14) ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f0000002600)={'vcan0\x00', 0x0}) sendmsg$TEAM_CMD_OPTIONS_SET(r2, &(0x7f0000002a80)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x22001c8}, 0xc, &(0x7f0000002a40)={&(0x7f0000002640)=ANY=[@ANYBLOB="00040000", @ANYRES16=r3, @ANYBLOB="04082bbd7000fedbdf250100000008000100", @ANYRES32=r4, @ANYBLOB="7801020038000100240001006d636173745f72656a6f696e5f696e74657276616c00000000000000000000000800030003000000080004000100000040000100240001006c625f74785f686173685f746f5f706f72745f6d617070696e67000000000000080003000300000008000400", @ANYRES32=r5, @ANYBLOB="080007000000000040000100240001007072696f72697479000000000000000000000000000000000000000000000000080003000e000000080004000200000008000600", @ANYRES32=r6, @ANYBLOB="38000100240001006d636173745f72656a6f696e5f696e74657276616c00000000000000000000000800030003000000080004000700000040000100240001006d6f6465000000000000000000000000000000000000000000000000000000000800030005000000100004006c6f616462616c616e63650044000100240001006d6f6465000000000000000000000000000000000000000000000000000000000800030005000000140004006163746976656261636b75700000000008000100", @ANYRES32=r7, @ANYBLOB="7400020038000100240001006d236173745f72656a6f696e5f636f756e740000000000000000000000000000080003000300000008000400ff0300003800010024000100616374697665706f727400000000000000000000000000000000000000000000080003000300000008000400", @ANYRES32=r8, @ANYBLOB="08000100", @ANYRES32=r9, @ANYBLOB="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", @ANYRES32=r10, @ANYBLOB="b800020038000100240001006c625f73746174735f726566726573685f696e74657276616c000000000000000800030003000000080004000700000040000100240001006c625f74785f686173685f746f5f706f72745f6d617070696e67000000000000080003000300000008000400", @ANYRES32=r11, @ANYBLOB="08000700000000003c000100240001006c625f74785f6d6574686f64000000000000000000000000000000000000000008000300050000000c0004006861736800000000"], 0x400}, 0x1}, 0x80) syz_open_dev$random(&(0x7f0000000100)='/dev/random\x00', 0x0, 0x4000) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'erspan0\x00', 0x0}) r13 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r13, &(0x7f0000000000)={0x1f, r12}, 0xc) 2018/04/30 22:50:55 executing program 5: capset(&(0x7f0000581ff8)={0x19980330}, &(0x7f00005ccfe8)) r0 = inotify_init1(0x0) fcntl$setown(r0, 0x8, 0xffffffffffffffff) fcntl$getownex(r0, 0x10, &(0x7f000045fff8)={0x0, 0x0}) perf_event_open(&(0x7f0000000040)={0x0, 0x70, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffeffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_config_ext}, r1, 0x0, 0xffffffffffffffff, 0x0) 2018/04/30 22:50:55 executing program 3: r0 = syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x0, 0x0) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0x0, r0, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r1, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x2000000}, 0x1c) syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1) 2018/04/30 22:50:55 executing program 6 (fault-call:2 fault-nth:0): mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x1, 0x0) 2018/04/30 22:50:55 executing program 2: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000005000)={&(0x7f0000000100)={0x10}, 0xc, &(0x7f0000000040)={&(0x7f0000000200)=ANY=[@ANYBLOB="30000000ae452000ff0200000000002d8a6b8f1d9235918889c03e5000000a000000080000000000e60287675e542642b5abf3a6af2fa9322bdfe2330d99682355f728b7f1c55b2477b27b8e20c48938a0caac1e64299b3f65bdc4262f680a62a154545cf756f8f841e7fa8e42ebd35bce0f34305cded57d62ee6c3a6d8f33074ad7e45705353f4de66e8ef05e8ae3ef82c62386e15d7807908a61d3ee2e5180cae5", @ANYRES32, @ANYBLOB="14001600fe800000000000000000000000000000"], 0x30}, 0x1}, 0x0) close(r0) r1 = syz_open_dev$vcsn(&(0x7f0000000000)='/dev/vcs#\x00', 0xfffffffffffffffa, 0x80000) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x2400, 0x8) [ 122.629242] binder: undelivered TRANSACTION_ERROR: 29201 [ 122.634876] binder: undelivered TRANSACTION_ERROR: 29189 2018/04/30 22:50:55 executing program 0 (fault-call:2 fault-nth:3): mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:50:55 executing program 1: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x1, 0x0) [ 122.717491] FAULT_INJECTION: forcing a failure. [ 122.717491] name failslab, interval 1, probability 0, space 0, times 0 [ 122.728853] CPU: 0 PID: 10092 Comm: syz-executor6 Not tainted 4.17.0-rc3+ #26 [ 122.736159] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 122.745531] Call Trace: [ 122.748154] dump_stack+0x1b9/0x294 [ 122.751821] ? dump_stack_print_info.cold.2+0x52/0x52 [ 122.757040] ? perf_trace_lock+0xd6/0x900 [ 122.761225] should_fail.cold.4+0xa/0x1a [ 122.765314] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 122.770453] ? lock_downgrade+0x8e0/0x8e0 [ 122.774633] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 122.780219] ? proc_fail_nth_write+0x96/0x1f0 [ 122.784747] ? find_held_lock+0x36/0x1c0 [ 122.788861] ? check_same_owner+0x320/0x320 [ 122.793214] ? rcu_note_context_switch+0x710/0x710 [ 122.798182] __should_failslab+0x124/0x180 [ 122.802447] should_failslab+0x9/0x14 [ 122.806281] __kmalloc_track_caller+0x2c4/0x760 [ 122.810976] ? strncpy_from_user+0x500/0x500 [ 122.815411] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 122.820979] ? strndup_user+0x77/0xd0 [ 122.824812] memdup_user+0x2c/0xa0 [ 122.828385] strndup_user+0x77/0xd0 [ 122.832043] ksys_mount+0x3c/0x140 [ 122.835613] __x64_sys_mount+0xbe/0x150 [ 122.839612] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 122.844658] do_syscall_64+0x1b1/0x800 [ 122.848571] ? finish_task_switch+0x1ca/0x810 [ 122.853097] ? syscall_return_slowpath+0x5c0/0x5c0 [ 122.858106] ? syscall_return_slowpath+0x30f/0x5c0 [ 122.863439] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 122.868846] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 122.873733] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 122.878960] RIP: 0033:0x455979 [ 122.882263] RSP: 002b:00007f1fa3db4c68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 122.890026] RAX: ffffffffffffffda RBX: 00007f1fa3db56d4 RCX: 0000000000455979 [ 122.897317] RDX: 0000000020000100 RSI: 0000000020000080 RDI: 0000000020000040 [ 122.904607] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 2018/04/30 22:50:55 executing program 7: r0 = socket$inet(0x2, 0x2, 0x0) setsockopt$inet_MCAST_JOIN_GROUP(r0, 0x0, 0x2a, &(0x7f0000000180)={0x1, {{0x2, 0x4e24, @remote={0xac, 0x14, 0x14, 0xbb}}}}, 0x88) setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000469ffc)=0x7fe, 0x4) setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000000280)=0x9a0, 0x4) r1 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer\x00', 0x2, 0x0) getsockopt$inet_sctp6_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, &(0x7f00000000c0)=@sack_info={0x0, 0x729, 0x3}, &(0x7f0000000100)=0xc) setsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(r1, 0x84, 0x18, &(0x7f0000000140)={r2, 0xffffffffffffff01}, 0x8) ioctl$sock_SIOCGIFCONF(r0, 0x8910, &(0x7f0000000040)=@req) 2018/04/30 22:50:55 executing program 3: r0 = syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x0, 0x0) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0x0, r0, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r1, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x2000000}, 0x1c) syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1) 2018/04/30 22:50:56 executing program 7: r0 = socket$inet(0x10, 0x3, 0x9) sendmsg(r0, &(0x7f0000005fc8)={0x0, 0x0, &(0x7f0000004000)=[{&(0x7f0000000000)="230000002200910307fffd946fa283bc023f050000000000271d68b51ba3a2d103000000000000000182ccbb2dab4570915d118d", 0x34}], 0x1}, 0x0) r1 = syz_open_dev$adsp(&(0x7f0000000040)='/dev/adsp#\x00', 0xffffffff, 0x40) r2 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000280)='IPVS\x00') sendmsg$IPVS_CMD_GET_DEST(r1, &(0x7f0000000240)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x20640}, 0xc, &(0x7f0000000200)={&(0x7f0000000100)=ANY=[@ANYBLOB="f0000000", @ANYRES16=r2, @ANYBLOB="04062bbd7000ffdbdf25080000003c0001000c000700050000000400000008000500040000000800020000000000080009000b000000080004004e2300000c0006006e6f6e65000000004c000100080006006f766600080004004e240000080005000200000008000900230000000800090074000000080004004e2200000800050002000000080006007365640008000b007369700034000300080008000900000000000800030004000000080008008100000008000100020000000800060009000000080004000000009008000500ff0000000800060005000000"], 0xf0}, 0x1, 0x0, 0x0, 0x80}, 0x20000000) [ 122.911896] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000014 [ 122.919189] R13: 0000000000000440 R14: 00000000006fa6a0 R15: 0000000000000000 [ 122.937757] FAULT_INJECTION: forcing a failure. [ 122.937757] name fail_page_alloc, interval 1, probability 0, space 0, times 1 [ 122.949733] CPU: 0 PID: 10088 Comm: syz-executor0 Not tainted 4.17.0-rc3+ #26 [ 122.957027] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 122.966398] Call Trace: [ 122.969015] dump_stack+0x1b9/0x294 [ 122.972679] ? dump_stack_print_info.cold.2+0x52/0x52 [ 122.977905] ? debug_check_no_locks_freed+0x310/0x310 [ 122.983175] should_fail.cold.4+0xa/0x1a [ 122.987275] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 122.992415] ? debug_check_no_locks_freed+0x310/0x310 [ 122.997637] ? graph_lock+0x170/0x170 [ 123.001468] ? graph_lock+0x170/0x170 [ 123.005298] ? print_usage_bug+0xc0/0xc0 [ 123.009393] ? perf_trace_lock+0xd6/0x900 [ 123.013567] ? find_held_lock+0x36/0x1c0 [ 123.017667] ? zap_class+0x720/0x720 [ 123.021416] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 123.026978] ? should_fail+0x21b/0xbcd [ 123.030894] ? __lock_acquire+0x7f5/0x5140 [ 123.035179] ? lock_downgrade+0x8e0/0x8e0 [ 123.039363] __alloc_pages_nodemask+0x34e/0xd70 [ 123.044071] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 123.049162] ? debug_check_no_locks_freed+0x310/0x310 [ 123.054472] ? find_held_lock+0x36/0x1c0 [ 123.058582] ? check_same_owner+0x320/0x320 [ 123.062933] ? zap_class+0x720/0x720 [ 123.066678] cache_grow_begin+0x72/0x6c0 [ 123.070781] kmem_cache_alloc+0x689/0x760 [ 123.075176] getname_flags+0xd0/0x5a0 [ 123.079440] user_path_at_empty+0x2d/0x50 [ 123.083617] do_mount+0x172/0x3070 [ 123.087182] ? lock_downgrade+0x8e0/0x8e0 [ 123.091366] ? copy_mount_string+0x40/0x40 [ 123.095625] ? check_same_owner+0x320/0x320 [ 123.099980] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 123.105049] ? __check_object_size+0x95/0x5d9 [ 123.109588] ? __might_sleep+0x95/0x190 [ 123.113600] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 123.119248] ? _copy_from_user+0xdf/0x150 [ 123.123424] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 123.128988] ? copy_mount_options+0x285/0x380 [ 123.134214] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 123.141120] ksys_mount+0x12d/0x140 [ 123.144773] __x64_sys_mount+0xbe/0x150 [ 123.148771] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 123.153816] do_syscall_64+0x1b1/0x800 [ 123.157723] ? finish_task_switch+0x1ca/0x810 [ 123.162247] ? syscall_return_slowpath+0x5c0/0x5c0 2018/04/30 22:50:56 executing program 5: r0 = syz_open_dev$sndpcmp(&(0x7f0000000040)='/dev/snd/pcmC#D#p\x00', 0xd0c, 0x2000) fcntl$setstatus(r0, 0x4, 0x0) ioctl$VHOST_SET_VRING_NUM(r0, 0x4008af10, &(0x7f0000000000)={0x1}) 2018/04/30 22:50:56 executing program 2: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$evdev(&(0x7f0000072fee)='/dev/input/event#\x00', 0x0, 0x2) read(r0, &(0x7f000006b000)=""/24, 0x18) write$evdev(r0, &(0x7f0000057fa0)=[{{}, 0x0, 0x100000001}, {}], 0x30) 2018/04/30 22:50:56 executing program 5: r0 = syz_open_dev$dspn(&(0x7f0000000040)='/dev/dsp#\x00', 0x1, 0x0) r1 = gettid() perf_event_open(&(0x7f00000000c0)={0x1, 0x70, 0x8, 0x1, 0xffffffff, 0x1, 0x0, 0x488, 0x44300, 0xef787380c83517cd, 0x80000000, 0x8, 0x47, 0x3, 0x748, 0x3, 0xc5, 0x7fffffff, 0x2, 0x4, 0x9, 0xfffffffffffffffd, 0x4c5, 0x5, 0x2, 0x80000001, 0x80000001, 0x6, 0x80, 0x0, 0x6, 0x400, 0xfffffffffffffffb, 0x9, 0x800, 0x5, 0x2, 0x0, 0x0, 0x1, 0x2, @perf_bp={&(0x7f0000000000), 0x7}, 0x3, 0xffffffff, 0x6, 0x7, 0x3, 0x2, 0x6}, r1, 0x4, r0, 0x3) ioctl$int_in(r0, 0x80000080044d76, &(0x7f0000000080)) 2018/04/30 22:50:56 executing program 5: r0 = socket$inet6(0xa, 0x80001, 0x0) setsockopt$inet6_MCAST_JOIN_GROUP(r0, 0x29, 0x2a, &(0x7f0000fca000)={0x10000, {{0xa, 0x0, 0x2, @mcast1={0xff, 0x1, [], 0x1}}}}, 0x88) setsockopt$inet6_MCAST_JOIN_GROUP(r0, 0x29, 0x2a, &(0x7f0000000000)={0x0, {{0xa, 0x0, 0x0, @mcast2={0xff, 0x2, [], 0x1}}}}, 0x88) setsockopt$inet6_group_source_req(r0, 0x29, 0x2b, &(0x7f0000a83000)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x1, [], 0x1}}}, {{0xa}}}, 0x108) [ 123.167214] ? syscall_return_slowpath+0x30f/0x5c0 [ 123.172171] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 123.177565] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 123.182528] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 123.187735] RIP: 0033:0x455979 [ 123.190980] RSP: 002b:00007fcdf93d8c68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 123.198712] RAX: ffffffffffffffda RBX: 00007fcdf93d96d4 RCX: 0000000000455979 [ 123.206093] RDX: 0000000020000100 RSI: 0000000020000080 RDI: 0000000020000040 [ 123.213381] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 123.220675] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000014 [ 123.227967] R13: 0000000000000440 R14: 00000000006fa6a0 R15: 0000000000000003 2018/04/30 22:50:57 executing program 7: syz_mount_image$iso9660(&(0x7f0000005b40)='iso9660\x00', &(0x7f0000005b80)='./file0\x00', 0x0, 0x0, &(0x7f0000006e40), 0x8001, &(0x7f0000006ec0)) r0 = creat(&(0x7f0000000000)='./file1\x00', 0x48) ioctl$KVM_GET_NR_MMU_PAGES(r0, 0xae45, 0x1000b) 2018/04/30 22:50:57 executing program 1: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x1, 0x0) 2018/04/30 22:50:57 executing program 3: r0 = syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x0, 0x0) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0x0, r0, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r1, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x2000000}, 0x1c) syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1) 2018/04/30 22:50:57 executing program 5: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x1, 0x0) 2018/04/30 22:50:57 executing program 4: r0 = dup3(0xffffffffffffff9c, 0xffffffffffffff9c, 0x80000) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r0, 0xc0045520, &(0x7f0000000040)=0xfff) r1 = syz_open_dev$sndctrl(&(0x7f0000006000)='/dev/snd/controlC#\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r1, 0x40045532, &(0x7f000000affc)) r2 = openat$audio(0xffffffffffffff9c, &(0x7f0000000280)='/dev/audio\x00', 0x0, 0x0) r3 = syz_open_dev$sndpcmp(&(0x7f000000afee)='/dev/snd/pcmC#D#p\x00', 0x0, 0x0) setsockopt$inet6_MRT6_ADD_MFC(r2, 0x29, 0xcc, &(0x7f00000000c0)={{0xa, 0x4e20, 0x5, @mcast1={0xff, 0x1, [], 0x1}, 0x70}, {0xa, 0x4e21, 0x100000000, @ipv4={[], [0xff, 0xff]}, 0x2}, 0x2, [0x5f6d, 0x5, 0x0, 0x6, 0x0, 0x8, 0x9, 0x101]}, 0x5c) syz_open_dev$sndpcmc(&(0x7f0000000080)='/dev/snd/pcmC#D#c\x00', 0x0, 0x40000) dup2(r3, r2) io_setup(0x4, &(0x7f0000000000)) 2018/04/30 22:50:57 executing program 2: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$evdev(&(0x7f0000072fee)='/dev/input/event#\x00', 0x0, 0x2) read(r0, &(0x7f000006b000)=""/24, 0x18) write$evdev(r0, &(0x7f0000057fa0)=[{{}, 0x0, 0x100000001}, {}], 0x30) 2018/04/30 22:50:57 executing program 0 (fault-call:2 fault-nth:4): mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:50:57 executing program 6 (fault-call:2 fault-nth:1): mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x1, 0x0) [ 123.894835] FAULT_INJECTION: forcing a failure. [ 123.894835] name failslab, interval 1, probability 0, space 0, times 0 [ 123.902226] FAULT_INJECTION: forcing a failure. [ 123.902226] name failslab, interval 1, probability 0, space 0, times 0 [ 123.906164] CPU: 1 PID: 10147 Comm: syz-executor6 Not tainted 4.17.0-rc3+ #26 [ 123.924736] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 123.934095] Call Trace: [ 123.936694] dump_stack+0x1b9/0x294 [ 123.940324] ? dump_stack_print_info.cold.2+0x52/0x52 [ 123.945693] ? __save_stack_trace+0x7e/0xd0 [ 123.950057] should_fail.cold.4+0xa/0x1a [ 123.954124] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 123.959230] ? save_stack+0x43/0xd0 [ 123.962857] ? kasan_kmalloc+0xc4/0xe0 [ 123.966745] ? __kmalloc_track_caller+0x14a/0x760 [ 123.971591] ? memdup_user+0x2c/0xa0 [ 123.975302] ? strndup_user+0x77/0xd0 [ 123.979196] ? graph_lock+0x170/0x170 [ 123.982994] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 123.988970] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 123.994506] ? proc_fail_nth_write+0x96/0x1f0 [ 123.999005] ? proc_cwd_link+0x1d0/0x1d0 [ 124.003071] ? find_held_lock+0x36/0x1c0 [ 124.007150] ? check_same_owner+0x320/0x320 [ 124.011473] ? lock_release+0xa10/0xa10 [ 124.015447] ? rcu_note_context_switch+0x710/0x710 [ 124.020377] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 124.025394] ? __check_object_size+0x95/0x5d9 [ 124.029889] __should_failslab+0x124/0x180 [ 124.034126] should_failslab+0x9/0x14 [ 124.037924] __kmalloc_track_caller+0x2c4/0x760 [ 124.042592] ? strncpy_from_user+0x500/0x500 [ 124.046998] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 124.052817] ? strndup_user+0x77/0xd0 [ 124.056616] memdup_user+0x2c/0xa0 [ 124.060154] strndup_user+0x77/0xd0 [ 124.063785] ksys_mount+0x73/0x140 [ 124.067323] __x64_sys_mount+0xbe/0x150 [ 124.071295] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 124.076494] do_syscall_64+0x1b1/0x800 [ 124.080383] ? finish_task_switch+0x1ca/0x810 [ 124.084976] ? syscall_return_slowpath+0x5c0/0x5c0 [ 124.089911] ? syscall_return_slowpath+0x30f/0x5c0 [ 124.094849] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 124.100221] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 124.105071] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 124.110284] RIP: 0033:0x455979 [ 124.113468] RSP: 002b:00007f1fa3db4c68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 124.121181] RAX: ffffffffffffffda RBX: 00007f1fa3db56d4 RCX: 0000000000455979 [ 124.128447] RDX: 0000000020000100 RSI: 0000000020000080 RDI: 0000000020000040 [ 124.135712] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 124.142975] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000014 [ 124.150242] R13: 0000000000000440 R14: 00000000006fa6a0 R15: 0000000000000001 [ 124.157531] CPU: 0 PID: 10150 Comm: syz-executor0 Not tainted 4.17.0-rc3+ #26 [ 124.165284] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 124.174721] Call Trace: [ 124.177321] dump_stack+0x1b9/0x294 [ 124.182079] ? dump_stack_print_info.cold.2+0x52/0x52 [ 124.187272] should_fail.cold.4+0xa/0x1a [ 124.191340] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 124.196452] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 124.201643] ? is_bpf_text_address+0xd7/0x170 [ 124.206138] ? find_held_lock+0x36/0x1c0 [ 124.210213] ? check_same_owner+0x320/0x320 [ 124.214528] ? kasan_slab_free+0xe/0x10 [ 124.218495] ? kmem_cache_free+0x86/0x2d0 [ 124.222646] ? putname+0xf2/0x130 [ 124.226106] ? rcu_note_context_switch+0x710/0x710 [ 124.231034] ? ksys_mount+0x12d/0x140 [ 124.234828] ? __x64_sys_mount+0xbe/0x150 [ 124.238967] ? do_syscall_64+0x1b1/0x800 [ 124.243044] __should_failslab+0x124/0x180 [ 124.247291] should_failslab+0x9/0x14 [ 124.251099] kmem_cache_alloc+0x2af/0x760 [ 124.255244] ? kasan_check_write+0x14/0x20 [ 124.259473] ? do_raw_spin_lock+0xc1/0x200 [ 124.263706] alloc_vfsmnt+0xe0/0x9d0 [ 124.267411] ? mnt_free_id.isra.27+0x60/0x60 [ 124.271830] ? kasan_check_read+0x11/0x20 [ 124.275970] ? graph_lock+0x170/0x170 [ 124.279766] ? rcu_pm_notify+0xc0/0xc0 [ 124.283643] ? trace_hardirqs_off+0xd/0x10 [ 124.287872] ? putname+0xf2/0x130 [ 124.291321] ? putname+0xf2/0x130 [ 124.294770] ? find_held_lock+0x36/0x1c0 [ 124.298831] ? lock_downgrade+0x8e0/0x8e0 [ 124.302971] ? module_unload_free+0x5b0/0x5b0 [ 124.307462] ? lock_release+0xa10/0xa10 [ 124.311433] ? mpi_free.cold.1+0x19/0x19 [ 124.315486] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 124.321030] vfs_kern_mount.part.34+0x88/0x4d0 [ 124.325609] ? may_umount+0xb0/0xb0 [ 124.329232] ? _raw_read_unlock+0x22/0x30 [ 124.333373] ? __get_fs_type+0x97/0xc0 [ 124.337260] do_mount+0x564/0x3070 [ 124.340795] ? lock_downgrade+0x8e0/0x8e0 [ 124.344944] ? copy_mount_string+0x40/0x40 [ 124.349171] ? check_same_owner+0x320/0x320 [ 124.353488] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 124.358500] ? __check_object_size+0x95/0x5d9 [ 124.363001] ? __might_sleep+0x95/0x190 [ 124.366983] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 124.372536] ? _copy_from_user+0xdf/0x150 [ 124.376681] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 124.382210] ? copy_mount_options+0x285/0x380 [ 124.386698] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 124.392233] ksys_mount+0x12d/0x140 [ 124.395866] __x64_sys_mount+0xbe/0x150 [ 124.399831] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 124.404855] do_syscall_64+0x1b1/0x800 [ 124.408739] ? finish_task_switch+0x1ca/0x810 [ 124.413231] ? syscall_return_slowpath+0x5c0/0x5c0 [ 124.418158] ? syscall_return_slowpath+0x30f/0x5c0 [ 124.423090] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 124.428451] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 124.433300] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 124.438489] RIP: 0033:0x455979 2018/04/30 22:50:57 executing program 1: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x1, 0x0) [ 124.441757] RSP: 002b:00007fcdf93d8c68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 124.449471] RAX: ffffffffffffffda RBX: 00007fcdf93d96d4 RCX: 0000000000455979 [ 124.456738] RDX: 0000000020000100 RSI: 0000000020000080 RDI: 0000000020000040 [ 124.464000] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 124.471266] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000014 [ 124.478524] R13: 0000000000000440 R14: 00000000006fa6a0 R15: 0000000000000004 2018/04/30 22:50:57 executing program 5: pipe2(&(0x7f0000f61000)={0xffffffffffffffff, 0xffffffffffffffff}, 0x4000) mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0) r2 = userfaultfd(0x0) ioctl$UFFDIO_API(r2, 0xc018aa3f, &(0x7f0000bc8000)={0xaa}) ioctl$UFFDIO_REGISTER(r2, 0xc020aa00, &(0x7f0000d62fe0)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1}) write$sndseq(r1, &(0x7f0000011fd2)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x1c) read(r0, &(0x7f000022e000)=""/74, 0x4a) ioctl$int_in(r1, 0x5452, &(0x7f0000affff8)=0x7) getsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000040)={0x0, 0x38, &(0x7f0000000000)=[@in6={0xa, 0x4e24, 0x85, @local={0xfe, 0x80, [], 0xaa}, 0x2}, @in6={0xa, 0x4e21, 0x3ff, @remote={0xfe, 0x80, [], 0xbb}, 0x10001}]}, &(0x7f0000000080)=0x10) setsockopt$inet_sctp_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000000c0)={r3, 0x5}, 0xc) dup2(r0, r2) 2018/04/30 22:50:57 executing program 1: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0xc003, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:50:57 executing program 0 (fault-call:2 fault-nth:5): mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) [ 124.679529] FAULT_INJECTION: forcing a failure. [ 124.679529] name failslab, interval 1, probability 0, space 0, times 0 [ 124.690849] CPU: 1 PID: 10171 Comm: syz-executor0 Not tainted 4.17.0-rc3+ #26 [ 124.698147] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 124.707518] Call Trace: [ 124.710137] dump_stack+0x1b9/0x294 [ 124.713798] ? dump_stack_print_info.cold.2+0x52/0x52 [ 124.719017] ? kernel_text_address+0x79/0xf0 [ 124.723464] ? __unwind_start+0x166/0x330 2018/04/30 22:50:57 executing program 7: mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0) r0 = userfaultfd(0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000080)={0xaa}) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000000)={{&(0x7f0000011000/0x4000)=nil, 0x4000}, 0x1}) r1 = syz_open_dev$sndtimer(&(0x7f0000f85ff1)='/dev/snd/timer\x00', 0x0, 0x802) ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r1, 0xc0145401, &(0x7f0000013000)) readv(r1, &(0x7f000042bff8)=[{&(0x7f0000e3b000)=""/61, 0x3d}], 0x1) r2 = syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x7, 0x60042) ioctl$sock_kcm_SIOCKCMUNATTACH(r1, 0x89e1, &(0x7f00000000c0)={r2}) ioctl$KVM_DEASSIGN_PCI_DEVICE(r1, 0x4040ae72, &(0x7f0000ff0000)) syz_mount_image$xfs(&(0x7f0000000100)='xfs\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x3, &(0x7f00000002c0)=[{&(0x7f0000000180)="e5", 0x1, 0x6}, {&(0x7f00000001c0)="6d75c99036ca7be32f39baddc100dd7e1fba97d6122cf35887d0a967087cb9d8520f098c3b779ad8a38e2aae5917132137cb53b33741166a48356a087f4370faf61a967445d49a46098e9a05405970022a76071278631a660af44564ea5fa5d50ae4bf73fa34094200b076d2291e1f326903fe7736ce2fefc8ce633bc5d137a6fcb1f4f167a3c3a85d511e539531937942a125f7e6d0364a753f3f788d", 0x9d}, {&(0x7f0000000280)="7046e20347858b3f46f3d6ce267af0e5bf3a495f", 0x14, 0x8}], 0x100000, &(0x7f0000000340)={'nouuid,', {[{@ikeep='ikeep', 0x2c}, {@norecovery='norecovery', 0x2c}, {@swidth={'swidth', 0x3d, [0x38]}, 0x2c}, {@gquota='gquota', 0x2c}, {@prjquota='prjquota', 0x2c}, {@nodiscard='nodiscard', 0x2c}, {@usrquota='usrquota', 0x2c}, {@swidth={'swidth', 0x3d, [0x37, 0x3f]}, 0x2c}, {@prjquota='prjquota', 0x2c}]}}) dup3(r1, r0, 0x0) 2018/04/30 22:50:57 executing program 1 (fault-call:2 fault-nth:0): mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0xc003, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:50:57 executing program 6 (fault-call:2 fault-nth:2): mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x1, 0x0) [ 124.727652] should_fail.cold.4+0xa/0x1a [ 124.731744] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 124.736878] ? perf_trace_lock+0xd6/0x900 [ 124.741060] ? zap_class+0x720/0x720 [ 124.744812] ? kmem_cache_alloc+0x12e/0x760 [ 124.749160] ? vfs_kern_mount.part.34+0x88/0x4d0 [ 124.753947] ? find_held_lock+0x36/0x1c0 [ 124.758059] ? check_same_owner+0x320/0x320 [ 124.762417] ? rcu_note_context_switch+0x710/0x710 [ 124.767382] __should_failslab+0x124/0x180 [ 124.771643] should_failslab+0x9/0x14 [ 124.775477] __kmalloc_track_caller+0x2c4/0x760 [ 124.780174] ? kasan_check_read+0x11/0x20 [ 124.784347] ? do_raw_spin_unlock+0x9e/0x2e0 [ 124.788783] ? kstrdup_const+0x66/0x80 [ 124.791590] FAULT_INJECTION: forcing a failure. [ 124.791590] name failslab, interval 1, probability 0, space 0, times 0 [ 124.792689] kstrdup+0x39/0x70 [ 124.792708] kstrdup_const+0x66/0x80 [ 124.792727] alloc_vfsmnt+0x1b3/0x9d0 [ 124.792744] ? mnt_free_id.isra.27+0x60/0x60 [ 124.792764] ? kasan_check_read+0x11/0x20 [ 124.792780] ? graph_lock+0x170/0x170 [ 124.792803] ? rcu_pm_notify+0xc0/0xc0 [ 124.830975] ? trace_hardirqs_off+0xd/0x10 [ 124.835214] ? putname+0xf2/0x130 [ 124.838670] ? putname+0xf2/0x130 [ 124.842128] ? find_held_lock+0x36/0x1c0 [ 124.846202] ? lock_downgrade+0x8e0/0x8e0 [ 124.850368] ? module_unload_free+0x5b0/0x5b0 [ 124.854869] ? lock_release+0xa10/0xa10 [ 124.858850] ? mpi_free.cold.1+0x19/0x19 [ 124.862916] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 124.868470] vfs_kern_mount.part.34+0x88/0x4d0 [ 124.873068] ? may_umount+0xb0/0xb0 [ 124.876710] ? _raw_read_unlock+0x22/0x30 [ 124.880859] ? __get_fs_type+0x97/0xc0 [ 124.884757] do_mount+0x564/0x3070 [ 124.888296] ? lock_downgrade+0x8e0/0x8e0 [ 124.892456] ? copy_mount_string+0x40/0x40 [ 124.896697] ? check_same_owner+0x320/0x320 [ 124.901024] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 124.906044] ? __check_object_size+0x95/0x5d9 [ 124.910552] ? __might_sleep+0x95/0x190 [ 124.914535] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 124.920075] ? _copy_from_user+0xdf/0x150 [ 124.924240] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 124.929781] ? copy_mount_options+0x285/0x380 [ 124.934277] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 124.939822] ksys_mount+0x12d/0x140 [ 124.943458] __x64_sys_mount+0xbe/0x150 [ 124.947461] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 124.952482] do_syscall_64+0x1b1/0x800 [ 124.956369] ? finish_task_switch+0x1ca/0x810 [ 124.960868] ? syscall_return_slowpath+0x5c0/0x5c0 [ 124.965801] ? syscall_return_slowpath+0x30f/0x5c0 [ 124.971738] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 124.977113] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 124.981973] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 124.987159] RIP: 0033:0x455979 [ 124.990352] RSP: 002b:00007fcdf93d8c68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 124.998061] RAX: ffffffffffffffda RBX: 00007fcdf93d96d4 RCX: 0000000000455979 [ 125.005328] RDX: 0000000020000100 RSI: 0000000020000080 RDI: 0000000020000040 [ 125.012594] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 125.019968] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000014 [ 125.027236] R13: 0000000000000440 R14: 00000000006fa6a0 R15: 0000000000000005 [ 125.034551] CPU: 0 PID: 10180 Comm: syz-executor6 Not tainted 4.17.0-rc3+ #26 [ 125.041844] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 125.051228] Call Trace: [ 125.053848] dump_stack+0x1b9/0x294 [ 125.057510] ? dump_stack_print_info.cold.2+0x52/0x52 [ 125.062729] ? find_held_lock+0x36/0x1c0 [ 125.066914] should_fail.cold.4+0xa/0x1a [ 125.071013] ? __lock_acquire+0x7f5/0x5140 [ 125.075270] ? fault_create_debugfs_attr+0x1f0/0x1f0 2018/04/30 22:50:58 executing program 3: r0 = syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x0, 0x0) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0x0, r0, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r1, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x2000000}, 0x1c) syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1) [ 125.080413] ? debug_check_no_locks_freed+0x310/0x310 [ 125.085630] ? find_held_lock+0x36/0x1c0 [ 125.089738] ? check_same_owner+0x320/0x320 [ 125.095649] ? zap_class+0x720/0x720 [ 125.099390] ? rcu_note_context_switch+0x710/0x710 [ 125.104350] __should_failslab+0x124/0x180 [ 125.108611] should_failslab+0x9/0x14 [ 125.112456] kmem_cache_alloc+0x2af/0x760 [ 125.116633] ? find_held_lock+0x36/0x1c0 [ 125.120728] getname_flags+0xd0/0x5a0 [ 125.124559] user_path_at_empty+0x2d/0x50 [ 125.128736] do_mount+0x172/0x3070 [ 125.132297] ? lock_downgrade+0x8e0/0x8e0 [ 125.136471] ? copy_mount_string+0x40/0x40 [ 125.142000] ? check_same_owner+0x320/0x320 [ 125.146344] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 125.151399] ? __check_object_size+0x95/0x5d9 [ 125.155926] ? __might_sleep+0x95/0x190 [ 125.159942] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 125.165505] ? _copy_from_user+0xdf/0x150 [ 125.169680] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 125.175248] ? copy_mount_options+0x285/0x380 [ 125.179764] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 125.185313] ksys_mount+0x12d/0x140 [ 125.188942] __x64_sys_mount+0xbe/0x150 [ 125.192919] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 125.197942] do_syscall_64+0x1b1/0x800 [ 125.201860] ? finish_task_switch+0x1ca/0x810 [ 125.206352] ? syscall_return_slowpath+0x5c0/0x5c0 [ 125.211282] ? syscall_return_slowpath+0x30f/0x5c0 [ 125.216219] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 125.221584] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 125.226436] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 125.231625] RIP: 0033:0x455979 [ 125.234813] RSP: 002b:00007f1fa3db4c68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 125.242536] RAX: ffffffffffffffda RBX: 00007f1fa3db56d4 RCX: 0000000000455979 [ 125.249899] RDX: 0000000020000100 RSI: 0000000020000080 RDI: 0000000020000040 [ 125.257184] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 125.264463] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000014 [ 125.271735] R13: 0000000000000440 R14: 00000000006fa6a0 R15: 0000000000000002 [ 125.461229] device bridge_slave_1 left promiscuous mode [ 125.466831] bridge0: port 2(bridge_slave_1) entered disabled state [ 125.476609] device bridge_slave_0 left promiscuous mode [ 125.482195] bridge0: port 1(bridge_slave_0) entered disabled state [ 125.523878] team0 (unregistering): Port device team_slave_1 removed [ 125.534625] team0 (unregistering): Port device team_slave_0 removed [ 125.544736] bond0 (unregistering): Releasing backup interface bond_slave_1 [ 125.563559] bond0 (unregistering): Releasing backup interface bond_slave_0 [ 125.592159] bond0 (unregistering): Released all slaves 2018/04/30 22:50:58 executing program 0 (fault-call:2 fault-nth:6): mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:50:58 executing program 3: r0 = syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x0, 0x0) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0x0, r0, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r1, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x2000000}, 0x1c) syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1) 2018/04/30 22:50:58 executing program 6 (fault-call:2 fault-nth:3): mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x1, 0x0) 2018/04/30 22:50:58 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f000088cff6)='/dev/ptmx\x00', 0x1, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b3fdc)) write(r0, &(0x7f0000000100)="000000001e0011d8885ffd74c5d55fa48ee14fc927561febf38dbf35d46b6194a3eec0ccb9e13eebef733f4f57996ef35f5f2507a46e7f003f87b9199f7edbb26d78753eda64d9097b033fe28e71d7711affc876dd65d2c5010000007aa3c2d4f4aa23f625d0c4d79588f2b64c584238cacb99a13d8e900d738e7bf9fff36182b1f13d09d687f7db2b70fa8b2adc23aab8cc2db334d8900119197020b93189b432556feb62cfb90172a3ba4636932a2f2111b9d24ba7ddc23eb86740122276ca0200000007a96be1a47d61d562a8eb6b38319c9204f7f093a5a18de604af7d6ff8fd35f7560dbf7fb4c48eeed90d4c86b0c309000000df5febc0fac7e6bef8f5e8783442c5410abd4e42b31be9c4fb5444f534f740ff78000000322791d77615da2eb8b6328b8561478c477f97097118e941f3330181958eee40a897713157506ea9d2496734273b10ae86e9e25fd3ecd565af245ad570030ca1aceb30edb31af5a0aa414a80a5975da767e46a4b9c526144755ab7ce821c529000080000a06e7c3f97bd1ef3d9544ee6fc5a162ae267a82c589b19105f6f10517837721100724b39c1e71b246c896ff180923a9211fb54e25c4f81a398704e63a5686d340eab22272f039247a005d1f63f19b4e63b5a139210b396549ec4b4ecd49a0034476ec8fbeb339a3d5d9a5722ed69519dfef9f60cc3ac8af73d19248ac66ddf3f5efcfbb8b4fd90d19780fdb93956701bd36c602b681f58507009", 0x218) r1 = memfd_create(&(0x7f0000000000)='/dev/ptmx\x00', 0x1) setsockopt$l2tp_PPPOL2TP_SO_REORDERTO(r1, 0x111, 0x5, 0xff, 0x4) r2 = syz_open_pts(r0, 0x0) ioctl$TCSETS(r2, 0x5412, &(0x7f00000000c0)={0x15}) 2018/04/30 22:50:58 executing program 1 (fault-call:2 fault-nth:1): mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0xc003, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:50:58 executing program 7: openat$pfkey(0xffffffffffffff9c, &(0x7f0000000a80)='/proc/self/net/pfkey\x00', 0x0, 0x0) r0 = syz_open_dev$dspn(&(0x7f0000006ff6)='/dev/dsp#\x00', 0x1, 0x0) write$binfmt_elf64(r0, &(0x7f0000000040)={{0x7f, 0x45, 0x4c, 0x46, 0x7, 0x101, 0x8, 0xf0, 0x4, 0x3, 0x0, 0x89, 0x2f9, 0x40, 0x187, 0x4, 0x1ff, 0x38, 0x2, 0x7f, 0x4, 0x81}, [{0x6474e551, 0x5, 0x8f5b, 0x369825d5, 0x62, 0x597, 0x7fff, 0x82d}, {0x60000007, 0x7ff, 0x6, 0x1f, 0x4, 0x898c, 0x8001, 0xff}], "800bee445c5cd9bc689022a87304b8e791ca64", [[], [], [], [], [], [], [], [], []]}, 0x9c3) ioctl$int_in(r0, 0x8000000000500e, &(0x7f0000000000)) 2018/04/30 22:50:58 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = dup3(r2, r1, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000005c0)=[@text64={0x40, &(0x7f0000000640)="653aba1f00000066450ff37a00b9900900000f32420f07c744240076000000c7442402180d0000ff1c24b9800000c00f3235008000000f30c4e235ba618266baf80cb8bc6e4283ef66bafc0cb856cbc4fdef0f01d62e42de8a00000000"}], 0xaaaaaaaaaaaaac0, 0x0, &(0x7f0000000600), 0x100000000000024d) ioctl$KVM_SET_MSRS(r3, 0x4008ae89, &(0x7f0000000000)={0x1, 0x0, [{0x485, 0x0, 0x5}]}) sendmsg$netlink(r3, &(0x7f00000000c0)={&(0x7f0000000040)=@proc={0x10, 0x0, 0x25dfdbfe, 0x80024800}, 0xc, &(0x7f0000000080)=[{&(0x7f00000006c0)={0x11e4, 0x11, 0x0, 0x70bd2c, 0x25dfdbfd, "", [@nested={0x11d0, 0x68, [@typed={0x4, 0x14}, @generic="158c349c6e25a90a2a9ce16ef6294d8d474f948f2291507f7a41300e4c9ce9847da7e8f3e72f48ba19b13ea5b1ce5e7aeb2c6da175f2108eb6c879fc5713c97eca19a034ec79a8e4d150252c9c9b3a669b41d0ad62b6c6bc9f31fd491c623229c335c1f62e1542411b50635839e6232f6f63f503447aefcefb47f2348f88bcd2723a57a6a972b386b0a5037afc21862062f8724e3da6f320c423667e4bbc4b61e8ad520bb14774df34a59bea610f6e164b510a993a05ca3385b4168ebe6948c6", @typed={0xc, 0x2b, @u64=0x10000}, @generic="4500f5eea8928b186918713818a5ad5f26996cf3c7689cf97bb3f39e8d1fb4daa20a0fa2cc3e42b6f51126f514fdd61bcf948bc58d92c03e79a6d5eac4505fd63456ed5ae77918e81f44a57ed540432fc7a3bd467d207fa3fe84978c0ac75cb841a18af2204adfbbd887b673d95f64d42c70e60d693278fbc139304385ca70425e029045d02acf7674a0f764b41cbc1f8ad461bf9f3e59960285f0de70f7916c2a571e3b422a8cd721bb3f0f826d64032c758261317f358a8802d313091b88935921c0f0ea11b58c4b081d882bc209aaa3b93c7798d29711a76338e009573885486be7e5eb647c6bc79a11388a5c0421c0280a9db2a687634b", @generic="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"]}, @typed={0x4, 0x1d}]}, 0x11e4}], 0x1, 0x0, 0x0, 0x40000}, 0x8000) 2018/04/30 22:50:58 executing program 2: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$evdev(&(0x7f0000072fee)='/dev/input/event#\x00', 0x0, 0x2) read(r0, &(0x7f000006b000)=""/24, 0x18) write$evdev(r0, &(0x7f0000057fa0)=[{{}, 0x0, 0x100000001}, {}], 0x30) [ 125.696112] FAULT_INJECTION: forcing a failure. [ 125.696112] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 125.696440] FAULT_INJECTION: forcing a failure. [ 125.696440] name failslab, interval 1, probability 0, space 0, times 0 [ 125.707977] CPU: 1 PID: 10215 Comm: syz-executor6 Not tainted 4.17.0-rc3+ #26 [ 125.707988] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 125.707992] Call Trace: [ 125.708018] dump_stack+0x1b9/0x294 [ 125.708040] ? dump_stack_print_info.cold.2+0x52/0x52 [ 125.708057] ? debug_check_no_locks_freed+0x310/0x310 [ 125.708081] should_fail.cold.4+0xa/0x1a [ 125.708107] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 125.761624] ? debug_check_no_locks_freed+0x310/0x310 [ 125.766823] ? graph_lock+0x170/0x170 [ 125.770622] ? graph_lock+0x170/0x170 [ 125.774423] ? print_usage_bug+0xc0/0xc0 [ 125.778508] ? perf_trace_lock+0xd6/0x900 [ 125.782657] ? find_held_lock+0x36/0x1c0 [ 125.786720] ? zap_class+0x720/0x720 [ 125.790442] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 125.795980] ? should_fail+0x21b/0xbcd [ 125.799875] ? __lock_acquire+0x7f5/0x5140 [ 125.804114] ? lock_downgrade+0x8e0/0x8e0 [ 125.808269] __alloc_pages_nodemask+0x34e/0xd70 [ 125.812948] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 125.817981] ? debug_check_no_locks_freed+0x310/0x310 [ 125.823785] ? find_held_lock+0x36/0x1c0 [ 125.827868] ? check_same_owner+0x320/0x320 [ 125.832187] ? zap_class+0x720/0x720 [ 125.835905] cache_grow_begin+0x72/0x6c0 [ 125.839979] kmem_cache_alloc+0x689/0x760 [ 125.844135] getname_flags+0xd0/0x5a0 [ 125.847941] user_path_at_empty+0x2d/0x50 [ 125.852090] do_mount+0x172/0x3070 [ 125.855625] ? lock_downgrade+0x8e0/0x8e0 [ 125.859785] ? copy_mount_string+0x40/0x40 [ 125.864018] ? check_same_owner+0x320/0x320 [ 125.868341] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 125.873364] ? __check_object_size+0x95/0x5d9 [ 125.877870] ? __might_sleep+0x95/0x190 [ 125.881853] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 125.887392] ? _copy_from_user+0xdf/0x150 [ 125.891544] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 125.897108] ? copy_mount_options+0x285/0x380 [ 125.901604] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 125.907144] ksys_mount+0x12d/0x140 [ 125.910772] __x64_sys_mount+0xbe/0x150 [ 125.914745] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 125.919872] do_syscall_64+0x1b1/0x800 [ 125.923776] ? finish_task_switch+0x1ca/0x810 [ 125.928272] ? syscall_return_slowpath+0x5c0/0x5c0 [ 125.933203] ? syscall_return_slowpath+0x30f/0x5c0 [ 125.938141] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 125.943515] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 125.948365] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 125.953554] RIP: 0033:0x455979 [ 125.956741] RSP: 002b:00007f1fa3db4c68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 125.964459] RAX: ffffffffffffffda RBX: 00007f1fa3db56d4 RCX: 0000000000455979 [ 125.971726] RDX: 0000000020000100 RSI: 0000000020000080 RDI: 0000000020000040 [ 125.978995] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 125.986376] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000014 [ 125.993643] R13: 0000000000000440 R14: 00000000006fa6a0 R15: 0000000000000003 [ 126.000932] CPU: 0 PID: 10212 Comm: syz-executor0 Not tainted 4.17.0-rc3+ #26 [ 126.008217] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 126.017583] Call Trace: [ 126.020201] dump_stack+0x1b9/0x294 [ 126.023826] ? dump_stack_print_info.cold.2+0x52/0x52 [ 126.029032] should_fail.cold.4+0xa/0x1a [ 126.033094] ? perf_trace_lock+0xd6/0x900 [ 126.037241] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 126.042334] ? zap_class+0x720/0x720 [ 126.046050] ? kasan_check_read+0x11/0x20 [ 126.050198] ? rcu_pm_notify+0xc0/0xc0 [ 126.054086] ? find_held_lock+0x36/0x1c0 [ 126.058155] ? check_same_owner+0x320/0x320 [ 126.062557] ? rcu_note_context_switch+0x710/0x710 [ 126.067483] __should_failslab+0x124/0x180 [ 126.071732] should_failslab+0x9/0x14 [ 126.075525] kmem_cache_alloc_trace+0x2cb/0x780 [ 126.080194] ? kasan_check_write+0x14/0x20 [ 126.084432] ? do_raw_spin_lock+0xc1/0x200 [ 126.088663] sget_userns+0x1c7/0xf00 [ 126.092364] ? get_anon_bdev+0x2f0/0x2f0 [ 126.096502] ? test_bdev_super+0x50/0x50 [ 126.100556] ? destroy_unused_super.part.11+0x110/0x110 [ 126.105914] ? alloc_vfsmnt+0x771/0x9d0 [ 126.109883] ? mnt_free_id.isra.27+0x60/0x60 [ 126.114284] ? kasan_check_read+0x11/0x20 [ 126.118422] ? graph_lock+0x170/0x170 [ 126.122214] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 126.127749] ? cap_capable+0x1f9/0x260 [ 126.131632] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 126.137171] ? security_capable+0x99/0xc0 [ 126.141316] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 126.146849] ? ns_capable_common+0x13f/0x170 [ 126.151259] ? get_anon_bdev+0x2f0/0x2f0 [ 126.155319] sget+0x10b/0x150 [ 126.158417] ? test_bdev_super+0x50/0x50 [ 126.162485] ? fuse_ctl_add_conn+0x280/0x280 [ 126.166887] mount_single+0x3a/0x170 [ 126.170609] fuse_ctl_mount+0x2c/0x40 [ 126.174419] mount_fs+0xae/0x328 [ 126.177780] ? mpi_free.cold.1+0x19/0x19 [ 126.181842] vfs_kern_mount.part.34+0xd4/0x4d0 [ 126.186432] ? may_umount+0xb0/0xb0 [ 126.190071] ? _raw_read_unlock+0x22/0x30 [ 126.194213] ? __get_fs_type+0x97/0xc0 [ 126.198096] do_mount+0x564/0x3070 [ 126.201631] ? lock_downgrade+0x8e0/0x8e0 [ 126.205774] ? copy_mount_string+0x40/0x40 [ 126.210016] ? check_same_owner+0x320/0x320 [ 126.214342] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 126.219349] ? __check_object_size+0x95/0x5d9 [ 126.223857] ? __might_sleep+0x95/0x190 [ 126.227846] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 126.233811] ? _copy_from_user+0xdf/0x150 [ 126.237977] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 126.243525] ? copy_mount_options+0x285/0x380 [ 126.248028] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 126.253560] ksys_mount+0x12d/0x140 [ 126.257181] __x64_sys_mount+0xbe/0x150 [ 126.261147] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 126.266167] do_syscall_64+0x1b1/0x800 [ 126.270059] ? finish_task_switch+0x1ca/0x810 [ 126.274548] ? syscall_return_slowpath+0x5c0/0x5c0 [ 126.279469] ? syscall_return_slowpath+0x30f/0x5c0 [ 126.284393] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 126.289752] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 126.294592] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 126.299770] RIP: 0033:0x455979 [ 126.302949] RSP: 002b:00007fcdf93d8c68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 126.310648] RAX: ffffffffffffffda RBX: 00007fcdf93d96d4 RCX: 0000000000455979 [ 126.317907] RDX: 0000000020000100 RSI: 0000000020000080 RDI: 0000000020000040 [ 126.325165] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 126.332424] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000014 [ 126.339682] R13: 0000000000000440 R14: 00000000006fa6a0 R15: 0000000000000006 2018/04/30 22:50:59 executing program 7: r0 = syz_init_net_socket$llc(0x1a, 0x3, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='binfmt_misc\x00', 0x80420, 0x0) r1 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000180)='/dev/snapshot\x00', 0x400, 0x0) setsockopt$inet_sctp_SCTP_EVENTS(r1, 0x84, 0xb, &(0x7f00000001c0)={0x4992, 0x93, 0x62, 0x199, 0xff, 0x10000, 0x8, 0x6, 0x3, 0x800, 0x627c}, 0xb) accept4(r0, &(0x7f0000000080)=@in6, &(0x7f0000000000)=0x80, 0x0) 2018/04/30 22:50:59 executing program 3: r0 = syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x0, 0x0) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, r0, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r1, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x2000000}, 0x1c) syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1) 2018/04/30 22:50:59 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000025000/0x18000)=nil, &(0x7f0000000200)=[@textreal={0x8, &(0x7f0000000240)="0f08360f30ba430066edbaf80c66b8ac525a8566efbafc0c66b80010000066efba4200ec0f2257b80a008ed0f426650fc71866b95009000066b80800000066ba000000000f30", 0x46}], 0x1, 0x0, &(0x7f00000001c0), 0x0) ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4040aea0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x47}) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) setsockopt$inet6_tcp_buf(0xffffffffffffffff, 0x6, 0x0, &(0x7f0000000000)="39e8f3ec", 0x4) r3 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snapshot\x00', 0x14d02, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_REM(r3, 0x84, 0x65, &(0x7f00000000c0)=[@in6={0xa, 0x4e21, 0x1f, @ipv4={[], [0xff, 0xff], @loopback=0x7f000001}, 0x5}, @in={0x2, 0x4e21, @loopback=0x7f000001}, @in6={0xa, 0x4e20, 0x8, @empty, 0x2}, @in6={0xa, 0x4e22, 0x4, @remote={0xfe, 0x80, [], 0xbb}, 0xfffffffffffffffa}, @in={0x2, 0x4e22, @local={0xac, 0x14, 0x14, 0xaa}}, @in6={0xa, 0x4, 0x5, @mcast2={0xff, 0x2, [], 0x1}, 0x1}, @in={0x2, 0x4e24, @broadcast=0xffffffff}, @in6={0xa, 0x4e21, 0xd59, @loopback={0x0, 0x1}, 0x400}], 0xbc) ioctl$KVM_RUN(r2, 0xae80, 0x0) 2018/04/30 22:50:59 executing program 6 (fault-call:2 fault-nth:4): mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x1, 0x0) 2018/04/30 22:50:59 executing program 2: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$evdev(&(0x7f0000072fee)='/dev/input/event#\x00', 0x0, 0x2) read(r0, &(0x7f000006b000)=""/24, 0x18) write$evdev(r0, &(0x7f0000057fa0)=[{{}, 0x0, 0x100000001}, {}], 0x30) 2018/04/30 22:50:59 executing program 0 (fault-call:2 fault-nth:7): mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:50:59 executing program 7: r0 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/qat_adf_ctl\x00', 0x0, 0x0) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_inet_SIOCSARP(r0, 0x40096101, &(0x7f00008da000)={{0x2, 0x0, @multicast2=0xe0000002, [0xfe]}, {}, 0x0, {0x2, 0x0, @dev={0xac, 0x14, 0x14}}, 'ip6tnl0\x00'}) 2018/04/30 22:50:59 executing program 3: r0 = syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x0, 0x0) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, r0, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r1, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x2000000}, 0x1c) syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1) [ 126.643427] IPVS: ftp: loaded support on port[0] = 21 [ 126.659164] FAULT_INJECTION: forcing a failure. [ 126.659164] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 126.671029] CPU: 1 PID: 10245 Comm: syz-executor0 Not tainted 4.17.0-rc3+ #26 [ 126.678331] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 126.687797] Call Trace: 2018/04/30 22:50:59 executing program 5: r0 = socket(0x11, 0x100000802, 0x0) r1 = syz_open_dev$tun(&(0x7f0000000140)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={"6966623000faffffffffffffff00", 0x4001}) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, &(0x7f0000000000)={"69666230000006dc01583370b31700", 0xa201}) r2 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vsock\x00', 0x109000, 0x0) setsockopt$inet_udp_int(r2, 0x11, 0x65, &(0x7f00000000c0)=0x1000, 0x4) r3 = fcntl$dupfd(r1, 0x0, r0) ioctl$TUNSETLINK(r3, 0x400454cd, 0x0) [ 126.690418] dump_stack+0x1b9/0x294 [ 126.694080] ? dump_stack_print_info.cold.2+0x52/0x52 [ 126.699300] ? graph_lock+0x170/0x170 [ 126.703123] ? debug_check_no_locks_freed+0x310/0x310 [ 126.708344] should_fail.cold.4+0xa/0x1a [ 126.712437] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 126.717598] ? debug_check_no_locks_freed+0x310/0x310 [ 126.722830] ? find_next_bit+0x104/0x130 [ 126.726917] ? perf_trace_lock+0xd6/0x900 [ 126.731098] ? zap_class+0x720/0x720 [ 126.734843] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 126.740407] ? should_fail+0x21b/0xbcd [ 126.744321] ? perf_trace_lock+0xd6/0x900 [ 126.748500] __alloc_pages_nodemask+0x34e/0xd70 [ 126.753280] ? zap_class+0x720/0x720 [ 126.757025] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 126.762070] ? rcu_pm_notify+0xc0/0xc0 [ 126.765990] ? find_held_lock+0x36/0x1c0 [ 126.770103] ? check_same_owner+0x320/0x320 [ 126.774455] cache_grow_begin+0x72/0x6c0 [ 126.778547] kmem_cache_alloc_trace+0x6a5/0x780 [ 126.783239] ? kasan_check_write+0x14/0x20 [ 126.787470] ? do_raw_spin_lock+0xc1/0x200 [ 126.791705] sget_userns+0x1c7/0xf00 [ 126.795407] ? get_anon_bdev+0x2f0/0x2f0 [ 126.799462] ? test_bdev_super+0x50/0x50 [ 126.803516] ? destroy_unused_super.part.11+0x110/0x110 [ 126.808884] ? alloc_vfsmnt+0x771/0x9d0 [ 126.812852] ? mnt_free_id.isra.27+0x60/0x60 [ 126.817263] ? kasan_check_read+0x11/0x20 [ 126.821527] ? graph_lock+0x170/0x170 [ 126.825332] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 126.830995] ? cap_capable+0x1f9/0x260 [ 126.834882] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 126.840409] ? security_capable+0x99/0xc0 [ 126.844548] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 126.850094] ? ns_capable_common+0x13f/0x170 [ 126.854499] ? get_anon_bdev+0x2f0/0x2f0 [ 126.858547] sget+0x10b/0x150 [ 126.861652] ? test_bdev_super+0x50/0x50 [ 126.865720] ? fuse_ctl_add_conn+0x280/0x280 [ 126.870128] mount_single+0x3a/0x170 [ 126.873834] fuse_ctl_mount+0x2c/0x40 [ 126.877628] mount_fs+0xae/0x328 [ 126.880999] ? mpi_free.cold.1+0x19/0x19 [ 126.885087] vfs_kern_mount.part.34+0xd4/0x4d0 [ 126.889693] ? may_umount+0xb0/0xb0 [ 126.893323] ? _raw_read_unlock+0x22/0x30 [ 126.897460] ? __get_fs_type+0x97/0xc0 [ 126.901345] do_mount+0x564/0x3070 [ 126.904876] ? lock_downgrade+0x8e0/0x8e0 [ 126.909027] ? copy_mount_string+0x40/0x40 [ 126.913262] ? check_same_owner+0x320/0x320 [ 126.917575] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 126.922583] ? __check_object_size+0x95/0x5d9 [ 126.927084] ? __might_sleep+0x95/0x190 [ 126.931066] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 126.936596] ? _copy_from_user+0xdf/0x150 [ 126.940747] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 126.946281] ? copy_mount_options+0x285/0x380 [ 126.950771] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 126.956305] ksys_mount+0x12d/0x140 [ 126.959934] __x64_sys_mount+0xbe/0x150 [ 126.963899] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 126.968906] do_syscall_64+0x1b1/0x800 [ 126.973798] ? finish_task_switch+0x1ca/0x810 [ 126.978292] ? syscall_return_slowpath+0x5c0/0x5c0 [ 126.983220] ? syscall_return_slowpath+0x30f/0x5c0 [ 126.988149] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 126.993515] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 126.998352] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 127.003543] RIP: 0033:0x455979 [ 127.006720] RSP: 002b:00007fcdf93d8c68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 127.014428] RAX: ffffffffffffffda RBX: 00007fcdf93d96d4 RCX: 0000000000455979 [ 127.021688] RDX: 0000000020000100 RSI: 0000000020000080 RDI: 0000000020000040 [ 127.028957] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 127.036226] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000014 2018/04/30 22:51:00 executing program 3: r0 = syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x0, 0x0) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r1, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x2000000}, 0x1c) syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1) [ 127.043491] R13: 0000000000000440 R14: 00000000006fa6a0 R15: 0000000000000007 [ 127.075428] QAT: Stopping all acceleration devices. [ 127.096647] QAT: Stopping all acceleration devices. 2018/04/30 22:51:00 executing program 7: r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000140)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, &(0x7f0000000000)) r1 = add_key$keyring(&(0x7f0000000040)='keyring\x00', &(0x7f0000000080)={0x73, 0x79, 0x7a, 0x2}, 0x0, 0x0, 0xfffffffffffffffe) keyctl$update(0x2, r1, &(0x7f00000000c0), 0x0) r2 = dup2(r0, r0) ioctl$KVM_SET_NR_MMU_PAGES(r2, 0x4004af07, 0xffffffffffb2c221) 2018/04/30 22:51:00 executing program 3: syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x0, 0x0) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x0, 0x0) connect$inet6(r0, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x2000000}, 0x1c) syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1) [ 127.246556] FAULT_INJECTION: forcing a failure. [ 127.246556] name failslab, interval 1, probability 0, space 0, times 0 [ 127.257876] CPU: 0 PID: 10251 Comm: syz-executor6 Not tainted 4.17.0-rc3+ #26 [ 127.265153] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 127.274508] Call Trace: [ 127.277115] dump_stack+0x1b9/0x294 [ 127.281011] ? dump_stack_print_info.cold.2+0x52/0x52 [ 127.286237] should_fail.cold.4+0xa/0x1a [ 127.290310] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 127.295450] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 127.300653] ? is_bpf_text_address+0xd7/0x170 [ 127.305158] ? find_held_lock+0x36/0x1c0 [ 127.309246] ? check_same_owner+0x320/0x320 [ 127.313571] ? kasan_slab_free+0xe/0x10 [ 127.317549] ? kmem_cache_free+0x86/0x2d0 [ 127.321704] ? putname+0xf2/0x130 [ 127.325178] ? rcu_note_context_switch+0x710/0x710 [ 127.330112] ? ksys_mount+0x12d/0x140 [ 127.333915] ? __x64_sys_mount+0xbe/0x150 [ 127.338065] ? do_syscall_64+0x1b1/0x800 [ 127.342133] __should_failslab+0x124/0x180 [ 127.346380] should_failslab+0x9/0x14 [ 127.350187] kmem_cache_alloc+0x2af/0x760 [ 127.354336] ? perf_trace_lock+0xd6/0x900 [ 127.358490] ? kasan_check_write+0x14/0x20 [ 127.362737] ? do_raw_spin_lock+0xc1/0x200 [ 127.366982] alloc_vfsmnt+0xe0/0x9d0 [ 127.370705] ? mnt_free_id.isra.27+0x60/0x60 [ 127.375130] ? kasan_check_read+0x11/0x20 [ 127.379290] ? graph_lock+0x170/0x170 [ 127.383096] ? rcu_pm_notify+0xc0/0xc0 [ 127.387027] ? trace_hardirqs_off+0xd/0x10 [ 127.391275] ? putname+0xf2/0x130 [ 127.394742] ? putname+0xf2/0x130 [ 127.398205] ? find_held_lock+0x36/0x1c0 [ 127.402283] ? lock_downgrade+0x8e0/0x8e0 [ 127.406436] ? module_unload_free+0x5b0/0x5b0 [ 127.410938] ? lock_release+0xa10/0xa10 [ 127.414923] ? mpi_free.cold.1+0x19/0x19 [ 127.418991] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 127.424546] vfs_kern_mount.part.34+0x88/0x4d0 [ 127.429143] ? may_umount+0xb0/0xb0 [ 127.432782] ? _raw_read_unlock+0x22/0x30 [ 127.436935] ? __get_fs_type+0x97/0xc0 [ 127.440836] do_mount+0x564/0x3070 [ 127.444383] ? lock_downgrade+0x8e0/0x8e0 [ 127.448547] ? copy_mount_string+0x40/0x40 [ 127.452790] ? check_same_owner+0x320/0x320 [ 127.457122] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 127.462144] ? __check_object_size+0x95/0x5d9 [ 127.466667] ? __might_sleep+0x95/0x190 [ 127.470656] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 127.476198] ? _copy_from_user+0xdf/0x150 [ 127.480358] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 127.485897] ? copy_mount_options+0x285/0x380 [ 127.490395] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 127.495937] ksys_mount+0x12d/0x140 [ 127.499573] __x64_sys_mount+0xbe/0x150 [ 127.503550] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 127.508575] do_syscall_64+0x1b1/0x800 [ 127.512472] ? syscall_return_slowpath+0x5c0/0x5c0 [ 127.517407] ? syscall_return_slowpath+0x30f/0x5c0 [ 127.522349] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 127.527725] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 127.532576] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 127.537761] RIP: 0033:0x455979 [ 127.540951] RSP: 002b:00007f1fa3db4c68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 127.548661] RAX: ffffffffffffffda RBX: 00007f1fa3db56d4 RCX: 0000000000455979 [ 127.555928] RDX: 0000000020000100 RSI: 0000000020000080 RDI: 0000000020000040 [ 127.563195] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 127.570464] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000014 [ 127.577732] R13: 0000000000000440 R14: 00000000006fa6a0 R15: 0000000000000004 [ 128.217083] bridge0: port 1(bridge_slave_0) entered blocking state [ 128.223531] bridge0: port 1(bridge_slave_0) entered disabled state [ 128.231672] device bridge_slave_0 entered promiscuous mode [ 128.269468] bridge0: port 2(bridge_slave_1) entered blocking state [ 128.275915] bridge0: port 2(bridge_slave_1) entered disabled state [ 128.283792] device bridge_slave_1 entered promiscuous mode [ 128.313980] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 128.350942] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 128.446746] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 128.486152] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 128.594223] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 128.601538] team0: Port device team_slave_0 added [ 128.625802] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 128.632920] team0: Port device team_slave_1 added [ 128.655765] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 128.662667] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 128.670692] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 128.690520] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 128.697417] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 128.705506] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 128.724939] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 128.732103] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 128.740125] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 128.760465] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 128.767570] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 128.775965] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 128.992452] bridge0: port 2(bridge_slave_1) entered blocking state [ 128.998843] bridge0: port 2(bridge_slave_1) entered forwarding state [ 129.005491] bridge0: port 1(bridge_slave_0) entered blocking state [ 129.011887] bridge0: port 1(bridge_slave_0) entered forwarding state [ 129.019526] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 129.631341] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 129.806727] 8021q: adding VLAN 0 to HW filter on device bond0 [ 129.884777] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 129.963784] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 129.969999] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 129.977280] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 130.051102] 8021q: adding VLAN 0 to HW filter on device team0 [ 130.499710] FAULT_INJECTION: forcing a failure. [ 130.499710] name failslab, interval 1, probability 0, space 0, times 0 [ 130.511111] CPU: 1 PID: 10537 Comm: syz-executor1 Not tainted 4.17.0-rc3+ #26 [ 130.518375] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 130.527719] Call Trace: [ 130.530298] dump_stack+0x1b9/0x294 [ 130.533944] ? dump_stack_print_info.cold.2+0x52/0x52 [ 130.539123] ? __save_stack_trace+0x7e/0xd0 [ 130.543435] should_fail.cold.4+0xa/0x1a [ 130.547499] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 130.552590] ? save_stack+0x43/0xd0 [ 130.556203] ? kasan_kmalloc+0xc4/0xe0 [ 130.560078] ? __kmalloc_track_caller+0x14a/0x760 [ 130.564907] ? memdup_user+0x2c/0xa0 [ 130.568614] ? strndup_user+0x77/0xd0 [ 130.572403] ? graph_lock+0x170/0x170 [ 130.576193] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 130.581549] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 130.587080] ? proc_fail_nth_write+0x96/0x1f0 [ 130.591577] ? proc_cwd_link+0x1d0/0x1d0 [ 130.595627] ? find_held_lock+0x36/0x1c0 [ 130.599686] ? check_same_owner+0x320/0x320 [ 130.603996] ? lock_release+0xa10/0xa10 [ 130.607980] ? rcu_note_context_switch+0x710/0x710 [ 130.612908] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 130.617930] ? __check_object_size+0x95/0x5d9 [ 130.622422] __should_failslab+0x124/0x180 [ 130.626658] should_failslab+0x9/0x14 [ 130.630449] __kmalloc_track_caller+0x2c4/0x760 [ 130.635111] ? strncpy_from_user+0x500/0x500 [ 130.639511] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 130.645045] ? strndup_user+0x77/0xd0 [ 130.648933] memdup_user+0x2c/0xa0 [ 130.652462] strndup_user+0x77/0xd0 [ 130.656089] ksys_mount+0x73/0x140 [ 130.659615] __x64_sys_mount+0xbe/0x150 [ 130.663581] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 130.668584] do_syscall_64+0x1b1/0x800 [ 130.672457] ? syscall_return_slowpath+0x5c0/0x5c0 [ 130.677381] ? syscall_return_slowpath+0x30f/0x5c0 [ 130.682297] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 130.687665] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 130.692521] entry_SYSCALL_64_after_hwframe+0x49/0xbe 2018/04/30 22:51:03 executing program 6 (fault-call:2 fault-nth:5): mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x1, 0x0) 2018/04/30 22:51:03 executing program 3: syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x0, 0x0) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x0, 0x0) connect$inet6(r0, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x2000000}, 0x1c) syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1) 2018/04/30 22:51:03 executing program 0: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:51:03 executing program 1 (fault-call:2 fault-nth:2): mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0xc003, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:51:03 executing program 2: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$evdev(&(0x7f0000072fee)='/dev/input/event#\x00', 0x0, 0x2) read(r0, &(0x7f000006b000)=""/24, 0x18) 2018/04/30 22:51:03 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/vcs\x00', 0x7fe, 0x0) epoll_pwait(r1, &(0x7f0000000080)=[{}], 0x1, 0x3, &(0x7f00000000c0)={0x1000}, 0x8) sendmsg$nl_generic(r0, &(0x7f0000000000)={&(0x7f0000f74000)={0x10}, 0xc, &(0x7f0000007000)={&(0x7f0000481000)={0x14, 0x1d, 0x10d, 0x0, 0x0, {0x7e}}, 0x14}, 0x1, 0x0, 0x0, 0xfffffffffffffffd}, 0x0) 2018/04/30 22:51:03 executing program 4: socketpair$unix(0x1, 0x80000000005, 0x0, &(0x7f0000000140)={0x0, 0x0}) ioctl$sock_SIOCGPGRP(r0, 0x8904, &(0x7f0000000100)=0x0) capset(&(0x7f0000000040)={0x20080522, r2}, &(0x7f0000000080)={0x3, 0x0, 0x0, 0x0, 0x0, 0x2}) sendmsg(r0, &(0x7f0000002740)={&(0x7f0000000080)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @remote={0xfe, 0x80, [], 0xbb}}}}, 0x80, &(0x7f0000000100), 0x0, &(0x7f00000028c0)=ANY=[]}, 0x0) socketpair(0xf, 0xa, 0x10001, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) getsockopt$inet_tcp_buf(r4, 0x6, 0x1a, &(0x7f0000000240)=""/140, &(0x7f0000000300)=0x8c) recvmsg(r1, &(0x7f0000000000)={&(0x7f0000000180)=@pppol2tpv3={0x0, 0x0, {0x0, 0xffffffffffffffff, {0x0, 0x0, @multicast1}}}, 0x80, &(0x7f00000007c0), 0x0, &(0x7f0000000840)=""/122, 0x7a}, 0x0) socket$bt_bnep(0x1f, 0x3, 0x4) ioctl$sock_kcm_SIOCKCMATTACH(r5, 0xc0189436, &(0x7f0000000040)) ioctl$TIOCCONS(r3, 0x541d) 2018/04/30 22:51:03 executing program 5: socket(0x1e, 0x2, 0x0) r0 = socket$netlink(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000023000)={&(0x7f0000024000)={0x10}, 0xc, &(0x7f0000000040)={&(0x7f0000000240)={0x1c, 0x40000080000028, 0xaff, 0x0, 0x0, {0x1}, [@typed={0x8, 0x0, @u32=0x6}]}, 0x1c}, 0x1}, 0x0) ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000000)={'bcsh0\x00', &(0x7f0000000080)=@ethtool_rxnfc={0x3f, 0x1b, 0x5dfb, {0x1f, @udp_ip4_spec={@rand_addr=0x1, @multicast2=0xe0000002, 0x4e24, 0x4e24, 0x5f39}, {"7d89", @empty, 0x0, 0x80000001, [0x1, 0x6]}, @esp_ip4_spec={@rand_addr=0x3ff, @dev={0xac, 0x14, 0x14, 0x1b}, 0xffffffffffffffe1, 0x80000000}, {"af3b", @random="b42601577408", 0x4, 0x2, [0x80]}, 0x100000001, 0x80}, 0x8, [0x1, 0x80000000, 0x8, 0x10001, 0xffffffff80000001, 0x9, 0x1, 0x401]}}) [ 130.697694] RIP: 0033:0x455979 [ 130.700867] RSP: 002b:00007fdf70a3ec68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 130.708561] RAX: ffffffffffffffda RBX: 00007fdf70a3f6d4 RCX: 0000000000455979 [ 130.715827] RDX: 0000000020000100 RSI: 0000000020000080 RDI: 0000000020000040 [ 130.723101] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 130.730359] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000014 [ 130.737614] R13: 0000000000000440 R14: 00000000006fa6a0 R15: 0000000000000001 [ 130.771992] FAULT_INJECTION: forcing a failure. [ 130.771992] name failslab, interval 1, probability 0, space 0, times 0 [ 130.783323] CPU: 1 PID: 10540 Comm: syz-executor6 Not tainted 4.17.0-rc3+ #26 [ 130.790620] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 130.799984] Call Trace: [ 130.802591] dump_stack+0x1b9/0x294 [ 130.806226] ? dump_stack_print_info.cold.2+0x52/0x52 [ 130.811418] ? kernel_text_address+0x79/0xf0 [ 130.815818] ? __unwind_start+0x166/0x330 [ 130.819968] ? __kernel_text_address+0xd/0x40 [ 130.824460] should_fail.cold.4+0xa/0x1a [ 130.828513] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 130.833617] ? save_stack+0x43/0xd0 [ 130.837235] ? kasan_kmalloc+0xc4/0xe0 [ 130.841117] ? kasan_slab_alloc+0x12/0x20 [ 130.845254] ? kmem_cache_alloc+0x12e/0x760 [ 130.849564] ? alloc_vfsmnt+0xe0/0x9d0 [ 130.853440] ? vfs_kern_mount.part.34+0x88/0x4d0 [ 130.858188] ? find_held_lock+0x36/0x1c0 [ 130.862261] ? check_same_owner+0x320/0x320 [ 130.866574] ? rcu_note_context_switch+0x710/0x710 [ 130.871496] __should_failslab+0x124/0x180 [ 130.875721] should_failslab+0x9/0x14 [ 130.879520] __kmalloc_track_caller+0x2c4/0x760 [ 130.884188] ? kasan_check_read+0x11/0x20 [ 130.888324] ? do_raw_spin_unlock+0x9e/0x2e0 [ 130.892720] ? kstrdup_const+0x66/0x80 [ 130.896595] kstrdup+0x39/0x70 [ 130.899778] kstrdup_const+0x66/0x80 [ 130.903481] alloc_vfsmnt+0x1b3/0x9d0 [ 130.907268] ? mnt_free_id.isra.27+0x60/0x60 [ 130.911666] ? kasan_check_read+0x11/0x20 [ 130.915816] ? graph_lock+0x170/0x170 [ 130.919631] ? rcu_pm_notify+0xc0/0xc0 [ 130.923509] ? trace_hardirqs_off+0xd/0x10 [ 130.927738] ? putname+0xf2/0x130 [ 130.931184] ? putname+0xf2/0x130 [ 130.934628] ? find_held_lock+0x36/0x1c0 [ 130.938691] ? lock_downgrade+0x8e0/0x8e0 [ 130.942829] ? module_unload_free+0x5b0/0x5b0 [ 130.947312] ? lock_release+0xa10/0xa10 [ 130.951276] ? mpi_free.cold.1+0x19/0x19 [ 130.955340] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 130.960875] vfs_kern_mount.part.34+0x88/0x4d0 [ 130.965454] ? may_umount+0xb0/0xb0 [ 130.969072] ? _raw_read_unlock+0x22/0x30 [ 130.974279] ? __get_fs_type+0x97/0xc0 [ 130.978164] do_mount+0x564/0x3070 [ 130.981692] ? lock_downgrade+0x8e0/0x8e0 [ 130.985827] ? copy_mount_string+0x40/0x40 [ 130.990049] ? check_same_owner+0x320/0x320 [ 130.994360] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 130.999365] ? __check_object_size+0x95/0x5d9 [ 131.003853] ? __might_sleep+0x95/0x190 [ 131.007819] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 131.013344] ? _copy_from_user+0xdf/0x150 [ 131.017481] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 131.023021] ? copy_mount_options+0x285/0x380 [ 131.027518] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 131.033045] ksys_mount+0x12d/0x140 [ 131.036662] __x64_sys_mount+0xbe/0x150 [ 131.040624] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 131.045633] do_syscall_64+0x1b1/0x800 [ 131.049506] ? finish_task_switch+0x1ca/0x810 [ 131.053988] ? syscall_return_slowpath+0x5c0/0x5c0 [ 131.058909] ? syscall_return_slowpath+0x30f/0x5c0 [ 131.063831] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 131.069186] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 131.074034] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 131.079213] RIP: 0033:0x455979 [ 131.082391] RSP: 002b:00007f1fa3db4c68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 131.090088] RAX: ffffffffffffffda RBX: 00007f1fa3db56d4 RCX: 0000000000455979 [ 131.097355] RDX: 0000000020000100 RSI: 0000000020000080 RDI: 0000000020000040 [ 131.104614] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 131.111869] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000014 [ 131.119131] R13: 0000000000000440 R14: 00000000006fa6a0 R15: 0000000000000005 2018/04/30 22:51:04 executing program 0: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='//file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:51:04 executing program 4: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000001c0)='status\x00') ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r0, 0xc10c5541, &(0x7f0000000480)={0x4, 0x4, 0xfffffffffffffffd, 0x0, 0x0, [], [], [], 0x80000001, 0x3}) r1 = socket$inet_sctp(0x2, 0x5, 0x84) getsockopt$inet_sctp_SCTP_RTOINFO(r1, 0x84, 0x0, &(0x7f0000000000)={0x0, 0xffff, 0x0, 0x8}, &(0x7f0000000080)=0x10) getsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r1, 0x84, 0x1f, &(0x7f00000000c0)={r2, @in={{0x2, 0x4e20, @local={0xac, 0x14, 0x14, 0xaa}}}, 0x536f84dc, 0x1}, &(0x7f0000000180)=0x90) sendmmsg$inet_sctp(r1, &(0x7f0000004800)=[{&(0x7f0000000040)=@in={0x2, 0x0, @dev={0xac, 0x14, 0x14}}, 0x10, &(0x7f0000000340)=[{&(0x7f0000000280)='/', 0x1}], 0x1, &(0x7f0000000440)=[@sndrcv={0x30, 0x84, 0x1, {0xff, 0x0, 0x2}}], 0x30}], 0x1, 0x0) [ 131.171559] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 2018/04/30 22:51:04 executing program 6 (fault-call:2 fault-nth:6): mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x1, 0x0) 2018/04/30 22:51:04 executing program 0: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./.ile0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) [ 131.372218] FAULT_INJECTION: forcing a failure. [ 131.372218] name failslab, interval 1, probability 0, space 0, times 0 [ 131.383620] CPU: 0 PID: 10570 Comm: syz-executor6 Not tainted 4.17.0-rc3+ #26 [ 131.390908] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 131.400273] Call Trace: [ 131.402883] dump_stack+0x1b9/0x294 [ 131.406537] ? dump_stack_print_info.cold.2+0x52/0x52 [ 131.411761] should_fail.cold.4+0xa/0x1a [ 131.415855] ? perf_trace_lock+0xd6/0x900 [ 131.420029] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 131.425161] ? zap_class+0x720/0x720 [ 131.428902] ? kasan_check_read+0x11/0x20 [ 131.433078] ? rcu_pm_notify+0xc0/0xc0 [ 131.437001] ? find_held_lock+0x36/0x1c0 [ 131.441109] ? check_same_owner+0x320/0x320 [ 131.445460] ? rcu_note_context_switch+0x710/0x710 [ 131.450538] __should_failslab+0x124/0x180 [ 131.454803] should_failslab+0x9/0x14 [ 131.458633] kmem_cache_alloc_trace+0x2cb/0x780 [ 131.463331] ? kasan_check_write+0x14/0x20 [ 131.467597] ? do_raw_spin_lock+0xc1/0x200 [ 131.471850] sget_userns+0x1c7/0xf00 [ 131.475574] ? get_anon_bdev+0x2f0/0x2f0 [ 131.479651] ? test_bdev_super+0x50/0x50 [ 131.483730] ? destroy_unused_super.part.11+0x110/0x110 [ 131.489116] ? alloc_vfsmnt+0x771/0x9d0 [ 131.493115] ? mnt_free_id.isra.27+0x60/0x60 [ 131.497545] ? kasan_check_read+0x11/0x20 [ 131.501709] ? graph_lock+0x170/0x170 [ 131.505532] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 131.511099] ? cap_capable+0x1f9/0x260 [ 131.516210] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 131.521742] ? security_capable+0x99/0xc0 [ 131.525883] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 131.531422] ? ns_capable_common+0x13f/0x170 [ 131.535831] ? get_anon_bdev+0x2f0/0x2f0 [ 131.539882] sget+0x10b/0x150 [ 131.542984] ? test_bdev_super+0x50/0x50 [ 131.547049] ? fuse_ctl_add_conn+0x280/0x280 [ 131.551450] mount_single+0x3a/0x170 [ 131.555164] fuse_ctl_mount+0x2c/0x40 [ 131.558957] mount_fs+0xae/0x328 [ 131.562310] ? mpi_free.cold.1+0x19/0x19 [ 131.566372] vfs_kern_mount.part.34+0xd4/0x4d0 [ 131.570954] ? may_umount+0xb0/0xb0 [ 131.574584] ? _raw_read_unlock+0x22/0x30 [ 131.578728] ? __get_fs_type+0x97/0xc0 [ 131.582608] do_mount+0x564/0x3070 [ 131.586152] ? lock_downgrade+0x8e0/0x8e0 [ 131.590322] ? copy_mount_string+0x40/0x40 [ 131.594573] ? check_same_owner+0x320/0x320 [ 131.598900] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 131.603909] ? __check_object_size+0x95/0x5d9 [ 131.608405] ? __might_sleep+0x95/0x190 [ 131.612375] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 131.617900] ? _copy_from_user+0xdf/0x150 [ 131.622055] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 131.627585] ? copy_mount_options+0x285/0x380 [ 131.632074] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 131.637603] ksys_mount+0x12d/0x140 [ 131.641219] __x64_sys_mount+0xbe/0x150 [ 131.645183] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 131.650200] do_syscall_64+0x1b1/0x800 [ 131.654078] ? finish_task_switch+0x1ca/0x810 [ 131.658570] ? syscall_return_slowpath+0x5c0/0x5c0 [ 131.663490] ? syscall_return_slowpath+0x30f/0x5c0 [ 131.668414] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 131.673769] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 131.678602] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 131.683778] RIP: 0033:0x455979 [ 131.686953] RSP: 002b:00007f1fa3db4c68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 131.694649] RAX: ffffffffffffffda RBX: 00007f1fa3db56d4 RCX: 0000000000455979 [ 131.701903] RDX: 0000000020000100 RSI: 0000000020000080 RDI: 0000000020000040 [ 131.709158] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 131.716415] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000014 2018/04/30 22:51:04 executing program 5: socket(0x1e, 0x2, 0x0) r0 = socket$netlink(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000023000)={&(0x7f0000024000)={0x10}, 0xc, &(0x7f0000000040)={&(0x7f0000000240)={0x1c, 0x40000080000028, 0xaff, 0x0, 0x0, {0x1}, [@typed={0x8, 0x0, @u32=0x6}]}, 0x1c}, 0x1}, 0x0) ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000000)={'bcsh0\x00', &(0x7f0000000080)=@ethtool_rxnfc={0x3f, 0x1b, 0x5dfb, {0x1f, @udp_ip4_spec={@rand_addr=0x1, @multicast2=0xe0000002, 0x4e24, 0x4e24, 0x5f39}, {"7d89", @empty, 0x0, 0x80000001, [0x1, 0x6]}, @esp_ip4_spec={@rand_addr=0x3ff, @dev={0xac, 0x14, 0x14, 0x1b}, 0xffffffffffffffe1, 0x80000000}, {"af3b", @random="b42601577408", 0x4, 0x2, [0x80]}, 0x100000001, 0x80}, 0x8, [0x1, 0x80000000, 0x8, 0x10001, 0xffffffff80000001, 0x9, 0x1, 0x401]}}) 2018/04/30 22:51:04 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/vcs\x00', 0x7fe, 0x0) epoll_pwait(r1, &(0x7f0000000080)=[{}], 0x1, 0x3, &(0x7f00000000c0)={0x1000}, 0x8) sendmsg$nl_generic(r0, &(0x7f0000000000)={&(0x7f0000f74000)={0x10}, 0xc, &(0x7f0000007000)={&(0x7f0000481000)={0x14, 0x1d, 0x10d, 0x0, 0x0, {0x7e}}, 0x14}, 0x1, 0x0, 0x0, 0xfffffffffffffffd}, 0x0) 2018/04/30 22:51:04 executing program 4: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f00000b8fa8)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-des3_ede-asm\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000000)="ad39b6c582cbf8c7e63f0d", 0xb) r1 = accept$alg(r0, 0x0, 0x0) io_setup(0x302, &(0x7f0000e4b000)=0x0) io_submit(r2, 0x1, &(0x7f0000bd9fe0)=[&(0x7f0000617fc0)={0x0, 0x0, 0x0, 0x0, 0x0, r1, &(0x7f000007d000)="b3", 0x1}]) 2018/04/30 22:51:04 executing program 3: syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x0, 0x0) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x0, 0x0) connect$inet6(r0, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x2000000}, 0x1c) syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1) 2018/04/30 22:51:04 executing program 0: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='.//ile0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:51:04 executing program 1 (fault-call:2 fault-nth:3): mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0xc003, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:51:04 executing program 2: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$evdev(&(0x7f0000072fee)='/dev/input/event#\x00', 0x0, 0x2) read(r0, &(0x7f000006b000)=""/24, 0x18) 2018/04/30 22:51:04 executing program 6 (fault-call:2 fault-nth:7): mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x1, 0x0) [ 131.723674] R13: 0000000000000440 R14: 00000000006fa6a0 R15: 0000000000000006 [ 131.792406] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 131.827821] FAULT_INJECTION: forcing a failure. [ 131.827821] name fail_page_alloc, interval 1, probability 0, space 0, times 0 2018/04/30 22:51:05 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$null(0xffffffffffffff9c, &(0x7f0000000000)='/dev/null\x00', 0x10000, 0x0) ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000000040)={0x1ff, 0xffffffffffffffff}) sendmsg$nl_generic(r0, &(0x7f0000008000)={&(0x7f0000cceff4)={0x10, 0x34000}, 0xc, &(0x7f0000007ff0)={&(0x7f0000731ef4)=ANY=[@ANYBLOB="200000002700290800000000f6da0d00000000110000000c00090006000100ff"], 0x20}, 0x1}, 0x0) [ 131.839793] CPU: 1 PID: 10596 Comm: syz-executor6 Not tainted 4.17.0-rc3+ #26 [ 131.847093] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 131.856460] Call Trace: [ 131.859069] dump_stack+0x1b9/0x294 [ 131.862725] ? dump_stack_print_info.cold.2+0x52/0x52 [ 131.867933] ? graph_lock+0x170/0x170 [ 131.871753] ? debug_check_no_locks_freed+0x310/0x310 [ 131.877002] should_fail.cold.4+0xa/0x1a [ 131.881081] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 131.886210] ? debug_check_no_locks_freed+0x310/0x310 [ 131.891430] ? find_next_bit+0x104/0x130 [ 131.895510] ? perf_trace_lock+0xd6/0x900 [ 131.899681] ? zap_class+0x720/0x720 [ 131.903420] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 131.908973] ? should_fail+0x21b/0xbcd [ 131.913052] ? perf_trace_lock+0xd6/0x900 [ 131.917223] __alloc_pages_nodemask+0x34e/0xd70 [ 131.921912] ? zap_class+0x720/0x720 [ 131.925654] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 131.930694] ? rcu_pm_notify+0xc0/0xc0 [ 131.934604] ? find_held_lock+0x36/0x1c0 [ 131.938712] ? check_same_owner+0x320/0x320 2018/04/30 22:51:05 executing program 0: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\n', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) [ 131.943064] cache_grow_begin+0x72/0x6c0 [ 131.947156] kmem_cache_alloc_trace+0x6a5/0x780 [ 131.951862] ? kasan_check_write+0x14/0x20 [ 131.956129] ? do_raw_spin_lock+0xc1/0x200 [ 131.960396] sget_userns+0x1c7/0xf00 [ 131.964134] ? get_anon_bdev+0x2f0/0x2f0 [ 131.968229] ? test_bdev_super+0x50/0x50 [ 131.972316] ? destroy_unused_super.part.11+0x110/0x110 [ 131.977730] ? alloc_vfsmnt+0x771/0x9d0 [ 131.981732] ? mnt_free_id.isra.27+0x60/0x60 [ 131.986170] ? kasan_check_read+0x11/0x20 2018/04/30 22:51:05 executing program 4: r0 = getpid() r1 = openat$null(0xffffffffffffff9c, &(0x7f0000000140)='/dev/null\x00', 0x0, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000c47fec)={0x0, 0x0, 0x0, 0x21, 0x0, r1}, 0x2c) pause() sendmmsg$unix(0xffffffffffffffff, &(0x7f0000005e00)=[{&(0x7f0000000440)=@abs, 0x6e, &(0x7f00000016c0)=[{&(0x7f00000004c0)="47e37ad0cf344394bf43f96b36e7c2b8a31c89bfa71e3d04181fbd79e32e78c206f46261c8694cbca0f0c3a36b654599d7402360f4de392c4d02352e2bfa9eac5ad6bf23f887cd99d932ebe452444a3d7e36e2789fddffb6f82484d301ae89b9237fe4181bd8d85949071b698eb3e98f36c95a1f0b2a767074f945868c3f4f7d7723e3fa2ac02d1d26bf26861ddf2f3e9331c56070ecfa5d792ad1a543158eef363b2489e916ff914ad84192d2e2a7d3dede0bb181962a5f973819872a6c9bf7b9d4d91155601eb49166ca396b51a891913de774362ae9402a2360e2b2d9cf5613a541ce7e6f69ace6429a0767f61133579d7a3a326e9396220a416e7e81bd0816d7430f3838ea11c18671b6de108bde0465cacb01359219ae58cc09240a4df5478b5159f198aa30cc2cd899104608dcfc958b9f8b10ee48f5bfe134c7b5ac6dd5e71b4b26b910593cf8d2e0687ba041bb5bbd1f2621a7bb54181e4bfb1280f89923032885df0646c79b0334414f2d9529b69b9055cddfceaecb4f8a2b5204ab9ae167f6a328cdc912649a15be11fc9e79f482709d9e814995e32fda5c858a9ccbc5314a031500fc42905d81420431cf476dea1ec09b364020ada89761c2ecc01f5dd5abafe8458908c8f729ac6e31e3853773a1ecad7bdc4391d0dec1dafa5aa1beadadde5a751cff06ab26909b30cfae7d2bd8e8f0f5f7b135d2b58069b64ec2758e74324339254ac0af67620c1f0f5b9f48014dca2453be3a9868c6e4c6c8f3d69c0cc8ef7accf3545e945ab32c7e0bd6a1083763dc42a8d60b1148a227bf410f74a9a569037752542151cb6c6d4ad8d67f1cd0ab2e08333f8ab37564f9e825352c8c536ab567ff4e835433bdcb231423e2ab47c2e41e658415e762b912338a8b1863f9a18980be726fbaf070ebdcebbd425cd5dd541acb4793c5105dbe577538187bf86b385b7c81c8811fa6c208d2ae3ed12803ccf921c7635e30cbbe554f2c8505f698f47f473b16364a4a5223897a7de1d52658ba824d4e8368fceba90669319e6119cba19b6917eebdf0188d8b671e1e99d9b7ef46d0abef3b1e8a660bd30714efe8823fcff2c7a498273d952dce260f0b5ca3d05e6348dad4fd04d8e334b09d626c7eb6ba897404b96e765805db4ad236b22fa5f05336116d2a0a40234ca52077a10fc28442dd72075ad57e5dbc4aa71839ff258194c2a0d2897484211ce6b855babdef8fa4f569c30142fe4def002dc2e68364bfcb58a85f81b313ae657cd344f1f3b04b3e1e252e6b960ec8152ba374e7ea7f3fa0a637709cddc1c406096816e53690139e28fb41b09e79b232573e9ca0268c739acdc3939f9e5c2cd5d6c4b02e4a939425fba5ae5d61e70ceabcdad3d666a34b97c641894ff6ec04f1712109a2ef6a1e1d620d94659b659d89d9cf3de3636085cb447473488de453bdb221339ad5fa7fa352eef36deed2d3f6f1c7b02528a2ec788a286784e85cf30379d6f750e5ab99558df54905e0890f57d69c4bdd49c1478a6735deb4c91816b388282daccf2fab9b7ac7ac9dfab9be4e258e106c99c1f756f85edcbea898f3ec307cea515f49e631fc24adf198d0246a1d3482790e7b2a280dbc4e8ac936d4e9fcc91c3cb376b91e60b25c8cffbee9506db33720339c87565066c8552bd71e3cbfd10d785f3dd361f172a4dde6b6984323d91444ee6ad09e519d5f3b99c3afdebfaba9520726dbf7ef00815ec2b37f0e811e86954daf18a90c5e5ec191eb73244eb57c5c562515bb51b6b2742be1a9464e46fe5dbdbab1b1e3726b53bc109db605d23a753edfe24d4c631b35515f92928edb250093f6c1e30283b9b1c23dfe58fce85fa5a46fde02afd473b9a771d671e44ffc500a68f9e8d8f6f235aee7f341f538b6177fe52a5f782526f741558034d12201e49b15ff578ab5e53703058cc563147693ac68b3bffa90861954d5671afc3bd98e22bdad2f0bd021b1ca7b04d40880a0002fc8059e2cc62ac5e2cf121fbc337c4ce2a3caf02fcddd66cc230b8f70e45547e3b7df65c958c09ed3899368e3d70a0d9ee0d19501c3fc186208d27efc7894d1347e0fc507159fa23ae6b3b00c81912cb7c7f2339f4e8134727018fbe2c50f7a4599ee37cf3bc9f4cf59019fc8c39d66db96c5bcf2c1538f36efe8b3af642c35eed158d9ad25230acc6f42f4f5a1726102b27aaf11e003ba927d3569563f0a6f93281bbd88b1e01a99ce28bb32cfbec649ef06a444382469a6ac634892edf2ebba29865cf66d5b8d9a4c70cc10331b197704b06ed3ec6db3db9512325604bdd7de1bb952457e23d309d6fc7e8d143a9e3698e13ee862156e7647d8e1f0f38cbf39bc123b2454d5023bdad3da71535de9c177536dd30a7bf4ddf8829b48e9df4b7b8d3f44b7dc6bd71f8b72301d8151ee08da0ed7c3a5176937c775c4e5ce286a578411cdb9afb494e88672f0b27ef1a24c5ea61c82569f69d80fd0b07a29be44a371e552e6fbdb81f35bc086af19e64316cdf03e9e9890f5cced96c070d53bfca3aff8b72f969f3a46ce330b8cc3a91b9fbe70aa770c61bdcd7c4d019f9ef47987dda969af933fc66d118cb687ddd4571eacd2281be77271060df37771af2b15eb5faa585bf6ad4f4a50f2b18e914bb0a66cdb69ce61c0189d3702759e4ba859f95a52fcd2ef21be126d27a00d7b0550cea0ffbcd5ff30e511082ff866edbadf0d149b90125b1cbddf4db9bc30ed44972733a5eb31178a84e92e1bc813286bddceecd6cc92f902bc495d2d53bd4ace7b617be4cafa9c146eddac51d6459314fd57bc9a086849bf6b3e9ee17100be5c4b2704b41d9ddb607e10ed5b7a70537f216b52fdd3e3ac1b8138ea2e8ce3f675a0e86e611520c362a7a4feea316b0461c9fbf532b9965f37637e605679987ae2dadd7545fa7a2baf0242184d2f842094dd99af8478bf16ae9ba3812d5a8331caac41791148b831c8b137860c6e7c96571af00ce3a264e5dc42cb07acbb3b0f1507acb11c9d1aae86e33f3303a115bbc63a82ff45888ef26c8d87df2cf81711acaa0c730963dcd5a9b33b47d67ddf17ea9979ea5d876db519c9b43ac461c725b303ce14b9dfc936c4c26942954baa22d8fec0ad8f9b598ca424d05afb2cfb2e42e2e17e5baab8ffaddd515b9083587b21ad961acd2a481e701d45d92adeea80314a9638fa826b7eb735b3177fd2658c7d96073a40d87173de9c58e4c8cdcece3d4198bebfd0de5ea0f97abb857676c341f12d27b319f18b9a8233162f07b2bcf369a409cdf55fadc86e2bf4243b48c0e4395eef43fea92fc09889b50900ae76c3e13c40cb06ce5e7f87aa7432a78341766e1d26ccf74493b2bb0df70cbc8863d96ee7e14b823af4daa92f61c81c90770bb9b7a4684b34bae8ccb2733e8f64bfd666f9f2a9bc94efaf3a0ad4e1cc960c8b3488b5ddb9f71c9c16c5c8fe5d5ab46f09454b13796fe02720d6a7b23511f33b9f62796c15d676860f135cf424ddf6d37f6a9b175efd1aa4415cd3d09a77a4883b3d347b2d99dabebf4a79fc9dfe5dcbf04d96d7a2297803812674d191cba45f3e5f32c90ddd873b97826cd4b0bfa924a5c9ac2671effbf7c7ca74acdbf539ac0c2d6f8b51cae01aea56a70f43c0443ea36c12f1adb605fa772e84ec759bc7ba4a263e12363e1e19070d0c6525faa40c0c3e130ce1da0aaed185e52f7a532e972e333913aeb3eae0b771d901159ef8e15edc7f3becbaa73b57baf72977c1e92cd463199be1e17158590986db60977351e92efc9fe377e3bd2be5ffa3c2b0f99d70157e6a69d3438b53bb372f64fe61b9ccae9afe96eabfcdd39cd2367bf3b2ce601629ed775f4c22f2288263ed4427fae7517f1787c35c5ac54216fd0adfa331557eb024a65069a82c2189cce7ab244f94af46985803438efa0720f6dcb5e9f745daab1d44584342b8bcebd698b67fa82e5219119244a249a5d917b87fd398a8e45258487ffe9420c821c6a0a809381c8e8b881a435177bd6c46e72a68bee2f2d5bd393c3acb262340505962d7f5cc12508321c17db4f654cc1e8cdecbb2773b13467eeb7e54b8a607b54db2fe49916f30edf20af10c54e35a73f74f77d8e0ea0f868f982d7755296e6ee9ffdb34b453d1dd310ffb8fa9e0834d2ec123217badb0d872fa4813377c46e0ee00513973dad9b0e08539c852ca36c8eddeb2a574cfd6f27a91422a9d7adacaa98ebfdecd20b64162ab286b3af55254f09ef46450e0b18cb9ca4b41ac280c3981a662c9b60a2a47286db99600a4b201025562f43659d8498dff8f749f5a53c2067e519024f33c91ee248d247f6318606e20e88cf11f0ba8bf2ee809cab25c01cd3b9576a617128069b64699a3d57c9cf160174d927359c206b6b41e0f3707e5428529c68ad23f6b95db66b2cfa84ab522ea2e7c540b71824c2e9f04f08dd639f33d9e75d61c04c06cf0db7a4c80717c6228a838f59d9ca07844d5d1273f3a01823b10bc17835622783d4e3372cc58f35b5e9ba3eeff7a10ef674e19a8b1ed90b353bcc82d88ecc3e453d552c109012c1069547fd1a10d13c38f3823a80a3c0fc9037cab87d2ac562e674cea66f434d2f4214fa90ba284cfdc193f87d58455230c513667b5390fad2b9d412ffed80d0cdc44565b662620a8b29140fc21545fe9306754c4ad0307724823ea4e4272f725f88172045e8509667e6583d947728b9bc35b650f86d9708abf46f2446390f473ffd71a39a7fb95c3a41007b042cff70568d90c3c9c2623a05a5eb9f7ac093f28dc1e3a12bdcfadeb89d933a9f58864358cbba0ae25825e8a94df72414e9667edf17210361dba6f5d09ecee709a15a2371c0b32e054832924babc954d8f9485212ceaf9f3aeec418f5eb2097457b21db156325367b53f829bd16d1b446e75d0796f7f05330341ce6baf62a78ef9c9be4fde0fb2e5ee018e001eb59b8d06037d335f41db5d9597583cee5cdea113d5621ed2d05504fddc80b5dfd7d3367a48e12c9a5372b115651281a874b079ab45b9fc0c2e7dca3640d6012deb5a93c6571c4dc8e20cc89484f682038a4e87c91c3da0b4b8603f2414c66b12a7d1bdcf99c77c3ab7bfb6ef38652a550b889f6c70c9761962a1d143d143bd305da60854f4d0fa5bcbce42957470b09fe9d35851ffcc45a72dae5f06fa609c1017feb30d0de9d356744792ce302b1db97ce83df3aa97352886e8b64e303bd9144f86914617b294983458c454ae452fda6edaa5849779c7a655b084c6ee58d66bc565d91da167409b84afa87227c1ceca70710cd144aec3b70df4db5008023b5b8addf40e6a4520778747a8838ba20744f387c3cc4005006e70fdf3e0ebb9d07a3c8f516d6bc8be7c6d73430377ec701c2df17ce767d89580561ba03a0128f7d47ec77282ad71ca6561ae4e6b43539a90660f039d0267e651458d949b40da25e94f75b47cfeef31c103616be2a9e4a3af9f419651ce71f6cd701f75f0ffe691c8973b87777a7da5ba70be07f7647af5", 0xf47}], 0x1, &(0x7f0000001700)}], 0x1, 0x0) process_vm_readv(r0, &(0x7f0000001400), 0x1, &(0x7f0000000000)=[{&(0x7f0000000040)=""/204, 0xd7e1e1d24b36aac5}, {&(0x7f0000002880)=""/183, 0x3d1}], 0x2, 0x0) [ 131.990339] ? graph_lock+0x170/0x170 [ 131.994172] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 131.999823] ? cap_capable+0x1f9/0x260 [ 132.003738] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 132.009296] ? security_capable+0x99/0xc0 [ 132.013469] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 132.019025] ? ns_capable_common+0x13f/0x170 [ 132.023456] ? get_anon_bdev+0x2f0/0x2f0 [ 132.025007] IPVS: ftp: loaded support on port[0] = 21 [ 132.027541] sget+0x10b/0x150 [ 132.027557] ? test_bdev_super+0x50/0x50 2018/04/30 22:51:05 executing program 3: syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x0, 0x0) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x2000000}, 0x1c) syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1) 2018/04/30 22:51:05 executing program 0: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) [ 132.027576] ? fuse_ctl_add_conn+0x280/0x280 [ 132.027589] mount_single+0x3a/0x170 [ 132.027606] fuse_ctl_mount+0x2c/0x40 [ 132.051870] mount_fs+0xae/0x328 [ 132.055253] ? mpi_free.cold.1+0x19/0x19 [ 132.059374] vfs_kern_mount.part.34+0xd4/0x4d0 [ 132.064670] ? may_umount+0xb0/0xb0 [ 132.068316] ? _raw_read_unlock+0x22/0x30 [ 132.072479] ? __get_fs_type+0x97/0xc0 [ 132.076391] do_mount+0x564/0x3070 [ 132.079948] ? lock_downgrade+0x8e0/0x8e0 [ 132.084117] ? copy_mount_string+0x40/0x40 [ 132.088368] ? check_same_owner+0x320/0x320 [ 132.092712] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 132.097749] ? __check_object_size+0x95/0x5d9 [ 132.102275] ? __might_sleep+0x95/0x190 [ 132.106298] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 132.111885] ? _copy_from_user+0xdf/0x150 [ 132.116060] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 132.121616] ? copy_mount_options+0x285/0x380 [ 132.126137] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 132.131702] ksys_mount+0x12d/0x140 [ 132.135356] __x64_sys_mount+0xbe/0x150 [ 132.139348] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 132.144406] do_syscall_64+0x1b1/0x800 [ 132.148317] ? finish_task_switch+0x1ca/0x810 [ 132.152838] ? syscall_return_slowpath+0x5c0/0x5c0 [ 132.157792] ? syscall_return_slowpath+0x30f/0x5c0 [ 132.162742] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 132.168133] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 132.173000] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 132.178202] RIP: 0033:0x455979 [ 132.181400] RSP: 002b:00007f1fa3db4c68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 132.189126] RAX: ffffffffffffffda RBX: 00007f1fa3db56d4 RCX: 0000000000455979 [ 132.196412] RDX: 0000000020000100 RSI: 0000000020000080 RDI: 0000000020000040 [ 132.203697] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 132.210983] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000014 [ 132.218273] R13: 0000000000000440 R14: 00000000006fa6a0 R15: 0000000000000007 [ 132.251622] device bridge_slave_1 left promiscuous mode [ 132.257350] bridge0: port 2(bridge_slave_1) entered disabled state [ 132.301357] device bridge_slave_0 left promiscuous mode [ 132.307087] bridge0: port 1(bridge_slave_0) entered disabled state [ 132.349937] team0 (unregistering): Port device team_slave_1 removed [ 132.360644] team0 (unregistering): Port device team_slave_0 removed [ 132.373963] bond0 (unregistering): Releasing backup interface bond_slave_1 [ 132.392495] bond0 (unregistering): Releasing backup interface bond_slave_0 [ 132.422227] bond0 (unregistering): Released all slaves [ 133.067893] bridge0: port 1(bridge_slave_0) entered blocking state [ 133.074482] bridge0: port 1(bridge_slave_0) entered disabled state [ 133.081985] device bridge_slave_0 entered promiscuous mode [ 133.119941] bridge0: port 2(bridge_slave_1) entered blocking state [ 133.126381] bridge0: port 2(bridge_slave_1) entered disabled state [ 133.133869] device bridge_slave_1 entered promiscuous mode [ 133.171195] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 133.207292] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 133.316264] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 133.355692] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 133.525462] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 133.533771] team0: Port device team_slave_0 added [ 133.569803] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 133.577095] team0: Port device team_slave_1 added [ 133.613511] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 133.650497] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 133.688565] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 133.695759] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 133.710768] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 133.741928] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 133.749139] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 133.757255] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 134.010573] bridge0: port 2(bridge_slave_1) entered blocking state [ 134.016997] bridge0: port 2(bridge_slave_1) entered forwarding state [ 134.023647] bridge0: port 1(bridge_slave_0) entered blocking state [ 134.030075] bridge0: port 1(bridge_slave_0) entered forwarding state [ 134.037384] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 134.495371] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 134.855568] 8021q: adding VLAN 0 to HW filter on device bond0 [ 134.935159] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 135.015927] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 135.022252] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 135.029789] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 135.105328] 8021q: adding VLAN 0 to HW filter on device team0 [ 135.563880] FAULT_INJECTION: forcing a failure. [ 135.563880] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 135.575737] CPU: 1 PID: 10884 Comm: syz-executor1 Not tainted 4.17.0-rc3+ #26 [ 135.583014] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 135.592380] Call Trace: [ 135.594967] dump_stack+0x1b9/0x294 [ 135.598595] ? dump_stack_print_info.cold.2+0x52/0x52 [ 135.603784] ? debug_check_no_locks_freed+0x310/0x310 [ 135.608978] should_fail.cold.4+0xa/0x1a [ 135.613039] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 135.618139] ? debug_check_no_locks_freed+0x310/0x310 [ 135.623321] ? __enqueue_entity+0x10d/0x1f0 [ 135.627634] ? graph_lock+0x170/0x170 [ 135.631420] ? graph_lock+0x170/0x170 [ 135.635205] ? print_usage_bug+0xc0/0xc0 [ 135.639258] ? find_held_lock+0x36/0x1c0 [ 135.643310] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 135.648848] ? should_fail+0x21b/0xbcd [ 135.652725] ? __lock_acquire+0x7f5/0x5140 [ 135.656949] ? lock_downgrade+0x8e0/0x8e0 [ 135.661100] __alloc_pages_nodemask+0x34e/0xd70 [ 135.665759] ? kasan_check_read+0x11/0x20 [ 135.669897] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 135.674906] ? debug_check_no_locks_freed+0x310/0x310 [ 135.680085] ? find_held_lock+0x36/0x1c0 [ 135.684142] ? check_same_owner+0x320/0x320 [ 135.688459] cache_grow_begin+0x72/0x6c0 [ 135.692515] kmem_cache_alloc+0x689/0x760 [ 135.696652] ? proc_cwd_link+0x1d0/0x1d0 [ 135.700731] getname_flags+0xd0/0x5a0 [ 135.704522] user_path_at_empty+0x2d/0x50 [ 135.708668] do_mount+0x172/0x3070 [ 135.712201] ? lock_downgrade+0x8e0/0x8e0 [ 135.716355] ? copy_mount_string+0x40/0x40 [ 135.720578] ? check_same_owner+0x320/0x320 [ 135.724894] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 135.729907] ? __check_object_size+0x95/0x5d9 [ 135.734392] ? __might_sleep+0x95/0x190 [ 135.738355] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 135.743878] ? _copy_from_user+0xdf/0x150 [ 135.748021] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 135.753554] ? copy_mount_options+0x285/0x380 [ 135.758043] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 135.763575] ksys_mount+0x12d/0x140 [ 135.767210] __x64_sys_mount+0xbe/0x150 [ 135.771178] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 135.776183] do_syscall_64+0x1b1/0x800 [ 135.780057] ? syscall_return_slowpath+0x5c0/0x5c0 [ 135.784971] ? syscall_return_slowpath+0x30f/0x5c0 [ 135.789889] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 135.795241] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 135.800069] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 135.805257] RIP: 0033:0x455979 2018/04/30 22:51:09 executing program 3: syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x0, 0x0) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x2000000}, 0x1c) syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1) 2018/04/30 22:51:09 executing program 0: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:51:09 executing program 7: r0 = getpid() openat$uinput(0xffffffffffffff9c, &(0x7f0000001640)='/dev/uinput\x00', 0x0, 0x0) syz_open_procfs$namespace(0x0, &(0x7f0000001b00)='ns/pid\x00') r1 = openat$null(0xffffffffffffff9c, &(0x7f0000001fc0)='/dev/null\x00', 0x0, 0x0) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000c68000)={r1, &(0x7f0000000140), &(0x7f0000000200)}, 0x20) pause() sendmmsg$unix(0xffffffffffffffff, &(0x7f0000005e00)=[{&(0x7f0000000440)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f00000016c0)=[{&(0x7f00000004c0)="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", 0xf47}], 0x1, &(0x7f0000000180)}], 0x1, 0x0) process_vm_readv(r0, &(0x7f0000001400), 0x1, &(0x7f0000000000)=[{&(0x7f0000002780)=""/204, 0xd7e1e1d24b36aac5}, {&(0x7f0000002880)=""/183, 0x9}], 0x2, 0x0) 2018/04/30 22:51:09 executing program 6 (fault-call:2 fault-nth:8): mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x1, 0x0) 2018/04/30 22:51:09 executing program 5: r0 = getpid() syz_emit_ethernet(0x1, &(0x7f0000c57000)=ANY=[@ANYBLOB="ffaf"], &(0x7f00000000c0)) pause() sendmmsg$unix(0xffffffffffffffff, &(0x7f0000005e00)=[{&(0x7f0000000440)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f00000016c0)=[{&(0x7f00000004c0)="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", 0xf47}], 0x1, &(0x7f0000001700)}], 0x1, 0x0) process_vm_readv(r0, &(0x7f0000001400), 0x1, &(0x7f0000000000)=[{&(0x7f0000002780)=""/204, 0xd7e1e1d24b36aac5}, {&(0x7f0000002880)=""/183, 0x9}], 0x2, 0x0) 2018/04/30 22:51:09 executing program 1 (fault-call:2 fault-nth:4): mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0xc003, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:51:09 executing program 2: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$evdev(&(0x7f0000072fee)='/dev/input/event#\x00', 0x0, 0x2) read(r0, &(0x7f000006b000)=""/24, 0x18) 2018/04/30 22:51:09 executing program 4: r0 = getpid() syz_emit_ethernet(0x1, &(0x7f0000c57000)=ANY=[@ANYBLOB="6cb8"], &(0x7f00000000c0)) pause() sendmmsg$unix(0xffffffffffffffff, &(0x7f0000005e00)=[{&(0x7f0000000440)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f00000016c0)=[{&(0x7f00000004c0)="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", 0xf47}], 0x1, &(0x7f0000001700)}], 0x1, 0x0) process_vm_readv(r0, &(0x7f0000001400), 0x1, &(0x7f0000000000)=[{&(0x7f0000002780)=""/204, 0xd7e1e1d24b36aac5}, {&(0x7f0000002880)=""/183, 0x9}], 0x2, 0x0) [ 135.808430] RSP: 002b:00007fdafe508c68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 135.816131] RAX: ffffffffffffffda RBX: 00007fdafe5096d4 RCX: 0000000000455979 [ 135.823385] RDX: 0000000020000100 RSI: 0000000020000080 RDI: 0000000020000040 [ 135.830650] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 135.837905] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000014 [ 135.845163] R13: 0000000000000440 R14: 00000000006fa6a0 R15: 0000000000000003 [ 135.894299] FAULT_INJECTION: forcing a failure. [ 135.894299] name failslab, interval 1, probability 0, space 0, times 0 [ 135.905946] CPU: 1 PID: 10894 Comm: syz-executor6 Not tainted 4.17.0-rc3+ #26 [ 135.913266] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 135.922636] Call Trace: [ 135.925240] dump_stack+0x1b9/0x294 [ 135.928903] ? dump_stack_print_info.cold.2+0x52/0x52 [ 135.934116] ? kernel_text_address+0x79/0xf0 [ 135.938557] should_fail.cold.4+0xa/0x1a 2018/04/30 22:51:09 executing program 0: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) [ 135.942647] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 135.947781] ? graph_lock+0x170/0x170 [ 135.951605] ? save_stack+0x43/0xd0 [ 135.955249] ? kasan_kmalloc+0xc4/0xe0 [ 135.959156] ? __kmalloc+0x14e/0x760 [ 135.962885] ? __list_lru_init+0xdd/0x790 [ 135.967054] ? find_held_lock+0x36/0x1c0 [ 135.971144] ? __lock_is_held+0xb5/0x140 [ 135.975242] ? check_same_owner+0x320/0x320 [ 135.979590] ? rcu_note_context_switch+0x710/0x710 [ 135.984546] __should_failslab+0x124/0x180 [ 135.988798] should_failslab+0x9/0x14 2018/04/30 22:51:09 executing program 0: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:51:09 executing program 0: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) [ 135.992621] kmem_cache_alloc_node_trace+0x26f/0x770 [ 135.997741] ? mark_held_locks+0xc9/0x160 [ 136.001916] ? __raw_spin_lock_init+0x1c/0x100 [ 136.006531] __kmalloc_node+0x33/0x70 [ 136.010369] kvmalloc_node+0x6b/0x100 [ 136.014462] __list_lru_init+0x559/0x790 [ 136.018551] ? list_lru_destroy+0x4c0/0x4c0 [ 136.022889] ? mark_held_locks+0xc9/0x160 [ 136.027062] ? __raw_spin_lock_init+0x1c/0x100 [ 136.031668] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 136.036731] ? __lockdep_init_map+0x105/0x590 [ 136.041248] ? lockdep_init_map+0x9/0x10 [ 136.045333] sget_userns+0x73a/0xf00 [ 136.049066] ? get_anon_bdev+0x2f0/0x2f0 [ 136.053153] ? test_bdev_super+0x50/0x50 [ 136.057240] ? destroy_unused_super.part.11+0x110/0x110 [ 136.062634] ? alloc_vfsmnt+0x771/0x9d0 [ 136.066633] ? mnt_free_id.isra.27+0x60/0x60 [ 136.071061] ? kasan_check_read+0x11/0x20 [ 136.075227] ? graph_lock+0x170/0x170 [ 136.079046] ? cap_capable+0x1f9/0x260 [ 136.082960] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 136.088517] ? security_capable+0x99/0xc0 2018/04/30 22:51:09 executing program 0: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)="2e2f66696c6530f6", &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) [ 136.092689] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 136.098243] ? ns_capable_common+0x13f/0x170 [ 136.102672] ? get_anon_bdev+0x2f0/0x2f0 [ 136.106747] sget+0x10b/0x150 [ 136.109869] ? test_bdev_super+0x50/0x50 [ 136.113969] ? fuse_ctl_add_conn+0x280/0x280 [ 136.118401] mount_single+0x3a/0x170 [ 136.122142] fuse_ctl_mount+0x2c/0x40 [ 136.125965] mount_fs+0xae/0x328 [ 136.129347] ? mpi_free.cold.1+0x19/0x19 [ 136.133436] vfs_kern_mount.part.34+0xd4/0x4d0 [ 136.138037] ? may_umount+0xb0/0xb0 [ 136.141682] ? _raw_read_unlock+0x22/0x30 2018/04/30 22:51:09 executing program 0: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) [ 136.145849] ? __get_fs_type+0x97/0xc0 [ 136.149753] do_mount+0x564/0x3070 [ 136.153304] ? lock_downgrade+0x8e0/0x8e0 [ 136.157468] ? copy_mount_string+0x40/0x40 [ 136.161710] ? check_same_owner+0x320/0x320 [ 136.166046] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 136.171082] ? __check_object_size+0x95/0x5d9 [ 136.175601] ? __might_sleep+0x95/0x190 [ 136.179600] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 136.185153] ? _copy_from_user+0xdf/0x150 [ 136.189330] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 2018/04/30 22:51:09 executing program 0: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) [ 136.194890] ? copy_mount_options+0x285/0x380 [ 136.199415] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 136.204998] ksys_mount+0x12d/0x140 [ 136.208644] __x64_sys_mount+0xbe/0x150 [ 136.212630] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 136.217668] do_syscall_64+0x1b1/0x800 [ 136.221565] ? finish_task_switch+0x1ca/0x810 [ 136.226079] ? syscall_return_slowpath+0x5c0/0x5c0 [ 136.231046] ? syscall_return_slowpath+0x30f/0x5c0 [ 136.235998] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 136.241389] ? trace_hardirqs_off_thunk+0x1a/0x1c 2018/04/30 22:51:09 executing program 0: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)="2e2f66696c6530ff", &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) [ 136.246261] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 136.251461] RIP: 0033:0x455979 [ 136.254662] RSP: 002b:00007f1fa3db4c68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 136.262389] RAX: ffffffffffffffda RBX: 00007f1fa3db56d4 RCX: 0000000000455979 [ 136.270377] RDX: 0000000020000100 RSI: 0000000020000080 RDI: 0000000020000040 [ 136.277663] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 136.284947] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000014 2018/04/30 22:51:09 executing program 6 (fault-call:2 fault-nth:9): mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x1, 0x0) [ 136.292230] R13: 0000000000000440 R14: 00000000006fa6a0 R15: 0000000000000008 2018/04/30 22:51:09 executing program 3: syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x0, 0x0) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x2000000}, 0x1c) syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1) [ 136.406381] FAULT_INJECTION: forcing a failure. [ 136.406381] name failslab, interval 1, probability 0, space 0, times 0 [ 136.418170] CPU: 0 PID: 10930 Comm: syz-executor6 Not tainted 4.17.0-rc3+ #26 [ 136.425465] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 136.434833] Call Trace: [ 136.437435] dump_stack+0x1b9/0x294 [ 136.441087] ? dump_stack_print_info.cold.2+0x52/0x52 [ 136.446302] ? kernel_text_address+0x79/0xf0 [ 136.450737] should_fail.cold.4+0xa/0x1a [ 136.454826] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 136.459969] ? graph_lock+0x170/0x170 [ 136.463789] ? save_stack+0x43/0xd0 [ 136.467436] ? kasan_kmalloc+0xc4/0xe0 [ 136.471337] ? __kmalloc+0x14e/0x760 [ 136.475239] ? __list_lru_init+0xdd/0x790 [ 136.479413] ? find_held_lock+0x36/0x1c0 [ 136.483501] ? __lock_is_held+0xb5/0x140 [ 136.487592] ? check_same_owner+0x320/0x320 [ 136.491910] ? rcu_note_context_switch+0x710/0x710 [ 136.496838] __should_failslab+0x124/0x180 [ 136.501067] should_failslab+0x9/0x14 [ 136.504879] kmem_cache_alloc_node_trace+0x26f/0x770 [ 136.509982] ? mark_held_locks+0xc9/0x160 [ 136.514136] ? __raw_spin_lock_init+0x1c/0x100 [ 136.518716] __kmalloc_node+0x33/0x70 [ 136.522525] kvmalloc_node+0x6b/0x100 [ 136.526336] __list_lru_init+0x559/0x790 [ 136.530406] ? list_lru_destroy+0x4c0/0x4c0 [ 136.534734] ? mark_held_locks+0xc9/0x160 [ 136.538881] ? __raw_spin_lock_init+0x1c/0x100 [ 136.543464] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 136.548485] ? __lockdep_init_map+0x105/0x590 [ 136.552984] ? lockdep_init_map+0x9/0x10 [ 136.557052] sget_userns+0x73a/0xf00 [ 136.560775] ? get_anon_bdev+0x2f0/0x2f0 [ 136.564836] ? test_bdev_super+0x50/0x50 [ 136.568896] ? destroy_unused_super.part.11+0x110/0x110 [ 136.574267] ? alloc_vfsmnt+0x771/0x9d0 [ 136.578249] ? mnt_free_id.isra.27+0x60/0x60 [ 136.582672] ? kasan_check_read+0x11/0x20 [ 136.586829] ? graph_lock+0x170/0x170 [ 136.590628] ? cap_capable+0x1f9/0x260 [ 136.594523] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 136.601020] ? security_capable+0x99/0xc0 [ 136.605178] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 136.610707] ? ns_capable_common+0x13f/0x170 [ 136.615106] ? get_anon_bdev+0x2f0/0x2f0 [ 136.619163] sget+0x10b/0x150 [ 136.622264] ? test_bdev_super+0x50/0x50 [ 136.626315] ? fuse_ctl_add_conn+0x280/0x280 [ 136.630717] mount_single+0x3a/0x170 [ 136.634423] fuse_ctl_mount+0x2c/0x40 [ 136.638216] mount_fs+0xae/0x328 [ 136.641573] ? mpi_free.cold.1+0x19/0x19 [ 136.645626] vfs_kern_mount.part.34+0xd4/0x4d0 [ 136.650203] ? may_umount+0xb0/0xb0 [ 136.653823] ? _raw_read_unlock+0x22/0x30 [ 136.657965] ? __get_fs_type+0x97/0xc0 [ 136.661865] do_mount+0x564/0x3070 [ 136.665507] ? lock_downgrade+0x8e0/0x8e0 [ 136.669743] ? copy_mount_string+0x40/0x40 [ 136.673975] ? check_same_owner+0x320/0x320 [ 136.678309] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 136.683326] ? __check_object_size+0x95/0x5d9 [ 136.687827] ? __might_sleep+0x95/0x190 [ 136.691809] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 136.697345] ? _copy_from_user+0xdf/0x150 [ 136.701668] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 136.707209] ? copy_mount_options+0x285/0x380 [ 136.711704] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 136.717264] ksys_mount+0x12d/0x140 [ 136.720900] __x64_sys_mount+0xbe/0x150 [ 136.724871] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 136.729892] do_syscall_64+0x1b1/0x800 [ 136.733772] ? finish_task_switch+0x1ca/0x810 [ 136.738272] ? syscall_return_slowpath+0x5c0/0x5c0 [ 136.743198] ? syscall_return_slowpath+0x30f/0x5c0 [ 136.748129] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 136.753507] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 136.758355] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 136.763542] RIP: 0033:0x455979 [ 136.766732] RSP: 002b:00007f1fa3db4c68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 136.774450] RAX: ffffffffffffffda RBX: 00007f1fa3db56d4 RCX: 0000000000455979 [ 136.781714] RDX: 0000000020000100 RSI: 0000000020000080 RDI: 0000000020000040 [ 136.788980] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 136.796253] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000014 [ 136.803515] R13: 0000000000000440 R14: 00000000006fa6a0 R15: 0000000000000009 2018/04/30 22:51:10 executing program 0: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:51:10 executing program 3: syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x0, 0x0) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}}, 0x1c) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x2000000}, 0x1c) syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1) 2018/04/30 22:51:10 executing program 1 (fault-call:2 fault-nth:5): mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0xc003, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:51:10 executing program 2: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f000006b000)=""/24, 0x18) write$evdev(0xffffffffffffffff, &(0x7f0000057fa0)=[{{}, 0x0, 0x100000001}, {}], 0x30) 2018/04/30 22:51:10 executing program 7: r0 = getpid() bpf$MAP_CREATE(0x0, &(0x7f0000c47fec)={0x0, 0x94b3}, 0x2c) pause() sendmmsg$unix(0xffffffffffffffff, &(0x7f0000005e00)=[{&(0x7f0000000440)=@abs, 0x6e, &(0x7f00000016c0)=[{&(0x7f00000004c0)="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", 0xf47}], 0x1, &(0x7f0000001700)}], 0x1, 0x0) process_vm_readv(r0, &(0x7f0000001400), 0x1, &(0x7f0000000000)=[{&(0x7f0000000040)=""/204, 0xd7e1e1d24b36aac5}, {&(0x7f0000002880)=""/183, 0x3d1}], 0x2, 0x0) 2018/04/30 22:51:10 executing program 6 (fault-call:2 fault-nth:10): mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x1, 0x0) 2018/04/30 22:51:10 executing program 4: r0 = getpid() syz_emit_ethernet(0x1, &(0x7f0000c57000)=ANY=[@ANYBLOB="75fb"], &(0x7f0000ea3000)) pause() sendmmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)=[{&(0x7f0000000440)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000000280)=[{&(0x7f00000004c0)="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", 0xf47}], 0x1, &(0x7f0000000240)}], 0x1, 0x0) process_vm_readv(r0, &(0x7f0000001400), 0x1, &(0x7f0000000000)=[{&(0x7f0000002780)=""/204, 0xd7e1e1d24b36aac5}, {&(0x7f0000002880)=""/183, 0x9}], 0x2, 0x0) 2018/04/30 22:51:10 executing program 5: r0 = openat$autofs(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/autofs\x00', 0x0, 0x0) r1 = getpid() bpf$MAP_CREATE(0x0, &(0x7f0000c47fec)={0x0, 0x0, 0x0, 0x50dc, 0x0, r0}, 0x2c) pause() sendmmsg$unix(0xffffffffffffffff, &(0x7f0000005e00)=[{&(0x7f0000000440)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000000100)=[{&(0x7f00000004c0)="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", 0xf47}], 0x1, &(0x7f00000001c0)=ANY=[]}], 0x1, 0x0) process_vm_readv(r1, &(0x7f0000001400), 0x1, &(0x7f0000000000)=[{&(0x7f0000002780)=""/204, 0xd7e1e1d24b36aac5}, {&(0x7f0000002880)=""/183, 0x9}], 0x2, 0x0) [ 136.937388] device bridge_slave_1 left promiscuous mode [ 136.946699] bridge0: port 2(bridge_slave_1) entered disabled state [ 136.992496] device bridge_slave_0 left promiscuous mode [ 136.998178] bridge0: port 1(bridge_slave_0) entered disabled state [ 137.008167] FAULT_INJECTION: forcing a failure. [ 137.008167] name failslab, interval 1, probability 0, space 0, times 0 [ 137.019523] CPU: 1 PID: 10957 Comm: syz-executor6 Not tainted 4.17.0-rc3+ #26 [ 137.026810] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 137.036181] Call Trace: [ 137.038786] dump_stack+0x1b9/0x294 [ 137.042430] ? dump_stack_print_info.cold.2+0x52/0x52 [ 137.047650] ? __save_stack_trace+0x7e/0xd0 [ 137.051999] should_fail.cold.4+0xa/0x1a [ 137.056085] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 137.061214] ? save_stack+0x43/0xd0 [ 137.064857] ? kasan_kmalloc+0xc4/0xe0 [ 137.068755] ? kmem_cache_alloc_trace+0x152/0x780 [ 137.073606] ? __memcg_init_list_lru_node+0x17d/0x2c0 [ 137.078787] ? __list_lru_init+0x456/0x790 [ 137.083028] ? sget_userns+0x73a/0xf00 [ 137.086910] ? graph_lock+0x170/0x170 [ 137.090706] ? vfs_kern_mount.part.34+0xd4/0x4d0 [ 137.095453] ? do_mount+0x564/0x3070 [ 137.099155] ? ksys_mount+0x12d/0x140 [ 137.102951] ? __x64_sys_mount+0xbe/0x150 [ 137.107089] ? do_syscall_64+0x1b1/0x800 [ 137.111140] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 137.116504] ? find_held_lock+0x36/0x1c0 [ 137.120562] ? __lock_is_held+0xb5/0x140 [ 137.124632] ? check_same_owner+0x320/0x320 [ 137.128958] ? rcu_note_context_switch+0x710/0x710 [ 137.133886] __should_failslab+0x124/0x180 [ 137.138150] should_failslab+0x9/0x14 [ 137.141957] kmem_cache_alloc_trace+0x2cb/0x780 [ 137.146616] ? __kmalloc_node+0x33/0x70 [ 137.150579] ? __kmalloc_node+0x33/0x70 [ 137.154556] ? rcu_read_lock_sched_held+0x108/0x120 [ 137.159572] __memcg_init_list_lru_node+0x17d/0x2c0 [ 137.164586] ? kvfree_rcu+0x20/0x20 [ 137.168204] ? __kmalloc_node+0x47/0x70 [ 137.172177] __list_lru_init+0x456/0x790 [ 137.176238] ? list_lru_destroy+0x4c0/0x4c0 [ 137.180561] ? mark_held_locks+0xc9/0x160 [ 137.184704] ? __raw_spin_lock_init+0x1c/0x100 [ 137.189280] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 137.194291] ? __lockdep_init_map+0x105/0x590 [ 137.198783] ? lockdep_init_map+0x9/0x10 [ 137.202843] sget_userns+0x73a/0xf00 [ 137.206552] ? get_anon_bdev+0x2f0/0x2f0 [ 137.210619] ? test_bdev_super+0x50/0x50 [ 137.214678] ? destroy_unused_super.part.11+0x110/0x110 [ 137.220042] ? alloc_vfsmnt+0x771/0x9d0 [ 137.224026] ? mnt_free_id.isra.27+0x60/0x60 [ 137.228430] ? kasan_check_read+0x11/0x20 [ 137.232574] ? graph_lock+0x170/0x170 [ 137.236370] ? cap_capable+0x1f9/0x260 [ 137.240268] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 137.245798] ? security_capable+0x99/0xc0 [ 137.249942] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 137.255480] ? ns_capable_common+0x13f/0x170 [ 137.259883] ? get_anon_bdev+0x2f0/0x2f0 [ 137.263934] sget+0x10b/0x150 [ 137.267034] ? test_bdev_super+0x50/0x50 [ 137.271094] ? fuse_ctl_add_conn+0x280/0x280 [ 137.275495] mount_single+0x3a/0x170 [ 137.279204] fuse_ctl_mount+0x2c/0x40 [ 137.283018] mount_fs+0xae/0x328 [ 137.286379] ? mpi_free.cold.1+0x19/0x19 [ 137.290444] vfs_kern_mount.part.34+0xd4/0x4d0 [ 137.295027] ? may_umount+0xb0/0xb0 [ 137.298654] ? _raw_read_unlock+0x22/0x30 [ 137.302803] ? __get_fs_type+0x97/0xc0 [ 137.306694] do_mount+0x564/0x3070 [ 137.310228] ? lock_downgrade+0x8e0/0x8e0 [ 137.314374] ? copy_mount_string+0x40/0x40 [ 137.318691] ? check_same_owner+0x320/0x320 [ 137.323025] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 137.328046] ? __check_object_size+0x95/0x5d9 [ 137.332558] ? __might_sleep+0x95/0x190 [ 137.336541] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 137.342072] ? _copy_from_user+0xdf/0x150 [ 137.346220] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 137.351754] ? copy_mount_options+0x285/0x380 [ 137.356255] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 137.361787] ksys_mount+0x12d/0x140 [ 137.365411] __x64_sys_mount+0xbe/0x150 [ 137.369476] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 137.374487] do_syscall_64+0x1b1/0x800 [ 137.378371] ? syscall_return_slowpath+0x5c0/0x5c0 [ 137.383314] ? syscall_return_slowpath+0x30f/0x5c0 [ 137.388246] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 137.393704] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 137.398565] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 137.403756] RIP: 0033:0x455979 [ 137.406934] RSP: 002b:00007f1fa3db4c68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 137.414638] RAX: ffffffffffffffda RBX: 00007f1fa3db56d4 RCX: 0000000000455979 [ 137.421902] RDX: 0000000020000100 RSI: 0000000020000080 RDI: 0000000020000040 [ 137.429174] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 137.436542] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000014 2018/04/30 22:51:10 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000072fee)='/dev/input/event#\x00', 0x0, 0x2) read(r0, &(0x7f000006b000)=""/24, 0x18) write$evdev(r0, &(0x7f0000057fa0)=[{{}, 0x0, 0x100000001}, {}], 0x30) 2018/04/30 22:51:10 executing program 6 (fault-call:2 fault-nth:11): mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x1, 0x0) [ 137.443814] R13: 0000000000000440 R14: 00000000006fa6a0 R15: 000000000000000a [ 137.507686] FAULT_INJECTION: forcing a failure. [ 137.507686] name failslab, interval 1, probability 0, space 0, times 0 [ 137.519063] CPU: 1 PID: 10968 Comm: syz-executor6 Not tainted 4.17.0-rc3+ #26 [ 137.526348] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 137.535715] Call Trace: [ 137.538329] dump_stack+0x1b9/0x294 [ 137.541978] ? dump_stack_print_info.cold.2+0x52/0x52 [ 137.547185] ? __save_stack_trace+0x7e/0xd0 [ 137.551532] should_fail.cold.4+0xa/0x1a 2018/04/30 22:51:10 executing program 0: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) [ 137.555618] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 137.560743] ? save_stack+0x43/0xd0 [ 137.564389] ? kasan_kmalloc+0xc4/0xe0 [ 137.568388] ? kmem_cache_alloc_trace+0x152/0x780 [ 137.570089] IPVS: ftp: loaded support on port[0] = 21 [ 137.573246] ? __memcg_init_list_lru_node+0x17d/0x2c0 [ 137.583778] ? __list_lru_init+0x456/0x790 [ 137.588043] ? sget_userns+0x73a/0xf00 [ 137.591956] ? graph_lock+0x170/0x170 [ 137.595779] ? vfs_kern_mount.part.34+0xd4/0x4d0 [ 137.600555] ? do_mount+0x564/0x3070 [ 137.604299] ? ksys_mount+0x12d/0x140 2018/04/30 22:51:10 executing program 0: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)="2e2f66696c6530f0", &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) [ 137.608118] ? __x64_sys_mount+0xbe/0x150 [ 137.612290] ? do_syscall_64+0x1b1/0x800 [ 137.616365] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 137.621768] ? find_held_lock+0x36/0x1c0 [ 137.625854] ? __lock_is_held+0xb5/0x140 [ 137.629951] ? check_same_owner+0x320/0x320 [ 137.634305] ? rcu_note_context_switch+0x710/0x710 [ 137.639261] __should_failslab+0x124/0x180 [ 137.643526] should_failslab+0x9/0x14 [ 137.647351] kmem_cache_alloc_trace+0x2cb/0x780 [ 137.652034] ? __kmalloc_node+0x33/0x70 2018/04/30 22:51:10 executing program 0: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) [ 137.656019] ? __kmalloc_node+0x33/0x70 [ 137.660010] ? rcu_read_lock_sched_held+0x108/0x120 [ 137.665049] __memcg_init_list_lru_node+0x17d/0x2c0 [ 137.670167] ? kvfree_rcu+0x20/0x20 [ 137.673813] ? __kmalloc_node+0x47/0x70 [ 137.677807] __list_lru_init+0x456/0x790 [ 137.681888] ? list_lru_destroy+0x4c0/0x4c0 [ 137.686224] ? mark_held_locks+0xc9/0x160 [ 137.690392] ? __raw_spin_lock_init+0x1c/0x100 [ 137.694994] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 137.700030] ? __lockdep_init_map+0x105/0x590 [ 137.704550] ? lockdep_init_map+0x9/0x10 2018/04/30 22:51:10 executing program 0: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) [ 137.708633] sget_userns+0x73a/0xf00 [ 137.712366] ? get_anon_bdev+0x2f0/0x2f0 [ 137.716444] ? test_bdev_super+0x50/0x50 [ 137.720521] ? destroy_unused_super.part.11+0x110/0x110 [ 137.725897] ? alloc_vfsmnt+0x771/0x9d0 [ 137.729885] ? mnt_free_id.isra.27+0x60/0x60 [ 137.734322] ? kasan_check_read+0x11/0x20 [ 137.738487] ? graph_lock+0x170/0x170 [ 137.742318] ? cap_capable+0x1f9/0x260 [ 137.746233] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 137.751790] ? security_capable+0x99/0xc0 [ 137.755959] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 137.761512] ? ns_capable_common+0x13f/0x170 [ 137.765938] ? get_anon_bdev+0x2f0/0x2f0 [ 137.770019] sget+0x10b/0x150 [ 137.773133] ? test_bdev_super+0x50/0x50 [ 137.777192] ? fuse_ctl_add_conn+0x280/0x280 [ 137.781608] mount_single+0x3a/0x170 [ 137.785333] fuse_ctl_mount+0x2c/0x40 [ 137.789146] mount_fs+0xae/0x328 [ 137.792508] ? mpi_free.cold.1+0x19/0x19 [ 137.796563] vfs_kern_mount.part.34+0xd4/0x4d0 [ 137.801150] ? may_umount+0xb0/0xb0 [ 137.804777] ? _raw_read_unlock+0x22/0x30 [ 137.808916] ? __get_fs_type+0x97/0xc0 [ 137.812806] do_mount+0x564/0x3070 [ 137.816351] ? lock_downgrade+0x8e0/0x8e0 [ 137.820503] ? copy_mount_string+0x40/0x40 [ 137.824747] ? check_same_owner+0x320/0x320 [ 137.829076] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 137.834092] ? __check_object_size+0x95/0x5d9 [ 137.838588] ? __might_sleep+0x95/0x190 [ 137.842554] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 137.848082] ? _copy_from_user+0xdf/0x150 [ 137.852234] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 137.857786] ? copy_mount_options+0x285/0x380 [ 137.862295] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 137.867856] ksys_mount+0x12d/0x140 [ 137.871477] __x64_sys_mount+0xbe/0x150 [ 137.875456] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 137.880498] do_syscall_64+0x1b1/0x800 [ 137.884384] ? finish_task_switch+0x1ca/0x810 [ 137.888887] ? syscall_return_slowpath+0x5c0/0x5c0 [ 137.893825] ? syscall_return_slowpath+0x30f/0x5c0 [ 137.898858] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 137.904242] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 137.909114] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 137.914310] RIP: 0033:0x455979 [ 137.917504] RSP: 002b:00007f1fa3db4c68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 137.925227] RAX: ffffffffffffffda RBX: 00007f1fa3db56d4 RCX: 0000000000455979 [ 137.932512] RDX: 0000000020000100 RSI: 0000000020000080 RDI: 0000000020000040 [ 137.939785] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 137.947051] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000014 [ 137.954322] R13: 0000000000000440 R14: 00000000006fa6a0 R15: 000000000000000b [ 138.012191] team0 (unregistering): Port device team_slave_1 removed [ 138.027435] team0 (unregistering): Port device team_slave_0 removed [ 138.040365] bond0 (unregistering): Releasing backup interface bond_slave_1 [ 138.062950] bond0 (unregistering): Releasing backup interface bond_slave_0 [ 138.095437] bond0 (unregistering): Released all slaves [ 138.665721] bridge0: port 1(bridge_slave_0) entered blocking state [ 138.672274] bridge0: port 1(bridge_slave_0) entered disabled state [ 138.679605] device bridge_slave_0 entered promiscuous mode [ 138.717391] bridge0: port 2(bridge_slave_1) entered blocking state [ 138.724153] bridge0: port 2(bridge_slave_1) entered disabled state [ 138.732476] device bridge_slave_1 entered promiscuous mode [ 138.768693] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 138.804995] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 138.912742] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 138.952193] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 139.121100] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 139.128729] team0: Port device team_slave_0 added [ 139.164443] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 139.171864] team0: Port device team_slave_1 added [ 139.207000] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 139.214383] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 139.222732] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 139.248708] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 139.255675] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 139.270614] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 139.302327] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 139.309554] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 139.318699] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 139.351961] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 139.359202] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 139.367621] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 139.618770] bridge0: port 2(bridge_slave_1) entered blocking state [ 139.625177] bridge0: port 2(bridge_slave_1) entered forwarding state [ 139.631835] bridge0: port 1(bridge_slave_0) entered blocking state [ 139.638305] bridge0: port 1(bridge_slave_0) entered forwarding state [ 139.645945] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 140.127171] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 140.456800] 8021q: adding VLAN 0 to HW filter on device bond0 [ 140.536210] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 140.616676] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 140.622885] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 140.630228] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 140.705645] 8021q: adding VLAN 0 to HW filter on device team0 [ 141.169312] FAULT_INJECTION: forcing a failure. [ 141.169312] name failslab, interval 1, probability 0, space 0, times 0 [ 141.180603] CPU: 1 PID: 11254 Comm: syz-executor1 Not tainted 4.17.0-rc3+ #26 [ 141.187873] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 141.197239] Call Trace: [ 141.199826] dump_stack+0x1b9/0x294 [ 141.203458] ? dump_stack_print_info.cold.2+0x52/0x52 [ 141.208648] ? kasan_check_write+0x14/0x20 [ 141.212879] should_fail.cold.4+0xa/0x1a [ 141.216950] ? wait_for_completion+0x870/0x870 [ 141.221533] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 141.226636] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 141.232179] ? find_next_zero_bit+0x111/0x140 [ 141.236674] ? kasan_check_read+0x11/0x20 [ 141.240817] ? rcu_is_watching+0x85/0x140 [ 141.244974] ? rcu_pm_notify+0xc0/0xc0 [ 141.248875] ? find_held_lock+0x36/0x1c0 [ 141.252944] ? check_same_owner+0x320/0x320 [ 141.257262] ? rcu_note_context_switch+0x710/0x710 [ 141.262202] __should_failslab+0x124/0x180 [ 141.266458] should_failslab+0x9/0x14 [ 141.270254] kmem_cache_alloc_trace+0x2cb/0x780 [ 141.274918] ? kasan_check_write+0x14/0x20 [ 141.279161] ? do_raw_spin_lock+0xc1/0x200 [ 141.283399] sget_userns+0x1c7/0xf00 [ 141.287114] ? get_anon_bdev+0x2f0/0x2f0 [ 141.291427] ? test_bdev_super+0x50/0x50 [ 141.295566] ? destroy_unused_super.part.11+0x110/0x110 [ 141.300925] ? alloc_vfsmnt+0x771/0x9d0 [ 141.304909] ? mnt_free_id.isra.27+0x60/0x60 [ 141.309320] ? kasan_check_read+0x11/0x20 [ 141.313458] ? graph_lock+0x170/0x170 [ 141.317261] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 141.322876] ? cap_capable+0x1f9/0x260 [ 141.326759] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 141.332286] ? security_capable+0x99/0xc0 [ 141.336427] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 141.341958] ? ns_capable_common+0x13f/0x170 [ 141.346365] ? get_anon_bdev+0x2f0/0x2f0 [ 141.350440] sget+0x10b/0x150 [ 141.353544] ? test_bdev_super+0x50/0x50 [ 141.357594] ? fuse_ctl_add_conn+0x280/0x280 [ 141.361988] mount_single+0x3a/0x170 [ 141.365693] fuse_ctl_mount+0x2c/0x40 [ 141.369483] mount_fs+0xae/0x328 [ 141.372840] ? mpi_free.cold.1+0x19/0x19 [ 141.376894] vfs_kern_mount.part.34+0xd4/0x4d0 [ 141.381465] ? may_umount+0xb0/0xb0 [ 141.385113] ? _raw_read_unlock+0x22/0x30 [ 141.389250] ? __get_fs_type+0x97/0xc0 [ 141.393129] do_mount+0x564/0x3070 [ 141.396660] ? lock_downgrade+0x8e0/0x8e0 [ 141.400805] ? copy_mount_string+0x40/0x40 [ 141.405059] ? check_same_owner+0x320/0x320 [ 141.409377] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 141.414388] ? __check_object_size+0x95/0x5d9 [ 141.418875] ? __might_sleep+0x95/0x190 [ 141.422879] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 141.428423] ? _copy_from_user+0xdf/0x150 [ 141.432578] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 141.438190] ? copy_mount_options+0x285/0x380 [ 141.442678] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 141.448640] ksys_mount+0x12d/0x140 [ 141.452267] __x64_sys_mount+0xbe/0x150 [ 141.456231] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 141.461250] do_syscall_64+0x1b1/0x800 [ 141.465129] ? finish_task_switch+0x1ca/0x810 [ 141.469633] ? syscall_return_slowpath+0x5c0/0x5c0 [ 141.474560] ? syscall_return_slowpath+0x30f/0x5c0 [ 141.479497] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 141.484869] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 141.489708] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 141.494889] RIP: 0033:0x455979 [ 141.498087] RSP: 002b:00007fdf745edc68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 141.505792] RAX: ffffffffffffffda RBX: 00007fdf745ee6d4 RCX: 0000000000455979 [ 141.513064] RDX: 0000000020000100 RSI: 0000000020000080 RDI: 0000000020000040 2018/04/30 22:51:14 executing program 0: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:51:14 executing program 5: r0 = socket$inet(0x2, 0x2, 0x2000000088) recvmsg(r0, &(0x7f0000001200)={&(0x7f0000000000)=@nfc_llcp, 0x80, &(0x7f00000000c0), 0x0, &(0x7f0000000080)}, 0x0) bind(r0, &(0x7f0000e79ff0)=@in={0x2, 0x4e20}, 0x10) sendto$inet(r0, &(0x7f0000000280), 0x0, 0x0, &(0x7f0000e81ff0)={0x2, 0x4e20}, 0x10) 2018/04/30 22:51:14 executing program 3: syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x0, 0x0) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}}, 0x1c) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x2000000}, 0x1c) syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1) 2018/04/30 22:51:14 executing program 6 (fault-call:2 fault-nth:12): mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x1, 0x0) 2018/04/30 22:51:14 executing program 7: openat$full(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/full\x00', 0x0, 0x0) r0 = getpid() openat$uinput(0xffffffffffffff9c, &(0x7f0000001640)='/dev/uinput\x00', 0x0, 0x0) syz_open_procfs$namespace(0x0, &(0x7f0000001b00)='ns/pid\x00') socket$nl_netfilter(0x10, 0x3, 0xc) openat$null(0xffffffffffffff9c, &(0x7f0000001fc0)='/dev/null\x00', 0x0, 0x0) inotify_init1(0x0) creat(&(0x7f0000002040)='./file0\x00', 0x0) r1 = openat$urandom(0xffffffffffffff9c, &(0x7f0000000040)='/dev/urandom\x00', 0x0, 0x0) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000c68000)={r1, &(0x7f0000000100), &(0x7f00000000c0)}, 0x20) pause() sendmmsg$unix(0xffffffffffffffff, &(0x7f0000005e00)=[{&(0x7f0000000440)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f00000016c0)=[{&(0x7f00000004c0)="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", 0xf47}], 0x1, &(0x7f0000000180)}], 0x1, 0x0) process_vm_readv(r0, &(0x7f0000001400), 0x1, &(0x7f0000000000)=[{&(0x7f0000002780)=""/204, 0xd7e1e1d24b36aac5}, {&(0x7f0000002880)=""/183, 0x9}], 0x2, 0x0) 2018/04/30 22:51:14 executing program 4: 2018/04/30 22:51:14 executing program 1 (fault-call:2 fault-nth:6): mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0xc003, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:51:14 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000072fee)='/dev/input/event#\x00', 0x0, 0x2) read(r0, &(0x7f000006b000)=""/24, 0x18) write$evdev(r0, &(0x7f0000057fa0)=[{{}, 0x0, 0x100000001}, {}], 0x30) [ 141.520341] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 141.527602] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000014 [ 141.534881] R13: 0000000000000440 R14: 00000000006fa6a0 R15: 0000000000000005 [ 141.570394] FAULT_INJECTION: forcing a failure. [ 141.570394] name failslab, interval 1, probability 0, space 0, times 0 [ 141.581748] CPU: 1 PID: 11256 Comm: syz-executor6 Not tainted 4.17.0-rc3+ #26 [ 141.589035] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 141.598397] Call Trace: [ 141.600993] dump_stack+0x1b9/0x294 [ 141.604653] ? dump_stack_print_info.cold.2+0x52/0x52 [ 141.609853] ? __save_stack_trace+0x7e/0xd0 [ 141.614193] should_fail.cold.4+0xa/0x1a [ 141.618249] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 141.623347] ? save_stack+0x43/0xd0 [ 141.626968] ? kasan_kmalloc+0xc4/0xe0 [ 141.630850] ? kmem_cache_alloc_trace+0x152/0x780 [ 141.635773] ? __memcg_init_list_lru_node+0x17d/0x2c0 [ 141.640959] ? __list_lru_init+0x456/0x790 [ 141.645222] ? sget_userns+0x73a/0xf00 [ 141.649107] ? graph_lock+0x170/0x170 [ 141.652903] ? vfs_kern_mount.part.34+0xd4/0x4d0 [ 141.657653] ? do_mount+0x564/0x3070 [ 141.661374] ? ksys_mount+0x12d/0x140 [ 141.665180] ? __x64_sys_mount+0xbe/0x150 [ 141.669320] ? do_syscall_64+0x1b1/0x800 [ 141.673386] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 141.678764] ? find_held_lock+0x36/0x1c0 [ 141.682826] ? __lock_is_held+0xb5/0x140 [ 141.686986] ? check_same_owner+0x320/0x320 [ 141.691313] ? rcu_note_context_switch+0x710/0x710 [ 141.696259] __should_failslab+0x124/0x180 [ 141.700498] should_failslab+0x9/0x14 [ 141.704563] kmem_cache_alloc_trace+0x2cb/0x780 [ 141.709239] ? __kmalloc_node+0x33/0x70 [ 141.713214] ? __kmalloc_node+0x33/0x70 [ 141.717183] ? rcu_read_lock_sched_held+0x108/0x120 [ 141.722197] __memcg_init_list_lru_node+0x17d/0x2c0 [ 141.727213] ? kvfree_rcu+0x20/0x20 [ 141.730844] ? __kmalloc_node+0x47/0x70 [ 141.734828] __list_lru_init+0x456/0x790 [ 141.738909] ? list_lru_destroy+0x4c0/0x4c0 [ 141.743225] ? mark_held_locks+0xc9/0x160 [ 141.747388] ? __raw_spin_lock_init+0x1c/0x100 [ 141.751969] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 141.756979] ? __lockdep_init_map+0x105/0x590 [ 141.761471] ? lockdep_init_map+0x9/0x10 [ 141.765527] sget_userns+0x73a/0xf00 [ 141.769241] ? get_anon_bdev+0x2f0/0x2f0 [ 141.773295] ? test_bdev_super+0x50/0x50 [ 141.777349] ? destroy_unused_super.part.11+0x110/0x110 [ 141.782796] ? alloc_vfsmnt+0x771/0x9d0 [ 141.786774] ? mnt_free_id.isra.27+0x60/0x60 [ 141.791178] ? kasan_check_read+0x11/0x20 [ 141.795330] ? graph_lock+0x170/0x170 [ 141.799125] ? cap_capable+0x1f9/0x260 [ 141.803015] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 141.808564] ? security_capable+0x99/0xc0 [ 141.812710] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 141.818240] ? ns_capable_common+0x13f/0x170 [ 141.822644] ? get_anon_bdev+0x2f0/0x2f0 [ 141.826701] sget+0x10b/0x150 [ 141.829800] ? test_bdev_super+0x50/0x50 [ 141.833867] ? fuse_ctl_add_conn+0x280/0x280 [ 141.838276] mount_single+0x3a/0x170 [ 141.841987] fuse_ctl_mount+0x2c/0x40 [ 141.845785] mount_fs+0xae/0x328 [ 141.849160] ? mpi_free.cold.1+0x19/0x19 [ 141.853218] vfs_kern_mount.part.34+0xd4/0x4d0 [ 141.857807] ? may_umount+0xb0/0xb0 [ 141.861428] ? _raw_read_unlock+0x22/0x30 [ 141.865579] ? __get_fs_type+0x97/0xc0 [ 141.869463] do_mount+0x564/0x3070 [ 141.872995] ? lock_downgrade+0x8e0/0x8e0 [ 141.877143] ? copy_mount_string+0x40/0x40 [ 141.881377] ? check_same_owner+0x320/0x320 [ 141.885707] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 141.890722] ? __check_object_size+0x95/0x5d9 [ 141.895222] ? __might_sleep+0x95/0x190 [ 141.899198] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 141.904730] ? _copy_from_user+0xdf/0x150 [ 141.908875] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 141.914418] ? copy_mount_options+0x285/0x380 [ 141.918910] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 141.924458] ksys_mount+0x12d/0x140 [ 141.928092] __x64_sys_mount+0xbe/0x150 [ 141.932067] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 141.937093] do_syscall_64+0x1b1/0x800 [ 141.940974] ? finish_task_switch+0x1ca/0x810 [ 141.945466] ? syscall_return_slowpath+0x5c0/0x5c0 [ 141.950395] ? syscall_return_slowpath+0x30f/0x5c0 [ 141.955326] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 141.960713] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 141.965554] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 141.970745] RIP: 0033:0x455979 [ 141.973926] RSP: 002b:00007f1fa3db4c68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 141.981639] RAX: ffffffffffffffda RBX: 00007f1fa3db56d4 RCX: 0000000000455979 [ 141.988899] RDX: 0000000020000100 RSI: 0000000020000080 RDI: 0000000020000040 [ 141.996608] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 142.003885] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000014 [ 142.011152] R13: 0000000000000440 R14: 00000000006fa6a0 R15: 000000000000000c 2018/04/30 22:51:15 executing program 0: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)="2e2f66696c6530ff", &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:51:15 executing program 6 (fault-call:2 fault-nth:13): mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x1, 0x0) 2018/04/30 22:51:15 executing program 4: 2018/04/30 22:51:15 executing program 3: syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x0, 0x0) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}}, 0x1c) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x2000000}, 0x1c) syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1) 2018/04/30 22:51:15 executing program 4: 2018/04/30 22:51:15 executing program 0: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:51:15 executing program 4: 2018/04/30 22:51:15 executing program 1 (fault-call:2 fault-nth:7): mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0xc003, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:51:15 executing program 3: syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x0, 0x0) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(0xffffffffffffffff, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x2000000}, 0x1c) syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1) [ 142.308233] device bridge_slave_1 left promiscuous mode [ 142.313993] bridge0: port 2(bridge_slave_1) entered disabled state [ 142.347528] FAULT_INJECTION: forcing a failure. [ 142.347528] name failslab, interval 1, probability 0, space 0, times 0 [ 142.358921] CPU: 1 PID: 11293 Comm: syz-executor6 Not tainted 4.17.0-rc3+ #26 [ 142.366209] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 142.375572] Call Trace: [ 142.378182] dump_stack+0x1b9/0x294 [ 142.381831] ? dump_stack_print_info.cold.2+0x52/0x52 [ 142.387052] ? __save_stack_trace+0x7e/0xd0 [ 142.388680] IPVS: ftp: loaded support on port[0] = 21 [ 142.391393] should_fail.cold.4+0xa/0x1a [ 142.391412] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 142.391428] ? save_stack+0x43/0xd0 [ 142.391445] ? kasan_kmalloc+0xc4/0xe0 [ 142.413307] ? kmem_cache_alloc_trace+0x152/0x780 [ 142.418177] ? __memcg_init_list_lru_node+0x17d/0x2c0 [ 142.423386] ? __list_lru_init+0x456/0x790 [ 142.427641] ? sget_userns+0x73a/0xf00 [ 142.431548] ? graph_lock+0x170/0x170 [ 142.435758] ? vfs_kern_mount.part.34+0xd4/0x4d0 [ 142.435774] ? do_mount+0x564/0x3070 [ 142.435788] ? ksys_mount+0x12d/0x140 [ 142.435802] ? __x64_sys_mount+0xbe/0x150 [ 142.435820] ? do_syscall_64+0x1b1/0x800 [ 142.435848] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 142.435867] ? find_held_lock+0x36/0x1c0 [ 142.435885] ? __lock_is_held+0xb5/0x140 [ 142.435912] ? check_same_owner+0x320/0x320 [ 142.474438] ? rcu_note_context_switch+0x710/0x710 [ 142.479373] __should_failslab+0x124/0x180 [ 142.483611] should_failslab+0x9/0x14 [ 142.487411] kmem_cache_alloc_trace+0x2cb/0x780 [ 142.492081] ? __kmalloc_node+0x33/0x70 [ 142.496079] ? __kmalloc_node+0x33/0x70 [ 142.500061] ? rcu_read_lock_sched_held+0x108/0x120 [ 142.505089] __memcg_init_list_lru_node+0x17d/0x2c0 [ 142.510129] ? kvfree_rcu+0x20/0x20 [ 142.513858] ? __kmalloc_node+0x47/0x70 [ 142.517838] __list_lru_init+0x456/0x790 [ 142.521908] ? list_lru_destroy+0x4c0/0x4c0 [ 142.526227] ? mark_held_locks+0xc9/0x160 [ 142.530374] ? __raw_spin_lock_init+0x1c/0x100 [ 142.534950] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 142.539959] ? __lockdep_init_map+0x105/0x590 [ 142.544444] ? lockdep_init_map+0x9/0x10 [ 142.548499] sget_userns+0x73a/0xf00 [ 142.552203] ? get_anon_bdev+0x2f0/0x2f0 [ 142.556259] ? test_bdev_super+0x50/0x50 [ 142.560325] ? destroy_unused_super.part.11+0x110/0x110 [ 142.565702] ? alloc_vfsmnt+0x771/0x9d0 [ 142.569666] ? mnt_free_id.isra.27+0x60/0x60 [ 142.574076] ? kasan_check_read+0x11/0x20 [ 142.578237] ? graph_lock+0x170/0x170 [ 142.582062] ? cap_capable+0x1f9/0x260 [ 142.585965] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 142.591513] ? security_capable+0x99/0xc0 [ 142.595679] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 142.601236] ? ns_capable_common+0x13f/0x170 2018/04/30 22:51:15 executing program 5: r0 = getpid() syz_emit_ethernet(0x1, &(0x7f0000c57000)=ANY=[@ANYBLOB="17a6"], &(0x7f0000ea3000)) pause() sendmmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)=[{&(0x7f00000000c0)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000000280)=[{&(0x7f00000004c0)="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", 0xf47}], 0x1, &(0x7f0000000240)}], 0x1, 0x0) process_vm_readv(r0, &(0x7f0000001400), 0x1, &(0x7f0000000000)=[{&(0x7f0000002780)=""/204, 0xd7e1e1d24b36aac5}, {&(0x7f0000002880)=""/183, 0x9}], 0x2, 0x0) 2018/04/30 22:51:15 executing program 4: 2018/04/30 22:51:15 executing program 0: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:51:15 executing program 3: syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x0, 0x0) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(0xffffffffffffffff, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x2000000}, 0x1c) syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1) 2018/04/30 22:51:15 executing program 7: [ 142.607400] ? get_anon_bdev+0x2f0/0x2f0 [ 142.611481] sget+0x10b/0x150 [ 142.614600] ? test_bdev_super+0x50/0x50 [ 142.618675] ? fuse_ctl_add_conn+0x280/0x280 [ 142.623112] mount_single+0x3a/0x170 [ 142.626877] fuse_ctl_mount+0x2c/0x40 [ 142.630692] mount_fs+0xae/0x328 [ 142.634066] ? mpi_free.cold.1+0x19/0x19 [ 142.638161] vfs_kern_mount.part.34+0xd4/0x4d0 [ 142.642758] ? may_umount+0xb0/0xb0 [ 142.646398] ? _raw_read_unlock+0x22/0x30 [ 142.650560] ? __get_fs_type+0x97/0xc0 [ 142.654484] do_mount+0x564/0x3070 2018/04/30 22:51:15 executing program 0: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) [ 142.658040] ? lock_downgrade+0x8e0/0x8e0 [ 142.662205] ? copy_mount_string+0x40/0x40 [ 142.666453] ? check_same_owner+0x320/0x320 [ 142.670790] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 142.675839] ? __check_object_size+0x95/0x5d9 [ 142.680521] ? __might_sleep+0x95/0x190 [ 142.684515] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 142.690072] ? _copy_from_user+0xdf/0x150 [ 142.694243] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 142.699802] ? copy_mount_options+0x285/0x380 [ 142.704324] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 142.709879] ksys_mount+0x12d/0x140 [ 142.713522] __x64_sys_mount+0xbe/0x150 [ 142.717518] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 142.722639] do_syscall_64+0x1b1/0x800 [ 142.726537] ? finish_task_switch+0x1ca/0x810 [ 142.731051] ? syscall_return_slowpath+0x5c0/0x5c0 [ 142.735999] ? syscall_return_slowpath+0x30f/0x5c0 [ 142.741037] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 142.746420] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 142.751280] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 142.756470] RIP: 0033:0x455979 [ 142.759659] RSP: 002b:00007f1fa3db4c68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 142.767379] RAX: ffffffffffffffda RBX: 00007f1fa3db56d4 RCX: 0000000000455979 [ 142.774662] RDX: 0000000020000100 RSI: 0000000020000080 RDI: 0000000020000040 [ 142.781946] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 142.789228] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000014 [ 142.796513] R13: 0000000000000440 R14: 00000000006fa6a0 R15: 000000000000000d 2018/04/30 22:51:16 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000072fee)='/dev/input/event#\x00', 0x0, 0x2) read(r0, &(0x7f000006b000)=""/24, 0x18) write$evdev(r0, &(0x7f0000057fa0)=[{{}, 0x0, 0x100000001}, {}], 0x30) 2018/04/30 22:51:16 executing program 7: r0 = getpid() bpf$MAP_CREATE(0x0, &(0x7f0000c47fec)={0x0, 0x0, 0x0, 0xfffe}, 0xd9) pause() sendmmsg$unix(0xffffffffffffffff, &(0x7f0000005e00)=[{&(0x7f0000000440)=@abs, 0x6e, &(0x7f00000016c0)=[{&(0x7f00000004c0)="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", 0xf47}], 0x1, &(0x7f0000001700)}], 0x1, 0x0) process_vm_readv(r0, &(0x7f0000001400), 0x1, &(0x7f0000000000)=[{&(0x7f0000000040)=""/204, 0xd7e1e1d24b36aac5}, {&(0x7f0000002880)=""/183, 0x3d1}], 0x2, 0x0) 2018/04/30 22:51:16 executing program 4: r0 = socket$key(0xf, 0x3, 0x2) r1 = perf_event_open(&(0x7f0000940000)={0x2, 0x70, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x1, &(0x7f0000000040)=0x0) dup3(r0, r1, 0x0) io_submit(r2, 0x1, &(0x7f0000000100)=[&(0x7f0000000280)={0x0, 0x0, 0x0, 0x1, 0x0, r1, &(0x7f0000000080)="0208000000000000942f5d2906c10a24", 0x10, 0x0, 0x0, 0x0, r1}]) 2018/04/30 22:51:16 executing program 6 (fault-call:2 fault-nth:14): mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x1, 0x0) 2018/04/30 22:51:16 executing program 3: syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x0, 0x0) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(0xffffffffffffffff, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x2000000}, 0x1c) syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1) [ 142.819088] device bridge_slave_0 left promiscuous mode [ 142.824709] bridge0: port 1(bridge_slave_0) entered disabled state 2018/04/30 22:51:16 executing program 0: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) [ 142.913291] FAULT_INJECTION: forcing a failure. [ 142.913291] name failslab, interval 1, probability 0, space 0, times 0 [ 142.924654] CPU: 0 PID: 11328 Comm: syz-executor6 Not tainted 4.17.0-rc3+ #26 [ 142.931944] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 142.941314] Call Trace: [ 142.943926] dump_stack+0x1b9/0x294 [ 142.947690] ? dump_stack_print_info.cold.2+0x52/0x52 [ 142.952879] ? __save_stack_trace+0x7e/0xd0 [ 142.957212] should_fail.cold.4+0xa/0x1a [ 142.961276] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 142.966382] ? save_stack+0x43/0xd0 [ 142.970015] ? kasan_kmalloc+0xc4/0xe0 [ 142.973899] ? kmem_cache_alloc_trace+0x152/0x780 [ 142.978743] ? __memcg_init_list_lru_node+0x17d/0x2c0 [ 142.983925] ? __list_lru_init+0x456/0x790 [ 142.988157] ? sget_userns+0x73a/0xf00 [ 142.992041] ? graph_lock+0x170/0x170 [ 142.995834] ? vfs_kern_mount.part.34+0xd4/0x4d0 [ 143.000577] ? do_mount+0x564/0x3070 [ 143.004294] ? ksys_mount+0x12d/0x140 [ 143.008081] ? __x64_sys_mount+0xbe/0x150 [ 143.012228] ? do_syscall_64+0x1b1/0x800 [ 143.016282] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 143.021665] ? find_held_lock+0x36/0x1c0 [ 143.026075] ? __lock_is_held+0xb5/0x140 [ 143.030142] ? check_same_owner+0x320/0x320 [ 143.034462] ? rcu_note_context_switch+0x710/0x710 [ 143.039401] __should_failslab+0x124/0x180 [ 143.043728] should_failslab+0x9/0x14 [ 143.047520] kmem_cache_alloc_trace+0x2cb/0x780 [ 143.052183] ? __kmalloc_node+0x33/0x70 [ 143.056156] ? __kmalloc_node+0x33/0x70 [ 143.060126] ? rcu_read_lock_sched_held+0x108/0x120 [ 143.065147] __memcg_init_list_lru_node+0x17d/0x2c0 [ 143.070159] ? kvfree_rcu+0x20/0x20 [ 143.073783] ? __kmalloc_node+0x47/0x70 [ 143.077759] __list_lru_init+0x456/0x790 [ 143.081817] ? list_lru_destroy+0x4c0/0x4c0 [ 143.086145] ? mark_held_locks+0xc9/0x160 [ 143.090291] ? __raw_spin_lock_init+0x1c/0x100 [ 143.094878] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 143.099896] ? __lockdep_init_map+0x105/0x590 [ 143.104387] ? lockdep_init_map+0x9/0x10 [ 143.108450] sget_userns+0x73a/0xf00 [ 143.112153] ? get_anon_bdev+0x2f0/0x2f0 [ 143.116205] ? test_bdev_super+0x50/0x50 [ 143.120271] ? destroy_unused_super.part.11+0x110/0x110 [ 143.125639] ? alloc_vfsmnt+0x771/0x9d0 [ 143.129612] ? mnt_free_id.isra.27+0x60/0x60 [ 143.134032] ? kasan_check_read+0x11/0x20 [ 143.139222] ? graph_lock+0x170/0x170 [ 143.143024] ? cap_capable+0x1f9/0x260 [ 143.146917] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 143.152445] ? security_capable+0x99/0xc0 [ 143.156596] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 143.162123] ? ns_capable_common+0x13f/0x170 [ 143.166524] ? get_anon_bdev+0x2f0/0x2f0 [ 143.170582] sget+0x10b/0x150 [ 143.173690] ? test_bdev_super+0x50/0x50 [ 143.177745] ? fuse_ctl_add_conn+0x280/0x280 [ 143.182145] mount_single+0x3a/0x170 [ 143.185860] fuse_ctl_mount+0x2c/0x40 [ 143.189654] mount_fs+0xae/0x328 [ 143.193023] ? mpi_free.cold.1+0x19/0x19 [ 143.197082] vfs_kern_mount.part.34+0xd4/0x4d0 [ 143.201656] ? may_umount+0xb0/0xb0 [ 143.205289] ? _raw_read_unlock+0x22/0x30 [ 143.209425] ? __get_fs_type+0x97/0xc0 [ 143.213330] do_mount+0x564/0x3070 [ 143.216860] ? lock_downgrade+0x8e0/0x8e0 [ 143.220999] ? copy_mount_string+0x40/0x40 [ 143.225237] ? check_same_owner+0x320/0x320 [ 143.229560] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 143.234570] ? __check_object_size+0x95/0x5d9 [ 143.239069] ? __might_sleep+0x95/0x190 [ 143.243065] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 143.248597] ? _copy_from_user+0xdf/0x150 [ 143.252738] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 143.258288] ? copy_mount_options+0x285/0x380 [ 143.262776] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 143.268307] ksys_mount+0x12d/0x140 [ 143.271930] __x64_sys_mount+0xbe/0x150 [ 143.275898] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 143.280906] do_syscall_64+0x1b1/0x800 [ 143.284793] ? finish_task_switch+0x1ca/0x810 [ 143.289282] ? syscall_return_slowpath+0x5c0/0x5c0 [ 143.294203] ? syscall_return_slowpath+0x30f/0x5c0 [ 143.299127] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 143.304487] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 143.309326] entry_SYSCALL_64_after_hwframe+0x49/0xbe 2018/04/30 22:51:16 executing program 3: syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x0, 0x0) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}}, 0x1c) syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1) 2018/04/30 22:51:16 executing program 4: r0 = getpid() bpf$MAP_CREATE(0x0, &(0x7f0000c47fec)={0x0, 0xfffffffffffffffd, 0x0, 0x76fe}, 0x2c) pause() sendmmsg$unix(0xffffffffffffffff, &(0x7f0000005e00)=[{&(0x7f0000000440)=@abs, 0x6e, &(0x7f00000016c0)=[{&(0x7f00000004c0)="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", 0xf47}], 0x1, &(0x7f0000001700)}], 0x1, 0x0) process_vm_readv(r0, &(0x7f0000001400), 0x1, &(0x7f0000000000)=[{&(0x7f0000000040)=""/204, 0xd7e1e1d24b36aac5}, {&(0x7f0000002880)=""/183, 0x3d1}], 0x2, 0x0) [ 143.314506] RIP: 0033:0x455979 [ 143.317685] RSP: 002b:00007f1fa3db4c68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 143.325385] RAX: ffffffffffffffda RBX: 00007f1fa3db56d4 RCX: 0000000000455979 [ 143.332653] RDX: 0000000020000100 RSI: 0000000020000080 RDI: 0000000020000040 [ 143.339922] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 143.347190] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000014 [ 143.354448] R13: 0000000000000440 R14: 00000000006fa6a0 R15: 000000000000000e [ 143.440515] team0 (unregistering): Port device team_slave_1 removed [ 143.461719] team0 (unregistering): Port device team_slave_0 removed [ 143.482102] bond0 (unregistering): Releasing backup interface bond_slave_1 [ 143.502996] bond0 (unregistering): Releasing backup interface bond_slave_0 [ 143.531798] bond0 (unregistering): Released all slaves [ 144.186549] bridge0: port 1(bridge_slave_0) entered blocking state [ 144.193187] bridge0: port 1(bridge_slave_0) entered disabled state [ 144.201196] device bridge_slave_0 entered promiscuous mode [ 144.241732] bridge0: port 2(bridge_slave_1) entered blocking state [ 144.248218] bridge0: port 2(bridge_slave_1) entered disabled state [ 144.256216] device bridge_slave_1 entered promiscuous mode [ 144.293497] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 144.329875] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 144.445330] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 144.510434] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 144.584137] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 144.591153] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 144.702100] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 144.709643] team0: Port device team_slave_0 added [ 144.745307] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 144.752474] team0: Port device team_slave_1 added [ 144.781977] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 144.821925] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 144.859409] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 144.866696] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 144.875277] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 144.902436] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 144.909761] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 144.925815] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 145.162909] bridge0: port 2(bridge_slave_1) entered blocking state [ 145.169315] bridge0: port 2(bridge_slave_1) entered forwarding state [ 145.175990] bridge0: port 1(bridge_slave_0) entered blocking state [ 145.182375] bridge0: port 1(bridge_slave_0) entered forwarding state [ 145.190375] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 145.567150] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 146.003056] 8021q: adding VLAN 0 to HW filter on device bond0 [ 146.081243] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 146.160599] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 146.166985] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 146.174531] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 146.248677] 8021q: adding VLAN 0 to HW filter on device team0 [ 146.699544] FAULT_INJECTION: forcing a failure. [ 146.699544] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 146.711408] CPU: 1 PID: 11608 Comm: syz-executor1 Not tainted 4.17.0-rc3+ #26 [ 146.718679] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 146.728030] Call Trace: [ 146.730626] dump_stack+0x1b9/0x294 [ 146.734248] ? dump_stack_print_info.cold.2+0x52/0x52 [ 146.739443] ? graph_lock+0x170/0x170 [ 146.743234] ? debug_check_no_locks_freed+0x310/0x310 [ 146.748416] should_fail.cold.4+0xa/0x1a [ 146.752474] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 146.757572] ? debug_check_no_locks_freed+0x310/0x310 [ 146.762757] ? find_next_bit+0x104/0x130 [ 146.766809] ? pcpu_next_unpop+0x83/0xf0 [ 146.770860] ? kasan_check_write+0x14/0x20 [ 146.775090] ? __mutex_unlock_slowpath+0x180/0x8a0 [ 146.780010] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 146.785567] ? should_fail+0x21b/0xbcd [ 146.789449] ? wait_for_completion+0x870/0x870 [ 146.794033] __alloc_pages_nodemask+0x34e/0xd70 [ 146.798694] ? find_next_zero_bit+0x111/0x140 [ 146.803179] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 146.808185] ? rcu_pm_notify+0xc0/0xc0 [ 146.812065] ? find_held_lock+0x36/0x1c0 [ 146.816134] ? check_same_owner+0x320/0x320 [ 146.820612] cache_grow_begin+0x72/0x6c0 [ 146.824678] kmem_cache_alloc_trace+0x6a5/0x780 [ 146.829508] ? kasan_check_write+0x14/0x20 [ 146.833742] ? do_raw_spin_lock+0xc1/0x200 [ 146.837979] sget_userns+0x1c7/0xf00 [ 146.841689] ? get_anon_bdev+0x2f0/0x2f0 [ 146.845748] ? test_bdev_super+0x50/0x50 [ 146.849823] ? destroy_unused_super.part.11+0x110/0x110 [ 146.855215] ? alloc_vfsmnt+0x771/0x9d0 [ 146.859185] ? mnt_free_id.isra.27+0x60/0x60 [ 146.863596] ? kasan_check_read+0x11/0x20 [ 146.867746] ? graph_lock+0x170/0x170 [ 146.871535] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 146.877075] ? cap_capable+0x1f9/0x260 [ 146.880961] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 146.886485] ? security_capable+0x99/0xc0 [ 146.890630] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 146.896171] ? ns_capable_common+0x13f/0x170 [ 146.900574] ? get_anon_bdev+0x2f0/0x2f0 [ 146.904624] sget+0x10b/0x150 [ 146.907716] ? test_bdev_super+0x50/0x50 [ 146.911774] ? fuse_ctl_add_conn+0x280/0x280 [ 146.916176] mount_single+0x3a/0x170 [ 146.919883] fuse_ctl_mount+0x2c/0x40 [ 146.923671] mount_fs+0xae/0x328 [ 146.927042] ? mpi_free.cold.1+0x19/0x19 [ 146.931098] vfs_kern_mount.part.34+0xd4/0x4d0 [ 146.935668] ? may_umount+0xb0/0xb0 [ 146.939282] ? _raw_read_unlock+0x22/0x30 [ 146.943419] ? __get_fs_type+0x97/0xc0 [ 146.947292] do_mount+0x564/0x3070 [ 146.950818] ? lock_downgrade+0x8e0/0x8e0 [ 146.954952] ? copy_mount_string+0x40/0x40 [ 146.959186] ? check_same_owner+0x320/0x320 [ 146.963515] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 146.969223] ? __check_object_size+0x95/0x5d9 [ 146.973714] ? __might_sleep+0x95/0x190 [ 146.977685] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 146.983229] ? _copy_from_user+0xdf/0x150 [ 146.987367] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 146.992903] ? copy_mount_options+0x285/0x380 [ 146.997386] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 147.002923] ksys_mount+0x12d/0x140 [ 147.006548] __x64_sys_mount+0xbe/0x150 [ 147.010512] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 147.015529] do_syscall_64+0x1b1/0x800 [ 147.019408] ? syscall_return_slowpath+0x5c0/0x5c0 [ 147.024325] ? syscall_return_slowpath+0x30f/0x5c0 [ 147.029253] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 147.034624] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 147.039471] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 147.044645] RIP: 0033:0x455979 2018/04/30 22:51:20 executing program 1 (fault-call:2 fault-nth:8): mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0xc003, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:51:20 executing program 0: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:51:20 executing program 6 (fault-call:2 fault-nth:15): mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x1, 0x0) 2018/04/30 22:51:20 executing program 3: syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x0, 0x0) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}}, 0x1c) syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1) 2018/04/30 22:51:20 executing program 2: perf_event_open(&(0x7f000025c000)={0x0, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$evdev(&(0x7f0000072fee)='/dev/input/event#\x00', 0x0, 0x2) read(r0, &(0x7f000006b000)=""/24, 0x18) write$evdev(r0, &(0x7f0000057fa0)=[{{}, 0x0, 0x100000001}, {}], 0x30) 2018/04/30 22:51:20 executing program 5: r0 = signalfd(0xffffffffffffffff, &(0x7f0000e7d000), 0x8) perf_event_open(&(0x7f0000940000)={0x2, 0x78, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000a3c000)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) signalfd(r0, &(0x7f0000000000), 0x8) 2018/04/30 22:51:20 executing program 7: syz_emit_ethernet(0x36, &(0x7f0000000000)={@local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}, @dev={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa]}, [], {@ipv4={0x800, {{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x6, 0x0, @dev={0xac, 0x14, 0x14}, @remote={0xac, 0x14, 0x14, 0xbb}}, @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, &(0x7f00000002c0)) 2018/04/30 22:51:20 executing program 4: openat$full(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/full\x00', 0x0, 0x0) r0 = getpid() openat$uinput(0xffffffffffffff9c, &(0x7f0000001640)='/dev/uinput\x00', 0x0, 0x0) syz_open_procfs$namespace(0x0, &(0x7f0000001b00)='ns/pid\x00') socket$nl_netfilter(0x10, 0x3, 0xc) openat$null(0xffffffffffffff9c, &(0x7f0000001fc0)='/dev/null\x00', 0x0, 0x0) inotify_init1(0x0) creat(&(0x7f0000002040)='./file0\x00', 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000340)='/dev/zero\x00', 0x0, 0x0) r1 = openat$urandom(0xffffffffffffff9c, &(0x7f0000000040)='/dev/urandom\x00', 0x0, 0x0) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000c68000)={r1, &(0x7f0000000100), &(0x7f00000000c0)}, 0x20) pause() sendmmsg$unix(0xffffffffffffffff, &(0x7f0000005e00)=[{&(0x7f0000000440)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f00000016c0)=[{&(0x7f00000004c0)="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", 0xf47}], 0x1, &(0x7f0000000180)}], 0x1, 0x0) process_vm_readv(r0, &(0x7f0000001400), 0x1, &(0x7f0000000000)=[{&(0x7f0000002780)=""/204, 0xd7e1e1d24b36aac5}, {&(0x7f0000002880)=""/183, 0x9}], 0x2, 0x0) [ 147.047830] RSP: 002b:00007eff7066cc68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 147.055525] RAX: ffffffffffffffda RBX: 00007eff7066d6d4 RCX: 0000000000455979 [ 147.062780] RDX: 0000000020000100 RSI: 0000000020000080 RDI: 0000000020000040 [ 147.070041] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 147.077394] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000014 [ 147.084655] R13: 0000000000000440 R14: 00000000006fa6a0 R15: 0000000000000007 [ 147.153155] FAULT_INJECTION: forcing a failure. [ 147.153155] name failslab, interval 1, probability 0, space 0, times 0 [ 147.164537] CPU: 1 PID: 11615 Comm: syz-executor6 Not tainted 4.17.0-rc3+ #26 [ 147.171824] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 147.181278] Call Trace: [ 147.183894] dump_stack+0x1b9/0x294 [ 147.187550] ? dump_stack_print_info.cold.2+0x52/0x52 [ 147.192767] ? __save_stack_trace+0x7e/0xd0 [ 147.197117] should_fail.cold.4+0xa/0x1a [ 147.201318] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 147.206446] ? save_stack+0x43/0xd0 [ 147.210091] ? kasan_kmalloc+0xc4/0xe0 [ 147.213996] ? kmem_cache_alloc_trace+0x152/0x780 [ 147.218922] ? __memcg_init_list_lru_node+0x17d/0x2c0 [ 147.224124] ? __list_lru_init+0x456/0x790 [ 147.228356] ? sget_userns+0x73a/0xf00 [ 147.232236] ? graph_lock+0x170/0x170 [ 147.236078] ? vfs_kern_mount.part.34+0xd4/0x4d0 [ 147.240837] ? do_mount+0x564/0x3070 [ 147.244557] ? ksys_mount+0x12d/0x140 [ 147.248349] ? __x64_sys_mount+0xbe/0x150 [ 147.252494] ? do_syscall_64+0x1b1/0x800 [ 147.256552] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 147.261915] ? find_held_lock+0x36/0x1c0 [ 147.265979] ? __lock_is_held+0xb5/0x140 [ 147.270059] ? check_same_owner+0x320/0x320 [ 147.274391] ? rcu_note_context_switch+0x710/0x710 [ 147.279316] __should_failslab+0x124/0x180 [ 147.283553] should_failslab+0x9/0x14 [ 147.287347] kmem_cache_alloc_trace+0x2cb/0x780 [ 147.292004] ? __kmalloc_node+0x33/0x70 [ 147.295976] ? __kmalloc_node+0x33/0x70 [ 147.299948] ? rcu_read_lock_sched_held+0x108/0x120 [ 147.304962] __memcg_init_list_lru_node+0x17d/0x2c0 [ 147.309971] ? kvfree_rcu+0x20/0x20 [ 147.313588] ? __kmalloc_node+0x47/0x70 [ 147.317566] __list_lru_init+0x456/0x790 [ 147.321621] ? list_lru_destroy+0x4c0/0x4c0 [ 147.325933] ? mark_held_locks+0xc9/0x160 [ 147.330077] ? __raw_spin_lock_init+0x1c/0x100 [ 147.334652] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 147.339743] ? __lockdep_init_map+0x105/0x590 [ 147.344231] ? lockdep_init_map+0x9/0x10 [ 147.348293] sget_userns+0x73a/0xf00 [ 147.351995] ? get_anon_bdev+0x2f0/0x2f0 [ 147.356054] ? test_bdev_super+0x50/0x50 [ 147.360119] ? destroy_unused_super.part.11+0x110/0x110 [ 147.365481] ? alloc_vfsmnt+0x771/0x9d0 [ 147.369536] ? mnt_free_id.isra.27+0x60/0x60 [ 147.373936] ? kasan_check_read+0x11/0x20 [ 147.378082] ? graph_lock+0x170/0x170 [ 147.381870] ? cap_capable+0x1f9/0x260 [ 147.385764] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 147.391300] ? security_capable+0x99/0xc0 [ 147.395441] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 147.400968] ? ns_capable_common+0x13f/0x170 [ 147.405367] ? get_anon_bdev+0x2f0/0x2f0 [ 147.409420] sget+0x10b/0x150 [ 147.412515] ? test_bdev_super+0x50/0x50 [ 147.416569] ? fuse_ctl_add_conn+0x280/0x280 [ 147.420970] mount_single+0x3a/0x170 [ 147.424676] fuse_ctl_mount+0x2c/0x40 [ 147.428477] mount_fs+0xae/0x328 [ 147.431831] ? mpi_free.cold.1+0x19/0x19 [ 147.435898] vfs_kern_mount.part.34+0xd4/0x4d0 [ 147.440472] ? may_umount+0xb0/0xb0 [ 147.444111] ? _raw_read_unlock+0x22/0x30 [ 147.448249] ? __get_fs_type+0x97/0xc0 [ 147.452140] do_mount+0x564/0x3070 [ 147.455680] ? lock_downgrade+0x8e0/0x8e0 [ 147.459828] ? copy_mount_string+0x40/0x40 [ 147.464055] ? check_same_owner+0x320/0x320 [ 147.468369] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 147.473380] ? __check_object_size+0x95/0x5d9 [ 147.477871] ? __might_sleep+0x95/0x190 [ 147.481841] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 147.487372] ? _copy_from_user+0xdf/0x150 [ 147.491531] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 147.497079] ? copy_mount_options+0x285/0x380 [ 147.501578] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 147.507112] ksys_mount+0x12d/0x140 [ 147.510732] __x64_sys_mount+0xbe/0x150 [ 147.514706] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 147.519740] do_syscall_64+0x1b1/0x800 [ 147.523617] ? finish_task_switch+0x1ca/0x810 [ 147.528104] ? syscall_return_slowpath+0x5c0/0x5c0 [ 147.533030] ? syscall_return_slowpath+0x30f/0x5c0 [ 147.537963] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 147.543320] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 147.548157] entry_SYSCALL_64_after_hwframe+0x49/0xbe 2018/04/30 22:51:20 executing program 7: r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_SET_DEBUG(r0, 0x227e, &(0x7f0000000100)=0x1) ioctl$SG_IO(r0, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x21, 0x0, @buffer={0x0, 0x47, &(0x7f0000000040)=""/71}, &(0x7f00000000c0)="7f2911fa31fa4f4b2f5687dbd490bd09e476cb6b139f5686379495446bcea9c334", &(0x7f00000002c0)=""/182, 0x0, 0x0, 0x0, &(0x7f0000000380)}) 2018/04/30 22:51:20 executing program 7: r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_SET_DEBUG(r0, 0x227e, &(0x7f0000000100)=0x1) ioctl$SG_IO(r0, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x21, 0x0, @buffer={0x0, 0x47, &(0x7f0000000040)=""/71}, &(0x7f00000000c0)="7f2911fa31fa4f4b2f5687dbd490bd09e476cb6b139f5686379495446bcea9c334", &(0x7f00000002c0)=""/182, 0x0, 0x0, 0x0, &(0x7f0000000380)}) [ 147.553333] RIP: 0033:0x455979 [ 147.556522] RSP: 002b:00007f1fa3db4c68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 147.564233] RAX: ffffffffffffffda RBX: 00007f1fa3db56d4 RCX: 0000000000455979 [ 147.571507] RDX: 0000000020000100 RSI: 0000000020000080 RDI: 0000000020000040 [ 147.578781] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 147.586042] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000014 [ 147.593300] R13: 0000000000000440 R14: 00000000006fa6a0 R15: 000000000000000f 2018/04/30 22:51:20 executing program 0: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)="2e2f66696c6530ff", &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:51:20 executing program 3: syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x0, 0x0) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}}, 0x1c) syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1) 2018/04/30 22:51:20 executing program 5: r0 = socket$inet6(0xa, 0x2, 0x0) getsockopt$IP_VS_SO_GET_SERVICE(r0, 0x0, 0x483, &(0x7f0000000140), &(0x7f00000001c0)=0x68) 2018/04/30 22:51:20 executing program 6 (fault-call:2 fault-nth:16): mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x1, 0x0) [ 147.733472] FAULT_INJECTION: forcing a failure. [ 147.733472] name failslab, interval 1, probability 0, space 0, times 0 [ 147.744901] CPU: 1 PID: 11642 Comm: syz-executor6 Not tainted 4.17.0-rc3+ #26 [ 147.752186] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 147.761555] Call Trace: [ 147.764160] dump_stack+0x1b9/0x294 [ 147.767805] ? dump_stack_print_info.cold.2+0x52/0x52 [ 147.773013] ? __save_stack_trace+0x7e/0xd0 [ 147.777357] should_fail.cold.4+0xa/0x1a [ 147.781435] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 147.786558] ? save_stack+0x43/0xd0 [ 147.790194] ? kasan_kmalloc+0xc4/0xe0 [ 147.794087] ? kmem_cache_alloc_trace+0x152/0x780 [ 147.798938] ? __memcg_init_list_lru_node+0x17d/0x2c0 [ 147.804142] ? __list_lru_init+0x456/0x790 [ 147.808401] ? sget_userns+0x73a/0xf00 [ 147.812302] ? graph_lock+0x170/0x170 [ 147.816127] ? vfs_kern_mount.part.34+0xd4/0x4d0 [ 147.820903] ? do_mount+0x564/0x3070 [ 147.824639] ? ksys_mount+0x12d/0x140 [ 147.828458] ? __x64_sys_mount+0xbe/0x150 [ 147.832626] ? do_syscall_64+0x1b1/0x800 [ 147.836716] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 147.842106] ? find_held_lock+0x36/0x1c0 [ 147.846197] ? __lock_is_held+0xb5/0x140 [ 147.850287] ? check_same_owner+0x320/0x320 [ 147.854615] ? rcu_note_context_switch+0x710/0x710 [ 147.859542] __should_failslab+0x124/0x180 [ 147.863776] should_failslab+0x9/0x14 [ 147.867569] kmem_cache_alloc_trace+0x2cb/0x780 [ 147.872231] ? __kmalloc_node+0x33/0x70 [ 147.876196] ? __kmalloc_node+0x33/0x70 [ 147.880163] ? rcu_read_lock_sched_held+0x108/0x120 [ 147.885175] __memcg_init_list_lru_node+0x17d/0x2c0 [ 147.890183] ? kvfree_rcu+0x20/0x20 [ 147.893804] ? __kmalloc_node+0x47/0x70 [ 147.897784] __list_lru_init+0x456/0x790 [ 147.901842] ? list_lru_destroy+0x4c0/0x4c0 [ 147.906157] ? mark_held_locks+0xc9/0x160 [ 147.910306] ? __raw_spin_lock_init+0x1c/0x100 [ 147.914884] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 147.919897] ? __lockdep_init_map+0x105/0x590 [ 147.924402] ? lockdep_init_map+0x9/0x10 [ 147.928461] sget_userns+0x73a/0xf00 [ 147.932177] ? get_anon_bdev+0x2f0/0x2f0 [ 147.936234] ? test_bdev_super+0x50/0x50 [ 147.940288] ? destroy_unused_super.part.11+0x110/0x110 [ 147.945648] ? alloc_vfsmnt+0x771/0x9d0 [ 147.949625] ? mnt_free_id.isra.27+0x60/0x60 [ 147.954034] ? kasan_check_read+0x11/0x20 [ 147.958175] ? graph_lock+0x170/0x170 [ 147.961968] ? cap_capable+0x1f9/0x260 [ 147.965856] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 147.971386] ? security_capable+0x99/0xc0 [ 147.975536] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 147.981069] ? ns_capable_common+0x13f/0x170 [ 147.985481] ? get_anon_bdev+0x2f0/0x2f0 [ 147.989538] sget+0x10b/0x150 [ 147.992635] ? test_bdev_super+0x50/0x50 [ 147.996702] ? fuse_ctl_add_conn+0x280/0x280 [ 148.001111] mount_single+0x3a/0x170 [ 148.004827] fuse_ctl_mount+0x2c/0x40 [ 148.008632] mount_fs+0xae/0x328 [ 148.011988] ? mpi_free.cold.1+0x19/0x19 [ 148.016049] vfs_kern_mount.part.34+0xd4/0x4d0 [ 148.020625] ? may_umount+0xb0/0xb0 [ 148.024244] ? _raw_read_unlock+0x22/0x30 [ 148.028383] ? __get_fs_type+0x97/0xc0 [ 148.032267] do_mount+0x564/0x3070 [ 148.035801] ? lock_downgrade+0x8e0/0x8e0 [ 148.039957] ? copy_mount_string+0x40/0x40 [ 148.044199] ? check_same_owner+0x320/0x320 [ 148.048515] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 148.053534] ? __check_object_size+0x95/0x5d9 [ 148.058036] ? __might_sleep+0x95/0x190 [ 148.062015] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 148.067553] ? _copy_from_user+0xdf/0x150 [ 148.071700] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 148.077232] ? copy_mount_options+0x285/0x380 [ 148.081729] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 148.087260] ksys_mount+0x12d/0x140 [ 148.090882] __x64_sys_mount+0xbe/0x150 [ 148.094854] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 148.099867] do_syscall_64+0x1b1/0x800 [ 148.103764] ? finish_task_switch+0x1ca/0x810 [ 148.108255] ? syscall_return_slowpath+0x5c0/0x5c0 [ 148.113178] ? syscall_return_slowpath+0x30f/0x5c0 [ 148.118118] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 148.123477] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 148.128321] entry_SYSCALL_64_after_hwframe+0x49/0xbe 2018/04/30 22:51:20 executing program 7: r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_SET_DEBUG(r0, 0x227e, &(0x7f0000000100)=0x1) ioctl$SG_IO(r0, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x21, 0x0, @buffer={0x0, 0x47, &(0x7f0000000040)=""/71}, &(0x7f00000000c0)="7f2911fa31fa4f4b2f5687dbd490bd09e476cb6b139f5686379495446bcea9c334", &(0x7f00000002c0)=""/182, 0x0, 0x0, 0x0, &(0x7f0000000380)}) [ 148.133507] RIP: 0033:0x455979 [ 148.136682] RSP: 002b:00007f1fa3db4c68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 148.144384] RAX: ffffffffffffffda RBX: 00007f1fa3db56d4 RCX: 0000000000455979 [ 148.151641] RDX: 0000000020000100 RSI: 0000000020000080 RDI: 0000000020000040 [ 148.158901] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 148.166168] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000014 [ 148.173429] R13: 0000000000000440 R14: 00000000006fa6a0 R15: 0000000000000010 2018/04/30 22:51:21 executing program 1 (fault-call:2 fault-nth:9): mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0xc003, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:51:21 executing program 2: perf_event_open(&(0x7f000025c000)={0x0, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$evdev(&(0x7f0000072fee)='/dev/input/event#\x00', 0x0, 0x2) read(r0, &(0x7f000006b000)=""/24, 0x18) write$evdev(r0, &(0x7f0000057fa0)=[{{}, 0x0, 0x100000001}, {}], 0x30) 2018/04/30 22:51:21 executing program 0: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:51:21 executing program 3: syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x0, 0x0) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x2000000}, 0x1c) syz_init_net_socket$nfc_llcp(0x27, 0x0, 0x1) 2018/04/30 22:51:21 executing program 5: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)="2e2f66696c6530ff", &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:51:21 executing program 7: r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_SET_DEBUG(r0, 0x227e, &(0x7f0000000100)=0x1) ioctl$SG_IO(r0, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x21, 0x0, @buffer={0x0, 0x47, &(0x7f0000000040)=""/71}, &(0x7f00000000c0)="7f2911fa31fa4f4b2f5687dbd490bd09e476cb6b139f5686379495446bcea9c334", &(0x7f00000002c0)=""/182, 0x0, 0x0, 0x0, &(0x7f0000000380)}) 2018/04/30 22:51:21 executing program 4: r0 = syz_open_dev$evdev(&(0x7f0000072fee)='/dev/input/event#\x00', 0x0, 0x2) read(r0, &(0x7f000006b000)=""/24, 0x18) write$evdev(r0, &(0x7f0000057fa0)=[{{}, 0x0, 0x100000001}, {}], 0x30) 2018/04/30 22:51:21 executing program 6 (fault-call:2 fault-nth:17): mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x1, 0x0) [ 148.336867] device bridge_slave_1 left promiscuous mode [ 148.342601] bridge0: port 2(bridge_slave_1) entered disabled state [ 148.359144] FAULT_INJECTION: forcing a failure. [ 148.359144] name failslab, interval 1, probability 0, space 0, times 0 [ 148.370482] CPU: 1 PID: 11669 Comm: syz-executor6 Not tainted 4.17.0-rc3+ #26 [ 148.377770] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 148.387136] Call Trace: [ 148.389749] dump_stack+0x1b9/0x294 [ 148.393399] ? dump_stack_print_info.cold.2+0x52/0x52 [ 148.398621] ? __save_stack_trace+0x7e/0xd0 [ 148.402972] should_fail.cold.4+0xa/0x1a [ 148.407057] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 148.412185] ? save_stack+0x43/0xd0 [ 148.415839] ? kasan_kmalloc+0xc4/0xe0 [ 148.419745] ? kmem_cache_alloc_trace+0x152/0x780 [ 148.424617] ? __memcg_init_list_lru_node+0x17d/0x2c0 [ 148.424946] IPVS: ftp: loaded support on port[0] = 21 [ 148.429812] ? __list_lru_init+0x456/0x790 [ 148.429827] ? sget_userns+0x73a/0xf00 [ 148.429844] ? graph_lock+0x170/0x170 [ 148.429860] ? vfs_kern_mount.part.34+0xd4/0x4d0 [ 148.429873] ? do_mount+0x564/0x3070 [ 148.429885] ? ksys_mount+0x12d/0x140 [ 148.429897] ? __x64_sys_mount+0xbe/0x150 [ 148.429909] ? do_syscall_64+0x1b1/0x800 [ 148.429926] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 148.472784] ? find_held_lock+0x36/0x1c0 [ 148.476856] ? __lock_is_held+0xb5/0x140 [ 148.480925] ? check_same_owner+0x320/0x320 [ 148.485245] ? rcu_note_context_switch+0x710/0x710 [ 148.490188] __should_failslab+0x124/0x180 [ 148.494425] should_failslab+0x9/0x14 [ 148.498218] kmem_cache_alloc_trace+0x2cb/0x780 [ 148.502896] __memcg_init_list_lru_node+0x17d/0x2c0 [ 148.507922] ? kvfree_rcu+0x20/0x20 [ 148.511543] ? __kmalloc_node+0x47/0x70 [ 148.515523] __list_lru_init+0x456/0x790 [ 148.519591] ? list_lru_destroy+0x4c0/0x4c0 [ 148.523904] ? mark_held_locks+0xc9/0x160 [ 148.528050] ? __raw_spin_lock_init+0x1c/0x100 [ 148.532626] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 148.537633] ? __lockdep_init_map+0x105/0x590 [ 148.542125] ? lockdep_init_map+0x9/0x10 [ 148.546182] sget_userns+0x73a/0xf00 [ 148.549895] ? get_anon_bdev+0x2f0/0x2f0 [ 148.553952] ? test_bdev_super+0x50/0x50 [ 148.558019] ? destroy_unused_super.part.11+0x110/0x110 [ 148.563387] ? alloc_vfsmnt+0x771/0x9d0 [ 148.567352] ? mnt_free_id.isra.27+0x60/0x60 [ 148.571941] ? kasan_check_read+0x11/0x20 [ 148.576081] ? graph_lock+0x170/0x170 [ 148.579873] ? cap_capable+0x1f9/0x260 [ 148.583761] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 148.589293] ? security_capable+0x99/0xc0 [ 148.593449] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 148.598991] ? ns_capable_common+0x13f/0x170 [ 148.603403] ? get_anon_bdev+0x2f0/0x2f0 [ 148.607454] sget+0x10b/0x150 [ 148.610563] ? test_bdev_super+0x50/0x50 [ 148.614621] ? fuse_ctl_add_conn+0x280/0x280 [ 148.619029] mount_single+0x3a/0x170 [ 148.622747] fuse_ctl_mount+0x2c/0x40 [ 148.626541] mount_fs+0xae/0x328 [ 148.629899] ? mpi_free.cold.1+0x19/0x19 [ 148.633958] vfs_kern_mount.part.34+0xd4/0x4d0 [ 148.638537] ? may_umount+0xb0/0xb0 [ 148.642156] ? _raw_read_unlock+0x22/0x30 [ 148.646296] ? __get_fs_type+0x97/0xc0 [ 148.650180] do_mount+0x564/0x3070 [ 148.653714] ? lock_downgrade+0x8e0/0x8e0 [ 148.657858] ? copy_mount_string+0x40/0x40 [ 148.662086] ? check_same_owner+0x320/0x320 [ 148.666401] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 148.671411] ? __check_object_size+0x95/0x5d9 [ 148.675916] ? __might_sleep+0x95/0x190 [ 148.679888] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 148.685425] ? _copy_from_user+0xdf/0x150 [ 148.689570] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 148.695121] ? copy_mount_options+0x285/0x380 [ 148.699610] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 148.705141] ksys_mount+0x12d/0x140 [ 148.708782] __x64_sys_mount+0xbe/0x150 [ 148.712746] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 148.717757] do_syscall_64+0x1b1/0x800 [ 148.721635] ? finish_task_switch+0x1ca/0x810 [ 148.726121] ? syscall_return_slowpath+0x5c0/0x5c0 [ 148.731046] ? syscall_return_slowpath+0x30f/0x5c0 [ 148.735971] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 148.741330] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 148.746171] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 148.751361] RIP: 0033:0x455979 [ 148.754537] RSP: 002b:00007f1fa3db4c68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 148.762237] RAX: ffffffffffffffda RBX: 00007f1fa3db56d4 RCX: 0000000000455979 [ 148.769498] RDX: 0000000020000100 RSI: 0000000020000080 RDI: 0000000020000040 [ 148.776765] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 2018/04/30 22:51:21 executing program 5: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:51:21 executing program 0: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)="2e2f66696c653004", &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:51:22 executing program 7: r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r0, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x21, 0x0, @buffer={0x0, 0x47, &(0x7f0000000040)=""/71}, &(0x7f00000000c0)="7f2911fa31fa4f4b2f5687dbd490bd09e476cb6b139f5686379495446bcea9c334", &(0x7f00000002c0)=""/182, 0x0, 0x0, 0x0, &(0x7f0000000380)}) [ 148.784026] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000014 [ 148.791288] R13: 0000000000000440 R14: 00000000006fa6a0 R15: 0000000000000011 [ 148.813641] device bridge_slave_0 left promiscuous mode [ 148.819501] bridge0: port 1(bridge_slave_0) entered disabled state 2018/04/30 22:51:22 executing program 0: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:51:22 executing program 6 (fault-call:2 fault-nth:18): mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x1, 0x0) 2018/04/30 22:51:22 executing program 5: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:51:22 executing program 3 (fault-call:4 fault-nth:0): syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x0, 0x0) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x2000000}, 0x1c) syz_init_net_socket$nfc_llcp(0x27, 0x0, 0x1) 2018/04/30 22:51:22 executing program 7: r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r0, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x21, 0x0, @buffer={0x0, 0x47, &(0x7f0000000040)=""/71}, &(0x7f00000000c0)="7f2911fa31fa4f4b2f5687dbd490bd09e476cb6b139f5686379495446bcea9c334", &(0x7f00000002c0)=""/182, 0x0, 0x0, 0x0, &(0x7f0000000380)}) [ 148.987878] team0 (unregistering): Port device team_slave_1 removed [ 149.023862] FAULT_INJECTION: forcing a failure. [ 149.023862] name failslab, interval 1, probability 0, space 0, times 0 [ 149.035237] CPU: 0 PID: 11695 Comm: syz-executor6 Not tainted 4.17.0-rc3+ #26 [ 149.042529] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 149.051895] Call Trace: [ 149.054501] dump_stack+0x1b9/0x294 [ 149.058153] ? dump_stack_print_info.cold.2+0x52/0x52 [ 149.063362] ? __save_stack_trace+0x7e/0xd0 [ 149.067710] should_fail.cold.4+0xa/0x1a [ 149.071800] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 149.076926] ? save_stack+0x43/0xd0 [ 149.080551] ? kasan_kmalloc+0xc4/0xe0 [ 149.084429] ? kmem_cache_alloc_trace+0x152/0x780 [ 149.089261] ? __memcg_init_list_lru_node+0x17d/0x2c0 [ 149.094485] ? __list_lru_init+0x456/0x790 [ 149.098711] ? sget_userns+0x73a/0xf00 [ 149.102596] ? graph_lock+0x170/0x170 [ 149.106403] ? vfs_kern_mount.part.34+0xd4/0x4d0 [ 149.111149] ? do_mount+0x564/0x3070 [ 149.114867] ? ksys_mount+0x12d/0x140 [ 149.118657] ? __x64_sys_mount+0xbe/0x150 [ 149.122797] ? do_syscall_64+0x1b1/0x800 [ 149.126853] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 149.132215] ? find_held_lock+0x36/0x1c0 [ 149.137169] ? __lock_is_held+0xb5/0x140 [ 149.141235] ? check_same_owner+0x320/0x320 [ 149.145549] ? rcu_note_context_switch+0x710/0x710 [ 149.150474] __should_failslab+0x124/0x180 [ 149.154704] should_failslab+0x9/0x14 [ 149.158501] kmem_cache_alloc_trace+0x2cb/0x780 [ 149.163161] ? __kmalloc_node+0x33/0x70 [ 149.167123] ? __kmalloc_node+0x33/0x70 [ 149.171092] ? rcu_read_lock_sched_held+0x108/0x120 [ 149.176122] __memcg_init_list_lru_node+0x17d/0x2c0 [ 149.181137] ? kvfree_rcu+0x20/0x20 [ 149.184777] ? __kmalloc_node+0x47/0x70 [ 149.188754] __list_lru_init+0x456/0x790 [ 149.192809] ? list_lru_destroy+0x4c0/0x4c0 [ 149.197121] ? mark_held_locks+0xc9/0x160 [ 149.201263] ? __raw_spin_lock_init+0x1c/0x100 [ 149.205839] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 149.210847] ? __lockdep_init_map+0x105/0x590 [ 149.215336] ? lockdep_init_map+0x9/0x10 [ 149.219391] sget_userns+0x73a/0xf00 [ 149.223098] ? get_anon_bdev+0x2f0/0x2f0 [ 149.227165] ? test_bdev_super+0x50/0x50 [ 149.231220] ? destroy_unused_super.part.11+0x110/0x110 [ 149.236671] ? alloc_vfsmnt+0x771/0x9d0 [ 149.240639] ? mnt_free_id.isra.27+0x60/0x60 [ 149.245064] ? kasan_check_read+0x11/0x20 [ 149.249207] ? graph_lock+0x170/0x170 [ 149.253011] ? cap_capable+0x1f9/0x260 [ 149.257076] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 149.262606] ? security_capable+0x99/0xc0 [ 149.266750] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 149.272300] ? ns_capable_common+0x13f/0x170 [ 149.276705] ? get_anon_bdev+0x2f0/0x2f0 [ 149.280757] sget+0x10b/0x150 [ 149.283855] ? test_bdev_super+0x50/0x50 [ 149.287911] ? fuse_ctl_add_conn+0x280/0x280 [ 149.292315] mount_single+0x3a/0x170 [ 149.296040] fuse_ctl_mount+0x2c/0x40 [ 149.299850] mount_fs+0xae/0x328 [ 149.303207] ? mpi_free.cold.1+0x19/0x19 [ 149.307266] vfs_kern_mount.part.34+0xd4/0x4d0 [ 149.311844] ? may_umount+0xb0/0xb0 [ 149.315462] ? _raw_read_unlock+0x22/0x30 [ 149.319599] ? __get_fs_type+0x97/0xc0 [ 149.323483] do_mount+0x564/0x3070 [ 149.327031] ? lock_downgrade+0x8e0/0x8e0 [ 149.331173] ? copy_mount_string+0x40/0x40 [ 149.335397] ? check_same_owner+0x320/0x320 [ 149.339713] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 149.344729] ? __check_object_size+0x95/0x5d9 [ 149.349228] ? __might_sleep+0x95/0x190 [ 149.353203] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 149.358738] ? _copy_from_user+0xdf/0x150 [ 149.362884] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 149.368416] ? copy_mount_options+0x285/0x380 [ 149.372914] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 149.378532] ksys_mount+0x12d/0x140 [ 149.382152] __x64_sys_mount+0xbe/0x150 [ 149.386137] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 149.391160] do_syscall_64+0x1b1/0x800 [ 149.395042] ? finish_task_switch+0x1ca/0x810 [ 149.399532] ? syscall_return_slowpath+0x5c0/0x5c0 [ 149.404453] ? syscall_return_slowpath+0x30f/0x5c0 [ 149.409392] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 149.414753] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 149.419601] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 149.424776] RIP: 0033:0x455979 [ 149.427954] RSP: 002b:00007f1fa3db4c68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 149.435658] RAX: ffffffffffffffda RBX: 00007f1fa3db56d4 RCX: 0000000000455979 [ 149.442926] RDX: 0000000020000100 RSI: 0000000020000080 RDI: 0000000020000040 [ 149.450189] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 149.457450] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000014 [ 149.464711] R13: 0000000000000440 R14: 00000000006fa6a0 R15: 0000000000000012 [ 149.522297] team0 (unregistering): Port device team_slave_0 removed [ 149.546495] bond0 (unregistering): Releasing backup interface bond_slave_1 [ 149.584447] bond0 (unregistering): Releasing backup interface bond_slave_0 [ 149.610410] bond0 (unregistering): Released all slaves [ 149.997805] bridge0: port 1(bridge_slave_0) entered blocking state [ 150.004283] bridge0: port 1(bridge_slave_0) entered disabled state [ 150.012099] device bridge_slave_0 entered promiscuous mode [ 150.049752] bridge0: port 2(bridge_slave_1) entered blocking state [ 150.056205] bridge0: port 2(bridge_slave_1) entered disabled state [ 150.064242] device bridge_slave_1 entered promiscuous mode [ 150.099743] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 150.137807] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 150.248974] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 150.288903] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 150.455684] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 150.463182] team0: Port device team_slave_0 added [ 150.498398] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 150.505898] team0: Port device team_slave_1 added [ 150.541973] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 150.580650] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 150.619514] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 150.658451] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 150.665635] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 150.680656] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 151.041173] bridge0: port 2(bridge_slave_1) entered blocking state [ 151.047565] bridge0: port 2(bridge_slave_1) entered forwarding state [ 151.054226] bridge0: port 1(bridge_slave_0) entered blocking state [ 151.060592] bridge0: port 1(bridge_slave_0) entered forwarding state [ 151.067883] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 151.647558] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 151.920601] 8021q: adding VLAN 0 to HW filter on device bond0 [ 152.000135] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 152.080436] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 152.086632] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 152.094321] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 152.170973] 8021q: adding VLAN 0 to HW filter on device team0 [ 152.640347] FAULT_INJECTION: forcing a failure. [ 152.640347] name failslab, interval 1, probability 0, space 0, times 0 [ 152.651686] CPU: 1 PID: 11962 Comm: syz-executor1 Not tainted 4.17.0-rc3+ #26 [ 152.658986] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 152.668344] Call Trace: [ 152.670929] dump_stack+0x1b9/0x294 [ 152.674551] ? dump_stack_print_info.cold.2+0x52/0x52 [ 152.679746] ? kernel_text_address+0x79/0xf0 [ 152.684166] ? __unwind_start+0x166/0x330 [ 152.688327] should_fail.cold.4+0xa/0x1a [ 152.692387] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 152.697489] ? graph_lock+0x170/0x170 [ 152.701282] ? save_stack+0x43/0xd0 [ 152.704918] ? kasan_kmalloc+0xc4/0xe0 [ 152.708804] ? __kmalloc+0x14e/0x760 [ 152.712504] ? __list_lru_init+0xdd/0x790 [ 152.716645] ? find_held_lock+0x36/0x1c0 [ 152.720704] ? __lock_is_held+0xb5/0x140 [ 152.724785] ? check_same_owner+0x320/0x320 [ 152.729099] ? rcu_note_context_switch+0x710/0x710 [ 152.734044] __should_failslab+0x124/0x180 [ 152.738316] should_failslab+0x9/0x14 [ 152.742113] kmem_cache_alloc_node_trace+0x26f/0x770 [ 152.747206] ? mark_held_locks+0xc9/0x160 [ 152.751355] ? __raw_spin_lock_init+0x1c/0x100 [ 152.755935] __kmalloc_node+0x33/0x70 [ 152.759741] kvmalloc_node+0x6b/0x100 [ 152.763531] __list_lru_init+0x559/0x790 [ 152.767583] ? list_lru_destroy+0x4c0/0x4c0 [ 152.771909] ? mark_held_locks+0xc9/0x160 [ 152.776065] ? __raw_spin_lock_init+0x1c/0x100 [ 152.780641] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 152.785646] ? __lockdep_init_map+0x105/0x590 [ 152.790134] ? lockdep_init_map+0x9/0x10 [ 152.794188] sget_userns+0x73a/0xf00 [ 152.797894] ? get_anon_bdev+0x2f0/0x2f0 [ 152.802734] ? test_bdev_super+0x50/0x50 [ 152.806787] ? destroy_unused_super.part.11+0x110/0x110 [ 152.812158] ? alloc_vfsmnt+0x771/0x9d0 [ 152.816132] ? mnt_free_id.isra.27+0x60/0x60 [ 152.820542] ? kasan_check_read+0x11/0x20 [ 152.824689] ? graph_lock+0x170/0x170 [ 152.828484] ? cap_capable+0x1f9/0x260 [ 152.832373] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 152.837901] ? security_capable+0x99/0xc0 [ 152.842052] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 152.847593] ? ns_capable_common+0x13f/0x170 [ 152.852012] ? get_anon_bdev+0x2f0/0x2f0 [ 152.856079] sget+0x10b/0x150 [ 152.859213] ? test_bdev_super+0x50/0x50 [ 152.863279] ? fuse_ctl_add_conn+0x280/0x280 [ 152.867710] mount_single+0x3a/0x170 [ 152.871421] fuse_ctl_mount+0x2c/0x40 [ 152.875214] mount_fs+0xae/0x328 [ 152.878570] ? mpi_free.cold.1+0x19/0x19 [ 152.882636] vfs_kern_mount.part.34+0xd4/0x4d0 [ 152.887217] ? may_umount+0xb0/0xb0 [ 152.890856] ? _raw_read_unlock+0x22/0x30 [ 152.895009] ? __get_fs_type+0x97/0xc0 [ 152.898897] do_mount+0x564/0x3070 [ 152.902428] ? lock_downgrade+0x8e0/0x8e0 [ 152.906575] ? copy_mount_string+0x40/0x40 [ 152.910796] ? check_same_owner+0x320/0x320 [ 152.915110] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 152.920124] ? __check_object_size+0x95/0x5d9 [ 152.924626] ? __might_sleep+0x95/0x190 [ 152.928614] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 152.934148] ? _copy_from_user+0xdf/0x150 [ 152.938288] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 152.943903] ? copy_mount_options+0x285/0x380 [ 152.948386] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 152.953915] ksys_mount+0x12d/0x140 [ 152.957528] __x64_sys_mount+0xbe/0x150 [ 152.961492] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 152.966506] do_syscall_64+0x1b1/0x800 [ 152.970385] ? syscall_return_slowpath+0x5c0/0x5c0 [ 152.976113] ? syscall_return_slowpath+0x30f/0x5c0 [ 152.981050] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 152.986405] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 152.991255] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 152.996440] RIP: 0033:0x455979 [ 152.999626] RSP: 002b:00007fb3e0fa0c68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 153.007325] RAX: ffffffffffffffda RBX: 00007fb3e0fa16d4 RCX: 0000000000455979 [ 153.014586] RDX: 0000000020000100 RSI: 0000000020000080 RDI: 0000000020000040 [ 153.021846] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 153.029104] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000014 2018/04/30 22:51:26 executing program 1 (fault-call:2 fault-nth:10): mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0xc003, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:51:26 executing program 2: perf_event_open(&(0x7f000025c000)={0x0, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$evdev(&(0x7f0000072fee)='/dev/input/event#\x00', 0x0, 0x2) read(r0, &(0x7f000006b000)=""/24, 0x18) write$evdev(r0, &(0x7f0000057fa0)=[{{}, 0x0, 0x100000001}, {}], 0x30) 2018/04/30 22:51:26 executing program 7: r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r0, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x21, 0x0, @buffer={0x0, 0x47, &(0x7f0000000040)=""/71}, &(0x7f00000000c0)="7f2911fa31fa4f4b2f5687dbd490bd09e476cb6b139f5686379495446bcea9c334", &(0x7f00000002c0)=""/182, 0x0, 0x0, 0x0, &(0x7f0000000380)}) 2018/04/30 22:51:26 executing program 4: r0 = syz_open_dev$evdev(&(0x7f0000072fee)='/dev/input/event#\x00', 0x0, 0x2) read(r0, &(0x7f000006b000)=""/24, 0x18) write$evdev(r0, &(0x7f0000057fa0)=[{{}, 0x0, 0x100000001}, {}], 0x30) 2018/04/30 22:51:26 executing program 0: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:51:26 executing program 6 (fault-call:2 fault-nth:19): mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x1, 0x0) 2018/04/30 22:51:26 executing program 3: syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x0, 0x0) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x2000000}, 0x1c) syz_init_net_socket$nfc_llcp(0x27, 0x0, 0x1) 2018/04/30 22:51:26 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x200) r2 = syz_open_dev$dspn(&(0x7f0000000040)='/dev/dsp#\x00', 0x0, 0x80) recvmsg$netrom(r2, &(0x7f0000001280)={&(0x7f0000000080)=@full={{0x3, {"28cd9a3a4378cd"}}, [{"d8138eac31ca71"}, {"f6b0c6902683d0"}, {"d0ac73fcf305d3"}, {"726c0a1092ab32"}, {"f64f800f453193"}, {"5148ed91802f8c"}, {"5331888cba8161"}, {"e5482253d559a1"}]}, 0x48, &(0x7f00000011c0)=[{&(0x7f0000000100)="88e238dc3e4db0ee04680bf601dcff6c9fd36ec4ca931ea26cd352d9e829e2222be89aa7d4e010fe4095908aa8e39f68198d10df96d941997bfd16bf6fb59f2a4814650aded0b9d4e54a15f78f13103f9d2cd582a95ea2359db1c51931a4fab0a97fec61aa199cf1bf634f95752d58e3dc5ad33c5a59a95031c71bbf6fa4fb2d03f915c7ed3904aae2e7579199374a6be3", 0x91}, {&(0x7f00000001c0)="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", 0x1000}], 0x2, &(0x7f0000001200)=[{0x70, 0x116, 0x7fff, "e2c7598c338322b1f469ae84da3c1aa0644505f589470bda964419febc328a1dcf98d00bcef15977993637f6c1acd38a2a7b383ab7bdcc55618995c0fe86c2da6ae44b8c9e8b0def4fcce77f88be77fa8b674145d2c4a0b540806142e70dc6"}], 0x70, 0x40080c0}, 0x42) [ 153.036365] R13: 0000000000000440 R14: 00000000006fa6a0 R15: 0000000000000009 [ 153.090630] FAULT_INJECTION: forcing a failure. [ 153.090630] name failslab, interval 1, probability 0, space 0, times 0 [ 153.101970] CPU: 1 PID: 11976 Comm: syz-executor6 Not tainted 4.17.0-rc3+ #26 [ 153.109279] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 153.118765] Call Trace: [ 153.121363] dump_stack+0x1b9/0x294 [ 153.125011] ? dump_stack_print_info.cold.2+0x52/0x52 [ 153.130210] ? kernel_text_address+0x79/0xf0 [ 153.134619] ? __unwind_start+0x166/0x330 [ 153.138797] should_fail.cold.4+0xa/0x1a [ 153.142858] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 153.147956] ? graph_lock+0x170/0x170 [ 153.151750] ? save_stack+0x43/0xd0 [ 153.155365] ? kasan_kmalloc+0xc4/0xe0 [ 153.159265] ? __kmalloc+0x14e/0x760 [ 153.162972] ? __list_lru_init+0xdd/0x790 [ 153.167112] ? find_held_lock+0x36/0x1c0 [ 153.171176] ? __lock_is_held+0xb5/0x140 [ 153.175234] ? check_same_owner+0x320/0x320 [ 153.179551] ? rcu_note_context_switch+0x710/0x710 [ 153.184486] __should_failslab+0x124/0x180 [ 153.188717] should_failslab+0x9/0x14 [ 153.192508] kmem_cache_alloc_node_trace+0x26f/0x770 [ 153.197603] ? mark_held_locks+0xc9/0x160 [ 153.201741] ? __raw_spin_lock_init+0x1c/0x100 [ 153.206325] __kmalloc_node+0x33/0x70 [ 153.210134] kvmalloc_node+0x6b/0x100 [ 153.213932] __list_lru_init+0x559/0x790 [ 153.217987] ? list_lru_destroy+0x4c0/0x4c0 [ 153.222302] ? mark_held_locks+0xc9/0x160 [ 153.226450] ? __raw_spin_lock_init+0x1c/0x100 [ 153.231030] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 153.236044] ? lockdep_init_map+0x9/0x10 [ 153.240100] sget_userns+0x767/0xf00 [ 153.243808] ? get_anon_bdev+0x2f0/0x2f0 [ 153.247870] ? test_bdev_super+0x50/0x50 [ 153.251934] ? destroy_unused_super.part.11+0x110/0x110 [ 153.257292] ? alloc_vfsmnt+0x771/0x9d0 [ 153.261273] ? mnt_free_id.isra.27+0x60/0x60 [ 153.265676] ? kasan_check_read+0x11/0x20 [ 153.269813] ? graph_lock+0x170/0x170 [ 153.273616] ? cap_capable+0x1f9/0x260 [ 153.277499] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 153.283039] ? security_capable+0x99/0xc0 [ 153.287190] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 153.292744] ? ns_capable_common+0x13f/0x170 [ 153.297143] ? get_anon_bdev+0x2f0/0x2f0 [ 153.301287] sget+0x10b/0x150 [ 153.304387] ? test_bdev_super+0x50/0x50 [ 153.308437] ? fuse_ctl_add_conn+0x280/0x280 [ 153.312851] mount_single+0x3a/0x170 [ 153.316557] fuse_ctl_mount+0x2c/0x40 [ 153.320354] mount_fs+0xae/0x328 [ 153.323742] ? mpi_free.cold.1+0x19/0x19 [ 153.327794] vfs_kern_mount.part.34+0xd4/0x4d0 [ 153.332365] ? may_umount+0xb0/0xb0 [ 153.335992] ? _raw_read_unlock+0x22/0x30 [ 153.340135] ? __get_fs_type+0x97/0xc0 [ 153.344108] do_mount+0x564/0x3070 [ 153.347635] ? lock_downgrade+0x8e0/0x8e0 [ 153.351781] ? copy_mount_string+0x40/0x40 [ 153.356015] ? check_same_owner+0x320/0x320 [ 153.360331] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 153.365344] ? __check_object_size+0x95/0x5d9 [ 153.369837] ? __might_sleep+0x95/0x190 [ 153.373806] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 153.379354] ? _copy_from_user+0xdf/0x150 [ 153.383494] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 153.389027] ? copy_mount_options+0x285/0x380 [ 153.393523] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 153.399051] ksys_mount+0x12d/0x140 [ 153.402844] __x64_sys_mount+0xbe/0x150 [ 153.406805] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 153.411827] do_syscall_64+0x1b1/0x800 [ 153.415713] ? finish_task_switch+0x1ca/0x810 [ 153.420201] ? syscall_return_slowpath+0x5c0/0x5c0 [ 153.425122] ? syscall_return_slowpath+0x30f/0x5c0 [ 153.430044] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 153.435401] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 153.440237] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 153.445420] RIP: 0033:0x455979 [ 153.448596] RSP: 002b:00007f1fa3db4c68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 153.456295] RAX: ffffffffffffffda RBX: 00007f1fa3db56d4 RCX: 0000000000455979 [ 153.463558] RDX: 0000000020000100 RSI: 0000000020000080 RDI: 0000000020000040 [ 153.470823] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 153.478084] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000014 [ 153.485348] R13: 0000000000000440 R14: 00000000006fa6a0 R15: 0000000000000013 2018/04/30 22:51:26 executing program 0: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:51:26 executing program 7: ioctl$SG_SET_DEBUG(0xffffffffffffffff, 0x227e, &(0x7f0000000100)=0x1) ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x21, 0x0, @buffer={0x0, 0x47, &(0x7f0000000040)=""/71}, &(0x7f00000000c0)="7f2911fa31fa4f4b2f5687dbd490bd09e476cb6b139f5686379495446bcea9c334", &(0x7f00000002c0)=""/182, 0x0, 0x0, 0x0, &(0x7f0000000380)}) 2018/04/30 22:51:26 executing program 0: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:51:26 executing program 6 (fault-call:2 fault-nth:20): mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x1, 0x0) 2018/04/30 22:51:26 executing program 3: syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x0, 0x0) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r0, &(0x7f00000000c0)={0x2, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x2000000}, 0x1c) syz_init_net_socket$nfc_llcp(0x27, 0x0, 0x1) 2018/04/30 22:51:26 executing program 5: r0 = socket$vsock_stream(0x28, 0x1, 0x0) socket$netlink(0x10, 0x3, 0x0) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$vsock_stream(r0, &(0x7f00000000c0)={0x28, 0x0, 0x0, @host=0x2}, 0x10) pipe(&(0x7f0000000040)={0xffffffffffffffff}) ioctl$sock_netrom_SIOCGSTAMP(r1, 0x8906, &(0x7f0000000080)) 2018/04/30 22:51:26 executing program 1 (fault-call:2 fault-nth:11): mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0xc003, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:51:26 executing program 0: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:51:26 executing program 7: ioctl$SG_SET_DEBUG(0xffffffffffffffff, 0x227e, &(0x7f0000000100)=0x1) ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x21, 0x0, @buffer={0x0, 0x47, &(0x7f0000000040)=""/71}, &(0x7f00000000c0)="7f2911fa31fa4f4b2f5687dbd490bd09e476cb6b139f5686379495446bcea9c334", &(0x7f00000002c0)=""/182, 0x0, 0x0, 0x0, &(0x7f0000000380)}) [ 153.779500] FAULT_INJECTION: forcing a failure. [ 153.779500] name failslab, interval 1, probability 0, space 0, times 0 [ 153.790835] CPU: 1 PID: 12004 Comm: syz-executor6 Not tainted 4.17.0-rc3+ #26 [ 153.798115] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 153.807482] Call Trace: [ 153.810093] dump_stack+0x1b9/0x294 [ 153.813768] ? dump_stack_print_info.cold.2+0x52/0x52 [ 153.819007] should_fail.cold.4+0xa/0x1a [ 153.823099] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 153.828229] ? zap_class+0x720/0x720 [ 153.831973] ? print_usage_bug+0xc0/0xc0 [ 153.836059] ? graph_lock+0x170/0x170 [ 153.839888] ? lock_downgrade+0x8e0/0x8e0 [ 153.844064] ? find_held_lock+0x36/0x1c0 [ 153.848239] ? __lock_is_held+0xb5/0x140 [ 153.852350] ? check_same_owner+0x320/0x320 [ 153.856691] ? __might_sleep+0x95/0x190 [ 153.860689] ? rcu_note_context_switch+0x710/0x710 [ 153.865644] __should_failslab+0x124/0x180 [ 153.869901] should_failslab+0x9/0x14 [ 153.873719] __kmalloc+0x2c8/0x760 [ 153.877275] ? __kmalloc_node+0x47/0x70 [ 153.881274] ? __list_lru_init+0xdd/0x790 [ 153.881294] __list_lru_init+0xdd/0x790 [ 153.881316] ? list_lru_destroy+0x4c0/0x4c0 [ 153.881334] ? mark_held_locks+0xc9/0x160 [ 153.881352] ? __raw_spin_lock_init+0x1c/0x100 [ 153.881370] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 153.881389] ? lockdep_init_map+0x9/0x10 [ 153.881407] sget_userns+0x767/0xf00 [ 153.881421] ? get_anon_bdev+0x2f0/0x2f0 [ 153.881440] ? test_bdev_super+0x50/0x50 [ 153.881457] ? destroy_unused_super.part.11+0x110/0x110 [ 153.881479] ? alloc_vfsmnt+0x771/0x9d0 [ 153.881494] ? mnt_free_id.isra.27+0x60/0x60 [ 153.881512] ? kasan_check_read+0x11/0x20 [ 153.881526] ? graph_lock+0x170/0x170 [ 153.881542] ? cap_capable+0x1f9/0x260 [ 153.881565] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 153.881579] ? security_capable+0x99/0xc0 [ 153.881600] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 153.881614] ? ns_capable_common+0x13f/0x170 [ 153.881631] ? get_anon_bdev+0x2f0/0x2f0 [ 153.881645] sget+0x10b/0x150 [ 153.881659] ? test_bdev_super+0x50/0x50 [ 153.881677] ? fuse_ctl_add_conn+0x280/0x280 [ 153.881692] mount_single+0x3a/0x170 [ 153.881708] fuse_ctl_mount+0x2c/0x40 [ 153.881723] mount_fs+0xae/0x328 [ 153.881737] ? mpi_free.cold.1+0x19/0x19 [ 153.881756] vfs_kern_mount.part.34+0xd4/0x4d0 [ 153.881779] ? may_umount+0xb0/0xb0 [ 153.881797] ? _raw_read_unlock+0x22/0x30 [ 153.881811] ? __get_fs_type+0x97/0xc0 [ 153.881832] do_mount+0x564/0x3070 [ 153.881846] ? lock_downgrade+0x8e0/0x8e0 [ 153.881863] ? copy_mount_string+0x40/0x40 [ 153.881878] ? check_same_owner+0x320/0x320 [ 153.881892] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 153.881907] ? __check_object_size+0x95/0x5d9 [ 153.881927] ? __might_sleep+0x95/0x190 [ 153.881948] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 153.881963] ? _copy_from_user+0xdf/0x150 [ 153.881981] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 153.881995] ? copy_mount_options+0x285/0x380 [ 153.882010] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 153.882027] ksys_mount+0x12d/0x140 [ 153.882045] __x64_sys_mount+0xbe/0x150 [ 153.882058] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 153.882075] do_syscall_64+0x1b1/0x800 [ 153.882089] ? finish_task_switch+0x1ca/0x810 [ 153.882104] ? syscall_return_slowpath+0x5c0/0x5c0 [ 153.882122] ? syscall_return_slowpath+0x30f/0x5c0 [ 153.882140] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 153.882159] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 153.882179] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 153.882190] RIP: 0033:0x455979 [ 153.882198] RSP: 002b:00007f1fa3db4c68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 153.882213] RAX: ffffffffffffffda RBX: 00007f1fa3db56d4 RCX: 0000000000455979 [ 153.882222] RDX: 0000000020000100 RSI: 0000000020000080 RDI: 0000000020000040 [ 153.882230] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 153.882239] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000014 [ 153.882247] R13: 0000000000000440 R14: 00000000006fa6a0 R15: 0000000000000014 [ 153.991580] IPVS: ftp: loaded support on port[0] = 21 [ 154.306370] device bridge_slave_1 left promiscuous mode [ 154.311979] bridge0: port 2(bridge_slave_1) entered disabled state [ 154.332842] device bridge_slave_0 left promiscuous mode [ 154.338451] bridge0: port 1(bridge_slave_0) entered disabled state [ 154.376364] team0 (unregistering): Port device team_slave_1 removed [ 154.388102] team0 (unregistering): Port device team_slave_0 removed [ 154.398676] bond0 (unregistering): Releasing backup interface bond_slave_1 [ 154.415453] bond0 (unregistering): Releasing backup interface bond_slave_0 [ 154.443541] bond0 (unregistering): Released all slaves [ 154.908193] bridge0: port 1(bridge_slave_0) entered blocking state [ 154.914638] bridge0: port 1(bridge_slave_0) entered disabled state [ 154.921987] device bridge_slave_0 entered promiscuous mode [ 154.959216] bridge0: port 2(bridge_slave_1) entered blocking state [ 154.965646] bridge0: port 2(bridge_slave_1) entered disabled state [ 154.974274] device bridge_slave_1 entered promiscuous mode [ 155.010515] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 155.047908] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 155.156884] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 155.196431] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 155.368805] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 155.376225] team0: Port device team_slave_0 added [ 155.411861] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 155.419349] team0: Port device team_slave_1 added [ 155.455098] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 155.493822] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 155.525814] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 155.564890] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 155.572160] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 155.587329] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 155.850973] bridge0: port 2(bridge_slave_1) entered blocking state [ 155.857376] bridge0: port 2(bridge_slave_1) entered forwarding state [ 155.864062] bridge0: port 1(bridge_slave_0) entered blocking state [ 155.870431] bridge0: port 1(bridge_slave_0) entered forwarding state [ 155.877800] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 156.575131] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 156.697730] 8021q: adding VLAN 0 to HW filter on device bond0 [ 156.778514] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 156.859726] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 156.865947] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 156.873737] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 156.948738] 8021q: adding VLAN 0 to HW filter on device team0 [ 157.421966] FAULT_INJECTION: forcing a failure. [ 157.421966] name failslab, interval 1, probability 0, space 0, times 0 [ 157.433316] CPU: 0 PID: 12276 Comm: syz-executor1 Not tainted 4.17.0-rc3+ #26 [ 157.440597] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 157.449938] Call Trace: [ 157.452535] dump_stack+0x1b9/0x294 [ 157.456159] ? dump_stack_print_info.cold.2+0x52/0x52 [ 157.461343] ? __save_stack_trace+0x7e/0xd0 [ 157.465659] should_fail.cold.4+0xa/0x1a [ 157.469712] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 157.474813] ? save_stack+0x43/0xd0 [ 157.478427] ? kasan_kmalloc+0xc4/0xe0 [ 157.482303] ? kmem_cache_alloc_trace+0x152/0x780 [ 157.487146] ? __memcg_init_list_lru_node+0x17d/0x2c0 [ 157.492321] ? __list_lru_init+0x456/0x790 [ 157.496542] ? sget_userns+0x73a/0xf00 [ 157.500417] ? graph_lock+0x170/0x170 [ 157.504201] ? vfs_kern_mount.part.34+0xd4/0x4d0 [ 157.508946] ? do_mount+0x564/0x3070 [ 157.512644] ? ksys_mount+0x12d/0x140 [ 157.516437] ? __x64_sys_mount+0xbe/0x150 [ 157.520575] ? do_syscall_64+0x1b1/0x800 [ 157.524623] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 157.529978] ? find_held_lock+0x36/0x1c0 [ 157.534044] ? __lock_is_held+0xb5/0x140 [ 157.538129] ? check_same_owner+0x320/0x320 [ 157.542459] ? rcu_note_context_switch+0x710/0x710 [ 157.547565] __should_failslab+0x124/0x180 [ 157.551802] should_failslab+0x9/0x14 [ 157.555594] kmem_cache_alloc_trace+0x2cb/0x780 [ 157.560260] ? __kmalloc_node+0x33/0x70 [ 157.564225] ? __kmalloc_node+0x33/0x70 [ 157.568194] ? rcu_read_lock_sched_held+0x108/0x120 [ 157.573204] __memcg_init_list_lru_node+0x17d/0x2c0 [ 157.578226] ? kvfree_rcu+0x20/0x20 [ 157.581851] ? __kmalloc_node+0x47/0x70 [ 157.585814] __list_lru_init+0x456/0x790 [ 157.589863] ? list_lru_destroy+0x4c0/0x4c0 [ 157.594172] ? mark_held_locks+0xc9/0x160 [ 157.598338] ? __raw_spin_lock_init+0x1c/0x100 [ 157.602953] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 157.607966] ? __lockdep_init_map+0x105/0x590 [ 157.612453] ? lockdep_init_map+0x9/0x10 [ 157.616591] sget_userns+0x73a/0xf00 [ 157.620300] ? get_anon_bdev+0x2f0/0x2f0 [ 157.624347] ? test_bdev_super+0x50/0x50 [ 157.628411] ? destroy_unused_super.part.11+0x110/0x110 [ 157.633768] ? alloc_vfsmnt+0x771/0x9d0 [ 157.637727] ? mnt_free_id.isra.27+0x60/0x60 [ 157.642126] ? kasan_check_read+0x11/0x20 [ 157.646272] ? graph_lock+0x170/0x170 [ 157.650067] ? cap_capable+0x1f9/0x260 [ 157.653951] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 157.659484] ? security_capable+0x99/0xc0 [ 157.663629] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 157.669156] ? ns_capable_common+0x13f/0x170 [ 157.673576] ? get_anon_bdev+0x2f0/0x2f0 [ 157.677629] sget+0x10b/0x150 [ 157.680727] ? test_bdev_super+0x50/0x50 [ 157.684782] ? fuse_ctl_add_conn+0x280/0x280 [ 157.689204] mount_single+0x3a/0x170 [ 157.692912] fuse_ctl_mount+0x2c/0x40 [ 157.696713] mount_fs+0xae/0x328 [ 157.700073] ? mpi_free.cold.1+0x19/0x19 [ 157.704136] vfs_kern_mount.part.34+0xd4/0x4d0 [ 157.708725] ? may_umount+0xb0/0xb0 [ 157.712341] ? _raw_read_unlock+0x22/0x30 [ 157.716476] ? __get_fs_type+0x97/0xc0 [ 157.720350] do_mount+0x564/0x3070 [ 157.723878] ? lock_downgrade+0x8e0/0x8e0 [ 157.728032] ? copy_mount_string+0x40/0x40 [ 157.732273] ? check_same_owner+0x320/0x320 [ 157.736595] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 157.741609] ? __check_object_size+0x95/0x5d9 [ 157.746097] ? __might_sleep+0x95/0x190 [ 157.750074] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 157.755605] ? _copy_from_user+0xdf/0x150 [ 157.759744] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 157.765292] ? copy_mount_options+0x285/0x380 [ 157.769780] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 157.775311] ksys_mount+0x12d/0x140 [ 157.778936] __x64_sys_mount+0xbe/0x150 [ 157.782910] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 157.787946] do_syscall_64+0x1b1/0x800 [ 157.791840] ? finish_task_switch+0x1ca/0x810 [ 157.796329] ? syscall_return_slowpath+0x5c0/0x5c0 [ 157.801247] ? syscall_return_slowpath+0x30f/0x5c0 [ 157.806177] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 157.811534] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 157.816370] entry_SYSCALL_64_after_hwframe+0x49/0xbe 2018/04/30 22:51:31 executing program 2: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$evdev(&(0x7f0000072fee)='/dev/input/event#\x00', 0x0, 0x2) read(r0, &(0x7f000006b000)=""/24, 0x18) write$evdev(r0, &(0x7f0000057fa0)=[{{}, 0x0, 0x100000001}, {}], 0x30) 2018/04/30 22:51:31 executing program 3: syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x0, 0x0) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x6}, 0x1c) syz_init_net_socket$nfc_llcp(0x27, 0x0, 0x1) 2018/04/30 22:51:31 executing program 7: ioctl$SG_SET_DEBUG(0xffffffffffffffff, 0x227e, &(0x7f0000000100)=0x1) ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x21, 0x0, @buffer={0x0, 0x47, &(0x7f0000000040)=""/71}, &(0x7f00000000c0)="7f2911fa31fa4f4b2f5687dbd490bd09e476cb6b139f5686379495446bcea9c334", &(0x7f00000002c0)=""/182, 0x0, 0x0, 0x0, &(0x7f0000000380)}) 2018/04/30 22:51:31 executing program 5: syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x0, 0x0) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r0, &(0x7f00000000c0)={0x2, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x2000000}, 0x1c) syz_init_net_socket$nfc_llcp(0x27, 0x0, 0x1) 2018/04/30 22:51:31 executing program 6 (fault-call:2 fault-nth:21): mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x1, 0x0) 2018/04/30 22:51:31 executing program 4: r0 = syz_open_dev$evdev(&(0x7f0000072fee)='/dev/input/event#\x00', 0x0, 0x2) read(r0, &(0x7f000006b000)=""/24, 0x18) write$evdev(r0, &(0x7f0000057fa0)=[{{}, 0x0, 0x100000001}, {}], 0x30) 2018/04/30 22:51:31 executing program 0: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:51:31 executing program 1 (fault-call:2 fault-nth:12): mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0xc003, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) [ 157.821553] RIP: 0033:0x455979 [ 157.824726] RSP: 002b:00007fa0b7184c68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 157.832428] RAX: ffffffffffffffda RBX: 00007fa0b71856d4 RCX: 0000000000455979 [ 157.839693] RDX: 0000000020000100 RSI: 0000000020000080 RDI: 0000000020000040 [ 157.846955] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 157.854212] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000014 [ 157.861474] R13: 0000000000000440 R14: 00000000006fa6a0 R15: 000000000000000b [ 157.920263] FAULT_INJECTION: forcing a failure. [ 157.920263] name failslab, interval 1, probability 0, space 0, times 0 [ 157.931695] CPU: 1 PID: 12289 Comm: syz-executor6 Not tainted 4.17.0-rc3+ #26 [ 157.938983] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 157.948351] Call Trace: [ 157.950969] dump_stack+0x1b9/0x294 [ 157.954623] ? dump_stack_print_info.cold.2+0x52/0x52 [ 157.959837] ? kernel_text_address+0x79/0xf0 [ 157.964272] should_fail.cold.4+0xa/0x1a [ 157.968356] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 157.973487] ? graph_lock+0x170/0x170 [ 157.977307] ? save_stack+0x43/0xd0 [ 157.980946] ? kasan_kmalloc+0xc4/0xe0 [ 157.984915] ? __kmalloc+0x14e/0x760 [ 157.988619] ? __list_lru_init+0xdd/0x790 [ 157.992768] ? find_held_lock+0x36/0x1c0 [ 157.996829] ? __lock_is_held+0xb5/0x140 [ 158.000896] ? check_same_owner+0x320/0x320 [ 158.005218] ? rcu_note_context_switch+0x710/0x710 [ 158.010156] __should_failslab+0x124/0x180 [ 158.014411] should_failslab+0x9/0x14 [ 158.018207] kmem_cache_alloc_node_trace+0x26f/0x770 [ 158.023306] ? mark_held_locks+0xc9/0x160 [ 158.027450] ? __raw_spin_lock_init+0x1c/0x100 [ 158.032037] __kmalloc_node+0x33/0x70 [ 158.035841] kvmalloc_node+0x6b/0x100 [ 158.039635] __list_lru_init+0x559/0x790 [ 158.043694] ? list_lru_destroy+0x4c0/0x4c0 [ 158.048020] ? mark_held_locks+0xc9/0x160 [ 158.052164] ? __raw_spin_lock_init+0x1c/0x100 [ 158.056763] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 158.061778] ? lockdep_init_map+0x9/0x10 [ 158.065835] sget_userns+0x767/0xf00 [ 158.069542] ? get_anon_bdev+0x2f0/0x2f0 [ 158.073601] ? test_bdev_super+0x50/0x50 [ 158.077658] ? destroy_unused_super.part.11+0x110/0x110 [ 158.083032] ? alloc_vfsmnt+0x771/0x9d0 [ 158.087003] ? mnt_free_id.isra.27+0x60/0x60 [ 158.092280] ? kasan_check_read+0x11/0x20 [ 158.096426] ? graph_lock+0x170/0x170 [ 158.100229] ? cap_capable+0x1f9/0x260 [ 158.104135] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 158.109678] ? security_capable+0x99/0xc0 [ 158.113825] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 158.119368] ? ns_capable_common+0x13f/0x170 [ 158.123782] ? get_anon_bdev+0x2f0/0x2f0 [ 158.127837] sget+0x10b/0x150 [ 158.130942] ? test_bdev_super+0x50/0x50 [ 158.135000] ? fuse_ctl_add_conn+0x280/0x280 [ 158.139412] mount_single+0x3a/0x170 [ 158.143122] fuse_ctl_mount+0x2c/0x40 [ 158.146919] mount_fs+0xae/0x328 [ 158.150280] ? mpi_free.cold.1+0x19/0x19 [ 158.154338] vfs_kern_mount.part.34+0xd4/0x4d0 [ 158.158920] ? may_umount+0xb0/0xb0 [ 158.162544] ? _raw_read_unlock+0x22/0x30 [ 158.166687] ? __get_fs_type+0x97/0xc0 [ 158.170584] do_mount+0x564/0x3070 [ 158.174120] ? lock_downgrade+0x8e0/0x8e0 [ 158.178277] ? copy_mount_string+0x40/0x40 [ 158.182512] ? check_same_owner+0x320/0x320 [ 158.186834] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 158.191850] ? __check_object_size+0x95/0x5d9 [ 158.196350] ? __might_sleep+0x95/0x190 [ 158.200329] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 158.205878] ? _copy_from_user+0xdf/0x150 [ 158.210030] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 158.215563] ? copy_mount_options+0x285/0x380 [ 158.220058] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 158.225687] ksys_mount+0x12d/0x140 [ 158.229315] __x64_sys_mount+0xbe/0x150 [ 158.233280] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 158.238295] do_syscall_64+0x1b1/0x800 [ 158.242180] ? finish_task_switch+0x1ca/0x810 [ 158.246670] ? syscall_return_slowpath+0x5c0/0x5c0 [ 158.251600] ? syscall_return_slowpath+0x30f/0x5c0 [ 158.256528] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 158.261892] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 158.266736] entry_SYSCALL_64_after_hwframe+0x49/0xbe 2018/04/30 22:51:31 executing program 3: syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x0, 0x0) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x1000000}, 0x1c) syz_init_net_socket$nfc_llcp(0x27, 0x0, 0x1) 2018/04/30 22:51:31 executing program 7: r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0) ioctl$SG_SET_DEBUG(r0, 0x227e, &(0x7f0000000100)=0x1) ioctl$SG_IO(r0, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x21, 0x0, @buffer={0x0, 0x47, &(0x7f0000000040)=""/71}, &(0x7f00000000c0)="7f2911fa31fa4f4b2f5687dbd490bd09e476cb6b139f5686379495446bcea9c334", &(0x7f00000002c0)=""/182, 0x0, 0x0, 0x0, &(0x7f0000000380)}) 2018/04/30 22:51:31 executing program 5: syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x0, 0x0) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r0, &(0x7f00000000c0)={0x2, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x2000000}, 0x1c) syz_init_net_socket$nfc_llcp(0x27, 0x0, 0x1) [ 158.271917] RIP: 0033:0x455979 [ 158.275097] RSP: 002b:00007f1fa3db4c68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 158.282807] RAX: ffffffffffffffda RBX: 00007f1fa3db56d4 RCX: 0000000000455979 [ 158.290068] RDX: 0000000020000100 RSI: 0000000020000080 RDI: 0000000020000040 [ 158.297340] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 158.304618] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000014 [ 158.311883] R13: 0000000000000440 R14: 00000000006fa6a0 R15: 0000000000000015 2018/04/30 22:51:31 executing program 7: r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0) ioctl$SG_SET_DEBUG(0xffffffffffffffff, 0x227e, &(0x7f0000000100)=0x1) ioctl$SG_IO(r0, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x21, 0x0, @buffer={0x0, 0x47, &(0x7f0000000040)=""/71}, &(0x7f00000000c0)="7f2911fa31fa4f4b2f5687dbd490bd09e476cb6b139f5686379495446bcea9c334", &(0x7f00000002c0)=""/182, 0x0, 0x0, 0x0, &(0x7f0000000380)}) 2018/04/30 22:51:31 executing program 6 (fault-call:2 fault-nth:22): mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x1, 0x0) 2018/04/30 22:51:31 executing program 0: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:51:31 executing program 3: syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x0, 0x0) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x2000000}, 0x200000dc) syz_init_net_socket$nfc_llcp(0x27, 0x0, 0x1) 2018/04/30 22:51:31 executing program 1 (fault-call:2 fault-nth:13): mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0xc003, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) [ 158.529505] FAULT_INJECTION: forcing a failure. [ 158.529505] name failslab, interval 1, probability 0, space 0, times 0 [ 158.540878] CPU: 0 PID: 12310 Comm: syz-executor6 Not tainted 4.17.0-rc3+ #26 [ 158.548165] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 158.557532] Call Trace: [ 158.560166] dump_stack+0x1b9/0x294 [ 158.563821] ? dump_stack_print_info.cold.2+0x52/0x52 [ 158.569047] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 158.574266] should_fail.cold.4+0xa/0x1a [ 158.578354] ? is_bpf_text_address+0xd7/0x170 [ 158.582933] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 158.588069] ? unwind_get_return_address+0x61/0xa0 [ 158.593026] ? __save_stack_trace+0x7e/0xd0 [ 158.597374] ? graph_lock+0x170/0x170 [ 158.601202] ? find_held_lock+0x36/0x1c0 [ 158.605294] ? __lock_is_held+0xb5/0x140 [ 158.609390] ? check_same_owner+0x320/0x320 [ 158.613738] ? rcu_note_context_switch+0x710/0x710 [ 158.618692] __should_failslab+0x124/0x180 [ 158.622953] should_failslab+0x9/0x14 [ 158.626774] kmem_cache_alloc_trace+0x2cb/0x780 [ 158.631465] ? __kmalloc_node+0x33/0x70 [ 158.635451] ? __kmalloc_node+0x33/0x70 [ 158.639424] ? rcu_read_lock_sched_held+0x108/0x120 [ 158.644461] __memcg_init_list_lru_node+0x17d/0x2c0 [ 158.649484] ? kvfree_rcu+0x20/0x20 [ 158.653113] ? __kmalloc_node+0x47/0x70 [ 158.657094] __list_lru_init+0x456/0x790 [ 158.661160] ? list_lru_destroy+0x4c0/0x4c0 [ 158.665486] ? mark_held_locks+0xc9/0x160 [ 158.669638] ? __raw_spin_lock_init+0x1c/0x100 [ 158.674222] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 158.679244] ? lockdep_init_map+0x9/0x10 [ 158.683304] sget_userns+0x767/0xf00 [ 158.687019] ? get_anon_bdev+0x2f0/0x2f0 [ 158.691100] ? test_bdev_super+0x50/0x50 [ 158.695160] ? destroy_unused_super.part.11+0x110/0x110 [ 158.700528] ? alloc_vfsmnt+0x771/0x9d0 [ 158.704510] ? mnt_free_id.isra.27+0x60/0x60 [ 158.708920] ? kasan_check_read+0x11/0x20 [ 158.713064] ? graph_lock+0x170/0x170 [ 158.716863] ? cap_capable+0x1f9/0x260 [ 158.720751] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 158.726285] ? security_capable+0x99/0xc0 [ 158.730443] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 158.735980] ? ns_capable_common+0x13f/0x170 [ 158.740383] ? get_anon_bdev+0x2f0/0x2f0 [ 158.744436] sget+0x10b/0x150 [ 158.747534] ? test_bdev_super+0x50/0x50 [ 158.751596] ? fuse_ctl_add_conn+0x280/0x280 [ 158.756026] mount_single+0x3a/0x170 [ 158.759742] fuse_ctl_mount+0x2c/0x40 [ 158.763711] mount_fs+0xae/0x328 [ 158.767071] ? mpi_free.cold.1+0x19/0x19 [ 158.771129] vfs_kern_mount.part.34+0xd4/0x4d0 [ 158.775705] ? may_umount+0xb0/0xb0 [ 158.779326] ? _raw_read_unlock+0x22/0x30 [ 158.783466] ? __get_fs_type+0x97/0xc0 [ 158.787353] do_mount+0x564/0x3070 [ 158.790899] ? lock_downgrade+0x8e0/0x8e0 [ 158.795047] ? copy_mount_string+0x40/0x40 [ 158.799276] ? check_same_owner+0x320/0x320 [ 158.803590] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 158.808612] ? __check_object_size+0x95/0x5d9 [ 158.813104] ? __might_sleep+0x95/0x190 [ 158.817079] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 158.822613] ? _copy_from_user+0xdf/0x150 [ 158.826768] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 158.832301] ? copy_mount_options+0x285/0x380 [ 158.836832] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 158.842375] ksys_mount+0x12d/0x140 [ 158.846002] __x64_sys_mount+0xbe/0x150 [ 158.849984] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 158.855018] do_syscall_64+0x1b1/0x800 [ 158.858907] ? finish_task_switch+0x1ca/0x810 [ 158.863414] ? syscall_return_slowpath+0x5c0/0x5c0 [ 158.868346] ? syscall_return_slowpath+0x30f/0x5c0 [ 158.873281] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 158.878648] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 158.883488] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 158.888669] RIP: 0033:0x455979 [ 158.891857] RSP: 002b:00007f1fa3db4c68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 158.899560] RAX: ffffffffffffffda RBX: 00007f1fa3db56d4 RCX: 0000000000455979 [ 158.906828] RDX: 0000000020000100 RSI: 0000000020000080 RDI: 0000000020000040 [ 158.914088] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 158.921350] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000014 [ 158.928614] R13: 0000000000000440 R14: 00000000006fa6a0 R15: 0000000000000016 [ 158.990540] device bridge_slave_1 left promiscuous mode [ 158.996304] bridge0: port 2(bridge_slave_1) entered disabled state [ 159.033875] device bridge_slave_0 left promiscuous mode [ 159.039497] bridge0: port 1(bridge_slave_0) entered disabled state [ 159.062584] IPVS: ftp: loaded support on port[0] = 21 [ 159.102891] team0 (unregistering): Port device team_slave_1 removed [ 159.113124] team0 (unregistering): Port device team_slave_0 removed [ 159.124784] bond0 (unregistering): Releasing backup interface bond_slave_1 [ 159.144596] bond0 (unregistering): Releasing backup interface bond_slave_0 [ 159.174093] bond0 (unregistering): Released all slaves [ 159.732063] bridge0: port 1(bridge_slave_0) entered blocking state [ 159.738589] bridge0: port 1(bridge_slave_0) entered disabled state [ 159.746476] device bridge_slave_0 entered promiscuous mode [ 159.784572] bridge0: port 2(bridge_slave_1) entered blocking state [ 159.791106] bridge0: port 2(bridge_slave_1) entered disabled state [ 159.798952] device bridge_slave_1 entered promiscuous mode [ 159.835474] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 159.872780] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 159.983754] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 160.022894] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 160.195453] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 160.202656] team0: Port device team_slave_0 added [ 160.238843] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 160.246239] team0: Port device team_slave_1 added [ 160.277699] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 160.317669] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 160.357391] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 160.387354] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 160.394520] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 160.409976] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 160.653563] bridge0: port 2(bridge_slave_1) entered blocking state [ 160.659962] bridge0: port 2(bridge_slave_1) entered forwarding state [ 160.666619] bridge0: port 1(bridge_slave_0) entered blocking state [ 160.672999] bridge0: port 1(bridge_slave_0) entered forwarding state [ 160.680340] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 161.375130] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 161.516224] 8021q: adding VLAN 0 to HW filter on device bond0 [ 161.598132] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 161.679270] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 161.685652] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 161.693272] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 161.769409] 8021q: adding VLAN 0 to HW filter on device team0 [ 162.244859] FAULT_INJECTION: forcing a failure. [ 162.244859] name failslab, interval 1, probability 0, space 0, times 0 [ 162.256246] CPU: 1 PID: 12585 Comm: syz-executor1 Not tainted 4.17.0-rc3+ #26 [ 162.263515] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 162.272870] Call Trace: [ 162.275465] dump_stack+0x1b9/0x294 [ 162.279087] ? dump_stack_print_info.cold.2+0x52/0x52 [ 162.284282] ? __save_stack_trace+0x7e/0xd0 [ 162.288610] should_fail.cold.4+0xa/0x1a [ 162.292664] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 162.297760] ? save_stack+0x43/0xd0 [ 162.301383] ? kasan_kmalloc+0xc4/0xe0 [ 162.305263] ? kmem_cache_alloc_trace+0x152/0x780 [ 162.310113] ? __memcg_init_list_lru_node+0x17d/0x2c0 [ 162.315295] ? __list_lru_init+0x456/0x790 [ 162.319518] ? sget_userns+0x73a/0xf00 [ 162.323420] ? graph_lock+0x170/0x170 [ 162.327229] ? vfs_kern_mount.part.34+0xd4/0x4d0 [ 162.331973] ? do_mount+0x564/0x3070 [ 162.335683] ? ksys_mount+0x12d/0x140 [ 162.339475] ? __x64_sys_mount+0xbe/0x150 [ 162.343613] ? do_syscall_64+0x1b1/0x800 [ 162.347662] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 162.353048] ? find_held_lock+0x36/0x1c0 [ 162.357105] ? __lock_is_held+0xb5/0x140 [ 162.361165] ? check_same_owner+0x320/0x320 [ 162.365484] ? rcu_note_context_switch+0x710/0x710 [ 162.370408] __should_failslab+0x124/0x180 [ 162.374636] should_failslab+0x9/0x14 [ 162.378427] kmem_cache_alloc_trace+0x2cb/0x780 [ 162.383090] ? __kmalloc_node+0x33/0x70 [ 162.387058] ? __kmalloc_node+0x33/0x70 [ 162.391037] ? rcu_read_lock_sched_held+0x108/0x120 [ 162.396056] __memcg_init_list_lru_node+0x17d/0x2c0 [ 162.401072] ? kvfree_rcu+0x20/0x20 [ 162.404690] ? __kmalloc_node+0x47/0x70 [ 162.408652] __list_lru_init+0x456/0x790 [ 162.412699] ? list_lru_destroy+0x4c0/0x4c0 [ 162.417031] ? mark_held_locks+0xc9/0x160 [ 162.421172] ? __raw_spin_lock_init+0x1c/0x100 [ 162.425749] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 162.430752] ? __lockdep_init_map+0x105/0x590 [ 162.435242] ? lockdep_init_map+0x9/0x10 [ 162.439296] sget_userns+0x73a/0xf00 [ 162.443002] ? get_anon_bdev+0x2f0/0x2f0 [ 162.447068] ? test_bdev_super+0x50/0x50 [ 162.451120] ? destroy_unused_super.part.11+0x110/0x110 [ 162.456736] ? alloc_vfsmnt+0x771/0x9d0 [ 162.460701] ? mnt_free_id.isra.27+0x60/0x60 [ 162.465104] ? kasan_check_read+0x11/0x20 [ 162.469244] ? graph_lock+0x170/0x170 [ 162.473037] ? cap_capable+0x1f9/0x260 [ 162.476926] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 162.482455] ? security_capable+0x99/0xc0 [ 162.486595] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 162.492132] ? ns_capable_common+0x13f/0x170 [ 162.496816] ? get_anon_bdev+0x2f0/0x2f0 [ 162.500864] sget+0x10b/0x150 [ 162.503959] ? test_bdev_super+0x50/0x50 [ 162.508015] ? fuse_ctl_add_conn+0x280/0x280 [ 162.512422] mount_single+0x3a/0x170 [ 162.516125] fuse_ctl_mount+0x2c/0x40 [ 162.519912] mount_fs+0xae/0x328 [ 162.523264] ? mpi_free.cold.1+0x19/0x19 [ 162.527324] vfs_kern_mount.part.34+0xd4/0x4d0 [ 162.531913] ? may_umount+0xb0/0xb0 [ 162.535527] ? _raw_read_unlock+0x22/0x30 [ 162.539658] ? __get_fs_type+0x97/0xc0 [ 162.543547] do_mount+0x564/0x3070 [ 162.547077] ? lock_downgrade+0x8e0/0x8e0 [ 162.551230] ? copy_mount_string+0x40/0x40 [ 162.555469] ? check_same_owner+0x320/0x320 [ 162.559788] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 162.564797] ? __check_object_size+0x95/0x5d9 [ 162.569284] ? __might_sleep+0x95/0x190 [ 162.573269] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 162.578982] ? _copy_from_user+0xdf/0x150 [ 162.583133] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 162.589292] ? copy_mount_options+0x285/0x380 [ 162.594145] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 162.599699] ksys_mount+0x12d/0x140 [ 162.603406] __x64_sys_mount+0xbe/0x150 [ 162.607366] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 162.612896] do_syscall_64+0x1b1/0x800 [ 162.616773] ? syscall_return_slowpath+0x5c0/0x5c0 [ 162.621799] ? syscall_return_slowpath+0x30f/0x5c0 [ 162.626721] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 162.632086] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 162.636919] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 162.642104] RIP: 0033:0x455979 2018/04/30 22:51:35 executing program 2: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$evdev(&(0x7f0000072fee)='/dev/input/event#\x00', 0x0, 0x2) read(r0, &(0x7f000006b000)=""/24, 0x18) write$evdev(r0, &(0x7f0000057fa0)=[{{}, 0x0, 0x100000001}, {}], 0x30) 2018/04/30 22:51:35 executing program 1 (fault-call:2 fault-nth:14): mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0xc003, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:51:35 executing program 6 (fault-call:2 fault-nth:23): mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x1, 0x0) 2018/04/30 22:51:35 executing program 5: syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x0, 0x0) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r0, &(0x7f00000000c0)={0x2, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x2000000}, 0x1c) syz_init_net_socket$nfc_llcp(0x27, 0x0, 0x1) 2018/04/30 22:51:35 executing program 7: r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0) ioctl$SG_SET_DEBUG(0xffffffffffffffff, 0x227e, &(0x7f0000000100)=0x1) ioctl$SG_IO(r0, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x21, 0x0, @buffer={0x0, 0x47, &(0x7f0000000040)=""/71}, &(0x7f00000000c0)="7f2911fa31fa4f4b2f5687dbd490bd09e476cb6b139f5686379495446bcea9c334", &(0x7f00000002c0)=""/182, 0x0, 0x0, 0x0, &(0x7f0000000380)}) 2018/04/30 22:51:35 executing program 3: syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x0, 0x0) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x2000000}, 0x17) syz_init_net_socket$nfc_llcp(0x27, 0x0, 0x1) 2018/04/30 22:51:35 executing program 0: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0l', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:51:35 executing program 4: r0 = syz_open_dev$evdev(&(0x7f0000072fee)='/dev/input/event#\x00', 0x0, 0x2) read(r0, &(0x7f000006b000)=""/24, 0x18) [ 162.645285] RSP: 002b:00007fe7c4874c68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 162.652984] RAX: ffffffffffffffda RBX: 00007fe7c48756d4 RCX: 0000000000455979 [ 162.660247] RDX: 0000000020000100 RSI: 0000000020000080 RDI: 0000000020000040 [ 162.667590] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 162.674857] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000014 [ 162.682114] R13: 0000000000000440 R14: 00000000006fa6a0 R15: 000000000000000d 2018/04/30 22:51:35 executing program 5: syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x0, 0x0) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x6}, 0x1c) syz_init_net_socket$nfc_llcp(0x27, 0x0, 0x1) 2018/04/30 22:51:35 executing program 7: r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0) ioctl$SG_SET_DEBUG(0xffffffffffffffff, 0x227e, &(0x7f0000000100)=0x1) ioctl$SG_IO(r0, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x21, 0x0, @buffer={0x0, 0x47, &(0x7f0000000040)=""/71}, &(0x7f00000000c0)="7f2911fa31fa4f4b2f5687dbd490bd09e476cb6b139f5686379495446bcea9c334", &(0x7f00000002c0)=""/182, 0x0, 0x0, 0x0, &(0x7f0000000380)}) [ 162.746223] FAULT_INJECTION: forcing a failure. [ 162.746223] name failslab, interval 1, probability 0, space 0, times 0 [ 162.757605] CPU: 0 PID: 12593 Comm: syz-executor6 Not tainted 4.17.0-rc3+ #26 [ 162.764894] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 162.774259] Call Trace: [ 162.776873] dump_stack+0x1b9/0x294 [ 162.780520] ? dump_stack_print_info.cold.2+0x52/0x52 [ 162.785735] ? __save_stack_trace+0x7e/0xd0 [ 162.790092] should_fail.cold.4+0xa/0x1a 2018/04/30 22:51:36 executing program 5: syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x0, 0x0) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x6}, 0x1c) syz_init_net_socket$nfc_llcp(0x27, 0x0, 0x1) 2018/04/30 22:51:36 executing program 7: r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0) ioctl$SG_SET_DEBUG(r0, 0x227e, &(0x7f0000000100)) ioctl$SG_IO(r0, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x21, 0x0, @buffer={0x0, 0x47, &(0x7f0000000040)=""/71}, &(0x7f00000000c0)="7f2911fa31fa4f4b2f5687dbd490bd09e476cb6b139f5686379495446bcea9c334", &(0x7f00000002c0)=""/182, 0x0, 0x0, 0x0, &(0x7f0000000380)}) [ 162.794196] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 162.799331] ? save_stack+0x43/0xd0 [ 162.802984] ? kasan_kmalloc+0xc4/0xe0 [ 162.806896] ? kmem_cache_alloc_trace+0x152/0x780 [ 162.811762] ? __memcg_init_list_lru_node+0x17d/0x2c0 [ 162.816979] ? __list_lru_init+0x456/0x790 [ 162.821234] ? sget_userns+0x767/0xf00 [ 162.825143] ? graph_lock+0x170/0x170 [ 162.828957] ? vfs_kern_mount.part.34+0xd4/0x4d0 [ 162.833732] ? do_mount+0x564/0x3070 [ 162.837474] ? ksys_mount+0x12d/0x140 [ 162.841291] ? __x64_sys_mount+0xbe/0x150 2018/04/30 22:51:36 executing program 5: syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x0, 0x0) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x6}, 0x1c) syz_init_net_socket$nfc_llcp(0x27, 0x0, 0x1) [ 162.845465] ? do_syscall_64+0x1b1/0x800 [ 162.849554] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 162.854955] ? find_held_lock+0x36/0x1c0 [ 162.859049] ? __lock_is_held+0xb5/0x140 [ 162.863151] ? check_same_owner+0x320/0x320 [ 162.867508] ? rcu_note_context_switch+0x710/0x710 [ 162.872464] __should_failslab+0x124/0x180 [ 162.876721] should_failslab+0x9/0x14 [ 162.880539] kmem_cache_alloc_trace+0x2cb/0x780 [ 162.885228] ? __kmalloc_node+0x33/0x70 [ 162.889222] ? __kmalloc_node+0x33/0x70 2018/04/30 22:51:36 executing program 7: r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0) ioctl$SG_SET_DEBUG(r0, 0x227e, &(0x7f0000000100)) ioctl$SG_IO(r0, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x21, 0x0, @buffer={0x0, 0x47, &(0x7f0000000040)=""/71}, &(0x7f00000000c0)="7f2911fa31fa4f4b2f5687dbd490bd09e476cb6b139f5686379495446bcea9c334", &(0x7f00000002c0)=""/182, 0x0, 0x0, 0x0, &(0x7f0000000380)}) [ 162.893224] ? rcu_read_lock_sched_held+0x108/0x120 [ 162.898376] __memcg_init_list_lru_node+0x17d/0x2c0 [ 162.903418] ? kvfree_rcu+0x20/0x20 [ 162.907073] ? __kmalloc_node+0x47/0x70 [ 162.911074] __list_lru_init+0x456/0x790 [ 162.915158] ? list_lru_destroy+0x4c0/0x4c0 [ 162.919495] ? mark_held_locks+0xc9/0x160 [ 162.923674] ? __raw_spin_lock_init+0x1c/0x100 [ 162.928282] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 162.933321] ? lockdep_init_map+0x9/0x10 [ 162.937404] sget_userns+0x767/0xf00 [ 162.941138] ? get_anon_bdev+0x2f0/0x2f0 2018/04/30 22:51:36 executing program 0: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:51:36 executing program 5: syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x0, 0x0) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x6}, 0x1c) [ 162.945215] ? test_bdev_super+0x50/0x50 [ 162.949302] ? destroy_unused_super.part.11+0x110/0x110 [ 162.954686] ? alloc_vfsmnt+0x771/0x9d0 [ 162.958673] ? mnt_free_id.isra.27+0x60/0x60 [ 162.963097] ? kasan_check_read+0x11/0x20 [ 162.967259] ? graph_lock+0x170/0x170 [ 162.971081] ? cap_capable+0x1f9/0x260 [ 162.974997] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 162.980558] ? security_capable+0x99/0xc0 [ 162.984733] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 162.990294] ? ns_capable_common+0x13f/0x170 [ 162.994725] ? get_anon_bdev+0x2f0/0x2f0 [ 162.998808] sget+0x10b/0x150 [ 163.001953] ? test_bdev_super+0x50/0x50 [ 163.006036] ? fuse_ctl_add_conn+0x280/0x280 [ 163.010469] mount_single+0x3a/0x170 [ 163.014191] fuse_ctl_mount+0x2c/0x40 [ 163.017985] mount_fs+0xae/0x328 [ 163.021345] ? mpi_free.cold.1+0x19/0x19 [ 163.025401] vfs_kern_mount.part.34+0xd4/0x4d0 [ 163.029975] ? may_umount+0xb0/0xb0 [ 163.033680] ? _raw_read_unlock+0x22/0x30 [ 163.037824] ? __get_fs_type+0x97/0xc0 [ 163.041801] do_mount+0x564/0x3070 [ 163.045332] ? lock_downgrade+0x8e0/0x8e0 [ 163.049477] ? copy_mount_string+0x40/0x40 [ 163.053707] ? check_same_owner+0x320/0x320 [ 163.058025] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 163.063038] ? __check_object_size+0x95/0x5d9 [ 163.067531] ? __might_sleep+0x95/0x190 [ 163.071505] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 163.077231] ? _copy_from_user+0xdf/0x150 [ 163.081377] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 163.086917] ? copy_mount_options+0x285/0x380 [ 163.091403] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 163.096943] ksys_mount+0x12d/0x140 [ 163.100563] __x64_sys_mount+0xbe/0x150 [ 163.104535] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 163.109574] do_syscall_64+0x1b1/0x800 [ 163.113887] ? finish_task_switch+0x1ca/0x810 [ 163.118373] ? syscall_return_slowpath+0x5c0/0x5c0 [ 163.123301] ? syscall_return_slowpath+0x30f/0x5c0 [ 163.128230] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 163.133592] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 163.139827] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 163.145009] RIP: 0033:0x455979 [ 163.148189] RSP: 002b:00007f1fa3db4c68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 163.155903] RAX: ffffffffffffffda RBX: 00007f1fa3db56d4 RCX: 0000000000455979 [ 163.163167] RDX: 0000000020000100 RSI: 0000000020000080 RDI: 0000000020000040 [ 163.170434] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 163.177695] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000014 [ 163.184958] R13: 0000000000000440 R14: 00000000006fa6a0 R15: 0000000000000017 [ 163.386357] device bridge_slave_1 left promiscuous mode [ 163.392144] bridge0: port 2(bridge_slave_1) entered disabled state [ 163.405670] device bridge_slave_0 left promiscuous mode [ 163.411295] bridge0: port 1(bridge_slave_0) entered disabled state [ 163.448871] team0 (unregistering): Port device team_slave_1 removed [ 163.461221] team0 (unregistering): Port device team_slave_0 removed [ 163.471297] bond0 (unregistering): Releasing backup interface bond_slave_1 [ 163.487145] bond0 (unregistering): Releasing backup interface bond_slave_0 [ 163.515591] bond0 (unregistering): Released all slaves 2018/04/30 22:51:36 executing program 2: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$evdev(&(0x7f0000072fee)='/dev/input/event#\x00', 0x0, 0x2) read(r0, &(0x7f000006b000)=""/24, 0x18) write$evdev(r0, &(0x7f0000057fa0)=[{{}, 0x0, 0x100000001}, {}], 0x30) 2018/04/30 22:51:36 executing program 7: r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0) ioctl$SG_SET_DEBUG(r0, 0x227e, &(0x7f0000000100)) ioctl$SG_IO(r0, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x21, 0x0, @buffer={0x0, 0x47, &(0x7f0000000040)=""/71}, &(0x7f00000000c0)="7f2911fa31fa4f4b2f5687dbd490bd09e476cb6b139f5686379495446bcea9c334", &(0x7f00000002c0)=""/182, 0x0, 0x0, 0x0, &(0x7f0000000380)}) 2018/04/30 22:51:36 executing program 3: syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x0, 0x0) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x2000000}, 0x1b) syz_init_net_socket$nfc_llcp(0x27, 0x0, 0x1) 2018/04/30 22:51:36 executing program 0: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:51:36 executing program 6 (fault-call:2 fault-nth:24): mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x1, 0x0) 2018/04/30 22:51:36 executing program 5: syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x0, 0x0) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x6}, 0x1c) 2018/04/30 22:51:36 executing program 1 (fault-call:2 fault-nth:15): mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0xc003, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:51:36 executing program 4: read(0xffffffffffffffff, &(0x7f000006b000)=""/24, 0x18) 2018/04/30 22:51:36 executing program 4: r0 = syz_open_dev$evdev(&(0x7f0000072fee)='/dev/input/event#\x00', 0x0, 0x0) read(r0, &(0x7f000006b000)=""/24, 0x18) 2018/04/30 22:51:36 executing program 5: syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x0, 0x0) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x6}, 0x1c) 2018/04/30 22:51:36 executing program 7: r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0) ioctl$SG_SET_DEBUG(r0, 0x227e, &(0x7f0000000100)=0x1) ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x21, 0x0, @buffer={0x0, 0x47, &(0x7f0000000040)=""/71}, &(0x7f00000000c0)="7f2911fa31fa4f4b2f5687dbd490bd09e476cb6b139f5686379495446bcea9c334", &(0x7f00000002c0)=""/182, 0x0, 0x0, 0x0, &(0x7f0000000380)}) 2018/04/30 22:51:36 executing program 0: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:51:36 executing program 3: syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x0, 0x0) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x2000000}, 0x1c) syz_init_net_socket$nfc_llcp(0x27, 0x6, 0x1) 2018/04/30 22:51:36 executing program 7: r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0) ioctl$SG_SET_DEBUG(r0, 0x227e, &(0x7f0000000100)=0x1) ioctl$SG_IO(r0, 0x2285, &(0x7f00000003c0)={0x0, 0x0, 0x21, 0x0, @buffer={0x0, 0x47, &(0x7f0000000040)=""/71}, &(0x7f00000000c0)="7f2911fa31fa4f4b2f5687dbd490bd09e476cb6b139f5686379495446bcea9c334", &(0x7f00000002c0)=""/182, 0x0, 0x0, 0x0, &(0x7f0000000380)}) 2018/04/30 22:51:36 executing program 0: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) [ 163.804814] IPVS: ftp: loaded support on port[0] = 21 [ 163.824331] FAULT_INJECTION: forcing a failure. [ 163.824331] name failslab, interval 1, probability 0, space 0, times 0 [ 163.835707] CPU: 0 PID: 12669 Comm: syz-executor6 Not tainted 4.17.0-rc3+ #26 [ 163.842995] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 163.852364] Call Trace: [ 163.855070] dump_stack+0x1b9/0x294 [ 163.858727] ? dump_stack_print_info.cold.2+0x52/0x52 [ 163.863944] ? __save_stack_trace+0x7e/0xd0 [ 163.868295] should_fail.cold.4+0xa/0x1a [ 163.872396] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 163.877521] ? save_stack+0x43/0xd0 [ 163.881172] ? kasan_kmalloc+0xc4/0xe0 [ 163.885086] ? kmem_cache_alloc_trace+0x152/0x780 [ 163.889948] ? __memcg_init_list_lru_node+0x17d/0x2c0 [ 163.895240] ? __list_lru_init+0x456/0x790 [ 163.899471] ? sget_userns+0x767/0xf00 [ 163.903362] ? graph_lock+0x170/0x170 [ 163.907155] ? vfs_kern_mount.part.34+0xd4/0x4d0 [ 163.911906] ? do_mount+0x564/0x3070 [ 163.915613] ? ksys_mount+0x12d/0x140 [ 163.919406] ? __x64_sys_mount+0xbe/0x150 [ 163.923546] ? do_syscall_64+0x1b1/0x800 [ 163.927607] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 163.932978] ? find_held_lock+0x36/0x1c0 [ 163.937051] ? __lock_is_held+0xb5/0x140 [ 163.941118] ? check_same_owner+0x320/0x320 [ 163.945438] ? rcu_note_context_switch+0x710/0x710 [ 163.950369] __should_failslab+0x124/0x180 [ 163.954608] should_failslab+0x9/0x14 [ 163.958402] kmem_cache_alloc_trace+0x2cb/0x780 [ 163.963062] ? __kmalloc_node+0x33/0x70 [ 163.967033] ? __kmalloc_node+0x33/0x70 [ 163.971002] ? rcu_read_lock_sched_held+0x108/0x120 [ 163.976211] __memcg_init_list_lru_node+0x17d/0x2c0 [ 163.981239] ? kvfree_rcu+0x20/0x20 [ 163.984862] ? __kmalloc_node+0x47/0x70 [ 163.988850] __list_lru_init+0x456/0x790 [ 163.992911] ? list_lru_destroy+0x4c0/0x4c0 [ 163.997235] ? mark_held_locks+0xc9/0x160 [ 164.001381] ? __raw_spin_lock_init+0x1c/0x100 [ 164.005967] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 164.010985] ? lockdep_init_map+0x9/0x10 [ 164.015046] sget_userns+0x767/0xf00 [ 164.018753] ? get_anon_bdev+0x2f0/0x2f0 [ 164.022819] ? test_bdev_super+0x50/0x50 [ 164.026875] ? destroy_unused_super.part.11+0x110/0x110 [ 164.032237] ? alloc_vfsmnt+0x771/0x9d0 [ 164.036202] ? mnt_free_id.isra.27+0x60/0x60 [ 164.040606] ? kasan_check_read+0x11/0x20 [ 164.044748] ? graph_lock+0x170/0x170 [ 164.048548] ? cap_capable+0x1f9/0x260 [ 164.052436] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 164.057984] ? security_capable+0x99/0xc0 [ 164.062132] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 164.067663] ? ns_capable_common+0x13f/0x170 [ 164.072065] ? get_anon_bdev+0x2f0/0x2f0 [ 164.076118] sget+0x10b/0x150 [ 164.079229] ? test_bdev_super+0x50/0x50 [ 164.083292] ? fuse_ctl_add_conn+0x280/0x280 [ 164.087698] mount_single+0x3a/0x170 [ 164.091406] fuse_ctl_mount+0x2c/0x40 [ 164.095201] mount_fs+0xae/0x328 [ 164.098559] ? mpi_free.cold.1+0x19/0x19 [ 164.102615] vfs_kern_mount.part.34+0xd4/0x4d0 [ 164.107198] ? may_umount+0xb0/0xb0 [ 164.110823] ? _raw_read_unlock+0x22/0x30 [ 164.114959] ? __get_fs_type+0x97/0xc0 [ 164.118856] do_mount+0x564/0x3070 [ 164.122392] ? lock_downgrade+0x8e0/0x8e0 [ 164.126537] ? copy_mount_string+0x40/0x40 [ 164.130762] ? check_same_owner+0x320/0x320 [ 164.135077] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 164.140089] ? __check_object_size+0x95/0x5d9 [ 164.144582] ? __might_sleep+0x95/0x190 [ 164.148557] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 164.154089] ? _copy_from_user+0xdf/0x150 [ 164.158231] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 164.163772] ? copy_mount_options+0x285/0x380 [ 164.168348] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 164.173880] ksys_mount+0x12d/0x140 [ 164.177508] __x64_sys_mount+0xbe/0x150 [ 164.181477] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 164.186490] do_syscall_64+0x1b1/0x800 [ 164.190376] ? finish_task_switch+0x1ca/0x810 [ 164.194863] ? syscall_return_slowpath+0x5c0/0x5c0 [ 164.199790] ? syscall_return_slowpath+0x30f/0x5c0 [ 164.204722] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 164.210107] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 164.214949] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 164.220127] RIP: 0033:0x455979 [ 164.223303] RSP: 002b:00007f1fa3db4c68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 164.231024] RAX: ffffffffffffffda RBX: 00007f1fa3db56d4 RCX: 0000000000455979 [ 164.238286] RDX: 0000000020000100 RSI: 0000000020000080 RDI: 0000000020000040 [ 164.245545] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 2018/04/30 22:51:37 executing program 5: syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x0, 0x0) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x6}, 0x1c) [ 164.252821] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000014 [ 164.260178] R13: 0000000000000440 R14: 00000000006fa6a0 R15: 0000000000000018 [ 165.030166] bridge0: port 1(bridge_slave_0) entered blocking state [ 165.037014] bridge0: port 1(bridge_slave_0) entered disabled state [ 165.044761] device bridge_slave_0 entered promiscuous mode [ 165.084351] bridge0: port 2(bridge_slave_1) entered blocking state [ 165.090800] bridge0: port 2(bridge_slave_1) entered disabled state [ 165.098716] device bridge_slave_1 entered promiscuous mode [ 165.136902] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 165.174053] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 165.286848] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 165.328194] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 165.366276] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 165.373233] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 165.404667] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 165.411628] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 165.508761] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 165.516720] team0: Port device team_slave_0 added [ 165.552632] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 165.560103] team0: Port device team_slave_1 added [ 165.590489] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 165.617465] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 165.643240] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 165.650360] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 165.658833] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 165.678898] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 165.686072] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 165.694078] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 165.919408] bridge0: port 2(bridge_slave_1) entered blocking state [ 165.925810] bridge0: port 2(bridge_slave_1) entered forwarding state [ 165.932493] bridge0: port 1(bridge_slave_0) entered blocking state [ 165.938869] bridge0: port 1(bridge_slave_0) entered forwarding state [ 165.946205] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 166.303202] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 166.775164] 8021q: adding VLAN 0 to HW filter on device bond0 [ 166.855112] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 166.935326] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 166.941523] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 166.948671] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 167.025341] 8021q: adding VLAN 0 to HW filter on device team0 [ 167.491759] FAULT_INJECTION: forcing a failure. [ 167.491759] name failslab, interval 1, probability 0, space 0, times 0 [ 167.503085] CPU: 0 PID: 12943 Comm: syz-executor1 Not tainted 4.17.0-rc3+ #26 [ 167.510353] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 167.519695] Call Trace: [ 167.522279] dump_stack+0x1b9/0x294 [ 167.525910] ? dump_stack_print_info.cold.2+0x52/0x52 [ 167.531096] ? __save_stack_trace+0x7e/0xd0 [ 167.535417] should_fail.cold.4+0xa/0x1a [ 167.539483] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 167.544577] ? save_stack+0x43/0xd0 [ 167.548198] ? kasan_kmalloc+0xc4/0xe0 [ 167.552095] ? kmem_cache_alloc_trace+0x152/0x780 [ 167.556922] ? __memcg_init_list_lru_node+0x17d/0x2c0 [ 167.562098] ? __list_lru_init+0x456/0x790 [ 167.566319] ? sget_userns+0x73a/0xf00 [ 167.570201] ? graph_lock+0x170/0x170 [ 167.573991] ? vfs_kern_mount.part.34+0xd4/0x4d0 [ 167.578748] ? do_mount+0x564/0x3070 [ 167.582446] ? ksys_mount+0x12d/0x140 [ 167.586231] ? __x64_sys_mount+0xbe/0x150 [ 167.590368] ? do_syscall_64+0x1b1/0x800 [ 167.594424] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 167.599786] ? find_held_lock+0x36/0x1c0 [ 167.603836] ? __lock_is_held+0xb5/0x140 [ 167.607909] ? check_same_owner+0x320/0x320 [ 167.612218] ? rcu_note_context_switch+0x710/0x710 [ 167.617141] __should_failslab+0x124/0x180 [ 167.621362] should_failslab+0x9/0x14 [ 167.625161] kmem_cache_alloc_trace+0x2cb/0x780 [ 167.629818] ? __kmalloc_node+0x33/0x70 [ 167.633778] ? __kmalloc_node+0x33/0x70 [ 167.637740] ? rcu_read_lock_sched_held+0x108/0x120 [ 167.642832] __memcg_init_list_lru_node+0x17d/0x2c0 [ 167.647838] ? kvfree_rcu+0x20/0x20 [ 167.651471] ? __kmalloc_node+0x47/0x70 [ 167.655446] __list_lru_init+0x456/0x790 [ 167.659492] ? list_lru_destroy+0x4c0/0x4c0 [ 167.663807] ? mark_held_locks+0xc9/0x160 [ 167.667941] ? __raw_spin_lock_init+0x1c/0x100 [ 167.672507] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 167.677517] ? __lockdep_init_map+0x105/0x590 [ 167.681997] ? lockdep_init_map+0x9/0x10 [ 167.686059] sget_userns+0x73a/0xf00 [ 167.689759] ? get_anon_bdev+0x2f0/0x2f0 [ 167.693807] ? test_bdev_super+0x50/0x50 [ 167.697854] ? destroy_unused_super.part.11+0x110/0x110 [ 167.703216] ? alloc_vfsmnt+0x771/0x9d0 [ 167.707182] ? mnt_free_id.isra.27+0x60/0x60 [ 167.711584] ? kasan_check_read+0x11/0x20 [ 167.715734] ? graph_lock+0x170/0x170 [ 167.719520] ? cap_capable+0x1f9/0x260 [ 167.723403] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 167.728925] ? security_capable+0x99/0xc0 [ 167.733058] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 167.738578] ? ns_capable_common+0x13f/0x170 [ 167.742990] ? get_anon_bdev+0x2f0/0x2f0 [ 167.747062] sget+0x10b/0x150 [ 167.750166] ? test_bdev_super+0x50/0x50 [ 167.754214] ? fuse_ctl_add_conn+0x280/0x280 [ 167.758617] mount_single+0x3a/0x170 [ 167.762321] fuse_ctl_mount+0x2c/0x40 [ 167.766546] mount_fs+0xae/0x328 [ 167.769900] ? mpi_free.cold.1+0x19/0x19 [ 167.773953] vfs_kern_mount.part.34+0xd4/0x4d0 [ 167.778535] ? may_umount+0xb0/0xb0 [ 167.782150] ? _raw_read_unlock+0x22/0x30 [ 167.786370] ? __get_fs_type+0x97/0xc0 [ 167.790244] do_mount+0x564/0x3070 [ 167.793776] ? lock_downgrade+0x8e0/0x8e0 [ 167.797912] ? copy_mount_string+0x40/0x40 [ 167.802138] ? check_same_owner+0x320/0x320 [ 167.806446] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 167.811466] ? __check_object_size+0x95/0x5d9 [ 167.815952] ? __might_sleep+0x95/0x190 [ 167.819929] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 167.825548] ? _copy_from_user+0xdf/0x150 [ 167.829693] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 167.835234] ? copy_mount_options+0x285/0x380 [ 167.839736] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 167.845258] ksys_mount+0x12d/0x140 [ 167.848871] __x64_sys_mount+0xbe/0x150 [ 167.852831] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 167.857849] do_syscall_64+0x1b1/0x800 [ 167.861722] ? syscall_return_slowpath+0x5c0/0x5c0 [ 167.866640] ? syscall_return_slowpath+0x30f/0x5c0 [ 167.871562] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 167.876928] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 167.881764] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 167.886938] RIP: 0033:0x455979 2018/04/30 22:51:41 executing program 2: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$evdev(&(0x7f0000072fee)='/dev/input/event#\x00', 0x0, 0x2) read(r0, &(0x7f000006b000)=""/24, 0x18) write$evdev(r0, &(0x7f0000057fa0)=[{{}, 0x0, 0x100000001}, {}], 0x30) 2018/04/30 22:51:41 executing program 4: r0 = syz_open_dev$evdev(&(0x7f0000072fee)='/dev/input/event#\x00', 0x0, 0x0) read(0xffffffffffffffff, &(0x7f000006b000)=""/24, 0x18) 2018/04/30 22:51:41 executing program 1 (fault-call:2 fault-nth:16): mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0xc003, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:51:41 executing program 5: syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x0, 0x0) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(0xffffffffffffffff, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x6}, 0x1c) 2018/04/30 22:51:41 executing program 7: r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0) ioctl$SG_SET_DEBUG(r0, 0x227e, &(0x7f0000000100)=0x1) ioctl$SG_IO(r0, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x0, 0x0, @buffer={0x0, 0x47, &(0x7f0000000040)=""/71}, &(0x7f00000000c0), &(0x7f00000002c0)=""/182, 0x0, 0x0, 0x0, &(0x7f0000000380)}) 2018/04/30 22:51:41 executing program 0: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)="2e2f66696c653002", &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:51:41 executing program 6 (fault-call:2 fault-nth:25): mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x1, 0x0) 2018/04/30 22:51:41 executing program 3: socketpair$inet(0x2, 0x80f, 0xfffffffffffffffa, &(0x7f0000000040)={0xffffffffffffffff}) ioctl$sock_inet_SIOCGIFDSTADDR(r0, 0x8917, &(0x7f0000000080)={'ip6tnl0\x00', {0x2, 0x4e23, @remote={0xac, 0x14, 0x14, 0xbb}}}) r1 = syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x0, 0x0) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r2, &(0x7f000000d000)={0xa, 0x0, 0x100000000000000, @dev={0xfe, 0x80}, 0x7}, 0x16f) connect$inet6(r2, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x2000000}, 0x1c) syz_init_net_socket$nfc_llcp(0x27, 0x0, 0x1) ioctl$TCFLSH(r1, 0x540b, 0x1) setsockopt$SO_VM_SOCKETS_BUFFER_MAX_SIZE(r1, 0x28, 0x2, &(0x7f0000000140)=0x7ff, 0x8) [ 167.890116] RSP: 002b:00007fd82c387c68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 167.897813] RAX: ffffffffffffffda RBX: 00007fd82c3886d4 RCX: 0000000000455979 [ 167.905074] RDX: 0000000020000100 RSI: 0000000020000080 RDI: 0000000020000040 [ 167.912330] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 167.919592] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000014 [ 167.926849] R13: 0000000000000440 R14: 00000000006fa6a0 R15: 000000000000000f 2018/04/30 22:51:41 executing program 7: r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0) ioctl$SG_SET_DEBUG(r0, 0x227e, &(0x7f0000000100)=0x1) ioctl$SG_IO(r0, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x11, 0x0, @buffer={0x0, 0x47, &(0x7f0000000040)=""/71}, &(0x7f00000000c0)="7f2911fa31fa4f4b2f5687dbd490bd09e4", &(0x7f00000002c0)=""/182, 0x0, 0x0, 0x0, &(0x7f0000000380)}) [ 167.982599] FAULT_INJECTION: forcing a failure. [ 167.982599] name failslab, interval 1, probability 0, space 0, times 0 [ 167.993990] CPU: 1 PID: 12951 Comm: syz-executor6 Not tainted 4.17.0-rc3+ #26 [ 168.001278] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 168.010637] Call Trace: [ 168.013244] dump_stack+0x1b9/0x294 [ 168.016889] ? dump_stack_print_info.cold.2+0x52/0x52 [ 168.022103] ? __save_stack_trace+0x7e/0xd0 [ 168.026456] should_fail.cold.4+0xa/0x1a [ 168.031243] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 168.036369] ? save_stack+0x43/0xd0 [ 168.040017] ? kasan_kmalloc+0xc4/0xe0 [ 168.043926] ? kmem_cache_alloc_trace+0x152/0x780 [ 168.048793] ? __memcg_init_list_lru_node+0x17d/0x2c0 [ 168.050228] sd 0:0:1:0: [sg_rq_end_io] Sense Key : Illegal Request [current] [ 168.053994] ? __list_lru_init+0x456/0x790 [ 168.054016] ? sget_userns+0x767/0xf00 [ 168.054034] ? graph_lock+0x170/0x170 [ 168.061501] sd 0:0:1:0: [sg_rq_end_io] Add. Sense: Invalid command operation code 2018/04/30 22:51:41 executing program 7: r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0) ioctl$SG_SET_DEBUG(r0, 0x227e, &(0x7f0000000100)=0x1) ioctl$SG_IO(r0, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x11, 0x0, @buffer={0x0, 0x47, &(0x7f0000000040)=""/71}, &(0x7f00000000c0)="7f2911fa31fa4f4b2f5687dbd490bd09e4", &(0x7f00000002c0)=""/182, 0x0, 0x0, 0x0, &(0x7f0000000380)}) 2018/04/30 22:51:41 executing program 0: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)="2e2f66696c6530fe", &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) [ 168.065732] ? vfs_kern_mount.part.34+0xd4/0x4d0 [ 168.085758] ? do_mount+0x564/0x3070 [ 168.089513] ? ksys_mount+0x12d/0x140 [ 168.093326] ? __x64_sys_mount+0xbe/0x150 [ 168.097497] ? do_syscall_64+0x1b1/0x800 [ 168.101578] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 168.106958] ? find_held_lock+0x36/0x1c0 [ 168.111042] ? __lock_is_held+0xb5/0x140 [ 168.115130] ? check_same_owner+0x320/0x320 [ 168.119486] ? rcu_note_context_switch+0x710/0x710 [ 168.124314] sd 0:0:1:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 2018/04/30 22:51:41 executing program 7: r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0) ioctl$SG_SET_DEBUG(r0, 0x227e, &(0x7f0000000100)=0x1) ioctl$SG_IO(r0, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x11, 0x0, @buffer={0x0, 0x47, &(0x7f0000000040)=""/71}, &(0x7f00000000c0)="7f2911fa31fa4f4b2f5687dbd490bd09e4", &(0x7f00000002c0)=""/182, 0x0, 0x0, 0x0, &(0x7f0000000380)}) [ 168.124438] __should_failslab+0x124/0x180 [ 168.131720] sd 0:0:1:0: [sg_rq_end_io] Add. Sense: Invalid command operation code [ 168.135951] should_failslab+0x9/0x14 [ 168.147396] kmem_cache_alloc_trace+0x2cb/0x780 [ 168.152085] ? __kmalloc_node+0x33/0x70 [ 168.156079] ? __kmalloc_node+0x33/0x70 [ 168.160072] ? rcu_read_lock_sched_held+0x108/0x120 [ 168.165117] __memcg_init_list_lru_node+0x17d/0x2c0 [ 168.170157] ? kvfree_rcu+0x20/0x20 [ 168.173802] ? __kmalloc_node+0x47/0x70 [ 168.177797] __list_lru_init+0x456/0x790 [ 168.181889] ? list_lru_destroy+0x4c0/0x4c0 [ 168.186254] ? mark_held_locks+0xc9/0x160 [ 168.190434] ? __raw_spin_lock_init+0x1c/0x100 [ 168.195047] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 168.200094] ? lockdep_init_map+0x9/0x10 [ 168.204186] sget_userns+0x767/0xf00 [ 168.207350] sd 0:0:1:0: [sg_rq_end_io] Sense Key : Illegal Request [current] [ 168.207918] ? get_anon_bdev+0x2f0/0x2f0 [ 168.215183] sd 0:0:1:0: [sg_rq_end_io] Add. Sense: Invalid command operation code [ 168.219230] ? test_bdev_super+0x50/0x50 2018/04/30 22:51:41 executing program 7: r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0) ioctl$SG_SET_DEBUG(r0, 0x227e, &(0x7f0000000100)=0x1) ioctl$SG_IO(r0, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x19, 0x0, @buffer={0x0, 0x47, &(0x7f0000000040)=""/71}, &(0x7f00000000c0)="7f2911fa31fa4f4b2f5687dbd490bd09e476cb6b139f568637", &(0x7f00000002c0)=""/182, 0x0, 0x0, 0x0, &(0x7f0000000380)}) 2018/04/30 22:51:41 executing program 0: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)="2e2f66696c6530ff", &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) [ 168.230887] ? destroy_unused_super.part.11+0x110/0x110 [ 168.236272] ? alloc_vfsmnt+0x771/0x9d0 [ 168.240261] ? mnt_free_id.isra.27+0x60/0x60 [ 168.244685] ? kasan_check_read+0x11/0x20 [ 168.248851] ? graph_lock+0x170/0x170 [ 168.252681] ? cap_capable+0x1f9/0x260 [ 168.256586] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 168.262139] ? security_capable+0x99/0xc0 [ 168.266316] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 168.268622] sd 0:0:1:0: [sg_rq_end_io] Sense Key : Illegal Request [current] [ 168.271877] ? ns_capable_common+0x13f/0x170 2018/04/30 22:51:41 executing program 7: r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0) ioctl$SG_SET_DEBUG(r0, 0x227e, &(0x7f0000000100)=0x1) ioctl$SG_IO(r0, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x19, 0x0, @buffer={0x0, 0x47, &(0x7f0000000040)=""/71}, &(0x7f00000000c0)="7f2911fa31fa4f4b2f5687dbd490bd09e476cb6b139f568637", &(0x7f00000002c0)=""/182, 0x0, 0x0, 0x0, &(0x7f0000000380)}) [ 168.279147] sd 0:0:1:0: [sg_rq_end_io] Add. Sense: Invalid command operation code [ 168.283544] ? get_anon_bdev+0x2f0/0x2f0 [ 168.295198] sget+0x10b/0x150 [ 168.298341] ? test_bdev_super+0x50/0x50 [ 168.302418] ? fuse_ctl_add_conn+0x280/0x280 [ 168.306848] mount_single+0x3a/0x170 [ 168.310577] fuse_ctl_mount+0x2c/0x40 [ 168.314402] mount_fs+0xae/0x328 [ 168.317783] ? mpi_free.cold.1+0x19/0x19 [ 168.321866] vfs_kern_mount.part.34+0xd4/0x4d0 [ 168.326475] ? may_umount+0xb0/0xb0 2018/04/30 22:51:41 executing program 7: r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0) ioctl$SG_SET_DEBUG(r0, 0x227e, &(0x7f0000000100)=0x1) ioctl$SG_IO(r0, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x19, 0x0, @buffer={0x0, 0x47, &(0x7f0000000040)=""/71}, &(0x7f00000000c0)="7f2911fa31fa4f4b2f5687dbd490bd09e476cb6b139f568637", &(0x7f00000002c0)=""/182, 0x0, 0x0, 0x0, &(0x7f0000000380)}) [ 168.329656] sd 0:0:1:0: [sg_rq_end_io] Sense Key : Illegal Request [current] [ 168.330120] ? _raw_read_unlock+0x22/0x30 [ 168.337381] sd 0:0:1:0: [sg_rq_end_io] Add. Sense: Invalid command operation code [ 168.341516] ? __get_fs_type+0x97/0xc0 [ 168.353052] do_mount+0x564/0x3070 [ 168.356606] ? lock_downgrade+0x8e0/0x8e0 [ 168.360771] ? copy_mount_string+0x40/0x40 [ 168.365033] ? check_same_owner+0x320/0x320 [ 168.369375] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 168.374422] ? __check_object_size+0x95/0x5d9 [ 168.378944] ? __might_sleep+0x95/0x190 [ 168.382944] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 168.388505] ? _copy_from_user+0xdf/0x150 [ 168.392681] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 168.398242] ? copy_mount_options+0x285/0x380 [ 168.402760] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 168.408321] ksys_mount+0x12d/0x140 [ 168.412254] __x64_sys_mount+0xbe/0x150 [ 168.416250] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 168.417046] sd 0:0:1:0: [sg_rq_end_io] Sense Key : Illegal Request [current] [ 168.421281] do_syscall_64+0x1b1/0x800 [ 168.428546] sd 0:0:1:0: [sg_rq_end_io] Add. Sense: Invalid command operation code [ 168.432419] ? finish_task_switch+0x1ca/0x810 [ 168.444514] ? syscall_return_slowpath+0x5c0/0x5c0 [ 168.449474] ? syscall_return_slowpath+0x30f/0x5c0 [ 168.454438] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 168.459913] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 168.464780] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 168.470015] RIP: 0033:0x455979 [ 168.473208] RSP: 002b:00007f1fa3db4c68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 168.480930] RAX: ffffffffffffffda RBX: 00007f1fa3db56d4 RCX: 0000000000455979 [ 168.488211] RDX: 0000000020000100 RSI: 0000000020000080 RDI: 0000000020000040 [ 168.495499] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 168.502784] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000014 [ 168.510062] R13: 0000000000000440 R14: 00000000006fa6a0 R15: 0000000000000019 [ 168.687445] device bridge_slave_1 left promiscuous mode [ 168.693084] bridge0: port 2(bridge_slave_1) entered disabled state [ 168.709753] device bridge_slave_0 left promiscuous mode [ 168.715449] bridge0: port 1(bridge_slave_0) entered disabled state 2018/04/30 22:51:41 executing program 2: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$evdev(&(0x7f0000072fee)='/dev/input/event#\x00', 0x0, 0x2) read(r0, &(0x7f000006b000)=""/24, 0x18) write$evdev(r0, &(0x7f0000057fa0)=[{{}, 0x0, 0x100000001}, {}], 0x30) 2018/04/30 22:51:41 executing program 7: r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0) ioctl$SG_SET_DEBUG(r0, 0x227e, &(0x7f0000000100)=0x1) ioctl$SG_IO(r0, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x1d, 0x0, @buffer={0x0, 0x47, &(0x7f0000000040)=""/71}, &(0x7f00000000c0)="7f2911fa31fa4f4b2f5687dbd490bd09e476cb6b139f5686379495446b", &(0x7f00000002c0)=""/182, 0x0, 0x0, 0x0, &(0x7f0000000380)}) 2018/04/30 22:51:41 executing program 0: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:51:41 executing program 4 (fault-call:1 fault-nth:0): r0 = syz_open_dev$evdev(&(0x7f0000072fee)='/dev/input/event#\x00', 0x0, 0x0) read(r0, &(0x7f000006b000)=""/24, 0x18) 2018/04/30 22:51:41 executing program 5: syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x0, 0x0) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(0xffffffffffffffff, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x6}, 0x1c) 2018/04/30 22:51:41 executing program 3: r0 = syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x0, 0x0) ioctl$PERF_EVENT_IOC_ID(r0, 0x80082407, &(0x7f00000003c0)) r1 = request_key(&(0x7f00000001c0)='keyring\x00', &(0x7f0000000200)={0x73, 0x79, 0x7a, 0x1}, &(0x7f0000000240)='trusted\x00', 0xfffffffffffffffd) ioctl$TUNSETSNDBUF(r0, 0x400454d4, &(0x7f0000000280)=0x5) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) lstat(&(0x7f0000000080)='./file0\x00', &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0}) stat(&(0x7f00000006c0)='./file0\x00', &(0x7f0000000700)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) r4 = semget(0x0, 0x7, 0x0) semctl$SETVAL(r4, 0x7, 0x10, &(0x7f0000000780)=0x1) fchownat(r0, &(0x7f0000000040)='./file0\x00', r2, r3, 0xd00) r5 = add_key$user(&(0x7f00000002c0)='user\x00', &(0x7f0000000300)={0x73, 0x79, 0x7a, 0x2}, &(0x7f0000000340)="268170fe35d245a8b901493ee50ec2547c560f3438f8dc6fe0ebc44e2250e26980a507f03abf86c6ca8aee141efdb4bfd970bf194690844c8eb5437c0b1ba86098f62a9bcd6c222fc23adff371e64f05836c9430f3f45611f5244abf0315", 0x5e, r1) r6 = socket$inet6(0xa, 0x4, 0x0) connect$inet6(r6, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r6, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x2000000}, 0x1c) syz_init_net_socket$nfc_llcp(0x27, 0xfffffffffffffffe, 0x1) accept$packet(r0, &(0x7f0000000600)={0x0, 0x0, 0x0}, &(0x7f0000000640)=0x14) getsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(r0, 0x84, 0x75, &(0x7f00000007c0)={0x0, 0xffffffffffffff7f}, &(0x7f0000000800)=0x8) setsockopt$inet_sctp6_SCTP_AUTH_KEY(r0, 0x84, 0x17, &(0x7f0000000840)={r8, 0x1, 0xca, "a846c19325cecab388ddef783c073bc58eee423bd90935a34b06882c8a5b129bc6bc2accde74db1ab70181b001ea9ad143d364af2c20397811702bd4026b77c8e9436153e59fb7c8a101620b9ae23f232445a31fabc893a82a38fef8f34c6e525fd866cd1bc8a86860673a729d146e0f0f9af10e0e4609fdac70510fea09f77ce6c1eaf62312af0ed2fa0817429d2acbb302a5e28645ff34a0ab37b252021d036b898c6275e997e7c32d3e57658f9ec410953bd0139f3b3ab5d35fca1fe4639071b4faa01a24e1018659"}, 0xd2) ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000680)={'vcan0\x00', r7}) keyctl$negate(0xd, r5, 0x6, r1) getsockopt$inet_sctp6_SCTP_STATUS(r6, 0x84, 0xe, &(0x7f0000000400)={0x0, 0x7fff, 0x80, 0xf8a, 0xdb, 0xfffffffffffffffb, 0x144a0000000, 0x7, {0x0, @in={{0x2, 0x100, @remote={0xac, 0x14, 0x14, 0xbb}}}, 0xef3d, 0x0, 0x1f, 0x9, 0xffffffffffff8000}}, &(0x7f00000004c0)=0xb0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDR_INFO(r0, 0x84, 0xf, &(0x7f0000000500)={r9, @in6={{0xa, 0x4e21, 0x101, @mcast2={0xff, 0x2, [], 0x1}, 0x75}}, 0x1ff, 0x2, 0x7, 0x4, 0xfff}, &(0x7f00000005c0)=0x98) 2018/04/30 22:51:41 executing program 6 (fault-call:2 fault-nth:26): mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x1, 0x0) 2018/04/30 22:51:41 executing program 1 (fault-call:2 fault-nth:17): mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0xc003, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) [ 168.757845] team0 (unregistering): Port device team_slave_1 removed [ 168.768518] team0 (unregistering): Port device team_slave_0 removed [ 168.781366] bond0 (unregistering): Releasing backup interface bond_slave_1 [ 168.799736] bond0 (unregistering): Releasing backup interface bond_slave_0 [ 168.845186] sd 0:0:1:0: [sg_rq_end_io] Sense Key : Illegal Request [current] [ 168.846257] FAULT_INJECTION: forcing a failure. [ 168.846257] name failslab, interval 1, probability 0, space 0, times 0 [ 168.852519] sd 0:0:1:0: [sg_rq_end_io] Add. Sense: Invalid command operation code [ 168.871587] CPU: 1 PID: 12995 Comm: syz-executor6 Not tainted 4.17.0-rc3+ #26 [ 168.878949] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 168.888314] Call Trace: [ 168.890923] dump_stack+0x1b9/0x294 [ 168.894586] ? dump_stack_print_info.cold.2+0x52/0x52 [ 168.899803] ? __save_stack_trace+0x7e/0xd0 [ 168.904153] should_fail.cold.4+0xa/0x1a [ 168.908242] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 168.913371] ? save_stack+0x43/0xd0 [ 168.917050] ? kasan_kmalloc+0xc4/0xe0 [ 168.919435] bond0 (unregistering): Released all slaves [ 168.920951] ? kmem_cache_alloc_trace+0x152/0x780 [ 168.920968] ? __memcg_init_list_lru_node+0x17d/0x2c0 [ 168.920984] ? __list_lru_init+0x456/0x790 [ 168.921000] ? sget_userns+0x767/0xf00 [ 168.921017] ? graph_lock+0x170/0x170 [ 168.921031] ? vfs_kern_mount.part.34+0xd4/0x4d0 [ 168.921047] ? do_mount+0x564/0x3070 [ 168.956660] ? ksys_mount+0x12d/0x140 [ 168.960446] ? __x64_sys_mount+0xbe/0x150 [ 168.964584] ? do_syscall_64+0x1b1/0x800 [ 168.969594] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 168.974955] ? find_held_lock+0x36/0x1c0 [ 168.979015] ? __lock_is_held+0xb5/0x140 [ 168.983085] ? check_same_owner+0x320/0x320 [ 168.987401] ? rcu_note_context_switch+0x710/0x710 [ 168.992323] __should_failslab+0x124/0x180 [ 168.996548] should_failslab+0x9/0x14 [ 169.000337] kmem_cache_alloc_trace+0x2cb/0x780 [ 169.004995] ? __kmalloc_node+0x33/0x70 [ 169.008974] ? __kmalloc_node+0x33/0x70 [ 169.015295] ? rcu_read_lock_sched_held+0x108/0x120 [ 169.020308] __memcg_init_list_lru_node+0x17d/0x2c0 [ 169.025319] ? kvfree_rcu+0x20/0x20 [ 169.028936] ? __kmalloc_node+0x47/0x70 [ 169.032906] __list_lru_init+0x456/0x790 [ 169.036959] ? list_lru_destroy+0x4c0/0x4c0 [ 169.041277] ? mark_held_locks+0xc9/0x160 [ 169.045419] ? __raw_spin_lock_init+0x1c/0x100 [ 169.049992] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 169.055010] ? lockdep_init_map+0x9/0x10 [ 169.059067] sget_userns+0x767/0xf00 [ 169.062771] ? get_anon_bdev+0x2f0/0x2f0 [ 169.066824] ? test_bdev_super+0x50/0x50 [ 169.070968] ? destroy_unused_super.part.11+0x110/0x110 [ 169.076328] ? alloc_vfsmnt+0x771/0x9d0 [ 169.080293] ? mnt_free_id.isra.27+0x60/0x60 [ 169.084697] ? kasan_check_read+0x11/0x20 [ 169.088835] ? graph_lock+0x170/0x170 [ 169.092624] ? cap_capable+0x1f9/0x260 [ 169.096518] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 169.102055] ? security_capable+0x99/0xc0 [ 169.106197] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 169.111733] ? ns_capable_common+0x13f/0x170 [ 169.116134] ? get_anon_bdev+0x2f0/0x2f0 [ 169.120628] sget+0x10b/0x150 [ 169.123725] ? test_bdev_super+0x50/0x50 [ 169.127781] ? fuse_ctl_add_conn+0x280/0x280 [ 169.132181] mount_single+0x3a/0x170 [ 169.135903] fuse_ctl_mount+0x2c/0x40 [ 169.139696] mount_fs+0xae/0x328 [ 169.143069] ? mpi_free.cold.1+0x19/0x19 [ 169.147124] vfs_kern_mount.part.34+0xd4/0x4d0 [ 169.151697] ? may_umount+0xb0/0xb0 [ 169.155328] ? _raw_read_unlock+0x22/0x30 [ 169.159465] ? __get_fs_type+0x97/0xc0 [ 169.163349] do_mount+0x564/0x3070 [ 169.166888] ? lock_downgrade+0x8e0/0x8e0 [ 169.171039] ? copy_mount_string+0x40/0x40 [ 169.175269] ? check_same_owner+0x320/0x320 [ 169.179582] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 169.184592] ? __check_object_size+0x95/0x5d9 [ 169.189238] ? __might_sleep+0x95/0x190 [ 169.193218] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 169.198746] ? _copy_from_user+0xdf/0x150 [ 169.202889] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 169.209031] ? copy_mount_options+0x285/0x380 [ 169.213523] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 169.219061] ksys_mount+0x12d/0x140 [ 169.222689] __x64_sys_mount+0xbe/0x150 [ 169.226659] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 169.231671] do_syscall_64+0x1b1/0x800 [ 169.235551] ? finish_task_switch+0x1ca/0x810 [ 169.240040] ? syscall_return_slowpath+0x5c0/0x5c0 [ 169.244963] ? syscall_return_slowpath+0x30f/0x5c0 [ 169.249888] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 169.255250] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 169.260089] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 169.265272] RIP: 0033:0x455979 [ 169.268451] RSP: 002b:00007f1fa3db4c68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 169.276154] RAX: ffffffffffffffda RBX: 00007f1fa3db56d4 RCX: 0000000000455979 [ 169.283418] RDX: 0000000020000100 RSI: 0000000020000080 RDI: 0000000020000040 2018/04/30 22:51:42 executing program 0: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) [ 169.290676] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 169.297942] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000014 [ 169.305207] R13: 0000000000000440 R14: 00000000006fa6a0 R15: 000000000000001a 2018/04/30 22:51:42 executing program 7: r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0) ioctl$SG_SET_DEBUG(r0, 0x227e, &(0x7f0000000100)=0x1) ioctl$SG_IO(r0, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x1d, 0x0, @buffer={0x0, 0x47, &(0x7f0000000040)=""/71}, &(0x7f00000000c0)="7f2911fa31fa4f4b2f5687dbd490bd09e476cb6b139f5686379495446b", &(0x7f00000002c0)=""/182, 0x0, 0x0, 0x0, &(0x7f0000000380)}) 2018/04/30 22:51:42 executing program 0: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0H', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) [ 169.411913] sd 0:0:1:0: [sg_rq_end_io] Sense Key : Illegal Request [current] [ 169.419374] sd 0:0:1:0: [sg_rq_end_io] Add. Sense: Invalid command operation code 2018/04/30 22:51:42 executing program 7: r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0) ioctl$SG_SET_DEBUG(r0, 0x227e, &(0x7f0000000100)=0x1) ioctl$SG_IO(r0, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x1d, 0x0, @buffer={0x0, 0x47, &(0x7f0000000040)=""/71}, &(0x7f00000000c0)="7f2911fa31fa4f4b2f5687dbd490bd09e476cb6b139f5686379495446b", &(0x7f00000002c0)=""/182, 0x0, 0x0, 0x0, &(0x7f0000000380)}) 2018/04/30 22:51:42 executing program 0: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)="2e2f66696c653003", &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) [ 169.465959] IPVS: ftp: loaded support on port[0] = 21 [ 169.503980] sd 0:0:1:0: [sg_rq_end_io] Sense Key : Illegal Request [current] [ 169.511327] sd 0:0:1:0: [sg_rq_end_io] Add. Sense: Invalid command operation code 2018/04/30 22:51:42 executing program 7: r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0) ioctl$SG_SET_DEBUG(r0, 0x227e, &(0x7f0000000100)=0x1) ioctl$SG_IO(r0, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x1f, 0x0, @buffer={0x0, 0x47, &(0x7f0000000040)=""/71}, &(0x7f00000000c0)="7f2911fa31fa4f4b2f5687dbd490bd09e476cb6b139f5686379495446bcea9", &(0x7f00000002c0)=""/182, 0x0, 0x0, 0x0, &(0x7f0000000380)}) 2018/04/30 22:51:42 executing program 0: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) [ 169.594082] sd 0:0:1:0: [sg_rq_end_io] Sense Key : Illegal Request [current] [ 169.601442] sd 0:0:1:0: [sg_rq_end_io] Add. Sense: Invalid command operation code [ 169.635447] FAULT_INJECTION: forcing a failure. [ 169.635447] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 169.647737] CPU: 0 PID: 12990 Comm: syz-executor4 Not tainted 4.17.0-rc3+ #26 [ 169.655029] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 169.664394] Call Trace: [ 169.667002] dump_stack+0x1b9/0x294 [ 169.670658] ? dump_stack_print_info.cold.2+0x52/0x52 [ 169.675883] should_fail.cold.4+0xa/0x1a [ 169.679958] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 169.685158] ? lock_acquire+0x1dc/0x520 [ 169.689225] ? find_held_lock+0x36/0x1c0 [ 169.693304] ? lock_downgrade+0x8e0/0x8e0 [ 169.697466] ? rcu_is_watching+0x85/0x140 [ 169.701619] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 169.706829] ? rcu_read_lock+0x70/0x70 [ 169.710723] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 169.716264] ? mark_page_accessed+0x66a/0xd10 [ 169.720769] ? __unlock_page_memcg+0x72/0x100 [ 169.725271] __alloc_pages_nodemask+0x34e/0xd70 [ 169.729952] ? __alloc_pages_slowpath+0x2db0/0x2db0 2018/04/30 22:51:42 executing program 5: syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x0, 0x0) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(0xffffffffffffffff, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x6}, 0x1c) [ 169.735060] ? check_noncircular+0x20/0x20 [ 169.739309] ? print_usage_bug+0xc0/0xc0 [ 169.743379] ? find_held_lock+0x36/0x1c0 [ 169.747459] ? lock_acquire+0x1dc/0x520 [ 169.751450] ? lock_release+0xa10/0xa10 [ 169.755430] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 169.760988] alloc_pages_current+0x10c/0x210 [ 169.765425] __get_free_pages+0xf/0x40 [ 169.769337] __tlb_remove_page_size+0x2e5/0x500 [ 169.774046] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 169.779611] unmap_page_range+0x1051/0x2200 [ 169.783975] ? vm_normal_page_pmd+0x3d0/0x3d0 [ 169.788499] ? perf_trace_lock+0xd6/0x900 [ 169.792679] ? __unwind_start+0x166/0x330 [ 169.796877] ? __kernel_text_address+0xd/0x40 [ 169.801394] ? graph_lock+0x170/0x170 [ 169.805209] ? __save_stack_trace+0x7e/0xd0 [ 169.809561] ? find_held_lock+0x36/0x1c0 [ 169.813650] ? lock_downgrade+0x8e0/0x8e0 [ 169.817823] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 169.823380] ? uprobe_munmap+0x144/0x430 [ 169.827469] ? uprobe_mmap+0xcf0/0xcf0 [ 169.831375] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 169.835979] ? _raw_spin_unlock_irqrestore+0x74/0xc0 [ 169.841109] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 169.846157] unmap_single_vma+0x1a0/0x310 [ 169.850333] unmap_vmas+0x120/0x1f0 [ 169.853979] exit_mmap+0x265/0x570 [ 169.857528] ? __ia32_sys_munmap+0x80/0x80 [ 169.861770] ? __khugepaged_exit+0x449/0x680 [ 169.866215] ? __might_sleep+0x95/0x190 [ 169.870201] mmput+0x251/0x610 [ 169.873404] ? lock_downgrade+0x811/0x8e0 [ 169.877557] ? set_mm_exe_file+0x1f0/0x1f0 [ 169.881810] ? kasan_check_read+0x11/0x20 [ 169.885967] ? do_raw_spin_unlock+0x9e/0x2e0 [ 169.890393] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 169.894998] ? kasan_check_write+0x14/0x20 [ 169.899255] ? do_raw_spin_lock+0xc1/0x200 [ 169.903514] do_exit+0xe98/0x2730 [ 169.906978] ? perf_event_update_userpage+0xd10/0xd10 [ 169.912182] ? mm_update_next_owner+0x980/0x980 [ 169.916863] ? print_usage_bug+0xc0/0xc0 [ 169.920938] ? print_usage_bug+0xc0/0xc0 [ 169.925013] ? find_held_lock+0x36/0x1c0 [ 169.929094] ? __lock_acquire+0x7f5/0x5140 [ 169.933344] ? zap_class+0x720/0x720 [ 169.937066] ? do_raw_spin_unlock+0x9e/0x2e0 [ 169.941485] ? debug_check_no_locks_freed+0x310/0x310 [ 169.946683] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 169.951714] ? trace_hardirqs_on+0xd/0x10 [ 169.955881] ? _raw_spin_unlock_irq+0x27/0x70 [ 169.960399] ? finish_task_switch+0x182/0x810 [ 169.964928] ? find_held_lock+0x36/0x1c0 [ 169.969011] ? perf_trace_lock+0xd6/0x900 [ 169.973207] ? zap_class+0x720/0x720 [ 169.976950] ? kasan_check_read+0x11/0x20 [ 169.981123] ? do_raw_spin_unlock+0x9e/0x2e0 [ 169.985553] ? graph_lock+0x170/0x170 [ 169.989376] ? _raw_spin_unlock_irqrestore+0x74/0xc0 [ 169.994503] ? memset+0x31/0x40 [ 169.997813] ? find_held_lock+0x36/0x1c0 [ 170.001898] ? lock_downgrade+0x8e0/0x8e0 [ 170.006077] do_group_exit+0x16f/0x430 [ 170.009988] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 170.014594] ? __ia32_sys_exit+0x50/0x50 [ 170.018675] ? _raw_spin_unlock_irq+0x27/0x70 [ 170.023186] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 170.028223] get_signal+0x886/0x1960 [ 170.031966] ? ptrace_notify+0x130/0x130 [ 170.036053] ? evdev_open+0x610/0x610 [ 170.039871] ? lock_downgrade+0x8e0/0x8e0 [ 170.044045] ? proc_fail_nth_write+0x96/0x1f0 [ 170.048553] ? prepare_to_wait+0x4d0/0x4d0 [ 170.052810] do_signal+0x98/0x2040 [ 170.056354] ? __vfs_read+0x117/0xa50 [ 170.060170] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 170.065714] ? evdev_open+0x610/0x610 [ 170.069528] ? vfs_copy_file_range+0xb80/0xb80 [ 170.074118] ? setup_sigcontext+0x7d0/0x7d0 [ 170.078445] ? fsnotify_first_mark+0x330/0x330 [ 170.083042] ? __lock_is_held+0xb5/0x140 [ 170.087126] ? security_file_permission+0x1c6/0x240 [ 170.092167] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 170.097719] ? exit_to_usermode_loop+0x87/0x310 [ 170.102404] exit_to_usermode_loop+0x28a/0x310 [ 170.106998] ? syscall_slow_exit_work+0x4f0/0x4f0 [ 170.111858] do_syscall_64+0x6ac/0x800 [ 170.115771] ? finish_task_switch+0x1ca/0x810 [ 170.120289] ? syscall_return_slowpath+0x5c0/0x5c0 [ 170.125228] ? syscall_return_slowpath+0x30f/0x5c0 [ 170.130169] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 170.135546] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 170.140806] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 170.140848] RIP: 0033:0x455979 [ 170.140855] RSP: 002b:00007fe3a83b7c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 170.140871] RAX: fffffffffffffe00 RBX: 00007fe3a83b86d4 RCX: 0000000000455979 [ 170.140879] RDX: 0000000000000018 RSI: 000000002006b000 RDI: 0000000000000013 [ 170.140887] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 170.140894] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000014 [ 170.140902] R13: 00000000000004d5 R14: 00000000006fb498 R15: 0000000000000000 [ 170.781480] bridge0: port 1(bridge_slave_0) entered blocking state [ 170.787936] bridge0: port 1(bridge_slave_0) entered disabled state [ 170.795319] device bridge_slave_0 entered promiscuous mode [ 170.833429] bridge0: port 2(bridge_slave_1) entered blocking state [ 170.840082] bridge0: port 2(bridge_slave_1) entered disabled state [ 170.847296] device bridge_slave_1 entered promiscuous mode [ 170.883990] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 170.918478] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 171.023597] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 171.052731] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 171.187585] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 171.194838] team0: Port device team_slave_0 added [ 171.218340] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 171.225501] team0: Port device team_slave_1 added [ 171.250113] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 171.276593] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 171.302367] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 171.328972] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 171.557454] bridge0: port 2(bridge_slave_1) entered blocking state [ 171.563872] bridge0: port 2(bridge_slave_1) entered forwarding state [ 171.570534] bridge0: port 1(bridge_slave_0) entered blocking state [ 171.576925] bridge0: port 1(bridge_slave_0) entered forwarding state [ 172.392734] 8021q: adding VLAN 0 to HW filter on device bond0 [ 172.471939] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 172.551341] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 172.557542] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 172.565223] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 172.640577] 8021q: adding VLAN 0 to HW filter on device team0 [ 173.108818] FAULT_INJECTION: forcing a failure. [ 173.108818] name failslab, interval 1, probability 0, space 0, times 0 [ 173.120174] CPU: 1 PID: 13299 Comm: syz-executor1 Not tainted 4.17.0-rc3+ #26 [ 173.127456] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 173.136804] Call Trace: [ 173.139476] dump_stack+0x1b9/0x294 [ 173.143109] ? dump_stack_print_info.cold.2+0x52/0x52 [ 173.148303] ? __save_stack_trace+0x7e/0xd0 [ 173.152620] should_fail.cold.4+0xa/0x1a [ 173.156763] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 173.161858] ? save_stack+0x43/0xd0 [ 173.165483] ? kasan_kmalloc+0xc4/0xe0 [ 173.169360] ? kmem_cache_alloc_trace+0x152/0x780 [ 173.174195] ? __memcg_init_list_lru_node+0x17d/0x2c0 [ 173.179384] ? __list_lru_init+0x456/0x790 [ 173.183610] ? sget_userns+0x73a/0xf00 [ 173.187489] ? graph_lock+0x170/0x170 [ 173.191297] ? vfs_kern_mount.part.34+0xd4/0x4d0 [ 173.196067] ? do_mount+0x564/0x3070 [ 173.199770] ? ksys_mount+0x12d/0x140 [ 173.203554] ? __x64_sys_mount+0xbe/0x150 [ 173.207691] ? do_syscall_64+0x1b1/0x800 [ 173.211739] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 173.217105] ? find_held_lock+0x36/0x1c0 [ 173.221165] ? __lock_is_held+0xb5/0x140 [ 173.225222] ? check_same_owner+0x320/0x320 [ 173.229532] ? rcu_note_context_switch+0x710/0x710 [ 173.234453] __should_failslab+0x124/0x180 [ 173.238854] should_failslab+0x9/0x14 [ 173.242752] kmem_cache_alloc_trace+0x2cb/0x780 [ 173.247413] ? __kmalloc_node+0x33/0x70 [ 173.251384] ? __kmalloc_node+0x33/0x70 [ 173.255361] __memcg_init_list_lru_node+0x17d/0x2c0 [ 173.260373] ? kvfree_rcu+0x20/0x20 [ 173.263998] ? __kmalloc_node+0x47/0x70 [ 173.267969] __list_lru_init+0x456/0x790 [ 173.272031] ? list_lru_destroy+0x4c0/0x4c0 [ 173.276345] ? mark_held_locks+0xc9/0x160 [ 173.280483] ? __raw_spin_lock_init+0x1c/0x100 [ 173.285056] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 173.290067] ? __lockdep_init_map+0x105/0x590 [ 173.294553] ? lockdep_init_map+0x9/0x10 [ 173.298602] sget_userns+0x73a/0xf00 [ 173.302301] ? get_anon_bdev+0x2f0/0x2f0 [ 173.306349] ? test_bdev_super+0x50/0x50 [ 173.310395] ? destroy_unused_super.part.11+0x110/0x110 [ 173.315756] ? alloc_vfsmnt+0x771/0x9d0 [ 173.319741] ? mnt_free_id.isra.27+0x60/0x60 [ 173.324136] ? kasan_check_read+0x11/0x20 [ 173.328278] ? graph_lock+0x170/0x170 [ 173.332068] ? cap_capable+0x1f9/0x260 [ 173.335958] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 173.341492] ? security_capable+0x99/0xc0 [ 173.345637] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 173.351162] ? ns_capable_common+0x13f/0x170 [ 173.355558] ? get_anon_bdev+0x2f0/0x2f0 [ 173.359618] sget+0x10b/0x150 [ 173.362710] ? test_bdev_super+0x50/0x50 [ 173.366763] ? fuse_ctl_add_conn+0x280/0x280 [ 173.371169] mount_single+0x3a/0x170 [ 173.374869] fuse_ctl_mount+0x2c/0x40 [ 173.378665] mount_fs+0xae/0x328 [ 173.382033] ? mpi_free.cold.1+0x19/0x19 [ 173.386092] vfs_kern_mount.part.34+0xd4/0x4d0 [ 173.390671] ? may_umount+0xb0/0xb0 [ 173.394287] ? _raw_read_unlock+0x22/0x30 [ 173.398422] ? __get_fs_type+0x97/0xc0 [ 173.402297] do_mount+0x564/0x3070 [ 173.405826] ? lock_downgrade+0x8e0/0x8e0 [ 173.409961] ? copy_mount_string+0x40/0x40 [ 173.414185] ? check_same_owner+0x320/0x320 [ 173.418494] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 173.423508] ? __check_object_size+0x95/0x5d9 [ 173.427998] ? __might_sleep+0x95/0x190 [ 173.431969] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 173.437497] ? _copy_from_user+0xdf/0x150 [ 173.441648] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 173.447175] ? copy_mount_options+0x285/0x380 [ 173.451660] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 173.457190] ksys_mount+0x12d/0x140 [ 173.460813] __x64_sys_mount+0xbe/0x150 [ 173.464770] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 173.469777] do_syscall_64+0x1b1/0x800 [ 173.473913] ? finish_task_switch+0x1ca/0x810 [ 173.478396] ? syscall_return_slowpath+0x5c0/0x5c0 [ 173.483313] ? syscall_return_slowpath+0x30f/0x5c0 [ 173.488233] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 173.493603] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 173.498448] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 173.503644] RIP: 0033:0x455979 2018/04/30 22:51:46 executing program 2: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$evdev(&(0x7f0000072fee)='/dev/input/event#\x00', 0x0, 0x2) read(r0, &(0x7f000006b000)=""/24, 0x18) write$evdev(r0, &(0x7f0000057fa0)=[{{}, 0x0, 0x100000001}, {}], 0x30) 2018/04/30 22:51:46 executing program 6 (fault-call:2 fault-nth:27): mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x1, 0x0) 2018/04/30 22:51:46 executing program 1 (fault-call:2 fault-nth:18): mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0xc003, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:51:46 executing program 4: r0 = syz_open_dev$evdev(&(0x7f0000072fee)='/dev/input/event#\x00', 0x0, 0x0) read(r0, &(0x7f000006b000)=""/24, 0x18) 2018/04/30 22:51:46 executing program 7: r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0) ioctl$SG_SET_DEBUG(r0, 0x227e, &(0x7f0000000100)=0x1) ioctl$SG_IO(r0, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x1f, 0x0, @buffer={0x0, 0x47, &(0x7f0000000040)=""/71}, &(0x7f00000000c0)="7f2911fa31fa4f4b2f5687dbd490bd09e476cb6b139f5686379495446bcea9", &(0x7f00000002c0)=""/182, 0x0, 0x0, 0x0, &(0x7f0000000380)}) 2018/04/30 22:51:46 executing program 5: syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x0, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x6}, 0x1c) 2018/04/30 22:51:46 executing program 3: r0 = syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x8, @ipv4={[], [0xff, 0xff], @broadcast=0xffffffff}, 0x8}, 0x1c) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r1, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x2000000}, 0x1c) setsockopt$IP_VS_SO_SET_ADD(r0, 0x0, 0x482, &(0x7f0000000080)={0x32, @empty, 0x4e24, 0x2, 'none\x00', 0x4, 0x4, 0x3}, 0x2c) syz_init_net_socket$nfc_llcp(0x27, 0x0, 0x1) 2018/04/30 22:51:46 executing program 0: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) [ 173.506827] RSP: 002b:00007f747cc96c68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 173.514522] RAX: ffffffffffffffda RBX: 00007f747cc976d4 RCX: 0000000000455979 [ 173.521779] RDX: 0000000020000100 RSI: 0000000020000080 RDI: 0000000020000040 [ 173.529038] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 173.536293] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000014 [ 173.543551] R13: 0000000000000440 R14: 00000000006fa6a0 R15: 0000000000000011 [ 173.580683] FAULT_INJECTION: forcing a failure. [ 173.580683] name failslab, interval 1, probability 0, space 0, times 0 [ 173.592067] CPU: 0 PID: 13302 Comm: syz-executor6 Not tainted 4.17.0-rc3+ #26 [ 173.599350] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 173.608889] Call Trace: [ 173.611496] dump_stack+0x1b9/0x294 [ 173.615130] ? dump_stack_print_info.cold.2+0x52/0x52 [ 173.620317] ? __save_stack_trace+0x7e/0xd0 [ 173.624643] should_fail.cold.4+0xa/0x1a [ 173.628700] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 173.633807] ? save_stack+0x43/0xd0 [ 173.637423] ? kasan_kmalloc+0xc4/0xe0 [ 173.641301] ? kmem_cache_alloc_trace+0x152/0x780 [ 173.646153] ? __memcg_init_list_lru_node+0x17d/0x2c0 [ 173.651344] ? __list_lru_init+0x456/0x790 [ 173.655573] ? sget_userns+0x767/0xf00 [ 173.659459] ? graph_lock+0x170/0x170 [ 173.663267] ? vfs_kern_mount.part.34+0xd4/0x4d0 [ 173.668016] ? do_mount+0x564/0x3070 [ 173.671726] ? ksys_mount+0x12d/0x140 [ 173.675636] ? __x64_sys_mount+0xbe/0x150 [ 173.679779] ? do_syscall_64+0x1b1/0x800 [ 173.683832] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 173.689214] ? find_held_lock+0x36/0x1c0 [ 173.693282] ? __lock_is_held+0xb5/0x140 [ 173.697620] ? check_same_owner+0x320/0x320 [ 173.701938] ? rcu_note_context_switch+0x710/0x710 [ 173.706869] __should_failslab+0x124/0x180 [ 173.711116] should_failslab+0x9/0x14 [ 173.714921] kmem_cache_alloc_trace+0x2cb/0x780 [ 173.719672] ? __kmalloc_node+0x33/0x70 [ 173.723740] ? __kmalloc_node+0x33/0x70 [ 173.727724] ? rcu_read_lock_sched_held+0x108/0x120 [ 173.732753] __memcg_init_list_lru_node+0x17d/0x2c0 [ 173.737766] ? kvfree_rcu+0x20/0x20 [ 173.741388] ? __kmalloc_node+0x47/0x70 [ 173.745371] __list_lru_init+0x456/0x790 [ 173.749429] ? list_lru_destroy+0x4c0/0x4c0 [ 173.753759] ? mark_held_locks+0xc9/0x160 [ 173.757917] ? __raw_spin_lock_init+0x1c/0x100 [ 173.762492] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 173.767507] ? lockdep_init_map+0x9/0x10 [ 173.771567] sget_userns+0x767/0xf00 [ 173.775278] ? get_anon_bdev+0x2f0/0x2f0 [ 173.779333] ? test_bdev_super+0x50/0x50 [ 173.783399] ? destroy_unused_super.part.11+0x110/0x110 [ 173.788762] ? alloc_vfsmnt+0x771/0x9d0 [ 173.792819] ? mnt_free_id.isra.27+0x60/0x60 [ 173.797237] ? kasan_check_read+0x11/0x20 [ 173.801383] ? graph_lock+0x170/0x170 [ 173.805175] ? cap_capable+0x1f9/0x260 [ 173.809064] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 173.814614] ? security_capable+0x99/0xc0 [ 173.818758] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 173.824300] ? ns_capable_common+0x13f/0x170 [ 173.828703] ? get_anon_bdev+0x2f0/0x2f0 [ 173.832773] sget+0x10b/0x150 [ 173.835870] ? test_bdev_super+0x50/0x50 [ 173.839932] ? fuse_ctl_add_conn+0x280/0x280 [ 173.844333] mount_single+0x3a/0x170 [ 173.848046] fuse_ctl_mount+0x2c/0x40 [ 173.851843] mount_fs+0xae/0x328 [ 173.855200] ? mpi_free.cold.1+0x19/0x19 [ 173.859256] vfs_kern_mount.part.34+0xd4/0x4d0 [ 173.863833] ? may_umount+0xb0/0xb0 [ 173.867467] ? _raw_read_unlock+0x22/0x30 [ 173.871616] ? __get_fs_type+0x97/0xc0 [ 173.875503] do_mount+0x564/0x3070 [ 173.879041] ? lock_downgrade+0x8e0/0x8e0 [ 173.883188] ? copy_mount_string+0x40/0x40 [ 173.887415] ? check_same_owner+0x320/0x320 [ 173.891741] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 173.896749] ? __check_object_size+0x95/0x5d9 [ 173.901258] ? __might_sleep+0x95/0x190 [ 173.905236] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 173.910767] ? _copy_from_user+0xdf/0x150 [ 173.914915] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 173.920454] ? copy_mount_options+0x285/0x380 [ 173.925117] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 173.930652] ksys_mount+0x12d/0x140 [ 173.934278] __x64_sys_mount+0xbe/0x150 [ 173.938245] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 173.943256] do_syscall_64+0x1b1/0x800 [ 173.947140] ? finish_task_switch+0x1ca/0x810 [ 173.951642] ? syscall_return_slowpath+0x5c0/0x5c0 [ 173.956584] ? syscall_return_slowpath+0x30f/0x5c0 [ 173.961513] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 173.966887] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 173.971743] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 173.976921] RIP: 0033:0x455979 [ 173.980189] RSP: 002b:00007f1fa3db4c68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 173.987893] RAX: ffffffffffffffda RBX: 00007f1fa3db56d4 RCX: 0000000000455979 [ 173.995176] RDX: 0000000020000100 RSI: 0000000020000080 RDI: 0000000020000040 [ 174.002700] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 174.010316] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000014 [ 174.017577] R13: 0000000000000440 R14: 00000000006fa6a0 R15: 000000000000001b [ 174.024995] sd 0:0:1:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 2018/04/30 22:51:47 executing program 5: r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x6}, 0x1c) 2018/04/30 22:51:47 executing program 7: r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0) ioctl$SG_SET_DEBUG(r0, 0x227e, &(0x7f0000000100)=0x1) ioctl$SG_IO(r0, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x1f, 0x0, @buffer={0x0, 0x47, &(0x7f0000000040)=""/71}, &(0x7f00000000c0)="7f2911fa31fa4f4b2f5687dbd490bd09e476cb6b139f5686379495446bcea9", &(0x7f00000002c0)=""/182, 0x0, 0x0, 0x0, &(0x7f0000000380)}) [ 174.032300] sd 0:0:1:0: [sg_rq_end_io] Add. Sense: Invalid command operation code 2018/04/30 22:51:47 executing program 0: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:51:47 executing program 3: syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x0, 0x0) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x2000000}, 0x1c) syz_init_net_socket$nfc_llcp(0x27, 0x0, 0x1) 2018/04/30 22:51:47 executing program 6 (fault-call:2 fault-nth:28): mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x1, 0x0) [ 174.136517] sd 0:0:1:0: [sg_rq_end_io] Sense Key : Illegal Request [current] [ 174.143873] sd 0:0:1:0: [sg_rq_end_io] Add. Sense: Invalid command operation code 2018/04/30 22:51:47 executing program 5: r0 = socket$inet6(0xa, 0x0, 0x0) connect$inet6(r0, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x6}, 0x1c) 2018/04/30 22:51:47 executing program 7: r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0) ioctl$SG_SET_DEBUG(r0, 0x227e, &(0x7f0000000100)=0x1) ioctl$SG_IO(r0, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x20, 0x0, @buffer={0x0, 0x47, &(0x7f0000000040)=""/71}, &(0x7f00000000c0)="7f2911fa31fa4f4b2f5687dbd490bd09e476cb6b139f5686379495446bcea9c3", &(0x7f00000002c0)=""/182, 0x0, 0x0, 0x0, &(0x7f0000000380)}) [ 174.275921] FAULT_INJECTION: forcing a failure. [ 174.275921] name failslab, interval 1, probability 0, space 0, times 0 [ 174.287334] CPU: 1 PID: 13334 Comm: syz-executor6 Not tainted 4.17.0-rc3+ #26 [ 174.294622] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 174.303992] Call Trace: [ 174.306609] dump_stack+0x1b9/0x294 [ 174.310268] ? dump_stack_print_info.cold.2+0x52/0x52 [ 174.315484] ? __save_stack_trace+0x7e/0xd0 [ 174.319844] should_fail.cold.4+0xa/0x1a [ 174.323938] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 174.329849] ? save_stack+0x43/0xd0 [ 174.333502] ? kasan_kmalloc+0xc4/0xe0 [ 174.337481] ? kmem_cache_alloc_trace+0x152/0x780 [ 174.342353] ? __memcg_init_list_lru_node+0x17d/0x2c0 [ 174.348267] ? __list_lru_init+0x456/0x790 [ 174.352617] ? sget_userns+0x767/0xf00 [ 174.356527] ? graph_lock+0x170/0x170 [ 174.360352] ? vfs_kern_mount.part.34+0xd4/0x4d0 [ 174.365172] ? do_mount+0x564/0x3070 [ 174.368912] ? ksys_mount+0x12d/0x140 2018/04/30 22:51:47 executing program 0: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)="2e2f66696c6530c0", &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) [ 174.372759] ? __x64_sys_mount+0xbe/0x150 [ 174.376966] ? do_syscall_64+0x1b1/0x800 [ 174.381075] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 174.386466] ? find_held_lock+0x36/0x1c0 [ 174.390573] ? __lock_is_held+0xb5/0x140 [ 174.390607] ? check_same_owner+0x320/0x320 [ 174.390629] ? rcu_note_context_switch+0x710/0x710 [ 174.390651] __should_failslab+0x124/0x180 [ 174.390669] should_failslab+0x9/0x14 [ 174.390685] kmem_cache_alloc_trace+0x2cb/0x780 [ 174.390700] ? __kmalloc_node+0x33/0x70 [ 174.390714] ? __kmalloc_node+0x33/0x70 [ 174.390729] ? rcu_read_lock_sched_held+0x108/0x120 [ 174.390749] __memcg_init_list_lru_node+0x17d/0x2c0 [ 174.390765] ? kvfree_rcu+0x20/0x20 [ 174.390781] ? __kmalloc_node+0x47/0x70 [ 174.390802] __list_lru_init+0x456/0x790 [ 174.390820] ? list_lru_destroy+0x4c0/0x4c0 [ 174.390835] ? mark_held_locks+0xc9/0x160 [ 174.390854] ? __raw_spin_lock_init+0x1c/0x100 [ 174.390871] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 174.390908] ? lockdep_init_map+0x9/0x10 [ 174.390928] sget_userns+0x767/0xf00 [ 174.390944] ? get_anon_bdev+0x2f0/0x2f0 [ 174.390963] ? test_bdev_super+0x50/0x50 [ 174.390982] ? destroy_unused_super.part.11+0x110/0x110 [ 174.391006] ? alloc_vfsmnt+0x771/0x9d0 [ 174.391021] ? mnt_free_id.isra.27+0x60/0x60 [ 174.391038] ? kasan_check_read+0x11/0x20 [ 174.391052] ? graph_lock+0x170/0x170 [ 174.391067] ? cap_capable+0x1f9/0x260 [ 174.391091] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 174.391106] ? security_capable+0x99/0xc0 [ 174.391126] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 174.391141] ? ns_capable_common+0x13f/0x170 [ 174.391158] ? get_anon_bdev+0x2f0/0x2f0 [ 174.391172] sget+0x10b/0x150 [ 174.391186] ? test_bdev_super+0x50/0x50 [ 174.391204] ? fuse_ctl_add_conn+0x280/0x280 [ 174.391219] mount_single+0x3a/0x170 [ 174.391236] fuse_ctl_mount+0x2c/0x40 [ 174.391252] mount_fs+0xae/0x328 [ 174.391267] ? mpi_free.cold.1+0x19/0x19 [ 174.391287] vfs_kern_mount.part.34+0xd4/0x4d0 [ 174.391304] ? may_umount+0xb0/0xb0 [ 174.391321] ? _raw_read_unlock+0x22/0x30 [ 174.391334] ? __get_fs_type+0x97/0xc0 [ 174.391355] do_mount+0x564/0x3070 [ 174.391370] ? lock_downgrade+0x8e0/0x8e0 [ 174.391388] ? copy_mount_string+0x40/0x40 [ 174.391404] ? check_same_owner+0x320/0x320 [ 174.391420] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 174.391435] ? __check_object_size+0x95/0x5d9 [ 174.391458] ? __might_sleep+0x95/0x190 [ 174.391481] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 174.391498] ? _copy_from_user+0xdf/0x150 [ 174.391518] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 174.391534] ? copy_mount_options+0x285/0x380 [ 174.391550] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 174.391568] ksys_mount+0x12d/0x140 [ 174.391584] __x64_sys_mount+0xbe/0x150 [ 174.391597] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 174.391615] do_syscall_64+0x1b1/0x800 [ 174.391629] ? finish_task_switch+0x1ca/0x810 [ 174.391647] ? syscall_return_slowpath+0x5c0/0x5c0 [ 174.391665] ? syscall_return_slowpath+0x30f/0x5c0 [ 174.391684] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 174.391701] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 174.391719] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 174.441844] sd 0:0:1:0: [sg_rq_end_io] Sense Key : Illegal Request [current] [ 174.443237] RIP: 0033:0x455979 [ 174.447304] sd 0:0:1:0: [sg_rq_end_io] Add. Sense: Invalid command operation code [ 174.451602] RSP: 002b:00007f1fa3db4c68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 174.699826] RAX: ffffffffffffffda RBX: 00007f1fa3db56d4 RCX: 0000000000455979 [ 174.707111] RDX: 0000000020000100 RSI: 0000000020000080 RDI: 0000000020000040 [ 174.714384] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 2018/04/30 22:51:47 executing program 2: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$evdev(&(0x7f0000072fee)='/dev/input/event#\x00', 0x0, 0x0) read(r0, &(0x7f000006b000)=""/24, 0x18) write$evdev(r0, &(0x7f0000057fa0)=[{{}, 0x0, 0x100000001}, {}], 0x30) 2018/04/30 22:51:47 executing program 3: openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhost-vsock\x00', 0x2, 0x0) syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x0, 0x0) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x2000000}, 0x1c) syz_init_net_socket$nfc_llcp(0x27, 0x4003, 0x1) 2018/04/30 22:51:47 executing program 1 (fault-call:2 fault-nth:19): mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0xc003, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:51:47 executing program 5: r0 = socket$inet6(0xa, 0x0, 0x0) connect$inet6(r0, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x6}, 0x1c) 2018/04/30 22:51:47 executing program 0: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:51:47 executing program 7: r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0) ioctl$SG_SET_DEBUG(r0, 0x227e, &(0x7f0000000100)=0x1) ioctl$SG_IO(r0, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x20, 0x0, @buffer={0x0, 0x47, &(0x7f0000000040)=""/71}, &(0x7f00000000c0)="7f2911fa31fa4f4b2f5687dbd490bd09e476cb6b139f5686379495446bcea9c3", &(0x7f00000002c0)=""/182, 0x0, 0x0, 0x0, &(0x7f0000000380)}) 2018/04/30 22:51:47 executing program 4: r0 = syz_open_dev$evdev(&(0x7f0000072fee)='/dev/input/event#\x00', 0x0, 0x0) r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='schedstat\x00') getsockopt$inet_sctp6_SCTP_CONTEXT(0xffffffffffffffff, 0x84, 0x11, &(0x7f0000000040)={0x0}, &(0x7f0000000080)=0x8) setsockopt$inet_sctp_SCTP_PR_SUPPORTED(r1, 0x84, 0x71, &(0x7f00000000c0)={r2, 0x7ff}, 0x8) read(r0, &(0x7f000006b000)=""/24, 0x18) 2018/04/30 22:51:47 executing program 6 (fault-call:2 fault-nth:29): mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x1, 0x0) [ 174.721648] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000014 [ 174.728917] R13: 0000000000000440 R14: 00000000006fa6a0 R15: 000000000000001c [ 174.785647] device bridge_slave_1 left promiscuous mode [ 174.791473] bridge0: port 2(bridge_slave_1) entered disabled state [ 174.804641] sd 0:0:1:0: [sg_rq_end_io] Sense Key : Illegal Request [current] [ 174.811987] sd 0:0:1:0: [sg_rq_end_io] Add. Sense: Invalid command operation code 2018/04/30 22:51:48 executing program 7: r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0) ioctl$SG_SET_DEBUG(r0, 0x227e, &(0x7f0000000100)=0x1) ioctl$SG_IO(r0, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x20, 0x0, @buffer={0x0, 0x47, &(0x7f0000000040)=""/71}, &(0x7f00000000c0)="7f2911fa31fa4f4b2f5687dbd490bd09e476cb6b139f5686379495446bcea9c3", &(0x7f00000002c0)=""/182, 0x0, 0x0, 0x0, &(0x7f0000000380)}) [ 174.846458] FAULT_INJECTION: forcing a failure. [ 174.846458] name failslab, interval 1, probability 0, space 0, times 0 [ 174.857856] CPU: 1 PID: 13365 Comm: syz-executor6 Not tainted 4.17.0-rc3+ #26 [ 174.865148] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 174.874514] Call Trace: [ 174.877125] dump_stack+0x1b9/0x294 [ 174.880780] ? dump_stack_print_info.cold.2+0x52/0x52 [ 174.885995] ? __save_stack_trace+0x7e/0xd0 [ 174.890367] should_fail.cold.4+0xa/0x1a 2018/04/30 22:51:48 executing program 5: r0 = socket$inet6(0xa, 0x0, 0x0) connect$inet6(r0, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x6}, 0x1c) [ 174.894460] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 174.899595] ? save_stack+0x43/0xd0 [ 174.903248] ? kasan_kmalloc+0xc4/0xe0 [ 174.907160] ? kmem_cache_alloc_trace+0x152/0x780 [ 174.912028] ? __memcg_init_list_lru_node+0x17d/0x2c0 [ 174.917253] ? __list_lru_init+0x456/0x790 [ 174.921515] ? sget_userns+0x767/0xf00 [ 174.925439] ? graph_lock+0x170/0x170 [ 174.929265] ? vfs_kern_mount.part.34+0xd4/0x4d0 [ 174.934043] ? do_mount+0x564/0x3070 [ 174.936483] sd 0:0:1:0: [sg_rq_end_io] Sense Key : Illegal Request [current] [ 174.937790] ? ksys_mount+0x12d/0x140 [ 174.945080] sd 0:0:1:0: [sg_rq_end_io] Add. Sense: Invalid command operation code [ 174.948878] ? __x64_sys_mount+0xbe/0x150 [ 174.960638] ? do_syscall_64+0x1b1/0x800 [ 174.964720] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 174.971108] ? find_held_lock+0x36/0x1c0 [ 174.975195] ? __lock_is_held+0xb5/0x140 [ 174.979295] ? check_same_owner+0x320/0x320 [ 174.983732] ? rcu_note_context_switch+0x710/0x710 [ 174.988688] __should_failslab+0x124/0x180 [ 174.992951] should_failslab+0x9/0x14 2018/04/30 22:51:48 executing program 7: r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0) ioctl$SG_SET_DEBUG(r0, 0x227e, &(0x7f0000000100)=0x1) ioctl$SG_IO(r0, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x1f, 0x0, @buffer={0x0, 0x47, &(0x7f0000000040)=""/71}, &(0x7f00000000c0)="7f2911fa31fa4f4b2f5687dbd490bd09e476cb6b139f5686379495446bcea9", &(0x7f00000002c0)=""/182, 0x0, 0x0, 0x0, &(0x7f0000000380)}) [ 174.996771] kmem_cache_alloc_trace+0x2cb/0x780 [ 175.001462] ? __kmalloc_node+0x33/0x70 [ 175.005459] ? __kmalloc_node+0x33/0x70 [ 175.009468] ? rcu_read_lock_sched_held+0x108/0x120 [ 175.014518] __memcg_init_list_lru_node+0x17d/0x2c0 [ 175.019563] ? kvfree_rcu+0x20/0x20 [ 175.023236] ? __kmalloc_node+0x47/0x70 [ 175.027242] __list_lru_init+0x456/0x790 [ 175.029216] sd 0:0:1:0: [sg_rq_end_io] Sense Key : Illegal Request [current] [ 175.031323] ? list_lru_destroy+0x4c0/0x4c0 2018/04/30 22:51:48 executing program 7 (fault-call:2 fault-nth:0): r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0) ioctl$SG_SET_DEBUG(r0, 0x227e, &(0x7f0000000100)=0x1) ioctl$SG_IO(r0, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x21, 0x0, @buffer={0x0, 0x47, &(0x7f0000000040)=""/71}, &(0x7f00000000c0)="7f2911fa31fa4f4b2f5687dbd490bd09e476cb6b139f5686379495446bcea9c334", &(0x7f00000002c0)=""/182, 0x0, 0x0, 0x0, &(0x7f0000000380)}) [ 175.038613] sd 0:0:1:0: [sg_rq_end_io] Add. Sense: Invalid command operation code [ 175.042934] ? mark_held_locks+0xc9/0x160 [ 175.054786] ? __raw_spin_lock_init+0x1c/0x100 [ 175.059387] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 175.064426] ? lockdep_init_map+0x9/0x10 [ 175.068506] sget_userns+0x767/0xf00 [ 175.072433] ? get_anon_bdev+0x2f0/0x2f0 [ 175.076516] ? test_bdev_super+0x50/0x50 [ 175.080595] ? destroy_unused_super.part.11+0x110/0x110 [ 175.086017] ? alloc_vfsmnt+0x771/0x9d0 [ 175.090027] ? mnt_free_id.isra.27+0x60/0x60 [ 175.094459] ? kasan_check_read+0x11/0x20 [ 175.098624] ? graph_lock+0x170/0x170 [ 175.099830] IPVS: ftp: loaded support on port[0] = 21 [ 175.102428] ? cap_capable+0x1f9/0x260 [ 175.102455] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 175.102470] ? security_capable+0x99/0xc0 [ 175.102490] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 175.102506] ? ns_capable_common+0x13f/0x170 [ 175.102528] ? get_anon_bdev+0x2f0/0x2f0 [ 175.113297] FAULT_INJECTION: forcing a failure. [ 175.113297] name failslab, interval 1, probability 0, space 0, times 0 [ 175.117221] sget+0x10b/0x150 [ 175.117238] ? test_bdev_super+0x50/0x50 [ 175.117257] ? fuse_ctl_add_conn+0x280/0x280 [ 175.117272] mount_single+0x3a/0x170 [ 175.117289] fuse_ctl_mount+0x2c/0x40 [ 175.117304] mount_fs+0xae/0x328 [ 175.117324] ? mpi_free.cold.1+0x19/0x19 [ 175.174067] vfs_kern_mount.part.34+0xd4/0x4d0 [ 175.178657] ? may_umount+0xb0/0xb0 [ 175.182286] ? _raw_read_unlock+0x22/0x30 [ 175.186442] ? __get_fs_type+0x97/0xc0 [ 175.190337] do_mount+0x564/0x3070 [ 175.193912] ? lock_downgrade+0x8e0/0x8e0 [ 175.198067] ? copy_mount_string+0x40/0x40 [ 175.202303] ? check_same_owner+0x320/0x320 [ 175.206626] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 175.211641] ? __check_object_size+0x95/0x5d9 [ 175.216144] ? __might_sleep+0x95/0x190 [ 175.220126] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 175.225844] ? _copy_from_user+0xdf/0x150 [ 175.230013] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 175.235667] ? copy_mount_options+0x285/0x380 [ 175.240167] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 175.245710] ksys_mount+0x12d/0x140 [ 175.249339] __x64_sys_mount+0xbe/0x150 [ 175.253314] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 175.258334] do_syscall_64+0x1b1/0x800 [ 175.262239] ? finish_task_switch+0x1ca/0x810 [ 175.266753] ? syscall_return_slowpath+0x5c0/0x5c0 [ 175.271684] ? syscall_return_slowpath+0x30f/0x5c0 [ 175.276617] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 175.282270] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 175.287120] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 175.292309] RIP: 0033:0x455979 [ 175.295495] RSP: 002b:00007f1fa3db4c68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 175.303215] RAX: ffffffffffffffda RBX: 00007f1fa3db56d4 RCX: 0000000000455979 [ 175.310502] RDX: 0000000020000100 RSI: 0000000020000080 RDI: 0000000020000040 [ 175.317782] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 175.325060] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000014 [ 175.332329] R13: 0000000000000440 R14: 00000000006fa6a0 R15: 000000000000001d [ 175.339731] CPU: 0 PID: 13382 Comm: syz-executor7 Not tainted 4.17.0-rc3+ #26 [ 175.347110] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 175.356478] Call Trace: [ 175.359087] dump_stack+0x1b9/0x294 [ 175.362735] ? dump_stack_print_info.cold.2+0x52/0x52 [ 175.367950] ? page_add_file_rmap+0x779/0xe20 [ 175.372474] should_fail.cold.4+0xa/0x1a [ 175.376558] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 175.381677] ? perf_trace_lock+0xd6/0x900 [ 175.385850] ? print_usage_bug+0xc0/0xc0 [ 175.389932] ? __wake_up_common_lock+0x1c2/0x300 [ 175.394723] ? find_held_lock+0x36/0x1c0 [ 175.398831] ? check_same_owner+0x320/0x320 [ 175.403177] ? rcu_note_context_switch+0x710/0x710 [ 175.408126] ? zap_class+0x720/0x720 [ 175.411864] __should_failslab+0x124/0x180 [ 175.416124] should_failslab+0x9/0x14 [ 175.419954] __kmalloc+0x2c8/0x760 [ 175.423533] ? sg_common_write.isra.16+0x1175/0x1dd0 [ 175.428678] ? lock_downgrade+0x8e0/0x8e0 [ 175.432852] sg_common_write.isra.16+0x1175/0x1dd0 [ 175.437827] ? find_held_lock+0x31/0x1c0 [ 175.441913] ? sg_open+0x1130/0x1130 [ 175.445647] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 175.450862] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 175.456418] ? cap_capable+0x1f9/0x260 [ 175.460351] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 175.465911] ? security_capable+0x99/0xc0 [ 175.470089] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 175.475651] ? ns_capable_common+0x13f/0x170 [ 175.480190] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 175.485754] sg_new_write.isra.18+0x6ca/0x930 [ 175.490316] ? sg_common_write.isra.16+0x1dd0/0x1dd0 2018/04/30 22:51:48 executing program 5: r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x6}, 0x1c) 2018/04/30 22:51:48 executing program 0: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:51:48 executing program 3: r0 = syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x0, 0x0) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) ioctl$TIOCGSID(r0, 0x5429, &(0x7f0000000040)=0x0) getresuid(&(0x7f0000000080), &(0x7f0000000140), &(0x7f0000000180)=0x0) ioctl$DRM_IOCTL_GET_CLIENT(r0, 0xc0286405, &(0x7f00000001c0)={0x6, 0x401, r2, 0x1, r3, 0x1, 0x8, 0x4}) connect$inet6(r1, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x2000000}, 0x1c) syz_init_net_socket$nfc_llcp(0x27, 0x0, 0x1) 2018/04/30 22:51:48 executing program 6 (fault-call:2 fault-nth:30): mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x1, 0x0) [ 175.495452] ? rcu_note_context_switch+0x664/0x710 [ 175.500406] ? graph_lock+0x170/0x170 [ 175.504239] ? __might_sleep+0x95/0x190 [ 175.508243] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 175.513809] ? scsi_block_when_processing_errors+0x2cd/0x370 [ 175.519636] ? scsi_ioctl_reset+0x7a0/0x7a0 [ 175.523982] ? find_held_lock+0x36/0x1c0 [ 175.528074] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 175.533635] ? zap_class+0x720/0x720 [ 175.537372] sg_ioctl+0x2194/0x2f80 [ 175.541019] ? _parse_integer+0x190/0x190 [ 175.545195] ? graph_lock+0x170/0x170 [ 175.549023] ? sg_new_write.isra.18+0x930/0x930 [ 175.553826] ? graph_lock+0x170/0x170 [ 175.557654] ? find_held_lock+0x36/0x1c0 [ 175.559190] FAULT_INJECTION: forcing a failure. [ 175.559190] name failslab, interval 1, probability 0, space 0, times 0 [ 175.561755] ? lock_downgrade+0x8e0/0x8e0 [ 175.561780] ? rcu_is_watching+0x85/0x140 [ 175.561797] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 175.561825] ? __fget+0x40c/0x650 [ 175.561843] ? find_held_lock+0x11/0x1c0 [ 175.561861] ? expand_files.part.8+0x9a0/0x9a0 [ 175.561888] ? kasan_check_write+0x14/0x20 [ 175.602797] ? __mutex_unlock_slowpath+0x180/0x8a0 [ 175.607731] ? wait_for_completion+0x870/0x870 [ 175.612673] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 175.617865] ? sg_new_write.isra.18+0x930/0x930 [ 175.622535] do_vfs_ioctl+0x1cf/0x16a0 [ 175.626431] ? ioctl_preallocate+0x2e0/0x2e0 [ 175.630929] ? fget_raw+0x20/0x20 [ 175.634386] ? __sb_end_write+0xac/0xe0 [ 175.638364] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 175.643989] ? fput+0x130/0x1a0 [ 175.647288] ? ksys_write+0x1a6/0x250 [ 175.651097] ? security_file_ioctl+0x94/0xc0 [ 175.655510] ksys_ioctl+0xa9/0xd0 [ 175.658972] __x64_sys_ioctl+0x73/0xb0 [ 175.662867] do_syscall_64+0x1b1/0x800 [ 175.666758] ? syscall_slow_exit_work+0x4f0/0x4f0 [ 175.671607] ? syscall_return_slowpath+0x5c0/0x5c0 [ 175.676816] ? syscall_return_slowpath+0x30f/0x5c0 [ 175.681762] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 175.687140] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 175.691996] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 175.697187] RIP: 0033:0x455979 [ 175.700381] RSP: 002b:00007f88fb8d7c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 175.708092] RAX: ffffffffffffffda RBX: 00007f88fb8d86d4 RCX: 0000000000455979 [ 175.715371] RDX: 00000000200003c0 RSI: 0000000000002285 RDI: 0000000000000013 [ 175.722638] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 175.729908] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000014 [ 175.737179] R13: 00000000000002e4 R14: 00000000006f8600 R15: 0000000000000000 [ 175.744470] CPU: 1 PID: 13396 Comm: syz-executor6 Not tainted 4.17.0-rc3+ #26 [ 175.751755] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 175.761130] Call Trace: [ 175.763739] dump_stack+0x1b9/0x294 [ 175.767400] ? dump_stack_print_info.cold.2+0x52/0x52 [ 175.772613] ? __save_stack_trace+0x7e/0xd0 [ 175.776966] should_fail.cold.4+0xa/0x1a [ 175.781061] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 175.786189] ? save_stack+0x43/0xd0 [ 175.789841] ? kasan_kmalloc+0xc4/0xe0 [ 175.793835] ? kmem_cache_alloc_trace+0x152/0x780 [ 175.798696] ? __memcg_init_list_lru_node+0x17d/0x2c0 [ 175.803907] ? __list_lru_init+0x456/0x790 [ 175.808163] ? sget_userns+0x767/0xf00 [ 175.812063] ? graph_lock+0x170/0x170 [ 175.815880] ? vfs_kern_mount.part.34+0xd4/0x4d0 [ 175.820654] ? do_mount+0x564/0x3070 [ 175.824385] ? ksys_mount+0x12d/0x140 [ 175.828200] ? __x64_sys_mount+0xbe/0x150 [ 175.832365] ? do_syscall_64+0x1b1/0x800 [ 175.836438] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 175.841822] ? find_held_lock+0x36/0x1c0 [ 175.845918] ? __lock_is_held+0xb5/0x140 [ 175.850023] ? check_same_owner+0x320/0x320 [ 175.854370] ? rcu_note_context_switch+0x710/0x710 [ 175.859329] __should_failslab+0x124/0x180 [ 175.863585] should_failslab+0x9/0x14 [ 175.867405] kmem_cache_alloc_trace+0x2cb/0x780 [ 175.872098] ? __kmalloc_node+0x33/0x70 [ 175.876095] ? __kmalloc_node+0x33/0x70 [ 175.880086] ? rcu_read_lock_sched_held+0x108/0x120 [ 175.885130] __memcg_init_list_lru_node+0x17d/0x2c0 [ 175.890168] ? kvfree_rcu+0x20/0x20 [ 175.893812] ? __kmalloc_node+0x47/0x70 [ 175.897813] __list_lru_init+0x456/0x790 [ 175.901918] ? list_lru_destroy+0x4c0/0x4c0 [ 175.906262] ? mark_held_locks+0xc9/0x160 [ 175.910426] ? __raw_spin_lock_init+0x1c/0x100 [ 175.915027] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 175.920078] ? lockdep_init_map+0x9/0x10 [ 175.924183] sget_userns+0x767/0xf00 [ 175.927911] ? get_anon_bdev+0x2f0/0x2f0 [ 175.931990] ? test_bdev_super+0x50/0x50 [ 175.936164] ? destroy_unused_super.part.11+0x110/0x110 [ 175.941579] ? alloc_vfsmnt+0x771/0x9d0 [ 175.945572] ? mnt_free_id.isra.27+0x60/0x60 [ 175.950005] ? kasan_check_read+0x11/0x20 [ 175.954176] ? graph_lock+0x170/0x170 [ 175.957968] ? cap_capable+0x1f9/0x260 [ 175.961850] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 175.967379] ? security_capable+0x99/0xc0 [ 175.971532] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 175.977062] ? ns_capable_common+0x13f/0x170 [ 175.981472] ? get_anon_bdev+0x2f0/0x2f0 [ 175.985522] sget+0x10b/0x150 [ 175.988624] ? test_bdev_super+0x50/0x50 [ 175.992675] ? fuse_ctl_add_conn+0x280/0x280 [ 175.997084] mount_single+0x3a/0x170 [ 176.000804] fuse_ctl_mount+0x2c/0x40 [ 176.004606] mount_fs+0xae/0x328 [ 176.007964] ? mpi_free.cold.1+0x19/0x19 [ 176.012042] vfs_kern_mount.part.34+0xd4/0x4d0 [ 176.016618] ? may_umount+0xb0/0xb0 [ 176.020245] ? _raw_read_unlock+0x22/0x30 [ 176.024380] ? __get_fs_type+0x97/0xc0 [ 176.028263] do_mount+0x564/0x3070 [ 176.031791] ? lock_downgrade+0x8e0/0x8e0 [ 176.035931] ? copy_mount_string+0x40/0x40 [ 176.040162] ? check_same_owner+0x320/0x320 [ 176.044491] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 176.049500] ? __check_object_size+0x95/0x5d9 [ 176.053996] ? __might_sleep+0x95/0x190 [ 176.057973] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 176.063518] ? _copy_from_user+0xdf/0x150 [ 176.067669] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 176.073200] ? copy_mount_options+0x285/0x380 [ 176.077691] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 176.083239] ksys_mount+0x12d/0x140 [ 176.086862] __x64_sys_mount+0xbe/0x150 [ 176.090830] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 176.095846] do_syscall_64+0x1b1/0x800 [ 176.099746] ? syscall_slow_exit_work+0x4f0/0x4f0 [ 176.104587] ? syscall_return_slowpath+0x5c0/0x5c0 [ 176.109508] ? syscall_return_slowpath+0x30f/0x5c0 [ 176.114435] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 176.119804] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 176.124641] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 176.129829] RIP: 0033:0x455979 [ 176.133010] RSP: 002b:00007f1fa3db4c68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 176.140738] RAX: ffffffffffffffda RBX: 00007f1fa3db56d4 RCX: 0000000000455979 [ 176.148000] RDX: 0000000020000100 RSI: 0000000020000080 RDI: 0000000020000040 [ 176.155270] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 176.162568] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000014 [ 176.169839] R13: 0000000000000440 R14: 00000000006fa6a0 R15: 000000000000001e [ 176.188720] device bridge_slave_0 left promiscuous mode [ 176.194342] bridge0: port 1(bridge_slave_0) entered disabled state [ 176.255106] team0 (unregistering): Port device team_slave_1 removed [ 176.265236] team0 (unregistering): Port device team_slave_0 removed [ 176.275703] bond0 (unregistering): Releasing backup interface bond_slave_1 [ 176.289180] bond0 (unregistering): Releasing backup interface bond_slave_0 [ 176.316062] bond0 (unregistering): Released all slaves [ 176.881904] bridge0: port 1(bridge_slave_0) entered blocking state [ 176.888370] bridge0: port 1(bridge_slave_0) entered disabled state [ 176.896249] device bridge_slave_0 entered promiscuous mode [ 176.936829] bridge0: port 2(bridge_slave_1) entered blocking state [ 176.943294] bridge0: port 2(bridge_slave_1) entered disabled state [ 176.951191] device bridge_slave_1 entered promiscuous mode [ 176.988645] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 177.025912] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 177.139789] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 177.180389] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 177.355355] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 177.362794] team0: Port device team_slave_0 added [ 177.394823] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 177.402996] team0: Port device team_slave_1 added [ 177.439175] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 177.446218] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 177.461825] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 177.490491] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 177.497415] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 177.505857] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 177.532969] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 177.540423] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 177.555537] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 177.587727] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 177.594946] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 177.603207] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 177.828699] bridge0: port 2(bridge_slave_1) entered blocking state [ 177.835148] bridge0: port 2(bridge_slave_1) entered forwarding state [ 177.841815] bridge0: port 1(bridge_slave_0) entered blocking state [ 177.848205] bridge0: port 1(bridge_slave_0) entered forwarding state [ 177.855471] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 178.401596] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 178.679847] 8021q: adding VLAN 0 to HW filter on device bond0 [ 178.761747] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 178.841619] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 178.847864] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 178.856245] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 178.932906] 8021q: adding VLAN 0 to HW filter on device team0 [ 179.404240] FAULT_INJECTION: forcing a failure. [ 179.404240] name failslab, interval 1, probability 0, space 0, times 0 [ 179.415591] CPU: 1 PID: 13666 Comm: syz-executor1 Not tainted 4.17.0-rc3+ #26 [ 179.423054] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 179.432411] Call Trace: [ 179.435004] dump_stack+0x1b9/0x294 [ 179.438640] ? dump_stack_print_info.cold.2+0x52/0x52 [ 179.443843] ? __save_stack_trace+0x7e/0xd0 [ 179.448175] should_fail.cold.4+0xa/0x1a [ 179.452234] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 179.457348] ? save_stack+0x43/0xd0 [ 179.460980] ? kasan_kmalloc+0xc4/0xe0 [ 179.464862] ? kmem_cache_alloc_trace+0x152/0x780 [ 179.469706] ? __memcg_init_list_lru_node+0x17d/0x2c0 [ 179.474898] ? __list_lru_init+0x456/0x790 [ 179.479143] ? sget_userns+0x73a/0xf00 [ 179.483043] ? graph_lock+0x170/0x170 [ 179.487254] ? vfs_kern_mount.part.34+0xd4/0x4d0 [ 179.492025] ? do_mount+0x564/0x3070 [ 179.495756] ? ksys_mount+0x12d/0x140 [ 179.499550] ? __x64_sys_mount+0xbe/0x150 [ 179.503693] ? do_syscall_64+0x1b1/0x800 [ 179.507747] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 179.513108] ? find_held_lock+0x36/0x1c0 [ 179.517168] ? __lock_is_held+0xb5/0x140 [ 179.521226] ? check_same_owner+0x320/0x320 [ 179.525546] ? rcu_note_context_switch+0x710/0x710 [ 179.530482] __should_failslab+0x124/0x180 [ 179.534981] should_failslab+0x9/0x14 [ 179.538791] kmem_cache_alloc_trace+0x2cb/0x780 [ 179.543467] ? __kmalloc_node+0x33/0x70 [ 179.547453] ? __kmalloc_node+0x33/0x70 [ 179.551440] ? rcu_read_lock_sched_held+0x108/0x120 [ 179.556453] __memcg_init_list_lru_node+0x17d/0x2c0 [ 179.561463] ? kvfree_rcu+0x20/0x20 [ 179.565099] ? __kmalloc_node+0x47/0x70 [ 179.569077] __list_lru_init+0x456/0x790 [ 179.573133] ? list_lru_destroy+0x4c0/0x4c0 [ 179.577442] ? mark_held_locks+0xc9/0x160 [ 179.581584] ? __raw_spin_lock_init+0x1c/0x100 [ 179.586166] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 179.591174] ? __lockdep_init_map+0x105/0x590 [ 179.595660] ? lockdep_init_map+0x9/0x10 [ 179.599725] sget_userns+0x73a/0xf00 [ 179.603438] ? get_anon_bdev+0x2f0/0x2f0 [ 179.607486] ? test_bdev_super+0x50/0x50 [ 179.611540] ? destroy_unused_super.part.11+0x110/0x110 [ 179.616897] ? alloc_vfsmnt+0x771/0x9d0 [ 179.620859] ? mnt_free_id.isra.27+0x60/0x60 [ 179.625256] ? kasan_check_read+0x11/0x20 [ 179.629391] ? graph_lock+0x170/0x170 [ 179.633180] ? cap_capable+0x1f9/0x260 [ 179.637072] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 179.642605] ? security_capable+0x99/0xc0 [ 179.646748] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 179.652289] ? ns_capable_common+0x13f/0x170 [ 179.656692] ? get_anon_bdev+0x2f0/0x2f0 [ 179.660742] sget+0x10b/0x150 [ 179.663835] ? test_bdev_super+0x50/0x50 [ 179.667886] ? fuse_ctl_add_conn+0x280/0x280 [ 179.672283] mount_single+0x3a/0x170 [ 179.675988] fuse_ctl_mount+0x2c/0x40 [ 179.679793] mount_fs+0xae/0x328 [ 179.683152] ? mpi_free.cold.1+0x19/0x19 [ 179.687216] vfs_kern_mount.part.34+0xd4/0x4d0 [ 179.691797] ? may_umount+0xb0/0xb0 [ 179.695436] ? _raw_read_unlock+0x22/0x30 [ 179.699570] ? __get_fs_type+0x97/0xc0 [ 179.703460] do_mount+0x564/0x3070 [ 179.706990] ? lock_downgrade+0x8e0/0x8e0 [ 179.711142] ? copy_mount_string+0x40/0x40 [ 179.715364] ? check_same_owner+0x320/0x320 [ 179.719691] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 179.724700] ? __check_object_size+0x95/0x5d9 [ 179.729453] ? __might_sleep+0x95/0x190 [ 179.733432] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 179.738975] ? _copy_from_user+0xdf/0x150 [ 179.743128] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 179.748674] ? copy_mount_options+0x285/0x380 [ 179.753174] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 179.758711] ksys_mount+0x12d/0x140 [ 179.762347] __x64_sys_mount+0xbe/0x150 [ 179.766313] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 179.771332] do_syscall_64+0x1b1/0x800 [ 179.775246] ? syscall_return_slowpath+0x5c0/0x5c0 [ 179.780166] ? syscall_return_slowpath+0x30f/0x5c0 [ 179.785103] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 179.790462] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 179.795299] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 179.800478] RIP: 0033:0x455979 2018/04/30 22:51:53 executing program 4: r0 = syz_open_dev$evdev(&(0x7f0000072fee)='/dev/input/event#\x00', 0x0, 0x0) perf_event_open(&(0x7f00000000c0)={0x2, 0x70, 0x3e6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet(0x2, 0x100000000000000a, 0x0) ioctl$sock_SIOCINQ(r1, 0x541b, &(0x7f0000000240)) read(r0, &(0x7f000006b000)=""/24, 0x18) 2018/04/30 22:51:53 executing program 1 (fault-call:2 fault-nth:20): mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0xc003, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:51:53 executing program 2: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$evdev(&(0x7f0000072fee)='/dev/input/event#\x00', 0x0, 0x0) read(r0, &(0x7f000006b000)=""/24, 0x18) write$evdev(r0, &(0x7f0000057fa0)=[{{}, 0x0, 0x100000001}, {}], 0x30) 2018/04/30 22:51:53 executing program 7 (fault-call:2 fault-nth:1): r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0) ioctl$SG_SET_DEBUG(r0, 0x227e, &(0x7f0000000100)=0x1) ioctl$SG_IO(r0, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x21, 0x0, @buffer={0x0, 0x47, &(0x7f0000000040)=""/71}, &(0x7f00000000c0)="7f2911fa31fa4f4b2f5687dbd490bd09e476cb6b139f5686379495446bcea9c334", &(0x7f00000002c0)=""/182, 0x0, 0x0, 0x0, &(0x7f0000000380)}) 2018/04/30 22:51:53 executing program 5: r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x6}, 0x1c) 2018/04/30 22:51:53 executing program 0: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0L', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:51:53 executing program 6 (fault-call:2 fault-nth:31): mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x1, 0x0) 2018/04/30 22:51:53 executing program 3: r0 = syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x0, 0x0) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r1, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) ioctl$VHOST_VSOCK_SET_GUEST_CID(r0, 0x4008af60, &(0x7f0000000040)={@any=0xffffffff}) connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x2000000}, 0x1c) syz_init_net_socket$nfc_llcp(0x27, 0x0, 0x1) [ 179.803654] RSP: 002b:00007ff91e2c0c68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 179.811356] RAX: ffffffffffffffda RBX: 00007ff91e2c16d4 RCX: 0000000000455979 [ 179.818616] RDX: 0000000020000100 RSI: 0000000020000080 RDI: 0000000020000040 [ 179.825878] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 179.833146] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000014 [ 179.840411] R13: 0000000000000440 R14: 00000000006fa6a0 R15: 0000000000000013 [ 179.876347] FAULT_INJECTION: forcing a failure. [ 179.876347] name failslab, interval 1, probability 0, space 0, times 0 [ 179.887712] CPU: 1 PID: 13668 Comm: syz-executor6 Not tainted 4.17.0-rc3+ #26 [ 179.895024] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 179.904392] Call Trace: [ 179.906992] dump_stack+0x1b9/0x294 [ 179.910635] ? dump_stack_print_info.cold.2+0x52/0x52 [ 179.915833] ? __save_stack_trace+0x7e/0xd0 [ 179.920161] should_fail.cold.4+0xa/0x1a [ 179.924227] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 179.929328] ? save_stack+0x43/0xd0 [ 179.932948] ? kasan_kmalloc+0xc4/0xe0 [ 179.936830] ? kmem_cache_alloc_trace+0x152/0x780 [ 179.941665] ? __memcg_init_list_lru_node+0x17d/0x2c0 [ 179.946847] ? __list_lru_init+0x456/0x790 [ 179.951076] ? sget_userns+0x767/0xf00 [ 179.954960] ? graph_lock+0x170/0x170 [ 179.958755] ? vfs_kern_mount.part.34+0xd4/0x4d0 [ 179.963504] ? do_mount+0x564/0x3070 [ 179.967207] ? ksys_mount+0x12d/0x140 [ 179.971000] ? __x64_sys_mount+0xbe/0x150 [ 179.975146] ? do_syscall_64+0x1b1/0x800 [ 179.979205] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 179.984586] ? find_held_lock+0x36/0x1c0 [ 179.988653] ? __lock_is_held+0xb5/0x140 [ 179.992726] ? check_same_owner+0x320/0x320 [ 179.997054] ? rcu_note_context_switch+0x710/0x710 [ 180.001985] __should_failslab+0x124/0x180 [ 180.006224] should_failslab+0x9/0x14 [ 180.010025] kmem_cache_alloc_trace+0x2cb/0x780 [ 180.014693] ? __kmalloc_node+0x33/0x70 [ 180.018662] ? __kmalloc_node+0x33/0x70 [ 180.022632] ? rcu_read_lock_sched_held+0x108/0x120 [ 180.027647] __memcg_init_list_lru_node+0x17d/0x2c0 [ 180.032727] ? kvfree_rcu+0x20/0x20 [ 180.036351] ? __kmalloc_node+0x47/0x70 [ 180.040335] __list_lru_init+0x456/0x790 [ 180.044415] ? list_lru_destroy+0x4c0/0x4c0 [ 180.048733] ? mark_held_locks+0xc9/0x160 [ 180.052898] ? __raw_spin_lock_init+0x1c/0x100 [ 180.057477] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 180.062508] ? lockdep_init_map+0x9/0x10 [ 180.066567] sget_userns+0x767/0xf00 [ 180.070288] ? get_anon_bdev+0x2f0/0x2f0 [ 180.074346] ? test_bdev_super+0x50/0x50 [ 180.078410] ? destroy_unused_super.part.11+0x110/0x110 [ 180.083776] ? alloc_vfsmnt+0x771/0x9d0 [ 180.087742] ? mnt_free_id.isra.27+0x60/0x60 [ 180.092146] ? kasan_check_read+0x11/0x20 [ 180.096311] ? graph_lock+0x170/0x170 [ 180.100116] ? cap_capable+0x1f9/0x260 [ 180.104024] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 180.109562] ? security_capable+0x99/0xc0 [ 180.113718] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 180.119254] ? ns_capable_common+0x13f/0x170 [ 180.123746] ? get_anon_bdev+0x2f0/0x2f0 [ 180.127805] sget+0x10b/0x150 [ 180.130920] ? test_bdev_super+0x50/0x50 [ 180.135006] ? fuse_ctl_add_conn+0x280/0x280 [ 180.139415] mount_single+0x3a/0x170 [ 180.143141] fuse_ctl_mount+0x2c/0x40 [ 180.146959] mount_fs+0xae/0x328 [ 180.150321] ? mpi_free.cold.1+0x19/0x19 [ 180.154425] vfs_kern_mount.part.34+0xd4/0x4d0 [ 180.159020] ? may_umount+0xb0/0xb0 [ 180.162657] ? _raw_read_unlock+0x22/0x30 [ 180.166812] ? __get_fs_type+0x97/0xc0 [ 180.170703] do_mount+0x564/0x3070 [ 180.174247] ? lock_downgrade+0x8e0/0x8e0 [ 180.178403] ? copy_mount_string+0x40/0x40 [ 180.182636] ? check_same_owner+0x320/0x320 [ 180.186972] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 180.191987] ? __check_object_size+0x95/0x5d9 [ 180.196503] ? __might_sleep+0x95/0x190 [ 180.200479] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 180.206016] ? _copy_from_user+0xdf/0x150 [ 180.210167] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 180.215701] ? copy_mount_options+0x285/0x380 [ 180.220201] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 180.225736] ksys_mount+0x12d/0x140 [ 180.229364] __x64_sys_mount+0xbe/0x150 [ 180.233342] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 180.238382] do_syscall_64+0x1b1/0x800 [ 180.242263] ? finish_task_switch+0x1ca/0x810 [ 180.246758] ? syscall_return_slowpath+0x5c0/0x5c0 [ 180.251695] ? syscall_return_slowpath+0x30f/0x5c0 [ 180.256627] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 180.262011] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 180.266871] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 180.272059] RIP: 0033:0x455979 [ 180.275241] RSP: 002b:00007f1fa3db4c68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 180.282957] RAX: ffffffffffffffda RBX: 00007f1fa3db56d4 RCX: 0000000000455979 [ 180.290236] RDX: 0000000020000100 RSI: 0000000020000080 RDI: 0000000020000040 [ 180.297503] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 180.304778] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000014 [ 180.312042] R13: 0000000000000440 R14: 00000000006fa6a0 R15: 000000000000001f 2018/04/30 22:51:53 executing program 5: r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x6}, 0x1c) 2018/04/30 22:51:53 executing program 0: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0z', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) [ 180.351154] FAULT_INJECTION: forcing a failure. [ 180.351154] name failslab, interval 1, probability 0, space 0, times 0 [ 180.363055] CPU: 0 PID: 13677 Comm: syz-executor7 Not tainted 4.17.0-rc3+ #26 [ 180.370356] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 180.379725] Call Trace: [ 180.382339] dump_stack+0x1b9/0x294 [ 180.386003] ? dump_stack_print_info.cold.2+0x52/0x52 [ 180.391233] should_fail.cold.4+0xa/0x1a [ 180.395325] ? fault_create_debugfs_attr+0x1f0/0x1f0 2018/04/30 22:51:53 executing program 3: r0 = syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x0, 0x0) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r1, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) dup(r0) connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x2000000}, 0x1c) syz_init_net_socket$nfc_llcp(0x27, 0x0, 0x1) 2018/04/30 22:51:53 executing program 5: r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}}, 0x1c) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x6}, 0x1c) [ 180.400456] ? graph_lock+0x170/0x170 [ 180.404288] ? __blk_mq_get_tag+0x111/0x4f0 [ 180.408774] ? blk_mq_unique_tag+0x250/0x250 [ 180.413218] ? lock_acquire+0x1dc/0x520 [ 180.417215] ? sg_common_write.isra.16+0x907/0x1dd0 [ 180.422259] ? lock_release+0xa10/0xa10 [ 180.426321] ? perf_trace_lock+0xd6/0x900 [ 180.430504] ? rcu_note_context_switch+0x710/0x710 [ 180.435469] ? zap_class+0x720/0x720 [ 180.439229] ? __might_sleep+0x95/0x190 [ 180.443238] ? kasan_check_write+0x14/0x20 [ 180.447502] ? __mutex_lock+0x7d9/0x17f0 2018/04/30 22:51:53 executing program 0: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) [ 180.451595] ? _raw_spin_unlock_irqrestore+0x74/0xc0 [ 180.456727] __should_failslab+0x124/0x180 [ 180.460997] should_failslab+0x9/0x14 [ 180.464820] __kmalloc+0x63/0x760 [ 180.468313] ? bio_copy_user_iov+0xf5/0xcd0 [ 180.472663] bio_copy_user_iov+0xf5/0xcd0 [ 180.476843] ? lock_downgrade+0x8e0/0x8e0 [ 180.481021] blk_rq_map_user_iov+0x426/0x820 [ 180.485460] ? blk_rq_append_bio+0x330/0x330 [ 180.489903] ? direct_make_request+0x550/0x550 [ 180.494532] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 2018/04/30 22:51:53 executing program 5: r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}}, 0x1c) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x6}, 0x1c) [ 180.500122] ? import_single_range+0x231/0x320 [ 180.504739] blk_rq_map_user+0x11e/0x170 [ 180.508900] ? blk_rq_map_user_iov+0x820/0x820 [ 180.513520] ? blk_queue_enter+0xdf0/0xdf0 [ 180.517796] sg_common_write.isra.16+0x1472/0x1dd0 [ 180.522772] ? sg_open+0x1130/0x1130 [ 180.526523] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 180.531747] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 180.537314] ? cap_capable+0x1f9/0x260 [ 180.541229] ? security_capable+0x99/0xc0 [ 180.545409] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 2018/04/30 22:51:53 executing program 3: r0 = syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x0, 0x0) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r1, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x2000000}, 0x1c) syz_init_net_socket$nfc_llcp(0x27, 0x0, 0x1) setsockopt$inet_sctp6_SCTP_INITMSG(r1, 0x84, 0x2, &(0x7f0000000040)={0x0, 0x1c00000000, 0x8000, 0x1ff}, 0x8) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e24, 0x1, @local={0xfe, 0x80, [], 0xaa}, 0x7}, 0x1c) 2018/04/30 22:51:53 executing program 0: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) [ 180.550993] ? ns_capable_common+0x13f/0x170 [ 180.555430] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 180.560991] sg_new_write.isra.18+0x6ca/0x930 [ 180.565515] ? sg_common_write.isra.16+0x1dd0/0x1dd0 [ 180.570638] ? rcu_note_context_switch+0x664/0x710 [ 180.575763] ? graph_lock+0x170/0x170 [ 180.579588] ? __might_sleep+0x95/0x190 [ 180.583611] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 180.589175] ? scsi_block_when_processing_errors+0x2cd/0x370 [ 180.595002] ? scsi_ioctl_reset+0x7a0/0x7a0 [ 180.599349] ? perf_trace_lock_acquire+0xe3/0x980 [ 180.604214] ? find_held_lock+0x36/0x1c0 [ 180.608298] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 180.613878] ? zap_class+0x720/0x720 [ 180.617618] sg_ioctl+0x2194/0x2f80 [ 180.621267] ? _parse_integer+0x190/0x190 [ 180.625436] ? graph_lock+0x170/0x170 [ 180.629258] ? sg_new_write.isra.18+0x930/0x930 [ 180.633948] ? graph_lock+0x170/0x170 [ 180.637776] ? find_held_lock+0x36/0x1c0 [ 180.641871] ? lock_downgrade+0x8e0/0x8e0 [ 180.646048] ? rcu_is_watching+0x85/0x140 [ 180.650211] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 180.655431] ? __fget+0x40c/0x650 [ 180.658909] ? find_held_lock+0x11/0x1c0 [ 180.662994] ? expand_files.part.8+0x9a0/0x9a0 [ 180.667600] ? kasan_check_write+0x14/0x20 [ 180.671856] ? __mutex_unlock_slowpath+0x180/0x8a0 [ 180.676832] ? wait_for_completion+0x870/0x870 [ 180.681447] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 180.686697] ? sg_new_write.isra.18+0x930/0x930 [ 180.691398] do_vfs_ioctl+0x1cf/0x16a0 [ 180.695367] ? ioctl_preallocate+0x2e0/0x2e0 [ 180.699893] ? fget_raw+0x20/0x20 [ 180.703368] ? __sb_end_write+0xac/0xe0 [ 180.707372] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 180.712936] ? fput+0x130/0x1a0 [ 180.716271] ? ksys_write+0x1a6/0x250 [ 180.720104] ? security_file_ioctl+0x94/0xc0 [ 180.724550] ksys_ioctl+0xa9/0xd0 [ 180.728033] __x64_sys_ioctl+0x73/0xb0 [ 180.731950] do_syscall_64+0x1b1/0x800 [ 180.735867] ? finish_task_switch+0x1ca/0x810 [ 180.740389] ? syscall_return_slowpath+0x5c0/0x5c0 [ 180.745349] ? syscall_return_slowpath+0x30f/0x5c0 [ 180.750341] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 180.755741] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 180.760620] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 180.765835] RIP: 0033:0x455979 [ 180.769038] RSP: 002b:00007f88fb8d7c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 180.776781] RAX: ffffffffffffffda RBX: 00007f88fb8d86d4 RCX: 0000000000455979 [ 180.784072] RDX: 00000000200003c0 RSI: 0000000000002285 RDI: 0000000000000013 [ 180.791397] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 180.798687] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000014 [ 180.805998] R13: 00000000000002e4 R14: 00000000006f8600 R15: 0000000000000001 2018/04/30 22:51:54 executing program 3: r0 = syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x0, 0x0) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r1, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) ioctl$KVM_XEN_HVM_CONFIG(r0, 0x4038ae7a, &(0x7f0000000040)={0x59, 0x3fb, &(0x7f0000000140)="8a2f3294405656f8451a45c9cba452291379b5eb563aea1d20e4859ec4665566e01d78a777fe2ef973ab4a2e69a2baf24c0e22d00866a6f83b91a2cdeabc3bebe1ddb318729643f22c1f4f7b3e0cbbbee2d35910bb5fc669cb164ea5fa2e28fafc59422abb222a4e5bcaa942ae424d86c6c8ee436c1d3502c48aac12fe247376a5804b074c1116", &(0x7f0000000200)="9dc51c62a7396c41487978a0e8a3262698ae56a5e2cd85f0ab43bd5d6c2f13ada6b84767697824d4330b3b49af20959cbdb11814cebd8339a58556e9069933303ca63ff4ba6864a6932a8d9d39ccb838f891e91cda70e70102830afca1f5c5c31e549672a61cb01f58527621d96bc23d46209188129c0a38444f92490017661cd1e7f5bec4", 0x87, 0x85}) fcntl$setsig(r1, 0xa, 0x26) connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x2000000}, 0x1c) syz_init_net_socket$nfc_llcp(0x27, 0x0, 0x1) 2018/04/30 22:51:54 executing program 5: r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}}, 0x1c) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x6}, 0x1c) 2018/04/30 22:51:54 executing program 4: r0 = syz_open_dev$evdev(&(0x7f0000072fee)='/dev/input/event#\x00', 0x0, 0x0) read(r0, &(0x7f000006b000)=""/24, 0x18) socketpair(0xb, 0x0, 0x5, &(0x7f0000000080)={0xffffffffffffffff}) setsockopt$inet_tcp_TCP_FASTOPEN_KEY(r1, 0x6, 0x21, &(0x7f0000000040)="71c563c61e2ccf3f2e6a4483f02f183b", 0x10) 2018/04/30 22:51:54 executing program 0: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:51:54 executing program 7: r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0) ioctl$SG_SET_DEBUG(r0, 0x227e, &(0x7f0000000100)=0x1) ioctl$SG_IO(r0, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x21, 0x0, @buffer={0x0, 0x47, &(0x7f0000000040)=""/71}, &(0x7f00000000c0)="7f2911fa31fa4f4b2f5687dbd490bd09e476cb6b139f5686379495446bcea9c334", &(0x7f00000002c0)=""/182, 0x0, 0x0, 0x0, &(0x7f0000000380)}) 2018/04/30 22:51:54 executing program 2: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$evdev(&(0x7f0000072fee)='/dev/input/event#\x00', 0x0, 0x0) read(r0, &(0x7f000006b000)=""/24, 0x18) write$evdev(r0, &(0x7f0000057fa0)=[{{}, 0x0, 0x100000001}, {}], 0x30) 2018/04/30 22:51:54 executing program 6 (fault-call:2 fault-nth:32): mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x1, 0x0) 2018/04/30 22:51:54 executing program 1 (fault-call:2 fault-nth:21): mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0xc003, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) [ 181.054732] FAULT_INJECTION: forcing a failure. [ 181.054732] name failslab, interval 1, probability 0, space 0, times 0 [ 181.066441] CPU: 1 PID: 13737 Comm: syz-executor6 Not tainted 4.17.0-rc3+ #26 [ 181.073736] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 181.083104] Call Trace: [ 181.085724] dump_stack+0x1b9/0x294 [ 181.089412] ? dump_stack_print_info.cold.2+0x52/0x52 [ 181.094629] ? lock_downgrade+0x8e0/0x8e0 [ 181.096381] IPVS: ftp: loaded support on port[0] = 21 [ 181.098800] should_fail.cold.4+0xa/0x1a [ 181.098829] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 181.098848] ? print_usage_bug+0xc0/0xc0 [ 181.117278] ? print_usage_bug+0xc0/0xc0 [ 181.121367] ? graph_lock+0x170/0x170 [ 181.125196] ? find_held_lock+0x36/0x1c0 [ 181.129314] ? __lock_is_held+0xb5/0x140 [ 181.133413] ? check_same_owner+0x320/0x320 [ 181.137756] ? lockdep_init_map+0x9/0x10 [ 181.141845] ? rcu_note_context_switch+0x710/0x710 [ 181.146800] ? kasan_check_write+0x14/0x20 [ 181.151060] ? __init_rwsem+0x1c4/0x290 [ 181.155065] __should_failslab+0x124/0x180 [ 181.159322] should_failslab+0x9/0x14 [ 181.163149] __kmalloc+0x2c8/0x760 [ 181.166745] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 181.171819] ? prealloc_shrinker+0xcf/0x130 [ 181.176194] prealloc_shrinker+0xcf/0x130 [ 181.180366] sget_userns+0x9b2/0xf00 [ 181.184111] ? get_anon_bdev+0x2f0/0x2f0 [ 181.188198] ? test_bdev_super+0x50/0x50 [ 181.192285] ? destroy_unused_super.part.11+0x110/0x110 [ 181.197698] ? alloc_vfsmnt+0x771/0x9d0 [ 181.201695] ? mnt_free_id.isra.27+0x60/0x60 [ 181.206131] ? kasan_check_read+0x11/0x20 [ 181.210306] ? graph_lock+0x170/0x170 [ 181.214131] ? cap_capable+0x1f9/0x260 [ 181.218052] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 181.223615] ? security_capable+0x99/0xc0 [ 181.227794] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 181.233364] ? ns_capable_common+0x13f/0x170 [ 181.237799] ? get_anon_bdev+0x2f0/0x2f0 [ 181.241886] sget+0x10b/0x150 [ 181.245010] ? test_bdev_super+0x50/0x50 [ 181.249101] ? fuse_ctl_add_conn+0x280/0x280 [ 181.253533] mount_single+0x3a/0x170 [ 181.257286] fuse_ctl_mount+0x2c/0x40 [ 181.261108] mount_fs+0xae/0x328 [ 181.264491] ? mpi_free.cold.1+0x19/0x19 [ 181.268572] vfs_kern_mount.part.34+0xd4/0x4d0 [ 181.273174] ? may_umount+0xb0/0xb0 [ 181.276819] ? _raw_read_unlock+0x22/0x30 [ 181.280981] ? __get_fs_type+0x97/0xc0 [ 181.284886] do_mount+0x564/0x3070 [ 181.288441] ? lock_downgrade+0x8e0/0x8e0 [ 181.292611] ? copy_mount_string+0x40/0x40 [ 181.296865] ? check_same_owner+0x320/0x320 [ 181.301213] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 181.306267] ? __check_object_size+0x95/0x5d9 [ 181.310901] ? __might_sleep+0x95/0x190 [ 181.314929] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 181.320495] ? _copy_from_user+0xdf/0x150 [ 181.324672] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 181.330279] ? copy_mount_options+0x285/0x380 [ 181.334796] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 181.340379] ksys_mount+0x12d/0x140 [ 181.344039] __x64_sys_mount+0xbe/0x150 [ 181.348071] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 181.353116] do_syscall_64+0x1b1/0x800 [ 181.357108] ? finish_task_switch+0x1ca/0x810 [ 181.361630] ? syscall_return_slowpath+0x5c0/0x5c0 [ 181.366582] ? syscall_return_slowpath+0x30f/0x5c0 [ 181.371538] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 181.376936] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 181.381818] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 181.387047] RIP: 0033:0x455979 [ 181.390270] RSP: 002b:00007f1fa3db4c68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 181.398004] RAX: ffffffffffffffda RBX: 00007f1fa3db56d4 RCX: 0000000000455979 [ 181.405294] RDX: 0000000020000100 RSI: 0000000020000080 RDI: 0000000020000040 [ 181.412576] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 181.419867] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000014 [ 181.427154] R13: 0000000000000440 R14: 00000000006fa6a0 R15: 0000000000000020 [ 181.450809] device bridge_slave_1 left promiscuous mode [ 181.456566] bridge0: port 2(bridge_slave_1) entered disabled state [ 181.480144] device bridge_slave_0 left promiscuous mode [ 181.485808] bridge0: port 1(bridge_slave_0) entered disabled state [ 181.522431] team0 (unregistering): Port device team_slave_1 removed [ 181.532966] team0 (unregistering): Port device team_slave_0 removed [ 181.545460] bond0 (unregistering): Releasing backup interface bond_slave_1 [ 181.562059] bond0 (unregistering): Releasing backup interface bond_slave_0 [ 181.591908] bond0 (unregistering): Released all slaves [ 182.079878] bridge0: port 1(bridge_slave_0) entered blocking state [ 182.086846] bridge0: port 1(bridge_slave_0) entered disabled state [ 182.094378] device bridge_slave_0 entered promiscuous mode [ 182.134332] bridge0: port 2(bridge_slave_1) entered blocking state [ 182.140930] bridge0: port 2(bridge_slave_1) entered disabled state [ 182.148370] device bridge_slave_1 entered promiscuous mode [ 182.206569] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 182.244296] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 182.354292] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 182.396227] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 182.570756] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 182.578246] team0: Port device team_slave_0 added [ 182.614821] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 182.622290] team0: Port device team_slave_1 added [ 182.659415] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 182.700890] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 182.731853] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 182.772512] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 183.052842] bridge0: port 2(bridge_slave_1) entered blocking state [ 183.059453] bridge0: port 2(bridge_slave_1) entered forwarding state [ 183.066161] bridge0: port 1(bridge_slave_0) entered blocking state [ 183.072557] bridge0: port 1(bridge_slave_0) entered forwarding state [ 183.079810] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 183.903520] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 183.914526] 8021q: adding VLAN 0 to HW filter on device bond0 [ 183.995864] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 184.076491] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 184.082700] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 184.090958] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 184.172674] 8021q: adding VLAN 0 to HW filter on device team0 [ 184.644246] FAULT_INJECTION: forcing a failure. [ 184.644246] name failslab, interval 1, probability 0, space 0, times 0 [ 184.655616] CPU: 0 PID: 14009 Comm: syz-executor1 Not tainted 4.17.0-rc3+ #26 [ 184.662891] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 184.672238] Call Trace: [ 184.674841] dump_stack+0x1b9/0x294 [ 184.678469] ? dump_stack_print_info.cold.2+0x52/0x52 [ 184.683760] ? kernel_text_address+0x79/0xf0 [ 184.688175] ? __unwind_start+0x166/0x330 [ 184.692332] should_fail.cold.4+0xa/0x1a [ 184.696401] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 184.701514] ? graph_lock+0x170/0x170 [ 184.705307] ? save_stack+0x43/0xd0 [ 184.708924] ? kasan_kmalloc+0xc4/0xe0 [ 184.712825] ? __kmalloc+0x14e/0x760 [ 184.716530] ? __list_lru_init+0xdd/0x790 [ 184.720690] ? find_held_lock+0x36/0x1c0 [ 184.724741] ? __lock_is_held+0xb5/0x140 [ 184.728816] ? check_same_owner+0x320/0x320 [ 184.733166] ? rcu_note_context_switch+0x710/0x710 [ 184.738094] __should_failslab+0x124/0x180 [ 184.742325] should_failslab+0x9/0x14 [ 184.746121] kmem_cache_alloc_node_trace+0x26f/0x770 [ 184.751217] ? mark_held_locks+0xc9/0x160 [ 184.755355] ? __raw_spin_lock_init+0x1c/0x100 [ 184.759929] __kmalloc_node+0x33/0x70 [ 184.763725] kvmalloc_node+0x6b/0x100 [ 184.767529] __list_lru_init+0x559/0x790 [ 184.771600] ? list_lru_destroy+0x4c0/0x4c0 [ 184.775912] ? mark_held_locks+0xc9/0x160 [ 184.780067] ? __raw_spin_lock_init+0x1c/0x100 [ 184.784660] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 184.789674] ? lockdep_init_map+0x9/0x10 [ 184.793729] sget_userns+0x767/0xf00 [ 184.797449] ? get_anon_bdev+0x2f0/0x2f0 [ 184.801497] ? test_bdev_super+0x50/0x50 [ 184.805545] ? destroy_unused_super.part.11+0x110/0x110 [ 184.810900] ? alloc_vfsmnt+0x771/0x9d0 [ 184.814879] ? mnt_free_id.isra.27+0x60/0x60 [ 184.819282] ? kasan_check_read+0x11/0x20 [ 184.823416] ? graph_lock+0x170/0x170 [ 184.827227] ? cap_capable+0x1f9/0x260 [ 184.831113] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 184.836638] ? security_capable+0x99/0xc0 [ 184.840781] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 184.846307] ? ns_capable_common+0x13f/0x170 [ 184.850704] ? get_anon_bdev+0x2f0/0x2f0 [ 184.854754] sget+0x10b/0x150 [ 184.857864] ? test_bdev_super+0x50/0x50 [ 184.861929] ? fuse_ctl_add_conn+0x280/0x280 [ 184.866328] mount_single+0x3a/0x170 [ 184.870039] fuse_ctl_mount+0x2c/0x40 [ 184.873842] mount_fs+0xae/0x328 [ 184.877286] ? mpi_free.cold.1+0x19/0x19 [ 184.881344] vfs_kern_mount.part.34+0xd4/0x4d0 [ 184.885916] ? may_umount+0xb0/0xb0 [ 184.889541] ? _raw_read_unlock+0x22/0x30 [ 184.893685] ? __get_fs_type+0x97/0xc0 [ 184.897574] do_mount+0x564/0x3070 [ 184.901114] ? lock_downgrade+0x8e0/0x8e0 [ 184.905252] ? copy_mount_string+0x40/0x40 [ 184.909477] ? check_same_owner+0x320/0x320 [ 184.913803] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 184.918829] ? __check_object_size+0x95/0x5d9 [ 184.923324] ? __might_sleep+0x95/0x190 [ 184.927291] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 184.932826] ? _copy_from_user+0xdf/0x150 [ 184.936972] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 184.942503] ? copy_mount_options+0x285/0x380 [ 184.946988] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 184.952528] ksys_mount+0x12d/0x140 [ 184.956156] __x64_sys_mount+0xbe/0x150 [ 184.960133] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 184.965143] do_syscall_64+0x1b1/0x800 [ 184.969027] ? finish_task_switch+0x1ca/0x810 [ 184.973554] ? syscall_return_slowpath+0x5c0/0x5c0 [ 184.978475] ? syscall_return_slowpath+0x30f/0x5c0 [ 184.983394] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 184.988754] ? trace_hardirqs_off_thunk+0x1a/0x1c 2018/04/30 22:51:58 executing program 3: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x2000000}, 0x1c) syz_init_net_socket$nfc_llcp(0x27, 0x0, 0x1) r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ppp\x00', 0x402000, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX_OLD(r1, 0x84, 0x6b, &(0x7f0000000100)=[@in={0x2, 0x4e21, @loopback=0x7f000001}, @in6={0xa, 0x4e21, 0x173, @mcast1={0xff, 0x1, [], 0x1}, 0xff}, @in={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x1b}}, @in={0x2, 0x4e21, @local={0xac, 0x14, 0x14, 0xaa}}, @in={0x2, 0x4e20, @rand_addr=0x6022}, @in={0x2, 0x4e22, @local={0xac, 0x14, 0x14, 0xaa}}, @in6={0xa, 0x4e21, 0x1, @mcast1={0xff, 0x1, [], 0x1}, 0x7}, @in6={0xa, 0x4e24, 0x5, @mcast2={0xff, 0x2, [], 0x1}, 0x9fd3}, @in6={0xa, 0x4e23, 0x1, @local={0xfe, 0x80, [], 0xaa}, 0x1}], 0xc0) 2018/04/30 22:51:58 executing program 0: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:51:58 executing program 7: r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0) ioctl$SG_SET_DEBUG(r0, 0x227e, &(0x7f0000000100)=0x1) ioctl$SG_IO(r0, 0xc0481273, &(0x7f00000003c0)={0x53, 0x0, 0x21, 0x0, @buffer={0x0, 0x47, &(0x7f0000000040)=""/71}, &(0x7f00000000c0)="7f2911fa31fa4f4b2f5687dbd490bd09e476cb6b139f5686379495446bcea9c334", &(0x7f00000002c0)=""/182, 0x0, 0x0, 0x0, &(0x7f0000000380)}) 2018/04/30 22:51:58 executing program 5: r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(0xffffffffffffffff, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x6}, 0x1c) 2018/04/30 22:51:58 executing program 2: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$evdev(&(0x7f0000072fee)='/dev/input/event#\x00', 0x0, 0x2) read(0xffffffffffffffff, &(0x7f000006b000)=""/24, 0x18) write$evdev(r0, &(0x7f0000057fa0)=[{{}, 0x0, 0x100000001}, {}], 0x30) 2018/04/30 22:51:58 executing program 6 (fault-call:2 fault-nth:33): mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x1, 0x0) 2018/04/30 22:51:58 executing program 1 (fault-call:2 fault-nth:22): mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0xc003, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:51:58 executing program 4: read(0xffffffffffffffff, &(0x7f000006b000)=""/24, 0x18) [ 184.993612] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 184.998787] RIP: 0033:0x455979 [ 185.001960] RSP: 002b:00007f78d21cec68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 185.009668] RAX: ffffffffffffffda RBX: 00007f78d21cf6d4 RCX: 0000000000455979 [ 185.016926] RDX: 0000000020000100 RSI: 0000000020000080 RDI: 0000000020000040 [ 185.024187] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 185.031443] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000014 [ 185.038715] R13: 0000000000000440 R14: 00000000006fa6a0 R15: 0000000000000015 [ 185.096522] FAULT_INJECTION: forcing a failure. [ 185.096522] name failslab, interval 1, probability 0, space 0, times 0 [ 185.108439] CPU: 1 PID: 14016 Comm: syz-executor6 Not tainted 4.17.0-rc3+ #26 [ 185.108451] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 185.108458] Call Trace: [ 185.108483] dump_stack+0x1b9/0x294 [ 185.108505] ? dump_stack_print_info.cold.2+0x52/0x52 [ 185.108533] should_fail.cold.4+0xa/0x1a [ 185.108554] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 185.108576] ? rcu_note_context_switch+0x710/0x710 [ 185.108592] ? find_held_lock+0x36/0x1c0 [ 185.108608] ? graph_lock+0x170/0x170 [ 185.108622] ? __might_sleep+0x95/0x190 [ 185.108645] ? find_held_lock+0x36/0x1c0 [ 185.166813] ? __lock_is_held+0xb5/0x140 [ 185.170918] ? check_same_owner+0x320/0x320 [ 185.175260] ? rcu_note_context_switch+0x710/0x710 [ 185.180217] __should_failslab+0x124/0x180 [ 185.184485] should_failslab+0x9/0x14 [ 185.188312] kmem_cache_alloc+0x2af/0x760 [ 185.192574] ? alloc_vfsmnt+0x771/0x9d0 2018/04/30 22:51:58 executing program 5: r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}}, 0x1c) 2018/04/30 22:51:58 executing program 4: rt_sigaction(0x8, &(0x7f0000000000)={0x1, {0x9c6}, 0x40000004, 0x7fffffff}, &(0x7f0000000040), 0x8, &(0x7f0000000080)) r0 = syz_open_dev$evdev(&(0x7f0000072fee)='/dev/input/event#\x00', 0x0, 0x0) read(r0, &(0x7f000006b000)=""/24, 0x8) [ 185.196578] ? fuse_ctl_add_conn+0x280/0x280 [ 185.201015] alloc_inode+0xb2/0x190 [ 185.204673] new_inode_pseudo+0x69/0x1a0 [ 185.208766] ? prune_icache_sb+0x1a0/0x1a0 [ 185.213037] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 185.218656] ? fuse_ctl_add_conn+0x280/0x280 [ 185.223106] new_inode+0x1c/0x40 [ 185.226494] simple_fill_super+0xfb/0x600 [ 185.230665] ? get_anon_bdev+0x2f0/0x2f0 [ 185.234770] ? fuse_ctl_add_conn+0x280/0x280 [ 185.239228] fuse_ctl_fill_super+0x27/0x160 2018/04/30 22:51:58 executing program 7: r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0) ioctl$SG_SET_DEBUG(r0, 0x227e, &(0x7f0000000100)=0x1) ioctl$SG_IO(r0, 0x2, &(0x7f00000003c0)={0x53, 0x0, 0x21, 0x0, @buffer={0x0, 0x47, &(0x7f0000000040)=""/71}, &(0x7f00000000c0)="7f2911fa31fa4f4b2f5687dbd490bd09e476cb6b139f5686379495446bcea9c334", &(0x7f00000002c0)=""/182, 0x0, 0x0, 0x0, &(0x7f0000000380)}) 2018/04/30 22:51:58 executing program 3: r0 = syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x0, 0x0) ioctl$KVM_RUN(r0, 0xae80, 0x0) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r1, &(0x7f000000d000)={0xa, 0x4e21, 0xfc, @dev={0xfe, 0x80}, 0x20}, 0xfffffffffffffc88) ioctl$TUNSETTXFILTER(r0, 0x400454d1, &(0x7f0000000080)=ANY=[@ANYBLOB="010004001d5d8d2e766daaaaaaaaaabbffffffffffff000000000000"]) semget(0x2, 0x0, 0x100) getsockopt$inet_sctp_SCTP_RESET_STREAMS(r0, 0x84, 0x77, &(0x7f00000001c0)={0x0, 0x1, 0x5, [0x8a2, 0x8001, 0x4, 0x1f, 0x101]}, &(0x7f0000000200)=0x12) getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(r0, 0x84, 0x7c, &(0x7f0000000240)={r2, 0x7, 0x4}, &(0x7f0000000280)=0x8) connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x2000000}, 0x1c) r3 = syz_open_dev$adsp(&(0x7f0000000180)='/dev/adsp#\x00', 0x6d4, 0x400000) sync_file_range(r3, 0x3, 0x3c3, 0x6) ioctl$SG_GET_SG_TABLESIZE(r0, 0x227f, &(0x7f0000000040)) syz_init_net_socket$nfc_llcp(0x27, 0x0, 0x1) [ 185.243596] ? fuse_ctl_add_conn+0x280/0x280 [ 185.248025] mount_single+0xfb/0x170 [ 185.251765] fuse_ctl_mount+0x2c/0x40 [ 185.255588] mount_fs+0xae/0x328 [ 185.258967] ? mpi_free.cold.1+0x19/0x19 [ 185.263055] vfs_kern_mount.part.34+0xd4/0x4d0 [ 185.267659] ? may_umount+0xb0/0xb0 [ 185.271312] ? _raw_read_unlock+0x22/0x30 [ 185.275478] ? __get_fs_type+0x97/0xc0 [ 185.279390] do_mount+0x564/0x3070 [ 185.282954] ? lock_downgrade+0x8e0/0x8e0 [ 185.287160] ? copy_mount_string+0x40/0x40 [ 185.291412] ? check_same_owner+0x320/0x320 [ 185.295757] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 185.300826] ? __check_object_size+0x95/0x5d9 [ 185.305360] ? __might_sleep+0x95/0x190 [ 185.309379] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 185.314952] ? _copy_from_user+0xdf/0x150 [ 185.319129] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 185.324692] ? copy_mount_options+0x285/0x380 [ 185.329222] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 185.334789] ksys_mount+0x12d/0x140 [ 185.338442] __x64_sys_mount+0xbe/0x150 [ 185.342440] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 185.347486] do_syscall_64+0x1b1/0x800 [ 185.351398] ? finish_task_switch+0x1ca/0x810 [ 185.355917] ? syscall_return_slowpath+0x5c0/0x5c0 [ 185.360868] ? syscall_return_slowpath+0x30f/0x5c0 [ 185.365908] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 185.371305] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 185.376185] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 185.381392] RIP: 0033:0x455979 [ 185.384591] RSP: 002b:00007f1fa3db4c68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 185.392332] RAX: ffffffffffffffda RBX: 00007f1fa3db56d4 RCX: 0000000000455979 [ 185.399623] RDX: 0000000020000100 RSI: 0000000020000080 RDI: 0000000020000040 [ 185.406926] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 185.414214] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000014 [ 185.421503] R13: 0000000000000440 R14: 00000000006fa6a0 R15: 0000000000000021 2018/04/30 22:51:58 executing program 2: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$evdev(&(0x7f0000072fee)='/dev/input/event#\x00', 0x0, 0x2) read(r0, &(0x7f000006b000)=""/24, 0x18) write$evdev(0xffffffffffffffff, &(0x7f0000057fa0)=[{{}, 0x0, 0x100000001}, {}], 0x30) 2018/04/30 22:51:58 executing program 7: r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0) ioctl$SG_SET_DEBUG(r0, 0x227e, &(0x7f0000000100)=0x1) ioctl$SG_IO(r0, 0x2202, &(0x7f00000003c0)={0x53, 0x0, 0x21, 0x0, @buffer={0x0, 0x47, &(0x7f0000000040)=""/71}, &(0x7f00000000c0)="7f2911fa31fa4f4b2f5687dbd490bd09e476cb6b139f5686379495446bcea9c334", &(0x7f00000002c0)=""/182, 0x0, 0x0, 0x0, &(0x7f0000000380)}) 2018/04/30 22:51:58 executing program 3: r0 = syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x0, 0x0) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$inet6(0xa, 0x3, 0x0) connect$inet6(r1, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) pwrite64(r0, &(0x7f0000000140)="a016d895f425d169522673333e7618028fd1f23472eedee861b1089a012be2a3903a13e8e53b899d07e9421cd491868ce2791d357eb4c63c26602ec68bc68d2c9bb508f5d0cc35e6e01cd477217d6d4bb345f7ea171f95f2f464a196f306b9bd9132d4e03841eddb3962a375dbf7392d5611a3482cf53c933cd268e67a048e58ae981c492aba1c807b6ac989bdaa71805189bfb074ca58fead767ece4255a126432fc04062c4ef", 0xa7, 0x0) connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e22, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x1fffffe}, 0x1c) openat$rtc(0xffffffffffffff9c, &(0x7f0000000040)='/dev/rtc0\x00', 0x10000, 0x0) syz_init_net_socket$nfc_llcp(0x27, 0x3, 0x1) 2018/04/30 22:51:58 executing program 0: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)="2e2f66696c65308c", &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:51:58 executing program 4: socketpair$inet_dccp(0x2, 0x6, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) setsockopt$inet_MCAST_MSFILTER(r0, 0x0, 0x30, &(0x7f00000003c0)=ANY=[@ANYBLOB="040000000000000002004e23000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001a0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000010000000500000002004e24e0000001000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002004e2000000000000000b9eb4101cf444305ecba0d00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002004e20ffffffff00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002004e22ac1414aa00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a20d00000000000000000000000000000000000000000000000000000000000000000000000000000002004e21e000000200000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000043cfd974000000000000000000000000"], 0x310) r1 = syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0) read(r1, &(0x7f000006b000)=""/24, 0x18) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x2000000, 0x20010, r1, 0x0) 2018/04/30 22:51:58 executing program 1 (fault-call:2 fault-nth:23): mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0xc003, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:51:58 executing program 6 (fault-call:2 fault-nth:34): mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x1, 0x0) 2018/04/30 22:51:58 executing program 5: r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}}, 0x1c) [ 185.588812] FAULT_INJECTION: forcing a failure. [ 185.588812] name failslab, interval 1, probability 0, space 0, times 0 [ 185.600149] CPU: 1 PID: 14055 Comm: syz-executor6 Not tainted 4.17.0-rc3+ #26 [ 185.607440] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 185.616808] Call Trace: [ 185.619422] dump_stack+0x1b9/0x294 [ 185.623115] ? dump_stack_print_info.cold.2+0x52/0x52 [ 185.628343] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 185.633566] should_fail.cold.4+0xa/0x1a [ 185.637705] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 185.642840] ? __unwind_start+0x166/0x330 [ 185.647038] ? __kernel_text_address+0xd/0x40 [ 185.651568] ? unwind_get_return_address+0x61/0xa0 [ 185.656527] ? graph_lock+0x170/0x170 [ 185.660379] ? mark_held_locks+0xc9/0x160 [ 185.664582] ? find_held_lock+0x36/0x1c0 [ 185.668677] ? __lock_is_held+0xb5/0x140 [ 185.672779] ? check_same_owner+0x320/0x320 [ 185.677156] ? graph_lock+0x170/0x170 [ 185.680987] ? rcu_note_context_switch+0x710/0x710 [ 185.685953] __should_failslab+0x124/0x180 [ 185.690218] should_failslab+0x9/0x14 [ 185.694058] kmem_cache_alloc+0x2af/0x760 [ 185.698240] ? fuse_ctl_add_conn+0x280/0x280 [ 185.702691] __d_alloc+0xc0/0xd30 [ 185.706173] ? shrink_dcache_for_umount+0x290/0x290 [ 185.711219] ? mark_held_locks+0xc9/0x160 [ 185.715403] ? current_kernel_time64+0x242/0x2f0 [ 185.720184] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 185.725231] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 185.730277] ? current_kernel_time64+0x1f4/0x2f0 2018/04/30 22:51:58 executing program 3: r0 = syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x0, 0x0) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$inet_sctp6_SCTP_RECVNXTINFO(r0, 0x84, 0x21, &(0x7f0000000040)=0x3ff, 0x4) bind$nfc_llcp(r0, &(0x7f0000000140)={0x27, 0x1, 0x2, 0x3, 0xffffffffffff59b1, 0x7, "04ed1d1806c176b2ba8d62f585aa845f37d9c056dd49f4142f6bcc832b93368bb8a15b0b077976ac3d7a59363b64adc55773fd8bae07d0c409d56990d2d3f7", 0x10}, 0x60) r1 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r1, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x2000000}, 0x1c) syz_init_net_socket$nfc_llcp(0x27, 0x0, 0x1) 2018/04/30 22:51:58 executing program 5: r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}}, 0x1c) 2018/04/30 22:51:58 executing program 7: r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0) ioctl$SG_SET_DEBUG(r0, 0x227e, &(0x7f0000000100)=0x1) ioctl$SG_IO(r0, 0x2276, &(0x7f00000003c0)={0x53, 0x0, 0x21, 0x0, @buffer={0x0, 0x47, &(0x7f0000000040)=""/71}, &(0x7f00000000c0)="7f2911fa31fa4f4b2f5687dbd490bd09e476cb6b139f5686379495446bcea9c334", &(0x7f00000002c0)=""/182, 0x0, 0x0, 0x0, &(0x7f0000000380)}) [ 185.735066] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 185.737402] IPVS: ftp: loaded support on port[0] = 21 [ 185.740619] ? timespec_trunc+0xe7/0x170 [ 185.740636] ? put_itimerspec64+0x310/0x310 [ 185.740652] ? evict_inodes+0x5f0/0x5f0 [ 185.740677] ? fuse_ctl_add_conn+0x280/0x280 [ 185.740693] d_make_root+0x42/0x90 [ 185.740709] simple_fill_super+0x25b/0x600 [ 185.770421] ? get_anon_bdev+0x2f0/0x2f0 [ 185.774506] ? fuse_ctl_add_conn+0x280/0x280 [ 185.778939] fuse_ctl_fill_super+0x27/0x160 [ 185.783286] ? fuse_ctl_add_conn+0x280/0x280 2018/04/30 22:51:59 executing program 7: r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0) ioctl$SG_SET_DEBUG(r0, 0x227e, &(0x7f0000000100)=0x1) ioctl$SG_IO(r0, 0x2282, &(0x7f00000003c0)={0x53, 0x0, 0x21, 0x0, @buffer={0x0, 0x47, &(0x7f0000000040)=""/71}, &(0x7f00000000c0)="7f2911fa31fa4f4b2f5687dbd490bd09e476cb6b139f5686379495446bcea9c334", &(0x7f00000002c0)=""/182, 0x0, 0x0, 0x0, &(0x7f0000000380)}) [ 185.787726] mount_single+0xfb/0x170 [ 185.791464] fuse_ctl_mount+0x2c/0x40 [ 185.795287] mount_fs+0xae/0x328 [ 185.798674] ? mpi_free.cold.1+0x19/0x19 [ 185.802765] vfs_kern_mount.part.34+0xd4/0x4d0 [ 185.807372] ? may_umount+0xb0/0xb0 [ 185.811023] ? _raw_read_unlock+0x22/0x30 [ 185.815195] ? __get_fs_type+0x97/0xc0 [ 185.819104] do_mount+0x564/0x3070 [ 185.822662] ? lock_downgrade+0x8e0/0x8e0 [ 185.826844] ? copy_mount_string+0x40/0x40 [ 185.831102] ? check_same_owner+0x320/0x320 2018/04/30 22:51:59 executing program 3: r0 = fcntl$dupfd(0xffffffffffffff9c, 0x406, 0xffffffffffffff9c) ftruncate(r0, 0x100) r1 = syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x0, 0x2) socket$bt_hidp(0x1f, 0x3, 0x6) r2 = perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r3 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r3, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) ioctl$sock_SIOCGPGRP(r1, 0x8904, &(0x7f0000000180)=0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x5, 0x2, 0x0, 0x0, 0x0, 0x5, 0x40040, 0x8, 0x8, 0x0, 0x3, 0x1, 0x2, 0x4f0a, 0xfffffffffffffff8, 0xa2, 0x10000, 0x0, 0x0, 0x1, 0x6, 0x80, 0x6, 0x2ba8, 0x1f, 0x7fff80, 0x1ff, 0x8, 0x100000001, 0x1, 0x8, 0x6, 0x6, 0x12, 0x100000000, 0x5, 0x0, 0x8, 0x2, @perf_config_ext={0x8000, 0x3}, 0x0, 0x6, 0xfffffffffffffffa, 0x7, 0x6, 0x7, 0x5}, r4, 0x4, r2, 0x1) connect$inet6(r3, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x2000000}, 0x1c) syz_init_net_socket$nfc_llcp(0x27, 0x0, 0x1) 2018/04/30 22:51:59 executing program 5: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) [ 185.835447] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 185.840481] ? __check_object_size+0x95/0x5d9 [ 185.845009] ? __might_sleep+0x95/0x190 [ 185.849013] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 185.854576] ? _copy_from_user+0xdf/0x150 [ 185.858745] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 185.864310] ? copy_mount_options+0x285/0x380 [ 185.868832] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 185.874394] ksys_mount+0x12d/0x140 [ 185.878047] __x64_sys_mount+0xbe/0x150 [ 185.882044] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 185.887092] do_syscall_64+0x1b1/0x800 [ 185.891004] ? finish_task_switch+0x1ca/0x810 [ 185.895527] ? syscall_return_slowpath+0x5c0/0x5c0 [ 185.900492] ? syscall_return_slowpath+0x30f/0x5c0 [ 185.905451] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 185.910853] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 185.915728] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 185.920940] RIP: 0033:0x455979 [ 185.924140] RSP: 002b:00007f1fa3db4c68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 185.931869] RAX: ffffffffffffffda RBX: 00007f1fa3db56d4 RCX: 0000000000455979 [ 185.939154] RDX: 0000000020000100 RSI: 0000000020000080 RDI: 0000000020000040 [ 185.946442] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 185.953724] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000014 [ 185.961007] R13: 0000000000000440 R14: 00000000006fa6a0 R15: 0000000000000022 [ 186.039298] device bridge_slave_1 left promiscuous mode [ 186.044919] bridge0: port 2(bridge_slave_1) entered disabled state [ 186.083930] device bridge_slave_0 left promiscuous mode [ 186.089706] bridge0: port 1(bridge_slave_0) entered disabled state [ 186.123562] team0 (unregistering): Port device team_slave_1 removed [ 186.134586] team0 (unregistering): Port device team_slave_0 removed [ 186.147148] bond0 (unregistering): Releasing backup interface bond_slave_1 [ 186.164119] bond0 (unregistering): Releasing backup interface bond_slave_0 [ 186.195514] bond0 (unregistering): Released all slaves [ 186.735518] bridge0: port 1(bridge_slave_0) entered blocking state [ 186.742094] bridge0: port 1(bridge_slave_0) entered disabled state [ 186.750000] device bridge_slave_0 entered promiscuous mode [ 186.788090] bridge0: port 2(bridge_slave_1) entered blocking state [ 186.794512] bridge0: port 2(bridge_slave_1) entered disabled state [ 186.802459] device bridge_slave_1 entered promiscuous mode [ 186.838793] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 186.877006] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 186.986528] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 187.026601] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 187.201819] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 187.209726] team0: Port device team_slave_0 added [ 187.247658] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 187.255841] team0: Port device team_slave_1 added [ 187.291865] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 187.332113] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 187.373871] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 187.415262] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 187.756921] bridge0: port 2(bridge_slave_1) entered blocking state [ 187.763321] bridge0: port 2(bridge_slave_1) entered forwarding state [ 187.769986] bridge0: port 1(bridge_slave_0) entered blocking state [ 187.776381] bridge0: port 1(bridge_slave_0) entered forwarding state [ 187.783673] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 188.511178] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 188.611701] 8021q: adding VLAN 0 to HW filter on device bond0 [ 188.692155] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 188.772595] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 188.778867] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 188.786315] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 188.861688] 8021q: adding VLAN 0 to HW filter on device team0 [ 189.340171] FAULT_INJECTION: forcing a failure. [ 189.340171] name failslab, interval 1, probability 0, space 0, times 0 [ 189.351531] CPU: 0 PID: 14353 Comm: syz-executor1 Not tainted 4.17.0-rc3+ #26 [ 189.358803] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 189.368149] Call Trace: [ 189.370753] dump_stack+0x1b9/0x294 [ 189.374380] ? dump_stack_print_info.cold.2+0x52/0x52 [ 189.379570] ? __save_stack_trace+0x7e/0xd0 [ 189.383891] should_fail.cold.4+0xa/0x1a [ 189.387950] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 189.393065] ? save_stack+0x43/0xd0 [ 189.396687] ? kasan_kmalloc+0xc4/0xe0 [ 189.400568] ? kmem_cache_alloc_trace+0x152/0x780 [ 189.405404] ? __memcg_init_list_lru_node+0x17d/0x2c0 [ 189.410587] ? __list_lru_init+0x456/0x790 [ 189.414815] ? sget_userns+0x767/0xf00 [ 189.418695] ? graph_lock+0x170/0x170 [ 189.422507] ? vfs_kern_mount.part.34+0xd4/0x4d0 [ 189.427261] ? do_mount+0x564/0x3070 [ 189.430964] ? ksys_mount+0x12d/0x140 [ 189.434754] ? __x64_sys_mount+0xbe/0x150 [ 189.438900] ? do_syscall_64+0x1b1/0x800 [ 189.442951] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 189.448322] ? find_held_lock+0x36/0x1c0 [ 189.452375] ? __lock_is_held+0xb5/0x140 [ 189.456434] ? check_same_owner+0x320/0x320 [ 189.460750] ? rcu_note_context_switch+0x710/0x710 [ 189.465676] __should_failslab+0x124/0x180 [ 189.469908] should_failslab+0x9/0x14 [ 189.473708] kmem_cache_alloc_trace+0x2cb/0x780 [ 189.478378] ? __kmalloc_node+0x33/0x70 [ 189.482344] ? __kmalloc_node+0x33/0x70 [ 189.486308] ? rcu_read_lock_sched_held+0x108/0x120 [ 189.491336] __memcg_init_list_lru_node+0x17d/0x2c0 [ 189.496345] ? kvfree_rcu+0x20/0x20 [ 189.500011] ? __kmalloc_node+0x47/0x70 [ 189.504029] __list_lru_init+0x456/0x790 [ 189.508094] ? list_lru_destroy+0x4c0/0x4c0 [ 189.512424] ? mark_held_locks+0xc9/0x160 [ 189.516579] ? __raw_spin_lock_init+0x1c/0x100 [ 189.521155] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 189.526171] ? lockdep_init_map+0x9/0x10 [ 189.530226] sget_userns+0x767/0xf00 [ 189.533942] ? get_anon_bdev+0x2f0/0x2f0 [ 189.538000] ? test_bdev_super+0x50/0x50 [ 189.542057] ? destroy_unused_super.part.11+0x110/0x110 [ 189.547412] ? alloc_vfsmnt+0x771/0x9d0 [ 189.551372] ? mnt_free_id.isra.27+0x60/0x60 [ 189.555769] ? kasan_check_read+0x11/0x20 [ 189.559951] ? graph_lock+0x170/0x170 [ 189.563769] ? cap_capable+0x1f9/0x260 [ 189.567651] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 189.573188] ? security_capable+0x99/0xc0 [ 189.577327] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 189.582874] ? ns_capable_common+0x13f/0x170 [ 189.587285] ? get_anon_bdev+0x2f0/0x2f0 [ 189.591333] sget+0x10b/0x150 [ 189.594425] ? test_bdev_super+0x50/0x50 [ 189.598478] ? fuse_ctl_add_conn+0x280/0x280 [ 189.602877] mount_single+0x3a/0x170 [ 189.606585] fuse_ctl_mount+0x2c/0x40 [ 189.610375] mount_fs+0xae/0x328 [ 189.613730] ? mpi_free.cold.1+0x19/0x19 [ 189.617795] vfs_kern_mount.part.34+0xd4/0x4d0 [ 189.622374] ? may_umount+0xb0/0xb0 [ 189.625992] ? _raw_read_unlock+0x22/0x30 [ 189.630134] ? __get_fs_type+0x97/0xc0 [ 189.634021] do_mount+0x564/0x3070 [ 189.637555] ? lock_downgrade+0x8e0/0x8e0 [ 189.641691] ? copy_mount_string+0x40/0x40 [ 189.645920] ? check_same_owner+0x320/0x320 [ 189.650235] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 189.655272] ? __check_object_size+0x95/0x5d9 [ 189.659761] ? __might_sleep+0x95/0x190 [ 189.663740] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 189.669272] ? _copy_from_user+0xdf/0x150 [ 189.673438] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 189.678973] ? copy_mount_options+0x285/0x380 [ 189.683682] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 189.689218] ksys_mount+0x12d/0x140 [ 189.692843] __x64_sys_mount+0xbe/0x150 [ 189.696806] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 189.701832] do_syscall_64+0x1b1/0x800 [ 189.705722] ? finish_task_switch+0x1ca/0x810 [ 189.710213] ? syscall_return_slowpath+0x5c0/0x5c0 [ 189.715150] ? syscall_return_slowpath+0x30f/0x5c0 [ 189.720079] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 189.725440] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 189.730282] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 189.735460] RIP: 0033:0x455979 2018/04/30 22:52:02 executing program 3: r0 = syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x0, 0x0) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) setsockopt$EBT_SO_SET_COUNTERS(r0, 0x0, 0x81, &(0x7f0000000040)={'filter\x00', 0x4, [{}, {}, {}, {}]}, 0x68) connect$inet6(r1, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x2000000}, 0x1c) syz_init_net_socket$nfc_llcp(0x27, 0x0, 0x1) 2018/04/30 22:52:02 executing program 7: r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0) ioctl$SG_SET_DEBUG(r0, 0x227e, &(0x7f0000000100)=0x1) ioctl$SG_IO(r0, 0x2275, &(0x7f00000003c0)={0x53, 0x0, 0x21, 0x0, @buffer={0x0, 0x47, &(0x7f0000000040)=""/71}, &(0x7f00000000c0)="7f2911fa31fa4f4b2f5687dbd490bd09e476cb6b139f5686379495446bcea9c334", &(0x7f00000002c0)=""/182, 0x0, 0x0, 0x0, &(0x7f0000000380)}) 2018/04/30 22:52:02 executing program 0: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:52:02 executing program 6 (fault-call:2 fault-nth:35): mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x1, 0x0) 2018/04/30 22:52:02 executing program 5: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:52:02 executing program 2: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$evdev(&(0x7f0000072fee)='/dev/input/event#\x00', 0x0, 0x2) read(r0, &(0x7f000006b000)=""/24, 0x18) write$evdev(0xffffffffffffffff, &(0x7f0000057fa0)=[{{}, 0x0, 0x100000001}, {}], 0x30) 2018/04/30 22:52:02 executing program 1 (fault-call:2 fault-nth:24): mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0xc003, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:52:02 executing program 4: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vsock\x00', 0x50401, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, r0) ioctl$sock_inet_tcp_SIOCOUTQ(r0, 0x5411, &(0x7f0000000040)) r1 = syz_open_dev$evdev(&(0x7f0000072fee)='/dev/input/event#\x00', 0x0, 0x0) read(r1, &(0x7f000006b000)=""/24, 0x18) [ 189.738662] RSP: 002b:00007f29f5626c68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 189.746373] RAX: ffffffffffffffda RBX: 00007f29f56276d4 RCX: 0000000000455979 [ 189.753633] RDX: 0000000020000100 RSI: 0000000020000080 RDI: 0000000020000040 [ 189.760903] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 189.768163] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000014 [ 189.775432] R13: 0000000000000440 R14: 00000000006fa6a0 R15: 0000000000000017 [ 189.832351] FAULT_INJECTION: forcing a failure. [ 189.832351] name failslab, interval 1, probability 0, space 0, times 0 [ 189.843747] CPU: 0 PID: 14365 Comm: syz-executor6 Not tainted 4.17.0-rc3+ #26 [ 189.851055] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 189.860424] Call Trace: [ 189.863040] dump_stack+0x1b9/0x294 [ 189.866701] ? dump_stack_print_info.cold.2+0x52/0x52 [ 189.871925] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 189.877157] should_fail.cold.4+0xa/0x1a [ 189.881254] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 189.886396] ? __unwind_start+0x166/0x330 [ 189.890565] ? __kernel_text_address+0xd/0x40 [ 189.895088] ? unwind_get_return_address+0x61/0xa0 [ 189.900045] ? graph_lock+0x170/0x170 [ 189.903888] ? mark_held_locks+0xc9/0x160 [ 189.908061] ? find_held_lock+0x36/0x1c0 [ 189.912179] ? __lock_is_held+0xb5/0x140 [ 189.916280] ? check_same_owner+0x320/0x320 [ 189.920630] ? graph_lock+0x170/0x170 [ 189.924460] ? rcu_note_context_switch+0x710/0x710 2018/04/30 22:52:03 executing program 7: r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0) ioctl$SG_SET_DEBUG(r0, 0x227e, &(0x7f0000000100)=0x1) ioctl$SG_IO(r0, 0x2283, &(0x7f00000003c0)={0x53, 0x0, 0x21, 0x0, @buffer={0x0, 0x47, &(0x7f0000000040)=""/71}, &(0x7f00000000c0)="7f2911fa31fa4f4b2f5687dbd490bd09e476cb6b139f5686379495446bcea9c334", &(0x7f00000002c0)=""/182, 0x0, 0x0, 0x0, &(0x7f0000000380)}) 2018/04/30 22:52:03 executing program 3: r0 = syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x5, 0x4) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$inet6(0xa, 0x2, 0x3) ioctl$SG_IO(r0, 0x2285, &(0x7f0000001240)={0x0, 0xfffffffffffffffd, 0x4b, 0x1, @scatter={0x0, 0x0, &(0x7f0000000140)}, &(0x7f0000000180)="52d97d22aa8cad1bd700f5977302cc41dbfdbdf7e071bc6d42614c7fed38cf8dccec171a86f01743ff582539ee81d2bb6f84ff7ca586ba2b5ca90a3a16e6b447f2aec0662eeeadd1548fa6", &(0x7f0000000200)=""/4096, 0x5, 0x2, 0xffffffffffffffff, &(0x7f0000001200)}) setsockopt$ARPT_SO_SET_ADD_COUNTERS(r0, 0x0, 0x61, &(0x7f0000000040)={'filter\x00', 0x4}, 0x68) connect$inet6(r1, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x8}, 0x1c) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0xfffffffffffffffe, 0xd4e, @local={0xfe, 0x80, [], 0xaa}, 0x1}, 0x1c) r2 = syz_init_net_socket$nfc_llcp(0x27, 0x0, 0x1) dup(r2) 2018/04/30 22:52:03 executing program 7: r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0) ioctl$SG_SET_DEBUG(r0, 0x227e, &(0x7f0000000100)=0x1) ioctl$SG_IO(r0, 0x227f, &(0x7f00000003c0)={0x53, 0x0, 0x21, 0x0, @buffer={0x0, 0x47, &(0x7f0000000040)=""/71}, &(0x7f00000000c0)="7f2911fa31fa4f4b2f5687dbd490bd09e476cb6b139f5686379495446bcea9c334", &(0x7f00000002c0)=""/182, 0x0, 0x0, 0x0, &(0x7f0000000380)}) [ 189.929443] __should_failslab+0x124/0x180 [ 189.933718] should_failslab+0x9/0x14 [ 189.937555] kmem_cache_alloc+0x2af/0x760 [ 189.941739] ? fuse_ctl_add_conn+0x280/0x280 [ 189.946168] __d_alloc+0xc0/0xd30 [ 189.949643] ? shrink_dcache_for_umount+0x290/0x290 [ 189.954683] ? mark_held_locks+0xc9/0x160 [ 189.958861] ? current_kernel_time64+0x242/0x2f0 [ 189.963645] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 189.968696] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 189.973743] ? current_kernel_time64+0x1f4/0x2f0 2018/04/30 22:52:03 executing program 7: r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0) ioctl$SG_SET_DEBUG(r0, 0x227e, &(0x7f0000000100)=0x1) ioctl$SG_IO(r0, 0x5385, &(0x7f00000003c0)={0x53, 0x0, 0x21, 0x0, @buffer={0x0, 0x47, &(0x7f0000000040)=""/71}, &(0x7f00000000c0)="7f2911fa31fa4f4b2f5687dbd490bd09e476cb6b139f5686379495446bcea9c334", &(0x7f00000002c0)=""/182, 0x0, 0x0, 0x0, &(0x7f0000000380)}) [ 189.978529] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 189.984316] ? timespec_trunc+0xe7/0x170 [ 189.984334] ? put_itimerspec64+0x310/0x310 [ 189.984350] ? evict_inodes+0x5f0/0x5f0 [ 189.984377] ? fuse_ctl_add_conn+0x280/0x280 [ 189.984392] d_make_root+0x42/0x90 [ 189.984405] simple_fill_super+0x25b/0x600 [ 189.984424] ? get_anon_bdev+0x2f0/0x2f0 [ 190.013146] ? fuse_ctl_add_conn+0x280/0x280 [ 190.017584] fuse_ctl_fill_super+0x27/0x160 [ 190.021974] ? fuse_ctl_add_conn+0x280/0x280 [ 190.026417] mount_single+0xfb/0x170 2018/04/30 22:52:03 executing program 7: r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0) ioctl$SG_SET_DEBUG(r0, 0x227e, &(0x7f0000000100)=0x1) ioctl$SG_IO(r0, 0x5421, &(0x7f00000003c0)={0x53, 0x0, 0x21, 0x0, @buffer={0x0, 0x47, &(0x7f0000000040)=""/71}, &(0x7f00000000c0)="7f2911fa31fa4f4b2f5687dbd490bd09e476cb6b139f5686379495446bcea9c334", &(0x7f00000002c0)=""/182, 0x0, 0x0, 0x0, &(0x7f0000000380)}) [ 190.030158] fuse_ctl_mount+0x2c/0x40 [ 190.033986] mount_fs+0xae/0x328 [ 190.037382] ? mpi_free.cold.1+0x19/0x19 [ 190.041471] vfs_kern_mount.part.34+0xd4/0x4d0 [ 190.046082] ? may_umount+0xb0/0xb0 [ 190.049833] ? _raw_read_unlock+0x22/0x30 [ 190.054007] ? __get_fs_type+0x97/0xc0 [ 190.057919] do_mount+0x564/0x3070 [ 190.061507] ? lock_downgrade+0x8e0/0x8e0 [ 190.065684] ? copy_mount_string+0x40/0x40 [ 190.069937] ? check_same_owner+0x320/0x320 [ 190.074287] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 190.079324] ? __check_object_size+0x95/0x5d9 [ 190.083849] ? __might_sleep+0x95/0x190 [ 190.087859] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 190.093426] ? _copy_from_user+0xdf/0x150 [ 190.097607] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 190.103256] ? copy_mount_options+0x285/0x380 [ 190.107789] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 190.113366] ksys_mount+0x12d/0x140 [ 190.117024] __x64_sys_mount+0xbe/0x150 [ 190.121023] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 190.126069] do_syscall_64+0x1b1/0x800 2018/04/30 22:52:03 executing program 7: r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0) ioctl$SG_SET_DEBUG(r0, 0x227e, &(0x7f0000000100)=0x1) ioctl$SG_IO(r0, 0x5452, &(0x7f00000003c0)={0x53, 0x0, 0x21, 0x0, @buffer={0x0, 0x47, &(0x7f0000000040)=""/71}, &(0x7f00000000c0)="7f2911fa31fa4f4b2f5687dbd490bd09e476cb6b139f5686379495446bcea9c334", &(0x7f00000002c0)=""/182, 0x0, 0x0, 0x0, &(0x7f0000000380)}) [ 190.129994] ? finish_task_switch+0x1ca/0x810 [ 190.134513] ? syscall_return_slowpath+0x5c0/0x5c0 [ 190.139468] ? syscall_return_slowpath+0x30f/0x5c0 [ 190.144424] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 190.149824] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 190.154702] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 190.159998] RIP: 0033:0x455979 [ 190.163201] RSP: 002b:00007f1fa3db4c68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 190.170938] RAX: ffffffffffffffda RBX: 00007f1fa3db56d4 RCX: 0000000000455979 2018/04/30 22:52:03 executing program 7: r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0) ioctl$SG_SET_DEBUG(r0, 0x227e, &(0x7f0000000100)=0x1) ioctl$SG_IO(r0, 0x2272, &(0x7f00000003c0)={0x53, 0x0, 0x21, 0x0, @buffer={0x0, 0x47, &(0x7f0000000040)=""/71}, &(0x7f00000000c0)="7f2911fa31fa4f4b2f5687dbd490bd09e476cb6b139f5686379495446bcea9c334", &(0x7f00000002c0)=""/182, 0x0, 0x0, 0x0, &(0x7f0000000380)}) [ 190.178229] RDX: 0000000020000100 RSI: 0000000020000080 RDI: 0000000020000040 [ 190.185516] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 190.192820] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000014 [ 190.192830] R13: 0000000000000440 R14: 00000000006fa6a0 R15: 0000000000000023 2018/04/30 22:52:03 executing program 5: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:52:03 executing program 0: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:52:03 executing program 6 (fault-call:2 fault-nth:36): mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x1, 0x0) [ 190.520233] device bridge_slave_1 left promiscuous mode [ 190.525942] bridge0: port 2(bridge_slave_1) entered disabled state [ 190.545869] device bridge_slave_0 left promiscuous mode [ 190.551437] bridge0: port 1(bridge_slave_0) entered disabled state [ 190.590243] team0 (unregistering): Port device team_slave_1 removed [ 190.602328] team0 (unregistering): Port device team_slave_0 removed [ 190.612355] bond0 (unregistering): Releasing backup interface bond_slave_1 [ 190.629105] bond0 (unregistering): Releasing backup interface bond_slave_0 [ 190.658308] bond0 (unregistering): Released all slaves 2018/04/30 22:52:04 executing program 7: r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0) ioctl$SG_SET_DEBUG(r0, 0x227e, &(0x7f0000000100)=0x1) ioctl$SG_IO(r0, 0xc0045878, &(0x7f00000003c0)={0x53, 0x0, 0x21, 0x0, @buffer={0x0, 0x47, &(0x7f0000000040)=""/71}, &(0x7f00000000c0)="7f2911fa31fa4f4b2f5687dbd490bd09e476cb6b139f5686379495446bcea9c334", &(0x7f00000002c0)=""/182, 0x0, 0x0, 0x0, &(0x7f0000000380)}) 2018/04/30 22:52:04 executing program 3: r0 = syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x0, 0x0) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PPPOEIOCDFWD(r0, 0xb101, 0x0) ioctl$SNDRV_CTL_IOCTL_ELEM_WRITE(r0, 0xc4c85513, &(0x7f0000000140)={{0x6, 0x7, 0x1000, 0x10000, "ac6d104da94ea1dbcc9857217547e1096c82378afbc0e2aae28267052286e4da9dad777d256fbe04f5942889"}, 0x100000001, [0x0, 0xfffffffffffffff9, 0x4, 0x3f, 0x4, 0x40, 0x10000, 0xc0, 0x4, 0x7fff, 0x100000000, 0x0, 0x7, 0x4, 0xffffffffffff0001, 0x7ff, 0x2cd4, 0x6, 0xfffffffffffffffe, 0x100000000, 0x8875890, 0x6, 0x9, 0xff, 0xffffffff, 0x101, 0x9, 0x2, 0x10001, 0x200, 0x9, 0x7f8, 0x67, 0xca, 0x2, 0x1, 0xfff, 0x1800000000000000, 0xfffffffffffffdec, 0x800, 0x101, 0x6, 0x7f, 0x4, 0x0, 0x5, 0x2, 0x2, 0x100000001, 0x9, 0x0, 0xffffffffffffff73, 0x1798, 0x4, 0x1ff, 0x0, 0x2, 0xfffffffffffffff7, 0x5, 0x3, 0x400, 0x8, 0x1, 0x0, 0x2, 0xad24, 0x1, 0x2, 0xffff, 0x7, 0x7f, 0x5, 0x3, 0x3, 0xffffffff7fffffff, 0x80000000, 0xfffffffffffffff9, 0xffffffff, 0x99, 0xfffffffffffffffa, 0x6, 0x0, 0x7fffffff, 0x3, 0x4, 0x2, 0xfad5, 0x80, 0x7, 0x20, 0x1, 0x8929, 0x4, 0x1, 0x8, 0x4, 0x6, 0x4, 0x3, 0x7, 0xfffffffffffffc00, 0x0, 0x7fff, 0x8, 0xcc, 0x7, 0xf1, 0x80, 0x3, 0x200, 0x0, 0x8001, 0xfffffffffffffff8, 0x2, 0xffffffff, 0x7ff, 0x5, 0x0, 0x4, 0x0, 0x3, 0x10000, 0x215, 0x5, 0x7f, 0x2, 0x800, 0x8], {0x77359400}}) r1 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r1, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x2000000}, 0x1c) syz_init_net_socket$nfc_llcp(0x27, 0x0, 0x1) 2018/04/30 22:52:04 executing program 6: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x1, 0x0) 2018/04/30 22:52:04 executing program 5: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)="2e2f66696c65308c", &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:52:04 executing program 0: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:52:04 executing program 1 (fault-call:2 fault-nth:25): mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0xc003, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:52:04 executing program 4: r0 = syz_open_dev$evdev(&(0x7f0000072fee)='/dev/input/event#\x00', 0x0, 0x0) read(r0, &(0x7f0000000080)=""/24, 0x18) 2018/04/30 22:52:04 executing program 2: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$evdev(&(0x7f0000072fee)='/dev/input/event#\x00', 0x0, 0x2) read(r0, &(0x7f000006b000)=""/24, 0x18) write$evdev(0xffffffffffffffff, &(0x7f0000057fa0)=[{{}, 0x0, 0x100000001}, {}], 0x30) 2018/04/30 22:52:04 executing program 6: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='//file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x1, 0x0) 2018/04/30 22:52:04 executing program 7: r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0) ioctl$SG_SET_DEBUG(r0, 0x227e, &(0x7f0000000100)=0x1) ioctl$SG_IO(r0, 0x2279, &(0x7f00000003c0)={0x53, 0x0, 0x21, 0x0, @buffer={0x0, 0x47, &(0x7f0000000040)=""/71}, &(0x7f00000000c0)="7f2911fa31fa4f4b2f5687dbd490bd09e476cb6b139f5686379495446bcea9c334", &(0x7f00000002c0)=""/182, 0x0, 0x0, 0x0, &(0x7f0000000380)}) 2018/04/30 22:52:04 executing program 3: syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x0, 0x0) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) getsockopt$SO_COOKIE(r0, 0x1, 0x39, &(0x7f0000000040), &(0x7f0000000080)=0x8) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0xedfe, @local={0xfe, 0x80, [], 0xaa}, 0x2000000}, 0x1c) syz_init_net_socket$nfc_llcp(0x27, 0x0, 0x1) 2018/04/30 22:52:04 executing program 5: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:52:04 executing program 0: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:52:04 executing program 6: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./.ile0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x1, 0x0) 2018/04/30 22:52:04 executing program 7: r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0) ioctl$SG_SET_DEBUG(r0, 0x227e, &(0x7f0000000100)=0x1) ioctl$SG_IO(r0, 0x5386, &(0x7f00000003c0)={0x53, 0x0, 0x21, 0x0, @buffer={0x0, 0x47, &(0x7f0000000040)=""/71}, &(0x7f00000000c0)="7f2911fa31fa4f4b2f5687dbd490bd09e476cb6b139f5686379495446bcea9c334", &(0x7f00000002c0)=""/182, 0x0, 0x0, 0x0, &(0x7f0000000380)}) 2018/04/30 22:52:04 executing program 5 (fault-call:2 fault-nth:0): r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x6}, 0x1c) 2018/04/30 22:52:04 executing program 3: syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x0, 0x0) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x2000000}, 0x1c) syz_init_net_socket$nfc_llcp(0x27, 0x80002, 0x1) [ 191.448286] IPVS: ftp: loaded support on port[0] = 21 [ 192.231777] bridge0: port 1(bridge_slave_0) entered blocking state [ 192.238208] bridge0: port 1(bridge_slave_0) entered disabled state [ 192.245506] device bridge_slave_0 entered promiscuous mode [ 192.271279] bridge0: port 2(bridge_slave_1) entered blocking state [ 192.277883] bridge0: port 2(bridge_slave_1) entered disabled state [ 192.285057] device bridge_slave_1 entered promiscuous mode [ 192.310598] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 192.335918] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 192.405842] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 192.433287] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 192.541577] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 192.548774] team0: Port device team_slave_0 added [ 192.572652] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 192.579834] team0: Port device team_slave_1 added [ 192.603722] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 192.630439] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 192.657159] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 192.664296] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 192.672919] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 192.692727] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 192.699886] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 192.708492] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 192.932090] bridge0: port 2(bridge_slave_1) entered blocking state [ 192.938498] bridge0: port 2(bridge_slave_1) entered forwarding state [ 192.945190] bridge0: port 1(bridge_slave_0) entered blocking state [ 192.951569] bridge0: port 1(bridge_slave_0) entered forwarding state [ 192.958788] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 193.311249] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 193.790790] 8021q: adding VLAN 0 to HW filter on device bond0 [ 193.872738] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 193.953805] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 193.960104] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 193.967335] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 194.044360] 8021q: adding VLAN 0 to HW filter on device team0 [ 194.518922] FAULT_INJECTION: forcing a failure. [ 194.518922] name failslab, interval 1, probability 0, space 0, times 0 [ 194.530212] CPU: 1 PID: 14740 Comm: syz-executor1 Not tainted 4.17.0-rc3+ #26 [ 194.537485] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 194.546831] Call Trace: [ 194.549502] dump_stack+0x1b9/0x294 [ 194.553134] ? dump_stack_print_info.cold.2+0x52/0x52 [ 194.558331] ? __save_stack_trace+0x7e/0xd0 [ 194.562649] should_fail.cold.4+0xa/0x1a [ 194.566702] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 194.571797] ? save_stack+0x43/0xd0 [ 194.575412] ? kasan_kmalloc+0xc4/0xe0 [ 194.579298] ? kmem_cache_alloc_trace+0x152/0x780 [ 194.584137] ? __memcg_init_list_lru_node+0x17d/0x2c0 [ 194.589318] ? __list_lru_init+0x456/0x790 [ 194.593631] ? sget_userns+0x767/0xf00 [ 194.597511] ? graph_lock+0x170/0x170 [ 194.601317] ? vfs_kern_mount.part.34+0xd4/0x4d0 [ 194.606080] ? do_mount+0x564/0x3070 [ 194.609816] ? ksys_mount+0x12d/0x140 [ 194.613608] ? __x64_sys_mount+0xbe/0x150 [ 194.617755] ? do_syscall_64+0x1b1/0x800 [ 194.621806] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 194.627175] ? find_held_lock+0x36/0x1c0 [ 194.631241] ? __lock_is_held+0xb5/0x140 [ 194.635317] ? check_same_owner+0x320/0x320 [ 194.639638] ? rcu_note_context_switch+0x710/0x710 [ 194.644572] __should_failslab+0x124/0x180 [ 194.648800] should_failslab+0x9/0x14 [ 194.652588] kmem_cache_alloc_trace+0x2cb/0x780 [ 194.657261] ? __kmalloc_node+0x33/0x70 [ 194.661227] ? __kmalloc_node+0x33/0x70 [ 194.665193] ? rcu_read_lock_sched_held+0x108/0x120 [ 194.670204] __memcg_init_list_lru_node+0x17d/0x2c0 [ 194.675211] ? kvfree_rcu+0x20/0x20 [ 194.678837] ? __kmalloc_node+0x47/0x70 [ 194.682820] __list_lru_init+0x456/0x790 [ 194.687134] ? list_lru_destroy+0x4c0/0x4c0 [ 194.691449] ? mark_held_locks+0xc9/0x160 [ 194.695590] ? __raw_spin_lock_init+0x1c/0x100 [ 194.700165] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 194.705184] ? lockdep_init_map+0x9/0x10 [ 194.709252] sget_userns+0x767/0xf00 [ 194.712954] ? get_anon_bdev+0x2f0/0x2f0 [ 194.717008] ? test_bdev_super+0x50/0x50 [ 194.721074] ? destroy_unused_super.part.11+0x110/0x110 [ 194.726439] ? alloc_vfsmnt+0x771/0x9d0 [ 194.730401] ? mnt_free_id.isra.27+0x60/0x60 [ 194.734800] ? kasan_check_read+0x11/0x20 [ 194.738936] ? graph_lock+0x170/0x170 [ 194.742735] ? cap_capable+0x1f9/0x260 [ 194.746615] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 194.752145] ? security_capable+0x99/0xc0 [ 194.756283] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 194.761807] ? ns_capable_common+0x13f/0x170 [ 194.766203] ? get_anon_bdev+0x2f0/0x2f0 [ 194.770251] sget+0x10b/0x150 [ 194.773341] ? test_bdev_super+0x50/0x50 [ 194.777393] ? fuse_ctl_add_conn+0x280/0x280 [ 194.781792] mount_single+0x3a/0x170 [ 194.785509] fuse_ctl_mount+0x2c/0x40 [ 194.789300] mount_fs+0xae/0x328 [ 194.792655] ? mpi_free.cold.1+0x19/0x19 [ 194.796722] vfs_kern_mount.part.34+0xd4/0x4d0 [ 194.801298] ? may_umount+0xb0/0xb0 [ 194.804935] ? _raw_read_unlock+0x22/0x30 [ 194.809089] ? __get_fs_type+0x97/0xc0 [ 194.812965] do_mount+0x564/0x3070 [ 194.816492] ? lock_downgrade+0x8e0/0x8e0 [ 194.820631] ? copy_mount_string+0x40/0x40 [ 194.824873] ? check_same_owner+0x320/0x320 [ 194.829187] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 194.834191] ? __check_object_size+0x95/0x5d9 [ 194.838678] ? __might_sleep+0x95/0x190 [ 194.842654] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 194.848202] ? _copy_from_user+0xdf/0x150 [ 194.852355] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 194.857884] ? copy_mount_options+0x285/0x380 [ 194.862380] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 194.867913] ksys_mount+0x12d/0x140 [ 194.871538] __x64_sys_mount+0xbe/0x150 [ 194.875511] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 194.880529] do_syscall_64+0x1b1/0x800 [ 194.884408] ? finish_task_switch+0x1ca/0x810 [ 194.888894] ? syscall_return_slowpath+0x5c0/0x5c0 [ 194.893812] ? syscall_return_slowpath+0x30f/0x5c0 [ 194.898745] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 194.904107] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 194.908952] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 194.914128] RIP: 0033:0x455979 2018/04/30 22:52:08 executing program 7: r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0) ioctl$SG_SET_DEBUG(r0, 0x227e, &(0x7f0000000100)=0x1) ioctl$SG_IO(r0, 0x4020940d, &(0x7f00000003c0)={0x53, 0x0, 0x21, 0x0, @buffer={0x0, 0x47, &(0x7f0000000040)=""/71}, &(0x7f00000000c0)="7f2911fa31fa4f4b2f5687dbd490bd09e476cb6b139f5686379495446bcea9c334", &(0x7f00000002c0)=""/182, 0x0, 0x0, 0x0, &(0x7f0000000380)}) 2018/04/30 22:52:08 executing program 6: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='.//ile0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x1, 0x0) 2018/04/30 22:52:08 executing program 5: r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x6}, 0x1c) 2018/04/30 22:52:08 executing program 4: r0 = open(&(0x7f0000000000)='./file0\x00', 0x1, 0x20) r1 = syz_open_dev$evdev(&(0x7f0000072fee)='/dev/input/event#\x00', 0x0, 0x0) read(r1, &(0x7f000006b000)=""/24, 0x1) getsockopt$sock_int(r0, 0x1, 0x26, &(0x7f0000000080), &(0x7f00000000c0)=0x4) ioctl$TIOCMBIS(r0, 0x5416, &(0x7f0000000040)=0x24) 2018/04/30 22:52:08 executing program 0: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)="2e2f66696c6530ff", &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:52:08 executing program 1 (fault-call:2 fault-nth:26): mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0xc003, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:52:08 executing program 2: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$evdev(&(0x7f0000072fee)='/dev/input/event#\x00', 0x0, 0x2) read(r0, &(0x7f000006b000)=""/24, 0x18) write$evdev(r0, &(0x7f0000057fa0)=[{}], 0x18) 2018/04/30 22:52:08 executing program 3: r0 = syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x0, 0x0) r1 = perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) r3 = fcntl$getown(r2, 0x9) r4 = getuid() r5 = getegid() ioctl$sock_FIOGETOWN(r2, 0x8903, &(0x7f0000002ac0)=0x0) getsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000002b00)={{{@in=@multicast2, @in=@broadcast, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@dev}}}, &(0x7f0000002c00)=0xe8) r8 = getegid() ioctl$TIOCGSID(r0, 0x5429, &(0x7f0000003fc0)=0x0) getsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000004000)={{{@in6=@mcast1, @in6=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@dev}, 0x0, @in=@local}}, &(0x7f0000004100)=0xe8) r11 = getgid() fcntl$getownex(r2, 0x10, &(0x7f0000004140)={0x0, 0x0}) stat(&(0x7f0000004180)='./file0\x00', &(0x7f00000041c0)={0x0, 0x0, 0x0, 0x0, 0x0}) lstat(&(0x7f0000004240)='./file0\x00', &(0x7f0000004280)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) ioctl$TIOCGPGRP(r0, 0x540f, &(0x7f0000004300)=0x0) getsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000004340)={{{@in6=@ipv4={[], [], @rand_addr}, @in6=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@local}, 0x0, @in=@loopback}}, &(0x7f0000004440)=0xe8) lstat(&(0x7f0000004480)='./file0\x00', &(0x7f00000044c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000004540)={0x0}, &(0x7f0000004580)=0xc) getsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0x10, &(0x7f00000045c0)={{{@in=@remote, @in6=@mcast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@dev}, 0x0, @in6=@remote}}, &(0x7f00000046c0)=0xe8) fstat(r1, &(0x7f0000004700)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) r21 = getpid() getsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0x10, &(0x7f0000004780)={{{@in6=@mcast1, @in6=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@dev}, 0x0, @in=@rand_addr}}, &(0x7f0000004880)=0xe8) stat(&(0x7f00000048c0)='./file0\x00', &(0x7f0000004900)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) r24 = openat$cgroup_type(r0, &(0x7f0000006240)='cgroup.type\x00', 0x2, 0x0) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000006280)={0x0}, &(0x7f00000062c0)=0xc) getsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000006300)={{{@in6=@loopback, @in=@dev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@broadcast}, 0x0, @in6=@ipv4={[], [], @multicast2}}}, &(0x7f0000006400)=0xe8) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000006440)={0x0, 0x0, 0x0}, &(0x7f0000006480)=0xc) r28 = inotify_init1(0x80000) sendmmsg$unix(r0, &(0x7f0000006580)=[{&(0x7f0000000040)=@abs={0x0, 0x0, 0x4e22}, 0x6e, &(0x7f00000005c0)=[{&(0x7f0000000140)="6f921ee85715878b628f67a317a350ea9fb4cc14984bd18b55b2345fac7f1cc797df584968f6c1b47b06449e19a1dc5e64c2086ea71e45969ae50136beb14daaefc5a9c750dfdb6eb3867a76922a7ecf4d273c3a91442368d1cf4d7131580f5f90d65241213e79b601ae2421a8bdeb3fa20c2be48056af0e0be98ec68ab397531d69defebe513593c981c66d2c3e913823b4c8c2426df0c7e76b", 0x9a}, {&(0x7f0000000200)="d095bc9b8bae0b4cca19fd4fc8f6a83a86bba6ea489b92b1040407ea205ab4ee97c54bf9df503750f87d911de274a90b94bff3cbf486e384248b31d2ab87ef4f944e1865dcc2387193088e1750cff2a801a968bcf47549b05f51459f82a6660820b378beea0b88483203f5f7f89cd9879ea9abbdc8667275d773a3e7aeb897b0bf62287cb1a50116b17cd4f0c9dd28dc064235ba78e08a7012423f4738ebc0f642a90373cf1a8b18ef043af6a78757f8b32721eb069aa98b7be79440135c30035bbb0c6ac56e92fdab6cde66c8568f35d4e0b1c15d26d29e44b0678e1d8a44e56d795a7490aecb9d44d3a4", 0xeb}, {&(0x7f0000000300)="876f4b8301dfa11576c7ebc6b051ba3bc91d3500f917bbc33a15c143268798851863be2b3dfc19d9553ce194c475991ca4f14e8050f0a21b4aef0926d88800e4b446dd18ec19378ea96555b8", 0x4c}, {&(0x7f0000000380)="7a643445ae1f7c3e1ec9579172f7f8f2cd4543404d2032670ed03cb31e4cd22e48741e5e6ddc9927e3fe0a31cf98155a90c01e45614729b1d1345588edc95d1214e32e306b1d140ea8f5a603efda81b5fde927b626fa380fd6a3c1af34f7e996536620aaf6fb5b4f89ae6be24542b1c262b861a80331cfee6223f9f77a44c204cf692ac34e3225c2907e258201a10273f6d07bff48a7aba5ab1f92832b497c", 0x9f}, {&(0x7f0000000440)="19fdb53cb4f1a849a0b5703b950564e29561285d864ad8be36981c73bc8a6a3e8e4ebe2efcd0accf67bf3e17caa21e0440b53f", 0x33}, {&(0x7f0000000480)="7ec864e2ff75a705668e5867d38a95163a9d8df02b975d200e7b774841c69a0c6b8f93af462f7060d6e693ea737bd091b04036a16da723a6ed4169fc2ba172ecb0b461d39119d3dfe7bfd938bb2f11e2ddcef3bddc897d384922f63e1c59e5", 0x5f}, {&(0x7f0000000500)="83707f90bb35d4a0007aea740ddc27932291226ca5806b5a7bf4888d39c52b10e0032fd92b277a0c536184d8774b75129eeb99dc32433d8500e72259c8ac9f641743fef81b4296885145091f6ac9b6a98ed96dac41297d3ab9fd6b42b262f7dde28bf6f09a597544ea21ae682bbeaad028575121a934a71d6dc11041dabc7eeaab20", 0x82}], 0x7, &(0x7f0000000640)=[@rights={0x18, 0x1, 0x1, [r1, r0]}, @rights={0x20, 0x1, 0x1, [r2, r1, r1, r0]}, @cred={0x20, 0x1, 0x2, r3, r4, r5}], 0x58, 0x4000}, {&(0x7f00000006c0)=@abs={0x1, 0x0, 0x4e24}, 0x6e, &(0x7f0000002a40)=[{&(0x7f0000000740)="75c8fbfab4c2cadb0d879d99018c26341366e01f417ae47443047f331a5abefed2705156ad68586ed3f8a87c321a60a26b036b779ce8525cfa667f44f29c795a4edff7a748f9be1e42aee33e9b2f6bd9351a249eba6e9ae20d5ca1e52f30", 0x5e}, {&(0x7f00000007c0)="c940cab13a87c15d2d0bd5df28ce3b5841692fa95ac04c221f6dd998a5c425987ddd216e284c", 0x26}, {&(0x7f0000000800)="166bce740581c6a445c747154e30c8b458f11811644e80b1f2687bc32ef59a0a87904e9c2b9caecf760686d831fae075da2b42d349658f25f7baa6cc180155a01d3d70d3e2bb38d617cd735a8b0c706934413806fe7659893af5ebe1a1d13cf5cd7cc6ea3c8a34799718ae39d7ec13ebbc7255b3ad60b961461117082056", 0x7e}, {&(0x7f0000000880)="9d0b18e6536533bc4f1d119caf24fe60e1726a32fb29eaac7eec2517b75deda0fead430d82d989bbce7e40b915eb802310f2fde83171cac02034684e77119057c388bfe7187c", 0x46}, {&(0x7f0000000900)="95eb6ce7d2e057de2cbe252b7f62c97745c4add4e5eadefab8f4f08c58aa00e3d60a776c1ee2aa684b6e74d10aca412808f6ca023b74942c0adf461253d5d608764bd0de4bb2ca34c838610c915e66f027c937c6a609659d55586b0286722ba74415fa9d2fd37506650285d72a6561d9e05709b6b15d225b812e8dc6acc1b0043895a640a84b4592261e24932dab67d8", 0x90}, {&(0x7f00000009c0)="117252a74f07f185864125693f1032c8cf598ee2fbba2f8779322deeec2b5779a3a52a71458930a794031bd91f64316f696829c98b47630acd28282e22b1a6fb3e3bc7d6a87c352e0f38885394f1363c94ffd96969659680c00af2c94bdfd98a31a9cb5fa57f82f3245e5aea0c372c09c23bc47432a33c90df6fde20dba75990e520aa9dbb6566ca5726b8a596dddd25e4ee4ec95e22ff37280be617a9d354286025d477517e61f3eaa7eb6b6cad2c746e66ea8dd18e938a2439afcd2f24e76df319d70ad00ce2ab77fd3cfc389c0a4c67f23541ec73f9f63d9b33d898f5e80fc63524f131a3113ae2aea665bda3430f016476fd7f42c85bc6338bd2592ee15904cf8ca4c95bfdf4932a15f34fad9f82455fa21b5ca7f80997eb90a51a3278ad8cfe4e28ed824b7e23a5cedbbe6331de51d5a00ae720b4727bdd69aaff171fd83c82697e69a885d4deb0e460043a7f1a55ca48373fddbd6e340eaee2dccfe7211e35d0165e37e25d6afc942642e2f888c40995de4b62f2d7a7d1bf144b53494311e39264bacfaf547733d512dd2bc46b2c9545a8fd9dd7d0fd5250a25214c9023c9c4c3c695cd04344aae470d2775294e17610549b62705edc1c18b62b8de294c3e5787ae5941652713cb6e05ec4105455c6f92fe8fccb08d6f65f06747d61b7204cdc133ca568ea82964534bb6eff607be517ce597c12860bed78e78dc69a0e113dd80a2a8a210f6e1a0861dad07ab137508156d892945f0124897ce47777d748eb6908b8b100640c1d5dbb4d5e48734abbd1c42e5285d0554d0a30b59ebb3b940332c265684e4139279e19af37adc518e5cdae118fc7a9680b5b4c383e69918ca872973f316243af5a77eef20e98b67bac18ccd18ebe5c8f97eb80529a5c9b2eee7bdb687b0987dbc2abdf787dc3b2ab3bac1dac1eda7d7d9f61f7c4842603a7f46cee2532cce70885a5e59388515d021505b5a200dd904d37742f50ac02833eadd6b6d41d5695bd360725ed5897a4d08759ab1e2125f6c2505d9187b755f6750063b5954ec6222e8e9cf5e351a245a66f163b353bdc90f569adee0710966085505d694cba70fc2df758e595b93a0875fccaaa99bd1445481de73886c23d6dcb0f5a5163ba3d0b5d3d21c118eec3deca7d2d557bb2a73dff3ff6f5b0366d0fa86fac0368408c677efbb3c8d4f8adbc9f0a01b2042dc41574c4f9f8479090b294a58997090f845ad47dffabfad8c0aef12ec4ce3f373bfa2f400091216bbc24b4c9d5054f1c0ce2015d73aae38478ae71cef962fc1cee8464446daaf69756ff3514b916c631f2b82d61ff6531449e7cceef2cabcbe2a101f6b76882b47aaa6f93d22c63ec845d478de25eb7124834c68cd48c2119c7f5fd677c4a5379369ba98762eb147bce769c2997623abd4c23828bbaa960526d1fc3757f30ee0aad54dfe1f3ab7f98057f213bd9d9806659a478d795a5f8cbbd194c1946ad8473774efdeeee77b03fb0108681fefe46fd96169333c43f434e2ec31402bc44953f7aa6e42ba79169fae39c2ad44573b263b096e9f5bf3d067f7ac69855f7e3418e6e07bffa77152b3c253d322f7d26d4c8c142c80215fb61299e6f857f5df9e32271af099a5a367c803f9b47188cfb4ef069de06df868e0457d4ed62300c8e28499ebf0cb1a3905eca4b5e27ac035e1ce1a45d6ee402c3cba68ddb5ac388ae37a49bd52b2540876bdd2e26515b6da65a904c31251cab9efdf2aae0ecdf7863b0516ee463b408aff49d224fd0c0125bc3d13ce846e434809732554bf33b8a8f27bfe450ca77f8a9ce931f5427491b64c4775b0b57f5e7a84d7f7595cd59b009292c68dde225ad4c79162153d682206c9adc0a1c1e84489995d264a6d2d6de9085fe528c8c93967ad4921551f1a39eb227e7e2bf4c5341e2c6a4d774919381347bc2fa101b3952298ac1f077f48faddd78fbc9777cbbc422aee8506b855017b5ac97062f0dd85d675f1c67aaccc2a11f12d1e6507987c7b0b22f277d9b870e82ac855e7986758b89f644e43c6c5de3d46321f65b5e16b355958c8f60d3eca6fca5ad7256f1146d9acdda2ae8afd8c233a80f6549c659e90fc6a3182855915bffc7c54c70e6eff1b1ee1afe8ce24a52234734c91d5531ad6aac108ba7b3142dbc525a273b1d5b9e4a46c9240d78543af0c16b5e601ebaa3a474b034204adfb19d193f22ca9e29214a95d2dcbc23afb7671b72612f6ab7b1ce65410b1ebb52cd74e5d077b4a481705c14634800cf6a39194dd221d518463cf6cc41b1d8c671d38dbcd53cc1a13fffc17acc24f9b06b6d029bd56772e7b1de4bf448da3c903a3c3251ef49c7666a3275615ef8d6ed844e5db242ae9a62d217a0b58edf7bac8806375f8c78cb7c211830ab96cb5251e0fbc1e65c1b476e46b39209700b7d9164402463d228b655d62cde92bbc9c28f50127bc467f03b590710cfc36b49af680dd2a55619bf6fe32190668f053e5f40e28daaef31a4534f6c7ef509c20760bdeed87b6ce5f4d5cef9c20c35f76fb354b7734a9ef7b8961f201e69f0d4a47fd1000372955c4089865f410f81a2d6857cb8850c2d657048e64ac81e3d40b2c89c9c1267b88a56c4e47266a66c8890dbdeceae904521b9be98d801088e6aaf3b3c5afa60d93122eb4c10f00a8aeb95d822e1d6980418e093b688e84d40ef62f1526074962e04b34a9895fe5861159bb1bfb1a6d70e5b0b684bae03c847c504cbadcc14d45b05cf3a2df94ceb32cadfd11e4a3b2e1f414cc41ebe03dfd5820a5de5d3157683e06d3780c16f3e53f9e7000c3e41b91f2c49a4711af8dac7e2264f12a605bf12cb96fe13b66e6fec2a1515720a2de4773c6a39f6abd24295b782dae74f64392f4eaa2ac9dbf6753aeefe73bea0c23b9c634152ec824f5799c457429ffab319f8104daaaa8dbaeb441abd54589334ab82faa607e36f6e08b299ca2b17d8b74dd17ad65637d8fcb6383bcd9412efbf599c82a8abf692dd13b6f73044f00c8a01eb6c5cd71a372348d1b3782790774abbcb379240a5f0b464bbbe0ce0b8d47ef0d726e27ebdd7d37e1f1dac85a109c790098f331d01496463996d3457038c258ca8860fb0e9bc0b182c90c6d436e6e561a67cdae7816aef192ce3a3a543f2d7f8045b02ee041e7f7dacf97cbac853d5b04ceb5255e95f0c63862d35783a497192a869f3b00fa4905939c0b913d36104b701c065f9d02a5624fdcca6c19e79418c70f007e65a0fdb7dd86009d4bbe2104a964b9518717d6dffe6466b90d7ffc5250dc41997291860e1126386e792b1757880e84ba7b1ba5c7e578dca25622a398ac5426a8a2973d5fd0df1f90b0da482a77e76ce26c2b6ce0579409c8a83eb6a2b3f905776a5b89e120a26ab84fc635729f8a3027cf838a1141d7633492893eadf180cc0189fe7ff3506914488983de0ac55476ec9c986f611bfd1e64821b371801b5f54179068efd0ec2a481325b21c6bad6244a888ebc59982dbcb022e3046be92c96826f771757905c2bcc587198adc10e4efb877ed6bc06d0febce1b3de903b4ff35ebeae7b76e7922def52ae1217feeb4d13f5e136cd71f3d8b67dfe7355fbcd0fb93f21d1589eedd9dc40cdaa760cdbdb426a45defb100e3beefa7d059942a038216d9e0bbc1f9ce4678ce19b8e55257698bb221f328c439b2998d9871874417e65e5d202a48a96ca33c308f0eb1c7307b6135fbb56bb490cbe05a72ddb1f629a09702b92b09f378b45a2b4527068f81e344f8f41038d661684a7eb07c4f39464dac09b224e52edaca8bdd5d3f6ddabe14a3880ef0b2cfd1bd5b60508ab2272c9da6a2c53d2f4c8d66f937e10d0d02c30b4ba96d7ba6c81c6f3920b0b308d70a395fe0ac34964dfa025c7a79ec12f625090e16abd5313811a3749a05096102f363ad904b6b8add19948cd7e2cdf393e71c36344e4b51dbae7ae281506dc906fe65bbfb692b9868e612c14dc549dcdc97b87cfee237426d9182e1b6e3d2acbcd0abb94524db9caa7c9e86427c80a57f7d586c76e64442ee2f4681c140ac614e4507782f427b2ce87d4c86fa92507348a911b789b44428154f2e42b5711c7fa1cf16d67110798eccbd6486c36abc73fc8b41111470b8114f5f088b5af06b35caa8190c5c59d5239b5d48fbfcf428fd3785edff6766317b73f8002db517e704af45483d175e0bfea3c8dccbffe2f80928f552605c70cbb66fe917e9e4a20d4d9e5a3ab004487f85cc73a06b9d77d9ababda86319781c0510d80442bef6459041fb73da9f616e1dcc27c9a3bb27ab25fa971bc2d33865c2b5cc462b6404963e952e8ffad9e241f377c24c29f959ebb1b2b4ba7eda7c003ae7333e940f29484dca544bdafee745c3c05295709fb41c0e290ab8822a7b0e448ab954ab9c32c8035a4b56843532d54be65cd247062e2bf9b162085668b9c1a9b6a74e42c6e30f20d43433d04d49f3d3305b2133a1c5dd1ea3c56f5bb3360c279728aac0c571cffe7777fa21bf2d031b1df96d7d6a512d5be8d3434cb2d5082995c4ef7d6946d7b6d151de44a2091afdae8173530bcc4c8af342ba67d39ccc9c08e6fa9363ddd94ee32c98d55198879be2e2344432f0ca89ccf819f33a4148056e735be1f1b1ac612f1f98790e4bc66ef2bd80c21882fd133c3335ac5b8e6c8b0ae80d7fa8c3c2cd98c47185ef270b5a9b8c3bd9a974e5766ac5d33a81a19cbe753eb5ee24f49a6932565aa879adc5750a9769063b9dea77a01af53d45bc4a5954ea89ef10f05a3c3d5f358186d133bc2623f22229c911f141cc1eb9d919e7f306cdfb0a5c0d0acc5997bdc81d0b73582817c3632f1b70ccea4fcc03be60be2aac48794c91eef098ebae8103adf0ffc6cf51010ee89d7c17e65d0eb1802361220e0261799165273240394ac640da97c6a17a9d5f168e4e0c41626d56dff65b9c4291759eaa1d9436a7e4b01178eb25b957ef3f66ca1fa51917a74dba1c5d29ac91e36af9e339b417345e88dfc8d7a381cb43031ba134418fd98dff9eff71538d9e82b05c139703480790b717224c3e46b798a4cd7dd854655cedfa875cfbd272492d0aca23ca49bf5c1e70e37f09a9f985af457fb5928f4526dac9642085a2d64d1eda280c712e2c6313f5949ea3ca06811e8e4506bc1654c3492218c9fc93e9886c4f6626bff7a71fd1b6e8ac2b0d5fb552f7e45447cebd71040698442d366a9b66abc28c67594b21362abafaf4348e7d41b918f0bdfd2993a430bb7ebc458a70240c9d41b0a0c6633cd133f4656f577ed04977a7bd6ed894589fb38002845e6defcd543225af22408542ba90d3d98be773d51764773c480c173073578502bcd1f2bff4d88a0e1c8101d8fcd72f6847a5ff50d55b00959cea779b3bb4c0f13956aab07c5288fb12d1b7c2a1980a7ef20f01d5cc286021f69ab1f89ab3eed8473db22c18ab47274781e5b34c2fd487c5548d713dbaee4416a77601ab34c71f087cd19147316203be64bf53d7afe6f49593ddd0f2aaf9846a5f98c05112fb2ed4fe8e9e3718d989bf1944df113fd5472f65b435e8eb0c26527cf30c488a48d9829e7b311cd8eeb0f113cbbc8036099240f1f46ce76066df095616636067355d8968f720da194aea2a78d925c78ca2686bae7246266653a1e29271f6ba5dec58762569eaa584b289c8604210acbf035aac762142ec7fb2e299620c98f11b5efe85c460b07706550017f69d1aee64474bd21dd301a88254a1f4798fc369204841664a0768e24a7242e5d6354ddc165", 0x1000}, {&(0x7f00000019c0)="2b3e409c70aa0954c854f0ea297e3a6b19374a07fd9bca6c9db4ad36185d9a820266d18e62840503efecfafdf99498119a8cf8754776f0588653045ca72d848da4b7ffd327b72e1ed3c644e4349036483285429f489ae319bfb16bfe29d5141e66d934c0c1f6d3ee69d03cc2c0d1247905c607e59b334cb826", 0x79}, {&(0x7f0000001a40)="68b5224326f31e3eaf6bf6833d7dbdd3fdd05d8efef6fdc2c69588e93421d5bbaf214314bde97f74c37963f9fad73aae1ffc4208bf0c7fde87cd65e0ab1c4595a92d56b4c1dc91d5e4efd43600adc76da64c9f56de60311f3df53d8fe13cf8cc783f55fdd6bc78d89b124f37ea3bc3748999ab9d1cc061a704359332b05314ac3b7ce9fafc046938f10afb94ad73e65f8cdeeaaaaf58271483becb9c2d5c1c7f9af76616f9e35689c14f71604a2e11bbe2ae688967a22d661e170366ce140c7cc86ff01812708f994d2650d0beff0007c0a8b6411af84fbec4fcb7695b3a50f05e65db8057394fe104264aba4cc5de3a163d165987f9889bbf75346b4b0dc505fec0084e7ac2dcdae3937f74b62f862891b42613cbf40c32b1c58c316a8972fa4efb3fa7e83bd40dec752ece8e2eaedaccdfd43063a5d363e55112feeb8e242bc21c50b5ff1a4fdd6c3790cb077b4d091e4dbbeedda890a3a373dae3473d688f7106e6c466fea6009543632d2543a32fd3eb942d94662f867a2fc0f2df77ce1fec54c0315704e5c30e6a6fb15bd77280511942705c53a214903c32971bb295f02a7c139471126d56db7eedf4324e26ac9150e74e7340ee5dfa269f72dfb3ffbfa2272326ab45d247ef436123ad6711420ecdf4067db3e71ebef44b7e2d2253ddc92671306c5838ec2e6e050b31b02a3a19dc9f47998f8457dfa0f0b7570172155274d7995beeca16fe437b385a3807c3ff93581ae806ba52215a83d8fa0a34e3d0be39b4b782f3e05969f3aa0530ce572fde3288da6e7e74558758488e4099ac03a2f3f3963dda9425db240068bccbe6ec9341cabac62235789f8348f11659b5be4191e1e2fbe73f0e99f7176105106660cf95e5ba64c06d951e2c984ffafe53511700511713daf2ffdd29bac91a26ee1c2f5d7f3dd7e26c91734b1bcea06d1caea8cd044ded28860364723245e2203b3ccad3f2f5a331aa4c180ecf312b1b9eebe64dbd0bec18896f4a5e8aaea22889594dc43fe60dedd77c82751176c2134dbff7c7f10ae6ebd828b989f8f21381e0bbb3d12189946dbcabf90b33684e2fc53280f3992af01945a650003ae568bc55c4bbfe3f3b8954e92d01aa494d66b4d033efab6a8b78a00779722a42d7fa11f58c870053ad0741b7dc11d34fe455212cbc0b5e8ac22950829aa041a50d6d7bb0ea1afb7aec1fd899095947700d2ec1caa7f4e1bb8c97a005c9f8143a78783eeb6ae4545cd5ee2d99049bcb62a1d3ff5e61a0777e218f71ade2c4edbbc6fdd5cb32264763f7ea77bf4311dc1449ed46e80a6de45c9a8db54ea4223e52961baa8b6a6a96abacdd90cbf9de48ba6fae729142228f3af19ca3c7eeb0463312d45bee8a8013e2233a7293b92f3c3e027dc214dd1a7f1c44cbd0fb42ec34d1e9e943656701682344acfb7b145b51a4ab8703ac5ccf474233f6eb493b99ee3d828efac01519cf66d9194d136c46c3dfeee5285f7ce8e2aa850ed0442c8f2458b05ea9c39d27f5281e72975efcc4f158642bd8da1bfeb76dace6f47026e21c04ff0f903a085c52f81946812f228a5799a68083cd24c2b35669b736d6dd8591a1a815f1c15dff0fcac147eac1604dd00f44ac5c0faaa4990bdfc9cf8702f845d0926f2b2f3d942851ec9f03c7343b0c7bfb5faad86d2519dea1d27f9c9b681245d015d4327c4c379f23bcc32eee286a3068f0d168ccfb4c79a7941c9f65f1f5a9bf8014d261d7084a9eb10939e51a48952e1127ad058bd22bf6fe2d7270e2ea0559286bde443a99bdf32638626f8d0702715605f10d3506b5106d33fee0878d9686ccc3407630c13ce665a1386249681f699d2de6a763d7da53f2a3bd5dcbd17182166e81ad4128c8b773e54dc7a2a09b1ac4ac68ba6419000f094bbf1785bde36be60b948dec1f41011aa29f6a311585532fd4c3bbfbf67de8338b287f23c43d0163d647892302efdfbda064d887cede075de524b0096a9a43614f63338b8fa80956a1e896aaf846132181ab98d6482925b49be83a9c1eeb7b3c229d6776e01ae8760f94f369a006fe796c89f5e2d8207392df7b275e07c436c3c28c260262e2a9a7db3c4d20582267d42d213a3053977dbfdf7672d85529d90f5febfed2d50f9203dd5ad34defca166dbd71844df634f39f11764b2897334aa875dc85aee09d1e1be2705ba4e0b392a1392ddd2841fd44f95e0563066ab2d88a2c8fe9a87d7bf4c58cb766bb45fb15c6855ded9909d3ee442b4b9b2c5e6c94886f2739fb738a845d29136a23885dac0b855f1a6829696b6e926863d52f5338ed63de38596f97134df0eadc8a62cf963546f86f4302b3222ac253306bcd88fdb002cdf3fcdf7f3db120824ca632880ddabf4b2724e3f4d3e230bce74e17a52d0791a78eb5da4839b6eea4458c943831fc6b4427bf0f869b6b443456a6bf09be3450490e8783813565533c7b3629c90b218522daf711a78f05b785e0e62c38eb365c301a8000e606a8ef1c0a9b2942c8dcd794260b4ed16e3cdc4a80ec2c909c950a59da9692c649c8d18dc283c8baf00ed66304efde498eef84af6ca71d8747af419e1ed2d1017e59cbbfdd6b500864e1c412aa323dab8c1c72924339e63bf94338f63fd89f62fb5923708635e95192cdeadfb541fee4e18a4f364870d899cbe00a65e6a8ffb0352eaf0998251216b8d925c627a179d9354134974db465b6c13af3a4c340b484ca90ab6f94583484fbe3fec96f9498fa44e91adbe766a64191589ad7d1e5084edbdf76bea9069019bfcfa7fcd9a43a2e770e79aaa03b0a7c6bbd25eb68ecfc11e972b3ce5858969fc75f9828d1dd668bde1b890345e5d06d2b5b84b9ae6aa01bfd30ee4e2fd92d40596ce2f50662aa269aa19129b92986a47eea793e0a062536477ed1cfb321f32a0a091eff3cb3b706582843f8ecc948ff7db29bfd6667d288f1692bd1d0c4c9845c75d07cce716a4fc15dcf3e9833942918c4cdc2e57f41d0af697646e03203fca8b7b4bc43360c92010cd06e991d6934fa07a96f8d95df1c00c3fbabda29236a3a040de78e28a643a99334120f03d8eba0e5690e6ea41c6d9ec1f99a5293af7a7c4797e03ecd13a3c9f5dc479cf2c4c90d6b0b38c4e21e1d586dfc85fe6fc4534d17b7b540fb4e73bd6d48da93d959c80623addf55493c4e7c68f85634020ba1b2b2b6942e6aa01e3bacc5e33a25e19450ca2c8b25b15da33dff9ed6a9776ddd48eba6acde915e74fe2eedd59d477e5a47eb1470aae1aae3dd8945d6b64e62b8a1ea2fa1fe198dc1a28cb32876732bb15e5a532c87bf34ec6bac65be2e1593542003d575f5780e628da8ee0cb8fdfdb5bbb9a6eafccf5770f7b07adad9c1755d06ef58f4ce3350af0d8bb4f7320cc2a092b3108f53d6fd555ad29a92f261d75942d16bae5f6cdf6d0b84736753f8b16b1a7ca32bba602a249d7553117d5f0c3dcc65f81340ac50a98a11533cd439cea8beb43dd7b8de2f0ffdec66637d85445696f84ac179c3c7ffa8a7a445f5d6088f33577d9e5e3fac83a26c76e1ffa5ef12a12ce9d581ce22718fb000460a9ab8cddba65779d4e3ef6aafe61b593b6faadc774e939c1fbdaca18d57db863c4fb9fe35e2c27891e6e0395374ec97db2d603e2aeee8ed14e51022f15633e511c0cbce76c6d6978dfa2a7733565a0b810c13f210f782250aee4b1308f5afaba3ff82beafa5bc83df95940c927bf71ee5e53d57219eaead4da6f6f11188da33046066f4487f2e62fbf469982ede5a68182637cca9b0b24c420adc567e9ecb875c3a60550cddcfd21532f4d0d63656432c1d7c0de1eaf8719d24afec816cb3eb44128824019a28dd92817cff130057336ed73677607371800dc570311ccd5bff81e7ba3f5e4067d85658dfc8c3a3537f6e19414393403e0bc704835617d67f85e4d79090f80b3b587a9e3cc133884b53d9b914351473879546e886b9608c2eb84c0038b7488386587f3ddb050f8adcd9f500a30616ed980274df5a9da79b4e807035f56761d8ce3d3651338c8beaac68e81c617e802c5b05022d196523f839943162a064bc3d82a7d667928813a7cb592211ddcba956519b143e09923b8050946664408542350f588ff88ad37a575f9081661908df77212c7c88b50c24e106d0db43d79626fcdd3a0c77f74702e45df99def8e8159e152c44a24948279c5430e4029d238c687d5f441f494a79dfc468dadba6f8e14598ef610e331898bc8f88a403077c82a7002c5560b1bcb04b65f4d605941fc10caeec74536c6ea4d360ba6771f855bbf366cf86cf22820cb6ae8fce5f0155df5f01e7b04cb48c6d286c41f8ca862d3e9514b3f7376f784a5c6efac3d9057cfaf9344001b473d83adb3cfd2b0fe8fd65d938cf6422062fc0a1d7c4e255f4897934bae500c59c2c33d8b31b702a1e93d24d7a630e8f298c84c3f527503dc3e18b250d9a16583081fdfee2d08a9dc1013ad6bcee281f4775d0727172cc2c7a26b742a23243d9f1b7c2aae3d70514c3490cfb50faf27a7ffe9627eed87ddef36e88da921e728578a003cb18f01f91fad3d261664325adf3127fd70e428f47e80f4d67535239b38e6a630772f4aee13afb70e43bc89ea7a7c6068e63010b077fc2079ddbd44d03361996acf3ebb88c1af4ddae09c04fa39069c21a37a37c3f42d6646b8a80a1c1cdeaa8c7f562d0e6d1516f71ecdb1fd81cb5bc72aba33f6c220c2465bd25805e4a7135101c57093f8d0b610176b9b58fa0f002700323eebf24223179c9e53fac5767ad389a36126b6f040a2cea328ee481af54c88df0b7017d6feb0ab6dec186fabf8557bf79f753c94879b39a859df408817a9bbc823084ce22600456e42c2dc921ff956a88762b82e034443685a75712ca666d616268db3cab5bd2aba11dc400d22e29c131ee97d53f3250f50f84ebae09ea7080bb112d6eb569377b1797064716ca84e054b8c3404c329e5cdc41b250c61fe8f08b1b1071c8e2e30703811a086a0416eb70c53880d231d5618cabbc77a637dc7c9dbab1642082e2da5e7298fbb806264b1bb61952cf4ed1cadeaffb1c37ca6d30d03e77efc2a6f8614dd952f0b5623bfb5fa636e8b4a334821296420b0accab14f25c9d4f4e080ffdfb0d11ee55c3732a6a95e714e025a84950b4623e642e5bb8688513b14e530c14aa7f3360fed7c11a86bb3d2eac04ffcebe16210f451be45283530cd0c441ae039c3a01dc435cb798e7921982240b98c3cb06324d99d3c76a4cde7aa50c24ff29375b337356932988e18c777f0ef8d635ba30474095961341117fb28960643ffb1b67c57dac08cd410b48e22e998c2625a336de8c27894bf7bc8122fa079ee4d0a0b6437a1360f3b0059fee598eb433edf97df1189e91f2ef694fb8a719bcc3f3e402246c7b7150dc9c2fb5854691e935fffc65ab6b9f0478da539e1890369233f4823e557f4f3d61dfb1796350b6d2c0fff58118f733c53cf6672608f0428f08df15cc5ba1a7c086cd7e77822cfc11d03daead8bb07ffb169699e8bd794ba038eb22724cd72c13be895f667520c04fd724829be92d61736449e2ed394301c2155f0c60a23455284b6bc2d00831c5c857c92beaf1eeb35fdb8796b63bc3add58e03676d99fac27e0d7cb84d7eaf291f21b82bece2d81f211a3fe2f9d75a19bfb4f7313af6d5fd559d487538faf3240eb5891f6046e847b55f719007148eade31a51c100007bbce3c47dd804132e4bc57a77f7d90dd080d25618d0cc99b5516fe50bbd8ec346b85324de0", 0x1000}], 0x8, &(0x7f0000002c40)=[@cred={0x20, 0x1, 0x2, r6, r7, r8}], 0x20, 0x80}, {&(0x7f0000002c80)=@abs={0x1, 0x0, 0x4e22}, 0x6e, &(0x7f0000003f80)=[{&(0x7f0000002d00)="5f23ee8084ac5b40ba49b9d72938e245e318ee2a8151fc66042d69a6581e6bb16ccaffca80c5b067ee8d63eaa07446ce3ed013f391c29218db07783415b596cc31a70dba1ec8783d4bb91076b7edf6a1aa809022e1031c3c364db1a30b551ddba716ebb96617be726326595c1c8468ad69290698bd1ab3dc9a0fb9cdbba9939a7d56d1195ec49d86dcb28307002ca4fd8e045460d3c9127aaff9aeba393afd09ce19b223b102761ae20841e99d4432730a2f87d10482d650cc5bb6b2fa10a09b3d2905fdb828b872a25430e24696a0974a4808a855c0965cd3b4e4d5c27243d0d54dfe827f724a3b037ab726b15a1e83bfa5497a", 0xf4}, {&(0x7f0000002e00)="00f3424c9210655691845586b49b1f68a21b76443328c8d1ffd8885bad5f1b50ec9981dd8f818e3f45ab08df704293a0e45c65cb8720604966f956a6ac88cee9e8f0b01173bbdf944a63ca566648ffffeea218331807a752096633a4089cbe47b8062ea77eca9033f6637991f9b3f1a220201621256daa0b07874546a2c24e201a4c248a4b27cfddbf50435f9158a4c1182625", 0x93}, {&(0x7f0000002ec0)="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", 0x1000}, {&(0x7f0000003ec0)="f87252682879a1f805bd63e52d9c76f94af27ccda6c338bc568296a40d78c314ad2ab00d1f3a7b2380b63c8c2e09b7d200ac5cd00ed17917f42fa2ee674817e047a7a960fe4584cc584dd037cdc98a9ec2a1c23eee59f5b0fdbf28bf1a293459a51f27d0c11cdfad938c5009ef64d02728f0df8c593821d6159e6bfe11148e67ed483de7dc94998e0fcff8b2c7c0481ab5edaf7ba5dc5e7a10a5a245ae5f10e4ff15dea488c7881b3b6e56287045b1bf02c3edb3ad", 0xb5}], 0x4, &(0x7f0000004980)=[@cred={0x20, 0x1, 0x2, r9, r10, r11}, @cred={0x20, 0x1, 0x2, r12, r13, r14}, @cred={0x20, 0x1, 0x2, r15, r16, r17}, @cred={0x20, 0x1, 0x2, r18, r19, r20}, @cred={0x20, 0x1, 0x2, r21, r22, r23}, @rights={0x30, 0x1, 0x1, [r2, r0, r2, r0, r0, r1, r0, r0]}], 0xd0, 0x4000}, {&(0x7f0000004a80)=@abs={0x1, 0x0, 0x4e22}, 0x6e, &(0x7f0000004c00)=[{&(0x7f0000004b00)="23399fce315c1473b944c7c5e7576fd3c1fa49cb49cda6d5ab25787cdc7cc8220f65ddbfcc83fb77282154be3f26eb142f951c4aa077ae5331633e65cc79fbd4364f5e8b2b920ec6fc0495adca4e90b6d46e486db0e67a84983e6f31ef61db3cbfbee8bfad88fa6d874630a28c2924d67c87abbf18d4a7449b1ed840c28038a9ecd0fa4fe0f3418f48c32bcd20bbd56f5c2645b5cb77209975a3f038504ba1a768ab2854f3b577d85998a5e276653919c970878b61ccc3f51b3ad84f96ae7ee8238d1605", 0xc4}], 0x1, 0x0, 0x0, 0x8080}, {&(0x7f0000004c40)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000005f80)=[{&(0x7f0000004cc0)="442e4cf4962c8fce7ba507ad0151e15f339b7603a696f2893a2b07f65a34ac1a7f790f370194c3d7ee95ec1fb4c8f20e8346f689d27db043919794866128f9c3e25ad39b785ff0f940fc8efa91bb66abf7603225b414dc4c03a4b8019cbf15e0a2989ae22733694da61433521772b0e32e877e4ce42affade72fe984b2f43aeaa5a3b46941b2f4bdaf4da69578f60ff5cc22e9dbc0aeb4e3af639f2a726c54cc02942ca0f60da3", 0xa7}, {&(0x7f0000004d80)="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", 0x1000}, {&(0x7f0000005d80)="c750fb20e6b56480192048ab5f08659b7394b84648dd29af2016ec86c3f5925897d0acdcf7b605e5ebfb600d7fe261868b0cfc72cb5f696c85eb5dd780657d6d1c70da65226158f1101ead02ef8f5e0de6a02b84d29734b983f1bd9f83386c87c8c2b3d8a25c7464bf4ff88649a454d1e10fc5f26ff785851ab6f4fdea990cf65c844dc9bd6f89daab1780e87e55f553c1539d21da826928c2516aea378113e5bce61de50fbb936c0d6cb8e9f040507cf6b987fe454239df7c3214d947d3f57637853c94d52e36930874b136e212839bed3bb0af9b9d1e95f9bf9ec586ab9aeb1b6bbe607688b79a8c4ff039f005cd95f2b3815a", 0xf4}, {&(0x7f0000005e80)="c1581a861be945609fcdb58ed1316bd519c8d8b3246d1b1223382586e2debcee597c22bc583a15957a9941b9e6fbb52fb6dc28f4cbacb4e8cfb768ae6d0643ddf8da541a9bbe1d89d09be590960d073306b1d9fcc1cd1bb35f053f261dcdd24132d252bea23a6bd58856603ec92cebea9a9d9aab4f570b3d89973894101b02fee94aae370c8d2b6bb2a44a1c897c5e308d699f63661df0d0e16f303d4f35d814cf179f29182e4492d65262b811a75b3b1a2b0621d3bd07dfb57143df962256d05ecff2f2d20aba12421104e68f6b8633b849125ef183ce8684c9ade2fefdd5ccf088196cee61207f51d3a03df944a6ce7b72b07b", 0xf4}], 0x4, &(0x7f0000005fc0)=[@rights={0x28, 0x1, 0x1, [r1, r2, r2, r2, r2]}, @rights={0x38, 0x1, 0x1, [r1, r1, r2, r0, r1, r1, r2, r0, r0, r2]}, @rights={0x28, 0x1, 0x1, [r2, r0, r1, r0, r0]}, @rights={0x20, 0x1, 0x1, [r1, r1, r0, r1]}], 0xa8, 0x800}, {&(0x7f0000006080)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000006200)=[{&(0x7f0000006100)="ad899d0b20bb279014ee1681a5a399b06d43efa886dc738b2b2b7ff6bbe7d91e820fba2317414d684053a9536289a827563a47038236c24bf29a6a0142d171fbea1984120a149abab48732124c9d952067e47008d107e3d4450f458c6f8df13db1468f54dbc89d1354fc3ae6826d3efedf0ba371973106df354d2c07bea39fbcf28e3ce33f8ff49d1dc3c157f673677d34f6b8387fcb351d1feb781caf0ee42420cad8ff630bb9d3ff065cdc1ddb7ce04efaabbb6c5fa69c9f9a556cb615d313263d5ed4c710f63dc41b66eb3a85b9360d2cc82b245d8d7becd81c03bb1f7a49cc2ad3dfe8", 0xe5}], 0x1, &(0x7f00000064c0)=[@rights={0x18, 0x1, 0x1, [r1, r0]}, @rights={0x38, 0x1, 0x1, [r1, r24, r2, r2, r1, r2, r1, r1, r2, r0]}, @cred={0x20, 0x1, 0x2, r25, r26, r27}, @rights={0x38, 0x1, 0x1, [r0, r0, r28, r1, r0, r2, r2, r0, r1]}, @rights={0x18, 0x1, 0x1, [r2, r2]}], 0xc0, 0x80}], 0x6, 0x4000) connect$inet6(r2, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r2, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x2000000}, 0x1c) syz_init_net_socket$nfc_llcp(0x27, 0x0, 0x1) [ 194.917333] RSP: 002b:00007f999dac5c68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 194.925046] RAX: ffffffffffffffda RBX: 00007f999dac66d4 RCX: 0000000000455979 [ 194.932315] RDX: 0000000020000100 RSI: 0000000020000080 RDI: 0000000020000040 [ 194.939590] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 194.946850] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000014 [ 194.954110] R13: 0000000000000440 R14: 00000000006fa6a0 R15: 0000000000000019 2018/04/30 22:52:08 executing program 7: r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0) ioctl$SG_SET_DEBUG(r0, 0x227e, &(0x7f0000000100)=0x1) ioctl$SG_IO(r0, 0x2289, &(0x7f00000003c0)={0x53, 0x0, 0x21, 0x0, @buffer={0x0, 0x47, &(0x7f0000000040)=""/71}, &(0x7f00000000c0)="7f2911fa31fa4f4b2f5687dbd490bd09e476cb6b139f5686379495446bcea9c334", &(0x7f00000002c0)=""/182, 0x0, 0x0, 0x0, &(0x7f0000000380)}) 2018/04/30 22:52:08 executing program 5: r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r0, &(0x7f00000000c0)={0xfffffffd, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x6}, 0x1c) 2018/04/30 22:52:08 executing program 0: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)="2e2f66696c6530ff", &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:52:08 executing program 4: r0 = syz_open_dev$evdev(&(0x7f0000000080)='/dev/input/event#\x00', 0x0, 0x2) r1 = fcntl$dupfd(r0, 0x406, r0) setsockopt$inet_sctp_SCTP_MAX_BURST(r1, 0x84, 0x14, &(0x7f0000000000), 0x4) read(r0, &(0x7f000006b000)=""/24, 0x18) 2018/04/30 22:52:08 executing program 6: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x1, 0x0) 2018/04/30 22:52:08 executing program 3: r0 = syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x0, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000080)='./cgroup.cpu/syz1\x00', 0x1ff) ioctl$sock_SIOCGPGRP(r0, 0x8904, &(0x7f00000001c0)=0x0) perf_event_open(&(0x7f0000000140)={0x3, 0x70, 0x5a, 0x5, 0x0, 0xfffffffffffffffe, 0x0, 0x401, 0x10, 0xa, 0x3, 0x7ff, 0x7, 0x0, 0x20, 0x2, 0x6, 0x8, 0x800, 0x1, 0x7e00000000000000, 0x20, 0x6, 0x9, 0xf6, 0x6, 0x4, 0x4a, 0x0, 0xc1, 0x6, 0x2, 0x6, 0xfffffffffffffff7, 0x0, 0x80, 0x2, 0x3, 0x0, 0x800000000000000, 0x1, @perf_config_ext={0x3, 0x7000000000}, 0x40, 0xee1e, 0xd0a9, 0x7, 0x7, 0x5, 0x3}, r1, 0x8, r0, 0x2) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$sock_bt_cmtp_CMTPCONNADD(r0, 0x400443c8, &(0x7f0000000040)={r0, 0x40}) fremovexattr(r0, &(0x7f0000000200)=@random={'user.', '/\x00'}) r2 = socket$inet6(0xa, 0x4, 0x9) connect$inet6(r2, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) syz_init_net_socket$nfc_llcp(0x27, 0x0, 0x1) 2018/04/30 22:52:08 executing program 7: r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0) ioctl$SG_SET_DEBUG(r0, 0x227e, &(0x7f0000000100)=0x1) ioctl$SG_IO(r0, 0x227e, &(0x7f00000003c0)={0x53, 0x0, 0x21, 0x0, @buffer={0x0, 0x47, &(0x7f0000000040)=""/71}, &(0x7f00000000c0)="7f2911fa31fa4f4b2f5687dbd490bd09e476cb6b139f5686379495446bcea9c334", &(0x7f00000002c0)=""/182, 0x0, 0x0, 0x0, &(0x7f0000000380)}) 2018/04/30 22:52:08 executing program 1 (fault-call:2 fault-nth:27): mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0xc003, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:52:08 executing program 5: r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r0, &(0x7f00000000c0)={0x2, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x6}, 0x1c) 2018/04/30 22:52:08 executing program 6: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)="2e2f66696c6530ff", &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x1, 0x0) 2018/04/30 22:52:08 executing program 0: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0t', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) [ 195.290472] device bridge_slave_1 left promiscuous mode [ 195.296230] bridge0: port 2(bridge_slave_1) entered disabled state [ 195.351981] device bridge_slave_0 left promiscuous mode [ 195.357704] bridge0: port 1(bridge_slave_0) entered disabled state 2018/04/30 22:52:08 executing program 5: r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r0, &(0x7f00000000c0)={0x6, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x6}, 0x1c) 2018/04/30 22:52:08 executing program 7: r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0) ioctl$SG_SET_DEBUG(r0, 0x227e, &(0x7f0000000100)=0x1) ioctl$SG_IO(r0, 0x1267, &(0x7f00000003c0)={0x53, 0x0, 0x21, 0x0, @buffer={0x0, 0x47, &(0x7f0000000040)=""/71}, &(0x7f00000000c0)="7f2911fa31fa4f4b2f5687dbd490bd09e476cb6b139f5686379495446bcea9c334", &(0x7f00000002c0)=""/182, 0x0, 0x0, 0x0, &(0x7f0000000380)}) 2018/04/30 22:52:08 executing program 3: r0 = syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x0, 0x0) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) ioctl$KVM_GET_LAPIC(r0, 0x8400ae8e, &(0x7f0000000140)={"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"}) connect$inet6(r1, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) pread64(r0, &(0x7f0000000040)=""/49, 0x31, 0x0) ioctl$BLKIOOPT(r0, 0x1279, &(0x7f0000000080)) connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x2000000}, 0x1c) syz_init_net_socket$nfc_llcp(0x27, 0x0, 0x1) 2018/04/30 22:52:08 executing program 0: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) [ 195.540448] team0 (unregistering): Port device team_slave_1 removed [ 195.598630] team0 (unregistering): Port device team_slave_0 removed [ 195.626897] bond0 (unregistering): Releasing backup interface bond_slave_1 [ 195.644843] IPVS: ftp: loaded support on port[0] = 21 [ 195.662122] bond0 (unregistering): Releasing backup interface bond_slave_0 [ 195.687626] bond0 (unregistering): Released all slaves 2018/04/30 22:52:09 executing program 2: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$evdev(&(0x7f0000072fee)='/dev/input/event#\x00', 0x0, 0x2) read(r0, &(0x7f000006b000)=""/24, 0x18) write$evdev(r0, &(0x7f0000057fa0)=[{}], 0x18) 2018/04/30 22:52:09 executing program 6: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x1, 0x0) 2018/04/30 22:52:09 executing program 7: r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0) ioctl$SG_SET_DEBUG(r0, 0x227e, &(0x7f0000000100)=0x1) ioctl$SG_IO(r0, 0x5460, &(0x7f00000003c0)={0x53, 0x0, 0x21, 0x0, @buffer={0x0, 0x47, &(0x7f0000000040)=""/71}, &(0x7f00000000c0)="7f2911fa31fa4f4b2f5687dbd490bd09e476cb6b139f5686379495446bcea9c334", &(0x7f00000002c0)=""/182, 0x0, 0x0, 0x0, &(0x7f0000000380)}) 2018/04/30 22:52:09 executing program 5: r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0xfffffff5, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x6}, 0x1c) [ 196.482254] bridge0: port 1(bridge_slave_0) entered blocking state [ 196.488744] bridge0: port 1(bridge_slave_0) entered disabled state [ 196.497496] device bridge_slave_0 entered promiscuous mode [ 196.540931] bridge0: port 2(bridge_slave_1) entered blocking state [ 196.547410] bridge0: port 2(bridge_slave_1) entered disabled state [ 196.555674] device bridge_slave_1 entered promiscuous mode [ 196.597404] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 196.639433] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 196.767452] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 196.814457] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 197.023625] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 197.030770] team0: Port device team_slave_0 added [ 197.060367] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 197.069161] team0: Port device team_slave_1 added [ 197.106082] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 197.113064] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 197.128544] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 197.147997] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 197.154938] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 197.163278] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 197.191351] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 197.198555] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 197.213790] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 197.246309] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 197.253441] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 197.262481] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 197.488543] bridge0: port 2(bridge_slave_1) entered blocking state [ 197.494967] bridge0: port 2(bridge_slave_1) entered forwarding state [ 197.501634] bridge0: port 1(bridge_slave_0) entered blocking state [ 197.508078] bridge0: port 1(bridge_slave_0) entered forwarding state [ 197.515360] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 198.111551] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 198.346228] 8021q: adding VLAN 0 to HW filter on device bond0 [ 198.427101] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 198.508794] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 198.515096] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 198.522293] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 198.598481] 8021q: adding VLAN 0 to HW filter on device team0 [ 199.068359] FAULT_INJECTION: forcing a failure. [ 199.068359] name failslab, interval 1, probability 0, space 0, times 0 [ 199.079824] CPU: 0 PID: 15102 Comm: syz-executor1 Not tainted 4.17.0-rc3+ #26 [ 199.087093] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 199.096442] Call Trace: [ 199.099036] dump_stack+0x1b9/0x294 [ 199.102670] ? dump_stack_print_info.cold.2+0x52/0x52 [ 199.107856] ? __save_stack_trace+0x7e/0xd0 [ 199.112183] should_fail.cold.4+0xa/0x1a [ 199.116246] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 199.121346] ? save_stack+0x43/0xd0 [ 199.124973] ? kasan_kmalloc+0xc4/0xe0 [ 199.128853] ? kmem_cache_alloc_trace+0x152/0x780 [ 199.134677] ? __memcg_init_list_lru_node+0x17d/0x2c0 [ 199.139861] ? __list_lru_init+0x456/0x790 [ 199.144089] ? sget_userns+0x767/0xf00 [ 199.147973] ? graph_lock+0x170/0x170 [ 199.151781] ? vfs_kern_mount.part.34+0xd4/0x4d0 [ 199.156527] ? do_mount+0x564/0x3070 [ 199.160241] ? ksys_mount+0x12d/0x140 [ 199.164049] ? __x64_sys_mount+0xbe/0x150 [ 199.168191] ? do_syscall_64+0x1b1/0x800 [ 199.172258] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 199.177617] ? find_held_lock+0x36/0x1c0 [ 199.181675] ? __lock_is_held+0xb5/0x140 [ 199.185748] ? check_same_owner+0x320/0x320 [ 199.190077] ? rcu_note_context_switch+0x710/0x710 [ 199.195011] __should_failslab+0x124/0x180 [ 199.199266] should_failslab+0x9/0x14 [ 199.203071] kmem_cache_alloc_trace+0x2cb/0x780 [ 199.208425] ? __kmalloc_node+0x33/0x70 [ 199.212390] ? __kmalloc_node+0x33/0x70 [ 199.216369] ? rcu_read_lock_sched_held+0x108/0x120 [ 199.221385] __memcg_init_list_lru_node+0x17d/0x2c0 [ 199.226419] ? kvfree_rcu+0x20/0x20 [ 199.230060] ? __kmalloc_node+0x47/0x70 [ 199.234046] __list_lru_init+0x456/0x790 [ 199.238111] ? list_lru_destroy+0x4c0/0x4c0 [ 199.242448] ? mark_held_locks+0xc9/0x160 [ 199.246593] ? __raw_spin_lock_init+0x1c/0x100 [ 199.251199] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 199.256217] ? lockdep_init_map+0x9/0x10 [ 199.260276] sget_userns+0x767/0xf00 [ 199.263991] ? get_anon_bdev+0x2f0/0x2f0 [ 199.268054] ? test_bdev_super+0x50/0x50 [ 199.272120] ? destroy_unused_super.part.11+0x110/0x110 [ 199.277475] ? alloc_vfsmnt+0x771/0x9d0 [ 199.281439] ? mnt_free_id.isra.27+0x60/0x60 [ 199.285849] ? kasan_check_read+0x11/0x20 [ 199.289992] ? graph_lock+0x170/0x170 [ 199.293792] ? cap_capable+0x1f9/0x260 [ 199.297677] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 199.303216] ? security_capable+0x99/0xc0 [ 199.307362] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 199.312903] ? ns_capable_common+0x13f/0x170 [ 199.317306] ? get_anon_bdev+0x2f0/0x2f0 [ 199.321359] sget+0x10b/0x150 [ 199.324455] ? test_bdev_super+0x50/0x50 [ 199.328509] ? fuse_ctl_add_conn+0x280/0x280 [ 199.332906] mount_single+0x3a/0x170 [ 199.336629] fuse_ctl_mount+0x2c/0x40 [ 199.340433] mount_fs+0xae/0x328 [ 199.343795] ? mpi_free.cold.1+0x19/0x19 [ 199.347846] vfs_kern_mount.part.34+0xd4/0x4d0 [ 199.352420] ? may_umount+0xb0/0xb0 [ 199.356057] ? _raw_read_unlock+0x22/0x30 [ 199.360197] ? __get_fs_type+0x97/0xc0 [ 199.364077] do_mount+0x564/0x3070 [ 199.367627] ? lock_downgrade+0x8e0/0x8e0 [ 199.371766] ? copy_mount_string+0x40/0x40 [ 199.375991] ? check_same_owner+0x320/0x320 [ 199.380316] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 199.385325] ? __check_object_size+0x95/0x5d9 [ 199.389813] ? __might_sleep+0x95/0x190 [ 199.393801] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 199.399338] ? _copy_from_user+0xdf/0x150 [ 199.403491] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 199.409026] ? copy_mount_options+0x285/0x380 [ 199.413519] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 199.419059] ksys_mount+0x12d/0x140 [ 199.422681] __x64_sys_mount+0xbe/0x150 [ 199.426658] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 199.431668] do_syscall_64+0x1b1/0x800 [ 199.435543] ? syscall_slow_exit_work+0x4f0/0x4f0 [ 199.440378] ? syscall_return_slowpath+0x5c0/0x5c0 [ 199.445299] ? syscall_return_slowpath+0x30f/0x5c0 [ 199.450224] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 199.455615] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 199.460472] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 199.465653] RIP: 0033:0x455979 2018/04/30 22:52:12 executing program 5: r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x2, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x6}, 0x1c) 2018/04/30 22:52:12 executing program 4: r0 = syz_open_dev$evdev(&(0x7f0000072fee)='/dev/input/event#\x00', 0x2, 0x0) read(r0, &(0x7f000006b000)=""/24, 0x18) 2018/04/30 22:52:12 executing program 3: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x2000000}, 0x1c) syz_init_net_socket$nfc_llcp(0x27, 0x0, 0x1) r1 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vga_arbiter\x00', 0x400000, 0x0) getsockopt$inet_sctp6_SCTP_CONTEXT(r1, 0x84, 0x11, &(0x7f0000000100)={0x0, 0x80}, &(0x7f0000000140)=0x8) getsockopt$inet_sctp_SCTP_PEER_AUTH_CHUNKS(r1, 0x84, 0x1a, &(0x7f0000000180)={r2, 0x94, "b52b5467432a6e9ecd5ee31c1495ce1b96408f6ba1fd8098a5393cac15dbba781d66f4bf9adadb06f1aad1cce6897305a58b3b725dc4a8d2971cf6fd82ab859c87356c402f7ba2a76341be4d97be016c5319151652d0f8a832e4a9325d171f4953ccf38d8ad9ee7174605833285d40123f1391e1f8d7d6999e59a966339ed239baaa54115901aa4480a1a29957e17a9a61486d42"}, &(0x7f0000000240)=0x9c) ioctl$EVIOCGBITSW(r1, 0x80404525, &(0x7f0000000080)=""/20) 2018/04/30 22:52:12 executing program 7: r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0) ioctl$SG_SET_DEBUG(r0, 0x227e, &(0x7f0000000100)=0x1) ioctl$SG_IO(r0, 0x227d, &(0x7f00000003c0)={0x53, 0x0, 0x21, 0x0, @buffer={0x0, 0x47, &(0x7f0000000040)=""/71}, &(0x7f00000000c0)="7f2911fa31fa4f4b2f5687dbd490bd09e476cb6b139f5686379495446bcea9c334", &(0x7f00000002c0)=""/182, 0x0, 0x0, 0x0, &(0x7f0000000380)}) 2018/04/30 22:52:12 executing program 1 (fault-call:2 fault-nth:28): mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0xc003, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:52:12 executing program 0: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0h', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:52:12 executing program 2: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$evdev(&(0x7f0000072fee)='/dev/input/event#\x00', 0x0, 0x2) read(r0, &(0x7f000006b000)=""/24, 0x18) write$evdev(r0, &(0x7f0000057fa0)=[{}], 0x18) 2018/04/30 22:52:12 executing program 6: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)="2e2f66696c6530ff", &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x1, 0x0) [ 199.468830] RSP: 002b:00007ffadd77bc68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 199.476527] RAX: ffffffffffffffda RBX: 00007ffadd77c6d4 RCX: 0000000000455979 [ 199.483802] RDX: 0000000020000100 RSI: 0000000020000080 RDI: 0000000020000040 [ 199.491063] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 199.498329] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000014 [ 199.505596] R13: 0000000000000440 R14: 00000000006fa6a0 R15: 000000000000001b 2018/04/30 22:52:12 executing program 7: r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0) ioctl$SG_SET_DEBUG(r0, 0x227e, &(0x7f0000000100)=0x1) ioctl$SG_IO(r0, 0xc0189436, &(0x7f00000003c0)={0x53, 0x0, 0x21, 0x0, @buffer={0x0, 0x47, &(0x7f0000000040)=""/71}, &(0x7f00000000c0)="7f2911fa31fa4f4b2f5687dbd490bd09e476cb6b139f5686379495446bcea9c334", &(0x7f00000002c0)=""/182, 0x0, 0x0, 0x0, &(0x7f0000000380)}) [ 199.775320] device bridge_slave_1 left promiscuous mode [ 199.781192] bridge0: port 2(bridge_slave_1) entered disabled state [ 199.795654] device bridge_slave_0 left promiscuous mode [ 199.801269] bridge0: port 1(bridge_slave_0) entered disabled state [ 199.834077] team0 (unregistering): Port device team_slave_1 removed [ 199.844713] team0 (unregistering): Port device team_slave_0 removed [ 199.856728] bond0 (unregistering): Releasing backup interface bond_slave_1 [ 199.872931] bond0 (unregistering): Releasing backup interface bond_slave_0 [ 199.902933] bond0 (unregistering): Released all slaves 2018/04/30 22:52:13 executing program 5: r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0xf5ffffff00000000, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x6}, 0x1c) 2018/04/30 22:52:13 executing program 3: r0 = syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x0, 0x0) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r1, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) ioctl$KVM_CREATE_IRQCHIP(r0, 0xae60) setsockopt$netrom_NETROM_IDLE(r0, 0x103, 0x7, &(0x7f0000000040)=0x7, 0x4) connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x2000000}, 0x1c) syz_init_net_socket$nfc_llcp(0x27, 0x0, 0x1) 2018/04/30 22:52:13 executing program 0: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:52:13 executing program 6: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x1, 0x0) 2018/04/30 22:52:13 executing program 7: r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0) ioctl$SG_SET_DEBUG(r0, 0x227e, &(0x7f0000000100)=0x1) ioctl$SG_IO(r0, 0x2284, &(0x7f00000003c0)={0x53, 0x0, 0x21, 0x0, @buffer={0x0, 0x47, &(0x7f0000000040)=""/71}, &(0x7f00000000c0)="7f2911fa31fa4f4b2f5687dbd490bd09e476cb6b139f5686379495446bcea9c334", &(0x7f00000002c0)=""/182, 0x0, 0x0, 0x0, &(0x7f0000000380)}) 2018/04/30 22:52:13 executing program 1 (fault-call:2 fault-nth:29): mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0xc003, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:52:13 executing program 2: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$evdev(&(0x7f0000072fee)='/dev/input/event#\x00', 0x0, 0x2) read(r0, &(0x7f000006b000)=""/24, 0x18) write$evdev(r0, &(0x7f0000057fa0)=[{}, {}], 0x30) 2018/04/30 22:52:13 executing program 4: r0 = syz_open_dev$evdev(&(0x7f0000072fee)='/dev/input/event#\x00', 0x0, 0x0) r1 = socket$inet(0x2, 0x80000, 0x8) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffff9c, 0x84, 0x6c, &(0x7f00000001c0)=ANY=[@ANYRES32=0x0, @ANYBLOB="db00000091aeb5446e589aae5389e57f40ba8548c00713b8c97fd3a1c6b2a3aeccd68e1159cb08275c05f2112b679e7cfc400bceed6a508d0f9f853f8fd9c6d57f523ce94f556f11ccc16e7aedf4d30bc9cdbbfc9662e87a425f61810fbc8a91711df2cfcb0649b30b75c050a9fa9fbea4470356e1f6b9e8f52bd342d5577418765ed27f4cb5464324040ed07cd6a35b77614845cce3c548dbf6da899a75ea417cbec870d492788b06b8f6926916e396d3e4eb335d0495559506fb7790df3fcdb2044ed8f0fa9a7d"], &(0x7f00000002c0)=0xe3) setsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r1, 0x84, 0x6, &(0x7f0000000300)={r2, @in={{0x2, 0x4e21, @broadcast=0xffffffff}}}, 0x84) ioctl$DRM_IOCTL_SET_VERSION(0xffffffffffffffff, 0xc0106407, &(0x7f00000000c0)={0xfff, 0xd1, 0x0, 0x5}) r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x600, 0x0) ioctl$DRM_IOCTL_ADD_CTX(r3, 0xc0086420, &(0x7f0000000080)={0x0}) ioctl$DRM_IOCTL_RM_CTX(r3, 0xc0086421, &(0x7f00000003c0)={r4, 0x1}) ioctl$TIOCGLCKTRMIOS(r3, 0x5456, &(0x7f0000000140)={0x8000, 0x6a, 0x10000, 0x401, 0x1, 0x6, 0x7, 0x5, 0x7, 0x668, 0x7, 0x7ff}) ioctl$TIOCGSOFTCAR(r3, 0x5419, &(0x7f0000000180)) ioctl$TIOCMGET(r3, 0x5415, &(0x7f0000000040)) epoll_ctl$EPOLL_CTL_MOD(0xffffffffffffffff, 0x3, r0, &(0x7f0000000100)) 2018/04/30 22:52:13 executing program 5: r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x200000000000000, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x6}, 0x1c) 2018/04/30 22:52:14 executing program 6: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)="2e2f66696c653002", &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x1, 0x0) 2018/04/30 22:52:14 executing program 7: r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0) ioctl$SG_SET_DEBUG(r0, 0x227e, &(0x7f0000000100)=0x1) ioctl$SG_IO(r0, 0x227a, &(0x7f00000003c0)={0x53, 0x0, 0x21, 0x0, @buffer={0x0, 0x47, &(0x7f0000000040)=""/71}, &(0x7f00000000c0)="7f2911fa31fa4f4b2f5687dbd490bd09e476cb6b139f5686379495446bcea9c334", &(0x7f00000002c0)=""/182, 0x0, 0x0, 0x0, &(0x7f0000000380)}) 2018/04/30 22:52:14 executing program 0: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)="2e2f66696c6530ff", &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:52:14 executing program 3: r0 = syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r1, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) ioctl$KVM_S390_UCAS_MAP(r0, 0x4018ae50, &(0x7f0000000280)={0x758bd058, 0x1, 0x1}) connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x2000000}, 0x1c) syz_init_net_socket$nfc_llcp(0x27, 0x0, 0x1) getsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(r0, 0x84, 0x18, &(0x7f0000000140)={0x0, 0x1}, &(0x7f0000000180)=0x8) setsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r0, 0x84, 0x6, &(0x7f00000001c0)={r2, @in={{0x2, 0x4e20}}}, 0x84) 2018/04/30 22:52:14 executing program 5: r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0xf5ffffff, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x6}, 0x1c) [ 201.046095] IPVS: ftp: loaded support on port[0] = 21 [ 201.561340] bridge0: port 1(bridge_slave_0) entered blocking state [ 201.567865] bridge0: port 1(bridge_slave_0) entered disabled state [ 201.575280] device bridge_slave_0 entered promiscuous mode [ 201.604416] bridge0: port 2(bridge_slave_1) entered blocking state [ 201.610818] bridge0: port 2(bridge_slave_1) entered disabled state [ 201.618098] device bridge_slave_1 entered promiscuous mode [ 201.649737] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 201.676871] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 201.753007] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 201.780765] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 201.889943] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 201.897185] team0: Port device team_slave_0 added [ 201.922077] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 201.931631] team0: Port device team_slave_1 added [ 201.955896] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 201.982700] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 202.008580] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 202.015707] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 202.024171] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 202.044835] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 202.051964] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 202.060383] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 202.287358] bridge0: port 2(bridge_slave_1) entered blocking state [ 202.293777] bridge0: port 2(bridge_slave_1) entered forwarding state [ 202.300468] bridge0: port 1(bridge_slave_0) entered blocking state [ 202.306867] bridge0: port 1(bridge_slave_0) entered forwarding state [ 202.314268] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 202.655335] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 203.156914] 8021q: adding VLAN 0 to HW filter on device bond0 [ 203.238490] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 203.319949] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 203.326207] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 203.333750] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 203.411233] 8021q: adding VLAN 0 to HW filter on device team0 [ 203.892757] FAULT_INJECTION: forcing a failure. [ 203.892757] name failslab, interval 1, probability 0, space 0, times 0 [ 203.904190] CPU: 1 PID: 15450 Comm: syz-executor1 Not tainted 4.17.0-rc3+ #26 [ 203.911490] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 203.920848] Call Trace: [ 203.923452] dump_stack+0x1b9/0x294 [ 203.927112] ? dump_stack_print_info.cold.2+0x52/0x52 [ 203.932335] ? __save_stack_trace+0x7e/0xd0 [ 203.936682] should_fail.cold.4+0xa/0x1a [ 203.940752] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 203.945858] ? save_stack+0x43/0xd0 [ 203.949493] ? kasan_kmalloc+0xc4/0xe0 [ 203.953387] ? kmem_cache_alloc_trace+0x152/0x780 [ 203.958393] ? __memcg_init_list_lru_node+0x17d/0x2c0 [ 203.963579] ? __list_lru_init+0x456/0x790 [ 203.967821] ? sget_userns+0x767/0xf00 [ 203.971718] ? graph_lock+0x170/0x170 [ 203.975520] ? vfs_kern_mount.part.34+0xd4/0x4d0 [ 203.980315] ? do_mount+0x564/0x3070 [ 203.984044] ? ksys_mount+0x12d/0x140 [ 203.988013] ? __x64_sys_mount+0xbe/0x150 [ 203.992169] ? do_syscall_64+0x1b1/0x800 [ 203.996219] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 204.001594] ? find_held_lock+0x36/0x1c0 [ 204.005677] ? __lock_is_held+0xb5/0x140 [ 204.009763] ? check_same_owner+0x320/0x320 [ 204.014097] ? rcu_note_context_switch+0x710/0x710 [ 204.019042] __should_failslab+0x124/0x180 [ 204.023299] should_failslab+0x9/0x14 [ 204.027096] kmem_cache_alloc_trace+0x2cb/0x780 [ 204.031762] ? __kmalloc_node+0x33/0x70 [ 204.035732] ? __kmalloc_node+0x33/0x70 [ 204.039787] ? rcu_read_lock_sched_held+0x108/0x120 [ 204.044801] __memcg_init_list_lru_node+0x17d/0x2c0 [ 204.049813] ? kvfree_rcu+0x20/0x20 [ 204.053444] ? __kmalloc_node+0x47/0x70 [ 204.057417] __list_lru_init+0x456/0x790 [ 204.061470] ? list_lru_destroy+0x4c0/0x4c0 [ 204.065808] ? mark_held_locks+0xc9/0x160 [ 204.069957] ? __raw_spin_lock_init+0x1c/0x100 [ 204.074567] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 204.079600] ? lockdep_init_map+0x9/0x10 [ 204.083654] sget_userns+0x767/0xf00 [ 204.087364] ? get_anon_bdev+0x2f0/0x2f0 [ 204.091430] ? test_bdev_super+0x50/0x50 [ 204.095487] ? destroy_unused_super.part.11+0x110/0x110 [ 204.100854] ? alloc_vfsmnt+0x771/0x9d0 [ 204.104823] ? mnt_free_id.isra.27+0x60/0x60 [ 204.109226] ? kasan_check_read+0x11/0x20 [ 204.113367] ? graph_lock+0x170/0x170 [ 204.117177] ? cap_capable+0x1f9/0x260 [ 204.121065] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 204.126606] ? security_capable+0x99/0xc0 [ 204.130751] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 204.136297] ? ns_capable_common+0x13f/0x170 [ 204.140699] ? get_anon_bdev+0x2f0/0x2f0 [ 204.144755] sget+0x10b/0x150 [ 204.147852] ? test_bdev_super+0x50/0x50 [ 204.151908] ? fuse_ctl_add_conn+0x280/0x280 [ 204.156319] mount_single+0x3a/0x170 [ 204.160037] fuse_ctl_mount+0x2c/0x40 [ 204.163861] mount_fs+0xae/0x328 [ 204.167220] ? mpi_free.cold.1+0x19/0x19 [ 204.171274] vfs_kern_mount.part.34+0xd4/0x4d0 [ 204.175846] ? may_umount+0xb0/0xb0 [ 204.179464] ? _raw_read_unlock+0x22/0x30 [ 204.183603] ? __get_fs_type+0x97/0xc0 [ 204.188543] do_mount+0x564/0x3070 [ 204.192075] ? lock_downgrade+0x8e0/0x8e0 [ 204.196218] ? copy_mount_string+0x40/0x40 [ 204.200445] ? check_same_owner+0x320/0x320 [ 204.204759] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 204.209782] ? __check_object_size+0x95/0x5d9 [ 204.214291] ? __might_sleep+0x95/0x190 [ 204.218263] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 204.223807] ? _copy_from_user+0xdf/0x150 [ 204.227969] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 204.233503] ? copy_mount_options+0x285/0x380 [ 204.238012] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 204.243555] ksys_mount+0x12d/0x140 [ 204.247186] __x64_sys_mount+0xbe/0x150 [ 204.251176] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 204.256195] do_syscall_64+0x1b1/0x800 [ 204.260169] ? syscall_return_slowpath+0x5c0/0x5c0 [ 204.265205] ? syscall_return_slowpath+0x30f/0x5c0 [ 204.270147] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 204.275506] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 204.280346] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 204.285527] RIP: 0033:0x455979 2018/04/30 22:52:17 executing program 4: r0 = syz_open_dev$evdev(&(0x7f0000072fee)='/dev/input/event#\x00', 0x0, 0x0) ioctl$EVIOCGABS2F(r0, 0x8018456f, &(0x7f0000000100)=""/4096) flistxattr(r0, &(0x7f0000000000)=""/179, 0xb3) read(r0, &(0x7f00000000c0)=""/24, 0x5fdf222c903bc8d8) 2018/04/30 22:52:17 executing program 7: r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0) ioctl$SG_SET_DEBUG(r0, 0x227e, &(0x7f0000000100)=0x1) ioctl$SG_IO(r0, 0xc020660b, &(0x7f00000003c0)={0x53, 0x0, 0x21, 0x0, @buffer={0x0, 0x47, &(0x7f0000000040)=""/71}, &(0x7f00000000c0)="7f2911fa31fa4f4b2f5687dbd490bd09e476cb6b139f5686379495446bcea9c334", &(0x7f00000002c0)=""/182, 0x0, 0x0, 0x0, &(0x7f0000000380)}) 2018/04/30 22:52:17 executing program 0: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)="2e2f66696c6530f0", &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:52:17 executing program 6: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)="2e2f66696c6530f0", &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x1, 0x0) 2018/04/30 22:52:17 executing program 3: syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x0, 0x0) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x2000000}, 0x1c) syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1) 2018/04/30 22:52:17 executing program 5: r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x2000000, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x6}, 0x1c) 2018/04/30 22:52:17 executing program 1 (fault-call:2 fault-nth:30): mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0xc003, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:52:17 executing program 2: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$evdev(&(0x7f0000072fee)='/dev/input/event#\x00', 0x0, 0x2) read(r0, &(0x7f000006b000)=""/24, 0x18) write$evdev(r0, &(0x7f0000057fa0)=[{}, {}], 0x30) [ 204.288704] RSP: 002b:00007f2ee2971c68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 204.296404] RAX: ffffffffffffffda RBX: 00007f2ee29726d4 RCX: 0000000000455979 [ 204.303678] RDX: 0000000020000100 RSI: 0000000020000080 RDI: 0000000020000040 [ 204.310943] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 204.318209] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000014 [ 204.325481] R13: 0000000000000440 R14: 00000000006fa6a0 R15: 000000000000001d 2018/04/30 22:52:17 executing program 0: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:52:17 executing program 4: r0 = syz_open_dev$evdev(&(0x7f0000072fee)='/dev/input/event#\x00', 0x0, 0x0) r1 = syz_open_dev$vcsa(&(0x7f0000000000)='/dev/vcsa#\x00', 0x2, 0x44800) ioctl$DRM_IOCTL_RES_CTX(0xffffffffffffffff, 0xc0106426, &(0x7f0000000080)={0x7, &(0x7f0000000040)=[{}, {0x0}, {}, {}, {}, {}, {}]}) ioctl$DRM_IOCTL_GET_CTX(r1, 0xc0086423, &(0x7f00000000c0)={r2, 0x3}) read(r0, &(0x7f000006b000)=""/24, 0x18) 2018/04/30 22:52:17 executing program 5: r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0xf5ffffff00000000, @local={0xfe, 0x80, [], 0xaa}, 0x6}, 0x1c) 2018/04/30 22:52:17 executing program 3: syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x0, 0x0) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x2000000}, 0x1c) syz_init_net_socket$nfc_llcp(0x27, 0x3, 0x1) 2018/04/30 22:52:17 executing program 7: r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0) ioctl$SG_SET_DEBUG(r0, 0x227e, &(0x7f0000000100)=0x1) ioctl$SG_IO(r0, 0x2286, &(0x7f00000003c0)={0x53, 0x0, 0x21, 0x0, @buffer={0x0, 0x47, &(0x7f0000000040)=""/71}, &(0x7f00000000c0)="7f2911fa31fa4f4b2f5687dbd490bd09e476cb6b139f5686379495446bcea9c334", &(0x7f00000002c0)=""/182, 0x0, 0x0, 0x0, &(0x7f0000000380)}) 2018/04/30 22:52:17 executing program 6: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)="2e2f66696c6530ff", &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x1, 0x0) 2018/04/30 22:52:17 executing program 5: r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0xf5ffffff, @local={0xfe, 0x80, [], 0xaa}, 0x6}, 0x1c) 2018/04/30 22:52:17 executing program 0: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:52:17 executing program 7: r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0) ioctl$SG_SET_DEBUG(r0, 0x227e, &(0x7f0000000100)=0x1) ioctl$SG_IO(r0, 0x227c, &(0x7f00000003c0)={0x53, 0x0, 0x21, 0x0, @buffer={0x0, 0x47, &(0x7f0000000040)=""/71}, &(0x7f00000000c0)="7f2911fa31fa4f4b2f5687dbd490bd09e476cb6b139f5686379495446bcea9c334", &(0x7f00000002c0)=""/182, 0x0, 0x0, 0x0, &(0x7f0000000380)}) 2018/04/30 22:52:17 executing program 3: r0 = syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x0, 0x0) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x3}, 0xffffff9b) connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x2000000}, 0x1c) ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r0, 0xc01064b5, &(0x7f0000000180)={&(0x7f0000000140)=[0x0, 0x0, 0x0, 0x0], 0x4}) syz_init_net_socket$nfc_llcp(0x27, 0x0, 0x1) setsockopt$inet_sctp6_SCTP_ADAPTATION_LAYER(r0, 0x84, 0x7, &(0x7f0000000080)={0x404000000}, 0x2) 2018/04/30 22:52:17 executing program 6: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x1, 0x0) 2018/04/30 22:52:17 executing program 1 (fault-call:2 fault-nth:31): mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0xc003, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:52:17 executing program 5: r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x2000000, @local={0xfe, 0x80, [], 0xaa}, 0x6}, 0x1c) [ 204.703823] device bridge_slave_1 left promiscuous mode [ 204.709610] bridge0: port 2(bridge_slave_1) entered disabled state 2018/04/30 22:52:17 executing program 7: r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0) ioctl$SG_SET_DEBUG(r0, 0x227e, &(0x7f0000000100)=0x1) ioctl$SG_IO(r0, 0x5450, &(0x7f00000003c0)={0x53, 0x0, 0x21, 0x0, @buffer={0x0, 0x47, &(0x7f0000000040)=""/71}, &(0x7f00000000c0)="7f2911fa31fa4f4b2f5687dbd490bd09e476cb6b139f5686379495446bcea9c334", &(0x7f00000002c0)=""/182, 0x0, 0x0, 0x0, &(0x7f0000000380)}) [ 204.770957] device bridge_slave_0 left promiscuous mode [ 204.776676] bridge0: port 1(bridge_slave_0) entered disabled state 2018/04/30 22:52:18 executing program 0: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) [ 204.936883] team0 (unregistering): Port device team_slave_1 removed [ 204.958521] team0 (unregistering): Port device team_slave_0 removed [ 204.972364] bond0 (unregistering): Releasing backup interface bond_slave_1 [ 204.983850] IPVS: ftp: loaded support on port[0] = 21 [ 204.996516] bond0 (unregistering): Releasing backup interface bond_slave_0 [ 205.031273] bond0 (unregistering): Released all slaves 2018/04/30 22:52:18 executing program 2: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$evdev(&(0x7f0000072fee)='/dev/input/event#\x00', 0x0, 0x2) read(r0, &(0x7f000006b000)=""/24, 0x18) write$evdev(r0, &(0x7f0000057fa0)=[{}, {}], 0x30) 2018/04/30 22:52:18 executing program 3: r0 = syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x0, 0x0) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f0000000200)={'ifb0\x00', {0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0xa}}}) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) r2 = openat$urandom(0xffffffffffffff9c, &(0x7f0000000040)='/dev/urandom\x00', 0x200100, 0x0) connect$inet6(r1, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x2000000}, 0x1c) ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000080)=0x0) ioctl$TIOCSPGRP(r2, 0x5410, &(0x7f0000000140)=r3) ioctl$KVM_ENABLE_CAP_CPU(r0, 0x4068aea3, &(0x7f0000000180)={0x7b, 0x0, [0x9, 0x7, 0x81, 0x8001]}) syz_init_net_socket$nfc_llcp(0x27, 0x0, 0x1) [ 205.706226] bridge0: port 1(bridge_slave_0) entered blocking state [ 205.712693] bridge0: port 1(bridge_slave_0) entered disabled state [ 205.720652] device bridge_slave_0 entered promiscuous mode [ 205.763982] bridge0: port 2(bridge_slave_1) entered blocking state [ 205.770508] bridge0: port 2(bridge_slave_1) entered disabled state [ 205.778537] device bridge_slave_1 entered promiscuous mode [ 205.820810] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 205.862140] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 205.986500] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 206.029957] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 206.226238] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 206.233773] team0: Port device team_slave_0 added [ 206.272805] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 206.280821] team0: Port device team_slave_1 added [ 206.317540] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 206.358378] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 206.398958] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 206.439144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 206.739658] bridge0: port 2(bridge_slave_1) entered blocking state [ 206.746064] bridge0: port 2(bridge_slave_1) entered forwarding state [ 206.752721] bridge0: port 1(bridge_slave_0) entered blocking state [ 206.759118] bridge0: port 1(bridge_slave_0) entered forwarding state [ 206.766755] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 207.519136] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 207.603718] 8021q: adding VLAN 0 to HW filter on device bond0 [ 207.686162] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 207.768055] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 207.774268] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 207.781555] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 207.858339] 8021q: adding VLAN 0 to HW filter on device team0 [ 208.332246] FAULT_INJECTION: forcing a failure. [ 208.332246] name failslab, interval 1, probability 0, space 0, times 0 [ 208.343564] CPU: 1 PID: 15802 Comm: syz-executor1 Not tainted 4.17.0-rc3+ #26 [ 208.350835] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 208.360183] Call Trace: [ 208.362790] dump_stack+0x1b9/0x294 [ 208.366414] ? dump_stack_print_info.cold.2+0x52/0x52 [ 208.371610] ? __save_stack_trace+0x7e/0xd0 [ 208.375925] should_fail.cold.4+0xa/0x1a [ 208.379977] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 208.385092] ? save_stack+0x43/0xd0 [ 208.388710] ? kasan_kmalloc+0xc4/0xe0 [ 208.392586] ? kmem_cache_alloc_trace+0x152/0x780 [ 208.397418] ? __memcg_init_list_lru_node+0x17d/0x2c0 [ 208.402610] ? __list_lru_init+0x456/0x790 [ 208.407190] ? sget_userns+0x767/0xf00 [ 208.411070] ? graph_lock+0x170/0x170 [ 208.414865] ? vfs_kern_mount.part.34+0xd4/0x4d0 [ 208.419615] ? do_mount+0x564/0x3070 [ 208.423319] ? ksys_mount+0x12d/0x140 [ 208.427113] ? __x64_sys_mount+0xbe/0x150 [ 208.431253] ? do_syscall_64+0x1b1/0x800 [ 208.435305] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 208.440663] ? find_held_lock+0x36/0x1c0 [ 208.444733] ? __lock_is_held+0xb5/0x140 [ 208.448823] ? check_same_owner+0x320/0x320 [ 208.453138] ? rcu_note_context_switch+0x710/0x710 [ 208.458065] __should_failslab+0x124/0x180 [ 208.462308] should_failslab+0x9/0x14 [ 208.466103] kmem_cache_alloc_trace+0x2cb/0x780 [ 208.470765] ? __kmalloc_node+0x33/0x70 [ 208.474828] ? __kmalloc_node+0x33/0x70 [ 208.478801] ? rcu_read_lock_sched_held+0x108/0x120 [ 208.483837] __memcg_init_list_lru_node+0x17d/0x2c0 [ 208.488853] ? kvfree_rcu+0x20/0x20 [ 208.492469] ? __kmalloc_node+0x47/0x70 [ 208.496448] __list_lru_init+0x456/0x790 [ 208.500499] ? list_lru_destroy+0x4c0/0x4c0 [ 208.504812] ? mark_held_locks+0xc9/0x160 [ 208.508963] ? __raw_spin_lock_init+0x1c/0x100 [ 208.513548] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 208.518557] ? lockdep_init_map+0x9/0x10 [ 208.522612] sget_userns+0x767/0xf00 [ 208.526315] ? get_anon_bdev+0x2f0/0x2f0 [ 208.530372] ? test_bdev_super+0x50/0x50 [ 208.534424] ? destroy_unused_super.part.11+0x110/0x110 [ 208.539779] ? alloc_vfsmnt+0x771/0x9d0 [ 208.543746] ? mnt_free_id.isra.27+0x60/0x60 [ 208.548146] ? kasan_check_read+0x11/0x20 [ 208.552299] ? graph_lock+0x170/0x170 [ 208.556091] ? cap_capable+0x1f9/0x260 [ 208.560070] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 208.565608] ? security_capable+0x99/0xc0 [ 208.569756] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 208.575286] ? ns_capable_common+0x13f/0x170 [ 208.579689] ? get_anon_bdev+0x2f0/0x2f0 [ 208.583749] sget+0x10b/0x150 [ 208.586856] ? test_bdev_super+0x50/0x50 [ 208.590911] ? fuse_ctl_add_conn+0x280/0x280 [ 208.595312] mount_single+0x3a/0x170 [ 208.599025] fuse_ctl_mount+0x2c/0x40 [ 208.602829] mount_fs+0xae/0x328 [ 208.606200] ? mpi_free.cold.1+0x19/0x19 [ 208.610258] vfs_kern_mount.part.34+0xd4/0x4d0 [ 208.614833] ? may_umount+0xb0/0xb0 [ 208.618454] ? _raw_read_unlock+0x22/0x30 [ 208.622591] ? __get_fs_type+0x97/0xc0 [ 208.626476] do_mount+0x564/0x3070 [ 208.630010] ? lock_downgrade+0x8e0/0x8e0 [ 208.634171] ? copy_mount_string+0x40/0x40 [ 208.638414] ? check_same_owner+0x320/0x320 [ 208.642726] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 208.647738] ? __check_object_size+0x95/0x5d9 [ 208.652240] ? __might_sleep+0x95/0x190 [ 208.656218] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 208.661768] ? _copy_from_user+0xdf/0x150 [ 208.665946] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 208.671492] ? copy_mount_options+0x285/0x380 [ 208.675994] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 208.681539] ksys_mount+0x12d/0x140 [ 208.685158] __x64_sys_mount+0xbe/0x150 [ 208.689136] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 208.694143] do_syscall_64+0x1b1/0x800 [ 208.698027] ? finish_task_switch+0x1ca/0x810 [ 208.702517] ? syscall_return_slowpath+0x5c0/0x5c0 [ 208.707440] ? syscall_return_slowpath+0x30f/0x5c0 [ 208.712369] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 208.717728] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 208.722582] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 208.727757] RIP: 0033:0x455979 2018/04/30 22:52:21 executing program 4: r0 = syz_open_dev$evdev(&(0x7f0000072fee)='/dev/input/event#\x00', 0x0, 0x0) pipe(&(0x7f0000000000)={0xffffffffffffffff}) ioctl$TIOCGSID(r1, 0x5429, &(0x7f0000000040)=0x0) getsockopt$inet_sctp6_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f0000000080)={0x0, 0x7, 0x0, 0x8, 0x10001}, &(0x7f00000000c0)=0x14) getsockopt$inet_sctp_SCTP_DEFAULT_PRINFO(r1, 0x84, 0x72, &(0x7f0000000100)={r3, 0x6}, &(0x7f0000000140)=0xc) ioprio_get$pid(0x2, r2) read(r0, &(0x7f000006b000)=""/24, 0x18) 2018/04/30 22:52:21 executing program 1 (fault-call:2 fault-nth:32): mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0xc003, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:52:21 executing program 2: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$evdev(&(0x7f0000072fee)='/dev/input/event#\x00', 0x0, 0x2) read(r0, &(0x7f000006b000)=""/24, 0x18) write$evdev(r0, &(0x7f0000057fa0)=[{{}, 0x0, 0x100000001}], 0x18) 2018/04/30 22:52:21 executing program 5: r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0xfffffff5, @local={0xfe, 0x80, [], 0xaa}, 0x6}, 0x1c) 2018/04/30 22:52:21 executing program 6: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)="2e2f66696c6530f0", &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x1, 0x0) 2018/04/30 22:52:21 executing program 7: r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0) ioctl$SG_SET_DEBUG(r0, 0x227e, &(0x7f0000000100)=0x1) ioctl$SG_IO(r0, 0x2203, &(0x7f00000003c0)={0x53, 0x0, 0x21, 0x0, @buffer={0x0, 0x47, &(0x7f0000000040)=""/71}, &(0x7f00000000c0)="7f2911fa31fa4f4b2f5687dbd490bd09e476cb6b139f5686379495446bcea9c334", &(0x7f00000002c0)=""/182, 0x0, 0x0, 0x0, &(0x7f0000000380)}) 2018/04/30 22:52:21 executing program 0: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:52:21 executing program 3: r0 = syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x0, 0x0) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) setsockopt$l2tp_PPPOL2TP_SO_REORDERTO(r0, 0x111, 0x5, 0x7, 0x4) connect$inet6(r1, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x2000000}, 0x1c) syz_init_net_socket$nfc_llcp(0x27, 0x0, 0x1) [ 208.730953] RSP: 002b:00007f50884efc68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 208.738657] RAX: ffffffffffffffda RBX: 00007f50884f06d4 RCX: 0000000000455979 [ 208.745918] RDX: 0000000020000100 RSI: 0000000020000080 RDI: 0000000020000040 [ 208.753177] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 208.760434] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000014 [ 208.767697] R13: 0000000000000440 R14: 00000000006fa6a0 R15: 000000000000001f 2018/04/30 22:52:22 executing program 5: r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x2, @local={0xfe, 0x80, [], 0xaa}, 0x6}, 0x1c) 2018/04/30 22:52:22 executing program 7: r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0) ioctl$SG_SET_DEBUG(r0, 0x227e, &(0x7f0000000100)=0x1) ioctl$SG_IO(r0, 0x2201, &(0x7f00000003c0)={0x53, 0x0, 0x21, 0x0, @buffer={0x0, 0x47, &(0x7f0000000040)=""/71}, &(0x7f00000000c0)="7f2911fa31fa4f4b2f5687dbd490bd09e476cb6b139f5686379495446bcea9c334", &(0x7f00000002c0)=""/182, 0x0, 0x0, 0x0, &(0x7f0000000380)}) 2018/04/30 22:52:22 executing program 6: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)="2e2f66696c6530ff", &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x1, 0x0) 2018/04/30 22:52:22 executing program 3: r0 = syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x0, 0x0) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r1, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x2000000}, 0x1c) recvfrom(r0, &(0x7f0000000140)=""/225, 0xe1, 0x1, 0x0, 0x0) syz_init_net_socket$nfc_llcp(0x27, 0x0, 0x1) 2018/04/30 22:52:22 executing program 0: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:52:22 executing program 5: r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x200000000000000, @local={0xfe, 0x80, [], 0xaa}, 0x6}, 0x1c) 2018/04/30 22:52:22 executing program 7: r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0) ioctl$SG_SET_DEBUG(r0, 0x227e, &(0x7f0000000100)=0x1) ioctl$SG_IO(r0, 0x1274, &(0x7f00000003c0)={0x53, 0x0, 0x21, 0x0, @buffer={0x0, 0x47, &(0x7f0000000040)=""/71}, &(0x7f00000000c0)="7f2911fa31fa4f4b2f5687dbd490bd09e476cb6b139f5686379495446bcea9c334", &(0x7f00000002c0)=""/182, 0x0, 0x0, 0x0, &(0x7f0000000380)}) 2018/04/30 22:52:22 executing program 6: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x1, 0x0) [ 209.153294] device bridge_slave_1 left promiscuous mode [ 209.159012] bridge0: port 2(bridge_slave_1) entered disabled state [ 209.187284] device bridge_slave_0 left promiscuous mode [ 209.193145] bridge0: port 1(bridge_slave_0) entered disabled state [ 209.242662] team0 (unregistering): Port device team_slave_1 removed [ 209.253386] team0 (unregistering): Port device team_slave_0 removed [ 209.265467] bond0 (unregistering): Releasing backup interface bond_slave_1 [ 209.281362] bond0 (unregistering): Releasing backup interface bond_slave_0 [ 209.312979] bond0 (unregistering): Released all slaves 2018/04/30 22:52:23 executing program 4: r0 = syz_open_dev$evdev(&(0x7f0000072fee)='/dev/input/event#\x00', 0xffffffff, 0xc400) read(r0, &(0x7f000006b000)=""/24, 0x18) mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getsockopt$inet_tcp_int(r1, 0x6, 0xb, &(0x7f0000001000), &(0x7f0000012000)=0x4) dup3(0xffffffffffffffff, r1, 0x0) r2 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mixer\x00', 0x101000, 0x0) accept$nfc_llcp(r2, &(0x7f0000000040), &(0x7f00000000c0)=0x60) 2018/04/30 22:52:23 executing program 0: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:52:23 executing program 3: r0 = syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x0, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(r0, 0x84, 0x6c, &(0x7f0000000140)=ANY=[@ANYRES32=0x0, @ANYBLOB="cd00000069e948863545c4e1c5f4a0af34fafade37f9f756eac43b780c855a90885057c5de02146f847bd68bc7ef402957c4d003c1057b5612b0ec3a1aeb054c2c0ee5fca15ed27d0406980f8b25ce605413b8878ec73113b031ffbdadaae57dd1b7be93c052ddebb26fe80fd40c7992790d3ee2df54e30d91e7a90f1e9fe75be8d80e1ee7818b71b7daba993d56e3c8e690acc30510ea73843d09d27bf5665f0970345f8e184aed5ccd922e9235dd817a4ca014f8fb4af8a840175f08632a239117137871037cdb11736c883f688c9e32"], &(0x7f0000000040)=0xd5) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f0000000080)={0x20, 0xfc00000000, 0xb, 0x80000000, 0x4, 0x8, 0x101, 0x100000001, r1}, &(0x7f0000000240)=0x20) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r2, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r2, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x2000000}, 0x1c) syz_init_net_socket$nfc_llcp(0x27, 0x8, 0x1) 2018/04/30 22:52:23 executing program 1 (fault-call:2 fault-nth:33): mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0xc003, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:52:23 executing program 5: r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [0x2000000], 0xaa}, 0x6}, 0x1c) 2018/04/30 22:52:23 executing program 7: r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0) ioctl$SG_SET_DEBUG(r0, 0x227e, &(0x7f0000000100)=0x1) ioctl$SG_IO(r0, 0x40049409, &(0x7f00000003c0)={0x53, 0x0, 0x21, 0x0, @buffer={0x0, 0x47, &(0x7f0000000040)=""/71}, &(0x7f00000000c0)="7f2911fa31fa4f4b2f5687dbd490bd09e476cb6b139f5686379495446bcea9c334", &(0x7f00000002c0)=""/182, 0x0, 0x0, 0x0, &(0x7f0000000380)}) 2018/04/30 22:52:23 executing program 6: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x1, 0x0) 2018/04/30 22:52:23 executing program 2: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$evdev(&(0x7f0000072fee)='/dev/input/event#\x00', 0x0, 0x2) read(r0, &(0x7f000006b000)=""/24, 0x18) write$evdev(r0, &(0x7f0000057fa0)=[{{}, 0x0, 0x100000001}], 0x18) 2018/04/30 22:52:23 executing program 3: r0 = syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x0, 0x0) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r1, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x2000000}, 0x1c) r2 = syz_init_net_socket$nfc_llcp(0x27, 0x0, 0x1) ioctl$BLKPBSZGET(r0, 0x127b, &(0x7f00000002c0)) r3 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snapshot\x00', 0x0, 0x0) getsockopt$inet_sctp6_SCTP_GET_ASSOC_STATS(r0, 0x84, 0x70, &(0x7f0000000140)={0x0, @in6={{0xa, 0x4e21, 0x9, @ipv4={[], [0xff, 0xff], @rand_addr=0x3d26e289}, 0x6}}, [0x1, 0x100000001, 0x0, 0x7f, 0x5, 0x1, 0x4, 0x2, 0x20000000000, 0x7, 0x81, 0x5, 0x20, 0x9c0f, 0xb82d]}, &(0x7f0000000080)=0x100) ioctl$ifreq_SIOCGIFINDEX_team(r2, 0x8933, &(0x7f0000000500)={'team0\x00', 0x0}) sendto$packet(r0, &(0x7f0000000300)="163c15c0240dc4657d7dbedda1074f418918b3c086eca0b1d257d1c4d592491209f376b0bacf661c0e69", 0x2a, 0x800, &(0x7f0000000540)={0x11, 0xf6, r5, 0x1, 0x20, 0x6, @broadcast=[0xff, 0xff, 0xff, 0xff, 0xff, 0xff]}, 0x14) getsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r3, 0x84, 0x76, &(0x7f0000000240)={r4, 0x9}, &(0x7f0000000280)=0x8) 2018/04/30 22:52:23 executing program 7: r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0) ioctl$SG_SET_DEBUG(r0, 0x227e, &(0x7f0000000100)=0x1) ioctl$SG_IO(r0, 0x2271, &(0x7f00000003c0)={0x53, 0x0, 0x21, 0x0, @buffer={0x0, 0x47, &(0x7f0000000040)=""/71}, &(0x7f00000000c0)="7f2911fa31fa4f4b2f5687dbd490bd09e476cb6b139f5686379495446bcea9c334", &(0x7f00000002c0)=""/182, 0x0, 0x0, 0x0, &(0x7f0000000380)}) 2018/04/30 22:52:23 executing program 5: r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [0xf5ffffff], 0xaa}, 0x6}, 0x1c) 2018/04/30 22:52:23 executing program 0: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='//file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) [ 210.377695] IPVS: ftp: loaded support on port[0] = 21 [ 210.846205] bridge0: port 1(bridge_slave_0) entered blocking state [ 210.852658] bridge0: port 1(bridge_slave_0) entered disabled state [ 210.860408] device bridge_slave_0 entered promiscuous mode [ 210.888552] bridge0: port 2(bridge_slave_1) entered blocking state [ 210.894965] bridge0: port 2(bridge_slave_1) entered disabled state [ 210.902309] device bridge_slave_1 entered promiscuous mode [ 210.930995] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 210.958726] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 211.043208] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 211.074072] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 211.184047] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 211.191322] team0: Port device team_slave_0 added [ 211.215518] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 211.222667] team0: Port device team_slave_1 added [ 211.246754] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 211.273573] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 211.300064] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 211.307259] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 211.315381] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 211.335640] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 211.342756] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 211.350895] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 211.580928] bridge0: port 2(bridge_slave_1) entered blocking state [ 211.587350] bridge0: port 2(bridge_slave_1) entered forwarding state [ 211.594074] bridge0: port 1(bridge_slave_0) entered blocking state [ 211.600456] bridge0: port 1(bridge_slave_0) entered forwarding state [ 211.607770] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 211.999197] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 212.456756] 8021q: adding VLAN 0 to HW filter on device bond0 [ 212.538150] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 212.619870] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 212.626150] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 212.633328] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 212.711937] 8021q: adding VLAN 0 to HW filter on device team0 [ 213.188015] FAULT_INJECTION: forcing a failure. [ 213.188015] name failslab, interval 1, probability 0, space 0, times 0 [ 213.199436] CPU: 0 PID: 16165 Comm: syz-executor1 Not tainted 4.17.0-rc3+ #26 [ 213.206701] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 213.216057] Call Trace: [ 213.218661] dump_stack+0x1b9/0x294 [ 213.222290] ? dump_stack_print_info.cold.2+0x52/0x52 [ 213.227475] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 213.232662] should_fail.cold.4+0xa/0x1a [ 213.236720] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 213.241827] ? __unwind_start+0x166/0x330 [ 213.245969] ? __kernel_text_address+0xd/0x40 [ 213.250455] ? unwind_get_return_address+0x61/0xa0 [ 213.255391] ? graph_lock+0x170/0x170 [ 213.259195] ? mark_held_locks+0xc9/0x160 [ 213.263337] ? find_held_lock+0x36/0x1c0 [ 213.267407] ? __lock_is_held+0xb5/0x140 [ 213.271474] ? check_same_owner+0x320/0x320 [ 213.275799] ? graph_lock+0x170/0x170 [ 213.279607] ? rcu_note_context_switch+0x710/0x710 [ 213.284533] __should_failslab+0x124/0x180 [ 213.288765] should_failslab+0x9/0x14 [ 213.292577] kmem_cache_alloc+0x2af/0x760 [ 213.296724] ? fuse_ctl_add_conn+0x280/0x280 [ 213.301126] __d_alloc+0xc0/0xd30 [ 213.304572] ? shrink_dcache_for_umount+0x290/0x290 [ 213.309585] ? mark_held_locks+0xc9/0x160 [ 213.313727] ? current_kernel_time64+0x242/0x2f0 [ 213.318484] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 213.323502] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 213.328525] ? current_kernel_time64+0x1f4/0x2f0 [ 213.333281] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 213.338819] ? timespec_trunc+0xe7/0x170 [ 213.342871] ? put_itimerspec64+0x310/0x310 [ 213.347203] ? evict_inodes+0x5f0/0x5f0 [ 213.351175] ? fuse_ctl_add_conn+0x280/0x280 [ 213.355572] d_make_root+0x42/0x90 [ 213.359102] simple_fill_super+0x25b/0x600 [ 213.363346] ? get_anon_bdev+0x2f0/0x2f0 [ 213.367400] ? fuse_ctl_add_conn+0x280/0x280 [ 213.371808] fuse_ctl_fill_super+0x27/0x160 [ 213.376132] ? fuse_ctl_add_conn+0x280/0x280 [ 213.380545] mount_single+0xfb/0x170 [ 213.384255] fuse_ctl_mount+0x2c/0x40 [ 213.388063] mount_fs+0xae/0x328 [ 213.391435] ? mpi_free.cold.1+0x19/0x19 [ 213.395507] vfs_kern_mount.part.34+0xd4/0x4d0 [ 213.400083] ? may_umount+0xb0/0xb0 [ 213.403702] ? _raw_read_unlock+0x22/0x30 [ 213.407844] ? __get_fs_type+0x97/0xc0 [ 213.411912] do_mount+0x564/0x3070 [ 213.415460] ? lock_downgrade+0x8e0/0x8e0 [ 213.419604] ? copy_mount_string+0x40/0x40 [ 213.423828] ? check_same_owner+0x320/0x320 [ 213.428141] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 213.433153] ? __check_object_size+0x95/0x5d9 [ 213.437641] ? __might_sleep+0x95/0x190 [ 213.441620] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 213.447149] ? _copy_from_user+0xdf/0x150 [ 213.451295] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 213.456827] ? copy_mount_options+0x285/0x380 [ 213.461321] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 213.466855] ksys_mount+0x12d/0x140 [ 213.470477] __x64_sys_mount+0xbe/0x150 [ 213.474553] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 213.479580] do_syscall_64+0x1b1/0x800 [ 213.483463] ? syscall_return_slowpath+0x5c0/0x5c0 [ 213.488391] ? syscall_return_slowpath+0x30f/0x5c0 [ 213.493322] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 213.498694] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 213.503537] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 213.508725] RIP: 0033:0x455979 [ 213.511906] RSP: 002b:00007fbbd3dd3c68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 213.519610] RAX: ffffffffffffffda RBX: 00007fbbd3dd46d4 RCX: 0000000000455979 [ 213.526877] RDX: 0000000020000100 RSI: 0000000020000080 RDI: 0000000020000040 2018/04/30 22:52:26 executing program 4: r0 = syz_open_dev$evdev(&(0x7f0000072fee)='/dev/input/event#\x00', 0x0, 0x0) read(r0, &(0x7f000006b000)=""/24, 0x18) getsockopt$bt_BT_CHANNEL_POLICY(r0, 0x112, 0xa, &(0x7f0000000000)=0x4, &(0x7f0000000040)=0x4) 2018/04/30 22:52:26 executing program 6: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x1, 0x0) 2018/04/30 22:52:26 executing program 5: r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [0xfffffff5], 0xaa}, 0x6}, 0x1c) 2018/04/30 22:52:26 executing program 3: r0 = syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x0, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e22, 0x3f, @dev={0xfe, 0x80, [], 0x19}, 0x10a}, 0x1c) connect$inet6(r1, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x2000000}, 0x1c) syz_init_net_socket$nfc_llcp(0x27, 0x0, 0x1) 2018/04/30 22:52:26 executing program 0: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./.ile0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:52:26 executing program 7: r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0) ioctl$SG_SET_DEBUG(r0, 0x227e, &(0x7f0000000100)=0x1) ioctl$SG_IO(r0, 0xc0045877, &(0x7f00000003c0)={0x53, 0x0, 0x21, 0x0, @buffer={0x0, 0x47, &(0x7f0000000040)=""/71}, &(0x7f00000000c0)="7f2911fa31fa4f4b2f5687dbd490bd09e476cb6b139f5686379495446bcea9c334", &(0x7f00000002c0)=""/182, 0x0, 0x0, 0x0, &(0x7f0000000380)}) 2018/04/30 22:52:26 executing program 1 (fault-call:2 fault-nth:34): mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0xc003, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:52:26 executing program 2: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$evdev(&(0x7f0000072fee)='/dev/input/event#\x00', 0x0, 0x2) read(r0, &(0x7f000006b000)=""/24, 0x18) write$evdev(r0, &(0x7f0000057fa0)=[{{}, 0x0, 0x100000001}], 0x18) [ 213.534136] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 213.541397] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000014 [ 213.548666] R13: 0000000000000440 R14: 00000000006fa6a0 R15: 0000000000000021 2018/04/30 22:52:26 executing program 5: r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [0x2], 0xaa}, 0x6}, 0x1c) 2018/04/30 22:52:26 executing program 7: r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0) ioctl$SG_SET_DEBUG(r0, 0x227e, &(0x7f0000000100)=0x1) ioctl$SG_IO(r0, 0x1275, &(0x7f00000003c0)={0x53, 0x0, 0x21, 0x0, @buffer={0x0, 0x47, &(0x7f0000000040)=""/71}, &(0x7f00000000c0)="7f2911fa31fa4f4b2f5687dbd490bd09e476cb6b139f5686379495446bcea9c334", &(0x7f00000002c0)=""/182, 0x0, 0x0, 0x0, &(0x7f0000000380)}) [ 213.850475] device bridge_slave_1 left promiscuous mode [ 213.856254] bridge0: port 2(bridge_slave_1) entered disabled state [ 213.867686] device bridge_slave_0 left promiscuous mode [ 213.873288] bridge0: port 1(bridge_slave_0) entered disabled state [ 213.915815] team0 (unregistering): Port device team_slave_1 removed [ 213.928277] team0 (unregistering): Port device team_slave_0 removed [ 213.938595] bond0 (unregistering): Releasing backup interface bond_slave_1 [ 213.957783] bond0 (unregistering): Releasing backup interface bond_slave_0 [ 213.991789] bond0 (unregistering): Released all slaves 2018/04/30 22:52:27 executing program 0: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='.//ile0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:52:27 executing program 6: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x1, 0x0) 2018/04/30 22:52:27 executing program 3: r0 = syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x0, 0x0) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) ioctl$TCSBRKP(r0, 0x5425, 0x3) connect$inet6(r1, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x2000000}, 0x1c) syz_init_net_socket$nfc_llcp(0x27, 0x0, 0x1) setsockopt$inet_sctp6_SCTP_I_WANT_MAPPED_V4_ADDR(r0, 0x84, 0xc, &(0x7f0000000040)=0xffff, 0x4) 2018/04/30 22:52:27 executing program 5: r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [0xf5ffffff00000000], 0xaa}, 0x6}, 0x1c) 2018/04/30 22:52:27 executing program 7: r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0) ioctl$SG_SET_DEBUG(r0, 0x227e, &(0x7f0000000100)=0x1) ioctl$SG_IO(r0, 0x2205, &(0x7f00000003c0)={0x53, 0x0, 0x21, 0x0, @buffer={0x0, 0x47, &(0x7f0000000040)=""/71}, &(0x7f00000000c0)="7f2911fa31fa4f4b2f5687dbd490bd09e476cb6b139f5686379495446bcea9c334", &(0x7f00000002c0)=""/182, 0x0, 0x0, 0x0, &(0x7f0000000380)}) 2018/04/30 22:52:27 executing program 4: getitimer(0x0, &(0x7f0000000000)) r0 = syz_open_dev$evdev(&(0x7f0000072fee)='/dev/input/event#\x00', 0x0, 0x0) openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040)='/dev/rfkill\x00', 0x80040, 0x0) read(r0, &(0x7f000006b000)=""/24, 0x18) 2018/04/30 22:52:27 executing program 1 (fault-call:2 fault-nth:35): mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0xc003, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:52:27 executing program 2: 2018/04/30 22:52:27 executing program 2: r0 = getpid() bpf$MAP_CREATE(0x0, &(0x7f0000c47fec)={0x0, 0x80000000002000a, 0x0, 0x1}, 0x2c) pause() sendmmsg$unix(0xffffffffffffffff, &(0x7f0000005e00)=[{&(0x7f0000000440)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000000100)=[{&(0x7f00000004c0)="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", 0xf47}], 0x1, &(0x7f00000001c0)=ANY=[]}], 0x1, 0x0) process_vm_readv(r0, &(0x7f0000001400), 0x1, &(0x7f0000000000)=[{&(0x7f0000002780)=""/204, 0xd7e1e1d24b36aac5}, {&(0x7f0000002880)=""/183, 0x9}], 0x2, 0x0) 2018/04/30 22:52:28 executing program 0: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:52:28 executing program 5: r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [0x200000000000000], 0xaa}, 0x6}, 0x1c) 2018/04/30 22:52:28 executing program 7: r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0) ioctl$SG_SET_DEBUG(r0, 0x227e, &(0x7f0000000100)=0x1) ioctl$SG_IO(r0, 0x5451, &(0x7f00000003c0)={0x53, 0x0, 0x21, 0x0, @buffer={0x0, 0x47, &(0x7f0000000040)=""/71}, &(0x7f00000000c0)="7f2911fa31fa4f4b2f5687dbd490bd09e476cb6b139f5686379495446bcea9c334", &(0x7f00000002c0)=""/182, 0x0, 0x0, 0x0, &(0x7f0000000380)}) 2018/04/30 22:52:28 executing program 6: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x1, 0x0) 2018/04/30 22:52:28 executing program 3: r0 = syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x0, 0x0) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) ioctl$KDENABIO(r0, 0x4b36) connect$inet6(r1, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x2000000}, 0x1c) setsockopt$inet6_MCAST_MSFILTER(r1, 0x29, 0x30, &(0x7f0000000140)={0x0, {{0xa, 0x4e24, 0xea0, @empty, 0x5cc220d}}, 0x0, 0x3, [{{0xa, 0x4e22, 0x7557, @mcast1={0xff, 0x1, [], 0x1}, 0x6}}, {{0xa, 0x4e22, 0x1, @local={0xfe, 0x80, [], 0xaa}, 0xbad}}, {{0xa, 0x4e24, 0x10001, @local={0xfe, 0x80, [], 0xaa}, 0x5}}]}, 0x210) socket$vsock_dgram(0x28, 0x2, 0x0) syz_open_dev$usbmon(&(0x7f0000000040)='/dev/usbmon#\x00', 0x10001, 0x4100) syz_init_net_socket$nfc_llcp(0x27, 0x3, 0x1) [ 215.106074] IPVS: ftp: loaded support on port[0] = 21 [ 215.551620] bridge0: port 1(bridge_slave_0) entered blocking state [ 215.558219] bridge0: port 1(bridge_slave_0) entered disabled state [ 215.565558] device bridge_slave_0 entered promiscuous mode [ 215.593567] bridge0: port 2(bridge_slave_1) entered blocking state [ 215.600011] bridge0: port 2(bridge_slave_1) entered disabled state [ 215.607387] device bridge_slave_1 entered promiscuous mode [ 215.634484] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 215.668473] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 215.743800] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 215.772071] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 215.799215] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 215.806353] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 215.899819] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 215.907153] team0: Port device team_slave_0 added [ 215.941459] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 215.948766] team0: Port device team_slave_1 added [ 215.973495] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 216.001151] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 216.027617] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 216.034796] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 216.043241] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 216.063647] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 216.070777] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 216.079264] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 216.312284] bridge0: port 2(bridge_slave_1) entered blocking state [ 216.318698] bridge0: port 2(bridge_slave_1) entered forwarding state [ 216.325354] bridge0: port 1(bridge_slave_0) entered blocking state [ 216.331761] bridge0: port 1(bridge_slave_0) entered forwarding state [ 216.339139] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 216.736715] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 217.188785] 8021q: adding VLAN 0 to HW filter on device bond0 [ 217.270595] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 217.353302] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 217.359856] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 217.367530] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 217.446429] 8021q: adding VLAN 0 to HW filter on device team0 [ 217.922563] FAULT_INJECTION: forcing a failure. [ 217.922563] name failslab, interval 1, probability 0, space 0, times 0 [ 217.934165] CPU: 0 PID: 16513 Comm: syz-executor1 Not tainted 4.17.0-rc3+ #26 [ 217.941444] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 217.951022] Call Trace: [ 217.953620] dump_stack+0x1b9/0x294 [ 217.957238] ? dump_stack_print_info.cold.2+0x52/0x52 [ 217.962430] should_fail.cold.4+0xa/0x1a [ 217.966484] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 217.971582] ? rcu_is_watching+0x85/0x140 [ 217.975723] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 217.980911] ? graph_lock+0x170/0x170 [ 217.984708] ? find_held_lock+0x36/0x1c0 [ 217.988764] ? __lock_is_held+0xb5/0x140 [ 217.992840] ? check_same_owner+0x320/0x320 [ 217.997150] ? lock_acquire+0x1dc/0x520 [ 218.001118] ? rcu_note_context_switch+0x710/0x710 [ 218.006051] __should_failslab+0x124/0x180 [ 218.010284] should_failslab+0x9/0x14 [ 218.014077] kmem_cache_alloc+0x2af/0x760 [ 218.018248] ? graph_lock+0x170/0x170 [ 218.022050] ? __might_sleep+0x95/0x190 [ 218.026023] __d_alloc+0xc0/0xd30 [ 218.029472] ? __mutex_lock+0x7d9/0x17f0 [ 218.033531] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 218.038716] ? shrink_dcache_for_umount+0x290/0x290 [ 218.043722] ? put_dec+0x3b/0xf0 [ 218.047084] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 218.052613] ? number+0x967/0xc90 [ 218.056074] ? put_dec+0xf0/0xf0 [ 218.059435] ? format_decode+0x1a9/0xae0 [ 218.063488] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 218.069021] ? hashlen_string+0x1ea/0x2f0 [ 218.073180] d_alloc+0x8e/0x370 [ 218.076452] ? vsnprintf+0x242/0x1b40 [ 218.080249] ? __d_alloc+0xd30/0xd30 [ 218.083950] ? pointer+0xa20/0xa20 [ 218.087477] d_alloc_name+0xb3/0x110 [ 218.091178] ? d_alloc+0x370/0x370 [ 218.094706] ? scnprintf+0x120/0x120 [ 218.098413] fuse_ctl_add_dentry+0x84/0x440 [ 218.102726] fuse_ctl_add_conn+0x12d/0x280 [ 218.106969] ? fuse_ctl_remove_conn+0x1b0/0x1b0 [ 218.111631] ? d_make_root+0x5f/0x90 [ 218.115341] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 218.120879] ? simple_fill_super+0x49d/0x600 [ 218.125294] ? fuse_ctl_add_conn+0x280/0x280 [ 218.129707] fuse_ctl_fill_super+0xf7/0x160 [ 218.134026] ? fuse_ctl_add_conn+0x280/0x280 [ 218.138432] mount_single+0xfb/0x170 [ 218.142139] fuse_ctl_mount+0x2c/0x40 [ 218.145933] mount_fs+0xae/0x328 [ 218.149291] ? mpi_free.cold.1+0x19/0x19 [ 218.153345] vfs_kern_mount.part.34+0xd4/0x4d0 [ 218.157927] ? may_umount+0xb0/0xb0 [ 218.161563] ? _raw_read_unlock+0x22/0x30 [ 218.165702] ? __get_fs_type+0x97/0xc0 [ 218.169591] do_mount+0x564/0x3070 [ 218.173151] ? lock_downgrade+0x8e0/0x8e0 [ 218.177294] ? copy_mount_string+0x40/0x40 [ 218.181627] ? check_same_owner+0x320/0x320 [ 218.185938] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 218.192173] ? __check_object_size+0x95/0x5d9 [ 218.196663] ? __might_sleep+0x95/0x190 [ 218.200631] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 218.206162] ? _copy_from_user+0xdf/0x150 [ 218.210301] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 218.215839] ? copy_mount_options+0x285/0x380 [ 218.220340] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 218.225890] ksys_mount+0x12d/0x140 [ 218.229508] __x64_sys_mount+0xbe/0x150 [ 218.233479] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 218.238493] do_syscall_64+0x1b1/0x800 [ 218.242369] ? finish_task_switch+0x1ca/0x810 [ 218.246867] ? syscall_return_slowpath+0x5c0/0x5c0 [ 218.251788] ? syscall_return_slowpath+0x30f/0x5c0 [ 218.256709] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 218.262076] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 218.266911] entry_SYSCALL_64_after_hwframe+0x49/0xbe 2018/04/30 22:52:31 executing program 5: r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [0x0, 0x2000000], 0xaa}, 0x6}, 0x1c) 2018/04/30 22:52:31 executing program 0: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:52:31 executing program 7: r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0) ioctl$SG_SET_DEBUG(r0, 0x227e, &(0x7f0000000100)=0x1) ioctl$SG_IO(r0, 0x5382, &(0x7f00000003c0)={0x53, 0x0, 0x21, 0x0, @buffer={0x0, 0x47, &(0x7f0000000040)=""/71}, &(0x7f00000000c0)="7f2911fa31fa4f4b2f5687dbd490bd09e476cb6b139f5686379495446bcea9c334", &(0x7f00000002c0)=""/182, 0x0, 0x0, 0x0, &(0x7f0000000380)}) 2018/04/30 22:52:31 executing program 6: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)="2e2f66696c6530ff", &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x1, 0x0) 2018/04/30 22:52:31 executing program 3: r0 = syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x0, 0x0) ioctl$PPPIOCGMRU(r0, 0x80047453, &(0x7f0000000080)) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r1, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) syz_open_dev$sndctrl(&(0x7f0000000040)='/dev/snd/controlC#\x00', 0x9, 0x0) membarrier(0x49, 0x0) connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x2000000}, 0x1c) syz_init_net_socket$nfc_llcp(0x27, 0x3, 0x1) 2018/04/30 22:52:31 executing program 4: r0 = syz_open_dev$evdev(&(0x7f0000072fee)='/dev/input/event#\x00', 0x0, 0x0) r1 = openat$urandom(0xffffffffffffff9c, &(0x7f0000000100)='/dev/urandom\x00', 0x8840, 0x0) r2 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000180)='IPVS\x00') sendmsg$IPVS_CMD_SET_DEST(r1, &(0x7f0000000280)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x30}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x60, r2, 0x0, 0x70bd2c, 0x25dfdbfc, {0x6}, [@IPVS_CMD_ATTR_DEST={0x4c, 0x2, [@IPVS_DEST_ATTR_PORT={0x8, 0x2, 0x4e22}, @IPVS_DEST_ATTR_ACTIVE_CONNS={0x8, 0x7}, @IPVS_DEST_ATTR_FWD_METHOD={0x8, 0x3, 0x3}, @IPVS_DEST_ATTR_PERSIST_CONNS={0x8, 0x9, 0x80000000}, @IPVS_DEST_ATTR_L_THRESH={0x8, 0x6, 0x8}, @IPVS_DEST_ATTR_ADDR_FAMILY={0x8, 0xb, 0x2}, @IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0x7}, @IPVS_DEST_ATTR_L_THRESH={0x8, 0x6, 0x4}, @IPVS_DEST_ATTR_L_THRESH={0x8, 0x6, 0x9}]}]}, 0x60}, 0x1, 0x0, 0x0, 0x4001}, 0x20000010) getsockopt$inet_sctp_SCTP_PR_SUPPORTED(r1, 0x84, 0x71, &(0x7f0000000040)={0x0, 0x9}, &(0x7f0000000080)=0x8) getsockopt$inet_sctp_SCTP_DEFAULT_PRINFO(r1, 0x84, 0x72, &(0x7f00000000c0)={r3, 0x2, 0x10}, &(0x7f00000002c0)=0xc) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r0, 0x10e, 0x4, &(0x7f0000000300)=0x3, 0x4) r4 = socket$l2tp(0x18, 0x1, 0x1) setsockopt$SO_BINDTODEVICE(r4, 0x1, 0x19, &(0x7f0000000000)='nr0\x00', 0x10) read(r0, &(0x7f000006b000)=""/24, 0x18) 2018/04/30 22:52:31 executing program 1 (fault-call:2 fault-nth:36): mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0xc003, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:52:31 executing program 2: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @broadcast=0xffffffff}, 0x10) sendto$inet(r0, &(0x7f0000fd0000), 0x0, 0x20000800, &(0x7f0000deaff0)={0x2, 0x4e23, @loopback=0x7f000001}, 0x10) [ 218.272112] RIP: 0033:0x455979 [ 218.275290] RSP: 002b:00007fafd08acc68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 218.282992] RAX: ffffffffffffffda RBX: 00007fafd08ad6d4 RCX: 0000000000455979 [ 218.290263] RDX: 0000000020000100 RSI: 0000000020000080 RDI: 0000000020000040 [ 218.297523] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 218.304792] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000014 [ 218.312053] R13: 0000000000000440 R14: 00000000006fa6a0 R15: 0000000000000023 2018/04/30 22:52:31 executing program 2: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$mice(&(0x7f0000000100)='/dev/input/mice\x00', 0x0, 0x0) fsetxattr(r0, &(0x7f00000000c0)=@known='security.capability\x00', &(0x7f0000000080)="0000000201000000000000010400000000000000", 0x14, 0x0) 2018/04/30 22:52:31 executing program 7: r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0) ioctl$SG_SET_DEBUG(r0, 0x227e, &(0x7f0000000100)=0x1) ioctl$SG_IO(r0, 0x227b, &(0x7f00000003c0)={0x53, 0x0, 0x21, 0x0, @buffer={0x0, 0x47, &(0x7f0000000040)=""/71}, &(0x7f00000000c0)="7f2911fa31fa4f4b2f5687dbd490bd09e476cb6b139f5686379495446bcea9c334", &(0x7f00000002c0)=""/182, 0x0, 0x0, 0x0, &(0x7f0000000380)}) 2018/04/30 22:52:31 executing program 6: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)="2e2f66696c6530ff", &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x1, 0x0) 2018/04/30 22:52:31 executing program 0: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:52:31 executing program 5: r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [0x0, 0xf5ffffff], 0xaa}, 0x6}, 0x1c) 2018/04/30 22:52:31 executing program 3: syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x0, 0x0) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_init_net_socket$nfc_llcp(0x27, 0x3, 0x1) r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x2000000}, 0x1c) syz_init_net_socket$nfc_llcp(0x27, 0x0, 0x1) 2018/04/30 22:52:31 executing program 0: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)="2e2f66696c6530ff", &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:52:31 executing program 6: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x1, 0x0) 2018/04/30 22:52:31 executing program 7: r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0) ioctl$SG_SET_DEBUG(r0, 0x227e, &(0x7f0000000100)=0x1) ioctl$SG_IO(r0, 0x1276, &(0x7f00000003c0)={0x53, 0x0, 0x21, 0x0, @buffer={0x0, 0x47, &(0x7f0000000040)=""/71}, &(0x7f00000000c0)="7f2911fa31fa4f4b2f5687dbd490bd09e476cb6b139f5686379495446bcea9c334", &(0x7f00000002c0)=""/182, 0x0, 0x0, 0x0, &(0x7f0000000380)}) [ 218.708801] device bridge_slave_1 left promiscuous mode [ 218.714557] bridge0: port 2(bridge_slave_1) entered disabled state [ 218.756735] device bridge_slave_0 left promiscuous mode [ 218.762454] bridge0: port 1(bridge_slave_0) entered disabled state [ 218.825161] team0 (unregistering): Port device team_slave_1 removed [ 218.835643] team0 (unregistering): Port device team_slave_0 removed [ 218.847425] bond0 (unregistering): Releasing backup interface bond_slave_1 [ 218.863441] bond0 (unregistering): Releasing backup interface bond_slave_0 [ 218.890434] bond0 (unregistering): Released all slaves 2018/04/30 22:52:32 executing program 5: r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [0x0, 0xfffffff5], 0xaa}, 0x6}, 0x1c) 2018/04/30 22:52:32 executing program 2: perf_event_open(&(0x7f0000940000)={0x2, 0x78, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000a3c000)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x68, &(0x7f0000000600)={@local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}, @link_local={0x1, 0x80, 0xc2}, [], {@ipv4={0x800, {{0x5, 0x4, 0x0, 0x0, 0x5a, 0x0, 0x45, 0x0, 0x0, 0x0, @multicast2=0xe0000002, @rand_addr}, @gre={{0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x880b}, {0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800, [0x0]}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x86dd}, {0x8, 0x88be, 0x0, {{0x0, 0x1, 0x0, 0x7ff}, 0x1}}, {0x8, 0x22eb, 0x0, {{0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x2, 0x0, 0x7fffffff}}, {0x8, 0x6558}}}}}}, &(0x7f0000000040)) 2018/04/30 22:52:32 executing program 1 (fault-call:2 fault-nth:37): mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0xc003, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:52:32 executing program 3: socketpair$inet6_sctp(0xa, 0x1, 0x84, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) getsockopt$inet6_buf(r0, 0x29, 0x0, &(0x7f0000000140)=""/136, &(0x7f0000000080)=0x88) syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x0, 0x0) r1 = perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r2, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) fchdir(r1) connect$inet6(r2, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x2000000}, 0x1c) syz_init_net_socket$nfc_llcp(0x27, 0x0, 0x1) 2018/04/30 22:52:32 executing program 0: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:52:32 executing program 6: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)="2e2f66696c653004", &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x1, 0x0) 2018/04/30 22:52:32 executing program 4: r0 = syz_open_dev$evdev(&(0x7f0000072fee)='/dev/input/event#\x00', 0x0, 0x0) syz_genetlink_get_family_id$team(&(0x7f00000000c0)='team\x00') read(r0, &(0x7f0000000000)=""/24, 0xb0) ioctl$EVIOCSABS0(r0, 0x401845c0, &(0x7f0000000040)={0x5, 0x7, 0x4cb7a608, 0x5, 0x3f, 0x3}) r1 = syz_open_dev$sndpcmc(&(0x7f0000000080)='/dev/snd/pcmC#D#c\x00', 0xffffffff7fffffff, 0x46100) r2 = accept$packet(r1, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, &(0x7f0000000100)=0xc2fe5c4d27596ad0) pwritev(r2, &(0x7f00000003c0)=[{&(0x7f0000000140)="bd04c622fcf0619e6b685f8b4fa72db50a3fae5e7be6cb250b7e7c", 0x1b}, {&(0x7f00000001c0)="aad678ddea6d92bbc5a914b74d3b223d2f67cf52ce72ac49212ef784b44cf0add1386860f4152dee5eefea94dcdd4d3c2391116ca7f3f0d0c28afbc770db237d072d6496bde46e5b332324ced7c6edfa6b8bc187ae669cc4f04dfb4a28d72a69296ffebd808b9284c12718ed097d6a3a0f0c636752e9598b752eb95b81ea13100b8473b7b92474aec4c716878d62ae9b1e78b23c21fb7b25154d440aafae36859d316d49b2c07906d919cd59bd4a55760d1554a1e0aa8ef725ff0b612d10794833216e8cc45ffac9bad9ba27ccbef9f42ccf43c80f1d933f0c5d71de", 0xdc}, {&(0x7f00000002c0)="9443b19aa03c5bda7e9dde711df5b3899831d3e0f5d84ed2e4568b6a0d093ce2d94d1245c68f2836bfad4be6634d39f16946a98a00b5f1bb5f0de060cc93a2fe90a4ff272b0e1ab0587bf0e1c5e3292214a05e3a575fa4d09cb0e26758bd533df1abe5ccd546df3a54662d011899e60a3741d6c317acb49ec2ff65c110b369e3bb35d3f8cd2f5c0bb029fca2d656e19959b9391907d81ec0253ba0a5745eb240532f795264c3c58bb431def78ed2d69177d3ed4dd24e278355b1fbef24514492d6cbd5bcfd2c504390d5ccc57d2a8487b6bfad484b4f2db41bef88ef3fa2c8e5e35341944565fdb6c2ef0decb8bdc6cef5ed592c8b", 0xf5}], 0x3, 0x0) 2018/04/30 22:52:32 executing program 7: r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0) ioctl$SG_SET_DEBUG(r0, 0x227e, &(0x7f0000000100)=0x1) ioctl$SG_IO(r0, 0x2287, &(0x7f00000003c0)={0x53, 0x0, 0x21, 0x0, @buffer={0x0, 0x47, &(0x7f0000000040)=""/71}, &(0x7f00000000c0)="7f2911fa31fa4f4b2f5687dbd490bd09e476cb6b139f5686379495446bcea9c334", &(0x7f00000002c0)=""/182, 0x0, 0x0, 0x0, &(0x7f0000000380)}) 2018/04/30 22:52:32 executing program 5: r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [0x0, 0x2], 0xaa}, 0x6}, 0x1c) 2018/04/30 22:52:32 executing program 7: r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0) ioctl$SG_SET_DEBUG(r0, 0x227e, &(0x7f0000000100)=0x1) ioctl$SG_IO(r0, 0x2288, &(0x7f00000003c0)={0x53, 0x0, 0x21, 0x0, @buffer={0x0, 0x47, &(0x7f0000000040)=""/71}, &(0x7f00000000c0)="7f2911fa31fa4f4b2f5687dbd490bd09e476cb6b139f5686379495446bcea9c334", &(0x7f00000002c0)=""/182, 0x0, 0x0, 0x0, &(0x7f0000000380)}) 2018/04/30 22:52:32 executing program 2: r0 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet(r0, &(0x7f0000000080)={0x2, 0x0, @loopback=0x7f000001}, 0x10) sendto$inet(r0, &(0x7f0000c95ffd), 0x0, 0x0, &(0x7f000057bff0)={0x2, 0x4e20, @multicast1=0xe0000001}, 0x10) 2018/04/30 22:52:32 executing program 6: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x1, 0x0) 2018/04/30 22:52:32 executing program 0: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:52:32 executing program 3: r0 = syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x0, 0x0) getsockname$ipx(r0, &(0x7f0000000040), &(0x7f0000000080)=0x10) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r1, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r1, &(0x7f0000000180)={0xa, 0x0, 0x4, @mcast2={0xff, 0x2, [], 0x1}, 0x2000000}, 0x1c) syz_init_net_socket$nfc_llcp(0x27, 0x0, 0x1) 2018/04/30 22:52:32 executing program 2: r0 = getpid() syz_emit_ethernet(0x1, &(0x7f0000c57000)=ANY=[@ANYBLOB="6bff"], &(0x7f0000ea3000)) pause() sendmmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)=[{&(0x7f0000000440)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000000280)=[{&(0x7f00000004c0)="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", 0xf47}], 0x1, &(0x7f0000000240)}], 0x1, 0x0) process_vm_readv(r0, &(0x7f0000001400), 0x1, &(0x7f0000000000)=[{&(0x7f0000002780)=""/204, 0xd7e1e1d24b36aac5}, {&(0x7f0000002880)=""/183, 0x9}], 0x2, 0x0) 2018/04/30 22:52:33 executing program 5: r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [0x0, 0xf5ffffff00000000], 0xaa}, 0x6}, 0x1c) 2018/04/30 22:52:33 executing program 7: r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0) ioctl$SG_SET_DEBUG(r0, 0x227e, &(0x7f0000000100)=0x1) ioctl$SG_IO(r0, 0x2270, &(0x7f00000003c0)={0x53, 0x0, 0x21, 0x0, @buffer={0x0, 0x47, &(0x7f0000000040)=""/71}, &(0x7f00000000c0)="7f2911fa31fa4f4b2f5687dbd490bd09e476cb6b139f5686379495446bcea9c334", &(0x7f00000002c0)=""/182, 0x0, 0x0, 0x0, &(0x7f0000000380)}) [ 219.848833] IPVS: ftp: loaded support on port[0] = 21 [ 220.411057] bridge0: port 1(bridge_slave_0) entered blocking state [ 220.417486] bridge0: port 1(bridge_slave_0) entered disabled state [ 220.424785] device bridge_slave_0 entered promiscuous mode [ 220.452331] bridge0: port 2(bridge_slave_1) entered blocking state [ 220.458827] bridge0: port 2(bridge_slave_1) entered disabled state [ 220.466138] device bridge_slave_1 entered promiscuous mode [ 220.492772] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 220.521222] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 220.598763] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 220.633185] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 220.758644] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 220.765819] team0: Port device team_slave_0 added [ 220.791353] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 220.798549] team0: Port device team_slave_1 added [ 220.823593] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 220.850589] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 220.876682] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 220.883807] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 220.892304] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 220.914528] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 220.921682] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 220.929843] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 221.172772] bridge0: port 2(bridge_slave_1) entered blocking state [ 221.179181] bridge0: port 2(bridge_slave_1) entered forwarding state [ 221.185848] bridge0: port 1(bridge_slave_0) entered blocking state [ 221.192220] bridge0: port 1(bridge_slave_0) entered forwarding state [ 221.199659] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 221.535504] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 222.028740] 8021q: adding VLAN 0 to HW filter on device bond0 [ 222.109436] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 222.191345] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 222.197655] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 222.205445] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 222.282634] 8021q: adding VLAN 0 to HW filter on device team0 [ 222.751769] FAULT_INJECTION: forcing a failure. [ 222.751769] name failslab, interval 1, probability 0, space 0, times 0 [ 222.763166] CPU: 1 PID: 16902 Comm: syz-executor1 Not tainted 4.17.0-rc3+ #26 [ 222.770449] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 222.779806] Call Trace: [ 222.782402] dump_stack+0x1b9/0x294 [ 222.786053] ? dump_stack_print_info.cold.2+0x52/0x52 [ 222.791257] ? __lock_acquire+0x7f5/0x5140 [ 222.795492] ? print_usage_bug+0xc0/0xc0 [ 222.799558] ? print_usage_bug+0xc0/0xc0 [ 222.803640] should_fail.cold.4+0xa/0x1a [ 222.807702] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 222.812792] ? debug_check_no_locks_freed+0x310/0x310 [ 222.817987] ? lock_downgrade+0x8e0/0x8e0 [ 222.822132] ? graph_lock+0x170/0x170 [ 222.825926] ? __lock_acquire+0x7f5/0x5140 [ 222.830159] ? __lock_acquire+0x7f5/0x5140 [ 222.834386] ? rcu_is_watching+0x85/0x140 [ 222.838525] ? find_held_lock+0x36/0x1c0 [ 222.842587] ? __lock_is_held+0xb5/0x140 [ 222.846659] ? check_same_owner+0x320/0x320 [ 222.850970] ? rcu_note_context_switch+0x710/0x710 [ 222.855892] ? __raw_spin_lock_init+0x1c/0x100 [ 222.860477] __should_failslab+0x124/0x180 [ 222.864713] should_failslab+0x9/0x14 [ 222.868517] kmem_cache_alloc+0x2af/0x760 [ 222.872655] ? find_held_lock+0x36/0x1c0 [ 222.876718] __d_alloc+0xc0/0xd30 [ 222.880169] ? shrink_dcache_for_umount+0x290/0x290 [ 222.885177] ? kasan_check_read+0x11/0x20 [ 222.889329] ? do_raw_spin_unlock+0x9e/0x2e0 [ 222.893731] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 222.898352] ? __d_lookup_done+0x5a0/0x5a0 [ 222.902598] ? kasan_check_write+0x14/0x20 [ 222.906910] ? do_raw_spin_lock+0xc1/0x200 [ 222.911140] ? _raw_spin_unlock+0x22/0x30 [ 222.915287] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 222.920824] ? hashlen_string+0x1ea/0x2f0 [ 222.924965] d_alloc+0x8e/0x370 [ 222.928237] ? current_kernel_time64+0x242/0x2f0 [ 222.932982] ? __d_alloc+0xd30/0xd30 [ 222.936688] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 222.941701] ? current_kernel_time64+0x1f4/0x2f0 [ 222.946460] d_alloc_name+0xb3/0x110 [ 222.950172] ? put_itimerspec64+0x310/0x310 [ 222.954479] ? evict_inodes+0x5f0/0x5f0 [ 222.958444] ? d_alloc+0x370/0x370 [ 222.962921] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 222.968486] fuse_ctl_add_dentry+0x84/0x440 [ 222.972799] fuse_ctl_add_conn+0x165/0x280 [ 222.977030] ? fuse_ctl_remove_conn+0x1b0/0x1b0 [ 222.981696] ? d_make_root+0x5f/0x90 [ 222.985399] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 222.990928] ? simple_fill_super+0x49d/0x600 [ 222.995335] ? fuse_ctl_add_conn+0x280/0x280 [ 222.999745] fuse_ctl_fill_super+0xf7/0x160 [ 223.004062] ? fuse_ctl_add_conn+0x280/0x280 [ 223.008476] mount_single+0xfb/0x170 [ 223.012181] fuse_ctl_mount+0x2c/0x40 [ 223.015971] mount_fs+0xae/0x328 [ 223.019335] ? mpi_free.cold.1+0x19/0x19 [ 223.023384] vfs_kern_mount.part.34+0xd4/0x4d0 [ 223.027961] ? may_umount+0xb0/0xb0 [ 223.031576] ? _raw_read_unlock+0x22/0x30 [ 223.035716] ? __get_fs_type+0x97/0xc0 [ 223.039598] do_mount+0x564/0x3070 [ 223.043139] ? lock_downgrade+0x8e0/0x8e0 [ 223.047275] ? copy_mount_string+0x40/0x40 [ 223.051516] ? check_same_owner+0x320/0x320 [ 223.055838] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 223.060853] ? __check_object_size+0x95/0x5d9 [ 223.065339] ? __might_sleep+0x95/0x190 [ 223.069303] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 223.074846] ? _copy_from_user+0xdf/0x150 [ 223.078985] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 223.084526] ? copy_mount_options+0x285/0x380 [ 223.089018] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 223.094555] ksys_mount+0x12d/0x140 [ 223.098176] __x64_sys_mount+0xbe/0x150 [ 223.102139] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 223.107146] do_syscall_64+0x1b1/0x800 [ 223.111037] ? syscall_return_slowpath+0x5c0/0x5c0 [ 223.115967] ? syscall_return_slowpath+0x30f/0x5c0 [ 223.120913] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 223.126268] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 223.131139] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 223.136343] RIP: 0033:0x455979 [ 223.139519] RSP: 002b:00007f851f80cc68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 2018/04/30 22:52:36 executing program 5: r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [0x0, 0x200000000000000], 0xaa}, 0x6}, 0x1c) 2018/04/30 22:52:36 executing program 0: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:52:36 executing program 3: r0 = syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x0, 0x0) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$TIOCGSID(r0, 0x5429, &(0x7f0000000040)) r1 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r1, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x2000000}, 0x1c) syz_init_net_socket$nfc_llcp(0x27, 0x0, 0x1) getsockopt$inet_sctp_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000080), &(0x7f0000000140)=0xb) 2018/04/30 22:52:36 executing program 6: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x1, 0x0) 2018/04/30 22:52:36 executing program 1 (fault-call:2 fault-nth:38): mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0xc003, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:52:36 executing program 7: r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0) ioctl$SG_SET_DEBUG(r0, 0x227e, &(0x7f0000000100)=0x1) ioctl$SG_IO(r0, 0x2285, &(0x7f00000003c0)={0x53, 0x5d00000000000000, 0x21, 0x0, @buffer={0x0, 0x47, &(0x7f0000000040)=""/71}, &(0x7f00000000c0)="7f2911fa31fa4f4b2f5687dbd490bd09e476cb6b139f5686379495446bcea9c334", &(0x7f00000002c0)=""/182, 0x0, 0x0, 0x0, &(0x7f0000000380)}) 2018/04/30 22:52:36 executing program 4: r0 = syz_open_dev$evdev(&(0x7f0000072fee)='/dev/input/event#\x00', 0x0, 0x0) r1 = dup(r0) setsockopt$inet_sctp6_SCTP_FRAGMENT_INTERLEAVE(r1, 0x84, 0x12, &(0x7f0000000000)=0x8001, 0x4) read(r0, &(0x7f000006b000)=""/24, 0x18) r2 = semget(0x1, 0x7, 0x40) semctl$IPC_STAT(r2, 0x0, 0x2, &(0x7f0000000140)=""/233) 2018/04/30 22:52:36 executing program 2: r0 = getpid() r1 = creat(&(0x7f0000000140)='./file0\x00', 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000c47fec)={0x0, 0x0, 0x0, 0x10001, 0x0, r1}, 0x2c) pause() sendmmsg$unix(0xffffffffffffffff, &(0x7f0000005e00)=[{&(0x7f0000000440)=@abs, 0x6e, &(0x7f00000016c0)=[{&(0x7f00000004c0)="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", 0xf47}], 0x1, &(0x7f0000001700)}], 0x1, 0x0) process_vm_readv(r0, &(0x7f0000001400), 0x1, &(0x7f0000000000)=[{&(0x7f0000000040)=""/204, 0xd7e1e1d24b36aac5}, {&(0x7f0000002880)=""/183, 0x3d1}], 0x2, 0x0) [ 223.147217] RAX: ffffffffffffffda RBX: 00007f851f80d6d4 RCX: 0000000000455979 [ 223.154479] RDX: 0000000020000100 RSI: 0000000020000080 RDI: 0000000020000040 [ 223.161735] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 223.168993] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000014 [ 223.176256] R13: 0000000000000440 R14: 00000000006fa6a0 R15: 0000000000000025 2018/04/30 22:52:36 executing program 5: r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0xf5ffffff], 0xaa}, 0x6}, 0x1c) 2018/04/30 22:52:36 executing program 0: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:52:36 executing program 7: r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0) ioctl$SG_SET_DEBUG(r0, 0x227e, &(0x7f0000000100)=0x1) ioctl$SG_IO(r0, 0x2285, &(0x7f00000003c0)={0x53, 0x3e100000, 0x21, 0x0, @buffer={0x0, 0x47, &(0x7f0000000040)=""/71}, &(0x7f00000000c0)="7f2911fa31fa4f4b2f5687dbd490bd09e476cb6b139f5686379495446bcea9c334", &(0x7f00000002c0)=""/182, 0x0, 0x0, 0x0, &(0x7f0000000380)}) 2018/04/30 22:52:36 executing program 6: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x1, 0x0) 2018/04/30 22:52:36 executing program 3: pipe(&(0x7f00007e8ff8)={0x0, 0x0}) fcntl$setpipe(r1, 0x407, 0x0) pipe2(&(0x7f0000140ff8)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) tee(r2, r1, 0x1ff, 0x0) write$cgroup_int(r1, &(0x7f0000000000)=ANY=[@ANYBLOB='\x00'], 0x1) vmsplice(r3, &(0x7f0000f14000)=[{&(0x7f0000853fde)="8d", 0x1}], 0x1, 0x0) write$cgroup_int(r1, &(0x7f0000000080)={[0x0]}, 0x1) readv(r0, &(0x7f0000401fb0)=[{&(0x7f0000615fbd)=""/67, 0x43}], 0x1) r4 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000040)='/dev/cuse\x00', 0xc39c10e63cc06f77, 0x0) ioctl$VHOST_RESET_OWNER(r4, 0xaf02, 0x0) r5 = syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x0, 0x0) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$ASHMEM_GET_NAME(r4, 0x81007702, &(0x7f0000000080)=""/34) r6 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r6, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) fstat(r6, &(0x7f0000000140)) connect$inet6(r6, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x2000000}, 0x1c) accept$netrom(r5, &(0x7f0000000280), &(0x7f00000002c0)=0x10) syz_init_net_socket$nfc_llcp(0x27, 0x0, 0x1) ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r5, 0x402c5342, &(0x7f0000000200)={0x410, 0x1, 0x845, {}, 0x8, 0x5}) fcntl$setsig(r4, 0xa, 0x10) ioctl$KDSKBMODE(r5, 0x4b45, &(0x7f00000001c0)=0x8) 2018/04/30 22:52:36 executing program 5: r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0xfffffff5], 0xaa}, 0x6}, 0x1c) 2018/04/30 22:52:36 executing program 0: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)="2e2f66696c653004", &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) [ 223.492375] device bridge_slave_1 left promiscuous mode [ 223.498101] bridge0: port 2(bridge_slave_1) entered disabled state [ 223.533708] device bridge_slave_0 left promiscuous mode [ 223.539421] bridge0: port 1(bridge_slave_0) entered disabled state [ 223.581158] team0 (unregistering): Port device team_slave_1 removed [ 223.591433] team0 (unregistering): Port device team_slave_0 removed [ 223.603375] bond0 (unregistering): Releasing backup interface bond_slave_1 [ 223.620630] bond0 (unregistering): Releasing backup interface bond_slave_0 [ 223.649265] bond0 (unregistering): Released all slaves 2018/04/30 22:52:37 executing program 7: r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0) ioctl$SG_SET_DEBUG(r0, 0x227e, &(0x7f0000000100)=0x1) ioctl$SG_IO(r0, 0x2285, &(0x7f00000003c0)={0x53, 0xfeffffff, 0x21, 0x0, @buffer={0x0, 0x47, &(0x7f0000000040)=""/71}, &(0x7f00000000c0)="7f2911fa31fa4f4b2f5687dbd490bd09e476cb6b139f5686379495446bcea9c334", &(0x7f00000002c0)=""/182, 0x0, 0x0, 0x0, &(0x7f0000000380)}) 2018/04/30 22:52:37 executing program 1 (fault-call:2 fault-nth:39): mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0xc003, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:52:37 executing program 6: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x1, 0x0) 2018/04/30 22:52:37 executing program 5: r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x2], 0xaa}, 0x6}, 0x1c) 2018/04/30 22:52:37 executing program 0: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:52:37 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0) ioctl$SG_SET_DEBUG(r0, 0x227e, &(0x7f0000000100)=0x1) ioctl$SG_IO(r0, 0x2287, &(0x7f00000003c0)={0x53, 0x0, 0x21, 0x0, @buffer={0x0, 0x47, &(0x7f0000000040)=""/71}, &(0x7f00000000c0)="7f2911fa31fa4f4b2f5687dbd490bd09e476cb6b139f5686379495446bcea9c334", &(0x7f00000002c0)=""/182, 0x0, 0x0, 0x0, &(0x7f0000000380)}) 2018/04/30 22:52:37 executing program 3: r0 = syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x0, 0x0) getsockopt$bt_BT_SECURITY(r0, 0x112, 0x4, &(0x7f0000000040), 0x2) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r1, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0xffffffffffffffff, @mcast1={0xff, 0x1, [], 0x1}, 0x2000000}, 0x1c) syz_init_net_socket$nfc_llcp(0x27, 0x0, 0x1) 2018/04/30 22:52:37 executing program 4: r0 = syz_open_dev$evdev(&(0x7f0000072fee)='/dev/input/event#\x00', 0x0, 0x0) read(r0, &(0x7f000006b000)=""/24, 0x18) getsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, &(0x7f0000000140), &(0x7f0000000180)=0x8) ioctl$EVIOCGNAME(r0, 0x80404506, &(0x7f0000000000)=""/222) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_PREFER_SUBDEVICE(r0, 0x40045542, &(0x7f0000000100)=0x1) 2018/04/30 22:52:37 executing program 5: r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0xf5ffffff00000000], 0xaa}, 0x6}, 0x1c) 2018/04/30 22:52:37 executing program 2: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)="2e2f66696c6530ff", &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x1, 0x0) 2018/04/30 22:52:37 executing program 0: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:52:37 executing program 7: r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0) ioctl$SG_SET_DEBUG(r0, 0x227e, &(0x7f0000000100)=0x1) ioctl$SG_IO(r0, 0x2285, &(0x7f00000003c0)={0x53, 0x8, 0x21, 0x0, @buffer={0x0, 0x47, &(0x7f0000000040)=""/71}, &(0x7f00000000c0)="7f2911fa31fa4f4b2f5687dbd490bd09e476cb6b139f5686379495446bcea9c334", &(0x7f00000002c0)=""/182, 0x0, 0x0, 0x0, &(0x7f0000000380)}) 2018/04/30 22:52:37 executing program 5: r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x200000000000000], 0xaa}, 0x6}, 0x1c) 2018/04/30 22:52:37 executing program 6: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\n', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x1, 0x0) 2018/04/30 22:52:37 executing program 2: r0 = syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x0, 0x0) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r1, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x2000000}, 0x1c) r2 = syz_init_net_socket$nfc_llcp(0x27, 0x0, 0x1) ioctl$BLKPBSZGET(r0, 0x127b, &(0x7f00000002c0)) r3 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snapshot\x00', 0x0, 0x0) getsockopt$inet_sctp6_SCTP_GET_ASSOC_STATS(r0, 0x84, 0x70, &(0x7f0000000140)={0x0, @in6={{0xa, 0x4e21, 0x9, @ipv4={[], [0xff, 0xff], @rand_addr=0x3d26e289}, 0x6}}, [0x1, 0x100000001, 0x0, 0x7f, 0x5, 0x1, 0x4, 0x2, 0x20000000000, 0x7, 0x81, 0x5, 0x20, 0x9c0f, 0xb82d]}, &(0x7f0000000080)=0x100) ioctl$ifreq_SIOCGIFINDEX_team(r2, 0x8933, &(0x7f0000000500)={'team0\x00', 0x0}) sendto$packet(r0, &(0x7f0000000300)="163c15c0240dc4657d7dbedda1074f418918b3c086eca0b1d257d1c4d592491209f376b0bacf661c0e69", 0x2a, 0x800, &(0x7f0000000540)={0x11, 0xf6, r5, 0x1, 0x20, 0x6, @broadcast=[0xff, 0xff, 0xff, 0xff, 0xff, 0xff]}, 0x14) getsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r3, 0x84, 0x76, &(0x7f0000000240)={r4, 0x9}, &(0x7f0000000280)=0x8) 2018/04/30 22:52:37 executing program 3: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x2000000}, 0x1c) syz_init_net_socket$nfc_llcp(0x27, 0x0, 0x1) 2018/04/30 22:52:37 executing program 0: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) [ 224.773765] IPVS: ftp: loaded support on port[0] = 21 [ 225.251490] bridge0: port 1(bridge_slave_0) entered blocking state [ 225.257892] bridge0: port 1(bridge_slave_0) entered disabled state [ 225.265955] device bridge_slave_0 entered promiscuous mode [ 225.293093] bridge0: port 2(bridge_slave_1) entered blocking state [ 225.299566] bridge0: port 2(bridge_slave_1) entered disabled state [ 225.306750] device bridge_slave_1 entered promiscuous mode [ 225.332816] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 225.359575] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 225.436569] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 225.471712] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 225.579615] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 225.586748] team0: Port device team_slave_0 added [ 225.610309] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 225.617483] team0: Port device team_slave_1 added [ 225.641424] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 225.669323] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 225.696199] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 225.703335] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 225.711866] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 225.731581] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 225.738688] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 225.747182] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 225.972853] bridge0: port 2(bridge_slave_1) entered blocking state [ 225.979380] bridge0: port 2(bridge_slave_1) entered forwarding state [ 225.986170] bridge0: port 1(bridge_slave_0) entered blocking state [ 225.992546] bridge0: port 1(bridge_slave_0) entered forwarding state [ 225.999827] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 226.401331] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 226.827294] 8021q: adding VLAN 0 to HW filter on device bond0 [ 226.908488] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 226.989795] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 226.996093] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 227.003253] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 227.079391] 8021q: adding VLAN 0 to HW filter on device team0 [ 227.550508] FAULT_INJECTION: forcing a failure. [ 227.550508] name failslab, interval 1, probability 0, space 0, times 0 [ 227.561831] CPU: 0 PID: 17281 Comm: syz-executor1 Not tainted 4.17.0-rc3+ #26 [ 227.569099] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 227.578447] Call Trace: [ 227.581042] dump_stack+0x1b9/0x294 [ 227.584676] ? dump_stack_print_info.cold.2+0x52/0x52 [ 227.589872] ? __lock_acquire+0x7f5/0x5140 [ 227.594106] ? print_usage_bug+0xc0/0xc0 [ 227.598165] ? print_usage_bug+0xc0/0xc0 [ 227.602227] should_fail.cold.4+0xa/0x1a [ 227.606284] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 227.611383] ? debug_check_no_locks_freed+0x310/0x310 [ 227.616569] ? lock_downgrade+0x8e0/0x8e0 [ 227.620713] ? graph_lock+0x170/0x170 [ 227.624528] ? __lock_acquire+0x7f5/0x5140 [ 227.628754] ? __lock_acquire+0x7f5/0x5140 [ 227.632977] ? rcu_is_watching+0x85/0x140 [ 227.637125] ? find_held_lock+0x36/0x1c0 [ 227.641199] ? __lock_is_held+0xb5/0x140 [ 227.645273] ? check_same_owner+0x320/0x320 [ 227.649607] ? rcu_note_context_switch+0x710/0x710 [ 227.654536] ? __raw_spin_lock_init+0x1c/0x100 [ 227.659125] __should_failslab+0x124/0x180 [ 227.663355] should_failslab+0x9/0x14 [ 227.667154] kmem_cache_alloc+0x2af/0x760 [ 227.671308] ? find_held_lock+0x36/0x1c0 [ 227.675371] __d_alloc+0xc0/0xd30 [ 227.678818] ? shrink_dcache_for_umount+0x290/0x290 [ 227.683839] ? kasan_check_read+0x11/0x20 [ 227.687986] ? do_raw_spin_unlock+0x9e/0x2e0 [ 227.692394] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 227.696969] ? __d_lookup_done+0x5a0/0x5a0 [ 227.701194] ? kasan_check_write+0x14/0x20 [ 227.705420] ? do_raw_spin_lock+0xc1/0x200 [ 227.709647] ? _raw_spin_unlock+0x22/0x30 [ 227.713791] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 227.719319] ? hashlen_string+0x1ea/0x2f0 [ 227.723460] d_alloc+0x8e/0x370 [ 227.726741] ? current_kernel_time64+0x242/0x2f0 [ 227.731497] ? __d_alloc+0xd30/0xd30 [ 227.735203] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 227.740217] ? current_kernel_time64+0x1f4/0x2f0 [ 227.744982] d_alloc_name+0xb3/0x110 [ 227.748692] ? put_itimerspec64+0x310/0x310 [ 227.753010] ? evict_inodes+0x5f0/0x5f0 [ 227.756986] ? d_alloc+0x370/0x370 [ 227.760528] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 227.766071] fuse_ctl_add_dentry+0x84/0x440 [ 227.770390] fuse_ctl_add_conn+0x199/0x280 [ 227.774620] ? fuse_ctl_remove_conn+0x1b0/0x1b0 [ 227.779279] ? d_make_root+0x5f/0x90 [ 227.782985] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 227.788513] ? simple_fill_super+0x49d/0x600 [ 227.792911] ? fuse_ctl_add_conn+0x280/0x280 [ 227.797309] fuse_ctl_fill_super+0xf7/0x160 [ 227.801654] ? fuse_ctl_add_conn+0x280/0x280 [ 227.806061] mount_single+0xfb/0x170 [ 227.809790] fuse_ctl_mount+0x2c/0x40 [ 227.813584] mount_fs+0xae/0x328 [ 227.816940] ? mpi_free.cold.1+0x19/0x19 [ 227.821079] vfs_kern_mount.part.34+0xd4/0x4d0 [ 227.825651] ? may_umount+0xb0/0xb0 [ 227.829268] ? _raw_read_unlock+0x22/0x30 [ 227.833404] ? __get_fs_type+0x97/0xc0 [ 227.837304] do_mount+0x564/0x3070 [ 227.840831] ? lock_downgrade+0x8e0/0x8e0 [ 227.844981] ? copy_mount_string+0x40/0x40 [ 227.849221] ? check_same_owner+0x320/0x320 [ 227.853535] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 227.858561] ? __check_object_size+0x95/0x5d9 [ 227.863064] ? __might_sleep+0x95/0x190 [ 227.867046] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 227.872583] ? _copy_from_user+0xdf/0x150 [ 227.876735] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 227.882262] ? copy_mount_options+0x285/0x380 [ 227.886760] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 227.892290] ksys_mount+0x12d/0x140 [ 227.895908] __x64_sys_mount+0xbe/0x150 [ 227.899871] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 227.904881] do_syscall_64+0x1b1/0x800 [ 227.908760] ? syscall_return_slowpath+0x5c0/0x5c0 [ 227.913684] ? syscall_return_slowpath+0x30f/0x5c0 [ 227.918697] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 227.924073] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 227.928931] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 227.934126] RIP: 0033:0x455979 [ 227.937307] RSP: 002b:00007f8749786c68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 227.945029] RAX: ffffffffffffffda RBX: 00007f87497876d4 RCX: 0000000000455979 2018/04/30 22:52:41 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0) ioctl$SG_SET_DEBUG(r0, 0x227e, &(0x7f0000000100)=0x1) ioctl$SG_IO(r0, 0x227d, &(0x7f00000003c0)={0x53, 0x0, 0x21, 0x0, @buffer={0x0, 0x47, &(0x7f0000000040)=""/71}, &(0x7f00000000c0)="7f2911fa31fa4f4b2f5687dbd490bd09e476cb6b139f5686379495446bcea9c334", &(0x7f00000002c0)=""/182, 0x0, 0x0, 0x0, &(0x7f0000000380)}) 2018/04/30 22:52:41 executing program 5: r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x2000000], 0xaa}, 0x6}, 0x1c) 2018/04/30 22:52:41 executing program 6: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)="2e2f66696c653003", &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x1, 0x0) 2018/04/30 22:52:41 executing program 7: r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0) ioctl$SG_SET_DEBUG(r0, 0x227e, &(0x7f0000000100)=0x1) ioctl$SG_IO(r0, 0x2285, &(0x7f00000003c0)={0x53, 0x7000000000000000, 0x21, 0x0, @buffer={0x0, 0x47, &(0x7f0000000040)=""/71}, &(0x7f00000000c0)="7f2911fa31fa4f4b2f5687dbd490bd09e476cb6b139f5686379495446bcea9c334", &(0x7f00000002c0)=""/182, 0x0, 0x0, 0x0, &(0x7f0000000380)}) 2018/04/30 22:52:41 executing program 0: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:52:41 executing program 1 (fault-call:2 fault-nth:40): mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0xc003, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:52:41 executing program 3: r0 = syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x0, 0x0) epoll_create1(0x80000) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) ioctl$DRM_IOCTL_FREE_BUFS(r0, 0x4010641a, &(0x7f0000000180)={0x3, &(0x7f0000000140)=[0x101, 0x4d52, 0x6]}) connect$inet6(r1, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x2000000}, 0x1c) syz_init_net_socket$nfc_llcp(0x27, 0x0, 0x1) r2 = msgget$private(0x0, 0x210) ioctl$UFFDIO_WAKE(r0, 0x8010aa02, &(0x7f0000000080)={&(0x7f0000ffe000/0x2000)=nil, 0x2000}) msgctl$IPC_STAT(r2, 0x2, &(0x7f0000000040)=""/52) 2018/04/30 22:52:41 executing program 4: r0 = syz_open_dev$evdev(&(0x7f0000072fee)='/dev/input/event#\x00', 0x0, 0x0) r1 = syz_open_dev$sndpcmp(&(0x7f0000000000)='/dev/snd/pcmC#D#p\x00', 0x2, 0x4000c0) ioctl$KDSKBSENT(r1, 0x4b49, &(0x7f0000000080)="d41fbdfb18328c42569744ac93ed088122c810a601aff1e02fab06cbdbbf39dc17a0dc491f321ff25fa4fc974f5641381ec6473aa7d9df0172cce4") read(r0, &(0x7f000006b000)=""/24, 0x18) [ 227.952295] RDX: 0000000020000100 RSI: 0000000020000080 RDI: 0000000020000040 [ 227.959564] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 227.966837] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000014 [ 227.974102] R13: 0000000000000440 R14: 00000000006fa6a0 R15: 0000000000000027 2018/04/30 22:52:41 executing program 7: r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0) ioctl$SG_SET_DEBUG(r0, 0x227e, &(0x7f0000000100)=0x1) ioctl$SG_IO(r0, 0x2285, &(0x7f00000003c0)={0x53, 0x4700000000000000, 0x21, 0x0, @buffer={0x0, 0x47, &(0x7f0000000040)=""/71}, &(0x7f00000000c0)="7f2911fa31fa4f4b2f5687dbd490bd09e476cb6b139f5686379495446bcea9c334", &(0x7f00000002c0)=""/182, 0x0, 0x0, 0x0, &(0x7f0000000380)}) 2018/04/30 22:52:41 executing program 5: r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0xfffffff5], 0xaa}, 0x6}, 0x1c) 2018/04/30 22:52:41 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0) ioctl$SG_SET_DEBUG(r0, 0x227e, &(0x7f0000000100)=0x1) ioctl$SG_IO(r0, 0x227d, &(0x7f00000003c0)={0x53, 0x0, 0x21, 0x0, @buffer={0x0, 0x47, &(0x7f0000000040)=""/71}, &(0x7f00000000c0)="7f2911fa31fa4f4b2f5687dbd490bd09e476cb6b139f5686379495446bcea9c334", &(0x7f00000002c0)=""/182, 0x0, 0x0, 0x0, &(0x7f0000000380)}) 2018/04/30 22:52:41 executing program 6: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x1, 0x0) 2018/04/30 22:52:41 executing program 0: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:52:41 executing program 3: syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x0, 0x0) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x2000000}, 0x1c) ioctl$KVM_ASSIGN_DEV_IRQ(r0, 0x4040ae70, &(0x7f0000000040)={0x2456, 0x8, 0xffffffffffff67f2}) munlockall() syz_init_net_socket$nfc_llcp(0x27, 0x3, 0x1) 2018/04/30 22:52:41 executing program 5: r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x2], 0xaa}, 0x6}, 0x1c) [ 228.355548] device bridge_slave_1 left promiscuous mode [ 228.361383] bridge0: port 2(bridge_slave_1) entered disabled state [ 228.390950] device bridge_slave_0 left promiscuous mode [ 228.396579] bridge0: port 1(bridge_slave_0) entered disabled state [ 228.427533] team0 (unregistering): Port device team_slave_1 removed [ 228.437800] team0 (unregistering): Port device team_slave_0 removed [ 228.449511] bond0 (unregistering): Releasing backup interface bond_slave_1 [ 228.463336] bond0 (unregistering): Releasing backup interface bond_slave_0 [ 228.490890] bond0 (unregistering): Released all slaves 2018/04/30 22:52:42 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0) ioctl$SG_SET_DEBUG(r0, 0x227e, &(0x7f0000000100)=0x1) ioctl$SG_IO(r0, 0x227d, &(0x7f00000003c0)={0x53, 0x0, 0x21, 0x0, @buffer={0x0, 0x47, &(0x7f0000000040)=""/71}, &(0x7f00000000c0)="7f2911fa31fa4f4b2f5687dbd490bd09e476cb6b139f5686379495446bcea9c334", &(0x7f00000002c0)=""/182, 0x0, 0x0, 0x0, &(0x7f0000000380)}) 2018/04/30 22:52:42 executing program 7: r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0) ioctl$SG_SET_DEBUG(r0, 0x227e, &(0x7f0000000100)=0x1) ioctl$SG_IO(r0, 0x2285, &(0x7f00000003c0)={0x53, 0x2000000, 0x21, 0x0, @buffer={0x0, 0x47, &(0x7f0000000040)=""/71}, &(0x7f00000000c0)="7f2911fa31fa4f4b2f5687dbd490bd09e476cb6b139f5686379495446bcea9c334", &(0x7f00000002c0)=""/182, 0x0, 0x0, 0x0, &(0x7f0000000380)}) 2018/04/30 22:52:42 executing program 0: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:52:42 executing program 1 (fault-call:2 fault-nth:41): mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0xc003, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:52:42 executing program 5: r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0xf5ffffff00000000], 0xaa}, 0x6}, 0x1c) 2018/04/30 22:52:42 executing program 6: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x1, 0x0) 2018/04/30 22:52:42 executing program 4: r0 = syz_open_dev$evdev(&(0x7f0000072fee)='/dev/input/event#\x00', 0x6, 0x0) read(r0, &(0x7f000006b000)=""/24, 0x18) 2018/04/30 22:52:42 executing program 3: r0 = syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x0, 0x0) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r1, &(0x7f000000d000)={0xa, 0x4e21, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x2000000}, 0x1c) syz_init_net_socket$nfc_llcp(0x27, 0x6, 0x1) getsockopt$inet_udp_int(r0, 0x11, 0x1, &(0x7f0000000180), &(0x7f00000001c0)=0x4) getsockopt$inet_sctp6_SCTP_PR_SUPPORTED(r0, 0x84, 0x71, &(0x7f0000000040)={0x0, 0x6}, &(0x7f0000000080)=0x8) setsockopt$inet_sctp6_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f0000000140)={r2, 0x91}, 0x8) 2018/04/30 22:52:42 executing program 5: r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x200000000000000], 0xaa}, 0x6}, 0x1c) 2018/04/30 22:52:42 executing program 4: r0 = accept4$ipx(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000040)=0x10, 0x80800) recvfrom$ipx(r0, &(0x7f0000000080)=""/38, 0x26, 0x0, &(0x7f00000000c0)={0x4, 0x6, 0x0, "92f67cdfd05a", 0x8}, 0x10) r1 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x2, r1) r2 = syz_open_dev$evdev(&(0x7f0000072fee)='/dev/input/event#\x00', 0x1000000000000, 0xfffffffffffffffd) pipe2(&(0x7f0000000100)={0xffffffffffffffff}, 0x80800) ioctl$KVM_SET_TSC_KHZ(r3, 0xaea2, 0x0) read(r2, &(0x7f000006b000)=""/24, 0x18) 2018/04/30 22:52:42 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0) ioctl$SG_IO(r0, 0x227d, &(0x7f00000003c0)={0x53, 0x0, 0x21, 0x0, @buffer={0x0, 0x47, &(0x7f0000000040)=""/71}, &(0x7f00000000c0)="7f2911fa31fa4f4b2f5687dbd490bd09e476cb6b139f5686379495446bcea9c334", &(0x7f00000002c0)=""/182, 0x0, 0x0, 0x0, &(0x7f0000000380)}) 2018/04/30 22:52:42 executing program 7: r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0) ioctl$SG_SET_DEBUG(r0, 0x227e, &(0x7f0000000100)=0x1) ioctl$SG_IO(r0, 0x2285, &(0x7f00000003c0)={0x53, 0xaa, 0x21, 0x0, @buffer={0x0, 0x47, &(0x7f0000000040)=""/71}, &(0x7f00000000c0)="7f2911fa31fa4f4b2f5687dbd490bd09e476cb6b139f5686379495446bcea9c334", &(0x7f00000002c0)=""/182, 0x0, 0x0, 0x0, &(0x7f0000000380)}) 2018/04/30 22:52:42 executing program 6: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x1, 0x0) 2018/04/30 22:52:42 executing program 0: mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_fuse_mount(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fusectl\x00', 0x0, 0x0) 2018/04/30 22:52:42 executing program 3: syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x0, 0x0) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x80000, 0x0) connect$inet6(r0, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x2000000}, 0x1c) syz_init_net_socket$nfc_llcp(0x27, 0x0, 0x1) 2018/04/30 22:52:42 executing program 2: ioctl$SG_IO(0xffffffffffffffff, 0x227d, &(0x7f00000003c0)={0x53, 0x0, 0x21, 0x0, @buffer={0x0, 0x47, &(0x7f0000000040)=""/71}, &(0x7f00000000c0)="7f2911fa31fa4f4b2f5687dbd490bd09e476cb6b139f5686379495446bcea9c334", &(0x7f00000002c0)=""/182, 0x0, 0x0, 0x0, &(0x7f0000000380)}) 2018/04/30 22:52:42 executing program 5: r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f000000d000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x6}, 0x1c) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0xf5ffffff], 0xaa}, 0x6}, 0x1c) [ 229.525155] IPVS: ftp: loaded support on port[0] = 21 [ 229.981689] bridge0: port 1(bridge_slave_0) entered blocking state [ 229.988107] bridge0: port 1(bridge_slave_0) entered disabled state [ 229.995324] device bridge_slave_0 entered promiscuous mode [ 230.020214] bridge0: port 2(bridge_slave_1) entered blocking state [ 230.026649] bridge0: port 2(bridge_slave_1) entered disabled state [ 230.033773] device bridge_slave_1 entered promiscuous mode [ 230.058993] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 230.084179] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 230.153704] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 230.182114] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 230.208868] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 230.215791] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 230.241278] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 230.248193] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 230.316894] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 230.324102] team0: Port device team_slave_0 added [ 230.348681] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 230.355837] team0: Port device team_slave_1 added [ 230.380115] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 230.406417] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 230.432356] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 230.439475] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 230.447894] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 230.468101] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 230.475237] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 230.483671] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 230.707079] bridge0: port 2(bridge_slave_1) entered blocking state [ 230.713472] bridge0: port 2(bridge_slave_1) entered forwarding state [ 230.720169] bridge0: port 1(bridge_slave_0) entered blocking state [ 230.726557] bridge0: port 1(bridge_slave_0) entered forwarding state [ 230.733845] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 231.199305] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 231.568957] 8021q: adding VLAN 0 to HW filter on device bond0 [ 231.650589] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 231.732314] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 231.738518] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 231.746142] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 231.823351] 8021q: adding VLAN 0 to HW filter on device team0 [ 232.300455] FAULT_INJECTION: forcing a failure. [ 232.300455] name failslab, interval 1, probability 0, space 0, times 0 [ 232.311741] CPU: 0 PID: 17660 Comm: syz-executor1 Not tainted 4.17.0-rc3+ #26 [ 232.319014] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 232.328377] Call Trace: [ 232.330961] dump_stack+0x1b9/0x294 [ 232.334595] ? dump_stack_print_info.cold.2+0x52/0x52 [ 232.339815] should_fail.cold.4+0xa/0x1a [ 232.343871] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 232.348980] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 232.354110] ? __lockdep_init_map+0x105/0x590 [ 232.358598] ? graph_lock+0x170/0x170 [ 232.362389] ? d_set_d_op+0x31d/0x410 [ 232.366183] ? find_held_lock+0x36/0x1c0 [ 232.370248] ? __lock_is_held+0xb5/0x140 [ 232.374307] ? check_same_owner+0x320/0x320 [ 232.378618] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 232.383381] ? rcu_note_context_switch+0x710/0x710 [ 232.388318] ? kasan_check_write+0x14/0x20 [ 232.392549] __should_failslab+0x124/0x180 [ 232.396787] should_failslab+0x9/0x14 [ 232.400589] kmem_cache_alloc+0x2af/0x760 [ 232.404729] ? __d_alloc+0xd30/0xd30 [ 232.408443] alloc_inode+0xb2/0x190 [ 232.412084] new_inode_pseudo+0x69/0x1a0 [ 232.416157] ? prune_icache_sb+0x1a0/0x1a0 [ 232.420383] ? d_alloc+0x370/0x370 [ 232.423915] new_inode+0x1c/0x40 [ 232.427276] fuse_ctl_add_dentry+0xff/0x440 [ 232.431603] fuse_ctl_add_conn+0x1cd/0x280 [ 232.435828] ? fuse_ctl_remove_conn+0x1b0/0x1b0 [ 232.440487] ? d_make_root+0x5f/0x90 [ 232.444205] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 232.449734] ? simple_fill_super+0x49d/0x600 [ 232.454136] ? fuse_ctl_add_conn+0x280/0x280 [ 232.458532] fuse_ctl_fill_super+0xf7/0x160 [ 232.462853] ? fuse_ctl_add_conn+0x280/0x280 [ 232.467250] mount_single+0xfb/0x170 [ 232.470963] fuse_ctl_mount+0x2c/0x40 [ 232.474753] mount_fs+0xae/0x328 [ 232.478109] ? mpi_free.cold.1+0x19/0x19 [ 232.482176] vfs_kern_mount.part.34+0xd4/0x4d0 [ 232.486751] ? may_umount+0xb0/0xb0 [ 232.490369] ? _raw_read_unlock+0x22/0x30 [ 232.494504] ? __get_fs_type+0x97/0xc0 [ 232.498388] do_mount+0x564/0x3070 [ 232.501926] ? lock_downgrade+0x8e0/0x8e0 [ 232.506074] ? copy_mount_string+0x40/0x40 [ 232.510294] ? check_same_owner+0x320/0x320 [ 232.514603] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 232.519616] ? __check_object_size+0x95/0x5d9 [ 232.524101] ? __might_sleep+0x95/0x190 [ 232.528078] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 232.533604] ? _copy_from_user+0xdf/0x150 [ 232.537740] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 232.543279] ? copy_mount_options+0x285/0x380 [ 232.547780] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 232.553315] ksys_mount+0x12d/0x140 [ 232.556931] __x64_sys_mount+0xbe/0x150 [ 232.560892] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 232.565897] do_syscall_64+0x1b1/0x800 [ 232.569773] ? syscall_return_slowpath+0x5c0/0x5c0 [ 232.574690] ? syscall_return_slowpath+0x30f/0x5c0 [ 232.579612] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 232.584971] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 232.589802] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 232.595009] RIP: 0033:0x455979 [ 232.598203] RSP: 002b:00007fb985501c68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 232.605915] RAX: ffffffffffffffda RBX: 00007fb9855026d4 RCX: 0000000000455979 [ 232.613177] RDX: 0000000020000100 RSI: 0000000020000080 RDI: 0000000020000040 [ 232.620450] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 232.627714] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000014 [ 232.634972] R13: 0000000000000440 R14: 00000000006fa6a0 R15: 0000000000000029 [ 232.642718] kasan: CONFIG_KASAN_INLINE enabled [ 232.647578] kasan: GPF could be caused by NULL-ptr deref or user memory access [ 232.654993] general protection fault: 0000 [#1] SMP KASAN [ 232.660552] Dumping ftrace buffer: [ 232.664081] (ftrace buffer empty) [ 232.667771] Modules linked in: [ 232.670953] CPU: 0 PID: 17660 Comm: syz-executor1 Not tainted 4.17.0-rc3+ #26 [ 232.678212] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 232.687563] RIP: 0010:fuse_ctl_remove_conn+0xc8/0x1b0 [ 232.692734] RSP: 0018:ffff88018a507968 EFLAGS: 00010202 [ 232.698082] RAX: 0000000000000075 RBX: ffff8801ce4e3b40 RCX: ffffc900054bb000 [ 232.705423] RDX: 0000000000040000 RSI: ffffffff82646d5a RDI: 00000000000003a8 [ 232.712688] RBP: ffff88018a507990 R08: ffff8801ae166340 R09: ffffed003b5c46c2 [ 232.719966] R10: ffffed003b5c46c2 R11: ffff8801dae23613 R12: 0000000000000003 [ 232.727233] R13: ffff8801cae64fa0 R14: dffffc0000000000 R15: 0000000000000000 [ 232.734494] FS: 00007fb985502700(0000) GS:ffff8801dae00000(0000) knlGS:0000000000000000 [ 232.742729] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 232.748612] CR2: 0000001b2bc23000 CR3: 00000001908f5000 CR4: 00000000001406f0 [ 232.755881] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 232.763137] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 232.770399] Call Trace: [ 232.772983] fuse_ctl_add_conn+0x261/0x280 [ 232.777211] ? fuse_ctl_remove_conn+0x1b0/0x1b0 [ 232.781867] ? d_make_root+0x5f/0x90 [ 232.785571] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 232.791105] ? simple_fill_super+0x49d/0x600 [ 232.795503] ? fuse_ctl_add_conn+0x280/0x280 [ 232.799901] fuse_ctl_fill_super+0xf7/0x160 [ 232.804297] ? fuse_ctl_add_conn+0x280/0x280 [ 232.808691] mount_single+0xfb/0x170 [ 232.812400] fuse_ctl_mount+0x2c/0x40 [ 232.816198] mount_fs+0xae/0x328 [ 232.819555] ? mpi_free.cold.1+0x19/0x19 [ 232.823604] vfs_kern_mount.part.34+0xd4/0x4d0 [ 232.828171] ? may_umount+0xb0/0xb0 [ 232.831785] ? _raw_read_unlock+0x22/0x30 [ 232.835929] ? __get_fs_type+0x97/0xc0 [ 232.839806] do_mount+0x564/0x3070 [ 232.843334] ? lock_downgrade+0x8e0/0x8e0 [ 232.847466] ? copy_mount_string+0x40/0x40 [ 232.851694] ? check_same_owner+0x320/0x320 [ 232.856015] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 232.861037] ? __check_object_size+0x95/0x5d9 [ 232.865530] ? __might_sleep+0x95/0x190 [ 232.869503] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 232.875127] ? _copy_from_user+0xdf/0x150 [ 232.879273] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 232.884797] ? copy_mount_options+0x285/0x380 [ 232.889286] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 232.894812] ksys_mount+0x12d/0x140 [ 232.898429] __x64_sys_mount+0xbe/0x150 [ 232.902398] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 232.907406] do_syscall_64+0x1b1/0x800 [ 232.911284] ? syscall_return_slowpath+0x5c0/0x5c0 [ 232.916208] ? syscall_return_slowpath+0x30f/0x5c0 [ 232.921138] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 232.926502] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 232.931343] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 232.936530] RIP: 0033:0x455979 [ 232.939710] RSP: 002b:00007fb985501c68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 232.947407] RAX: ffffffffffffffda RBX: 00007fb9855026d4 RCX: 0000000000455979 [ 232.954665] RDX: 0000000020000100 RSI: 0000000020000080 RDI: 0000000020000040 [ 232.961926] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 232.969193] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000014 [ 232.976458] R13: 0000000000000440 R14: 00000000006fa6a0 R15: 0000000000000029 [ 232.983714] Code: 8b 5d 00 48 8d 7b 58 48 89 f8 48 c1 e8 03 42 80 3c 30 00 0f 85 cc 00 00 00 4c 8b 7b 58 49 8d bf a8 03 00 00 48 89 f8 48 c1 e8 03 <42> 80 3c 30 00 0f 85 a5 00 00 00 48 89 df 41 83 ec 01 49 83 ed [ 233.002864] RIP: fuse_ctl_remove_conn+0xc8/0x1b0 RSP: ffff88018a507968 [ 233.009554] ---[ end trace 2c713904781fbb13 ]--- [ 233.014317] Kernel panic - not syncing: Fatal exception [ 233.020326] Dumping ftrace buffer: [ 233.023863] (ftrace buffer empty) [ 233.027553] Kernel Offset: disabled [ 233.031161] Rebooting in 86400 seconds..