OCTL_AGP_ENABLE(0xffffffffffffffff, 0x40086432, &(0x7f0000000100))
r4 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/vs/sync_version\x00', 0x2, 0x0)
ioctl$TIOCGSOFTCAR(r4, 0x5419, &(0x7f00000007c0))
r5 = socket$inet6(0x10, 0x2, 0x0)
sendmsg(r5, &(0x7f0000000080)={&(0x7f0000000240)=@un=@abs={0x1, 0x0, 0x4e23}, 0x80, &(0x7f0000000040)=[{&(0x7f00000001c0)="5500000018007f04002d1cb2a4a280930a0600007da843cf19d0f869390009402f002100040000001900050000fc1700000000dc1338d54400009b84136ef75afb83de448daa7227c43ab8220000060c", 0x50}], 0x1, &(0x7f00000000c0)}, 0x0)
socket$bt_cmtp(0x1f, 0x3, 0x5)
fcntl$addseals(r5, 0x409, 0x7)
r6 = syz_open_dev$sndmidi(&(0x7f0000000c00)='/dev/snd/midiC#D#\x00', 0x100000001, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f0000001640)=@broute={'broute\x00', 0x20, 0x1, 0x1e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20001700], 0x0, &(0x7f0000001980), &(0x7f0000001700)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1, [{{{0x13, 0x0, 0x0, 'vcan0\x00', 'ifb0\x00', 'syzkaller0\x00', 'vcan0\x00', @remote={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xbb}, [], @link_local={0x1, 0x80, 0xc2}, [], 0x70, 0xf8, 0x128}, [@common=@dnat={'dnat\x00', 0x10, {{@dev={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa]}, 0xffffffffffffffff}}}, @common=@IDLETIMER={'IDLETIMER\x00', 0x28, {{0x4, 'syz0\x00'}}}]}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8}}]}, {0x0, '\x00', 0x1, 0xffffbffffffffffe}]}, 0x260)
setsockopt$EBT_SO_SET_ENTRIES(0xffffffffffffffff, 0x0, 0x80, &(0x7f0000000840)=@nat={'nat\x00', 0x19, 0x1, 0x200, [0x20000940, 0x0, 0x0, 0x20000970, 0x200009a0], 0x0, &(0x7f0000000800), &(0x7f0000000940)=[{}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x14, 0x98ab, 'teql0\x00', 'ip6gretap0\x00', 'ip_vti0\x00', 'nr0\x00', @empty, [0x0, 0xff, 0x0, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2}, [0xff, 0x0, 0xff, 0x0, 0x0, 0xff], 0x100, 0x138, 0x170, [@time={'time\x00', 0x18, {{0x7, 0x3, 0x13782, 0x14fdf, 0x80, 0x4, 0x1}}}, @nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x2}}}]}, [@snat={'snat\x00', 0x10, {{@random="07901c8f0140"}}}]}, @common=@dnat={'dnat\x00', 0x10, {{@local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}, 0x10}}}}]}]}, 0x278)
syz_open_dev$dmmidi(&(0x7f0000000c40)='/dev/dmmidi#\x00', 0xae6d, 0x200)
fchmodat(r6, &(0x7f0000000c80)='./file0\x00', 0x100)

2018/03/31 01:44:40 executing program 7:
clone(0x200, &(0x7f0000000100)="abbcd764d5b6fd853189b4a102b248f0de7c0a5cc328ca13455598dc3d760fa566c64d7cb06a7e15cdb085165670f42b32809442c69a5942d03eb3fd42bf0ebb0272fc4beb43f269f26f57bbb67316f7c76c8d570edaa564720b4dfd8f32453fc2354ddc753155ac051e9e9657989f0bbf1c03e4cd9f735c6d1b95719dbbb1c04092f54f44256722d954f0000000000000000000000000000000", &(0x7f00000000c0), &(0x7f00008c8000), &(0x7f0000828ffe))
mknod(&(0x7f0000000000)='./file0\x00', 0x1000000000001040, 0x0)
execve(&(0x7f000007b000)='./file0\x00', &(0x7f0000000180), &(0x7f0000000040))
r0 = gettid()
r1 = syz_open_dev$mice(&(0x7f0000149000)='/dev/input/mice\x00', 0x0, 0x0)
execve(&(0x7f00000001c0)='./file0\x00', &(0x7f0000001540)=[&(0x7f0000000200)='user\x00', &(0x7f0000000240)='vmnet0\x00', &(0x7f0000001480)='user\x00', &(0x7f0000001500)='\x00'], &(0x7f00000015c0)=[&(0x7f0000001580)='#keyring\x00'])
msgget$private(0x0, 0x400)
timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000))
uselib(&(0x7f00000002c0)='./file0/file0\x00')
mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0xffffffffffffffff, 0x32, 0xffffffffffffffff, 0x0)
getsockopt$inet_sctp6_SCTP_INITMSG(r1, 0x84, 0x2, &(0x7f0000000040), &(0x7f0000000080)=0x8)
tkill(r0, 0x1000000000015)

2018/03/31 01:44:40 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
gettid()
ioctl$UFFDIO_REGISTER(0xffffffffffffffff, 0xc020aa00, &(0x7f0000000040)={{&(0x7f0000ffc000/0x1000)=nil, 0x1000}, 0x2})
r1 = syz_open_procfs(0x0, &(0x7f0000000200)='children\x00')
clone(0x0, &(0x7f0000000080), &(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))
r2 = perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x8000000803, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = semget$private(0x0, 0x4, 0x0)
r6 = openat$rfkill(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/rfkill\x00', 0x4040, 0x0)
ioctl$TCGETA(r6, 0x5405, &(0x7f0000000640))
getsockopt$inet_sctp_SCTP_DISABLE_FRAGMENTS(r1, 0x84, 0x8, &(0x7f0000000280), &(0x7f0000000380)=0x4)
semctl$SEM_INFO(r5, 0x0, 0x13, &(0x7f0000000180)=""/115)
sendmsg$IPVS_CMD_GET_DAEMON(r6, &(0x7f0000000400)={&(0x7f0000000240)={0x10}, 0xc, &(0x7f00000003c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB="bc204000"], 0x1}, 0x1, 0x0, 0x0, 0x810}, 0x8010)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x80, 0x0)
r7 = dup2(r2, r3)
seccomp(0x0, 0x0, &(0x7f0000000140)={0x2, &(0x7f0000000080)=[{0xd3, 0x3, 0x20, 0x1}, {0xca, 0x7f, 0xe539}]})
pread64(0xffffffffffffffff, &(0x7f00000001c0)=""/26, 0x52, 0x3)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$sock_SIOCADDDLCI(r4, 0x8980, &(0x7f0000000300)={'gre0\x00', 0x7})
getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(r1, 0x84, 0x7c, &(0x7f0000000440)={<r8=>0x0, 0xfffffffffffffffa, 0x7}, &(0x7f0000000480)=0x8)
ioctl$sock_inet_SIOCGIFDSTADDR(r6, 0x8917, &(0x7f0000000340)={'syzkaller0\x00', {0x2, 0x4e21, @loopback=0x7f000001}})
setsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(r7, 0x84, 0x22, &(0x7f00000004c0)={0x2, 0x8000, 0xfffffffffffffff7, 0x0, r8}, 0x10)
getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffff9c, 0x84, 0x1d, &(0x7f0000000500)=ANY=[@ANYBLOB="05000000406507387fa5ce8ac48eeebca06fb14022b80c0000172c2f18b920924513712c80961981f3182ad0d579b5786a0ab56b31dcbdaca59c9d7fe3677adb17615aeee5b00c71518a52430a442de4bc023e67f51f3f39d0f560156da66822fe852f456d4714cba2fad8558c626dc0558b4ca9dbfdca22c7442797f1baa1e792a82e9b8c3e3ace02209a1932ddc7c7afe32d0c3e7b749d36dc5353a6943d285dc4c345c31de63a0a0f42d8ba2ac7c344aef77604f50e81a39baf28356827bf2fc2ce7b3045d0da4c4a072fe5f71a412ceff886df894602ed995c08208f4194324c15d1e747856a6a83de20ce601e2792d1c08909ab06"], &(0x7f0000000080)=0x1)
r9 = syz_open_pts(r0, 0x2)
fcntl$setlease(r7, 0x400, 0x2)
dup3(r9, r0, 0x0)

2018/03/31 01:44:40 executing program 5:
r0 = syz_open_dev$amidi(&(0x7f0000000400)='/dev/amidi#\x00', 0x401, 0x0)
accept4$llc(r0, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, &(0x7f0000000480)=0x10, 0x80800)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f0000005fd8)={'vcan0\x00', <r2=>0x0})
ioctl$KVM_SET_DEVICE_ATTR(r0, 0x4018aee1, &(0x7f0000000500)={0x0, 0x100000001, 0x5a, &(0x7f00000004c0)})
connect$can_bcm(r1, &(0x7f0000001ff0)={0x1d, r2}, 0x10)
ioctl$TIOCGSID(0xffffffffffffff9c, 0x5429, &(0x7f00000002c0)=<r3=>0x0)
waitid(0x0, r3, 0x0, 0x1000009, &(0x7f0000000300))
r4 = syz_open_dev$vcsn(&(0x7f0000000000)='/dev/vcs#\x00', 0xcd8, 0x101000)
getsockopt$SO_BINDTODEVICE(r4, 0x1, 0x19, &(0x7f0000000280), 0x10)
ioctl$EVIOCGABS0(r4, 0x80184540, &(0x7f0000000240)=""/64)
bind$vsock_dgram(r1, &(0x7f00000003c0)={0x28, 0x0, 0x2711, @reserved=0x1}, 0x10)
exit(0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000200)={r4, 0x0, 0x47, 0xde, &(0x7f0000000080)="3541471374d1e455c1f501bb3e7418a21f930d9fb82ac3588f54ad5a1a9e778bdf654fa39f19bcbc6ee4636a10d409c877cfe11ba160f73d4cde40422564bfdb62d8e5f8ba5097", &(0x7f0000000100)=""/222, 0x4, 0x3f}, 0x28)
ioctl$KVM_SET_TSS_ADDR(r4, 0xae47, 0xd000)
ioctl$KVM_CHECK_EXTENSION(r4, 0xae03, 0xffffffffffffffff)
openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000580)='/dev/qat_adf_ctl\x00', 0x4600, 0x0)
sendmsg$can_raw(r1, &(0x7f0000001fc8)={&(0x7f000000a000)={0x1d}, 0x10, &(0x7f0000000040)={&(0x7f000000a000)=@canfd={{0x1}, 0x0, 0x0, 0x0, 0x0, "0327e1b22b5fcef7739c699f5ff986ca08990039576a7d5cb2bdac3fa80acf584ecb5fee496e6866856b76b5f700000000000000004e2f9663a918fa1efd9b0b"}, 0x48}, 0x1}, 0x0)
ioctl$VHOST_GET_VRING_ENDIAN(r0, 0x4008af14, &(0x7f0000000540)={0x0, 0x9})

[  173.604286] FAULT_INJECTION: forcing a failure.
[  173.604286] name failslab, interval 1, probability 0, space 0, times 0
[  173.615547] CPU: 0 PID: 12861 Comm: syz-executor3 Not tainted 4.16.0-rc7+ #372
[  173.622902] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  173.632244] Call Trace:
[  173.634828]  dump_stack+0x194/0x24d
[  173.638453]  ? arch_local_irq_restore+0x53/0x53
[  173.643131]  should_fail+0x8c0/0xa40
[  173.646848]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  173.651949]  ? kernfs_add_one+0x50/0x450
[  173.656006]  ? rb_first_postorder+0xa0/0xa0
[  173.660331]  ? kernfs_add_one+0x50/0x450
[  173.664387]  ? trace_event_raw_event_lock+0x340/0x340
[  173.669569]  ? trace_hardirqs_off+0x10/0x10
[  173.673887]  ? find_held_lock+0x35/0x1d0
[  173.677944]  ? __lock_is_held+0xb6/0x140
[  173.682009]  ? check_same_owner+0x320/0x320
[  173.686328]  ? lock_downgrade+0x980/0x980
[  173.690477]  ? rcu_note_context_switch+0x710/0x710
[  173.695400]  should_failslab+0xec/0x120
[  173.699356]  __kmalloc_track_caller+0x5f/0x760
[  173.703924]  ? idr_alloc_cyclic+0x1d6/0x320
[  173.708230]  ? kstrdup_const+0x39/0x50
[  173.712098]  ? __mutex_unlock_slowpath+0xe9/0xac0
[  173.716923]  kstrdup+0x39/0x70
[  173.720094]  kstrdup_const+0x39/0x50
[  173.723786]  __kernfs_new_node+0xa2/0x570
[  173.728004]  ? kernfs_dop_revalidate+0x380/0x380
[  173.732747]  ? kasan_check_read+0x11/0x20
[  173.736874]  ? read_word_at_a_time+0x12/0x20
[  173.741260]  ? strscpy+0x186/0x500
[  173.744787]  kernfs_new_node+0x80/0xe0
[  173.748655]  __kernfs_create_file+0x4b/0x320
[  173.753051]  cgroup_addrm_files+0x3c5/0xa70
[  173.757361]  ? cgroup_file_write+0x710/0x710
[  173.761755]  ? getrawmonotonic64+0x460/0x460
[  173.766147]  ? kernfs_active+0x92/0x160
[  173.770105]  ? debug_lockdep_rcu_enabled+0x77/0x90
[  173.775012]  ? cgroup_kn_set_ugid+0x2c7/0x370
[  173.779490]  ? cgroup_file_name+0x1d0/0x1d0
[  173.783794]  css_populate_dir+0x340/0x420
[  173.787925]  cgroup_mkdir+0x553/0xfc0
[  173.791705]  ? __lock_is_held+0xb6/0x140
[  173.795747]  ? cgroup_destroy_locked+0x750/0x750
[  173.800480]  ? rcu_read_lock_sched_held+0x108/0x120
[  173.805471]  ? kmem_cache_free+0x258/0x2a0
[  173.809687]  ? set_nlink+0xc1/0x160
[  173.813295]  ? debug_lockdep_rcu_enabled+0x77/0x90
[  173.818203]  ? generic_permission+0x105/0x3c0
[  173.822678]  ? cgroup_destroy_locked+0x750/0x750
[  173.827435]  kernfs_iop_mkdir+0x153/0x1e0
[  173.831562]  vfs_mkdir+0x390/0x600
[  173.835093]  SyS_mkdirat+0x22b/0x2b0
[  173.838787]  ? SyS_mknod+0x480/0x480
[  173.842477]  ? trace_hardirqs_on+0xd/0x10
[  173.846603]  ? do_syscall_64+0xb7/0x940
[  173.850555]  ? SyS_mknod+0x480/0x480
[  173.854245]  do_syscall_64+0x281/0x940
[  173.858112]  ? vmalloc_sync_all+0x30/0x30
[  173.862238]  ? _raw_spin_unlock_irq+0x27/0x70
[  173.866715]  ? finish_task_switch+0x1c1/0x7e0
[  173.871186]  ? syscall_return_slowpath+0x550/0x550
[  173.876094]  ? syscall_return_slowpath+0x2ac/0x550
[  173.880999]  ? prepare_exit_to_usermode+0x350/0x350
[  173.885998]  ? entry_SYSCALL_64_after_hwframe+0x52/0xb7
[  173.891350]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  173.896174]  entry_SYSCALL_64_after_hwframe+0x42/0xb7
[  173.901338] RIP: 0033:0x454e79
[  173.904503] RSP: 002b:00007fa6ef25cc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
[  173.912189] RAX: ffffffffffffffda RBX: 00007fa6ef25d6d4 RCX: 0000000000454e79
[  173.919435] RDX: 0000000000000020 RSI: 0000000020000280 RDI: 0000000000000013
[  173.926682] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  173.933933] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000014
[  173.941178] R13: 00000000000003eb R14: 00000000006f7ea8 R15: 000000000000000f
2018/03/31 01:44:40 executing program 2:
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000140)="2e2f6367726f757000361a6f74a1b774b8642f3dfdd313d92946ff0167415d8dc22791dcd496520c1c99f4b07d3b2a11090000000229210b73abdcd2986fc290ac9b6ace278586d39949a54fb276eb1fd3964b0cad27e417b33abb8d3b00e64e75e4dff47de27536dccdde5fc746b04faafcec347560a31b3a35a5f20bc949d75cbb763987", 0x200002, 0x0)
r1 = openat$cgroup_procs(r0, &(0x7f0000000080)='cgroup.procs\x00', 0x2, 0x0)
sendfile(r1, r1, &(0x7f0000000040), 0x1)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000000)=<r2=>0x0)
r3 = syz_open_dev$sndpcmc(&(0x7f0000000400)='/dev/snd/pcmC#D#c\x00', 0x40, 0x0)
r4 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000440)='/dev/mixer\x00', 0x8000, 0x0)
perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
getrandom(&(0x7f0000000200)=""/208, 0xff48, 0x0)
ioctl$sock_bt_bnep_BNEPCONNADD(r3, 0x400442c8, &(0x7f0000003b40)=ANY=[@ANYRES32=r4, @ANYBLOB="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"])
socket$inet6_icmp(0xa, 0x2, 0x3a)
syz_open_dev$urandom(&(0x7f0000000480)='/dev/urandom\x00', 0x0, 0x64f25daf71c8395d)
setsockopt$IP_VS_SO_SET_TIMEOUT(r3, 0x0, 0x48a, &(0x7f0000003b00)={0xff, 0x8779, 0x2}, 0xc)
ptrace$PTRACE_SECCOMP_GET_METADATA(0x420d, r2, 0x10, &(0x7f0000000240)={0xffff})
r5 = syz_open_dev$mice(&(0x7f0000000200)='/dev/input/mice\x00', 0x0, 0x400)
ioctl$EVIOCREVOKE(r5, 0x40044591, &(0x7f00000004c0)=0x800000000001)
process_vm_writev(r2, &(0x7f0000000100)=[{&(0x7f0000000580)=""/4096, 0x1000}, {&(0x7f0000001580)=""/141, 0x8d}, {&(0x7f00000000c0)=""/4, 0x4}, {&(0x7f0000001640)=""/148, 0x94}], 0x4, &(0x7f0000003a40)=[{&(0x7f0000001700)=""/219, 0xdb}, {&(0x7f0000001800)=""/199, 0xc7}, {&(0x7f0000000300)=""/101, 0x65}, {&(0x7f0000001900)=""/174, 0xae}, {&(0x7f00000019c0)=""/4096, 0x1000}, {&(0x7f00000029c0)=""/98, 0x62}, {&(0x7f0000002a40)=""/4096, 0x1000}], 0x7, 0x0)
getsockopt$IP_VS_SO_GET_DAEMON(r5, 0x0, 0x487, &(0x7f0000000280), &(0x7f00000002c0)=0x30)
ioctl$PERF_EVENT_IOC_PAUSE_OUTPUT(r5, 0x40042409, 0x0)
dup2(r0, r1)
getsockopt$netrom_NETROM_T4(0xffffffffffffffff, 0x103, 0x6, &(0x7f0000000380), &(0x7f00000003c0)=0x4)
ioctl$TIOCGPTPEER(r5, 0x5441, 0x80000001)

2018/03/31 01:44:40 executing program 6:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x200, 0x0)
socketpair$inet6_icmp_raw(0xa, 0x3, 0x3a, &(0x7f0000000680)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
setsockopt$sock_linger(r1, 0x1, 0xd, &(0x7f00000006c0)={0x400, 0x9}, 0x8)
perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
mmap(&(0x7f0000000000/0x9d7000)=nil, 0x9d7000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x7)
perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r4, &(0x7f0000e5b000)={0x2, 0x4e20, @multicast1=0xe0000001}, 0x10)
syz_open_dev$sg(&(0x7f0000000440)='/dev/sg#\x00', 0x0, 0x0)
connect$inet(r4, &(0x7f0000000100)={0x2, 0x4e20, @multicast2=0xe0000002}, 0x10)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000eb0fb8)={0x1, 0x3, &(0x7f00009ff000)=@framed={{0x18}, [], {0x95}}, &(0x7f00002bf000)='syzkaller\x00', 0x4, 0xb7, &(0x7f00006ab000)=""/183}, 0x48)
setsockopt$inet_tcp_int(r4, 0x6, 0x19, &(0x7f0000000240)=0x8, 0x4)
setsockopt$SO_BINDTODEVICE(r4, 0x1, 0x19, &(0x7f0000000000)="6970365f76746930000000000400", 0x10)
r6 = socket$kcm(0x29, 0x2, 0x0)
ioctl$sock_kcm_SIOCKCMATTACH(r6, 0x89e0, &(0x7f000031aff8)={r4, r5})
ioctl$sock_kcm_SIOCKCMCLONE(r6, 0x89e2, &(0x7f00000002c0)={<r7=>0xffffffffffffffff})
sendmsg$nl_xfrm(r7, &(0x7f0000000780)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000740)={&(0x7f0000000480)=@updpolicy={0xb8, 0x19, 0x0, 0x0, 0x0, {{@in=@loopback=0x7f000001, @in6=@mcast1={0xff, 0x1, [], 0x1}}}}, 0xffcb}, 0x1}, 0x0)
ioctl$sock_kcm_SIOCKCMUNATTACH(r7, 0x89e1, &(0x7f0000000040)={r4})
r8 = fcntl$getown(r3, 0x9)
r9 = accept4$inet(0xffffffffffffff9c, &(0x7f0000000700)={0x0, 0x0, @broadcast}, &(0x7f0000000740)=0x10, 0x80000)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r9, 0x84, 0x64, &(0x7f0000000300)=[@in={0x2, 0xff, @local={0xac, 0x14, 0x14, 0xaa}}, @in={0x2, 0x4e23, @multicast1=0xe0000001}, @in={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x10}}, @in={0x2, 0x4e20, @multicast1=0xe0000001}, @in={0x2, 0x4e24}, @in={0x2, 0x4e24, @broadcast=0xffffffff}, @in6={0xa, 0x4e21, 0xed34, @local={0xfe, 0x80, [], 0xaa}, 0x3}, @in={0x2, 0x4e23, @loopback=0x7f000001}], 0x8c)
ptrace$setregset(0x4205, r8, 0x0, &(0x7f00000005c0)={&(0x7f0000000080)="449ed0dd6831a7fb44eca4221b1fb01abfec082aa7d0ee6f0ba9db0ece7da2bd3f", 0x21})
r10 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r11 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x1fffd, 0x0)
syz_open_dev$sndtimer(&(0x7f00000000c0)='/dev/snd/timer\x00', 0x0, 0x0)
read(r0, &(0x7f0000000140)=""/50, 0x32)
fcntl$dupfd(r10, 0x0, r11)

[  173.948606] cgroup: cgroup_addrm_files: failed to add cgroup.controllers, err=-12
2018/03/31 01:44:40 executing program 1:
r0 = creat(&(0x7f0000000b40)='./file0\x00', 0x22)
ioctl$DRM_IOCTL_AGP_ALLOC(r0, 0xc0206434, &(0x7f0000000cc0)={0x0, <r1=>0x0, 0x1})
ioctl$DRM_IOCTL_AGP_ALLOC(r0, 0xc0206434, &(0x7f0000000c80)={0x5, <r2=>r1, 0x0, 0x1})
ioctl$DRM_IOCTL_SG_FREE(r0, 0x40106439, &(0x7f0000000bc0)={0x3, r2})
r3 = socket$inet(0x2, 0x6, 0x3)
setsockopt$EBT_SO_SET_ENTRIES(r3, 0x0, 0x80, &(0x7f00000008c0)=@broute={'broute\x00', 0x20, 0x2, 0x3e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000280], 0x0, &(0x7f0000000240), &(0x7f0000000280)=ANY=[@ANYBLOB="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"]}, 0x460)
getsockopt$inet_sctp6_SCTP_CONTEXT(0xffffffffffffff9c, 0x84, 0x11, &(0x7f0000000000)={<r4=>0x0, 0x7}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r3, 0x84, 0xa, &(0x7f0000000140)={0x0, 0xa2b, 0x4, 0x7, 0x2, 0x20, 0x10000, 0x8a82, r4}, &(0x7f0000000180)=0x20)
setsockopt$inet_group_source_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000680)={0x1000, {{0x2, 0x4e23, @multicast1=0xe0000001}}, {{0x2, 0x4e22, @broadcast=0xffffffff}}}, 0x108)
ioctl$DRM_IOCTL_AGP_ENABLE(0xffffffffffffffff, 0x40086432, &(0x7f0000000100))
r5 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/vs/sync_version\x00', 0x2, 0x0)
ioctl$TIOCGSOFTCAR(r5, 0x5419, &(0x7f00000007c0))
r6 = socket$inet6(0x10, 0x2, 0x0)
sendmsg(r6, &(0x7f0000000080)={&(0x7f0000000240)=@un=@abs={0x1, 0x0, 0x4e23}, 0x80, &(0x7f0000000040)=[{&(0x7f00000001c0)="5500000018007f04002d1cb2a4a280930a0600007da843cf19d0f869390009402f002100040000001900050000fc1700000000dc1338d54400009b84136ef75afb83de448daa7227c43ab8220000060c", 0x50}], 0x1, &(0x7f00000000c0)}, 0x0)
socket$bt_cmtp(0x1f, 0x3, 0x5)
fcntl$addseals(r6, 0x409, 0x7)
r7 = syz_open_dev$sndmidi(&(0x7f0000000c00)='/dev/snd/midiC#D#\x00', 0x100000001, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r3, 0x0, 0x80, &(0x7f0000001640)=@broute={'broute\x00', 0x20, 0x1, 0x1e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20001700], 0x0, &(0x7f0000001980), &(0x7f0000001700)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1, [{{{0x13, 0x0, 0x0, 'vcan0\x00', 'ifb0\x00', 'syzkaller0\x00', 'vcan0\x00', @remote={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xbb}, [], @link_local={0x1, 0x80, 0xc2}, [], 0x70, 0xf8, 0x128}, [@common=@dnat={'dnat\x00', 0x10, {{@dev={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa]}, 0xffffffffffffffff}}}, @common=@IDLETIMER={'IDLETIMER\x00', 0x28, {{0x4, 'syz0\x00'}}}]}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8}}]}, {0x0, '\x00', 0x1, 0xffffbffffffffffe}]}, 0x260)
setsockopt$EBT_SO_SET_ENTRIES(0xffffffffffffffff, 0x0, 0x80, &(0x7f0000000840)=@nat={'nat\x00', 0x19, 0x1, 0x200, [0x20000940, 0x0, 0x0, 0x20000970, 0x200009a0], 0x0, &(0x7f0000000800), &(0x7f0000000940)=[{}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x14, 0x98ab, 'teql0\x00', 'ip6gretap0\x00', 'ip_vti0\x00', 'nr0\x00', @empty, [0x0, 0xff, 0x0, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2}, [0xff, 0x0, 0xff, 0x0, 0x0, 0xff], 0x100, 0x138, 0x170, [@time={'time\x00', 0x18, {{0x7, 0x3, 0x13782, 0x14fdf, 0x80, 0x4, 0x1}}}, @nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x2}}}]}, [@snat={'snat\x00', 0x10, {{@random="07901c8f0140"}}}]}, @common=@dnat={'dnat\x00', 0x10, {{@local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}, 0x10}}}}]}]}, 0x278)
syz_open_dev$dmmidi(&(0x7f0000000c40)='/dev/dmmidi#\x00', 0xae6d, 0x200)
setsockopt$inet_sctp6_SCTP_AUTH_CHUNK(r7, 0x84, 0x15, &(0x7f0000000b80)={0x9}, 0x1)

2018/03/31 01:44:41 executing program 4:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'lrw-serpent-avx2\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="d179f2508fb13583605d0008a230e7a6", 0x10)
r1 = accept$alg(r0, 0x0, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x0, 0x0)
ioctl$sock_inet_SIOCSIFDSTADDR(r1, 0x8918, &(0x7f0000000680)={'bcsh0\x00', {0x2, 0x4e23, @rand_addr}})
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r5 = openat$cgroup_int(0xffffffffffffffff, &(0x7f0000000000)='memory.high\x00', 0x2, 0x0)
ioctl$KVM_GET_EMULATED_CPUID(r4, 0xc008ae09, &(0x7f0000000200)=""/131)
fcntl$getflags(r2, 0x1)
io_setup(0x400, &(0x7f0000000380)=<r6=>0x0)
ioctl$KVM_GET_EMULATED_CPUID(r4, 0xc008ae09, &(0x7f00000002c0)=""/55)
io_submit(r6, 0x0, &(0x7f00000004c0))
r7 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/hwrng\x00', 0x20000, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(r7, 0x4068aea3, &(0x7f0000000400)={0x7b, 0x0, [0x9, 0x7, 0x3ff, 0x401]})
sendfile(r5, r5, &(0x7f0000000040), 0x1)
recvmsg(r1, &(0x7f00001b0000)={&(0x7f00003a4fa0)=@nfc_llcp, 0x80, &(0x7f0000045000)=[{&(0x7f0000000300)=""/88, 0x58}], 0x1, &(0x7f00009f2000)=""/190, 0xbe}, 0x0)
setsockopt$inet6_icmp_ICMP_FILTER(r7, 0x1, 0x1, &(0x7f0000000700)={0x2}, 0x4)
connect$ax25(r7, &(0x7f0000000580)={0x3, {"0f20988fab50cb"}, 0x3}, 0x10)
getsockopt$inet_sctp_SCTP_GET_PEER_ADDR_INFO(r7, 0x84, 0xf, &(0x7f0000000480)={<r8=>0x0, @in={{0x2, 0x4e22, @dev={0xac, 0x14, 0x14}}}, 0x0, 0x9e09, 0x9, 0x7ff, 0x1}, &(0x7f0000000540)=0x98)
getsockopt$inet_sctp6_SCTP_PEER_AUTH_CHUNKS(r7, 0x84, 0x1a, &(0x7f0000000780)=ANY=[@ANYRES32=r8, @ANYBLOB="9e000000b0e77285c878a8c5788a4ca01fc127a65c65b4b92ff1cf43c6742eace6f5842d107a0ade6e36cf110d3ea709e629a8cab07a757c936576aebc6ee76a6641eaca431c56fbda3704975c7eee11700a56d11fdb0c007ab2000000000000000090788989689a90f13a08b48e181d5bc6ce1ade5827114412f05d673d7e9f28fff8e2e60334eef2b53381e23846f5fb1867924760be000d7a79505ba9881d0000893c80"], &(0x7f0000000640)=0x2)
ioctl$sock_bt_bnep_BNEPGETCONNINFO(r7, 0x800442d3, &(0x7f00000006c0)={0xbe82, 0x0, 0x100, @local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}, 'bcsh0\x00'})
r9 = semget(0x1, 0x2, 0x404)
semtimedop(r9, &(0x7f0000000700), 0x0, &(0x7f0000000740))
setfsuid(0x0)
sendmmsg$alg(r3, &(0x7f0000003ec0)=[{0x0, 0x0, &(0x7f0000000a40)=[{&(0x7f0000000840)="cc449f201eeb354eb51310872de4aa0490d6da5b1cd5088fb9a9d3947eebca0ed0e71af84aab09371b9a52181f52347af1416e5beef1df49da0c08ea0ba35312472a97d2fd7ae800f140a3cb7c51f3ed0aabc7c369212b758f17dd44f9a44455f0ab14ef66ddbdc790e3ee60cfda0ecd29b33233d34df5a6c7da27575e4720ce444841e5054c9788e7425a6f0656a9b15147cc0daab62e161383dee8767e0d3cc4ae1b25a81592f62dfa00f71226b8b538b6cab94deaa5513437e29e09381f2d35e6", 0xc2}, {&(0x7f00000005c0)="d7c9e27073af899b7f436cc6a1b77bd61b3b372f280250e97b8e1b7c64a3d5ae3dd19ef0255b7f4d56c9fbafc4824153413ba6ab984bfd6f8c52b69588f65d9b4e6da8552d976a91bd2a6cbf0bf6765b6f763ce7149cd3d49c4ecac9bbfd13e7ba4d9f5d", 0x64}, {&(0x7f0000000940)="59a0549133dfe64acd8e9ce599f09ffddc4358572034a5502540077d8b16df8615c00febf256c2607ed8e4cba6d2ba3a7f42bbfaad1cd5b90bc94cbc7987c03b8c79f0097b57821ef7145df2a87247b1d0fdd61f06ea88ec18b5c6859e6e6c4839c8ec4fcb77d9f78ef1e98ef0a7656033a0f217ec79d466af1734800ef4c346aeed1f8c8fe6c9926df850ad58cfd78499b5337e90b34da7b321a0f125dff7aa89d3ffbf73efbabff8c09f412533aa61e2445bb4bc25f1c7197b64d9c3a3e2902836e463d6cee8b5cf0d3b3b2802874eff898527d652957cf436ed7abdb6a3b0a5264ecc902246b265ddd47006ebe1ca4797226b", 0xf4}], 0x3}, {0x0, 0x0, &(0x7f0000000d40)=[{&(0x7f0000000c00)="1dd60c020a58", 0x6}, {&(0x7f0000000d00)="fbdf2010475e9b113c09955195386f55fa5adbcab5060b60", 0x18}], 0x2, &(0x7f0000000d80)=[@assoc={0x18, 0x117, 0x4, 0x9f}, @iv={0xa0, 0x117, 0x2, 0x8b, "26e553b222c853edc01a037e065a42c8e38191fe54f33e46dd089eebb8f522ffcb0ca75123df5f3782445a4c906845afd741b24f4f0d5bb053c8b7e8e01991069b57234dc4cad3aa162c84dee0473611495fa86e7d205a05accc00fc41d72d2040ad513d9b3e0e36887dac3cbd6a6a7cddeb65caf8c5a26e8662d7c4052b3a35b067951ea94699a7a57669"}], 0xb8, 0x8001}, {0x0, 0x0, &(0x7f0000000f80)=[{&(0x7f0000000e80)="9545a3b5850ed612113d2ae8196c9ab72ec05256d0b6714dd7470e19d0b4a63d4bba65f11f76bb776a9b16911e3b889d5ccbfa3edf376ac76ae119bddd54a4887f496f8f4c162553c17d3ffcd625d44dc5ea10a7f354f526fe0fc48cfdd40d8e2b58aa57e8832f79a59cac58ec75f99044d51878bbd7476da6ddc25a063f1d76c0ba449e305df8875183f93919dc714f4f99df4bff07a9677a5f86cb59760e85a7b347128103ee8f5c0b0e7e84507c37191ce52cf2686a6fc31cc0484c8da221cbc11c", 0xc3}], 0x1, &(0x7f00000027c0)=[@op={0x18, 0x117, 0x3, 0x1}, @op={0x18, 0x117, 0x3}, @op={0x18, 0x117, 0x3}, @iv={0x1018, 0x117, 0x2, 0x1000, "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"}], 0x1060, 0x4000090}, {0x0, 0x0, &(0x7f00000011c0)=[{&(0x7f0000001140)="b6d89e1dc717ecf174f1b90c64f5900e5c0de6590ec89a5afedd2942b6375d", 0x1f}], 0x1, &(0x7f0000001200)=[@assoc={0x18, 0x117, 0x4, 0x3}, @assoc={0x18, 0x117, 0x4, 0x1}, @assoc={0x18, 0x117, 0x4, 0x7}], 0x48, 0x24048845}, {0x0, 0x0, &(0x7f0000002680)=[{&(0x7f0000001280)="10ea200e71d0dcc1fd6c369d7cf85beb2ff53b6efb5f004986f6ec1c715750ed59f077c3d1be567ee97fb41875bd4a63ba4bdb28e2c4adc4d746cd92a674d9b6ade1bfdf6dd7863c7616d5753d6bd15df352214dd5285218d8d82aee087dc81158ff7ed736780fcb85468b687909", 0x6e}, {&(0x7f0000001400)="45dc99bbdce0a4e2a044cce7286b055e992dc61ed72338f6a5cb849f6390ac09359dd41d1794c5b854a8244bbc1a0b52a353f38a70ed868f54f422ecf75aac19a780e629d36e799050cf61c9b739679eeadf88dd324d8e69fbf74e40eea0f34234a2fe8bf370dc3fd4cc88191e68a0e070b830460d3dd9551815e547043e96d56b2ce3637a40fffe4459", 0x8a}, {&(0x7f0000002600)="aa8dbf2ddd0a3c092e2529287752c58a6842f0f296f0646163814e27c750d5cc53a9a45aaf96d153dbf1262eed6d2533ad4f2722ebe427f022949f307f3507a7eae33eebc45af71a0616e93d", 0x4c}], 0x3, &(0x7f0000002700)=[@iv={0x48, 0x117, 0x2, 0x33, "18eb4fc4b460bb4dc76d84729ffa21e9143b4ae833e64e0bb3600aad21f477861a89a15fe52e2385fedc7d9e1de58d684edacc"}], 0x48, 0x20000000}, {0x0, 0x0, &(0x7f0000003b80)=[{&(0x7f0000003b00)="746d7dbe6eadba4a0c75627235f493162adbd99038023b8707d17c48d7a2ef8f7f41a795760756ab22ff81d9e964f8d7cafe3c27eebfbc8eb7cde0e677662a1402bd7e6817b5b1bbfbfad781afe2abf05cf69a7aef0c8edd7fdae7", 0x5b}], 0x1, &(0x7f0000003bc0)=[@assoc={0x18, 0x117, 0x4, 0x100000000}, @op={0x18, 0x117, 0x3}, @op={0x18, 0x117, 0x3, 0x1}], 0x48}, {0x0, 0x0, &(0x7f0000003d80)=[{&(0x7f0000003c40)="e70c75dd4c417fd0a5223e80907669e133fb3af4d7b30af852975f7a85d84da57c66c13cbd7792ef7152b14a94c05ea1036ed074e2a72c2b66fa8faac53b9c8d8483a7ef471a472bb77d139993efca48a48adebc9f7dda62079e9607791b80879930dcdcba974b19e93ad8cc107d759bbd24838cdc853bb03c611644f42efd4c77b5f89f6300ee2f1200e6dce2e20cea3107617e9ab1b1558bbc20f1edde0d761f08e80ca35b1a599f7db06c5519a330688962551e6c0be28aa5c8ca0ba1e149792cabe81797d03041974581e2c3a6df7adec3e7f670a09f988cf3e28c1f75824d8e", 0xe2}], 0x1, &(0x7f00000000c0)=ANY=[@ANYBLOB="c8000000000000001701000002000000b3000000783b5c817cf4424ba239c685b054d40b08dba3ccd761ed196c878be6542166a35bec44fe71034c2d40ff45d37b02a2b82ceef24fa016956883a55e46fceecc5805500e13778944c364ffa91b60b128d9c63174d47a578c3b66467de638246705ee1b837743136b8dc250db5f27da557cbfc00ec1f25c8cbfd28a9c3828e27360460670cb46a4e00d75cb325f7a3b65e3380064050ee043e26f88f3c9cec77e69896ceb63bf2b1a287552492fd3c5cb2b3db0eccebe6fade9d5"], 0xc8, 0x8000}], 0x7, 0x8004)

2018/03/31 01:44:41 executing program 3 (fault-call:3 fault-nth:16):
mkdir(&(0x7f00000001c0)='./file0\x00', 0x0)
mount(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000380)='./file0\x00', &(0x7f0000000300)='cgroup2\x00', 0x0, 0x0)
r0 = open$dir(&(0x7f000001bff4)='./file0\x00', 0x0, 0x0)
mkdirat(r0, &(0x7f0000000280)='./file0\x00', 0x20)
getdents64(r0, &(0x7f00000007c0)=""/250, 0x1015a)
fadvise64(r0, 0x0, 0x41, 0x3)
unlinkat(r0, &(0x7f0000000080)='./file0\x00', 0x200)
r1 = open$dir(&(0x7f0000000180)='./file0\x00', 0x105600, 0x81)
fchdir(r0)
link(&(0x7f0000000740)='./file1\x00', &(0x7f0000000780)='./file0/file0\x00')
renameat2(r1, &(0x7f0000000200)='./file1\x00', r0, &(0x7f0000000240)='./file0\x00', 0xfd1092750066ec78)
pivot_root(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='./file0\x00')
r2 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000100)='/dev/rfkill\x00', 0x2c42, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_LIST(r2, 0xc0505510, &(0x7f0000000480)={0x1000, 0x1, 0x474, 0x1, &(0x7f0000000140)=[{}]})
unlink(&(0x7f00000000c0)='./file0\x00')
symlinkat(&(0x7f0000000400)='./file0/file0\x00', r0, &(0x7f0000000440)='./file0/file0\x00')
iopl(0x6)
recvmsg$kcm(0xffffffffffffffff, &(0x7f0000000680)={&(0x7f0000000500)=@pppol2tp={0x0, 0x0, {0x0, <r3=>0xffffffffffffffff, {0x0, 0x0, @broadcast}}}, 0x80, &(0x7f0000000600)=[{&(0x7f0000000580)=""/80, 0x50}, {&(0x7f00000008c0)=""/4096, 0x1000}], 0x2, &(0x7f0000000640)=""/45, 0x2d, 0x206e}, 0x20)
r4 = syz_open_dev$sndpcmp(&(0x7f00000018c0)='/dev/snd/pcmC#D#p\x00', 0x5, 0x10a00)
ioctl$KVM_GET_DEVICE_ATTR(r4, 0x4018aee2, &(0x7f0000001940)={0x0, 0x100, 0x9, &(0x7f0000001900)})
recvfrom$ipx(r3, &(0x7f00000006c0)=""/52, 0x34, 0x100, &(0x7f0000000700)={0x4, 0x9a2, 0x4, "dc108d9d4391", 0x5}, 0x10)
renameat(r0, &(0x7f0000001980)='./file1\x00', r4, &(0x7f00000019c0)='./file0/file0\x00')

2018/03/31 01:44:41 executing program 6:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x200, 0x0)
socketpair$inet6_icmp_raw(0xa, 0x3, 0x3a, &(0x7f0000000680)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
setsockopt$sock_linger(r1, 0x1, 0xd, &(0x7f00000006c0)={0x400, 0x9}, 0x8)
perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
mmap(&(0x7f0000000000/0x9d7000)=nil, 0x9d7000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x7)
perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r4, &(0x7f0000e5b000)={0x2, 0x4e20, @multicast1=0xe0000001}, 0x10)
syz_open_dev$sg(&(0x7f0000000440)='/dev/sg#\x00', 0x0, 0x0)
connect$inet(r4, &(0x7f0000000100)={0x2, 0x4e20, @multicast2=0xe0000002}, 0x10)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000eb0fb8)={0x1, 0x3, &(0x7f00009ff000)=@framed={{0x18}, [], {0x95}}, &(0x7f00002bf000)='syzkaller\x00', 0x4, 0xb7, &(0x7f00006ab000)=""/183}, 0x48)
setsockopt$inet_tcp_int(r4, 0x6, 0x19, &(0x7f0000000240)=0x8, 0x4)
setsockopt$SO_BINDTODEVICE(r4, 0x1, 0x19, &(0x7f0000000000)="6970365f76746930000000000400", 0x10)
r6 = socket$kcm(0x29, 0x2, 0x0)
ioctl$sock_kcm_SIOCKCMATTACH(r6, 0x89e0, &(0x7f000031aff8)={r4, r5})
ioctl$sock_kcm_SIOCKCMCLONE(r6, 0x89e2, &(0x7f00000002c0)={<r7=>0xffffffffffffffff})
sendmsg$nl_xfrm(r7, &(0x7f0000000780)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000740)={&(0x7f0000000480)=@updpolicy={0xb8, 0x19, 0x0, 0x0, 0x0, {{@in=@loopback=0x7f000001, @in6=@mcast1={0xff, 0x1, [], 0x1}}}}, 0xffcb}, 0x1}, 0x0)
ioctl$sock_kcm_SIOCKCMUNATTACH(r7, 0x89e1, &(0x7f0000000040)={r4})
r8 = fcntl$getown(r3, 0x9)
r9 = accept4$inet(0xffffffffffffff9c, &(0x7f0000000700)={0x0, 0x0, @broadcast}, &(0x7f0000000740)=0x10, 0x80000)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r9, 0x84, 0x64, &(0x7f0000000300)=[@in6={0xa, 0x0, 0x0, @dev={0xfe, 0x80, [], 0xf}, 0x6}, @in={0x2, 0xff, @local={0xac, 0x14, 0x14, 0xaa}}, @in={0x2, 0x4e23, @multicast1=0xe0000001}, @in={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x10}}, @in={0x2, 0x4e20, @multicast1=0xe0000001}, @in={0x2, 0x4e24}, @in={0x2, 0x4e24, @broadcast=0xffffffff}, @in6={0xa, 0x4e21, 0xed34, @local={0xfe, 0x80, [], 0xaa}, 0x3}, @in={0x2, 0x4e23, @loopback=0x7f000001}], 0xfffffffffffffe00)
ptrace$setregset(0x4205, r8, 0x0, &(0x7f00000005c0)={&(0x7f0000000080)="449ed0dd6831a7fb44eca4221b1fb01abfec082aa7d0ee6f0ba9db0ece7da2bd3f", 0x21})
r10 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r11 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x1fffd, 0x0)
syz_open_dev$sndtimer(&(0x7f00000000c0)='/dev/snd/timer\x00', 0x0, 0x0)
read(r0, &(0x7f0000000140)=""/50, 0x32)
fcntl$dupfd(r10, 0x0, r11)

2018/03/31 01:44:41 executing program 2:
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000140)="2e2f6367726f757000361a6f74a1b774b8642f3dfdd313d92946ff0167415d8dc22791dcd496520c1c99f4b07d3b2a11090000000229210b73abdcd2986fc290ac9b6ace278586d39949a54fb276eb1fd3964b0cad27e417b33abb8d3b00e64e75e4dff47de27536dccdde5fc746b04faafcec347560a31b3a35a5f20bc949d75cbb763987", 0x200002, 0x0)
r1 = openat$cgroup_procs(r0, &(0x7f0000000080)='cgroup.procs\x00', 0x2, 0x0)
sendfile(r1, r1, &(0x7f0000000040), 0x1)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000000)=<r2=>0x0)
r3 = syz_open_dev$sndpcmc(&(0x7f0000000400)='/dev/snd/pcmC#D#c\x00', 0x40, 0x0)
r4 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000440)='/dev/mixer\x00', 0x8000, 0x0)
ioctl$sock_bt_bnep_BNEPCONNADD(r3, 0x400442c8, &(0x7f0000003c80)=ANY=[@ANYRES32=r4, @ANYBLOB="400000001f00669a77bbfebc030dac216c00ce24991a3d9b6ceb9c1c126552137e848d122f8bef30dc844231cd504390d0769db8d650787b116a1fe21e223857ce70354764cea42823d77745e57389140b87fb6f884630af09c637d7d29e77e5ee51e6250927945fb1d768566641e8fd051de3bc426b58b5de3ed34d7d27dd61b2bb80e6e6041eaf98810d1de02b94b0b8e6edc92f1fe8f4615721591aab5243eb96ccee7e0382bfcd6761d7add5c7d0a93e520adf9a71ae619ef0766928df1441c23f2ff5003459eb4952b9dfbb4f2384ab87382f72dd8e48630b6b18767905b4056222b86b0d907494f4353b86b581c7b4d1967102cdb143a2350aa2f9642d111aeb1db2e73c5a24e51d612c2e7520be3b0282488e08969fceb8346488aeedccc3770b7a8d1f"])
setsockopt$IP_VS_SO_SET_TIMEOUT(r3, 0x0, 0x48a, &(0x7f0000003b00)={0xff, 0x8779, 0x2}, 0xc)
ptrace$PTRACE_SECCOMP_GET_METADATA(0x420d, r2, 0x10, &(0x7f0000000240)={0xffff})
r5 = syz_open_dev$mice(&(0x7f0000000200)='/dev/input/mice\x00', 0x0, 0x400)
ioctl$int_in(r5, 0x5473, &(0x7f00000004c0)=0x8)
ioctl$EVIOCREVOKE(r5, 0x40044591, &(0x7f0000000480)=0x1)
process_vm_writev(r2, &(0x7f0000000100)=[{&(0x7f0000000580)=""/4096, 0x1000}, {&(0x7f0000001580)=""/141, 0x8d}, {&(0x7f00000000c0)=""/4, 0x4}, {&(0x7f0000001640)=""/148, 0x94}], 0x4, &(0x7f0000003a40)=[{&(0x7f0000001700)=""/219, 0xdb}, {&(0x7f0000001800)=""/199, 0xc7}, {&(0x7f0000000300)=""/101, 0x65}, {&(0x7f0000001900)=""/174, 0xae}, {&(0x7f00000019c0)=""/4096, 0x1000}, {&(0x7f00000029c0)=""/98, 0x62}, {&(0x7f0000002a40)=""/4096, 0x1000}], 0x7, 0x0)
getsockopt$IP_VS_SO_GET_DAEMON(r5, 0x0, 0x487, &(0x7f0000000280), &(0x7f00000002c0)=0x30)
dup2(r0, r1)
getsockopt$netrom_NETROM_T4(0xffffffffffffffff, 0x103, 0x6, &(0x7f0000000380), &(0x7f00000003c0)=0x4)

2018/03/31 01:44:41 executing program 1:
r0 = creat(&(0x7f0000000b40)='./file0\x00', 0x20)
ioctl$DRM_IOCTL_AGP_ALLOC(0xffffffffffffff9c, 0xc0206434, &(0x7f0000000b80)={0x5, <r1=>0x0, 0x0, 0x81})
ioctl$DRM_IOCTL_SG_FREE(r0, 0x40106439, &(0x7f0000000bc0)={0x3, r1})
r2 = socket$inet(0x2, 0x6, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f00000008c0)=@broute={'broute\x00', 0x20, 0x2, 0x3e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000280], 0x0, &(0x7f0000000240), &(0x7f0000000280)=ANY=[@ANYBLOB="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"]}, 0x460)
getsockopt$inet_sctp6_SCTP_CONTEXT(0xffffffffffffff9c, 0x84, 0x11, &(0x7f0000000000)={<r3=>0x0, 0x7}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r2, 0x84, 0xa, &(0x7f0000000140)={0x0, 0xa2b, 0x4, 0x7, 0x2, 0x20, 0x10000, 0x8a82, r3}, &(0x7f0000000180)=0x20)
setsockopt$inet_group_source_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000680)={0x1000, {{0x2, 0x4e23, @multicast1=0xe0000001}}, {{0x2, 0x4e22, @broadcast=0xffffffff}}}, 0x108)
ioctl$DRM_IOCTL_AGP_ENABLE(0xffffffffffffffff, 0x40086432, &(0x7f0000000100))
r4 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000c80)='/proc/sys/net/ipv4/vs/sync_version\x00', 0x2, 0x0)
ioctl$TIOCGSOFTCAR(r4, 0x5419, &(0x7f00000007c0))
r5 = socket$inet6(0x10, 0x2, 0x0)
sendmsg(r5, &(0x7f0000000080)={&(0x7f0000000240)=@un=@abs={0x1, 0x0, 0x4e23}, 0x80, &(0x7f0000000040)=[{&(0x7f00000001c0)="5500000018007f04002d1cb2a4a280930a0600007da843cf19d0f869390009402f002100040000001900050000fc1700000000dc1338d54400009b84136ef75afb83de448daa7227c43ab8220000060c", 0x50}], 0x1, &(0x7f00000000c0)}, 0x0)
socket$bt_cmtp(0x1f, 0x3, 0x5)
fcntl$addseals(r5, 0x409, 0x7)
syz_open_dev$sndmidi(&(0x7f0000000c00)='/dev/snd/midiC#D#\x00', 0x100000001, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f0000001640)=@broute={'broute\x00', 0x20, 0x1, 0x1e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20001700], 0x0, &(0x7f0000001980), &(0x7f0000001700)=ANY=[@ANYBLOB="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"]}, 0x260)
setsockopt$EBT_SO_SET_ENTRIES(0xffffffffffffffff, 0x0, 0x80, &(0x7f0000000840)=@nat={'nat\x00', 0x19, 0x1, 0x200, [0x20000940, 0x0, 0x0, 0x20000970, 0x200009a0], 0x0, &(0x7f0000000800), &(0x7f0000000940)=[{}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x14, 0x98ab, 'teql0\x00', 'ip6gretap0\x00', 'ip_vti0\x00', 'nr0\x00', @empty, [0x0, 0xff, 0x0, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2}, [0xff, 0x0, 0xff, 0x0, 0x0, 0xff], 0x100, 0x138, 0x170, [@time={'time\x00', 0x18, {{0x7, 0x3, 0x13782, 0x14fdf, 0x80, 0x4, 0x1}}}, @nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x2}}}]}, [@snat={'snat\x00', 0x10, {{@random="07901c8f0140"}}}]}, @common=@dnat={'dnat\x00', 0x10, {{@local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}, 0x10}}}}]}]}, 0x278)
syz_open_dev$dmmidi(&(0x7f0000000c40)='/dev/dmmidi#\x00', 0xae6d, 0x200)

2018/03/31 01:44:41 executing program 5:
r0 = syz_open_dev$amidi(&(0x7f0000000400)='/dev/amidi#\x00', 0x401, 0x40)
accept4$llc(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, &(0x7f0000000480)=0x10, 0x80800)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f0000005fd8)={'vcan0\x00', <r2=>0x0})
ioctl$KVM_SET_DEVICE_ATTR(r0, 0x4018aee1, &(0x7f0000000500)={0x0, 0x100000001, 0x5a, &(0x7f00000004c0)})
connect$can_bcm(r1, &(0x7f0000001ff0)={0x1d, r2}, 0x10)
ioctl$TIOCGSID(0xffffffffffffff9c, 0x5429, &(0x7f00000002c0)=<r3=>0x0)
waitid(0x0, r3, 0x0, 0x1000009, &(0x7f0000000300))
r4 = syz_open_dev$vcsn(&(0x7f0000000000)='/dev/vcs#\x00', 0xcd8, 0x101000)
getsockopt$SO_BINDTODEVICE(r4, 0x1, 0x19, &(0x7f0000000280), 0x10)
ioctl$EVIOCGABS0(r4, 0x80184540, &(0x7f0000000240)=""/64)
bind$vsock_dgram(r1, &(0x7f00000003c0)={0x28, 0x0, 0x2711, @reserved=0x1}, 0x10)
exit(0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000200)={r4, 0x0, 0x47, 0xde, &(0x7f0000000080)="3541471374d1e455c1f501bb3e7418a21f930d9fb82ac3588f54ad5a1a9e778bdf654fa39f19bcbc6ee4636a10d409c877cfe11ba160f73d4cde40422564bfdb62d8e5f8ba5097", &(0x7f0000000100)=""/222, 0x4, 0x3f}, 0x28)
ioctl$KVM_SET_TSS_ADDR(r4, 0xae47, 0xd000)
ioctl$KVM_CHECK_EXTENSION(r4, 0xae03, 0xffffffffffffffff)
openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000580)='/dev/qat_adf_ctl\x00', 0x4600, 0x0)
sendmsg$can_raw(r1, &(0x7f0000001fc8)={&(0x7f000000a000)={0x1d}, 0x10, &(0x7f0000000040)={&(0x7f000000a000)=@canfd={{0x1}, 0x0, 0x0, 0x0, 0x0, "0327e1b22b5fcef7739c699f5ff986ca08990039576a7d5cb2bdac3fa80acf584ecb5fee496e6866856b76b5f700000000000000004e2f9663a918fa1efd9b0b"}, 0x48}, 0x1}, 0x0)
ioctl$VHOST_GET_VRING_ENDIAN(r0, 0x4008af14, &(0x7f0000000540)={0x0, 0x9})

2018/03/31 01:44:41 executing program 7:
clone(0x200, &(0x7f0000000100)="abbcd764d5b6fd853189b4a102b248f0de7c0a5cc328ca13455598dc3d760fa566c64d7cb06a7e15cdb085165670f42b32809442c69a5942d03eb3fd42bf0ebb0272fc4beb43f269f26f57bbb67316f7c76c8d570edaa564720b4dfd8f32453fc2354ddc753155ac051e9e9657989f0bbf1c03e4cd9f735c6d1b95719dbbb1c04092f54f44256722d954f0000000000000000000000000000000", &(0x7f00000000c0), &(0x7f00008c8000), &(0x7f0000828ffe))
mknod(&(0x7f0000000000)='./file0\x00', 0x1000000000001040, 0x0)
execve(&(0x7f000007b000)='./file0\x00', &(0x7f0000000180), &(0x7f0000000040))
r0 = gettid()
r1 = syz_open_dev$mice(&(0x7f0000149000)='/dev/input/mice\x00', 0x0, 0x0)
execve(&(0x7f00000001c0)='./file0\x00', &(0x7f0000001540)=[&(0x7f0000000200)='user\x00', &(0x7f0000000240)='vmnet0\x00', &(0x7f0000001480)='user\x00', &(0x7f0000001500)='\x00'], &(0x7f00000015c0)=[&(0x7f0000001580)='#keyring\x00'])
msgget$private(0x0, 0x400)
timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000))
uselib(&(0x7f00000002c0)='./file0/file0\x00')
mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0xffffffffffffffff, 0x32, 0xffffffffffffffff, 0x0)
getsockopt$inet_sctp6_SCTP_INITMSG(r1, 0x84, 0x2, &(0x7f0000000040), &(0x7f0000000080)=0x8)
tkill(r0, 0x1000000000015)

2018/03/31 01:44:41 executing program 0:
socket$inet6(0xa, 0x0, 0x80000001)
socketpair(0x8000000000001e, 0x5, 0x0, &(0x7f0000a77ff8)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
read$eventfd(r1, &(0x7f0000000080), 0x8)
recvmmsg(r1, &(0x7f0000145000)=[{{&(0x7f000011a000)=@alg, 0x58, &(0x7f00009fd000)=[{&(0x7f0000e29000)=""/1, 0x1}], 0x1, &(0x7f0000728f89)}}, {{0x0, 0x0, &(0x7f0000f79000), 0x0, &(0x7f0000d3d000)}}], 0x2, 0x0, &(0x7f0000172ff0)={0x77359400})
ioctl$TIOCGPGRP(r0, 0x540f, &(0x7f0000000140)=<r2=>0x0)
ioprio_set$pid(0x2, r2, 0x1)
getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f0000000000)={<r3=>0x0, 0x1}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(r1, 0x84, 0x10, &(0x7f00000000c0)=@assoc_value={r3, 0x4c319fe9}, &(0x7f0000000100)=0x8)
r4 = dup2(r0, r0)
dup3(r1, r4, 0x0)

[  174.604226] FAULT_INJECTION: forcing a failure.
[  174.604226] name failslab, interval 1, probability 0, space 0, times 0
[  174.615490] CPU: 0 PID: 12925 Comm: syz-executor3 Not tainted 4.16.0-rc7+ #372
[  174.622850] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  174.632202] Call Trace:
[  174.634795]  dump_stack+0x194/0x24d
[  174.638427]  ? arch_local_irq_restore+0x53/0x53
[  174.643100]  should_fail+0x8c0/0xa40
[  174.646803]  ? kstrdup+0x39/0x70
[  174.650156]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  174.655238]  ? cgroup_mkdir+0x553/0xfc0
[  174.659188]  ? vfs_mkdir+0x390/0x600
[  174.662876]  ? SyS_mkdirat+0x22b/0x2b0
[  174.666739]  ? do_syscall_64+0x281/0x940
[  174.670777]  ? entry_SYSCALL_64_after_hwframe+0x42/0xb7
[  174.676118]  ? find_held_lock+0x35/0x1d0
[  174.680157]  ? find_held_lock+0x35/0x1d0
[  174.684194]  ? __lock_is_held+0xb6/0x140
[  174.688239]  ? check_same_owner+0x320/0x320
[  174.692539]  ? rcu_note_context_switch+0x710/0x710
[  174.697443]  ? rcu_read_lock_sched_held+0x108/0x120
[  174.702438]  should_failslab+0xec/0x120
[  174.706388]  kmem_cache_alloc+0x47/0x760
[  174.710425]  ? memcpy+0x45/0x50
[  174.713684]  ? kstrdup+0x59/0x70
[  174.717035]  __kernfs_new_node+0xe2/0x570
[  174.721160]  ? kernfs_dop_revalidate+0x380/0x380
[  174.725890]  ? kasan_check_read+0x11/0x20
[  174.730018]  ? read_word_at_a_time+0x12/0x20
[  174.734405]  ? strscpy+0x186/0x500
[  174.737925]  kernfs_new_node+0x80/0xe0
[  174.741788]  __kernfs_create_file+0x4b/0x320
[  174.746176]  cgroup_addrm_files+0x3c5/0xa70
[  174.750476]  ? cgroup_file_write+0x710/0x710
[  174.754867]  ? getrawmonotonic64+0x460/0x460
[  174.759252]  ? kernfs_active+0x92/0x160
[  174.763203]  ? debug_lockdep_rcu_enabled+0x77/0x90
[  174.768107]  ? cgroup_kn_set_ugid+0x2c7/0x370
[  174.772577]  ? cgroup_file_name+0x1d0/0x1d0
[  174.776876]  css_populate_dir+0x340/0x420
[  174.781000]  cgroup_mkdir+0x553/0xfc0
[  174.784781]  ? __lock_is_held+0xb6/0x140
[  174.788818]  ? cgroup_destroy_locked+0x750/0x750
[  174.793547]  ? rcu_read_lock_sched_held+0x108/0x120
[  174.798539]  ? kmem_cache_free+0x258/0x2a0
[  174.802748]  ? set_nlink+0xc1/0x160
[  174.806350]  ? debug_lockdep_rcu_enabled+0x77/0x90
[  174.811254]  ? generic_permission+0x105/0x3c0
[  174.815727]  ? cgroup_destroy_locked+0x750/0x750
[  174.820458]  kernfs_iop_mkdir+0x153/0x1e0
[  174.824582]  vfs_mkdir+0x390/0x600
[  174.828100]  SyS_mkdirat+0x22b/0x2b0
[  174.831791]  ? SyS_mknod+0x480/0x480
[  174.835480]  ? trace_hardirqs_on+0xd/0x10
[  174.839603]  ? do_syscall_64+0xb7/0x940
[  174.843559]  ? SyS_mknod+0x480/0x480
[  174.847247]  do_syscall_64+0x281/0x940
[  174.851113]  ? vmalloc_sync_all+0x30/0x30
[  174.855234]  ? _raw_spin_unlock_irq+0x27/0x70
[  174.859705]  ? finish_task_switch+0x1c1/0x7e0
[  174.864174]  ? syscall_return_slowpath+0x550/0x550
[  174.869079]  ? syscall_return_slowpath+0x2ac/0x550
[  174.873983]  ? prepare_exit_to_usermode+0x350/0x350
[  174.878978]  ? entry_SYSCALL_64_after_hwframe+0x52/0xb7
[  174.884317]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  174.889138]  entry_SYSCALL_64_after_hwframe+0x42/0xb7
[  174.894304] RIP: 0033:0x454e79
[  174.897471] RSP: 002b:00007fa6ef25cc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
2018/03/31 01:44:41 executing program 2:
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000140)="2e2f6367726f757000361a6f74a1b774b8642f3dfdd313d92946ff0167415d8dc22791dcd496520c1c99f4b07d3b2a11090000000229210b73abdcd2986fc290ac9b6ace278586d39949a54fb276eb1fd3964b0cad27e417b33abb8d3b00e64e75e4dff47de27536dccdde5fc746b04faafcec347560a31b3a35a5f20bc949d75cbb763987", 0x200002, 0x0)
r1 = openat$cgroup_procs(r0, &(0x7f0000000080)='cgroup.procs\x00', 0x2, 0x0)
sendfile(r1, r1, &(0x7f0000000040), 0x1)
socketpair$ax25(0x3, 0x3, 0x0, &(0x7f0000000480)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$sock_SIOCGPGRP(r2, 0x8904, &(0x7f0000000000)=<r3=>0x0)
r4 = syz_open_dev$sndpcmc(&(0x7f0000000400)='/dev/snd/pcmC#D#c\x00', 0x40, 0x0)
r5 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000440)='/dev/mixer\x00', 0x8000, 0x0)
ioctl$sock_bt_bnep_BNEPCONNADD(r4, 0x400442c8, &(0x7f0000003b40)=ANY=[@ANYRES32=r5, @ANYBLOB="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"])
setsockopt$IP_VS_SO_SET_TIMEOUT(r4, 0x0, 0x48a, &(0x7f0000003b00)={0xff, 0x8779, 0x2}, 0xc)
ptrace$PTRACE_SECCOMP_GET_METADATA(0x420d, r3, 0x10, &(0x7f0000000240)={0xffff})
r6 = syz_open_dev$mice(&(0x7f0000000200)='/dev/input/mice\x00', 0x0, 0x400)
ioctl$EVIOCREVOKE(r6, 0x40044591, &(0x7f0000003ac0)=0x1)
process_vm_writev(r3, &(0x7f0000000100)=[{&(0x7f0000000580)=""/4096, 0x1000}, {&(0x7f0000001580)=""/141, 0x8d}, {&(0x7f00000000c0)=""/4, 0x4}, {&(0x7f0000001640)=""/148, 0x94}], 0x4, &(0x7f0000003a40)=[{&(0x7f0000001700)=""/219, 0xdb}, {&(0x7f0000001800)=""/199, 0xc7}, {&(0x7f0000000300)=""/101, 0x65}, {&(0x7f0000001900)=""/174, 0xae}, {&(0x7f00000019c0)=""/4096, 0x1000}, {&(0x7f00000029c0)=""/98, 0x62}, {&(0x7f0000002a40)=""/4096, 0x1000}], 0x7, 0x0)
getsockopt$IP_VS_SO_GET_DAEMON(r6, 0x0, 0x487, &(0x7f0000000280), &(0x7f00000002c0)=0x30)
dup2(r0, r1)
getsockopt$netrom_NETROM_T4(0xffffffffffffffff, 0x103, 0x6, &(0x7f0000000380), &(0x7f00000003c0)=0x4)

2018/03/31 01:44:41 executing program 3 (fault-call:3 fault-nth:17):
mkdir(&(0x7f00000001c0)='./file0\x00', 0x0)
mount(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000380)='./file0\x00', &(0x7f0000000300)='cgroup2\x00', 0x0, 0x0)
r0 = open$dir(&(0x7f000001bff4)='./file0\x00', 0x0, 0x0)
mkdirat(r0, &(0x7f0000000280)='./file0\x00', 0x20)
getdents64(r0, &(0x7f00000007c0)=""/250, 0x1015a)
fadvise64(r0, 0x0, 0x41, 0x3)
unlinkat(r0, &(0x7f0000000080)='./file0\x00', 0x200)
r1 = open$dir(&(0x7f0000000180)='./file0\x00', 0x105600, 0x81)
fchdir(r0)
link(&(0x7f0000000740)='./file1\x00', &(0x7f0000000780)='./file0/file0\x00')
renameat2(r1, &(0x7f0000000200)='./file1\x00', r0, &(0x7f0000000240)='./file0\x00', 0xfd1092750066ec78)
pivot_root(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='./file0\x00')
r2 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000100)='/dev/rfkill\x00', 0x2c42, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_LIST(r2, 0xc0505510, &(0x7f0000000480)={0x1000, 0x1, 0x474, 0x1, &(0x7f0000000140)=[{}]})
unlink(&(0x7f00000000c0)='./file0\x00')
symlinkat(&(0x7f0000000400)='./file0/file0\x00', r0, &(0x7f0000000440)='./file0/file0\x00')
iopl(0x6)
recvmsg$kcm(0xffffffffffffffff, &(0x7f0000000680)={&(0x7f0000000500)=@pppol2tp={0x0, 0x0, {0x0, <r3=>0xffffffffffffffff, {0x0, 0x0, @broadcast}}}, 0x80, &(0x7f0000000600)=[{&(0x7f0000000580)=""/80, 0x50}, {&(0x7f00000008c0)=""/4096, 0x1000}], 0x2, &(0x7f0000000640)=""/45, 0x2d, 0x206e}, 0x20)
r4 = syz_open_dev$sndpcmp(&(0x7f00000018c0)='/dev/snd/pcmC#D#p\x00', 0x5, 0x10a00)
ioctl$KVM_GET_DEVICE_ATTR(r4, 0x4018aee2, &(0x7f0000001940)={0x0, 0x100, 0x9, &(0x7f0000001900)})
recvfrom$ipx(r3, &(0x7f00000006c0)=""/52, 0x34, 0x100, &(0x7f0000000700)={0x4, 0x9a2, 0x4, "dc108d9d4391", 0x5}, 0x10)
renameat(r0, &(0x7f0000001980)='./file1\x00', r4, &(0x7f00000019c0)='./file0/file0\x00')

[  174.905155] RAX: ffffffffffffffda RBX: 00007fa6ef25d6d4 RCX: 0000000000454e79
[  174.912398] RDX: 0000000000000020 RSI: 0000000020000280 RDI: 0000000000000013
[  174.919640] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  174.926885] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000014
[  174.934131] R13: 00000000000003eb R14: 00000000006f7ea8 R15: 0000000000000010
[  174.941564] cgroup: cgroup_addrm_files: failed to add cgroup.controllers, err=-12
2018/03/31 01:44:41 executing program 1:
r0 = creat(&(0x7f0000000b40)='./file0\x00', 0x20)
ioctl$DRM_IOCTL_AGP_ALLOC(0xffffffffffffff9c, 0xc0206434, &(0x7f0000000b80)={0x5, <r1=>0x0, 0x0, 0x81})
ioctl$DRM_IOCTL_SG_FREE(r0, 0x40106439, &(0x7f0000000bc0)={0x3, r1})
r2 = socket$inet(0x2, 0x6, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f00000008c0)=@broute={'broute\x00', 0x20, 0x2, 0x3e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000280], 0x0, &(0x7f0000000240), &(0x7f0000000280)=ANY=[@ANYBLOB="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"]}, 0x460)
getsockopt$inet_sctp6_SCTP_CONTEXT(0xffffffffffffff9c, 0x84, 0x11, &(0x7f0000000000)={<r3=>0x0, 0x7}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r2, 0x84, 0xa, &(0x7f0000000140)={0x0, 0xa2b, 0x4, 0x7, 0x2, 0x20, 0x10000, 0x8a82, r3}, &(0x7f0000000180)=0x20)
setsockopt$inet_group_source_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000680)={0x1000, {{0x2, 0x4e23, @multicast1=0xe0000001}}, {{0x2, 0x4e22, @broadcast=0xffffffff}}}, 0x108)
ioctl$DRM_IOCTL_AGP_ENABLE(0xffffffffffffffff, 0x40086432, &(0x7f0000000100))
r4 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/vs/sync_version\x00', 0x2, 0x0)
ioctl$TIOCGSOFTCAR(r4, 0x5419, &(0x7f00000007c0))
r5 = socket$inet6(0x10, 0x6, 0x1)
sendmsg(r5, &(0x7f0000000080)={&(0x7f0000000240)=@un=@abs={0x1, 0x0, 0x4e23}, 0x80, &(0x7f0000000040)=[{&(0x7f00000001c0)="5500000018007f04002d1cb2a4a280930a0600007da843cf19d0f869390009402f002100040000001900050000fc1700000000dc1338d54400009b84136ef75afb83de448daa7227c43ab8220000060c", 0x50}], 0x1, &(0x7f00000000c0)}, 0x0)
socket$bt_cmtp(0x1f, 0x3, 0x5)
fcntl$addseals(r5, 0x409, 0x7)
syz_open_dev$sndmidi(&(0x7f0000000c00)='/dev/snd/midiC#D#\x00', 0x100000001, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f0000001640)=@broute={'broute\x00', 0x20, 0x1, 0x1e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20001700], 0x0, &(0x7f0000001980), &(0x7f0000001700)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1, [{{{0x13, 0x0, 0x0, 'vcan0\x00', 'ifb0\x00', 'syzkaller0\x00', 'vcan0\x00', @remote={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xbb}, [], @link_local={0x1, 0x80, 0xc2}, [], 0x70, 0xf8, 0x128}, [@common=@dnat={'dnat\x00', 0x10, {{@dev={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa]}, 0xffffffffffffffff}}}, @common=@IDLETIMER={'IDLETIMER\x00', 0x28, {{0x4, 'syz0\x00'}}}]}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8}}]}, {0x0, '\x00', 0x1, 0xffffbffffffffffe}]}, 0x260)
setsockopt$EBT_SO_SET_ENTRIES(0xffffffffffffffff, 0x0, 0x80, &(0x7f0000000840)=@nat={'nat\x00', 0x19, 0x1, 0x200, [0x20000940, 0x0, 0x0, 0x20000970, 0x200009a0], 0x0, &(0x7f0000000800), &(0x7f0000000940)=[{}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x14, 0x98ab, 'teql0\x00', 'ip6gretap0\x00', 'ip_vti0\x00', 'nr0\x00', @empty, [0x0, 0xff, 0x0, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2}, [0xff, 0x0, 0xff, 0x0, 0x0, 0xff], 0x100, 0x138, 0x170, [@time={'time\x00', 0x18, {{0x7, 0x3, 0x13782, 0x14fdf, 0x80, 0x4, 0x1}}}, @nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x2}}}]}, [@snat={'snat\x00', 0x10, {{@random="07901c8f0140"}}}]}, @common=@dnat={'dnat\x00', 0x10, {{@local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}, 0x10}}}}]}]}, 0x278)
syz_open_dev$dmmidi(&(0x7f0000000c40)='/dev/dmmidi#\x00', 0xae6d, 0x200)

[  175.048930] FAULT_INJECTION: forcing a failure.
[  175.048930] name failslab, interval 1, probability 0, space 0, times 0
[  175.060360] CPU: 0 PID: 12947 Comm: syz-executor3 Not tainted 4.16.0-rc7+ #372
[  175.067717] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  175.077056] Call Trace:
[  175.079629]  dump_stack+0x194/0x24d
[  175.083236]  ? arch_local_irq_restore+0x53/0x53
[  175.087889]  should_fail+0x8c0/0xa40
[  175.091584]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  175.096669]  ? kernfs_add_one+0x50/0x450
[  175.100710]  ? rb_first_postorder+0xa0/0xa0
[  175.105010]  ? kernfs_add_one+0x50/0x450
[  175.109059]  ? trace_event_raw_event_lock+0x340/0x340
[  175.114228]  ? trace_hardirqs_off+0x10/0x10
[  175.118530]  ? find_held_lock+0x35/0x1d0
[  175.122570]  ? __lock_is_held+0xb6/0x140
[  175.126619]  ? check_same_owner+0x320/0x320
[  175.130916]  ? lock_downgrade+0x980/0x980
[  175.135049]  ? rcu_note_context_switch+0x710/0x710
[  175.139968]  should_failslab+0xec/0x120
[  175.143922]  __kmalloc_track_caller+0x5f/0x760
[  175.148485]  ? idr_alloc_cyclic+0x1d6/0x320
[  175.152786]  ? kstrdup_const+0x39/0x50
[  175.156649]  ? __mutex_unlock_slowpath+0xe9/0xac0
[  175.161472]  kstrdup+0x39/0x70
[  175.164646]  kstrdup_const+0x39/0x50
[  175.168341]  __kernfs_new_node+0xa2/0x570
[  175.172469]  ? kernfs_dop_revalidate+0x380/0x380
[  175.177205]  ? kasan_check_read+0x11/0x20
[  175.181332]  ? read_word_at_a_time+0x12/0x20
[  175.185716]  ? strscpy+0x186/0x500
[  175.189247]  kernfs_new_node+0x80/0xe0
[  175.193115]  __kernfs_create_file+0x4b/0x320
[  175.197517]  cgroup_addrm_files+0x3c5/0xa70
[  175.201822]  ? cgroup_file_write+0x710/0x710
[  175.206216]  ? getrawmonotonic64+0x460/0x460
[  175.210605]  ? kernfs_active+0x92/0x160
[  175.214561]  ? debug_lockdep_rcu_enabled+0x77/0x90
[  175.219469]  ? cgroup_kn_set_ugid+0x2c7/0x370
[  175.223939]  ? cgroup_file_name+0x1d0/0x1d0
[  175.228246]  css_populate_dir+0x340/0x420
[  175.232374]  cgroup_mkdir+0x553/0xfc0
[  175.236148]  ? __lock_is_held+0xb6/0x140
[  175.240189]  ? cgroup_destroy_locked+0x750/0x750
[  175.244920]  ? rcu_read_lock_sched_held+0x108/0x120
[  175.249914]  ? kmem_cache_free+0x258/0x2a0
[  175.254125]  ? set_nlink+0xc1/0x160
[  175.257733]  ? debug_lockdep_rcu_enabled+0x77/0x90
[  175.262639]  ? generic_permission+0x105/0x3c0
[  175.267113]  ? cgroup_destroy_locked+0x750/0x750
[  175.271847]  kernfs_iop_mkdir+0x153/0x1e0
[  175.275973]  vfs_mkdir+0x390/0x600
[  175.279495]  SyS_mkdirat+0x22b/0x2b0
[  175.283189]  ? SyS_mknod+0x480/0x480
[  175.286878]  ? trace_hardirqs_on+0xd/0x10
[  175.291005]  ? do_syscall_64+0xb7/0x940
[  175.294961]  ? SyS_mknod+0x480/0x480
[  175.298652]  do_syscall_64+0x281/0x940
[  175.302518]  ? vmalloc_sync_all+0x30/0x30
[  175.306643]  ? _raw_spin_unlock_irq+0x27/0x70
[  175.311115]  ? finish_task_switch+0x1c1/0x7e0
[  175.315589]  ? syscall_return_slowpath+0x550/0x550
[  175.320494]  ? syscall_return_slowpath+0x2ac/0x550
[  175.325402]  ? prepare_exit_to_usermode+0x350/0x350
[  175.330399]  ? entry_SYSCALL_64_after_hwframe+0x52/0xb7
[  175.335740]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  175.340564]  entry_SYSCALL_64_after_hwframe+0x42/0xb7
[  175.345734] RIP: 0033:0x454e79
[  175.348898] RSP: 002b:00007fa6ef25cc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
[  175.356590] RAX: ffffffffffffffda RBX: 00007fa6ef25d6d4 RCX: 0000000000454e79
[  175.363837] RDX: 0000000000000020 RSI: 0000000020000280 RDI: 0000000000000013
[  175.371081] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  175.378329] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000014
[  175.385583] R13: 00000000000003eb R14: 00000000006f7ea8 R15: 0000000000000011
2018/03/31 01:44:42 executing program 2:
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000140)="2e2f6367726f757000361a6f74a1b774b8642f3dfdd313d92946ff0167415d8dc22791dcd496520c1c99f4b07d3b2a11090000000229210b73abdcd2986fc290ac9b6ace278586d39949a54fb276eb1fd3964b0cad27e417b33abb8d3b00e64e75e4dff47de27536dccdde5fc746b04faafcec347560a31b3a35a5f20bc949d75cbb763987", 0x200002, 0x0)
r1 = openat$cgroup_procs(r0, &(0x7f0000000080)='cgroup.procs\x00', 0x2, 0x0)
sendfile(r1, r1, &(0x7f0000000040), 0x1)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000000)=<r2=>0x0)
r3 = syz_open_dev$sndpcmc(&(0x7f0000000400)='/dev/snd/pcmC#D#c\x00', 0x40, 0x0)
openat$mixer(0xffffffffffffff9c, &(0x7f0000000440)='/dev/mixer\x00', 0x8000, 0x0)
ioctl$sock_bt_bnep_BNEPCONNADD(r3, 0x400442c8, &(0x7f0000003b40)=ANY=[])
setsockopt$IP_VS_SO_SET_TIMEOUT(r3, 0x0, 0x48a, &(0x7f0000003b00)={0xff, 0x8779, 0x2}, 0xc)
ptrace$PTRACE_SECCOMP_GET_METADATA(0x420d, r2, 0x10, &(0x7f0000000240)={0xffff})
r4 = syz_open_dev$mice(&(0x7f0000000200)='/dev/input/mice\x00', 0x0, 0x400)
ioctl$EVIOCREVOKE(r4, 0x40044591, &(0x7f0000003ac0)=0x1)
process_vm_writev(r2, &(0x7f0000000100)=[{&(0x7f0000000580)=""/4096, 0x1000}, {&(0x7f0000001580)=""/141, 0x8d}, {&(0x7f00000000c0)=""/4, 0x4}, {&(0x7f0000001640)=""/148, 0x94}], 0x4, &(0x7f0000003a40)=[{&(0x7f0000001700)=""/219, 0xdb}, {&(0x7f0000001800)=""/199, 0xc7}, {&(0x7f0000000300)=""/101, 0x65}, {&(0x7f0000001900)=""/174, 0xae}, {&(0x7f00000019c0)=""/4096, 0x1000}, {&(0x7f00000029c0)=""/98, 0x62}, {&(0x7f0000002a40)=""/4096, 0x1000}], 0x7, 0x0)
getsockopt$IP_VS_SO_GET_DAEMON(r4, 0x0, 0x487, &(0x7f0000000280), &(0x7f00000002c0)=0x30)
dup2(r0, r1)
getsockopt$netrom_NETROM_T4(0xffffffffffffffff, 0x103, 0x6, &(0x7f0000000380), &(0x7f00000003c0)=0x4)
signalfd(r0, &(0x7f0000000480)={0x80000001}, 0x8)

2018/03/31 01:44:42 executing program 6:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x200, 0x0)
socketpair$inet6_icmp_raw(0xa, 0x3, 0x3a, &(0x7f0000000680)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
setsockopt$sock_linger(r1, 0x1, 0xd, &(0x7f00000006c0)={0x400, 0x9}, 0x8)
perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
mmap(&(0x7f0000000000/0x9d7000)=nil, 0x9d7000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x7)
perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r4, &(0x7f0000e5b000)={0x2, 0x4e20, @multicast1=0xe0000001}, 0x10)
syz_open_dev$sg(&(0x7f0000000440)='/dev/sg#\x00', 0x0, 0x0)
connect$inet(r4, &(0x7f0000000100)={0x2, 0x4e20, @multicast2=0xe0000002}, 0x10)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000eb0fb8)={0x1, 0x3, &(0x7f00009ff000)=@framed={{0x18}, [], {0x95}}, &(0x7f00002bf000)='syzkaller\x00', 0x4, 0xb7, &(0x7f00006ab000)=""/183}, 0x48)
setsockopt$inet_tcp_int(r4, 0x6, 0x19, &(0x7f0000000240)=0x8, 0x4)
setsockopt$SO_BINDTODEVICE(r4, 0x1, 0x19, &(0x7f0000000000)="6970365f76746930000000000400", 0x10)
r6 = socket$kcm(0x29, 0x2, 0x0)
ioctl$sock_kcm_SIOCKCMATTACH(r6, 0x89e0, &(0x7f000031aff8)={r4, r5})
ioctl$sock_kcm_SIOCKCMCLONE(r6, 0x89e2, &(0x7f00000002c0)={<r7=>0xffffffffffffffff})
sendmsg$nl_xfrm(r7, &(0x7f0000000780)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000740)={&(0x7f0000000480)=@updpolicy={0xb8, 0x19, 0x0, 0x0, 0x0, {{@in=@loopback=0x7f000001, @in6=@mcast1={0xff, 0x1, [], 0x1}}}}, 0xffcb}, 0x1}, 0x0)
ioctl$sock_kcm_SIOCKCMUNATTACH(r7, 0x89e1, &(0x7f0000000040)={r4})
r8 = fcntl$getown(r3, 0x9)
r9 = accept4$inet(0xffffffffffffff9c, &(0x7f0000000700)={0x0, 0x0, @broadcast}, &(0x7f0000000740)=0x10, 0x80000)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r9, 0x84, 0x64, &(0x7f0000000300)=[@in6={0xa, 0x0, 0x0, @dev={0xfe, 0x80, [], 0xf}, 0x6}, @in={0x2, 0xff, @local={0xac, 0x14, 0x14, 0xaa}}, @in={0x2, 0x4e23, @multicast1=0xe0000001}, @in={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x10}}, @in={0x2, 0x4e20, @multicast1=0xe0000001}, @in={0x2, 0x4e24}, @in={0x2, 0x4e24, @broadcast=0xffffffff}, @in6={0xa, 0x4e21, 0xed34, @local={0xfe, 0x80, [], 0xaa}, 0x3}, @in={0x2, 0x4e23, @loopback=0x7f000001}], 0xfffffffffffffe00)
ptrace$setregset(0x4205, r8, 0x0, &(0x7f00000005c0)={&(0x7f0000000080)="449ed0dd6831a7fb44eca4221b1fb01abfec082aa7d0ee6f0ba9db0ece7da2bd3f", 0x21})
r10 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r11 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x1fffd, 0x0)
syz_open_dev$sndtimer(&(0x7f00000000c0)='/dev/snd/timer\x00', 0x0, 0x0)
read(r0, &(0x7f0000000140)=""/50, 0x32)
fcntl$dupfd(r10, 0x0, r11)

[  175.392918] cgroup: cgroup_addrm_files: failed to add cgroup.subtree_control, err=-12
2018/03/31 01:44:42 executing program 1:
r0 = creat(&(0x7f0000000b40)='./file0\x00', 0x20)
ioctl$DRM_IOCTL_AGP_ALLOC(0xffffffffffffff9c, 0xc0206434, &(0x7f0000000b80)={0x5, <r1=>0x0, 0x0, 0x81})
ioctl$DRM_IOCTL_SG_FREE(r0, 0x40106439, &(0x7f0000000bc0)={0x3, r1})
r2 = socket$inet(0x2, 0x6, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f00000008c0)=@broute={'broute\x00', 0x20, 0x2, 0x3e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000280], 0x0, &(0x7f0000000240), &(0x7f0000000280)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff01000000110000000000000000006970366772657461703000000000f8010000000000006e000000000000000000697036746e6c3000000000000000000073797a5f74756e0000000000000000000180c200000000000000ff00aaaaaaaaaabb00000000000000007000000008010000580100005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a30000000000000000000000000000000000000000000000000000000004c45440000000000000000000000000000000000000000000000000000000000280000000000000073797a3000000000000000000000000000000000000000000000000000000000000000000000000049444c4554494d4552000000000000000000000000000000000000000000000028000000000000000000010073797a30000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001000000ffffffff010000000d0000000000000086dd73797a6b616c6c65723000000000000074756e6c3000000000000000000000007369743000000000000000000000000069666230000000000000000000000000000000000000000000000000ffffffffffff000000000000000030010000b001000000020000697036000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000ffffac1414aa0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006c696d6974000000000000000000000000000000000000000000000000000000200000000000000000000000ec00000000000000000000000000000000000000000000000000000049444c4554494d4552000000000000000000000000000000000000000000000028000000000000008100000073797a3100000000000000000000000000000000000000000000000000000000000000004e46515545554500000000000000000000000000000000000000000000000000080000000000000000000000000000004c45440000000000000000000000000000000000000000000000000000000000280000000000000073797a30000000000000000000000000000000000000000000000000000000000000000000000000"]}, 0x460)
getsockopt$inet_sctp6_SCTP_CONTEXT(0xffffffffffffff9c, 0x84, 0x11, &(0x7f0000000000)={<r3=>0x0, 0x7}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r2, 0x84, 0xa, &(0x7f0000000140)={0x0, 0xa2b, 0x4, 0x7, 0x2, 0x20, 0x10000, 0x8a82, r3}, &(0x7f0000000180)=0x20)
setsockopt$inet_group_source_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000680)={0x1000, {{0x2, 0x4e23, @multicast1=0xe0000001}}, {{0x2, 0x4e22, @broadcast=0xffffffff}}}, 0x108)
ioctl$DRM_IOCTL_AGP_ENABLE(0xffffffffffffffff, 0x40086432, &(0x7f0000000100))
r4 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/vs/sync_version\x00', 0x2, 0x0)
ioctl$TIOCGSOFTCAR(r4, 0x5419, &(0x7f00000007c0))
r5 = socket$inet6(0x10, 0x2, 0x0)
setsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0x14, &(0x7f0000000cc0)=@int=0x7d7c, 0x4)
sendmsg(r5, &(0x7f0000000080)={&(0x7f0000000240)=@un=@abs={0x1, 0x0, 0x4e23}, 0x80, &(0x7f0000000040)=[{&(0x7f00000001c0)="5500000018007f04002d1cb2a4a280930a0600007da843cf19d0f869390009402f002100040000001900050000fc1700000000dc1338d54400009b84136ef75afb83de448daa7227c43ab8220000060c", 0x50}], 0x1, &(0x7f00000000c0)}, 0x0)
socket$bt_cmtp(0x1f, 0x3, 0x5)
fcntl$addseals(r5, 0x409, 0x7)
r6 = syz_open_dev$sndmidi(&(0x7f0000000c00)='/dev/snd/midiC#D#\x00', 0x100000001, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f0000001640)=@broute={'broute\x00', 0x20, 0x1, 0x1e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20001700], 0x0, &(0x7f0000001980), &(0x7f0000001700)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1, [{{{0x13, 0x0, 0x0, 'vcan0\x00', 'ifb0\x00', 'syzkaller0\x00', 'vcan0\x00', @remote={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xbb}, [], @link_local={0x1, 0x80, 0xc2}, [], 0x70, 0xf8, 0x128}, [@common=@dnat={'dnat\x00', 0x10, {{@dev={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa]}, 0xffffffffffffffff}}}, @common=@IDLETIMER={'IDLETIMER\x00', 0x28, {{0x4, 'syz0\x00'}}}]}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8}}]}, {0x0, '\x00', 0x1, 0xffffbffffffffffe}]}, 0x260)
setsockopt$inet_sctp_SCTP_AUTH_CHUNK(r6, 0x84, 0x15, &(0x7f0000000c80)={0x4}, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(0xffffffffffffffff, 0x0, 0x80, &(0x7f0000000840)=@nat={'nat\x00', 0x19, 0x1, 0x200, [0x20000940, 0x0, 0x0, 0x20000970, 0x200009a0], 0x0, &(0x7f0000000800), &(0x7f0000000940)=[{}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x14, 0x98ab, 'teql0\x00', 'ip6gretap0\x00', 'ip_vti0\x00', 'nr0\x00', @empty, [0x0, 0xff, 0x0, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2}, [0xff, 0x0, 0xff, 0x0, 0x0, 0xff], 0x100, 0x138, 0x170, [@time={'time\x00', 0x18, {{0x7, 0x3, 0x13782, 0x14fdf, 0x80, 0x4, 0x1}}}, @nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x2}}}]}, [@snat={'snat\x00', 0x10, {{@random="07901c8f0140"}}}]}, @common=@dnat={'dnat\x00', 0x10, {{@local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}, 0x10}}}}]}]}, 0x278)
syz_open_dev$dmmidi(&(0x7f0000000c40)='/dev/dmmidi#\x00', 0xae6d, 0x200)

2018/03/31 01:44:42 executing program 4:
r0 = syz_open_dev$sg(&(0x7f0000000080)='/dev/sg#\x00', 0x0, 0x80001)
r1 = syz_open_dev$sndpcmc(&(0x7f0000000000)='/dev/snd/pcmC#D#c\x00', 0xffff, 0xc40)
ioctl$KVM_S390_UCAS_MAP(r1, 0x4018ae50, &(0x7f00000001c0)={0x5, 0x74e, 0xf86})
ioctl$KVM_UNREGISTER_COALESCED_MMIO(r0, 0x4010ae68, &(0x7f0000000100)={0x4000, 0x102000})
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_CLOCK(r3, 0x4030ae7b, &(0x7f0000000040)={0x1, 0x3})
ioctl$KVM_DEASSIGN_PCI_DEVICE(r3, 0x4040ae72, &(0x7f0000000180)={0x9, 0x9, 0xfffffffffffffffb, 0x4, 0x6})
ioctl$KVM_GET_TSC_KHZ(r0, 0xaea3)
ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_SET_MSRS(r4, 0x4008ae89, &(0x7f00000002c0)=ANY=[@ANYBLOB="0100000000000000840000000500005900000000cd19417af8f7fb117ad922917ba2000000007182f2e7c88453bd7469716931e821cdbf5b487216c73c1907fa3fa72b014c1bab758bee6dc2cac9b447bfc2454f7be6c2a90f47aca9a7af07d38fdb68439af7d07b28b40b1475d0104ea2a58ff804c65a787195150deac7df65214001da59772d7440b668bb563bb9de1f9f2b5ae904"])

2018/03/31 01:44:42 executing program 7:
clone(0x200, &(0x7f0000000100)="abbcd764d5b6fd853189b4a102b248f0de7c0a5cc328ca13455598dc3d760fa566c64d7cb06a7e15cdb085165670f42b32809442c69a5942d03eb3fd42bf0ebb0272fc4beb43f269f26f57bbb67316f7c76c8d570edaa564720b4dfd8f32453fc2354ddc753155ac051e9e9657989f0bbf1c03e4cd9f735c6d1b95719dbbb1c04092f54f44256722d954f0000000000000000000000000000000", &(0x7f00000000c0), &(0x7f00008c8000), &(0x7f0000828ffe))
mknod(&(0x7f0000000000)='./file0\x00', 0x1000000000001040, 0x0)
execve(&(0x7f000007b000)='./file0\x00', &(0x7f0000000180), &(0x7f0000000040))
r0 = gettid()
r1 = syz_open_dev$mice(&(0x7f0000149000)='/dev/input/mice\x00', 0x0, 0x0)
execve(&(0x7f00000001c0)='./file0\x00', &(0x7f0000001540)=[&(0x7f0000000200)='user\x00', &(0x7f0000000240)='vmnet0\x00', &(0x7f0000001480)='user\x00', &(0x7f0000001500)='\x00'], &(0x7f00000015c0)=[&(0x7f0000001580)='#keyring\x00'])
msgget$private(0x0, 0x400)
timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000))
uselib(&(0x7f00000002c0)='./file0/file0\x00')
mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0xffffffffffffffff, 0x32, 0xffffffffffffffff, 0x0)
getsockopt$inet_sctp6_SCTP_INITMSG(r1, 0x84, 0x2, &(0x7f0000000040), &(0x7f0000000080)=0x8)
tkill(r0, 0x1000000000015)

2018/03/31 01:44:42 executing program 1:
r0 = creat(&(0x7f0000000b40)='./file0\x00', 0x20)
ioctl$fiemap(r0, 0xc020660b, &(0x7f0000000c80)={0x100, 0x0, 0x4, 0x6, 0x2, [{0x4, 0x1, 0xfffffffffffffa2e, 0x0, 0x0, 0x2200}, {0xffffffffffffffff, 0x8, 0x800, 0x0, 0x0, 0x2000}]})
ioctl$DRM_IOCTL_AGP_ALLOC(0xffffffffffffff9c, 0xc0206434, &(0x7f0000000b80)={0x5, <r1=>0x0, 0x0, 0x81})
ioctl$DRM_IOCTL_SG_FREE(r0, 0x40106439, &(0x7f0000000bc0)={0x3, r1})
r2 = socket$inet(0x2, 0x6, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f00000008c0)=@broute={'broute\x00', 0x20, 0x2, 0x3e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000280], 0x0, &(0x7f0000000240), &(0x7f0000000280)=ANY=[@ANYBLOB="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"]}, 0x460)
getsockopt$inet_sctp6_SCTP_CONTEXT(0xffffffffffffff9c, 0x84, 0x11, &(0x7f0000000000)={<r3=>0x0, 0x7}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r2, 0x84, 0xa, &(0x7f0000000140)={0x0, 0xa2b, 0x4, 0x7, 0x2, 0x20, 0x10000, 0x8a82, r3}, &(0x7f0000000180)=0x20)
setsockopt$inet_group_source_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000680)={0x1000, {{0x2, 0x4e23, @multicast1=0xe0000001}}, {{0x2, 0x4e22, @broadcast=0xffffffff}}}, 0x108)
ioctl$DRM_IOCTL_AGP_ENABLE(0xffffffffffffffff, 0x40086432, &(0x7f0000000100))
r4 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/vs/sync_version\x00', 0x2, 0x0)
ioctl$TIOCGSOFTCAR(r4, 0x5419, &(0x7f00000007c0))
r5 = socket$inet6(0x10, 0x2, 0x0)
sendmsg(r5, &(0x7f0000000080)={&(0x7f0000000240)=@un=@abs={0x1, 0x0, 0x4e23}, 0x80, &(0x7f0000000040)=[{&(0x7f00000001c0)="5500000018007f04002d1cb2a4a280930a0600007da843cf19d0f869390009402f002100040000001900050000fc1700000000dc1338d54400009b84136ef75afb83de448daa7227c43ab8220000060c", 0x50}], 0x1, &(0x7f00000000c0)}, 0x0)
socket$bt_cmtp(0x1f, 0x3, 0x5)
fcntl$addseals(r5, 0x409, 0x7)
syz_open_dev$sndmidi(&(0x7f0000000c00)='/dev/snd/midiC#D#\x00', 0x100000001, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f0000001640)=@broute={'broute\x00', 0x20, 0x1, 0x1e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20001700], 0x0, &(0x7f0000001980), &(0x7f0000001700)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1, [{{{0x13, 0x0, 0x0, 'vcan0\x00', 'ifb0\x00', 'syzkaller0\x00', 'vcan0\x00', @remote={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xbb}, [], @link_local={0x1, 0x80, 0xc2}, [], 0x70, 0xf8, 0x128}, [@common=@dnat={'dnat\x00', 0x10, {{@dev={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa]}, 0xffffffffffffffff}}}, @common=@IDLETIMER={'IDLETIMER\x00', 0x28, {{0x4, 'syz0\x00'}}}]}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8}}]}, {0x0, '\x00', 0x1, 0xffffbffffffffffe}]}, 0x260)
setsockopt$EBT_SO_SET_ENTRIES(0xffffffffffffffff, 0x0, 0x80, &(0x7f0000000840)=@nat={'nat\x00', 0x19, 0x1, 0x200, [0x20000940, 0x0, 0x0, 0x20000970, 0x200009a0], 0x0, &(0x7f0000000800), &(0x7f0000000940)=[{}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x14, 0x98ab, 'teql0\x00', 'ip6gretap0\x00', 'ip_vti0\x00', 'nr0\x00', @empty, [0x0, 0xff, 0x0, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2}, [0xff, 0x0, 0xff, 0x0, 0x0, 0xff], 0x100, 0x138, 0x170, [@time={'time\x00', 0x18, {{0x7, 0x3, 0x13782, 0x14fdf, 0x80, 0x4, 0x1}}}, @nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x2}}}]}, [@snat={'snat\x00', 0x10, {{@random="07901c8f0140"}}}]}, @common=@dnat={'dnat\x00', 0x10, {{@local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}, 0x10}}}}]}]}, 0x278)
syz_open_dev$dmmidi(&(0x7f0000000c40)='/dev/dmmidi#\x00', 0xae6d, 0x200)

2018/03/31 01:44:42 executing program 2:
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000140)="2e2f6367726f757000361a6f74a1b774b8642f3dfdd313d92946ff0167415d8dc22791dcd496520c1c99f4b07d3b2a11090000000229210b73abdcd2986fc290ac9b6ace278586d39949a54fb276eb1fd3964b0cad27e417b33abb8d3b00e64e75e4dff47de27536dccdde5fc746b04faafcec347560a31b3a35a5f20bc949d75cbb763987", 0x200002, 0x0)
r1 = openat$cgroup_procs(r0, &(0x7f0000000080)='cgroup.procs\x00', 0x2, 0x0)
sendfile(r1, r1, &(0x7f0000000040), 0x1)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000000)=<r2=>0x0)
r3 = syz_open_dev$sndpcmc(&(0x7f0000000400)='/dev/snd/pcmC#D#c\x00', 0x40, 0x0)
r4 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000440)='/dev/mixer\x00', 0x8000, 0x0)
ioctl$sock_bt_bnep_BNEPCONNADD(r3, 0x400442c8, &(0x7f0000003b40)=ANY=[@ANYRES32=r4, @ANYBLOB="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"])
setsockopt$IP_VS_SO_SET_TIMEOUT(r3, 0x0, 0x48a, &(0x7f0000003b00)={0xff, 0x8779, 0x2}, 0xc)
ptrace$PTRACE_SECCOMP_GET_METADATA(0x420d, r2, 0x10, &(0x7f0000000240)={0xffff})
r5 = syz_open_dev$mice(&(0x7f0000000200)='/dev/input/mice\x00', 0x0, 0x400)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r5, 0x84, 0x6e, &(0x7f0000000480)=[@in6={0xa, 0x4e21, 0x0, @loopback={0x0, 0x1}, 0x10000}, @in={0x2, 0x4e24}], 0x2c)
ioctl$EVIOCREVOKE(r5, 0x40044591, &(0x7f0000003ac0)=0x1)
process_vm_writev(r2, &(0x7f0000000100)=[{&(0x7f0000000580)=""/4096, 0x1000}, {&(0x7f0000001580)=""/141, 0x8d}, {&(0x7f00000000c0)=""/4, 0x4}, {&(0x7f0000001640)=""/148, 0x94}], 0x4, &(0x7f0000003a40)=[{&(0x7f0000001700)=""/219, 0xdb}, {&(0x7f0000001800)=""/199, 0xc7}, {&(0x7f0000000300)=""/101, 0x65}, {&(0x7f0000001900)=""/174, 0xae}, {&(0x7f00000019c0)=""/4096, 0x1000}, {&(0x7f00000029c0)=""/98, 0x62}, {&(0x7f0000002a40)=""/4096, 0x1000}], 0x7, 0x0)
getsockopt$IP_VS_SO_GET_DAEMON(r5, 0x0, 0x487, &(0x7f0000000280), &(0x7f00000002c0)=0x30)
dup2(r0, r1)
getsockopt$netrom_NETROM_T4(0xffffffffffffffff, 0x103, 0x6, &(0x7f0000000380), &(0x7f00000003c0)=0x4)

2018/03/31 01:44:43 executing program 5:
r0 = syz_open_dev$amidi(&(0x7f0000000400)='/dev/amidi#\x00', 0x401, 0x40)
accept4$llc(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, &(0x7f0000000480)=0x10, 0x80800)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f0000005fd8)={'vcan0\x00', <r2=>0x0})
ioctl$KVM_SET_DEVICE_ATTR(r0, 0x4018aee1, &(0x7f0000000500)={0x0, 0x100000001, 0x5a, &(0x7f00000004c0)})
connect$can_bcm(r1, &(0x7f0000001ff0)={0x1d, r2}, 0x10)
ioctl$TIOCGSID(0xffffffffffffff9c, 0x5429, &(0x7f00000002c0)=<r3=>0x0)
waitid(0x0, r3, 0x0, 0x1000009, &(0x7f0000000300))
r4 = syz_open_dev$vcsn(&(0x7f0000000000)='/dev/vcs#\x00', 0xcd8, 0x101000)
getsockopt$SO_BINDTODEVICE(r4, 0x1, 0x19, &(0x7f0000000280), 0x10)
ioctl$EVIOCGABS0(r4, 0x80184540, &(0x7f0000000240)=""/64)
bind$vsock_dgram(r1, &(0x7f00000003c0)={0x28, 0x0, 0x2711, @reserved=0x1}, 0x10)
exit(0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000200)={r4, 0x0, 0x47, 0xde, &(0x7f0000000080)="3541471374d1e455c1f501bb3e7418a21f930d9fb82ac3588f54ad5a1a9e778bdf654fa39f19bcbc6ee4636a10d409c877cfe11ba160f73d4cde40422564bfdb62d8e5f8ba5097", &(0x7f0000000100)=""/222, 0x4, 0x3f}, 0x28)
ioctl$KVM_SET_TSS_ADDR(r4, 0xae47, 0xd000)
ioctl$KVM_CHECK_EXTENSION(r4, 0xae03, 0xffffffffffffffff)
openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000580)='/dev/qat_adf_ctl\x00', 0x4600, 0x0)
sendmsg$can_raw(r1, &(0x7f0000001fc8)={&(0x7f000000a000)={0x1d}, 0x10, &(0x7f0000000040)={&(0x7f000000a000)=@canfd={{0x1}, 0x0, 0x0, 0x0, 0x0, "0327e1b22b5fcef7739c699f5ff986ca08990039576a7d5cb2bdac3fa80acf584ecb5fee496e6866856b76b5f700000000000000004e2f9663a918fa1efd9b0b"}, 0x48}, 0x1}, 0x0)
ioctl$VHOST_GET_VRING_ENDIAN(r0, 0x4008af14, &(0x7f0000000540)={0x0, 0x9})

2018/03/31 01:44:43 executing program 6:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x200, 0x0)
socketpair$inet6_icmp_raw(0xa, 0x3, 0x3a, &(0x7f0000000680)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
setsockopt$sock_linger(r1, 0x1, 0xd, &(0x7f00000006c0)={0x400, 0x9}, 0x8)
perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
mmap(&(0x7f0000000000/0x9d7000)=nil, 0x9d7000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x7)
perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r4, &(0x7f0000e5b000)={0x2, 0x4e20, @multicast1=0xe0000001}, 0x10)
syz_open_dev$sg(&(0x7f0000000440)='/dev/sg#\x00', 0x0, 0x0)
connect$inet(r4, &(0x7f0000000100)={0x2, 0x4e20, @multicast2=0xe0000002}, 0x10)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000eb0fb8)={0x1, 0x3, &(0x7f00009ff000)=@framed={{0x18}, [], {0x95}}, &(0x7f00002bf000)='syzkaller\x00', 0x4, 0xb7, &(0x7f00006ab000)=""/183}, 0x48)
setsockopt$inet_tcp_int(r4, 0x6, 0x19, &(0x7f0000000240)=0x8, 0x4)
setsockopt$SO_BINDTODEVICE(r4, 0x1, 0x19, &(0x7f0000000000)="6970365f76746930000000000400", 0x10)
r6 = socket$kcm(0x29, 0x2, 0x0)
ioctl$sock_kcm_SIOCKCMATTACH(r6, 0x89e0, &(0x7f000031aff8)={r4, r5})
ioctl$sock_kcm_SIOCKCMCLONE(r6, 0x89e2, &(0x7f00000002c0)={<r7=>0xffffffffffffffff})
sendmsg$nl_xfrm(r7, &(0x7f0000000780)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000740)={&(0x7f0000000480)=@updpolicy={0xb8, 0x19, 0x0, 0x0, 0x0, {{@in=@loopback=0x7f000001, @in6=@mcast1={0xff, 0x1, [], 0x1}}}}, 0xffcb}, 0x1}, 0x0)
ioctl$sock_kcm_SIOCKCMUNATTACH(r7, 0x89e1, &(0x7f0000000040)={r4})
r8 = fcntl$getown(r3, 0x9)
r9 = accept4$inet(0xffffffffffffff9c, &(0x7f0000000700)={0x0, 0x0, @broadcast}, &(0x7f0000000740)=0x10, 0x80000)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r9, 0x84, 0x64, &(0x7f0000000300)=[@in6={0xa, 0x0, 0x0, @dev={0xfe, 0x80, [], 0xf}, 0x6}, @in={0x2, 0xff, @local={0xac, 0x14, 0x14, 0xaa}}, @in={0x2, 0x4e23, @multicast1=0xe0000001}, @in={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x10}}, @in={0x2, 0x4e20, @multicast1=0xe0000001}, @in={0x2, 0x4e24}, @in={0x2, 0x4e24, @broadcast=0xffffffff}, @in6={0xa, 0x4e21, 0xed34, @local={0xfe, 0x80, [], 0xaa}, 0x3}, @in={0x2, 0x4e23, @loopback=0x7f000001}], 0xfffffffffffffe00)
ptrace$setregset(0x4205, r8, 0x0, &(0x7f00000005c0)={&(0x7f0000000080)="449ed0dd6831a7fb44eca4221b1fb01abfec082aa7d0ee6f0ba9db0ece7da2bd3f", 0x21})
r10 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r11 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x1fffd, 0x0)
syz_open_dev$sndtimer(&(0x7f00000000c0)='/dev/snd/timer\x00', 0x0, 0x0)
read(r0, &(0x7f0000000140)=""/50, 0x32)
fcntl$dupfd(r10, 0x0, r11)

2018/03/31 01:44:43 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ptmx\x00', 0x2002, 0x0)
ioctl$TIOCNXCL(r0, 0x540d)
r1 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000000)='/dev/cuse\x00', 0x208000, 0x0)
ioctl$KVM_CHECK_EXTENSION(r1, 0xae03, 0x12)

2018/03/31 01:44:43 executing program 3 (fault-call:3 fault-nth:18):
mkdir(&(0x7f00000001c0)='./file0\x00', 0x0)
mount(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000380)='./file0\x00', &(0x7f0000000300)='cgroup2\x00', 0x0, 0x0)
r0 = open$dir(&(0x7f000001bff4)='./file0\x00', 0x0, 0x0)
mkdirat(r0, &(0x7f0000000280)='./file0\x00', 0x20)
getdents64(r0, &(0x7f00000007c0)=""/250, 0x1015a)
fadvise64(r0, 0x0, 0x41, 0x3)
unlinkat(r0, &(0x7f0000000080)='./file0\x00', 0x200)
r1 = open$dir(&(0x7f0000000180)='./file0\x00', 0x105600, 0x81)
fchdir(r0)
link(&(0x7f0000000740)='./file1\x00', &(0x7f0000000780)='./file0/file0\x00')
renameat2(r1, &(0x7f0000000200)='./file1\x00', r0, &(0x7f0000000240)='./file0\x00', 0xfd1092750066ec78)
pivot_root(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='./file0\x00')
r2 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000100)='/dev/rfkill\x00', 0x2c42, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_LIST(r2, 0xc0505510, &(0x7f0000000480)={0x1000, 0x1, 0x474, 0x1, &(0x7f0000000140)=[{}]})
unlink(&(0x7f00000000c0)='./file0\x00')
symlinkat(&(0x7f0000000400)='./file0/file0\x00', r0, &(0x7f0000000440)='./file0/file0\x00')
iopl(0x6)
recvmsg$kcm(0xffffffffffffffff, &(0x7f0000000680)={&(0x7f0000000500)=@pppol2tp={0x0, 0x0, {0x0, <r3=>0xffffffffffffffff, {0x0, 0x0, @broadcast}}}, 0x80, &(0x7f0000000600)=[{&(0x7f0000000580)=""/80, 0x50}, {&(0x7f00000008c0)=""/4096, 0x1000}], 0x2, &(0x7f0000000640)=""/45, 0x2d, 0x206e}, 0x20)
r4 = syz_open_dev$sndpcmp(&(0x7f00000018c0)='/dev/snd/pcmC#D#p\x00', 0x5, 0x10a00)
ioctl$KVM_GET_DEVICE_ATTR(r4, 0x4018aee2, &(0x7f0000001940)={0x0, 0x100, 0x9, &(0x7f0000001900)})
recvfrom$ipx(r3, &(0x7f00000006c0)=""/52, 0x34, 0x100, &(0x7f0000000700)={0x4, 0x9a2, 0x4, "dc108d9d4391", 0x5}, 0x10)
renameat(r0, &(0x7f0000001980)='./file1\x00', r4, &(0x7f00000019c0)='./file0/file0\x00')

2018/03/31 01:44:43 executing program 1:
r0 = creat(&(0x7f0000000b40)='./file0\x00', 0x20)
ioctl$DRM_IOCTL_AGP_ALLOC(0xffffffffffffff9c, 0xc0206434, &(0x7f0000000b80)={0x5, <r1=>0x0, 0x0, 0x81})
ioctl$DRM_IOCTL_SG_FREE(r0, 0x40106439, &(0x7f0000000bc0)={0x3, r1})
r2 = socket$inet(0x2, 0x6, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f00000008c0)=@broute={'broute\x00', 0x20, 0x2, 0x3e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000280], 0x0, &(0x7f0000000240), &(0x7f0000000280)=ANY=[@ANYBLOB="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"]}, 0x460)
getsockopt$inet_sctp6_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f0000000000)={<r3=>0x0, 0x7}, &(0x7f0000000c80)=0x8)
getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r2, 0x84, 0xa, &(0x7f0000000140)={0x0, 0xa2b, 0x4, 0x7, 0x2, 0x20, 0x10000, 0x8a82, r3}, &(0x7f0000000180)=0x20)
setsockopt$inet_group_source_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000680)={0x1000, {{0x2, 0x4e23, @multicast1=0xe0000001}}, {{0x2, 0x4e22, @broadcast=0xffffffff}}}, 0x108)
ioctl$DRM_IOCTL_AGP_ENABLE(0xffffffffffffffff, 0x40086432, &(0x7f0000000100))
r4 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/vs/sync_version\x00', 0x2, 0x0)
ioctl$TIOCGSOFTCAR(r4, 0x5419, &(0x7f00000007c0))
r5 = socket$inet6(0x10, 0x2, 0x0)
sendmsg(r5, &(0x7f0000000080)={&(0x7f0000000240)=@un=@abs={0x1, 0x0, 0x4e23}, 0x80, &(0x7f0000000040)=[{&(0x7f00000001c0)="5500000018007f04002d1cb2a4a280930a0600007da843cf19d0f869390009402f002100040000001900050000fc1700000000dc1338d54400009b84136ef75afb83de448daa7227c43ab8220000060c", 0x50}], 0x1, &(0x7f00000000c0)}, 0x0)
socket$bt_cmtp(0x1f, 0x3, 0x5)
fcntl$addseals(r5, 0x409, 0x7)
syz_open_dev$sndmidi(&(0x7f0000000c00)='/dev/snd/midiC#D#\x00', 0x100000001, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f0000001640)=@broute={'broute\x00', 0x20, 0x1, 0x1e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20001700], 0x0, &(0x7f0000001980), &(0x7f0000001700)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1, [{{{0x13, 0x0, 0x0, 'vcan0\x00', 'ifb0\x00', 'syzkaller0\x00', 'vcan0\x00', @remote={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xbb}, [], @link_local={0x1, 0x80, 0xc2}, [], 0x70, 0xf8, 0x128}, [@common=@dnat={'dnat\x00', 0x10, {{@dev={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa]}, 0xffffffffffffffff}}}, @common=@IDLETIMER={'IDLETIMER\x00', 0x28, {{0x4, 'syz0\x00'}}}]}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8}}]}, {0x0, '\x00', 0x1, 0xffffbffffffffffe}]}, 0x260)
setsockopt$EBT_SO_SET_ENTRIES(0xffffffffffffffff, 0x0, 0x80, &(0x7f0000000840)=@nat={'nat\x00', 0x19, 0x1, 0x200, [0x20000940, 0x0, 0x0, 0x20000970, 0x200009a0], 0x0, &(0x7f0000000800), &(0x7f0000000cc0)=ANY=[@ANYBLOB="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"]}, 0x298)
syz_open_dev$dmmidi(&(0x7f0000000c40)='/dev/dmmidi#\x00', 0xae6d, 0x200)

2018/03/31 01:44:43 executing program 2:
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000140)="2e2f6367726f757000361a6f74a1b774b8642f3dfdd313d92946ff0167415d8dc22791dcd496520c1c99f4b07d3b2a11090000000229210b73abdcd2986fc290ac9b6ace278586d39949a54fb276eb1fd3964b0cad27e417b33abb8d3b00e64e75e4dff47de27536dccdde5fc746b04faafcec347560a31b3a35a5f20bc949d75cbb763987", 0x200002, 0x0)
r1 = openat$cgroup_procs(r0, &(0x7f0000000080)='cgroup.procs\x00', 0x2, 0x0)
sendfile(r1, r1, &(0x7f0000000040), 0x1)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000000)=<r2=>0x0)
r3 = syz_open_dev$sndpcmc(&(0x7f0000000400)='/dev/snd/pcmC#D#c\x00', 0x40, 0x0)
r4 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000440)='/dev/mixer\x00', 0x8000, 0x0)
ioctl$sock_bt_bnep_BNEPCONNADD(r3, 0x400442c8, &(0x7f0000003b40)=ANY=[@ANYRES32=r4, @ANYBLOB="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"])
ptrace$PTRACE_SECCOMP_GET_METADATA(0x420d, r2, 0x10, &(0x7f0000000240)={0xffff})
r5 = syz_open_dev$mice(&(0x7f0000000200)='/dev/input/mice\x00', 0x0, 0x400)
getsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(r4, 0x84, 0x75, &(0x7f0000000480)={<r6=>0x0, 0x9}, &(0x7f00000004c0)=0x8)
getsockopt$inet_sctp_SCTP_LOCAL_AUTH_CHUNKS(r4, 0x84, 0x1b, &(0x7f0000003c80)={r6, 0x85, "5ddcae4cae40649a6011a7d54977aeed76417917801c7dab864c29bc78688c46096a58d91f0dd9442affb0cc553ccefa296d46d0dfda7f9c1bc4978adaab1a6472711b42a67889c754330a698726caee63e7e8ae96c0eb6d005bc9d5a8c3505d4ec8d822dba767c51c59f4ffb3637f2014d72bbd2b1d975eafae5d9f5a3ecb95804adc3ed2"}, &(0x7f0000000500)=0x8d)
ioctl$EVIOCREVOKE(r5, 0x40044591, &(0x7f0000003ac0)=0x1)
process_vm_writev(r2, &(0x7f0000000100)=[{&(0x7f0000000580)=""/4096, 0x1000}, {&(0x7f0000001580)=""/141, 0x8d}, {&(0x7f00000000c0)=""/4, 0x4}, {&(0x7f0000001640)=""/148, 0x94}], 0x4, &(0x7f0000003a40)=[{&(0x7f0000001700)=""/219, 0xdb}, {&(0x7f0000001800)=""/199, 0xc7}, {&(0x7f0000000300)=""/101, 0x65}, {&(0x7f0000001900)=""/174, 0xae}, {&(0x7f00000019c0)=""/4096, 0x1000}, {&(0x7f00000029c0)=""/98, 0x62}, {&(0x7f0000002a40)=""/4096, 0x1000}], 0x7, 0x0)
getsockopt$IP_VS_SO_GET_DAEMON(r5, 0x0, 0x487, &(0x7f0000000280), &(0x7f00000002c0)=0x30)
dup2(r0, r1)
getsockopt$netrom_NETROM_T4(0xffffffffffffffff, 0x103, 0x6, &(0x7f0000000380), &(0x7f00000003c0)=0x4)

2018/03/31 01:44:43 executing program 7:
clone(0x200, &(0x7f0000000100)="abbcd764d5b6fd853189b4a102b248f0de7c0a5cc328ca13455598dc3d760fa566c64d7cb06a7e15cdb085165670f42b32809442c69a5942d03eb3fd42bf0ebb0272fc4beb43f269f26f57bbb67316f7c76c8d570edaa564720b4dfd8f32453fc2354ddc753155ac051e9e9657989f0bbf1c03e4cd9f735c6d1b95719dbbb1c04092f54f44256722d954f0000000000000000000000000000000", &(0x7f00000000c0), &(0x7f00008c8000), &(0x7f0000828ffe))
mknod(&(0x7f0000000000)='./file0\x00', 0x1000000000001040, 0x0)
execve(&(0x7f000007b000)='./file0\x00', &(0x7f0000000180), &(0x7f0000000040))
r0 = gettid()
r1 = syz_open_dev$mice(&(0x7f0000149000)='/dev/input/mice\x00', 0x0, 0x0)
execve(&(0x7f00000001c0)='./file0\x00', &(0x7f0000001540)=[&(0x7f0000000200)='user\x00', &(0x7f0000000240)='vmnet0\x00', &(0x7f0000000280)='user\x00', &(0x7f0000001500)='\x00'], &(0x7f00000015c0)=[&(0x7f0000001580)='#keyring\x00'])
msgget$private(0x0, 0x400)
timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000))
uselib(&(0x7f00000002c0)='./file0/file0\x00')
mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0xffffffffffffffff, 0x32, 0xffffffffffffffff, 0x0)
getsockopt$inet_sctp6_SCTP_INITMSG(r1, 0x84, 0x2, &(0x7f0000000040), &(0x7f0000000080)=0x8)
tkill(r0, 0x1000000000015)

2018/03/31 01:44:43 executing program 4:
r0 = socket$alg(0x26, 0x5, 0x0)
close(r0)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f0000d36000)={0x26, 'skcipher\x00', 0x0, 0x0, 'lrw-serpent-avx2\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000001f3a)="ad56b6c5820faeb995298992ea54c7be", 0x10)
getsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000), 0x10)
r2 = accept$alg(r0, 0x0, 0x0)
close(r0)
sendmsg$alg(r2, &(0x7f0000001300)={0x0, 0x0, &(0x7f0000001280)=[{&(0x7f0000001740)="26fe6bbd22e1c516390d2def920057d19b8834c5f714cf28a5f622f9a64db7c134e76f50cc0e0ee56f0defcca50b1193fb7047512fe18f51719fca6026c58c80ff0b0bc389779cc6dcff86353e65b9762dc50a5f44059df2e170abc6589ac48030b9e1b75ebefea6b5e9ee4dc386ee149e41b0d09f970e0f4862943c663255f686e860dffa32d20315d40570c301459473fbc5b51a8f81294c94bfb8142f1d40e28bc2ead49285427defa78fd181e573d6ed4202fc5d64ba092871b02d3fd198324b586be690d6d97febc26f9742ebc4a38a6db3ed3f9d08dcb82c25b4c853552e41a477ceedb0756d7a5b7c174bda723937d18953d7c0be4b603f111170b45cc9fbf22d8f084930f1a6f23a9adef5b8a3cf13e86b34807c2d9723487e3b8361717fcd07fd6aaf0edc2c8fa91eb9f3d36cbb1079e7c4dd66eb55ad7078b8e1275b01fd4f52f4eac1475e5f118f3333a2e6f1ff16904a5b76469ea473e36846e6c48f8da5a8367354004210059bc18c191eb17e3553709cde12fec70be55916bf9ad4b08659e761c47c7f37b6616448cad8e44aa29949cc6c9571b660073ab610aad24028f3e569c2cb3104478b0cbdc989ef669a49dd08c43d19cb706910c1b85ae2416e10bcafcc9eeb828c5ce781de8ee64adfe4", 0x1d5}], 0x1}, 0x0)
recvmsg(r2, &(0x7f0000001700)={&(0x7f0000001440)=@in={0x0, 0x0, @remote}, 0x80, &(0x7f00000015c0)=[{&(0x7f00000000c0)=""/4096, 0x1000}], 0x1, &(0x7f0000001600)=""/193, 0xc1}, 0x0)

[  176.453362] FAULT_INJECTION: forcing a failure.
[  176.453362] name failslab, interval 1, probability 0, space 0, times 0
[  176.464680] CPU: 1 PID: 13000 Comm: syz-executor3 Not tainted 4.16.0-rc7+ #372
[  176.472038] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  176.481382] Call Trace:
[  176.483958]  dump_stack+0x194/0x24d
[  176.487573]  ? arch_local_irq_restore+0x53/0x53
[  176.492229]  should_fail+0x8c0/0xa40
[  176.495921]  ? kstrdup+0x39/0x70
[  176.499266]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  176.504346]  ? cgroup_mkdir+0x553/0xfc0
[  176.508294]  ? vfs_mkdir+0x390/0x600
[  176.511986]  ? SyS_mkdirat+0x22b/0x2b0
[  176.515850]  ? do_syscall_64+0x281/0x940
[  176.519894]  ? entry_SYSCALL_64_after_hwframe+0x42/0xb7
[  176.525238]  ? find_held_lock+0x35/0x1d0
[  176.529275]  ? find_held_lock+0x35/0x1d0
[  176.533314]  ? __lock_is_held+0xb6/0x140
[  176.537357]  ? check_same_owner+0x320/0x320
[  176.541660]  ? rcu_note_context_switch+0x710/0x710
[  176.546564]  ? rcu_read_lock_sched_held+0x108/0x120
[  176.551564]  should_failslab+0xec/0x120
[  176.555517]  kmem_cache_alloc+0x47/0x760
[  176.559555]  ? memcpy+0x45/0x50
[  176.562811]  ? kstrdup+0x59/0x70
[  176.566159]  __kernfs_new_node+0xe2/0x570
[  176.570285]  ? kernfs_dop_revalidate+0x380/0x380
[  176.575026]  ? kasan_check_read+0x11/0x20
[  176.579156]  ? read_word_at_a_time+0x12/0x20
[  176.583540]  ? strscpy+0x186/0x500
[  176.587062]  kernfs_new_node+0x80/0xe0
[  176.590927]  __kernfs_create_file+0x4b/0x320
[  176.595314]  cgroup_addrm_files+0x3c5/0xa70
[  176.599618]  ? cgroup_file_write+0x710/0x710
[  176.604008]  ? getrawmonotonic64+0x460/0x460
[  176.608404]  ? kernfs_active+0x92/0x160
[  176.612359]  ? debug_lockdep_rcu_enabled+0x77/0x90
[  176.617266]  ? cgroup_kn_set_ugid+0x2c7/0x370
[  176.621737]  ? cgroup_file_name+0x1d0/0x1d0
[  176.626042]  css_populate_dir+0x340/0x420
[  176.630167]  cgroup_mkdir+0x553/0xfc0
[  176.633941]  ? __lock_is_held+0xb6/0x140
[  176.637984]  ? cgroup_destroy_locked+0x750/0x750
[  176.642717]  ? rcu_read_lock_sched_held+0x108/0x120
[  176.647710]  ? kmem_cache_free+0x258/0x2a0
[  176.651922]  ? set_nlink+0xc1/0x160
[  176.655524]  ? debug_lockdep_rcu_enabled+0x77/0x90
[  176.660427]  ? generic_permission+0x105/0x3c0
[  176.664895]  ? cgroup_destroy_locked+0x750/0x750
[  176.669628]  kernfs_iop_mkdir+0x153/0x1e0
[  176.673753]  vfs_mkdir+0x390/0x600
[  176.677270]  SyS_mkdirat+0x22b/0x2b0
[  176.680966]  ? SyS_mknod+0x480/0x480
[  176.684654]  ? trace_hardirqs_on+0xd/0x10
[  176.688780]  ? do_syscall_64+0xb7/0x940
[  176.692728]  ? SyS_mknod+0x480/0x480
[  176.696417]  do_syscall_64+0x281/0x940
[  176.700278]  ? vmalloc_sync_all+0x30/0x30
[  176.704403]  ? _raw_spin_unlock_irq+0x27/0x70
[  176.708872]  ? finish_task_switch+0x1c1/0x7e0
[  176.713345]  ? syscall_return_slowpath+0x550/0x550
[  176.718249]  ? syscall_return_slowpath+0x2ac/0x550
[  176.723153]  ? prepare_exit_to_usermode+0x350/0x350
[  176.728145]  ? entry_SYSCALL_64_after_hwframe+0x52/0xb7
[  176.733487]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  176.738307]  entry_SYSCALL_64_after_hwframe+0x42/0xb7
[  176.743471] RIP: 0033:0x454e79
[  176.746635] RSP: 002b:00007fa6ef25cc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
[  176.754317] RAX: ffffffffffffffda RBX: 00007fa6ef25d6d4 RCX: 0000000000454e79
[  176.761561] RDX: 0000000000000020 RSI: 0000000020000280 RDI: 0000000000000013
[  176.768802] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  176.776045] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000014
[  176.783288] R13: 00000000000003eb R14: 00000000006f7ea8 R15: 0000000000000012
[  176.790774] cgroup: cgroup_addrm_files: failed to add cgroup.subtree_control, err=-12
2018/03/31 01:44:43 executing program 4:
perf_event_open(&(0x7f000001d000)={0x5, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @perf_bp={&(0x7f0000000000), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$sock_ifreq(0xffffffffffffffff, 0x891d, &(0x7f0000001240)={'bpq0\x00', @ifru_names='syzkaller1\x00'})
r0 = accept4$inet(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, @multicast2}, &(0x7f0000001080)=0x10, 0x80000)
getsockopt$inet_sctp_SCTP_INITMSG(r0, 0x84, 0x2, &(0x7f0000001280), &(0x7f00000012c0)=0xff95)
r1 = socket$nl_xfrm(0xa, 0x5, 0x84)
sendto$inet6(0xffffffffffffffff, &(0x7f00000010c0)="39593c5bc4b6d58bdfe5bac29bdec484d7a2ebb5316392593cec2292b7b3a4052bbae033da84dfa4a04eea028c06cebe71", 0x31, 0x8000, 0x0, 0x0)
ioctl$sock_FIOGETOWN(r1, 0x8903, &(0x7f0000001340)=<r2=>0x0)
process_vm_writev(r2, &(0x7f0000001840)=[{&(0x7f0000001380)=""/223, 0xdf}, {&(0x7f0000001480)=""/132, 0x84}, {&(0x7f0000001540)=""/170, 0xaa}, {&(0x7f0000001600)=""/235, 0xeb}, {&(0x7f0000001700)=""/107, 0x6b}, {&(0x7f0000001780)=""/134, 0x86}], 0x6, &(0x7f0000001c00)=[{&(0x7f00000018c0)=""/2, 0x2}, {&(0x7f0000001900)=""/206, 0xce}, {&(0x7f0000001a00)=""/56, 0x38}, {&(0x7f0000001a40)=""/209, 0xd1}, {&(0x7f0000001b40)=""/160, 0xa0}], 0x5, 0x0)
getsockopt$IPT_SO_GET_REVISION_MATCH(r0, 0x0, 0x42, &(0x7f00000011c0)={'IDLETIMER\x00'}, &(0x7f0000001200)=0x1e)
r3 = syz_open_dev$dspn(&(0x7f0000001140)='/dev/dsp#\x00', 0x5, 0x80000)
ioctl$sock_netrom_TIOCOUTQ(r3, 0x5411, &(0x7f0000001180))
getsockopt$bt_hci(r1, 0x84, 0x2, &(0x7f0000000080)=""/4096, &(0x7f0000001300)=0xc34)
ioctl$KVM_IRQ_LINE_STATUS(r3, 0xc008ae67, &(0x7f0000001100)={0x0, 0x100})
ioctl$LOOP_SET_BLOCK_SIZE(r3, 0x4c09, 0x8f)

2018/03/31 01:44:43 executing program 0:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00003f1fa8)={0x26, 'skcipher\x00', 0x0, 0x0, 'ctr(blowfish)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f00006a9fef)="e5fcb5bf", 0x4)
r1 = accept$alg(r0, 0x0, 0x0)
sendmmsg(r1, &(0x7f0000003500)=[{{&(0x7f0000000180)=@pptp={0x18, 0x2, {0x0, @loopback=0x7f000001}}, 0x20, &(0x7f0000000400), 0x1}}, {{0x0, 0x0, &(0x7f00000004c0), 0x0, &(0x7f0000000500)=[{0xe2}], 0x10}}], 0x2, 0x0)
mremap(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x1000, 0x3, &(0x7f0000ffe000/0x1000)=nil)

2018/03/31 01:44:43 executing program 2:
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000140)="2e2f6367726f757000361a6f74a1b774b8642f3dfdd313d92946ff0167415d8dc22791dcd496520c1c99f4b07d3b2a11090000000229210b73abdcd2986fc290ac9b6ace278586d39949a54fb276eb1fd3964b0cad27e417b33abb8d3b00e64e75e4dff47de27536dccdde5fc746b04faafcec347560a31b3a35a5f20bc949d75cbb763987", 0x200002, 0x0)
r1 = openat$cgroup_procs(r0, &(0x7f0000000080)='cgroup.procs\x00', 0x2, 0x0)
sendfile(r1, r1, &(0x7f0000000040), 0x1)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000000)=<r2=>0x0)
r3 = syz_open_dev$sndpcmc(&(0x7f0000000400)='/dev/snd/pcmC#D#c\x00', 0x40, 0x0)
r4 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000440)='/dev/mixer\x00', 0x8000, 0x0)
ioctl$sock_bt_bnep_BNEPCONNADD(r3, 0x400442c8, &(0x7f0000003e40)=ANY=[@ANYRES32=r4, @ANYBLOB="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"])
setsockopt$IP_VS_SO_SET_TIMEOUT(r3, 0x0, 0x48a, &(0x7f0000003b00)={0xff, 0x8779, 0x2}, 0xc)
ptrace$PTRACE_SECCOMP_GET_METADATA(0x420d, r2, 0x10, &(0x7f0000000240)={0xffff})
r5 = syz_open_dev$mice(&(0x7f0000000200)='/dev/input/mice\x00', 0x0, 0x400)
ioctl$EVIOCREVOKE(r5, 0x40044591, &(0x7f0000003ac0)=0x1)
process_vm_writev(r2, &(0x7f0000000100)=[{&(0x7f0000000580)=""/4096, 0x1000}, {&(0x7f0000001580)=""/141, 0x8d}, {&(0x7f00000000c0)=""/4, 0x4}, {&(0x7f0000001640)=""/148, 0x94}], 0x4, &(0x7f0000003a40)=[{&(0x7f0000001700)=""/219, 0xdb}, {&(0x7f0000001800)=""/199, 0xc7}, {&(0x7f0000000300)=""/101, 0x65}, {&(0x7f0000001900)=""/174, 0xae}, {&(0x7f00000019c0)=""/4096, 0x1000}, {&(0x7f00000029c0)=""/98, 0x62}, {&(0x7f0000002a40)=""/4096, 0x1000}], 0x7, 0x0)
getsockopt$IP_VS_SO_GET_DAEMON(r5, 0x0, 0x487, &(0x7f0000000280), &(0x7f00000002c0)=0x30)
dup2(r0, r1)
socket$nl_generic(0x10, 0x3, 0x10)
getsockopt$netrom_NETROM_T4(0xffffffffffffffff, 0x103, 0x6, &(0x7f0000000380), &(0x7f00000003c0)=0x4)

2018/03/31 01:44:43 executing program 1:
r0 = creat(&(0x7f0000000b40)='./file0\x00', 0x20)
ioctl$DRM_IOCTL_AGP_ALLOC(0xffffffffffffff9c, 0xc0206434, &(0x7f0000000b80)={0x5, <r1=>0x0, 0x0, 0x81})
ioctl$DRM_IOCTL_SG_FREE(r0, 0x40106439, &(0x7f0000000bc0)={0x3, r1})
r2 = socket$inet(0x2, 0x6, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f00000008c0)=@broute={'broute\x00', 0x20, 0x2, 0x3e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000280], 0x0, &(0x7f0000000240), &(0x7f0000000280)=ANY=[@ANYBLOB="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"]}, 0x460)
getsockopt$inet_sctp6_SCTP_CONTEXT(0xffffffffffffff9c, 0x84, 0x11, &(0x7f0000000000)={<r3=>0x0, 0x7}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r2, 0x84, 0xa, &(0x7f0000000140)={0x0, 0xa2b, 0x4, 0x7, 0x2, 0x20, 0x10000, 0x8a82, r3}, &(0x7f0000000180)=0x20)
setsockopt$inet_group_source_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000680)={0x1000, {{0x2, 0x4e27, @dev={0xac, 0x14, 0x14, 0x14}}}, {{0x2, 0x4e22, @multicast2=0xe0000002}}}, 0x108)
ioctl$DRM_IOCTL_AGP_ENABLE(0xffffffffffffffff, 0x40086432, &(0x7f0000000100))
r4 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/vs/sync_version\x00', 0x2, 0x0)
ioctl$TIOCGSOFTCAR(r4, 0x5419, &(0x7f00000007c0))
r5 = socket$inet6(0x10, 0x2, 0x0)
sendmsg(r5, &(0x7f0000000080)={&(0x7f0000000240)=@un=@abs={0x1, 0x0, 0x4e23}, 0x80, &(0x7f0000000040)=[{&(0x7f00000001c0)="5500000018007f04002d1cb2a4a280930a0600007da843cf19d0f869390009402f002100040000001900050000fc1700000000dc1338d54400009b84136ef75afb83de448daa7227c43ab8220000060c", 0x50}], 0x1, &(0x7f00000000c0)}, 0x0)
socket$bt_cmtp(0x1f, 0x3, 0x5)
fcntl$addseals(r5, 0x409, 0x7)
syz_open_dev$sndmidi(&(0x7f0000000c00)='/dev/snd/midiC#D#\x00', 0x100000001, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f0000001640)=@broute={'broute\x00', 0x20, 0x1, 0x1e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20001700], 0x0, &(0x7f0000001980), &(0x7f0000001700)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1, [{{{0x13, 0x0, 0x0, 'vcan0\x00', 'ifb0\x00', 'syzkaller0\x00', 'vcan0\x00', @remote={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xbb}, [], @link_local={0x1, 0x80, 0xc2}, [], 0x70, 0xf8, 0x128}, [@common=@dnat={'dnat\x00', 0x10, {{@dev={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa]}, 0xffffffffffffffff}}}, @common=@IDLETIMER={'IDLETIMER\x00', 0x28, {{0x4, 'syz0\x00'}}}]}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8}}]}, {0x0, '\x00', 0x1, 0xffffbffffffffffe}]}, 0x260)
setsockopt$EBT_SO_SET_ENTRIES(0xffffffffffffffff, 0x0, 0x80, &(0x7f0000000840)=@nat={'nat\x00', 0x19, 0x1, 0x200, [0x20000940, 0x0, 0x0, 0x20000970, 0x200009a0], 0x0, &(0x7f0000000800), &(0x7f0000000940)=ANY=[@ANYBLOB="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"]}, 0x278)
syz_open_dev$dmmidi(&(0x7f0000000c40)='/dev/dmmidi#\x00', 0xae6d, 0x200)

2018/03/31 01:44:44 executing program 3 (fault-call:3 fault-nth:19):
mkdir(&(0x7f00000001c0)='./file0\x00', 0x0)
mount(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000380)='./file0\x00', &(0x7f0000000300)='cgroup2\x00', 0x0, 0x0)
r0 = open$dir(&(0x7f000001bff4)='./file0\x00', 0x0, 0x0)
mkdirat(r0, &(0x7f0000000280)='./file0\x00', 0x20)
getdents64(r0, &(0x7f00000007c0)=""/250, 0x1015a)
fadvise64(r0, 0x0, 0x41, 0x3)
unlinkat(r0, &(0x7f0000000080)='./file0\x00', 0x200)
r1 = open$dir(&(0x7f0000000180)='./file0\x00', 0x105600, 0x81)
fchdir(r0)
link(&(0x7f0000000740)='./file1\x00', &(0x7f0000000780)='./file0/file0\x00')
renameat2(r1, &(0x7f0000000200)='./file1\x00', r0, &(0x7f0000000240)='./file0\x00', 0xfd1092750066ec78)
pivot_root(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='./file0\x00')
r2 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000100)='/dev/rfkill\x00', 0x2c42, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_LIST(r2, 0xc0505510, &(0x7f0000000480)={0x1000, 0x1, 0x474, 0x1, &(0x7f0000000140)=[{}]})
unlink(&(0x7f00000000c0)='./file0\x00')
symlinkat(&(0x7f0000000400)='./file0/file0\x00', r0, &(0x7f0000000440)='./file0/file0\x00')
iopl(0x6)
recvmsg$kcm(0xffffffffffffffff, &(0x7f0000000680)={&(0x7f0000000500)=@pppol2tp={0x0, 0x0, {0x0, <r3=>0xffffffffffffffff, {0x0, 0x0, @broadcast}}}, 0x80, &(0x7f0000000600)=[{&(0x7f0000000580)=""/80, 0x50}, {&(0x7f00000008c0)=""/4096, 0x1000}], 0x2, &(0x7f0000000640)=""/45, 0x2d, 0x206e}, 0x20)
r4 = syz_open_dev$sndpcmp(&(0x7f00000018c0)='/dev/snd/pcmC#D#p\x00', 0x5, 0x10a00)
ioctl$KVM_GET_DEVICE_ATTR(r4, 0x4018aee2, &(0x7f0000001940)={0x0, 0x100, 0x9, &(0x7f0000001900)})
recvfrom$ipx(r3, &(0x7f00000006c0)=""/52, 0x34, 0x100, &(0x7f0000000700)={0x4, 0x9a2, 0x4, "dc108d9d4391", 0x5}, 0x10)
renameat(r0, &(0x7f0000001980)='./file1\x00', r4, &(0x7f00000019c0)='./file0/file0\x00')

2018/03/31 01:44:44 executing program 4:
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x500, 0x0)
listen$netrom(r0, 0x20)
r1 = socket$inet6(0xa, 0x80003, 0xff)
epoll_ctl$EPOLL_CTL_MOD(r0, 0x3, r0, &(0x7f0000000040)={0x2})
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f000000e000)={'vcan0\x00', <r2=>0x0})
setsockopt$inet6_mreq(r1, 0x29, 0x1b, &(0x7f000000c000)={@empty, r2}, 0x14)

2018/03/31 01:44:44 executing program 6:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x200, 0x0)
socketpair$inet6_icmp_raw(0xa, 0x3, 0x3a, &(0x7f0000000680)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
setsockopt$sock_linger(r1, 0x1, 0xd, &(0x7f00000006c0)={0x400, 0x9}, 0x8)
perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
mmap(&(0x7f0000000000/0x9d7000)=nil, 0x9d7000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x7)
perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r4, &(0x7f0000e5b000)={0x2, 0x4e20, @multicast1=0xe0000001}, 0x10)
syz_open_dev$sg(&(0x7f0000000440)='/dev/sg#\x00', 0x0, 0x0)
connect$inet(r4, &(0x7f0000000100)={0x2, 0x4e20, @multicast2=0xe0000002}, 0x10)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000eb0fb8)={0x1, 0x3, &(0x7f00009ff000)=@framed={{0x18}, [], {0x95}}, &(0x7f00002bf000)='syzkaller\x00', 0x4, 0xb7, &(0x7f00006ab000)=""/183}, 0x48)
setsockopt$inet_tcp_int(r4, 0x6, 0x19, &(0x7f0000000240)=0x8, 0x4)
setsockopt$SO_BINDTODEVICE(r4, 0x1, 0x19, &(0x7f0000000000)="6970365f76746930000000000400", 0x10)
r6 = socket$kcm(0x29, 0x2, 0x0)
ioctl$sock_kcm_SIOCKCMATTACH(r6, 0x89e0, &(0x7f000031aff8)={r4, r5})
ioctl$sock_kcm_SIOCKCMCLONE(r6, 0x89e2, &(0x7f00000002c0)={<r7=>0xffffffffffffffff})
sendmsg$nl_xfrm(r7, &(0x7f0000000780)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000740)={&(0x7f0000000480)=@updpolicy={0xb8, 0x19, 0x0, 0x0, 0x0, {{@in=@loopback=0x7f000001, @in6=@mcast1={0xff, 0x1, [], 0x1}}}}, 0xffcb}, 0x1}, 0x0)
ioctl$sock_kcm_SIOCKCMUNATTACH(r7, 0x89e1, &(0x7f0000000040)={r4})
r8 = fcntl$getown(r3, 0x9)
r9 = accept4$inet(0xffffffffffffff9c, &(0x7f0000000700)={0x0, 0x0, @broadcast}, &(0x7f0000000740)=0x10, 0x80000)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r9, 0x84, 0x64, &(0x7f0000000300)=[@in6={0xa, 0x4e23, 0x0, @dev={0xfe, 0x80}, 0x6}, @in={0x2, 0xff, @local={0xac, 0x14, 0x14, 0xaa}}, @in={0x2, 0x4e23, @multicast1=0xe0000001}, @in={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x10}}, @in={0x2, 0x4e20, @multicast1=0xe0000001}, @in={0x2, 0x4e24}, @in={0x2, 0x4e24, @broadcast=0xffffffff}, @in6={0xa, 0x4e21, 0xed34, @local={0xfe, 0x80, [], 0xaa}, 0x3}, @in={0x2, 0x4e23, @loopback=0x7f000001}], 0xfffffffffffffe00)
ptrace$setregset(0x4205, r8, 0x0, &(0x7f00000005c0)={&(0x7f0000000080)="449ed0dd6831a7fb44eca4221b1fb01abfec082aa7d0ee6f0ba9db0ece7da2bd3f", 0x21})
r10 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r11 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x1fffd, 0x0)
syz_open_dev$sndtimer(&(0x7f00000000c0)='/dev/snd/timer\x00', 0x0, 0x0)
read(r0, &(0x7f0000000140)=""/50, 0x32)
fcntl$dupfd(r10, 0x0, r11)

2018/03/31 01:44:44 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0)
ioctl$KVM_REINJECT_CONTROL(r0, 0xae71, &(0x7f0000000000)={0x7})
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$binder(&(0x7f0000001000)='/dev/binder#\x00', 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x1c812, r2, 0x0)
r3 = add_key$keyring(&(0x7f00000004c0)='keyring\x00', &(0x7f0000000740)={0x73, 0x79, 0x7a, 0x0}, 0x0, 0x0, 0xffffffffffffffff)
keyctl$update(0x2, r3, &(0x7f0000000780)="bd5c8ba6cba6e653ce3e1ac8277ba4fafe0de1ac64f9edb56b4cbe23b777e5a5d82baca9be4c63269898cef8523d4318103ad743be507ea165c08027c1bd06466f0bc6efd3111e65a6196090bc7beadb7bacebc90766350b7f66d57214ca591bca6f188cb2bde149c408ed165b", 0x6d)
ioctl$KVM_GET_CLOCK(r1, 0x8030ae7c, &(0x7f00000003c0))
utimes(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)={{0x0, 0x2710}, {0x77359400}})
epoll_create1(0x80000)
r4 = dup3(r0, r1, 0x0)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x7, 0x31, 0xffffffffffffffff, 0x0)
pread64(r2, &(0x7f0000000640)=""/242, 0xf2, 0x0)
socket$inet6_icmp(0xa, 0x2, 0x3a)
getsockopt$sock_cred(r4, 0x1, 0x11, &(0x7f0000000540), &(0x7f0000000580)=0xc)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000440)={0x101ff, 0x1, 0x10f000, 0x1000, &(0x7f0000ffc000/0x1000)=nil})
getsockopt$inet_sctp6_SCTP_ADAPTATION_LAYER(r1, 0x84, 0x7, &(0x7f00000005c0), &(0x7f0000000500)=0x4)
sendmsg$unix(r4, &(0x7f0000000600)={&(0x7f0000000200)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000000480)=[{&(0x7f0000000280)="6dc95980a1924286d098b55e644d611ef1d29f968b79ff95dc00685ad6e4c5b8cd7115dc492ec052c8a2d4154c9f705985ed7a4e601e408df061bc98c458cb0d53592bcb0b5b231b2eb693b6e0aede29ac0e17ac845d9ce113a45f5cd490ed7691ceb875f10bd8ab17c07696d44e4e8f875b043e74bb6ed3d6178cb447baabe1edd772ad27dd5d60e67ee6", 0x8b}], 0x1, &(0x7f00000005c0), 0x0, 0xb95c1172567e0efd}, 0x40000)
r5 = add_key(&(0x7f0000000040)='encrypted\x00', &(0x7f0000000080)={0x73, 0x79, 0x7a, 0x3}, &(0x7f0000001040), 0x0, 0xffffffffffffffff)
r6 = gettid()
bind$inet6(r4, &(0x7f0000000400)={0xa, 0x4e24, 0x9, @ipv4={[], [0xff, 0xff]}, 0x5}, 0x1c)
perf_event_open(&(0x7f00000000c0)={0x3, 0x70, 0x5, 0x100000001, 0x3, 0x4, 0x0, 0x5, 0x40, 0x8, 0x1, 0x3, 0xdcfd, 0xfffffffffffffeff, 0x0, 0x1, 0x6, 0xffff, 0x9, 0x3, 0x8, 0xd6c, 0x9, 0x1ff, 0x25d8, 0x7, 0x20, 0x3ff, 0x0, 0x6, 0x8, 0x62, 0x1, 0x100000000, 0x5, 0x6, 0x3ff, 0xaf17, 0x0, 0x1f, 0x3, @perf_config_ext={0xc, 0xff2f}, 0xa000, 0x100000000, 0x5, 0x7, 0x0, 0xff, 0x2}, r6, 0x10, r4, 0x2)
getsockopt$bt_BT_VOICE(r4, 0x112, 0xb, &(0x7f0000000340)=0x6, &(0x7f0000000380)=0x2)
setsockopt$netrom_NETROM_N2(r4, 0x103, 0x3, &(0x7f00000001c0)=0x5, 0x4)
keyctl$get_keyring_id(0x0, r5, 0x80000001)
mbind(&(0x7f0000012000/0xc00000)=nil, 0xc00000, 0x0, &(0x7f00009ecff8), 0x2, 0x3)

2018/03/31 01:44:44 executing program 1:
r0 = creat(&(0x7f0000000b40)='./file0\x00', 0x20)
ioctl$DRM_IOCTL_AGP_ALLOC(0xffffffffffffff9c, 0xc0206434, &(0x7f0000000b80)={0x5, <r1=>0x0, 0x0, 0x81})
ioctl$DRM_IOCTL_SG_FREE(r0, 0x40106439, &(0x7f0000000bc0)={0x3, r1})
r2 = socket$inet(0x2, 0x6, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f00000008c0)=@broute={'broute\x00', 0x20, 0x2, 0x3e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000280], 0x0, &(0x7f0000000240), &(0x7f0000000280)=ANY=[@ANYBLOB="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"]}, 0x460)
getsockopt$inet_sctp6_SCTP_CONTEXT(0xffffffffffffff9c, 0x84, 0x11, &(0x7f0000000000)={<r3=>0x0, 0x7}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r2, 0x84, 0xa, &(0x7f0000000140)={0x0, 0xa2b, 0x4, 0x7, 0x2, 0x20, 0x10000, 0x8a82, r3}, &(0x7f0000000180)=0x20)
setsockopt$inet_group_source_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000680)={0x1000, {{0x2, 0x4e23, @multicast1=0xe0000001}}, {{0x2, 0x4e22, @broadcast=0xffffffff}}}, 0x108)
ioctl$DRM_IOCTL_AGP_ENABLE(0xffffffffffffffff, 0x40086432, &(0x7f0000000100))
r4 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/vs/sync_version\x00', 0x2, 0x0)
ioctl$TIOCGSOFTCAR(r4, 0x5419, &(0x7f00000007c0))
r5 = socket$inet6(0x10, 0x2, 0x0)
sendmsg(r5, &(0x7f0000000080)={&(0x7f0000000240)=@un=@abs={0x1, 0x0, 0x4e23}, 0x80, &(0x7f0000000040)=[{&(0x7f00000001c0)="5500000018007f04002d1cb2a4a280930a0600007da843cf19d0f869390009402f002100040000001900050000fc1700000000dc1338d54400009b84136ef75afb83de448daa7227c43ab8220000060c", 0x50}], 0x1, &(0x7f00000000c0)}, 0x0)
socket$bt_cmtp(0x1f, 0x3, 0x5)
fcntl$addseals(r5, 0x409, 0x7)
fcntl$getownex(r2, 0x10, &(0x7f0000000c80)={0x0, <r6=>0x0})
fcntl$setownex(r0, 0xf, &(0x7f0000000cc0)={0x0, r6})
syz_open_dev$sndmidi(&(0x7f0000000c00)='/dev/snd/midiC#D#\x00', 0x100000001, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f0000001640)=@broute={'broute\x00', 0x20, 0x1, 0x1e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20001700], 0x0, &(0x7f0000001980), &(0x7f0000000d00)=ANY=[@ANYBLOB="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"]}, 0x293)
setsockopt$EBT_SO_SET_ENTRIES(0xffffffffffffffff, 0x0, 0x80, &(0x7f0000000840)=@nat={'nat\x00', 0x19, 0x1, 0x200, [0x20000940, 0x0, 0x0, 0x20000970, 0x200009a0], 0x0, &(0x7f0000000800), &(0x7f0000000940)=[{}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x14, 0x98ab, 'teql0\x00', 'ip6gretap0\x00', 'ip_vti0\x00', 'nr0\x00', @empty, [0x0, 0xff, 0x0, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2}, [0xff, 0x0, 0xff, 0x0, 0x0, 0xff], 0x100, 0x138, 0x170, [@time={'time\x00', 0x18, {{0x7, 0x3, 0x13782, 0x14fdf, 0x80, 0x4, 0x1}}}, @nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x2}}}]}, [@snat={'snat\x00', 0x10, {{@random="07901c8f0140"}}}]}, @common=@dnat={'dnat\x00', 0x10, {{@local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}, 0x10}}}}]}]}, 0x278)
syz_open_dev$dmmidi(&(0x7f0000000c40)='/dev/dmmidi#\x00', 0xae6d, 0x200)

2018/03/31 01:44:44 executing program 2:
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000140)="2e2f6367726f757000361a6f74a1b774b8642f3dfdd313d92946ff0167415d8dc22791dcd496520c1c99f4b07d3b2a11090000000229210b73abdcd2986fc290ac9b6ace278586d39949a54fb276eb1fd3964b0cad27e417b33abb8d3b00e64e75e4dff47de27536dccdde5fc746b04faafcec347560a31b3a35a5f20bc949d75cbb763987", 0x200002, 0x0)
r1 = openat$cgroup_procs(r0, &(0x7f0000000080)='cgroup.procs\x00', 0x2, 0x0)
sendfile(r1, r1, &(0x7f0000000040), 0x1)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000000)=<r2=>0x0)
r3 = syz_open_dev$sndpcmc(&(0x7f0000000400)='/dev/snd/pcmC#D#c\x00', 0x40, 0x0)
r4 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000440)='/dev/mixer\x00', 0x8000, 0x0)
ioctl$sock_bt_bnep_BNEPCONNADD(r3, 0x400442c8, &(0x7f0000003b40)=ANY=[@ANYRES32=r4, @ANYBLOB="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"])
setsockopt$IP_VS_SO_SET_TIMEOUT(r3, 0x0, 0x48a, &(0x7f0000003b00)={0xff, 0x8779, 0x2}, 0xc)
ptrace$PTRACE_SECCOMP_GET_METADATA(0x420d, r2, 0x10, &(0x7f0000000240)={0xffff})
r5 = syz_open_dev$mice(&(0x7f0000000200)='/dev/input/mice\x00', 0x0, 0x400)
ioctl$EVIOCREVOKE(r5, 0x40044591, &(0x7f0000003ac0)=0x1)
process_vm_writev(r2, &(0x7f0000000100)=[{&(0x7f0000000580)=""/4096, 0x1000}, {&(0x7f0000001580)=""/141, 0x8d}, {&(0x7f00000000c0)=""/4, 0x4}, {&(0x7f0000001640)=""/148, 0x94}], 0x4, &(0x7f0000003a40)=[{&(0x7f0000001700)=""/219, 0xdb}, {&(0x7f0000001800)=""/199, 0xc7}, {&(0x7f0000000300)=""/101, 0x65}, {&(0x7f0000001900)=""/174, 0xae}, {&(0x7f00000019c0)=""/4096, 0x1000}, {&(0x7f00000029c0)=""/98, 0x62}, {&(0x7f0000002a40)=""/4096, 0x1000}], 0x7, 0x0)
ioctl$KDDISABIO(r5, 0x4b37)
getsockopt$IP_VS_SO_GET_DAEMON(r5, 0x0, 0x487, &(0x7f0000000280), &(0x7f00000002c0)=0x30)
dup2(r0, r1)
getsockopt$netrom_NETROM_T4(0xffffffffffffffff, 0x103, 0x6, &(0x7f0000000380), &(0x7f00000003c0)=0x4)

2018/03/31 01:44:44 executing program 5:
r0 = syz_open_dev$amidi(&(0x7f0000000400)='/dev/amidi#\x00', 0x401, 0x40)
accept4$llc(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, &(0x7f0000000480)=0x10, 0x80800)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f0000005fd8)={'vcan0\x00', <r2=>0x0})
ioctl$KVM_SET_DEVICE_ATTR(r0, 0x4018aee1, &(0x7f0000000500)={0x0, 0x100000001, 0x5a, &(0x7f00000004c0)})
connect$can_bcm(r1, &(0x7f0000001ff0)={0x1d, r2}, 0x10)
ioctl$TIOCGSID(0xffffffffffffff9c, 0x5429, &(0x7f00000002c0)=<r3=>0x0)
waitid(0x0, r3, 0x0, 0x1000009, &(0x7f0000000300))
r4 = syz_open_dev$vcsn(&(0x7f0000000000)='/dev/vcs#\x00', 0xcd8, 0x101000)
getsockopt$SO_BINDTODEVICE(r4, 0x1, 0x19, &(0x7f0000000280), 0x10)
ioctl$EVIOCGABS0(r4, 0x80184540, &(0x7f0000000240)=""/64)
bind$vsock_dgram(r1, &(0x7f00000003c0)={0x28, 0x0, 0x2711, @reserved=0x1}, 0x10)
exit(0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000200)={r4, 0x0, 0x47, 0xde, &(0x7f0000000080)="3541471374d1e455c1f501bb3e7418a21f930d9fb82ac3588f54ad5a1a9e778bdf654fa39f19bcbc6ee4636a10d409c877cfe11ba160f73d4cde40422564bfdb62d8e5f8ba5097", &(0x7f0000000100)=""/222, 0x4, 0x3f}, 0x28)
ioctl$KVM_SET_TSS_ADDR(r4, 0xae47, 0xd000)
ioctl$KVM_CHECK_EXTENSION(r4, 0xae03, 0xffffffffffffffff)
openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000580)='/dev/qat_adf_ctl\x00', 0x4600, 0x0)
sendmsg$can_raw(r1, &(0x7f0000001fc8)={&(0x7f000000a000)={0x1d}, 0x10, &(0x7f0000000040)={&(0x7f000000a000)=@canfd={{0x1}, 0x0, 0x0, 0x0, 0x0, "0327e1b22b5fcef7739c699f5ff986ca08990039576a7d5cb2bdac3fa80acf584ecb5fee496e6866856b76b5f700000000000000004e2f9663a918fa1efd9b0b"}, 0x48}, 0x1}, 0x0)
ioctl$VHOST_GET_VRING_ENDIAN(r0, 0x4008af14, &(0x7f0000000540)={0x0, 0x9})

2018/03/31 01:44:44 executing program 7:
clone(0x200, &(0x7f0000000100)="abbcd764d5b6fd853189b4a102b248f0de7c0a5cc328ca13455598dc3d760fa566c64d7cb06a7e15cdb085165670f42b32809442c69a5942d03eb3fd42bf0ebb0272fc4beb43f269f26f57bbb67316f7c76c8d570edaa564720b4dfd8f32453fc2354ddc753155ac051e9e9657989f0bbf1c03e4cd9f735c6d1b95719dbbb1c04092f54f44256722d954f0000000000000000000000000000000", &(0x7f00000000c0), &(0x7f00008c8000), &(0x7f0000828ffe))
mknod(&(0x7f0000000000)='./file0\x00', 0x1000000000001040, 0x0)
execve(&(0x7f000007b000)='./file0\x00', &(0x7f0000000180), &(0x7f0000000040))
r0 = gettid()
r1 = syz_open_dev$mice(&(0x7f0000149000)='/dev/input/mice\x00', 0x0, 0x0)
execve(&(0x7f00000001c0)='./file0\x00', &(0x7f0000001540)=[&(0x7f0000000200)='user\x00', &(0x7f0000000240)='vmnet0\x00', &(0x7f0000000280)='user\x00', &(0x7f0000001500)='\x00'], &(0x7f00000015c0)=[&(0x7f0000001580)='#keyring\x00'])
msgget$private(0x0, 0x400)
timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000))
uselib(&(0x7f00000002c0)='./file0/file0\x00')
mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0xffffffffffffffff, 0x32, 0xffffffffffffffff, 0x0)
getsockopt$inet_sctp6_SCTP_INITMSG(r1, 0x84, 0x2, &(0x7f0000000040), &(0x7f0000000080)=0x8)
tkill(r0, 0x1000000000015)

[  177.381064] FAULT_INJECTION: forcing a failure.
[  177.381064] name failslab, interval 1, probability 0, space 0, times 0
[  177.392353] CPU: 0 PID: 13043 Comm: syz-executor3 Not tainted 4.16.0-rc7+ #372
[  177.395551] kernel msg: ebtables bug: please report to author: Wrong len argument
[  177.399700] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  177.399704] Call Trace:
[  177.399723]  dump_stack+0x194/0x24d
[  177.399738]  ? arch_local_irq_restore+0x53/0x53
[  177.399758]  should_fail+0x8c0/0xa40
[  177.431168]  ? kstrdup+0x39/0x70
[  177.434513]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  177.439589]  ? cgroup_mkdir+0x553/0xfc0
[  177.443538]  ? vfs_mkdir+0x390/0x600
[  177.447224]  ? SyS_mkdirat+0x22b/0x2b0
[  177.451088]  ? do_syscall_64+0x281/0x940
[  177.455135]  ? entry_SYSCALL_64_after_hwframe+0x42/0xb7
[  177.460475]  ? find_held_lock+0x35/0x1d0
[  177.464512]  ? find_held_lock+0x35/0x1d0
[  177.468550]  ? __lock_is_held+0xb6/0x140
[  177.472589]  ? check_same_owner+0x320/0x320
[  177.476885]  ? rcu_note_context_switch+0x710/0x710
[  177.481799]  ? rcu_read_lock_sched_held+0x108/0x120
[  177.486794]  should_failslab+0xec/0x120
[  177.490744]  kmem_cache_alloc+0x47/0x760
[  177.494779]  ? memcpy+0x45/0x50
[  177.498032]  ? kstrdup+0x59/0x70
[  177.501375]  __kernfs_new_node+0xe2/0x570
[  177.505501]  ? kernfs_dop_revalidate+0x380/0x380
[  177.510231]  ? kasan_check_read+0x11/0x20
[  177.514351]  ? read_word_at_a_time+0x12/0x20
[  177.518734]  ? strscpy+0x186/0x500
[  177.522250]  kernfs_new_node+0x80/0xe0
[  177.526111]  __kernfs_create_file+0x4b/0x320
[  177.530494]  cgroup_addrm_files+0x3c5/0xa70
[  177.534794]  ? cgroup_file_write+0x710/0x710
[  177.539177]  ? getrawmonotonic64+0x460/0x460
[  177.543558]  ? kernfs_active+0x92/0x160
[  177.547508]  ? debug_lockdep_rcu_enabled+0x77/0x90
[  177.552409]  ? cgroup_kn_set_ugid+0x2c7/0x370
[  177.556878]  ? cgroup_file_name+0x1d0/0x1d0
[  177.561181]  css_populate_dir+0x340/0x420
[  177.565303]  cgroup_mkdir+0x553/0xfc0
[  177.569074]  ? __lock_is_held+0xb6/0x140
[  177.573112]  ? cgroup_destroy_locked+0x750/0x750
[  177.577839]  ? rcu_read_lock_sched_held+0x108/0x120
[  177.582827]  ? kmem_cache_free+0x258/0x2a0
[  177.587035]  ? set_nlink+0xc1/0x160
[  177.590638]  ? debug_lockdep_rcu_enabled+0x77/0x90
[  177.595540]  ? generic_permission+0x105/0x3c0
[  177.600013]  ? cgroup_destroy_locked+0x750/0x750
[  177.604746]  kernfs_iop_mkdir+0x153/0x1e0
[  177.608866]  vfs_mkdir+0x390/0x600
[  177.612386]  SyS_mkdirat+0x22b/0x2b0
[  177.616073]  ? SyS_mknod+0x480/0x480
[  177.619759]  ? trace_hardirqs_on+0xd/0x10
[  177.623879]  ? do_syscall_64+0xb7/0x940
[  177.627836]  ? SyS_mknod+0x480/0x480
[  177.631524]  do_syscall_64+0x281/0x940
[  177.635390]  ? vmalloc_sync_all+0x30/0x30
[  177.639512]  ? _raw_spin_unlock_irq+0x27/0x70
[  177.643982]  ? finish_task_switch+0x1c1/0x7e0
[  177.648450]  ? syscall_return_slowpath+0x550/0x550
[  177.653353]  ? syscall_return_slowpath+0x2ac/0x550
[  177.658254]  ? prepare_exit_to_usermode+0x350/0x350
[  177.663246]  ? entry_SYSCALL_64_after_hwframe+0x52/0xb7
[  177.668584]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  177.673403]  entry_SYSCALL_64_after_hwframe+0x42/0xb7
[  177.678562] RIP: 0033:0x454e79
[  177.681725] RSP: 002b:00007fa6ef25cc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
[  177.689409] RAX: ffffffffffffffda RBX: 00007fa6ef25d6d4 RCX: 0000000000454e79
[  177.696650] RDX: 0000000000000020 RSI: 0000000020000280 RDI: 0000000000000013
[  177.703890] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  177.711134] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000014
[  177.718380] R13: 00000000000003eb R14: 00000000006f7ea8 R15: 0000000000000013
2018/03/31 01:44:44 executing program 4:
perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0xe2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000000, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x5, 0xfffffffffffffffb}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5900000, 0xffffffffffffffff}, 0x0, 0x4, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000180)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
dup2(r0, r1)
getitimer(0x1, &(0x7f0000000140))
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/loop-control\x00', 0x0, 0x0)
r2 = memfd_create(&(0x7f000032cffc)='dev ', 0x0)
ftruncate(r2, 0x41001)
sendfile(r0, r2, &(0x7f000000a000), 0x2)

2018/03/31 01:44:44 executing program 2:
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000140)="2e2f6367726f757000361a6f74a1b774b8642f3dfdd313d92946ff0167415d8dc22791dcd496520c1c99f4b07d3b2a11090000000229210b73abdcd2986fc290ac9b6ace278586d39949a54fb276eb1fd3964b0cad27e417b33abb8d3b00e64e75e4dff47de27536dccdde5fc746b04faafcec347560a31b3a35a5f20bc949d75cbb763987", 0x200002, 0x0)
r1 = openat$cgroup_procs(r0, &(0x7f0000000080)='cgroup.procs\x00', 0x2, 0x0)
sendfile(r1, r1, &(0x7f0000000040), 0x1)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000000)=<r2=>0x0)
r3 = syz_open_dev$sndpcmc(&(0x7f0000000400)='/dev/snd/pcmC#D#c\x00', 0x40, 0x0)
r4 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000440)='/dev/mixer\x00', 0x8000, 0x0)
ioctl$sock_bt_bnep_BNEPCONNADD(r3, 0x400442c8, &(0x7f0000003d40)=ANY=[@ANYRES32=r4, @ANYBLOB="400000001f00669a77bbfebc030dac216c00ce24991a3d9b6ceb9c1c126552137e848d122f8bef30dc844231cd504390d0769db86a1fe21e223857ce70354764cea42823d77745e57389140b87fb6f884630af09c637d7d29e77e5ee51e6250927945fb1d768566641e8fd051de3bc426b58b5de3ed34d7d27dd61b2bb80e6e6041eaf98810d1da92b94b0b8e6edc92f1f82bfcd6761d7add5c7d0a93e520adf9a71ae619ef0766928df1441c2f5003459eb4952b9dfbb8ce5cff86073714f2384ab87382f72dd8e48630b6b18767905b4056222b86b0d907494f4353b86b581c7b4d1967102cdb143a2350aa25a24e51d612c2e7520be3b0282488e08969fceb8346488aeedccc3770b7a8d1f000000000000000050ee23825059657472f05f9096cc29a4c4b43f2af2e9eee36c5b03e27629fb273507d8ca98731f5c07171bf3a6835b6aafe18e98ba0d1181b36bd0d8cbbb057b3a91bab14463782ca551cc6c32db5b421dea003cca477a28ab68591849d20365e484ba5d4986df3ade2a52cf7c6fd922d88c0613176669577186017b7d07baa927f83bd58a25502c82f0c13884ad5cd80e992d4489d784a7142c91ce4f47a4bc65c1e67a7fc767d07fab37adf06698146adde63e1322a301be6278d53cecf473486a723f9d025d5a043f"])
setsockopt$IP_VS_SO_SET_TIMEOUT(r3, 0x0, 0x48a, &(0x7f0000003b00)={0xff, 0x8779, 0x2}, 0xc)
ioctl$SNDRV_SEQ_IOCTL_QUERY_NEXT_CLIENT(r4, 0xc0bc5351, &(0x7f0000000480)={0x9, 0x1, 'client0\x00', 0x6, "9b4f976fc505f79c", "73acceed2f463c79b8c0dc0404c8b7f85c5bb9c05b1bec44bab65a8b05b3730b", 0x200, 0x9})
ptrace$PTRACE_SECCOMP_GET_METADATA(0x420d, r2, 0x10, &(0x7f0000000240)={0xffff})
r5 = syz_open_dev$mice(&(0x7f0000000200)='/dev/input/mice\x00', 0x0, 0x400)
ioctl$EVIOCREVOKE(r5, 0x40044591, &(0x7f0000003ac0)=0x1)
process_vm_writev(r2, &(0x7f0000000100)=[{&(0x7f0000000580)=""/4096, 0x1000}, {&(0x7f0000001580)=""/141, 0x8d}, {&(0x7f00000000c0)=""/4, 0x4}, {&(0x7f0000001640)=""/148, 0x94}], 0x4, &(0x7f0000003a40)=[{&(0x7f0000001700)=""/219, 0xdb}, {&(0x7f0000001800)=""/199, 0xc7}, {&(0x7f0000000300)=""/101, 0x65}, {&(0x7f0000001900)=""/174, 0xae}, {&(0x7f00000019c0)=""/4096, 0x1000}, {&(0x7f00000029c0)=""/98, 0x62}, {&(0x7f0000002a40)=""/4096, 0x1000}], 0x7, 0x0)
getsockopt$IP_VS_SO_GET_DAEMON(r5, 0x0, 0x487, &(0x7f0000000280), &(0x7f00000002c0)=0x30)
dup2(r0, r1)
getsockopt$netrom_NETROM_T4(0xffffffffffffffff, 0x103, 0x6, &(0x7f0000000380), &(0x7f00000003c0)=0x4)

[  177.725829] cgroup: cgroup_addrm_files: failed to add cgroup.subtree_control, err=-12
[  177.778943] kernel msg: ebtables bug: please report to author: Wrong len argument
2018/03/31 01:44:44 executing program 3 (fault-call:3 fault-nth:20):
mkdir(&(0x7f00000001c0)='./file0\x00', 0x0)
mount(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000380)='./file0\x00', &(0x7f0000000300)='cgroup2\x00', 0x0, 0x0)
r0 = open$dir(&(0x7f000001bff4)='./file0\x00', 0x0, 0x0)
mkdirat(r0, &(0x7f0000000280)='./file0\x00', 0x20)
getdents64(r0, &(0x7f00000007c0)=""/250, 0x1015a)
fadvise64(r0, 0x0, 0x41, 0x3)
unlinkat(r0, &(0x7f0000000080)='./file0\x00', 0x200)
r1 = open$dir(&(0x7f0000000180)='./file0\x00', 0x105600, 0x81)
fchdir(r0)
link(&(0x7f0000000740)='./file1\x00', &(0x7f0000000780)='./file0/file0\x00')
renameat2(r1, &(0x7f0000000200)='./file1\x00', r0, &(0x7f0000000240)='./file0\x00', 0xfd1092750066ec78)
pivot_root(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='./file0\x00')
r2 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000100)='/dev/rfkill\x00', 0x2c42, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_LIST(r2, 0xc0505510, &(0x7f0000000480)={0x1000, 0x1, 0x474, 0x1, &(0x7f0000000140)=[{}]})
unlink(&(0x7f00000000c0)='./file0\x00')
symlinkat(&(0x7f0000000400)='./file0/file0\x00', r0, &(0x7f0000000440)='./file0/file0\x00')
iopl(0x6)
recvmsg$kcm(0xffffffffffffffff, &(0x7f0000000680)={&(0x7f0000000500)=@pppol2tp={0x0, 0x0, {0x0, <r3=>0xffffffffffffffff, {0x0, 0x0, @broadcast}}}, 0x80, &(0x7f0000000600)=[{&(0x7f0000000580)=""/80, 0x50}, {&(0x7f00000008c0)=""/4096, 0x1000}], 0x2, &(0x7f0000000640)=""/45, 0x2d, 0x206e}, 0x20)
r4 = syz_open_dev$sndpcmp(&(0x7f00000018c0)='/dev/snd/pcmC#D#p\x00', 0x5, 0x10a00)
ioctl$KVM_GET_DEVICE_ATTR(r4, 0x4018aee2, &(0x7f0000001940)={0x0, 0x100, 0x9, &(0x7f0000001900)})
recvfrom$ipx(r3, &(0x7f00000006c0)=""/52, 0x34, 0x100, &(0x7f0000000700)={0x4, 0x9a2, 0x4, "dc108d9d4391", 0x5}, 0x10)
renameat(r0, &(0x7f0000001980)='./file1\x00', r4, &(0x7f00000019c0)='./file0/file0\x00')

2018/03/31 01:44:44 executing program 4:
r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000180)='/dev/sequencer2\x00', 0x4404, 0x0)
r1 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x0, 0x0)
close(r0)
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0)
r2 = userfaultfd(0x0)
ioctl$UFFDIO_API(r2, 0xc018aa3f, &(0x7f0000001fe8)={0xaa})
accept4$vsock_stream(r1, &(0x7f0000000040)={0x28, 0x0, 0x2711, @hyper}, 0x10, 0x800)
ioctl$UFFDIO_REGISTER(r2, 0xc020aa00, &(0x7f0000019000)={{&(0x7f0000012000/0x2000)=nil, 0x2000}, 0x1})
perf_event_open(&(0x7f0000000200)={0x2, 0x78, 0xe2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000000000}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r3 = socket$inet(0x2, 0x806, 0x0)
shutdown(r3, 0x0)
recvmmsg(r3, &(0x7f0000c0e000)=[{{0x0, 0x0, &(0x7f0000a68f60), 0x0, &(0x7f0000f34000)=""/16, 0x10}}], 0x1, 0x0, &(0x7f0000dd5ff0)={0x77359400})
r4 = gettid()
capget(&(0x7f0000000100)={0x39980732, r4}, &(0x7f0000000140)={0xffff, 0xb5, 0x61e31894, 0x7, 0x7f, 0x1})
syz_open_dev$evdev(&(0x7f0000012fee)='/dev/input/event#\x00', 0x0, 0x0)
tkill(r4, 0x7)

2018/03/31 01:44:44 executing program 1:
r0 = creat(&(0x7f0000000b40)='./file0\x00', 0x20)
setsockopt$IP_VS_SO_SET_DELDEST(r0, 0x0, 0x488, &(0x7f0000000d40)={{0x3a, @multicast1=0xe0000001, 0x4e24, 0x4, 'dh\x00', 0x2, 0x86, 0x1e}, {@dev={0xac, 0x14, 0x14, 0x10}, 0x4e23, 0x0, 0x2, 0x8, 0x1}}, 0x44)
ioctl$DRM_IOCTL_AGP_ALLOC(0xffffffffffffff9c, 0xc0206434, &(0x7f0000000b80)={0x5, <r1=>0x0, 0x0, 0x81})
ioctl$DRM_IOCTL_SG_FREE(r0, 0x40106439, &(0x7f0000000bc0)={0x3, r1})
r2 = socket$inet(0x2, 0x6, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f00000008c0)=@broute={'broute\x00', 0x20, 0x2, 0x3e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000280], 0x0, &(0x7f0000000240), &(0x7f0000000280)=ANY=[@ANYBLOB="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"]}, 0x460)
remap_file_pages(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0xffffffff, 0x801)
getsockopt$inet_sctp6_SCTP_CONTEXT(0xffffffffffffff9c, 0x84, 0x11, &(0x7f0000000000)={<r3=>0x0, 0x7}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r2, 0x84, 0xa, &(0x7f0000000140)={0x0, 0xa2b, 0x4, 0x7, 0x2, 0x20, 0x10000, 0x8a82, r3}, &(0x7f0000000180)=0x20)
setsockopt$inet_group_source_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000680)={0x1000, {{0x2, 0x4e23, @multicast1=0xe0000001}}, {{0x2, 0x4e22, @broadcast=0xffffffff}}}, 0x108)
ioctl$DRM_IOCTL_AGP_ENABLE(0xffffffffffffffff, 0x40086432, &(0x7f0000000100))
r4 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/vs/sync_version\x00', 0x2, 0x0)
ioctl$TIOCGSOFTCAR(r4, 0x5419, &(0x7f00000007c0))
r5 = socket$inet6(0x10, 0x2, 0x0)
sendmsg(r5, &(0x7f0000000080)={&(0x7f0000000240)=@un=@abs={0x1, 0x0, 0x4e23}, 0x80, &(0x7f0000000040)=[{&(0x7f00000001c0)="5500000018007f04002d1cb2a4a280930a0600007da843cf19d0f869390009402f002100040000001900050000fc1700000000dc1338d54400009b84136ef75afb83de448daa7227c43ab8220000060c", 0x50}], 0x1, &(0x7f00000000c0)}, 0x0)
socket$bt_cmtp(0x1f, 0x3, 0x5)
write$fuse(r4, &(0x7f0000000e00)=ANY=[@ANYBLOB="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"], 0x28)
accept$ipx(r0, &(0x7f0000000cc0), &(0x7f0000000d00)=0x10)
fcntl$addseals(r5, 0x409, 0x7)
syz_open_dev$sndmidi(&(0x7f0000000c00)='/dev/snd/midiC#D#\x00', 0x100000001, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f0000001640)=@broute={'broute\x00', 0x20, 0x1, 0x1e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20001700], 0x0, &(0x7f0000001980), &(0x7f0000001700)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1, [{{{0x13, 0x0, 0x0, 'vcan0\x00', 'ifb0\x00', 'syzkaller0\x00', 'vcan0\x00', @remote={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xbb}, [], @link_local={0x1, 0x80, 0xc2}, [], 0x70, 0xf8, 0x128}, [@common=@dnat={'dnat\x00', 0x10, {{@dev={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa]}, 0xffffffffffffffff}}}, @common=@IDLETIMER={'IDLETIMER\x00', 0x28, {{0x4, 'syz0\x00'}}}]}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8}}]}, {0x0, '\x00', 0x1, 0xffffbffffffffffe}]}, 0x260)
setsockopt$EBT_SO_SET_ENTRIES(0xffffffffffffffff, 0x0, 0x80, &(0x7f0000000840)=@nat={'nat\x00', 0x19, 0x1, 0x200, [0x20000940, 0x0, 0x0, 0x20000970, 0x200009a0], 0x0, &(0x7f0000000800), &(0x7f0000000940)=[{}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x14, 0x98ab, 'teql0\x00', 'ip6gretap0\x00', 'ip_vti0\x00', 'nr0\x00', @empty, [0x0, 0xff, 0x0, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2}, [0xff, 0x0, 0xff, 0x0, 0x0, 0xff], 0x100, 0x138, 0x170, [@time={'time\x00', 0x18, {{0x7, 0x3, 0x13782, 0x14fdf, 0x80, 0x4, 0x1}}}, @nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x2}}}]}, [@snat={'snat\x00', 0x10, {{@random="07901c8f0140"}}}]}, @common=@dnat={'dnat\x00', 0x10, {{@local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}, 0x10}}}}]}]}, 0x278)
syz_open_dev$dmmidi(&(0x7f0000000c40)='/dev/dmmidi#\x00', 0xae6d, 0x200)

2018/03/31 01:44:44 executing program 2:
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000140)="2e2f6367726f757000361a6f74a1b774b8642f3dfdd313d92946ff0167415d8dc22791dcd496520c1c99f4b07d3b2a11090000000229210b73abdcd2986fc290ac9b6ace278586d39949a54fb276eb1fd3964b0cad27e417b33abb8d3b00e64e75e4dff47de27536dccdde5fc746b04faafcec347560a31b3a35a5f20bc949d75cbb763987", 0x200002, 0x0)
r1 = openat$cgroup_procs(r0, &(0x7f0000000080)='cgroup.procs\x00', 0x2, 0x0)
sendfile(r1, r1, &(0x7f0000000040), 0x1)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000000)=<r2=>0x0)
r3 = syz_open_dev$sndpcmc(&(0x7f0000000400)='/dev/snd/pcmC#D#c\x00', 0x40, 0x0)
r4 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000440)='/dev/mixer\x00', 0x8000, 0x0)
ioctl$sock_bt_bnep_BNEPCONNADD(r3, 0x400442c8, &(0x7f0000003b40)=ANY=[@ANYRES32=r4, @ANYBLOB="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"])
setsockopt$IP_VS_SO_SET_TIMEOUT(r3, 0x0, 0x48a, &(0x7f0000003b00)={0xff, 0x8779, 0x3}, 0xc)
ptrace$PTRACE_SECCOMP_GET_METADATA(0x420d, r2, 0x10, &(0x7f0000000240)={0xffff})
r5 = syz_open_dev$mice(&(0x7f0000000200)='/dev/input/mice\x00', 0x0, 0x400)
ioctl$EVIOCREVOKE(r5, 0x40044591, &(0x7f0000003ac0)=0x1)
process_vm_writev(r2, &(0x7f0000000100)=[{&(0x7f0000000580)=""/4096, 0x1000}, {&(0x7f0000001580)=""/141, 0x8d}, {&(0x7f00000000c0)=""/4, 0x4}, {&(0x7f0000001640)=""/148, 0x94}], 0x4, &(0x7f0000003a40)=[{&(0x7f0000001700)=""/219, 0xdb}, {&(0x7f0000001800)=""/199, 0xc7}, {&(0x7f0000000300)=""/101, 0x65}, {&(0x7f0000001900)=""/174, 0xae}, {&(0x7f00000019c0)=""/4096, 0x1000}, {&(0x7f00000029c0)=""/98, 0x62}, {&(0x7f0000002a40)=""/4096, 0x1000}], 0x7, 0x0)
getsockopt$IP_VS_SO_GET_DAEMON(r5, 0x0, 0x487, &(0x7f0000000280), &(0x7f00000002c0)=0x30)
dup2(r0, r1)
getsockopt$netrom_NETROM_T4(0xffffffffffffffff, 0x103, 0x6, &(0x7f0000000380), &(0x7f00000003c0)=0x4)

[  177.825393] binder_alloc: binder_alloc_mmap_handler: 13033 20000000-20002000 already mapped failed -16
2018/03/31 01:44:44 executing program 6:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x200, 0x0)
socketpair$inet6_icmp_raw(0xa, 0x3, 0x3a, &(0x7f0000000680)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
setsockopt$sock_linger(r1, 0x1, 0xd, &(0x7f00000006c0)={0x400, 0x9}, 0x8)
perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
mmap(&(0x7f0000000000/0x9d7000)=nil, 0x9d7000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x7)
perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r4, &(0x7f0000e5b000)={0x2, 0x4e20, @multicast1=0xe0000001}, 0x10)
syz_open_dev$sg(&(0x7f0000000440)='/dev/sg#\x00', 0x0, 0x0)
connect$inet(r4, &(0x7f0000000100)={0x2, 0x4e20, @multicast2=0xe0000002}, 0x10)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000eb0fb8)={0x1, 0x3, &(0x7f00009ff000)=@framed={{0x18}, [], {0x95}}, &(0x7f00002bf000)='syzkaller\x00', 0x4, 0xb7, &(0x7f00006ab000)=""/183}, 0x48)
setsockopt$inet_tcp_int(r4, 0x6, 0x19, &(0x7f0000000240)=0x8, 0x4)
setsockopt$SO_BINDTODEVICE(r4, 0x1, 0x19, &(0x7f0000000000)="6970365f76746930000000000400", 0x10)
r6 = socket$kcm(0x29, 0x2, 0x0)
ioctl$sock_kcm_SIOCKCMATTACH(r6, 0x89e0, &(0x7f000031aff8)={r4, r5})
ioctl$sock_kcm_SIOCKCMCLONE(r6, 0x89e2, &(0x7f00000002c0)={<r7=>0xffffffffffffffff})
sendmsg$nl_xfrm(r7, &(0x7f0000000780)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000740)={&(0x7f0000000480)=@updpolicy={0xb8, 0x19, 0x0, 0x0, 0x0, {{@in=@loopback=0x7f000001, @in6=@mcast1={0xff, 0x1, [], 0x1}}}}, 0xffcb}, 0x1}, 0x0)
ioctl$sock_kcm_SIOCKCMUNATTACH(r7, 0x89e1, &(0x7f0000000040)={r4})
r8 = fcntl$getown(r3, 0x9)
r9 = accept4$inet(0xffffffffffffff9c, &(0x7f0000000700)={0x0, 0x0, @broadcast}, &(0x7f0000000740)=0x10, 0x80000)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r9, 0x84, 0x64, &(0x7f0000000300)=[@in6={0xa, 0x4e23, 0x0, @dev={0xfe, 0x80}, 0x6}, @in={0x2, 0xff, @local={0xac, 0x14, 0x14, 0xaa}}, @in={0x2, 0x4e23, @multicast1=0xe0000001}, @in={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x10}}, @in={0x2, 0x4e20, @multicast1=0xe0000001}, @in={0x2, 0x4e24}, @in={0x2, 0x4e24, @broadcast=0xffffffff}, @in6={0xa, 0x4e21, 0xed34, @local={0xfe, 0x80, [], 0xaa}, 0x3}, @in={0x2, 0x4e23, @loopback=0x7f000001}], 0xfffffffffffffe00)
ptrace$setregset(0x4205, r8, 0x0, &(0x7f00000005c0)={&(0x7f0000000080)="449ed0dd6831a7fb44eca4221b1fb01abfec082aa7d0ee6f0ba9db0ece7da2bd3f", 0x21})
r10 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r11 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x1fffd, 0x0)
syz_open_dev$sndtimer(&(0x7f00000000c0)='/dev/snd/timer\x00', 0x0, 0x0)
read(r0, &(0x7f0000000140)=""/50, 0x32)
fcntl$dupfd(r10, 0x0, r11)

2018/03/31 01:44:44 executing program 0:
socket$nl_generic(0x10, 0x3, 0x10)
getsockopt$inet_opts(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000040)=""/93, &(0x7f0000000300)=0x5d)
setsockopt$SO_VM_SOCKETS_BUFFER_MAX_SIZE(0xffffffffffffffff, 0x28, 0x2, &(0x7f00000001c0), 0x8)
perf_event_open(&(0x7f000001d000)={0x2, 0x78, 0xe2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = accept$inet6(0xffffffffffffff9c, &(0x7f0000000580), &(0x7f0000000600)=0x1c)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, &(0x7f0000000640)={0x3, [0x0, 0x0, 0x0]}, &(0x7f00000006c0)=0x10)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup\x00', 0x200002, 0x0)
getsockopt$inet6_buf(0xffffffffffffffff, 0x29, 0x0, &(0x7f0000c86000), &(0x7f0000d1b252))
r1 = syz_open_dev$tun(&(0x7f0000000100)='/dev/net/tun\x00', 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f00000000c0)={"d202b999cf85000000000088f301e710", 0x102})
ioctl$TUNSETQUEUE(r1, 0x400454d9, &(0x7f0000000140)={'vhan0\x00', 0x400})
getsockopt$SO_TIMESTAMPING(0xffffffffffffffff, 0x1, 0x25, &(0x7f0000000440), &(0x7f0000000680)=0x4)
getsockopt$inet_sctp_SCTP_PARTIAL_DELIVERY_POINT(0xffffffffffffffff, 0x84, 0x13, &(0x7f0000000480)={0x0, 0x745e779}, &(0x7f00000005c0)=0xffffff41)
getsockopt$inet6_udp_int(0xffffffffffffffff, 0x11, 0x0, &(0x7f00000002c0), &(0x7f0000000900)=0x4)
syz_genetlink_get_family_id$ipvs(&(0x7f0000000740)='IPVS\x00')
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000018000)={&(0x7f0000000000)={0x10}, 0xc, &(0x7f000000e000)={&(0x7f0000000500)=ANY=[]}, 0x1}, 0x0)
timer_create(0x5, &(0x7f0000000240)={0x0, 0x1d, 0x0, @thr={&(0x7f00000006c0), &(0x7f0000000740)}}, &(0x7f0000000280))
finit_module(0xffffffffffffffff, &(0x7f0000000180)='\\$GPLwlan1wlan0\'*:\x00', 0x0)

2018/03/31 01:44:44 executing program 1:
r0 = creat(&(0x7f0000000b40)='./file0\x00', 0x20)
ioctl$DRM_IOCTL_AGP_ALLOC(0xffffffffffffff9c, 0xc0206434, &(0x7f0000000b80)={0x5, <r1=>0x0, 0x0, 0x81})
ioctl$DRM_IOCTL_SG_FREE(r0, 0x40106439, &(0x7f0000000bc0)={0x3, r1})
r2 = socket$inet(0x2, 0x6, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f00000008c0)=@broute={'broute\x00', 0x20, 0x2, 0x3e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000280], 0x0, &(0x7f0000000240), &(0x7f0000000280)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff01000000110000000000000000006970366772657461703000000000f8010000000000006e000000000000000000697036746e6c3000000000000000000073797a5f74756e0000000000000000000180c200000000000000ff00aaaaaaaaaabb00000000000000007000003088e2e6d880a216be4cc3d756631a0008010000580100005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a30000000000000000000000000000000000000000000000000000000004c45440000000000000000000000000000000000000000000000000000000000280000000000000073797a3000000000000000000000000000000000000000000000000000000000000000000000000049444c4554494d4552000000000000000000000000000000000000000000000028000000000000000000010073797a30000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001000000ffffffff010000000d0000000000000086dd73797a6b616c6c65723000000000000074756e6c3000000000000000000000007369743000000000000000000000000069666230000000000000000000000000000000000000000000000000ffffffffffff000000000000000030010000b001000000020000697036000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000002000000000000000000000ffffac1414aa0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006c696d6974000000000000000000000000000000000000000000000000000000200000000000000000000000ec00000000000000000000000000000000000000000000000000000049444c4554494d4552000000000000000000000000000000000000000000000028000000000000008100000073797a3100000000000000000000000000000000000000000000000000000000000000004e46515545554500000000000000000000000000000000000000000000000000080000000000000000000000000000004c45440000000000000000000000000000000000000000000000000000000000280000000000000073797a30000000000000000000000000000000000000000000"]}, 0x460)
getsockopt$inet_sctp6_SCTP_CONTEXT(0xffffffffffffff9c, 0x84, 0x11, &(0x7f0000000000)={<r3=>0x0, 0x7}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r2, 0x84, 0xa, &(0x7f0000000140)={0x0, 0xa2b, 0x4, 0x7, 0x2, 0x20, 0x10000, 0x8a82, r3}, &(0x7f0000000180)=0x20)
setsockopt$inet_group_source_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000680)={0x1000, {{0x2, 0x4e23, @multicast1=0xe0000001}}, {{0x2, 0x4e22, @broadcast=0xffffffff}}}, 0x108)
ioctl$DRM_IOCTL_AGP_ENABLE(0xffffffffffffffff, 0x40086432, &(0x7f0000000100))
r4 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/vs/sync_version\x00', 0x2, 0x0)
ioctl$TIOCGSOFTCAR(r4, 0x5419, &(0x7f00000007c0))
r5 = socket$inet6(0x10, 0x2, 0x0)
sendmsg(r5, &(0x7f0000000080)={&(0x7f0000000240)=@un=@abs={0x1, 0x0, 0x4e23}, 0x80, &(0x7f0000000040)=[{&(0x7f00000001c0)="5500000018007f04002d1cb2a4a280930a0600007da843cf19d0f869390009402f002100040000001900050000fc1700000000dc1338d54400009b84136ef75afb83de448daa7227c43ab8220000060c", 0x50}], 0x1, &(0x7f00000000c0)}, 0x0)
socket$bt_cmtp(0x1f, 0x3, 0x5)
fcntl$addseals(r5, 0x409, 0x7)
syz_open_dev$sndmidi(&(0x7f0000000c00)='/dev/snd/midiC#D#\x00', 0x100000001, 0x0)
creat(&(0x7f0000000c80)='./file0\x00', 0x6)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f0000001640)=@broute={'broute\x00', 0x20, 0x1, 0x1e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20001700], 0x0, &(0x7f0000001980), &(0x7f0000001700)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1, [{{{0x13, 0x0, 0x0, 'vcan0\x00', 'ifb0\x00', 'syzkaller0\x00', 'vcan0\x00', @remote={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xbb}, [], @link_local={0x1, 0x80, 0xc2}, [], 0x70, 0xf8, 0x128}, [@common=@dnat={'dnat\x00', 0x10, {{@dev={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa]}, 0xffffffffffffffff}}}, @common=@IDLETIMER={'IDLETIMER\x00', 0x28, {{0x4, 'syz0\x00'}}}]}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8}}]}, {0x0, '\x00', 0x1, 0xffffbffffffffffe}]}, 0x260)
setsockopt$EBT_SO_SET_ENTRIES(0xffffffffffffffff, 0x0, 0x80, &(0x7f0000000840)=@nat={'nat\x00', 0x19, 0x1, 0x200, [0x20000940, 0x0, 0x0, 0x20000970, 0x200009a0], 0x0, &(0x7f0000000800), &(0x7f0000000940)=[{}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x14, 0x98ab, 'teql0\x00', 'ip6gretap0\x00', 'ip_vti0\x00', 'nr0\x00', @empty, [0x0, 0xff, 0x0, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2}, [0xff, 0x0, 0xff, 0x0, 0x0, 0xff], 0x100, 0x138, 0x170, [@time={'time\x00', 0x18, {{0x7, 0x3, 0x13782, 0x14fdf, 0x80, 0x4, 0x1}}}, @nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x2}}}]}, [@snat={'snat\x00', 0x10, {{@random="07901c8f0140"}}}]}, @common=@dnat={'dnat\x00', 0x10, {{@local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}, 0x10}}}}]}]}, 0x278)
syz_open_dev$vcsn(&(0x7f0000000cc0)='/dev/vcs#\x00', 0x7, 0x400000)
syz_open_dev$dmmidi(&(0x7f0000000c40)='/dev/dmmidi#\x00', 0xae6d, 0x200)

[  177.948418] FAULT_INJECTION: forcing a failure.
[  177.948418] name failslab, interval 1, probability 0, space 0, times 0
[  177.959723] CPU: 0 PID: 13076 Comm: syz-executor3 Not tainted 4.16.0-rc7+ #372
[  177.967076] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  177.976422] Call Trace:
[  177.979009]  dump_stack+0x194/0x24d
[  177.982642]  ? arch_local_irq_restore+0x53/0x53
[  177.987312]  ? finish_task_switch+0x1c1/0x7e0
[  177.991802]  ? finish_task_switch+0x182/0x7e0
[  177.996307]  should_fail+0x8c0/0xa40
[  177.996914] kernel msg: ebtables bug: please report to author: entries_size too small
[  178.000541]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  178.000569]  ? __sched_text_start+0x8/0x8
[  178.000582]  ? find_held_lock+0x35/0x1d0
[  178.000599]  ? __lock_is_held+0xb6/0x140
[  178.000623]  ? check_same_owner+0x320/0x320
[  178.000638]  ? rcu_read_lock_sched_held+0x108/0x120
[  178.033046] kernel msg: ebtables bug: please report to author: entries_size too small
[  178.035200]  should_failslab+0xec/0x120
2018/03/31 01:44:44 executing program 1:
r0 = creat(&(0x7f0000000b40)='./file0\x00', 0x20)
ioctl$DRM_IOCTL_AGP_ALLOC(0xffffffffffffff9c, 0xc0206434, &(0x7f0000000b80)={0x5, <r1=>0x0, 0x0, 0x81})
ioctl$DRM_IOCTL_SG_FREE(r0, 0x40106439, &(0x7f0000000bc0)={0x3, r1})
r2 = socket$inet(0x2, 0x6, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f00000008c0)=@broute={'broute\x00', 0x20, 0x2, 0x3e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000280], 0x0, &(0x7f0000000240), &(0x7f0000000280)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff01000000110000000000000000006970366772657461703000000000f8010000000000006e000000000000000000697036746e6c3000000000000000000073797a5f74756e0000000000000000000180c200000000000000ff00aaaaaaaaaabb00000000000000007000000008010000580100005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a30000000000000000000000000000000000000000000000000000000004c45440000000000000000000000000000000000000000000000000000000000280000000000000073797a3000000000000000000000000000000000000000000000000000000000000000000000000049444c4554494d4552000000000000000000000000000000000000000000000028000000000000000000010073797a30000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001000000ffffffff010000000d0000000000000086dd73797a6b616c6c65723000000000000074756e6c3000000000000000000000007369743000000000000000000000000069666230000000000000000000000000000000000000000000000000ffffffffffff000000000000000030010000b001000000020000697036000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000ffffac1414aa0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006c696d6974000000000000000000000000000000000000000000000000000000200000000000000000000000ec00000000000000000000000000000000000000000000000000000049444c4554494d4552000000000000000000000000000000000000000000000028000000000000008100000073797a3100000000000000000000000000000000000000000000000000000000000000004e46515545554500000000000000000000000000000000000000000000000000080000000000000000000000000000004c45440000000000000000000000000000000000000000000000000000000000280000000000000073797a30000000000000000000000000000000000000000000000000000000000000000000000000"]}, 0x460)
getsockopt$inet_sctp6_SCTP_CONTEXT(0xffffffffffffff9c, 0x84, 0x11, &(0x7f0000000000)={<r3=>0x0, 0x7}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r2, 0x84, 0xa, &(0x7f0000000140)={0x0, 0xa2b, 0x4, 0x7, 0x2, 0x20, 0x10000, 0x8a82, r3}, &(0x7f0000000180)=0x20)
setsockopt$inet_group_source_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000680)={0x1000, {{0x2, 0x4e23, @multicast1=0xe0000001}}, {{0x2, 0x4e22, @broadcast=0xffffffff}}}, 0x108)
ioctl$DRM_IOCTL_AGP_ENABLE(0xffffffffffffffff, 0x40086432, &(0x7f0000000100))
r4 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/vs/sync_version\x00', 0x2, 0x0)
ioctl$TIOCGSOFTCAR(r4, 0x5419, &(0x7f00000007c0))
r5 = socket$inet6(0x10, 0x2, 0x0)
sendmsg(r5, &(0x7f0000000080)={&(0x7f0000000240)=@un=@abs={0x1, 0x0, 0x4e23}, 0x80, &(0x7f0000000040)=[{&(0x7f00000001c0)="5500000018007f04002d1cb2a4a280930a0600007da843cf19d0f869390009402f002100040000001900050000fc1700000000dc1338d54400009b84136ef75afb83de448daa7227c43ab8220000060c", 0x50}], 0x1, &(0x7f00000000c0)}, 0x0)
socket$bt_cmtp(0x1f, 0x3, 0x5)
fcntl$addseals(r5, 0x409, 0x7)
accept$packet(r4, &(0x7f0000000c80)={0x0, 0x0, <r6=>0x0, 0x0, 0x0, 0x0, @local}, &(0x7f0000000cc0)=0x14)
ioctl$sock_inet6_SIOCDIFADDR(r0, 0x8936, &(0x7f0000000d00)={@mcast1={0xff, 0x1, [], 0x1}, 0x3c, r6})
syz_open_dev$sndmidi(&(0x7f0000000c00)='/dev/snd/midiC#D#\x00', 0x100000001, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f0000001640)=@broute={'broute\x00', 0x20, 0x1, 0x1e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20001700], 0x0, &(0x7f0000001980), &(0x7f0000001700)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1, [{{{0x13, 0x0, 0x0, 'vcan0\x00', 'ifb0\x00', 'syzkaller0\x00', 'vcan0\x00', @remote={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xbb}, [], @link_local={0x1, 0x80, 0xc2}, [], 0x70, 0xf8, 0x128}, [@common=@dnat={'dnat\x00', 0x10, {{@dev={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa]}, 0xffffffffffffffff}}}, @common=@IDLETIMER={'IDLETIMER\x00', 0x28, {{0x4, 'syz0\x00'}}}]}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8}}]}, {0x0, '\x00', 0x1, 0xffffbffffffffffe}]}, 0x260)
setsockopt$EBT_SO_SET_ENTRIES(0xffffffffffffffff, 0x0, 0x80, &(0x7f0000000840)=@nat={'nat\x00', 0x19, 0x1, 0x200, [0x20000940, 0x0, 0x0, 0x20000970, 0x200009a0], 0x0, &(0x7f0000000800), &(0x7f0000000940)=[{}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x14, 0x98ab, 'teql0\x00', 'ip6gretap0\x00', 'ip_vti0\x00', 'nr0\x00', @empty, [0x0, 0xff, 0x0, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2}, [0xff, 0x0, 0xff, 0x0, 0x0, 0xff], 0x100, 0x138, 0x170, [@time={'time\x00', 0x18, {{0x7, 0x3, 0x13782, 0x14fdf, 0x80, 0x4, 0x1}}}, @nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x2}}}]}, [@snat={'snat\x00', 0x10, {{@random="07901c8f0140"}}}]}, @common=@dnat={'dnat\x00', 0x10, {{@local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}, 0x10}}}}]}]}, 0x278)
syz_open_dev$dmmidi(&(0x7f0000000c40)='/dev/dmmidi#\x00', 0xae6d, 0x200)

[  178.035213]  kmem_cache_alloc+0x47/0x760
[  178.035223]  ? memcpy+0x45/0x50
[  178.035237]  ? kstrdup+0x59/0x70
[  178.035253]  __kernfs_new_node+0xe2/0x570
[  178.035265]  ? kernfs_dop_revalidate+0x380/0x380
[  178.035278]  ? kasan_check_read+0x11/0x20
[  178.035291]  ? read_word_at_a_time+0x12/0x20
[  178.075220]  ? strscpy+0x186/0x500
[  178.078773]  kernfs_new_node+0x80/0xe0
[  178.082660]  __kernfs_create_file+0x4b/0x320
[  178.087069]  cgroup_addrm_files+0x3c5/0xa70
[  178.091385]  ? cgroup_file_write+0x710/0x710
2018/03/31 01:44:44 executing program 1:
r0 = creat(&(0x7f0000000b40)='./file0\x00', 0x20)
ioctl$DRM_IOCTL_AGP_ALLOC(0xffffffffffffff9c, 0xc0206434, &(0x7f0000000b80)={0x5, <r1=>0x0, 0x0, 0x81})
ioctl$DRM_IOCTL_SG_FREE(r0, 0x40106439, &(0x7f0000000bc0)={0x3, r1})
r2 = socket$inet(0x2, 0x6, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f00000008c0)=@broute={'broute\x00', 0x20, 0x2, 0x3e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000280], 0x0, &(0x7f0000000240), &(0x7f0000000280)=ANY=[@ANYBLOB="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"]}, 0x460)
getsockopt$inet_sctp6_SCTP_CONTEXT(0xffffffffffffff9c, 0x84, 0x11, &(0x7f0000000000)={<r3=>0x0, 0x7}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r2, 0x84, 0xa, &(0x7f0000000140)={0x0, 0xa2b, 0x4, 0x7, 0x2, 0x20, 0x10000, 0x8a82, r3}, &(0x7f0000000180)=0x20)
setsockopt$inet_group_source_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000680)={0x1000, {{0x2, 0x4e23, @multicast1=0xe0000001}}, {{0x2, 0x4e22, @broadcast=0xffffffff}}}, 0x108)
ioctl$DRM_IOCTL_AGP_ENABLE(0xffffffffffffffff, 0x40086432, &(0x7f0000000100))
r4 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/vs/sync_version\x00', 0x2, 0x0)
ioctl$TIOCGSOFTCAR(r4, 0x5419, &(0x7f00000007c0))
r5 = socket$inet6(0x10, 0x2, 0x0)
sendmsg(r5, &(0x7f0000000080)={&(0x7f0000000240)=@un=@abs={0x1, 0x0, 0x4e23}, 0x80, &(0x7f0000000040)=[{&(0x7f00000001c0)="5500000018007f04002d1cb2a4a280930a0600007da843cf19d0f869390009402f002100040000001900050000fc1700000000dc1338d54400009b84136ef75afb83de448daa7227c43ab8220000060c", 0x50}], 0x1, &(0x7f00000000c0)}, 0x0)
socket$bt_cmtp(0x1f, 0x3, 0x5)
fcntl$addseals(r5, 0x409, 0x7)
syz_open_dev$sndmidi(&(0x7f0000000c00)='/dev/snd/midiC#D#\x00', 0x100000001, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f0000001640)=@broute={'broute\x00', 0x20, 0x1, 0x1e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20001700], 0x0, &(0x7f0000001980), &(0x7f0000001700)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1, [{{{0x13, 0x0, 0x0, 'vcan0\x00', 'ifb0\x00', 'syzkaller0\x00', 'vcan0\x00', @remote={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xbb}, [], @link_local={0x1, 0x80, 0xc2}, [], 0x70, 0xf8, 0x128}, [@common=@dnat={'dnat\x00', 0x10, {{@dev={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa]}, 0xffffffffffffffff}}}, @common=@IDLETIMER={'IDLETIMER\x00', 0x28, {{0x4, 'syz0\x00'}}}]}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8}}]}, {0x0, '\x00', 0x1, 0xffffbffffffffffe}]}, 0x260)
setsockopt$EBT_SO_SET_ENTRIES(0xffffffffffffffff, 0x0, 0x80, &(0x7f0000000840)=@nat={'nat\x00', 0x19, 0x1, 0x200, [0x20000940, 0x0, 0x0, 0x20000970, 0x200009a0], 0x0, &(0x7f0000000800), &(0x7f0000000940)=[{}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x14, 0x98ab, 'teql0\x00', 'ip6gretap0\x00', 'ip_vti0\x00', 'nr0\x00', @empty, [0x0, 0xff, 0x0, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2}, [0xff, 0x0, 0xff, 0x0, 0x0, 0xff], 0x100, 0x138, 0x170, [@time={'time\x00', 0x18, {{0x7, 0x3, 0x13782, 0x14fdf, 0x80, 0x4, 0x1}}}, @nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x2}}}]}, [@snat={'snat\x00', 0x10, {{@random="07901c8f0140"}}}]}, @common=@dnat={'dnat\x00', 0x10, {{@local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}, 0x10}}}}]}]}, 0x278)
syz_open_dev$dmmidi(&(0x7f0000000c40)='/dev/dmmidi#\x00', 0xae6d, 0x200)
ioctl$sock_inet_sctp_SIOCINQ(r2, 0x541b, &(0x7f0000000c80))

[  178.095780]  ? getrawmonotonic64+0x460/0x460
[  178.100169]  ? kernfs_active+0x92/0x160
[  178.104137]  ? debug_lockdep_rcu_enabled+0x77/0x90
[  178.109058]  ? cgroup_kn_set_ugid+0x2c7/0x370
[  178.113546]  ? cgroup_file_name+0x1d0/0x1d0
[  178.117869]  css_populate_dir+0x340/0x420
[  178.122012]  cgroup_mkdir+0x553/0xfc0
[  178.125809]  ? __lock_is_held+0xb6/0x140
[  178.129903]  ? cgroup_destroy_locked+0x750/0x750
[  178.134657]  ? rcu_read_lock_sched_held+0x108/0x120
[  178.139675]  ? kmem_cache_free+0x258/0x2a0
[  178.143900]  ? set_nlink+0xc1/0x160
2018/03/31 01:44:44 executing program 1:
r0 = creat(&(0x7f0000000b40)='./file0\x00', 0x20)
ioctl$DRM_IOCTL_AGP_ALLOC(0xffffffffffffff9c, 0xc0206434, &(0x7f0000000b80)={0x5, <r1=>0x0, 0x0, 0x81})
ioctl$DRM_IOCTL_SG_FREE(r0, 0x40106439, &(0x7f0000000bc0)={0x3, r1})
r2 = syz_open_dev$vcsn(&(0x7f0000000c80)='/dev/vcs#\x00', 0x7, 0x2000)
r3 = socket$inet(0x2, 0x6, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r3, 0x0, 0x80, &(0x7f00000008c0)=@broute={'broute\x00', 0x20, 0x2, 0x3e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000280], 0x0, &(0x7f0000000240), &(0x7f0000000280)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff01000000110000000000000000006970366772657461703000000000f8010000000000006e000000000000000000697036746e6c3000000000000000000073797a5f74756e0000000000000000000180c200000000000000ff00aaaaaaaaaabb00000000000000007000000008010000580100005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a30000000000000000000000000000000000000000000000000000000004c45440000000000000000000000000000000000000000000000000000000000280000000000000073797a3000000000000000000000000000000000000000000000000000000000000000000000000049444c4554494d4552000000000000000000000000000000000000000000000028000000000000000000010073797a30000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001000000ffffffff010000000d0000000000000086dd73797a6b616c6c65723000000000000074756e6c3000000000000000000000007369743000000000000000000000000069666230000000000000000000000000000000000000000000000000ffffffffffff000000000000000030010000b001000000020000697036000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000ffffac1414aa0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006c696d6974000000000000000000000000000000000000000000000000000000200000000000000000000000ec00000000000000000000000000000000000000000000000000000049444c4554494d4552000000000000000000000000000000000000000000000028000000000000008100000073797a3100000000000000000000000000000000000000000000000000000000000000004e46515545554500000000000000000000000000000000000000000000000000080000000000000000000000000000004c45440000000000000000000000000000000000000000000000000000000000280000000000000073797a30000000000000000000000000000000000000000000000000000000000000000000000000"]}, 0x460)
getsockopt$inet_sctp6_SCTP_CONTEXT(0xffffffffffffff9c, 0x84, 0x11, &(0x7f0000000000)={<r4=>0x0, 0x7}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r3, 0x84, 0xa, &(0x7f0000000140)={0x0, 0xa2b, 0x4, 0x7, 0x2, 0x20, 0x10000, 0x8a82, r4}, &(0x7f0000000180)=0x20)
setsockopt$inet_group_source_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000680)={0x1000, {{0x2, 0x4e23, @multicast1=0xe0000001}}, {{0x2, 0x4e22, @broadcast=0xffffffff}}}, 0x108)
ioctl$DRM_IOCTL_AGP_ENABLE(0xffffffffffffffff, 0x40086432, &(0x7f0000000100))
ioctl$sock_bt_bnep_BNEPCONNADD(r3, 0x400442c8, &(0x7f0000000cc0)={r2, 0xad11, 0x400, "531bb727fb7411ae11"})
r5 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/vs/sync_version\x00', 0x2, 0x0)
ioctl$TIOCGSOFTCAR(r5, 0x5419, &(0x7f00000007c0))
r6 = socket$inet6(0x10, 0x2, 0x0)
sendmsg(r6, &(0x7f0000000080)={&(0x7f0000000240)=@un=@abs={0x1, 0x0, 0x4e23}, 0x80, &(0x7f0000000040)=[{&(0x7f00000001c0)="5500000018007f04002d1cb2a4a280930a0600007da843cf19d0f869390009402f002100040000001900050000fc1700000000dc1338d54400009b84136ef75afb83de448daa7227c43ab8220000060c", 0x50}], 0x1, &(0x7f00000000c0)}, 0x0)
socket$bt_cmtp(0x1f, 0x3, 0x5)
fcntl$addseals(r6, 0x409, 0x7)
syz_open_dev$sndmidi(&(0x7f0000000c00)='/dev/snd/midiC#D#\x00', 0x100000001, 0x0)
ioctl$TIOCLINUX6(r0, 0x541c, &(0x7f0000000d00)={0x6, 0x62fa})
setsockopt$EBT_SO_SET_ENTRIES(r3, 0x0, 0x80, &(0x7f0000001640)=@broute={'broute\x00', 0x20, 0x1, 0x1e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20001700], 0x0, &(0x7f0000001980), &(0x7f0000001700)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1, [{{{0x13, 0x0, 0x0, 'vcan0\x00', 'ifb0\x00', 'syzkaller0\x00', 'vcan0\x00', @remote={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xbb}, [], @link_local={0x1, 0x80, 0xc2}, [], 0x70, 0xf8, 0x128}, [@common=@dnat={'dnat\x00', 0x10, {{@dev={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa]}, 0xffffffffffffffff}}}, @common=@IDLETIMER={'IDLETIMER\x00', 0x28, {{0x4, 'syz0\x00'}}}]}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8}}]}, {0x0, '\x00', 0x1, 0xffffbffffffffffe}]}, 0x260)
setsockopt$EBT_SO_SET_ENTRIES(0xffffffffffffffff, 0x0, 0x80, &(0x7f0000000840)=@nat={'nat\x00', 0x19, 0x1, 0x200, [0x20000940, 0x0, 0x0, 0x20000970, 0x200009a0], 0x0, &(0x7f0000000800), &(0x7f0000000940)=[{}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x14, 0x98ab, 'teql0\x00', 'ip6gretap0\x00', 'ip_vti0\x00', 'nr0\x00', @empty, [0x0, 0xff, 0x0, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2}, [0xff, 0x0, 0xff, 0x0, 0x0, 0xff], 0x100, 0x138, 0x170, [@time={'time\x00', 0x18, {{0x7, 0x3, 0x13782, 0x14fdf, 0x80, 0x4, 0x1}}}, @nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x2}}}]}, [@snat={'snat\x00', 0x10, {{@random="07901c8f0140"}}}]}, @common=@dnat={'dnat\x00', 0x10, {{@local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}, 0x10}}}}]}]}, 0x278)
syz_open_dev$dmmidi(&(0x7f0000000c40)='/dev/dmmidi#\x00', 0xae6f, 0x1fa)

[  178.147517]  ? debug_lockdep_rcu_enabled+0x77/0x90
[  178.152438]  ? generic_permission+0x105/0x3c0
[  178.156927]  ? cgroup_destroy_locked+0x750/0x750
[  178.161675]  kernfs_iop_mkdir+0x153/0x1e0
[  178.165825]  vfs_mkdir+0x390/0x600
[  178.169373]  SyS_mkdirat+0x22b/0x2b0
[  178.173093]  ? SyS_mknod+0x480/0x480
[  178.176802]  ? trace_hardirqs_on+0xd/0x10
[  178.180949]  ? do_syscall_64+0xb7/0x940
[  178.184917]  ? SyS_mknod+0x480/0x480
[  178.188625]  do_syscall_64+0x281/0x940
[  178.192508]  ? vmalloc_sync_all+0x30/0x30
2018/03/31 01:44:44 executing program 1:
r0 = creat(&(0x7f0000000b40)='./file0\x00', 0x20)
ioctl$DRM_IOCTL_AGP_ALLOC(0xffffffffffffff9c, 0xc0206434, &(0x7f0000000b80)={0x5, <r1=>0x0, 0x0, 0x81})
ioctl$DRM_IOCTL_SG_FREE(r0, 0x40106439, &(0x7f0000000bc0)={0x3, r1})
r2 = socket$inet(0x2, 0x6, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f00000008c0)=@broute={'broute\x00', 0x20, 0x2, 0x3e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000280], 0x0, &(0x7f0000000240), &(0x7f0000000280)=ANY=[@ANYBLOB="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"]}, 0x460)
getsockopt$bt_BT_DEFER_SETUP(r0, 0x112, 0x7, &(0x7f0000000f80)=0xfffffffffffffffe, &(0x7f0000000fc0)=0x4)
getsockopt$inet_sctp6_SCTP_CONTEXT(0xffffffffffffff9c, 0x84, 0x11, &(0x7f0000000000)={<r3=>0x0, 0x7}, &(0x7f0000000040)=0x8)
setsockopt$inet_sctp_SCTP_FRAGMENT_INTERLEAVE(r0, 0x84, 0x12, &(0x7f0000000c40)=0x6, 0x4)
getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r2, 0x84, 0xa, &(0x7f0000000140)={0x0, 0xa2b, 0x4, 0x7, 0x2, 0x20, 0x10000, 0x8a82, <r4=>r3}, &(0x7f0000000180)=0x20)
ioctl$DRM_IOCTL_AGP_FREE(r0, 0x40206435, &(0x7f0000000d00)={0x4, r1, 0x10003, 0x7ff})
setsockopt$inet_group_source_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000680)={0x1000, {{0x2, 0x4e23, @multicast1=0xe0000001}}, {{0x2, 0x4e22, @broadcast=0xffffffff}}}, 0x108)
setsockopt$inet_sctp6_SCTP_RESET_ASSOC(r0, 0x84, 0x78, &(0x7f0000000cc0)=r4, 0x4)
ioctl$DRM_IOCTL_AGP_ENABLE(0xffffffffffffffff, 0x40086432, &(0x7f0000000100))
r5 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/vs/sync_version\x00', 0x2, 0x0)
ioctl$TIOCGSOFTCAR(r5, 0x5419, &(0x7f00000007c0))
recvmsg$kcm(r0, &(0x7f0000000ec0)={&(0x7f0000000d40)=@can={0x0, <r6=>0x0}, 0x80, &(0x7f0000000e40)=[{&(0x7f00000019c0)=""/4096, 0x1000}, {&(0x7f00000029c0)=""/4096, 0x1000}, {&(0x7f0000000dc0)=""/72, 0x48}], 0x3, &(0x7f0000000e80)=""/23, 0x17, 0x2}, 0x40010000)
bind(r5, &(0x7f0000000f00)=@can={0x1d, r6}, 0x80)
r7 = socket$inet6(0x10, 0x2, 0x0)
sendmsg(r7, &(0x7f0000000080)={&(0x7f0000000240)=@un=@abs={0x1, 0x0, 0x4e23}, 0x80, &(0x7f0000000040)=[{&(0x7f00000001c0)="5500000018007f04002d1cb2a4a280930a0600007da843cf19d0f869390009402f002100040000001900050000fc1700000000dc1338d54400009b84136ef75afb83de448daa7227c43ab8220000060c", 0x50}], 0x1, &(0x7f00000000c0)}, 0x0)
socket$bt_cmtp(0x1f, 0x3, 0x5)
fcntl$addseals(r7, 0x409, 0x7)
syz_open_dev$sndmidi(&(0x7f0000000c00)='/dev/snd/midiC#D#\x00', 0x100000001, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f0000001640)=@broute={'broute\x00', 0x20, 0x1, 0x1e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20001700], 0x0, &(0x7f0000001980), &(0x7f0000001700)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1, [{{{0x13, 0x0, 0x0, 'vcan0\x00', 'ifb0\x00', 'syzkaller0\x00', 'vcan0\x00', @remote={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xbb}, [], @link_local={0x1, 0x80, 0xc2}, [], 0x70, 0xf8, 0x128}, [@common=@dnat={'dnat\x00', 0x10, {{@dev={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa]}, 0xffffffffffffffff}}}, @common=@IDLETIMER={'IDLETIMER\x00', 0x28, {{0x4, 'syz0\x00'}}}]}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8}}]}, {0x0, '\x00', 0x1, 0xffffbffffffffffe}]}, 0x260)
setsockopt$EBT_SO_SET_ENTRIES(0xffffffffffffffff, 0x0, 0x80, &(0x7f0000000840)=@nat={'nat\x00', 0x19, 0x1, 0x200, [0x20000940, 0x0, 0x0, 0x20000970, 0x200009a0], 0x0, &(0x7f0000000800), &(0x7f0000000940)=[{}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x14, 0x98ab, 'teql0\x00', 'ip6gretap0\x00', 'ip_vti0\x00', 'nr0\x00', @empty, [0x0, 0xff, 0x0, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2}, [0xff, 0x0, 0xff, 0x0, 0x0, 0xff], 0x100, 0x138, 0x170, [@time={'time\x00', 0x18, {{0x7, 0x3, 0x13782, 0x14fdf, 0x80, 0x4, 0x1}}}, @nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x2}}}]}, [@snat={'snat\x00', 0x10, {{@random="07901c8f0140"}}}]}, @common=@dnat={'dnat\x00', 0x10, {{@local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}, 0x10}}}}]}]}, 0x278)
syz_open_dev$dmmidi(&(0x7f0000000c80)='/dev/dmmidi#\x00', 0xae69, 0x2)

[  178.196654]  ? _raw_spin_unlock_irq+0x27/0x70
[  178.201143]  ? finish_task_switch+0x1c1/0x7e0
[  178.205631]  ? syscall_return_slowpath+0x550/0x550
[  178.210559]  ? syscall_return_slowpath+0x2ac/0x550
[  178.215482]  ? prepare_exit_to_usermode+0x350/0x350
[  178.220497]  ? entry_SYSCALL_64_after_hwframe+0x52/0xb7
[  178.225848]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  178.230681]  entry_SYSCALL_64_after_hwframe+0x42/0xb7
[  178.235860] RIP: 0033:0x454e79
[  178.239043] RSP: 002b:00007fa6ef25cc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
2018/03/31 01:44:44 executing program 1:
r0 = creat(&(0x7f0000000b40)='./file0\x00', 0x20)
ioctl$DRM_IOCTL_AGP_ALLOC(0xffffffffffffff9c, 0xc0206434, &(0x7f0000000b80)={0x5, <r1=>0x0, 0x0, 0x81})
ioctl$DRM_IOCTL_SG_FREE(r0, 0x40106439, &(0x7f0000000bc0)={0x3, r1})
r2 = socket$inet(0x2, 0x6, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f00000008c0)=@broute={'broute\x00', 0x20, 0x2, 0x3e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000280], 0x0, &(0x7f0000000240), &(0x7f0000000280)=ANY=[@ANYBLOB="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"]}, 0x460)
ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(r0, 0xc00c642d, &(0x7f0000000c80)={<r3=>0x0, 0x80000, r0})
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f0000000cc0)={r3, 0x80000, r0})
getsockopt$inet_sctp6_SCTP_CONTEXT(0xffffffffffffff9c, 0x84, 0x11, &(0x7f0000000000)={<r4=>0x0, 0x7}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r2, 0x84, 0xa, &(0x7f0000000140)={0x0, 0xa2b, 0x4, 0x7, 0x2, 0x20, 0x10000, 0x8a82, r4}, &(0x7f0000000180)=0x20)
setsockopt$inet_group_source_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000680)={0x1000, {{0x2, 0x4e23, @multicast1=0xe0000001}}, {{0x2, 0x4e22, @broadcast=0xffffffff}}}, 0x108)
ioctl$DRM_IOCTL_AGP_ENABLE(0xffffffffffffffff, 0x40086432, &(0x7f0000000100))
r5 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/vs/sync_version\x00', 0x2, 0x0)
ioctl$TIOCGSOFTCAR(r5, 0x5419, &(0x7f00000007c0))
r6 = socket$inet6(0x10, 0x2, 0x0)
sendmsg(r6, &(0x7f0000000080)={&(0x7f0000000240)=@un=@abs={0x1, 0x0, 0x4e23}, 0x80, &(0x7f0000000040)=[{&(0x7f00000001c0)="5500000018007f04002d1cb2a4a280930a0600007da843cf19d0f869390009402f002100040000001900050000fc1700000000dc1338d54400009b84136ef75afb83de448daa7227c43ab8220000060c", 0x50}], 0x1, &(0x7f00000000c0)}, 0x0)
socket$bt_cmtp(0x1f, 0x3, 0x5)
fcntl$addseals(r6, 0x409, 0x7)
syz_open_dev$sndmidi(&(0x7f0000000c00)='/dev/snd/midiC#D#\x00', 0x100000001, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f0000001640)=@broute={'broute\x00', 0x20, 0x1, 0x1e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20001700], 0x0, &(0x7f0000001980), &(0x7f0000001700)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1, [{{{0x13, 0x0, 0x0, 'vcan0\x00', 'ifb0\x00', 'syzkaller0\x00', 'vcan0\x00', @remote={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xbb}, [], @link_local={0x1, 0x80, 0xc2}, [], 0x70, 0xf8, 0x128}, [@common=@dnat={'dnat\x00', 0x10, {{@dev={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa]}, 0xffffffffffffffff}}}, @common=@IDLETIMER={'IDLETIMER\x00', 0x28, {{0x4, 'syz0\x00'}}}]}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8}}]}, {0x0, '\x00', 0x1, 0xffffbffffffffffe}]}, 0x260)
setsockopt$EBT_SO_SET_ENTRIES(0xffffffffffffffff, 0x0, 0x80, &(0x7f0000000840)=@nat={'nat\x00', 0x19, 0x1, 0x200, [0x20000940, 0x0, 0x0, 0x20000970, 0x200009a0], 0x0, &(0x7f0000000800), &(0x7f0000000940)=[{}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x14, 0x98ab, 'teql0\x00', 'ip6gretap0\x00', 'ip_vti0\x00', 'nr0\x00', @empty, [0x0, 0xff, 0x0, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2}, [0xff, 0x0, 0xff, 0x0, 0x0, 0xff], 0x100, 0x138, 0x170, [@time={'time\x00', 0x18, {{0x7, 0x3, 0x13782, 0x14fdf, 0x80, 0x4, 0x1}}}, @nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x2}}}]}, [@snat={'snat\x00', 0x10, {{@random="07901c8f0140"}}}]}, @common=@dnat={'dnat\x00', 0x10, {{@local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}, 0x10}}}}]}]}, 0x278)
syz_open_dev$dmmidi(&(0x7f0000000c40)='/dev/dmmidi#\x00', 0xae6d, 0x200)

[  178.246745] RAX: ffffffffffffffda RBX: 00007fa6ef25d6d4 RCX: 0000000000454e79
[  178.254005] RDX: 0000000000000020 RSI: 0000000020000280 RDI: 0000000000000013
[  178.261269] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  178.268533] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000014
[  178.275796] R13: 00000000000003eb R14: 00000000006f7ea8 R15: 0000000000000014
[  178.283241] cgroup: cgroup_addrm_files: failed to add cgroup.events, err=-12
2018/03/31 01:44:45 executing program 7:
clone(0x200, &(0x7f0000000100)="abbcd764d5b6fd853189b4a102b248f0de7c0a5cc328ca13455598dc3d760fa566c64d7cb06a7e15cdb085165670f42b32809442c69a5942d03eb3fd42bf0ebb0272fc4beb43f269f26f57bbb67316f7c76c8d570edaa564720b4dfd8f32453fc2354ddc753155ac051e9e9657989f0bbf1c03e4cd9f735c6d1b95719dbbb1c04092f54f44256722d954f0000000000000000000000000000000", &(0x7f00000000c0), &(0x7f00008c8000), &(0x7f0000828ffe))
mknod(&(0x7f0000000000)='./file0\x00', 0x1000000000001040, 0x0)
execve(&(0x7f000007b000)='./file0\x00', &(0x7f0000000180), &(0x7f0000000040))
r0 = gettid()
r1 = syz_open_dev$mice(&(0x7f0000149000)='/dev/input/mice\x00', 0x0, 0x0)
execve(&(0x7f00000001c0)='./file0\x00', &(0x7f0000001540)=[&(0x7f0000000200)='user\x00', &(0x7f0000000240)='vmnet0\x00', &(0x7f0000000280)='user\x00', &(0x7f0000001500)='\x00'], &(0x7f00000015c0)=[&(0x7f0000001580)='#keyring\x00'])
msgget$private(0x0, 0x400)
timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000))
uselib(&(0x7f00000002c0)='./file0/file0\x00')
mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0xffffffffffffffff, 0x32, 0xffffffffffffffff, 0x0)
getsockopt$inet_sctp6_SCTP_INITMSG(r1, 0x84, 0x2, &(0x7f0000000040), &(0x7f0000000080)=0x8)
tkill(r0, 0x1000000000015)

2018/03/31 01:44:45 executing program 1:
r0 = creat(&(0x7f0000000b40)='./file0\x00', 0x20)
ioctl$DRM_IOCTL_AGP_ALLOC(0xffffffffffffff9c, 0xc0206434, &(0x7f0000000b80)={0x5, <r1=>0x0, 0x0, 0x81})
ioctl$DRM_IOCTL_SG_FREE(r0, 0x40106439, &(0x7f0000000bc0)={0x3, r1})
r2 = socket$inet(0x2, 0x6, 0x0)
ioctl$sock_SIOCOUTQ(r0, 0x5411, &(0x7f0000000e80))
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f00000008c0)=@broute={'broute\x00', 0x20, 0x2, 0x3e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000280], 0x0, &(0x7f0000000240), &(0x7f0000000280)=ANY=[@ANYBLOB="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"]}, 0x460)
getsockopt$inet_sctp6_SCTP_CONTEXT(0xffffffffffffff9c, 0x84, 0x11, &(0x7f0000000000)={<r3=>0x0, 0x7}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r2, 0x84, 0xa, &(0x7f0000000140)={0x0, 0xa2b, 0x4, 0x7, 0x2, 0x20, 0x10000, 0x8a82, r3}, &(0x7f0000000180)=0x20)
setsockopt$inet_group_source_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000680)={0x1000, {{0x2, 0x4e23, @multicast1=0xe0000001}}, {{0x2, 0x4e22, @broadcast=0xffffffff}}}, 0x108)
ioctl$DRM_IOCTL_AGP_ENABLE(0xffffffffffffffff, 0x40086432, &(0x7f0000000100))
openat$ipvs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/vs/sync_version\x00', 0x2, 0x0)
ioctl$TIOCGSOFTCAR(r0, 0x5419, &(0x7f0000000f80))
r4 = socket$inet6(0x10, 0x2, 0x0)
sendmsg(r4, &(0x7f0000000080)={&(0x7f0000000240)=@un=@abs={0x1, 0x0, 0x4e23}, 0x80, &(0x7f0000000040)=[{&(0x7f00000001c0)="5500000018007f04002d1cb2a4a280930a0600007da843cf19d0f869390009402f002100040000001900050000fc1700000000dc1338d54400009b84136ef75afb83de448daa7227c43ab8220000060c", 0x50}], 0x1, &(0x7f00000000c0)}, 0x0)
socket$bt_cmtp(0x1f, 0x3, 0x5)
fcntl$addseals(r4, 0x409, 0x7)
syz_open_dev$sndmidi(&(0x7f0000000c00)='/dev/snd/midiC#D#\x00', 0x100000001, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f0000001640)=@broute={'broute\x00', 0x20, 0x1, 0x1e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20001700], 0x0, &(0x7f0000001980), &(0x7f0000000c80)=ANY=[@ANYBLOB="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"]}, 0x26b)
setsockopt$EBT_SO_SET_ENTRIES(0xffffffffffffffff, 0x0, 0x80, &(0x7f0000000840)=@nat={'nat\x00', 0x19, 0x1, 0x200, [0x20000940, 0x0, 0x0, 0x20000970, 0x200009a0], 0x0, &(0x7f0000000800), &(0x7f0000000940)=[{}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x14, 0x98ab, 'teql0\x00', 'ip6gretap0\x00', 'ip_vti0\x00', 'nr0\x00', @empty, [0x0, 0xff, 0x0, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2}, [0xff, 0x0, 0xff, 0x0, 0x0, 0xff], 0x100, 0x138, 0x170, [@time={'time\x00', 0x18, {{0x7, 0x3, 0x13782, 0x14fdf, 0x80, 0x4, 0x1}}}, @nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x2}}}]}, [@snat={'snat\x00', 0x10, {{@random="07901c8f0140"}}}]}, @common=@dnat={'dnat\x00', 0x10, {{@local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}, 0x10}}}}]}]}, 0x278)
syz_open_dev$dmmidi(&(0x7f0000000c40)='/dev/dmmidi#\x00', 0xae6d, 0x200)

2018/03/31 01:44:45 executing program 4:
ioctl$KVM_CREATE_DEVICE(0xffffffffffffff9c, 0xc00caee0, &(0x7f0000000b00)={0x0, <r0=>0xffffffffffffffff})
syz_open_dev$usbmon(&(0x7f0000000200)='/dev/usbmon#\x00', 0x0, 0x10580)
userfaultfd(0x0)
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, &(0x7f0000000fe8)={0xaa})
ioctl$UFFDIO_REGISTER(0xffffffffffffffff, 0xc020aa00, &(0x7f0000019fe0)={{&(0x7f0000012000/0x2000)=nil, 0x2000}, 0x1})
pwritev(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000012000)}], 0x1, 0x0)
r1 = getpgrp(0x0)
wait4(r1, 0x0, 0x1, &(0x7f0000781f70))
prctl$setendian(0x14, 0x1)
r2 = syz_open_dev$sndctrl(&(0x7f0000000600)='/dev/snd/controlC#\x00', 0x2, 0x0)
r3 = perf_event_open(&(0x7f000001d000)={0x5, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x2661, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @perf_bp={&(0x7f0000000000), 0x1}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r4 = syz_open_dev$tun(&(0x7f0000000000)='/dev/net/tun\x00', 0x0, 0x0)
r5 = dup2(r4, r3)
accept4$ax25(r5, &(0x7f0000000400), &(0x7f0000000440)=0x10, 0x800)
pread64(r2, &(0x7f0000000900)=""/195, 0xc3, 0x0)
ioctl$KVM_SET_GSI_ROUTING(0xffffffffffffffff, 0x4008ae6a, &(0x7f0000000140)=ANY=[@ANYBLOB="1a17612be07ed0e8b6ab0166e88f982858a58727b20e4f938a5c73fd0f054441b33bb0b0e0c234892cc8eb9e09a24c680a39039bac82c11de00000000000beff9e2efcff00000000000000000000000500e2d6d72eb29134f06c822aa673e02baa8c71b14b55d4bd14faed1d4b271df850811406adcdc6ed62892ed70e5e5faec70e82bfe39aaa24c25d3487dc03d540986a51240a2b1c7b965fc4709e"])
perf_event_open(&(0x7f0000348f88)={0x2, 0x78, 0x3e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5452, &(0x7f000079d000)=0x100000000000001)
connect$inet(0xffffffffffffffff, &(0x7f0000e5c000)={0x2, 0x0, @loopback=0x7f000001}, 0x10)
ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000080)=<r6=>0x0)
kcmp$KCMP_EPOLL_TFD(r6, r1, 0x7, 0xffffffffffffffff, &(0x7f0000000f80)={r0, r0})
ioctl$KVM_SET_IRQCHIP(r5, 0x8208ae63, &(0x7f00000012c0))
r7 = openat$selinux_enforce(0xffffffffffffff9c, &(0x7f00000000c0)='/selinux/enforce\x00', 0x16907e, 0x0)
pwritev(r7, &(0x7f0000001400)=[{&(0x7f0000001440)="39c90c1158e1ab5b77c4f0229ed23cc22ff000db1614e319ff204ece57c167f012e2d15721c01471db853677fb7d712a423e12e784514bebcad00afb8bd093577a09e2767c39c91d04fa1e851984d465e5dd70c4c597210bb8a3b207613cc81106057f3dd7adb88cc2d4b5e6ff1051e548bcc006f1bd078caacb4f6d8848e605aef192a496e3d6782f6dfe7def701de53a41f332d9a77e5bbe161009760e013620148169afcd6bfc62dcac806afc80773e099d8ef0c2623ea3c3316b1fa09abcdcef4a030a755fb2cdb1ddd0a0b724408fe30180f931148b1eaaf28415fab39aaad2f332aa5143bc89279323a2b2a6697b8e1d202c99aabe8c2b7be24c1362c7992179132dbfd398510f513d4e7a497a0195c9f3271091dc8067d96874edb829e64261a83863dacfb746ffc7c02c518def2fa2a160d2fe8a07dffc91bbeaf3463ad48159437ff83134d74b6ea257ad6783ec69351f5987a8f2f973d8fc2ea16d4b18b2a17db18fde0033e7687fa102b1b02038605997c9c1f5307612ac0d4795f8a56b58c9d247f41a2d57c7e533bf86feb80a6b4f83d45c7d60ee8b528a740e0fba37c36d5ad282b16a8fedddf7f158d1c4a368d807bca431a80f9fef197f8120e8695e847b06b9558a924622822d2608ab62f878e4413265152ad900c3accd0e60a060ed2f7384d4232b88432a0cdd81e736564e8300968877c0398fb816ef8a0d5c20839329f8d6e05f290abc0ee3f199d8618b58d093cb5d5d0d4bf0d5e5843c817826bf33151111d2f282cd48721c752fc0c62268473fb060c760cada06192b470b3204e7f4c968f5749def7ab4ee95e552c800b3808159075fc9b8a9e63090fdc216cbb4fe6ce31c12aa39f1d15e4cf3c8b560ca8fff4e023e2ae6921493827759216e08a5472ba772901d388ad30b8cf0aa15bd12c52529e298798b3a90e02f86a519a0d9569be5080f26ef59eb7f7efc5b8e658b256372f129a508f75e50027a1691937e78e68f0eb041fec73de0ef5b1c8c08b085a4f71b8f0988dc179a4ff9dc4f5c709f6392194a1da8e60e02937a076b8b319be52da19645602df10250e624ba80637234f72a36102f55f9289b4ce2e5d2cdbb084b7ecaa478ead33b9ce3d7ea0a9d45a92dfdc56f3164c986bc7ba93a4b51c00496e8ec3668f34410a7da110adef16fd2d4027a06345595374c74a5dcc27320454b418700b614d667a913129b98058fd29755da1332ab7bfa8325d3a7a83566454b90ff6362d713bff42c2b903082d6ff16c36b7b7481443523d82c1ff8108443bc635c8364725e5464d06fa346f1e91093cb3945e00f26f9154fe02cc193d2ca74e137b1943a729e21fbadeb6d65be0cccf1922c56b81896b15b12df5288aeeef93b1cf8d7f76da939b82d638122dedc6cdc4f4e90869421069e7cb0abdad08eeee5a4be2bb8a146c500d4daed3c9c2ad20a98879e31f2956b29ede05eb10b82d4e743b591503d628720c8e99f27574e4e6e01f8cb8195353415c7191c6fb26f822ec1713d3fc469e6aaab1cbf2075eb8cd912f913e9da7b66f65d11a16769300b63bb91f6bf63f158cf07ced499537f6f55fe95e3a8adaec9346ce22f6363ece0e246aff8b6e7fc72a9e406bdb9463937ce5e48d57f4d4280bb4e94d76f3336c7778d45828dad8c4155dc1314c27979b75a53d738520844a72dd02323c84bf16f5d83e32b119f24bc2b1a952b2d77efdc1f1a2882f2866566d75c787a6db4c14bf6d82441ea3a8fefd2ca1b8499b456608a595582aa03f99ae3ceea75464707be0456da882066c4a8abb71d890276b697fe0c931817382042218f3a6513a00e1cfcb0a17ffc82f41081ba815ed7989b918429427dcf302dbda3acd19924cc4f69dd7789d4e31be52f1064238abcd34589cd4b6a584c4158e4ee16364e5a05a28d221f732605ec2a618ab0de74139b615a4174ebe6efe7fe3e3bb5d99c90a19ffe39fa777fb6e44a91a01f767f740d91eaa5527713c23da4781be430577ebedc212404c63b1a8ff51c91c62d8647410738417ec19b17c5f901e6329f873508c4bb3f5b0aec0ebab258b9c96829b29be2464970b68fa60b23498fd3c3ca9173c37fdb827dff96b27b9292678dfa506ccb84b6724ca685205e681cf2c22c08dc71babd0dbec8e1fe68ca098614db5f56dbd2f84a36eaaf1a7b1488d879b15cccea98ceafa0ce8ab6591cf00cfda024206c00ae28075a9792335022610c0a0dc592d7ad7c003aeb7869e5eb072df47801392cb82c070f69052183acc010fe5b4ac22b2d8b7722f9920658b8c90473eb85d8ad26aabda5199a57544f6b0f90809670499ef7053b24526f1f07245401f3dff00dff31c5f815ec185f58ba3be632e390bfab1790b6d82c234e2338a350cd6a4ab6341d18b01596f6eb7aa36794f0774d6bf3d27480fe081dc809b50738dbb47719bad43fb299bc83e6c49bf8cc8c9f7bc58cf9696c77a37dcd2e95907d11caaa92de2358fc4dd83336e1273ffc2e86344311fcf4da531261b444300785a58294cc0e954510d026a5969a2daadc2650c63856dc754889d3d6a72e1d04a6294ba809b2f6329355f01c307868876a55e56b63d8d369f1952782061a3ee5a6bf64261c3003ffab3ee4124cb3d57d733b80bf3d8293b427762eadcd3bc94a127411e1c137c1a48f5a19d528e8f22e1713f9a1d45dc82ab9270eaad80ed0cae6291c27f573e175d56b510f12cbd8be79cd4248cd848906a814fa1c28c47c44f7ba776c5d0a156fddf7301011645986fe5570f76dd5a8441d9c40f7809c59187b3052d28fdfdeb96368fd47587ee35197da7ab3b1133254f696e44e24053b1b6cda1d8a2117040c2ba91b1b99b15eed0f3beeeccf96a55f738b42f5c4fc0ead873e35bf76c1d3970c9f4d1448e6e3b73c8d693ed328188154cb827e5f5f03575c77099710a80c6b1c53ad1c657bf1e89519eccb848b30f6c946d082af980563d7d7206a22d62479ef11f38f9ef9dd6aee83301fe42aeecbe0aaa7af1cd3c8b1ddca1752b887b97d6442f24236a6b57ba6de5ea9b071d78f2e45b436c535e592533780fa50fd6522c14b5b5ecd391bdbd7acbcf3d571731c604ed437fa1af9cd367a066e01f98c996fad367ec8e9d47b9f427ca299e982386970fe89c9da68cc72832d1d1e18934d5db7f49446ecacea9812a09b7186e51addb5d71c4e7cd2e44576ca87b3e2d92b69e3ae44a6df41214d4f6add3538a8bbe457cd6a3fd255afba7986a521ecae557409812e706764a29efe8ba1b34935549614bc151dfeed1c93f10483f9a867ca1b104f6942fa57cfe4fcf3ce24091279e3c0d17a4bfa0b6efa60c47ea9a7e42c43a2790663d6d702915e0c637b1fcaffcc0273a7d4cf00620f7117fd2d7a70ff9b06503d494a7da5d82d904fa995fd01073718997054aa5ba4f187685ca6a36be41f62e5af2dbc4fe739a3e4d2236756b8e9cd61790b1fc19a3cd3d924d8711e5b456121ebd0976d08b63a44f095aeb40f9d5b04ba9233e6efb0243dd95a8d119283452771bb0980e06c25027be6424c746b61cca317b69313b439950e52fcba852fc5eae8273a4bb288bf970b3ce9823f63ffd708232339dbc4bcc8e84ba885b21568decf985953042a70f37bc931ccf2b50102cac97fe0d2f0d11b80920299bc935c1494005085f60da5b5972bfc5e61ff5e736f7d15c4a9018614e628153d23fedc6b2ba9e71baae94c94154e0757b785973e0372845f40c61d82254fb6d79e1916bb8eb7873def79afeb2545fbc4cb1e84af9d4ca1da1de1c5a0f8b5001a54b4547d14623d407590bc0bf48c9d6cb1b5a2117db491942708a3c6baf79c5668ac786c5a57760e44cb5bb80412a352c803f47df5b38274381f09f2ccaa1212f601df91aa6f0dd9c54e5ad4aeb1eabc5746b90b5c574e5db8606675ffe0090497d0ca2e06bef28e40cfa70e07826f5c095a66c004e2f471c5b9f6c09197d6582f75e1c8c1dd9ec37c586756b26a8311f5b19e31b93865cbd632478f0c0e168f83e64947ee77b318f2738c42a266ace04f94afaa9166e595fcc09458987056664110430553b19f621414debc4d8ee3fa95f0681b3d8158a294308e6d81c4a47b6038b308a56814225dcc67d0cb5ba34deb5b2f33ba7bd41a2ff4fca9948c1016d51a87c7a9f41c85d711b0e9a90a2fe3da262e9f7820d137a03a0f66b3d8b8e00e2bbc06e755b722f2336c1fe585f66958db544d3b5bb9867f5cc8893274123f5818413ec873595aa2c86fb387caab1a4a0e9b50e555cab2cb4cb6b67b521dcfdcb92b683918a636965b4538986637c1ed6531443a26808dca14a9cbe778a0cba16a7b51919b4ffd28fffee755404be5f58a7a9b5af4c48d73a19641b1407c16943ad810edc3b84537fb35c3754e5a8bfbe4b3ec5fa40ac7cd2b089a959e21310f147e97d2ccb2981ebb58a09581f296c941e74c2976ea7b27d0ddc608f513960ffdcf38b496d45dcc05240a37b2909630623b7ed12548e7132fe8e863cef460e04870c3340a00ca27d4aa93d491eb7115348ef745bfb8c6875d259612bf4752e2b6915a48603b7c21edce24b4ba2f7066a669c0786cb4f8e910b5916f9c5c95836e97e205c299a9ff2f48edce2d39dd5dddc7de8b6a4d773c6769676888e400cf9e8cafb2239540428857ab4318bfce847ecaa91dcaacce3e3a21ff3035bd9f6e66d28c9bb134c55826ccadde8bca69ce96e871051310871d32f2cb91685242e7d51c240a68ce89dcce7645f39bfcd35d4d4535673b2071a69d7135a47f52f25bc613baab52334a97753a101c04fb2a8c75d58379c63d7751157ce9386bda220cab0aa829c73967d38f268f318b060948ad2e89701961ab90149430184e41147d7aaa29f5853e3b5b9f718a4e0fae43f48ff2012a19a0fc8abb2c42032bf72d81593ae1a8e422ccda661a7224f6b9dd434bd2cedba103d0acb05a50e9593690", 0xdce}], 0x1, 0x4)
bind$unix(0xffffffffffffffff, &(0x7f0000000740)=@file={0x0, './file0\x00'}, 0x6e)
ioctl$sock_SIOCSIFBR(0xffffffffffffffff, 0x8941, &(0x7f0000001180)=@generic={0x0, 0x3, 0xe4})
syz_open_dev$admmidi(&(0x7f0000000100)='/dev/admmidi#\x00', 0xfffffffffffffffe, 0x200000000022)
ioctl$fiemap(r0, 0xc020660b, &(0x7f00000011c0)={0x7, 0x4, 0x2, 0x0, 0x3, [{0x8000, 0xfffffffffffffff8, 0x1000, 0x0, 0x0, 0x801}, {0x3, 0x9, 0x6, 0x0, 0x0, 0xc06}, {0x0, 0xffffffff, 0x6dfd, 0x0, 0x0, 0x4}]})
userfaultfd(0x0)
ioctl$sock_netrom_TIOCOUTQ(0xffffffffffffffff, 0x5411, &(0x7f0000000040))

2018/03/31 01:44:45 executing program 2:
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000140)='./cgrounet/syz0\x00', 0x200002, 0x0)
r1 = openat$cgroup_procs(r0, &(0x7f0000000080)='cgroup.procs\x00', 0x2, 0x0)
sendfile(r1, r1, &(0x7f0000000040), 0x1)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000000)=<r2=>0x0)
r3 = syz_open_dev$sndpcmc(&(0x7f0000000400)='/dev/snd/pcmC#D#c\x00', 0x40, 0x0)
r4 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000440)='/dev/mixer\x00', 0x8000, 0x0)
ioctl$sock_bt_bnep_BNEPCONNADD(r3, 0x400442c8, &(0x7f0000003b40)=ANY=[@ANYRES32=r4, @ANYBLOB="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"])
setsockopt$IP_VS_SO_SET_TIMEOUT(r3, 0x0, 0x48a, &(0x7f0000003b00)={0xff, 0x8779, 0x2}, 0xc)
ptrace$PTRACE_SECCOMP_GET_METADATA(0x420d, r2, 0xffffffffffffff69, &(0x7f0000000540)={0xee})
r5 = syz_open_dev$mice(&(0x7f0000000200)='/dev/input/mice\x00', 0x0, 0x400)
ioctl$EVIOCREVOKE(r5, 0x40044591, &(0x7f0000003ac0)=0x1)
process_vm_writev(r2, &(0x7f0000000100)=[{&(0x7f0000000580)=""/4096, 0x1000}, {&(0x7f0000001580)=""/141, 0x8d}, {&(0x7f00000000c0)=""/4, 0x4}, {&(0x7f0000001640)=""/148, 0x94}], 0x4, &(0x7f0000003a40)=[{&(0x7f0000001700)=""/219, 0xdb}, {&(0x7f0000001800)=""/199, 0xc7}, {&(0x7f0000000300)=""/101, 0x65}, {&(0x7f0000001900)=""/174, 0xae}, {&(0x7f00000019c0)=""/4096, 0x1000}, {&(0x7f00000029c0)=""/98, 0x62}, {&(0x7f0000002a40)=""/4096, 0x1000}], 0x7, 0x0)
getsockopt$IP_VS_SO_GET_DAEMON(r5, 0x0, 0x487, &(0x7f0000000280), &(0x7f00000002c0)=0x30)
dup2(r0, r1)
getsockopt$netrom_NETROM_T4(0xffffffffffffffff, 0x103, 0x6, &(0x7f0000000380), &(0x7f00000003c0)=0x4)

2018/03/31 01:44:45 executing program 0:
r0 = perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x2, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x800, 0x0, 0x0, 0x0, 0x0, 0xcc, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400000}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = socket(0x10, 0x2, 0xc)
write(r1, &(0x7f0000a6b000)="1f0000000104ff00fd4354c007110000f305010008000100010423dcffdf00", 0x1f)
write(r1, &(0x7f0000257fe1)="1f0000000104ff00fd43544007110000f3050100080003000100ff07ffdf00", 0x1f)
socketpair(0x10, 0xa, 0x8001, &(0x7f0000000040)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000200)={{&(0x7f0000ffb000/0x2000)=nil, 0x2000}, 0x3})
ioctl$DRM_IOCTL_ADD_CTX(0xffffffffffffffff, 0xc0086420, &(0x7f0000000080)={<r4=>0x0})
ioctl$DRM_IOCTL_GET_CTX(r3, 0xc0086423, &(0x7f00000000c0)={r4, 0x2})
ioctl$TUNSETVNETLE(r3, 0x400454dc, &(0x7f00000001c0)=0x1)
getpeername$unix(r2, &(0x7f0000000100)=@abs, &(0x7f0000000180)=0x6e)

2018/03/31 01:44:45 executing program 3 (fault-call:3 fault-nth:21):
mkdir(&(0x7f00000001c0)='./file0\x00', 0x0)
mount(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000380)='./file0\x00', &(0x7f0000000300)='cgroup2\x00', 0x0, 0x0)
r0 = open$dir(&(0x7f000001bff4)='./file0\x00', 0x0, 0x0)
mkdirat(r0, &(0x7f0000000280)='./file0\x00', 0x20)
getdents64(r0, &(0x7f00000007c0)=""/250, 0x1015a)
fadvise64(r0, 0x0, 0x41, 0x3)
unlinkat(r0, &(0x7f0000000080)='./file0\x00', 0x200)
r1 = open$dir(&(0x7f0000000180)='./file0\x00', 0x105600, 0x81)
fchdir(r0)
link(&(0x7f0000000740)='./file1\x00', &(0x7f0000000780)='./file0/file0\x00')
renameat2(r1, &(0x7f0000000200)='./file1\x00', r0, &(0x7f0000000240)='./file0\x00', 0xfd1092750066ec78)
pivot_root(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='./file0\x00')
r2 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000100)='/dev/rfkill\x00', 0x2c42, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_LIST(r2, 0xc0505510, &(0x7f0000000480)={0x1000, 0x1, 0x474, 0x1, &(0x7f0000000140)=[{}]})
unlink(&(0x7f00000000c0)='./file0\x00')
symlinkat(&(0x7f0000000400)='./file0/file0\x00', r0, &(0x7f0000000440)='./file0/file0\x00')
iopl(0x6)
recvmsg$kcm(0xffffffffffffffff, &(0x7f0000000680)={&(0x7f0000000500)=@pppol2tp={0x0, 0x0, {0x0, <r3=>0xffffffffffffffff, {0x0, 0x0, @broadcast}}}, 0x80, &(0x7f0000000600)=[{&(0x7f0000000580)=""/80, 0x50}, {&(0x7f00000008c0)=""/4096, 0x1000}], 0x2, &(0x7f0000000640)=""/45, 0x2d, 0x206e}, 0x20)
r4 = syz_open_dev$sndpcmp(&(0x7f00000018c0)='/dev/snd/pcmC#D#p\x00', 0x5, 0x10a00)
ioctl$KVM_GET_DEVICE_ATTR(r4, 0x4018aee2, &(0x7f0000001940)={0x0, 0x100, 0x9, &(0x7f0000001900)})
recvfrom$ipx(r3, &(0x7f00000006c0)=""/52, 0x34, 0x100, &(0x7f0000000700)={0x4, 0x9a2, 0x4, "dc108d9d4391", 0x5}, 0x10)
renameat(r0, &(0x7f0000001980)='./file1\x00', r4, &(0x7f00000019c0)='./file0/file0\x00')

2018/03/31 01:44:45 executing program 5:
r0 = syz_open_dev$amidi(&(0x7f0000000400)='/dev/amidi#\x00', 0x401, 0x40)
accept4$llc(r0, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, &(0x7f0000000480)=0x10, 0x0)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f0000005fd8)={'vcan0\x00', <r2=>0x0})
ioctl$KVM_SET_DEVICE_ATTR(r0, 0x4018aee1, &(0x7f0000000500)={0x0, 0x100000001, 0x5a, &(0x7f00000004c0)})
connect$can_bcm(r1, &(0x7f0000001ff0)={0x1d, r2}, 0x10)
ioctl$TIOCGSID(0xffffffffffffff9c, 0x5429, &(0x7f00000002c0)=<r3=>0x0)
waitid(0x0, r3, 0x0, 0x1000009, &(0x7f0000000300))
r4 = syz_open_dev$vcsn(&(0x7f0000000000)='/dev/vcs#\x00', 0xcd8, 0x101000)
getsockopt$SO_BINDTODEVICE(r4, 0x1, 0x19, &(0x7f0000000280), 0x10)
ioctl$EVIOCGABS0(r4, 0x80184540, &(0x7f0000000240)=""/64)
bind$vsock_dgram(r1, &(0x7f00000003c0)={0x28, 0x0, 0x2711, @reserved=0x1}, 0x10)
exit(0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000200)={r4, 0x0, 0x47, 0xde, &(0x7f0000000080)="3541471374d1e455c1f501bb3e7418a21f930d9fb82ac3588f54ad5a1a9e778bdf654fa39f19bcbc6ee4636a10d409c877cfe11ba160f73d4cde40422564bfdb62d8e5f8ba5097", &(0x7f0000000100)=""/222, 0x4, 0x3f}, 0x28)
ioctl$KVM_SET_TSS_ADDR(r4, 0xae47, 0xd000)
ioctl$KVM_CHECK_EXTENSION(r4, 0xae03, 0xffffffffffffffff)
openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000580)='/dev/qat_adf_ctl\x00', 0x4600, 0x0)
sendmsg$can_raw(r1, &(0x7f0000001fc8)={&(0x7f000000a000)={0x1d}, 0x10, &(0x7f0000000040)={&(0x7f000000a000)=@canfd={{0x1}, 0x0, 0x0, 0x0, 0x0, "0327e1b22b5fcef7739c699f5ff986ca08990039576a7d5cb2bdac3fa80acf584ecb5fee496e6866856b76b5f700000000000000004e2f9663a918fa1efd9b0b"}, 0x48}, 0x1}, 0x0)
ioctl$VHOST_GET_VRING_ENDIAN(r0, 0x4008af14, &(0x7f0000000540)={0x0, 0x9})

2018/03/31 01:44:45 executing program 6:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x200, 0x0)
socketpair$inet6_icmp_raw(0xa, 0x3, 0x3a, &(0x7f0000000680)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
setsockopt$sock_linger(r1, 0x1, 0xd, &(0x7f00000006c0)={0x400, 0x9}, 0x8)
perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
mmap(&(0x7f0000000000/0x9d7000)=nil, 0x9d7000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x7)
perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r4, &(0x7f0000e5b000)={0x2, 0x4e20, @multicast1=0xe0000001}, 0x10)
syz_open_dev$sg(&(0x7f0000000440)='/dev/sg#\x00', 0x0, 0x0)
connect$inet(r4, &(0x7f0000000100)={0x2, 0x4e20, @multicast2=0xe0000002}, 0x10)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000eb0fb8)={0x1, 0x3, &(0x7f00009ff000)=@framed={{0x18}, [], {0x95}}, &(0x7f00002bf000)='syzkaller\x00', 0x4, 0xb7, &(0x7f00006ab000)=""/183}, 0x48)
setsockopt$inet_tcp_int(r4, 0x6, 0x19, &(0x7f0000000240)=0x8, 0x4)
setsockopt$SO_BINDTODEVICE(r4, 0x1, 0x19, &(0x7f0000000000)="6970365f76746930000000000400", 0x10)
r6 = socket$kcm(0x29, 0x2, 0x0)
ioctl$sock_kcm_SIOCKCMATTACH(r6, 0x89e0, &(0x7f000031aff8)={r4, r5})
ioctl$sock_kcm_SIOCKCMCLONE(r6, 0x89e2, &(0x7f00000002c0)={<r7=>0xffffffffffffffff})
sendmsg$nl_xfrm(r7, &(0x7f0000000780)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000740)={&(0x7f0000000480)=@updpolicy={0xb8, 0x19, 0x0, 0x0, 0x0, {{@in=@loopback=0x7f000001, @in6=@mcast1={0xff, 0x1, [], 0x1}}}}, 0xffcb}, 0x1}, 0x0)
ioctl$sock_kcm_SIOCKCMUNATTACH(r7, 0x89e1, &(0x7f0000000040)={r4})
r8 = fcntl$getown(r3, 0x9)
r9 = accept4$inet(0xffffffffffffff9c, &(0x7f0000000700)={0x0, 0x0, @broadcast}, &(0x7f0000000740)=0x10, 0x80000)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r9, 0x84, 0x64, &(0x7f0000000300)=[@in6={0xa, 0x4e23, 0x0, @dev={0xfe, 0x80}, 0x6}, @in={0x2, 0xff, @local={0xac, 0x14, 0x14, 0xaa}}, @in={0x2, 0x4e23, @multicast1=0xe0000001}, @in={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x10}}, @in={0x2, 0x4e20, @multicast1=0xe0000001}, @in={0x2, 0x4e24}, @in={0x2, 0x4e24, @broadcast=0xffffffff}, @in6={0xa, 0x4e21, 0xed34, @local={0xfe, 0x80, [], 0xaa}, 0x3}, @in={0x2, 0x4e23, @loopback=0x7f000001}], 0xfffffffffffffe00)
ptrace$setregset(0x4205, r8, 0x0, &(0x7f00000005c0)={&(0x7f0000000080)="449ed0dd6831a7fb44eca4221b1fb01abfec082aa7d0ee6f0ba9db0ece7da2bd3f", 0x21})
r10 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r11 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x1fffd, 0x0)
syz_open_dev$sndtimer(&(0x7f00000000c0)='/dev/snd/timer\x00', 0x0, 0x0)
read(r0, &(0x7f0000000140)=""/50, 0x32)
fcntl$dupfd(r10, 0x0, r11)

[  178.749436] FAULT_INJECTION: forcing a failure.
[  178.749436] name failslab, interval 1, probability 0, space 0, times 0
[  178.751393] kernel msg: ebtables bug: please report to author: Wrong len argument
[  178.760694] CPU: 1 PID: 13126 Comm: syz-executor3 Not tainted 4.16.0-rc7+ #372
[  178.760701] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  178.760706] Call Trace:
[  178.760726]  dump_stack+0x194/0x24d
[  178.760742]  ? arch_local_irq_restore+0x53/0x53
[  178.795846]  should_fail+0x8c0/0xa40
[  178.799548]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  178.804632]  ? kernfs_add_one+0x50/0x450
[  178.808671]  ? rb_first_postorder+0xa0/0xa0
[  178.812967]  ? kernfs_add_one+0x50/0x450
[  178.817016]  ? find_held_lock+0x35/0x1d0
[  178.821066]  ? __lock_is_held+0xb6/0x140
[  178.825110]  ? check_same_owner+0x320/0x320
[  178.829408]  ? perf_trace_lock+0xd6/0x900
[  178.833535]  ? rcu_note_context_switch+0x710/0x710
[  178.838450]  should_failslab+0xec/0x120
[  178.842404]  __kmalloc_track_caller+0x5f/0x760
[  178.846968]  ? idr_alloc_cyclic+0x1d6/0x320
[  178.851267]  ? trace_hardirqs_off+0x10/0x10
[  178.855566]  ? kstrdup_const+0x39/0x50
[  178.859429]  ? __mutex_unlock_slowpath+0xe9/0xac0
[  178.864249]  kstrdup+0x39/0x70
[  178.867418]  kstrdup_const+0x39/0x50
[  178.871111]  __kernfs_new_node+0xa2/0x570
[  178.875237]  ? kernfs_dop_revalidate+0x380/0x380
[  178.879972]  ? kasan_check_read+0x11/0x20
[  178.884097]  ? read_word_at_a_time+0x12/0x20
[  178.888479]  ? strscpy+0x186/0x500
[  178.891999]  kernfs_new_node+0x80/0xe0
[  178.895867]  __kernfs_create_file+0x4b/0x320
[  178.900256]  cgroup_addrm_files+0x3c5/0xa70
[  178.904560]  ? cgroup_file_write+0x710/0x710
[  178.908949]  ? getrawmonotonic64+0x460/0x460
[  178.913333]  ? kernfs_active+0x92/0x160
[  178.917286]  ? debug_lockdep_rcu_enabled+0x77/0x90
[  178.922192]  ? cgroup_kn_set_ugid+0x2c7/0x370
[  178.926661]  ? cgroup_file_name+0x1d0/0x1d0
[  178.930962]  css_populate_dir+0x340/0x420
[  178.935087]  cgroup_mkdir+0x553/0xfc0
[  178.938863]  ? __lock_is_held+0xb6/0x140
[  178.942903]  ? cgroup_destroy_locked+0x750/0x750
[  178.947636]  ? rcu_read_lock_sched_held+0x108/0x120
[  178.952627]  ? kmem_cache_free+0x258/0x2a0
[  178.956839]  ? set_nlink+0xc1/0x160
[  178.960445]  ? debug_lockdep_rcu_enabled+0x77/0x90
[  178.965348]  ? generic_permission+0x105/0x3c0
[  178.969819]  ? cgroup_destroy_locked+0x750/0x750
[  178.974553]  kernfs_iop_mkdir+0x153/0x1e0
[  178.978677]  vfs_mkdir+0x390/0x600
[  178.982195]  SyS_mkdirat+0x22b/0x2b0
[  178.985885]  ? SyS_mknod+0x480/0x480
[  178.989575]  ? trace_hardirqs_on+0xd/0x10
[  178.993701]  ? do_syscall_64+0xb7/0x940
[  178.997649]  ? SyS_mknod+0x480/0x480
[  179.001338]  do_syscall_64+0x281/0x940
[  179.005203]  ? vmalloc_sync_all+0x30/0x30
[  179.009329]  ? _raw_spin_unlock_irq+0x27/0x70
[  179.013800]  ? finish_task_switch+0x1c1/0x7e0
[  179.018271]  ? syscall_return_slowpath+0x550/0x550
[  179.023176]  ? syscall_return_slowpath+0x2ac/0x550
[  179.028082]  ? prepare_exit_to_usermode+0x350/0x350
[  179.033077]  ? entry_SYSCALL_64_after_hwframe+0x52/0xb7
[  179.038416]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  179.043240]  entry_SYSCALL_64_after_hwframe+0x42/0xb7
[  179.048404] RIP: 0033:0x454e79
[  179.051568] RSP: 002b:00007fa6ef25cc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
[  179.059250] RAX: ffffffffffffffda RBX: 00007fa6ef25d6d4 RCX: 0000000000454e79
[  179.066499] RDX: 0000000000000020 RSI: 0000000020000280 RDI: 0000000000000013
[  179.073744] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  179.080991] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000014
[  179.088239] R13: 00000000000003eb R14: 00000000006f7ea8 R15: 0000000000000015
[  179.095660] cgroup: cgroup_addrm_files: failed to add cgroup.max.descendants, err=-12
2018/03/31 01:44:45 executing program 2:
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000140)="2e2f6367726f757000361a6f74a1b774b8642f3dfdd313d92946ff0167415d8dc22791dcd496520c1c99f4b07d3b2a11090000000229210b73abdcd2986fc290ac9b6ace278586d39949a54fb276eb1fd3964b0cad27e417b33abb8d3b00e64e75e4dff47de27536dccdde5fc746b04faafcec347560a31b3a35a5f20bc949d75cbb763987", 0x200002, 0x0)
r1 = openat$cgroup_procs(r0, &(0x7f0000000080)='cgroup.procs\x00', 0x2, 0x0)
sendfile(r1, r1, &(0x7f0000000040), 0x1)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000000)=<r2=>0x0)
r3 = syz_open_dev$sndpcmc(&(0x7f0000000400)='/dev/snd/pcmC#D#c\x00', 0x40, 0x0)
r4 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000440)='/dev/mixer\x00', 0x8000, 0x0)
ioctl$sock_bt_bnep_BNEPCONNADD(r3, 0x400442c8, &(0x7f0000003b40)=ANY=[@ANYRES32=r4, @ANYBLOB="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"])
setsockopt$IP_VS_SO_SET_TIMEOUT(r3, 0x0, 0x48a, &(0x7f0000003b00)={0xff, 0x8779, 0x2}, 0xc)
ptrace$PTRACE_SECCOMP_GET_METADATA(0x420d, r2, 0x10, &(0x7f0000000240)={0xffff})
perf_event_open$cgroup(&(0x7f0000000500)={0x3, 0x70, 0x3, 0x5c, 0x1, 0x2, 0x0, 0x2, 0x2, 0x8, 0x2, 0x0, 0x1, 0x80000001, 0xfffffffffffffff7, 0x3, 0xc000000000000, 0x6, 0x9, 0x5, 0x8, 0x1ff, 0x400, 0x6, 0x4, 0x0, 0x586e, 0x8, 0x4, 0x8, 0x0, 0x4, 0x5, 0x5, 0xff, 0x2, 0x7, 0x9, 0x0, 0x10001, 0x4, @perf_bp={&(0x7f00000004c0), 0x3}, 0x8320, 0x7, 0x0, 0x7, 0x4, 0xd6, 0x7ff}, r3, 0xc, r3, 0x3)
r5 = syz_open_dev$mice(&(0x7f0000000200)='/dev/input/mice\x00', 0x0, 0x400)
mq_timedsend(r4, &(0x7f000000a640)="e8d777f6f5e80823a023026be7cc95c5c498c599b67c0d41f5bdffa4959c6a24c135e5ca4c04647ee79368586f216a8f5bd70b6d1b059ff57d4f710c6c0668e086fbc0ea4c70b1089d6008879d47c22ff7d0859643ba7da84c0621a67d4ae53226b0296758870c8e70f3f4d35809e62fb1086cbd49c84fefc046081cf7f839fa802824181c608bbdb1384c22", 0x8c, 0xff, &(0x7f000000a700))
ioctl$EVIOCREVOKE(r5, 0x40044591, &(0x7f0000003ac0)=0x1)
syz_open_procfs(r2, &(0x7f0000000480)='cgroup\x00')
process_vm_writev(r2, &(0x7f0000000100)=[{&(0x7f0000000580)=""/4096, 0x1000}, {&(0x7f0000001580)=""/141, 0x8d}, {&(0x7f00000000c0)=""/4, 0x4}, {&(0x7f0000001640)=""/148, 0x94}], 0x4, &(0x7f0000003a40)=[{&(0x7f0000001700)=""/219, 0xdb}, {&(0x7f0000001800)=""/199, 0xc7}, {&(0x7f0000000300)=""/101, 0x65}, {&(0x7f0000001900)=""/174, 0xae}, {&(0x7f00000019c0)=""/4096, 0x1000}, {&(0x7f00000029c0)=""/98, 0x62}, {&(0x7f0000002a40)=""/4096, 0x1000}], 0x7, 0x0)
socket$inet6(0xa, 0x80004, 0xffffffff)
getsockopt$IP_VS_SO_GET_DAEMON(r5, 0x0, 0x487, &(0x7f0000000280), &(0x7f00000002c0)=0x30)
sendmmsg(r5, &(0x7f000000a4c0)=[{{&(0x7f0000003c80)=@generic={0xb, "7cd7cf88abb360b8e15809bd39f37f400fcb55c7f27f0cc2a46928c276cc3397870cfcc69b6cc71b9054b776b4b706da62c6720df95d85911b62f57a9c7ab96d47b52c39ccdbc57e78cab12ad1ceb9493c3b41c6870ff38a84b3a89f26eff95d9ebb825381672ad2c577f4163d3ea352caa8bfbac4dd67dd72b06de7bf32"}, 0x80, &(0x7f0000004380)=[{&(0x7f0000003d00)="0c0887da5825185b46b9f45bf3230d0129a1e65dec104a9d057540f8629f5e767827e16b76077d8369b45c84f1cca3dbb41242fa90725b09cb27de3c17bb39010d83987d13b260c2701d3482451251ab97983718785a01bfcb0d9e20e3ebc55b507e53071b7b2bbbd62b94407563f9c931fc8465c5c277f28f5520c74fd9f0974cce2eeacc6dbd4bbd676c7fe2a3ba8ddd3f9e6a394120e349bb84f13bfed184a049e12b2285a2cbacff3adfc7a7d32f5c164913de2aa0c576a1f3dea9de1009fa94e9efe1c4ba03993f669782798982263ae75eaf32f7", 0xd7}, {&(0x7f0000003e00)="81b3e7d959d7412a20", 0x9}, {&(0x7f0000003e40)="052a860beec1089fff821db5a9f12d342278b8226aac01e56ab0032cc3373e5918e4a72feb8d8428563cbcd19e9079da1a33ed6c2b124834b958d3bef7a49758d894d2172547063c21473fa275cf179238e0eb2b2b68aef001f2e38bd624800d886bb303ec93bd37aa085595bafbac7759f5405adac70d8fd84edf97d9342a2c77d1a6c0a43869890a4ea155730792bb7bc673dcf9bfe500538cc3a72566bb7669684b5a62", 0xa5}, {&(0x7f0000003f00)="ce8967f2aac460d136a88a91a1ad7ee868f94e1911bebae1fe0678134486dec451f3a93b002474e559908f55804edd40b55530cc46c997041a1a7f31ff4d97cc5a986f828b11b43becd6db4354df708e5eb5e4", 0x53}, {&(0x7f0000003f80)="51afe59abf67135041c6baa7661a69a296f213a7b2c8ceef33b138d5d3970a29b2708c9afb3e090dd9e060b9eb4413ca9fd1319cdfaaff0a24662afee1c48372fed75d55a099acb71d55e317ed03950fffbd2ca74b621985bfc56ef5357fe6fa", 0x60}, {&(0x7f0000004000)="507ebd0aa5622042a5ed9454bc8c4b90e95d7566dd6371d352f02a44e0629e42d6049c71518614cf2300b2e6500839bf92163cc16eab35e430cb2868c4197c557309c2f949dc905644d6cdf76778b967604be8c572178240b16a8ac268002d5cdee4e8094d02bfe2002d7b4bfab1aaf6d25a590837de5225fea73db8058c7e777b01d4bc4b2babe31db5194ffafd434efdc9dd9171c1556d5e1b338806cf593f9e0859942700bc4bef70016f71d39fef1a1fdce04a5c0bc5b8f6a5389e0aec781d352c55947aef6e", 0xc8}, {&(0x7f0000004100)="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", 0xff}, {&(0x7f0000004200)="e138c37ed1d1aec582d6e3572f23e63049ee90fe44169deaf69b50167b2757791b875fc19a7596eea3ee8c09d7e9b2916dca985a9280f5739ae8117cf378a4d7da68dbb142cf15faa0c1a0b97e9d3705827ce6ff78edf8b1008207f16fda1354b0622050f526c9ab4127b92f1cf5dd6eb1581456506dbd89e441fbd17c74f1dfee96a404d87864ccc4949859623255d1f96230033913a5b68f1144b8ea2cdb", 0x9f}, {&(0x7f00000042c0)="3dcdce8696ea4e95ff3a32fd30a39f5441f764d2df70a92baf77f6eccd24c0cb631b9378eb5f0b99abfec04787d771bbf88ace071af5f01124299b3067b068a955af87c449ad2ca53f6d14e813c7aaea2760260e105f4fdfecf5b77fd13034b9cc2b2761db4828d0ce76f639775463a56eb73bfad2a66b10ae82c675e43d352b4731defc", 0x84}], 0x9, &(0x7f0000004440)=[{0xf0, 0x3a, 0x6, "7feae19f60a2ce2b15a3aad8f948eb2103416a8875b15cd5bdf7f4d734e91edc76e55453cf78fc6b8f1bb00f4a7e1adecbe9bce282e3b294b47f31d4b0797210a2bec1a91008866259da71432cc96d47b55b05fa8c5cf4565a9a7acd0f39e5b624aec5cc680b4a353accdb61bdd0aaa806894e8300ac0a1ae3a02066dff9ca731a040157b888d808e45ff1312ea75d89b5d2340f81c217fa87a748d4fac926ab651210ecace2966fe42e9f3ae0999a3f7cf5e11eb6b304a314876969e2752f61ebe7f2e8fcad0148f504eaad8d4387a7030d233afa46ea88b307b6c128584d"}, {0x1010, 0x11d, 0x9b, "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"}, {0x20, 0x117, 0x7b, "df4c05c3b7edec5f1d2340"}, {0xc8, 0x107, 0xab32, "66451163b171e45134907c7db037b418eaa0d5c38ef91f37864ab89841ebe8c5eda9c3792da43609fa05c6e743fda913c6a74529f8456b5bdd3f2dc9508df5beab53723836232a6fb611be8e2953110f77bbbeb3d6ba27f8661f00e111350d5600b30f9318cc35dc3664d6c00ea718462d21eaf3672f6363c3b4b268cde517791e513823e6fde1293cb0710e13f6fa91439d7da6b316ea61eeebfc96f0d1ef93b673397e2c97012c01b57ea5f79e8b4eb8497c7082a3"}, {0x30, 0x10a, 0x10001, "c3f9bd5e64db200634b8df3c92e92cc4f9d5bd69065d8e0ed53c"}], 0x1218, 0x14}, 0x2}, {{&(0x7f0000005680)=@generic={0xf, "c3b98bb2945270415eab9721479334c5f6d3ac89f1909c86a7f96a856061d93336014da6adcdb3731fb06b1690641a7d54afbbcc41f38a1cb3ea12c1261d45968c3a3155340c001b59b74c594cd4ba9c8684bc9e7b5f57522f6e055506480277a3ee0147bcbbd3547911a196340a614dd0525edefeb16a453f71d809d26b"}, 0x80, &(0x7f0000006b80)=[{&(0x7f0000005700)="915de21b19d5283ea40dd8e1aa58751437a5a11fd26963a89eda09dc617912bd165b7f9dd7fb11267d56202fbefa460cc4397513c8bd1ca76d08ef2342a61f9867b09ebc54a8f6ce79418d280244d5e1ef9aaac82a96746d8c4d1e598d4d7a172428a3032d3a1ec1854b4d290ee4bb4edcbff2d00b13c2dfc369adc288", 0x7d}, {&(0x7f0000005780)="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", 0x1000}, {&(0x7f0000006780)="736b8db5aa225f5f8d521966e30c44e6709e0eee2346f68bfc0d1efe4733648359c8c3014be856fef16eb94e7ebae5b699c3c4928b20bce7fd364b42ecc83cc2c0e0eb938e8dcf80abe9000abe7b645406", 0x51}, {&(0x7f0000006800)="22a76db40de8ee96635e31c989bd6892c2fed1672535097dc24d48d6ddd9a5e4c2fd4003bd04f598a9b7b3db0358cbc4d6e71faad9625ee2380d0865f870884c486bff7a683ebea87f96b9dbc0c9b363db2b3caa092c4a4e2c76fa6ddf7b9f60dfa80574f5d8816dea7ca59a161f0e4041660f0b08854756252d3a270cc307e817ae08b11709c9a5efb12bdb51a240d28f446fc9916178", 0x97}, {&(0x7f00000068c0)="df4323403f4d4f42a87d7535012ec474430d6b71c44b7ad90515c1486294bea8f126fe46ed506f27be83c1986b4df718327df05e6be968f9603937c23027d8c5ff7d0c37f23f2f551d7dafc04901ce145833844e674282598ae5bb87e1b0716616113555b00decbb8542dbd76429d8ef22dac87d1fbd98ef964b4a5afaeeac239844e07cbc0416ffb74fa8345be523d64cbbb3ae05265abdff125288c9446d45da101a9776a89c548fdaeb6aa258c1e46796ae8d08c514fad72d26", 0xbb}, {&(0x7f0000006980)="c732c4ec7a8356b7fb9054d20a7b8da4359aa3865fe4a8", 0x17}, {&(0x7f00000069c0)="6e655c678a185b2908378dc3076d96e89ea90f8d01e7863ec545006f80b370d0a171f080e97ad66cf5b4603711317d0e9bec5aca97bfa4fc6c36dd0a0355bae20bcae5dbbcb27f704894ff6dd67084770181df1d13baf1a66fd43a1ad1cfbbb05da86493a4d03cae62de77272fb1615953a7d5ae7dc57d9b0bb89a395fb4b40a82554289573b56470103161fa11524faae67ab9cedab87f48c20733263a8c03ec397dde4a169297d90bcfb66c1391b2dabbb368dd6466819edf357fcc73a4480", 0xc0}, {&(0x7f0000006a80)="e80e4e9aa31434a29131724d72c9b8e5debcfa4fbe15875a0e16d2db78623b2be15e5b9753a3627f5fcceab5cea0e8bb688c3a0ffeae2a91f6b60341be4abd8e253a30b19621f8e8ec5c3cbd4d26826ba560248f0ef3d3bfeb69c75f395bbf85c8", 0x61}, {&(0x7f0000006b00)="63466976d34d6668f03bbc180d706be828387eeb8b6d3bf8dbe4e1eac62904d4c409f229e2314be97ef51bc1b4d059d19434ed5ac5399984f67ec5b96790eb25990147cc9c0e612694d6a3c70cb016abad99e19d140a5278d2f233e897169f40de3ed957eafcbd", 0x67}], 0x9, &(0x7f0000006c40)=[{0xd0, 0x118, 0x7ff, "4511819065609fd3b47c6de44f3f459c7e46717950f83066821a9f7c0cb62196c23aecc52c2384260cf56d50076e40deec716334ba7974d523df98ce979b72288dd61580da8ff42342cb9944db00307c9e6c436b83e9651dc16dbd35bfc02c92855a2849097266907e07b2e635feaad1c3d6d633c045d44a74ddce6f8b97b9f845a39f0a42e4a8e4827ef8e8eed47c39adcf06013d08d6af4f60b32509bb074dde69fbf371b650b6f03a977b00ef6a43d805f192b0d67435bcd1a4"}, {0x50, 0x10c, 0x8000, "63801e1b5a722cbe3c25e88841061bdf1c6ec9f591d2acd8c78ccd0c8f1496647815b88c9a9081198f95fe4b1b84f6e08d204362ae5ee4daab1035f4ff1333"}, {0xd8, 0x3a, 0x2, "b1aebab3e7f214dd6120b3d19027d6f6ae1ad6981740340156d8cb15bf6fb8ba18ff0de9699e2686762bfbba7233cea379f87826d017e8c5fcc917ad36d324de9d753fac772aa4d43e5bcedfb844cbcf8c50efd1cfec2cc1adfdfba50e265f3d50e88dec1b6164371e22c70bdef84e4feb9e28c09e1177404a3633822b6812a0cb5c897716ec7d0b9d8dc23f7847a7035bd647c3a2e27aa0430291adbb4a78ac1d87adaa54b1c1119e0c1e7d75a67aae1afc398f093250fa93035af70156279af38c830b7fd34152"}, {0xa8, 0x115, 0x6, "fc105150a140769ea136845cf519154e9ada33748050527d86852375c2c800051a033a44f668d7ca544947367267d7038e4180de7e084e42c29e8cd7249e2b2276e85338dd70da97c9b19ef62a281dc34b2838beac17d8c86289e1c06c099a582c0a60623b90596f0e429bfa5072a7fa64f5369f6e19ec12269ccf6c8e3c3f9ae386c03cdd8b44a8f2d83bc40884106c0b"}, {0x28, 0x10e, 0x5, "9a221bdd81d413227ab14884e85d2a17355ce6678f2dd8"}], 0x2c8, 0x20000000}, 0xffffffffffff0000}, {{0x0, 0x0, &(0x7f0000007300)=[{&(0x7f0000006f40)="c958339ef7f07c712ee0595b835447d77ff9438b2f25cbdfbd046f4fe37b0ba53ea3e1d5f35e2328a21d13d164aba52580ddd310c2c977254507e128668dede19238302216c1b8e936454d1e672fbdfd593fcb16538ea91726ed02eaa965b020622d04d526e536a0096ec01d9f75b13343de20f5ccf4ccdd0c8725eed8ae6c0b6eb3d05774", 0x85}, {&(0x7f0000007000)="6ccf60def9ff04e3da500aff295a53bc8d4860be4371a303efaa9057b84c551190ed80ef23714286982f567825e5581c1e79b270f0f9df2b1db72f59f449d3ef26ba442d2b39aa56eeee54966eb251bbed645bc369639aff322b43a3afa17f213b36f345d609dbd5f581e2fd8c18d7cffa1459e489682a89e087a6fedfa4dd1e87b52d1b4c9e74a2a1fa0804abc99cc4bbcdfdbf11a04e24d4276eca12775ce778dcb9aa7e7643b95c8dcc8ffc375895414b6929f2cab3fa90c3a99d7121", 0xbe}, {&(0x7f00000070c0)="c25b788a0c91792db8", 0x9}, {&(0x7f0000007100)="af460f93cd5577f884c6660e3219d3a1026ef9cd2eec19b89bbd35", 0x1b}, {&(0x7f0000007140)="cea70fd75887e8f7d5ad28ec36c41923cb", 0x11}, {&(0x7f0000007180)="6d29271cef60e1677e2644ff495f97f1be4f2bb55e803bf6df1fe3802475d6615c4fca9bca5b2f7fe51b388bb8518a84c3cc389da88e1673a464e63a428cb23391bc1c4d30e672c3f9a66261b72fabf8b03773522232e959d10450d8d67965d6a7ce4b232b52b716faba948cb8c27e537b625bb858ea9ec0d4064313", 0x7c}, {&(0x7f0000007200)="228b435fc8a8313e0856f4dfdadbd184457cdd9e4ebdc930ae52fc87dadbb43c8481c9418955e06dada539841a25", 0x2e}, {&(0x7f0000007240)="e0bece15335cb90fa8f453cd9953c48d6fb0464044bb40f36c629e85d831422869d33592caac261e307143dad094fef71171baa6378c04fb35d054071aaee5b112172c3193c4acecf189077f3941c7507189e5cbb7aa1099f2c0f950e1693fa3a9038c2ff29f423468c290e4b431e1db97c814d411e39e94c58814464ea17d7eb4a278afdd73b2f049316a8e80e9ac1b7f", 0x91}], 0x8, 0x0, 0x0, 0x20000000}, 0x80}, {{&(0x7f0000007380)=@in6={0xa, 0x4e22, 0x6, @empty, 0x7fffffff}, 0x80, &(0x7f0000007500)=[{&(0x7f0000007400)="4331bef292c753d00833b327836400022208b074b376596c5d977b6352d50cc8b76c4945", 0x24}, {&(0x7f0000007440)="e34648caaba5859bb128b8e4c7abf17946edbf05f988b49e7127723ee48474db7d363231c9a2901aef7c92444345c8710f9c1e19588ad4836d6f955598f002edcb5da96f4945706d3d5e1813b6554c51ec07af6212cace68b3da6fe833dc4c4bbde24f7235f900161c8443fb47d1f9f5e2f5563f820d20dd29a38d7b3d89a59c077ec2f29d551c00851c234dec5c", 0x8e}], 0x2, &(0x7f0000007540)=[{0x80, 0x107, 0x5, "fc629eacf2cf215ee2ea1ff7470e2467de39158d4a4f7b5580bb511fb610717c0c60cca9e4ef9fb092b7532b56e7e1d2a944eadae90d545cfe639e01d7fc507aa0490ca4ebbef5d29e2f0417a0cc7bdaa1b2fae872e637512ca88989dfb4ca9dec64dff4989191f716"}, {0xd0, 0x112, 0xf3, "10f3ca808a565ed91657cd76e9ca3a6eeb20a94e7635a48064d6e5799470cdde46e0cd0e09aa2f7838e93ba0be96fa5bc32ba328d7dbd6de50e6c928ed4037b0d7f30e701f9d6bd1b3cc06074952bfab4130c7e380e65747ac0601973918e22e48d298bd04afba7bc957a5d92369f4773279fc1ab6d062cceef25d00478ae57df969a1d1877f0d066341cad8644158bfa2a08cf5450363d682d93e5a901b920fefcd9fb65dd9fc91b1ed45b16cda6fe6e2516a293a32cd684b"}, {0xf0, 0x116, 0x1f, "78e329dc10229f8ce34337abd439efbe9ca10da18e07eeefbcd4b2cf35d07327b37ac7cc2c75dd5f78367883fdb834d9cfaa5c2c018e923e50ddad115e26127aa3316894430054b3a312f9374953cd61ee10c031017309b7a12638d21fbd7679bb9c1721d0891916388603953116e801c1312d94783a0b4450334a70b52f893ba43a2eacea189e367133acc5941d3cd81cc5220682db85eacff54438f22fefcddc089af5b8d3793f7cbd8dbdab7e05c987a63fd46b46eaea1c69316686ce98157240a5e6395e88b298388dd3485612101acdef7a43c259dd8eb98eaaabaa50ee"}, {0x78, 0x108, 0x8000, "decdd11d12ec56d912ae353041f83dd365c8d7a8a9ac4852ab92ef761f73b19dee5d2f261a7ecd002a622d45ec793f47525f983dcab89fee54163c71ea515a80a59e562f5512d3710edb50ddbb988ec3c2d2780db59420ca133d730b9e9f1c869100fed7a432f7"}, {0xc0, 0xff, 0x3, "cbc58c12982d51eda901aecb2491159015a8c0b4b8ed4c63bac8326f757b696815a94bba0d4843d8f8a83027e20146279f24aa23444e2f7efe31d2ecbcb85e9ec72e7a9e395e50516eb509632f599c7e66028189ffcb9d4d0db04a9bd39e798c0e73b61e78bea7e6a98117c4f4922af670f1481ff6cd038776f2cfe864c757c731ae869ea24649c9a3304e65cfda738dd0d45e577ed28bf4823f709aafb0658f21c1a6d2a36a530f54aaedb505dec4f2"}, {0x1010, 0x13f, 0x80, "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"}, {0xf8, 0x117, 0x0, "06efff33d7414d35ce63b67d61c6dc091fb97f1f6dc8550e45c1f06ef4dba559eae46c38cba3bc84d48953634363356a08f3a2b6b3d23e99a1198e99f4532c535fb16b17d824ee33f0ed7b53feb9d70dc9e443a158c51bc66fa909154437148f7944ffb53a2ac33de6f1831b539dfa8a791d2e72c372bb043775db31c0395e59c470b757161e0aa64a78f5095e75d723344efb698d1b9991f5b6b8d0562a373c2a0dd055990cb00bc5ba15b8517d06547629382b15c00077735ffaf2a860a8a1c08c4ca61683a62e8b9da8dd8427bf11bbb9410a1adb276a2c73f2f1a5ed0e7c4465fee1"}, {0x38, 0x0, 0x10000, "33e379a53b352269a7a51aadb34efdbeb577703b65519274bc74a912b6e93db678c3c111"}, {0xc0, 0x109, 0x5, "c60ab0c26e4edc3b0e7b376aa31726ba4ca89587f1d835d447172e03fb348a60e4af01c350e7f7885816f58f48343b86c673099b95679b8f6e7188799e2e535efb9a62474a3df2d7ceba52db6dd2b66153590b154673b1a1f497d57479359be878b7368f4bad8aae4f934b1a8673e277a0bb14eb4354cd58f9b94328e6220e377f168ae2af25093f06319ab8221266fb672e24c638e5101b8c2efc40bd6a92ee1b58e162b918738872"}, {0xd0, 0x10f, 0x1f, "b693542a4a9278a7eedccdea99fdd6674da40bf2a405c581cf416eefcfc12b0e8bbecfb5af61e549aacc275e2aafe73ba33b627363b1c2de9987da62c5f2a7351aabb6bacb4f26f3a427f455286d881b70a48f32c60eb004e085a4a064418922c1a343a1af81ed480668aed0b38f1cbadc5e93ca55c7032ce4f148d4b4f06cf8a99e9203e5c37b5ce66d1cb1b7c457108b949a73d1bca657dd54abb424d8a48200c95d5fa023c9979c5d41ab3cf8b2f6f9b3ac7c45b11caafdcc99"}], 0x1648, 0x4080}, 0x7}, {{0x0, 0x0, &(0x7f0000009cc0)=[{&(0x7f0000008bc0)="34150dd6cacd0f749caf6ca67ce8ed331662750cf1562453c7f2c7610521f80a622b28ab327cbd9e0a379a4a45506ce3314085e58b16e25a80e88a36fb2decb9d64e719f212f488a2c6dea6b485439c21fe4e52b6071200bb6480d990e3d97ba378812c41a07fd551b5b1368c1606daa04c08578dc30035e64dc6777346329363d937982c26d9367c26751cd3d717eb2914d04797ce87f43d5b1afa90eee79dd77d277498d73bdcd87c084bfe16f8e30afb7cca3d3d7c20033819ac8edbf6ea84692a596d273a5e369e404e3965a80f005f82305ee6e3d1ad19cfac62025e24412f9fd72bfd59a13d1dd046c", 0xec}, {&(0x7f0000008cc0)="8e6cafc2188e53d27fa3ce2e88f49473b517de882d7d8e4d7172257a76bd54761d75206f9bd34ad469a4db383fdb1805628c6269c071a7539e6e91b9ca951c57fc65dd198c7b043e910412bbd88fe21ac4e518cc28fe9dc1a62d080a97daca4648732cb9c6125b361a8cdffac5e4258c7d1fe52d1b6442ea53cf30bf8814caa9f6b9cd9e8479f33ecd353b2b779f97bea02a1497aea1d0bd93bc76d864d95fb6c49c761d7b4a72882949fb17919c60b6196c8e5f379d76534fcce8e1a454afd36f491ee6c1460ab881498b56763421c7b939fcd616f652bb12653c96f5fd7aaf9d073021f56a887aa9c08e1f9fcf33bd4e2517fa4e4c72778aadbf60cfc1d5d02ac3cab69962b348f75cb7147fb4edc82095d55d93cb1d708c5c0261f9ddbb989f9a09265de26dfa451a11b87d5c81d0d303e33c215398a1e4f43876ab1097bf5c3fe00e1ee4494bd69e38ef196bb9e5ef99c31ec4c973b7348bb8be381d41fec5c2b2b1ab74abc000291b6d491868f8327d883a9090e06aaab73b4ba042cc12c093825b3a0cbb673e1bc2f7208e35c2b359e5f549b6f5b1ddd86dd576bcef03a1d16b9a7c3ab7b31713a5010f5f074c6f9bebe8bd9c79bb1255b6e583daf099793851748a980f965f0515f57ab291468ea7d130abdb4d080e9ca49fbf37948e71bdf9814ef22755197641a30e2961a4e6db9ba9a3b7d71ce26b27e0eddc41b16fdf721b73cb34f1ba5f5f6f0adeb04eada29541ff27d571167e1d3bd360237cf8cf4ca10167a2df71c0de9c2ae79c2a40e62dafbd305513deaeff159c14b601c0d9fc07420fc2d6bcb690333ccb357a046e39de80ddb9e45fa77c3d5bf44347529e5cdbad179bf35a03ba40b3cd90f716a44bdf2f3ac11d3225a3922a9d8e866e53ed240eda65490e86ef7a27b9482f9e22fc42cde16059d6d0d58d8d3de53227907272714ef587b5ef94466558d7b4e9b99e93981afc5de01f1e3cdcd9a550bf9c54b1fb18d29447f24f7ccaa8666db95e656cd9cd8263668fc49e09445b88ff5c4655aa9e1a1a3e49c81b3e56f635b98654a8231fafba12904fa67c6edf26415cf816f316400166dd83b97c4d935a1efe3ea9b9ea1f84bea24003c3bab22098cc8857870ae057baa2d59370f427dcb5f5a663985322b445ad56d39aa4973a317107221946aafed46dce9ee4d0d10426d7d34b54b4874c837b175ff5129c603dce25d2413426b14116bbfbf149bd64dd27fcefa7ca88284f5d65b41e6e65309120cba9c19d35063844de20eeab6d628a51900e78a67b4a3d47fc9b8bbf78a46e7f311a26172d36f80ebfeef84622d5cbebaf363be4052a126eaecc64a7579c779b6b4a0844dafc86fc8c675445d1d8cd47d7e442db837c4b833ef0be96bb27013bba9f799435c17e2887e52c3f060fe1e551900c9f4ff7f2ab1f3fd82e5a97062420d1e3dad2c6cdb8925e0584ba4fc12c44b5b36dd153561dc306936de60c926f73c942c8817e89d398bab6550040c769fc3332d512eff35f4194cb0583999aae77f455bfa93c2b875164fdfc497d15cc1aabdaf1628c6afb4dbb7b268241e498f2471689a641ace2eb223da5604a02d30f24fa17a53d2f5f528f5c14c5b63429c9fd5649aafae82df98f9bbb98a616becf88d917b113b5375a7b35a5ad2d3b8759d21e3b7c3800ce7b3966c1397c13a85eb2f7e0fc8cdd744b1ae33c8e747428c75d4ed6d7602dccae619af49e6d41c37b9b84c9610d22298eb604e3cb3f2cbb6ce5bea72591033bfe65a906c65a4afd7d8881daee0b9153b5142212712ea05457c2de022605e786f18598afe24451a5b8b9ebdf38b3e6ebf56e38abd47aec15de3fce85011945a6998daffadba06bf8dc4c97c42be70d4e72a2fe11dd009d0dbfa6d24def5039bc7b80ebc13a3d1fef579a14057abccd7b2dced3dc228ad90ee30ec11af2c86aedb4ca090e80a03f2342ac31350d64e4ece6aedcf0c5f8168b2a972fda6e5fdf04f2c38384f17aacda8d625178feefa83e01943432f5ca171de1e8ce8315858083d63f4b07a9d3050fd2ad87a58700b4182e704b0321774b397b9fe61e913ea3996f3c63a1a06b9c70176e27d7fe27bd9281cdd000252f8d0c6c3c38b9d09951014a7c6272465691bcc9e48b3af162d9ffd6892522ab35da7b17a4a0ae10e6195041ae5b45e73d19508a92a7e32c39739553552cef4c5adfbdefc0fec5dcbfaf72534ab30984a2c1c3fa201b51024c9c839758246b21dcdb259856e1cc85a91095349fe20521bee5ef9dcc462245e2fb58fc53ae4659416140c03a75e6cc48745fd933528d2ce4b61ec3967c926d49e62df44838f01a1210b3ed8474b2b397387da69c03dd308d6212be5d6c41c962be2199bec8071d8b2923cfe322fab52a77f9a3fe907daf0a9732c8bbd931108080ce3f5165cd488e6cf757e8362de733e39f3a6c16ac4d234a5a5e75b78c5bc19df528cc502958d595666e6db8d1d1e754b7211c8868a73bee5c944653e9cd86d1ac7c80210fa081ddea8fe81f0872f23154383d4a5f9fbfdd392d0f859c3bee5a646a25ebeaba5b65e1add9697f44590622f6ee4acb5d8d1d5b58748a60d3ffe83e29572d7f49b05d2ea8b8c840e305889ae9415feac66bda59ae1930cfd716fdc6a957b15433c1123cb27cce6c272c69edde9403918aaae619f9ac1aad9ab2346ace11de270719fa945e921c7dabb3ef7fbba4421490860aedff8449a09ac1e6aa1fa5aee0ddce9b22b991aa5c92021e3aa1848003443d7a81bee3e89cb782a5a4c776dbb30789187a4189d5cbfa7a6e35984860e56e88b2afa4881d4491cb20c94e175cdca563ae74f18d5025eb3bc690b8ac5041a404af23c9bfe6b6c17925554b554f7d33bf58cf4563ca696f4d09a7ebc887cbe2a591af98168da708260a5fc583406bd6eaf858d9142d17dade88caa1cec68b5657cc7d4fd4b068a601eb87efc6ef6ffaeb998a98912d5bfa250033bb8bca74d5da6d271234f2b9a3bd055e230e630b1fa0e7f1fe4ec741b6f0663f74059c98914d119dcf5960faa69bc1bd430a834feb6a67d6daf872f76c4a2587b4821b63cac9dcf4b579e41fca483686d8df0f64f16caca243e151ce4aaa561a4901aacf9fc3bd39ef00b3ef3e8e5b1a8d50cad945a67d3bbb33cab5e42be27ed71a040798bda7dc11bd1c4314e0a8637ed1387bf87f3b9f33183bd1dbca49c76551f48d6a08766dd15ecf1a87aa5c5f4e81b36dcdcd287f06ebba9ce03873c953dcd2ff88cbf2218b1f94daeaef1b49f95095cf5a4f9de897cf4475dbecc645cbdc2f8d8f214556cd90a089d877d3b096f1f81e61ecbd3aea08a6824ffab90da4782f96abe9482ed0eb7afbe1cbd17db3dd9a6af5b2c5fd0f323d65abd4113d9b6e6d02cafcd9150183ea02301055d1645fef56f4f72ebe7739d8a454acbdb7ac8dd5e0dd09c5bf4a645845f655884edfe201641328f785ad7dbac82552e220c837cad6cfcbc55abc74b128e547700071fb55de90b2006fb5be6cdb1ca87b39af90e155832cc077e7d6e165671995b090b6410c209352066f2e3ac8f604606307c0e5c901036d3b237db9d593c174696c1332d25b052a30ff7cba611da6e4fee4ce85f8aa484fe663ee88711e85dd3a402e90da88a14633aa60eb8e555925b491593604580cfe4171b513d641fbb5145d28b8d4f13e9637e31eb58cc49e078c5ce6339c22110f86f9d1be67fc75500563f3f6635603b98d919a55ea48eb73bd453aa97d0f87615e149dd9468cb634d7c1dbd944edc355b3292f9ac5e1b8dbf6a02aeb45adc0757e9328a17fa64033ad7e9bfdd0cb77935d5078c0526af78944d9a956d63f814f0abaa0375e852ab0062f2b43e976b6bdc3a884b567194c86e4050d93e72ba24fcfc916b91376dd66bf4432e0cdbfeb029a6f59cd4eaf8ca04a32ab190bd6fd870880534d05102c8b38431724d735ada6b11d744c0380eadbbe6b17e2d296183e1a30b26cf9ef78c1724eafa8ca9f27830a1a2ea36d9d0104b45445362997307d57f0c7a3006ffebca385cad42e8394ab325aad87eea08ac21a6652b522dc68ac6895b3383c3721fe560e1054016a4a901572b46d9fa06f3fa3e236f27e2e482444ac267540da64346c0ddb0a03ccad70f92d5812b53252fc00b3f1696966321a2343cab8733db56872e898494c316bfb5f8739aaf1795f4ed826ae32a8ba13a56449cb73a11e3c743c2174144c89057e5f3cf706e33397674c749c2e0de650ccbe479387e6786e1eeb44f46488df5a60c609a2ba0dbf3495124c1a13bed785aa4dffc79fc3a337db7f2c340f2d33ce8235853a1b7258f34d53700dedf4a2fa076225ce9d314af0eb4db9c0f573849688f4d99d8d88a26bb270022f042cf75f9f6ae0fb930b8633b2946b965257bcea36ed862b8f9904cf61c3646b93d631f1cfcfaf13821ab015f32f2d982410280798abe44f1455e31b1fe2259409fe49b931f304fa258c257daa7fd272107b1f747ccfa498b5ca99ff18c6c644df6310cbeee1ae412e53b0e76759286cc65aa7fc69fe41f8567d124542c5581c356c5d40f2f43046a0a666c964b1cb1c1188ac73a137fe9fb5bc8c91f9b977caf123d3eb6392fc163d9299676e29274ee11bd13b03f6eee259689e5365bf15303a124954d9f3eeaa21604ef3e214ad4aebdf356be3fbc6bf1a0abb2c7cb529820b4faf83d83cd5bc99a19d08fa7c7fb3f764ab60beb0e6db36b67ed1d5f05a4da82115d466510a92b00466082af7a3e3fdc417f9fa0ec4ad4a4298267de53f85a2285443f3b740d331a0c69008a5da8942c883d8a2ed44fc1603058cd35e46106bba296722c85d504904cea48e6d91cd5fa826ccc34b21a867c38d2a31fec5099ba8ab9dcc6d97489824c955a39e909b7363f7bbfd498e362fcfdd7301cdabdd8fa3c25364feb179358d9e109b50d6ad1d9fb7ee5564a89ee54016a56d46e8be9a3fd1d1b84e5d73df8f20c1fe079482cebdd143e491eb0ecb70e59668221a91b7474eeb5e47c0a655961d07c64d575f7c6b7d44b4602c999b9ac09ccb08c2e0f2a5f3dbcf2dc6396138462f699d293dce94542de21534db9fcc3805556f19adc1ddb5771f06446dc1ae259cbc19e5bfd6887c759a6ff3c5a07039fc1a7711b7a1d44ac147f9d66471ee7a73a6a9194fb2d6f6d77978f15c46899414e378b2c87ee4c38b3ac8bce12e61f3f0d98d1f3b83ef51b15cfb66ebd9eb708114909c96f95607c637a447b4b3edf640be9d9517605793e28a529827e29df42b1908092371a454c78bad5c1151e0e4d0a22f66d0eeb7aa5bfe484ec5cf18a9bdf2c0e5dfab6758e8e15a5fce2a0bbec02540b9f93abab34da15de6123e788f3987c54b74e5de89bf2593d21a617c574cf0908fe0eb5f43b7e9a03f172368db5fcc1e6a8ccbdaac7039e5a7cd400264244e9724d3689f199512cdcc7cf6eeca3fe9e1681a61a180b8c0de2c716e3934a72e7cbdfac99219b96d0de89dd55f028b5bd24a20d11fdd566989191426ee631c10c8c1fd97d63f2dbc0db9f06e2d1bf629cf2b259f6259cf144e358bfde3928e90632ca92c2945813b21a3f298ac32c8e134dbc85d98c3b702678d16f040f39a78b874995a105002d4fc5292f74c147425fe22373fb59b8699cb26c9c7a92dfcd0f4914bebf57cf6b4cfa97314566cb82fe93fd18b171fcd235c9997ca9ebc382a848e4488d2331c340302c691b835f0bfeb4954a1e55780ba38a57e3608ce32d81761bed7dd9a86", 0x1000}], 0x2, &(0x7f0000009d00)=[{0xc8, 0x13a, 0x748e, "9a1a75a5c27877b0a3cb872c83c802d4e2838d0e56a8d26b3756bf133a70d1e36f41ac0c17afc9477e6336d832e56449acedf8e153cf9cc9480d7542177d78002eb33e34f367c8d9b331c68c4f6491b79623b5afe68b2f24d2a8b4a28ab10e5a83471a29b55c8493520cf9baf4903ce4482ad55735e9e7feaa11ed87e1a16487808e64a1be49eee2c7f3b150d90e5e27f62c2e862a3c0e128a6f156da4d297fbab60c48071c0ba1d3f4ed50d368c14ff8b286d535c"}, {0xd0, 0x117, 0x7, "70b1d7d4084745454e25c3c1ddc87bc88a4873823a1fd1c8c71a889b90986bc17cb8b6b488f8f48d5402a9ac34c8e2d2535f881b2a33e73be13bd3632ca4263465c51ae2cd109388816c5cd62e09b1f10460e98d4e7f6b38958377ee856baa5c34b0ad98cc16ce1224309079c787112fc98180259b51368f92f3491561f20af71cc64f7439a0bf2d5928f9d486cf67194045d7a60f5234e74340fda138bf9d775e6463b7130bdac649a61153bc20c3dc27003d08f3f44665fb6c6d9b3aad"}, {0xd0, 0x107, 0x0, "a4da7fa19a0f71701d64c4a349a5c02ce7c5d02e3078e8410a531cea464cd6d48706ebadd28fa4b59bcff19b67e9894964ed376705a06334162551e5eb4e74a12ce83a7530bcd86263498407d1297a2017825c8594cbe256a039b375d598893c617499eb926d68130eb002c9fc1df3af8b425f48bb62aef81d2731492703dbcc2d27c8e02359f5ddd9da714f863f7cc853f874f5fb2d0e8b9b2a884a87aaefc6da0b4a22a1a0ae5ffa4265cebcd5b95c79d176d147424ad448b888f3"}, {0xf8, 0x116, 0x8, "fbbec11eaf8e6492bb5b9b78aca8872e850133b5ea991f8603d7b3cb6c806a3b947ffaeb73b95fe676111c09b94bc48e03331ed30c55b8bd3cc5c932459f809ef6fd08089cecdf28a75f7131e7f2fd1a9b3e25ae51582b6c2259f1f3731434c0e70f0bf6ba39a8196b1e7f882a919dbb2d13ebd0c5844e20fb3b96431fe2c7a3eae98d0a6e5b3acce9f8858eb4cadcdab83c67c70408cdf5b3f06dd2675c6ae4bcc10e842763ef83e722f952cf196b828e18c9d88f21c283195d41849978eb5dbaedd6657083ef5a9c8697dd5ed64998e2caa7b5aee2b995cc8ea18c15d53c71c4b757fe1d65a71c"}, {0x28, 0x1, 0xf10, "afca5ec34a2abb0626063eb41995a95d64e3bcdb09"}, {0x108, 0x187, 0x1000, "1b3cc8f84fdab1382089611d4339198abe985a2bbaf2ec1498c930a88440d02df99b41ac8280d3d6bdcdb59ef8a8a6ee4cceb81247a7918b9613c3577dd58c9f5500886b066dc16433db83fd5461aa60546699ef95acd4d23745736faece4582dfb4c491dce6b16197541429d8b9799486f7a803de598f18befba32619f9385130a59d600e5665eb4c285acc8ba85273b5e0d833a2968ce3ccfdcc62a112a93b5abba9ff3d7cecfb2643b498c92a89ac0d63c22fbb017e8cc1ef04fcb6556e3dcf3db38017d4060570442df139b5b3e20feca523e89a6a08531a5890b2933a3fa68cd27fe8602e50f6772b171878c67bb6f9b6fe656ec1"}], 0x490, 0x20000000}, 0x4}, {{0x0, 0x0, &(0x7f000000a440)=[{&(0x7f000000a1c0)="38b18c951a25ccfa3a5d4d5004df74e490c16c45d6df47ab248ca58ec0c37a85726675dc948cc3f7c3720e52fca6e75514132254c7152092166d27ec77cf3d3c208339f88f8c49573173e6e26848fbf07835138d9c466667906d9774e8ad370731066fffe769513231e6290eb4bb93fcbd7edca175b594b628207e9076b55a502aeda35ff78615c6043f12f922dfb1a2d684530b71002971d6ac24b71575cca7d44c48d75673f2d8f4869b4a2b145ada44d390db37190e1213791d174b85e7a3a6e11183a468754ef97257f021573655cb684bf3aebe", 0xd6}, {&(0x7f000000a2c0)="0b32f907aa67d27dbf0d80527e26ca629f80f3a11722629fdfa19854e2bc68bf4fba39dbfce0d9f77e507750cc7b8f397822547e08a7464eb39687d52dfcef73afe84006e5d06e1570a597a8b69a979eaa42f14daa103584d4e702596bf7a92a0c733d6c1546d0a35b3a196108e1aacaef7a50e4c781dbc700d57a04ceacedcd3332f186da8485c3e8c70fc5c6bcd0c884d4a7b0fea6469233ebf85b137f3282dab526f93cad57d4a940feaf773283495521c9257fc3841262729534eb8e99d81d81159f9877e03a0ddcf21470a4dcad6e2b0dcf1769db65", 0xd8}, {&(0x7f000000a3c0)="f81ca98eb96547a254e1cc0bc91f6b21ba423ccf6e223bec3296acd17c90a7853aa09b62631875136c904251fcd3b5dabeb1defae79ca497da4b7a6048abb062a40c364b2496c441929ddd72de0b9e1d1e854f09001d5818e5c2870a439b273a51f5dc8d6a93352f77", 0x69}], 0x3, &(0x7f000000a480)=[{0x30, 0x0, 0x20, "64e99ef3e8f5bd1439594001b109b4ef2e5cd62c8c509d0803bd4730a9"}], 0x30, 0x8c1}}], 0x6, 0x1)
dup2(r0, r1)
getsockopt$netrom_NETROM_T4(0xffffffffffffffff, 0x103, 0x6, &(0x7f0000000380), &(0x7f00000003c0)=0x4)

2018/03/31 01:44:45 executing program 6:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x200, 0x0)
socketpair$inet6_icmp_raw(0xa, 0x3, 0x3a, &(0x7f0000000680)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
setsockopt$sock_linger(r1, 0x1, 0xd, &(0x7f00000006c0)={0x400, 0x9}, 0x8)
perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
mmap(&(0x7f0000000000/0x9d7000)=nil, 0x9d7000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x7)
perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r4, &(0x7f0000e5b000)={0x2, 0x4e20, @multicast1=0xe0000001}, 0x10)
syz_open_dev$sg(&(0x7f0000000440)='/dev/sg#\x00', 0x0, 0x0)
connect$inet(r4, &(0x7f0000000100)={0x2, 0x4e20, @multicast2=0xe0000002}, 0x10)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000eb0fb8)={0x1, 0x3, &(0x7f00009ff000)=@framed={{0x18}, [], {0x95}}, &(0x7f00002bf000)='syzkaller\x00', 0x4, 0xb7, &(0x7f00006ab000)=""/183}, 0x48)
setsockopt$inet_tcp_int(r4, 0x6, 0x19, &(0x7f0000000240)=0x8, 0x4)
setsockopt$SO_BINDTODEVICE(r4, 0x1, 0x19, &(0x7f0000000000)="6970365f76746930000000000400", 0x10)
r6 = socket$kcm(0x29, 0x2, 0x0)
ioctl$sock_kcm_SIOCKCMATTACH(r6, 0x89e0, &(0x7f000031aff8)={r4, r5})
ioctl$sock_kcm_SIOCKCMCLONE(r6, 0x89e2, &(0x7f00000002c0)={<r7=>0xffffffffffffffff})
sendmsg$nl_xfrm(r7, &(0x7f0000000780)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000740)={&(0x7f0000000480)=@updpolicy={0xb8, 0x19, 0x0, 0x0, 0x0, {{@in=@loopback=0x7f000001, @in6=@mcast1={0xff, 0x1, [], 0x1}}}}, 0xffcb}, 0x1}, 0x0)
ioctl$sock_kcm_SIOCKCMUNATTACH(r7, 0x89e1, &(0x7f0000000040)={r4})
r8 = fcntl$getown(r3, 0x9)
r9 = accept4$inet(0xffffffffffffff9c, &(0x7f0000000700)={0x0, 0x0, @broadcast}, &(0x7f0000000740)=0x10, 0x80000)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r9, 0x84, 0x64, &(0x7f0000000300)=[@in6={0xa, 0x4e23, 0x0, @dev={0xfe, 0x80, [], 0xf}}, @in={0x2, 0xff, @local={0xac, 0x14, 0x14, 0xaa}}, @in={0x2, 0x4e23, @multicast1=0xe0000001}, @in={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x10}}, @in={0x2, 0x4e20, @multicast1=0xe0000001}, @in={0x2, 0x4e24}, @in={0x2, 0x4e24, @broadcast=0xffffffff}, @in6={0xa, 0x4e21, 0xed34, @local={0xfe, 0x80, [], 0xaa}, 0x3}, @in={0x2, 0x4e23, @loopback=0x7f000001}], 0xfffffffffffffe00)
ptrace$setregset(0x4205, r8, 0x0, &(0x7f00000005c0)={&(0x7f0000000080)="449ed0dd6831a7fb44eca4221b1fb01abfec082aa7d0ee6f0ba9db0ece7da2bd3f", 0x21})
r10 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r11 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x1fffd, 0x0)
syz_open_dev$sndtimer(&(0x7f00000000c0)='/dev/snd/timer\x00', 0x0, 0x0)
read(r0, &(0x7f0000000140)=""/50, 0x32)
fcntl$dupfd(r10, 0x0, r11)

2018/03/31 01:44:45 executing program 3 (fault-call:3 fault-nth:22):
mkdir(&(0x7f00000001c0)='./file0\x00', 0x0)
mount(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000380)='./file0\x00', &(0x7f0000000300)='cgroup2\x00', 0x0, 0x0)
r0 = open$dir(&(0x7f000001bff4)='./file0\x00', 0x0, 0x0)
mkdirat(r0, &(0x7f0000000280)='./file0\x00', 0x20)
getdents64(r0, &(0x7f00000007c0)=""/250, 0x1015a)
fadvise64(r0, 0x0, 0x41, 0x3)
unlinkat(r0, &(0x7f0000000080)='./file0\x00', 0x200)
r1 = open$dir(&(0x7f0000000180)='./file0\x00', 0x105600, 0x81)
fchdir(r0)
link(&(0x7f0000000740)='./file1\x00', &(0x7f0000000780)='./file0/file0\x00')
renameat2(r1, &(0x7f0000000200)='./file1\x00', r0, &(0x7f0000000240)='./file0\x00', 0xfd1092750066ec78)
pivot_root(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='./file0\x00')
r2 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000100)='/dev/rfkill\x00', 0x2c42, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_LIST(r2, 0xc0505510, &(0x7f0000000480)={0x1000, 0x1, 0x474, 0x1, &(0x7f0000000140)=[{}]})
unlink(&(0x7f00000000c0)='./file0\x00')
symlinkat(&(0x7f0000000400)='./file0/file0\x00', r0, &(0x7f0000000440)='./file0/file0\x00')
iopl(0x6)
recvmsg$kcm(0xffffffffffffffff, &(0x7f0000000680)={&(0x7f0000000500)=@pppol2tp={0x0, 0x0, {0x0, <r3=>0xffffffffffffffff, {0x0, 0x0, @broadcast}}}, 0x80, &(0x7f0000000600)=[{&(0x7f0000000580)=""/80, 0x50}, {&(0x7f00000008c0)=""/4096, 0x1000}], 0x2, &(0x7f0000000640)=""/45, 0x2d, 0x206e}, 0x20)
r4 = syz_open_dev$sndpcmp(&(0x7f00000018c0)='/dev/snd/pcmC#D#p\x00', 0x5, 0x10a00)
ioctl$KVM_GET_DEVICE_ATTR(r4, 0x4018aee2, &(0x7f0000001940)={0x0, 0x100, 0x9, &(0x7f0000001900)})
recvfrom$ipx(r3, &(0x7f00000006c0)=""/52, 0x34, 0x100, &(0x7f0000000700)={0x4, 0x9a2, 0x4, "dc108d9d4391", 0x5}, 0x10)
renameat(r0, &(0x7f0000001980)='./file1\x00', r4, &(0x7f00000019c0)='./file0/file0\x00')

[  179.130472] kernel msg: ebtables bug: please report to author: Wrong len argument
[  179.160657] netlink: 3 bytes leftover after parsing attributes in process `syz-executor0'.
[  179.226543] netlink: 3 bytes leftover after parsing attributes in process `syz-executor0'.
[  179.227550] FAULT_INJECTION: forcing a failure.
[  179.227550] name failslab, interval 1, probability 0, space 0, times 0
[  179.246319] CPU: 1 PID: 13147 Comm: syz-executor3 Not tainted 4.16.0-rc7+ #372
[  179.253674] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  179.258863] netlink: 3 bytes leftover after parsing attributes in process `syz-executor0'.
[  179.263017] Call Trace:
[  179.263036]  dump_stack+0x194/0x24d
[  179.263051]  ? arch_local_irq_restore+0x53/0x53
[  179.263074]  should_fail+0x8c0/0xa40
[  179.263083]  ? kstrdup+0x39/0x70
[  179.263096]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  179.285096] netlink: 3 bytes leftover after parsing attributes in process `syz-executor0'.
[  179.286011]  ? cgroup_mkdir+0x553/0xfc0
[  179.286025]  ? vfs_mkdir+0x390/0x600
[  179.286033]  ? SyS_mkdirat+0x22b/0x2b0
[  179.286044]  ? do_syscall_64+0x281/0x940
[  179.286057]  ? entry_SYSCALL_64_after_hwframe+0x42/0xb7
[  179.286070]  ? find_held_lock+0x35/0x1d0
[  179.286082]  ? find_held_lock+0x35/0x1d0
[  179.331844]  ? __lock_is_held+0xb6/0x140
[  179.335888]  ? check_same_owner+0x320/0x320
[  179.340188]  ? rcu_note_context_switch+0x710/0x710
[  179.345096]  ? rcu_read_lock_sched_held+0x108/0x120
[  179.350095]  should_failslab+0xec/0x120
[  179.354058]  kmem_cache_alloc+0x47/0x760
[  179.358095]  ? memcpy+0x45/0x50
[  179.361356]  ? kstrdup+0x59/0x70
[  179.364705]  __kernfs_new_node+0xe2/0x570
[  179.368831]  ? kernfs_dop_revalidate+0x380/0x380
[  179.373568]  ? kasan_check_read+0x11/0x20
[  179.377695]  ? read_word_at_a_time+0x12/0x20
[  179.382080]  ? strscpy+0x186/0x500
[  179.385602]  kernfs_new_node+0x80/0xe0
[  179.389467]  __kernfs_create_file+0x4b/0x320
[  179.393856]  cgroup_addrm_files+0x3c5/0xa70
[  179.398159]  ? cgroup_file_write+0x710/0x710
[  179.402551]  ? getrawmonotonic64+0x460/0x460
[  179.406938]  ? kernfs_active+0x92/0x160
[  179.410891]  ? debug_lockdep_rcu_enabled+0x77/0x90
[  179.415796]  ? cgroup_kn_set_ugid+0x2c7/0x370
[  179.420268]  ? cgroup_file_name+0x1d0/0x1d0
[  179.424570]  css_populate_dir+0x340/0x420
[  179.428696]  cgroup_mkdir+0x553/0xfc0
[  179.432473]  ? __lock_is_held+0xb6/0x140
[  179.436512]  ? cgroup_destroy_locked+0x750/0x750
[  179.441245]  ? rcu_read_lock_sched_held+0x108/0x120
[  179.446236]  ? kmem_cache_free+0x258/0x2a0
[  179.450448]  ? set_nlink+0xc1/0x160
[  179.454055]  ? debug_lockdep_rcu_enabled+0x77/0x90
[  179.458960]  ? generic_permission+0x105/0x3c0
[  179.463435]  ? cgroup_destroy_locked+0x750/0x750
[  179.468170]  kernfs_iop_mkdir+0x153/0x1e0
[  179.472294]  vfs_mkdir+0x390/0x600
[  179.475811]  SyS_mkdirat+0x22b/0x2b0
[  179.479502]  ? SyS_mknod+0x480/0x480
[  179.483193]  ? trace_hardirqs_on+0xd/0x10
[  179.487318]  ? do_syscall_64+0xb7/0x940
[  179.491271]  ? SyS_mknod+0x480/0x480
[  179.494962]  do_syscall_64+0x281/0x940
[  179.498825]  ? vmalloc_sync_all+0x30/0x30
[  179.502949]  ? _raw_spin_unlock_irq+0x27/0x70
[  179.507421]  ? finish_task_switch+0x1c1/0x7e0
[  179.511893]  ? syscall_return_slowpath+0x550/0x550
[  179.516797]  ? syscall_return_slowpath+0x2ac/0x550
[  179.521701]  ? prepare_exit_to_usermode+0x350/0x350
[  179.526693]  ? entry_SYSCALL_64_after_hwframe+0x52/0xb7
[  179.532038]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  179.536859]  entry_SYSCALL_64_after_hwframe+0x42/0xb7
[  179.542031] RIP: 0033:0x454e79
[  179.545197] RSP: 002b:00007fa6ef25cc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
[  179.552903] RAX: ffffffffffffffda RBX: 00007fa6ef25d6d4 RCX: 0000000000454e79
[  179.560150] RDX: 0000000000000020 RSI: 0000000020000280 RDI: 0000000000000013
[  179.567395] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
2018/03/31 01:44:45 executing program 4:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket(0xa, 0x1, 0x0)
ioctl(0xffffffffffffffff, 0x8912, &(0x7f0000000240))
mq_notify(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, 0x3, @thr={&(0x7f00000009c0), &(0x7f0000000180)="1f2dec8c60a3ebd5fe628b39c105603bcb5e30d7ff959df745f229f6e642a20638bf6981d30d8ff15ba579bbdc20ed475cf69bcf195d654be5b372f5b6"}})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000500)={'ip6tnl0\x00', <r2=>0x0})
bind$nfc_llcp(r1, &(0x7f0000000040)={0x27, 0x0, 0x0, 0x3, 0x3, 0x2, "374e6d80827bc057675e637b6601b140dcaf16db48cc2cc88ad382d6f285ded2f6f79538b2b5dfaf8c7822caebc5c8e36869faf27ed6fb4e1f9b107130b72d", 0x20}, 0x60)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000580)={'\x00', r2})
setsockopt$packet_add_memb(0xffffffffffffffff, 0x107, 0x1, &(0x7f0000000400)={0x0, 0x1, 0xfffffc9c}, 0x10)
ioctl$sock_SIOCBRADDBR(0xffffffffffffffff, 0x89a0, &(0x7f0000000980)='bcsf0\x00')
getsockname$packet(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @remote}, &(0x7f0000000240)=0x14)
r3 = syz_open_dev$sg(&(0x7f0000005000)='/dev/sg#\x00', 0x0, 0x0)
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000340)='/dev/ptmx\x00', 0x20000002001, 0x0)
ioctl$TCSETS(r4, 0x40045431, &(0x7f00003b9fdc))
ioctl$TCSETSW(r4, 0x5402, &(0x7f00009dc000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000})
syz_open_pts(r4, 0x10080)
ioctl$TCXONC(r4, 0x540a, 0x2)
ioctl$TCSETAW(r4, 0x5407, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x7636})
close(r4)
bind$inet6(0xffffffffffffffff, &(0x7f000044f000)={0xa, 0x4e21}, 0x1c)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x49, &(0x7f0000000000)=0x2, 0x4)
listen(r1, 0x1)
syz_emit_ethernet(0x2, &(0x7f0000000380)=ANY=[@ANYBLOB="aaaaaaaaaaaaffffffffffff86dd60d8652b00140600fe8004000000000000000000000000aafe8000000000000000000000000000aa00004e20", @ANYBLOB="e7c5255d60864c7f2f81a462a4a6576b6a52cee9e9c5ddea"], &(0x7f00000002c0))
syz_genetlink_get_family_id$fou(&(0x7f0000000100)='fou\x00')
socket$inet_smc(0x2b, 0x1, 0x0)
getsockname$inet(r3, &(0x7f0000000440)={0x0, 0x0, @multicast2}, &(0x7f0000000300)=0xfffffffffffffda9)

[  179.574643] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000014
[  179.581887] R13: 00000000000003eb R14: 00000000006f7ea8 R15: 0000000000000016
[  179.589252] cgroup: cgroup_addrm_files: failed to add cgroup.max.descendants, err=-12
2018/03/31 01:44:46 executing program 1:
r0 = creat(&(0x7f0000000b40)='./file0\x00', 0x20)
ioctl$DRM_IOCTL_AGP_ALLOC(0xffffffffffffff9c, 0xc0206434, &(0x7f0000000b80)={0x5, <r1=>0x0, 0x0, 0x81})
ioctl$DRM_IOCTL_SG_FREE(r0, 0x40106439, &(0x7f0000000bc0)={0x3, r1})
r2 = socket$inet(0x2, 0x6, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f00000008c0)=@broute={'broute\x00', 0x20, 0x2, 0x3e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000280], 0x0, &(0x7f0000000240), &(0x7f0000000280)=ANY=[@ANYBLOB="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"]}, 0x460)
getsockopt$inet_sctp6_SCTP_CONTEXT(0xffffffffffffff9c, 0x84, 0x11, &(0x7f0000000000)={<r3=>0x0, 0x7}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r2, 0x84, 0xa, &(0x7f0000000140)={0x0, 0xa2b, 0x4, 0x7, 0x2, 0x20, 0x10000, 0x8a82, r3}, &(0x7f0000000180)=0x20)
setsockopt$inet_group_source_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000680)={0x1000, {{0x2, 0x4e23, @multicast1=0xe0000001}}, {{0x2, 0x4e22, @broadcast=0xffffffff}}}, 0x108)
ioctl$DRM_IOCTL_AGP_ENABLE(0xffffffffffffffff, 0x40086432, &(0x7f0000000c80)=0x2)
r4 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/vs/sync_version\x00', 0x2, 0x0)
ioctl$TIOCGSOFTCAR(r4, 0x5419, &(0x7f00000007c0))
r5 = socket$inet6(0x10, 0x2, 0x0)
sendmsg(r5, &(0x7f0000000080)={&(0x7f0000000240)=@un=@abs={0x1, 0x0, 0x4e23}, 0x80, &(0x7f0000000040)=[{&(0x7f00000001c0)="5500000018007f04002d1cb2a4a280930a0600007da843cf19d0f869390009402f002100040000001900050000fc1700000000dc1338d54400009b84136ef75afb83de448daa7227c43ab8220000060c", 0x50}], 0x1, &(0x7f00000000c0)}, 0x0)
socket$bt_cmtp(0x1f, 0x3, 0x5)
fcntl$addseals(r5, 0x409, 0x7)
syz_open_dev$sndmidi(&(0x7f0000000c00)='/dev/snd/midiC#D#\x00', 0x100000001, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f0000001640)=@broute={'broute\x00', 0x20, 0x1, 0x1e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20001700], 0x0, &(0x7f0000001980), &(0x7f0000001700)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1, [{{{0x13, 0x0, 0x0, 'vcan0\x00', 'ifb0\x00', 'syzkaller0\x00', 'vcan0\x00', @remote={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xbb}, [], @link_local={0x1, 0x80, 0xc2}, [], 0x70, 0xf8, 0x128}, [@common=@dnat={'dnat\x00', 0x10, {{@dev={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa]}, 0xffffffffffffffff}}}, @common=@IDLETIMER={'IDLETIMER\x00', 0x28, {{0x4, 'syz0\x00'}}}]}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8}}]}, {0x0, '\x00', 0x1, 0xffffbffffffffffe}]}, 0x260)
setsockopt$EBT_SO_SET_ENTRIES(0xffffffffffffffff, 0x0, 0x80, &(0x7f0000000840)=@nat={'nat\x00', 0x19, 0x1, 0x200, [0x20000940, 0x0, 0x0, 0x20000970, 0x200009a0], 0x0, &(0x7f0000000800), &(0x7f0000000940)=[{}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x14, 0x98ab, 'teql0\x00', 'ip6gretap0\x00', 'ip_vti0\x00', 'nr0\x00', @empty, [0x0, 0xff, 0x0, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2}, [0xff, 0x0, 0xff, 0x0, 0x0, 0xff], 0x100, 0x138, 0x170, [@time={'time\x00', 0x18, {{0x7, 0x3, 0x13782, 0x14fdf, 0x80, 0x4, 0x1}}}, @nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x2}}}]}, [@snat={'snat\x00', 0x10, {{@random="07901c8f0140"}}}]}, @common=@dnat={'dnat\x00', 0x10, {{@local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}, 0x10}}}}]}]}, 0x278)
syz_open_dev$dmmidi(&(0x7f0000000c40)='/dev/dmmidi#\x00', 0xae6d, 0x200)

2018/03/31 01:44:46 executing program 7:
clone(0x200, &(0x7f0000000100)="abbcd764d5b6fd853189b4a102b248f0de7c0a5cc328ca13455598dc3d760fa566c64d7cb06a7e15cdb085165670f42b32809442c69a5942d03eb3fd42bf0ebb0272fc4beb43f269f26f57bbb67316f7c76c8d570edaa564720b4dfd8f32453fc2354ddc753155ac051e9e9657989f0bbf1c03e4cd9f735c6d1b95719dbbb1c04092f54f44256722d954f0000000000000000000000000000000", &(0x7f00000000c0), &(0x7f00008c8000), &(0x7f0000828ffe))
mknod(&(0x7f0000000000)='./file0\x00', 0x1000000000001040, 0x0)
execve(&(0x7f000007b000)='./file0\x00', &(0x7f0000000180), &(0x7f0000000040))
r0 = gettid()
r1 = syz_open_dev$mice(&(0x7f0000149000)='/dev/input/mice\x00', 0x0, 0x0)
execve(&(0x7f00000001c0)='./file0\x00', &(0x7f0000001540)=[&(0x7f0000000200)='user\x00', &(0x7f0000000240)='vmnet0\x00', &(0x7f0000000280)='user\x00', &(0x7f0000001480)='user\x00'], &(0x7f00000015c0)=[&(0x7f0000001580)='#keyring\x00'])
msgget$private(0x0, 0x400)
timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000))
uselib(&(0x7f00000002c0)='./file0/file0\x00')
mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0xffffffffffffffff, 0x32, 0xffffffffffffffff, 0x0)
getsockopt$inet_sctp6_SCTP_INITMSG(r1, 0x84, 0x2, &(0x7f0000000040), &(0x7f0000000080)=0x8)
tkill(r0, 0x1000000000015)

2018/03/31 01:44:46 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_inet_SIOCGARP(0xffffffffffffffff, 0x8954, &(0x7f0000000200)={{0x2, 0x4e22, @local={0xac, 0x14, 0x14, 0xaa}}, {}, 0x0, {0x2, 0x4e24, @local={0xac, 0x14, 0x14, 0xaa}}, 'ifb0\x00'})
socketpair$inet_tcp(0x2, 0x1, 0x0, &(0x7f0000000580))
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
getsockopt$inet_opts(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000280)=""/93, &(0x7f0000000300)=0x5d)
sendmsg$nl_generic(r0, &(0x7f0000018000)={&(0x7f0000000000)={0x10}, 0xc, &(0x7f000000e000)={&(0x7f0000002040)={0x1c, 0x1d, 0x408, 0x0, 0x0, {}, [@nested={0x8, 0x4d, [@typed={0x4, 0x6c}]}]}, 0x1c}, 0x1}, 0x0)
recvmsg(r1, &(0x7f0000002000)={&(0x7f0000001980)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @dev}}}, 0x80, &(0x7f0000001f80)=[{&(0x7f0000001a00)=""/95, 0x5f}, {&(0x7f0000001c40)=""/170, 0xaa}, {&(0x7f0000001d00)=""/203, 0xcb}, {&(0x7f0000001e00)=""/178, 0xb2}, {&(0x7f0000001ec0)=""/40, 0x28}], 0x5}, 0x2041)
r2 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000340)='/dev/qat_adf_ctl\x00', 0x204400, 0x0)
mknod$loop(&(0x7f0000000200)='./file0\x00', 0x4, 0x1)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
perf_event_open(&(0x7f000000a000)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x8000000200000000, 0x7f}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount(&(0x7f000091dff8)='./file0\x00', &(0x7f0000343ff8)='./file0\x00', &(0x7f0000fb5ffc)='nfs\x00', 0x0, &(0x7f000000a000))
r3 = syz_open_dev$dspn(&(0x7f0000000140)='/dev/dsp#\x00', 0x7, 0x0)
getsockopt$inet_sctp6_SCTP_AUTO_ASCONF(r3, 0x84, 0x1e, &(0x7f0000000180), &(0x7f00000001c0)=0x4)
r4 = syz_open_dev$vcsa(&(0x7f0000000040)='/dev/vcsa#\x00', 0x3e5e, 0x80400)
sendmmsg(r2, &(0x7f0000001940)=[{{&(0x7f0000000440)=@llc={0x1a, 0x204, 0x5, 0x8, 0x0, 0x1736, @local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}}, 0x80, &(0x7f00000016c0)=[{&(0x7f00000004c0)="941f4b5cb9aab541d002db5c0644f853879d1c91fcc31e74a29940943220c85049a4544584eba263230d2f350e4a09456bbbfe9c4bf7762bc287dd5215fcb611f3150fe3f7f87eb753607db0c177b5b0bd6fed35810d96905bb69cc67141e89e6f75ae8b8d35fb4b741a1ccbbd20451e2fc696a9be35c51fa585031398be4d285c53fc804016a30d45010583433b6bd00b0e8913e3867e90f46c124bae8a5c8a787e16253a1317b01240b7dd5311ed6aad", 0xb1}], 0x1, &(0x7f0000001740)=[{0x58, 0x101, 0x7fff, "d4546d25abf3acdf4ca9d03c550eb2a754b008d12bbe7e0cb66358cb8719976e7df8089ed8e510e582236f87c2373b3e0e5bdaa05adbb7dccd4d17890c587139623c1bfbce"}], 0x58, 0x4}, 0x7}], 0x1, 0x4000)
accept4$packet(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, <r5=>0x0, 0x0, 0x0, 0x0, @dev}, &(0x7f00000000c0)=0x14, 0x800)
setsockopt$inet6_IPV6_PKTINFO(r4, 0x29, 0x32, &(0x7f0000000100)={@empty, r5}, 0x14)
r6 = bpf$MAP_CREATE(0x0, &(0x7f000012b000)={0x5, 0x1, 0x200, 0x2, 0x0, 0x1}, 0x2c)
bpf$MAP_CREATE(0x0, &(0x7f0000004000)={0xd, 0x2, 0x4, 0x6, 0x0, r6, 0x0, [0xa]}, 0x2c)
ioctl$KVM_SET_XCRS(r4, 0x4188aea7, &(0x7f00000003c0)={0x3, 0xa00000000000000, [{0x9, 0x0, 0x81}, {0xff, 0x0, 0x8c}, {0xffff, 0x0, 0x5}]})
timer_create(0x5, &(0x7f0000000240)={0x0, 0x1d}, &(0x7f0000000280)=<r7=>0x0)
socketpair(0x7, 0x80006, 0x200, &(0x7f0000000400))
timer_getoverrun(r7)
socket$nl_route(0x10, 0x3, 0x0)
r8 = syz_open_dev$adsp(&(0x7f00000000c0)='/dev/adsp#\x00', 0x0, 0x400000)
mq_getsetattr(r8, &(0x7f00000001c0)={0xffff, 0x3f, 0x6, 0x20, 0x7fff, 0x6, 0x9398, 0xf000000000000000}, &(0x7f0000000200))
perf_event_open(&(0x7f000025c000)={0x0, 0x78, 0x3e3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'sit0\x00'})
setsockopt$ipx_IPX_TYPE(r2, 0x100, 0x1, &(0x7f0000000380)=0x8b, 0x4)

2018/03/31 01:44:46 executing program 2:
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000140)="2e2f6367726f757000361a6f74a1b774b8642f3dfdd313d92946ff0167415d8dc22791dcd496520c1c99f4b07d3b2a11090000000229210b73abdcd2986fc290ac9b6ace278586d39949a54fb276eb1fd3964b0cad27e417b33abb8d3b00e64e75e4dff47de27536dccdde5fc746b04faafcec347560a31b3a35a5f20bc949d75cbb763987", 0x200002, 0x0)
r1 = openat$cgroup_procs(r0, &(0x7f0000000080)='cgroup.procs\x00', 0x2, 0x0)
sendfile(r1, r1, &(0x7f0000000040), 0x1)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000000)=<r2=>0x0)
r3 = syz_open_dev$sndpcmc(&(0x7f0000000400)='/dev/snd/pcmC#D#c\x00', 0x40, 0x0)
r4 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000440)='/dev/mixer\x00', 0x8000, 0x0)
ioctl$sock_bt_bnep_BNEPCONNADD(r3, 0x400442c8, &(0x7f0000003f80)=ANY=[@ANYRES32=r4, @ANYBLOB="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"])
setsockopt$IP_VS_SO_SET_TIMEOUT(r3, 0x0, 0x48a, &(0x7f0000003b00)={0xff, 0x8779, 0x2}, 0xc)
ptrace$PTRACE_SECCOMP_GET_METADATA(0x420d, r2, 0x10, &(0x7f0000000240)={0xffff})
r5 = syz_open_dev$mice(&(0x7f0000000200)='/dev/input/mice\x00', 0x0, 0x400)
ioctl$EVIOCREVOKE(r5, 0x40044591, &(0x7f0000003ac0)=0x1)
process_vm_writev(r2, &(0x7f0000000100)=[{&(0x7f0000000580)=""/4096, 0x1000}, {&(0x7f0000001580)=""/141, 0x8d}, {&(0x7f00000000c0)=""/4, 0x4}, {&(0x7f0000001640)=""/148, 0x94}], 0x4, &(0x7f0000003a40)=[{&(0x7f0000001700)=""/219, 0xdb}, {&(0x7f0000001800)=""/199, 0xc7}, {&(0x7f0000000300)=""/101, 0x65}, {&(0x7f0000001900)=""/174, 0xae}, {&(0x7f00000019c0)=""/4096, 0x1000}, {&(0x7f00000029c0)=""/98, 0x62}, {&(0x7f0000002a40)=""/4096, 0x1000}], 0x7, 0x0)
getsockopt$IP_VS_SO_GET_DAEMON(r5, 0x0, 0x487, &(0x7f0000000280), &(0x7f00000002c0)=0x30)
r6 = dup2(r0, r1)
getsockopt$netrom_NETROM_T4(0xffffffffffffffff, 0x103, 0x6, &(0x7f0000000380), &(0x7f00000003c0)=0x4)
ioctl$SNDRV_CTL_IOCTL_TLV_WRITE(r6, 0xc008551b, &(0x7f0000000480)={0x0, 0x10, [0x5000000, 0x5, 0x6, 0x0]})

2018/03/31 01:44:46 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_ASSIGN_PCI_DEVICE(0xffffffffffffffff, 0x8040ae69, &(0x7f0000005fec)={0x0, 0x0, 0x16068, 0x0, 0xfffffffffffffffa})
pkey_mprotect(&(0x7f0000004000/0x2000)=nil, 0x2000, 0x5, 0xffffffffffffffff)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000005fe0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000008000/0x2000)=nil})

2018/03/31 01:44:46 executing program 5:
r0 = syz_open_dev$amidi(&(0x7f0000000400)='/dev/amidi#\x00', 0x401, 0x40)
accept4$llc(r0, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, &(0x7f0000000480)=0x10, 0x0)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f0000005fd8)={'vcan0\x00', <r2=>0x0})
ioctl$KVM_SET_DEVICE_ATTR(r0, 0x4018aee1, &(0x7f0000000500)={0x0, 0x100000001, 0x5a, &(0x7f00000004c0)})
connect$can_bcm(r1, &(0x7f0000001ff0)={0x1d, r2}, 0x10)
ioctl$TIOCGSID(0xffffffffffffff9c, 0x5429, &(0x7f00000002c0)=<r3=>0x0)
waitid(0x0, r3, 0x0, 0x1000009, &(0x7f0000000300))
r4 = syz_open_dev$vcsn(&(0x7f0000000000)='/dev/vcs#\x00', 0xcd8, 0x101000)
getsockopt$SO_BINDTODEVICE(r4, 0x1, 0x19, &(0x7f0000000280), 0x10)
ioctl$EVIOCGABS0(r4, 0x80184540, &(0x7f0000000240)=""/64)
bind$vsock_dgram(r1, &(0x7f00000003c0)={0x28, 0x0, 0x2711, @reserved=0x1}, 0x10)
exit(0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000200)={r4, 0x0, 0x47, 0xde, &(0x7f0000000080)="3541471374d1e455c1f501bb3e7418a21f930d9fb82ac3588f54ad5a1a9e778bdf654fa39f19bcbc6ee4636a10d409c877cfe11ba160f73d4cde40422564bfdb62d8e5f8ba5097", &(0x7f0000000100)=""/222, 0x4, 0x3f}, 0x28)
ioctl$KVM_SET_TSS_ADDR(r4, 0xae47, 0xd000)
ioctl$KVM_CHECK_EXTENSION(r4, 0xae03, 0xffffffffffffffff)
openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000580)='/dev/qat_adf_ctl\x00', 0x4600, 0x0)
sendmsg$can_raw(r1, &(0x7f0000001fc8)={&(0x7f000000a000)={0x1d}, 0x10, &(0x7f0000000040)={&(0x7f000000a000)=@canfd={{0x1}, 0x0, 0x0, 0x0, 0x0, "0327e1b22b5fcef7739c699f5ff986ca08990039576a7d5cb2bdac3fa80acf584ecb5fee496e6866856b76b5f700000000000000004e2f9663a918fa1efd9b0b"}, 0x48}, 0x1}, 0x0)
ioctl$VHOST_GET_VRING_ENDIAN(r0, 0x4008af14, &(0x7f0000000540)={0x0, 0x9})

2018/03/31 01:44:46 executing program 3 (fault-call:3 fault-nth:23):
mkdir(&(0x7f00000001c0)='./file0\x00', 0x0)
mount(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000380)='./file0\x00', &(0x7f0000000300)='cgroup2\x00', 0x0, 0x0)
r0 = open$dir(&(0x7f000001bff4)='./file0\x00', 0x0, 0x0)
mkdirat(r0, &(0x7f0000000280)='./file0\x00', 0x20)
getdents64(r0, &(0x7f00000007c0)=""/250, 0x1015a)
fadvise64(r0, 0x0, 0x41, 0x3)
unlinkat(r0, &(0x7f0000000080)='./file0\x00', 0x200)
r1 = open$dir(&(0x7f0000000180)='./file0\x00', 0x105600, 0x81)
fchdir(r0)
link(&(0x7f0000000740)='./file1\x00', &(0x7f0000000780)='./file0/file0\x00')
renameat2(r1, &(0x7f0000000200)='./file1\x00', r0, &(0x7f0000000240)='./file0\x00', 0xfd1092750066ec78)
pivot_root(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='./file0\x00')
r2 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000100)='/dev/rfkill\x00', 0x2c42, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_LIST(r2, 0xc0505510, &(0x7f0000000480)={0x1000, 0x1, 0x474, 0x1, &(0x7f0000000140)=[{}]})
unlink(&(0x7f00000000c0)='./file0\x00')
symlinkat(&(0x7f0000000400)='./file0/file0\x00', r0, &(0x7f0000000440)='./file0/file0\x00')
iopl(0x6)
recvmsg$kcm(0xffffffffffffffff, &(0x7f0000000680)={&(0x7f0000000500)=@pppol2tp={0x0, 0x0, {0x0, <r3=>0xffffffffffffffff, {0x0, 0x0, @broadcast}}}, 0x80, &(0x7f0000000600)=[{&(0x7f0000000580)=""/80, 0x50}, {&(0x7f00000008c0)=""/4096, 0x1000}], 0x2, &(0x7f0000000640)=""/45, 0x2d, 0x206e}, 0x20)
r4 = syz_open_dev$sndpcmp(&(0x7f00000018c0)='/dev/snd/pcmC#D#p\x00', 0x5, 0x10a00)
ioctl$KVM_GET_DEVICE_ATTR(r4, 0x4018aee2, &(0x7f0000001940)={0x0, 0x100, 0x9, &(0x7f0000001900)})
recvfrom$ipx(r3, &(0x7f00000006c0)=""/52, 0x34, 0x100, &(0x7f0000000700)={0x4, 0x9a2, 0x4, "dc108d9d4391", 0x5}, 0x10)
renameat(r0, &(0x7f0000001980)='./file1\x00', r4, &(0x7f00000019c0)='./file0/file0\x00')

2018/03/31 01:44:46 executing program 6:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x200, 0x0)
socketpair$inet6_icmp_raw(0xa, 0x3, 0x3a, &(0x7f0000000680)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
setsockopt$sock_linger(r1, 0x1, 0xd, &(0x7f00000006c0)={0x400, 0x9}, 0x8)
perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
mmap(&(0x7f0000000000/0x9d7000)=nil, 0x9d7000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x7)
perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r4, &(0x7f0000e5b000)={0x2, 0x4e20, @multicast1=0xe0000001}, 0x10)
syz_open_dev$sg(&(0x7f0000000440)='/dev/sg#\x00', 0x0, 0x0)
connect$inet(r4, &(0x7f0000000100)={0x2, 0x4e20, @multicast2=0xe0000002}, 0x10)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000eb0fb8)={0x1, 0x3, &(0x7f00009ff000)=@framed={{0x18}, [], {0x95}}, &(0x7f00002bf000)='syzkaller\x00', 0x4, 0xb7, &(0x7f00006ab000)=""/183}, 0x48)
setsockopt$inet_tcp_int(r4, 0x6, 0x19, &(0x7f0000000240)=0x8, 0x4)
setsockopt$SO_BINDTODEVICE(r4, 0x1, 0x19, &(0x7f0000000000)="6970365f76746930000000000400", 0x10)
r6 = socket$kcm(0x29, 0x2, 0x0)
ioctl$sock_kcm_SIOCKCMATTACH(r6, 0x89e0, &(0x7f000031aff8)={r4, r5})
ioctl$sock_kcm_SIOCKCMCLONE(r6, 0x89e2, &(0x7f00000002c0)={<r7=>0xffffffffffffffff})
sendmsg$nl_xfrm(r7, &(0x7f0000000780)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000740)={&(0x7f0000000480)=@updpolicy={0xb8, 0x19, 0x0, 0x0, 0x0, {{@in=@loopback=0x7f000001, @in6=@mcast1={0xff, 0x1, [], 0x1}}}}, 0xffcb}, 0x1}, 0x0)
ioctl$sock_kcm_SIOCKCMUNATTACH(r7, 0x89e1, &(0x7f0000000040)={r4})
r8 = fcntl$getown(r3, 0x9)
r9 = accept4$inet(0xffffffffffffff9c, &(0x7f0000000700)={0x0, 0x0, @broadcast}, &(0x7f0000000740)=0x10, 0x80000)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r9, 0x84, 0x64, &(0x7f0000000300)=[@in6={0xa, 0x4e23, 0x0, @dev={0xfe, 0x80, [], 0xf}}, @in={0x2, 0xff, @local={0xac, 0x14, 0x14, 0xaa}}, @in={0x2, 0x4e23, @multicast1=0xe0000001}, @in={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x10}}, @in={0x2, 0x4e20, @multicast1=0xe0000001}, @in={0x2, 0x4e24}, @in={0x2, 0x4e24, @broadcast=0xffffffff}, @in6={0xa, 0x4e21, 0xed34, @local={0xfe, 0x80, [], 0xaa}, 0x3}, @in={0x2, 0x4e23, @loopback=0x7f000001}], 0xfffffffffffffe00)
ptrace$setregset(0x4205, r8, 0x0, &(0x7f00000005c0)={&(0x7f0000000080)="449ed0dd6831a7fb44eca4221b1fb01abfec082aa7d0ee6f0ba9db0ece7da2bd3f", 0x21})
r10 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r11 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x1fffd, 0x0)
syz_open_dev$sndtimer(&(0x7f00000000c0)='/dev/snd/timer\x00', 0x0, 0x0)
read(r0, &(0x7f0000000140)=""/50, 0x32)
fcntl$dupfd(r10, 0x0, r11)

[  179.738208] FAULT_INJECTION: forcing a failure.
[  179.738208] name failslab, interval 1, probability 0, space 0, times 0
[  179.749535] CPU: 1 PID: 13170 Comm: syz-executor3 Not tainted 4.16.0-rc7+ #372
[  179.756891] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  179.766241] Call Trace:
[  179.768827]  dump_stack+0x194/0x24d
[  179.772457]  ? arch_local_irq_restore+0x53/0x53
[  179.777128]  ? lock_release+0xa40/0xa40
[  179.781108]  should_fail+0x8c0/0xa40
[  179.784844]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  179.789948]  ? kernfs_add_one+0x50/0x450
[  179.794018]  ? rb_first_postorder+0xa0/0xa0
[  179.798337]  ? kernfs_add_one+0x50/0x450
[  179.802383]  ? save_stack+0x43/0xd0
[  179.805991]  ? kasan_kmalloc+0xad/0xe0
[  179.809865]  ? trace_hardirqs_off+0x10/0x10
[  179.814171]  ? find_held_lock+0x35/0x1d0
[  179.818214]  ? __lock_is_held+0xb6/0x140
[  179.822259]  ? check_same_owner+0x320/0x320
[  179.826561]  ? lock_downgrade+0x980/0x980
[  179.830688]  ? rcu_note_context_switch+0x710/0x710
[  179.836162]  should_failslab+0xec/0x120
[  179.840133]  __kmalloc_track_caller+0x5f/0x760
[  179.844695]  ? idr_alloc_cyclic+0x1d6/0x320
[  179.849000]  ? kstrdup_const+0x39/0x50
[  179.852872]  ? __mutex_unlock_slowpath+0xe9/0xac0
[  179.857692]  kstrdup+0x39/0x70
[  179.860869]  kstrdup_const+0x39/0x50
[  179.864564]  __kernfs_new_node+0xa2/0x570
[  179.868689]  ? kernfs_dop_revalidate+0x380/0x380
[  179.873426]  ? kasan_check_read+0x11/0x20
[  179.877553]  ? read_word_at_a_time+0x12/0x20
[  179.881942]  ? strscpy+0x186/0x500
[  179.885468]  kernfs_new_node+0x80/0xe0
[  179.889334]  __kernfs_create_file+0x4b/0x320
[  179.893722]  cgroup_addrm_files+0x3c5/0xa70
[  179.898036]  ? cgroup_file_write+0x710/0x710
[  179.902429]  ? getrawmonotonic64+0x460/0x460
[  179.906815]  ? kernfs_active+0x92/0x160
[  179.910770]  ? debug_lockdep_rcu_enabled+0x77/0x90
[  179.915674]  ? cgroup_kn_set_ugid+0x2c7/0x370
[  179.920149]  ? cgroup_file_name+0x1d0/0x1d0
[  179.924449]  css_populate_dir+0x340/0x420
[  179.928574]  cgroup_mkdir+0x553/0xfc0
[  179.932352]  ? __lock_is_held+0xb6/0x140
[  179.936413]  ? cgroup_destroy_locked+0x750/0x750
[  179.941145]  ? rcu_read_lock_sched_held+0x108/0x120
[  179.946139]  ? kmem_cache_free+0x258/0x2a0
[  179.950348]  ? set_nlink+0xc1/0x160
[  179.953950]  ? debug_lockdep_rcu_enabled+0x77/0x90
[  179.958854]  ? generic_permission+0x105/0x3c0
[  179.963324]  ? cgroup_destroy_locked+0x750/0x750
[  179.968055]  kernfs_iop_mkdir+0x153/0x1e0
[  179.972182]  vfs_mkdir+0x390/0x600
[  179.975705]  SyS_mkdirat+0x22b/0x2b0
[  179.979396]  ? SyS_mknod+0x480/0x480
[  179.983083]  ? trace_hardirqs_on+0xd/0x10
[  179.987206]  ? do_syscall_64+0xb7/0x940
[  179.991155]  ? SyS_mknod+0x480/0x480
[  179.994844]  do_syscall_64+0x281/0x940
[  179.998707]  ? vmalloc_sync_all+0x30/0x30
[  180.002839]  ? _raw_spin_unlock_irq+0x27/0x70
[  180.007313]  ? finish_task_switch+0x1c1/0x7e0
[  180.011790]  ? syscall_return_slowpath+0x550/0x550
[  180.016701]  ? syscall_return_slowpath+0x2ac/0x550
[  180.021608]  ? prepare_exit_to_usermode+0x350/0x350
[  180.026603]  ? entry_SYSCALL_64_after_hwframe+0x52/0xb7
[  180.031944]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  180.036768]  entry_SYSCALL_64_after_hwframe+0x42/0xb7
[  180.041933] RIP: 0033:0x454e79
[  180.045099] RSP: 002b:00007fa6ef25cc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
[  180.052786] RAX: ffffffffffffffda RBX: 00007fa6ef25d6d4 RCX: 0000000000454e79
[  180.060033] RDX: 0000000000000020 RSI: 0000000020000280 RDI: 0000000000000013
[  180.067279] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  180.074524] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000014
[  180.081770] R13: 00000000000003eb R14: 00000000006f7ea8 R15: 0000000000000017
2018/03/31 01:44:46 executing program 4:
mkdir(&(0x7f0000632000)='./file0\x00', 0x0)
mount(&(0x7f000000a000)='./file0\x00', &(0x7f0000014ff8)='./file0\x00', &(0x7f0000014000)='proc\x00', 0x0, &(0x7f0000fc9000))
r0 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/autofs\x00', 0x42000, 0x0)
getsockopt$inet_sctp_SCTP_PR_SUPPORTED(0xffffffffffffffff, 0x84, 0x71, &(0x7f0000000040)={<r1=>0x0, 0x2c82}, &(0x7f0000000080)=0x8)
setsockopt$inet_sctp6_SCTP_RESET_STREAMS(r0, 0x84, 0x77, &(0x7f00000000c0)={r1, 0x0, 0x7, [0x8, 0x200, 0x1, 0x5, 0x1, 0x80, 0x1]}, 0x16)
stat(&(0x7f0000000180)='./file0\x00', &(0x7f00000001c0))

[  180.089168] cgroup: cgroup_addrm_files: failed to add cgroup.max.depth, err=-12
2018/03/31 01:44:46 executing program 4:
r0 = openat$vnet(0xffffffffffffff9c, &(0x7f00003de000)='/dev/vhost-net\x00', 0x2, 0x0)
ioctl$int_in(r0, 0x40000000af01, &(0x7f0000c97ff8))
r1 = openat$audio(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/audio\x00', 0x0, 0x0)
ioctl$KVM_IRQFD(r1, 0x4020ae76, &(0x7f0000000380)={r1, 0x1})
fcntl$notify(r0, 0x402, 0x28)
close(r1)
syz_open_dev$tun(&(0x7f0000000340)='/dev/net/tun\x00', 0x0, 0x0)
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000280)={0x1, 0x0, &(0x7f0000000040)=""/254, &(0x7f0000000140)=""/119, &(0x7f00000001c0)=""/150})
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000300)={'dummy0\x00', 0x1})
ioctl$VHOST_NET_SET_BACKEND(r0, 0x4008af30, &(0x7f0000f1dff8)={0x1, r1})
ioctl$VHOST_RESET_OWNER(r0, 0xaf02, 0x0)
r2 = openat$audio(0xffffffffffffff9c, &(0x7f0000000040)='/dev/audio\x00', 0x0, 0x0)
r3 = memfd_create(&(0x7f0000000080)='dev ', 0x4)
perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fallocate(r3, 0x0, 0x0, 0x1)
ioctl$VHOST_NET_SET_BACKEND(r0, 0x4008af30, &(0x7f0000000440)={0x3})
ioctl$VHOST_SET_VRING_BASE(r2, 0x4008af12, &(0x7f0000000580)={0xfffffffffffffffc, 0x8000000000001})
perf_event_open(&(0x7f0000aaa000)={0x2, 0x70, 0x0, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r4 = socket$inet_sctp(0x2, 0x1, 0x84)
ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000540))
fcntl$setown(r0, 0x8, 0x0)
setpriority(0x0, 0x0, 0x5)
getsockopt$inet_sctp_SCTP_INITMSG(r4, 0x84, 0x2, &(0x7f0000000180), &(0x7f00000001c0)=0x8)
io_setup(0x1f, &(0x7f0000000400))
r5 = add_key(&(0x7f0000000480)='user\x00', &(0x7f00000004c0)={0x73, 0x79, 0x7a, 0x3}, &(0x7f0000000500)="2b0f18594c4a33e5bf5f9f", 0xb, 0xfffffffffffffffb)
keyctl$reject(0x13, r5, 0x0, 0x0, 0x0)
setsockopt$inet_int(r2, 0x0, 0xd, &(0x7f00000000c0)=0x5, 0x4)
accept$inet(r4, &(0x7f0000000100)={0x0, 0x0, @rand_addr}, &(0x7f00000003c0)=0xffffffffffffff54)

2018/03/31 01:44:46 executing program 1:
r0 = creat(&(0x7f0000000b40)='./file0\x00', 0x20)
ioctl$DRM_IOCTL_AGP_ALLOC(0xffffffffffffff9c, 0xc0206434, &(0x7f0000000b80)={0x5, <r1=>0x0, 0x0, 0x81})
ioctl$DRM_IOCTL_SG_FREE(r0, 0x40106439, &(0x7f0000000bc0)={0x3, r1})
r2 = socket$inet(0x2, 0x6, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f00000008c0)=@broute={'broute\x00', 0x20, 0x2, 0x3e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000280], 0x0, &(0x7f0000000240), &(0x7f0000000280)=ANY=[@ANYBLOB="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"]}, 0x460)
getsockopt$inet_sctp6_SCTP_CONTEXT(0xffffffffffffff9c, 0x84, 0x11, &(0x7f0000000000)={<r3=>0x0, 0x7}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r2, 0x84, 0xa, &(0x7f0000000140)={0x0, 0xa2b, 0x4, 0x7, 0x2, 0x20, 0x10000, 0x8a82, r3}, &(0x7f0000000180)=0x20)
setsockopt$inet_group_source_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000680)={0x1000, {{0x2, 0x4e23, @multicast1=0xe0000001}}, {{0x2, 0x4e22, @broadcast=0xffffffff}}}, 0x108)
ioctl$DRM_IOCTL_AGP_ENABLE(0xffffffffffffffff, 0x40086432, &(0x7f0000000100))
r4 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/vs/sync_version\x00', 0x2, 0x0)
ioctl$TIOCGSOFTCAR(r4, 0x5419, &(0x7f0000000840))
r5 = socket$inet6(0x10, 0x2, 0x8)
sendmsg(r5, &(0x7f0000000080)={&(0x7f0000000240)=@un=@abs={0x1, 0x0, 0x4e23}, 0x80, &(0x7f0000000040)=[{&(0x7f00000001c0)="5500000018007f04002d1cb2a4a280930a0600007da843cf19d0f869390009402f002100040000001900050000fc1700000000dc1338d54400009b84136ef75afb83de448daa7227c43ab8220000060c", 0x50}], 0x1, &(0x7f00000000c0)}, 0x0)
ioctl$VHOST_GET_FEATURES(r0, 0x8008af00, &(0x7f0000000c80))
socket$bt_cmtp(0x1f, 0x3, 0x5)
fcntl$addseals(r5, 0x409, 0x7)
syz_open_dev$sndmidi(&(0x7f0000000c00)='/dev/snd/midiC#D#\x00', 0x100000001, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f0000001640)=@broute={'broute\x00', 0x20, 0x1, 0x1e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20001700], 0x0, &(0x7f0000001980), &(0x7f0000001700)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1, [{{{0x13, 0x0, 0x0, 'vcan0\x00', 'ifb0\x00', 'syzkaller0\x00', 'vcan0\x00', @remote={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xbb}, [], @link_local={0x1, 0x80, 0xc2}, [], 0x70, 0xf8, 0x128}, [@common=@dnat={'dnat\x00', 0x10, {{@dev={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa]}, 0xffffffffffffffff}}}, @common=@IDLETIMER={'IDLETIMER\x00', 0x28, {{0x4, 'syz0\x00'}}}]}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8}}]}, {0x0, '\x00', 0x1, 0xffffbffffffffffe}]}, 0x260)
setsockopt$EBT_SO_SET_ENTRIES(0xffffffffffffffff, 0x0, 0x80, &(0x7f0000000cc0)=@nat={'nat\x00', 0x19, 0x1, 0x200, [0x20000d40, 0x0, 0x0, 0x20000d70, 0x20000da0], 0x0, &(0x7f0000000800), &(0x7f0000000d40)=[{}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x0, 0x14, 0x98ab, 'teql0\x00', 'ip6gretap0\x00', 'ip_vti0\x00', 'nr0\x00', @empty, [0x0, 0xff, 0x0, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2}, [0xff, 0x0, 0xff, 0x0, 0x0, 0xff], 0x100, 0x138, 0x170, [@time={'time\x00', 0x18, {{0x7, 0x3, 0x13782, 0x14fdf, 0x80, 0x4, 0x1}}}, @nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x2}}}]}, [@snat={'snat\x00', 0x10, {{@random="07901c8f0140"}}}]}, @common=@dnat={'dnat\x00', 0x10, {{@local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}, 0x10}}}}]}]}, 0x278)
syz_open_dev$dmmidi(&(0x7f0000000c40)='/dev/dmmidi#\x00', 0xae6d, 0x200)

2018/03/31 01:44:46 executing program 3 (fault-call:3 fault-nth:24):
mkdir(&(0x7f00000001c0)='./file0\x00', 0x0)
mount(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000380)='./file0\x00', &(0x7f0000000300)='cgroup2\x00', 0x0, 0x0)
r0 = open$dir(&(0x7f000001bff4)='./file0\x00', 0x0, 0x0)
mkdirat(r0, &(0x7f0000000280)='./file0\x00', 0x20)
getdents64(r0, &(0x7f00000007c0)=""/250, 0x1015a)
fadvise64(r0, 0x0, 0x41, 0x3)
unlinkat(r0, &(0x7f0000000080)='./file0\x00', 0x200)
r1 = open$dir(&(0x7f0000000180)='./file0\x00', 0x105600, 0x81)
fchdir(r0)
link(&(0x7f0000000740)='./file1\x00', &(0x7f0000000780)='./file0/file0\x00')
renameat2(r1, &(0x7f0000000200)='./file1\x00', r0, &(0x7f0000000240)='./file0\x00', 0xfd1092750066ec78)
pivot_root(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='./file0\x00')
r2 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000100)='/dev/rfkill\x00', 0x2c42, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_LIST(r2, 0xc0505510, &(0x7f0000000480)={0x1000, 0x1, 0x474, 0x1, &(0x7f0000000140)=[{}]})
unlink(&(0x7f00000000c0)='./file0\x00')
symlinkat(&(0x7f0000000400)='./file0/file0\x00', r0, &(0x7f0000000440)='./file0/file0\x00')
iopl(0x6)
recvmsg$kcm(0xffffffffffffffff, &(0x7f0000000680)={&(0x7f0000000500)=@pppol2tp={0x0, 0x0, {0x0, <r3=>0xffffffffffffffff, {0x0, 0x0, @broadcast}}}, 0x80, &(0x7f0000000600)=[{&(0x7f0000000580)=""/80, 0x50}, {&(0x7f00000008c0)=""/4096, 0x1000}], 0x2, &(0x7f0000000640)=""/45, 0x2d, 0x206e}, 0x20)
r4 = syz_open_dev$sndpcmp(&(0x7f00000018c0)='/dev/snd/pcmC#D#p\x00', 0x5, 0x10a00)
ioctl$KVM_GET_DEVICE_ATTR(r4, 0x4018aee2, &(0x7f0000001940)={0x0, 0x100, 0x9, &(0x7f0000001900)})
recvfrom$ipx(r3, &(0x7f00000006c0)=""/52, 0x34, 0x100, &(0x7f0000000700)={0x4, 0x9a2, 0x4, "dc108d9d4391", 0x5}, 0x10)
renameat(r0, &(0x7f0000001980)='./file1\x00', r4, &(0x7f00000019c0)='./file0/file0\x00')

2018/03/31 01:44:46 executing program 2:
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000140)="2e2f6367726f757000361a6f74a1b774b8642f3dfdd313d92946ff0167415d8dc22791dcd496520c1c99f4b07d3b2a11090000000229210b73abdcd2986fc290ac9b6ace278586d39949a54fb276eb1fd3964b0cad27e417b33abb8d3b00e64e75e4dff47de27536dccdde5fc746b04faafcec347560a31b3a35a5f20bc949d75cbb763987", 0x200002, 0x0)
r1 = openat$cgroup_procs(r0, &(0x7f0000000080)='cgroup.procs\x00', 0x2, 0x0)
sendfile(r1, r1, &(0x7f0000000040), 0x1)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000000)=<r2=>0x0)
r3 = syz_open_dev$sndpcmc(&(0x7f0000000400)='/dev/snd/pcmC#D#c\x00', 0x40, 0x0)
r4 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000440)='/dev/mixer\x00', 0x8000, 0x0)
ioctl$sock_bt_bnep_BNEPCONNADD(r3, 0x400442c8, &(0x7f0000004180)=ANY=[@ANYRES32=r4, @ANYBLOB="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"])
preadv(r0, &(0x7f0000004100)=[{&(0x7f0000000480)=""/148, 0x94}, {&(0x7f0000003c80)=""/103, 0x67}, {&(0x7f0000003d00)=""/169, 0xa9}, {&(0x7f0000000540)=""/54, 0x36}, {&(0x7f0000003dc0)=""/234, 0xea}, {&(0x7f0000003ec0)=""/248, 0xf8}, {&(0x7f0000003fc0)=""/31, 0x1f}, {&(0x7f0000004000)=""/220, 0xdc}], 0x8, 0x0)
setsockopt$IP_VS_SO_SET_TIMEOUT(r3, 0x0, 0x48a, &(0x7f0000003b00)={0xff, 0x8779, 0x2}, 0xc)
ptrace$PTRACE_SECCOMP_GET_METADATA(0x420d, r2, 0x10, &(0x7f0000000240)={0xffff})
r5 = syz_open_dev$mice(&(0x7f0000000200)='/dev/input/mice\x00', 0x0, 0x400)
ioctl$EVIOCREVOKE(r5, 0x40044591, &(0x7f0000003ac0)=0x1)
process_vm_writev(r2, &(0x7f0000000100)=[{&(0x7f0000000580)=""/4096, 0x1000}, {&(0x7f0000001580)=""/141, 0x8d}, {&(0x7f00000000c0)=""/4, 0x4}, {&(0x7f0000001640)=""/148, 0x94}], 0x4, &(0x7f0000003a40)=[{&(0x7f0000001700)=""/219, 0xdb}, {&(0x7f0000001800)=""/199, 0xc7}, {&(0x7f0000000300)=""/101, 0x65}, {&(0x7f0000001900)=""/174, 0xae}, {&(0x7f00000019c0)=""/4096, 0x1000}, {&(0x7f00000029c0)=""/98, 0x62}, {&(0x7f0000002a40)=""/4096, 0x1000}], 0x7, 0x0)
getsockopt$IP_VS_SO_GET_DAEMON(r5, 0x0, 0x487, &(0x7f0000000280), &(0x7f00000002c0)=0x30)
dup2(r0, r1)
getsockopt$netrom_NETROM_T4(0xffffffffffffffff, 0x103, 0x6, &(0x7f0000000380), &(0x7f00000003c0)=0x4)

2018/03/31 01:44:46 executing program 6:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x200, 0x0)
socketpair$inet6_icmp_raw(0xa, 0x3, 0x3a, &(0x7f0000000680)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
setsockopt$sock_linger(r1, 0x1, 0xd, &(0x7f00000006c0)={0x400, 0x9}, 0x8)
perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
mmap(&(0x7f0000000000/0x9d7000)=nil, 0x9d7000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x7)
perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r4, &(0x7f0000e5b000)={0x2, 0x4e20, @multicast1=0xe0000001}, 0x10)
syz_open_dev$sg(&(0x7f0000000440)='/dev/sg#\x00', 0x0, 0x0)
connect$inet(r4, &(0x7f0000000100)={0x2, 0x4e20, @multicast2=0xe0000002}, 0x10)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000eb0fb8)={0x1, 0x3, &(0x7f00009ff000)=@framed={{0x18}, [], {0x95}}, &(0x7f00002bf000)='syzkaller\x00', 0x4, 0xb7, &(0x7f00006ab000)=""/183}, 0x48)
setsockopt$inet_tcp_int(r4, 0x6, 0x19, &(0x7f0000000240)=0x8, 0x4)
setsockopt$SO_BINDTODEVICE(r4, 0x1, 0x19, &(0x7f0000000000)="6970365f76746930000000000400", 0x10)
r6 = socket$kcm(0x29, 0x2, 0x0)
ioctl$sock_kcm_SIOCKCMATTACH(r6, 0x89e0, &(0x7f000031aff8)={r4, r5})
ioctl$sock_kcm_SIOCKCMCLONE(r6, 0x89e2, &(0x7f00000002c0)={<r7=>0xffffffffffffffff})
sendmsg$nl_xfrm(r7, &(0x7f0000000780)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000740)={&(0x7f0000000480)=@updpolicy={0xb8, 0x19, 0x0, 0x0, 0x0, {{@in=@loopback=0x7f000001, @in6=@mcast1={0xff, 0x1, [], 0x1}}}}, 0xffcb}, 0x1}, 0x0)
ioctl$sock_kcm_SIOCKCMUNATTACH(r7, 0x89e1, &(0x7f0000000040)={r4})
r8 = fcntl$getown(r3, 0x9)
r9 = accept4$inet(0xffffffffffffff9c, &(0x7f0000000700)={0x0, 0x0, @broadcast}, &(0x7f0000000740)=0x10, 0x80000)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r9, 0x84, 0x64, &(0x7f0000000300)=[@in6={0xa, 0x4e23, 0x0, @dev={0xfe, 0x80, [], 0xf}}, @in={0x2, 0xff, @local={0xac, 0x14, 0x14, 0xaa}}, @in={0x2, 0x4e23, @multicast1=0xe0000001}, @in={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x10}}, @in={0x2, 0x4e20, @multicast1=0xe0000001}, @in={0x2, 0x4e24}, @in={0x2, 0x4e24, @broadcast=0xffffffff}, @in6={0xa, 0x4e21, 0xed34, @local={0xfe, 0x80, [], 0xaa}, 0x3}, @in={0x2, 0x4e23, @loopback=0x7f000001}], 0xfffffffffffffe00)
ptrace$setregset(0x4205, r8, 0x0, &(0x7f00000005c0)={&(0x7f0000000080)="449ed0dd6831a7fb44eca4221b1fb01abfec082aa7d0ee6f0ba9db0ece7da2bd3f", 0x21})
r10 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r11 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x1fffd, 0x0)
syz_open_dev$sndtimer(&(0x7f00000000c0)='/dev/snd/timer\x00', 0x0, 0x0)
read(r0, &(0x7f0000000140)=""/50, 0x32)
fcntl$dupfd(r10, 0x0, r11)

[  180.245648] FAULT_INJECTION: forcing a failure.
[  180.245648] name failslab, interval 1, probability 0, space 0, times 0
[  180.256981] CPU: 1 PID: 13197 Comm: syz-executor3 Not tainted 4.16.0-rc7+ #372
[  180.264341] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  180.273685] Call Trace:
[  180.276270]  dump_stack+0x194/0x24d
[  180.279896]  ? arch_local_irq_restore+0x53/0x53
[  180.284575]  should_fail+0x8c0/0xa40
[  180.288290]  ? kstrdup+0x39/0x70
2018/03/31 01:44:46 executing program 1:
r0 = creat(&(0x7f0000000b40)='./file0\x00', 0x20)
ioctl$DRM_IOCTL_AGP_ALLOC(0xffffffffffffff9c, 0xc0206434, &(0x7f0000000b80)={0x5, <r1=>0x0, 0x0, 0x81})
ioctl$DRM_IOCTL_SG_FREE(r0, 0x40106439, &(0x7f0000000bc0)={0x3, r1})
r2 = socket$inet(0x2, 0x6, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f00000008c0)=@broute={'broute\x00', 0x20, 0x2, 0x3e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000280], 0x0, &(0x7f0000000240), &(0x7f0000000280)=ANY=[@ANYBLOB="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"]}, 0x460)
getsockopt$inet_sctp6_SCTP_CONTEXT(0xffffffffffffff9c, 0x84, 0x11, &(0x7f0000000000)={<r3=>0x0, 0x7}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r2, 0x84, 0xa, &(0x7f0000000140)={0x0, 0xa2b, 0x4, 0x7, 0x2, 0x20, 0x10000, 0x8a82, r3}, &(0x7f0000000180)=0x20)
setsockopt$inet_group_source_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000680)={0x1000, {{0x2, 0x4e23, @multicast1=0xe0000001}}, {{0x2, 0x4e22, @broadcast=0xffffffff}}}, 0x108)
ioctl$DRM_IOCTL_AGP_ENABLE(0xffffffffffffffff, 0x40086432, &(0x7f0000000100))
r4 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/vs/sync_version\x00', 0x2, 0x0)
ioctl$TIOCGSOFTCAR(r4, 0x5419, &(0x7f0000000d00))
r5 = socket$inet6(0x10, 0x2, 0x0)
sendmsg(r5, &(0x7f0000000080)={&(0x7f0000000240)=@un=@abs={0x1, 0x0, 0x4e23}, 0x80, &(0x7f0000000040)=[{&(0x7f00000001c0)="5500000018007f04002d1cb2a4a280930a0600007da843cf19d0f869390009402f002100040000001900050000fc1700000000dc1338d54400009b84136ef75afb83de448daa7227c43ab8220000060c", 0x50}], 0x1, &(0x7f00000000c0)}, 0x0)
socket$bt_cmtp(0x1f, 0x3, 0x5)
fcntl$addseals(r5, 0x409, 0x7)
syz_open_dev$sndmidi(&(0x7f0000000c00)='/dev/snd/midiC#D#\x00', 0x100000001, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f0000001640)=@broute={'broute\x00', 0x20, 0x1, 0x1e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20001700], 0x0, &(0x7f0000001980), &(0x7f0000001700)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1, [{{{0x13, 0x0, 0x0, 'vcan0\x00', 'ifb0\x00', 'syzkaller0\x00', 'vcan0\x00', @remote={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xbb}, [], @link_local={0x1, 0x80, 0xc2}, [], 0x70, 0xf8, 0x128}, [@common=@dnat={'dnat\x00', 0x10, {{@dev={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa]}, 0xffffffffffffffff}}}, @common=@IDLETIMER={'IDLETIMER\x00', 0x28, {{0x4, 'syz0\x00'}}}]}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8}}]}, {0x0, '\x00', 0x1, 0xffffbffffffffffe}]}, 0x260)
setsockopt$EBT_SO_SET_ENTRIES(0xffffffffffffffff, 0x0, 0x80, &(0x7f0000000840)=@nat={'nat\x00', 0x19, 0x1, 0x200, [0x20000940, 0x0, 0x0, 0x20000970, 0x200009a0], 0x0, &(0x7f0000000800), &(0x7f0000000940)=[{}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x14, 0x98ab, 'teql0\x00', 'ip6gretap0\x00', 'ip_vti0\x00', 'nr0\x00', @empty, [0x0, 0xff, 0x0, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2}, [0xff, 0x0, 0xff, 0x0, 0x0, 0xff], 0x100, 0x138, 0x170, [@time={'time\x00', 0x18, {{0x7, 0x3, 0x13782, 0x14fdf, 0x80, 0x4, 0x1}}}, @nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x2}}}]}, [@snat={'snat\x00', 0x10, {{@random="07901c8f0140"}}}]}, @common=@dnat={'dnat\x00', 0x10, {{@local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}, 0x10}}}}]}]}, 0x278)
syz_open_dev$dmmidi(&(0x7f0000000c40)='/dev/dmmidi#\x00', 0xae6d, 0x200)

[  180.291657]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  180.297246]  ? cgroup_mkdir+0x553/0xfc0
[  180.297258]  ? vfs_mkdir+0x390/0x600
[  180.297266]  ? SyS_mkdirat+0x22b/0x2b0
2018/03/31 01:44:47 executing program 1:
r0 = creat(&(0x7f0000000b40)='./file0\x00', 0x20)
ioctl$DRM_IOCTL_AGP_ALLOC(0xffffffffffffff9c, 0xc0206434, &(0x7f0000000b80)={0x5, <r1=>0x0, 0x0, 0x81})
ioctl$DRM_IOCTL_SG_FREE(r0, 0x40106439, &(0x7f0000000bc0)={0x3, r1})
r2 = socket$inet(0x2, 0x6, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f00000008c0)=@broute={'broute\x00', 0x20, 0x2, 0x3e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000280], 0x0, &(0x7f0000000240), &(0x7f0000000280)=ANY=[@ANYBLOB="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"]}, 0x460)
getsockopt$inet_sctp6_SCTP_CONTEXT(0xffffffffffffff9c, 0x84, 0x11, &(0x7f0000000000)={<r3=>0x0, 0x7}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r2, 0x84, 0xa, &(0x7f0000000140)={0x0, 0xa2b, 0x4, 0x7, 0x2, 0x20, 0x10000, 0x8a82, r3}, &(0x7f0000000180)=0x20)
setsockopt$inet_group_source_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000680)={0x1000, {{0x2, 0x4e23, @multicast1=0xe0000001}}, {{0x2, 0x4e22, @broadcast=0xffffffff}}}, 0x108)
ioctl$DRM_IOCTL_AGP_ENABLE(0xffffffffffffffff, 0x40086432, &(0x7f0000000100))
r4 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/vs/sync_version\x00', 0x2, 0x0)
ioctl$TIOCGSOFTCAR(r4, 0x5419, &(0x7f00000007c0))
r5 = socket$inet6(0x10, 0x2, 0x3)
sendmsg(r5, &(0x7f0000000080)={&(0x7f0000000240)=@un=@abs={0x1, 0x0, 0x4e23}, 0x80, &(0x7f0000000040)=[{&(0x7f00000001c0)="5500000018007f04002d1cb2a4a280930a0600007da843cf19d0f869390009402f002100040000001900050000fc1700000000dc1338d54400009b84136ef75afb83de448daa7227c43ab8220000060c", 0x50}], 0x1, &(0x7f00000000c0)}, 0x0)
socket$bt_cmtp(0x1f, 0x3, 0x5)
fcntl$addseals(r5, 0x409, 0x7)
syz_open_dev$sndmidi(&(0x7f0000000c00)='/dev/snd/midiC#D#\x00', 0x100000001, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f0000001640)=@broute={'broute\x00', 0x20, 0x1, 0x1e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20001700], 0x0, &(0x7f0000001980), &(0x7f0000001700)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1, [{{{0x13, 0x0, 0x0, 'vcan0\x00', 'ifb0\x00', 'syzkaller0\x00', 'vcan0\x00', @remote={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xbb}, [], @link_local={0x1, 0x80, 0xc2}, [], 0x70, 0xf8, 0x128}, [@common=@dnat={'dnat\x00', 0x10, {{@dev={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa]}, 0xffffffffffffffff}}}, @common=@IDLETIMER={'IDLETIMER\x00', 0x28, {{0x4, 'syz0\x00'}}}]}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8}}]}, {0x0, '\x00', 0x1, 0xffffbffffffffffe}]}, 0x260)
setsockopt$EBT_SO_SET_ENTRIES(0xffffffffffffffff, 0x0, 0x80, &(0x7f0000000840)=@nat={'nat\x00', 0x19, 0x1, 0x200, [0x20000940, 0x0, 0x0, 0x20000970, 0x200009a0], 0x0, &(0x7f0000000800), &(0x7f0000000940)=[{}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x14, 0x98ab, 'teql0\x00', 'ip6gretap0\x00', 'ip_vti0\x00', 'nr0\x00', @empty, [0x0, 0xff, 0x0, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2}, [0xff, 0x0, 0xff, 0x0, 0x0, 0xff], 0x100, 0x138, 0x170, [@time={'time\x00', 0x18, {{0x7, 0x3, 0x13782, 0x14fdf, 0x80, 0x4, 0x1}}}, @nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x2}}}]}, [@snat={'snat\x00', 0x10, {{@random="07901c8f0140"}}}]}, @common=@dnat={'dnat\x00', 0x10, {{@local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}, 0x10}}}}]}]}, 0x278)
syz_open_dev$dmmidi(&(0x7f0000000c40)='/dev/dmmidi#\x00', 0xae6d, 0x200)

[  180.297278]  ? do_syscall_64+0x281/0x940
2018/03/31 01:44:47 executing program 2:
r0 = socket$inet(0x2, 0x2000000000003, 0x1)
getsockopt$EBT_SO_GET_ENTRIES(r0, 0x0, 0x83, &(0x7f0000001200)={'nat\x00', 0x0, 0x0, 0x3e6, [], 0x100000e4, &(0x7f00000001c0), &(0x7f0000000200)=""/4096}, &(0x7f0000001280)=0x108)
getsockname$packet(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, <r1=>0x0, 0x0, 0x0, 0x0, @remote}, &(0x7f00000001c0)=0x14)
setsockopt$inet_mreqn(r0, 0x0, 0x23, &(0x7f00000012c0)={@dev={0xac, 0x14, 0x14, 0xb}, @rand_addr=0x100, r1}, 0xc)

[  180.297290]  ? entry_SYSCALL_64_after_hwframe+0x42/0xb7
[  180.297302]  ? find_held_lock+0x35/0x1d0
[  180.297315]  ? find_held_lock+0x35/0x1d0
[  180.297328]  ? __lock_is_held+0xb6/0x140
[  180.297346]  ? check_same_owner+0x320/0x320
[  180.297359]  ? rcu_note_context_switch+0x710/0x710
[  180.297368]  ? rcu_read_lock_sched_held+0x108/0x120
[  180.297383]  should_failslab+0xec/0x120
[  180.297393]  kmem_cache_alloc+0x47/0x760
[  180.297402]  ? memcpy+0x45/0x50
[  180.297412]  ? kstrdup+0x59/0x70
[  180.297425]  __kernfs_new_node+0xe2/0x570
[  180.297436]  ? kernfs_dop_revalidate+0x380/0x380
[  180.297448]  ? kasan_check_read+0x11/0x20
[  180.297458]  ? read_word_at_a_time+0x12/0x20
[  180.297466]  ? strscpy+0x186/0x500
[  180.297483]  kernfs_new_node+0x80/0xe0
[  180.297494]  __kernfs_create_file+0x4b/0x320
[  180.297507]  cgroup_addrm_files+0x3c5/0xa70
[  180.297523]  ? cgroup_file_write+0x710/0x710
[  180.297538]  ? getrawmonotonic64+0x460/0x460
[  180.297549]  ? kernfs_active+0x92/0x160
[  180.297560]  ? debug_lockdep_rcu_enabled+0x77/0x90
[  180.297569]  ? cgroup_kn_set_ugid+0x2c7/0x370
[  180.297578]  ? cgroup_file_name+0x1d0/0x1d0
[  180.297593]  css_populate_dir+0x340/0x420
[  180.297605]  cgroup_mkdir+0x553/0xfc0
[  180.297613]  ? __lock_is_held+0xb6/0x140
[  180.297626]  ? cgroup_destroy_locked+0x750/0x750
[  180.297636]  ? rcu_read_lock_sched_held+0x108/0x120
[  180.297644]  ? kmem_cache_free+0x258/0x2a0
[  180.297655]  ? set_nlink+0xc1/0x160
[  180.297673]  ? debug_lockdep_rcu_enabled+0x77/0x90
[  180.297682]  ? generic_permission+0x105/0x3c0
[  180.297693]  ? cgroup_destroy_locked+0x750/0x750
[  180.297706]  kernfs_iop_mkdir+0x153/0x1e0
[  180.297716]  vfs_mkdir+0x390/0x600
[  180.297728]  SyS_mkdirat+0x22b/0x2b0
[  180.297740]  ? SyS_mknod+0x480/0x480
[  180.297749]  ? trace_hardirqs_on+0xd/0x10
[  180.297758]  ? do_syscall_64+0xb7/0x940
[  180.297768]  ? SyS_mknod+0x480/0x480
[  180.297776]  do_syscall_64+0x281/0x940
[  180.297786]  ? vmalloc_sync_all+0x30/0x30
[  180.297795]  ? _raw_spin_unlock_irq+0x27/0x70
[  180.297804]  ? finish_task_switch+0x1c1/0x7e0
[  180.297813]  ? syscall_return_slowpath+0x550/0x550
[  180.297824]  ? syscall_return_slowpath+0x2ac/0x550
[  180.297833]  ? prepare_exit_to_usermode+0x350/0x350
[  180.297844]  ? entry_SYSCALL_64_after_hwframe+0x52/0xb7
[  180.297857]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  180.297870]  entry_SYSCALL_64_after_hwframe+0x42/0xb7
[  180.297878] RIP: 0033:0x454e79
[  180.297883] RSP: 002b:00007fa6ef25cc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
[  180.297894] RAX: ffffffffffffffda RBX: 00007fa6ef25d6d4 RCX: 0000000000454e79
2018/03/31 01:44:47 executing program 6:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x200, 0x0)
socketpair$inet6_icmp_raw(0xa, 0x3, 0x3a, &(0x7f0000000680)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
setsockopt$sock_linger(r1, 0x1, 0xd, &(0x7f00000006c0)={0x400, 0x9}, 0x8)
perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
mmap(&(0x7f0000000000/0x9d7000)=nil, 0x9d7000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x7)
perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r4, &(0x7f0000e5b000)={0x2, 0x4e20, @multicast1=0xe0000001}, 0x10)
syz_open_dev$sg(&(0x7f0000000440)='/dev/sg#\x00', 0x0, 0x0)
connect$inet(r4, &(0x7f0000000100)={0x2, 0x4e20, @multicast2=0xe0000002}, 0x10)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000eb0fb8)={0x1, 0x3, &(0x7f00009ff000)=@framed={{0x18}, [], {0x95}}, &(0x7f00002bf000)='syzkaller\x00', 0x4, 0xb7, &(0x7f00006ab000)=""/183}, 0x48)
setsockopt$inet_tcp_int(r4, 0x6, 0x19, &(0x7f0000000240)=0x8, 0x4)
setsockopt$SO_BINDTODEVICE(r4, 0x1, 0x19, &(0x7f0000000000)="6970365f76746930000000000400", 0x10)
r6 = socket$kcm(0x29, 0x2, 0x0)
ioctl$sock_kcm_SIOCKCMATTACH(r6, 0x89e0, &(0x7f000031aff8)={r4, r5})
ioctl$sock_kcm_SIOCKCMCLONE(r6, 0x89e2, &(0x7f00000002c0)={<r7=>0xffffffffffffffff})
sendmsg$nl_xfrm(r7, &(0x7f0000000780)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000740)={&(0x7f0000000480)=@updpolicy={0xb8, 0x19, 0x0, 0x0, 0x0, {{@in=@loopback=0x7f000001, @in6=@mcast1={0xff, 0x1, [], 0x1}}}}, 0xffcb}, 0x1}, 0x0)
ioctl$sock_kcm_SIOCKCMUNATTACH(r7, 0x89e1, &(0x7f0000000040)={r4})
r8 = fcntl$getown(r3, 0x9)
r9 = accept4$inet(0xffffffffffffff9c, &(0x7f0000000700)={0x0, 0x0, @broadcast}, &(0x7f0000000740)=0x10, 0x80000)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r9, 0x84, 0x64, &(0x7f0000000300)=[@in6={0xa, 0x4e23, 0x0, @dev={0xfe, 0x80, [], 0xf}, 0x6}, @in={0x2, 0x4e23, @multicast1=0xe0000001}, @in={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x10}}, @in={0x2, 0x4e20, @multicast1=0xe0000001}, @in={0x2, 0x4e24}, @in={0x2, 0x4e24, @broadcast=0xffffffff}, @in6={0xa, 0x4e21, 0xed34, @local={0xfe, 0x80, [], 0xaa}, 0x3}, @in={0x2, 0x4e23, @loopback=0x7f000001}], 0x98)
ptrace$setregset(0x4205, r8, 0x0, &(0x7f00000005c0)={&(0x7f0000000080)="449ed0dd6831a7fb44eca4221b1fb01abfec082aa7d0ee6f0ba9db0ece7da2bd3f", 0x21})
r10 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r11 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x1fffd, 0x0)
syz_open_dev$sndtimer(&(0x7f00000000c0)='/dev/snd/timer\x00', 0x0, 0x0)
read(r0, &(0x7f0000000140)=""/50, 0x32)
fcntl$dupfd(r10, 0x0, r11)

2018/03/31 01:44:47 executing program 7:
clone(0x200, &(0x7f0000000100)="abbcd764d5b6fd853189b4a102b248f0de7c0a5cc328ca13455598dc3d760fa566c64d7cb06a7e15cdb085165670f42b32809442c69a5942d03eb3fd42bf0ebb0272fc4beb43f269f26f57bbb67316f7c76c8d570edaa564720b4dfd8f32453fc2354ddc753155ac051e9e9657989f0bbf1c03e4cd9f735c6d1b95719dbbb1c04092f54f44256722d954f0000000000000000000000000000000", &(0x7f00000000c0), &(0x7f00008c8000), &(0x7f0000828ffe))
mknod(&(0x7f0000000000)='./file0\x00', 0x1000000000001040, 0x0)
execve(&(0x7f000007b000)='./file0\x00', &(0x7f0000000180), &(0x7f0000000040))
r0 = gettid()
r1 = syz_open_dev$mice(&(0x7f0000149000)='/dev/input/mice\x00', 0x0, 0x0)
execve(&(0x7f00000001c0)='./file0\x00', &(0x7f0000001540)=[&(0x7f0000000200)='user\x00', &(0x7f0000000240)='vmnet0\x00', &(0x7f0000000280)='user\x00', &(0x7f0000001480)='user\x00'], &(0x7f00000015c0)=[&(0x7f0000001580)='#keyring\x00'])
msgget$private(0x0, 0x400)
timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000))
uselib(&(0x7f00000002c0)='./file0/file0\x00')
mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0xffffffffffffffff, 0x32, 0xffffffffffffffff, 0x0)
getsockopt$inet_sctp6_SCTP_INITMSG(r1, 0x84, 0x2, &(0x7f0000000040), &(0x7f0000000080)=0x8)
tkill(r0, 0x1000000000015)

2018/03/31 01:44:47 executing program 0:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$selinux_enforce(0xffffffffffffff9c, &(0x7f00000000c0)='/selinux/enforce\x00', 0x16907e, 0x0)
pwritev(r0, &(0x7f0000001400), 0x0, 0x0)

2018/03/31 01:44:47 executing program 3 (fault-call:3 fault-nth:25):
mkdir(&(0x7f00000001c0)='./file0\x00', 0x0)
mount(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000380)='./file0\x00', &(0x7f0000000300)='cgroup2\x00', 0x0, 0x0)
r0 = open$dir(&(0x7f000001bff4)='./file0\x00', 0x0, 0x0)
mkdirat(r0, &(0x7f0000000280)='./file0\x00', 0x20)
getdents64(r0, &(0x7f00000007c0)=""/250, 0x1015a)
fadvise64(r0, 0x0, 0x41, 0x3)
unlinkat(r0, &(0x7f0000000080)='./file0\x00', 0x200)
r1 = open$dir(&(0x7f0000000180)='./file0\x00', 0x105600, 0x81)
fchdir(r0)
link(&(0x7f0000000740)='./file1\x00', &(0x7f0000000780)='./file0/file0\x00')
renameat2(r1, &(0x7f0000000200)='./file1\x00', r0, &(0x7f0000000240)='./file0\x00', 0xfd1092750066ec78)
pivot_root(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='./file0\x00')
r2 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000100)='/dev/rfkill\x00', 0x2c42, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_LIST(r2, 0xc0505510, &(0x7f0000000480)={0x1000, 0x1, 0x474, 0x1, &(0x7f0000000140)=[{}]})
unlink(&(0x7f00000000c0)='./file0\x00')
symlinkat(&(0x7f0000000400)='./file0/file0\x00', r0, &(0x7f0000000440)='./file0/file0\x00')
iopl(0x6)
recvmsg$kcm(0xffffffffffffffff, &(0x7f0000000680)={&(0x7f0000000500)=@pppol2tp={0x0, 0x0, {0x0, <r3=>0xffffffffffffffff, {0x0, 0x0, @broadcast}}}, 0x80, &(0x7f0000000600)=[{&(0x7f0000000580)=""/80, 0x50}, {&(0x7f00000008c0)=""/4096, 0x1000}], 0x2, &(0x7f0000000640)=""/45, 0x2d, 0x206e}, 0x20)
r4 = syz_open_dev$sndpcmp(&(0x7f00000018c0)='/dev/snd/pcmC#D#p\x00', 0x5, 0x10a00)
ioctl$KVM_GET_DEVICE_ATTR(r4, 0x4018aee2, &(0x7f0000001940)={0x0, 0x100, 0x9, &(0x7f0000001900)})
recvfrom$ipx(r3, &(0x7f00000006c0)=""/52, 0x34, 0x100, &(0x7f0000000700)={0x4, 0x9a2, 0x4, "dc108d9d4391", 0x5}, 0x10)
renameat(r0, &(0x7f0000001980)='./file1\x00', r4, &(0x7f00000019c0)='./file0/file0\x00')

2018/03/31 01:44:47 executing program 4:
r0 = perf_event_open(&(0x7f0000b5a000)={0x4000000002, 0x70, 0x1e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800, 0x0, 0x0, 0xffff}, 0x0, 0x0, 0xffffffffffffffff, 0xa)
ptrace$setopts(0xffffffffffffffff, 0x0, 0x7ff, 0x0)
bind$netrom(0xffffffffffffffff, &(0x7f0000000040)=@ax25={0x3, {"b461317a1e6eae"}}, 0x10)
setsockopt$inet_sctp_SCTP_AUTH_KEY(r0, 0x84, 0x17, &(0x7f00000002c0)=ANY=[@ANYRES32=0x0, @ANYRES64=r0], 0x2)
getegid()
gettid()
socket$inet(0x2, 0x5, 0x0)
recvmsg$kcm(0xffffffffffffffff, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000900)=""/135, 0x87}], 0x1}, 0x0)
r1 = creat(&(0x7f0000000140)='./file0\x00', 0x62)
r2 = syz_open_procfs(0x0, &(0x7f00000004c0)="2f65786500000000000090d8b75e67e16b394342abb5158df87ea8984e79c93df7498b2b34796068700e29fbd789f9a031f23e16c96e30baed2961953b057f7a3222943acc4b8cfa4de553f8276731ddeb811efd44ea011e1a0db9074a28a826c88566b89c57cc3cca4aec41d37fa27c8daa19030d03139d0aea71d509d9a20ba7deceb656cc1308d9d1f111b6bd1595486f55e229923be4ed8cbfb78e86280b4cacf386bfac070afb312a4c520a03b27f805d181bd09ea208931a36e888060a2d")
r3 = perf_event_open(&(0x7f0000223000)={0x2, 0x70, 0xe3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$DRM_IOCTL_MARK_BUFS(r2, 0x40206417, &(0x7f00000000c0)={0xfc, 0xb7, 0x4, 0x643, 0x5, 0xe195})
fsetxattr(r2, &(0x7f0000000140)=@known='user.syz\x00', &(0x7f0000000000)='\x00', 0x3df, 0x0)
bind$netrom(r3, &(0x7f00000001c0)=@ax25={0x3, {"465a71b244ac22"}, 0x6}, 0x10)
accept$ax25(r1, &(0x7f0000000100), &(0x7f0000000180)=0x10)
fremovexattr(r2, &(0x7f0000000080)=@known='user.syz\x00')
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r1, 0x4040534e, &(0x7f0000000200)={0x4, @time, 0x7, {0x18c9, 0xff}, 0x93, 0x0, 0x4})

2018/03/31 01:44:47 executing program 2:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
recvfrom(r0, &(0x7f0000000280)=""/191, 0xbf, 0x40000040, &(0x7f0000000340)=@can={0x1d}, 0x80)
r1 = syz_open_dev$loop(&(0x7f0000ca9ff5)='/dev/loop#\x00', 0x0, 0x82)
r2 = memfd_create(&(0x7f00000000c0)="74086e750000000000000000008c00", 0x2)
ioctl$LOOP_CHANGE_FD(r2, 0x4c06, r1)
pwritev(r2, &(0x7f0000f50f90)=[{&(0x7f0000000040)="aa", 0x1}], 0x1, 0x81006)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000200)='/dev/loop-control\x00', 0x800, 0x0)
getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r0, 0x84, 0x6, &(0x7f0000000640)={<r4=>0x0, @in={{0x2, 0x4e23, @local={0xac, 0x14, 0x14, 0xaa}}}}, &(0x7f0000000700)=0x84)
getsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(r3, 0x84, 0x22, &(0x7f0000000100)={0x8, 0x0, 0x2, 0x2, <r5=>r4}, &(0x7f0000000140)=0x51)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r2, 0x84, 0x73, &(0x7f0000000180)={r5, 0x0, 0x0, 0x101, 0x4}, &(0x7f00000001c0)=0x18)
ioctl$DRM_IOCTL_WAIT_VBLANK(r2, 0xc018643a, &(0x7f0000000500)={0xc000000, 0x3ff})
fcntl$F_SET_RW_HINT(r2, 0x40c, &(0x7f0000000600))
ioctl$LOOP_CHANGE_FD(r1, 0x4c00, r2)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000240)='/dev/loop-control\x00', 0x100, 0x0)
sendfile(r1, r1, &(0x7f0000000080)=0x5f, 0x102000004)
ioctl$LOOP_CLR_FD(r1, 0x4c01)
sync()
ftruncate(r1, 0x2)
openat$cuse(0xffffffffffffff9c, &(0x7f0000000580)='/dev/cuse\x00', 0x82400, 0x0)
r6 = dup2(r2, r1)
setsockopt$SO_VM_SOCKETS_BUFFER_SIZE(0xffffffffffffffff, 0x28, 0x0, &(0x7f0000000000)=0x9, 0x8)
setsockopt$SO_VM_SOCKETS_BUFFER_SIZE(r2, 0x28, 0x0, &(0x7f00000005c0)=0x3, 0x8)
setsockopt$IP_VS_SO_SET_EDIT(r6, 0x0, 0x483, &(0x7f0000000540)={0x84, @multicast2=0xe0000002, 0x4e20, 0x0, 'dh\x00', 0x28, 0xfff, 0x13}, 0x2c)
getsockopt$inet6_mreq(r6, 0x29, 0x1f, &(0x7f0000000480), &(0x7f0000000740)=0x3bd749c0ad36229d)
ioctl$sock_netdev_private(r2, 0x89fe, &(0x7f00000003c0)="0aab95906cbf78d0113b9b11c035ec1b838e455485a0ae0c1dc7ead287ca35d95f330970a765dba3809e348d3d739c34fcbb996a276d6eae518354b310b63d5e6d4f02c584c900b9eed1ccd8c2d601c345a16a9770811f407c4232bb44f3f941d8cfe9138c1c2a09b466a541396572c076d8f96f042779cc2bdc8794dff7d80969b0a082393a735bb99d9c59fd538646854b79ccff7fdd4025a5c58b1e2acca8fd4f")

2018/03/31 01:44:47 executing program 1:
r0 = creat(&(0x7f0000000b40)='./file0\x00', 0x20)
ioctl$DRM_IOCTL_AGP_ALLOC(0xffffffffffffff9c, 0xc0206434, &(0x7f0000000b80)={0x5, <r1=>0x0, 0x0, 0x81})
ioctl$DRM_IOCTL_SG_FREE(r0, 0x40106439, &(0x7f0000000bc0)={0x3, r1})
r2 = socket$inet(0x2, 0x6, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f00000008c0)=@broute={'broute\x00', 0x20, 0x2, 0x3e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000280], 0x0, &(0x7f0000000240), &(0x7f0000000280)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff01000000110000000000000000006970366772657461703000000000f8010000000000006e000000000000000000697036746e6c3000000000000000000073797a5f74756e0000000000000000000180c200000000000000ff00aaaaaaaaaabb00000000000000007000000008010000580100005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a30000000000000000000000000000000000000000000000000000000004c45440000000000000000000000000000000000000000000000000000000000280000000000000073797a3000000000000000000000000000000000000000000000000000000000000000000000000049444c4554494d4552000000000000000000000000000000000000000000000028000000000000000000010073797a30000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001000000ffffffff010000000d0000000000000086dd73797a6b616c6c65723000000000000074756e6c3000000000000000000000007369743000000000000000000000000069666230000000000000000000000000000000000000000000000000ffffffffffff000000000000000030010000b001000000020000697036000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000ffffac1414aa0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006c696d6974000000000000000000000000000000000000000000000000000000200000000000000000000000ec00000000000000000000000000000000000000000000000000000049444c4554494d4552000000000000000000000000000000000000000000000028000000000000008100000073797a3100000000000000000000000000000000000000000000000000000000000000004e46515545554500000000000000000000000000000000000000000000000000080000000000000000000000000000004c45440000000000000000000000000000000000000000000000000000000000280000000000000073797a30000000000000000000000000000000000000000000000000000000000000000000000000"]}, 0x460)
getsockopt$inet_sctp6_SCTP_CONTEXT(0xffffffffffffff9c, 0x84, 0x11, &(0x7f0000000000)={<r3=>0x0, 0x7}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r2, 0x84, 0xa, &(0x7f0000000140)={0x0, 0xa2b, 0x4, 0x7, 0x2, 0x20, 0x10000, 0x8a82, r3}, &(0x7f0000000180)=0x20)
setsockopt$inet_group_source_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000680)={0x1000, {{0x2, 0x4e23, @multicast1=0xe0000001}}, {{0x2, 0x4e22, @broadcast=0xffffffff}}}, 0x108)
ioctl$DRM_IOCTL_AGP_ENABLE(0xffffffffffffffff, 0x40086432, &(0x7f0000000100))
r4 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/vs/sync_version\x00', 0x2, 0x0)
ioctl$TIOCGSOFTCAR(r4, 0x5419, &(0x7f00000007c0))
sendmsg(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000c80)=@un=@abs={0x1, 0x0, 0x4e23}, 0x80, &(0x7f0000000040)=[{&(0x7f00000001c0)="5500000018007f04002d1cb2a4a280930a0600007da843cf19d0f869390009402f002100040000001900050000fc1700000000dc1338d54400009b84136ef75afb83de448daa7227c43ab8220000060c", 0x50}], 0x0, &(0x7f00000000c0), 0x0, 0x20000000}, 0x20000000)
socket$bt_cmtp(0x1f, 0x3, 0x5)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x7)
syz_open_dev$sndmidi(&(0x7f0000000c00)='/dev/snd/midiC#D#\x00', 0x100000001, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f0000001640)=@broute={'broute\x00', 0x20, 0x1, 0x1e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20001700], 0x0, &(0x7f0000001980), &(0x7f0000001700)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1, [{{{0x13, 0x0, 0x0, 'vcan0\x00', 'ifb0\x00', 'syzkaller0\x00', 'vcan0\x00', @remote={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xbb}, [], @link_local={0x1, 0x80, 0xc2}, [], 0x70, 0xf8, 0x128}, [@common=@dnat={'dnat\x00', 0x10, {{@dev={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa]}, 0xffffffffffffffff}}}, @common=@IDLETIMER={'IDLETIMER\x00', 0x28, {{0x4, 'syz0\x00'}}}]}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8}}]}, {0x0, '\x00', 0x1, 0xffffbffffffffffe}]}, 0x260)
setsockopt$EBT_SO_SET_ENTRIES(0xffffffffffffffff, 0x0, 0x80, &(0x7f0000000840)=@nat={'nat\x00', 0x19, 0x1, 0x200, [0x20000940, 0x0, 0x0, 0x20000970, 0x200009a0], 0x0, &(0x7f0000000800), &(0x7f0000000940)=[{}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x14, 0x98ab, 'teql0\x00', 'ip6gretap0\x00', 'ip_vti0\x00', 'nr0\x00', @empty, [0x0, 0xff, 0x0, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2}, [0xff, 0x0, 0xff, 0x0, 0x0, 0xff], 0x100, 0x138, 0x170, [@time={'time\x00', 0x18, {{0x7, 0x3, 0x13782, 0x14fdf, 0x80, 0x4, 0x1}}}, @nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x2}}}]}, [@snat={'snat\x00', 0x10, {{@random="07901c8f0140"}}}]}, @common=@dnat={'dnat\x00', 0x10, {{@local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}, 0x10}}}}]}]}, 0x278)
syz_open_dev$dmmidi(&(0x7f0000000c40)='/dev/dmmidi#\x00', 0xae6d, 0x200)

[  180.297900] RDX: 0000000000000020 RSI: 0000000020000280 RDI: 0000000000000013
[  180.297906] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  180.297912] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000014
[  180.297918] R13: 00000000000003eb R14: 00000000006f7ea8 R15: 0000000000000018
[  180.298142] cgroup: cgroup_addrm_files: failed to add cgroup.max.depth, err=-12
[  180.427660] kernel msg: ebtables bug: please report to author: Wrong size
[  180.428268] kernel msg: ebtables bug: please report to author: Wrong size
2018/03/31 01:44:47 executing program 5:
r0 = syz_open_dev$amidi(&(0x7f0000000400)='/dev/amidi#\x00', 0x401, 0x40)
accept4$llc(r0, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, &(0x7f0000000480)=0x10, 0x0)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f0000005fd8)={'vcan0\x00', <r2=>0x0})
ioctl$KVM_SET_DEVICE_ATTR(r0, 0x4018aee1, &(0x7f0000000500)={0x0, 0x100000001, 0x5a, &(0x7f00000004c0)})
connect$can_bcm(r1, &(0x7f0000001ff0)={0x1d, r2}, 0x10)
ioctl$TIOCGSID(0xffffffffffffff9c, 0x5429, &(0x7f00000002c0)=<r3=>0x0)
waitid(0x0, r3, 0x0, 0x1000009, &(0x7f0000000300))
r4 = syz_open_dev$vcsn(&(0x7f0000000000)='/dev/vcs#\x00', 0xcd8, 0x101000)
getsockopt$SO_BINDTODEVICE(r4, 0x1, 0x19, &(0x7f0000000280), 0x10)
ioctl$EVIOCGABS0(r4, 0x80184540, &(0x7f0000000240)=""/64)
bind$vsock_dgram(r1, &(0x7f00000003c0)={0x28, 0x0, 0x2711, @reserved=0x1}, 0x10)
exit(0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000200)={r4, 0x0, 0x47, 0xde, &(0x7f0000000080)="3541471374d1e455c1f501bb3e7418a21f930d9fb82ac3588f54ad5a1a9e778bdf654fa39f19bcbc6ee4636a10d409c877cfe11ba160f73d4cde40422564bfdb62d8e5f8ba5097", &(0x7f0000000100)=""/222, 0x4, 0x3f}, 0x28)
ioctl$KVM_SET_TSS_ADDR(r4, 0xae47, 0xd000)
ioctl$KVM_CHECK_EXTENSION(r4, 0xae03, 0xffffffffffffffff)
openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000580)='/dev/qat_adf_ctl\x00', 0x4600, 0x0)
sendmsg$can_raw(r1, &(0x7f0000001fc8)={&(0x7f000000a000)={0x1d}, 0x10, &(0x7f0000000040)={&(0x7f000000a000)=@canfd={{0x1}, 0x0, 0x0, 0x0, 0x0, "0327e1b22b5fcef7739c699f5ff986ca08990039576a7d5cb2bdac3fa80acf584ecb5fee496e6866856b76b5f700000000000000004e2f9663a918fa1efd9b0b"}, 0x48}, 0x1}, 0x0)
ioctl$VHOST_GET_VRING_ENDIAN(r0, 0x4008af14, &(0x7f0000000540)={0x0, 0x9})

[  180.770060] FAULT_INJECTION: forcing a failure.
[  180.770060] name failslab, interval 1, probability 0, space 0, times 0
[  180.781331] CPU: 1 PID: 13244 Comm: syz-executor3 Not tainted 4.16.0-rc7+ #372
[  180.788689] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  180.798033] Call Trace:
[  180.800626]  dump_stack+0x194/0x24d
[  180.804253]  ? arch_local_irq_restore+0x53/0x53
[  180.808917]  ? lock_release+0xa40/0xa40
[  180.812879]  should_fail+0x8c0/0xa40
[  180.816576]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  180.821663]  ? kernfs_add_one+0x50/0x450
[  180.825705]  ? rb_first_postorder+0xa0/0xa0
[  180.830006]  ? kernfs_add_one+0x50/0x450
[  180.834053]  ? save_stack+0x43/0xd0
[  180.837658]  ? kasan_kmalloc+0xad/0xe0
[  180.841525]  ? trace_hardirqs_off+0x10/0x10
[  180.845826]  ? find_held_lock+0x35/0x1d0
[  180.849867]  ? __lock_is_held+0xb6/0x140
[  180.853912]  ? check_same_owner+0x320/0x320
[  180.858209]  ? lock_downgrade+0x980/0x980
[  180.862334]  ? rcu_note_context_switch+0x710/0x710
[  180.867246]  should_failslab+0xec/0x120
[  180.871197]  __kmalloc_track_caller+0x5f/0x760
[  180.875758]  ? idr_alloc_cyclic+0x1d6/0x320
[  180.880061]  ? kstrdup_const+0x39/0x50
[  180.883929]  ? __mutex_unlock_slowpath+0xe9/0xac0
[  180.888750]  kstrdup+0x39/0x70
[  180.891921]  kstrdup_const+0x39/0x50
[  180.895618]  __kernfs_new_node+0xa2/0x570
[  180.899744]  ? kernfs_dop_revalidate+0x380/0x380
[  180.904482]  ? kasan_check_read+0x11/0x20
[  180.908605]  ? read_word_at_a_time+0x12/0x20
[  180.912992]  ? strscpy+0x186/0x500
[  180.916515]  kernfs_new_node+0x80/0xe0
[  180.920379]  __kernfs_create_file+0x4b/0x320
[  180.924768]  cgroup_addrm_files+0x3c5/0xa70
[  180.929071]  ? cgroup_file_write+0x710/0x710
[  180.933463]  ? getrawmonotonic64+0x460/0x460
[  180.937852]  ? kernfs_active+0x92/0x160
[  180.941807]  ? debug_lockdep_rcu_enabled+0x77/0x90
[  180.946712]  ? cgroup_kn_set_ugid+0x2c7/0x370
[  180.951182]  ? cgroup_file_name+0x1d0/0x1d0
[  180.955483]  css_populate_dir+0x340/0x420
[  180.959613]  cgroup_mkdir+0x553/0xfc0
[  180.963392]  ? __lock_is_held+0xb6/0x140
[  180.967430]  ? cgroup_destroy_locked+0x750/0x750
[  180.972162]  ? rcu_read_lock_sched_held+0x108/0x120
[  180.977156]  ? kmem_cache_free+0x258/0x2a0
[  180.981370]  ? set_nlink+0xc1/0x160
[  180.984973]  ? debug_lockdep_rcu_enabled+0x77/0x90
[  180.989877]  ? generic_permission+0x105/0x3c0
[  180.994349]  ? cgroup_destroy_locked+0x750/0x750
[  180.999084]  kernfs_iop_mkdir+0x153/0x1e0
[  181.003210]  vfs_mkdir+0x390/0x600
[  181.006729]  SyS_mkdirat+0x22b/0x2b0
[  181.010422]  ? SyS_mknod+0x480/0x480
[  181.014110]  ? trace_hardirqs_on+0xd/0x10
[  181.018234]  ? do_syscall_64+0xb7/0x940
[  181.022183]  ? SyS_mknod+0x480/0x480
[  181.025872]  do_syscall_64+0x281/0x940
[  181.029737]  ? vmalloc_sync_all+0x30/0x30
[  181.034123]  ? _raw_spin_unlock_irq+0x27/0x70
[  181.038596]  ? finish_task_switch+0x1c1/0x7e0
[  181.043074]  ? syscall_return_slowpath+0x550/0x550
[  181.047982]  ? syscall_return_slowpath+0x2ac/0x550
[  181.052888]  ? prepare_exit_to_usermode+0x350/0x350
[  181.057884]  ? entry_SYSCALL_64_after_hwframe+0x52/0xb7
[  181.063227]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  181.068048]  entry_SYSCALL_64_after_hwframe+0x42/0xb7
[  181.073214] RIP: 0033:0x454e79
[  181.076378] RSP: 002b:00007fa6ef25cc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
[  181.084061] RAX: ffffffffffffffda RBX: 00007fa6ef25d6d4 RCX: 0000000000454e79
[  181.091305] RDX: 0000000000000020 RSI: 0000000020000280 RDI: 0000000000000013
[  181.098548] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  181.105791] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000014
[  181.113036] R13: 00000000000003eb R14: 00000000006f7ea8 R15: 0000000000000019
[  181.120369] cgroup: cgroup_addrm_files: failed to add cgroup.stat, err=-12
2018/03/31 01:44:47 executing program 3 (fault-call:3 fault-nth:26):
mkdir(&(0x7f00000001c0)='./file0\x00', 0x0)
mount(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000380)='./file0\x00', &(0x7f0000000300)='cgroup2\x00', 0x0, 0x0)
r0 = open$dir(&(0x7f000001bff4)='./file0\x00', 0x0, 0x0)
mkdirat(r0, &(0x7f0000000280)='./file0\x00', 0x20)
getdents64(r0, &(0x7f00000007c0)=""/250, 0x1015a)
fadvise64(r0, 0x0, 0x41, 0x3)
unlinkat(r0, &(0x7f0000000080)='./file0\x00', 0x200)
r1 = open$dir(&(0x7f0000000180)='./file0\x00', 0x105600, 0x81)
fchdir(r0)
link(&(0x7f0000000740)='./file1\x00', &(0x7f0000000780)='./file0/file0\x00')
renameat2(r1, &(0x7f0000000200)='./file1\x00', r0, &(0x7f0000000240)='./file0\x00', 0xfd1092750066ec78)
pivot_root(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='./file0\x00')
r2 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000100)='/dev/rfkill\x00', 0x2c42, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_LIST(r2, 0xc0505510, &(0x7f0000000480)={0x1000, 0x1, 0x474, 0x1, &(0x7f0000000140)=[{}]})
unlink(&(0x7f00000000c0)='./file0\x00')
symlinkat(&(0x7f0000000400)='./file0/file0\x00', r0, &(0x7f0000000440)='./file0/file0\x00')
iopl(0x6)
recvmsg$kcm(0xffffffffffffffff, &(0x7f0000000680)={&(0x7f0000000500)=@pppol2tp={0x0, 0x0, {0x0, <r3=>0xffffffffffffffff, {0x0, 0x0, @broadcast}}}, 0x80, &(0x7f0000000600)=[{&(0x7f0000000580)=""/80, 0x50}, {&(0x7f00000008c0)=""/4096, 0x1000}], 0x2, &(0x7f0000000640)=""/45, 0x2d, 0x206e}, 0x20)
r4 = syz_open_dev$sndpcmp(&(0x7f00000018c0)='/dev/snd/pcmC#D#p\x00', 0x5, 0x10a00)
ioctl$KVM_GET_DEVICE_ATTR(r4, 0x4018aee2, &(0x7f0000001940)={0x0, 0x100, 0x9, &(0x7f0000001900)})
recvfrom$ipx(r3, &(0x7f00000006c0)=""/52, 0x34, 0x100, &(0x7f0000000700)={0x4, 0x9a2, 0x4, "dc108d9d4391", 0x5}, 0x10)
renameat(r0, &(0x7f0000001980)='./file1\x00', r4, &(0x7f00000019c0)='./file0/file0\x00')

2018/03/31 01:44:47 executing program 0:
request_key(&(0x7f0000000900)='dns_resolver\x00', &(0x7f0000000940)={0x73, 0x79, 0x7a}, &(0x7f0000000980)='/dev/sequencer\x00', 0x0)
r0 = accept4(0xffffffffffffffff, &(0x7f0000000000)=@in6={0x0, 0x0, 0x0, @dev}, &(0x7f0000000080)=0x80, 0x800)
r1 = syz_open_dev$usbmon(&(0x7f0000000100)='/dev/usbmon#\x00', 0x0, 0xc40)
r2 = open(&(0x7f0000000180)='./file0\x00', 0x200000, 0x10)
renameat(r1, &(0x7f0000000140)='./file0\x00', r2, &(0x7f00000001c0)='./file0\x00')
ioctl$sock_SIOCGSKNS(r0, 0x894c, &(0x7f00000000c0)=0xffffffffffffff70)

[  181.250345] FAULT_INJECTION: forcing a failure.
[  181.250345] name failslab, interval 1, probability 0, space 0, times 0
[  181.261721] CPU: 1 PID: 13260 Comm: syz-executor3 Not tainted 4.16.0-rc7+ #372
[  181.269079] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  181.278426] Call Trace:
[  181.281015]  dump_stack+0x194/0x24d
[  181.284645]  ? arch_local_irq_restore+0x53/0x53
[  181.289317]  should_fail+0x8c0/0xa40
[  181.293030]  ? kstrdup+0x39/0x70
[  181.296402]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  181.301498]  ? cgroup_mkdir+0x553/0xfc0
[  181.305467]  ? vfs_mkdir+0x390/0x600
[  181.309179]  ? SyS_mkdirat+0x22b/0x2b0
[  181.313057]  ? do_syscall_64+0x281/0x940
[  181.317115]  ? entry_SYSCALL_64_after_hwframe+0x42/0xb7
[  181.322478]  ? find_held_lock+0x35/0x1d0
[  181.326530]  ? find_held_lock+0x35/0x1d0
[  181.330571]  ? __lock_is_held+0xb6/0x140
[  181.334613]  ? check_same_owner+0x320/0x320
[  181.338912]  ? rcu_note_context_switch+0x710/0x710
[  181.343818]  ? rcu_read_lock_sched_held+0x108/0x120
[  181.348812]  should_failslab+0xec/0x120
[  181.352769]  kmem_cache_alloc+0x47/0x760
[  181.356808]  ? memcpy+0x45/0x50
[  181.360063]  ? kstrdup+0x59/0x70
[  181.363412]  __kernfs_new_node+0xe2/0x570
[  181.367537]  ? kernfs_dop_revalidate+0x380/0x380
[  181.372271]  ? kasan_check_read+0x11/0x20
[  181.376400]  ? read_word_at_a_time+0x12/0x20
[  181.380785]  ? strscpy+0x186/0x500
[  181.384313]  kernfs_new_node+0x80/0xe0
[  181.388185]  __kernfs_create_file+0x4b/0x320
[  181.392576]  cgroup_addrm_files+0x3c5/0xa70
[  181.396878]  ? cgroup_file_write+0x710/0x710
[  181.401268]  ? getrawmonotonic64+0x460/0x460
[  181.405662]  ? kernfs_active+0x92/0x160
[  181.409613]  ? debug_lockdep_rcu_enabled+0x77/0x90
[  181.414516]  ? cgroup_kn_set_ugid+0x2c7/0x370
[  181.418997]  ? cgroup_file_name+0x1d0/0x1d0
[  181.423314]  css_populate_dir+0x340/0x420
[  181.427457]  cgroup_mkdir+0x553/0xfc0
[  181.431231]  ? __lock_is_held+0xb6/0x140
[  181.435280]  ? cgroup_destroy_locked+0x750/0x750
[  181.440023]  ? rcu_read_lock_sched_held+0x108/0x120
[  181.445030]  ? kmem_cache_free+0x258/0x2a0
[  181.449249]  ? set_nlink+0xc1/0x160
[  181.452861]  ? debug_lockdep_rcu_enabled+0x77/0x90
[  181.457772]  ? generic_permission+0x105/0x3c0
[  181.462243]  ? cgroup_destroy_locked+0x750/0x750
[  181.466973]  kernfs_iop_mkdir+0x153/0x1e0
[  181.471097]  vfs_mkdir+0x390/0x600
[  181.474622]  SyS_mkdirat+0x22b/0x2b0
[  181.478323]  ? SyS_mknod+0x480/0x480
[  181.482016]  ? trace_hardirqs_on+0xd/0x10
[  181.486146]  ? do_syscall_64+0xb7/0x940
[  181.490095]  ? SyS_mknod+0x480/0x480
[  181.493782]  do_syscall_64+0x281/0x940
[  181.497647]  ? vmalloc_sync_all+0x30/0x30
[  181.501769]  ? _raw_spin_unlock_irq+0x27/0x70
[  181.506238]  ? finish_task_switch+0x1c1/0x7e0
[  181.510707]  ? syscall_return_slowpath+0x550/0x550
[  181.515620]  ? syscall_return_slowpath+0x2ac/0x550
[  181.520530]  ? prepare_exit_to_usermode+0x350/0x350
[  181.525531]  ? entry_SYSCALL_64_after_hwframe+0x52/0xb7
[  181.530879]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  181.535697]  entry_SYSCALL_64_after_hwframe+0x42/0xb7
[  181.540860] RIP: 0033:0x454e79
[  181.544028] RSP: 002b:00007fa6ef25cc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
[  181.551725] RAX: ffffffffffffffda RBX: 00007fa6ef25d6d4 RCX: 0000000000454e79
[  181.558971] RDX: 0000000000000020 RSI: 0000000020000280 RDI: 0000000000000013
[  181.566216] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  181.573469] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000014
[  181.580717] R13: 00000000000003eb R14: 00000000006f7ea8 R15: 000000000000001a
[  181.588052] cgroup: cgroup_addrm_files: failed to add cgroup.stat, err=-12
2018/03/31 01:44:48 executing program 4:
r0 = syz_open_dev$tun(&(0x7f0000000280)='/dev/net/tun\x00', 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={"d202b999cf85000000000088f301e710", 0x102})
ioctl$TUNSETQUEUE(r0, 0x400454d9, &(0x7f0000000000)={'sit0\x00\x00\x00\x00\x00\x00\x00\x00\x00\b\x00', 0x402})
r1 = syz_open_dev$tun(&(0x7f0000000280)='/dev/net/tun\x00', 0x0, 0x0)
r2 = dup(r0)
ioctl$KVM_GET_MSR_INDEX_LIST(r2, 0xc004ae02, &(0x7f0000000100)=ANY=[@ANYBLOB="070000000000000000000000000000000000000000fdffffff00000000000000"])
setsockopt$netrom_NETROM_IDLE(r2, 0x103, 0x7, &(0x7f0000000040)=0x6, 0x4)
ioctl$TUNATTACHFILTER(0xffffffffffffffff, 0x401054d5, &(0x7f0000000180)={0x109f89a849be8742, &(0x7f0000000140)})
bind$pptp(0xffffffffffffffff, &(0x7f0000000080)={0x18, 0x2, {0x0, @local={0xac, 0x14, 0x14, 0xaa}}}, 0x1e)
dup2(r1, r0)

2018/03/31 01:44:48 executing program 0:
pipe(&(0x7f00000000c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
read$eventfd(r0, &(0x7f0000000200), 0x8)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
recvmmsg(0xffffffffffffffff, &(0x7f0000005a00), 0x0, 0x0, 0x0)
sendmsg$nl_netfilter(r1, &(0x7f0000000180)={&(0x7f0000000100)={0x10}, 0xc, &(0x7f0000000140)={&(0x7f00000001c0)={0x14, 0x3, 0x8, 0x8000000000001}, 0x14}, 0x1}, 0x0)
r2 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0xffff, 0x20000)
getsockopt$ipx_IPX_TYPE(r2, 0x100, 0x1, &(0x7f0000000040), &(0x7f0000000080)=0x4)

2018/03/31 01:44:48 executing program 1:
r0 = creat(&(0x7f0000000b40)='./file0\x00', 0x20)
ioctl$DRM_IOCTL_AGP_ALLOC(0xffffffffffffff9c, 0xc0206434, &(0x7f0000000b80)={0x5, <r1=>0x0, 0x0, 0x81})
ioctl$DRM_IOCTL_SG_FREE(r0, 0x40106439, &(0x7f0000000bc0)={0x3, r1})
ioctl$DRM_IOCTL_AGP_ALLOC(r0, 0xc0206434, &(0x7f0000000300)={0x6e3, r1, 0x2, 0x8})
r2 = socket$inet(0x2, 0x6, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f0000001280)=@broute={'broute\x00', 0x20, 0x2, 0xa7, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000280], 0x0, &(0x7f0000000240), &(0x7f0000001140)=ANY=[@ANYRES64=r0, @ANYPTR=&(0x7f0000000d40)=ANY=[@ANYPTR=&(0x7f0000000c80)=ANY=[@ANYPTR, @ANYRES16=r2, @ANYPTR64, @ANYRES16=r2, @ANYPTR, @ANYRES64=r0], @ANYPTR=&(0x7f0000000cc0)=ANY=[@ANYRES32=r1, @ANYPTR64, @ANYRES16=r2], @ANYRES64=r1, @ANYRES16, @ANYRES32=r2, @ANYPTR64=&(0x7f0000000d00)=ANY=[@ANYRES64, @ANYPTR64, @ANYRES64, @ANYRES32, @ANYPTR64, @ANYRES16=r1, @ANYPTR64, @ANYPTR, @ANYRES16], @ANYRES32], @ANYPTR=&(0x7f0000000d80)=ANY=[@ANYRES32, @ANYBLOB="a2b9a5b99bbb3db2787ce8f008f4983e42a9d6ce7da711a3a5e3aa32f8db6cf750cbc886400077adbd940c26e8a6b5943988693b3e1cc6eda0c8182ff4aaf0c89309b9cd67a8f3893a31f0dfc6792ab6241ff600d82bf5de57d262ec6209d672e40c4964f8cf27c801d32e9643e02a1d6b9f9377ef34a2f467b8759faedb7dcf43c7bf32f1b337bff2fd1898dbe15a113c4d0014facd7a6f409cd43226b6805c2bed3cd4ba566d3782c59dcf13c8769d0ca6783410bf6739f1614076fa4516e1a4bcad3c8f32b4afd754c4d7d33eb004174e16af", @ANYPTR64, @ANYRES64=r1, @ANYRES32, @ANYPTR, @ANYRES32=r2, @ANYRES32=r2], @ANYPTR=&(0x7f0000001080)=ANY=[@ANYPTR64=&(0x7f00000019c0)=ANY=[@ANYBLOB="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", @ANYRES32=r0], @ANYPTR64=&(0x7f0000000e80)=ANY=[@ANYRES32], @ANYPTR=&(0x7f0000000ec0)=ANY=[@ANYBLOB="3d0d2fbb0910b39b6900b82aaf24e4f274ec25439157fb7b891155889093edb26d27ed39eea35ded2af1b7c7328696a7ab8f70b22b13842822a538d9849c56a60bd3797603e61a6cfe7f45a279eb5744885d1e0d5c365d78aa4e7191af6dc6c4602fdd19ab3ff713cbb0840c5650531426d0668cb76537a30fd02d5b9985066a49a4b3c6ba039e55e27b15437793b5f1bb7196cc69d806aa9272dc1e5bc3aadc5ac6377990eeb8fc59daf36796329cbab47d18e302e3da9958f0c55a0eac11e0f1ae1ac5dce2c675b76ec2bfdce5", @ANYRES64=r0, @ANYRES32=r2, @ANYPTR64, @ANYPTR64, @ANYRES32=r1, @ANYRES16=r2, @ANYPTR64, @ANYRES32=r1, @ANYBLOB="a6d1fc2c50ca2ab80f5e121cd1fc0779bf597c4e8fa70a8b6456f6e63942afa24e2fa4053aea26c1efc4d4c130164a5f0484c0184b7ac675a4a8c3f93792bdbfd205ce16105ea409d58c00ba44223479062baaf61a8a7f4dcd682116a4d042b1450160304153fbd3ed9d769d3acebe6b66ba473553416c405efa641d18204e829d189237b8dd67d0cd4c7ce18634a03d1d530bb8f7ff994c643379a80f6ec263aff6367f39e748fa9e71b1294e04a6ce317da29913f5e239097defa2ca0bbf"], @ANYRES64=r2, @ANYBLOB="a87edacef67a0a814594cc7c25f32faea6fd1e750661cb883ea2816e9b8308886e2489167d890d72dc55ac1843e5545780ea2107edba5544c77a2ef1b61af431e3243ad40931299097b31db3d4bb3fc56e47bcfb043f6620a3e7cb1d0c3504a84accc33c5a8e99914b47530e5d261160a4a1283d4cb4c468b30724ff90aeff7126d6274c7afc2439"], @ANYBLOB="f82038aeb0c42ff52ef6fcc0d0bc77adafa6df118f80eca8bcbb724ba1dcfe9ab8112e6e4e83b6dcfe5011063a86e91a8a9f39aa3f66b0d1b6f6dfa72a75d713300645a5e0caa1be70aa6a0b77eb6770a4eab363876f4b7778b8a2cbb5a69ce84b4cdc8b0c60befd848c1e28cd4948481dd4e6227114ef9640da684d197c5121e08de4", @ANYRES16=r2, @ANYRES16=r2]}, 0x11f)
getsockopt$inet_sctp6_SCTP_CONTEXT(0xffffffffffffff9c, 0x84, 0x11, &(0x7f0000000000)={<r3=>0x0, 0x7}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r2, 0x84, 0xa, &(0x7f0000000140)={0x0, 0xa2b, 0x4, 0x7, 0x2, 0x20, 0x10000, 0x8a82, r3}, &(0x7f0000000180)=0x20)
ioctl$sock_ipx_SIOCSIFADDR(r0, 0x8916, &(0x7f00000002c0)={'erspan0\x00', {0x4, 0xdc, 0x80000000, "881fcc3fce35", 0xc000}})
setsockopt$inet_group_source_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000680)={0x1000, {{0x2, 0x4e23, @multicast1=0xe0000001}}, {{0x2, 0x4e22, @broadcast=0xffffffff}}}, 0x108)
ioctl$DRM_IOCTL_AGP_ENABLE(r0, 0x40086432, &(0x7f0000000100)=0x1f)
r4 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/vs/sync_version\x00', 0x2, 0x0)
ioctl$TIOCGSOFTCAR(r4, 0x5419, &(0x7f00000007c0))
r5 = socket$inet6(0x10, 0x2, 0x0)
sendmsg(r5, &(0x7f0000000080)={&(0x7f0000000240)=@un=@abs={0x1, 0x0, 0x4e23}, 0x80, &(0x7f0000000040)=[{&(0x7f00000001c0)="5500000018007f04002d1cb2a4a280930a0600007da843cf19d0f869390009402f002100040000001900050000fc1700000000dc1338d54400009b84136ef75afb83de448daa7227c43ab8220000060c", 0x50}], 0x1, &(0x7f00000000c0)}, 0x0)
socket$bt_cmtp(0x1f, 0x3, 0x5)
fcntl$addseals(r5, 0x409, 0x7)
syz_open_dev$sndmidi(&(0x7f0000000c00)='/dev/snd/midiC#D#\x00', 0x100000001, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f0000001640)=@broute={'broute\x00', 0x20, 0x1, 0x1e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20001700], 0x0, &(0x7f0000001980), &(0x7f0000001700)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1, [{{{0x13, 0x0, 0x0, 'vcan0\x00', 'ifb0\x00', 'syzkaller0\x00', 'vcan0\x00', @remote={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xbb}, [], @link_local={0x1, 0x80, 0xc2}, [], 0x70, 0xf8, 0x128}, [@common=@dnat={'dnat\x00', 0x10, {{@dev={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa]}, 0xffffffffffffffff}}}, @common=@IDLETIMER={'IDLETIMER\x00', 0x28, {{0x4, 'syz0\x00'}}}]}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8}}]}, {0x0, '\x00', 0x1, 0xffffbffffffffffe}]}, 0x260)
setsockopt$EBT_SO_SET_ENTRIES(0xffffffffffffffff, 0x0, 0x80, &(0x7f0000000840)=@nat={'nat\x00', 0x19, 0x1, 0x200, [0x20000940, 0x0, 0x0, 0x20000970, 0x200009a0], 0x0, &(0x7f0000000800), &(0x7f0000000940)=[{}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x14, 0x98ab, 'teql0\x00', 'ip6gretap0\x00', 'ip_vti0\x00', 'nr0\x00', @empty, [0x0, 0xff, 0x0, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2}, [0xff, 0x0, 0xff, 0x0, 0x0, 0xff], 0x100, 0x138, 0x170, [@time={'time\x00', 0x18, {{0x7, 0x3, 0x13782, 0x14fdf, 0x80, 0x4, 0x1}}}, @nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x2}}}]}, [@snat={'snat\x00', 0x10, {{@random="07901c8f0140"}}}]}, @common=@dnat={'dnat\x00', 0x10, {{@local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}, 0x10}}}}]}]}, 0x278)
syz_open_dev$dmmidi(&(0x7f0000000c40)='/dev/dmmidi#\x00', 0xae6d, 0x200)

2018/03/31 01:44:48 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/kvm\x00', 0x1ff, 0x0)
socketpair$inet6_icmp_raw(0xa, 0x3, 0x3a, &(0x7f0000000680)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
setsockopt$sock_linger(r1, 0x1, 0xd, &(0x7f00000006c0)={0x400, 0x9}, 0x8)
perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
mmap(&(0x7f0000000000/0x9d7000)=nil, 0x9d7000, 0x0, 0x4d072, 0xffffffffffffffff, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x7)
r4 = fcntl$getown(r3, 0x9)
clone(0x10a80000, &(0x7f0000000040)="876cfd3134415b9964f78f20caf5e889a3419deb754dd4bffda28c2bb60a1a540c98f893477aac8e77371752be19", &(0x7f0000000200), &(0x7f0000000380), &(0x7f0000001040)="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")
r5 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/qat_adf_ctl\x00', 0x40000, 0x0)
setsockopt$inet_sctp_SCTP_EVENTS(r5, 0x84, 0xb, &(0x7f0000000640)={0x7fff, 0x5, 0x1, 0x1, 0x6, 0x8, 0x9, 0x7, 0x243d, 0xffff, 0x12}, 0xb)
r6 = accept4$inet(0xffffffffffffff9c, &(0x7f0000000700)={0x0, 0x0, @broadcast}, &(0x7f0000000740)=0x10, 0x80000)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r6, 0x84, 0x64, &(0x7f0000000780)=[@in6={0xa, 0x4e22, 0xfffffffffffff7e1, @mcast2={0xff, 0x2, [], 0x1}, 0x8}, @in={0x2, 0x4e24, @broadcast=0xffffffff}], 0x2c)
ptrace$setregset(0x4205, r4, 0x200, &(0x7f00000005c0)={&(0x7f0000000080)="449ed0dd6831a7fb44eca4221b1fb01abfec082aa7d0ee6f0ba9db0ece7da2bd3f", 0x21})
r7 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r8 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x1fffd, 0x0)
socket$vsock_stream(0x28, 0x1, 0x0)
r9 = syz_open_dev$sndtimer(&(0x7f0000000600)='/dev/snd/timer\x00', 0x0, 0x0)
read(r9, &(0x7f0000ec6000)=""/50, 0x32)
r10 = fcntl$dupfd(r9, 0x0, r8)
ioctl$DRM_IOCTL_RES_CTX(r10, 0xc0106426, &(0x7f0000000880)={0x6, &(0x7f0000000840)=[{}, {}, {}, {}, {}, {}]})
ioctl$SNDRV_TIMER_IOCTL_SELECT(r10, 0x40345410, &(0x7f0000001000)={{0x100000001, 0x1, 0x100}})
ioperm(0x20, 0x3, 0x0)
setrlimit(0x0, &(0x7f00000008c0)={0x101, 0x4})
setsockopt$inet6_group_source_req(r1, 0x29, 0x2f, &(0x7f0000000900)={0x5, {{0xa, 0x4e23, 0x5, @local={0xfe, 0x80, [], 0xaa}, 0x800}}, {{0xa, 0x4e24, 0x2, @remote={0xfe, 0x80, [], 0xbb}, 0xc75f}}}, 0x108)
ioctl$SNDRV_TIMER_IOCTL_PARAMS(r9, 0x40505412, &(0x7f000001cfb0)={0x0, 0x6, 0x0, 0x0, 0xf})
time(&(0x7f0000000100))
r11 = dup2(r7, 0xffffffffffffffff)
ioctl$KVM_GET_VCPU_EVENTS(r11, 0x8040ae9f, &(0x7f0000000480))
preadv(r11, &(0x7f0000000400)=[{&(0x7f0000000140)=""/100, 0x64}, {&(0x7f00000000c0)=""/50, 0x32}, {&(0x7f0000000240)=""/66, 0x42}, {&(0x7f00000002c0)=""/115, 0x73}, {&(0x7f0000000340)=""/14, 0xe}, {&(0x7f00000004c0)=""/220, 0xdc}], 0x6, 0x16)

2018/03/31 01:44:48 executing program 6:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x200, 0x0)
socketpair$inet6_icmp_raw(0xa, 0x3, 0x3a, &(0x7f0000000680)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
setsockopt$sock_linger(r1, 0x1, 0xd, &(0x7f00000006c0)={0x400, 0x9}, 0x8)
perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
mmap(&(0x7f0000000000/0x9d7000)=nil, 0x9d7000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x7)
perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r4, &(0x7f0000e5b000)={0x2, 0x4e20, @multicast1=0xe0000001}, 0x10)
syz_open_dev$sg(&(0x7f0000000440)='/dev/sg#\x00', 0x0, 0x0)
connect$inet(r4, &(0x7f0000000100)={0x2, 0x4e20, @multicast2=0xe0000002}, 0x10)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000eb0fb8)={0x1, 0x3, &(0x7f00009ff000)=@framed={{0x18}, [], {0x95}}, &(0x7f00002bf000)='syzkaller\x00', 0x4, 0xb7, &(0x7f00006ab000)=""/183}, 0x48)
setsockopt$inet_tcp_int(r4, 0x6, 0x19, &(0x7f0000000240)=0x8, 0x4)
setsockopt$SO_BINDTODEVICE(r4, 0x1, 0x19, &(0x7f0000000000)="6970365f76746930000000000400", 0x10)
r6 = socket$kcm(0x29, 0x2, 0x0)
ioctl$sock_kcm_SIOCKCMATTACH(r6, 0x89e0, &(0x7f000031aff8)={r4, r5})
ioctl$sock_kcm_SIOCKCMCLONE(r6, 0x89e2, &(0x7f00000002c0)={<r7=>0xffffffffffffffff})
sendmsg$nl_xfrm(r7, &(0x7f0000000780)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000740)={&(0x7f0000000480)=@updpolicy={0xb8, 0x19, 0x0, 0x0, 0x0, {{@in=@loopback=0x7f000001, @in6=@mcast1={0xff, 0x1, [], 0x1}}}}, 0xffcb}, 0x1}, 0x0)
ioctl$sock_kcm_SIOCKCMUNATTACH(r7, 0x89e1, &(0x7f0000000040)={r4})
r8 = fcntl$getown(r3, 0x9)
r9 = accept4$inet(0xffffffffffffff9c, &(0x7f0000000700)={0x0, 0x0, @broadcast}, &(0x7f0000000740)=0x10, 0x80000)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r9, 0x84, 0x64, &(0x7f0000000300)=[@in6={0xa, 0x4e23, 0x0, @dev={0xfe, 0x80, [], 0xf}, 0x6}, @in={0x2, 0x4e23, @multicast1=0xe0000001}, @in={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x10}}, @in={0x2, 0x4e20, @multicast1=0xe0000001}, @in={0x2, 0x4e24}, @in={0x2, 0x4e24, @broadcast=0xffffffff}, @in6={0xa, 0x4e21, 0xed34, @local={0xfe, 0x80, [], 0xaa}, 0x3}, @in={0x2, 0x4e23, @loopback=0x7f000001}], 0x98)
ptrace$setregset(0x4205, r8, 0x0, &(0x7f00000005c0)={&(0x7f0000000080)="449ed0dd6831a7fb44eca4221b1fb01abfec082aa7d0ee6f0ba9db0ece7da2bd3f", 0x21})
r10 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r11 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x1fffd, 0x0)
syz_open_dev$sndtimer(&(0x7f00000000c0)='/dev/snd/timer\x00', 0x0, 0x0)
read(r0, &(0x7f0000000140)=""/50, 0x32)
fcntl$dupfd(r10, 0x0, r11)

2018/03/31 01:44:48 executing program 5:
r0 = syz_open_dev$amidi(&(0x7f0000000400)='/dev/amidi#\x00', 0x401, 0x40)
accept4$llc(r0, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, &(0x7f0000000480)=0x10, 0x80800)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f0000005fd8)={'vcan0\x00', <r2=>0x0})
ioctl$KVM_SET_DEVICE_ATTR(r0, 0x4018aee1, &(0x7f0000000500)={0x0, 0x100000001, 0x5a, &(0x7f00000004c0)})
connect$can_bcm(r1, &(0x7f0000001ff0)={0x1d, r2}, 0x10)
ioctl$TIOCGSID(0xffffffffffffff9c, 0x5429, &(0x7f00000002c0)=<r3=>0x0)
waitid(0x0, r3, 0x0, 0x1000009, &(0x7f0000000300))
r4 = syz_open_dev$vcsn(&(0x7f0000000000)='/dev/vcs#\x00', 0xcd8, 0x101000)
getsockopt$SO_BINDTODEVICE(r4, 0x1, 0x19, &(0x7f0000000280), 0x10)
ioctl$EVIOCGABS0(r4, 0x80184540, &(0x7f0000000240)=""/64)
bind$vsock_dgram(r1, &(0x7f00000003c0)={0x28, 0x0, 0x2711, @reserved=0x1}, 0x10)
exit(0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000200)={r4, 0x0, 0x47, 0xde, &(0x7f0000000080)="3541471374d1e455c1f501bb3e7418a21f930d9fb82ac3588f54ad5a1a9e778bdf654fa39f19bcbc6ee4636a10d409c877cfe11ba160f73d4cde40422564bfdb62d8e5f8ba5097", &(0x7f0000000100)=""/222, 0x4, 0x3f}, 0x28)
ioctl$KVM_SET_TSS_ADDR(r4, 0xae47, 0xd000)
ioctl$KVM_CHECK_EXTENSION(r4, 0xae03, 0xffffffffffffffff)
openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000580)='/dev/qat_adf_ctl\x00', 0x4600, 0x0)
sendmsg$can_raw(r1, &(0x7f0000001fc8)={&(0x7f000000a000)={0x1d}, 0x10, &(0x7f0000000040)={&(0x7f000000a000)=@canfd={{0x1}, 0x0, 0x0, 0x0, 0x0, "0327e1b22b5fcef7739c699f5ff986ca08990039576a7d5cb2bdac3fa80acf584ecb5fee496e6866856b76b5f700000000000000004e2f9663a918fa1efd9b0b"}, 0x48}, 0x1}, 0x0)
ioctl$VHOST_GET_VRING_ENDIAN(r0, 0x4008af14, &(0x7f0000000540)={0x0, 0x9})

2018/03/31 01:44:48 executing program 3 (fault-call:3 fault-nth:27):
mkdir(&(0x7f00000001c0)='./file0\x00', 0x0)
mount(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000380)='./file0\x00', &(0x7f0000000300)='cgroup2\x00', 0x0, 0x0)
r0 = open$dir(&(0x7f000001bff4)='./file0\x00', 0x0, 0x0)
mkdirat(r0, &(0x7f0000000280)='./file0\x00', 0x20)
getdents64(r0, &(0x7f00000007c0)=""/250, 0x1015a)
fadvise64(r0, 0x0, 0x41, 0x3)
unlinkat(r0, &(0x7f0000000080)='./file0\x00', 0x200)
r1 = open$dir(&(0x7f0000000180)='./file0\x00', 0x105600, 0x81)
fchdir(r0)
link(&(0x7f0000000740)='./file1\x00', &(0x7f0000000780)='./file0/file0\x00')
renameat2(r1, &(0x7f0000000200)='./file1\x00', r0, &(0x7f0000000240)='./file0\x00', 0xfd1092750066ec78)
pivot_root(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='./file0\x00')
r2 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000100)='/dev/rfkill\x00', 0x2c42, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_LIST(r2, 0xc0505510, &(0x7f0000000480)={0x1000, 0x1, 0x474, 0x1, &(0x7f0000000140)=[{}]})
unlink(&(0x7f00000000c0)='./file0\x00')
symlinkat(&(0x7f0000000400)='./file0/file0\x00', r0, &(0x7f0000000440)='./file0/file0\x00')
iopl(0x6)
recvmsg$kcm(0xffffffffffffffff, &(0x7f0000000680)={&(0x7f0000000500)=@pppol2tp={0x0, 0x0, {0x0, <r3=>0xffffffffffffffff, {0x0, 0x0, @broadcast}}}, 0x80, &(0x7f0000000600)=[{&(0x7f0000000580)=""/80, 0x50}, {&(0x7f00000008c0)=""/4096, 0x1000}], 0x2, &(0x7f0000000640)=""/45, 0x2d, 0x206e}, 0x20)
r4 = syz_open_dev$sndpcmp(&(0x7f00000018c0)='/dev/snd/pcmC#D#p\x00', 0x5, 0x10a00)
ioctl$KVM_GET_DEVICE_ATTR(r4, 0x4018aee2, &(0x7f0000001940)={0x0, 0x100, 0x9, &(0x7f0000001900)})
recvfrom$ipx(r3, &(0x7f00000006c0)=""/52, 0x34, 0x100, &(0x7f0000000700)={0x4, 0x9a2, 0x4, "dc108d9d4391", 0x5}, 0x10)
renameat(r0, &(0x7f0000001980)='./file1\x00', r4, &(0x7f00000019c0)='./file0/file0\x00')

2018/03/31 01:44:48 executing program 7:
clone(0x200, &(0x7f0000000100)="abbcd764d5b6fd853189b4a102b248f0de7c0a5cc328ca13455598dc3d760fa566c64d7cb06a7e15cdb085165670f42b32809442c69a5942d03eb3fd42bf0ebb0272fc4beb43f269f26f57bbb67316f7c76c8d570edaa564720b4dfd8f32453fc2354ddc753155ac051e9e9657989f0bbf1c03e4cd9f735c6d1b95719dbbb1c04092f54f44256722d954f0000000000000000000000000000000", &(0x7f00000000c0), &(0x7f00008c8000), &(0x7f0000828ffe))
mknod(&(0x7f0000000000)='./file0\x00', 0x1000000000001040, 0x0)
execve(&(0x7f000007b000)='./file0\x00', &(0x7f0000000180), &(0x7f0000000040))
r0 = gettid()
r1 = syz_open_dev$mice(&(0x7f0000149000)='/dev/input/mice\x00', 0x0, 0x0)
execve(&(0x7f00000001c0)='./file0\x00', &(0x7f0000001540)=[&(0x7f0000000200)='user\x00', &(0x7f0000000240)='vmnet0\x00', &(0x7f0000000280)='user\x00', &(0x7f0000001480)='user\x00'], &(0x7f00000015c0))
msgget$private(0x0, 0x400)
timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000))
uselib(&(0x7f00000002c0)='./file0/file0\x00')
mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0xffffffffffffffff, 0x32, 0xffffffffffffffff, 0x0)
getsockopt$inet_sctp6_SCTP_INITMSG(r1, 0x84, 0x2, &(0x7f0000000040), &(0x7f0000000080)=0x8)
tkill(r0, 0x1000000000015)

[  181.730383] FAULT_INJECTION: forcing a failure.
[  181.730383] name failslab, interval 1, probability 0, space 0, times 0
[  181.741678] CPU: 1 PID: 13281 Comm: syz-executor3 Not tainted 4.16.0-rc7+ #372
[  181.749036] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  181.758387] Call Trace:
[  181.760974]  dump_stack+0x194/0x24d
[  181.764603]  ? arch_local_irq_restore+0x53/0x53
[  181.769269]  should_fail+0x8c0/0xa40
[  181.772967]  ? kstrdup+0x39/0x70
[  181.776319]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  181.781399]  ? cgroup_mkdir+0x553/0xfc0
[  181.785350]  ? vfs_mkdir+0x390/0x600
[  181.789041]  ? SyS_mkdirat+0x22b/0x2b0
[  181.792904]  ? do_syscall_64+0x281/0x940
[  181.796944]  ? entry_SYSCALL_64_after_hwframe+0x42/0xb7
[  181.802288]  ? find_held_lock+0x35/0x1d0
[  181.806328]  ? find_held_lock+0x35/0x1d0
[  181.810368]  ? __lock_is_held+0xb6/0x140
[  181.814410]  ? check_same_owner+0x320/0x320
[  181.818709]  ? rcu_note_context_switch+0x710/0x710
[  181.823613]  ? rcu_read_lock_sched_held+0x108/0x120
[  181.828613]  should_failslab+0xec/0x120
[  181.832968]  kmem_cache_alloc+0x47/0x760
[  181.837009]  ? memcpy+0x45/0x50
[  181.840271]  ? kstrdup+0x59/0x70
[  181.843616]  __kernfs_new_node+0xe2/0x570
[  181.847743]  ? kernfs_dop_revalidate+0x380/0x380
[  181.852478]  ? kasan_check_read+0x11/0x20
[  181.856603]  ? read_word_at_a_time+0x12/0x20
[  181.860987]  ? strscpy+0x186/0x500
[  181.864510]  kernfs_new_node+0x80/0xe0
[  181.868381]  __kernfs_create_file+0x4b/0x320
[  181.872772]  cgroup_addrm_files+0x3c5/0xa70
[  181.877075]  ? cgroup_file_write+0x710/0x710
[  181.881467]  ? getrawmonotonic64+0x460/0x460
[  181.885855]  ? kernfs_active+0x92/0x160
[  181.889808]  ? debug_lockdep_rcu_enabled+0x77/0x90
[  181.894715]  ? cgroup_kn_set_ugid+0x2c7/0x370
[  181.899225]  ? cgroup_file_name+0x1d0/0x1d0
[  181.903532]  css_populate_dir+0x340/0x420
[  181.907659]  cgroup_mkdir+0x553/0xfc0
[  181.911435]  ? __lock_is_held+0xb6/0x140
[  181.915473]  ? cgroup_destroy_locked+0x750/0x750
[  181.920207]  ? rcu_read_lock_sched_held+0x108/0x120
[  181.925202]  ? kmem_cache_free+0x258/0x2a0
[  181.929412]  ? set_nlink+0xc1/0x160
[  181.933021]  ? debug_lockdep_rcu_enabled+0x77/0x90
[  181.937928]  ? generic_permission+0x105/0x3c0
[  181.942398]  ? cgroup_destroy_locked+0x750/0x750
[  181.947130]  kernfs_iop_mkdir+0x153/0x1e0
[  181.951256]  vfs_mkdir+0x390/0x600
[  181.954778]  SyS_mkdirat+0x22b/0x2b0
[  181.958470]  ? SyS_mknod+0x480/0x480
[  181.962161]  ? trace_hardirqs_on+0xd/0x10
[  181.966287]  ? do_syscall_64+0xb7/0x940
[  181.970236]  ? SyS_mknod+0x480/0x480
[  181.973925]  do_syscall_64+0x281/0x940
[  181.977789]  ? vmalloc_sync_all+0x30/0x30
[  181.981914]  ? _raw_spin_unlock_irq+0x27/0x70
[  181.986386]  ? finish_task_switch+0x1c1/0x7e0
[  181.990855]  ? syscall_return_slowpath+0x550/0x550
[  181.995762]  ? syscall_return_slowpath+0x2ac/0x550
[  182.000674]  ? prepare_exit_to_usermode+0x350/0x350
[  182.005669]  ? entry_SYSCALL_64_after_hwframe+0x52/0xb7
[  182.011019]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  182.015843]  entry_SYSCALL_64_after_hwframe+0x42/0xb7
[  182.021012] RIP: 0033:0x454e79
[  182.024182] RSP: 002b:00007fa6ef25cc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
[  182.031869] RAX: ffffffffffffffda RBX: 00007fa6ef25d6d4 RCX: 0000000000454e79
[  182.039113] RDX: 0000000000000020 RSI: 0000000020000280 RDI: 0000000000000013
[  182.046358] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  182.053602] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000014
[  182.060849] R13: 00000000000003eb R14: 00000000006f7ea8 R15: 000000000000001b
[  182.068535] cgroup: cgroup_addrm_files: failed to add cgroup.stat, err=-12
2018/03/31 01:44:48 executing program 0:
openat$rfkill(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/rfkill\x00', 0x0, 0x0)
r0 = mq_open(&(0x7f0000000000)='-$\x00', 0x6e93ebbbcc0884f2, 0x0, &(0x7f0000664fc0)={0x0, 0x1, 0x2})
mq_timedreceive(r0, &(0x7f000009d000)=""/224, 0xe0, 0x20d4671c, &(0x7f0000e6eff8)={0x77359400})
clone(0x0, &(0x7f0000000040)="e353d810a9ea6cb2994bbc948fcc4984f41a4813813302d3582c761ca8ea0f9c55d512b0e7fd1585822024971a37bee24ecef18ddccef82cfd0d6e0c96d326f5747497e368c411aedc958b0269073ac41fccfe8628bff716861981aa8e08ea970e6ef6863dbc9fdd2ed59c00d4183a6efdbea434e6b2bd89cf48cb2c711c079552476b031dd47c26adfb55", &(0x7f0000000100), &(0x7f0000000140), &(0x7f0000000180)="a09a472cbaf37fca1963c1b34aded40af510bf2b67b4ef9633e7bd01dd08d45fc5fe90c84676578998e4d6cd6bf2fb192879b1e6d30d068b42b418c3d58b22304151304e44b432df7be4b3ba0b4972aeba966f26bee7bff71b300b0fd8b8d370b288")
r1 = dup(r0)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
sendmsg$nl_xfrm(r1, &(0x7f0000003200)={&(0x7f0000003040)={0x10}, 0xc, &(0x7f00000031c0)={&(0x7f0000003080)=@flushpolicy={0x10, 0x1d, 0x800, 0x70bd27, 0x7}, 0x10}, 0x1, 0x0, 0x0, 0x8001}, 0x1)
fcntl$setlease(r0, 0x400, 0x0)
r3 = socket$vsock_stream(0x28, 0x1, 0x0)
setsockopt$SO_VM_SOCKETS_BUFFER_MAX_SIZE(r3, 0x28, 0x2, &(0x7f00000000c0), 0x4)
mq_timedreceive(r0, &(0x7f0000000280)=""/20, 0x14, 0x7, &(0x7f00000002c0)={0x0, 0x1c9c380})
setsockopt$inet_MCAST_MSFILTER(r2, 0x0, 0x30, &(0x7f0000000300)={0xcb, {{0x2, 0x4e23, @multicast1=0xe0000001}}, 0x0, 0x2, [{{0x2, 0x4e22, @broadcast=0xffffffff}}, {{0x2, 0x4e23, @broadcast=0xffffffff}}]}, 0x190)
mq_timedsend(r0, &(0x7f0000000200)="ee3f71e7dee0a9d236882787ffd61c865e0b1a04c13a58ef6b090f56b91e337a005a63b1e71899774c387ad8f857e576f09efb13941982000dc476c2f9bcca633c9c8a4abc7029c058e50d4c82af94d818cda5cbb1a46ca3c322d144f503e17730bf015238e7e59927d6aa48d1", 0x6d, 0x0, &(0x7f000066cff0)={0x0, 0x1c9c380})

[  182.077947] kernel msg: ebtables bug: please report to author: entries_size too small
2018/03/31 01:44:48 executing program 4:
perf_event_open(&(0x7f0000220000)={0x2, 0x78, 0x3e3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
add_key$keyring(&(0x7f0000000140)='keyring\x00', &(0x7f0000000180)={0x73, 0x79, 0x7a}, 0x0, 0x0, 0xfffffffffffffffa)
pipe(&(0x7f00000004c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getsockopt$inet_pktinfo(r0, 0x0, 0x8, &(0x7f0000000400)={0x0, @rand_addr, @dev}, &(0x7f0000000440)=0xc)
ioctl$GIO_SCRNMAP(r1, 0x4b40, &(0x7f00000002c0)=""/159)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_NODELAY(r2, 0x84, 0x3, &(0x7f0000000140)=0x2, 0x4)
bind$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e23}, 0x1c)
connect$inet6(r2, &(0x7f0000966fe4)={0xa, 0x4e23, 0x0, @ipv4={[], [0xff, 0xff], @dev={0xac, 0x14, 0x14, 0x11}}}, 0x1c)
setsockopt$inet_sctp6_SCTP_MAXSEG(r2, 0x84, 0xd, &(0x7f0000000b00)=@assoc_value={0x0, 0x395}, 0x8)
setsockopt$sock_int(r2, 0x1, 0x8, &(0x7f0000d5affc), 0x4)
r3 = dup(r2)
write$eventfd(r3, &(0x7f0000000280), 0xff93)
recvfrom(r2, &(0x7f0000000180)=""/226, 0xfffffffffffffff6, 0x0, 0x0, 0xfffffffffffffcd1)
write$selinux_access(r3, &(0x7f0000000080)={'system_u:object_r:dhcpd_initrc_exec_t:s0', 0x20, '/usr/sbin/cupsd', 0x20, 0x37, 0x38}, 0x3c)

2018/03/31 01:44:48 executing program 3 (fault-call:3 fault-nth:28):
mkdir(&(0x7f00000001c0)='./file0\x00', 0x0)
mount(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000380)='./file0\x00', &(0x7f0000000300)='cgroup2\x00', 0x0, 0x0)
r0 = open$dir(&(0x7f000001bff4)='./file0\x00', 0x0, 0x0)
mkdirat(r0, &(0x7f0000000280)='./file0\x00', 0x20)
getdents64(r0, &(0x7f00000007c0)=""/250, 0x1015a)
fadvise64(r0, 0x0, 0x41, 0x3)
unlinkat(r0, &(0x7f0000000080)='./file0\x00', 0x200)
r1 = open$dir(&(0x7f0000000180)='./file0\x00', 0x105600, 0x81)
fchdir(r0)
link(&(0x7f0000000740)='./file1\x00', &(0x7f0000000780)='./file0/file0\x00')
renameat2(r1, &(0x7f0000000200)='./file1\x00', r0, &(0x7f0000000240)='./file0\x00', 0xfd1092750066ec78)
pivot_root(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='./file0\x00')
r2 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000100)='/dev/rfkill\x00', 0x2c42, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_LIST(r2, 0xc0505510, &(0x7f0000000480)={0x1000, 0x1, 0x474, 0x1, &(0x7f0000000140)=[{}]})
unlink(&(0x7f00000000c0)='./file0\x00')
symlinkat(&(0x7f0000000400)='./file0/file0\x00', r0, &(0x7f0000000440)='./file0/file0\x00')
iopl(0x6)
recvmsg$kcm(0xffffffffffffffff, &(0x7f0000000680)={&(0x7f0000000500)=@pppol2tp={0x0, 0x0, {0x0, <r3=>0xffffffffffffffff, {0x0, 0x0, @broadcast}}}, 0x80, &(0x7f0000000600)=[{&(0x7f0000000580)=""/80, 0x50}, {&(0x7f00000008c0)=""/4096, 0x1000}], 0x2, &(0x7f0000000640)=""/45, 0x2d, 0x206e}, 0x20)
r4 = syz_open_dev$sndpcmp(&(0x7f00000018c0)='/dev/snd/pcmC#D#p\x00', 0x5, 0x10a00)
ioctl$KVM_GET_DEVICE_ATTR(r4, 0x4018aee2, &(0x7f0000001940)={0x0, 0x100, 0x9, &(0x7f0000001900)})
recvfrom$ipx(r3, &(0x7f00000006c0)=""/52, 0x34, 0x100, &(0x7f0000000700)={0x4, 0x9a2, 0x4, "dc108d9d4391", 0x5}, 0x10)
renameat(r0, &(0x7f0000001980)='./file1\x00', r4, &(0x7f00000019c0)='./file0/file0\x00')

[  182.117501] kernel msg: ebtables bug: please report to author: EBT_ENTRY_OR_ENTRIES shouldn't be set in distinguisher
[  182.197742] FAULT_INJECTION: forcing a failure.
[  182.197742] name failslab, interval 1, probability 0, space 0, times 0
[  182.209088] CPU: 0 PID: 13302 Comm: syz-executor3 Not tainted 4.16.0-rc7+ #372
[  182.216450] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  182.225803] Call Trace:
[  182.228399]  dump_stack+0x194/0x24d
[  182.232038]  ? arch_local_irq_restore+0x53/0x53
[  182.236717]  should_fail+0x8c0/0xa40
[  182.240430]  ? kstrdup+0x39/0x70
[  182.243803]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  182.248905]  ? cgroup_mkdir+0x553/0xfc0
[  182.252875]  ? vfs_mkdir+0x390/0x600
[  182.256587]  ? SyS_mkdirat+0x22b/0x2b0
[  182.260473]  ? do_syscall_64+0x281/0x940
[  182.264534]  ? entry_SYSCALL_64_after_hwframe+0x42/0xb7
[  182.269902]  ? find_held_lock+0x35/0x1d0
[  182.273970]  ? find_held_lock+0x35/0x1d0
[  182.278040]  ? __lock_is_held+0xb6/0x140
[  182.282114]  ? check_same_owner+0x320/0x320
[  182.286443]  ? rcu_note_context_switch+0x710/0x710
[  182.291371]  ? rcu_read_lock_sched_held+0x108/0x120
[  182.296398]  should_failslab+0xec/0x120
[  182.300372]  kmem_cache_alloc+0x47/0x760
[  182.304433]  ? memcpy+0x45/0x50
[  182.307713]  ? kstrdup+0x59/0x70
[  182.311087]  __kernfs_new_node+0xe2/0x570
[  182.315237]  ? kernfs_dop_revalidate+0x380/0x380
[  182.320006]  ? kasan_check_read+0x11/0x20
[  182.324159]  ? read_word_at_a_time+0x12/0x20
[  182.328565]  ? strscpy+0x186/0x500
[  182.332118]  kernfs_new_node+0x80/0xe0
[  182.336012]  __kernfs_create_file+0x4b/0x320
[  182.340425]  cgroup_addrm_files+0x3c5/0xa70
[  182.344756]  ? cgroup_file_write+0x710/0x710
[  182.349170]  ? getrawmonotonic64+0x460/0x460
[  182.353579]  ? kernfs_active+0x92/0x160
[  182.357556]  ? debug_lockdep_rcu_enabled+0x77/0x90
[  182.362483]  ? cgroup_kn_set_ugid+0x2c7/0x370
[  182.366978]  ? cgroup_file_name+0x1d0/0x1d0
[  182.371310]  css_populate_dir+0x340/0x420
[  182.375460]  cgroup_mkdir+0x553/0xfc0
[  182.379257]  ? __lock_is_held+0xb6/0x140
[  182.383312]  ? cgroup_destroy_locked+0x750/0x750
[  182.388050]  ? rcu_read_lock_sched_held+0x108/0x120
[  182.393045]  ? kmem_cache_free+0x258/0x2a0
[  182.397260]  ? set_nlink+0xc1/0x160
[  182.400864]  ? debug_lockdep_rcu_enabled+0x77/0x90
[  182.405771]  ? generic_permission+0x105/0x3c0
[  182.410246]  ? cgroup_destroy_locked+0x750/0x750
[  182.414979]  kernfs_iop_mkdir+0x153/0x1e0
[  182.419110]  vfs_mkdir+0x390/0x600
[  182.422630]  SyS_mkdirat+0x22b/0x2b0
[  182.426323]  ? SyS_mknod+0x480/0x480
[  182.430015]  ? trace_hardirqs_on+0xd/0x10
[  182.434145]  ? do_syscall_64+0xb7/0x940
[  182.438097]  ? SyS_mknod+0x480/0x480
[  182.441787]  do_syscall_64+0x281/0x940
[  182.445653]  ? trace_event_raw_event_sys_exit+0x260/0x260
[  182.451167]  ? syscall_return_slowpath+0x550/0x550
[  182.456073]  ? syscall_return_slowpath+0x2ac/0x550
[  182.460986]  ? entry_SYSCALL_64_after_hwframe+0x52/0xb7
[  182.466330]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  182.471153]  entry_SYSCALL_64_after_hwframe+0x42/0xb7
[  182.476320] RIP: 0033:0x454e79
[  182.479485] RSP: 002b:00007fa6ef25cc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
[  182.487170] RAX: ffffffffffffffda RBX: 00007fa6ef25d6d4 RCX: 0000000000454e79
2018/03/31 01:44:48 executing program 6:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x200, 0x0)
socketpair$inet6_icmp_raw(0xa, 0x3, 0x3a, &(0x7f0000000680)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
setsockopt$sock_linger(r1, 0x1, 0xd, &(0x7f00000006c0)={0x400, 0x9}, 0x8)
perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
mmap(&(0x7f0000000000/0x9d7000)=nil, 0x9d7000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x7)
perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r4, &(0x7f0000e5b000)={0x2, 0x4e20, @multicast1=0xe0000001}, 0x10)
syz_open_dev$sg(&(0x7f0000000440)='/dev/sg#\x00', 0x0, 0x0)
connect$inet(r4, &(0x7f0000000100)={0x2, 0x4e20, @multicast2=0xe0000002}, 0x10)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000eb0fb8)={0x1, 0x3, &(0x7f00009ff000)=@framed={{0x18}, [], {0x95}}, &(0x7f00002bf000)='syzkaller\x00', 0x4, 0xb7, &(0x7f00006ab000)=""/183}, 0x48)
setsockopt$inet_tcp_int(r4, 0x6, 0x19, &(0x7f0000000240)=0x8, 0x4)
setsockopt$SO_BINDTODEVICE(r4, 0x1, 0x19, &(0x7f0000000000)="6970365f76746930000000000400", 0x10)
r6 = socket$kcm(0x29, 0x2, 0x0)
ioctl$sock_kcm_SIOCKCMATTACH(r6, 0x89e0, &(0x7f000031aff8)={r4, r5})
ioctl$sock_kcm_SIOCKCMCLONE(r6, 0x89e2, &(0x7f00000002c0)={<r7=>0xffffffffffffffff})
sendmsg$nl_xfrm(r7, &(0x7f0000000780)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000740)={&(0x7f0000000480)=@updpolicy={0xb8, 0x19, 0x0, 0x0, 0x0, {{@in=@loopback=0x7f000001, @in6=@mcast1={0xff, 0x1, [], 0x1}}}}, 0xffcb}, 0x1}, 0x0)
ioctl$sock_kcm_SIOCKCMUNATTACH(r7, 0x89e1, &(0x7f0000000040)={r4})
r8 = fcntl$getown(r3, 0x9)
r9 = accept4$inet(0xffffffffffffff9c, &(0x7f0000000700)={0x0, 0x0, @broadcast}, &(0x7f0000000740)=0x10, 0x80000)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r9, 0x84, 0x64, &(0x7f0000000300)=[@in6={0xa, 0x4e23, 0x0, @dev={0xfe, 0x80, [], 0xf}, 0x6}, @in={0x2, 0x4e23, @multicast1=0xe0000001}, @in={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x10}}, @in={0x2, 0x4e20, @multicast1=0xe0000001}, @in={0x2, 0x4e24}, @in={0x2, 0x4e24, @broadcast=0xffffffff}, @in6={0xa, 0x4e21, 0xed34, @local={0xfe, 0x80, [], 0xaa}, 0x3}, @in={0x2, 0x4e23, @loopback=0x7f000001}], 0x98)
ptrace$setregset(0x4205, r8, 0x0, &(0x7f00000005c0)={&(0x7f0000000080)="449ed0dd6831a7fb44eca4221b1fb01abfec082aa7d0ee6f0ba9db0ece7da2bd3f", 0x21})
r10 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r11 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x1fffd, 0x0)
syz_open_dev$sndtimer(&(0x7f00000000c0)='/dev/snd/timer\x00', 0x0, 0x0)
read(r0, &(0x7f0000000140)=""/50, 0x32)
fcntl$dupfd(r10, 0x0, r11)

2018/03/31 01:44:48 executing program 1:
r0 = creat(&(0x7f0000000b40)='./file0\x00', 0x20)
ioctl$DRM_IOCTL_AGP_ALLOC(0xffffffffffffff9c, 0xc0206434, &(0x7f0000000b80)={0x5, <r1=>0x0, 0x0, 0x81})
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000fc0)=@filter={'filter\x00', 0xe, 0x2, 0x2e0, [0x0, 0x20000cc0, 0x20000e30, 0x20000e60], 0x0, &(0x7f0000000c80), &(0x7f0000000cc0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x0, 0x60, 0x8847, 'gre0\x00', 'tunl0\x00', 'ifb0\x00', 'ip_vti0\x00', @empty, [0xff, 0xff, 0xff, 0x0, 0x0, 0xff], @random="d38e074ac8f9", [0xff, 0xff, 0x0, 0x0, 0xff, 0xff], 0x110, 0x110, 0x140, [@state={'state\x00', 0x8, {{0x58}}}, @stp={'stp\x00', 0x48, {{0x100000000, {0x3, 0x3, 0x8, @dev={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0x19}, [0x0, 0x0, 0x0, 0xff], 0x9, 0x2, 0x4478afc4, 0x5, @dev={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0x12}, [0xff, 0x0, 0xff, 0xff, 0xff], 0x4e24, 0x4e24, 0x1000, 0xe70, 0x8000, 0x10001, 0x5, 0x9, 0x0, 0x2f6}, 0x80, 0x20}}}]}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x9}}}}]}, {0x0, '\x00', 0x1}, {0x0, '\x00', 0x1, 0xfffffffffffffffc, 0x1, [{{{0x3, 0x20, 0x60, 'dummy0\x00', 'yam0\x00', 'syzkaller0\x00', 'vcan0\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}, [0xff, 0xff, 0xf43a302597bdd3f4, 0xff, 0xff], @random="85014397398b", [0xff, 0x0, 0x0, 0xff], 0xc0, 0xc0, 0x110, [@nfacct={'nfacct\x00', 0x28, {{'syz0\x00', 0x40}}}]}}, @common=@IDLETIMER={'IDLETIMER\x00', 0x28, {{0xc86, 'syz0\x00', 0x3}}}}]}]}, 0x358)
ioctl$DRM_IOCTL_SG_FREE(r0, 0x40106439, &(0x7f0000000bc0)={0x3, r1})
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000001080)=0x820, 0x4)
ioctl$DRM_IOCTL_SG_FREE(r0, 0x40106439, &(0x7f0000001040)={0x8, r1})
r2 = socket$inet(0x2, 0x6, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f00000008c0)=@broute={'broute\x00', 0x20, 0x2, 0x3e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000280], 0x0, &(0x7f0000000240), &(0x7f0000000280)=ANY=[@ANYBLOB="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"]}, 0x460)
getsockopt$inet_sctp6_SCTP_CONTEXT(0xffffffffffffff9c, 0x84, 0x11, &(0x7f0000000000)={<r3=>0x0, 0x7}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r2, 0x84, 0xa, &(0x7f0000000140)={0x0, 0xa2b, 0x4, 0x7, 0x2, 0x20, 0x10000, 0x8a82, r3}, &(0x7f0000000180)=0x20)
setsockopt$inet_group_source_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000680)={0x1000, {{0x2, 0x4e23, @multicast1=0xe0000001}}, {{0x2, 0x4e22, @broadcast=0xffffffff}}}, 0x108)
ioctl$DRM_IOCTL_AGP_ENABLE(0xffffffffffffffff, 0x40086432, &(0x7f0000000100))
r4 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/vs/sync_version\x00', 0x2, 0x0)
ioctl$TIOCGSOFTCAR(r4, 0x5419, &(0x7f00000007c0))
r5 = socket$inet6(0x10, 0x2, 0x0)
sendmsg(r5, &(0x7f0000000080)={&(0x7f0000000240)=@un=@abs={0x1, 0x0, 0x4e23}, 0x80, &(0x7f0000000040)=[{&(0x7f00000001c0)="5500000018007f04002d1cb2a4a280930a0600007da843cf19d0f869390009402f002100040000001900050000fc1700000000dc1338d54400009b84136ef75afb83de448daa7227c43ab8220000060c", 0x50}], 0x1, &(0x7f00000000c0)}, 0x0)
socket$bt_cmtp(0x1f, 0x3, 0x5)
fcntl$addseals(r5, 0x409, 0x7)
syz_open_dev$sndmidi(&(0x7f0000000c00)='/dev/snd/midiC#D#\x00', 0x100000001, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f0000001640)=@broute={'broute\x00', 0x20, 0x1, 0x1e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20001700], 0x0, &(0x7f0000001980), &(0x7f0000001700)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1, [{{{0x13, 0x0, 0x0, 'vcan0\x00', 'ifb0\x00', 'syzkaller0\x00', 'vcan0\x00', @remote={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xbb}, [], @link_local={0x1, 0x80, 0xc2}, [], 0x70, 0xf8, 0x128}, [@common=@dnat={'dnat\x00', 0x10, {{@dev={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa]}, 0xffffffffffffffff}}}, @common=@IDLETIMER={'IDLETIMER\x00', 0x28, {{0x4, 'syz0\x00'}}}]}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8}}]}, {0x0, '\x00', 0x1, 0xffffbffffffffffe}]}, 0x260)
setsockopt$EBT_SO_SET_ENTRIES(0xffffffffffffffff, 0x0, 0x80, &(0x7f0000000840)=@nat={'nat\x00', 0x19, 0x1, 0x200, [0x20000940, 0x0, 0x0, 0x20000970, 0x200009a0], 0x0, &(0x7f0000000800), &(0x7f0000000940)=[{}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x14, 0x98ab, 'teql0\x00', 'ip6gretap0\x00', 'ip_vti0\x00', 'nr0\x00', @empty, [0x0, 0xff, 0x0, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2}, [0xff, 0x0, 0xff, 0x0, 0x0, 0xff], 0x100, 0x138, 0x170, [@time={'time\x00', 0x18, {{0x7, 0x3, 0x13782, 0x14fdf, 0x80, 0x4, 0x1}}}, @nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x2}}}]}, [@snat={'snat\x00', 0x10, {{@random="07901c8f0140"}}}]}, @common=@dnat={'dnat\x00', 0x10, {{@local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}, 0x10}}}}]}]}, 0x278)
syz_open_dev$dmmidi(&(0x7f0000000c40)='/dev/dmmidi#\x00', 0xae6d, 0x200)

2018/03/31 01:44:49 executing program 1:
r0 = creat(&(0x7f0000000b40)='./file0\x00', 0x20)
ioctl$DRM_IOCTL_AGP_ALLOC(0xffffffffffffff9c, 0xc0206434, &(0x7f0000000b80)={0x5, <r1=>0x0, 0x0, 0x81})
ioctl$DRM_IOCTL_SG_FREE(r0, 0x40106439, &(0x7f0000000bc0)={0x3, r1})
r2 = socket$inet(0x2, 0x6, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f00000008c0)=@broute={'broute\x00', 0x20, 0x2, 0x3e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000280], 0x0, &(0x7f0000000240), &(0x7f0000000280)=ANY=[@ANYBLOB="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"]}, 0x460)
getsockopt$inet_sctp6_SCTP_CONTEXT(0xffffffffffffff9c, 0x84, 0x11, &(0x7f0000000000)={<r3=>0x0, 0x7}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r2, 0x84, 0xa, &(0x7f0000000140)={0x0, 0xa2b, 0x4, 0x7, 0x2, 0x20, 0x10000, 0x8a82, r3}, &(0x7f0000000180)=0x20)
setsockopt$inet_group_source_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000680)={0x1000, {{0x2, 0x4e23, @multicast1=0xe0000001}}, {{0x2, 0x4e22, @broadcast=0xffffffff}}}, 0x108)
ioctl$DRM_IOCTL_AGP_ENABLE(0xffffffffffffffff, 0x40086432, &(0x7f0000000100))
r4 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/vs/sync_version\x00', 0x2, 0x0)
ioctl$TIOCGSOFTCAR(r4, 0x5419, &(0x7f00000007c0))
r5 = socket$inet6(0x10, 0x2, 0x0)
sendmsg(r5, &(0x7f0000000080)={&(0x7f0000000240)=@un=@abs={0x1, 0x0, 0x4e23}, 0x80, &(0x7f0000000040)=[{&(0x7f00000001c0)="5500000018007f04002d1cb2a4a280930a0600007da843cf19d0f869390009402f002100040000001900050000fc1700000000dc1338d54400009b84136ef75afb83de448daa7227c43ab8220000060c", 0x50}], 0x1, &(0x7f00000000c0)}, 0x0)
socket$bt_cmtp(0x1f, 0x3, 0x5)
fcntl$addseals(r5, 0x409, 0x7)
syz_open_dev$sndmidi(&(0x7f0000000c00)='/dev/snd/midiC#D#\x00', 0x100000001, 0x0)
ioctl$EVIOCGBITSW(r0, 0x80404525, &(0x7f0000000c80)=""/184)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f0000001640)=@broute={'broute\x00', 0x20, 0x1, 0x1e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20001700], 0x0, &(0x7f0000001980), &(0x7f0000001700)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1, [{{{0x13, 0x0, 0x0, 'vcan0\x00', 'ifb0\x00', 'syzkaller0\x00', 'vcan0\x00', @remote={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xbb}, [], @link_local={0x1, 0x80, 0xc2}, [], 0x70, 0xf8, 0x128}, [@common=@dnat={'dnat\x00', 0x10, {{@dev={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa]}, 0xffffffffffffffff}}}, @common=@IDLETIMER={'IDLETIMER\x00', 0x28, {{0x4, 'syz0\x00'}}}]}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8}}]}, {0x0, '\x00', 0x1, 0xffffbffffffffffe}]}, 0x260)
setsockopt$EBT_SO_SET_ENTRIES(0xffffffffffffffff, 0x0, 0x80, &(0x7f0000000840)=@nat={'nat\x00', 0x19, 0x1, 0x200, [0x20000940, 0x0, 0x0, 0x20000970, 0x200009a0], 0x0, &(0x7f0000000800), &(0x7f0000000940)=[{}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x14, 0x98ab, 'teql0\x00', 'ip6gretap0\x00', 'ip_vti0\x00', 'nr0\x00', @empty, [0x0, 0xff, 0x0, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2}, [0xff, 0x0, 0xff, 0x0, 0x0, 0xff], 0x100, 0x138, 0x170, [@time={'time\x00', 0x18, {{0x7, 0x3, 0x13782, 0x14fdf, 0x80, 0x4, 0x1}}}, @nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x2}}}]}, [@snat={'snat\x00', 0x10, {{@random="07901c8f0140"}}}]}, @common=@dnat={'dnat\x00', 0x10, {{@local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}, 0x10}}}}]}]}, 0x278)
syz_open_dev$dmmidi(&(0x7f0000000c40)='/dev/dmmidi#\x00', 0xae6d, 0x200)

2018/03/31 01:44:49 executing program 2:
r0 = syz_open_dev$binder(&(0x7f000000cff3)='/dev/binder#\x00', 0xffffffffffffffff, 0x0)
name_to_handle_at(0xffffffffffffffff, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)={0x41, 0x0, "babba0ee85f0580bae4a2c66e156052135c4ee5284a754727cb451ac5ba0ede91b9972b754238c3666b751d229b3ad88fe66143faa6a88b027"}, &(0x7f0000000240), 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x4081, 0x38)
write$cgroup_type(r1, &(0x7f0000000200)='threaded\x00', 0x9)
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f00000002c0)={0x10, 0x0, &(0x7f0000000180), 0xffffffffffffff9f, 0x0, &(0x7f0000000200)})
r2 = syz_open_dev$vcsn(&(0x7f0000000000)='/dev/vcs#\x00', 0xab61, 0x100)
setsockopt$inet6_MCAST_LEAVE_GROUP(r2, 0x29, 0x2d, &(0x7f0000000040)={0x6f6d, {{0xa, 0x4e22, 0x7, @local={0xfe, 0x80, [], 0xaa}}}}, 0x88)

[  182.494414] RDX: 0000000000000020 RSI: 0000000020000280 RDI: 0000000000000013
[  182.501658] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  182.508904] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000014
[  182.516148] R13: 00000000000003eb R14: 00000000006f7ea8 R15: 000000000000001c
[  182.523633] cgroup: cgroup_addrm_files: failed to add cpu.stat, err=-12
[  182.589768] binder: 13317:13318 unknown command 39
[  182.609090] binder: 13317:13318 ioctl c0306201 200002c0 returned -22
[  182.654159] binder: 13317:13320 unknown command 39
[  182.678007] binder: 13317:13320 ioctl c0306201 200002c0 returned -22
2018/03/31 01:44:49 executing program 3 (fault-call:3 fault-nth:29):
mkdir(&(0x7f00000001c0)='./file0\x00', 0x0)
mount(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000380)='./file0\x00', &(0x7f0000000300)='cgroup2\x00', 0x0, 0x0)
r0 = open$dir(&(0x7f000001bff4)='./file0\x00', 0x0, 0x0)
mkdirat(r0, &(0x7f0000000280)='./file0\x00', 0x20)
getdents64(r0, &(0x7f00000007c0)=""/250, 0x1015a)
fadvise64(r0, 0x0, 0x41, 0x3)
unlinkat(r0, &(0x7f0000000080)='./file0\x00', 0x200)
r1 = open$dir(&(0x7f0000000180)='./file0\x00', 0x105600, 0x81)
fchdir(r0)
link(&(0x7f0000000740)='./file1\x00', &(0x7f0000000780)='./file0/file0\x00')
renameat2(r1, &(0x7f0000000200)='./file1\x00', r0, &(0x7f0000000240)='./file0\x00', 0xfd1092750066ec78)
pivot_root(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='./file0\x00')
r2 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000100)='/dev/rfkill\x00', 0x2c42, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_LIST(r2, 0xc0505510, &(0x7f0000000480)={0x1000, 0x1, 0x474, 0x1, &(0x7f0000000140)=[{}]})
unlink(&(0x7f00000000c0)='./file0\x00')
symlinkat(&(0x7f0000000400)='./file0/file0\x00', r0, &(0x7f0000000440)='./file0/file0\x00')
iopl(0x6)
recvmsg$kcm(0xffffffffffffffff, &(0x7f0000000680)={&(0x7f0000000500)=@pppol2tp={0x0, 0x0, {0x0, <r3=>0xffffffffffffffff, {0x0, 0x0, @broadcast}}}, 0x80, &(0x7f0000000600)=[{&(0x7f0000000580)=""/80, 0x50}, {&(0x7f00000008c0)=""/4096, 0x1000}], 0x2, &(0x7f0000000640)=""/45, 0x2d, 0x206e}, 0x20)
r4 = syz_open_dev$sndpcmp(&(0x7f00000018c0)='/dev/snd/pcmC#D#p\x00', 0x5, 0x10a00)
ioctl$KVM_GET_DEVICE_ATTR(r4, 0x4018aee2, &(0x7f0000001940)={0x0, 0x100, 0x9, &(0x7f0000001900)})
recvfrom$ipx(r3, &(0x7f00000006c0)=""/52, 0x34, 0x100, &(0x7f0000000700)={0x4, 0x9a2, 0x4, "dc108d9d4391", 0x5}, 0x10)
renameat(r0, &(0x7f0000001980)='./file1\x00', r4, &(0x7f00000019c0)='./file0/file0\x00')

2018/03/31 01:44:49 executing program 1:
r0 = creat(&(0x7f0000000b40)='./file0\x00', 0x20)
ioctl$DRM_IOCTL_AGP_ALLOC(0xffffffffffffff9c, 0xc0206434, &(0x7f0000000b80)={0x5, <r1=>0x0, 0x0, 0x81})
ioctl$DRM_IOCTL_SG_FREE(r0, 0x40106439, &(0x7f0000000bc0)={0x3, r1})
r2 = socket$inet(0x2, 0x6, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f00000008c0)=@broute={'broute\x00', 0x20, 0x2, 0x3e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000280], 0x0, &(0x7f0000000240), &(0x7f0000000280)=ANY=[@ANYBLOB="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"]}, 0x460)
getsockopt$inet_sctp6_SCTP_CONTEXT(0xffffffffffffff9c, 0x84, 0x11, &(0x7f0000000000)={<r3=>0x0, 0x7}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r2, 0x84, 0xa, &(0x7f0000000140)={0x0, 0xa2b, 0x4, 0x7, 0x2, 0x20, 0x10000, 0x8a82, <r4=>r3}, &(0x7f0000000180)=0x20)
getsockopt$inet_sctp_SCTP_GET_LOCAL_ADDRS(r2, 0x84, 0x6d, &(0x7f0000000c80)={r4, 0xae, "ded0225b9fd77155fb533f739737a6abeaf21f5d5b7439da4ca780df635df2b5ea518d23836d4ca95d7e52496f7f75fb723cdd70366ee296c9e4b2cbb7d9dafa9c99cb412a3ff29ebf4c9c4586186e3ac2273b441f37b36386030019ca425dcc8ac09f23ca67dd46ab2215c36bc5a331df08cf9aa48cc8c986b6a1e19184236d7244d90c67cf69e1dc16aa16edf4bb9efd53010073b4dd6462943bd804a9e95e1fa1617d59ed656e1dce303a08e7"}, &(0x7f0000000d40)=0xb6)
setsockopt$inet_group_source_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000680)={0x1000, {{0x2, 0x4e23, @multicast1=0xe0000001}}, {{0x2, 0x4e22, @broadcast=0xffffffff}}}, 0x108)
ioctl$DRM_IOCTL_AGP_ENABLE(0xffffffffffffffff, 0x40086432, &(0x7f0000000100))
r5 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/vs/sync_version\x00', 0x2, 0x0)
ioctl$TIOCGSOFTCAR(r5, 0x5419, &(0x7f00000007c0))
r6 = socket$inet6(0x10, 0x2, 0x0)
sendmsg(r6, &(0x7f0000000080)={&(0x7f0000000240)=@un=@abs={0x1, 0x0, 0x4e23}, 0x80, &(0x7f0000000040)=[{&(0x7f00000001c0)="5500000018007f04002d1cb2a4a280930a0600007da843cf19d0f869390009402f002100040000001900050000fc1700000000dc1338d54400009b84136ef75afb83de448daa7227c43ab8220000060c", 0x50}], 0x1, &(0x7f00000000c0)}, 0x0)
socket$bt_cmtp(0x1f, 0x3, 0x5)
fcntl$addseals(r6, 0x409, 0x7)
syz_open_dev$sndmidi(&(0x7f0000000c00)='/dev/snd/midiC#D#\x00', 0x100000001, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f0000001640)=@broute={'broute\x00', 0x20, 0x1, 0x1e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20001700], 0x0, &(0x7f0000001980), &(0x7f0000001700)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1, [{{{0x13, 0x0, 0x0, 'vcan0\x00', 'ifb0\x00', 'syzkaller0\x00', 'vcan0\x00', @remote={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xbb}, [], @link_local={0x1, 0x80, 0xc2}, [], 0x70, 0xf8, 0x128}, [@common=@dnat={'dnat\x00', 0x10, {{@dev={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa]}, 0xffffffffffffffff}}}, @common=@IDLETIMER={'IDLETIMER\x00', 0x28, {{0x4, 'syz0\x00'}}}]}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8}}]}, {0x0, '\x00', 0x1, 0xffffbffffffffffe}]}, 0x260)
setsockopt$EBT_SO_SET_ENTRIES(0xffffffffffffffff, 0x0, 0x80, &(0x7f0000000840)=@nat={'nat\x00', 0x19, 0x1, 0x200, [0x20000940, 0x0, 0x0, 0x20000970, 0x200009a0], 0x0, &(0x7f0000000800), &(0x7f0000000940)=[{}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x14, 0x98ab, 'teql0\x00', 'ip6gretap0\x00', 'ip_vti0\x00', 'nr0\x00', @empty, [0x0, 0xff, 0x0, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2}, [0xff, 0x0, 0xff, 0x0, 0x0, 0xff], 0x100, 0x138, 0x170, [@time={'time\x00', 0x18, {{0x7, 0x3, 0x13782, 0x14fdf, 0x80, 0x4, 0x1}}}, @nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x2}}}]}, [@snat={'snat\x00', 0x10, {{@random="07901c8f0140"}}}]}, @common=@dnat={'dnat\x00', 0x10, {{@local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}, 0x10}}}}]}]}, 0x278)
syz_open_dev$dmmidi(&(0x7f0000000c40)='/dev/dmmidi#\x00', 0xae6d, 0x200)

2018/03/31 01:44:49 executing program 7:
clone(0x200, &(0x7f0000000100)="abbcd764d5b6fd853189b4a102b248f0de7c0a5cc328ca13455598dc3d760fa566c64d7cb06a7e15cdb085165670f42b32809442c69a5942d03eb3fd42bf0ebb0272fc4beb43f269f26f57bbb67316f7c76c8d570edaa564720b4dfd8f32453fc2354ddc753155ac051e9e9657989f0bbf1c03e4cd9f735c6d1b95719dbbb1c04092f54f44256722d954f0000000000000000000000000000000", &(0x7f00000000c0), &(0x7f00008c8000), &(0x7f0000828ffe))
mknod(&(0x7f0000000000)='./file0\x00', 0x1000000000001040, 0x0)
execve(&(0x7f000007b000)='./file0\x00', &(0x7f0000000180), &(0x7f0000000040))
r0 = gettid()
r1 = syz_open_dev$mice(&(0x7f0000149000)='/dev/input/mice\x00', 0x0, 0x0)
execve(&(0x7f00000001c0)='./file0\x00', &(0x7f0000001540)=[&(0x7f0000000200)='user\x00', &(0x7f0000000240)='vmnet0\x00', &(0x7f0000000280)='user\x00', &(0x7f0000001480)='user\x00'], &(0x7f00000015c0))
msgget$private(0x0, 0x400)
timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000))
uselib(&(0x7f00000002c0)='./file0/file0\x00')
mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0xffffffffffffffff, 0x32, 0xffffffffffffffff, 0x0)
getsockopt$inet_sctp6_SCTP_INITMSG(r1, 0x84, 0x2, &(0x7f0000000040), &(0x7f0000000080)=0x8)
tkill(r0, 0x1000000000015)

2018/03/31 01:44:49 executing program 4:
r0 = socket$alg(0x26, 0x5, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_route(r1, &(0x7f00000fa000)={&(0x7f0000c1b000)={0x10}, 0xc, &(0x7f000052aff0)={&(0x7f0000634000)=@delneigh={0x1c, 0x1d, 0x301, 0x0, 0x0, {0x1f}}, 0x1c}, 0x1}, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(0xffffffffffffffff, 0x84, 0x13, &(0x7f0000000040), 0x4)
getpeername$ax25(0xffffffffffffffff, &(0x7f0000001800), &(0x7f0000001d00)=0x10)
connect$l2tp(0xffffffffffffffff, &(0x7f0000000080)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x1, 0x1, 0x0, 0x0, {0xa, 0x4e22, 0x1000, @mcast2={0xff, 0x2, [], 0x1}, 0x2}}}, 0x3a)
read(r1, &(0x7f0000ff9000)=""/80, 0x50)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'sha1_mb\x00'}, 0x58)
ioctl$sock_bt_bnep_BNEPGETSUPPFEAT(0xffffffffffffffff, 0x800442d4, &(0x7f0000001480)=0x5)
r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/hwrng\x00', 0x10000, 0x0)
ioctl$sock_FIOGETOWN(r2, 0x8903, &(0x7f0000000180)=<r3=>0x0)
tkill(r3, 0xc)
r4 = syz_open_dev$mouse(&(0x7f0000000100)='/dev/input/mouse#\x00', 0x0, 0x0)
fsync(r0)
ioctl$sock_kcm_SIOCKCMATTACH(r2, 0x89e0, &(0x7f0000000140)={r0, r4})
getsockopt$EBT_SO_GET_INIT_ENTRIES(0xffffffffffffffff, 0x0, 0x83, &(0x7f0000001980)={'nat\x00', 0x0, 0x3, 0xc9, [], 0x1, &(0x7f00000017c0)=[{}], &(0x7f0000001880)=""/201}, &(0x7f0000001cc0)=0x78)
sendmsg$nl_crypto(0xffffffffffffffff, &(0x7f0000001780)={&(0x7f0000001600)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000001740)={&(0x7f0000001640)=ANY=[@ANYBLOB="f8000000100000032abd7000fcdbdf25636d6163286165732d67656e6572696329000000000000000000000000000000000000000000000000000018000000150000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000005bf2bf000000000000000000000000000000000000000000000041d293722100000000"], 0x1}, 0x1, 0x0, 0x0, 0x10}, 0x0)
getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000001a40)={{{@in6=@remote, @in6=@local}}, {{@in6=@dev}, 0x0, @in6=@loopback}}, &(0x7f0000001b40)=0xe8)

2018/03/31 01:44:49 executing program 6:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x200, 0x0)
socketpair$inet6_icmp_raw(0xa, 0x3, 0x3a, &(0x7f0000000680)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
setsockopt$sock_linger(r1, 0x1, 0xd, &(0x7f00000006c0)={0x400, 0x9}, 0x8)
perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
mmap(&(0x7f0000000000/0x9d7000)=nil, 0x9d7000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x7)
perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r4, &(0x7f0000e5b000)={0x2, 0x4e20, @multicast1=0xe0000001}, 0x10)
syz_open_dev$sg(&(0x7f0000000440)='/dev/sg#\x00', 0x0, 0x0)
connect$inet(r4, &(0x7f0000000100)={0x2, 0x4e20, @multicast2=0xe0000002}, 0x10)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000eb0fb8)={0x1, 0x3, &(0x7f00009ff000)=@framed={{0x18}, [], {0x95}}, &(0x7f00002bf000)='syzkaller\x00', 0x4, 0xb7, &(0x7f00006ab000)=""/183}, 0x48)
setsockopt$inet_tcp_int(r4, 0x6, 0x19, &(0x7f0000000240)=0x8, 0x4)
setsockopt$SO_BINDTODEVICE(r4, 0x1, 0x19, &(0x7f0000000000)="6970365f76746930000000000400", 0x10)
r6 = socket$kcm(0x29, 0x2, 0x0)
ioctl$sock_kcm_SIOCKCMATTACH(r6, 0x89e0, &(0x7f000031aff8)={r4, r5})
ioctl$sock_kcm_SIOCKCMCLONE(r6, 0x89e2, &(0x7f00000002c0)={<r7=>0xffffffffffffffff})
sendmsg$nl_xfrm(r7, &(0x7f0000000780)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000740)={&(0x7f0000000480)=@updpolicy={0xb8, 0x19, 0x0, 0x0, 0x0, {{@in=@loopback=0x7f000001, @in6=@mcast1={0xff, 0x1, [], 0x1}}}}, 0xffcb}, 0x1}, 0x0)
ioctl$sock_kcm_SIOCKCMUNATTACH(r7, 0x89e1, &(0x7f0000000040)={r4})
r8 = fcntl$getown(r3, 0x9)
r9 = accept4$inet(0xffffffffffffff9c, &(0x7f0000000700)={0x0, 0x0, @broadcast}, &(0x7f0000000740)=0x10, 0x80000)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r9, 0x84, 0x64, &(0x7f0000000300)=[@in6={0xa, 0x4e23, 0x0, @dev={0xfe, 0x80, [], 0xf}, 0x6}, @in={0x2, 0x0, @local={0xac, 0x14, 0x14, 0xaa}}, @in={0x2, 0x4e23, @multicast1=0xe0000001}, @in={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x10}}, @in={0x2, 0x4e20, @multicast1=0xe0000001}, @in={0x2, 0x4e24}, @in={0x2, 0x4e24, @broadcast=0xffffffff}, @in6={0xa, 0x4e21, 0xed34, @local={0xfe, 0x80, [], 0xaa}, 0x3}, @in={0x2, 0x4e23, @loopback=0x7f000001}], 0xfffffffffffffe00)
ptrace$setregset(0x4205, r8, 0x0, &(0x7f00000005c0)={&(0x7f0000000080)="449ed0dd6831a7fb44eca4221b1fb01abfec082aa7d0ee6f0ba9db0ece7da2bd3f", 0x21})
r10 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r11 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x1fffd, 0x0)
syz_open_dev$sndtimer(&(0x7f00000000c0)='/dev/snd/timer\x00', 0x0, 0x0)
read(r0, &(0x7f0000000140)=""/50, 0x32)
fcntl$dupfd(r10, 0x0, r11)

2018/03/31 01:44:49 executing program 0:
r0 = socket(0x1d, 0x3, 0x1)
socket$key(0xf, 0x3, 0x2)
setsockopt$kcm_KCM_RECV_DISABLE(r0, 0x65, 0x5, &(0x7f0000000000)=0xaaae, 0x4)
perf_event_open(&(0x7f0000fdef88)={0x2, 0x78, 0xe3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0xfff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
add_key(&(0x7f00008c3ff3)='dns_resolver\x00', &(0x7f00006d1ffb)={0x73, 0x79, 0x7a}, &(0x7f00005ad000), 0x0, 0xffffffffffffffff)
clone(0x0, &(0x7f0000659ffe), &(0x7f00003c6ffc), &(0x7f0000a2effc), &(0x7f00007c4000))
setsockopt$SO_VM_SOCKETS_BUFFER_MAX_SIZE(r0, 0x28, 0x2, &(0x7f0000000140)=0x18, 0x8)
perf_event_open(&(0x7f000025c000)={0x2, 0x78}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f0000000040)={0x26, 'rng\x00', 0x0, 0x0, 'jitterentropy_rng\x00'}, 0x58)
r2 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000640)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0)
write$rdma_cm(r2, &(0x7f00000000c0)=@create_id={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000080)={<r3=>0xffffffff}, 0x2}}, 0xfffffe84)
getsockopt$IP_VS_SO_GET_DESTS(r0, 0x0, 0x484, &(0x7f0000000140), &(0x7f0000000180))
write$rdma_cm(r2, &(0x7f0000000040)=ANY=[@ANYBLOB="02000000280000fa00000000000000000a000000000000000000000000000000000002000000000000000000"], 0x2c)
write$rdma_cm(r2, &(0x7f0000000000)=@listen={0x7, 0x8, 0xfa00, {r3}}, 0x10)
close(r2)
pipe(&(0x7f0000000100)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
sendmmsg(r5, &(0x7f0000002280)=[{{&(0x7f00000006c0)=@pppoe={0x18, 0x0, {0x3, @remote={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xbb}, 'ip6tnl0\x00'}}, 0x80, &(0x7f0000000ec0)=[{&(0x7f0000000740)="964616d1dafb11d6d905ea33bd4eaea0dd04eb847bc0a1210ca9456143e31b8ce14caf4a0646bc639707d10aba3e652495977a7a6d3fc41ef6364c47c2266aa410a490f920f407161207ec5352e1ce6c3822d3a2ae063583609298790a58b73fccaac3665dd78ab4a15d4c12a996799f41dc79b9f3d57a627a7517cb0b51c0cecf43519f19db25073246fa0d8e29d209ee94372325d56aa5ae8d45", 0x9b}, {&(0x7f0000000b40)="cf9da7f87b679c1e28f29164bf99d414eec139a9ce604bd189b12e3acc99e49fdce81f6c81be776473dd6fd95aa78a1352a5ad0edd83fd198dc0db48407a41bcc6f71a6ed172d6268ba66e87e26937039f318267391fabf61c4d12e43625498c007fc7ac7a08686e74c7a1650f1711c605ed2aabf4c245ec9e0d838d8657b697b14180c2394a634d7ecd87a4996585413d3c10eb422fa796adc6531979893daaf6bae46d79bb1d456e6a69eaa5b14b7745813d2f7a61b42bb14026d6c31cc0d34a9e3fbf87aa05228c03", 0xca}], 0x2, &(0x7f0000000f40)=[{0x10, 0x103, 0x918}], 0x10, 0x4045}}, {{&(0x7f0000002140)=@nl=@unspec, 0x80, &(0x7f0000002240)=[{&(0x7f00000021c0)}], 0x1, &(0x7f00000052c0)=[{0xc8, 0x10f, 0x2, "9c3471426e520239f84b86e42372a3deca8b4b4f92bfa18dcd5659c9c656524943bed874b299dba8ba6ea1d86d227af10eab82816b33b29991d3f56ec3a0da94823554af62f9f329aae37e5e0f4096de2a75e6caf3849f6dd0a595219a8bb8794171f7c6e38d5708463c0f950c90d98664cb69303a6cd1b688340b39a3f07650a7dd1b530bdd14e0d04dac007230ba2e0890bfe0923a25c053d7a3e5a242df6b76fc04b0e2cf5ac264fe412e9788dbc888"}, {0x108, 0x119, 0x6, "46cf8d577684f7136fd5cc88d915491c51e8c59a9efa675cbd48259959f74a66e4bd14551f7031d54d4b65e96c4d156036cb166526ff01eece563c82555f2cbe1c1d4c594dc7dd9dede7089d245857666678b10ffbd1f092d34b6d013a41ba989925c4d14e9bf5363f7ea52d5615c53155538723794d83721b7ba9408b970f2b48a053a4a4fd60ce4dcc63aa25fc6322c7ce0834f7dbff03206c47ba61a1c00fad7fbf1d26060d881f7f81d84abb819edea2163735686750243f68a37cb4cfab157b0d363fbf7516724b02f1ad9cad1a9fcd220bf64ada937c93d160f310644dfbd0f4a2b3cde21609701eab6085a1f299a16a765c778c"}], 0x1d0, 0x48800}, 0x8}], 0x2, 0x4001)
setsockopt$RDS_GET_MR(r5, 0x114, 0x2, &(0x7f0000000500)={{&(0x7f0000000400)=""/221, 0xdd}, &(0x7f0000000200), 0x10}, 0x20)
r6 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000540)='/dev/vga_arbiter\x00', 0x8000, 0x0)
ioctl$sock_inet_SIOCGIFDSTADDR(r6, 0x8917, &(0x7f0000000c40)={'ip6gre0\x00', {0x2, 0x4e24, @multicast2=0xe0000002}})
getsockopt$inet_sctp6_SCTP_PEER_AUTH_CHUNKS(r5, 0x84, 0x1a, &(0x7f00000008c0)=ANY=[@ANYRES32, @ANYBLOB="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"], &(0x7f0000000600)=0x2)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f00000001c0)={'vcan0\x00'})
syz_open_dev$midi(&(0x7f0000000080)='/dev/midi#\x00', 0x13860b96, 0x0)
r7 = add_key$keyring(&(0x7f0000000580)='keyring\x00', &(0x7f00000005c0)={0x73, 0x79, 0x7a, 0x0}, 0x0, 0x0, 0xfffffffffffffffc)
r8 = request_key(&(0x7f0000000a40)='keyring\x00', &(0x7f0000000a80)={0x73, 0x79, 0x7a, 0x2}, &(0x7f0000000ac0)='rng\x00', 0xfffffffffffffff8)
keyctl$reject(0x13, r7, 0x100000000, 0x10000, r8)
getsockopt$inet_sctp6_SCTP_ADAPTATION_LAYER(r4, 0x84, 0x7, &(0x7f0000000240), &(0x7f0000000280)=0x4)

2018/03/31 01:44:49 executing program 2:
perf_event_open(&(0x7f0000223000)={0x2, 0x78, 0xe3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$selinux_avc_cache_threshold(0xffffffffffffff9c, &(0x7f0000000040)='/selinux/avc/cache_threshold\x00', 0x2, 0x0)
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f000026cff4)={0x10}, 0xc, &(0x7f0000000000)={&(0x7f0000000340)=ANY=[@ANYBLOB="c8000000210003040000000000000000ac1414bb000000000000000000000000fe8000000000000000000000000000aa00000000000000000000000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000000000c5c001100ac8dd6e059d5b11695d65e15141400000000000000000000000000200000000000000000000000000f0000000400000000000000000000ac1414aa000000100000000000000000e00000010000000000000000000000000000000000000000000000001c0004000000000000000000000000000000"], 0xc8}, 0x1}, 0x0)

2018/03/31 01:44:49 executing program 5:
r0 = syz_open_dev$amidi(&(0x7f0000000400)='/dev/amidi#\x00', 0x401, 0x40)
accept4$llc(r0, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, &(0x7f0000000480)=0x10, 0x80800)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f0000005fd8)={'vcan0\x00', <r2=>0x0})
ioctl$KVM_SET_DEVICE_ATTR(r0, 0x4018aee1, &(0x7f0000000500)={0x0, 0x100000001, 0x5a, &(0x7f00000004c0)})
connect$can_bcm(r1, &(0x7f0000001ff0)={0x1d, r2}, 0x10)
ioctl$TIOCGSID(0xffffffffffffff9c, 0x5429, &(0x7f00000002c0)=<r3=>0x0)
waitid(0x0, r3, 0x0, 0x1000009, &(0x7f0000000300))
r4 = syz_open_dev$vcsn(&(0x7f0000000000)='/dev/vcs#\x00', 0xcd8, 0x101000)
getsockopt$SO_BINDTODEVICE(r4, 0x1, 0x19, &(0x7f0000000280), 0x10)
ioctl$EVIOCGABS0(r4, 0x80184540, &(0x7f0000000240)=""/64)
bind$vsock_dgram(r1, &(0x7f00000003c0)={0x28, 0x0, 0x2711, @reserved=0x1}, 0x10)
exit(0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000200)={r4, 0x0, 0x47, 0xde, &(0x7f0000000080)="3541471374d1e455c1f501bb3e7418a21f930d9fb82ac3588f54ad5a1a9e778bdf654fa39f19bcbc6ee4636a10d409c877cfe11ba160f73d4cde40422564bfdb62d8e5f8ba5097", &(0x7f0000000100)=""/222, 0x4, 0x3f}, 0x28)
ioctl$KVM_SET_TSS_ADDR(r4, 0xae47, 0xd000)
ioctl$KVM_CHECK_EXTENSION(r4, 0xae03, 0xffffffffffffffff)
openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000580)='/dev/qat_adf_ctl\x00', 0x4600, 0x0)
sendmsg$can_raw(r1, &(0x7f0000001fc8)={&(0x7f000000a000)={0x1d}, 0x10, &(0x7f0000000040)={&(0x7f000000a000)=@canfd={{0x1}, 0x0, 0x0, 0x0, 0x0, "0327e1b22b5fcef7739c699f5ff986ca08990039576a7d5cb2bdac3fa80acf584ecb5fee496e6866856b76b5f700000000000000004e2f9663a918fa1efd9b0b"}, 0x48}, 0x1}, 0x0)
ioctl$VHOST_GET_VRING_ENDIAN(r0, 0x4008af14, &(0x7f0000000540)={0x0, 0x9})

[  183.254523] FAULT_INJECTION: forcing a failure.
[  183.254523] name failslab, interval 1, probability 0, space 0, times 0
[  183.254641] netlink: 120 bytes leftover after parsing attributes in process `syz-executor2'.
[  183.265790] CPU: 1 PID: 13335 Comm: syz-executor3 Not tainted 4.16.0-rc7+ #372
[  183.265797] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  183.265802] Call Trace:
[  183.265821]  dump_stack+0x194/0x24d
[  183.265836]  ? arch_local_irq_restore+0x53/0x53
[  183.301917]  should_fail+0x8c0/0xa40
[  183.305632]  ? __mutex_unlock_slowpath+0xe9/0xac0
[  183.310483]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  183.317925]  ? _raw_spin_unlock+0x22/0x30
[  183.322076]  ? kernfs_dop_revalidate+0x380/0x380
[  183.326831]  ? find_held_lock+0x35/0x1d0
[  183.330891]  ? __lock_is_held+0xb6/0x140
[  183.334941]  ? check_same_owner+0x320/0x320
[  183.339243]  ? __kernfs_create_file+0x27f/0x320
[  183.343894]  ? rcu_note_context_switch+0x710/0x710
[  183.348808]  should_failslab+0xec/0x120
[  183.352764]  kmem_cache_alloc+0x47/0x760
[  183.356807]  ? __lock_is_held+0xb6/0x140
[  183.360853]  sched_create_group+0x22/0x70
[  183.364978]  cpu_cgroup_css_alloc+0xe/0x30
[  183.369192]  cgroup_apply_control_enable+0x44d/0xbc0
[  183.374282]  ? cgroup_propagate_control+0x570/0x570
[  183.379283]  ? css_populate_dir+0x289/0x420
[  183.383586]  cgroup_mkdir+0x56f/0xfc0
[  183.387366]  ? __lock_is_held+0xb6/0x140
[  183.391412]  ? cgroup_destroy_locked+0x750/0x750
[  183.396147]  ? rcu_read_lock_sched_held+0x108/0x120
[  183.401140]  ? kmem_cache_free+0x258/0x2a0
[  183.405357]  ? set_nlink+0xc1/0x160
[  183.408964]  ? debug_lockdep_rcu_enabled+0x77/0x90
[  183.413871]  ? generic_permission+0x105/0x3c0
[  183.418344]  ? cgroup_destroy_locked+0x750/0x750
[  183.423078]  kernfs_iop_mkdir+0x153/0x1e0
[  183.427207]  vfs_mkdir+0x390/0x600
[  183.430727]  SyS_mkdirat+0x22b/0x2b0
[  183.434425]  ? SyS_mknod+0x480/0x480
[  183.438115]  ? trace_hardirqs_on+0xd/0x10
[  183.442241]  ? do_syscall_64+0xb7/0x940
[  183.446194]  ? SyS_mknod+0x480/0x480
[  183.449885]  do_syscall_64+0x281/0x940
[  183.453750]  ? vmalloc_sync_all+0x30/0x30
[  183.457875]  ? trace_event_raw_event_sys_exit+0x260/0x260
[  183.463391]  ? syscall_return_slowpath+0x550/0x550
[  183.468299]  ? syscall_return_slowpath+0x2ac/0x550
[  183.473211]  ? entry_SYSCALL_64_after_hwframe+0x52/0xb7
[  183.478554]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  183.483381]  entry_SYSCALL_64_after_hwframe+0x42/0xb7
[  183.488549] RIP: 0033:0x454e79
[  183.491714] RSP: 002b:00007fa6ef25cc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
2018/03/31 01:44:50 executing program 2:
r0 = socket$inet(0x2, 0x80002, 0x81)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
r2 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000d6cff0)=[@in={0x2, 0x4e20, @loopback=0x7f000001}], 0x10)
setsockopt$inet_sctp_SCTP_AUTOCLOSE(r1, 0x84, 0x4, &(0x7f0000000080)=0x81, 0x4)
r3 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/pfkey\x00', 0x0, 0x0)
stat(&(0x7f0000000240)='./file0\x00', &(0x7f0000000280))
sendto$inet(r0, &(0x7f0000f96000)="03", 0xff06, 0x0, &(0x7f00000003c0)={0x2, 0x4e20, @loopback=0x7f000001}, 0x10)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000640)={'ip6gretap0\x00', <r4=>0x0})
bind$can_raw(r3, &(0x7f0000000680)={0x1d, r4}, 0x10)
close(r0)
r5 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000100)='/dev/rtc\x00', 0x0, 0x0)
openat$cuse(0xffffffffffffff9c, &(0x7f0000000380)='/dev/cuse\x00', 0x14000, 0x0)
getsockopt$inet_sctp_SCTP_MAX_BURST(r1, 0x84, 0x14, &(0x7f0000000040), &(0x7f00000000c0)=0x4)
r6 = dup3(r0, r3, 0x80000)
getsockopt$inet_sctp_SCTP_I_WANT_MAPPED_V4_ADDR(r5, 0x84, 0xc, &(0x7f0000000340), &(0x7f0000000300)=0x4)
getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r6, 0x84, 0xa, &(0x7f0000000140)={0x3, 0x9, 0x0, 0x0, 0x5, 0x6, 0x800, 0x3ff}, &(0x7f0000000180)=0x20)
ioctl$VHOST_SET_VRING_ENDIAN(r5, 0x4008af13, &(0x7f0000000200)={0x1, 0x3})
bpf$MAP_CREATE(0x0, &(0x7f00000001c0)={0x7, 0x6, 0x4, 0x8, 0x0, 0xffffffffffffffff, 0x10001}, 0x2c)

[  183.499401] RAX: ffffffffffffffda RBX: 00007fa6ef25d6d4 RCX: 0000000000454e79
[  183.506649] RDX: 0000000000000020 RSI: 0000000020000280 RDI: 0000000000000013
[  183.513895] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  183.521141] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000014
[  183.528395] R13: 00000000000003eb R14: 00000000006f7ea8 R15: 000000000000001d
2018/03/31 01:44:50 executing program 3 (fault-call:3 fault-nth:30):
mkdir(&(0x7f00000001c0)='./file0\x00', 0x0)
mount(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000380)='./file0\x00', &(0x7f0000000300)='cgroup2\x00', 0x0, 0x0)
r0 = open$dir(&(0x7f000001bff4)='./file0\x00', 0x0, 0x0)
mkdirat(r0, &(0x7f0000000280)='./file0\x00', 0x20)
getdents64(r0, &(0x7f00000007c0)=""/250, 0x1015a)
fadvise64(r0, 0x0, 0x41, 0x3)
unlinkat(r0, &(0x7f0000000080)='./file0\x00', 0x200)
r1 = open$dir(&(0x7f0000000180)='./file0\x00', 0x105600, 0x81)
fchdir(r0)
link(&(0x7f0000000740)='./file1\x00', &(0x7f0000000780)='./file0/file0\x00')
renameat2(r1, &(0x7f0000000200)='./file1\x00', r0, &(0x7f0000000240)='./file0\x00', 0xfd1092750066ec78)
pivot_root(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='./file0\x00')
r2 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000100)='/dev/rfkill\x00', 0x2c42, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_LIST(r2, 0xc0505510, &(0x7f0000000480)={0x1000, 0x1, 0x474, 0x1, &(0x7f0000000140)=[{}]})
unlink(&(0x7f00000000c0)='./file0\x00')
symlinkat(&(0x7f0000000400)='./file0/file0\x00', r0, &(0x7f0000000440)='./file0/file0\x00')
iopl(0x6)
recvmsg$kcm(0xffffffffffffffff, &(0x7f0000000680)={&(0x7f0000000500)=@pppol2tp={0x0, 0x0, {0x0, <r3=>0xffffffffffffffff, {0x0, 0x0, @broadcast}}}, 0x80, &(0x7f0000000600)=[{&(0x7f0000000580)=""/80, 0x50}, {&(0x7f00000008c0)=""/4096, 0x1000}], 0x2, &(0x7f0000000640)=""/45, 0x2d, 0x206e}, 0x20)
r4 = syz_open_dev$sndpcmp(&(0x7f00000018c0)='/dev/snd/pcmC#D#p\x00', 0x5, 0x10a00)
ioctl$KVM_GET_DEVICE_ATTR(r4, 0x4018aee2, &(0x7f0000001940)={0x0, 0x100, 0x9, &(0x7f0000001900)})
recvfrom$ipx(r3, &(0x7f00000006c0)=""/52, 0x34, 0x100, &(0x7f0000000700)={0x4, 0x9a2, 0x4, "dc108d9d4391", 0x5}, 0x10)
renameat(r0, &(0x7f0000001980)='./file1\x00', r4, &(0x7f00000019c0)='./file0/file0\x00')

2018/03/31 01:44:50 executing program 1:
r0 = creat(&(0x7f0000000b40)='./file0\x00', 0x20)
ioctl$DRM_IOCTL_AGP_ALLOC(0xffffffffffffff9c, 0xc0206434, &(0x7f0000000b80)={0x5, <r1=>0x0, 0x0, 0x81})
ioctl$DRM_IOCTL_SG_FREE(r0, 0x40106439, &(0x7f0000000bc0)={0x3, r1})
r2 = socket$inet(0x2, 0x6, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f00000008c0)=@broute={'broute\x00', 0x20, 0x2, 0x3e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000280], 0x0, &(0x7f0000000240), &(0x7f0000000280)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff01000000110000000000000000006970366772657461703000000000f8010000000000006e000000000000000000697036746e6c3000000000000000000073797a5f74756e0000000000000000000180c200000000000000ff00aaaaaaaaaabb00000000000000007000000008010000580100005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a30000000000000000000000000000000000000000000000000000000004c45440000000000000000000000000000000000000000000000000000000000280000000000000073797a3000000000000000000000000000000000000000000000000000000000000000000000000049444c4554494d4552000000000000000000000000000000000000000000000028000000000000000000010073797a30000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001000000ffffffff010000000d0000000000000086dd73797a6b616c6c65723000000000000074756e6c3000000000000000000000007369743000000000000000000000000069666230000000000000000000000000000000000000000000000000ffffffffffff000000000000000030010000b001000000020000697036000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000ffffac1414aa0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006c696d6974000000000000000000000000000000000000000000000000000000200000000000000000000000ec00000000000000000000000000000000000000000000000000000049444c4554494d4552000000000000000000000000000000000000000000000028000000000000008100000073797a3100000000000000000000000000000000000000000000000000000000000000004e46515545554500000000000000000000000000000000000000000000000000080000000000000000000000000000004c45440000000000000000000000000000000000000000000000000000000000280000000000000073797a30000000000000000000000000000000000000000000000000000000000000000000000000"]}, 0x460)
getsockopt$inet_sctp6_SCTP_CONTEXT(0xffffffffffffff9c, 0x84, 0x11, &(0x7f0000000000)={<r3=>0x0, 0x7}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r2, 0x84, 0xa, &(0x7f0000000140)={0x0, 0xa2b, 0x4, 0x7, 0x2, 0x20, 0x10000, 0x8a82, r3}, &(0x7f0000000180)=0x20)
setsockopt$inet_group_source_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000680)={0x1000, {{0x2, 0x4e23, @multicast1=0xe0000001}}, {{0x2, 0x4e22, @broadcast=0xffffffff}}}, 0x108)
ioctl$DRM_IOCTL_AGP_ENABLE(0xffffffffffffffff, 0x40086432, &(0x7f0000000100))
r4 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/vs/sync_version\x00', 0x2, 0x0)
ioctl$TIOCGSOFTCAR(r4, 0x5419, &(0x7f00000007c0))
r5 = openat$audio(0xffffffffffffff9c, &(0x7f0000000580)='/dev/audio\x00', 0x900, 0x0)
r6 = syz_open_dev$sndseq(&(0x7f0000000440)='/dev/snd/seq\x00', 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(0xffffffffffffffff, 0x4058534c, &(0x7f00000000c0)={0x0, 0x0, 0x7})
getsockopt$sock_cred(r5, 0x1, 0x11, &(0x7f0000000080)={<r7=>0x0}, &(0x7f0000000140)=0xc)
sched_getscheduler(r7)
sendmsg$nl_route(r5, &(0x7f0000000280)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10040}, 0xc, &(0x7f0000000240)={&(0x7f0000000480)=ANY=[@ANYBLOB="1c0000008cda16190181b8f0797f14b6c1280af76a483c01d874fbdbdf251c14ff09000800002fde7447ad106be071f7641c561eb18780cd059d64d48b06250f708602da71ca0e184b0c97709e6aca54ea9f72b7e9bc9b8fa3cc4cd04c91dd13a4c292e1cfdff089dfd24c6f7772abe4114ca71db284e5e74a20fd86c2c1"], 0x1}, 0x1}, 0x5)
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r6, 0xc0a85320, &(0x7f0000068f50)={{0x80}, "706f7274310000000000000000000000000000000000001000", 0xc7, 0x80003})
perf_event_open(&(0x7f0000348f88)={0x2, 0x70, 0x3e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r6, 0xc0a85320, &(0x7f0000000180)={{0x8}, 'port0\x00', 0xea, 0x21004, 0x3f, 0x2, 0x4, 0x1, 0x80, 0x0, 0x2, 0x8})
r8 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000800)='/dev/sequencer2\x00', 0x8000, 0x0)
close(r8)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000400)='./cgroup.cpu/syz0\x00', 0x1ff)
r9 = msgget$private(0x0, 0x1e3)
sendto(r2, &(0x7f0000000940)="92869d070f2c936ccda69d46b61be0836495e81c23e6b25c817c4304daac6d302d6b7f979c9b311882fa9bc509d25f2e29997d8b04b25d92959a34878e3ac70f8d7f9c1195b3ed0a583ff2d049b1c97a4313e211c9cdaf9eab3215a53c4200a9f59282df8c8c724890ddd2aff085de9819d4c9434c9410c9b547ddce60cff014263d7ea33d444575e6f4545b58f09f3a", 0x90, 0x4000, &(0x7f0000000840)=@rc={0x1f, {0x80, 0xff, 0x4, 0xd13, 0x2, 0x2}, 0x7}, 0x80)
msgctl$MSG_INFO(r9, 0xc, &(0x7f00000005c0)=""/222)
epoll_ctl$EPOLL_CTL_DEL(r8, 0x2, r8)
ioctl$int_in(r5, 0x800000c0045002, &(0x7f00000003c0)=0x20080001)
epoll_ctl$EPOLL_CTL_DEL(r8, 0x2, r6)
sendmsg(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000240)=@un=@abs={0x1, 0x0, 0x4e23}, 0x80, &(0x7f0000000040)=[{&(0x7f00000001c0)="5500000018007f04002d1cb2a4a280930a0600007da843cf19d0f869390009402f002100040000001900050000fc1700000000dc1338d54400009b84136ef75afb83de448daa7227c43ab8220000060c", 0x50}], 0x1, &(0x7f00000000c0)}, 0x0)

[  183.653310] FAULT_INJECTION: forcing a failure.
[  183.653310] name failslab, interval 1, probability 0, space 0, times 0
[  183.664728] CPU: 1 PID: 13370 Comm: syz-executor3 Not tainted 4.16.0-rc7+ #372
[  183.672085] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  183.681434] Call Trace:
[  183.684027]  dump_stack+0x194/0x24d
[  183.687662]  ? arch_local_irq_restore+0x53/0x53
[  183.692340]  should_fail+0x8c0/0xa40
[  183.696050]  ? __save_stack_trace+0x7e/0xd0
[  183.700357]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  183.705447]  ? save_stack+0xa3/0xd0
[  183.709053]  ? save_stack+0x43/0xd0
[  183.712659]  ? find_held_lock+0x35/0x1d0
[  183.716703]  ? __lock_is_held+0xb6/0x140
[  183.720751]  ? check_same_owner+0x320/0x320
[  183.725052]  ? rcu_note_context_switch+0x710/0x710
[  183.729965]  should_failslab+0xec/0x120
[  183.733918]  __kmalloc+0x63/0x760
[  183.737352]  ? sched_create_group+0x22/0x70
[  183.741655]  ? kzalloc+0xf/0x20
[  183.744914]  kzalloc+0xf/0x20
[  183.747995]  alloc_fair_sched_group+0x5e/0x530
[  183.752558]  ? __lock_is_held+0xb6/0x140
[  183.756602]  sched_create_group+0x35/0x70
[  183.760731]  cpu_cgroup_css_alloc+0xe/0x30
[  183.764949]  cgroup_apply_control_enable+0x44d/0xbc0
[  183.770044]  ? cgroup_propagate_control+0x570/0x570
[  183.775046]  ? css_populate_dir+0x289/0x420
[  183.779347]  cgroup_mkdir+0x56f/0xfc0
[  183.783124]  ? __lock_is_held+0xb6/0x140
[  183.787165]  ? cgroup_destroy_locked+0x750/0x750
[  183.791900]  ? rcu_read_lock_sched_held+0x108/0x120
[  183.796894]  ? kmem_cache_free+0x258/0x2a0
[  183.801108]  ? set_nlink+0xc1/0x160
[  183.804713]  ? debug_lockdep_rcu_enabled+0x77/0x90
[  183.809618]  ? generic_permission+0x105/0x3c0
[  183.814092]  ? cgroup_destroy_locked+0x750/0x750
[  183.818826]  kernfs_iop_mkdir+0x153/0x1e0
[  183.822954]  vfs_mkdir+0x390/0x600
[  183.826473]  SyS_mkdirat+0x22b/0x2b0
[  183.830165]  ? SyS_mknod+0x480/0x480
[  183.834234]  ? trace_hardirqs_on+0xd/0x10
[  183.838363]  ? do_syscall_64+0xb7/0x940
[  183.842317]  ? SyS_mknod+0x480/0x480
[  183.846012]  do_syscall_64+0x281/0x940
[  183.849885]  ? vmalloc_sync_all+0x30/0x30
[  183.854014]  ? trace_event_raw_event_sys_exit+0x260/0x260
[  183.859535]  ? syscall_return_slowpath+0x550/0x550
[  183.864440]  ? syscall_return_slowpath+0x2ac/0x550
[  183.869351]  ? entry_SYSCALL_64_after_hwframe+0x52/0xb7
[  183.874697]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  183.879519]  entry_SYSCALL_64_after_hwframe+0x42/0xb7
[  183.884686] RIP: 0033:0x454e79
[  183.887851] RSP: 002b:00007fa6ef25cc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
[  183.895537] RAX: ffffffffffffffda RBX: 00007fa6ef25d6d4 RCX: 0000000000454e79
2018/03/31 01:44:50 executing program 4:
r0 = socket$inet6(0xa, 0x3, 0x1)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000f68000)={@loopback={0x0, 0x1}, 0x800, 0x0, 0xff, 0x1}, 0x20)
setsockopt$inet6_int(r0, 0x29, 0x21, &(0x7f000089b000)=0xffffffffffffffff, 0x4)
connect$inet6(r0, &(0x7f000000cfe4)={0xa, 0x0, 0x807}, 0x1c)
alarm(0xff)
sendmmsg(r0, &(0x7f0000008a00)=[{{0x0, 0x0, &(0x7f0000000040), 0x0, &(0x7f0000000040)=[{0x18, 0x29, 0xb, "84"}], 0x18}}], 0x1, 0x0)

2018/03/31 01:44:50 executing program 6:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x200, 0x0)
socketpair$inet6_icmp_raw(0xa, 0x3, 0x3a, &(0x7f0000000680)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
setsockopt$sock_linger(r1, 0x1, 0xd, &(0x7f00000006c0)={0x400, 0x9}, 0x8)
perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
mmap(&(0x7f0000000000/0x9d7000)=nil, 0x9d7000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x7)
perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r4, &(0x7f0000e5b000)={0x2, 0x4e20, @multicast1=0xe0000001}, 0x10)
syz_open_dev$sg(&(0x7f0000000440)='/dev/sg#\x00', 0x0, 0x0)
connect$inet(r4, &(0x7f0000000100)={0x2, 0x4e20, @multicast2=0xe0000002}, 0x10)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000eb0fb8)={0x1, 0x3, &(0x7f00009ff000)=@framed={{0x18}, [], {0x95}}, &(0x7f00002bf000)='syzkaller\x00', 0x4, 0xb7, &(0x7f00006ab000)=""/183}, 0x48)
setsockopt$inet_tcp_int(r4, 0x6, 0x19, &(0x7f0000000240)=0x8, 0x4)
setsockopt$SO_BINDTODEVICE(r4, 0x1, 0x19, &(0x7f0000000000)="6970365f76746930000000000400", 0x10)
r6 = socket$kcm(0x29, 0x2, 0x0)
ioctl$sock_kcm_SIOCKCMATTACH(r6, 0x89e0, &(0x7f000031aff8)={r4, r5})
ioctl$sock_kcm_SIOCKCMCLONE(r6, 0x89e2, &(0x7f00000002c0)={<r7=>0xffffffffffffffff})
sendmsg$nl_xfrm(r7, &(0x7f0000000780)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000740)={&(0x7f0000000480)=@updpolicy={0xb8, 0x19, 0x0, 0x0, 0x0, {{@in=@loopback=0x7f000001, @in6=@mcast1={0xff, 0x1, [], 0x1}}}}, 0xffcb}, 0x1}, 0x0)
ioctl$sock_kcm_SIOCKCMUNATTACH(r7, 0x89e1, &(0x7f0000000040)={r4})
r8 = fcntl$getown(r3, 0x9)
r9 = accept4$inet(0xffffffffffffff9c, &(0x7f0000000700)={0x0, 0x0, @broadcast}, &(0x7f0000000740)=0x10, 0x80000)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r9, 0x84, 0x64, &(0x7f0000000300)=[@in6={0xa, 0x4e23, 0x0, @dev={0xfe, 0x80, [], 0xf}, 0x6}, @in={0x2, 0x0, @local={0xac, 0x14, 0x14, 0xaa}}, @in={0x2, 0x4e23, @multicast1=0xe0000001}, @in={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x10}}, @in={0x2, 0x4e20, @multicast1=0xe0000001}, @in={0x2, 0x4e24}, @in={0x2, 0x4e24, @broadcast=0xffffffff}, @in6={0xa, 0x4e21, 0xed34, @local={0xfe, 0x80, [], 0xaa}, 0x3}, @in={0x2, 0x4e23, @loopback=0x7f000001}], 0xfffffffffffffe00)
ptrace$setregset(0x4205, r8, 0x0, &(0x7f00000005c0)={&(0x7f0000000080)="449ed0dd6831a7fb44eca4221b1fb01abfec082aa7d0ee6f0ba9db0ece7da2bd3f", 0x21})
r10 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r11 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x1fffd, 0x0)
syz_open_dev$sndtimer(&(0x7f00000000c0)='/dev/snd/timer\x00', 0x0, 0x0)
read(r0, &(0x7f0000000140)=""/50, 0x32)
fcntl$dupfd(r10, 0x0, r11)

[  183.902783] RDX: 0000000000000020 RSI: 0000000020000280 RDI: 0000000000000013
[  183.910034] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  183.917282] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000014
[  183.924526] R13: 00000000000003eb R14: 00000000006f7ea8 R15: 000000000000001e
2018/03/31 01:44:50 executing program 1:
r0 = creat(&(0x7f0000000b40)='./file0\x00', 0x20)
ioctl$DRM_IOCTL_AGP_ALLOC(0xffffffffffffff9c, 0xc0206434, &(0x7f0000000b80)={0x5, <r1=>0x0, 0x0, 0x81})
ioctl$DRM_IOCTL_SG_FREE(r0, 0x40106439, &(0x7f0000000bc0)={0x3, r1})
r2 = socket$inet(0x2, 0x6, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f00000008c0)=@broute={'broute\x00', 0x20, 0x2, 0x3e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000280], 0x0, &(0x7f0000000240), &(0x7f0000000280)=ANY=[@ANYBLOB="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"]}, 0x460)
getsockopt$inet_sctp6_SCTP_CONTEXT(0xffffffffffffff9c, 0x84, 0x11, &(0x7f0000000000)={<r3=>0x0, 0x7}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r2, 0x84, 0xa, &(0x7f0000000140)={0x0, 0xa2b, 0x4, 0x7, 0x2, 0x20, 0x10000, 0x8a82, r3}, &(0x7f0000000180)=0x20)
setsockopt$inet_group_source_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000680)={0x1000, {{0x2, 0x4e23, @multicast1=0xe0000001}}, {{0x2, 0x4e22, @broadcast=0xffffffff}}}, 0x108)
ioctl$DRM_IOCTL_AGP_ENABLE(0xffffffffffffffff, 0x40086432, &(0x7f0000000100))
r4 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000c80)='/proc/sys/net/ipv4/vs/sync_version\x00', 0x2, 0x0)
ioctl$TIOCGSOFTCAR(r4, 0x5419, &(0x7f00000007c0))
r5 = socket$inet6(0x10, 0x2, 0x0)
sendmsg(r5, &(0x7f0000000080)={&(0x7f0000000240)=@un=@abs={0x1, 0x0, 0x4e23}, 0x80, &(0x7f0000000040)=[{&(0x7f00000001c0)="5500000018007f04002d1cb2a4a280930a0600007da843cf19d0f869390009402f002100040000001900050000fc1700000000dc1338d54400009b84136ef75afb83de448daa7227c43ab8220000060c", 0x50}], 0x1, &(0x7f00000000c0)}, 0x0)
socket$bt_cmtp(0x1f, 0x3, 0x5)
fcntl$addseals(r5, 0x409, 0x7)
syz_open_dev$sndmidi(&(0x7f0000000c00)='/dev/snd/midiC#D#\x00', 0x100000001, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f0000001640)=@broute={'broute\x00', 0x20, 0x1, 0x1e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20001700], 0x0, &(0x7f0000001980), &(0x7f0000001700)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1, [{{{0x13, 0x0, 0x0, 'vcan0\x00', 'ifb0\x00', 'syzkaller0\x00', 'vcan0\x00', @remote={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xbb}, [], @link_local={0x1, 0x80, 0xc2}, [], 0x70, 0xf8, 0x128}, [@common=@dnat={'dnat\x00', 0x10, {{@dev={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa]}, 0xffffffffffffffff}}}, @common=@IDLETIMER={'IDLETIMER\x00', 0x28, {{0x4, 'syz0\x00'}}}]}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8}}]}, {0x0, '\x00', 0x1, 0xffffbffffffffffe}]}, 0x260)
setsockopt$EBT_SO_SET_ENTRIES(0xffffffffffffffff, 0x0, 0x80, &(0x7f0000000840)=@nat={'nat\x00', 0x19, 0x1, 0x200, [0x20000940, 0x0, 0x0, 0x20000970, 0x200009a0], 0x0, &(0x7f0000000800), &(0x7f0000000940)=[{}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x14, 0x98ab, 'teql0\x00', 'ip6gretap0\x00', 'ip_vti0\x00', 'nr0\x00', @empty, [0x0, 0xff, 0x0, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2}, [0xff, 0x0, 0xff, 0x0, 0x0, 0xff], 0x100, 0x138, 0x170, [@time={'time\x00', 0x18, {{0x7, 0x3, 0x13782, 0x14fdf, 0x80, 0x4, 0x1}}}, @nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x2}}}]}, [@snat={'snat\x00', 0x10, {{@random="07901c8f0140"}}}]}, @common=@dnat={'dnat\x00', 0x10, {{@local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}, 0x10}}}}]}]}, 0x278)
syz_open_dev$dmmidi(&(0x7f0000000c40)='/dev/dmmidi#\x00', 0xae6d, 0x200)

2018/03/31 01:44:50 executing program 3 (fault-call:3 fault-nth:31):
mkdir(&(0x7f00000001c0)='./file0\x00', 0x0)
mount(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000380)='./file0\x00', &(0x7f0000000300)='cgroup2\x00', 0x0, 0x0)
r0 = open$dir(&(0x7f000001bff4)='./file0\x00', 0x0, 0x0)
mkdirat(r0, &(0x7f0000000280)='./file0\x00', 0x20)
getdents64(r0, &(0x7f00000007c0)=""/250, 0x1015a)
fadvise64(r0, 0x0, 0x41, 0x3)
unlinkat(r0, &(0x7f0000000080)='./file0\x00', 0x200)
r1 = open$dir(&(0x7f0000000180)='./file0\x00', 0x105600, 0x81)
fchdir(r0)
link(&(0x7f0000000740)='./file1\x00', &(0x7f0000000780)='./file0/file0\x00')
renameat2(r1, &(0x7f0000000200)='./file1\x00', r0, &(0x7f0000000240)='./file0\x00', 0xfd1092750066ec78)
pivot_root(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='./file0\x00')
r2 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000100)='/dev/rfkill\x00', 0x2c42, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_LIST(r2, 0xc0505510, &(0x7f0000000480)={0x1000, 0x1, 0x474, 0x1, &(0x7f0000000140)=[{}]})
unlink(&(0x7f00000000c0)='./file0\x00')
symlinkat(&(0x7f0000000400)='./file0/file0\x00', r0, &(0x7f0000000440)='./file0/file0\x00')
iopl(0x6)
recvmsg$kcm(0xffffffffffffffff, &(0x7f0000000680)={&(0x7f0000000500)=@pppol2tp={0x0, 0x0, {0x0, <r3=>0xffffffffffffffff, {0x0, 0x0, @broadcast}}}, 0x80, &(0x7f0000000600)=[{&(0x7f0000000580)=""/80, 0x50}, {&(0x7f00000008c0)=""/4096, 0x1000}], 0x2, &(0x7f0000000640)=""/45, 0x2d, 0x206e}, 0x20)
r4 = syz_open_dev$sndpcmp(&(0x7f00000018c0)='/dev/snd/pcmC#D#p\x00', 0x5, 0x10a00)
ioctl$KVM_GET_DEVICE_ATTR(r4, 0x4018aee2, &(0x7f0000001940)={0x0, 0x100, 0x9, &(0x7f0000001900)})
recvfrom$ipx(r3, &(0x7f00000006c0)=""/52, 0x34, 0x100, &(0x7f0000000700)={0x4, 0x9a2, 0x4, "dc108d9d4391", 0x5}, 0x10)
renameat(r0, &(0x7f0000001980)='./file1\x00', r4, &(0x7f00000019c0)='./file0/file0\x00')

[  183.984991] sctp: [Deprecated]: syz-executor2 (pid 13361) Use of int in max_burst socket option.
[  183.984991] Use struct sctp_assoc_value instead
[  184.026526] FAULT_INJECTION: forcing a failure.
[  184.026526] name failslab, interval 1, probability 0, space 0, times 0
[  184.037820] CPU: 1 PID: 13382 Comm: syz-executor3 Not tainted 4.16.0-rc7+ #372
[  184.045175] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  184.054511] Call Trace:
[  184.057087]  dump_stack+0x194/0x24d
[  184.060698]  ? arch_local_irq_restore+0x53/0x53
[  184.065351]  ? __save_stack_trace+0x7e/0xd0
[  184.069659]  should_fail+0x8c0/0xa40
[  184.073356]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  184.078439]  ? kasan_kmalloc+0xad/0xe0
[  184.082301]  ? __kmalloc+0x162/0x760
[  184.085993]  ? kzalloc+0xf/0x20
[  184.089252]  ? alloc_fair_sched_group+0x5e/0x530
[  184.093983]  ? sched_create_group+0x35/0x70
[  184.098285]  ? kernfs_iop_mkdir+0x153/0x1e0
[  184.102583]  ? vfs_mkdir+0x390/0x600
[  184.106272]  ? SyS_mkdirat+0x22b/0x2b0
[  184.110139]  ? entry_SYSCALL_64_after_hwframe+0x42/0xb7
[  184.115480]  ? save_stack+0x43/0xd0
[  184.119087]  ? find_held_lock+0x35/0x1d0
[  184.123128]  ? __lock_is_held+0xb6/0x140
[  184.127174]  ? check_same_owner+0x320/0x320
[  184.131479]  ? rcu_note_context_switch+0x710/0x710
[  184.136390]  should_failslab+0xec/0x120
[  184.140355]  __kmalloc+0x63/0x760
[  184.143788]  ? sched_create_group+0x22/0x70
[  184.148086]  ? kzalloc+0xf/0x20
[  184.151350]  kzalloc+0xf/0x20
[  184.154435]  alloc_fair_sched_group+0xd6/0x530
[  184.158996]  ? __lock_is_held+0xb6/0x140
[  184.163043]  sched_create_group+0x35/0x70
[  184.167168]  cpu_cgroup_css_alloc+0xe/0x30
[  184.171380]  cgroup_apply_control_enable+0x44d/0xbc0
[  184.176466]  ? cgroup_propagate_control+0x570/0x570
[  184.181464]  ? css_populate_dir+0x289/0x420
[  184.185766]  cgroup_mkdir+0x56f/0xfc0
[  184.189542]  ? __lock_is_held+0xb6/0x140
[  184.193584]  ? cgroup_destroy_locked+0x750/0x750
[  184.198319]  ? rcu_read_lock_sched_held+0x108/0x120
[  184.203314]  ? kmem_cache_free+0x258/0x2a0
[  184.207529]  ? set_nlink+0xc1/0x160
[  184.211135]  ? debug_lockdep_rcu_enabled+0x77/0x90
[  184.216041]  ? generic_permission+0x105/0x3c0
[  184.220513]  ? cgroup_destroy_locked+0x750/0x750
[  184.225246]  kernfs_iop_mkdir+0x153/0x1e0
[  184.229373]  vfs_mkdir+0x390/0x600
[  184.232893]  SyS_mkdirat+0x22b/0x2b0
[  184.236584]  ? SyS_mknod+0x480/0x480
[  184.240273]  ? trace_hardirqs_on+0xd/0x10
[  184.244398]  ? do_syscall_64+0xb7/0x940
[  184.248352]  ? SyS_mknod+0x480/0x480
[  184.252046]  do_syscall_64+0x281/0x940
[  184.255909]  ? vmalloc_sync_all+0x30/0x30
[  184.260038]  ? _raw_spin_unlock_irq+0x27/0x70
[  184.264509]  ? finish_task_switch+0x1c1/0x7e0
[  184.268980]  ? syscall_return_slowpath+0x550/0x550
[  184.273890]  ? syscall_return_slowpath+0x2ac/0x550
[  184.278795]  ? prepare_exit_to_usermode+0x350/0x350
[  184.283791]  ? entry_SYSCALL_64_after_hwframe+0x52/0xb7
[  184.289136]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  184.293959]  entry_SYSCALL_64_after_hwframe+0x42/0xb7
[  184.299126] RIP: 0033:0x454e79
[  184.302290] RSP: 002b:00007fa6ef25cc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
[  184.309976] RAX: ffffffffffffffda RBX: 00007fa6ef25d6d4 RCX: 0000000000454e79
[  184.317223] RDX: 0000000000000020 RSI: 0000000020000280 RDI: 0000000000000013
[  184.324471] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  184.331717] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000014
[  184.338962] R13: 00000000000003eb R14: 00000000006f7ea8 R15: 000000000000001f
2018/03/31 01:44:51 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_XCRS(r2, 0x4188aea7, &(0x7f0000000280)={0x3, 0x0, [{0x8}, {0x1000}, {}]})

2018/03/31 01:44:51 executing program 1:
r0 = creat(&(0x7f0000000b40)='./file0\x00', 0x20)
ioctl$DRM_IOCTL_AGP_ALLOC(0xffffffffffffff9c, 0xc0206434, &(0x7f0000000b80)={0x5, <r1=>0x0, 0x0, 0x81})
ioctl$DRM_IOCTL_SG_FREE(r0, 0x40106439, &(0x7f0000000bc0)={0x3, r1})
r2 = socket$inet(0x2, 0x6, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f00000008c0)=@broute={'broute\x00', 0x20, 0x2, 0x3e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000280], 0x0, &(0x7f0000000240), &(0x7f0000000280)=ANY=[@ANYBLOB="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"]}, 0x460)
syz_open_dev$sndmidi(&(0x7f0000000c80)='/dev/snd/midiC#D#\x00', 0x2, 0x4080)
getsockopt$inet_sctp6_SCTP_CONTEXT(0xffffffffffffff9c, 0x84, 0x11, &(0x7f0000000000)={<r3=>0x0, 0x7}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r2, 0x84, 0xa, &(0x7f0000000140)={0x0, 0xa2b, 0x4, 0x7, 0x2, 0x20, 0x10000, 0x8a82, r3}, &(0x7f0000000180)=0x20)
setsockopt$inet_group_source_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000680)={0x1000, {{0x2, 0x4e23, @multicast1=0xe0000001}}, {{0x2, 0x4e22, @broadcast=0xffffffff}}}, 0x108)
ioctl$DRM_IOCTL_AGP_ENABLE(0xffffffffffffffff, 0x40086432, &(0x7f0000000100))
r4 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/vs/sync_version\x00', 0x2, 0x0)
ioctl$TIOCGSOFTCAR(r4, 0x5419, &(0x7f00000007c0))
r5 = socket$inet6(0x10, 0x2, 0x0)
sendmsg(r5, &(0x7f0000000080)={&(0x7f0000000240)=@un=@abs={0x1, 0x0, 0x4e23}, 0x80, &(0x7f0000000040)=[{&(0x7f00000001c0)="5500000018007f04002d1cb2a4a280930a0600007da843cf19d0f869390009402f002100040000001900050000fc1700000000dc1338d54400009b84136ef75afb83de448daa7227c43ab8220000060c", 0x50}], 0x1, &(0x7f00000000c0)}, 0x0)
socket$bt_cmtp(0x1f, 0x3, 0x5)
fcntl$addseals(r5, 0x409, 0x7)
syz_open_dev$sndmidi(&(0x7f0000000c00)='/dev/snd/midiC#D#\x00', 0x100000001, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f0000001640)=@broute={'broute\x00', 0x20, 0x1, 0x1e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20001700], 0x0, &(0x7f0000001980), &(0x7f0000001700)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1, [{{{0x13, 0x0, 0x0, 'vcan0\x00', 'ifb0\x00', 'syzkaller0\x00', 'vcan0\x00', @remote={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xbb}, [], @link_local={0x1, 0x80, 0xc2}, [], 0x70, 0xf8, 0x128}, [@common=@dnat={'dnat\x00', 0x10, {{@dev={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa]}, 0xffffffffffffffff}}}, @common=@IDLETIMER={'IDLETIMER\x00', 0x28, {{0x4, 'syz0\x00'}}}]}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8}}]}, {0x0, '\x00', 0x1, 0xffffbffffffffffe}]}, 0x260)
setsockopt$EBT_SO_SET_ENTRIES(0xffffffffffffffff, 0x0, 0x80, &(0x7f0000000840)=@nat={'nat\x00', 0x19, 0x1, 0x200, [0x20000940, 0x0, 0x0, 0x20000970, 0x200009a0], 0x0, &(0x7f0000000800), &(0x7f0000000940)=[{}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x14, 0x98ab, 'teql0\x00', 'ip6gretap0\x00', 'ip_vti0\x00', 'nr0\x00', @empty, [0x0, 0xff, 0x0, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2}, [0xff, 0x0, 0xff, 0x0, 0x0, 0xff], 0x100, 0x138, 0x170, [@time={'time\x00', 0x18, {{0x7, 0x3, 0x13782, 0x14fdf, 0x80, 0x4, 0x1}}}, @nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x2}}}]}, [@snat={'snat\x00', 0x10, {{@random="07901c8f0140"}}}]}, @common=@dnat={'dnat\x00', 0x10, {{@local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}, 0x10}}}}]}]}, 0x278)
syz_open_dev$dmmidi(&(0x7f0000000c40)='/dev/dmmidi#\x00', 0xae6d, 0x200)

2018/03/31 01:44:51 executing program 3 (fault-call:3 fault-nth:32):
mkdir(&(0x7f00000001c0)='./file0\x00', 0x0)
mount(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000380)='./file0\x00', &(0x7f0000000300)='cgroup2\x00', 0x0, 0x0)
r0 = open$dir(&(0x7f000001bff4)='./file0\x00', 0x0, 0x0)
mkdirat(r0, &(0x7f0000000280)='./file0\x00', 0x20)
getdents64(r0, &(0x7f00000007c0)=""/250, 0x1015a)
fadvise64(r0, 0x0, 0x41, 0x3)
unlinkat(r0, &(0x7f0000000080)='./file0\x00', 0x200)
r1 = open$dir(&(0x7f0000000180)='./file0\x00', 0x105600, 0x81)
fchdir(r0)
link(&(0x7f0000000740)='./file1\x00', &(0x7f0000000780)='./file0/file0\x00')
renameat2(r1, &(0x7f0000000200)='./file1\x00', r0, &(0x7f0000000240)='./file0\x00', 0xfd1092750066ec78)
pivot_root(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='./file0\x00')
r2 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000100)='/dev/rfkill\x00', 0x2c42, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_LIST(r2, 0xc0505510, &(0x7f0000000480)={0x1000, 0x1, 0x474, 0x1, &(0x7f0000000140)=[{}]})
unlink(&(0x7f00000000c0)='./file0\x00')
symlinkat(&(0x7f0000000400)='./file0/file0\x00', r0, &(0x7f0000000440)='./file0/file0\x00')
iopl(0x6)
recvmsg$kcm(0xffffffffffffffff, &(0x7f0000000680)={&(0x7f0000000500)=@pppol2tp={0x0, 0x0, {0x0, <r3=>0xffffffffffffffff, {0x0, 0x0, @broadcast}}}, 0x80, &(0x7f0000000600)=[{&(0x7f0000000580)=""/80, 0x50}, {&(0x7f00000008c0)=""/4096, 0x1000}], 0x2, &(0x7f0000000640)=""/45, 0x2d, 0x206e}, 0x20)
r4 = syz_open_dev$sndpcmp(&(0x7f00000018c0)='/dev/snd/pcmC#D#p\x00', 0x5, 0x10a00)
ioctl$KVM_GET_DEVICE_ATTR(r4, 0x4018aee2, &(0x7f0000001940)={0x0, 0x100, 0x9, &(0x7f0000001900)})
recvfrom$ipx(r3, &(0x7f00000006c0)=""/52, 0x34, 0x100, &(0x7f0000000700)={0x4, 0x9a2, 0x4, "dc108d9d4391", 0x5}, 0x10)
renameat(r0, &(0x7f0000001980)='./file1\x00', r4, &(0x7f00000019c0)='./file0/file0\x00')

[  184.397086] sctp: [Deprecated]: syz-executor2 (pid 13393) Use of int in max_burst socket option.
[  184.397086] Use struct sctp_assoc_value instead
[  184.472500] FAULT_INJECTION: forcing a failure.
[  184.472500] name failslab, interval 1, probability 0, space 0, times 0
[  184.483876] CPU: 1 PID: 13405 Comm: syz-executor3 Not tainted 4.16.0-rc7+ #372
[  184.491232] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  184.500577] Call Trace:
[  184.503166]  dump_stack+0x194/0x24d
[  184.506792]  ? arch_local_irq_restore+0x53/0x53
[  184.511468]  should_fail+0x8c0/0xa40
[  184.515182]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  184.520283]  ? trace_hardirqs_off+0x10/0x10
[  184.524605]  ? alloc_fair_sched_group+0xd6/0x530
[  184.529358]  ? sched_create_group+0x35/0x70
[  184.533682]  ? cgroup_apply_control_enable+0x44d/0xbc0
[  184.538958]  ? SyS_mkdirat+0x22b/0x2b0
[  184.542829]  ? print_irqtrace_events+0x270/0x270
[  184.547570]  ? find_held_lock+0x35/0x1d0
[  184.551614]  ? __lock_is_held+0xb6/0x140
[  184.555663]  ? check_same_owner+0x320/0x320
[  184.559965]  ? trace_hardirqs_on_caller+0x421/0x5c0
[  184.564964]  ? rcu_note_context_switch+0x710/0x710
[  184.569882]  should_failslab+0xec/0x120
[  184.573836]  kmem_cache_alloc_node_trace+0x5a/0x760
[  184.578833]  ? __refill_cfs_bandwidth_runtime+0x120/0x120
[  184.584350]  ? sched_create_group+0x22/0x70
[  184.588654]  ? find_next_bit+0xcc/0x100
[  184.592611]  alloc_fair_sched_group+0x1f0/0x530
[  184.597267]  sched_create_group+0x35/0x70
[  184.601397]  cpu_cgroup_css_alloc+0xe/0x30
[  184.605614]  cgroup_apply_control_enable+0x44d/0xbc0
[  184.610703]  ? cgroup_propagate_control+0x570/0x570
[  184.615707]  ? css_populate_dir+0x289/0x420
[  184.620017]  cgroup_mkdir+0x56f/0xfc0
[  184.623800]  ? __lock_is_held+0xb6/0x140
[  184.627847]  ? cgroup_destroy_locked+0x750/0x750
[  184.632582]  ? rcu_read_lock_sched_held+0x108/0x120
[  184.637578]  ? kmem_cache_free+0x258/0x2a0
[  184.641794]  ? set_nlink+0xc1/0x160
[  184.645402]  ? debug_lockdep_rcu_enabled+0x77/0x90
[  184.650311]  ? generic_permission+0x105/0x3c0
[  184.654788]  ? cgroup_destroy_locked+0x750/0x750
[  184.659525]  kernfs_iop_mkdir+0x153/0x1e0
[  184.663656]  vfs_mkdir+0x390/0x600
[  184.667179]  SyS_mkdirat+0x22b/0x2b0
[  184.670874]  ? SyS_mknod+0x480/0x480
[  184.674564]  ? trace_hardirqs_on+0xd/0x10
[  184.678694]  ? do_syscall_64+0xb7/0x940
[  184.682647]  ? SyS_mknod+0x480/0x480
[  184.686337]  do_syscall_64+0x281/0x940
[  184.690205]  ? vmalloc_sync_all+0x30/0x30
[  184.694334]  ? _raw_spin_unlock_irq+0x27/0x70
[  184.698806]  ? finish_task_switch+0x1c1/0x7e0
[  184.703278]  ? syscall_return_slowpath+0x550/0x550
[  184.708189]  ? syscall_return_slowpath+0x2ac/0x550
[  184.713095]  ? prepare_exit_to_usermode+0x350/0x350
[  184.718090]  ? entry_SYSCALL_64_after_hwframe+0x52/0xb7
[  184.723434]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  184.728262]  entry_SYSCALL_64_after_hwframe+0x42/0xb7
[  184.733431] RIP: 0033:0x454e79
[  184.736598] RSP: 002b:00007fa6ef25cc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
[  184.744288] RAX: ffffffffffffffda RBX: 00007fa6ef25d6d4 RCX: 0000000000454e79
[  184.751538] RDX: 0000000000000020 RSI: 0000000020000280 RDI: 0000000000000013
[  184.758783] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  184.766033] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000014
[  184.773282] R13: 00000000000003eb R14: 00000000006f7ea8 R15: 0000000000000020
2018/03/31 01:44:51 executing program 5:
r0 = syz_open_dev$amidi(&(0x7f0000000400)='/dev/amidi#\x00', 0x401, 0x40)
accept4$llc(r0, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, &(0x7f0000000480)=0x10, 0x80800)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f0000005fd8)={'vcan0\x00', <r2=>0x0})
ioctl$KVM_SET_DEVICE_ATTR(r0, 0x4018aee1, &(0x7f0000000500)={0x0, 0x100000001, 0x5a, &(0x7f00000004c0)})
connect$can_bcm(r1, &(0x7f0000001ff0)={0x1d, r2}, 0x10)
ioctl$TIOCGSID(0xffffffffffffff9c, 0x5429, &(0x7f00000002c0)=<r3=>0x0)
waitid(0x0, r3, 0x0, 0x1000009, &(0x7f0000000300))
r4 = syz_open_dev$vcsn(&(0x7f0000000000)='/dev/vcs#\x00', 0xcd8, 0x101000)
getsockopt$SO_BINDTODEVICE(r4, 0x1, 0x19, &(0x7f0000000280), 0x10)
ioctl$EVIOCGABS0(r4, 0x80184540, &(0x7f0000000240)=""/64)
bind$vsock_dgram(r1, &(0x7f00000003c0)={0x28, 0x0, 0x2711, @reserved=0x1}, 0x10)
exit(0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000200)={r4, 0x0, 0x47, 0xde, &(0x7f0000000080)="3541471374d1e455c1f501bb3e7418a21f930d9fb82ac3588f54ad5a1a9e778bdf654fa39f19bcbc6ee4636a10d409c877cfe11ba160f73d4cde40422564bfdb62d8e5f8ba5097", &(0x7f0000000100)=""/222, 0x4, 0x3f}, 0x28)
ioctl$KVM_SET_TSS_ADDR(r4, 0xae47, 0xd000)
ioctl$KVM_CHECK_EXTENSION(r4, 0xae03, 0xffffffffffffffff)
openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000580)='/dev/qat_adf_ctl\x00', 0x4600, 0x0)
sendmsg$can_raw(r1, &(0x7f0000001fc8)={&(0x7f000000a000)={0x1d}, 0x10, &(0x7f0000000040)={&(0x7f000000a000)=@canfd={{0x1}, 0x0, 0x0, 0x0, 0x0, "0327e1b22b5fcef7739c699f5ff986ca08990039576a7d5cb2bdac3fa80acf584ecb5fee496e6866856b76b5f700000000000000004e2f9663a918fa1efd9b0b"}, 0x48}, 0x1}, 0x0)
ioctl$VHOST_GET_VRING_ENDIAN(r0, 0x4008af14, &(0x7f0000000540)={0x0, 0x9})

2018/03/31 01:44:51 executing program 7:
clone(0x200, &(0x7f0000000100)="abbcd764d5b6fd853189b4a102b248f0de7c0a5cc328ca13455598dc3d760fa566c64d7cb06a7e15cdb085165670f42b32809442c69a5942d03eb3fd42bf0ebb0272fc4beb43f269f26f57bbb67316f7c76c8d570edaa564720b4dfd8f32453fc2354ddc753155ac051e9e9657989f0bbf1c03e4cd9f735c6d1b95719dbbb1c04092f54f44256722d954f0000000000000000000000000000000", &(0x7f00000000c0), &(0x7f00008c8000), &(0x7f0000828ffe))
mknod(&(0x7f0000000000)='./file0\x00', 0x1000000000001040, 0x0)
execve(&(0x7f000007b000)='./file0\x00', &(0x7f0000000180), &(0x7f0000000040))
r0 = gettid()
r1 = syz_open_dev$mice(&(0x7f0000149000)='/dev/input/mice\x00', 0x0, 0x0)
execve(&(0x7f00000001c0)='./file0\x00', &(0x7f0000001540)=[&(0x7f0000000200)='user\x00', &(0x7f0000000240)='vmnet0\x00', &(0x7f0000000280)='user\x00', &(0x7f0000001480)='user\x00'], &(0x7f00000015c0))
msgget$private(0x0, 0x400)
timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000))
uselib(&(0x7f00000002c0)='./file0/file0\x00')
mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0xffffffffffffffff, 0x32, 0xffffffffffffffff, 0x0)
getsockopt$inet_sctp6_SCTP_INITMSG(r1, 0x84, 0x2, &(0x7f0000000040), &(0x7f0000000080)=0x8)
tkill(r0, 0x1000000000015)

2018/03/31 01:44:51 executing program 4:
r0 = syz_open_dev$sg(&(0x7f000028fff7)='/dev/sg#\x00', 0x0, 0x0)
ioctl(r0, 0x4000000000001276, &(0x7f0000000040))
msgget(0x2, 0x0)
getsockopt$inet_sctp6_SCTP_AUTO_ASCONF(r0, 0x84, 0x1e, &(0x7f0000000240), &(0x7f0000000340)=0x4)
getsockopt$nfc_llcp(0xffffffffffffffff, 0x118, 0x4, &(0x7f0000000740)=""/223, 0xdf)
setsockopt$inet_mreq(r0, 0x0, 0x23, &(0x7f00000002c0)={@empty, @remote={0xac, 0x14, 0x14, 0xbb}}, 0x8)
r1 = accept4$nfc_llcp(r0, &(0x7f0000000940), &(0x7f0000000080)=0x60, 0x800)
ioctl$SNDRV_CTL_IOCTL_ELEM_INFO(0xffffffffffffffff, 0xc1105511, &(0x7f0000000100)={{0x0, 0x0, 0x0, 0x0, "386aea20273dc03c3d18dd0dbd4a0ca15f9f580393cc4ec3b8ee256b9aa630224ba64c6ff43ee01d2996c914"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "eda422cd37591b3a5a7a683380f7e0b9e790c6b72cd0a4f3342f7431c1699a305ca3091bb2320e8df4e298a2cca26637866a68c1426ffbd8a6c7da1d8ea77d9d", &(0x7f00000000c0)='/dev/snd/controlC#\x00', 0x13})
r2 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000380)='/proc/self/net/pfkey\x00', 0x4000, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
add_key$user(&(0x7f0000000480)='user\x00', &(0x7f00000004c0)={0x73, 0x79, 0x7a, 0x3}, &(0x7f0000000500)="d3238eea76b0470531092a0a77b0b49789a0fc97b8f8b9e23a2a5a5a0c169ed6e83480b4801dbf79db3527904ee3128c05ce2806e210237c36b88ceabe99d8784860e5d0e91fe33d38d0133e056cdd1e2910d57fc5eb1b23db3b60a7077ff33bb6c7445cd258ee25f9187269c22d1ed05acb2b9b599bd285b692257a631754ab9befebd3fdb3167361c24c5c5dcf90e476e052b9d22362c57878cb7205fe36", 0x9f, 0xfffffffffffffffe)
ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f0000000300)={'gretap0\x00', {0x2, 0x4e24, @loopback=0x7f000001}})
keyctl$instantiate_iov(0x14, 0x0, &(0x7f0000000780)=[{&(0x7f0000000840)="edb4a01f68d76905035a4ebdd427d31585a5a650581902b1c077f74ca8f1ce7d3e2f6e1c6760433af9664b3f3bebab3a1a1c4ef86f42c39b758accc1e7637bb18d28248dc7a1719b73388830b162613b17fd02220bd1fe2ad86adb96efcfc672d126ae58f745fba0e7534cdbae947449df767bd76a0c38b5752dcd13f7065edea86dc156c0708e76c2c99a94a95f1e93ff73cb3eb94e06d399cf48aaac7963d13e4b3a6b32bc2b19d5461545dcf3f71bb24442d286421f8d891d77a3c4c1c9435bbdf187682c22ded22b669b7790d05b4894166a2d5f33098cf908a23a2e0671d824e88942fbe0bd1416c98d9b", 0xed}], 0x1, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_UNREGISTER_COALESCED_MMIO(r4, 0x4010ae68, &(0x7f0000000000)={0x0, 0x5000})
ioctl$KVM_CREATE_PIT2(r4, 0x4040ae77, &(0x7f0000000440)={0xfffffffffffffff7})
r5 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x1)
setsockopt$inet_tcp_TCP_ULP(r2, 0x6, 0x1f, &(0x7f0000000280)='tls\x00', 0x4)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f0000005fd8)={'vcan0\x00'})
socket$can_raw(0x1d, 0x3, 0x1)
ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
socket$inet6(0xa, 0x0, 0x0)
r6 = syz_open_dev$dspn(&(0x7f0000000040)='/dev/dsp#\x00', 0x0, 0x0)
connect$vsock_stream(r6, &(0x7f0000000080)={0x28, 0x0, 0xffffffff, @my=0x1}, 0x10)
dup2(r3, r5)
dup3(r3, r4, 0x0)
ioctl$KVM_CREATE_DEVICE(r0, 0xc00caee0, &(0x7f0000000180)={0x0, r1, 0x1})
ftruncate(0xffffffffffffffff, 0x45)
lseek(0xffffffffffffffff, 0x0, 0x3)

2018/03/31 01:44:51 executing program 1:
r0 = creat(&(0x7f0000000b40)='./file0\x00', 0x20)
ioctl$DRM_IOCTL_AGP_ALLOC(0xffffffffffffff9c, 0xc0206434, &(0x7f0000000b80)={0x5, <r1=>0x0, 0x0, 0x81})
ioctl$DRM_IOCTL_SG_FREE(r0, 0x40106439, &(0x7f0000000bc0)={0x3, r1})
r2 = socket$inet(0x2, 0x6, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f00000008c0)=@broute={'broute\x00', 0x20, 0x2, 0x3e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000280], 0x0, &(0x7f0000000240), &(0x7f0000000c80)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff01000000110000000000000000006970366772657461703000000000f8010000000000006e000000000000000000697036746e6c3000000000000000000073797a5f74756e0000000000000000000180c200000000000000ff00aaaaaaaaaabb00000000000000007000000008010000580100005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a30000000000000000000000000000000000000000000000000004c45440000000000000000000000000000000000000000000000000000000000280000000000000073797a3000000000000000000000000000000000000000000000000000010000000000000000000049444c4554494d4552000000000000000000000000000000000000000000000028000000000000000000010073797a30000000090000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001000000ffffffff010000000d0000000000000086dd73797a6b616c6c65723000000000000074756e6c3000000000000000000000007369743000000000000000000000000069666230000000000000000000000000000000000000000000000000ffffffffffff000000000000000030010000b001000000020000697036000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000ffffac1414aa0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006c696d6974000000000000000000000000000000000000000000000000000000200000000000000000000000ec00000000000000000000000000000000000000000000000000000049444c4554494d4552000000000000000000000000000000000000000000000028000000000000008100000073797a3100000000000000000000000000000000000000000000000000000000000000004e46515545554500000000000000000000000000000000000000000000000000080000000000000000000000000000004c45440000000000000000000000000000000000000000000000000000000000280000000000000073797a3000000000000000000000000000000000000000000000000000000000000000000000000027a24d51b18dc4af49d8e9c218d9b2c6a531a84eb727d680d4911888d258883cb981eb59b4f9ef6baaad76f0df76884eab874d0581effab827b866bc197d1129a6eba0df22685b7a9211db511da7184832d459e8df9eaafb0e955e0d02f826000bca88dc3d6c9ab833fb3c8537094ba528774256a51a5f041b1eb2795a247d628b108cbfce6fa3a5d57523f3ddf8064ecfb431eca5f76fadf40a905c50ee152808b6e3ccb675a0"]}, 0x504)
getsockopt$inet6_dccp_buf(r0, 0x21, 0xf, &(0x7f00000002c0)=""/129, &(0x7f0000000380)=0x81)
getsockopt$inet_sctp6_SCTP_CONTEXT(0xffffffffffffff9c, 0x84, 0x11, &(0x7f0000000000)={<r3=>0x0, 0x7}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r2, 0x84, 0xa, &(0x7f0000000140)={0x0, 0xa2b, 0x4, 0x7, 0x2, 0x20, 0x10000, 0x8a82, r3}, &(0x7f0000000180)=0x20)
setsockopt$inet_group_source_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000680)={0x1000, {{0x2, 0x4e23, @multicast1=0xe0000001}}, {{0x2, 0x4e22, @broadcast=0xffffffff}}}, 0x108)
ioctl$DRM_IOCTL_AGP_ENABLE(0xffffffffffffffff, 0x40086432, &(0x7f0000000100))
r4 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/vs/sync_version\x00', 0x2, 0x0)
ioctl$TIOCGSOFTCAR(r4, 0x5419, &(0x7f00000007c0))
r5 = socket$inet6(0x10, 0x2, 0x0)
sendmsg(r5, &(0x7f0000000080)={&(0x7f0000000240)=@un=@abs={0x1, 0x0, 0x4e23}, 0x80, &(0x7f0000000040)=[{&(0x7f00000001c0)="5500000018007f04002d1cb2a4a280930a0600007da843cf19d0f869390009402f002100040000001900050000fc1700000000dc1338d54400009b84136ef75afb83de448daa7227c43ab8220000060c", 0x50}], 0x1, &(0x7f00000000c0)}, 0x0)
recvfrom(0xffffffffffffffff, &(0x7f0000000280)=""/191, 0xbf, 0x40000040, &(0x7f0000000340)=@can={0x1d}, 0x80)
r6 = syz_open_dev$loop(&(0x7f0000ca9ff5)='/dev/loop#\x00', 0x0, 0x82)
perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0xe2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r7, &(0x7f000074ffc8)={&(0x7f000001a000)={0x10}, 0xc, &(0x7f000000e000)={&(0x7f00000000c0)={0x14, 0x4000000000020, 0x2ff, 0x0, 0x0, {0x1}}, 0xffffffffffffff80}, 0x1}, 0x0)
r8 = memfd_create(&(0x7f00000000c0)="74086e750000000000000000008c00", 0x0)
ioctl$LOOP_CHANGE_FD(r8, 0x4c06, 0xffffffffffffffff)
pwritev(r8, &(0x7f0000f50f90)=[{&(0x7f0000000040)="aa", 0x1}], 0x1, 0x81006)
r9 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000200)='/dev/loop-control\x00', 0x800, 0x0)
getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(0xffffffffffffffff, 0x84, 0x6, &(0x7f0000000640)={<r10=>0x0, @in={{0x2, 0x4e23, @local={0xac, 0x14, 0x14, 0xaa}}}}, &(0x7f0000000700)=0x84)
getsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(r9, 0x84, 0x22, &(0x7f0000000100)={0x8, 0x0, 0x2, 0x2, r10}, &(0x7f0000000140)=0x51)
ioctl$DRM_IOCTL_WAIT_VBLANK(0xffffffffffffffff, 0xc018643a, &(0x7f0000000500)={0x0, 0x3ff, 0x2c})
fcntl$F_SET_RW_HINT(r8, 0x40c, &(0x7f0000000600))
ioctl$LOOP_CHANGE_FD(r6, 0x4c00, r8)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000240)='/dev/loop-control\x00', 0x100, 0x0)
socket(0xa, 0x80806, 0x0)

2018/03/31 01:44:51 executing program 2:
r0 = syz_open_dev$loop(&(0x7f0000308000)='/dev/loop#\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS(r0, 0xc0481273, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "3900ea631d00000000020000010000009f00000023f7b7d65f90b0e6330ee739b319d8f6aa6bd58d1443474482e85040fb4947ebb55bd19f335b5bffff0001f3", "cfa430745a540dc1c149b7b81579f6a41c51f7d51933223e82ab867dac761faf"})
r1 = socket(0x10, 0x2, 0xc)
write(r1, &(0x7f0000000000)="1f0000000104ff00fd4354c007110000f305010008000100010423dcffdf00", 0x1f)
write(r1, &(0x7f00000001c0)="1f0000000104fffff13b54c007110009f30501000b00044000000000020000", 0x1f)
r2 = syz_open_procfs(0x0, &(0x7f000060c000)='oom_score_adj\x00')
setsockopt$inet_sctp6_SCTP_RECVNXTINFO(r2, 0x84, 0x21, &(0x7f00000003c0)=0x200, 0x4)
r3 = getpid()
sched_setparam(r3, &(0x7f0000000400))
syz_open_dev$loop(&(0x7f0000ca9ff5)='/dev/loop#\x00', 0x0, 0x82)
r4 = memfd_create(&(0x7f0000614000)="74086e750000000000000000008c00", 0x0)
pwritev(0xffffffffffffffff, &(0x7f0000f50f90)=[{&(0x7f0000000040)="aa", 0x1}], 0x1, 0x81006)
ioctl$sock_bt_hidp_HIDPGETCONNINFO(r1, 0x800448d3, &(0x7f0000000440)={{0x60000000, 0x40, 0x4, 0x1, 0x10001, 0x2}, 0x6, 0x0, 0x99, 0x0, 0x7, "e02f94f384aedf2ca05e166aaedcccec7301a95b62125b0a1319eb1e0ad95bd4dc52766005c7fdec991968df78480f7ea3bcb2c0139c0a55f8d247b3b53951f9099544a981938993ee7699d37bc1229c4ef1bc25c0612a7b82ca67b2a36d2fd6aa0aa5e50c35ef5ad40eeba6b0609c528acb5a47a9843ea99d64f347a903a586"})
ioctl$LOOP_CHANGE_FD(0xffffffffffffffff, 0x4c00, r4)
r5 = accept4$inet6(r4, &(0x7f0000000100)={0x0, 0x0, 0x0, @mcast1}, &(0x7f0000000140)=0x1c, 0x800)
getsockopt$inet_IP_IPSEC_POLICY(r2, 0x0, 0x10, &(0x7f0000000940)={{{@in6=@local, @in6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r6=>0x0}}, {{@in6=@loopback}, 0x0, @in=@local}}, &(0x7f0000000200)=0x7d)
perf_event_open(&(0x7f000001d000)={0x5, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @perf_bp={&(0x7f0000000000), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r7 = socket(0x15, 0x80005, 0x0)
getsockopt(r7, 0x200000000114, 0x8, &(0x7f0000ee3000)=""/4096, &(0x7f0000000000)=0x1000)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f00000007c0), &(0x7f0000000540)=0xc)
fchown(r4, r6, 0x0)
mlock(&(0x7f000000c000/0x3000)=nil, 0x3000)
r8 = syz_open_dev$binder(&(0x7f0000000100)='/dev/binder#\x00', 0xffffffffffffffff, 0x806)
ioctl$BINDER_SET_CONTEXT_MGR(r8, 0x40046207, 0x0)
mmap$binder(&(0x7f000000c000/0x2000)=nil, 0x2000, 0x0, 0x12, r8, 0x0)
ioctl$BINDER_WRITE_READ(r8, 0xc0306201, &(0x7f0000000040)={0x14, 0x0, &(0x7f0000000000)=[@acquire_done={0x40486311}], 0x1c4, 0x0, &(0x7f0000011f9d)})
getsockopt$inet_sctp6_SCTP_AUTO_ASCONF(0xffffffffffffffff, 0x84, 0x1e, &(0x7f0000000140), &(0x7f0000000180)=0x4)
ioctl$BINDER_WRITE_READ(r8, 0xc0306201, &(0x7f0000000340)={0x4, 0x0, &(0x7f00000001c0)=[@exit_looper={0x630d}], 0x0, 0x0, &(0x7f0000000240)})
getsockopt$inet_sctp6_SCTP_INITMSG(r5, 0x84, 0x2, &(0x7f00000002c0), &(0x7f0000000380)=0x8)
getsockopt$inet_sctp_SCTP_MAXSEG(r2, 0x84, 0xd, &(0x7f00000000c0), &(0x7f0000000240)=0x4)

2018/03/31 01:44:51 executing program 3 (fault-call:3 fault-nth:33):
mkdir(&(0x7f00000001c0)='./file0\x00', 0x0)
mount(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000380)='./file0\x00', &(0x7f0000000300)='cgroup2\x00', 0x0, 0x0)
r0 = open$dir(&(0x7f000001bff4)='./file0\x00', 0x0, 0x0)
mkdirat(r0, &(0x7f0000000280)='./file0\x00', 0x20)
getdents64(r0, &(0x7f00000007c0)=""/250, 0x1015a)
fadvise64(r0, 0x0, 0x41, 0x3)
unlinkat(r0, &(0x7f0000000080)='./file0\x00', 0x200)
r1 = open$dir(&(0x7f0000000180)='./file0\x00', 0x105600, 0x81)
fchdir(r0)
link(&(0x7f0000000740)='./file1\x00', &(0x7f0000000780)='./file0/file0\x00')
renameat2(r1, &(0x7f0000000200)='./file1\x00', r0, &(0x7f0000000240)='./file0\x00', 0xfd1092750066ec78)
pivot_root(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='./file0\x00')
r2 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000100)='/dev/rfkill\x00', 0x2c42, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_LIST(r2, 0xc0505510, &(0x7f0000000480)={0x1000, 0x1, 0x474, 0x1, &(0x7f0000000140)=[{}]})
unlink(&(0x7f00000000c0)='./file0\x00')
symlinkat(&(0x7f0000000400)='./file0/file0\x00', r0, &(0x7f0000000440)='./file0/file0\x00')
iopl(0x6)
recvmsg$kcm(0xffffffffffffffff, &(0x7f0000000680)={&(0x7f0000000500)=@pppol2tp={0x0, 0x0, {0x0, <r3=>0xffffffffffffffff, {0x0, 0x0, @broadcast}}}, 0x80, &(0x7f0000000600)=[{&(0x7f0000000580)=""/80, 0x50}, {&(0x7f00000008c0)=""/4096, 0x1000}], 0x2, &(0x7f0000000640)=""/45, 0x2d, 0x206e}, 0x20)
r4 = syz_open_dev$sndpcmp(&(0x7f00000018c0)='/dev/snd/pcmC#D#p\x00', 0x5, 0x10a00)
ioctl$KVM_GET_DEVICE_ATTR(r4, 0x4018aee2, &(0x7f0000001940)={0x0, 0x100, 0x9, &(0x7f0000001900)})
recvfrom$ipx(r3, &(0x7f00000006c0)=""/52, 0x34, 0x100, &(0x7f0000000700)={0x4, 0x9a2, 0x4, "dc108d9d4391", 0x5}, 0x10)
renameat(r0, &(0x7f0000001980)='./file1\x00', r4, &(0x7f00000019c0)='./file0/file0\x00')

2018/03/31 01:44:51 executing program 0:
r0 = memfd_create(&(0x7f0000000000)="74086e750000000000000000008c00", 0x0)
fcntl$F_SET_FILE_RW_HINT(r0, 0x40e, &(0x7f0000000040)=0x4)
write$sndseq(r0, &(0x7f0000000140), 0x0)
shmget$private(0x0, 0x2000, 0x7c000000, &(0x7f0000ffc000/0x2000)=nil)
setsockopt$netlink_NETLINK_DROP_MEMBERSHIP(r0, 0x10e, 0x2, &(0x7f0000000080)=0x8, 0x4)

2018/03/31 01:44:51 executing program 6:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x200, 0x0)
socketpair$inet6_icmp_raw(0xa, 0x3, 0x3a, &(0x7f0000000680)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
setsockopt$sock_linger(r1, 0x1, 0xd, &(0x7f00000006c0)={0x400, 0x9}, 0x8)
perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
mmap(&(0x7f0000000000/0x9d7000)=nil, 0x9d7000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x7)
perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r4, &(0x7f0000e5b000)={0x2, 0x4e20, @multicast1=0xe0000001}, 0x10)
syz_open_dev$sg(&(0x7f0000000440)='/dev/sg#\x00', 0x0, 0x0)
connect$inet(r4, &(0x7f0000000100)={0x2, 0x4e20, @multicast2=0xe0000002}, 0x10)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000eb0fb8)={0x1, 0x3, &(0x7f00009ff000)=@framed={{0x18}, [], {0x95}}, &(0x7f00002bf000)='syzkaller\x00', 0x4, 0xb7, &(0x7f00006ab000)=""/183}, 0x48)
setsockopt$inet_tcp_int(r4, 0x6, 0x19, &(0x7f0000000240)=0x8, 0x4)
setsockopt$SO_BINDTODEVICE(r4, 0x1, 0x19, &(0x7f0000000000)="6970365f76746930000000000400", 0x10)
r6 = socket$kcm(0x29, 0x2, 0x0)
ioctl$sock_kcm_SIOCKCMATTACH(r6, 0x89e0, &(0x7f000031aff8)={r4, r5})
ioctl$sock_kcm_SIOCKCMCLONE(r6, 0x89e2, &(0x7f00000002c0)={<r7=>0xffffffffffffffff})
sendmsg$nl_xfrm(r7, &(0x7f0000000780)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000740)={&(0x7f0000000480)=@updpolicy={0xb8, 0x19, 0x0, 0x0, 0x0, {{@in=@loopback=0x7f000001, @in6=@mcast1={0xff, 0x1, [], 0x1}}}}, 0xffcb}, 0x1}, 0x0)
ioctl$sock_kcm_SIOCKCMUNATTACH(r7, 0x89e1, &(0x7f0000000040)={r4})
r8 = fcntl$getown(r3, 0x9)
r9 = accept4$inet(0xffffffffffffff9c, &(0x7f0000000700)={0x0, 0x0, @broadcast}, &(0x7f0000000740)=0x10, 0x80000)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r9, 0x84, 0x64, &(0x7f0000000300)=[@in6={0xa, 0x4e23, 0x0, @dev={0xfe, 0x80, [], 0xf}, 0x6}, @in={0x2, 0x0, @local={0xac, 0x14, 0x14, 0xaa}}, @in={0x2, 0x4e23, @multicast1=0xe0000001}, @in={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x10}}, @in={0x2, 0x4e20, @multicast1=0xe0000001}, @in={0x2, 0x4e24}, @in={0x2, 0x4e24, @broadcast=0xffffffff}, @in6={0xa, 0x4e21, 0xed34, @local={0xfe, 0x80, [], 0xaa}, 0x3}, @in={0x2, 0x4e23, @loopback=0x7f000001}], 0xfffffffffffffe00)
ptrace$setregset(0x4205, r8, 0x0, &(0x7f00000005c0)={&(0x7f0000000080)="449ed0dd6831a7fb44eca4221b1fb01abfec082aa7d0ee6f0ba9db0ece7da2bd3f", 0x21})
r10 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r11 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x1fffd, 0x0)
syz_open_dev$sndtimer(&(0x7f00000000c0)='/dev/snd/timer\x00', 0x0, 0x0)
read(r0, &(0x7f0000000140)=""/50, 0x32)
fcntl$dupfd(r10, 0x0, r11)

[  184.861512] netlink: 3 bytes leftover after parsing attributes in process `syz-executor2'.
[  184.876326] kernel msg: ebtables bug: please report to author: Wrong len argument
[  184.882629] FAULT_INJECTION: forcing a failure.
[  184.882629] name failslab, interval 1, probability 0, space 0, times 0
[  184.895220] CPU: 1 PID: 13428 Comm: syz-executor3 Not tainted 4.16.0-rc7+ #372
[  184.902574] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  184.902955] netlink: 'syz-executor2': attribute type 4 has an invalid length.
[  184.911914] Call Trace:
[  184.911935]  dump_stack+0x194/0x24d
[  184.911952]  ? arch_local_irq_restore+0x53/0x53
[  184.911973]  should_fail+0x8c0/0xa40
[  184.911984]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  184.911997]  ? trace_hardirqs_off+0x10/0x10
[  184.943131]  ? alloc_fair_sched_group+0xd6/0x530
[  184.947865]  ? sched_create_group+0x35/0x70
[  184.952168]  ? cgroup_apply_control_enable+0x44d/0xbc0
[  184.957421]  ? SyS_mkdirat+0x22b/0x2b0
[  184.961289]  ? print_irqtrace_events+0x270/0x270
[  184.966031]  ? find_held_lock+0x35/0x1d0
[  184.970073]  ? __lock_is_held+0xb6/0x140
[  184.974116]  ? check_same_owner+0x320/0x320
[  184.978415]  ? trace_hardirqs_on_caller+0x421/0x5c0
[  184.983406]  ? rcu_note_context_switch+0x710/0x710
[  184.988319]  should_failslab+0xec/0x120
[  184.992275]  kmem_cache_alloc_node_trace+0x5a/0x760
[  184.997273]  ? __refill_cfs_bandwidth_runtime+0x120/0x120
[  185.002785]  ? sched_create_group+0x22/0x70
[  185.007083]  ? find_next_bit+0xcc/0x100
[  185.011040]  alloc_fair_sched_group+0x1f0/0x530
[  185.015692]  sched_create_group+0x35/0x70
[  185.019817]  cpu_cgroup_css_alloc+0xe/0x30
[  185.024033]  cgroup_apply_control_enable+0x44d/0xbc0
[  185.029119]  ? cgroup_propagate_control+0x570/0x570
[  185.034114]  ? css_populate_dir+0x289/0x420
[  185.038413]  cgroup_mkdir+0x56f/0xfc0
[  185.042186]  ? __lock_is_held+0xb6/0x140
[  185.046225]  ? cgroup_destroy_locked+0x750/0x750
[  185.050956]  ? rcu_read_lock_sched_held+0x108/0x120
[  185.055948]  ? kmem_cache_free+0x258/0x2a0
[  185.060159]  ? set_nlink+0xc1/0x160
[  185.063765]  ? debug_lockdep_rcu_enabled+0x77/0x90
[  185.068669]  ? generic_permission+0x105/0x3c0
[  185.073140]  ? cgroup_destroy_locked+0x750/0x750
[  185.077870]  kernfs_iop_mkdir+0x153/0x1e0
[  185.081993]  vfs_mkdir+0x390/0x600
[  185.085515]  SyS_mkdirat+0x22b/0x2b0
[  185.089206]  ? SyS_mknod+0x480/0x480
[  185.092895]  ? trace_hardirqs_on+0xd/0x10
[  185.097026]  ? do_syscall_64+0xb7/0x940
[  185.100977]  ? SyS_mknod+0x480/0x480
[  185.104666]  do_syscall_64+0x281/0x940
[  185.108533]  ? vmalloc_sync_all+0x30/0x30
[  185.112661]  ? _raw_spin_unlock_irq+0x27/0x70
[  185.117135]  ? finish_task_switch+0x1c1/0x7e0
[  185.121607]  ? syscall_return_slowpath+0x550/0x550
[  185.126514]  ? syscall_return_slowpath+0x2ac/0x550
[  185.131418]  ? prepare_exit_to_usermode+0x350/0x350
[  185.136412]  ? entry_SYSCALL_64_after_hwframe+0x52/0xb7
[  185.141753]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  185.146573]  entry_SYSCALL_64_after_hwframe+0x42/0xb7
[  185.151740] RIP: 0033:0x454e79
[  185.154905] RSP: 002b:00007fa6ef25cc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
[  185.162591] RAX: ffffffffffffffda RBX: 00007fa6ef25d6d4 RCX: 0000000000454e79
[  185.169836] RDX: 0000000000000020 RSI: 0000000020000280 RDI: 0000000000000013
[  185.177082] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  185.184325] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000014
[  185.191572] R13: 00000000000003eb R14: 00000000006f7ea8 R15: 0000000000000021
[  185.201506] kernel msg: ebtables bug: please report to author: Wrong len argument
[  185.215399] binder: 13415:13417 transaction failed 29201/-28, size 2199023255581-682899800065 line 2963
2018/03/31 01:44:51 executing program 6:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x200, 0x0)
socketpair$inet6_icmp_raw(0xa, 0x3, 0x3a, &(0x7f0000000680)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
setsockopt$sock_linger(r1, 0x1, 0xd, &(0x7f00000006c0)={0x400, 0x9}, 0x8)
perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
mmap(&(0x7f0000000000/0x9d7000)=nil, 0x9d7000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x7)
perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r4, &(0x7f0000e5b000)={0x2, 0x4e20, @multicast1=0xe0000001}, 0x10)
syz_open_dev$sg(&(0x7f0000000440)='/dev/sg#\x00', 0x0, 0x0)
connect$inet(r4, &(0x7f0000000100)={0x2, 0x4e20, @multicast2=0xe0000002}, 0x10)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000eb0fb8)={0x1, 0x3, &(0x7f00009ff000)=@framed={{0x18}, [], {0x95}}, &(0x7f00002bf000)='syzkaller\x00', 0x4, 0xb7, &(0x7f00006ab000)=""/183}, 0x48)
setsockopt$inet_tcp_int(r4, 0x6, 0x19, &(0x7f0000000240)=0x8, 0x4)
setsockopt$SO_BINDTODEVICE(r4, 0x1, 0x19, &(0x7f0000000000)="6970365f76746930000000000400", 0x10)
r6 = socket$kcm(0x29, 0x2, 0x0)
ioctl$sock_kcm_SIOCKCMATTACH(r6, 0x89e0, &(0x7f000031aff8)={r4, r5})
ioctl$sock_kcm_SIOCKCMCLONE(r6, 0x89e2, &(0x7f00000002c0)={<r7=>0xffffffffffffffff})
sendmsg$nl_xfrm(r7, &(0x7f0000000780)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000740)={&(0x7f0000000480)=@updpolicy={0xb8, 0x19, 0x0, 0x0, 0x0, {{@in=@loopback=0x7f000001, @in6=@mcast1={0xff, 0x1, [], 0x1}}}}, 0xffcb}, 0x1}, 0x0)
ioctl$sock_kcm_SIOCKCMUNATTACH(r7, 0x89e1, &(0x7f0000000040)={r4})
r8 = fcntl$getown(r3, 0x9)
r9 = accept4$inet(0xffffffffffffff9c, &(0x7f0000000700)={0x0, 0x0, @broadcast}, &(0x7f0000000740)=0x10, 0x80000)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r9, 0x84, 0x64, &(0x7f0000000300)=[@in6={0xa, 0x4e23, 0x0, @dev={0xfe, 0x80, [], 0xf}, 0x6}, @in={0x2, 0xff, @local={0xac, 0x14, 0x14, 0xaa}}, @in={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x10}}, @in={0x2, 0x4e20, @multicast1=0xe0000001}, @in={0x2, 0x4e24}, @in={0x2, 0x4e24, @broadcast=0xffffffff}, @in6={0xa, 0x4e21, 0xed34, @local={0xfe, 0x80, [], 0xaa}, 0x3}, @in={0x2, 0x4e23, @loopback=0x7f000001}], 0x98)
ptrace$setregset(0x4205, r8, 0x0, &(0x7f00000005c0)={&(0x7f0000000080)="449ed0dd6831a7fb44eca4221b1fb01abfec082aa7d0ee6f0ba9db0ece7da2bd3f", 0x21})
r10 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r11 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x1fffd, 0x0)
syz_open_dev$sndtimer(&(0x7f00000000c0)='/dev/snd/timer\x00', 0x0, 0x0)
read(r0, &(0x7f0000000140)=""/50, 0x32)
fcntl$dupfd(r10, 0x0, r11)

2018/03/31 01:44:51 executing program 0:
clock_adjtime(0xa, &(0x7f000090e000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8})

2018/03/31 01:44:51 executing program 1:
r0 = creat(&(0x7f0000000b40)='./file0\x00', 0x20)
ioctl$DRM_IOCTL_AGP_ALLOC(0xffffffffffffff9c, 0xc0206434, &(0x7f0000000b80)={0x5, <r1=>0x0, 0x0, 0x81})
ioctl$DRM_IOCTL_SG_FREE(r0, 0x40106439, &(0x7f0000000bc0)={0x3, r1})
r2 = socket$inet(0x2, 0x6, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f00000008c0)=@broute={'broute\x00', 0x20, 0x2, 0x3e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000280], 0x0, &(0x7f0000000240), &(0x7f0000000280)=ANY=[@ANYBLOB="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"]}, 0x460)
getsockopt$inet_sctp6_SCTP_CONTEXT(0xffffffffffffff9c, 0x84, 0x11, &(0x7f0000000000)={<r3=>0x0, 0x7}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r2, 0x84, 0xa, &(0x7f0000000140)={0x0, 0xa2b, 0x4, 0x7, 0x2, 0x20, 0x10000, 0x8a82, r3}, &(0x7f0000000180)=0x20)
setsockopt$inet_group_source_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000680)={0x1000, {{0x2, 0x4e23, @multicast1=0xe0000001}}, {{0x2, 0x4e22, @broadcast=0xffffffff}}}, 0x108)
ioctl$DRM_IOCTL_AGP_ENABLE(0xffffffffffffffff, 0x40086432, &(0x7f0000000100))
r4 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/vs/sync_version\x00', 0x2, 0x0)
ioctl$sock_inet_SIOCDARP(r4, 0x8953, &(0x7f0000000c80)={{0x2, 0x4e23, @loopback=0x7f000001}, {0x6, @dev={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0x15}}, 0x50, {0x2, 0x4e24}, 'gre0\x00'})
ioctl$TIOCGSOFTCAR(r4, 0x5419, &(0x7f00000007c0))
r5 = socket$inet6(0x10, 0x2, 0x0)
sendmsg(r5, &(0x7f0000000080)={&(0x7f0000000240)=@un=@abs={0x1, 0x0, 0x4e23}, 0x80, &(0x7f0000000040)=[{&(0x7f00000001c0)="5500000018007f04002d1cb2a4a280930a0600007da843cf19d0f869390009402f002100040000001900050000fc1700000000dc1338d54400009b84136ef75afb83de448daa7227c43ab8220000060c", 0x50}], 0x1, &(0x7f00000000c0)}, 0x0)
socket$bt_cmtp(0x1f, 0x3, 0x5)
fcntl$addseals(r5, 0x409, 0x7)
syz_open_dev$sndmidi(&(0x7f0000000c00)='/dev/snd/midiC#D#\x00', 0x100000001, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f0000001640)=@broute={'broute\x00', 0x20, 0x1, 0x1e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20001700], 0x0, &(0x7f0000001980), &(0x7f0000001700)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1, [{{{0x13, 0x0, 0x0, 'vcan0\x00', 'ifb0\x00', 'syzkaller0\x00', 'vcan0\x00', @remote={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xbb}, [], @link_local={0x1, 0x80, 0xc2}, [], 0x70, 0xf8, 0x128}, [@common=@dnat={'dnat\x00', 0x10, {{@dev={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa]}, 0xffffffffffffffff}}}, @common=@IDLETIMER={'IDLETIMER\x00', 0x28, {{0x4, 'syz0\x00'}}}]}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8}}]}, {0x0, '\x00', 0x1, 0xffffbffffffffffe}]}, 0x260)
syz_open_dev$dmmidi(&(0x7f0000000d00)='/dev/dmmidi#\x00', 0x80000000, 0x100)
setsockopt$EBT_SO_SET_ENTRIES(0xffffffffffffffff, 0x0, 0x80, &(0x7f0000000840)=@nat={'nat\x00', 0x19, 0x1, 0x200, [0x20000940, 0x0, 0x0, 0x20000970, 0x200009a0], 0x0, &(0x7f0000000800), &(0x7f0000000940)=[{}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x14, 0x98ab, 'teql0\x00', 'ip6gretap0\x00', 'ip_vti0\x00', 'nr0\x00', @empty, [0x0, 0xff, 0x0, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2}, [0xff, 0x0, 0xff, 0x0, 0x0, 0xff], 0x100, 0x138, 0x170, [@time={'time\x00', 0x18, {{0x7, 0x3, 0x13782, 0x14fdf, 0x80, 0x4, 0x1}}}, @nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x2}}}]}, [@snat={'snat\x00', 0x10, {{@random="07901c8f0140"}}}]}, @common=@dnat={'dnat\x00', 0x10, {{@local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}, 0x10}}}}]}]}, 0x278)
syz_open_dev$dmmidi(&(0x7f0000000c40)='/dev/dmmidi#\x00', 0xae6d, 0x200)

[  185.256322] netlink: 3 bytes leftover after parsing attributes in process `syz-executor2'.
[  185.284428] netlink: 'syz-executor2': attribute type 4 has an invalid length.
[  185.337748] binder: BINDER_SET_CONTEXT_MGR already set
[  185.350338] binder: 13415:13417 ioctl 40046207 0 returned -16
[  185.366110] binder_alloc: 13415: binder_alloc_buf, no vma
[  185.371889] binder: 13415:13432 transaction failed 29189/-3, size 2199023255581-682899800065 line 2963
2018/03/31 01:44:52 executing program 0:
r0 = memfd_create(&(0x7f0000002000)="2f7b06003170707031253a656d30f9", 0x0)
write$evdev(r0, &(0x7f00000002c0)=[{{0x0, 0x7530}}, {{0x77359400}}], 0x30)
mmap(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x4, 0x11, r0, 0x0)
ioctl$SNDRV_TIMER_IOCTL_GSTATUS(r0, 0xc0505405, &(0x7f0000000000)={{0x0, 0x2, 0x401, 0x0, 0x3}, 0x0, 0x1ff, 0x9})
timer_settime(0x0, 0x0, &(0x7f0000001000), &(0x7f0000005000))

2018/03/31 01:44:52 executing program 3 (fault-call:3 fault-nth:34):
mkdir(&(0x7f00000001c0)='./file0\x00', 0x0)
mount(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000380)='./file0\x00', &(0x7f0000000300)='cgroup2\x00', 0x0, 0x0)
r0 = open$dir(&(0x7f000001bff4)='./file0\x00', 0x0, 0x0)
mkdirat(r0, &(0x7f0000000280)='./file0\x00', 0x20)
getdents64(r0, &(0x7f00000007c0)=""/250, 0x1015a)
fadvise64(r0, 0x0, 0x41, 0x3)
unlinkat(r0, &(0x7f0000000080)='./file0\x00', 0x200)
r1 = open$dir(&(0x7f0000000180)='./file0\x00', 0x105600, 0x81)
fchdir(r0)
link(&(0x7f0000000740)='./file1\x00', &(0x7f0000000780)='./file0/file0\x00')
renameat2(r1, &(0x7f0000000200)='./file1\x00', r0, &(0x7f0000000240)='./file0\x00', 0xfd1092750066ec78)
pivot_root(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='./file0\x00')
r2 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000100)='/dev/rfkill\x00', 0x2c42, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_LIST(r2, 0xc0505510, &(0x7f0000000480)={0x1000, 0x1, 0x474, 0x1, &(0x7f0000000140)=[{}]})
unlink(&(0x7f00000000c0)='./file0\x00')
symlinkat(&(0x7f0000000400)='./file0/file0\x00', r0, &(0x7f0000000440)='./file0/file0\x00')
iopl(0x6)
recvmsg$kcm(0xffffffffffffffff, &(0x7f0000000680)={&(0x7f0000000500)=@pppol2tp={0x0, 0x0, {0x0, <r3=>0xffffffffffffffff, {0x0, 0x0, @broadcast}}}, 0x80, &(0x7f0000000600)=[{&(0x7f0000000580)=""/80, 0x50}, {&(0x7f00000008c0)=""/4096, 0x1000}], 0x2, &(0x7f0000000640)=""/45, 0x2d, 0x206e}, 0x20)
r4 = syz_open_dev$sndpcmp(&(0x7f00000018c0)='/dev/snd/pcmC#D#p\x00', 0x5, 0x10a00)
ioctl$KVM_GET_DEVICE_ATTR(r4, 0x4018aee2, &(0x7f0000001940)={0x0, 0x100, 0x9, &(0x7f0000001900)})
recvfrom$ipx(r3, &(0x7f00000006c0)=""/52, 0x34, 0x100, &(0x7f0000000700)={0x4, 0x9a2, 0x4, "dc108d9d4391", 0x5}, 0x10)
renameat(r0, &(0x7f0000001980)='./file1\x00', r4, &(0x7f00000019c0)='./file0/file0\x00')

2018/03/31 01:44:52 executing program 6:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x200, 0x0)
socketpair$inet6_icmp_raw(0xa, 0x3, 0x3a, &(0x7f0000000680)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
setsockopt$sock_linger(r1, 0x1, 0xd, &(0x7f00000006c0)={0x400, 0x9}, 0x8)
perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
mmap(&(0x7f0000000000/0x9d7000)=nil, 0x9d7000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x7)
perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r4, &(0x7f0000e5b000)={0x2, 0x4e20, @multicast1=0xe0000001}, 0x10)
syz_open_dev$sg(&(0x7f0000000440)='/dev/sg#\x00', 0x0, 0x0)
connect$inet(r4, &(0x7f0000000100)={0x2, 0x4e20, @multicast2=0xe0000002}, 0x10)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000eb0fb8)={0x1, 0x3, &(0x7f00009ff000)=@framed={{0x18}, [], {0x95}}, &(0x7f00002bf000)='syzkaller\x00', 0x4, 0xb7, &(0x7f00006ab000)=""/183}, 0x48)
setsockopt$inet_tcp_int(r4, 0x6, 0x19, &(0x7f0000000240)=0x8, 0x4)
setsockopt$SO_BINDTODEVICE(r4, 0x1, 0x19, &(0x7f0000000000)="6970365f76746930000000000400", 0x10)
r6 = socket$kcm(0x29, 0x2, 0x0)
ioctl$sock_kcm_SIOCKCMATTACH(r6, 0x89e0, &(0x7f000031aff8)={r4, r5})
ioctl$sock_kcm_SIOCKCMCLONE(r6, 0x89e2, &(0x7f00000002c0)={<r7=>0xffffffffffffffff})
sendmsg$nl_xfrm(r7, &(0x7f0000000780)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000740)={&(0x7f0000000480)=@updpolicy={0xb8, 0x19, 0x0, 0x0, 0x0, {{@in=@loopback=0x7f000001, @in6=@mcast1={0xff, 0x1, [], 0x1}}}}, 0xffcb}, 0x1}, 0x0)
ioctl$sock_kcm_SIOCKCMUNATTACH(r7, 0x89e1, &(0x7f0000000040)={r4})
r8 = fcntl$getown(r3, 0x9)
r9 = accept4$inet(0xffffffffffffff9c, &(0x7f0000000700)={0x0, 0x0, @broadcast}, &(0x7f0000000740)=0x10, 0x80000)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r9, 0x84, 0x64, &(0x7f0000000300)=[@in6={0xa, 0x4e23, 0x0, @dev={0xfe, 0x80, [], 0xf}, 0x6}, @in={0x2, 0xff, @local={0xac, 0x14, 0x14, 0xaa}}, @in={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x10}}, @in={0x2, 0x4e20, @multicast1=0xe0000001}, @in={0x2, 0x4e24}, @in={0x2, 0x4e24, @broadcast=0xffffffff}, @in6={0xa, 0x4e21, 0xed34, @local={0xfe, 0x80, [], 0xaa}, 0x3}, @in={0x2, 0x4e23, @loopback=0x7f000001}], 0x98)
ptrace$setregset(0x4205, r8, 0x0, &(0x7f00000005c0)={&(0x7f0000000080)="449ed0dd6831a7fb44eca4221b1fb01abfec082aa7d0ee6f0ba9db0ece7da2bd3f", 0x21})
r10 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r11 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x1fffd, 0x0)
syz_open_dev$sndtimer(&(0x7f00000000c0)='/dev/snd/timer\x00', 0x0, 0x0)
read(r0, &(0x7f0000000140)=""/50, 0x32)
fcntl$dupfd(r10, 0x0, r11)

2018/03/31 01:44:52 executing program 1:
r0 = creat(&(0x7f0000000b40)='./file0\x00', 0x20)
setsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX(r0, 0x84, 0x6e, &(0x7f0000000400)=[@in={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x11}}, @in={0x2, 0x4e21, @remote={0xac, 0x14, 0x14, 0xbb}}, @in6={0xa, 0x4e21, 0x6, @dev={0xfe, 0x80, [], 0xa}, 0xec7}], 0x3c)
ioctl$DRM_IOCTL_AGP_ALLOC(0xffffffffffffff9c, 0xc0206434, &(0x7f0000000b80)={0x5, <r1=>0x0, 0x0, 0x81})
ioctl$DRM_IOCTL_SG_FREE(r0, 0x40106439, &(0x7f0000000bc0)={0x3, r1})
r2 = socket$inet(0x2, 0x6, 0x0)
getsockopt$inet_sctp6_SCTP_CONTEXT(0xffffffffffffff9c, 0x84, 0x11, &(0x7f0000000000)={<r3=>0x0, 0x7}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r2, 0x84, 0xa, &(0x7f0000000140)={0x0, 0xa2b, 0x4, 0x7, 0x2, 0x20, 0x10000, 0x8a82, r3}, &(0x7f0000000180)=0x20)
setsockopt$inet_group_source_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000680)={0x1000, {{0x2, 0x4e23, @multicast1=0xe0000001}}, {{0x2, 0x4e22, @broadcast=0xffffffff}}}, 0x108)
epoll_wait(r0, &(0x7f0000000340)=[{}, {}, {}, {}, {}, {}, {}, {}, {}], 0x9, 0xaf)
accept$alg(r0, 0x0, 0x0)
ioctl$DRM_IOCTL_AGP_ENABLE(0xffffffffffffffff, 0x40086432, &(0x7f0000000100))
r4 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/vs/sync_version\x00', 0x2, 0x0)
ioctl$TIOCGSOFTCAR(r4, 0x5419, &(0x7f00000007c0))
r5 = socket$inet6(0x10, 0x2, 0x0)
sendmsg(r5, &(0x7f0000000080)={&(0x7f0000000240)=@un=@abs={0x1, 0x0, 0x4e23}, 0x80, &(0x7f0000000040)=[{&(0x7f00000001c0)="5500000018007f04002d1cb2a4a280930a0600007da843cf19d0f869390009402f002100040000001900050000fc1700000000dc1338d54400009b84136ef75afb83de448daa7227c43ab8220000060c", 0x50}], 0x1, &(0x7f00000000c0)}, 0x0)
ioctl$DRM_IOCTL_RM_MAP(r4, 0x4028641b, &(0x7f00000003c0)={&(0x7f0000ffa000/0x4000)=nil, 0xfff, 0x1, 0x12, &(0x7f0000ffb000/0x2000)=nil, 0x800})
socket$bt_cmtp(0x1f, 0x3, 0x5)
fcntl$addseals(r5, 0x409, 0x7)
syz_open_dev$sndmidi(&(0x7f0000000c00)='/dev/snd/midiC#D#\x00', 0x100000001, 0x0)
bind$nfc_llcp(r0, &(0x7f00000002c0)={0x27, 0x0, 0x0, 0x7, 0x2f04c3fc, 0x0, "0b4b1cb418389836588cc8f50d4b24950bd48dec9075931da463a1b64cb803c07a4ccd17bea752b5550bae244cb8a5ba36ff36deef0d9a8571c2e9404ab2a7", 0x35}, 0x60)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f0000001640)=@broute={'broute\x00', 0x20, 0x1, 0x1e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20001700], 0x0, &(0x7f0000001980), &(0x7f0000001700)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1, [{{{0x13, 0x0, 0x0, 'vcan0\x00', 'ifb0\x00', 'syzkaller0\x00', 'vcan0\x00', @remote={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xbb}, [], @link_local={0x1, 0x80, 0xc2}, [], 0x70, 0xf8, 0x128}, [@common=@dnat={'dnat\x00', 0x10, {{@dev={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa]}, 0xffffffffffffffff}}}, @common=@IDLETIMER={'IDLETIMER\x00', 0x28, {{0x4, 'syz0\x00'}}}]}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8}}]}, {0x0, '\x00', 0x1, 0xffffbffffffffffe}]}, 0x260)
ioctl$TCGETA(r4, 0x5405, &(0x7f0000000440))
setsockopt$EBT_SO_SET_ENTRIES(0xffffffffffffffff, 0x0, 0x80, &(0x7f0000000840)=@nat={'nat\x00', 0x19, 0x1, 0x200, [0x20000940, 0x0, 0x0, 0x20000970, 0x200009a0], 0x0, &(0x7f0000000800), &(0x7f0000000940)=ANY=[@ANYBLOB="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"]}, 0x278)
syz_open_dev$dmmidi(&(0x7f0000000c40)='/dev/dmmidi#\x00', 0xae6d, 0x200)

2018/03/31 01:44:52 executing program 4:
r0 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r0, &(0x7f0000000240)={0x1d}, 0x10)
sendmsg$key(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000005ff0)={&(0x7f0000000040)=ANY=[@ANYBLOB="050000001d000000000000000000000004000000000000000000000000000000000000000000000000000000000000000800120003000000000000000000000006000000000000000000000000000000ac141400400000010000000000000000ff01000000000000000000000000000105001a007f000001000000000000000000000000fe80000000000000000000000000000000000000070019000000000002004e20ffffffff00000000000000000a004e2000000000ff0200000000000000000000000000010000000000000000010014000000000002000100000000000000000000000000"], 0xe8}, 0x1}, 0x0)
r1 = accept4(0xffffffffffffffff, &(0x7f0000002ec0)=@l2, &(0x7f0000002f40)=0x80, 0x800)
getsockopt$bt_BT_DEFER_SETUP(r1, 0x112, 0x7, &(0x7f0000000340)=0x800, &(0x7f0000000380)=0x4)
r2 = syz_genetlink_get_family_id$fou(&(0x7f0000002fc0)='fou\x00')
sendmsg$FOU_CMD_ADD(r1, &(0x7f0000003080)={&(0x7f0000002f80)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000003040)={&(0x7f0000003000)={0x24, r2, 0x300, 0x0, 0x0, {0x1}, [@FOU_ATTR_PORT={0x8, 0x1, 0x4e20}, @FOU_ATTR_TYPE={0x8, 0x4, 0x1}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000800}, 0x80)
socketpair(0x7, 0x3, 0x0, &(0x7f0000000280)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
getsockopt$ipx_IPX_TYPE(r1, 0x100, 0x1, &(0x7f0000000140), &(0x7f00000004c0)=0x4)
ioctl$DRM_IOCTL_SG_FREE(r3, 0x40106439, &(0x7f0000000300)={0xff})
close(r0)
getpeername$netlink(r4, &(0x7f00000001c0), &(0x7f0000000440)=0xb)
accept4$ax25(r4, &(0x7f00000003c0), &(0x7f0000000400)=0x10, 0x800)

2018/03/31 01:44:52 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000180)={&(0x7f0000000080)={0x10}, 0xc, &(0x7f0000000140)={&(0x7f00000002c0)=ANY=[@ANYBLOB="480000a71bdf001000150f000000000000000000", @ANYRES32=0x0, @ANYBLOB="000000000000000028000e000000000000000000000000000000000000000000000000000000000000000000"], 0x48}, 0x1}, 0x0)
socketpair$inet6_sctp(0xa, 0x0, 0x84, &(0x7f00000000c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
setsockopt$inet6_MRT6_DEL_MFC_PROXY(r1, 0x29, 0xd3, &(0x7f00000001c0)={{0xa, 0x4e21, 0x0, @mcast2={0xff, 0x2, [], 0x1}, 0x3}, {0xa, 0x4e22, 0xffff, @remote={0xfe, 0x80, [], 0xbb}, 0x200}, 0x9, [0x4, 0x3, 0xb136, 0x3, 0x5ff, 0x4, 0x7fffffff, 0x9]}, 0x5c)
r2 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000240)='/proc/self/net/pfkey\x00', 0xffffffffffffffff, 0x0)
preadv(r2, &(0x7f0000002540)=[{&(0x7f0000000340)=""/4096, 0x1000}, {&(0x7f0000001340)=""/169, 0xa9}, {&(0x7f0000001400)=""/177, 0xb1}, {&(0x7f00000014c0)=""/4096, 0x1000}, {&(0x7f00000024c0)=""/118, 0x76}], 0x5, 0x0)
ioctl$KDSKBSENT(r2, 0x4b49, &(0x7f0000000040)="4b23d13d4902e7")
fcntl$setstatus(r2, 0x4, 0x40800)

2018/03/31 01:44:52 executing program 5:
r0 = syz_open_dev$amidi(&(0x7f0000000400)='/dev/amidi#\x00', 0x401, 0x40)
accept4$llc(r0, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, &(0x7f0000000480)=0x10, 0x80800)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f0000005fd8)={'vcan0\x00', <r2=>0x0})
ioctl$KVM_SET_DEVICE_ATTR(0xffffffffffffffff, 0x4018aee1, &(0x7f0000000500)={0x0, 0x100000001, 0x5a, &(0x7f00000004c0)})
connect$can_bcm(r1, &(0x7f0000001ff0)={0x1d, r2}, 0x10)
ioctl$TIOCGSID(0xffffffffffffff9c, 0x5429, &(0x7f00000002c0)=<r3=>0x0)
waitid(0x0, r3, 0x0, 0x1000009, &(0x7f0000000300))
r4 = syz_open_dev$vcsn(&(0x7f0000000000)='/dev/vcs#\x00', 0xcd8, 0x101000)
getsockopt$SO_BINDTODEVICE(r4, 0x1, 0x19, &(0x7f0000000280), 0x10)
ioctl$EVIOCGABS0(r4, 0x80184540, &(0x7f0000000240)=""/64)
bind$vsock_dgram(r1, &(0x7f00000003c0)={0x28, 0x0, 0x2711, @reserved=0x1}, 0x10)
exit(0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000200)={r4, 0x0, 0x47, 0xde, &(0x7f0000000080)="3541471374d1e455c1f501bb3e7418a21f930d9fb82ac3588f54ad5a1a9e778bdf654fa39f19bcbc6ee4636a10d409c877cfe11ba160f73d4cde40422564bfdb62d8e5f8ba5097", &(0x7f0000000100)=""/222, 0x4, 0x3f}, 0x28)
ioctl$KVM_SET_TSS_ADDR(r4, 0xae47, 0xd000)
ioctl$KVM_CHECK_EXTENSION(r4, 0xae03, 0xffffffffffffffff)
openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000580)='/dev/qat_adf_ctl\x00', 0x4600, 0x0)
sendmsg$can_raw(r1, &(0x7f0000001fc8)={&(0x7f000000a000)={0x1d}, 0x10, &(0x7f0000000040)={&(0x7f000000a000)=@canfd={{0x1}, 0x0, 0x0, 0x0, 0x0, "0327e1b22b5fcef7739c699f5ff986ca08990039576a7d5cb2bdac3fa80acf584ecb5fee496e6866856b76b5f700000000000000004e2f9663a918fa1efd9b0b"}, 0x48}, 0x1}, 0x0)
ioctl$VHOST_GET_VRING_ENDIAN(r0, 0x4008af14, &(0x7f0000000540)={0x0, 0x9})

2018/03/31 01:44:52 executing program 7:
clone(0x200, &(0x7f0000000100)="abbcd764d5b6fd853189b4a102b248f0de7c0a5cc328ca13455598dc3d760fa566c64d7cb06a7e15cdb085165670f42b32809442c69a5942d03eb3fd42bf0ebb0272fc4beb43f269f26f57bbb67316f7c76c8d570edaa564720b4dfd8f32453fc2354ddc753155ac051e9e9657989f0bbf1c03e4cd9f735c6d1b95719dbbb1c04092f54f44256722d954f0000000000000000000000000000000", &(0x7f00000000c0), &(0x7f00008c8000), &(0x7f0000828ffe))
mknod(&(0x7f0000000000)='./file0\x00', 0x1000000000001040, 0x0)
execve(&(0x7f000007b000)='./file0\x00', &(0x7f0000000180), &(0x7f0000000040))
r0 = gettid()
r1 = syz_open_dev$mice(&(0x7f0000149000)='/dev/input/mice\x00', 0x0, 0x0)
execve(&(0x7f00000001c0)='./file0\x00', &(0x7f0000001540)=[&(0x7f0000000200)='user\x00', &(0x7f0000000240)='vmnet0\x00', &(0x7f0000000280)='user\x00', &(0x7f0000001480)='user\x00'], &(0x7f00000015c0)=[&(0x7f0000001580)='#keyring\x00'])
msgget$private(0x0, 0x0)
timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000))
uselib(&(0x7f00000002c0)='./file0/file0\x00')
mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0xffffffffffffffff, 0x32, 0xffffffffffffffff, 0x0)
getsockopt$inet_sctp6_SCTP_INITMSG(r1, 0x84, 0x2, &(0x7f0000000040), &(0x7f0000000080)=0x8)
tkill(r0, 0x1000000000015)

2018/03/31 01:44:52 executing program 1:
r0 = creat(&(0x7f0000000b40)='./file0\x00', 0x20)
ioctl$DRM_IOCTL_AGP_ALLOC(0xffffffffffffff9c, 0xc0206434, &(0x7f0000000b80)={0x5, <r1=>0x0, 0x0, 0x81})
ioctl$DRM_IOCTL_SG_FREE(r0, 0x40106439, &(0x7f0000000bc0)={0x3, r1})
r2 = socket$inet(0x2, 0x6, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f00000008c0)=@broute={'broute\x00', 0x20, 0x2, 0x3e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000280], 0x0, &(0x7f0000000240), &(0x7f0000000280)=ANY=[@ANYBLOB="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"]}, 0x460)
getsockopt$inet_sctp6_SCTP_CONTEXT(0xffffffffffffff9c, 0x84, 0x11, &(0x7f0000000000)={<r3=>0x0, 0x7}, &(0x7f0000000040)=0x8)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r0, 0xc04064a0, &(0x7f0000000d80)={&(0x7f0000000c80)=[0x0, 0x0], &(0x7f0000000cc0)=[0x0, 0x0, 0x0], &(0x7f0000000d00)=[0x0, 0x0, 0x0], &(0x7f0000000d40)=[0x0, 0x0], 0x2, 0x3, 0x3, 0x2})
getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r2, 0x84, 0xa, &(0x7f0000000140)={0x0, 0xa2b, 0x4, 0x7, 0x2, 0x20, 0x10000, 0x8a82, r3}, &(0x7f0000000180)=0x20)
setsockopt$inet_group_source_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000680)={0x1000, {{0x2, 0x4e23, @multicast1=0xe0000001}}, {{0x2, 0x4e22, @broadcast=0xffffffff}}}, 0x108)
ioctl$DRM_IOCTL_AGP_ENABLE(0xffffffffffffffff, 0x40086432, &(0x7f0000000100))
r4 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/vs/sync_version\x00', 0x2, 0x0)
ioctl$TIOCGSOFTCAR(r4, 0x5419, &(0x7f00000007c0))
r5 = socket$inet6(0x10, 0x2, 0x0)
sendmsg(r5, &(0x7f0000000080)={&(0x7f0000000240)=@un=@abs={0x1, 0x0, 0x4e23}, 0x80, &(0x7f0000000040)=[{&(0x7f00000001c0)="5500000018007f04002d1cb2a4a280930a0600007da843cf19d0f869390009402f002100040000001900050000fc1700000000dc1338d54400009b84136ef75afb83de448daa7227c43ab8220000060c", 0x50}], 0x1, &(0x7f00000000c0)}, 0x0)
socket$bt_cmtp(0x1f, 0x3, 0x5)
fcntl$addseals(r5, 0x409, 0x7)
syz_open_dev$sndmidi(&(0x7f0000000c00)='/dev/snd/midiC#D#\x00', 0x100000001, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f0000001640)=@broute={'broute\x00', 0x20, 0x1, 0x1e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20001700], 0x0, &(0x7f0000001980), &(0x7f0000001700)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1, [{{{0x13, 0x0, 0x0, 'vcan0\x00', 'ifb0\x00', 'syzkaller0\x00', 'vcan0\x00', @remote={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xbb}, [], @link_local={0x1, 0x80, 0xc2}, [], 0x70, 0xf8, 0x128}, [@common=@dnat={'dnat\x00', 0x10, {{@dev={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa]}, 0xffffffffffffffff}}}, @common=@IDLETIMER={'IDLETIMER\x00', 0x28, {{0x4, 'syz0\x00'}}}]}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8}}]}, {0x0, '\x00', 0x1, 0xffffbffffffffffe}]}, 0x260)
setsockopt$EBT_SO_SET_ENTRIES(0xffffffffffffffff, 0x0, 0x80, &(0x7f0000000840)=@nat={'nat\x00', 0x19, 0x1, 0x200, [0x20000940, 0x0, 0x0, 0x20000970, 0x200009a0], 0x0, &(0x7f0000000800), &(0x7f0000000940)=[{}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x14, 0x98ab, 'teql0\x00', 'ip6gretap0\x00', 'ip_vti0\x00', 'nr0\x00', @empty, [0x0, 0xff, 0x0, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2}, [0xff, 0x0, 0xff, 0x0, 0x0, 0xff], 0x100, 0x138, 0x170, [@time={'time\x00', 0x18, {{0x7, 0x3, 0x13782, 0x14fdf, 0x80, 0x4, 0x1}}}, @nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x2}}}]}, [@snat={'snat\x00', 0x10, {{@random="07901c8f0140"}}}]}, @common=@dnat={'dnat\x00', 0x10, {{@local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}, 0x10}}}}]}]}, 0x278)
syz_open_dev$dmmidi(&(0x7f0000000c40)='/dev/dmmidi#\x00', 0xae6d, 0x200)

2018/03/31 01:44:52 executing program 4:
r0 = socket$inet6(0xa, 0x803, 0x2)
setsockopt$inet6_int(r0, 0x29, 0x25, &(0x7f0000000040)=0x5, 0x4)
setsockopt$inet6_MCAST_MSFILTER(r0, 0x29, 0x30, &(0x7f0000000080)={0x6, {{0xa, 0x4e24, 0x1, @remote={0xfe, 0x80, [], 0xbb}, 0x80000001}}, 0x1, 0x2, [{{0xa, 0x4e21, 0x3f, @ipv4={[], [0xff, 0xff], @dev={0xac, 0x14, 0x14, 0x14}}, 0x3e9}}, {{0xa, 0x4e24, 0x7, @empty, 0x7fffffff}}]}, 0x190)
r1 = syz_open_dev$midi(&(0x7f0000000000)='/dev/midi#\x00', 0x5, 0x101000)
r2 = creat(&(0x7f0000000240)='./file0\x00', 0x80)
finit_module(r0, &(0x7f00000002c0)='/dev/midi#\x00', 0x3)
ioctl$sock_kcm_SIOCKCMATTACH(r1, 0x89e0, &(0x7f0000000280)={r0, r2})

[  185.919446] FAULT_INJECTION: forcing a failure.
[  185.919446] name failslab, interval 1, probability 0, space 0, times 0
[  185.930831] CPU: 1 PID: 13496 Comm: syz-executor3 Not tainted 4.16.0-rc7+ #372
[  185.938185] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  185.947537] Call Trace:
[  185.950126]  dump_stack+0x194/0x24d
[  185.953751]  ? arch_local_irq_restore+0x53/0x53
[  185.958406]  ? __save_stack_trace+0x7e/0xd0
[  185.962720]  should_fail+0x8c0/0xa40
[  185.966421]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  185.971511]  ? kasan_kmalloc+0xad/0xe0
[  185.975376]  ? kmem_cache_alloc_node_trace+0x150/0x760
[  185.980630]  ? alloc_fair_sched_group+0x267/0x530
[  185.985450]  ? sched_create_group+0x35/0x70
[  185.989748]  ? cpu_cgroup_css_alloc+0xe/0x30
[  185.994137]  ? vfs_mkdir+0x390/0x600
[  185.997827]  ? SyS_mkdirat+0x22b/0x2b0
[  186.001704]  ? do_syscall_64+0x281/0x940
[  186.005747]  ? entry_SYSCALL_64_after_hwframe+0x42/0xb7
[  186.011098]  ? find_held_lock+0x35/0x1d0
[  186.015142]  ? __lock_is_held+0xb6/0x140
[  186.019196]  ? check_same_owner+0x320/0x320
[  186.023544]  ? rcu_note_context_switch+0x710/0x710
[  186.028464]  should_failslab+0xec/0x120
[  186.032417]  kmem_cache_alloc_node_trace+0x5a/0x760
[  186.037415]  ? unregister_fair_sched_group+0x5e0/0x5e0
[  186.042673]  ? find_next_bit+0xcc/0x100
[  186.046632]  alloc_fair_sched_group+0x1f0/0x530
[  186.051286]  sched_create_group+0x35/0x70
[  186.055417]  cpu_cgroup_css_alloc+0xe/0x30
[  186.059979]  cgroup_apply_control_enable+0x44d/0xbc0
[  186.065070]  ? cgroup_propagate_control+0x570/0x570
[  186.070073]  ? css_populate_dir+0x289/0x420
[  186.074380]  cgroup_mkdir+0x56f/0xfc0
[  186.078162]  ? __lock_is_held+0xb6/0x140
[  186.082211]  ? cgroup_destroy_locked+0x750/0x750
[  186.086946]  ? rcu_read_lock_sched_held+0x108/0x120
[  186.091940]  ? kmem_cache_free+0x258/0x2a0
[  186.096156]  ? set_nlink+0xc1/0x160
[  186.099765]  ? debug_lockdep_rcu_enabled+0x77/0x90
[  186.104672]  ? generic_permission+0x105/0x3c0
[  186.109149]  ? cgroup_destroy_locked+0x750/0x750
[  186.113884]  kernfs_iop_mkdir+0x153/0x1e0
[  186.118018]  vfs_mkdir+0x390/0x600
[  186.121544]  SyS_mkdirat+0x22b/0x2b0
[  186.125238]  ? SyS_mknod+0x480/0x480
[  186.128930]  ? trace_hardirqs_on+0xd/0x10
[  186.133070]  ? do_syscall_64+0xb7/0x940
[  186.137028]  ? SyS_mknod+0x480/0x480
[  186.140720]  do_syscall_64+0x281/0x940
[  186.144584]  ? vmalloc_sync_all+0x30/0x30
[  186.148710]  ? _raw_spin_unlock_irq+0x27/0x70
[  186.153186]  ? finish_task_switch+0x1c1/0x7e0
[  186.157662]  ? syscall_return_slowpath+0x550/0x550
[  186.162570]  ? syscall_return_slowpath+0x2ac/0x550
[  186.167477]  ? prepare_exit_to_usermode+0x350/0x350
[  186.172472]  ? entry_SYSCALL_64_after_hwframe+0x52/0xb7
[  186.177817]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  186.182641]  entry_SYSCALL_64_after_hwframe+0x42/0xb7
[  186.187807] RIP: 0033:0x454e79
[  186.190975] RSP: 002b:00007fa6ef25cc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
[  186.198661] RAX: ffffffffffffffda RBX: 00007fa6ef25d6d4 RCX: 0000000000454e79
[  186.205908] RDX: 0000000000000020 RSI: 0000000020000280 RDI: 0000000000000013
[  186.213154] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
2018/03/31 01:44:52 executing program 6:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x200, 0x0)
socketpair$inet6_icmp_raw(0xa, 0x3, 0x3a, &(0x7f0000000680)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
setsockopt$sock_linger(r1, 0x1, 0xd, &(0x7f00000006c0)={0x400, 0x9}, 0x8)
perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
mmap(&(0x7f0000000000/0x9d7000)=nil, 0x9d7000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x7)
perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r4, &(0x7f0000e5b000)={0x2, 0x4e20, @multicast1=0xe0000001}, 0x10)
syz_open_dev$sg(&(0x7f0000000440)='/dev/sg#\x00', 0x0, 0x0)
connect$inet(r4, &(0x7f0000000100)={0x2, 0x4e20, @multicast2=0xe0000002}, 0x10)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000eb0fb8)={0x1, 0x3, &(0x7f00009ff000)=@framed={{0x18}, [], {0x95}}, &(0x7f00002bf000)='syzkaller\x00', 0x4, 0xb7, &(0x7f00006ab000)=""/183}, 0x48)
setsockopt$inet_tcp_int(r4, 0x6, 0x19, &(0x7f0000000240)=0x8, 0x4)
setsockopt$SO_BINDTODEVICE(r4, 0x1, 0x19, &(0x7f0000000000)="6970365f76746930000000000400", 0x10)
r6 = socket$kcm(0x29, 0x2, 0x0)
ioctl$sock_kcm_SIOCKCMATTACH(r6, 0x89e0, &(0x7f000031aff8)={r4, r5})
ioctl$sock_kcm_SIOCKCMCLONE(r6, 0x89e2, &(0x7f00000002c0)={<r7=>0xffffffffffffffff})
sendmsg$nl_xfrm(r7, &(0x7f0000000780)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000740)={&(0x7f0000000480)=@updpolicy={0xb8, 0x19, 0x0, 0x0, 0x0, {{@in=@loopback=0x7f000001, @in6=@mcast1={0xff, 0x1, [], 0x1}}}}, 0xffcb}, 0x1}, 0x0)
ioctl$sock_kcm_SIOCKCMUNATTACH(r7, 0x89e1, &(0x7f0000000040)={r4})
r8 = fcntl$getown(r3, 0x9)
r9 = accept4$inet(0xffffffffffffff9c, &(0x7f0000000700)={0x0, 0x0, @broadcast}, &(0x7f0000000740)=0x10, 0x80000)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r9, 0x84, 0x64, &(0x7f0000000300)=[@in6={0xa, 0x4e23, 0x0, @dev={0xfe, 0x80, [], 0xf}, 0x6}, @in={0x2, 0xff, @local={0xac, 0x14, 0x14, 0xaa}}, @in={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x10}}, @in={0x2, 0x4e20, @multicast1=0xe0000001}, @in={0x2, 0x4e24}, @in={0x2, 0x4e24, @broadcast=0xffffffff}, @in6={0xa, 0x4e21, 0xed34, @local={0xfe, 0x80, [], 0xaa}, 0x3}, @in={0x2, 0x4e23, @loopback=0x7f000001}], 0x98)
ptrace$setregset(0x4205, r8, 0x0, &(0x7f00000005c0)={&(0x7f0000000080)="449ed0dd6831a7fb44eca4221b1fb01abfec082aa7d0ee6f0ba9db0ece7da2bd3f", 0x21})
r10 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r11 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x1fffd, 0x0)
syz_open_dev$sndtimer(&(0x7f00000000c0)='/dev/snd/timer\x00', 0x0, 0x0)
read(r0, &(0x7f0000000140)=""/50, 0x32)
fcntl$dupfd(r10, 0x0, r11)

2018/03/31 01:44:52 executing program 2:
perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$l2tp(0x18, 0x1, 0x1)
getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffff9c, 0x29, 0x23, &(0x7f0000000240)={{{@in=@multicast2, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r1=>0x0}}, {{@in=@broadcast}, 0x0, @in=@local}}, &(0x7f0000000340)=0xe8)
bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0xe, 0x27, &(0x7f0000000600)=ANY=[@ANYBLOB="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", @ANYBLOB="000000000000000085000000040000000000000000000000000000000100000000000000000000009500000000000000"], &(0x7f0000000540)='syzkaller\x00', 0x3, 0x97, &(0x7f0000000180)=""/151, 0x41100, 0x800000001, [], r1}, 0x48)
connect$l2tp(r0, &(0x7f0000000100)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff, 0xbb}}, 0x1}}, 0x2e)
openat$autofs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/autofs\x00', 0x141000, 0x0)
r2 = creat(&(0x7f0000000740)='./file0\x00', 0x80)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000000c0)=<r3=>0x0)
fcntl$setownex(r0, 0xf, &(0x7f0000000140)={0x1000000000002, r3})
getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000000400)={{{@in, @in=@loopback}}, {{@in=@multicast2}, 0x0, @in6=@mcast2}}, &(0x7f0000000500)=0xe8)
close(r0)
ioctl$DRM_IOCTL_AGP_INFO(0xffffffffffffffff, 0x80386433, &(0x7f0000000580)=""/67)
socket$inet6_udp(0xa, 0x2, 0x0)
syz_open_dev$sndmidi(&(0x7f0000000080)='/dev/snd/midiC#D#\x00', 0x3, 0x0)

2018/03/31 01:44:52 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
fallocate(r0, 0x2, 0xc9e9, 0xfffffffffffffffe)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f00000005c0)='eql\x00', 0x10)
r3 = getpid()
pipe(&(0x7f0000000640)={<r4=>0xffffffffffffffff})
r5 = syz_open_procfs(r3, &(0x7f00000009c0)='cpuset\x00')
ioctl$TIOCSPGRP(r5, 0x5410, &(0x7f0000000340)=r3)
pipe2(&(0x7f0000000100)={<r6=>0x0, <r7=>0x0}, 0x0)
getuid()
setsockopt$netlink_NETLINK_PKTINFO(r5, 0x10e, 0x3, &(0x7f0000000240)=0xb84c, 0x4)
getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f0000001c80)={{{@in6=@mcast2, @in=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r8=>0x0}}, {{@in=@multicast1}, 0x0, @in=@local}}, &(0x7f0000000380)=0xe8)
getgroups(0x2, &(0x7f00000003c0)=[0x0, <r9=>0xffffffffffffffff])
r10 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
r11 = dup3(r10, r7, 0x0)
clock_gettime(0x7, &(0x7f0000000000))
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000decfe0)={0x10005, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_RUN(r7, 0xae80, 0x0)
ioctl$KVM_SET_VCPU_EVENTS(r7, 0x4040aea0, &(0x7f0000460fe4)={0x0, 0x7, 0x2, 0x0, 0x4, 0x8, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x805})
sendmsg$nfc_llcp(r4, &(0x7f0000000580)={&(0x7f0000000280)={0x27, 0x0, 0x2, 0x3, 0x87b2, 0x1ff, "45ac14bc7f86fe2af9e90420c4767650bea24e110456234b0918f4de84c309ea6120a43a55e01170dd779e8cb9e692fa4415b1e19af95d1f25dfb5d8e9816a", 0x2b}, 0x60, &(0x7f0000000540), 0x0, &(0x7f0000000d00)={0x98, 0x117, 0x80000001, "ddf71cadc2ceb938c5ab8e4223da3648a1dea13a5a80376d85aa92a09b90a1e655a0ccce3d9d1ca995c3d64ca5cf51fbf7b071e01a803def40260f9ff914e9288269a02497a627c87dc4267938fafb4472c76b2d8fd7fba44c921ad37c382c2ef0e48b2f67919e769a80f4d1b6d1192911cd9a16dd6efd19a2c4af864d8e2a48b631cbd07b45ff"}, 0x98, 0x1}, 0x0)
sendmmsg$unix(r4, &(0x7f0000001140)=[{&(0x7f00000001c0)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000000400)=[{&(0x7f0000000040)="9a026f0d5cb9fd7ff840bb841ac4da5079e4ed3aaa40abd0c0b822a588d09fe7c68e260fbccea8d814b74e38e0c4d7a0c91e0bea210aa176e12cb5a0746cf3", 0x3f}], 0x1, &(0x7f0000000a00)=[@rights={0x30, 0x1, 0x1, [r5, r0, r5, r2, r4, r0, r6, r11]}, @cred={0x20, 0x1, 0x2, r3, r8, r9}], 0x50, 0x20000000}, {&(0x7f0000000b00)=@abs={0x0, 0x0, 0x4e20}, 0x6e, &(0x7f0000000600)=[{&(0x7f0000000b80)="d1ca184d0c0db4cd373e45fbc7b345d1c7ed231f767220d0208734dc46285729a75c204abc6451dfd7aed85d48aeac04bb41cdfeb16a650554673d241aacb2d3cbe7fafc27d81055c043b057eec6ef11a23efa14ccbeb631c56e235e96756a1a00fccb9adf1b458770a1a6db9c69e50f9773c1d5c083a087192c9a46e956e1f0160e515a79722132dab6119978da7c846c794b1e20905659def12f08265c5724c53f7d74fb2cb701df0438491ac2", 0xae}], 0x1, &(0x7f0000000c40), 0x0, 0x81}], 0x2, 0x4)
syz_kvm_setup_cpu$x86(r6, r11, &(0x7f0000753000/0x18000)=nil, &(0x7f0000000140)=[@text32={0x20, &(0x7f00000000c0)="0fc7280f080f20030f01727166ba4200b834000000ef66bad10466edb81da1fb500f23d00f21f835300000050f23f8c4c3194bfc360f20030fc76d08", 0x3c}], 0x1, 0x8, &(0x7f0000000180)=[@dstype3={0x7, 0x9}], 0x1)
ioctl$KVM_RUN(r7, 0xae80, 0x0)

[  186.220401] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000014
[  186.227645] R13: 00000000000003eb R14: 00000000006f7ea8 R15: 0000000000000022
2018/03/31 01:44:52 executing program 1:
r0 = creat(&(0x7f0000000b40)='./file0\x00', 0x20)
ioctl$DRM_IOCTL_AGP_ALLOC(0xffffffffffffff9c, 0xc0206434, &(0x7f0000000b80)={0x5, <r1=>0x0, 0x0, 0x81})
ioctl$DRM_IOCTL_SG_FREE(r0, 0x40106439, &(0x7f0000000bc0)={0x3, r1})
r2 = socket$inet(0x2, 0x6, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f00000008c0)=@broute={'broute\x00', 0x20, 0x2, 0x3e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000280], 0x0, &(0x7f0000000240), &(0x7f0000000280)=ANY=[@ANYBLOB="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"]}, 0x460)
getsockopt$inet_sctp6_SCTP_CONTEXT(0xffffffffffffff9c, 0x84, 0x11, &(0x7f0000000000)={<r3=>0x0, 0x7}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r2, 0x84, 0xa, &(0x7f0000000140)={0x0, 0xa2b, 0x4, 0x7, 0x2, 0x20, 0x10000, 0x8a82, r3}, &(0x7f0000000180)=0x20)
setsockopt$inet_group_source_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000680)={0x1000, {{0x2, 0x4e23, @multicast1=0xe0000001}}, {{0x2, 0x4e22, @broadcast=0xffffffff}}}, 0x108)
ioctl$DRM_IOCTL_AGP_ENABLE(0xffffffffffffffff, 0x40086432, &(0x7f0000000100))
r4 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/vs/sync_version\x00', 0x2, 0x0)
ioctl$TIOCGSOFTCAR(r4, 0x5419, &(0x7f00000007c0))
r5 = socket$inet6(0x10, 0x2, 0x0)
sendmsg(r5, &(0x7f0000000080)={&(0x7f0000000240)=@un=@abs={0x1, 0x0, 0x4e23}, 0x80, &(0x7f0000000040)=[{&(0x7f00000001c0)="5500000018007f04002d1cb2a4a280930a0600007da843cf19d0f869390009402f002100040000001900050000fc1700000000dc1338d54400009b84136ef75afb83de448daa7227c43ab8220000060c", 0x50}], 0x1, &(0x7f00000000c0)}, 0x0)
accept4$ax25(r0, &(0x7f0000000c80), &(0x7f0000000cc0)=0x10, 0x800)
socket$bt_cmtp(0x1f, 0x3, 0x5)
fcntl$addseals(r5, 0x409, 0x7)
syz_open_dev$sndmidi(&(0x7f0000000c00)='/dev/snd/midiC#D#\x00', 0x100000001, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f0000001640)=@broute={'broute\x00', 0x20, 0x1, 0x1e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20001700], 0x0, &(0x7f0000001980), &(0x7f0000001700)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1, [{{{0x13, 0x0, 0x0, 'vcan0\x00', 'ifb0\x00', 'syzkaller0\x00', 'vcan0\x00', @remote={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xbb}, [], @link_local={0x1, 0x80, 0xc2}, [], 0x70, 0xf8, 0x128}, [@common=@dnat={'dnat\x00', 0x10, {{@dev={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa]}, 0xffffffffffffffff}}}, @common=@IDLETIMER={'IDLETIMER\x00', 0x28, {{0x4, 'syz0\x00'}}}]}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8}}]}, {0x0, '\x00', 0x1, 0xffffbffffffffffe}]}, 0x260)
setsockopt$EBT_SO_SET_ENTRIES(0xffffffffffffffff, 0x0, 0x80, &(0x7f0000000840)=@nat={'nat\x00', 0x19, 0x1, 0x200, [0x20000940, 0x0, 0x0, 0x20000970, 0x200009a0], 0x0, &(0x7f0000000800), &(0x7f0000000940)=[{}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x14, 0x98ab, 'teql0\x00', 'ip6gretap0\x00', 'ip_vti0\x00', 'nr0\x00', @empty, [0x0, 0xff, 0x0, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2}, [0xff, 0x0, 0xff, 0x0, 0x0, 0xff], 0x100, 0x138, 0x170, [@time={'time\x00', 0x18, {{0x7, 0x3, 0x13782, 0x14fdf, 0x80, 0x4, 0x1}}}, @nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x2}}}]}, [@snat={'snat\x00', 0x10, {{@random="07901c8f0140"}}}]}, @common=@dnat={'dnat\x00', 0x10, {{@local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}, 0x10}}}}]}]}, 0x278)
syz_open_dev$dmmidi(&(0x7f0000000c40)='/dev/dmmidi#\x00', 0xae6d, 0x200)

2018/03/31 01:44:52 executing program 4:
syz_emit_ethernet(0x8, &(0x7f0000000000)=ANY=[@ANYPTR64, @ANYRES16, @ANYRES32, @ANYRES16, @ANYRES64, @ANYRES32, @ANYRES64, @ANYBLOB="4bc347672618573bd7d839d382df07bd28a779d08edb3e732cfa35aec663c2ea1b023c9bbd39c90b9c8f265d4aa1a6e522f704ed7381106091efa8a3823c18046ae05c8d31ad9d102f5777f57725c8d8653b324f06e0be0276b5bb6ba2f4bf2c6da94d41632ad7e37612a238c47f07f032e5b5d940620f98a9a44a0af387835cdd85a63a2e50b676b23133799b1802"], 0x0)

2018/03/31 01:44:53 executing program 2:
perf_event_open(&(0x7f0000fdef88)={0x2, 0x78, 0xe3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00001b3000)='/dev/vhost-vsock\x00', 0x2, 0x0)
ioctl$VHOST_SET_LOG_BASE(r0, 0xaf01, &(0x7f0000000140)=&(0x7f0000000100))
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f00000000c0)=ANY=[@ANYBLOB="0000a078df000000000000"])
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000df5fd8)={0x0, 0x0, &(0x7f00003acf97)=""/105, &(0x7f0000bf6000)=""/228, &(0x7f000017d000)=""/199})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000cef000)={0x1, 0x0, &(0x7f000062a000)=""/167, &(0x7f0000aac000)=""/21, &(0x7f00002fdf52)=""/174})
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000f82ffc)=0x1)
ioctl$VHOST_SET_LOG_BASE(r0, 0x4008af04, &(0x7f0000000080)=&(0x7f0000000040))

2018/03/31 01:44:53 executing program 3 (fault-call:3 fault-nth:35):
mkdir(&(0x7f00000001c0)='./file0\x00', 0x0)
mount(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000380)='./file0\x00', &(0x7f0000000300)='cgroup2\x00', 0x0, 0x0)
r0 = open$dir(&(0x7f000001bff4)='./file0\x00', 0x0, 0x0)
mkdirat(r0, &(0x7f0000000280)='./file0\x00', 0x20)
getdents64(r0, &(0x7f00000007c0)=""/250, 0x1015a)
fadvise64(r0, 0x0, 0x41, 0x3)
unlinkat(r0, &(0x7f0000000080)='./file0\x00', 0x200)
r1 = open$dir(&(0x7f0000000180)='./file0\x00', 0x105600, 0x81)
fchdir(r0)
link(&(0x7f0000000740)='./file1\x00', &(0x7f0000000780)='./file0/file0\x00')
renameat2(r1, &(0x7f0000000200)='./file1\x00', r0, &(0x7f0000000240)='./file0\x00', 0xfd1092750066ec78)
pivot_root(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='./file0\x00')
r2 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000100)='/dev/rfkill\x00', 0x2c42, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_LIST(r2, 0xc0505510, &(0x7f0000000480)={0x1000, 0x1, 0x474, 0x1, &(0x7f0000000140)=[{}]})
unlink(&(0x7f00000000c0)='./file0\x00')
symlinkat(&(0x7f0000000400)='./file0/file0\x00', r0, &(0x7f0000000440)='./file0/file0\x00')
iopl(0x6)
recvmsg$kcm(0xffffffffffffffff, &(0x7f0000000680)={&(0x7f0000000500)=@pppol2tp={0x0, 0x0, {0x0, <r3=>0xffffffffffffffff, {0x0, 0x0, @broadcast}}}, 0x80, &(0x7f0000000600)=[{&(0x7f0000000580)=""/80, 0x50}, {&(0x7f00000008c0)=""/4096, 0x1000}], 0x2, &(0x7f0000000640)=""/45, 0x2d, 0x206e}, 0x20)
r4 = syz_open_dev$sndpcmp(&(0x7f00000018c0)='/dev/snd/pcmC#D#p\x00', 0x5, 0x10a00)
ioctl$KVM_GET_DEVICE_ATTR(r4, 0x4018aee2, &(0x7f0000001940)={0x0, 0x100, 0x9, &(0x7f0000001900)})
recvfrom$ipx(r3, &(0x7f00000006c0)=""/52, 0x34, 0x100, &(0x7f0000000700)={0x4, 0x9a2, 0x4, "dc108d9d4391", 0x5}, 0x10)
renameat(r0, &(0x7f0000001980)='./file1\x00', r4, &(0x7f00000019c0)='./file0/file0\x00')

[  186.444300] FAULT_INJECTION: forcing a failure.
[  186.444300] name failslab, interval 1, probability 0, space 0, times 0
[  186.455736] CPU: 0 PID: 13526 Comm: syz-executor3 Not tainted 4.16.0-rc7+ #372
[  186.463098] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  186.472446] Call Trace:
[  186.475033]  dump_stack+0x194/0x24d
[  186.478682]  ? arch_local_irq_restore+0x53/0x53
[  186.483351]  should_fail+0x8c0/0xa40
[  186.487046]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  186.492139]  ? find_held_lock+0x35/0x1d0
[  186.496181]  ? __lock_is_held+0xb6/0x140
[  186.500223]  ? check_same_owner+0x320/0x320
[  186.504521]  ? perf_trace_lock+0xd6/0x900
[  186.508651]  ? rcu_note_context_switch+0x710/0x710
[  186.513562]  should_failslab+0xec/0x120
[  186.517513]  __kmalloc_track_caller+0x5f/0x760
[  186.522077]  ? string+0x180/0x200
[  186.525507]  ? kstrdup_const+0x39/0x50
[  186.529373]  kstrdup+0x39/0x70
[  186.532545]  kstrdup_const+0x39/0x50
[  186.536236]  __kernfs_new_node+0xa2/0x570
[  186.540360]  ? kernfs_dop_revalidate+0x380/0x380
[  186.545096]  ? snprintf+0xc0/0xf0
[  186.548526]  ? vsprintf+0x40/0x40
[  186.551960]  kernfs_new_node+0x80/0xe0
[  186.555826]  __kernfs_create_file+0x4b/0x320
[  186.560213]  cgroup_addrm_files+0x3c5/0xa70
[  186.564514]  ? cgroup_file_write+0x710/0x710
[  186.568902]  ? cpu_cgroup_css_alloc+0x30/0x30
[  186.573379]  ? __lock_is_held+0xb6/0x140
[  186.577420]  ? sched_online_group+0x4e0/0x4e0
[  186.581890]  ? cpu_cgroup_css_online+0x3a/0x50
[  186.586451]  ? online_css+0x224/0x2e0
[  186.590229]  css_populate_dir+0x198/0x420
[  186.594360]  cgroup_apply_control_enable+0x390/0xbc0
[  186.599445]  ? cgroup_propagate_control+0x570/0x570
[  186.604442]  ? css_populate_dir+0x289/0x420
[  186.608744]  cgroup_mkdir+0x56f/0xfc0
[  186.612520]  ? __lock_is_held+0xb6/0x140
[  186.616561]  ? cgroup_destroy_locked+0x750/0x750
[  186.621303]  ? rcu_read_lock_sched_held+0x108/0x120
[  186.626303]  ? kmem_cache_free+0x258/0x2a0
[  186.630517]  ? set_nlink+0xc1/0x160
[  186.634122]  ? debug_lockdep_rcu_enabled+0x77/0x90
[  186.639032]  ? generic_permission+0x105/0x3c0
[  186.643506]  ? cgroup_destroy_locked+0x750/0x750
[  186.648240]  kernfs_iop_mkdir+0x153/0x1e0
[  186.652367]  vfs_mkdir+0x390/0x600
[  186.655886]  SyS_mkdirat+0x22b/0x2b0
[  186.659576]  ? SyS_mknod+0x480/0x480
[  186.663273]  ? trace_hardirqs_on+0xd/0x10
[  186.667401]  ? do_syscall_64+0xb7/0x940
[  186.671354]  ? SyS_mknod+0x480/0x480
[  186.675054]  do_syscall_64+0x281/0x940
[  186.678917]  ? vmalloc_sync_all+0x30/0x30
[  186.683042]  ? _raw_spin_unlock_irq+0x27/0x70
[  186.687512]  ? finish_task_switch+0x1c1/0x7e0
[  186.691986]  ? syscall_return_slowpath+0x550/0x550
[  186.696892]  ? syscall_return_slowpath+0x2ac/0x550
[  186.701796]  ? prepare_exit_to_usermode+0x350/0x350
[  186.706791]  ? entry_SYSCALL_64_after_hwframe+0x52/0xb7
[  186.712133]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  186.716952]  entry_SYSCALL_64_after_hwframe+0x42/0xb7
[  186.722117] RIP: 0033:0x454e79
[  186.725284] RSP: 002b:00007fa6ef25cc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
[  186.732967] RAX: ffffffffffffffda RBX: 00007fa6ef25d6d4 RCX: 0000000000454e79
[  186.740211] RDX: 0000000000000020 RSI: 0000000020000280 RDI: 0000000000000013
[  186.747455] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  186.754700] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000014
[  186.761946] R13: 00000000000003eb R14: 00000000006f7ea8 R15: 0000000000000023
[  186.769285] cgroup: cgroup_addrm_files: failed to add weight, err=-12
2018/03/31 01:44:53 executing program 0:
r0 = socket(0x11, 0x100000802, 0x0)
r1 = syz_open_dev$tun(&(0x7f0000000140)='/dev/net/tun\x00', 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000240)={'ifb0\x00', 0x8002})
ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, &(0x7f0000000000)={'ifb0\x00', 0xa201})
r2 = memfd_create(&(0x7f0000000ffd)='[,\x00', 0x0)
mmap(&(0x7f0000000000/0xa000)=nil, 0xa000, 0x0, 0x12, r2, 0x0)
getpeername$netlink(r0, &(0x7f0000000040), &(0x7f0000000080)=0xc)
pread64(r1, &(0x7f0000000180)=""/179, 0xffffffd1, 0x0)
ioctl$EVIOCGSW(r2, 0x8040451b, &(0x7f0000000280)=""/3)
setsockopt$inet6_dccp_buf(r0, 0x21, 0x8f, &(0x7f00000000c0)="2cfbeab5b700380a8730bf79f00b6fe5673e1ac4c9b2660bd1a0ca8c9a99fc530bfe92fc665c4d2f29a4897bb7710288c9bc50997f59cb3f2e5dfb4b7b734edca1b1c90487f81a7f9d6cf6be0bf109cb0e21ca08084115e1ca340e9819d8df1631e86ed54b8bd601572bc742", 0x6c)

2018/03/31 01:44:53 executing program 1:
r0 = creat(&(0x7f0000000b40)='./file0\x00', 0x20)
ioctl$DRM_IOCTL_AGP_ALLOC(0xffffffffffffff9c, 0xc0206434, &(0x7f0000000b80)={0x5, <r1=>0x0, 0x0, 0x81})
ioctl$DRM_IOCTL_SG_FREE(r0, 0x40106439, &(0x7f0000000bc0)={0x3, r1})
r2 = socket$inet(0x2, 0x6, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f00000008c0)=@broute={'broute\x00', 0x20, 0x2, 0x3e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000280], 0x0, &(0x7f0000000240), &(0x7f0000000280)=ANY=[@ANYBLOB="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"]}, 0x460)
getsockopt$inet_sctp6_SCTP_CONTEXT(0xffffffffffffff9c, 0x84, 0x11, &(0x7f0000000000)={<r3=>0x0, 0x7}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r2, 0x84, 0xa, &(0x7f0000000140)={0x0, 0xa2b, 0x4, 0x7, 0x2, 0x20, 0x10000, 0x8a82, r3}, &(0x7f0000000180)=0x20)
setsockopt$inet_group_source_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000680)={0x1000, {{0x2, 0x4e23, @multicast1=0xe0000001}}, {{0x2, 0x4e22, @broadcast=0xffffffff}}}, 0x108)
ioctl$DRM_IOCTL_AGP_ENABLE(0xffffffffffffffff, 0x40086432, &(0x7f0000000100))
r4 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/vs/sync_version\x00', 0x2, 0x0)
ioctl$TIOCGSOFTCAR(r4, 0x5419, &(0x7f00000007c0))
r5 = socket$inet6(0x10, 0x2, 0x0)
sendmsg(r5, &(0x7f0000000080)={&(0x7f0000000240)=@un=@abs={0x1, 0x0, 0x4e23}, 0x80, &(0x7f0000000040)=[{&(0x7f00000001c0)="5500000018007f04002d1cb2a4a280930a0600007da843cf19d0f869390009402f002100040000001900050000fc1700000000dc1338d54400009b84136ef75afb83de448daa7227c43ab8220000060c", 0x50}], 0x1, &(0x7f00000000c0)}, 0x0)
socket$bt_cmtp(0x1f, 0x3, 0x5)
fcntl$addseals(r5, 0x409, 0x7)
syz_open_dev$sndmidi(&(0x7f0000000c00)='/dev/snd/midiC#D#\x00', 0x100000001, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f0000001640)=@broute={'broute\x00', 0x20, 0x1, 0x1e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20001700], 0x0, &(0x7f0000001980), &(0x7f0000001700)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1, [{{{0x13, 0x0, 0x0, 'vcan0\x00', 'ifb0\x00', 'syzkaller0\x00', 'vcan0\x00', @remote={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xbb}, [], @link_local={0x1, 0x80, 0xc2}, [], 0x70, 0xf8, 0x128}, [@common=@dnat={'dnat\x00', 0x10, {{@dev={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa]}, 0xffffffffffffffff}}}, @common=@IDLETIMER={'IDLETIMER\x00', 0x28, {{0x4, 'syz0\x00'}}}]}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8}}]}, {0x0, '\x00', 0x1, 0xffffbffffffffffe}]}, 0x260)
setsockopt$EBT_SO_SET_ENTRIES(0xffffffffffffffff, 0x0, 0x80, &(0x7f0000000840)=@nat={'nat\x00', 0x19, 0x1, 0x200, [0x20000940, 0x0, 0x0, 0x20000970, 0x200009a0], 0x0, &(0x7f0000000800), &(0x7f0000000940)=[{}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x14, 0x98ab, 'teql0\x00', 'ip6gretap0\x00', 'ip_vti0\x00', 'nr0\x00', @empty, [0x0, 0xff, 0x0, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2}, [0xff, 0x0, 0xff, 0x0, 0x0, 0xff], 0x100, 0x138, 0x170, [@time={'time\x00', 0x18, {{0x7, 0x3, 0x13782, 0x14fdf, 0x80, 0x4, 0x1}}}, @nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x2}}}]}, [@snat={'snat\x00', 0x10, {{@random="07901c8f0140"}}}]}, @common=@dnat={'dnat\x00', 0x10, {{@local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}, 0x10}}}}]}]}, 0x278)
syz_open_dev$dmmidi(&(0x7f0000000c40)='/dev/dmmidi#\x00', 0xae6d, 0x200)

2018/03/31 01:44:53 executing program 6:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x200, 0x0)
socketpair$inet6_icmp_raw(0xa, 0x3, 0x3a, &(0x7f0000000680)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
setsockopt$sock_linger(r1, 0x1, 0xd, &(0x7f00000006c0)={0x400, 0x9}, 0x8)
perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
mmap(&(0x7f0000000000/0x9d7000)=nil, 0x9d7000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x7)
perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r4, &(0x7f0000e5b000)={0x2, 0x4e20, @multicast1=0xe0000001}, 0x10)
syz_open_dev$sg(&(0x7f0000000440)='/dev/sg#\x00', 0x0, 0x0)
connect$inet(r4, &(0x7f0000000100)={0x2, 0x4e20, @multicast2=0xe0000002}, 0x10)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000eb0fb8)={0x1, 0x3, &(0x7f00009ff000)=@framed={{0x18}, [], {0x95}}, &(0x7f00002bf000)='syzkaller\x00', 0x4, 0xb7, &(0x7f00006ab000)=""/183}, 0x48)
setsockopt$inet_tcp_int(r4, 0x6, 0x19, &(0x7f0000000240)=0x8, 0x4)
setsockopt$SO_BINDTODEVICE(r4, 0x1, 0x19, &(0x7f0000000000)="6970365f76746930000000000400", 0x10)
r6 = socket$kcm(0x29, 0x2, 0x0)
ioctl$sock_kcm_SIOCKCMATTACH(r6, 0x89e0, &(0x7f000031aff8)={r4, r5})
ioctl$sock_kcm_SIOCKCMCLONE(r6, 0x89e2, &(0x7f00000002c0)={<r7=>0xffffffffffffffff})
sendmsg$nl_xfrm(r7, &(0x7f0000000780)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000740)={&(0x7f0000000480)=@updpolicy={0xb8, 0x19, 0x0, 0x0, 0x0, {{@in=@loopback=0x7f000001, @in6=@mcast1={0xff, 0x1, [], 0x1}}}}, 0xffcb}, 0x1}, 0x0)
ioctl$sock_kcm_SIOCKCMUNATTACH(r7, 0x89e1, &(0x7f0000000040)={r4})
r8 = fcntl$getown(r3, 0x9)
r9 = accept4$inet(0xffffffffffffff9c, &(0x7f0000000700)={0x0, 0x0, @broadcast}, &(0x7f0000000740)=0x10, 0x80000)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r9, 0x84, 0x64, &(0x7f0000000300)=[@in6={0xa, 0x4e23, 0x0, @dev={0xfe, 0x80, [], 0xf}, 0x6}, @in={0x2, 0xff, @local={0xac, 0x14, 0x14, 0xaa}}, @in={0x2, 0x0, @multicast1=0xe0000001}, @in={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x10}}, @in={0x2, 0x4e20, @multicast1=0xe0000001}, @in={0x2, 0x4e24}, @in={0x2, 0x4e24, @broadcast=0xffffffff}, @in6={0xa, 0x4e21, 0xed34, @local={0xfe, 0x80, [], 0xaa}, 0x3}, @in={0x2, 0x4e23, @loopback=0x7f000001}], 0xfffffffffffffe00)
ptrace$setregset(0x4205, r8, 0x0, &(0x7f00000005c0)={&(0x7f0000000080)="449ed0dd6831a7fb44eca4221b1fb01abfec082aa7d0ee6f0ba9db0ece7da2bd3f", 0x21})
r10 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r11 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x1fffd, 0x0)
syz_open_dev$sndtimer(&(0x7f00000000c0)='/dev/snd/timer\x00', 0x0, 0x0)
read(r0, &(0x7f0000000140)=""/50, 0x32)
fcntl$dupfd(r10, 0x0, r11)

2018/03/31 01:44:53 executing program 4:
perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
gettid()
r0 = socket$inet(0x2, 0x1, 0x0)
setsockopt$inet_opts(r0, 0x0, 0x4, &(0x7f000064effb)="8907040000", 0x5)
getpeername$inet(r0, &(0x7f0000000040)={0x0, 0x0, @loopback}, &(0x7f0000000080)=0x10)
connect$inet(r0, &(0x7f0000000000)={0x2, 0x0, @rand_addr=0x7}, 0x10)
timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000583ffc))
getsockopt$IP_VS_SO_GET_VERSION(r0, 0x0, 0x480, &(0x7f00000001c0), &(0x7f0000000200)=0x40)
sendto(r0, &(0x7f00000000c0)="e19462eb2c22df18756855f01793b811502b39dc4ba586892b5978d552bea4fcfd30fedfa29cf2b2141bfc1c61076c6de04244f93f7548c96ce1fee7536b4980b21fc929855d1021", 0x48, 0x810, &(0x7f0000000140)=@in={0x2, 0x4e24, @multicast2=0xe0000002}, 0x80)
sched_rr_get_interval(0x0, &(0x7f00004bb4a0)={0x0, <r1=>0x0})
r2 = semget$private(0x0, 0x0, 0x8)
semctl$SEM_INFO(r2, 0x3, 0x13, &(0x7f00000002c0)=""/114)
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, r1}, {0x0, r1}}, &(0x7f0000ec6000))
mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0xfffffffffffffffc, 0x32, 0xffffffffffffffff, 0x0)
ioperm(0x4, 0x3e, 0x6)
perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write(0xffffffffffffffff, &(0x7f0000000300), 0x0)
r3 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r3, &(0x7f0000000080)={0x28, 0x0, 0x0, @my}, 0x10)
ioctl$int_in(r3, 0x5421, &(0x7f0000000000)=0x4)
listen(r3, 0x0)
accept4$vsock_stream(r3, &(0x7f00002ae000)={0x28, 0x0, 0x0, @my}, 0x5346484ccb758db8, 0x0)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x32, &(0x7f0000000280), 0x4)
r4 = syz_open_dev$dspn(&(0x7f0000000dc0)='/dev/dsp#\x00', 0x2, 0xa0001)
ioctl$SNDRV_CTL_IOCTL_ELEM_LIST(r4, 0xc0505510, &(0x7f0000000e40)={0x4, 0x1, 0x1, 0x3, &(0x7f0000000e00)=[{}]})
r5 = syz_open_dev$sndpcmp(&(0x7f0000000400)='/dev/snd/pcmC#D#p\x00', 0x400, 0xa0000)
ioctl$TIOCMSET(r5, 0x5418, &(0x7f0000000440))
accept4$vsock_stream(r5, &(0x7f0000000240)={0x28, 0x0, 0xffffffff, @my=0x0}, 0x10, 0x800)
r6 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000b00)='IPVS\x00')
sendmsg$IPVS_CMD_DEL_DAEMON(r5, &(0x7f0000000cc0)={&(0x7f0000000ac0)={0x10}, 0xc, &(0x7f0000000c80)={&(0x7f0000000b40)={0x110, r6, 0x100, 0x70bd29, 0x25dfdbfb, {0xa}, [@IPVS_CMD_ATTR_SERVICE={0x44, 0x1, [@IPVS_SVC_ATTR_NETMASK={0x8, 0x9, 0x35}, @IPVS_SVC_ATTR_NETMASK={0x8, 0x9, 0xe}, @IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x100000000}, @IPVS_SVC_ATTR_AF={0x8, 0x1, 0x2}, @IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x32}, @IPVS_SVC_ATTR_PE_NAME={0x8, 0xb, 'sip\x00'}, @IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8}, @IPVS_SVC_ATTR_PORT={0x8, 0x4, 0x4e22}]}, @IPVS_CMD_ATTR_DEST={0x38, 0x2, [@IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv6=@loopback={0x0, 0x1}}, @IPVS_DEST_ATTR_WEIGHT={0x8, 0x4, 0x4}, @IPVS_DEST_ATTR_PERSIST_CONNS={0x8, 0x9, 0x1}, @IPVS_DEST_ATTR_ADDR_FAMILY={0x8, 0xb, 0xa}, @IPVS_DEST_ATTR_INACT_CONNS={0x8, 0x8, 0x3a}]}, @IPVS_CMD_ATTR_SERVICE={0x40, 0x1, [@IPVS_SVC_ATTR_PROTOCOL={0x8, 0x2, 0x32}, @IPVS_SVC_ATTR_PROTOCOL={0x8, 0x2, 0x77}, @IPVS_SVC_ATTR_NETMASK={0x8, 0x9, 0x54}, @IPVS_SVC_ATTR_PROTOCOL={0x8, 0x2, 0x3b}, @IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv6}, @IPVS_SVC_ATTR_AF={0x8, 0x1, 0x2}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x7}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x2}, @IPVS_CMD_ATTR_SERVICE={0x30, 0x1, [@IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv6}, @IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x4}, @IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0xff}, @IPVS_SVC_ATTR_PE_NAME={0x8, 0xb, 'sip\x00'}]}]}, 0x110}, 0x1, 0x0, 0x0, 0x20000000}, 0x14)

2018/03/31 01:44:53 executing program 3 (fault-call:3 fault-nth:36):
mkdir(&(0x7f00000001c0)='./file0\x00', 0x0)
mount(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000380)='./file0\x00', &(0x7f0000000300)='cgroup2\x00', 0x0, 0x0)
r0 = open$dir(&(0x7f000001bff4)='./file0\x00', 0x0, 0x0)
mkdirat(r0, &(0x7f0000000280)='./file0\x00', 0x20)
getdents64(r0, &(0x7f00000007c0)=""/250, 0x1015a)
fadvise64(r0, 0x0, 0x41, 0x3)
unlinkat(r0, &(0x7f0000000080)='./file0\x00', 0x200)
r1 = open$dir(&(0x7f0000000180)='./file0\x00', 0x105600, 0x81)
fchdir(r0)
link(&(0x7f0000000740)='./file1\x00', &(0x7f0000000780)='./file0/file0\x00')
renameat2(r1, &(0x7f0000000200)='./file1\x00', r0, &(0x7f0000000240)='./file0\x00', 0xfd1092750066ec78)
pivot_root(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='./file0\x00')
r2 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000100)='/dev/rfkill\x00', 0x2c42, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_LIST(r2, 0xc0505510, &(0x7f0000000480)={0x1000, 0x1, 0x474, 0x1, &(0x7f0000000140)=[{}]})
unlink(&(0x7f00000000c0)='./file0\x00')
symlinkat(&(0x7f0000000400)='./file0/file0\x00', r0, &(0x7f0000000440)='./file0/file0\x00')
iopl(0x6)
recvmsg$kcm(0xffffffffffffffff, &(0x7f0000000680)={&(0x7f0000000500)=@pppol2tp={0x0, 0x0, {0x0, <r3=>0xffffffffffffffff, {0x0, 0x0, @broadcast}}}, 0x80, &(0x7f0000000600)=[{&(0x7f0000000580)=""/80, 0x50}, {&(0x7f00000008c0)=""/4096, 0x1000}], 0x2, &(0x7f0000000640)=""/45, 0x2d, 0x206e}, 0x20)
r4 = syz_open_dev$sndpcmp(&(0x7f00000018c0)='/dev/snd/pcmC#D#p\x00', 0x5, 0x10a00)
ioctl$KVM_GET_DEVICE_ATTR(r4, 0x4018aee2, &(0x7f0000001940)={0x0, 0x100, 0x9, &(0x7f0000001900)})
recvfrom$ipx(r3, &(0x7f00000006c0)=""/52, 0x34, 0x100, &(0x7f0000000700)={0x4, 0x9a2, 0x4, "dc108d9d4391", 0x5}, 0x10)
renameat(r0, &(0x7f0000001980)='./file1\x00', r4, &(0x7f00000019c0)='./file0/file0\x00')

2018/03/31 01:44:53 executing program 2:
r0 = perf_event_open(&(0x7f0000000200)={0x5, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x3f, 0x0, 0x6, 0x5, @perf_bp={&(0x7f0000000000), 0x1}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$mixer(0xffffffffffffff9c, &(0x7f0000000040)='/dev/mixer\x00', 0x101000, 0x0)
mmap(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x0, 0x12013, r0, 0x0)
syz_open_dev$tun(&(0x7f0000000000)='/dev/net/tun\x00', 0x0, 0x0)

2018/03/31 01:44:53 executing program 5:
r0 = syz_open_dev$amidi(&(0x7f0000000400)='/dev/amidi#\x00', 0x401, 0x40)
accept4$llc(r0, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, &(0x7f0000000480)=0x10, 0x80800)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f0000005fd8)={'vcan0\x00', <r2=>0x0})
ioctl$KVM_SET_DEVICE_ATTR(0xffffffffffffffff, 0x4018aee1, &(0x7f0000000500)={0x0, 0x100000001, 0x5a, &(0x7f00000004c0)})
connect$can_bcm(r1, &(0x7f0000001ff0)={0x1d, r2}, 0x10)
ioctl$TIOCGSID(0xffffffffffffff9c, 0x5429, &(0x7f00000002c0)=<r3=>0x0)
waitid(0x0, r3, 0x0, 0x1000009, &(0x7f0000000300))
r4 = syz_open_dev$vcsn(&(0x7f0000000000)='/dev/vcs#\x00', 0xcd8, 0x101000)
getsockopt$SO_BINDTODEVICE(r4, 0x1, 0x19, &(0x7f0000000280), 0x10)
ioctl$EVIOCGABS0(r4, 0x80184540, &(0x7f0000000240)=""/64)
bind$vsock_dgram(r1, &(0x7f00000003c0)={0x28, 0x0, 0x2711, @reserved=0x1}, 0x10)
exit(0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000200)={r4, 0x0, 0x47, 0xde, &(0x7f0000000080)="3541471374d1e455c1f501bb3e7418a21f930d9fb82ac3588f54ad5a1a9e778bdf654fa39f19bcbc6ee4636a10d409c877cfe11ba160f73d4cde40422564bfdb62d8e5f8ba5097", &(0x7f0000000100)=""/222, 0x4, 0x3f}, 0x28)
ioctl$KVM_SET_TSS_ADDR(r4, 0xae47, 0xd000)
ioctl$KVM_CHECK_EXTENSION(r4, 0xae03, 0xffffffffffffffff)
openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000580)='/dev/qat_adf_ctl\x00', 0x4600, 0x0)
sendmsg$can_raw(r1, &(0x7f0000001fc8)={&(0x7f000000a000)={0x1d}, 0x10, &(0x7f0000000040)={&(0x7f000000a000)=@canfd={{0x1}, 0x0, 0x0, 0x0, 0x0, "0327e1b22b5fcef7739c699f5ff986ca08990039576a7d5cb2bdac3fa80acf584ecb5fee496e6866856b76b5f700000000000000004e2f9663a918fa1efd9b0b"}, 0x48}, 0x1}, 0x0)
ioctl$VHOST_GET_VRING_ENDIAN(r0, 0x4008af14, &(0x7f0000000540)={0x0, 0x9})

2018/03/31 01:44:53 executing program 7:
clone(0x200, &(0x7f0000000100)="abbcd764d5b6fd853189b4a102b248f0de7c0a5cc328ca13455598dc3d760fa566c64d7cb06a7e15cdb085165670f42b32809442c69a5942d03eb3fd42bf0ebb0272fc4beb43f269f26f57bbb67316f7c76c8d570edaa564720b4dfd8f32453fc2354ddc753155ac051e9e9657989f0bbf1c03e4cd9f735c6d1b95719dbbb1c04092f54f44256722d954f0000000000000000000000000000000", &(0x7f00000000c0), &(0x7f00008c8000), &(0x7f0000828ffe))
mknod(&(0x7f0000000000)='./file0\x00', 0x1000000000001040, 0x0)
execve(&(0x7f000007b000)='./file0\x00', &(0x7f0000000180), &(0x7f0000000040))
r0 = gettid()
r1 = syz_open_dev$mice(&(0x7f0000149000)='/dev/input/mice\x00', 0x0, 0x0)
execve(&(0x7f00000001c0)='./file0\x00', &(0x7f0000001540)=[&(0x7f0000000200)='user\x00', &(0x7f0000000240)='vmnet0\x00', &(0x7f0000000280)='user\x00', &(0x7f0000001480)='user\x00'], &(0x7f00000015c0)=[&(0x7f0000001580)='#keyring\x00'])
msgget$private(0x0, 0x0)
timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000))
uselib(&(0x7f00000002c0)='./file0/file0\x00')
mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0xffffffffffffffff, 0x32, 0xffffffffffffffff, 0x0)
getsockopt$inet_sctp6_SCTP_INITMSG(r1, 0x84, 0x2, &(0x7f0000000040), &(0x7f0000000080)=0x8)
tkill(r0, 0x1000000000015)

[  186.939617] FAULT_INJECTION: forcing a failure.
[  186.939617] name failslab, interval 1, probability 0, space 0, times 0
[  186.950897] CPU: 1 PID: 13541 Comm: syz-executor3 Not tainted 4.16.0-rc7+ #372
[  186.958251] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  186.967589] Call Trace:
[  186.970168]  dump_stack+0x194/0x24d
[  186.973781]  ? arch_local_irq_restore+0x53/0x53
[  186.978441]  should_fail+0x8c0/0xa40
[  186.982136]  ? kstrdup+0x39/0x70
[  186.985486]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  186.990567]  ? cgroup_apply_control_enable+0x390/0xbc0
[  186.995819]  ? kernfs_iop_mkdir+0x153/0x1e0
[  187.000117]  ? vfs_mkdir+0x390/0x600
[  187.003806]  ? SyS_mkdirat+0x22b/0x2b0
[  187.007672]  ? do_syscall_64+0x281/0x940
[  187.011710]  ? entry_SYSCALL_64_after_hwframe+0x42/0xb7
[  187.017052]  ? find_held_lock+0x35/0x1d0
[  187.021095]  ? find_held_lock+0x35/0x1d0
[  187.025140]  ? __lock_is_held+0xb6/0x140
[  187.029183]  ? check_same_owner+0x320/0x320
[  187.033485]  ? rcu_note_context_switch+0x710/0x710
[  187.038408]  ? rcu_read_lock_sched_held+0x108/0x120
[  187.043404]  should_failslab+0xec/0x120
[  187.047353]  kmem_cache_alloc+0x47/0x760
[  187.051392]  ? memcpy+0x45/0x50
[  187.054650]  ? kstrdup+0x59/0x70
[  187.058000]  __kernfs_new_node+0xe2/0x570
[  187.062132]  ? kernfs_dop_revalidate+0x380/0x380
[  187.066869]  ? snprintf+0xc0/0xf0
[  187.070301]  ? vsprintf+0x40/0x40
[  187.073740]  kernfs_new_node+0x80/0xe0
[  187.077607]  __kernfs_create_file+0x4b/0x320
[  187.081996]  cgroup_addrm_files+0x3c5/0xa70
[  187.086303]  ? cgroup_file_write+0x710/0x710
[  187.090691]  ? cpu_cgroup_css_alloc+0x30/0x30
[  187.095169]  ? __lock_is_held+0xb6/0x140
[  187.099210]  ? sched_online_group+0x4e0/0x4e0
[  187.103680]  ? cpu_cgroup_css_online+0x3a/0x50
[  187.108238]  ? online_css+0x224/0x2e0
[  187.112022]  css_populate_dir+0x198/0x420
[  187.116156]  cgroup_apply_control_enable+0x390/0xbc0
[  187.121238]  ? cgroup_propagate_control+0x570/0x570
[  187.126236]  ? css_populate_dir+0x289/0x420
[  187.130540]  cgroup_mkdir+0x56f/0xfc0
[  187.134318]  ? __lock_is_held+0xb6/0x140
[  187.138357]  ? cgroup_destroy_locked+0x750/0x750
[  187.143088]  ? rcu_read_lock_sched_held+0x108/0x120
[  187.148082]  ? kmem_cache_free+0x258/0x2a0
[  187.152293]  ? set_nlink+0xc1/0x160
[  187.155898]  ? debug_lockdep_rcu_enabled+0x77/0x90
[  187.160800]  ? generic_permission+0x105/0x3c0
[  187.165272]  ? cgroup_destroy_locked+0x750/0x750
[  187.170006]  kernfs_iop_mkdir+0x153/0x1e0
[  187.174136]  vfs_mkdir+0x390/0x600
[  187.177654]  SyS_mkdirat+0x22b/0x2b0
[  187.181346]  ? SyS_mknod+0x480/0x480
[  187.185037]  ? trace_hardirqs_on+0xd/0x10
[  187.189163]  ? do_syscall_64+0xb7/0x940
[  187.193113]  ? SyS_mknod+0x480/0x480
[  187.196805]  do_syscall_64+0x281/0x940
[  187.200668]  ? vmalloc_sync_all+0x30/0x30
[  187.204792]  ? _raw_spin_unlock_irq+0x27/0x70
[  187.209264]  ? finish_task_switch+0x1c1/0x7e0
[  187.213738]  ? syscall_return_slowpath+0x550/0x550
[  187.218642]  ? syscall_return_slowpath+0x2ac/0x550
[  187.223549]  ? prepare_exit_to_usermode+0x350/0x350
[  187.228546]  ? entry_SYSCALL_64_after_hwframe+0x52/0xb7
[  187.233889]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  187.238711]  entry_SYSCALL_64_after_hwframe+0x42/0xb7
[  187.243877] RIP: 0033:0x454e79
[  187.247042] RSP: 002b:00007fa6ef25cc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
[  187.254726] RAX: ffffffffffffffda RBX: 00007fa6ef25d6d4 RCX: 0000000000454e79
[  187.261970] RDX: 0000000000000020 RSI: 0000000020000280 RDI: 0000000000000013
[  187.269302] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  187.276548] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000014
[  187.283797] R13: 00000000000003eb R14: 00000000006f7ea8 R15: 0000000000000024
2018/03/31 01:44:53 executing program 2:
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$inet6_int(r0, 0x29, 0xd1, &(0x7f0000c4c000)=0x40, 0x4)
close(r0)
openat$ashmem(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ashmem\x00', 0x10000, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000004740)={'erspan0\x00'})

2018/03/31 01:44:53 executing program 3 (fault-call:3 fault-nth:37):
mkdir(&(0x7f00000001c0)='./file0\x00', 0x0)
mount(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000380)='./file0\x00', &(0x7f0000000300)='cgroup2\x00', 0x0, 0x0)
r0 = open$dir(&(0x7f000001bff4)='./file0\x00', 0x0, 0x0)
mkdirat(r0, &(0x7f0000000280)='./file0\x00', 0x20)
getdents64(r0, &(0x7f00000007c0)=""/250, 0x1015a)
fadvise64(r0, 0x0, 0x41, 0x3)
unlinkat(r0, &(0x7f0000000080)='./file0\x00', 0x200)
r1 = open$dir(&(0x7f0000000180)='./file0\x00', 0x105600, 0x81)
fchdir(r0)
link(&(0x7f0000000740)='./file1\x00', &(0x7f0000000780)='./file0/file0\x00')
renameat2(r1, &(0x7f0000000200)='./file1\x00', r0, &(0x7f0000000240)='./file0\x00', 0xfd1092750066ec78)
pivot_root(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='./file0\x00')
r2 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000100)='/dev/rfkill\x00', 0x2c42, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_LIST(r2, 0xc0505510, &(0x7f0000000480)={0x1000, 0x1, 0x474, 0x1, &(0x7f0000000140)=[{}]})
unlink(&(0x7f00000000c0)='./file0\x00')
symlinkat(&(0x7f0000000400)='./file0/file0\x00', r0, &(0x7f0000000440)='./file0/file0\x00')
iopl(0x6)
recvmsg$kcm(0xffffffffffffffff, &(0x7f0000000680)={&(0x7f0000000500)=@pppol2tp={0x0, 0x0, {0x0, <r3=>0xffffffffffffffff, {0x0, 0x0, @broadcast}}}, 0x80, &(0x7f0000000600)=[{&(0x7f0000000580)=""/80, 0x50}, {&(0x7f00000008c0)=""/4096, 0x1000}], 0x2, &(0x7f0000000640)=""/45, 0x2d, 0x206e}, 0x20)
r4 = syz_open_dev$sndpcmp(&(0x7f00000018c0)='/dev/snd/pcmC#D#p\x00', 0x5, 0x10a00)
ioctl$KVM_GET_DEVICE_ATTR(r4, 0x4018aee2, &(0x7f0000001940)={0x0, 0x100, 0x9, &(0x7f0000001900)})
recvfrom$ipx(r3, &(0x7f00000006c0)=""/52, 0x34, 0x100, &(0x7f0000000700)={0x4, 0x9a2, 0x4, "dc108d9d4391", 0x5}, 0x10)
renameat(r0, &(0x7f0000001980)='./file1\x00', r4, &(0x7f00000019c0)='./file0/file0\x00')

[  187.291204] cgroup: cgroup_addrm_files: failed to add weight, err=-12
2018/03/31 01:44:54 executing program 1:
r0 = creat(&(0x7f0000000b40)='./file0\x00', 0x20)
ioctl$DRM_IOCTL_AGP_ALLOC(0xffffffffffffff9c, 0xc0206434, &(0x7f0000000b80)={0x5, <r1=>0x0, 0x0, 0x81})
perf_event_open(&(0x7f0000348f88)={0x2, 0x78, 0x3e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x6, 0x0)
bind$inet6(r2, &(0x7f0000000000)={0xa, 0x4e20}, 0x1c)
r3 = socket$inet_dccp(0x2, 0x6, 0x0)
listen(r2, 0x6)
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r4 = syz_open_dev$dspn(&(0x7f0000000000)='/dev/dsp#\x00', 0x1, 0x2)
ioctl$int_in(r4, 0x800000c0045006, &(0x7f0000595ff8)=0x3)
write(r4, &(0x7f0000000940)="576b6ea92d54c062475b4b6d44affca4a89ae22aefe1ac7b84bc326bb17e8c4375e3f0ed574a638068ce5718516001fb2a8082e45c90a434a13156a342d47bfd68f9d005b16efccf30a1b63dd0de491f663afb598f5873c07e7e06bb8ab80b1c644f14eb652c93929bad2b827ff0fc0dc004abb4fc81fe6e74e8a7850e19af2abb880ce827de181f25735d09b6edf52a78f5f11c4b1109f6e83c35c178a2695e607f539a630d8775a9cb48ea508992b75fce4e", 0xb3)
mmap$binder(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x2000002, 0x13, r4, 0x0)
close(r4)
setns(0xffffffffffffffff, 0x0)
ioctl$DRM_IOCTL_AGP_FREE(0xffffffffffffffff, 0x40206435, &(0x7f0000000080))
openat$rfkill(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/rfkill\x00', 0x0, 0x0)
setsockopt(r3, 0x10d, 0x800000000d, &(0x7f00001c9fff)="03", 0x1)
ioctl$int_in(r3, 0x5452, &(0x7f000079d000)=0x100000000000001)
connect$inet(r3, &(0x7f0000e5c000)={0x2, 0x4e20, @loopback=0x7f000001}, 0x10)
writev(r3, &(0x7f000062dff0)=[{&(0x7f0000d9cfef)='\x00', 0x1}], 0x1)
ioctl$DRM_IOCTL_SG_FREE(r0, 0x40106439, &(0x7f0000000bc0)={0x3, r1})
r5 = socket$inet(0x2, 0x6, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r5, 0x0, 0x80, &(0x7f00000008c0)=@broute={'broute\x00', 0x20, 0x2, 0x3e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000280], 0x0, &(0x7f0000000240), &(0x7f0000000280)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff01000000110000000000000000006970366772657461703000000000f8010000000000006e000000000000000000697036746e6c3000000000000000000073797a5f74756e0000000000000000000180c200000000000000ff00aaaaaaaaaabb00000000000000007000000008010000580100005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a30000000000000000000000000000000000000000000000000000000004c45440000000000000000000000000000000000000000000000000000000000280000000000000073797a3000000000000000000000000000000000000000000000000000000000000000000000000049444c4554494d4552000000000000000000000000000000000000000000000028000000000000000000010073797a30000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001000000ffffffff010000000d0000000000000086dd73797a6b616c6c65723000000000000074756e6c3000000000000000000000007369743000000000000000000000000069666230000000000000000000000000000000000000000000000000ffffffffffff000000000000000030010000b001000000020000697036000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000ffffac1414aa0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006c696d6974000000000000000000000000000000000000000000000000000000200000000000000000000000ec00000000000000000000000000000000000000000000000000000049444c4554494d4552000000000000000000000000000000000000000000000028000000000000008100000073797a3100000000000000000000000000000000000000000000000000000000000000004e46515545554500000000000000000000000000000000000000000000000000080000000000000000000000000000004c45440000000000000000000000000000000000000000000000000000000000280000000000000073797a30000000000000000000000000000000000000000000000000000000000000000000000000"]}, 0x460)
getsockopt$inet_sctp6_SCTP_CONTEXT(0xffffffffffffff9c, 0x84, 0x11, &(0x7f0000000000)={<r6=>0x0, 0x7}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r5, 0x84, 0xa, &(0x7f0000000140)={0x0, 0xa2b, 0x4, 0x7, 0x2, 0x20, 0x10000, 0x8a82, r6}, &(0x7f0000000180)=0x20)
setsockopt$inet_group_source_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000680)={0x1000, {{0x2, 0x4e23, @multicast1=0xe0000001}}, {{0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0x13}}}}, 0x108)
ioctl$DRM_IOCTL_AGP_ENABLE(0xffffffffffffffff, 0x40086432, &(0x7f0000000100))
r7 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/vs/sync_version\x00', 0x2, 0x0)
ioctl$TIOCGSOFTCAR(r7, 0x5419, &(0x7f00000007c0))
ioctl$PIO_UNIMAPCLR(r0, 0x4b68, &(0x7f0000000c80)={0x1, 0x1f, 0x1})

[  187.391586] FAULT_INJECTION: forcing a failure.
[  187.391586] name failslab, interval 1, probability 0, space 0, times 0
[  187.402899] CPU: 1 PID: 13563 Comm: syz-executor3 Not tainted 4.16.0-rc7+ #372
[  187.410260] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  187.419607] Call Trace:
[  187.422194]  dump_stack+0x194/0x24d
[  187.425822]  ? arch_local_irq_restore+0x53/0x53
[  187.430492]  should_fail+0x8c0/0xa40
[  187.434201]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  187.439285]  ? rb_first_postorder+0xa0/0xa0
[  187.443585]  ? __mutex_lock+0x16f/0x1a80
[  187.447625]  ? trace_event_raw_event_lock+0x340/0x340
[  187.452792]  ? trace_hardirqs_off+0x10/0x10
[  187.457093]  ? find_held_lock+0x35/0x1d0
[  187.461134]  ? __lock_is_held+0xb6/0x140
[  187.465178]  ? check_same_owner+0x320/0x320
[  187.469477]  ? lock_downgrade+0x980/0x980
[  187.473606]  ? rcu_note_context_switch+0x710/0x710
[  187.478523]  should_failslab+0xec/0x120
[  187.482475]  __kmalloc_track_caller+0x5f/0x760
[  187.487042]  ? string+0x180/0x200
[  187.490477]  ? kstrdup_const+0x39/0x50
[  187.494355]  kstrdup+0x39/0x70
[  187.497525]  kstrdup_const+0x39/0x50
[  187.501215]  __kernfs_new_node+0xa2/0x570
[  187.505343]  ? kernfs_dop_revalidate+0x380/0x380
[  187.510082]  ? snprintf+0xc0/0xf0
[  187.513514]  ? vsprintf+0x40/0x40
[  187.516947]  ? debug_lockdep_rcu_enabled+0x77/0x90
[  187.521855]  ? cgroup_file_name+0x1d0/0x1d0
[  187.526156]  kernfs_new_node+0x80/0xe0
[  187.530030]  __kernfs_create_file+0x4b/0x320
[  187.534419]  cgroup_addrm_files+0x3c5/0xa70
[  187.538723]  ? cgroup_file_write+0x710/0x710
[  187.543109]  ? cpu_cgroup_css_alloc+0x30/0x30
[  187.547590]  ? __lock_is_held+0xb6/0x140
[  187.551635]  ? sched_online_group+0x4e0/0x4e0
[  187.556104]  ? cpu_cgroup_css_online+0x3a/0x50
[  187.560661]  ? online_css+0x224/0x2e0
[  187.564439]  css_populate_dir+0x198/0x420
[  187.568566]  cgroup_apply_control_enable+0x390/0xbc0
[  187.573651]  ? cgroup_propagate_control+0x570/0x570
[  187.578648]  ? css_populate_dir+0x289/0x420
[  187.582948]  cgroup_mkdir+0x56f/0xfc0
[  187.586727]  ? __lock_is_held+0xb6/0x140
[  187.590767]  ? cgroup_destroy_locked+0x750/0x750
[  187.595501]  ? rcu_read_lock_sched_held+0x108/0x120
[  187.600494]  ? kmem_cache_free+0x258/0x2a0
[  187.604706]  ? set_nlink+0xc1/0x160
[  187.608311]  ? debug_lockdep_rcu_enabled+0x77/0x90
[  187.613217]  ? generic_permission+0x105/0x3c0
[  187.617690]  ? cgroup_destroy_locked+0x750/0x750
[  187.622424]  kernfs_iop_mkdir+0x153/0x1e0
[  187.626551]  vfs_mkdir+0x390/0x600
[  187.630073]  SyS_mkdirat+0x22b/0x2b0
[  187.633763]  ? SyS_mknod+0x480/0x480
[  187.637452]  ? trace_hardirqs_on+0xd/0x10
[  187.641577]  ? do_syscall_64+0xb7/0x940
[  187.645531]  ? SyS_mknod+0x480/0x480
[  187.649221]  do_syscall_64+0x281/0x940
[  187.653087]  ? vmalloc_sync_all+0x30/0x30
[  187.657211]  ? _raw_spin_unlock_irq+0x27/0x70
[  187.661682]  ? finish_task_switch+0x1c1/0x7e0
[  187.666155]  ? syscall_return_slowpath+0x550/0x550
[  187.671063]  ? syscall_return_slowpath+0x2ac/0x550
[  187.675967]  ? prepare_exit_to_usermode+0x350/0x350
[  187.680964]  ? entry_SYSCALL_64_after_hwframe+0x52/0xb7
[  187.686306]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  187.691126]  entry_SYSCALL_64_after_hwframe+0x42/0xb7
[  187.696291] RIP: 0033:0x454e79
[  187.699457] RSP: 002b:00007fa6ef25cc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
[  187.707143] RAX: ffffffffffffffda RBX: 00007fa6ef25d6d4 RCX: 0000000000454e79
[  187.714391] RDX: 0000000000000020 RSI: 0000000020000280 RDI: 0000000000000013
[  187.721636] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  187.728881] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000014
[  187.736127] R13: 00000000000003eb R14: 00000000006f7ea8 R15: 0000000000000025
2018/03/31 01:44:54 executing program 2:
r0 = socket(0x15, 0x80005, 0x0)
getsockopt$bt_BT_CHANNEL_POLICY(r0, 0x114, 0x2710, &(0x7f0000000080), &(0x7f0000000ff8)=0x10225)
connect$inet(r0, &(0x7f0000000340)={0x2, 0x4e23, @rand_addr=0x401}, 0x10)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e21, 0x2, @loopback={0x0, 0x1}, 0xfffffffffffffff7}, @in6={0xa, 0x4e23, 0x7fff, @remote={0xfe, 0x80, [], 0xbb}, 0x80000000}, @in6={0xa, 0x4e24, 0x2b, @mcast1={0xff, 0x1, [], 0x1}, 0x1}, @in={0x2, 0x4e22, @loopback=0x7f000001}], 0x64)
r1 = socket$bt_hidp(0x1f, 0x3, 0x6)
getsockname(0xffffffffffffffff, &(0x7f00000001c0)=@ethernet={0x0, @remote}, &(0x7f0000000240)=0x80)
socketpair$ax25(0x3, 0x7, 0xcd, &(0x7f00000000c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
getpeername$packet(r0, &(0x7f0000000140)={0x0, 0x0, <r3=>0x0, 0x0, 0x0, 0x0, @link_local}, &(0x7f0000000180)=0x14)
bind(r2, &(0x7f0000000380)=@hci={0x1f, r3, 0x2}, 0x80)
setsockopt$bt_BT_CHANNEL_POLICY(r1, 0x112, 0xa, &(0x7f0000000080), 0x4)
setsockopt$inet6_MCAST_JOIN_GROUP(0xffffffffffffffff, 0x29, 0x2a, &(0x7f0000000280)={0x100000001, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x1, [], 0x1}}}}, 0x88)

2018/03/31 01:44:54 executing program 6:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x200, 0x0)
socketpair$inet6_icmp_raw(0xa, 0x3, 0x3a, &(0x7f0000000680)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
setsockopt$sock_linger(r1, 0x1, 0xd, &(0x7f00000006c0)={0x400, 0x9}, 0x8)
perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
mmap(&(0x7f0000000000/0x9d7000)=nil, 0x9d7000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x7)
perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r4, &(0x7f0000e5b000)={0x2, 0x4e20, @multicast1=0xe0000001}, 0x10)
syz_open_dev$sg(&(0x7f0000000440)='/dev/sg#\x00', 0x0, 0x0)
connect$inet(r4, &(0x7f0000000100)={0x2, 0x4e20, @multicast2=0xe0000002}, 0x10)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000eb0fb8)={0x1, 0x3, &(0x7f00009ff000)=@framed={{0x18}, [], {0x95}}, &(0x7f00002bf000)='syzkaller\x00', 0x4, 0xb7, &(0x7f00006ab000)=""/183}, 0x48)
setsockopt$inet_tcp_int(r4, 0x6, 0x19, &(0x7f0000000240)=0x8, 0x4)
setsockopt$SO_BINDTODEVICE(r4, 0x1, 0x19, &(0x7f0000000000)="6970365f76746930000000000400", 0x10)
r6 = socket$kcm(0x29, 0x2, 0x0)
ioctl$sock_kcm_SIOCKCMATTACH(r6, 0x89e0, &(0x7f000031aff8)={r4, r5})
ioctl$sock_kcm_SIOCKCMCLONE(r6, 0x89e2, &(0x7f00000002c0)={<r7=>0xffffffffffffffff})
sendmsg$nl_xfrm(r7, &(0x7f0000000780)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000740)={&(0x7f0000000480)=@updpolicy={0xb8, 0x19, 0x0, 0x0, 0x0, {{@in=@loopback=0x7f000001, @in6=@mcast1={0xff, 0x1, [], 0x1}}}}, 0xffcb}, 0x1}, 0x0)
ioctl$sock_kcm_SIOCKCMUNATTACH(r7, 0x89e1, &(0x7f0000000040)={r4})
r8 = fcntl$getown(r3, 0x9)
r9 = accept4$inet(0xffffffffffffff9c, &(0x7f0000000700)={0x0, 0x0, @broadcast}, &(0x7f0000000740)=0x10, 0x80000)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r9, 0x84, 0x64, &(0x7f0000000300)=[@in6={0xa, 0x4e23, 0x0, @dev={0xfe, 0x80, [], 0xf}, 0x6}, @in={0x2, 0xff, @local={0xac, 0x14, 0x14, 0xaa}}, @in={0x2, 0x0, @multicast1=0xe0000001}, @in={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x10}}, @in={0x2, 0x4e20, @multicast1=0xe0000001}, @in={0x2, 0x4e24}, @in={0x2, 0x4e24, @broadcast=0xffffffff}, @in6={0xa, 0x4e21, 0xed34, @local={0xfe, 0x80, [], 0xaa}, 0x3}, @in={0x2, 0x4e23, @loopback=0x7f000001}], 0xfffffffffffffe00)
ptrace$setregset(0x4205, r8, 0x0, &(0x7f00000005c0)={&(0x7f0000000080)="449ed0dd6831a7fb44eca4221b1fb01abfec082aa7d0ee6f0ba9db0ece7da2bd3f", 0x21})
r10 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r11 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x1fffd, 0x0)
syz_open_dev$sndtimer(&(0x7f00000000c0)='/dev/snd/timer\x00', 0x0, 0x0)
read(r0, &(0x7f0000000140)=""/50, 0x32)
fcntl$dupfd(r10, 0x0, r11)

2018/03/31 01:44:54 executing program 0:
mkdir(&(0x7f0000f4eff8)='./file0\x00', 0x0)
mount(&(0x7f000000a000)='./file0\x00', &(0x7f000000aff8)='./file0\x00', &(0x7f000000c000)='ramfs\x00', 0x0, &(0x7f0000000200))
mkdir(&(0x7f0000024ff0)='./file0/control\x00', 0x0)
mkdir(&(0x7f0000155ff2)='./file0/file0\x00', 0x0)
rename(&(0x7f0000000080)='./file0/file0\x00', &(0x7f00000000c0)='./file0/control\x00')
r0 = socket$inet(0x2, 0x6, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f00000008c0)=@broute={'broute\x00', 0x20, 0x2, 0x3e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000280], 0x0, &(0x7f0000000240), &(0x7f0000000280)=ANY=[@ANYBLOB="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"]}, 0x460)
getsockopt$inet_sctp6_SCTP_CONTEXT(0xffffffffffffff9c, 0x84, 0x11, &(0x7f0000000000)={<r1=>0x0, 0x7}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f0000000140)={0x0, 0xa2b, 0x4, 0x7, 0x2, 0x20, 0x10000, 0x8a82, r1}, &(0x7f0000000180)=0x20)
r2 = socket(0x1d, 0xb, 0x0)
setsockopt$inet_group_source_req(r2, 0x0, 0xfe0d64ad1c6cb9f1, &(0x7f0000000680)={0x1000, {{0x2, 0x4e23, @multicast1=0xe0000001}}, {{0x2, 0x4e22, @broadcast=0xffffffff}}}, 0x108)
ioctl$DRM_IOCTL_AGP_ENABLE(r2, 0x40086432, &(0x7f0000000100))
r3 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000b80)='/proc/sys/net/ipv4/vs/sloppy_sctp\x00', 0x2, 0x0)
ioctl$TIOCGSOFTCAR(r3, 0x5419, &(0x7f00000007c0))
r4 = socket$inet6(0x10, 0x6, 0x1)
sendmsg(r4, &(0x7f0000000080)={&(0x7f0000000240)=@nl=@kern={0x10}, 0x80, &(0x7f0000000040)=[{&(0x7f00000001c0)="5500000018007f04002d1cb2a4a280930a0600007da843cf19d0f869390009402f002100040000001900050000fc1700000000dc1338d54400009b84136ef75afb83de448daa7227c43ab8220000060cec4fab91d4", 0x55}], 0x1, &(0x7f00000000c0)}, 0x0)
open_by_handle_at(r3, &(0x7f0000000800)={0x7e, 0x5, "209cec75ef3e8d7500a3aaef1fe66979c6ef553eda19883f22029d52ad5ca64007fa6e0ca576f3f74c565ad9fe2a23ac882fd26d10457d0661f932c72783cb38615f5853c6dbb208946d4e6a1dde97060e9163cba61f9b024ed23ffc912a03e3a5cf3382d2520699d89d06a447233090f88feffd215d"}, 0x0)
socket$bt_cmtp(0x1f, 0x3, 0x5)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000001640)=@broute={'broute\x00', 0x20, 0x1, 0x1e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20001700], 0x0, &(0x7f0000001980), &(0x7f0000001700)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1, [{{{0x13, 0x0, 0x0, 'vcan0\x00', 'ifb0\x00', 'syzkaller0\x00', 'vcan0\x00', @remote={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xbb}, [], @link_local={0x1, 0x80, 0xc2}, [], 0x70, 0xf8, 0x128}, [@common=@dnat={'dnat\x00', 0x10, {{@dev={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa]}, 0xffffffffffffffff}}}, @common=@IDLETIMER={'IDLETIMER\x00', 0x28, {{0x4, 'syz0\x00'}}}]}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8}}]}, {0x0, '\x00', 0x1, 0xffffbffffffffffe}]}, 0x260)
ioctl$sock_kcm_SIOCKCMCLONE(r3, 0x89e2, &(0x7f0000000b00)={r0})
socket$inet6(0xa, 0x5, 0x110)

[  187.743552] cgroup: cgroup_addrm_files: failed to add weight.nice, err=-12
2018/03/31 01:44:54 executing program 3 (fault-call:3 fault-nth:38):
mkdir(&(0x7f00000001c0)='./file0\x00', 0x0)
mount(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000380)='./file0\x00', &(0x7f0000000300)='cgroup2\x00', 0x0, 0x0)
r0 = open$dir(&(0x7f000001bff4)='./file0\x00', 0x0, 0x0)
mkdirat(r0, &(0x7f0000000280)='./file0\x00', 0x20)
getdents64(r0, &(0x7f00000007c0)=""/250, 0x1015a)
fadvise64(r0, 0x0, 0x41, 0x3)
unlinkat(r0, &(0x7f0000000080)='./file0\x00', 0x200)
r1 = open$dir(&(0x7f0000000180)='./file0\x00', 0x105600, 0x81)
fchdir(r0)
link(&(0x7f0000000740)='./file1\x00', &(0x7f0000000780)='./file0/file0\x00')
renameat2(r1, &(0x7f0000000200)='./file1\x00', r0, &(0x7f0000000240)='./file0\x00', 0xfd1092750066ec78)
pivot_root(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='./file0\x00')
r2 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000100)='/dev/rfkill\x00', 0x2c42, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_LIST(r2, 0xc0505510, &(0x7f0000000480)={0x1000, 0x1, 0x474, 0x1, &(0x7f0000000140)=[{}]})
unlink(&(0x7f00000000c0)='./file0\x00')
symlinkat(&(0x7f0000000400)='./file0/file0\x00', r0, &(0x7f0000000440)='./file0/file0\x00')
iopl(0x6)
recvmsg$kcm(0xffffffffffffffff, &(0x7f0000000680)={&(0x7f0000000500)=@pppol2tp={0x0, 0x0, {0x0, <r3=>0xffffffffffffffff, {0x0, 0x0, @broadcast}}}, 0x80, &(0x7f0000000600)=[{&(0x7f0000000580)=""/80, 0x50}, {&(0x7f00000008c0)=""/4096, 0x1000}], 0x2, &(0x7f0000000640)=""/45, 0x2d, 0x206e}, 0x20)
r4 = syz_open_dev$sndpcmp(&(0x7f00000018c0)='/dev/snd/pcmC#D#p\x00', 0x5, 0x10a00)
ioctl$KVM_GET_DEVICE_ATTR(r4, 0x4018aee2, &(0x7f0000001940)={0x0, 0x100, 0x9, &(0x7f0000001900)})
recvfrom$ipx(r3, &(0x7f00000006c0)=""/52, 0x34, 0x100, &(0x7f0000000700)={0x4, 0x9a2, 0x4, "dc108d9d4391", 0x5}, 0x10)
renameat(r0, &(0x7f0000001980)='./file1\x00', r4, &(0x7f00000019c0)='./file0/file0\x00')

[  187.878859] FAULT_INJECTION: forcing a failure.
[  187.878859] name failslab, interval 1, probability 0, space 0, times 0
[  187.890173] CPU: 0 PID: 13585 Comm: syz-executor3 Not tainted 4.16.0-rc7+ #372
[  187.897524] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  187.906887] Call Trace:
[  187.909456]  dump_stack+0x194/0x24d
[  187.913065]  ? arch_local_irq_restore+0x53/0x53
[  187.917720]  should_fail+0x8c0/0xa40
[  187.921415]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  187.926493]  ? rb_first_postorder+0xa0/0xa0
[  187.930788]  ? __mutex_lock+0x16f/0x1a80
[  187.934828]  ? trace_event_raw_event_lock+0x340/0x340
[  187.939995]  ? trace_hardirqs_off+0x10/0x10
[  187.944300]  ? find_held_lock+0x35/0x1d0
[  187.948340]  ? __lock_is_held+0xb6/0x140
[  187.952382]  ? check_same_owner+0x320/0x320
[  187.956679]  ? lock_downgrade+0x980/0x980
[  187.960806]  ? rcu_note_context_switch+0x710/0x710
[  187.965715]  should_failslab+0xec/0x120
[  187.969666]  __kmalloc_track_caller+0x5f/0x760
[  187.974229]  ? string+0x180/0x200
[  187.977658]  ? kstrdup_const+0x39/0x50
[  187.981521]  kstrdup+0x39/0x70
[  187.984696]  kstrdup_const+0x39/0x50
[  187.988389]  __kernfs_new_node+0xa2/0x570
[  187.992513]  ? kernfs_dop_revalidate+0x380/0x380
[  187.997266]  ? snprintf+0xc0/0xf0
[  188.001070]  ? vsprintf+0x40/0x40
[  188.004503]  ? debug_lockdep_rcu_enabled+0x77/0x90
[  188.009410]  ? cgroup_file_name+0x1d0/0x1d0
[  188.013712]  kernfs_new_node+0x80/0xe0
[  188.017581]  __kernfs_create_file+0x4b/0x320
[  188.021974]  cgroup_addrm_files+0x3c5/0xa70
[  188.026278]  ? cgroup_file_write+0x710/0x710
[  188.030664]  ? cpu_cgroup_css_alloc+0x30/0x30
[  188.035144]  ? __lock_is_held+0xb6/0x140
[  188.039186]  ? sched_online_group+0x4e0/0x4e0
[  188.043656]  ? cpu_cgroup_css_online+0x3a/0x50
[  188.048211]  ? online_css+0x224/0x2e0
[  188.051989]  css_populate_dir+0x198/0x420
[  188.056118]  cgroup_apply_control_enable+0x390/0xbc0
[  188.061202]  ? cgroup_propagate_control+0x570/0x570
[  188.066198]  ? css_populate_dir+0x289/0x420
[  188.070496]  cgroup_mkdir+0x56f/0xfc0
[  188.074273]  ? __lock_is_held+0xb6/0x140
[  188.078311]  ? cgroup_destroy_locked+0x750/0x750
[  188.083043]  ? rcu_read_lock_sched_held+0x108/0x120
[  188.088038]  ? kmem_cache_free+0x258/0x2a0
[  188.092248]  ? set_nlink+0xc1/0x160
[  188.095854]  ? debug_lockdep_rcu_enabled+0x77/0x90
[  188.100757]  ? generic_permission+0x105/0x3c0
[  188.105229]  ? cgroup_destroy_locked+0x750/0x750
[  188.109962]  kernfs_iop_mkdir+0x153/0x1e0
[  188.114088]  vfs_mkdir+0x390/0x600
[  188.117607]  SyS_mkdirat+0x22b/0x2b0
[  188.121298]  ? SyS_mknod+0x480/0x480
[  188.124987]  ? trace_hardirqs_on+0xd/0x10
[  188.129113]  ? do_syscall_64+0xb7/0x940
[  188.133063]  ? SyS_mknod+0x480/0x480
[  188.136754]  do_syscall_64+0x281/0x940
[  188.140616]  ? vmalloc_sync_all+0x30/0x30
[  188.144741]  ? _raw_spin_unlock_irq+0x27/0x70
[  188.149211]  ? finish_task_switch+0x1c1/0x7e0
[  188.153682]  ? syscall_return_slowpath+0x550/0x550
[  188.158587]  ? syscall_return_slowpath+0x2ac/0x550
[  188.163490]  ? prepare_exit_to_usermode+0x350/0x350
[  188.168485]  ? entry_SYSCALL_64_after_hwframe+0x52/0xb7
[  188.173828]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  188.178648]  entry_SYSCALL_64_after_hwframe+0x42/0xb7
[  188.183814] RIP: 0033:0x454e79
[  188.186979] RSP: 002b:00007fa6ef25cc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
[  188.194665] RAX: ffffffffffffffda RBX: 00007fa6ef25d6d4 RCX: 0000000000454e79
[  188.201911] RDX: 0000000000000020 RSI: 0000000020000280 RDI: 0000000000000013
[  188.209158] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  188.216405] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000014
2018/03/31 01:44:54 executing program 2:
syz_emit_ethernet(0x66, &(0x7f0000101000)={@link_local={0x1, 0x80, 0xc2}, @broadcast=[0xff, 0xff, 0xff, 0xff, 0xff, 0xff], [], {@ipv6={0x86dd, {0x0, 0x6, "02290f", 0x30, 0x3a, 0xffffffffffffffff, @ipv4={[], [0xff, 0xff], @rand_addr}, @mcast2={0xff, 0x2, [], 0x1}, {[], @icmpv6=@pkt_toobig={0xffffff85, 0x0, 0x0, 0x0, {0x0, 0x6, "9433df", 0x0, 0x0, 0x0, @loopback={0x0, 0x1}, @dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb]}}}}}}}}, 0x0)
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ppp\x00', 0x500, 0x0)
setsockopt$inet_dccp_buf(r0, 0x21, 0xc0, &(0x7f0000000040)="409464edeadaa35f50384afa99272c8055699f1d8a0151517e8796c1e2b7d26eabbc8208914a56cee058268a1a291e077448950e521cb6d5718760ddd0ecd7a2b461a31d115fc52cd087b943cee145975bb84250b81552494e8423613d0dadd3d8453184f3c60d3da4285e06232fc5329b90a6dcb2c67c0f08126b2d2c3708ce554d3e2ee605ffcf170dbc4cdf873ec3ade2f6bc7c9f2be069fa0c548065a1e4de1be59bbbfa32bec62c4be41c15042af5a234edcd43417d09a11ab5f79dbc9b", 0xc0)

2018/03/31 01:44:54 executing program 5:
r0 = syz_open_dev$amidi(&(0x7f0000000400)='/dev/amidi#\x00', 0x401, 0x40)
accept4$llc(r0, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, &(0x7f0000000480)=0x10, 0x80800)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f0000005fd8)={'vcan0\x00', <r2=>0x0})
ioctl$KVM_SET_DEVICE_ATTR(0xffffffffffffffff, 0x4018aee1, &(0x7f0000000500)={0x0, 0x100000001, 0x5a, &(0x7f00000004c0)})
connect$can_bcm(r1, &(0x7f0000001ff0)={0x1d, r2}, 0x10)
ioctl$TIOCGSID(0xffffffffffffff9c, 0x5429, &(0x7f00000002c0)=<r3=>0x0)
waitid(0x0, r3, 0x0, 0x1000009, &(0x7f0000000300))
r4 = syz_open_dev$vcsn(&(0x7f0000000000)='/dev/vcs#\x00', 0xcd8, 0x101000)
getsockopt$SO_BINDTODEVICE(r4, 0x1, 0x19, &(0x7f0000000280), 0x10)
ioctl$EVIOCGABS0(r4, 0x80184540, &(0x7f0000000240)=""/64)
bind$vsock_dgram(r1, &(0x7f00000003c0)={0x28, 0x0, 0x2711, @reserved=0x1}, 0x10)
exit(0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000200)={r4, 0x0, 0x47, 0xde, &(0x7f0000000080)="3541471374d1e455c1f501bb3e7418a21f930d9fb82ac3588f54ad5a1a9e778bdf654fa39f19bcbc6ee4636a10d409c877cfe11ba160f73d4cde40422564bfdb62d8e5f8ba5097", &(0x7f0000000100)=""/222, 0x4, 0x3f}, 0x28)
ioctl$KVM_SET_TSS_ADDR(r4, 0xae47, 0xd000)
ioctl$KVM_CHECK_EXTENSION(r4, 0xae03, 0xffffffffffffffff)
openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000580)='/dev/qat_adf_ctl\x00', 0x4600, 0x0)
sendmsg$can_raw(r1, &(0x7f0000001fc8)={&(0x7f000000a000)={0x1d}, 0x10, &(0x7f0000000040)={&(0x7f000000a000)=@canfd={{0x1}, 0x0, 0x0, 0x0, 0x0, "0327e1b22b5fcef7739c699f5ff986ca08990039576a7d5cb2bdac3fa80acf584ecb5fee496e6866856b76b5f700000000000000004e2f9663a918fa1efd9b0b"}, 0x48}, 0x1}, 0x0)
ioctl$VHOST_GET_VRING_ENDIAN(r0, 0x4008af14, &(0x7f0000000540)={0x0, 0x9})

2018/03/31 01:44:54 executing program 6:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x200, 0x0)
socketpair$inet6_icmp_raw(0xa, 0x3, 0x3a, &(0x7f0000000680)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
setsockopt$sock_linger(r1, 0x1, 0xd, &(0x7f00000006c0)={0x400, 0x9}, 0x8)
perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
mmap(&(0x7f0000000000/0x9d7000)=nil, 0x9d7000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x7)
perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r4, &(0x7f0000e5b000)={0x2, 0x4e20, @multicast1=0xe0000001}, 0x10)
syz_open_dev$sg(&(0x7f0000000440)='/dev/sg#\x00', 0x0, 0x0)
connect$inet(r4, &(0x7f0000000100)={0x2, 0x4e20, @multicast2=0xe0000002}, 0x10)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000eb0fb8)={0x1, 0x3, &(0x7f00009ff000)=@framed={{0x18}, [], {0x95}}, &(0x7f00002bf000)='syzkaller\x00', 0x4, 0xb7, &(0x7f00006ab000)=""/183}, 0x48)
setsockopt$inet_tcp_int(r4, 0x6, 0x19, &(0x7f0000000240)=0x8, 0x4)
setsockopt$SO_BINDTODEVICE(r4, 0x1, 0x19, &(0x7f0000000000)="6970365f76746930000000000400", 0x10)
r6 = socket$kcm(0x29, 0x2, 0x0)
ioctl$sock_kcm_SIOCKCMATTACH(r6, 0x89e0, &(0x7f000031aff8)={r4, r5})
ioctl$sock_kcm_SIOCKCMCLONE(r6, 0x89e2, &(0x7f00000002c0)={<r7=>0xffffffffffffffff})
sendmsg$nl_xfrm(r7, &(0x7f0000000780)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000740)={&(0x7f0000000480)=@updpolicy={0xb8, 0x19, 0x0, 0x0, 0x0, {{@in=@loopback=0x7f000001, @in6=@mcast1={0xff, 0x1, [], 0x1}}}}, 0xffcb}, 0x1}, 0x0)
ioctl$sock_kcm_SIOCKCMUNATTACH(r7, 0x89e1, &(0x7f0000000040)={r4})
r8 = fcntl$getown(r3, 0x9)
r9 = accept4$inet(0xffffffffffffff9c, &(0x7f0000000700)={0x0, 0x0, @broadcast}, &(0x7f0000000740)=0x10, 0x80000)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r9, 0x84, 0x64, &(0x7f0000000300)=[@in6={0xa, 0x4e23, 0x0, @dev={0xfe, 0x80, [], 0xf}, 0x6}, @in={0x2, 0xff, @local={0xac, 0x14, 0x14, 0xaa}}, @in={0x2, 0x0, @multicast1=0xe0000001}, @in={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x10}}, @in={0x2, 0x4e20, @multicast1=0xe0000001}, @in={0x2, 0x4e24}, @in={0x2, 0x4e24, @broadcast=0xffffffff}, @in6={0xa, 0x4e21, 0xed34, @local={0xfe, 0x80, [], 0xaa}, 0x3}, @in={0x2, 0x4e23, @loopback=0x7f000001}], 0xfffffffffffffe00)
ptrace$setregset(0x4205, r8, 0x0, &(0x7f00000005c0)={&(0x7f0000000080)="449ed0dd6831a7fb44eca4221b1fb01abfec082aa7d0ee6f0ba9db0ece7da2bd3f", 0x21})
r10 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r11 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x1fffd, 0x0)
syz_open_dev$sndtimer(&(0x7f00000000c0)='/dev/snd/timer\x00', 0x0, 0x0)
read(r0, &(0x7f0000000140)=""/50, 0x32)
fcntl$dupfd(r10, 0x0, r11)

[  188.223648] R13: 00000000000003eb R14: 00000000006f7ea8 R15: 0000000000000026
[  188.231095] cgroup: cgroup_addrm_files: failed to add weight.nice, err=-12
2018/03/31 01:44:55 executing program 0:
getsockopt$inet_sctp_SCTP_SOCKOPT_PEELOFF(0xffffffffffffff9c, 0x84, 0x66, &(0x7f0000000080)={<r0=>0x0, 0x77}, &(0x7f00000000c0)=0x8)
getsockopt$inet_sctp_SCTP_GET_PEER_ADDR_INFO(0xffffffffffffffff, 0x84, 0xf, &(0x7f0000000100)={r0, @in={{0x2, 0x4e24, @remote={0xac, 0x14, 0x14, 0xbb}}}, 0x8, 0x100, 0x6, 0x5, 0x51}, &(0x7f00000001c0)=0x98)
ioctl$sock_SIOCGPGRP(0xffffffffffffff9c, 0x8904, &(0x7f00000002c0)=<r1=>0x0)
prlimit64(r1, 0xf, &(0x7f0000000300)={0x7239, 0x20}, 0x0)
r2 = fanotify_init(0x4, 0x1000)
close(r2)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000616ff8)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
sendmsg$unix(r4, &(0x7f0000bba000)={&(0x7f00003a2000)=@abs, 0x8, &(0x7f00006c6ff0), 0x0, &(0x7f00009dffb8)=ANY=[@ANYBLOB="18000000000100e70200a4e20100b192", @ANYRES32, @ANYBLOB='\x00\x00\x00\x00'], 0x18}, 0x0)
sendmsg$unix(r3, &(0x7f0000e4ffc8)={&(0x7f0000000000)=@abs, 0x6e, &(0x7f000000d000), 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="18000000000000ea00000000000000009898d44e09c1de2e03f622dd931675d9afc556c62f58710b171764a76990e0222338763ccebe175ef00494a630a1444aeee7e94217afd4a0e65af8cbc1363616b5ed73c11ebcff85dcfb7275fd1ba489ef53d23c5633e30686a2912c51abecb64bce746eedaaef43836e7b", @ANYRES32=r3, @ANYBLOB='\x00\x00\x00\x00'], 0x18}, 0x0)
close(0xffffffffffffffff)
close(0xffffffffffffffff)

2018/03/31 01:44:55 executing program 1:
r0 = creat(&(0x7f0000000b40)='./file0\x00', 0x20)
ioctl$DRM_IOCTL_AGP_ALLOC(0xffffffffffffff9c, 0xc0206434, &(0x7f0000000b80)={0x5, <r1=>0x0, 0x0, 0x81})
ioctl$DRM_IOCTL_SG_FREE(r0, 0x40106439, &(0x7f0000000bc0)={0x3, r1})
r2 = socket$inet(0x2, 0x6, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f00000008c0)=@broute={'broute\x00', 0x20, 0x2, 0x3e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000280], 0x0, &(0x7f0000000240), &(0x7f0000000280)=ANY=[@ANYBLOB="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"]}, 0x460)
getsockopt$inet_sctp6_SCTP_CONTEXT(0xffffffffffffff9c, 0x84, 0x11, &(0x7f0000000000)={<r3=>0x0, 0x7}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r2, 0x84, 0xa, &(0x7f0000000140)={0x0, 0xa2b, 0x4, 0x7, 0x2, 0x20, 0x10000, 0x8a82, r3}, &(0x7f0000000180)=0x20)
setsockopt$inet_group_source_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000680)={0x1000, {{0x2, 0x4e23, @multicast1=0xe0000001}}, {{0x2, 0x4e22, @broadcast=0xffffffff}}}, 0x108)
ioctl$DRM_IOCTL_AGP_ENABLE(0xffffffffffffffff, 0x40086432, &(0x7f0000000100))
accept4$unix(r0, &(0x7f0000000c80), &(0x7f0000000d00)=0x6e, 0x80000)
r4 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/vs/sync_version\x00', 0x2, 0x0)
ioctl$TIOCGSOFTCAR(r4, 0x5419, &(0x7f00000007c0))
r5 = socket$inet6(0x10, 0x2, 0x0)
sendmsg(r5, &(0x7f0000000080)={&(0x7f0000000240)=@un=@abs={0x1, 0x0, 0x4e23}, 0x80, &(0x7f0000000040)=[{&(0x7f00000001c0)="5500000018007f04002d1cb2a4a280930a0600007da843cf19d0f869390009402f002100040000001900050000fc1700000000dc1338d54400009b84136ef75afb83de448daa7227c43ab8220000060c", 0x50}], 0x1, &(0x7f00000000c0)}, 0x0)
socket$bt_cmtp(0x1f, 0x3, 0x5)
fcntl$addseals(r5, 0x409, 0x7)
syz_open_dev$sndmidi(&(0x7f0000000c00)='/dev/snd/midiC#D#\x00', 0x100000001, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f0000001640)=@broute={'broute\x00', 0x20, 0x1, 0x1e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20001700], 0x0, &(0x7f0000001980), &(0x7f0000001700)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1, [{{{0x13, 0x0, 0x0, 'vcan0\x00', 'ifb0\x00', 'syzkaller0\x00', 'vcan0\x00', @remote={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xbb}, [], @link_local={0x1, 0x80, 0xc2}, [], 0x70, 0xf8, 0x128}, [@common=@dnat={'dnat\x00', 0x10, {{@dev={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa]}, 0xffffffffffffffff}}}, @common=@IDLETIMER={'IDLETIMER\x00', 0x28, {{0x4, 'syz0\x00'}}}]}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8}}]}, {0x0, '\x00', 0x1, 0xffffbffffffffffe}]}, 0x260)
setsockopt$EBT_SO_SET_ENTRIES(0xffffffffffffffff, 0x0, 0x80, &(0x7f0000000840)=@nat={'nat\x00', 0x19, 0x1, 0x200, [0x20000940, 0x0, 0x0, 0x20000970, 0x200009a0], 0x0, &(0x7f0000000800), &(0x7f0000000940)=[{}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x14, 0x98ab, 'teql0\x00', 'ip6gretap0\x00', 'ip_vti0\x00', 'nr0\x00', @empty, [0x0, 0xff, 0x0, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2}, [0xff, 0x0, 0xff, 0x0, 0x0, 0xff], 0x100, 0x138, 0x170, [@time={'time\x00', 0x18, {{0x7, 0x3, 0x13782, 0x14fdf, 0x80, 0x4, 0x1}}}, @nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x2}}}]}, [@snat={'snat\x00', 0x10, {{@random="07901c8f0140"}}}]}, @common=@dnat={'dnat\x00', 0x10, {{@local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}, 0x10}}}}]}]}, 0x278)
syz_open_dev$dmmidi(&(0x7f0000000c40)='/dev/dmmidi#\x00', 0xae6d, 0x200)

2018/03/31 01:44:55 executing program 7:
clone(0x200, &(0x7f0000000100)="abbcd764d5b6fd853189b4a102b248f0de7c0a5cc328ca13455598dc3d760fa566c64d7cb06a7e15cdb085165670f42b32809442c69a5942d03eb3fd42bf0ebb0272fc4beb43f269f26f57bbb67316f7c76c8d570edaa564720b4dfd8f32453fc2354ddc753155ac051e9e9657989f0bbf1c03e4cd9f735c6d1b95719dbbb1c04092f54f44256722d954f0000000000000000000000000000000", &(0x7f00000000c0), &(0x7f00008c8000), &(0x7f0000828ffe))
mknod(&(0x7f0000000000)='./file0\x00', 0x1000000000001040, 0x0)
execve(&(0x7f000007b000)='./file0\x00', &(0x7f0000000180), &(0x7f0000000040))
r0 = gettid()
r1 = syz_open_dev$mice(&(0x7f0000149000)='/dev/input/mice\x00', 0x0, 0x0)
execve(&(0x7f00000001c0)='./file0\x00', &(0x7f0000001540)=[&(0x7f0000000200)='user\x00', &(0x7f0000000240)='vmnet0\x00', &(0x7f0000000280)='user\x00', &(0x7f0000001480)='user\x00'], &(0x7f00000015c0)=[&(0x7f0000001580)='#keyring\x00'])
msgget$private(0x0, 0x0)
timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000))
uselib(&(0x7f00000002c0)='./file0/file0\x00')
mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0xffffffffffffffff, 0x32, 0xffffffffffffffff, 0x0)
getsockopt$inet_sctp6_SCTP_INITMSG(r1, 0x84, 0x2, &(0x7f0000000040), &(0x7f0000000080)=0x8)
tkill(r0, 0x1000000000015)

2018/03/31 01:44:55 executing program 2:
r0 = socket$netlink(0x10, 0x3, 0x6)
sendmsg$nl_generic(r0, &(0x7f0000028fc8)={&(0x7f0000007ff4)={0x10}, 0xc, &(0x7f0000015ff0)={&(0x7f0000023000)={0x1c, 0x20, 0xaff, 0x0, 0x0, {0x1000a}, [@generic="fffffe0121"]}, 0x1c}, 0x1}, 0x0)
r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x418a02, 0x0)
connect$bt_rfcomm(r1, &(0x7f0000000040)={0x1f, {0x2, 0x1f, 0x1ff, 0x344, 0x7f, 0x1}, 0x21f}, 0xa)
openat$audio(0xffffffffffffff9c, &(0x7f0000000080)='/dev/audio\x00', 0x58000, 0x0)

2018/03/31 01:44:55 executing program 3 (fault-call:3 fault-nth:39):
mkdir(&(0x7f00000001c0)='./file0\x00', 0x0)
mount(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000380)='./file0\x00', &(0x7f0000000300)='cgroup2\x00', 0x0, 0x0)
r0 = open$dir(&(0x7f000001bff4)='./file0\x00', 0x0, 0x0)
mkdirat(r0, &(0x7f0000000280)='./file0\x00', 0x20)
getdents64(r0, &(0x7f00000007c0)=""/250, 0x1015a)
fadvise64(r0, 0x0, 0x41, 0x3)
unlinkat(r0, &(0x7f0000000080)='./file0\x00', 0x200)
r1 = open$dir(&(0x7f0000000180)='./file0\x00', 0x105600, 0x81)
fchdir(r0)
link(&(0x7f0000000740)='./file1\x00', &(0x7f0000000780)='./file0/file0\x00')
renameat2(r1, &(0x7f0000000200)='./file1\x00', r0, &(0x7f0000000240)='./file0\x00', 0xfd1092750066ec78)
pivot_root(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='./file0\x00')
r2 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000100)='/dev/rfkill\x00', 0x2c42, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_LIST(r2, 0xc0505510, &(0x7f0000000480)={0x1000, 0x1, 0x474, 0x1, &(0x7f0000000140)=[{}]})
unlink(&(0x7f00000000c0)='./file0\x00')
symlinkat(&(0x7f0000000400)='./file0/file0\x00', r0, &(0x7f0000000440)='./file0/file0\x00')
iopl(0x6)
recvmsg$kcm(0xffffffffffffffff, &(0x7f0000000680)={&(0x7f0000000500)=@pppol2tp={0x0, 0x0, {0x0, <r3=>0xffffffffffffffff, {0x0, 0x0, @broadcast}}}, 0x80, &(0x7f0000000600)=[{&(0x7f0000000580)=""/80, 0x50}, {&(0x7f00000008c0)=""/4096, 0x1000}], 0x2, &(0x7f0000000640)=""/45, 0x2d, 0x206e}, 0x20)
r4 = syz_open_dev$sndpcmp(&(0x7f00000018c0)='/dev/snd/pcmC#D#p\x00', 0x5, 0x10a00)
ioctl$KVM_GET_DEVICE_ATTR(r4, 0x4018aee2, &(0x7f0000001940)={0x0, 0x100, 0x9, &(0x7f0000001900)})
recvfrom$ipx(r3, &(0x7f00000006c0)=""/52, 0x34, 0x100, &(0x7f0000000700)={0x4, 0x9a2, 0x4, "dc108d9d4391", 0x5}, 0x10)
renameat(r0, &(0x7f0000001980)='./file1\x00', r4, &(0x7f00000019c0)='./file0/file0\x00')

2018/03/31 01:44:55 executing program 5:
r0 = syz_open_dev$amidi(&(0x7f0000000400)='/dev/amidi#\x00', 0x401, 0x40)
accept4$llc(r0, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, &(0x7f0000000480)=0x10, 0x80800)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f0000005fd8)={'vcan0\x00', <r2=>0x0})
ioctl$KVM_SET_DEVICE_ATTR(r0, 0x4018aee1, &(0x7f0000000500)={0x0, 0x0, 0x5a, &(0x7f00000004c0)})
connect$can_bcm(r1, &(0x7f0000001ff0)={0x1d, r2}, 0x10)
ioctl$TIOCGSID(0xffffffffffffff9c, 0x5429, &(0x7f00000002c0)=<r3=>0x0)
waitid(0x0, r3, 0x0, 0x1000009, &(0x7f0000000300))
r4 = syz_open_dev$vcsn(&(0x7f0000000000)='/dev/vcs#\x00', 0xcd8, 0x101000)
getsockopt$SO_BINDTODEVICE(r4, 0x1, 0x19, &(0x7f0000000280), 0x10)
ioctl$EVIOCGABS0(r4, 0x80184540, &(0x7f0000000240)=""/64)
bind$vsock_dgram(r1, &(0x7f00000003c0)={0x28, 0x0, 0x2711, @reserved=0x1}, 0x10)
exit(0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000200)={r4, 0x0, 0x47, 0xde, &(0x7f0000000080)="3541471374d1e455c1f501bb3e7418a21f930d9fb82ac3588f54ad5a1a9e778bdf654fa39f19bcbc6ee4636a10d409c877cfe11ba160f73d4cde40422564bfdb62d8e5f8ba5097", &(0x7f0000000100)=""/222, 0x4, 0x3f}, 0x28)
ioctl$KVM_SET_TSS_ADDR(r4, 0xae47, 0xd000)
ioctl$KVM_CHECK_EXTENSION(r4, 0xae03, 0xffffffffffffffff)
openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000580)='/dev/qat_adf_ctl\x00', 0x4600, 0x0)
sendmsg$can_raw(r1, &(0x7f0000001fc8)={&(0x7f000000a000)={0x1d}, 0x10, &(0x7f0000000040)={&(0x7f000000a000)=@canfd={{0x1}, 0x0, 0x0, 0x0, 0x0, "0327e1b22b5fcef7739c699f5ff986ca08990039576a7d5cb2bdac3fa80acf584ecb5fee496e6866856b76b5f700000000000000004e2f9663a918fa1efd9b0b"}, 0x48}, 0x1}, 0x0)
ioctl$VHOST_GET_VRING_ENDIAN(r0, 0x4008af14, &(0x7f0000000540)={0x0, 0x9})

2018/03/31 01:44:55 executing program 4:
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_int(r0, 0x107, 0x14, &(0x7f0000006ffc)=0x6, 0x4)
sendto$inet6(r0, &(0x7f0000003fd9), 0x0, 0x0, &(0x7f0000008000)={0xa, 0x4e20, 0x100000002, @mcast2={0xff, 0x2, [], 0x1}}, 0x1c)
fcntl$setlease(r0, 0x400, 0x1)

2018/03/31 01:44:55 executing program 6:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x200, 0x0)
socketpair$inet6_icmp_raw(0xa, 0x3, 0x3a, &(0x7f0000000680)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
setsockopt$sock_linger(r1, 0x1, 0xd, &(0x7f00000006c0)={0x400, 0x9}, 0x8)
perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
mmap(&(0x7f0000000000/0x9d7000)=nil, 0x9d7000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x7)
perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r4, &(0x7f0000e5b000)={0x2, 0x4e20, @multicast1=0xe0000001}, 0x10)
syz_open_dev$sg(&(0x7f0000000440)='/dev/sg#\x00', 0x0, 0x0)
connect$inet(r4, &(0x7f0000000100)={0x2, 0x4e20, @multicast2=0xe0000002}, 0x10)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000eb0fb8)={0x1, 0x3, &(0x7f00009ff000)=@framed={{0x18}, [], {0x95}}, &(0x7f00002bf000)='syzkaller\x00', 0x4, 0xb7, &(0x7f00006ab000)=""/183}, 0x48)
setsockopt$inet_tcp_int(r4, 0x6, 0x19, &(0x7f0000000240)=0x8, 0x4)
setsockopt$SO_BINDTODEVICE(r4, 0x1, 0x19, &(0x7f0000000000)="6970365f76746930000000000400", 0x10)
r6 = socket$kcm(0x29, 0x2, 0x0)
ioctl$sock_kcm_SIOCKCMATTACH(r6, 0x89e0, &(0x7f000031aff8)={r4, r5})
ioctl$sock_kcm_SIOCKCMCLONE(r6, 0x89e2, &(0x7f00000002c0)={<r7=>0xffffffffffffffff})
sendmsg$nl_xfrm(r7, &(0x7f0000000780)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000740)={&(0x7f0000000480)=@updpolicy={0xb8, 0x19, 0x0, 0x0, 0x0, {{@in=@loopback=0x7f000001, @in6=@mcast1={0xff, 0x1, [], 0x1}}}}, 0xffcb}, 0x1}, 0x0)
ioctl$sock_kcm_SIOCKCMUNATTACH(r7, 0x89e1, &(0x7f0000000040)={r4})
r8 = fcntl$getown(r3, 0x9)
r9 = accept4$inet(0xffffffffffffff9c, &(0x7f0000000700)={0x0, 0x0, @broadcast}, &(0x7f0000000740)=0x10, 0x80000)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r9, 0x84, 0x64, &(0x7f0000000300)=[@in6={0xa, 0x4e23, 0x0, @dev={0xfe, 0x80, [], 0xf}, 0x6}, @in={0x2, 0xff, @local={0xac, 0x14, 0x14, 0xaa}}, @in={0x2, 0x4e23, @multicast1=0xe0000001}, @in={0x2, 0x4e20, @multicast1=0xe0000001}, @in={0x2, 0x4e24}, @in={0x2, 0x4e24, @broadcast=0xffffffff}, @in6={0xa, 0x4e21, 0xed34, @local={0xfe, 0x80, [], 0xaa}, 0x3}, @in={0x2, 0x4e23, @loopback=0x7f000001}], 0x98)
ptrace$setregset(0x4205, r8, 0x0, &(0x7f00000005c0)={&(0x7f0000000080)="449ed0dd6831a7fb44eca4221b1fb01abfec082aa7d0ee6f0ba9db0ece7da2bd3f", 0x21})
r10 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r11 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x1fffd, 0x0)
syz_open_dev$sndtimer(&(0x7f00000000c0)='/dev/snd/timer\x00', 0x0, 0x0)
read(r0, &(0x7f0000000140)=""/50, 0x32)
fcntl$dupfd(r10, 0x0, r11)

[  189.260717] FAULT_INJECTION: forcing a failure.
[  189.260717] name failslab, interval 1, probability 0, space 0, times 0
[  189.271993] CPU: 0 PID: 13620 Comm: syz-executor3 Not tainted 4.16.0-rc7+ #372
[  189.279358] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  189.288705] Call Trace:
[  189.291281]  dump_stack+0x194/0x24d
[  189.294893]  ? arch_local_irq_restore+0x53/0x53
[  189.299552]  should_fail+0x8c0/0xa40
[  189.303250]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  189.308335]  ? rb_first_postorder+0xa0/0xa0
[  189.312633]  ? __mutex_lock+0x16f/0x1a80
[  189.316673]  ? trace_event_raw_event_lock+0x340/0x340
[  189.321837]  ? trace_hardirqs_off+0x10/0x10
[  189.326138]  ? find_held_lock+0x35/0x1d0
[  189.330177]  ? __lock_is_held+0xb6/0x140
[  189.334222]  ? check_same_owner+0x320/0x320
[  189.338518]  ? lock_downgrade+0x980/0x980
[  189.342646]  ? rcu_note_context_switch+0x710/0x710
[  189.347558]  should_failslab+0xec/0x120
[  189.351509]  __kmalloc_track_caller+0x5f/0x760
[  189.356073]  ? string+0x180/0x200
[  189.359502]  ? kstrdup_const+0x39/0x50
[  189.363371]  kstrdup+0x39/0x70
[  189.366543]  kstrdup_const+0x39/0x50
[  189.370243]  __kernfs_new_node+0xa2/0x570
[  189.374371]  ? kernfs_dop_revalidate+0x380/0x380
[  189.379106]  ? snprintf+0xc0/0xf0
[  189.382533]  ? vsprintf+0x40/0x40
[  189.385961]  ? debug_lockdep_rcu_enabled+0x77/0x90
[  189.390872]  ? cgroup_file_name+0x1d0/0x1d0
[  189.395172]  kernfs_new_node+0x80/0xe0
[  189.399041]  __kernfs_create_file+0x4b/0x320
[  189.403430]  cgroup_addrm_files+0x3c5/0xa70
[  189.407732]  ? cgroup_file_write+0x710/0x710
[  189.412119]  ? cpu_cgroup_css_alloc+0x30/0x30
[  189.416599]  ? __lock_is_held+0xb6/0x140
[  189.420639]  ? sched_online_group+0x4e0/0x4e0
[  189.425108]  ? cpu_cgroup_css_online+0x3a/0x50
[  189.429664]  ? online_css+0x224/0x2e0
[  189.433443]  css_populate_dir+0x198/0x420
[  189.437570]  cgroup_apply_control_enable+0x390/0xbc0
[  189.442654]  ? cgroup_propagate_control+0x570/0x570
[  189.447650]  ? css_populate_dir+0x289/0x420
[  189.451950]  cgroup_mkdir+0x56f/0xfc0
[  189.455728]  ? __lock_is_held+0xb6/0x140
[  189.459768]  ? cgroup_destroy_locked+0x750/0x750
[  189.464498]  ? rcu_read_lock_sched_held+0x108/0x120
[  189.469493]  ? kmem_cache_free+0x258/0x2a0
[  189.473708]  ? set_nlink+0xc1/0x160
[  189.477312]  ? debug_lockdep_rcu_enabled+0x77/0x90
[  189.482216]  ? generic_permission+0x105/0x3c0
[  189.486688]  ? cgroup_destroy_locked+0x750/0x750
[  189.491421]  kernfs_iop_mkdir+0x153/0x1e0
[  189.495546]  vfs_mkdir+0x390/0x600
[  189.499065]  SyS_mkdirat+0x22b/0x2b0
[  189.502754]  ? SyS_mknod+0x480/0x480
[  189.506441]  ? trace_hardirqs_on+0xd/0x10
[  189.510566]  ? do_syscall_64+0xb7/0x940
[  189.514517]  ? SyS_mknod+0x480/0x480
[  189.518205]  do_syscall_64+0x281/0x940
[  189.522068]  ? vmalloc_sync_all+0x30/0x30
[  189.526193]  ? _raw_spin_unlock_irq+0x27/0x70
[  189.530665]  ? finish_task_switch+0x1c1/0x7e0
[  189.535134]  ? syscall_return_slowpath+0x550/0x550
[  189.540038]  ? syscall_return_slowpath+0x2ac/0x550
[  189.544942]  ? prepare_exit_to_usermode+0x350/0x350
[  189.549935]  ? entry_SYSCALL_64_after_hwframe+0x52/0xb7
[  189.555275]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  189.560096]  entry_SYSCALL_64_after_hwframe+0x42/0xb7
[  189.565258] RIP: 0033:0x454e79
[  189.568425] RSP: 002b:00007fa6ef25cc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
[  189.576107] RAX: ffffffffffffffda RBX: 00007fa6ef25d6d4 RCX: 0000000000454e79
[  189.583352] RDX: 0000000000000020 RSI: 0000000020000280 RDI: 0000000000000013
[  189.590597] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  189.597855] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000014
[  189.605098] R13: 00000000000003eb R14: 00000000006f7ea8 R15: 0000000000000027
2018/03/31 01:44:56 executing program 2:
perf_event_open(&(0x7f000001d000)={0x5, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @perf_bp={&(0x7f0000000000), 0x1}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_dccp(0xa, 0x6, 0x0)
getsockopt(r0, 0x2000000000010d, 0xc, &(0x7f0000999000)=""/4, &(0x7f0000000000)=0x4)
openat$audio(0xffffffffffffff9c, &(0x7f0000000040)='/dev/audio\x00', 0x0, 0x0)

2018/03/31 01:44:56 executing program 4:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
perf_event_open(&(0x7f000001d000)={0x5, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @perf_bp={&(0x7f0000000000), 0x1}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
setsockopt$inet_int(r0, 0x0, 0x1, &(0x7f0000000000), 0x4)
accept(r0, &(0x7f0000000040)=@can, &(0x7f00000000c0)=0x80)

2018/03/31 01:44:56 executing program 1:
r0 = creat(&(0x7f0000000b40)='./file0\x00', 0x20)
ioctl$DRM_IOCTL_AGP_ALLOC(0xffffffffffffff9c, 0xc0206434, &(0x7f0000000b80)={0x5, <r1=>0x0, 0x0, 0x81})
ioctl$DRM_IOCTL_SG_FREE(r0, 0x40106439, &(0x7f0000000bc0)={0x3, r1})
r2 = socket$inet(0x2, 0x6, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f00000008c0)=@broute={'broute\x00', 0x20, 0x2, 0x3e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000280], 0x0, &(0x7f0000000240), &(0x7f0000000280)=ANY=[@ANYBLOB="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"]}, 0x460)
getsockopt$inet_sctp6_SCTP_CONTEXT(0xffffffffffffff9c, 0x84, 0x11, &(0x7f0000000000)={<r3=>0x0, 0x7}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r2, 0x84, 0xa, &(0x7f0000000140)={0x0, 0xa2b, 0x4, 0x7, 0x2, 0x20, 0x10000, 0x8a82, <r4=>r3}, &(0x7f0000000180)=0x20)
setsockopt$inet_group_source_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000680)={0x1000, {{0x2, 0x4e23, @multicast1=0xe0000001}}, {{0x2, 0x4e22, @broadcast=0xffffffff}}}, 0x108)
ioctl$DRM_IOCTL_AGP_ENABLE(0xffffffffffffffff, 0x40086432, &(0x7f0000000100))
r5 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/vs/sync_version\x00', 0x2, 0x0)
ioctl$TIOCGSOFTCAR(r5, 0x5419, &(0x7f00000007c0))
setsockopt$inet_sctp6_SCTP_RTOINFO(r5, 0x84, 0x0, &(0x7f0000000c80)={r4, 0x7f, 0x5, 0xfff}, 0x10)
r6 = socket$inet6(0x10, 0x2, 0x0)
sendmsg(r6, &(0x7f0000000080)={&(0x7f0000000240)=@un=@abs={0x1, 0x0, 0x4e23}, 0x80, &(0x7f0000000040)=[{&(0x7f00000001c0)="5500000018007f04002d1cb2a4a280930a0600007da843cf19d0f869390009402f002100040000001900050000fc1700000000dc1338d54400009b84136ef75afb83de448daa7227c43ab8220000060c", 0x50}], 0x1, &(0x7f00000000c0)}, 0x0)
socket$bt_cmtp(0x1f, 0x3, 0x5)
fcntl$addseals(r6, 0x409, 0x7)
syz_open_dev$sndmidi(&(0x7f0000000c00)='/dev/snd/midiC#D#\x00', 0x100000001, 0xffffffffffffffff)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f0000001640)=@broute={'broute\x00', 0x20, 0x1, 0x1e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20001700], 0x0, &(0x7f0000001980), &(0x7f0000001700)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1, [{{{0x13, 0x0, 0x0, 'vcan0\x00', 'ifb0\x00', 'syzkaller0\x00', 'vcan0\x00', @remote={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xbb}, [], @link_local={0x1, 0x80, 0xc2}, [], 0x70, 0xf8, 0x128}, [@common=@dnat={'dnat\x00', 0x10, {{@dev={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa]}, 0xffffffffffffffff}}}, @common=@IDLETIMER={'IDLETIMER\x00', 0x28, {{0x4, 'syz0\x00'}}}]}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8}}]}, {0x0, '\x00', 0x1, 0xffffbffffffffffe}]}, 0x260)
setsockopt$EBT_SO_SET_ENTRIES(0xffffffffffffffff, 0x0, 0x80, &(0x7f0000000840)=@nat={'nat\x00', 0x19, 0x1, 0x200, [0x20000940, 0x0, 0x0, 0x20000970, 0x200009a0], 0x0, &(0x7f0000000800), &(0x7f0000000940)=[{}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x14, 0x98ab, 'teql0\x00', 'ip6gretap0\x00', 'ip_vti0\x00', 'nr0\x00', @empty, [0x0, 0xff, 0x0, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2}, [0xff, 0x0, 0xff, 0x0, 0x0, 0xff], 0x100, 0x138, 0x170, [@time={'time\x00', 0x18, {{0x7, 0x3, 0x13782, 0x14fdf, 0x80, 0x4, 0x1}}}, @nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x2}}}]}, [@snat={'snat\x00', 0x10, {{@random="07901c8f0140"}}}]}, @common=@dnat={'dnat\x00', 0x10, {{@local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}, 0x10}}}}]}]}, 0x278)
syz_open_dev$dmmidi(&(0x7f0000000c40)='/dev/dmmidi#\x00', 0xae6d, 0x200)

[  189.613507] cgroup: cgroup_addrm_files: failed to add weight.nice, err=-12
2018/03/31 01:44:56 executing program 4:
r0 = syz_open_procfs(0x0, &(0x7f0000000180)="2f65786500000000000409004bddd9de91be10eebf000ee9a90f798058439ed554fa07424adee901d2da75af1f0200f5ab26d7a071fb35331ce39c5a")
ioctl$sock_SIOCBRDELBR(r0, 0x89a1, &(0x7f0000000100)='ipHgretap0\x00')
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000040)={0x7, &(0x7f0000000000)=[{0xffffffffffff5d3b, 0x80000000, 0x7, 0x2}, {0x5, 0x6958, 0x0, 0x7}, {0x9, 0x3df, 0x5, 0x800}, {0x0, 0x400, 0x7, 0x40}, {0x0, 0x1}, {0xd016, 0x1ff, 0x3ff, 0x7fffffff}, {0x9, 0x8c, 0x10001, 0x5}]}, 0x10)
mmap$binder(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x2013, r0, 0x0)

2018/03/31 01:44:56 executing program 2:
r0 = socket(0x11, 0x100000802, 0x0)
r1 = syz_open_dev$tun(&(0x7f0000000140)='/dev/net/tun\x00', 0x0, 0x2)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000080)={'ifb0\x00', 0x1401})
ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, &(0x7f0000000000)={'ifb0\x00', 0xa201})
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'ipddp0\x00', 0x7000})
getsockopt$inet_sctp6_SCTP_ASSOCINFO(r0, 0x84, 0x1, &(0x7f0000000180)={<r2=>0x0, 0x5, 0x8000, 0x6, 0x5, 0x7}, &(0x7f00000001c0)=0x14)
getsockopt$inet_sctp_SCTP_PR_SUPPORTED(r0, 0x84, 0x71, &(0x7f0000000200)={r2, 0x4}, &(0x7f0000000240)=0x8)
syz_open_dev$tun(&(0x7f0000000100)='/dev/net/tun\x00', 0x0, 0x1)
write(r1, &(0x7f00000000c0)='E', 0x1)

2018/03/31 01:44:56 executing program 1:
r0 = creat(&(0x7f0000000b40)='./file0\x00', 0x20)
ioctl$DRM_IOCTL_AGP_ALLOC(0xffffffffffffff9c, 0xc0206434, &(0x7f0000000b80)={0x5, <r1=>0x0, 0x0, 0x81})
ioctl$DRM_IOCTL_SG_FREE(r0, 0x40106439, &(0x7f0000000bc0)={0x3, r1})
r2 = socket$inet(0x2, 0x6, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f00000008c0)=@broute={'broute\x00', 0x20, 0x2, 0x3e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000280], 0x0, &(0x7f0000000240), &(0x7f0000000280)=ANY=[@ANYBLOB="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"]}, 0x460)
getsockopt$inet_sctp6_SCTP_CONTEXT(0xffffffffffffff9c, 0x84, 0x11, &(0x7f0000000000)={<r3=>0x0, 0x7}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r2, 0x84, 0xa, &(0x7f0000000140)={0x0, 0xa2b, 0x4, 0x7, 0x2, 0x20, 0x10000, 0x8a82, r3}, &(0x7f0000000180)=0x20)
connect$unix(r0, &(0x7f0000000d00)=@abs={0x1, 0x0, 0x4e21}, 0x6e)
setsockopt$inet_group_source_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000680)={0x1000, {{0x2, 0x4e23, @multicast1=0xe0000001}}, {{0x2, 0x4e22, @broadcast=0xffffffff}}}, 0x108)
ioctl$DRM_IOCTL_AGP_ENABLE(0xffffffffffffffff, 0x40086432, &(0x7f0000000100))
r4 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/vs/sync_version\x00', 0x2, 0x0)
ioctl$TIOCGSOFTCAR(r4, 0x5419, &(0x7f00000007c0))
ioctl$sock_SIOCGIFCONF(r4, 0x8910, &(0x7f0000000cc0)=@req={0x28, &(0x7f0000000c80)={'dummy0\x00', @ifru_addrs=@ethernet={0x307, @broadcast=[0xff, 0xff, 0xff, 0xff, 0xff, 0xff]}}})
r5 = socket$inet6(0x10, 0x2, 0x0)
sendmsg(r5, &(0x7f0000000080)={&(0x7f0000000240)=@un=@abs={0x1, 0x0, 0x4e23}, 0x80, &(0x7f0000000040)=[{&(0x7f00000001c0)="5500000018007f04002d1cb2a4a280930a0600007da843cf19d0f869390009402f002100040000001900050000fc1700000000dc1338d54400009b84136ef75afb83de448daa7227c43ab8220000060c", 0x50}], 0x1, &(0x7f00000000c0)}, 0x0)
socket$bt_cmtp(0x1f, 0x3, 0x5)
fcntl$addseals(r5, 0x409, 0x7)
syz_open_dev$sndmidi(&(0x7f0000000c00)='/dev/snd/midiC#D#\x00', 0x100000001, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f0000001640)=@broute={'broute\x00', 0x20, 0x1, 0x1e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20001700], 0x0, &(0x7f0000001980), &(0x7f0000001700)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1, [{{{0x13, 0x0, 0x0, 'vcan0\x00', 'ifb0\x00', 'syzkaller0\x00', 'vcan0\x00', @remote={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xbb}, [], @link_local={0x1, 0x80, 0xc2}, [], 0x70, 0xf8, 0x128}, [@common=@dnat={'dnat\x00', 0x10, {{@dev={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa]}, 0xffffffffffffffff}}}, @common=@IDLETIMER={'IDLETIMER\x00', 0x28, {{0x4, 'syz0\x00'}}}]}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8}}]}, {0x0, '\x00', 0x1, 0xffffbffffffffffe}]}, 0x260)
setsockopt$EBT_SO_SET_ENTRIES(0xffffffffffffffff, 0x0, 0x80, &(0x7f0000000840)=@nat={'nat\x00', 0x19, 0x1, 0x200, [0x20000940, 0x0, 0x0, 0x20000970, 0x200009a0], 0x0, &(0x7f0000000800), &(0x7f0000000940)=[{}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x14, 0x98ab, 'teql0\x00', 'ip6gretap0\x00', 'ip_vti0\x00', 'nr0\x00', @empty, [0x0, 0xff, 0x0, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2}, [0xff, 0x0, 0xff, 0x0, 0x0, 0xff], 0x100, 0x138, 0x170, [@time={'time\x00', 0x18, {{0x7, 0x3, 0x13782, 0x14fdf, 0x80, 0x4, 0x1}}}, @nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x2}}}]}, [@snat={'snat\x00', 0x10, {{@random="07901c8f0140"}}}]}, @common=@dnat={'dnat\x00', 0x10, {{@local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}, 0x10}}}}]}]}, 0x278)
syz_open_dev$dmmidi(&(0x7f0000000c40)='/dev/dmmidi#\x00', 0xae6d, 0x200)

2018/03/31 01:44:56 executing program 3 (fault-call:3 fault-nth:40):
mkdir(&(0x7f00000001c0)='./file0\x00', 0x0)
mount(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000380)='./file0\x00', &(0x7f0000000300)='cgroup2\x00', 0x0, 0x0)
r0 = open$dir(&(0x7f000001bff4)='./file0\x00', 0x0, 0x0)
mkdirat(r0, &(0x7f0000000280)='./file0\x00', 0x20)
getdents64(r0, &(0x7f00000007c0)=""/250, 0x1015a)
fadvise64(r0, 0x0, 0x41, 0x3)
unlinkat(r0, &(0x7f0000000080)='./file0\x00', 0x200)
r1 = open$dir(&(0x7f0000000180)='./file0\x00', 0x105600, 0x81)
fchdir(r0)
link(&(0x7f0000000740)='./file1\x00', &(0x7f0000000780)='./file0/file0\x00')
renameat2(r1, &(0x7f0000000200)='./file1\x00', r0, &(0x7f0000000240)='./file0\x00', 0xfd1092750066ec78)
pivot_root(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='./file0\x00')
r2 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000100)='/dev/rfkill\x00', 0x2c42, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_LIST(r2, 0xc0505510, &(0x7f0000000480)={0x1000, 0x1, 0x474, 0x1, &(0x7f0000000140)=[{}]})
unlink(&(0x7f00000000c0)='./file0\x00')
symlinkat(&(0x7f0000000400)='./file0/file0\x00', r0, &(0x7f0000000440)='./file0/file0\x00')
iopl(0x6)
recvmsg$kcm(0xffffffffffffffff, &(0x7f0000000680)={&(0x7f0000000500)=@pppol2tp={0x0, 0x0, {0x0, <r3=>0xffffffffffffffff, {0x0, 0x0, @broadcast}}}, 0x80, &(0x7f0000000600)=[{&(0x7f0000000580)=""/80, 0x50}, {&(0x7f00000008c0)=""/4096, 0x1000}], 0x2, &(0x7f0000000640)=""/45, 0x2d, 0x206e}, 0x20)
r4 = syz_open_dev$sndpcmp(&(0x7f00000018c0)='/dev/snd/pcmC#D#p\x00', 0x5, 0x10a00)
ioctl$KVM_GET_DEVICE_ATTR(r4, 0x4018aee2, &(0x7f0000001940)={0x0, 0x100, 0x9, &(0x7f0000001900)})
recvfrom$ipx(r3, &(0x7f00000006c0)=""/52, 0x34, 0x100, &(0x7f0000000700)={0x4, 0x9a2, 0x4, "dc108d9d4391", 0x5}, 0x10)
renameat(r0, &(0x7f0000001980)='./file1\x00', r4, &(0x7f00000019c0)='./file0/file0\x00')

[  189.827269] FAULT_INJECTION: forcing a failure.
[  189.827269] name failslab, interval 1, probability 0, space 0, times 0
[  189.838995] CPU: 1 PID: 13655 Comm: syz-executor3 Not tainted 4.16.0-rc7+ #372
[  189.846353] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  189.855695] Call Trace:
[  189.858280]  dump_stack+0x194/0x24d
[  189.861909]  ? arch_local_irq_restore+0x53/0x53
[  189.866580]  should_fail+0x8c0/0xa40
[  189.870296]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  189.875398]  ? rb_first_postorder+0xa0/0xa0
[  189.879719]  ? __mutex_lock+0x16f/0x1a80
[  189.883770]  ? save_stack+0x43/0xd0
[  189.887373]  ? kasan_kmalloc+0xad/0xe0
[  189.891239]  ? trace_hardirqs_off+0x10/0x10
[  189.895538]  ? find_held_lock+0x35/0x1d0
[  189.899576]  ? __lock_is_held+0xb6/0x140
[  189.903624]  ? check_same_owner+0x320/0x320
[  189.907927]  ? lock_downgrade+0x980/0x980
[  189.912058]  ? rcu_note_context_switch+0x710/0x710
[  189.916978]  should_failslab+0xec/0x120
[  189.920946]  __kmalloc_track_caller+0x5f/0x760
[  189.925506]  ? string+0x180/0x200
[  189.928933]  ? kstrdup_const+0x39/0x50
[  189.932797]  kstrdup+0x39/0x70
[  189.935964]  kstrdup_const+0x39/0x50
[  189.939662]  __kernfs_new_node+0xa2/0x570
[  189.943790]  ? kernfs_dop_revalidate+0x380/0x380
[  189.948525]  ? snprintf+0xc0/0xf0
[  189.951954]  ? vsprintf+0x40/0x40
[  189.955390]  ? debug_lockdep_rcu_enabled+0x77/0x90
[  189.960313]  ? cgroup_file_name+0x1d0/0x1d0
[  189.964622]  kernfs_new_node+0x80/0xe0
[  189.968485]  __kernfs_create_file+0x4b/0x320
[  189.972874]  cgroup_addrm_files+0x3c5/0xa70
[  189.977177]  ? cgroup_file_write+0x710/0x710
[  189.981561]  ? cpu_cgroup_css_alloc+0x30/0x30
[  189.986051]  ? __lock_is_held+0xb6/0x140
[  189.990098]  ? sched_online_group+0x4e0/0x4e0
[  189.994603]  ? cpu_cgroup_css_online+0x3a/0x50
[  189.999170]  ? online_css+0x224/0x2e0
[  190.002950]  css_populate_dir+0x198/0x420
[  190.007082]  cgroup_apply_control_enable+0x390/0xbc0
[  190.012168]  ? cgroup_propagate_control+0x570/0x570
[  190.017163]  ? css_populate_dir+0x289/0x420
[  190.021459]  cgroup_mkdir+0x56f/0xfc0
[  190.025237]  ? __lock_is_held+0xb6/0x140
[  190.029276]  ? cgroup_destroy_locked+0x750/0x750
[  190.034013]  ? rcu_read_lock_sched_held+0x108/0x120
[  190.039016]  ? kmem_cache_free+0x258/0x2a0
[  190.043234]  ? set_nlink+0xc1/0x160
[  190.046839]  ? debug_lockdep_rcu_enabled+0x77/0x90
[  190.051754]  ? generic_permission+0x105/0x3c0
[  190.056239]  ? cgroup_destroy_locked+0x750/0x750
[  190.060991]  kernfs_iop_mkdir+0x153/0x1e0
[  190.065131]  vfs_mkdir+0x390/0x600
[  190.068667]  SyS_mkdirat+0x22b/0x2b0
[  190.072360]  ? SyS_mknod+0x480/0x480
[  190.076052]  ? trace_hardirqs_on+0xd/0x10
[  190.080177]  ? do_syscall_64+0xb7/0x940
[  190.084129]  ? SyS_mknod+0x480/0x480
[  190.087827]  do_syscall_64+0x281/0x940
[  190.091698]  ? vmalloc_sync_all+0x30/0x30
[  190.095823]  ? finish_task_switch+0x1c1/0x7e0
[  190.100295]  ? syscall_return_slowpath+0x550/0x550
[  190.105203]  ? syscall_return_slowpath+0x2ac/0x550
[  190.110124]  ? prepare_exit_to_usermode+0x350/0x350
[  190.115121]  ? entry_SYSCALL_64_after_hwframe+0x52/0xb7
[  190.120459]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  190.125286]  entry_SYSCALL_64_after_hwframe+0x42/0xb7
[  190.130448] RIP: 0033:0x454e79
[  190.133617] RSP: 002b:00007fa6ef25cc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
[  190.141309] RAX: ffffffffffffffda RBX: 00007fa6ef25d6d4 RCX: 0000000000454e79
[  190.148556] RDX: 0000000000000020 RSI: 0000000020000280 RDI: 0000000000000013
[  190.155802] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  190.163052] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000014
[  190.170306] R13: 00000000000003eb R14: 00000000006f7ea8 R15: 0000000000000028
[  190.177662] cgroup: cgroup_addrm_files: failed to add max, err=-12
2018/03/31 01:44:56 executing program 4:
perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl$sock_SIOCGIFCONF(r0, 0x8910, &(0x7f0000000080)=@req={0x28, &(0x7f0000000040)={'gretap0\x00', @ifru_ivalue=0xdd}})
setsockopt$inet_mreqn(r0, 0x0, 0x20, &(0x7f0000000100)={@loopback=0x7f000001, @local={0xac, 0x14, 0x14, 0xaa}}, 0xc)

2018/03/31 01:44:56 executing program 0:
pipe2(&(0x7f0000edeff8)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
getsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0x10, &(0x7f0000000040)={{{@in=@loopback}}, {{@in6=@local}, 0x0, @in6=@dev}}, &(0x7f0000000140)=0xe8)
ioctl$sock_inet6_tcp_SIOCATMARK(r0, 0x8905, &(0x7f0000000200))
ioctl$KDGETKEYCODE(r0, 0x4b4c, &(0x7f0000001240)={0x4})
ioctl$GIO_UNISCRNMAP(r1, 0x4b69, &(0x7f0000000240)=""/4096)
ioctl$TIOCMGET(0xffffffffffffffff, 0x5415, &(0x7f0000000000))
ioctl$sock_FIOGETOWN(r1, 0x8903, &(0x7f0000001280))
ioctl$TUNSETLINK(r0, 0x400454cd, 0x0)
setsockopt$IPT_SO_SET_ADD_COUNTERS(r0, 0x0, 0x41, &(0x7f0000000180)=ANY=[@ANYBLOB="6e617400000000000491000000000000000000ecde6d02f6954647000000e20005000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080"], 0x1)
r2 = syz_open_dev$dspn(&(0x7f0000000100)='/dev/dsp#\x00', 0x1, 0x20002)
getsockopt$inet_sctp_SCTP_NODELAY(r2, 0x84, 0x3, &(0x7f0000000000), &(0x7f0000000040)=0x4)
r3 = add_key(&(0x7f0000001300)='cifs.spnego\x00', &(0x7f0000001340)={0x73, 0x79, 0x7a, 0x0}, &(0x7f0000001380)="0fa0880e42dcd9f8069f2b92dc8d9ef0367ebb86e34cf53118a4a564cdd15007beed453cfe4002a0a0a28eec991c0c3eefa95e85aa3f6a3bad09c573eb3cfc3af806d3c916a30cb34a", 0x49, 0xfffffffffffffffd)
keyctl$read(0xb, r3, &(0x7f0000001400)=""/100, 0x64)
ioctl$int_in(r2, 0x800000c0045006, &(0x7f0000595ff8)=0x3)
mmap$binder(&(0x7f00004be000/0x1000)=nil, 0x1000, 0x0, 0x52, r2, 0x0)
getsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r2, 0x84, 0x72, &(0x7f00000012c0)={0x0, 0x1}, &(0x7f0000000300)=0xc0d0959e3e87a006)
ioctl$sock_SIOCDELDLCI(r2, 0x8981, &(0x7f0000000080)={'\x00', 0x400})
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(r2, 0x84, 0x6c, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], &(0x7f00000000c0)=0x1)
ioctl$KVM_INTERRUPT(r2, 0x4004ae86, &(0x7f0000000140)=0x1)
close(r2)
fcntl$setstatus(r1, 0x4, 0x2000)

2018/03/31 01:44:56 executing program 6:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x200, 0x0)
socketpair$inet6_icmp_raw(0xa, 0x3, 0x3a, &(0x7f0000000680)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
setsockopt$sock_linger(r1, 0x1, 0xd, &(0x7f00000006c0)={0x400, 0x9}, 0x8)
perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
mmap(&(0x7f0000000000/0x9d7000)=nil, 0x9d7000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x7)
perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r4, &(0x7f0000e5b000)={0x2, 0x4e20, @multicast1=0xe0000001}, 0x10)
syz_open_dev$sg(&(0x7f0000000440)='/dev/sg#\x00', 0x0, 0x0)
connect$inet(r4, &(0x7f0000000100)={0x2, 0x4e20, @multicast2=0xe0000002}, 0x10)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000eb0fb8)={0x1, 0x3, &(0x7f00009ff000)=@framed={{0x18}, [], {0x95}}, &(0x7f00002bf000)='syzkaller\x00', 0x4, 0xb7, &(0x7f00006ab000)=""/183}, 0x48)
setsockopt$inet_tcp_int(r4, 0x6, 0x19, &(0x7f0000000240)=0x8, 0x4)
setsockopt$SO_BINDTODEVICE(r4, 0x1, 0x19, &(0x7f0000000000)="6970365f76746930000000000400", 0x10)
r6 = socket$kcm(0x29, 0x2, 0x0)
ioctl$sock_kcm_SIOCKCMATTACH(r6, 0x89e0, &(0x7f000031aff8)={r4, r5})
ioctl$sock_kcm_SIOCKCMCLONE(r6, 0x89e2, &(0x7f00000002c0)={<r7=>0xffffffffffffffff})
sendmsg$nl_xfrm(r7, &(0x7f0000000780)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000740)={&(0x7f0000000480)=@updpolicy={0xb8, 0x19, 0x0, 0x0, 0x0, {{@in=@loopback=0x7f000001, @in6=@mcast1={0xff, 0x1, [], 0x1}}}}, 0xffcb}, 0x1}, 0x0)
ioctl$sock_kcm_SIOCKCMUNATTACH(r7, 0x89e1, &(0x7f0000000040)={r4})
r8 = fcntl$getown(r3, 0x9)
r9 = accept4$inet(0xffffffffffffff9c, &(0x7f0000000700)={0x0, 0x0, @broadcast}, &(0x7f0000000740)=0x10, 0x80000)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r9, 0x84, 0x64, &(0x7f0000000300)=[@in6={0xa, 0x4e23, 0x0, @dev={0xfe, 0x80, [], 0xf}, 0x6}, @in={0x2, 0xff, @local={0xac, 0x14, 0x14, 0xaa}}, @in={0x2, 0x4e23, @multicast1=0xe0000001}, @in={0x2, 0x4e20, @multicast1=0xe0000001}, @in={0x2, 0x4e24}, @in={0x2, 0x4e24, @broadcast=0xffffffff}, @in6={0xa, 0x4e21, 0xed34, @local={0xfe, 0x80, [], 0xaa}, 0x3}, @in={0x2, 0x4e23, @loopback=0x7f000001}], 0x98)
ptrace$setregset(0x4205, r8, 0x0, &(0x7f00000005c0)={&(0x7f0000000080)="449ed0dd6831a7fb44eca4221b1fb01abfec082aa7d0ee6f0ba9db0ece7da2bd3f", 0x21})
r10 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r11 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x1fffd, 0x0)
syz_open_dev$sndtimer(&(0x7f00000000c0)='/dev/snd/timer\x00', 0x0, 0x0)
read(r0, &(0x7f0000000140)=""/50, 0x32)
fcntl$dupfd(r10, 0x0, r11)

2018/03/31 01:44:56 executing program 3 (fault-call:3 fault-nth:41):
mkdir(&(0x7f00000001c0)='./file0\x00', 0x0)
mount(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000380)='./file0\x00', &(0x7f0000000300)='cgroup2\x00', 0x0, 0x0)
r0 = open$dir(&(0x7f000001bff4)='./file0\x00', 0x0, 0x0)
mkdirat(r0, &(0x7f0000000280)='./file0\x00', 0x20)
getdents64(r0, &(0x7f00000007c0)=""/250, 0x1015a)
fadvise64(r0, 0x0, 0x41, 0x3)
unlinkat(r0, &(0x7f0000000080)='./file0\x00', 0x200)
r1 = open$dir(&(0x7f0000000180)='./file0\x00', 0x105600, 0x81)
fchdir(r0)
link(&(0x7f0000000740)='./file1\x00', &(0x7f0000000780)='./file0/file0\x00')
renameat2(r1, &(0x7f0000000200)='./file1\x00', r0, &(0x7f0000000240)='./file0\x00', 0xfd1092750066ec78)
pivot_root(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='./file0\x00')
r2 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000100)='/dev/rfkill\x00', 0x2c42, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_LIST(r2, 0xc0505510, &(0x7f0000000480)={0x1000, 0x1, 0x474, 0x1, &(0x7f0000000140)=[{}]})
unlink(&(0x7f00000000c0)='./file0\x00')
symlinkat(&(0x7f0000000400)='./file0/file0\x00', r0, &(0x7f0000000440)='./file0/file0\x00')
iopl(0x6)
recvmsg$kcm(0xffffffffffffffff, &(0x7f0000000680)={&(0x7f0000000500)=@pppol2tp={0x0, 0x0, {0x0, <r3=>0xffffffffffffffff, {0x0, 0x0, @broadcast}}}, 0x80, &(0x7f0000000600)=[{&(0x7f0000000580)=""/80, 0x50}, {&(0x7f00000008c0)=""/4096, 0x1000}], 0x2, &(0x7f0000000640)=""/45, 0x2d, 0x206e}, 0x20)
r4 = syz_open_dev$sndpcmp(&(0x7f00000018c0)='/dev/snd/pcmC#D#p\x00', 0x5, 0x10a00)
ioctl$KVM_GET_DEVICE_ATTR(r4, 0x4018aee2, &(0x7f0000001940)={0x0, 0x100, 0x9, &(0x7f0000001900)})
recvfrom$ipx(r3, &(0x7f00000006c0)=""/52, 0x34, 0x100, &(0x7f0000000700)={0x4, 0x9a2, 0x4, "dc108d9d4391", 0x5}, 0x10)
renameat(r0, &(0x7f0000001980)='./file1\x00', r4, &(0x7f00000019c0)='./file0/file0\x00')

2018/03/31 01:44:56 executing program 1:
r0 = creat(&(0x7f0000000b40)='./file0\x00', 0x20)
ioctl$DRM_IOCTL_AGP_ALLOC(0xffffffffffffff9c, 0xc0206434, &(0x7f0000000b80)={0x5, <r1=>0x0, 0x0, 0x81})
ioctl$DRM_IOCTL_AGP_ALLOC(r0, 0xc0206434, &(0x7f0000000c80)={0x7, r1, 0x2, 0xfffffffffffffffb})
ioctl$DRM_IOCTL_SG_FREE(r0, 0x40106439, &(0x7f0000000bc0)={0x3, r1})
r2 = socket$inet(0x2, 0x6, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f00000008c0)=@broute={'broute\x00', 0x20, 0x2, 0x3e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000280], 0x0, &(0x7f0000000240), &(0x7f0000000280)=ANY=[@ANYBLOB="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"]}, 0x460)
getsockopt$inet_sctp6_SCTP_CONTEXT(0xffffffffffffff9c, 0x84, 0x11, &(0x7f0000000000)={<r3=>0x0, 0x7}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r2, 0x84, 0xa, &(0x7f0000000140)={0x0, 0xa2b, 0x4, 0x7, 0x2, 0x20, 0x10000, 0x8a82, r3}, &(0x7f0000000180)=0x20)
setsockopt$inet_group_source_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000680)={0x1000, {{0x2, 0x4e23, @multicast1=0xe0000001}}, {{0x2, 0x4e22, @broadcast=0xffffffff}}}, 0x108)
ioctl$DRM_IOCTL_AGP_ENABLE(0xffffffffffffffff, 0x40086432, &(0x7f0000000100))
r4 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000d00)='/proc/sys/net/ipv4/vs/sync_threshold\x00', 0x2, 0x0)
ioctl$TIOCGSOFTCAR(r4, 0x5419, &(0x7f00000007c0))
r5 = socket$inet6(0x10, 0x2, 0x0)
sendmsg(r5, &(0x7f0000000080)={&(0x7f0000000240)=@un=@abs={0x1, 0x0, 0x4e23}, 0x80, &(0x7f0000000040)=[{&(0x7f00000001c0)="5500000018007f04002d1cb2a4a280930a0600007da843cf19d0f869390009402f002100040000001900050000fc1700000000dc1338d54400009b84136ef75afb83de448daa7227c43ab8220000060c", 0x50}], 0x1, &(0x7f00000000c0)}, 0x0)
socket$bt_cmtp(0x1f, 0x3, 0x5)
fcntl$addseals(r5, 0x409, 0x7)
syz_open_dev$sndmidi(&(0x7f0000000c00)='/dev/snd/midiC#D#\x00', 0x100000001, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f0000001640)=@broute={'broute\x00', 0x20, 0x1, 0x1e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20001700], 0x0, &(0x7f0000001980), &(0x7f0000001700)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1, [{{{0x13, 0x0, 0x0, 'vcan0\x00', 'ifb0\x00', 'syzkaller0\x00', 'vcan0\x00', @remote={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xbb}, [], @link_local={0x1, 0x80, 0xc2}, [], 0x70, 0xf8, 0x128}, [@common=@dnat={'dnat\x00', 0x10, {{@dev={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa]}, 0xffffffffffffffff}}}, @common=@IDLETIMER={'IDLETIMER\x00', 0x28, {{0x4, 'syz0\x00'}}}]}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8}}]}, {0x0, '\x00', 0x1, 0xffffbffffffffffe}]}, 0x260)
setsockopt$EBT_SO_SET_ENTRIES(0xffffffffffffffff, 0x0, 0x80, &(0x7f0000000840)=@nat={'nat\x00', 0x19, 0x1, 0x200, [0x20000940, 0x0, 0x0, 0x20000970, 0x200009a0], 0x0, &(0x7f0000000800), &(0x7f0000000940)=ANY=[@ANYBLOB="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"]}, 0x278)
syz_open_dev$dmmidi(&(0x7f0000000c40)='/dev/dmmidi#\x00', 0xae6d, 0x200)

2018/03/31 01:44:56 executing program 5:
r0 = syz_open_dev$amidi(&(0x7f0000000400)='/dev/amidi#\x00', 0x401, 0x40)
accept4$llc(r0, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, &(0x7f0000000480)=0x10, 0x80800)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f0000005fd8)={'vcan0\x00', <r2=>0x0})
ioctl$KVM_SET_DEVICE_ATTR(r0, 0x4018aee1, &(0x7f0000000500)={0x0, 0x0, 0x5a, &(0x7f00000004c0)})
connect$can_bcm(r1, &(0x7f0000001ff0)={0x1d, r2}, 0x10)
ioctl$TIOCGSID(0xffffffffffffff9c, 0x5429, &(0x7f00000002c0)=<r3=>0x0)
waitid(0x0, r3, 0x0, 0x1000009, &(0x7f0000000300))
r4 = syz_open_dev$vcsn(&(0x7f0000000000)='/dev/vcs#\x00', 0xcd8, 0x101000)
getsockopt$SO_BINDTODEVICE(r4, 0x1, 0x19, &(0x7f0000000280), 0x10)
ioctl$EVIOCGABS0(r4, 0x80184540, &(0x7f0000000240)=""/64)
bind$vsock_dgram(r1, &(0x7f00000003c0)={0x28, 0x0, 0x2711, @reserved=0x1}, 0x10)
exit(0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000200)={r4, 0x0, 0x47, 0xde, &(0x7f0000000080)="3541471374d1e455c1f501bb3e7418a21f930d9fb82ac3588f54ad5a1a9e778bdf654fa39f19bcbc6ee4636a10d409c877cfe11ba160f73d4cde40422564bfdb62d8e5f8ba5097", &(0x7f0000000100)=""/222, 0x4, 0x3f}, 0x28)
ioctl$KVM_SET_TSS_ADDR(r4, 0xae47, 0xd000)
ioctl$KVM_CHECK_EXTENSION(r4, 0xae03, 0xffffffffffffffff)
openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000580)='/dev/qat_adf_ctl\x00', 0x4600, 0x0)
sendmsg$can_raw(r1, &(0x7f0000001fc8)={&(0x7f000000a000)={0x1d}, 0x10, &(0x7f0000000040)={&(0x7f000000a000)=@canfd={{0x1}, 0x0, 0x0, 0x0, 0x0, "0327e1b22b5fcef7739c699f5ff986ca08990039576a7d5cb2bdac3fa80acf584ecb5fee496e6866856b76b5f700000000000000004e2f9663a918fa1efd9b0b"}, 0x48}, 0x1}, 0x0)
ioctl$VHOST_GET_VRING_ENDIAN(r0, 0x4008af14, &(0x7f0000000540)={0x0, 0x9})

2018/03/31 01:44:56 executing program 7:
clone(0x200, &(0x7f0000000100)="abbcd764d5b6fd853189b4a102b248f0de7c0a5cc328ca13455598dc3d760fa566c64d7cb06a7e15cdb085165670f42b32809442c69a5942d03eb3fd42bf0ebb0272fc4beb43f269f26f57bbb67316f7c76c8d570edaa564720b4dfd8f32453fc2354ddc753155ac051e9e9657989f0bbf1c03e4cd9f735c6d1b95719dbbb1c04092f54f44256722d954f0000000000000000000000000000000", &(0x7f00000000c0), &(0x7f00008c8000), &(0x7f0000828ffe))
mknod(&(0x7f0000000000)='./file0\x00', 0x1000000000001040, 0x0)
execve(&(0x7f000007b000)='./file0\x00', &(0x7f0000000180), &(0x7f0000000040))
r0 = gettid()
r1 = syz_open_dev$mice(&(0x7f0000149000)='/dev/input/mice\x00', 0x0, 0x0)
execve(&(0x7f00000001c0)='./file0\x00', &(0x7f0000001540)=[&(0x7f0000000200)='user\x00', &(0x7f0000000240)='vmnet0\x00', &(0x7f0000000280)='user\x00', &(0x7f0000001480)='user\x00'], &(0x7f00000015c0)=[&(0x7f0000001580)='#keyring\x00'])
msgget$private(0x0, 0x400)
timer_create(0x0, &(0x7f0000044000), &(0x7f0000044000))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000))
uselib(&(0x7f00000002c0)='./file0/file0\x00')
mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0xffffffffffffffff, 0x32, 0xffffffffffffffff, 0x0)
getsockopt$inet_sctp6_SCTP_INITMSG(r1, 0x84, 0x2, &(0x7f0000000040), &(0x7f0000000080)=0x8)
tkill(r0, 0x1000000000015)

2018/03/31 01:44:56 executing program 2:
syz_open_dev$usbmon(&(0x7f0000000200)='/dev/usbmon#\x00', 0x0, 0x10580)
userfaultfd(0x80000)
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, &(0x7f0000000fe8)={0xaa})
ioctl$UFFDIO_REGISTER(0xffffffffffffffff, 0xc020aa00, &(0x7f0000019fe0)={{&(0x7f0000012000/0x2000)=nil, 0x2000}, 0x1})
pwritev(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000012000)}], 0x1, 0x0)
r0 = getpgrp(0x0)
wait4(r0, 0x0, 0x1, &(0x7f0000781f70))
prctl$setendian(0x14, 0x1)
r1 = syz_open_dev$sndctrl(&(0x7f0000000600)='/dev/snd/controlC#\x00', 0x0, 0x0)
r2 = perf_event_open(&(0x7f000001d000)={0x5, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x2661, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @perf_bp={&(0x7f0000000000), 0x1}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r3 = syz_open_dev$tun(&(0x7f0000000000)='/dev/net/tun\x00', 0x0, 0x0)
r4 = dup2(r3, r2)
accept4$ax25(r4, &(0x7f0000000400), &(0x7f0000000440)=0x10, 0x800)
pread64(r1, &(0x7f0000000900)=""/195, 0xc3, 0x0)
ioctl$KVM_SET_GSI_ROUTING(0xffffffffffffffff, 0x4008ae6a, &(0x7f0000001040)=ANY=[@ANYBLOB="1a17612be07ed0e8b6ab0166e88f982858a58727b20e4f938a5c73fd0f054441b33be49417878bdeecb0b0e0c234892cc8eb9e09a24c680a39039bac82c11de00000000000beff9c2e000000000000000000000000000500"])
perf_event_open(&(0x7f0000348f88)={0x2, 0x78, 0x3e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5452, &(0x7f000079d000)=0x100000000000001)
connect$inet(0xffffffffffffffff, &(0x7f0000e5c000)={0x2, 0x0, @loopback=0x7f000001}, 0x10)
ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000080)=<r5=>0x0)
kcmp$KCMP_EPOLL_TFD(r5, r0, 0x7, 0xffffffffffffffff, &(0x7f0000000f80)={0xffffffffffffffff, 0xffffffffffffffff, 0x1f})
ioctl$KVM_SET_IRQCHIP(0xffffffffffffffff, 0x8208ae63, &(0x7f00000012c0))
r6 = openat$selinux_enforce(0xffffffffffffff9c, &(0x7f00000000c0)='/selinux/enforce\x00', 0x16907e, 0x0)
pwritev(r6, &(0x7f0000001400)=[{&(0x7f0000001440)="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", 0xdcd}], 0x1, 0x4)
creat(&(0x7f0000000040)='./file0\x00', 0x6)
bind$unix(0xffffffffffffffff, &(0x7f0000000740)=@file={0x0, './file0\x00'}, 0x6e)
ioctl$sock_SIOCSIFBR(0xffffffffffffffff, 0x8941, &(0x7f0000001180)=@generic={0x0, 0x3, 0xe4})
ioctl$fiemap(0xffffffffffffffff, 0xc020660b, &(0x7f00000011c0)={0x7, 0x4, 0x2, 0x0, 0x3, [{0x8000, 0xfffffffffffffff8, 0x1000, 0x0, 0x0, 0x801}, {0x3, 0x9, 0x6, 0x0, 0x0, 0xc06}, {0x0, 0xffffffff, 0x6dfd, 0x0, 0x0, 0x4}]})
userfaultfd(0x0)

[  190.254590] FAULT_INJECTION: forcing a failure.
[  190.254590] name failslab, interval 1, probability 0, space 0, times 0
[  190.265889] CPU: 1 PID: 13677 Comm: syz-executor3 Not tainted 4.16.0-rc7+ #372
[  190.273249] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  190.282601] Call Trace:
[  190.285190]  dump_stack+0x194/0x24d
[  190.288826]  ? arch_local_irq_restore+0x53/0x53
[  190.293509]  should_fail+0x8c0/0xa40
[  190.297223]  ? kstrdup+0x39/0x70
[  190.300586]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  190.305687]  ? cgroup_apply_control_enable+0x390/0xbc0
[  190.310965]  ? kernfs_iop_mkdir+0x153/0x1e0
[  190.315282]  ? vfs_mkdir+0x390/0x600
[  190.318988]  ? SyS_mkdirat+0x22b/0x2b0
[  190.322859]  ? do_syscall_64+0x281/0x940
[  190.326905]  ? entry_SYSCALL_64_after_hwframe+0x42/0xb7
[  190.332256]  ? find_held_lock+0x35/0x1d0
[  190.336304]  ? find_held_lock+0x35/0x1d0
[  190.340353]  ? __lock_is_held+0xb6/0x140
[  190.344398]  ? check_same_owner+0x320/0x320
[  190.348701]  ? rcu_note_context_switch+0x710/0x710
[  190.353606]  ? rcu_read_lock_sched_held+0x108/0x120
[  190.358605]  should_failslab+0xec/0x120
[  190.362557]  kmem_cache_alloc+0x47/0x760
[  190.366593]  ? memcpy+0x45/0x50
[  190.369852]  ? kstrdup+0x59/0x70
[  190.373201]  __kernfs_new_node+0xe2/0x570
[  190.377328]  ? kernfs_dop_revalidate+0x380/0x380
[  190.382069]  ? snprintf+0xc0/0xf0
[  190.385500]  ? vsprintf+0x40/0x40
[  190.388928]  ? debug_lockdep_rcu_enabled+0x77/0x90
[  190.393838]  ? cgroup_file_name+0x1d0/0x1d0
[  190.398139]  kernfs_new_node+0x80/0xe0
[  190.402007]  __kernfs_create_file+0x4b/0x320
[  190.406400]  cgroup_addrm_files+0x3c5/0xa70
[  190.410704]  ? cgroup_file_write+0x710/0x710
[  190.415093]  ? cpu_cgroup_css_alloc+0x30/0x30
[  190.419572]  ? __lock_is_held+0xb6/0x140
[  190.423613]  ? sched_online_group+0x4e0/0x4e0
[  190.428082]  ? cpu_cgroup_css_online+0x3a/0x50
[  190.432640]  ? online_css+0x224/0x2e0
[  190.436420]  css_populate_dir+0x198/0x420
[  190.440547]  cgroup_apply_control_enable+0x390/0xbc0
[  190.445630]  ? cgroup_propagate_control+0x570/0x570
[  190.450626]  ? css_populate_dir+0x289/0x420
[  190.454928]  cgroup_mkdir+0x56f/0xfc0
[  190.458703]  ? __lock_is_held+0xb6/0x140
[  190.462744]  ? cgroup_destroy_locked+0x750/0x750
[  190.467475]  ? rcu_read_lock_sched_held+0x108/0x120
[  190.472469]  ? kmem_cache_free+0x258/0x2a0
[  190.476684]  ? set_nlink+0xc1/0x160
[  190.480286]  ? debug_lockdep_rcu_enabled+0x77/0x90
[  190.485190]  ? generic_permission+0x105/0x3c0
[  190.489663]  ? cgroup_destroy_locked+0x750/0x750
[  190.494395]  kernfs_iop_mkdir+0x153/0x1e0
[  190.498519]  vfs_mkdir+0x390/0x600
[  190.502040]  SyS_mkdirat+0x22b/0x2b0
[  190.505733]  ? SyS_mknod+0x480/0x480
[  190.509425]  ? trace_hardirqs_on+0xd/0x10
[  190.513551]  ? do_syscall_64+0xb7/0x940
[  190.517502]  ? SyS_mknod+0x480/0x480
[  190.521191]  do_syscall_64+0x281/0x940
[  190.525054]  ? vmalloc_sync_all+0x30/0x30
[  190.529182]  ? _raw_spin_unlock_irq+0x27/0x70
[  190.533652]  ? finish_task_switch+0x1c1/0x7e0
[  190.538123]  ? syscall_return_slowpath+0x550/0x550
[  190.543033]  ? syscall_return_slowpath+0x2ac/0x550
[  190.547941]  ? prepare_exit_to_usermode+0x350/0x350
[  190.552933]  ? entry_SYSCALL_64_after_hwframe+0x52/0xb7
[  190.558274]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  190.563097]  entry_SYSCALL_64_after_hwframe+0x42/0xb7
[  190.568259] RIP: 0033:0x454e79
[  190.571427] RSP: 002b:00007fa6ef25cc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
[  190.579113] RAX: ffffffffffffffda RBX: 00007fa6ef25d6d4 RCX: 0000000000454e79
[  190.586358] RDX: 0000000000000020 RSI: 0000000020000280 RDI: 0000000000000013
[  190.593602] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
2018/03/31 01:44:57 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000264ff7)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
vmsplice(r1, &(0x7f0000000440)=[{&(0x7f0000000080)="4b3f01b44b1f87b9729db7492d381d03ffdb33d985d6a7e01a68a0f3099ec8cb9ec6ea6af9ec5a3eabfabfaa91608f01053cbc47b18aa7521030c65831befea8089daefbe259c505c53fdd1f9e8449442c7ece56c80223028be1f6e3c3a549309b2a4cee819e58170a9784", 0x6b}, {&(0x7f0000000000)="3201dc2b5fa12600033d2a", 0xb}, {&(0x7f0000000100)="b0931fd51378107181a42a03d1a7baf4b545404f707cf2ea9629bfdbd187395b7cc2cfa9a5de94225b1ea39f607d4e8ae5a7a3356c8c6a2a42648b089ae35f0eb30e6dda748d563d62e1968429116f8f45731ce8fcf986dbe5d01033fb8b1ced74725e33e39f83c118ce07cd41266bb0f9be632f89110ef9a15e7e219406649d0ee829e9c65d9ea04643502f3d9d265bd56a5112a0ae9a32450184632c44065224f50dda1a14bf7c7a5ebaeed0b4359bcd42d7e7b9ad665ac11d29bf19a523c710c4d58703c3efd380fdc5bb2cc10808ce83f46cc20c69d0d9d88575eff112bf32b74e0d7ee0e4e62d", 0xe9}, {&(0x7f0000000200)="ff67db9c1c8dd62ed32d3d4c7eddc4bbbcf14cbfb33409d56c8ecc933f0972c9a31dde1efaaf54599029de46f33fcd9ac242fd61d301fa019a3c8da7fe21a9a18683820acdd4a205119373d7c9c580f1399c75177b047cffbe2366205038afac51c4a1002f567a2ff9ae2fdf51577086d3875a41ff0e544f35edfcb50c3b70694e72bde0b33cc8af9daa7bf84f1338a7ee59e95541e5846e6d9122081db6c9a03cf6888f5404741421", 0xa9}, {&(0x7f00000002c0)="a3c9615ae502c1fcf6c2d50905a87c6a34a516a975553c4bd63218fd20690d23173b3af91cbdf8449f452a2585b671bf89b79b3e89d01d938347bf5dfa8c48f143b513a728f7b45b606a8a8bd664d70d4c6b8525f80d2e628fca0960ef6c107ebb18bfb2ac50df82443d0f9675f69ecb0436e9d7b015fb9d467e5ec669656e94085087bbfd70f62e0fe552e1135738327cf5ef21265fc8073c3ff2a07e4ade690c7655e9acc4890f6400b098484e412f", 0xb0}, {&(0x7f0000000380)="b8471e4951a70c9bed0faf009a4fc5c27739b3ea7c5d8bb0c3764f4271bea160f6827357", 0x24}, {&(0x7f00000003c0)="4ff7454ea3bfb1dfe74b35fa4c3ad5ab195c750b72547c3e9e546eb6d8086ca8743ae989badbf9fb4d4b8242d23a2055964262724f88ae87ed06abf8df0e13318b3c", 0x42}], 0x7, 0x6)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x80000000000000)
fcntl$setsig(0xffffffffffffffff, 0xa, 0x0)
mmap(&(0x7f0000000000/0x709000)=nil, 0x709000, 0x1, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000000040))

2018/03/31 01:44:57 executing program 1:
r0 = creat(&(0x7f0000000b40)='./file0\x00', 0x20)
ioctl$DRM_IOCTL_AGP_ALLOC(0xffffffffffffff9c, 0xc0206434, &(0x7f0000000b80)={0x5, <r1=>0x0, 0x0, 0x81})
ioctl$DRM_IOCTL_SG_FREE(r0, 0x40106439, &(0x7f0000000bc0)={0x3, r1})
r2 = socket$inet(0x2, 0x6, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f00000008c0)=@broute={'broute\x00', 0x20, 0x2, 0x3e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000280], 0x0, &(0x7f0000000240), &(0x7f0000000280)=ANY=[@ANYBLOB="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"]}, 0x460)
getsockopt$inet_sctp6_SCTP_CONTEXT(0xffffffffffffff9c, 0x84, 0x11, &(0x7f0000000000)={<r3=>0x0, 0x7}, &(0x7f0000000040)=0x8)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000c80)=<r4=>0x0)
fcntl$lock(r2, 0x6, &(0x7f0000000cc0)={0x1, 0x3, 0x0, 0x7, r4})
getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r2, 0x84, 0xa, &(0x7f0000000140)={0x0, 0xa2b, 0x4, 0x7, 0x2, 0x20, 0x10000, 0x8a82, r3}, &(0x7f0000000180)=0x20)
setsockopt$inet_group_source_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000680)={0x1000, {{0x2, 0x4e23, @multicast1=0xe0000001}}, {{0x2, 0x4e22, @broadcast=0xffffffff}}}, 0x108)
ioctl$DRM_IOCTL_AGP_ENABLE(0xffffffffffffffff, 0x40086432, &(0x7f0000000100))
r5 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/vs/sync_version\x00', 0x2, 0x0)
ioctl$TIOCGSOFTCAR(r5, 0x5419, &(0x7f00000007c0))
r6 = socket$inet6(0x10, 0x2, 0x0)
sendmsg(r6, &(0x7f0000000080)={&(0x7f0000000240)=@un=@abs={0x1, 0x0, 0x4e23}, 0x80, &(0x7f0000000040)=[{&(0x7f00000001c0)="5500000018007f04002d1cb2a4a280930a0600007da843cf19d0f869390009402f002100040000001900050000fc1700000000dc1338d54400009b84136ef75afb83de448daa7227c43ab8220000060c", 0x50}], 0x1, &(0x7f00000000c0)}, 0x0)
socket$bt_cmtp(0x1f, 0x3, 0x5)
fcntl$addseals(r6, 0x409, 0x7)
syz_open_dev$sndmidi(&(0x7f0000000c00)='/dev/snd/midiC#D#\x00', 0x100000001, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f0000001640)=@broute={'broute\x00', 0x20, 0x1, 0x1e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20001700], 0x0, &(0x7f0000001980), &(0x7f0000001700)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1, [{{{0x13, 0x0, 0x0, 'vcan0\x00', 'ifb0\x00', 'syzkaller0\x00', 'vcan0\x00', @remote={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xbb}, [], @link_local={0x1, 0x80, 0xc2}, [], 0x70, 0xf8, 0x128}, [@common=@dnat={'dnat\x00', 0x10, {{@dev={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa]}, 0xffffffffffffffff}}}, @common=@IDLETIMER={'IDLETIMER\x00', 0x28, {{0x4, 'syz0\x00'}}}]}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8}}]}, {0x0, '\x00', 0x1, 0xffffbffffffffffe}]}, 0x260)
setsockopt$EBT_SO_SET_ENTRIES(0xffffffffffffffff, 0x0, 0x80, &(0x7f0000000840)=@nat={'nat\x00', 0x19, 0x1, 0x200, [0x20000940, 0x0, 0x0, 0x20000970, 0x200009a0], 0x0, &(0x7f0000000800), &(0x7f0000000d00)=ANY=[@ANYBLOB="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"]}, 0x288)
syz_open_dev$dmmidi(&(0x7f0000000c40)='/dev/dmmidi#\x00', 0xae6d, 0x200)

[  190.600847] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000014
[  190.608090] R13: 00000000000003eb R14: 00000000006f7ea8 R15: 0000000000000029
[  190.615541] cgroup: cgroup_addrm_files: failed to add max, err=-12
2018/03/31 01:44:57 executing program 0:
r0 = syz_open_procfs(0x0, &(0x7f0000865ff5)='projid_map\x00')
r1 = memfd_create(&(0x7f0000000540)='\x00', 0x1)
r2 = perf_event_open(&(0x7f00000005c0)={0x7, 0x70, 0x8, 0x9, 0x81f6, 0x8, 0x0, 0xfffffffffffffe01, 0x142, 0x1, 0xff, 0x3, 0x6, 0x9, 0x0, 0x5, 0x100000000, 0x8, 0x6, 0x9, 0x1, 0x8, 0x1, 0x800, 0x7, 0xfff, 0x0, 0xf4ca, 0x7, 0x4, 0x7, 0x800, 0x3ff, 0x0, 0x2, 0x7ff, 0x80000000, 0xffffffff00000001, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000580), 0x1}, 0x10000, 0xfd, 0xb6, 0x7, 0x6, 0xf21, 0x976}, 0x0, 0x5, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(r1, 0x2405, r2)
r3 = openat$selinux_enforce(0xffffffffffffff9c, &(0x7f0000000180)='/selinux/enforce\x00', 0x24201, 0x0)
tee(0xffffffffffffffff, r1, 0x40, 0x0)
ioctl$fiemap(r3, 0xc020660b, &(0x7f00000003c0)=ANY=[@ANYBLOB="ff01000000000000030000000000000004000000010400000100000000000000030000000000000060000000000000000700000000000000000000000000000000000000000000000010000000000000000000000000000018f5c0cec6509204962aaa67e4239dfa21708adeeccc46dba4d9f31c3792b0afd71a5b12bc405cf3a540876c7a867b243d2a941f9b5d7db9916d3974f77349a6034e8890a8ad6fbc4f76e0229d7cf38b2f20f01ce3899f5bcffd4049ce680bc1b30a8a088cf228060204087c529ea52ae08443603cd00cbcbbf884396925e01b31c9e9f4c5b291e988f0b23384c804"])
fallocate(r3, 0x11, 0x0, 0x8000000)
ioctl$DRM_IOCTL_GET_CAP(r3, 0xc010640c, &(0x7f0000000000)={0x4, 0x8})
r4 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x80000)
setsockopt$inet6_MRT6_ADD_MFC_PROXY(0xffffffffffffffff, 0x29, 0xd2, &(0x7f0000000780)={{0xa, 0x0, 0x0, @ipv4={[], [0xff, 0xff], @multicast1=0xe0000001}}, {0xa, 0x0, 0x0, @mcast1={0xff, 0x1, [], 0x1}}, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc]}, 0x5c)
ioctl$VHOST_SET_LOG_BASE(0xffffffffffffffff, 0xaf01, &(0x7f0000307000)=&(0x7f0000989fff))
bind$netlink(r4, &(0x7f0000000500)={0x10, 0x0, 0x25dfdbfe}, 0xc)
eventfd2(0x0, 0x0)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_REM(0xffffffffffffffff, 0x84, 0x65, &(0x7f0000000700)=[@in6={0xa, 0x4e20, 0x800, @loopback={0x0, 0x1}, 0x6}, @in6={0xa, 0x4e21, 0x8, @remote={0xfe, 0x80, [], 0xbb}, 0x20}, @in={0x2, 0x4e21, @broadcast=0xffffffff}, @in={0x2, 0x4e21, @loopback=0x7f000001}], 0x58)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f00000001c0))
socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$VHOST_SET_VRING_ADDR(r4, 0x4028af11, &(0x7f0000df5fd8)={0x0, 0x1, &(0x7f0000000200)=""/105, &(0x7f0000bf6000)=""/228, &(0x7f0000000080)=""/199, 0x1})
r5 = socket$netlink(0x10, 0x3, 0x0)
getsockopt$inet_pktinfo(r4, 0x0, 0x8, &(0x7f0000001100)={0x0, @remote}, &(0x7f0000001140)=0xc)
getsockopt$inet6_mreq(r1, 0x29, 0x15, &(0x7f00000011c0)={@ipv4={[], [], @remote}, <r6=>0x0}, &(0x7f0000001200)=0x14)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000001180)={'bridge0\x00', r6})
writev(r0, &(0x7f0000000000)=[{&(0x7f00000000c0)="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", 0x1000}], 0x1)
getsockopt$inet6_buf(r4, 0x29, 0xff, &(0x7f0000001240)=""/115, &(0x7f00000010c0)=0x73)
setsockopt$inet_sctp6_SCTP_INITMSG(r0, 0x84, 0x2, &(0x7f0000000040)={0x6, 0x10001, 0x4}, 0x8)

2018/03/31 01:44:57 executing program 4:
r0 = socket$inet(0x2, 0x6, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000840)=@nat={'nat\x00', 0x19, 0x1, 0x200, [0x20000940, 0x0, 0x0, 0x20000970, 0x200009a0], 0x0, &(0x7f0000000800), &(0x7f0000000000)=ANY=[@ANYBLOB="000000000008b399d89b217bfad60000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff010000000b0000000000000000007465716c3000000000000000000000006970366772657461703000000000000069705f767469300000000000000000006e5c3000000000000800000000000000000000000007ff0000ff00000180c2000000000000000000000000010000380100007001000074696d65000000000000000000000000000000000000000000000000000000001800000000000000070000000000000000000000000000000c000000000000006e66616363740000000000790000000000000000000000000000000000000000280000000000000073797a31000000000000000000000000000000000000000000000000000000000200000000000000736e6174000000546dc1cf8566554a0000000000000000000000000000000000100000000000000007901c8f014000000000000000000000646e6174000000000000000000000000000000000000000000000000000000001000000000000000aaaaaaaaaaaa00fe6e01a73393567b5220be679472d655b31e96a91b9b1fe8"]}, 0x290)

[  190.676607] kernel msg: ebtables bug: please report to author: bad policy
[  190.713149] kernel msg: ebtables bug: please report to author: Wrong len argument
2018/03/31 01:44:57 executing program 3 (fault-call:3 fault-nth:42):
mkdir(&(0x7f00000001c0)='./file0\x00', 0x0)
mount(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000380)='./file0\x00', &(0x7f0000000300)='cgroup2\x00', 0x0, 0x0)
r0 = open$dir(&(0x7f000001bff4)='./file0\x00', 0x0, 0x0)
mkdirat(r0, &(0x7f0000000280)='./file0\x00', 0x20)
getdents64(r0, &(0x7f00000007c0)=""/250, 0x1015a)
fadvise64(r0, 0x0, 0x41, 0x3)
unlinkat(r0, &(0x7f0000000080)='./file0\x00', 0x200)
r1 = open$dir(&(0x7f0000000180)='./file0\x00', 0x105600, 0x81)
fchdir(r0)
link(&(0x7f0000000740)='./file1\x00', &(0x7f0000000780)='./file0/file0\x00')
renameat2(r1, &(0x7f0000000200)='./file1\x00', r0, &(0x7f0000000240)='./file0\x00', 0xfd1092750066ec78)
pivot_root(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='./file0\x00')
r2 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000100)='/dev/rfkill\x00', 0x2c42, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_LIST(r2, 0xc0505510, &(0x7f0000000480)={0x1000, 0x1, 0x474, 0x1, &(0x7f0000000140)=[{}]})
unlink(&(0x7f00000000c0)='./file0\x00')
symlinkat(&(0x7f0000000400)='./file0/file0\x00', r0, &(0x7f0000000440)='./file0/file0\x00')
iopl(0x6)
recvmsg$kcm(0xffffffffffffffff, &(0x7f0000000680)={&(0x7f0000000500)=@pppol2tp={0x0, 0x0, {0x0, <r3=>0xffffffffffffffff, {0x0, 0x0, @broadcast}}}, 0x80, &(0x7f0000000600)=[{&(0x7f0000000580)=""/80, 0x50}, {&(0x7f00000008c0)=""/4096, 0x1000}], 0x2, &(0x7f0000000640)=""/45, 0x2d, 0x206e}, 0x20)
r4 = syz_open_dev$sndpcmp(&(0x7f00000018c0)='/dev/snd/pcmC#D#p\x00', 0x5, 0x10a00)
ioctl$KVM_GET_DEVICE_ATTR(r4, 0x4018aee2, &(0x7f0000001940)={0x0, 0x100, 0x9, &(0x7f0000001900)})
recvfrom$ipx(r3, &(0x7f00000006c0)=""/52, 0x34, 0x100, &(0x7f0000000700)={0x4, 0x9a2, 0x4, "dc108d9d4391", 0x5}, 0x10)
renameat(r0, &(0x7f0000001980)='./file1\x00', r4, &(0x7f00000019c0)='./file0/file0\x00')

2018/03/31 01:44:57 executing program 2:
io_setup(0x5, &(0x7f0000000040)=<r0=>0x0)
io_submit(r0, 0x1, &(0x7f00000015c0)=[&(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, 0xffffffffffffffff, &(0x7f0000000140)}])
r1 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x400, 0x0)
ioctl$TIOCMGET(r1, 0x5415, &(0x7f00000000c0))

2018/03/31 01:44:57 executing program 4:
r0 = socket(0x1e, 0x1, 0x0)
getsockopt$netrom_NETROM_N2(r0, 0x103, 0x3, &(0x7f0000000200), &(0x7f0000000240)=0x4)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000b89fe4)=@req3={0x10001, 0x0, 0x1, 0x1df9}, 0x1c)
getsockopt$IP_VS_SO_GET_VERSION(r0, 0x0, 0x480, &(0x7f0000000040), &(0x7f0000000080)=0x40)
listen(r0, 0x0)
accept4$ax25(r0, &(0x7f0000000280), &(0x7f0000000100)=0x10, 0x0)
mq_open(&(0x7f0000000000)='\'\x00', 0x0, 0x0, &(0x7f0000000140)={0x3, 0x10001, 0x7, 0x1, 0x0, 0x0, 0x7, 0x839})
sendmsg(r0, &(0x7f0000030000)={&(0x7f0000001400)=@generic={0x10000000001e, "0100000900000000000000000226cc573c080000003724c71e14dd6a739effea1b48006be61ffe0000e103000000f8000004003f010039d8f986ff01000300000004af50d50700000000000000e3ad316a1983000000001d00e0dfcb24281e27800000100076c3979ac40000bd15020078a1dfd300881a8365b1b16d7436"}, 0x80, &(0x7f0000000000), 0x0, &(0x7f00006e9c68)}, 0x0)
ioctl$SNDRV_TIMER_IOCTL_GPARAMS(0xffffffffffffffff, 0x40485404, &(0x7f0000000180)={{0xffffffffffffffff, 0x3}, 0x3, 0x9})
r1 = signalfd4(0xffffffffffffffff, &(0x7f0000ddeff8)={0x7fffffff}, 0x8, 0x0)
readv(r1, &(0x7f0000000180)=[{&(0x7f0000000000)=""/128, 0x80}], 0x1)
r2 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vcs\x00', 0x0, 0x0)
getsockopt$netrom_NETROM_IDLE(r2, 0x103, 0x7, &(0x7f00000000c0)=0x8, &(0x7f0000000100)=0x4)
timer_create(0x2, &(0x7f000004c000)={0x0, 0x19, 0x0, @thr={&(0x7f0000aa1000), &(0x7f0000721fce)}}, &(0x7f000004cffc))
socketpair$inet_icmp(0x2, 0x2, 0x1, &(0x7f0000000140))
timer_settime(0x0, 0x1, &(0x7f0000666fe0)={{0x77359400}, {0x0, 0x7}}, &(0x7f000004afe0))

[  190.729495] kernel msg: ebtables bug: please report to author: bad policy
2018/03/31 01:44:57 executing program 1:
r0 = creat(&(0x7f0000000b40)='./file0\x00', 0x20)
ioctl$DRM_IOCTL_AGP_ALLOC(0xffffffffffffff9c, 0xc0206434, &(0x7f0000000b80)={0x5, <r1=>0x0, 0x0, 0x81})
ioctl$DRM_IOCTL_SG_FREE(r0, 0x40106439, &(0x7f0000000bc0)={0x3, r1})
r2 = socket$inet(0x2, 0x6, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f00000008c0)=@broute={'broute\x00', 0x20, 0x2, 0x3e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000280], 0x0, &(0x7f0000000240), &(0x7f0000000280)=ANY=[@ANYBLOB="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"]}, 0x460)
getsockopt$inet_sctp6_SCTP_CONTEXT(0xffffffffffffff9c, 0x84, 0x11, &(0x7f0000000000)={<r3=>0x0, 0x7}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r2, 0x84, 0xa, &(0x7f0000000140)={0x0, 0xa2b, 0x4, 0x7, 0x2, 0x20, 0x10000, 0x8a82, r3}, &(0x7f0000000180)=0x20)
setsockopt$inet_group_source_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000680)={0x1000, {{0x2, 0x4e23, @multicast1=0xe0000001}}, {{0x2, 0x4e22, @broadcast=0xffffffff}}}, 0x108)
ioctl$DRM_IOCTL_AGP_ENABLE(0xffffffffffffffff, 0x40086432, &(0x7f0000000100))
r4 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/vs/sync_version\x00', 0x2, 0x0)
ioctl$TIOCGSOFTCAR(r4, 0x5419, &(0x7f00000007c0))
r5 = socket$inet6(0x10, 0x2, 0x0)
bind$rds(r4, &(0x7f0000000c80)={0x2, 0x4e20, @multicast2=0xe0000002}, 0x10)
sendmsg(r5, &(0x7f0000000080)={&(0x7f0000000240)=@un=@abs={0x1, 0x0, 0x4e23}, 0x80, &(0x7f0000000040)=[{&(0x7f00000001c0)="5500000018007f04002d1cb2a4a280930a0600007da843cf19d0f869390009402f002100040000001900050000fc1700000000dc1338d54400009b84136ef75afb83de448daa7227c43ab8220000060c", 0x50}], 0x1, &(0x7f00000000c0)}, 0x0)
socket$bt_cmtp(0x1f, 0x3, 0x5)
fcntl$addseals(r5, 0x409, 0x7)
syz_open_dev$sndmidi(&(0x7f0000000c00)='/dev/snd/midiC#D#\x00', 0x100000001, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f0000001640)=@broute={'broute\x00', 0x20, 0x1, 0x1e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20001700], 0x0, &(0x7f0000001980), &(0x7f0000001700)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1, [{{{0x13, 0x0, 0x0, 'vcan0\x00', 'ifb0\x00', 'syzkaller0\x00', 'vcan0\x00', @remote={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xbb}, [], @link_local={0x1, 0x80, 0xc2}, [], 0x70, 0xf8, 0x128}, [@common=@dnat={'dnat\x00', 0x10, {{@dev={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa]}, 0xffffffffffffffff}}}, @common=@IDLETIMER={'IDLETIMER\x00', 0x28, {{0x4, 'syz0\x00'}}}]}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8}}]}, {0x0, '\x00', 0x1, 0xffffbffffffffffe}]}, 0x260)
setsockopt$EBT_SO_SET_ENTRIES(0xffffffffffffffff, 0x0, 0x80, &(0x7f0000000840)=@nat={'nat\x00', 0x19, 0x1, 0x200, [0x20000940, 0x0, 0x0, 0x20000970, 0x200009a0], 0x0, &(0x7f0000000800), &(0x7f0000000940)=[{}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x14, 0x98ab, 'teql0\x00', 'ip6gretap0\x00', 'ip_vti0\x00', 'nr0\x00', @empty, [0x0, 0xff, 0x0, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2}, [0xff, 0x0, 0xff, 0x0, 0x0, 0xff], 0x100, 0x138, 0x170, [@time={'time\x00', 0x18, {{0x7, 0x3, 0x13782, 0x14fdf, 0x80, 0x4, 0x1}}}, @nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x2}}}]}, [@snat={'snat\x00', 0x10, {{@random="07901c8f0140"}}}]}, @common=@dnat={'dnat\x00', 0x10, {{@local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}, 0x10}}}}]}]}, 0x278)
syz_open_dev$dmmidi(&(0x7f0000000c40)='/dev/dmmidi#\x00', 0xae6d, 0x200)

2018/03/31 01:44:57 executing program 6:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x200, 0x0)
socketpair$inet6_icmp_raw(0xa, 0x3, 0x3a, &(0x7f0000000680)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
setsockopt$sock_linger(r1, 0x1, 0xd, &(0x7f00000006c0)={0x400, 0x9}, 0x8)
perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
mmap(&(0x7f0000000000/0x9d7000)=nil, 0x9d7000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x7)
perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r4, &(0x7f0000e5b000)={0x2, 0x4e20, @multicast1=0xe0000001}, 0x10)
syz_open_dev$sg(&(0x7f0000000440)='/dev/sg#\x00', 0x0, 0x0)
connect$inet(r4, &(0x7f0000000100)={0x2, 0x4e20, @multicast2=0xe0000002}, 0x10)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000eb0fb8)={0x1, 0x3, &(0x7f00009ff000)=@framed={{0x18}, [], {0x95}}, &(0x7f00002bf000)='syzkaller\x00', 0x4, 0xb7, &(0x7f00006ab000)=""/183}, 0x48)
setsockopt$inet_tcp_int(r4, 0x6, 0x19, &(0x7f0000000240)=0x8, 0x4)
setsockopt$SO_BINDTODEVICE(r4, 0x1, 0x19, &(0x7f0000000000)="6970365f76746930000000000400", 0x10)
r6 = socket$kcm(0x29, 0x2, 0x0)
ioctl$sock_kcm_SIOCKCMATTACH(r6, 0x89e0, &(0x7f000031aff8)={r4, r5})
ioctl$sock_kcm_SIOCKCMCLONE(r6, 0x89e2, &(0x7f00000002c0)={<r7=>0xffffffffffffffff})
sendmsg$nl_xfrm(r7, &(0x7f0000000780)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000740)={&(0x7f0000000480)=@updpolicy={0xb8, 0x19, 0x0, 0x0, 0x0, {{@in=@loopback=0x7f000001, @in6=@mcast1={0xff, 0x1, [], 0x1}}}}, 0xffcb}, 0x1}, 0x0)
ioctl$sock_kcm_SIOCKCMUNATTACH(r7, 0x89e1, &(0x7f0000000040)={r4})
r8 = fcntl$getown(r3, 0x9)
r9 = accept4$inet(0xffffffffffffff9c, &(0x7f0000000700)={0x0, 0x0, @broadcast}, &(0x7f0000000740)=0x10, 0x80000)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r9, 0x84, 0x64, &(0x7f0000000300)=[@in6={0xa, 0x4e23, 0x0, @dev={0xfe, 0x80, [], 0xf}, 0x6}, @in={0x2, 0xff, @local={0xac, 0x14, 0x14, 0xaa}}, @in={0x2, 0x4e23, @multicast1=0xe0000001}, @in={0x2, 0x4e20, @multicast1=0xe0000001}, @in={0x2, 0x4e24}, @in={0x2, 0x4e24, @broadcast=0xffffffff}, @in6={0xa, 0x4e21, 0xed34, @local={0xfe, 0x80, [], 0xaa}, 0x3}, @in={0x2, 0x4e23, @loopback=0x7f000001}], 0x98)
ptrace$setregset(0x4205, r8, 0x0, &(0x7f00000005c0)={&(0x7f0000000080)="449ed0dd6831a7fb44eca4221b1fb01abfec082aa7d0ee6f0ba9db0ece7da2bd3f", 0x21})
r10 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r11 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x1fffd, 0x0)
syz_open_dev$sndtimer(&(0x7f00000000c0)='/dev/snd/timer\x00', 0x0, 0x0)
read(r0, &(0x7f0000000140)=""/50, 0x32)
fcntl$dupfd(r10, 0x0, r11)

2018/03/31 01:44:57 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000a99ff6)='/dev/ptmx\x00', 0x2001, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
r1 = syz_open_pts(r0, 0x0)
read(r1, &(0x7f000007bf91)=""/111, 0x6f)
ioctl$TCSETS(r0, 0x5402, &(0x7f0000272fdc)={0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x40000003ff})
r2 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vga_arbiter\x00', 0x200, 0x0)
sendmsg$nl_crypto(r2, &(0x7f0000000200)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="180100001100100229bd7000fbdbdf2563686163686132302d67656e6572696300000000000000000000000000000000000000000000000000000000000000000000000000000000000000007f0000000000000000000000000000000000000000000000000000000000000000000009000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000800010000000080080001000700000008000100000000000800010004000000080001000400000008000100010000000800010080000000"], 0x118}, 0x1, 0x0, 0x0, 0x10}, 0x4)
write(r0, &(0x7f0000b84ec6)="9c060000005a001000000005ffff03", 0xf)

[  190.840560] FAULT_INJECTION: forcing a failure.
[  190.840560] name failslab, interval 1, probability 0, space 0, times 0
[  190.852344] CPU: 0 PID: 13713 Comm: syz-executor3 Not tainted 4.16.0-rc7+ #372
[  190.859717] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  190.869076] Call Trace:
[  190.871671]  dump_stack+0x194/0x24d
[  190.875305]  ? arch_local_irq_restore+0x53/0x53
[  190.879975]  ? mutex_lock_io_nested+0x1900/0x1900
[  190.884830]  should_fail+0x8c0/0xa40
2018/03/31 01:44:57 executing program 1:
r0 = creat(&(0x7f0000000b40)='./file0\x00', 0x20)
ioctl$DRM_IOCTL_AGP_ALLOC(0xffffffffffffff9c, 0xc0206434, &(0x7f0000000b80)={0x5, <r1=>0x0, 0x0, 0x81})
ioctl$DRM_IOCTL_SG_FREE(r0, 0x40106439, &(0x7f0000000bc0)={0x3, r1})
r2 = socket$inet(0x2, 0x6, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f00000008c0)=@broute={'broute\x00', 0x20, 0x2, 0x3e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000280], 0x0, &(0x7f0000000240), &(0x7f0000000280)=ANY=[@ANYBLOB="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"]}, 0x460)
getsockopt$inet_sctp6_SCTP_CONTEXT(0xffffffffffffff9c, 0x84, 0x11, &(0x7f0000000000)={<r3=>0x0, 0x7}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r2, 0x84, 0xa, &(0x7f0000000140)={0x0, 0xa2b, 0x4, 0x7, 0x2, 0x20, 0x10000, 0x8a82, r3}, &(0x7f0000000180)=0x20)
setsockopt$inet_group_source_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000680)={0x1000, {{0x2, 0x4e23, @multicast1=0xe0000001}}, {{0x2, 0x4e22, @broadcast=0xffffffff}}}, 0x108)
ioctl$DRM_IOCTL_AGP_ENABLE(0xffffffffffffffff, 0x40086432, &(0x7f0000000100))
r4 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000840)='/dev/qat_adf_ctl\x00', 0x200000, 0x0)
accept$packet(r0, &(0x7f0000001380)={0x0, 0x0, <r5=>0x0}, &(0x7f00000013c0)=0x14)
recvfrom$packet(r4, &(0x7f0000000d00)=""/76, 0x4c, 0x10000, &(0x7f0000001400)={0x11, 0xd, r5, 0x1, 0x0, 0x6, @broadcast=[0xff, 0xff, 0xff, 0xff, 0xff, 0xff]}, 0x14)
r6 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/vs/sync_version\x00', 0x2, 0x0)
ioctl$TIOCGSOFTCAR(r6, 0x5419, &(0x7f00000007c0))
socket$inet(0x2, 0xf, 0x4)
r7 = socket$inet6(0x10, 0x804, 0x0)
sendmsg(r7, &(0x7f0000000080)={&(0x7f0000000240)=@un=@abs={0x1, 0x0, 0x4e23}, 0x80, &(0x7f0000000040)=[{&(0x7f00000001c0)="5500000018007f04002d1cb2a4a280930a0600007da843cf19d0f869390009402f002100040000001900050000fc1700000000dc1338d54400009b84136ef75afb83de448daa7227c43ab8220000060c", 0x50}], 0x1, &(0x7f00000000c0)}, 0x0)
socket$bt_cmtp(0x1f, 0x3, 0x5)
fcntl$addseals(r7, 0x409, 0x7)
syz_open_dev$sndmidi(&(0x7f0000000c00)='/dev/snd/midiC#D#\x00', 0x100000001, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f0000001640)=@broute={'broute\x00', 0x20, 0x1, 0x1e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20001700], 0x0, &(0x7f0000001980), &(0x7f0000001700)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1, [{{{0x13, 0x0, 0x0, 'vcan0\x00', 'ifb0\x00', 'syzkaller0\x00', 'vcan0\x00', @remote={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xbb}, [], @link_local={0x1, 0x80, 0xc2}, [], 0x70, 0xf8, 0x128}, [@common=@dnat={'dnat\x00', 0x10, {{@dev={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa]}, 0xffffffffffffffff}}}, @common=@IDLETIMER={'IDLETIMER\x00', 0x28, {{0x4, 'syz0\x00'}}}]}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8}}]}, {0x0, '\x00', 0x1, 0xffffbffffffffffe}]}, 0x260)
setsockopt$EBT_SO_SET_ENTRIES(0xffffffffffffffff, 0x0, 0x80, &(0x7f0000000c40)=@nat={'nat\x00', 0x19, 0x1, 0x200, [0x20000940, 0x0, 0x0, 0x20000970, 0x200009a0], 0x0, &(0x7f0000000800), &(0x7f0000000940)=[{}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x14, 0x98ab, 'teql0\x00', "69703667726574617030001500", 'ip_vti0\x00', 'nr0\x00', @empty, [0x0, 0xff, 0xff, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2}, [0xff, 0x0, 0xff, 0x14, 0x0, 0xff], 0x100, 0x138, 0x170, [@time={'time\x00', 0x18, {{0x7, 0x3, 0x13782, 0x14fdf, 0x80, 0x4, 0x1}}}, @nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x2}}}]}, [@snat={'snat\x00', 0x10, {{@random="07901c8f0140"}}}]}, @common=@dnat={'dnat\x00', 0x10, {{@local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}, 0x10}}}}]}]}, 0x278)
syz_open_dev$dmmidi(&(0x7f0000000cc0)='/dev/dmmidi#\x00', 0xae6d, 0x203)

[  190.888549]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  190.893647]  ? trace_hardirqs_off+0x10/0x10
[  190.897952]  ? find_held_lock+0x35/0x1d0
[  190.902009]  ? __lock_is_held+0xb6/0x140
[  190.906083]  ? check_same_owner+0x320/0x320
[  190.910410]  ? rcu_note_context_switch+0x710/0x710
[  190.915479]  should_failslab+0xec/0x120
[  190.919458]  kmem_cache_alloc_trace+0x4b/0x740
[  190.924054]  blkcg_css_alloc+0xc8/0x6b0
[  190.928031]  ? blkcg_deactivate_policy+0x430/0x430
[  190.932963]  ? __lock_is_held+0xb6/0x140
2018/03/31 01:44:57 executing program 1:
r0 = creat(&(0x7f0000000b40)='./file0\x00', 0x20)
ioctl$DRM_IOCTL_AGP_ALLOC(0xffffffffffffff9c, 0xc0206434, &(0x7f0000000b80)={0x5, <r1=>0x0, 0x0, 0x81})
ioctl$DRM_IOCTL_SG_FREE(r0, 0x40106439, &(0x7f0000000bc0)={0x3, r1})
r2 = socket$inet(0x2, 0x6, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f00000008c0)=@broute={'broute\x00', 0x20, 0x2, 0x3e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000280], 0x0, &(0x7f0000000240), &(0x7f0000000280)=ANY=[@ANYBLOB="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"]}, 0x460)
getsockopt$inet_sctp6_SCTP_CONTEXT(0xffffffffffffff9c, 0x84, 0x11, &(0x7f0000000000)={<r3=>0x0, 0x7}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r2, 0x84, 0xa, &(0x7f0000000140)={0x0, 0xa2b, 0x4, 0x7, 0x2, 0x20, 0x10000, 0x8a82, r3}, &(0x7f0000000180)=0x20)
setsockopt$inet_group_source_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000680)={0x1000, {{0x2, 0x4e23, @multicast1=0xe0000001}}, {{0x2, 0x4e22, @local={0xac, 0x14, 0x14, 0xaa}}}}, 0x108)
ioctl$DRM_IOCTL_AGP_ENABLE(0xffffffffffffffff, 0x40086432, &(0x7f0000000100))
r4 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/vs/sync_version\x00', 0x2, 0x0)
ioctl$TIOCGSOFTCAR(r4, 0x5419, &(0x7f00000007c0))
r5 = socket$inet6(0x10, 0x2, 0x0)
setns(r0, 0x40000000)
sendmsg(r5, &(0x7f0000000080)={&(0x7f0000000240)=@un=@abs={0x1, 0x0, 0x4e23}, 0x80, &(0x7f0000000040)=[{&(0x7f00000001c0)="5500000018007f04002d1cb2a4a280930a0600007da843cf19d0f869390009402f002100040000001900050000fc1700000000dc1338d54400009b84136ef75afb83de448daa7227c43ab8220000060c", 0x50}], 0x1, &(0x7f00000000c0)}, 0x0)
socket$bt_cmtp(0x1f, 0x3, 0x5)
fcntl$addseals(r5, 0x409, 0x7)
syz_open_dev$sndmidi(&(0x7f0000000c00)='/dev/snd/midiC#D#\x00', 0x100000001, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f0000001640)=@broute={'broute\x00', 0x20, 0x1, 0x1e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20001700], 0x0, &(0x7f0000001980), &(0x7f0000001700)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1, [{{{0x13, 0x0, 0x0, 'vcan0\x00', 'ifb0\x00', 'syzkaller0\x00', 'vcan0\x00', @remote={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xbb}, [], @link_local={0x1, 0x80, 0xc2}, [], 0x70, 0xf8, 0x128}, [@common=@dnat={'dnat\x00', 0x10, {{@dev={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa]}, 0xffffffffffffffff}}}, @common=@IDLETIMER={'IDLETIMER\x00', 0x28, {{0x4, 'syz0\x00'}}}]}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8}}]}, {0x0, '\x00', 0x1, 0xffffbffffffffffe}]}, 0x260)
setsockopt$EBT_SO_SET_ENTRIES(0xffffffffffffffff, 0x0, 0x80, &(0x7f0000000840)=@nat={'nat\x00', 0x19, 0x1, 0x200, [0x20000940, 0x0, 0x0, 0x20000970, 0x200009a0], 0x0, &(0x7f0000000800), &(0x7f0000000940)=[{}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x14, 0x98ab, 'teql0\x00', 'ip6gretap0\x00', 'ip_vti0\x00', 'nr0\x00', @empty, [0x0, 0xff, 0x0, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2}, [0xff, 0x0, 0xff, 0x0, 0x0, 0xff], 0x100, 0x138, 0x170, [@time={'time\x00', 0x18, {{0x7, 0x3, 0x13782, 0x14fdf, 0x80, 0x4, 0x1}}}, @nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x2}}}]}, [@snat={'snat\x00', 0x10, {{@random="07901c8f0140"}}}]}, @common=@dnat={'dnat\x00', 0x10, {{@local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}, 0x10}}}}]}]}, 0x278)
syz_open_dev$dmmidi(&(0x7f0000000c40)='/dev/dmmidi#\x00', 0xae6d, 0x200)

[  190.937032]  cgroup_apply_control_enable+0x44d/0xbc0
[  190.942140]  ? cgroup_propagate_control+0x570/0x570
[  190.947155]  ? css_populate_dir+0x289/0x420
[  190.951472]  cgroup_mkdir+0x56f/0xfc0
[  190.955267]  ? __lock_is_held+0xb6/0x140
[  190.959334]  ? cgroup_destroy_locked+0x750/0x750
[  190.964087]  ? rcu_read_lock_sched_held+0x108/0x120
[  190.969108]  ? kmem_cache_free+0x258/0x2a0
[  190.973349]  ? set_nlink+0xc1/0x160
[  190.976987]  ? debug_lockdep_rcu_enabled+0x77/0x90
[  190.981921]  ? generic_permission+0x105/0x3c0
[  190.986419]  ? cgroup_destroy_locked+0x750/0x750
2018/03/31 01:44:57 executing program 1:
r0 = creat(&(0x7f0000000b40)='./file0\x00', 0x20)
ioctl$DRM_IOCTL_AGP_ALLOC(0xffffffffffffff9c, 0xc0206434, &(0x7f0000000b80)={0x5, <r1=>0x0, 0x0, 0x81})
ioctl$DRM_IOCTL_SG_FREE(r0, 0x40106439, &(0x7f0000000bc0)={0x3, r1})
r2 = socket$inet(0x2, 0x6, 0x26)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f00000008c0)=@broute={'broute\x00', 0x20, 0x2, 0x3e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000280], 0x0, &(0x7f0000000240), &(0x7f0000000280)=ANY=[@ANYBLOB="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"]}, 0x460)
getsockopt$inet_sctp6_SCTP_CONTEXT(0xffffffffffffff9c, 0x84, 0x11, &(0x7f0000000000)={<r3=>0x0, 0x7}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r2, 0x84, 0xa, &(0x7f0000000140)={0x0, 0xa2b, 0x4, 0x7, 0x2, 0x20, 0x10000, 0x8a82, r3}, &(0x7f0000000180)=0x20)
setsockopt$inet_group_source_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000680)={0x1000, {{0x2, 0x4e23, @multicast1=0xe0000001}}, {{0x2, 0x4e22, @broadcast=0xffffffff}}}, 0x108)
ioctl$DRM_IOCTL_AGP_ENABLE(0xffffffffffffffff, 0x40086432, &(0x7f0000000100))
r4 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/vs/sync_version\x00', 0x2, 0x0)
ioctl$TIOCGSOFTCAR(r4, 0x5419, &(0x7f00000007c0))
r5 = socket$inet6(0x10, 0x2, 0x0)
sendmsg(r5, &(0x7f0000000080)={&(0x7f0000000240)=@un=@abs={0x1, 0x0, 0x4e23}, 0x80, &(0x7f0000000040)=[{&(0x7f00000001c0)="5500000018007f04002d1cb2a4a280930a0600007da843cf19d0f869390009402f002100040000001900050000fc1700000000dc1338d54400009b84136ef75afb83de448daa7227c43ab8220000060c", 0x50}], 0x1, &(0x7f00000000c0)}, 0x0)
socket$bt_cmtp(0x1f, 0x3, 0x5)
fcntl$addseals(r5, 0x409, 0x7)
syz_open_dev$sndmidi(&(0x7f0000000c00)='/dev/snd/midiC#D#\x00', 0x100000001, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f0000001640)=@broute={'broute\x00', 0x20, 0x1, 0x1e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20001700], 0x0, &(0x7f0000001980), &(0x7f0000001700)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1, [{{{0x13, 0x0, 0x0, 'vcan0\x00', 'ifb0\x00', 'syzkaller0\x00', 'vcan0\x00', @remote={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xbb}, [], @link_local={0x1, 0x80, 0xc2}, [], 0x70, 0xf8, 0x128}, [@common=@dnat={'dnat\x00', 0x10, {{@dev={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa]}, 0xffffffffffffffff}}}, @common=@IDLETIMER={'IDLETIMER\x00', 0x28, {{0x4, 'syz0\x00'}}}]}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8}}]}, {0x0, '\x00', 0x1, 0xffffbffffffffffe}]}, 0x260)
setsockopt$EBT_SO_SET_ENTRIES(0xffffffffffffffff, 0x0, 0x80, &(0x7f0000000840)=@nat={'nat\x00', 0x19, 0x1, 0x200, [0x20000940, 0x0, 0x0, 0x20000970, 0x200009a0], 0x0, &(0x7f0000000800), &(0x7f0000000940)=[{}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x14, 0x98ab, 'teql0\x00', 'ip6gretap0\x00', 'ip_vti0\x00', 'nr0\x00', @empty, [0x0, 0xff, 0x0, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2}, [0xff, 0x0, 0xff, 0x0, 0x0, 0xff], 0x100, 0x138, 0x170, [@time={'time\x00', 0x18, {{0x7, 0x3, 0x13782, 0x14fdf, 0x80, 0x4, 0x1}}}, @nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x2}}}]}, [@snat={'snat\x00', 0x10, {{@random="07901c8f0140"}}}]}, @common=@dnat={'dnat\x00', 0x10, {{@local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}, 0x10}}}}]}]}, 0x278)
syz_open_dev$dmmidi(&(0x7f0000000c40)='/dev/dmmidi#\x00', 0xae6d, 0x200)

[  190.991178]  kernfs_iop_mkdir+0x153/0x1e0
[  190.995328]  vfs_mkdir+0x390/0x600
[  190.998876]  SyS_mkdirat+0x22b/0x2b0
[  191.002586]  ? SyS_mknod+0x480/0x480
[  191.006303]  ? trace_hardirqs_on+0xd/0x10
[  191.010454]  ? do_syscall_64+0xb7/0x940
[  191.014425]  ? SyS_mknod+0x480/0x480
[  191.018139]  do_syscall_64+0x281/0x940
[  191.022022]  ? vmalloc_sync_all+0x30/0x30
[  191.026166]  ? _raw_spin_unlock_irq+0x27/0x70
[  191.030659]  ? finish_task_switch+0x1c1/0x7e0
[  191.035151]  ? syscall_return_slowpath+0x550/0x550
[  191.040077]  ? syscall_return_slowpath+0x2ac/0x550
[  191.045004]  ? prepare_exit_to_usermode+0x350/0x350
[  191.050019]  ? entry_SYSCALL_64_after_hwframe+0x52/0xb7
[  191.055381]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  191.060224]  entry_SYSCALL_64_after_hwframe+0x42/0xb7
[  191.065403] RIP: 0033:0x454e79
[  191.068583] RSP: 002b:00007fa6ef25cc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
[  191.076287] RAX: ffffffffffffffda RBX: 00007fa6ef25d6d4 RCX: 0000000000454e79
[  191.083539] RDX: 0000000000000020 RSI: 0000000020000280 RDI: 0000000000000013
[  191.090791] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  191.098050] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000014
[  191.105301] R13: 00000000000003eb R14: 00000000006f7ea8 R15: 000000000000002a
2018/03/31 01:44:58 executing program 3 (fault-call:3 fault-nth:43):
mkdir(&(0x7f00000001c0)='./file0\x00', 0x0)
mount(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000380)='./file0\x00', &(0x7f0000000300)='cgroup2\x00', 0x0, 0x0)
r0 = open$dir(&(0x7f000001bff4)='./file0\x00', 0x0, 0x0)
mkdirat(r0, &(0x7f0000000280)='./file0\x00', 0x20)
getdents64(r0, &(0x7f00000007c0)=""/250, 0x1015a)
fadvise64(r0, 0x0, 0x41, 0x3)
unlinkat(r0, &(0x7f0000000080)='./file0\x00', 0x200)
r1 = open$dir(&(0x7f0000000180)='./file0\x00', 0x105600, 0x81)
fchdir(r0)
link(&(0x7f0000000740)='./file1\x00', &(0x7f0000000780)='./file0/file0\x00')
renameat2(r1, &(0x7f0000000200)='./file1\x00', r0, &(0x7f0000000240)='./file0\x00', 0xfd1092750066ec78)
pivot_root(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='./file0\x00')
r2 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000100)='/dev/rfkill\x00', 0x2c42, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_LIST(r2, 0xc0505510, &(0x7f0000000480)={0x1000, 0x1, 0x474, 0x1, &(0x7f0000000140)=[{}]})
unlink(&(0x7f00000000c0)='./file0\x00')
symlinkat(&(0x7f0000000400)='./file0/file0\x00', r0, &(0x7f0000000440)='./file0/file0\x00')
iopl(0x6)
recvmsg$kcm(0xffffffffffffffff, &(0x7f0000000680)={&(0x7f0000000500)=@pppol2tp={0x0, 0x0, {0x0, <r3=>0xffffffffffffffff, {0x0, 0x0, @broadcast}}}, 0x80, &(0x7f0000000600)=[{&(0x7f0000000580)=""/80, 0x50}, {&(0x7f00000008c0)=""/4096, 0x1000}], 0x2, &(0x7f0000000640)=""/45, 0x2d, 0x206e}, 0x20)
r4 = syz_open_dev$sndpcmp(&(0x7f00000018c0)='/dev/snd/pcmC#D#p\x00', 0x5, 0x10a00)
ioctl$KVM_GET_DEVICE_ATTR(r4, 0x4018aee2, &(0x7f0000001940)={0x0, 0x100, 0x9, &(0x7f0000001900)})
recvfrom$ipx(r3, &(0x7f00000006c0)=""/52, 0x34, 0x100, &(0x7f0000000700)={0x4, 0x9a2, 0x4, "dc108d9d4391", 0x5}, 0x10)
renameat(r0, &(0x7f0000001980)='./file1\x00', r4, &(0x7f00000019c0)='./file0/file0\x00')

2018/03/31 01:44:58 executing program 5:
r0 = syz_open_dev$amidi(&(0x7f0000000400)='/dev/amidi#\x00', 0x401, 0x40)
accept4$llc(r0, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, &(0x7f0000000480)=0x10, 0x80800)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f0000005fd8)={'vcan0\x00', <r2=>0x0})
ioctl$KVM_SET_DEVICE_ATTR(r0, 0x4018aee1, &(0x7f0000000500)={0x0, 0x0, 0x5a, &(0x7f00000004c0)})
connect$can_bcm(r1, &(0x7f0000001ff0)={0x1d, r2}, 0x10)
ioctl$TIOCGSID(0xffffffffffffff9c, 0x5429, &(0x7f00000002c0)=<r3=>0x0)
waitid(0x0, r3, 0x0, 0x1000009, &(0x7f0000000300))
r4 = syz_open_dev$vcsn(&(0x7f0000000000)='/dev/vcs#\x00', 0xcd8, 0x101000)
getsockopt$SO_BINDTODEVICE(r4, 0x1, 0x19, &(0x7f0000000280), 0x10)
ioctl$EVIOCGABS0(r4, 0x80184540, &(0x7f0000000240)=""/64)
bind$vsock_dgram(r1, &(0x7f00000003c0)={0x28, 0x0, 0x2711, @reserved=0x1}, 0x10)
exit(0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000200)={r4, 0x0, 0x47, 0xde, &(0x7f0000000080)="3541471374d1e455c1f501bb3e7418a21f930d9fb82ac3588f54ad5a1a9e778bdf654fa39f19bcbc6ee4636a10d409c877cfe11ba160f73d4cde40422564bfdb62d8e5f8ba5097", &(0x7f0000000100)=""/222, 0x4, 0x3f}, 0x28)
ioctl$KVM_SET_TSS_ADDR(r4, 0xae47, 0xd000)
ioctl$KVM_CHECK_EXTENSION(r4, 0xae03, 0xffffffffffffffff)
openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000580)='/dev/qat_adf_ctl\x00', 0x4600, 0x0)
sendmsg$can_raw(r1, &(0x7f0000001fc8)={&(0x7f000000a000)={0x1d}, 0x10, &(0x7f0000000040)={&(0x7f000000a000)=@canfd={{0x1}, 0x0, 0x0, 0x0, 0x0, "0327e1b22b5fcef7739c699f5ff986ca08990039576a7d5cb2bdac3fa80acf584ecb5fee496e6866856b76b5f700000000000000004e2f9663a918fa1efd9b0b"}, 0x48}, 0x1}, 0x0)
ioctl$VHOST_GET_VRING_ENDIAN(r0, 0x4008af14, &(0x7f0000000540)={0x0, 0x9})

2018/03/31 01:44:58 executing program 6:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x200, 0x0)
socketpair$inet6_icmp_raw(0xa, 0x3, 0x3a, &(0x7f0000000680)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
setsockopt$sock_linger(r1, 0x1, 0xd, &(0x7f00000006c0)={0x400, 0x9}, 0x8)
perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
mmap(&(0x7f0000000000/0x9d7000)=nil, 0x9d7000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x7)
perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r4, &(0x7f0000e5b000)={0x2, 0x4e20, @multicast1=0xe0000001}, 0x10)
syz_open_dev$sg(&(0x7f0000000440)='/dev/sg#\x00', 0x0, 0x0)
connect$inet(r4, &(0x7f0000000100)={0x2, 0x4e20, @multicast2=0xe0000002}, 0x10)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000eb0fb8)={0x1, 0x3, &(0x7f00009ff000)=@framed={{0x18}, [], {0x95}}, &(0x7f00002bf000)='syzkaller\x00', 0x4, 0xb7, &(0x7f00006ab000)=""/183}, 0x48)
setsockopt$inet_tcp_int(r4, 0x6, 0x19, &(0x7f0000000240)=0x8, 0x4)
setsockopt$SO_BINDTODEVICE(r4, 0x1, 0x19, &(0x7f0000000000)="6970365f76746930000000000400", 0x10)
r6 = socket$kcm(0x29, 0x2, 0x0)
ioctl$sock_kcm_SIOCKCMATTACH(r6, 0x89e0, &(0x7f000031aff8)={r4, r5})
ioctl$sock_kcm_SIOCKCMCLONE(r6, 0x89e2, &(0x7f00000002c0)={<r7=>0xffffffffffffffff})
sendmsg$nl_xfrm(r7, &(0x7f0000000780)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000740)={&(0x7f0000000480)=@updpolicy={0xb8, 0x19, 0x0, 0x0, 0x0, {{@in=@loopback=0x7f000001, @in6=@mcast1={0xff, 0x1, [], 0x1}}}}, 0xffcb}, 0x1}, 0x0)
ioctl$sock_kcm_SIOCKCMUNATTACH(r7, 0x89e1, &(0x7f0000000040)={r4})
r8 = fcntl$getown(r3, 0x9)
r9 = accept4$inet(0xffffffffffffff9c, &(0x7f0000000700)={0x0, 0x0, @broadcast}, &(0x7f0000000740)=0x10, 0x80000)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r9, 0x84, 0x64, &(0x7f0000000300)=[@in6={0xa, 0x4e23, 0x0, @dev={0xfe, 0x80, [], 0xf}, 0x6}, @in={0x2, 0xff, @local={0xac, 0x14, 0x14, 0xaa}}, @in={0x2, 0x4e23, @multicast1=0xe0000001}, @in={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x10}}, @in={0x2, 0x4e20, @multicast1=0xe0000001}, @in={0x2, 0x4e24}, @in={0x2, 0x4e24, @broadcast=0xffffffff}, @in6={0xa, 0x4e21, 0xed34, @local={0xfe, 0x80, [], 0xaa}, 0x3}, @in={0x2, 0x4e23, @loopback=0x7f000001}], 0xfffffffffffffe00)
ptrace$setregset(0x4205, r8, 0x0, &(0x7f00000005c0)={&(0x7f0000000080)="449ed0dd6831a7fb44eca4221b1fb01abfec082aa7d0ee6f0ba9db0ece7da2bd3f", 0x21})
r10 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r11 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x1fffd, 0x0)
syz_open_dev$sndtimer(&(0x7f00000000c0)='/dev/snd/timer\x00', 0x0, 0x0)
read(r0, &(0x7f0000000140)=""/50, 0x32)
fcntl$dupfd(r10, 0x0, r11)

2018/03/31 01:44:58 executing program 7:
clone(0x200, &(0x7f0000000100)="abbcd764d5b6fd853189b4a102b248f0de7c0a5cc328ca13455598dc3d760fa566c64d7cb06a7e15cdb085165670f42b32809442c69a5942d03eb3fd42bf0ebb0272fc4beb43f269f26f57bbb67316f7c76c8d570edaa564720b4dfd8f32453fc2354ddc753155ac051e9e9657989f0bbf1c03e4cd9f735c6d1b95719dbbb1c04092f54f44256722d954f0000000000000000000000000000000", &(0x7f00000000c0), &(0x7f00008c8000), &(0x7f0000828ffe))
mknod(&(0x7f0000000000)='./file0\x00', 0x1000000000001040, 0x0)
execve(&(0x7f000007b000)='./file0\x00', &(0x7f0000000180), &(0x7f0000000040))
r0 = gettid()
r1 = syz_open_dev$mice(&(0x7f0000149000)='/dev/input/mice\x00', 0x0, 0x0)
execve(&(0x7f00000001c0)='./file0\x00', &(0x7f0000001540)=[&(0x7f0000000200)='user\x00', &(0x7f0000000240)='vmnet0\x00', &(0x7f0000000280)='user\x00', &(0x7f0000001480)='user\x00'], &(0x7f00000015c0)=[&(0x7f0000001580)='#keyring\x00'])
msgget$private(0x0, 0x400)
timer_create(0x0, &(0x7f0000044000), &(0x7f0000044000))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000))
uselib(&(0x7f00000002c0)='./file0/file0\x00')
mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0xffffffffffffffff, 0x32, 0xffffffffffffffff, 0x0)
getsockopt$inet_sctp6_SCTP_INITMSG(r1, 0x84, 0x2, &(0x7f0000000040), &(0x7f0000000080)=0x8)
tkill(r0, 0x1000000000015)

2018/03/31 01:44:58 executing program 4:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'vmac(aes)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f00000000c0)="010100010000000000000000409d9256", 0x10)
r1 = accept$alg(r0, 0x0, 0x0)
r2 = add_key$keyring(&(0x7f0000000080)='keyring\x00', &(0x7f0000000180)={0x73, 0x79, 0x7a, 0x1}, 0x0, 0x0, 0xfffffffffffffffc)
r3 = add_key(&(0x7f0000000380)='pkcs7_test\x00', &(0x7f00000003c0)={0x73, 0x79, 0x7a, 0x1}, &(0x7f0000000500)="82bf2e4f30f89cfd6c", 0x9, 0xfffffffffffffffe)
keyctl$instantiate(0xc, r2, &(0x7f00000001c0)="ab0658ba33ef864552b0b92cbf25bcc6784a388a35034f9404e08f9811ae7a1c2d3b8a8d90dfe7b9bc49aa17ee5092e52fcb8dd0ea4c89cf5ec119dcba71a2c14917496afd0f22a2d22662bcc1e759e625886d80782a9b0f6cca21f3e0a6f1360783e0672496481cbb6b327effc1ba176e80ab7e0a062c6e290529b722801052fde5760ffb7f4fb9b6f0cc911e70c048e7fd1fcd9c9023b63a6e87568084", 0x9e, r3)
write$vnet(r1, &(0x7f0000000100)={0x1, {&(0x7f0000000280)=""/231, 0xfffffffffffffe05, &(0x7f0000000400)=""/195, 0xfffffffffffffffc, 0x2}}, 0x68)

2018/03/31 01:44:58 executing program 2:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00002e9000)={<r0=>0xffffffffffffffff})
close(r0)
r1 = socket$packet(0x11, 0x3, 0x300)
r2 = socket$inet6_sctp(0xa, 0x3, 0x84)
setsockopt$packet_int(r1, 0x107, 0xf, &(0x7f0000000040)=0x3f, 0xfffffffffffffff5)
sendto$inet6(r2, &(0x7f0000000580), 0x0, 0x0, &(0x7f0000aaa000)={0xa, 0x0, 0x0, @loopback={0x0, 0x1}}, 0x1c)
recvmmsg(r0, &(0x7f0000003ec0)=[{{&(0x7f0000003c80)=@nfc, 0x80, &(0x7f0000000280)=[{&(0x7f0000000200)=""/119, 0x77}], 0x1, &(0x7f0000003e00)=""/158, 0x9e}}], 0x1, 0x0, 0x0)

2018/03/31 01:44:58 executing program 1:
r0 = creat(&(0x7f0000000b40)='./file0\x00', 0x20)
ioctl$DRM_IOCTL_AGP_ALLOC(0xffffffffffffff9c, 0xc0206434, &(0x7f0000000b80)={0x5, <r1=>0x0, 0x0, 0x81})
ioctl$DRM_IOCTL_SG_FREE(r0, 0x40106439, &(0x7f0000000bc0)={0x3, r1})
r2 = socket$inet(0x2, 0x7, 0x2000000008001)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f00000008c0)=@broute={'broute\x00', 0x20, 0x2, 0x3e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000280], 0x0, &(0x7f0000000240), &(0x7f0000000280)=ANY=[@ANYBLOB="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"]}, 0x460)
getsockopt$inet_sctp6_SCTP_CONTEXT(0xffffffffffffff9c, 0x84, 0x11, &(0x7f0000000000)={<r3=>0x0, 0x7}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r2, 0x84, 0xa, &(0x7f0000000140)={0x0, 0xa2b, 0x4, 0x7, 0x2, 0x20, 0x10000, 0x8a82, r3}, &(0x7f0000000180)=0x20)
setsockopt$inet_group_source_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000680)={0x1000, {{0x2, 0x4e23, @multicast1=0xe0000001}}, {{0x2, 0x4e22, @broadcast=0xffffffff}}}, 0x108)
ioctl$DRM_IOCTL_AGP_ENABLE(0xffffffffffffffff, 0x40086432, &(0x7f0000000100))
ioctl$TIOCGSOFTCAR(0xffffffffffffffff, 0x5419, &(0x7f00000007c0))
r4 = socket$inet6(0x10, 0x2, 0x0)
sendmsg(r4, &(0x7f0000000080)={&(0x7f0000000240)=@un=@abs={0x1, 0x0, 0x4e23}, 0x80, &(0x7f0000000040)=[{&(0x7f00000001c0)="5500000018007f04002d1cb2a4a280930a0600007da843cf19d0f869390009402f002100040000001900050000fc1700000000dc1338d54400009b84136ef75afb83de448daa7227c43ab8220000060c", 0x50}], 0x1, &(0x7f00000000c0)}, 0x0)
socket$bt_cmtp(0x1f, 0x3, 0x5)
fcntl$addseals(r4, 0x409, 0x7)
syz_open_dev$sndmidi(&(0x7f0000000c00)='/dev/snd/midiC#D#\x00', 0x100000001, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f0000001640)=@broute={'broute\x00', 0x20, 0x1, 0x1e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20001700], 0x0, &(0x7f0000001980), &(0x7f0000000c80)=ANY=[@ANYBLOB="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"]}, 0x309)
setsockopt$EBT_SO_SET_ENTRIES(0xffffffffffffffff, 0x0, 0x80, &(0x7f0000000840)=@nat={'nat\x00', 0x19, 0x1, 0x200, [0x20000940, 0x0, 0x0, 0x20000970, 0x200009a0], 0x0, &(0x7f0000000800), &(0x7f0000000940)=[{}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x14, 0x98ab, 'teql0\x00', 'ip6gretap0\x00', 'ip_vti0\x00', 'nr0\x00', @empty, [0x0, 0xff, 0x0, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2}, [0xff, 0x0, 0xff, 0x0, 0x0, 0xff], 0x100, 0x138, 0x170, [@time={'time\x00', 0x18, {{0x7, 0x3, 0x13782, 0x14fdf, 0x80, 0x4, 0x1}}}, @nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x2}}}]}, [@snat={'snat\x00', 0x10, {{@random="07901c8f0140"}}}]}, @common=@dnat={'dnat\x00', 0x10, {{@local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}, 0x10}}}}]}]}, 0x278)
syz_open_dev$dmmidi(&(0x7f0000000c40)='/dev/dmmidi#\x00', 0xae6d, 0x200)

2018/03/31 01:44:58 executing program 0:
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$inet6_int(r0, 0x29, 0xc8, &(0x7f00008d6000), 0x4)
r1 = socket$inet6(0xa, 0x2, 0x0)
perf_event_open(&(0x7f000025c000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f000031f000)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
unshare(0x20000000)
clone(0x0, &(0x7f000052cf69), &(0x7f0000850ffc), &(0x7f0000e9b000), &(0x7f0000000000))
wait4(0x0, 0x0, 0x0, &(0x7f0000000080))
eventfd2(0x81, 0x80000)
syz_genetlink_get_family_id$ipvs(&(0x7f0000000340)='IPVS\x00')
dup3(0xffffffffffffffff, r0, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f0000000cc0)='/dev/snd/midiC#D#\x00', 0x2, 0x4000)
syz_open_dev$sndctrl(&(0x7f0000000300)='/dev/snd/controlC#\x00', 0x4d4, 0x64441)
recvfrom$unix(0xffffffffffffffff, &(0x7f00000005c0)=""/80, 0x50, 0x40000020, &(0x7f0000000640)=@abs={0x1, 0x0, 0x4e23}, 0x6e)
getsockopt$inet_IP_IPSEC_POLICY(r2, 0x0, 0x10, &(0x7f0000000180)={{{@in=@multicast2, @in6=@local}}, {{@in=@dev}, 0x0, @in6=@mcast1}}, &(0x7f0000000280)=0xe8)
close(r1)
getgroups(0x1, &(0x7f00000002c0)=[0x0])
syz_fuse_mount(&(0x7f0000000140)='./file0\x00', 0xa001, 0x0, 0x0, 0x7, 0x0)
io_submit(0x0, 0x0, &(0x7f0000000d40))
perf_event_open(&(0x7f0000000000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x31, 0x3f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd8e6, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x1002}, 0x0, 0x1, 0xffffffffffffffff, 0x8)

[  191.750917] FAULT_INJECTION: forcing a failure.
[  191.750917] name failslab, interval 1, probability 0, space 0, times 0
[  191.762207] CPU: 0 PID: 13765 Comm: syz-executor3 Not tainted 4.16.0-rc7+ #372
[  191.769570] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  191.778914] Call Trace:
[  191.781504]  dump_stack+0x194/0x24d
[  191.785135]  ? arch_local_irq_restore+0x53/0x53
[  191.789806]  ? unwind_get_return_address+0x61/0xa0
[  191.794746]  should_fail+0x8c0/0xa40
[  191.798456]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  191.803560]  ? save_stack+0x43/0xd0
[  191.807189]  ? kasan_kmalloc+0xad/0xe0
[  191.811084]  ? cgroup_mkdir+0x56f/0xfc0
[  191.815058]  ? kernfs_iop_mkdir+0x153/0x1e0
[  191.819374]  ? vfs_mkdir+0x390/0x600
[  191.823085]  ? SyS_mkdirat+0x22b/0x2b0
[  191.826968]  ? do_syscall_64+0x281/0x940
[  191.831035]  ? entry_SYSCALL_64_after_hwframe+0x42/0xb7
[  191.836400]  ? find_held_lock+0x35/0x1d0
[  191.840466]  ? __lock_is_held+0xb6/0x140
[  191.844536]  ? check_same_owner+0x320/0x320
2018/03/31 01:44:58 executing program 1:
r0 = creat(&(0x7f0000000b40)='./file0\x00', 0x20)
ioctl$DRM_IOCTL_AGP_ALLOC(0xffffffffffffff9c, 0xc0206434, &(0x7f0000000b80)={0x5, <r1=>0x0, 0x0, 0x81})
ioctl$DRM_IOCTL_SG_FREE(r0, 0x40106439, &(0x7f0000000bc0)={0x3, r1})
r2 = socket$inet(0x2, 0x6, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f00000008c0)=@broute={'broute\x00', 0x20, 0x2, 0x3e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000280], 0x0, &(0x7f0000000240), &(0x7f0000000c80)=ANY=[@ANYBLOB="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"]}, 0x498)
getsockopt$inet_sctp6_SCTP_CONTEXT(0xffffffffffffff9c, 0x84, 0x11, &(0x7f0000000000)={<r3=>0x0, 0x7}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r2, 0x84, 0xa, &(0x7f0000000140)={0x0, 0xa2b, 0x4, 0x7, 0x2, 0x20, 0x10000, 0x8a82, r3}, &(0x7f0000000180)=0x20)
setsockopt$inet_group_source_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000680)={0x1000, {{0x2, 0x4e23, @multicast1=0xe0000001}}, {{0x2, 0x4e22, @broadcast=0xffffffff}}}, 0x108)
ioctl$DRM_IOCTL_AGP_ENABLE(0xffffffffffffffff, 0x40086432, &(0x7f0000000100))
r4 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/vs/sync_version\x00', 0x2, 0x0)
ioctl$TIOCGSOFTCAR(r4, 0x5419, &(0x7f00000007c0))
r5 = socket$inet6(0x10, 0x2, 0x0)
sendmsg(r5, &(0x7f0000000080)={&(0x7f0000000240)=@un=@abs={0x1, 0x0, 0x4e23}, 0x80, &(0x7f0000000040)=[{&(0x7f00000001c0)="5500000018007f04002d1cb2a4a280930a0600007da843cf19d0f869390009402f002100040000001900050000fc1700000000dc1338d54400009b84136ef75afb83de448daa7227c43ab8220000060c", 0x50}], 0x1, &(0x7f00000000c0)}, 0x0)
socket$bt_cmtp(0x1f, 0x3, 0x5)
fcntl$addseals(r5, 0x409, 0x7)
r6 = getpid()
prctl$setptracer(0x59616d61, r6)
syz_open_dev$sndmidi(&(0x7f0000000c00)='/dev/snd/midiC#D#\x00', 0x100000001, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f0000001640)=@broute={'broute\x00', 0x20, 0x1, 0x1e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20001700], 0x0, &(0x7f0000001980), &(0x7f0000001700)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1, [{{{0x13, 0x0, 0x0, 'vcan0\x00', 'ifb0\x00', 'syzkaller0\x00', 'vcan0\x00', @remote={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xbb}, [], @link_local={0x1, 0x80, 0xc2}, [], 0x70, 0xf8, 0x128}, [@common=@dnat={'dnat\x00', 0x10, {{@dev={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa]}, 0xffffffffffffffff}}}, @common=@IDLETIMER={'IDLETIMER\x00', 0x28, {{0x4, 'syz0\x00'}}}]}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8}}]}, {0x0, '\x00', 0x1, 0xffffbffffffffffe}]}, 0x260)
setsockopt$EBT_SO_SET_ENTRIES(0xffffffffffffffff, 0x0, 0x80, &(0x7f0000000840)=@nat={'nat\x00', 0x19, 0x1, 0x200, [0x20000940, 0x0, 0x0, 0x20000970, 0x200009a0], 0x0, &(0x7f0000000800), &(0x7f0000000940)=ANY=[@ANYBLOB="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"]}, 0x278)
syz_open_dev$dmmidi(&(0x7f0000000c40)='/dev/dmmidi#\x00', 0xae6d, 0x200)

[  191.848868]  ? rcu_note_context_switch+0x710/0x710
[  191.853806]  ? __lock_is_held+0xb6/0x140
[  191.857872]  should_failslab+0xec/0x120
[  191.861841]  kmem_cache_alloc_trace+0x4b/0x740
[  191.866422]  ? rcu_read_lock_sched_held+0x108/0x120
[  191.871435]  ? kmem_cache_alloc_trace+0x459/0x740
[  191.876280]  cfq_cpd_alloc+0x54/0x90
[  191.879993]  blkcg_css_alloc+0x165/0x6b0
[  191.884052]  ? cfqg_set_weight_device+0x40/0x40
[  191.888716]  ? blkcg_deactivate_policy+0x430/0x430
[  191.893647]  ? __lock_is_held+0xb6/0x140
[  191.897721]  cgroup_apply_control_enable+0x44d/0xbc0
[  191.902824]  ? cgroup_propagate_control+0x570/0x570
[  191.907831]  ? css_populate_dir+0x289/0x420
[  191.912137]  cgroup_mkdir+0x56f/0xfc0
[  191.915915]  ? __lock_is_held+0xb6/0x140
[  191.919958]  ? cgroup_destroy_locked+0x750/0x750
[  191.924708]  ? rcu_read_lock_sched_held+0x108/0x120
[  191.929703]  ? kmem_cache_free+0x258/0x2a0
[  191.933915]  ? set_nlink+0xc1/0x160
[  191.937518]  ? debug_lockdep_rcu_enabled+0x77/0x90
[  191.942419]  ? generic_permission+0x105/0x3c0
[  191.946891]  ? cgroup_destroy_locked+0x750/0x750
[  191.951623]  kernfs_iop_mkdir+0x153/0x1e0
[  191.955746]  vfs_mkdir+0x390/0x600
[  191.959412]  SyS_mkdirat+0x22b/0x2b0
[  191.963103]  ? SyS_mknod+0x480/0x480
[  191.966790]  ? trace_hardirqs_on+0xd/0x10
[  191.970916]  ? do_syscall_64+0xb7/0x940
[  191.974865]  ? SyS_mknod+0x480/0x480
[  191.978556]  do_syscall_64+0x281/0x940
[  191.982420]  ? vmalloc_sync_all+0x30/0x30
[  191.986547]  ? _raw_spin_unlock_irq+0x27/0x70
[  191.991023]  ? finish_task_switch+0x1c1/0x7e0
[  191.995497]  ? syscall_return_slowpath+0x550/0x550
[  192.000797]  ? syscall_return_slowpath+0x2ac/0x550
[  192.005703]  ? prepare_exit_to_usermode+0x350/0x350
[  192.010698]  ? entry_SYSCALL_64_after_hwframe+0x52/0xb7
[  192.016042]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  192.020863]  entry_SYSCALL_64_after_hwframe+0x42/0xb7
[  192.026033] RIP: 0033:0x454e79
[  192.029202] RSP: 002b:00007fa6ef25cc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
[  192.036883] RAX: ffffffffffffffda RBX: 00007fa6ef25d6d4 RCX: 0000000000454e79
[  192.044127] RDX: 0000000000000020 RSI: 0000000020000280 RDI: 0000000000000013
[  192.051371] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  192.058614] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000014
[  192.065858] R13: 00000000000003eb R14: 00000000006f7ea8 R15: 000000000000002b
[  192.079094] kernel msg: ebtables bug: please report to author: Wrong len argument
[  192.097189] kernel msg: ebtables bug: please report to author: Wrong len argument
2018/03/31 01:44:59 executing program 0:
r0 = syz_open_procfs(0x0, &(0x7f0000bb7000)='mountstats\x00')
ioctl$KDDISABIO(r0, 0x4b37)
sendfile(r0, r0, &(0x7f00000000c0)=0x429, 0x7ffd)
clock_gettime(0x0, &(0x7f0000000240)={<r1=>0x0, <r2=>0x0})
utimensat(r0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000280)={{}, {r1, r2/1000+10000}}, 0x100)
ioctl$EVIOCGNAME(r0, 0x80404506, &(0x7f0000000100)=""/228)
linkat(r0, &(0x7f00000003c0)='./file0\x00', r0, &(0x7f0000000400)='./file0\x00', 0x1000)
setsockopt$inet6_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x2, 0x0, 0x2, 0x3, 0x3}, 0x14)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000040)=<r3=>0x0)
fsetxattr(r0, &(0x7f0000000440)=@random={'os2.', '\x00'}, &(0x7f0000000480)='\x00', 0x1, 0x1)
sched_getaffinity(r3, 0x8, &(0x7f0000000080))
getsockopt$inet6_int(r0, 0x29, 0x19, &(0x7f00000002c0), &(0x7f0000000300)=0x4)
getsockopt$inet_sctp_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000340), &(0x7f0000000380)=0xb)

2018/03/31 01:44:59 executing program 2:
r0 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhost-net\x00', 0x2, 0x0)
ioctl$int_in(r0, 0x40000000af01, &(0x7f0000c97ff8))
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000001140)='/dev/audio\x00', 0x0, 0x0)
close(r1)
socket$packet(0x11, 0x3, 0x300)
getsockopt$inet_sctp6_SCTP_PEER_AUTH_CHUNKS(r1, 0x84, 0x1a, &(0x7f0000001240)={<r2=>0x0, 0x68, "464dd564a20255ce75961651dbc76ff641adfd2ac34f394bfee914a0252bf1d7df6b758c8eae7be873040f95105b41a4c37c3ecd2e8ecf3540dcd0c99a573a051c067921b7b2e02e9044b554dc1651f246e8e04d59de08f5d781cfbde078edff7b1c06c8530764d4"}, &(0x7f0000000080)=0x70)
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDR_INFO(r1, 0x84, 0xf, &(0x7f00000014c0)={r2, @in={{0x2, 0x4e20, @multicast2=0xe0000002}}, 0x1f, 0xffffffffffffffff, 0x8, 0x4, 0x800}, &(0x7f00000012c0)=0x98)
ioctl$VHOST_SET_FEATURES(r0, 0x4008af00, &(0x7f0000000000)=0x200000000)
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000001480)={0x0, 0x0, &(0x7f0000001300)=""/81, &(0x7f0000001380)=""/21, &(0x7f00000013c0)=""/143})
pread64(r0, &(0x7f00000000c0)=""/4096, 0x1000, 0x0)
ioctl$VHOST_NET_SET_BACKEND(r0, 0x4008af30, &(0x7f0000d7c000)={0x0, r1})
write$vnet(r0, &(0x7f00000010c0)={0x1, {&(0x7f0000001140), 0x0, &(0x7f0000001180)=""/162, 0x0, 0x2}}, 0x68)

2018/03/31 01:44:59 executing program 3 (fault-call:3 fault-nth:44):
mkdir(&(0x7f00000001c0)='./file0\x00', 0x0)
mount(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000380)='./file0\x00', &(0x7f0000000300)='cgroup2\x00', 0x0, 0x0)
r0 = open$dir(&(0x7f000001bff4)='./file0\x00', 0x0, 0x0)
mkdirat(r0, &(0x7f0000000280)='./file0\x00', 0x20)
getdents64(r0, &(0x7f00000007c0)=""/250, 0x1015a)
fadvise64(r0, 0x0, 0x41, 0x3)
unlinkat(r0, &(0x7f0000000080)='./file0\x00', 0x200)
r1 = open$dir(&(0x7f0000000180)='./file0\x00', 0x105600, 0x81)
fchdir(r0)
link(&(0x7f0000000740)='./file1\x00', &(0x7f0000000780)='./file0/file0\x00')
renameat2(r1, &(0x7f0000000200)='./file1\x00', r0, &(0x7f0000000240)='./file0\x00', 0xfd1092750066ec78)
pivot_root(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='./file0\x00')
r2 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000100)='/dev/rfkill\x00', 0x2c42, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_LIST(r2, 0xc0505510, &(0x7f0000000480)={0x1000, 0x1, 0x474, 0x1, &(0x7f0000000140)=[{}]})
unlink(&(0x7f00000000c0)='./file0\x00')
symlinkat(&(0x7f0000000400)='./file0/file0\x00', r0, &(0x7f0000000440)='./file0/file0\x00')
iopl(0x6)
recvmsg$kcm(0xffffffffffffffff, &(0x7f0000000680)={&(0x7f0000000500)=@pppol2tp={0x0, 0x0, {0x0, <r3=>0xffffffffffffffff, {0x0, 0x0, @broadcast}}}, 0x80, &(0x7f0000000600)=[{&(0x7f0000000580)=""/80, 0x50}, {&(0x7f00000008c0)=""/4096, 0x1000}], 0x2, &(0x7f0000000640)=""/45, 0x2d, 0x206e}, 0x20)
r4 = syz_open_dev$sndpcmp(&(0x7f00000018c0)='/dev/snd/pcmC#D#p\x00', 0x5, 0x10a00)
ioctl$KVM_GET_DEVICE_ATTR(r4, 0x4018aee2, &(0x7f0000001940)={0x0, 0x100, 0x9, &(0x7f0000001900)})
recvfrom$ipx(r3, &(0x7f00000006c0)=""/52, 0x34, 0x100, &(0x7f0000000700)={0x4, 0x9a2, 0x4, "dc108d9d4391", 0x5}, 0x10)
renameat(r0, &(0x7f0000001980)='./file1\x00', r4, &(0x7f00000019c0)='./file0/file0\x00')

2018/03/31 01:44:59 executing program 4:
r0 = syz_open_dev$amidi(&(0x7f00000001c0)='/dev/amidi#\x00', 0x100000001, 0x0)
getsockopt$IP6T_SO_GET_ENTRIES(r0, 0x29, 0x41, &(0x7f0000000640)={'mangle\x00', 0x9b, "8dff36e38b6b32b5300347588afbf031451ad545552977967d08ce3307142426b81688b40a1c25e761df38544333f698ea6f7b16c3e18def5f3a0454d16a5677987c23b461427dca9048ca1d241c7fff05258f7219176a14e2e45c22012e45dea8a4b1f3784eae3534285b72a19537e3caf92387fb3855924c545237cb6e2ee35fb2c869ae38c732efe00bdfa445b9fbb2e753615d65f0c5940a8a"}, &(0x7f0000000200)=0xbf)
r1 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000500)='/dev/vcs\x00', 0x2, 0x0)
ioctl$VT_OPENQRY(r1, 0x5600, &(0x7f0000000540))
r2 = perf_event_open(&(0x7f0000271000)={0x2, 0x70, 0x49, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000600)='/dev/loop-control\x00', 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0)
ioctl$LOOP_CTL_GET_FREE(r3, 0x4c82)
ioctl$LOOP_CTL_ADD(r3, 0x4c80, 0x0)
r4 = dup3(0xffffffffffffffff, r3, 0x0)
getsockopt$inet_mtu(0xffffffffffffffff, 0x0, 0xa, &(0x7f0000000240), &(0x7f00000004c0)=0x4)
r5 = openat$cuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/cuse\x00', 0x101000, 0x0)
r6 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.cpu\x00', 0x200002, 0x0)
fchdir(r6)
mkdir(&(0x7f00000005c0)='./file0\x00', 0x2)
rmdir(&(0x7f0000000080)='./file0\x00')
getsockopt$inet_sctp6_SCTP_PEER_AUTH_CHUNKS(r1, 0x84, 0x1a, &(0x7f00000002c0)={<r7=>0x0, 0xf8, "686a37c7e018dc0c92b8d82f108a27e7f828bcb11b07437bdc12e4034c701e5b25decfde33389c2dc3f323541d5fae9fa27b472813f1f7994db18b60830951686689bbc250098187a85d77942e7a9dcea1fba9869abd4021b59f1d06b7a05f72ab078a0322e8ba15f17a00690131afb5826ef9727f7ed42e521b8bf44c4242a3e53882b216919c53c692d9620f909ae5e29cce4ba0b12d5b1f05ee5b90c3541665d752ee06b105170ad030f41cd4abd3ac127626ff4e0624c686d8ac53420738bbb92e7acaa40b2386a04990f4f962402a3850b93a9f89dc5e788e8eafba2c0ad34d7e6e700912580a16f9ff881d4127c660b3b2c93417b2"}, &(0x7f0000000180)=0x100)
setsockopt$inet_sctp_SCTP_AUTH_KEY(r1, 0x84, 0x17, &(0x7f00000003c0)=ANY=[@ANYRES32=r7, @ANYBLOB="00004a001996ed12c3cbe71bb0a8065173426b88d318250866239cbe421b70cd03eb44a0000018e1e49318b1b7b73d9348b24a597f829ceee8cb4ae07b9f991c49bc8f8562cd4c9f098569fb2ea6"], 0x2)
r8 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
socket$inet(0x2, 0x80004, 0x200)
ioctl$KVM_SET_IRQCHIP(r8, 0x8208ae63, &(0x7f0000002ff0)=@pic={0x1, 0x6, 0x10000, 0x1, 0x9, 0x6, 0x8, 0xfffffffffffffff9, 0x7fffffff, 0x531, 0x5, 0x7, 0x2, 0x4, 0x7, 0x100000000})
ioctl$KVM_IRQ_LINE(r8, 0x4008ae61, &(0x7f0000000280)={0x0, 0x3})
ioctl$DRM_IOCTL_RM_MAP(r5, 0x4028641b, &(0x7f0000000140)={&(0x7f0000ffb000/0x3000)=nil, 0x46a9, 0x4, 0x4, &(0x7f0000ffc000/0x3000)=nil, 0x1000})
r9 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup\x00', 0x200002, 0x0)
fchdir(r0)
finit_module(r9, &(0x7f0000000480)='%$\x00', 0x3)
ioctl$KVM_ASSIGN_DEV_IRQ(r4, 0x4040ae70, &(0x7f0000000100)={0xffffffff00000000, 0x0, 0x5, 0x200})
creat(&(0x7f0000000080)='./file0\x00', 0x0)

2018/03/31 01:44:59 executing program 1:
r0 = creat(&(0x7f0000000b40)='./file0\x00', 0x20)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000c80)={0x10201, 0x3, 0xf001, 0x2000, &(0x7f0000ffb000/0x2000)=nil})
ioctl$DRM_IOCTL_AGP_ALLOC(0xffffffffffffff9c, 0xc0206434, &(0x7f0000000b80)={0x5, <r1=>0x0, 0x0, 0x81})
ioctl$DRM_IOCTL_SG_FREE(r0, 0x40106439, &(0x7f0000000bc0)={0x3, r1})
r2 = socket$inet(0x2, 0x6, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f00000008c0)=@broute={'broute\x00', 0x20, 0x2, 0x3e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000280], 0x0, &(0x7f0000000240), &(0x7f0000000280)=ANY=[@ANYBLOB="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"]}, 0x460)
getsockopt$inet_sctp6_SCTP_CONTEXT(0xffffffffffffff9c, 0x84, 0x11, &(0x7f0000000000)={<r3=>0x0, 0x7}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r2, 0x84, 0xa, &(0x7f0000000140)={0x0, 0xa2b, 0x4, 0x7, 0x2, 0x20, 0x10000, 0x8a82, r3}, &(0x7f0000000180)=0x20)
setsockopt$inet_group_source_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000680)={0x1000, {{0x2, 0x4e23, @multicast1=0xe0000001}}, {{0x2, 0x4e22, @broadcast=0xffffffff}}}, 0x108)
ioctl$DRM_IOCTL_AGP_ENABLE(0xffffffffffffffff, 0x40086432, &(0x7f0000000100))
r4 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000dc0)="2f70726f632f7379732f6e65742f691f857dc3732f6c626c6372a7d288905b7dcca4696f6e00f8a48f005f523a1f8e15d60f36f7e7736d1eb702cf7d7844540d09930b234cd366182c9d0392b39729a7db71bc9e803a5e4e3a41232c27f75ad102558beb2e3844d6af1919506a81bdf25a4036bd6ca3f3e49c8686a5c65b8d99c74db2068f25b86e14b7af9947e8cc9234c15f7062307b1c41a28477ba627b34bbefcfaa0a94e55744248f0e7d7e7725551921c9ebe3e5720ce147d09c1d94c675144597f4a5deb37736256c94cfc00187d6d82ef6735cd672541cb21634d2c037f90ca5ccfb694413e5ea83461b365a5a3075a738cc793549ec1d41bff2791a375eb5604537bc9966b64c996c86d45cb4afbbd6b2250c54c78ed2884c51ab3f1654a9f3d53b12f94b6a85bd96f38512d9148f6fedcdacdbe173c8ed558e464ffa9ce9160e10bc5326e3096687b36d2860bc539fb0fa38cfcd", 0x2, 0x0)
ioctl$TIOCGSOFTCAR(r4, 0x5419, &(0x7f00000007c0))
r5 = socket$inet6(0x10, 0x2, 0x0)
sendmsg(r5, &(0x7f0000000080)={&(0x7f0000000240)=@un=@abs={0x1, 0x0, 0x4e23}, 0x80, &(0x7f0000000040)=[{&(0x7f00000001c0)="5500000018007f04002d1cb2a4a280930a0600007da843cf19d0f869390009402f002100040000001900050000fc1700000000dc1338d54400009b84136ef75afb83de448daa7227c43ab8220000060c", 0x50}], 0x1, &(0x7f00000000c0)}, 0x0)
r6 = socket$bt_cmtp(0x1f, 0x3, 0x5)
fcntl$addseals(r5, 0x409, 0x7)
fcntl$dupfd(r5, 0x406, r6)
syz_open_dev$sndmidi(&(0x7f0000000c00)='/dev/snd/midiC#D#\x00', 0x100000001, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f0000001640)=@broute={'broute\x00', 0x20, 0x1, 0x1e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20001700], 0x0, &(0x7f0000001980), &(0x7f0000001700)=ANY=[@ANYBLOB="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"]}, 0x260)
setsockopt$EBT_SO_SET_ENTRIES(0xffffffffffffffff, 0x0, 0x80, &(0x7f0000000840)=@nat={'nat\x00', 0x19, 0x1, 0x200, [0x20000940, 0x0, 0x0, 0x20000970, 0x200009a0], 0x0, &(0x7f0000000800), &(0x7f0000000940)=[{}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x14, 0x98ab, 'teql0\x00', 'ip6gretap0\x00', 'ip_vti0\x00', 'nr0\x00', @empty, [0x0, 0xff, 0x0, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2}, [0xff, 0x0, 0xff, 0x0, 0x0, 0xff], 0x100, 0x138, 0x170, [@time={'time\x00', 0x18, {{0x7, 0x3, 0x13782, 0x14fdf, 0x80, 0x4, 0x1}}}, @nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x2}}}]}, [@snat={'snat\x00', 0x10, {{@random="07901c8f0140"}}}]}, @common=@dnat={'dnat\x00', 0x10, {{@local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}, 0x10}}}}]}]}, 0x278)
r7 = getpgrp(0x0)
syz_open_procfs(r7, &(0x7f00000000c0)='net/rt_cache\x00')
syz_open_dev$dmmidi(&(0x7f0000000c40)='/dev/dmmidi#\x00', 0xae6d, 0x200)

2018/03/31 01:44:59 executing program 5:
r0 = syz_open_dev$amidi(&(0x7f0000000400)='/dev/amidi#\x00', 0x401, 0x40)
accept4$llc(r0, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, &(0x7f0000000480)=0x10, 0x80800)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f0000005fd8)={'vcan0\x00', <r2=>0x0})
ioctl$KVM_SET_DEVICE_ATTR(r0, 0x4018aee1, &(0x7f0000000500)={0x0, 0x100000001, 0x0, &(0x7f00000004c0)})
connect$can_bcm(r1, &(0x7f0000001ff0)={0x1d, r2}, 0x10)
ioctl$TIOCGSID(0xffffffffffffff9c, 0x5429, &(0x7f00000002c0)=<r3=>0x0)
waitid(0x0, r3, 0x0, 0x1000009, &(0x7f0000000300))
r4 = syz_open_dev$vcsn(&(0x7f0000000000)='/dev/vcs#\x00', 0xcd8, 0x101000)
getsockopt$SO_BINDTODEVICE(r4, 0x1, 0x19, &(0x7f0000000280), 0x10)
ioctl$EVIOCGABS0(r4, 0x80184540, &(0x7f0000000240)=""/64)
bind$vsock_dgram(r1, &(0x7f00000003c0)={0x28, 0x0, 0x2711, @reserved=0x1}, 0x10)
exit(0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000200)={r4, 0x0, 0x47, 0xde, &(0x7f0000000080)="3541471374d1e455c1f501bb3e7418a21f930d9fb82ac3588f54ad5a1a9e778bdf654fa39f19bcbc6ee4636a10d409c877cfe11ba160f73d4cde40422564bfdb62d8e5f8ba5097", &(0x7f0000000100)=""/222, 0x4, 0x3f}, 0x28)
ioctl$KVM_SET_TSS_ADDR(r4, 0xae47, 0xd000)
ioctl$KVM_CHECK_EXTENSION(r4, 0xae03, 0xffffffffffffffff)
openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000580)='/dev/qat_adf_ctl\x00', 0x4600, 0x0)
sendmsg$can_raw(r1, &(0x7f0000001fc8)={&(0x7f000000a000)={0x1d}, 0x10, &(0x7f0000000040)={&(0x7f000000a000)=@canfd={{0x1}, 0x0, 0x0, 0x0, 0x0, "0327e1b22b5fcef7739c699f5ff986ca08990039576a7d5cb2bdac3fa80acf584ecb5fee496e6866856b76b5f700000000000000004e2f9663a918fa1efd9b0b"}, 0x48}, 0x1}, 0x0)
ioctl$VHOST_GET_VRING_ENDIAN(r0, 0x4008af14, &(0x7f0000000540)={0x0, 0x9})

2018/03/31 01:44:59 executing program 7:
clone(0x200, &(0x7f0000000100)="abbcd764d5b6fd853189b4a102b248f0de7c0a5cc328ca13455598dc3d760fa566c64d7cb06a7e15cdb085165670f42b32809442c69a5942d03eb3fd42bf0ebb0272fc4beb43f269f26f57bbb67316f7c76c8d570edaa564720b4dfd8f32453fc2354ddc753155ac051e9e9657989f0bbf1c03e4cd9f735c6d1b95719dbbb1c04092f54f44256722d954f0000000000000000000000000000000", &(0x7f00000000c0), &(0x7f00008c8000), &(0x7f0000828ffe))
mknod(&(0x7f0000000000)='./file0\x00', 0x1000000000001040, 0x0)
execve(&(0x7f000007b000)='./file0\x00', &(0x7f0000000180), &(0x7f0000000040))
r0 = gettid()
r1 = syz_open_dev$mice(&(0x7f0000149000)='/dev/input/mice\x00', 0x0, 0x0)
execve(&(0x7f00000001c0)='./file0\x00', &(0x7f0000001540)=[&(0x7f0000000200)='user\x00', &(0x7f0000000240)='vmnet0\x00', &(0x7f0000000280)='user\x00', &(0x7f0000001480)='user\x00'], &(0x7f00000015c0)=[&(0x7f0000001580)='#keyring\x00'])
msgget$private(0x0, 0x400)
timer_create(0x0, &(0x7f0000044000), &(0x7f0000044000))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000))
uselib(&(0x7f00000002c0)='./file0/file0\x00')
mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0xffffffffffffffff, 0x32, 0xffffffffffffffff, 0x0)
getsockopt$inet_sctp6_SCTP_INITMSG(r1, 0x84, 0x2, &(0x7f0000000040), &(0x7f0000000080)=0x8)
tkill(r0, 0x1000000000015)

2018/03/31 01:44:59 executing program 6:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x200, 0x0)
socketpair$inet6_icmp_raw(0xa, 0x3, 0x3a, &(0x7f0000000680)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
setsockopt$sock_linger(r1, 0x1, 0xd, &(0x7f00000006c0)={0x400, 0x9}, 0x8)
perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
mmap(&(0x7f0000000000/0x9d7000)=nil, 0x9d7000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x7)
perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r4, &(0x7f0000e5b000)={0x2, 0x4e20, @multicast1=0xe0000001}, 0x10)
syz_open_dev$sg(&(0x7f0000000440)='/dev/sg#\x00', 0x0, 0x0)
connect$inet(r4, &(0x7f0000000100)={0x2, 0x4e20, @multicast2=0xe0000002}, 0x10)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000eb0fb8)={0x1, 0x3, &(0x7f00009ff000)=@framed={{0x18}, [], {0x95}}, &(0x7f00002bf000)='syzkaller\x00', 0x4, 0xb7, &(0x7f00006ab000)=""/183}, 0x48)
setsockopt$inet_tcp_int(r4, 0x6, 0x19, &(0x7f0000000240)=0x8, 0x4)
setsockopt$SO_BINDTODEVICE(r4, 0x1, 0x19, &(0x7f0000000000)="6970365f76746930000000000400", 0x10)
r6 = socket$kcm(0x29, 0x2, 0x0)
ioctl$sock_kcm_SIOCKCMATTACH(r6, 0x89e0, &(0x7f000031aff8)={r4, r5})
ioctl$sock_kcm_SIOCKCMCLONE(r6, 0x89e2, &(0x7f00000002c0)={<r7=>0xffffffffffffffff})
sendmsg$nl_xfrm(r7, &(0x7f0000000780)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000740)={&(0x7f0000000480)=@updpolicy={0xb8, 0x19, 0x0, 0x0, 0x0, {{@in=@loopback=0x7f000001, @in6=@mcast1={0xff, 0x1, [], 0x1}}}}, 0xffcb}, 0x1}, 0x0)
ioctl$sock_kcm_SIOCKCMUNATTACH(r7, 0x89e1, &(0x7f0000000040)={r4})
r8 = fcntl$getown(r3, 0x9)
r9 = accept4$inet(0xffffffffffffff9c, &(0x7f0000000700)={0x0, 0x0, @broadcast}, &(0x7f0000000740)=0x10, 0x80000)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r9, 0x84, 0x64, &(0x7f0000000300)=[@in6={0xa, 0x4e23, 0x0, @dev={0xfe, 0x80, [], 0xf}, 0x6}, @in={0x2, 0xff, @local={0xac, 0x14, 0x14, 0xaa}}, @in={0x2, 0x4e23, @multicast1=0xe0000001}, @in={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x10}}, @in={0x2, 0x4e20, @multicast1=0xe0000001}, @in={0x2, 0x4e24}, @in={0x2, 0x4e24, @broadcast=0xffffffff}, @in6={0xa, 0x4e21, 0xed34, @local={0xfe, 0x80, [], 0xaa}, 0x3}, @in={0x2, 0x4e23, @loopback=0x7f000001}], 0xfffffffffffffe00)
ptrace$setregset(0x4205, r8, 0x0, &(0x7f00000005c0)={&(0x7f0000000080)="449ed0dd6831a7fb44eca4221b1fb01abfec082aa7d0ee6f0ba9db0ece7da2bd3f", 0x21})
r10 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r11 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x1fffd, 0x0)
syz_open_dev$sndtimer(&(0x7f00000000c0)='/dev/snd/timer\x00', 0x0, 0x0)
read(r0, &(0x7f0000000140)=""/50, 0x32)
fcntl$dupfd(r10, 0x0, r11)

[  192.675922] FAULT_INJECTION: forcing a failure.
[  192.675922] name failslab, interval 1, probability 0, space 0, times 0
[  192.687320] CPU: 0 PID: 13794 Comm: syz-executor3 Not tainted 4.16.0-rc7+ #372
[  192.694681] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  192.704034] Call Trace:
[  192.706629]  dump_stack+0x194/0x24d
[  192.710265]  ? arch_local_irq_restore+0x53/0x53
[  192.714935]  ? __save_stack_trace+0x7e/0xd0
[  192.719260]  should_fail+0x8c0/0xa40
[  192.722976]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  192.728077]  ? kasan_kmalloc+0xad/0xe0
[  192.731960]  ? kmem_cache_alloc_trace+0x136/0x740
[  192.736221] kernel msg: ebtables bug: please report to author: EBT_ENTRY_OR_ENTRIES shouldn't be set in distinguisher
[  192.736797]  ? cfq_cpd_alloc+0x54/0x90
[  192.736827]  ? blkcg_css_alloc+0x165/0x6b0
[  192.736845]  ? cgroup_apply_control_enable+0x44d/0xbc0
[  192.761453]  ? SyS_mkdirat+0x22b/0x2b0
[  192.761463]  ? do_syscall_64+0x281/0x940
[  192.761474]  ? entry_SYSCALL_64_after_hwframe+0x42/0xb7
[  192.761481]  ? do_syscall_64+0x281/0x940
[  192.761487]  ? entry_SYSCALL_64_after_hwframe+0x42/0xb7
[  192.761501]  ? find_held_lock+0x35/0x1d0
[  192.761512]  ? __lock_is_held+0xb6/0x140
[  192.761530]  ? check_same_owner+0x320/0x320
[  192.761543]  ? rcu_note_context_switch+0x710/0x710
[  192.761559]  should_failslab+0xec/0x120
[  192.761568]  kmem_cache_alloc_trace+0x4b/0x740
[  192.761574]  ? rcu_read_lock_sched_held+0x108/0x120
[  192.761581]  ? kmem_cache_alloc_trace+0x459/0x740
[  192.761596]  bfq_cpd_alloc+0x54/0x90
[  192.761606]  blkcg_css_alloc+0x165/0x6b0
[  192.761612]  ? bfq_pd_alloc+0xe0/0xe0
[  192.761619]  ? blkcg_deactivate_policy+0x430/0x430
[  192.761631]  ? __lock_is_held+0xb6/0x140
[  192.761649]  cgroup_apply_control_enable+0x44d/0xbc0
[  192.761664]  ? cgroup_propagate_control+0x570/0x570
[  192.761679]  ? css_populate_dir+0x289/0x420
[  192.761690]  cgroup_mkdir+0x56f/0xfc0
[  192.761696]  ? __lock_is_held+0xb6/0x140
[  192.761709]  ? cgroup_destroy_locked+0x750/0x750
2018/03/31 01:44:59 executing program 3 (fault-call:3 fault-nth:45):
mkdir(&(0x7f00000001c0)='./file0\x00', 0x0)
mount(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000380)='./file0\x00', &(0x7f0000000300)='cgroup2\x00', 0x0, 0x0)
r0 = open$dir(&(0x7f000001bff4)='./file0\x00', 0x0, 0x0)
mkdirat(r0, &(0x7f0000000280)='./file0\x00', 0x20)
getdents64(r0, &(0x7f00000007c0)=""/250, 0x1015a)
fadvise64(r0, 0x0, 0x41, 0x3)
unlinkat(r0, &(0x7f0000000080)='./file0\x00', 0x200)
r1 = open$dir(&(0x7f0000000180)='./file0\x00', 0x105600, 0x81)
fchdir(r0)
link(&(0x7f0000000740)='./file1\x00', &(0x7f0000000780)='./file0/file0\x00')
renameat2(r1, &(0x7f0000000200)='./file1\x00', r0, &(0x7f0000000240)='./file0\x00', 0xfd1092750066ec78)
pivot_root(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='./file0\x00')
r2 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000100)='/dev/rfkill\x00', 0x2c42, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_LIST(r2, 0xc0505510, &(0x7f0000000480)={0x1000, 0x1, 0x474, 0x1, &(0x7f0000000140)=[{}]})
unlink(&(0x7f00000000c0)='./file0\x00')
symlinkat(&(0x7f0000000400)='./file0/file0\x00', r0, &(0x7f0000000440)='./file0/file0\x00')
iopl(0x6)
recvmsg$kcm(0xffffffffffffffff, &(0x7f0000000680)={&(0x7f0000000500)=@pppol2tp={0x0, 0x0, {0x0, <r3=>0xffffffffffffffff, {0x0, 0x0, @broadcast}}}, 0x80, &(0x7f0000000600)=[{&(0x7f0000000580)=""/80, 0x50}, {&(0x7f00000008c0)=""/4096, 0x1000}], 0x2, &(0x7f0000000640)=""/45, 0x2d, 0x206e}, 0x20)
r4 = syz_open_dev$sndpcmp(&(0x7f00000018c0)='/dev/snd/pcmC#D#p\x00', 0x5, 0x10a00)
ioctl$KVM_GET_DEVICE_ATTR(r4, 0x4018aee2, &(0x7f0000001940)={0x0, 0x100, 0x9, &(0x7f0000001900)})
recvfrom$ipx(r3, &(0x7f00000006c0)=""/52, 0x34, 0x100, &(0x7f0000000700)={0x4, 0x9a2, 0x4, "dc108d9d4391", 0x5}, 0x10)
renameat(r0, &(0x7f0000001980)='./file1\x00', r4, &(0x7f00000019c0)='./file0/file0\x00')

2018/03/31 01:44:59 executing program 0:
r0 = creat(&(0x7f0000000100)='./file0\x00', 0x0)
getsockopt$ARPT_SO_GET_ENTRIES(r0, 0x0, 0x61, &(0x7f0000000080)=ANY=[@ANYBLOB="66696c7465720000000000e9ffffff000000000000000000000000000000000013000000f29228189a700709b1b9f0204a6d0a62465873"], &(0x7f00000000c0)=0x37)
syz_fuseblk_mount(&(0x7f0000000000)='./file0/file0\x00', &(0x7f0000000040)='./file0/file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000)
getsockname$inet(r0, &(0x7f0000000140)={0x0, 0x0, @local}, &(0x7f0000000180)=0x10)

[  192.761716]  ? rcu_read_lock_sched_held+0x108/0x120
[  192.761723]  ? kmem_cache_free+0x258/0x2a0
[  192.761733]  ? set_nlink+0xc1/0x160
[  192.761741]  ? debug_lockdep_rcu_enabled+0x77/0x90
[  192.761748]  ? generic_permission+0x105/0x3c0
[  192.761757]  ? cgroup_destroy_locked+0x750/0x750
[  192.761768]  kernfs_iop_mkdir+0x153/0x1e0
[  192.761778]  vfs_mkdir+0x390/0x600
[  192.761788]  SyS_mkdirat+0x22b/0x2b0
[  192.761799]  ? SyS_mknod+0x480/0x480
[  192.761805]  ? trace_hardirqs_on+0xd/0x10
[  192.761813]  ? do_syscall_64+0xb7/0x940
2018/03/31 01:44:59 executing program 0:
r0 = socket(0xa, 0x2, 0x0)
ioctl$sock_bt_hidp_HIDPCONNADD(r0, 0x400448c8, &(0x7f0000000080)={r0, r0, 0x100, 0x7f, &(0x7f0000000000)="ac716f122c93cc0846aa", 0x2, 0x80, 0x3, 0x1ff, 0x40, 0x4000000000000, 0x2, "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"})
r1 = open(&(0x7f00004b8ff8)='./file0\x00', 0x28042, 0x0)
connect$inet6(r0, &(0x7f0000d3cfe4)={0xa, 0x0, 0x0, @mcast2={0xff, 0x2, [], 0x1}, 0x3}, 0x1c)
fallocate(r1, 0x0, 0xffff, 0x1f)
connect$inet(r0, &(0x7f0000000040)={0x2, 0x4e22, @multicast1=0xe0000001}, 0x10)
sendfile(r0, r1, &(0x7f00005faff8), 0xfffb)

[  192.761821]  ? SyS_mknod+0x480/0x480
[  192.761830]  do_syscall_64+0x281/0x940
[  192.761838]  ? vmalloc_sync_all+0x30/0x30
[  192.761846]  ? _raw_spin_unlock_irq+0x27/0x70
[  192.761853]  ? finish_task_switch+0x1c1/0x7e0
[  192.761861]  ? syscall_return_slowpath+0x550/0x550
[  192.761869]  ? syscall_return_slowpath+0x2ac/0x550
[  192.761877]  ? prepare_exit_to_usermode+0x350/0x350
[  192.761886]  ? entry_SYSCALL_64_after_hwframe+0x52/0xb7
[  192.761897]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  192.761910]  entry_SYSCALL_64_after_hwframe+0x42/0xb7
[  192.761916] RIP: 0033:0x454e79
[  192.761921] RSP: 002b:00007fa6ef25cc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
[  192.761930] RAX: ffffffffffffffda RBX: 00007fa6ef25d6d4 RCX: 0000000000454e79
[  192.761934] RDX: 0000000000000020 RSI: 0000000020000280 RDI: 0000000000000013
[  192.761938] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  192.761943] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000014
[  192.761947] R13: 00000000000003eb R14: 00000000006f7ea8 R15: 000000000000002c
2018/03/31 01:44:59 executing program 6:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x200, 0x0)
socketpair$inet6_icmp_raw(0xa, 0x3, 0x3a, &(0x7f0000000680)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
setsockopt$sock_linger(r1, 0x1, 0xd, &(0x7f00000006c0)={0x400, 0x9}, 0x8)
perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
mmap(&(0x7f0000000000/0x9d7000)=nil, 0x9d7000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x7)
perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r4, &(0x7f0000e5b000)={0x2, 0x4e20, @multicast1=0xe0000001}, 0x10)
syz_open_dev$sg(&(0x7f0000000440)='/dev/sg#\x00', 0x0, 0x0)
connect$inet(r4, &(0x7f0000000100)={0x2, 0x4e20, @multicast2=0xe0000002}, 0x10)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000eb0fb8)={0x1, 0x3, &(0x7f00009ff000)=@framed={{0x18}, [], {0x95}}, &(0x7f00002bf000)='syzkaller\x00', 0x4, 0xb7, &(0x7f00006ab000)=""/183}, 0x48)
setsockopt$inet_tcp_int(r4, 0x6, 0x19, &(0x7f0000000240)=0x8, 0x4)
setsockopt$SO_BINDTODEVICE(r4, 0x1, 0x19, &(0x7f0000000000)="6970365f76746930000000000400", 0x10)
r6 = socket$kcm(0x29, 0x2, 0x0)
ioctl$sock_kcm_SIOCKCMATTACH(r6, 0x89e0, &(0x7f000031aff8)={r4, r5})
ioctl$sock_kcm_SIOCKCMCLONE(r6, 0x89e2, &(0x7f00000002c0)={<r7=>0xffffffffffffffff})
sendmsg$nl_xfrm(r7, &(0x7f0000000780)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000740)={&(0x7f0000000480)=@updpolicy={0xb8, 0x19, 0x0, 0x0, 0x0, {{@in=@loopback=0x7f000001, @in6=@mcast1={0xff, 0x1, [], 0x1}}}}, 0xffcb}, 0x1}, 0x0)
ioctl$sock_kcm_SIOCKCMUNATTACH(r7, 0x89e1, &(0x7f0000000040)={r4})
r8 = fcntl$getown(r3, 0x9)
r9 = accept4$inet(0xffffffffffffff9c, &(0x7f0000000700)={0x0, 0x0, @broadcast}, &(0x7f0000000740)=0x10, 0x80000)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r9, 0x84, 0x64, &(0x7f0000000300)=[@in6={0xa, 0x4e23, 0x0, @dev={0xfe, 0x80, [], 0xf}, 0x6}, @in={0x2, 0xff, @local={0xac, 0x14, 0x14, 0xaa}}, @in={0x2, 0x4e23, @multicast1=0xe0000001}, @in={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x10}}, @in={0x2, 0x4e20, @multicast1=0xe0000001}, @in={0x2, 0x4e24}, @in={0x2, 0x4e24, @broadcast=0xffffffff}, @in6={0xa, 0x4e21, 0xed34, @local={0xfe, 0x80, [], 0xaa}, 0x3}, @in={0x2, 0x4e23, @loopback=0x7f000001}], 0xfffffffffffffe00)
ptrace$setregset(0x4205, r8, 0x0, &(0x7f00000005c0)={&(0x7f0000000080)="449ed0dd6831a7fb44eca4221b1fb01abfec082aa7d0ee6f0ba9db0ece7da2bd3f", 0x21})
r10 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r11 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x1fffd, 0x0)
syz_open_dev$sndtimer(&(0x7f00000000c0)='/dev/snd/timer\x00', 0x0, 0x0)
read(r0, &(0x7f0000000140)=""/50, 0x32)
fcntl$dupfd(r10, 0x0, r11)

2018/03/31 01:44:59 executing program 1:
r0 = creat(&(0x7f0000000b40)='./file0\x00', 0x20)
ioctl$DRM_IOCTL_AGP_ALLOC(0xffffffffffffff9c, 0xc0206434, &(0x7f0000000b80)={0x5, <r1=>0x0, 0x0, 0x81})
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, &(0x7f0000000dc0)={0x18, 0x0, {0x1, @remote={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xbb}, 'nr0\x00'}})
ioctl$DRM_IOCTL_SG_FREE(r0, 0x40106439, &(0x7f0000000bc0)={0x3, r1})
r2 = socket$inet(0x2, 0x6, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f00000008c0)=@broute={'broute\x00', 0x20, 0x2, 0x3e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000280], 0x0, &(0x7f0000000240), &(0x7f0000000280)=ANY=[@ANYBLOB="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"]}, 0x460)
getsockopt$inet_sctp6_SCTP_CONTEXT(0xffffffffffffff9c, 0x84, 0x11, &(0x7f0000000000)={<r3=>0x0, 0x7}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r2, 0x84, 0xa, &(0x7f0000000140)={0x0, 0xa2b, 0x4, 0x7, 0x2, 0x20, 0x10000, 0x8a82, r3}, &(0x7f0000000180)=0x20)
setsockopt$inet_group_source_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000680)={0x1000, {{0x2, 0x4e23, @multicast1=0xe0000001}}, {{0x2, 0x4e22, @broadcast=0xffffffff}}}, 0x108)
ioctl$DRM_IOCTL_AGP_ENABLE(0xffffffffffffffff, 0x40086432, &(0x7f0000000100))
r4 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/vs/sync_version\x00', 0x2, 0x0)
r5 = syz_genetlink_get_family_id$fou(&(0x7f0000000cc0)='fou\x00')
sendmsg$FOU_CMD_GET(r0, &(0x7f0000000d80)={&(0x7f0000000c80)={0x10, 0x0, 0x0, 0x81000}, 0xc, &(0x7f0000000d40)={&(0x7f0000000e00)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="00032bbd7000fcdbdf250300000008000300af000000080002000200000008000300b7000000080003003be80000080002000a0000008c875eb2087fa24c5f3f8555e01539ed5482033e6ef38674e0b4907363ab9b228be06caa861697840c83201dd532cd29b139a2ea57ff3afec40940748c47baa9963033f28654592d28e93e9cd02426c3094e915f82e9d6d759cd111d29"], 0x3c}, 0x1, 0x0, 0x0, 0xc000}, 0x8010)
ioctl$TIOCGSOFTCAR(r4, 0x5419, &(0x7f00000007c0))
r6 = socket$inet6(0x10, 0x2, 0x0)
sendmsg(r6, &(0x7f0000000080)={&(0x7f0000000240)=@un=@abs={0x1, 0x0, 0x4e23}, 0x80, &(0x7f0000000040)=[{&(0x7f00000001c0)="5500000018007f04002d1cb2a4a280930a0600007da843cf19d0f869390009402f002100040000001900050000fc1700000000dc1338d54400009b84136ef75afb83de448daa7227c43ab8220000060c", 0x50}], 0x1, &(0x7f00000000c0)}, 0x0)
socket$bt_cmtp(0x1f, 0x3, 0x5)
fcntl$addseals(r6, 0x409, 0x7)
syz_open_dev$sndmidi(&(0x7f0000000c00)='/dev/snd/midiC#D#\x00', 0x100000001, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f0000001640)=@broute={'broute\x00', 0x20, 0x1, 0x1e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20001700], 0x0, &(0x7f0000001980), &(0x7f0000001700)=ANY=[@ANYBLOB="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"]}, 0x260)
setsockopt$EBT_SO_SET_ENTRIES(0xffffffffffffffff, 0x0, 0x80, &(0x7f0000000840)=@nat={'nat\x00', 0x19, 0x1, 0x200, [0x20000940, 0x0, 0x0, 0x20000970, 0x200009a0], 0x0, &(0x7f0000000800), &(0x7f0000000940)=[{}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x14, 0x98ab, 'teql0\x00', 'ip6gretap0\x00', 'ip_vti0\x00', 'nr0\x00', @empty, [0x0, 0xff, 0x0, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2}, [0xff, 0x0, 0xff, 0x0, 0x0, 0xff], 0x100, 0x138, 0x170, [@time={'time\x00', 0x18, {{0x7, 0x3, 0x13782, 0x14fdf, 0x80, 0x4, 0x1}}}, @nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x2}}}]}, [@snat={'snat\x00', 0x10, {{@random="07901c8f0140"}}}]}, @common=@dnat={'dnat\x00', 0x10, {{@local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}, 0x10}}}}]}]}, 0x278)
syz_open_dev$dmmidi(&(0x7f0000000c40)='/dev/dmmidi#\x00', 0xae6d, 0x200)

[  192.790469] kernel msg: ebtables bug: please report to author: EBT_ENTRY_OR_ENTRIES shouldn't be set in distinguisher
[  193.072210] FAULT_INJECTION: forcing a failure.
[  193.072210] name failslab, interval 1, probability 0, space 0, times 0
[  193.083591] CPU: 1 PID: 13823 Comm: syz-executor3 Not tainted 4.16.0-rc7+ #372
[  193.090956] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  193.100319] Call Trace:
[  193.102923]  dump_stack+0x194/0x24d
[  193.106555]  ? arch_local_irq_restore+0x53/0x53
[  193.111234]  should_fail+0x8c0/0xa40
[  193.114954]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  193.120077]  ? find_held_lock+0x35/0x1d0
[  193.124148]  ? __lock_is_held+0xb6/0x140
[  193.128228]  ? check_same_owner+0x320/0x320
[  193.132560]  ? rcu_note_context_switch+0x710/0x710
[  193.137494]  should_failslab+0xec/0x120
[  193.141459]  __kmalloc_track_caller+0x5f/0x760
[  193.146040]  ? string+0x180/0x200
[  193.149478]  ? kstrdup_const+0x39/0x50
[  193.153352]  kstrdup+0x39/0x70
[  193.156527]  kstrdup_const+0x39/0x50
[  193.160223]  __kernfs_new_node+0xa2/0x570
[  193.164355]  ? kernfs_dop_revalidate+0x380/0x380
[  193.169095]  ? delete_node+0x2db/0xbc0
[  193.172972]  ? snprintf+0xc0/0xf0
[  193.176405]  ? vsprintf+0x40/0x40
[  193.179844]  kernfs_new_node+0x80/0xe0
[  193.183718]  __kernfs_create_file+0x4b/0x320
[  193.188116]  cgroup_addrm_files+0x3c5/0xa70
[  193.192425]  ? cgroup_file_write+0x710/0x710
[  193.196819]  ? cgroup_idr_replace+0x3f/0x50
[  193.201127]  ? __lock_is_held+0xb6/0x140
[  193.205173]  ? __local_bh_enable_ip+0x121/0x230
[  193.209822]  ? online_css+0x224/0x2e0
[  193.213610]  css_populate_dir+0x198/0x420
[  193.217795]  cgroup_apply_control_enable+0x390/0xbc0
[  193.222896]  ? cgroup_propagate_control+0x570/0x570
[  193.227902]  ? css_populate_dir+0x289/0x420
[  193.232210]  cgroup_mkdir+0x56f/0xfc0
[  193.235990]  ? __lock_is_held+0xb6/0x140
[  193.240041]  ? cgroup_destroy_locked+0x750/0x750
[  193.244778]  ? rcu_read_lock_sched_held+0x108/0x120
[  193.249774]  ? kmem_cache_free+0x258/0x2a0
[  193.253991]  ? set_nlink+0xc1/0x160
[  193.257604]  ? debug_lockdep_rcu_enabled+0x77/0x90
[  193.262511]  ? generic_permission+0x105/0x3c0
[  193.266988]  ? cgroup_destroy_locked+0x750/0x750
[  193.271726]  kernfs_iop_mkdir+0x153/0x1e0
[  193.275858]  vfs_mkdir+0x390/0x600
[  193.279382]  SyS_mkdirat+0x22b/0x2b0
[  193.283077]  ? SyS_mknod+0x480/0x480
[  193.286772]  ? trace_hardirqs_on+0xd/0x10
[  193.290900]  ? do_syscall_64+0xb7/0x940
[  193.294856]  ? SyS_mknod+0x480/0x480
[  193.298552]  do_syscall_64+0x281/0x940
[  193.302418]  ? vmalloc_sync_all+0x30/0x30
[  193.306547]  ? _raw_spin_unlock_irq+0x27/0x70
[  193.311025]  ? finish_task_switch+0x1c1/0x7e0
[  193.316207]  ? syscall_return_slowpath+0x550/0x550
[  193.321119]  ? syscall_return_slowpath+0x2ac/0x550
[  193.326033]  ? prepare_exit_to_usermode+0x350/0x350
[  193.331034]  ? entry_SYSCALL_64_after_hwframe+0x52/0xb7
[  193.336382]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  193.341210]  entry_SYSCALL_64_after_hwframe+0x42/0xb7
[  193.346378] RIP: 0033:0x454e79
[  193.349547] RSP: 002b:00007fa6ef25cc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
[  193.357240] RAX: ffffffffffffffda RBX: 00007fa6ef25d6d4 RCX: 0000000000454e79
[  193.364490] RDX: 0000000000000020 RSI: 0000000020000280 RDI: 0000000000000013
2018/03/31 01:45:00 executing program 4:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000009fc3)={0x26, 'hash\x00', 0x0, 0x0, "637263333200001f000000000000000000000000000000000000000020000063000000000000000f000000000000f3ffffff0000c600"}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000cdfffc)="3b692cec", 0x4)
r1 = syz_open_dev$mouse(&(0x7f0000000000)='/dev/input/mouse#\x00', 0x10000, 0x40)
ioctl$KDSETLED(r1, 0x4b32, 0x5)
ioctl$KVM_GET_EMULATED_CPUID(r1, 0xc008ae09, &(0x7f0000000040)=""/187)

[  193.371739] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  193.378998] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000014
[  193.386250] R13: 00000000000003eb R14: 00000000006f7ea8 R15: 000000000000002d
[  193.393703] cgroup: cgroup_addrm_files: failed to add stat, err=-12
2018/03/31 01:45:00 executing program 3 (fault-call:3 fault-nth:46):
mkdir(&(0x7f00000001c0)='./file0\x00', 0x0)
mount(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000380)='./file0\x00', &(0x7f0000000300)='cgroup2\x00', 0x0, 0x0)
r0 = open$dir(&(0x7f000001bff4)='./file0\x00', 0x0, 0x0)
mkdirat(r0, &(0x7f0000000280)='./file0\x00', 0x20)
getdents64(r0, &(0x7f00000007c0)=""/250, 0x1015a)
fadvise64(r0, 0x0, 0x41, 0x3)
unlinkat(r0, &(0x7f0000000080)='./file0\x00', 0x200)
r1 = open$dir(&(0x7f0000000180)='./file0\x00', 0x105600, 0x81)
fchdir(r0)
link(&(0x7f0000000740)='./file1\x00', &(0x7f0000000780)='./file0/file0\x00')
renameat2(r1, &(0x7f0000000200)='./file1\x00', r0, &(0x7f0000000240)='./file0\x00', 0xfd1092750066ec78)
pivot_root(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='./file0\x00')
r2 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000100)='/dev/rfkill\x00', 0x2c42, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_LIST(r2, 0xc0505510, &(0x7f0000000480)={0x1000, 0x1, 0x474, 0x1, &(0x7f0000000140)=[{}]})
unlink(&(0x7f00000000c0)='./file0\x00')
symlinkat(&(0x7f0000000400)='./file0/file0\x00', r0, &(0x7f0000000440)='./file0/file0\x00')
iopl(0x6)
recvmsg$kcm(0xffffffffffffffff, &(0x7f0000000680)={&(0x7f0000000500)=@pppol2tp={0x0, 0x0, {0x0, <r3=>0xffffffffffffffff, {0x0, 0x0, @broadcast}}}, 0x80, &(0x7f0000000600)=[{&(0x7f0000000580)=""/80, 0x50}, {&(0x7f00000008c0)=""/4096, 0x1000}], 0x2, &(0x7f0000000640)=""/45, 0x2d, 0x206e}, 0x20)
r4 = syz_open_dev$sndpcmp(&(0x7f00000018c0)='/dev/snd/pcmC#D#p\x00', 0x5, 0x10a00)
ioctl$KVM_GET_DEVICE_ATTR(r4, 0x4018aee2, &(0x7f0000001940)={0x0, 0x100, 0x9, &(0x7f0000001900)})
recvfrom$ipx(r3, &(0x7f00000006c0)=""/52, 0x34, 0x100, &(0x7f0000000700)={0x4, 0x9a2, 0x4, "dc108d9d4391", 0x5}, 0x10)
renameat(r0, &(0x7f0000001980)='./file1\x00', r4, &(0x7f00000019c0)='./file0/file0\x00')

2018/03/31 01:45:00 executing program 0:
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0x5, 0x8, 0x4, 0x3}, 0x2c)
openat$vsock(0xffffffffffffff9c, &(0x7f0000000100)='/dev/vhost-vsock\x00', 0x2, 0x0)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000080)={r0, &(0x7f0000000040), &(0x7f00000000c0)}, 0x20)
r1 = syz_open_dev$audion(&(0x7f0000000000)='/dev/audio#\x00', 0x3ff, 0x400)
ioctl$PERF_EVENT_IOC_ID(r1, 0x80082407, &(0x7f00000000c0))
bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000080)={r0, &(0x7f0000000040)}, 0x10)

2018/03/31 01:45:00 executing program 6:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x200, 0x0)
socketpair$inet6_icmp_raw(0xa, 0x3, 0x3a, &(0x7f0000000680)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
setsockopt$sock_linger(r1, 0x1, 0xd, &(0x7f00000006c0)={0x400, 0x9}, 0x8)
perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
mmap(&(0x7f0000000000/0x9d7000)=nil, 0x9d7000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x7)
perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r4, &(0x7f0000e5b000)={0x2, 0x4e20, @multicast1=0xe0000001}, 0x10)
syz_open_dev$sg(&(0x7f0000000440)='/dev/sg#\x00', 0x0, 0x0)
connect$inet(r4, &(0x7f0000000100)={0x2, 0x4e20, @multicast2=0xe0000002}, 0x10)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000eb0fb8)={0x1, 0x3, &(0x7f00009ff000)=@framed={{0x18}, [], {0x95}}, &(0x7f00002bf000)='syzkaller\x00', 0x4, 0xb7, &(0x7f00006ab000)=""/183}, 0x48)
setsockopt$inet_tcp_int(r4, 0x6, 0x19, &(0x7f0000000240)=0x8, 0x4)
setsockopt$SO_BINDTODEVICE(r4, 0x1, 0x19, &(0x7f0000000000)="6970365f76746930000000000400", 0x10)
r6 = socket$kcm(0x29, 0x2, 0x0)
ioctl$sock_kcm_SIOCKCMATTACH(r6, 0x89e0, &(0x7f000031aff8)={r4, r5})
ioctl$sock_kcm_SIOCKCMCLONE(r6, 0x89e2, &(0x7f00000002c0)={<r7=>0xffffffffffffffff})
sendmsg$nl_xfrm(r7, &(0x7f0000000780)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000740)={&(0x7f0000000480)=@updpolicy={0xb8, 0x19, 0x0, 0x0, 0x0, {{@in=@loopback=0x7f000001, @in6=@mcast1={0xff, 0x1, [], 0x1}}}}, 0xffcb}, 0x1}, 0x0)
ioctl$sock_kcm_SIOCKCMUNATTACH(r7, 0x89e1, &(0x7f0000000040)={r4})
r8 = fcntl$getown(r3, 0x9)
r9 = accept4$inet(0xffffffffffffff9c, &(0x7f0000000700)={0x0, 0x0, @broadcast}, &(0x7f0000000740)=0x10, 0x80000)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r9, 0x84, 0x64, &(0x7f0000000300)=[@in6={0xa, 0x4e23, 0x0, @dev={0xfe, 0x80, [], 0xf}, 0x6}, @in={0x2, 0xff, @local={0xac, 0x14, 0x14, 0xaa}}, @in={0x2, 0x4e23, @multicast1=0xe0000001}, @in={0x2, 0x4e20, @dev={0xac, 0x14, 0x14}}, @in={0x2, 0x4e20, @multicast1=0xe0000001}, @in={0x2, 0x4e24}, @in={0x2, 0x4e24, @broadcast=0xffffffff}, @in6={0xa, 0x4e21, 0xed34, @local={0xfe, 0x80, [], 0xaa}, 0x3}, @in={0x2, 0x4e23, @loopback=0x7f000001}], 0xfffffffffffffe00)
ptrace$setregset(0x4205, r8, 0x0, &(0x7f00000005c0)={&(0x7f0000000080)="449ed0dd6831a7fb44eca4221b1fb01abfec082aa7d0ee6f0ba9db0ece7da2bd3f", 0x21})
r10 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r11 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x1fffd, 0x0)
syz_open_dev$sndtimer(&(0x7f00000000c0)='/dev/snd/timer\x00', 0x0, 0x0)
read(r0, &(0x7f0000000140)=""/50, 0x32)
fcntl$dupfd(r10, 0x0, r11)

[  193.519835] FAULT_INJECTION: forcing a failure.
[  193.519835] name failslab, interval 1, probability 0, space 0, times 0
[  193.531202] CPU: 0 PID: 13844 Comm: syz-executor3 Not tainted 4.16.0-rc7+ #372
[  193.538558] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  193.547906] Call Trace:
[  193.550500]  dump_stack+0x194/0x24d
[  193.554128]  ? arch_local_irq_restore+0x53/0x53
[  193.558802]  should_fail+0x8c0/0xa40
[  193.562520]  ? kstrdup+0x39/0x70
[  193.565902]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  193.571005]  ? cgroup_apply_control_enable+0x390/0xbc0
[  193.576282]  ? kernfs_iop_mkdir+0x153/0x1e0
[  193.580595]  ? vfs_mkdir+0x390/0x600
[  193.584303]  ? SyS_mkdirat+0x22b/0x2b0
[  193.588186]  ? do_syscall_64+0x281/0x940
[  193.592247]  ? entry_SYSCALL_64_after_hwframe+0x42/0xb7
[  193.597612]  ? find_held_lock+0x35/0x1d0
[  193.601667]  ? find_held_lock+0x35/0x1d0
[  193.605716]  ? __lock_is_held+0xb6/0x140
[  193.609769]  ? check_same_owner+0x320/0x320
[  193.614083]  ? rcu_note_context_switch+0x710/0x710
[  193.618994]  ? rcu_read_lock_sched_held+0x108/0x120
[  193.623998]  should_failslab+0xec/0x120
[  193.627958]  kmem_cache_alloc+0x47/0x760
[  193.631996]  ? memcpy+0x45/0x50
[  193.635262]  ? kstrdup+0x59/0x70
[  193.638611]  __kernfs_new_node+0xe2/0x570
[  193.642741]  ? kernfs_dop_revalidate+0x380/0x380
[  193.647478]  ? delete_node+0x2db/0xbc0
[  193.651352]  ? snprintf+0xc0/0xf0
[  193.654783]  ? vsprintf+0x40/0x40
[  193.658223]  kernfs_new_node+0x80/0xe0
[  193.662095]  __kernfs_create_file+0x4b/0x320
[  193.666487]  cgroup_addrm_files+0x3c5/0xa70
[  193.670796]  ? cgroup_file_write+0x710/0x710
[  193.675193]  ? cgroup_idr_replace+0x3f/0x50
[  193.679499]  ? __lock_is_held+0xb6/0x140
[  193.683543]  ? __local_bh_enable_ip+0x121/0x230
[  193.688191]  ? online_css+0x224/0x2e0
[  193.691972]  css_populate_dir+0x198/0x420
[  193.696107]  cgroup_apply_control_enable+0x390/0xbc0
[  193.701195]  ? cgroup_propagate_control+0x570/0x570
[  193.706196]  ? css_populate_dir+0x289/0x420
[  193.710497]  cgroup_mkdir+0x56f/0xfc0
[  193.714273]  ? __lock_is_held+0xb6/0x140
[  193.718317]  ? cgroup_destroy_locked+0x750/0x750
[  193.723064]  ? rcu_read_lock_sched_held+0x108/0x120
[  193.728062]  ? kmem_cache_free+0x258/0x2a0
[  193.732278]  ? set_nlink+0xc1/0x160
[  193.735884]  ? debug_lockdep_rcu_enabled+0x77/0x90
[  193.740789]  ? generic_permission+0x105/0x3c0
[  193.745266]  ? cgroup_destroy_locked+0x750/0x750
[  193.750001]  kernfs_iop_mkdir+0x153/0x1e0
[  193.754136]  vfs_mkdir+0x390/0x600
[  193.757659]  SyS_mkdirat+0x22b/0x2b0
[  193.761353]  ? SyS_mknod+0x480/0x480
[  193.765052]  ? trace_hardirqs_on+0xd/0x10
[  193.769179]  ? do_syscall_64+0xb7/0x940
[  193.773132]  ? SyS_mknod+0x480/0x480
[  193.776825]  do_syscall_64+0x281/0x940
[  193.780691]  ? trace_event_raw_event_sys_exit+0x260/0x260
[  193.786208]  ? syscall_return_slowpath+0x550/0x550
[  193.791115]  ? syscall_return_slowpath+0x2ac/0x550
[  193.796036]  ? entry_SYSCALL_64_after_hwframe+0x52/0xb7
[  193.801385]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  193.806212]  entry_SYSCALL_64_after_hwframe+0x42/0xb7
[  193.811381] RIP: 0033:0x454e79
2018/03/31 01:45:00 executing program 4:
socketpair(0x3, 0x4, 0x80000001, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmsg$nfc_llcp(r0, &(0x7f00000012c0)={&(0x7f0000000180)={0x27, 0x0, 0x2, 0x2, 0x0, 0x3000, "317e7c9dca6c82f4cd6a88c7cf0ca6bd451f0f86e6d99a76ec083fed155bb3072c8af4f59fa31f8b2f7b929189f3666ab075554ce919caaf2a56cbc7f70500", 0x2d}, 0x60, &(0x7f0000001240)=[{&(0x7f0000000200)="50f2020fe6480a67a4f5e53c18519f5ab22acad8b7e9f0d7e054fd8cf5924366478522bd1400e6834db51488a39156be4169b1c9102a12c77ab252b9e6f58f79ecc041c66a09b6f5ec1acaa88cdc810b2dea5a2cdb79a309d38b5434f9c6d54b88dd6a25c024626033525a8bc36e0f6adc8437e04ae40346b430707e8a9da526154199a563b5ae304ac7b0112498ea71ac4e6e3775a95315285b19469ec74ef1277d25a505b46e1680029a40b9b27d6ce111893c45b9eff51a3ee45eb84688da8a4ca3fa4a751fce0f83fa3710c5b8b611962dcec0990090b14730f0e4e1e917618fe78216c4ee714ddbc42b8c0ba7a52da0f6be885d911b4783f19caa164eed14e4b3703327902fe1e4c484ccde745b5cbf1b08399e6a8a77f7f2cab2284d1fa96be0bba449086098293cfbacc32fd48afdbf91456b806ba34e0846b3142616154aec71f85f5a0b63771f8a6b00bece4fe923eb2881a532f3398545a30a702b67c32a287234ad5ee592dce89fa78b93aba1c418fb4b9f6c5061289f88d5505c44a08dae5938c2941d7340453c85d945e2ccd1625eeaa020c760fd11400e076c366653922860e5354ec135f89bfe6240e2257833c160d6ed69aa7260cc55678a54a7b8305599d20894c840c673833628521babaa4ee814907b80eed03dcce658794d97be09758ebdfef18d3c0be68221eb56db703107882a93435ded74f59d242a8855179ccffdb4d26ab0aa94a5b9e1d4c48410a1b1a32ef94e67b85237663c2a6965d94d58adf171509269b7bb683a35051ee8e82e3efd003b48c72a2755c05d7e632a42bac1cd54bc19b7700adfee0d1a4b940166862761679880f4c0300fc152f9093332e94a28d9769e9743642255319be212630c8eb2e31ed27be30ed218ce5ed819e2cfed2265e9cb30df9491c5f66a9dd86cff3d476f2d263bccffc50523923c6c15df8c3b92088aeec11a345691932f0bcc6ab9c0a2f52ebf7149ea1e4d4a385824c10940c33636cfdbc0430e8c88021459df86390446ca6319aa4c69ebc10e60fc195f582b921369273d93a7e8850c685d8bb61918372c035ad8a99e11fce0259f1e082d2e8317a0f2627f36b3c59ad08cc418f2b6c968f11c7f442e77bfce86c080b3b1f486777d0aed78d3583725724ee95e39a241774aa0d3c9c91c8735acd6a08cd9c567d5d2d1cd8361533dec88d3d608504658c4cebff7f3d2c08b7ebb9295670c25ec655e691c8dcedd5a32a89ebd60421aa329c7e4620d8e36ed3f2c1ac3a4b7efdecb95aab798d0d860a344994d723b2aab9ce057f5a9dcb16762fd327862b567fa9826fa9a4faf290ebabd1248d3c5c1d7ac945fed81f881b90664b92a504c9d8b95d54a04f58be2664683f890116a6962bf0b1f3705e49b3ae13bd6eefcfa794a83503d5e8c183a4e1ff8001de0bf553dd222709374f9fb7aad6d4e93d9784e10d22a669abbcf1644be41fb8d87b29f8f4f6d077cb726eee31a33a29559e0337d3dec2844d15fd9220db79b51fb33a0c5c343646367c66b17419b000ce84fc6df4c5eccc2be20a48db83c340134cf36b2dbcb70f6f80cb66adabb8587a97301f0ec6988a1cbb856d12c305fc08fb673de3e9dc5a547f634b6a88b55902fb1d4845be42f1f9712ac1ed56e6a17c3df00b608f2eb6b15173302a25e0567a22f55e21ca6bf4602c4274569c8835ad9ca4ee7ef5957095ca2a83342eda65c70ac3b5f6feff88242b39364cb697047dd346b6f0679e31d1dc3eaba7f2853e5b2775335939ea0b1fdfb4e39124e3a14366c27a08650500264afab76ba34d78c5972c8e02b943ca5ea058d2b8679d807547c6e7ccf437451b9081a4f9de20204cd4be9d65e2b2d4b8b43aef1f7741329ce5e27fee0569674adbd20e8820ad0faaa26c5b42eea81f80a4f4b787f9f26b7250186f2e3a6367660cf1d85b2585b3c2e62534d52ce2eef2cabd1513b66809d7a5f3c6ae209e9cccf43772558edb01372833cea5b498a3e799f2d5928f674b3c9d2f24bcefbb7f9e8b49ae2caac0ef6f08846d589d9c06fcc6854208a76350db7e88719b0db9eb318c34fa601fb5eeb66ffb6b4465875e4d839fcdbdbe0ab079e8b5065275351061078a0d390e62c14ffcc123605b1307cedf6238eff1976c520dd23f015eb93498dae63b13645c69dca9d67bfc780eba0b28dbe6634cc7cab521a4a74748a82be9d6cbe938f40a32953f10803521a4869dc9b6f60d29573146f36ada8e27d63332f277d902cce620f2348a8ab4f1eb5238ce80b3fe08228b1b9006398d69e7ef5f206caf8e6cd32002f7412591d4a41f1457714dbc6aee5e3efcef2a3ba5a4ae5161b8fec85defbd97eaedc7a560a4ebb2ba96585dcf33fab461248ff2dc0acf204e4b76ff429035d0390b13fa99bbd751a8d41531efead42c6273b22a1f9cfb87b83d32edb10fede81b9d97483397c6a6c6f947bd661bceda1d9ddf5510cfebddb0cefa4663070dbb9730fab495673e919bd977641fafdf0f3ff831b29f11d459421f8c6ec048018f576bf3f97d531950db5f4cc7aba9f9f68188556191e8a47425bc10053da29ed578e7ab9636c0cc47131d08afcff88805dbe600e7c3637662dc756ee88257a268bc26b4146822f602e7e6090de67e3997c4be82ffba02019d3385fc674b80f812482e08f2d134468fa7f315171bed4867d9ef1e29d919bfafa5fc6b1bec9b2b32ed8a450cee8a5d629c40d87609808ca37a5adbdd0ed7efc794c91e88fadeee9d20cc676eaafb8b7424f5c360e1be1285e8a8395e6e0121e443713f4ac7a3bdca519748ef0cfe9fc644cd40e955cae783ebd23bb7e6c054cade395ed6987742e70dec3393edc4a775d0966189bdbe43aadacbfdea6004f5b9db39f612350f1ee793ad50cf4e960e9aee941833c211238017d8f6f1a35894a595d5cf6c8d8a5059e1fcccbaf8f0363803e369ce1ffe2c878a7f3a10db5721c3d120560702913874d70f465c0adb3255c50555507ffeb9b03aeb2812cd9cbbd0f922f97d5a505ad36e30bb0afe640d3a7919e9492f163619b6ff65419afd1e1d5b912c09115e8287785a243fce5fa789669c0994731dd21eadc8186ce321bd5fda6553a55c3a82c12e051fcdb86100be4848b726ab85ea8e936a59d1568a4aabd0c484204401b119d70e3a0df27d257955913d9a2925d2baa98bc2fe83bb5ff18f3385aed91352d271b387ac6cc2831f6136971e1a933bb40b9def1f9eace4e5b14785b429f38e7ca5feb697964766ae9df07be60d093b716b55c7606c4a2db6d81181d943a0093f1dbf212a997a0f5baeed9335884c547de7c141ed7ae4cde6f70e39dcd52da9b3b87523cf7809e8cd9d489465b6e190787d08b1e56def34746551742598817e012c2ed49565d6fd972045ea95175446dc6bb3a24ce3a2d832e6892f26ebbdebaf015295ac125744313a5440ec01a9646e7d8941e79344b273fec5848bfc25769e4561dc708fd934a535e3734a1395c2477fb0f4c9cfc9fe343444a002a7939822acac5d2b159d19e2aef5eba01d9c799af8e5280317a22ccb75b0bd1a255458b044ee88b188d11dec4257a98f3f55b6dd3d4d8096844c8a17d88fbf81ecf9205c70730c8a0b2a2109eb84b867623c897724ef4d1498b83bba2fcd4b3389cac39d08b434d46efc106274290ad7943b33e501597707faee34ed84fdb42baccb23626a2b552fa2225a9e7d6897f79b28c8847fa65f93d47dc3b3f7836ac974d5d93415cdc8007b6c7a13087d853636bc0195da132087fdfa8c836cffa2782f77ae38c9287eab3d29daec2640574f151835661e3b6360f3441b1561806b438d3a1e3b6dc3e55cc2c59a87894426047aa5e5a1897d84aa1d4bba2dc83f60dd9a7e6930882abbf32ddcf4775e1d8ddf18edbd4f1201fde82823ba6583cb0f0cfe9013e1e51d14f662cf2b93677f452038077306885d5b7bd33630f85195fd05c9b216e4e24d0b48f7950ad2609fa66b07d787c3c6ca54531445d601de6fa4fc79234650755eed3f91be31814b5d6774695c757d18dba2b88fbeed9f95f9c7d3eaf70da5989905d3da7e0d96141c0bcebed87f3ef0493af3dc87081be6031cb1eb19957e73364df5db4b1c61b4736977c2a0473489ed3e344a992352248a46d8e64ffb2f550b4db9f20d562b60f0252ab473f5960a1b05e9800b10d1fa502d3c6ccecbfddb320aeb7adc01b86df5f622351db28b341fa9533bf749ffd8fd79ce85f8b701d06e12ea811ae2ea73b2d47821e15ac4f42a77afa6060feb008d34799cf48cbea1a7be004f6c64f4c9c4b700a662fe817b2704b83b25432a68ec0b3155ae95c87854dddb5507eb66ebc4e0109b9c099695e706db12f5d93f2710925dfea00a247013f569f02e3874f7ba0fc298e2be4f35ad6204d1ce89b741f8779cc8b21cba5ba18d3b99adab2fe73f88f739a1c43af3292f9a206495d625d3adf8c7ef34efb1fcc3461dfd90f3909e7a7efe7480ca5db04ad6be06f53c3effb6f332964d5fe8beb1ad206b0b977b3f61eb042a250c88cc0338a826eadb19252bc1f5e7d65fb15f4ab80beaa99e3a8257b85535434ba43ad5ef694e90093bc8bf6af81e51d8590c1024cfb60a527d5e33a08a979e9124f0e610e50d9e4fda262af3ffd02a23fd62c5a4d970f2263b67cc5981d25aaaea1518a1546a81c6752518344ac49e6c455073c78dd5accc7e8ee085e74b501f45fd0eeb270f35a3a64c928a8f04cc81b151da34b8176d375cb4efbb4bbbef1c366e0c1d9dba93bc3006c70e62bcd4935c5a93d4c40d51f1368728af944bc89517a71d5061ca95fcc5d44552b94086b6780e62172f2b46f675cc3eb5d04fb2fbba065fd79be40f7f63459ae3a244c506194affec94ff984099a664104fb803562b9b77415c1dfa918143035cd201dfbd959eafddb6a5cd0ef724f3eaaa6516d698fc43174f13f68f91474442d1fab3c671e230a12a85b0548ca540821b4f42ebb597306abde3083edcc43729f075c6e39c62aad81e3b290f4fff50df77e566243f034c45bfea52ec86589429185dc035ecf4f0938d6612ffbc6b474d520d5fd27bfea3afced7d575c9e84d768eae4d207d58e78ff609e9b9668ac4c46be9d9b0bc28f1704ac7f27db4812e7cafd86a90c3e47e4b89f2af5d80f7076d61614e4fca5112defa1727badd31c88e5e2a1430f9e58272685d2181b1b5f4d0eec2e72c9d8ee9850d086a6e07182a3d55da64231faf605005c468f729630833d650840ab38b4fd1bb1ea6da4911333cd26c626f07a8c700eef74dd1d11a4a4d0ea63cc2d6b528c0424c8bf2d2a52dbbc9df54c8d36c326114d007972e0bc632b762b50176ccc8eeb81fc1ef4433987328589f3b9a773460c5c97a836e4ebf3b4415725fbfaf9b530ef91642347bb146c75e45277389bb583059789d6eee00f96e6ba97470b2d469e21d7f5eb87bd63f5ba3d5a8de9c136355d92a52d40d98c81e1d3f72216369dc8d9459c3df817eb494861dc71381ddcaf13cee2dd570eab05f0a7354a5ec95c2a60bc91482992b52220fcd93904e28a0a4a6d39649cdc7bfc9be395a2df8c0a981ae00d7ce543083e5bb44987e67c3919c7a3fb712e6c365e944f6aa811bcd0e0a9980a90de0716ae0aaf3d055475013df0d1fdd6161b0c7889b018a16250938cb84f413b6166cf39d855cb4c148cc57fb8942f1bf015afdfb7cdb1edf3343ce55144f7aecc8ff78778c68de5c66b95dde50505b85a843e82b2bbecad711b8908eb05b0bc", 0x1000}, {&(0x7f0000001200)="b814d13d307ee6f8d41f8dbf81d6728566bbbde34de13c6a10a6", 0x1a}], 0x2, &(0x7f0000001280)={0x30, 0x11b, 0x2000000000000000, "bf408fde17eae8f9b301ef6d1466e0807170b27894dd500dbd4dc4b8807b6a"}, 0x30, 0x8000}, 0x800)
r1 = socket$inet(0xa, 0x1, 0x0)
getsockopt$sock_buf(r1, 0x1, 0x1f, &(0x7f0000000040)=""/243, &(0x7f0000000140)=0xf3)

2018/03/31 01:45:00 executing program 1:
r0 = creat(&(0x7f0000000b40)='./file0\x00', 0x20)
ioctl$DRM_IOCTL_AGP_ALLOC(0xffffffffffffff9c, 0xc0206434, &(0x7f0000000b80)={0x5, <r1=>0x0, 0x0, 0x81})
ioctl$DRM_IOCTL_SG_FREE(r0, 0x40106439, &(0x7f0000000bc0)={0x3, r1})
r2 = socket$inet(0x2, 0x6, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f00000008c0)=@broute={'broute\x00', 0x20, 0x2, 0x3e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000280], 0x0, &(0x7f0000000240), &(0x7f0000000280)=ANY=[@ANYBLOB="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"]}, 0x460)
getsockopt$inet_sctp6_SCTP_CONTEXT(0xffffffffffffff9c, 0x84, 0x11, &(0x7f0000000000)={<r3=>0x0, 0x7}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r2, 0x84, 0xa, &(0x7f0000000140)={0x0, 0xa2b, 0x4, 0x7, 0x2, 0x20, 0x10000, 0x8a82, r3}, &(0x7f0000000180)=0x20)
setsockopt$inet_group_source_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000680)={0x1000, {{0x2, 0x4e23, @multicast1=0xe0000001}}, {{0x2, 0x4e22, @broadcast=0xffffffff}}}, 0x108)
ioctl$DRM_IOCTL_AGP_ENABLE(0xffffffffffffffff, 0x40086432, &(0x7f0000000100))
r4 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/vs/sync_version\x00', 0x2, 0x0)
ioctl$TIOCGSOFTCAR(r4, 0x5419, &(0x7f0000000cc0))
r5 = socket$inet6(0x10, 0x2, 0x0)
sendmsg(r5, &(0x7f0000000080)={&(0x7f0000000240)=@un=@abs={0x1, 0x0, 0x4e23}, 0x80, &(0x7f0000000040)=[{&(0x7f00000001c0)="5500000018007f04002d1cb2a4a280930a0600007da843cf19d0f869390009402f002100040000001900050000fc1700000000dc1338d54400009b84136ef75afb83de448daa7227c43ab8220000060c", 0x50}], 0x1, &(0x7f00000000c0)}, 0x0)
socket$bt_cmtp(0x1f, 0x3, 0x5)
fcntl$addseals(r5, 0x409, 0x7)
syz_open_dev$sndmidi(&(0x7f0000000c00)='/dev/snd/midiC#D#\x00', 0x100000001, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f0000001640)=@broute={'broute\x00', 0x20, 0x1, 0x1e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20001700], 0x0, &(0x7f0000001980), &(0x7f0000001700)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1, [{{{0x13, 0x0, 0x0, 'vcan0\x00', 'ifb0\x00', 'syzkaller0\x00', 'vcan0\x00', @remote={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xbb}, [], @link_local={0x1, 0x80, 0xc2}, [], 0x70, 0xf8, 0x128}, [@common=@dnat={'dnat\x00', 0x10, {{@dev={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa]}, 0xffffffffffffffff}}}, @common=@IDLETIMER={'IDLETIMER\x00', 0x28, {{0x4, 'syz0\x00'}}}]}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8}}]}, {0x0, '\x00', 0x1, 0xffffbffffffffffe}]}, 0x260)
setsockopt$EBT_SO_SET_ENTRIES(0xffffffffffffffff, 0x0, 0x80, &(0x7f0000000840)=@nat={'nat\x00', 0x19, 0x1, 0x200, [0x20000940, 0x0, 0x0, 0x20000970, 0x200009a0], 0x0, &(0x7f0000000800), &(0x7f0000000940)=[{}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x14, 0x98ab, 'teql0\x00', 'ip6gretap0\x00', 'ip_vti0\x00', 'nr0\x00', @empty, [0x0, 0xff, 0x0, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2}, [0xff, 0x0, 0xff, 0x0, 0x0, 0xff], 0x100, 0x138, 0x170, [@time={'time\x00', 0x18, {{0x7, 0x3, 0x13782, 0x14fdf, 0x80, 0x4, 0x1}}}, @nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x2}}}]}, [@snat={'snat\x00', 0x10, {{@random="07901c8f0140"}}}]}, @common=@dnat={'dnat\x00', 0x10, {{@local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}, 0x10}}}}]}]}, 0x278)
syz_open_dev$dmmidi(&(0x7f0000000c40)='/dev/dmmidi#\x00', 0xae6d, 0x200)

2018/03/31 01:45:00 executing program 2:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x8003e3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x405}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
r1 = open(&(0x7f0000000180)='./file0\x00', 0x101000, 0x1)
ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(r1, 0xc08c5336, &(0x7f0000000280)={0x6, 0x8000, 0x3cd, 'queue1\x00', 0x3f})
clock_gettime(0x0, &(0x7f0000000040)={<r2=>0x0, <r3=>0x0})
setsockopt$sock_timeval(r0, 0x1, 0x15, &(0x7f0000000080)={r2, r3/1000+30000}, 0x10)
setsockopt$inet_tcp_int(r0, 0x6, 0x17, &(0x7f0000000240), 0x4)
r4 = semget(0x3, 0x0, 0x1)
semctl$IPC_INFO(r4, 0x0, 0x3, &(0x7f0000000340)=""/226)
r5 = syz_open_dev$usbmon(&(0x7f00000000c0)='/dev/usbmon#\x00', 0x2, 0x2001)
getsockopt$inet_sctp6_SCTP_AUTOCLOSE(r5, 0x84, 0x4, &(0x7f0000000100), &(0x7f0000000140)=0x4)

2018/03/31 01:45:00 executing program 0:
clone(0x200, &(0x7f0000151000), &(0x7f0000000080), &(0x7f0000f8b000), &(0x7f0000000100))
mknod(&(0x7f0000b75ff8)='./file0\x00', 0x2001001, 0x0)
execve(&(0x7f0000f8aff8)='./file0\x00', &(0x7f0000000240), &(0x7f0000002000)=[&(0x7f0000001f00)='*vmnet1nodevmd5sum#.\x00', &(0x7f0000001f40)='cpuacct.usage_percpu_sys\x00', &(0x7f0000001fc0)='*vmnet1nodevmd5sum#.\x00'])
r0 = gettid()
r1 = syz_open_procfs(r0, &(0x7f0000000280)='syscall\x00')
readv(r1, &(0x7f0000000000)=[{&(0x7f0000001880)=""/127, 0x7f}], 0x1)
ioctl$EVIOCGABS2F(0xffffffffffffffff, 0x8018456f, &(0x7f0000001cc0)=""/23)
ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000001340)=<r2=>0x0)
ioctl$ION_IOC_HEAP_QUERY(r1, 0xc0184908, &(0x7f0000000040)={0x4, 0x22, 0x0, r1})
getsockopt$IP_VS_SO_GET_DESTS(0xffffffffffffffff, 0x0, 0x484, &(0x7f0000001700)=""/201, &(0x7f0000000100)=0xc9)
setsockopt$inet6_tcp_int(r1, 0x6, 0x26, &(0x7f0000000340)=0x5, 0x4)
getpriority(0x0, r2)
preadv(r1, &(0x7f0000000040), 0x0, 0x0)
lseek(r1, 0x1d, 0x0)
ioctl$DRM_IOCTL_DROP_MASTER(0xffffffffffffffff, 0x641f)
ioctl$EVIOCSABS3F(0xffffffffffffffff, 0x401845ff, &(0x7f0000000300))
ioctl$DRM_IOCTL_GEM_FLINK(r1, 0xc008640a, &(0x7f0000000140)={<r3=>0x0})
ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(r1, 0xc00c642d, &(0x7f00000002c0)={r3, 0x80000, r1})
finit_module(0xffffffffffffffff, &(0x7f00000001c0)=':wlan0vboxnet0trusted/\x00', 0x0)
process_vm_readv(0x0, &(0x7f0000001800)=[{&(0x7f0000001400)=""/142, 0x8e}, {&(0x7f00000014c0)=""/220, 0xdc}, {&(0x7f0000000200)=""/66, 0x42}, {&(0x7f0000001680)=""/123, 0x7b}], 0x4, &(0x7f0000001c40)=[{&(0x7f00000019c0)=""/53, 0x35}], 0x1, 0x0)
getsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(0xffffffffffffffff, 0x84, 0x1f, &(0x7f0000001d00)={0x0, @in6={{0xa, 0x0, 0x0, @loopback={0x0, 0x1}}}}, &(0x7f0000001dc0)=0x90)
setsockopt$inet_sctp_SCTP_DEFAULT_PRINFO(r1, 0x84, 0x72, &(0x7f0000001e00), 0xc)
ioctl$sock_netrom_SIOCADDRT(r1, 0x890b, &(0x7f00000000c0))
creat(&(0x7f0000000180)='./file0\x00', 0x0)

2018/03/31 01:45:00 executing program 5:
r0 = syz_open_dev$amidi(&(0x7f0000000400)='/dev/amidi#\x00', 0x401, 0x40)
accept4$llc(r0, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, &(0x7f0000000480)=0x10, 0x80800)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f0000005fd8)={'vcan0\x00', <r2=>0x0})
ioctl$KVM_SET_DEVICE_ATTR(r0, 0x4018aee1, &(0x7f0000000500)={0x0, 0x100000001, 0x0, &(0x7f00000004c0)})
connect$can_bcm(r1, &(0x7f0000001ff0)={0x1d, r2}, 0x10)
ioctl$TIOCGSID(0xffffffffffffff9c, 0x5429, &(0x7f00000002c0)=<r3=>0x0)
waitid(0x0, r3, 0x0, 0x1000009, &(0x7f0000000300))
r4 = syz_open_dev$vcsn(&(0x7f0000000000)='/dev/vcs#\x00', 0xcd8, 0x101000)
getsockopt$SO_BINDTODEVICE(r4, 0x1, 0x19, &(0x7f0000000280), 0x10)
ioctl$EVIOCGABS0(r4, 0x80184540, &(0x7f0000000240)=""/64)
bind$vsock_dgram(r1, &(0x7f00000003c0)={0x28, 0x0, 0x2711, @reserved=0x1}, 0x10)
exit(0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000200)={r4, 0x0, 0x47, 0xde, &(0x7f0000000080)="3541471374d1e455c1f501bb3e7418a21f930d9fb82ac3588f54ad5a1a9e778bdf654fa39f19bcbc6ee4636a10d409c877cfe11ba160f73d4cde40422564bfdb62d8e5f8ba5097", &(0x7f0000000100)=""/222, 0x4, 0x3f}, 0x28)
ioctl$KVM_SET_TSS_ADDR(r4, 0xae47, 0xd000)
ioctl$KVM_CHECK_EXTENSION(r4, 0xae03, 0xffffffffffffffff)
openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000580)='/dev/qat_adf_ctl\x00', 0x4600, 0x0)
sendmsg$can_raw(r1, &(0x7f0000001fc8)={&(0x7f000000a000)={0x1d}, 0x10, &(0x7f0000000040)={&(0x7f000000a000)=@canfd={{0x1}, 0x0, 0x0, 0x0, 0x0, "0327e1b22b5fcef7739c699f5ff986ca08990039576a7d5cb2bdac3fa80acf584ecb5fee496e6866856b76b5f700000000000000004e2f9663a918fa1efd9b0b"}, 0x48}, 0x1}, 0x0)
ioctl$VHOST_GET_VRING_ENDIAN(r0, 0x4008af14, &(0x7f0000000540)={0x0, 0x9})

[  193.814551] RSP: 002b:00007fa6ef25cc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
[  193.822238] RAX: ffffffffffffffda RBX: 00007fa6ef25d6d4 RCX: 0000000000454e79
[  193.829484] RDX: 0000000000000020 RSI: 0000000020000280 RDI: 0000000000000013
[  193.836738] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  193.843987] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000014
[  193.851237] R13: 00000000000003eb R14: 00000000006f7ea8 R15: 000000000000002e
[  193.858716] cgroup: cgroup_addrm_files: failed to add stat, err=-12
2018/03/31 01:45:00 executing program 1:
r0 = creat(&(0x7f0000000b40)='./file0\x00', 0x20)
ioctl$DRM_IOCTL_AGP_ALLOC(0xffffffffffffff9c, 0xc0206434, &(0x7f0000000b80)={0x5, <r1=>0x0, 0x0, 0x81})
ioctl$DRM_IOCTL_SG_FREE(r0, 0x40106439, &(0x7f0000000bc0)={0x3, r1})
r2 = socket$inet(0x2, 0x6, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f00000008c0)=@broute={'broute\x00', 0x20, 0x2, 0x3e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000280], 0x0, &(0x7f0000000240), &(0x7f0000000280)=ANY=[@ANYBLOB="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"]}, 0x460)
getsockopt$inet_sctp6_SCTP_CONTEXT(0xffffffffffffff9c, 0x84, 0x11, &(0x7f0000000000)={<r3=>0x0, 0x7}, &(0x7f0000000040)=0x8)
rt_sigpending(&(0x7f0000000940), 0x8)
getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r2, 0x84, 0xa, &(0x7f0000000140)={0x0, 0xa2b, 0x4, 0x7, 0x2, 0x20, 0x10000, 0x8a82, r3}, &(0x7f0000000180)=0x20)
r4 = geteuid()
ioprio_set$uid(0x3, r4, 0x2)
pwritev(r0, &(0x7f0000000880)=[{&(0x7f0000000100)="95052a60ce18b70bfb303e4ff1dae05df65913972a9d0830fbea0639ba11df87b46c19ea33a5d931bc77901f134cf826036ab5c1d5", 0x35}, {&(0x7f0000000800)="4842ec836b90a8c74c295a461c10f84ff7", 0x11}], 0x2, 0x0)
setsockopt$inet_group_source_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000680)={0x1000, {{0x2, 0x4e23, @multicast1=0xe0000001}}, {{0x2, 0x4e22, @broadcast=0xffffffff}}}, 0x108)
ioctl$DRM_IOCTL_AGP_ENABLE(0xffffffffffffffff, 0x40086432, &(0x7f0000000840)=0x2)
r5 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/vs/sync_version\x00', 0x2, 0x0)
ioctl$TIOCGSOFTCAR(r5, 0x5419, &(0x7f00000007c0))
r6 = socket$inet6(0x10, 0x2, 0x0)
sendmsg(r6, &(0x7f0000000080)={&(0x7f0000000240)=@un=@abs={0x1, 0x0, 0x4e23}, 0x80, &(0x7f0000000040)=[{&(0x7f00000001c0)="5500000018007f04002d1cb2a4a280930a0600007da843cf19d0f869390009402f002100040000001900050000fc1700000000dc1338d54400009b84136ef75afb83de448daa7227c43ab8220000060c", 0x50}], 0x1, &(0x7f00000000c0)}, 0x0)
socket$bt_cmtp(0x1f, 0x3, 0x5)
fcntl$addseals(r6, 0x409, 0x7)
getsockopt$inet_sctp_SCTP_PEER_AUTH_CHUNKS(r2, 0x84, 0x1a, &(0x7f0000000980)={r3, 0x14, "5500cfd9d1f5d1636b140b2c73d3e19e3afa850a"}, &(0x7f00000009c0)=0x1c)
r7 = syz_open_dev$sndmidi(&(0x7f0000000c00)='/dev/snd/midiC#D#\x00', 0x100000001, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f0000001640)=@broute={'broute\x00', 0x20, 0x1, 0x1e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20001700], 0x0, &(0x7f0000001980), &(0x7f0000001700)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1, [{{{0x13, 0x0, 0x0, 'vcan0\x00', 'ifb0\x00', 'syzkaller0\x00', 'vcan0\x00', @remote={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xbb}, [], @link_local={0x1, 0x80, 0xc2}, [], 0x70, 0xf8, 0x128}, [@common=@dnat={'dnat\x00', 0x10, {{@dev={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa]}, 0xffffffffffffffff}}}, @common=@IDLETIMER={'IDLETIMER\x00', 0x28, {{0x4, 'syz0\x00'}}}]}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8}}]}, {0x0, '\x00', 0x1, 0xffffbffffffffffe}]}, 0x260)
setsockopt$EBT_SO_SET_ENTRIES(r7, 0x0, 0x80, &(0x7f0000001180)=@nat={'nat\x00', 0x19, 0x1, 0x2, [0x20000940, 0x0, 0x0, 0x20000970, 0x200009a0], 0x0, &(0x7f0000000f00), &(0x7f0000001140)=ANY=[@ANYRES16=r1]}, 0x7a)
syz_open_dev$dmmidi(&(0x7f0000000c40)='/dev/dmmidi#\x00', 0xae6d, 0x200)

2018/03/31 01:45:01 executing program 3 (fault-call:3 fault-nth:47):
mkdir(&(0x7f00000001c0)='./file0\x00', 0x0)
mount(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000380)='./file0\x00', &(0x7f0000000300)='cgroup2\x00', 0x0, 0x0)
r0 = open$dir(&(0x7f000001bff4)='./file0\x00', 0x0, 0x0)
mkdirat(r0, &(0x7f0000000280)='./file0\x00', 0x20)
getdents64(r0, &(0x7f00000007c0)=""/250, 0x1015a)
fadvise64(r0, 0x0, 0x41, 0x3)
unlinkat(r0, &(0x7f0000000080)='./file0\x00', 0x200)
r1 = open$dir(&(0x7f0000000180)='./file0\x00', 0x105600, 0x81)
fchdir(r0)
link(&(0x7f0000000740)='./file1\x00', &(0x7f0000000780)='./file0/file0\x00')
renameat2(r1, &(0x7f0000000200)='./file1\x00', r0, &(0x7f0000000240)='./file0\x00', 0xfd1092750066ec78)
pivot_root(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='./file0\x00')
r2 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000100)='/dev/rfkill\x00', 0x2c42, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_LIST(r2, 0xc0505510, &(0x7f0000000480)={0x1000, 0x1, 0x474, 0x1, &(0x7f0000000140)=[{}]})
unlink(&(0x7f00000000c0)='./file0\x00')
symlinkat(&(0x7f0000000400)='./file0/file0\x00', r0, &(0x7f0000000440)='./file0/file0\x00')
iopl(0x6)
recvmsg$kcm(0xffffffffffffffff, &(0x7f0000000680)={&(0x7f0000000500)=@pppol2tp={0x0, 0x0, {0x0, <r3=>0xffffffffffffffff, {0x0, 0x0, @broadcast}}}, 0x80, &(0x7f0000000600)=[{&(0x7f0000000580)=""/80, 0x50}, {&(0x7f00000008c0)=""/4096, 0x1000}], 0x2, &(0x7f0000000640)=""/45, 0x2d, 0x206e}, 0x20)
r4 = syz_open_dev$sndpcmp(&(0x7f00000018c0)='/dev/snd/pcmC#D#p\x00', 0x5, 0x10a00)
ioctl$KVM_GET_DEVICE_ATTR(r4, 0x4018aee2, &(0x7f0000001940)={0x0, 0x100, 0x9, &(0x7f0000001900)})
recvfrom$ipx(r3, &(0x7f00000006c0)=""/52, 0x34, 0x100, &(0x7f0000000700)={0x4, 0x9a2, 0x4, "dc108d9d4391", 0x5}, 0x10)
renameat(r0, &(0x7f0000001980)='./file1\x00', r4, &(0x7f00000019c0)='./file0/file0\x00')

2018/03/31 01:45:01 executing program 6:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x200, 0x0)
socketpair$inet6_icmp_raw(0xa, 0x3, 0x3a, &(0x7f0000000680)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
setsockopt$sock_linger(r1, 0x1, 0xd, &(0x7f00000006c0)={0x400, 0x9}, 0x8)
perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
mmap(&(0x7f0000000000/0x9d7000)=nil, 0x9d7000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x7)
perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r4, &(0x7f0000e5b000)={0x2, 0x4e20, @multicast1=0xe0000001}, 0x10)
syz_open_dev$sg(&(0x7f0000000440)='/dev/sg#\x00', 0x0, 0x0)
connect$inet(r4, &(0x7f0000000100)={0x2, 0x4e20, @multicast2=0xe0000002}, 0x10)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000eb0fb8)={0x1, 0x3, &(0x7f00009ff000)=@framed={{0x18}, [], {0x95}}, &(0x7f00002bf000)='syzkaller\x00', 0x4, 0xb7, &(0x7f00006ab000)=""/183}, 0x48)
setsockopt$inet_tcp_int(r4, 0x6, 0x19, &(0x7f0000000240)=0x8, 0x4)
setsockopt$SO_BINDTODEVICE(r4, 0x1, 0x19, &(0x7f0000000000)="6970365f76746930000000000400", 0x10)
r6 = socket$kcm(0x29, 0x2, 0x0)
ioctl$sock_kcm_SIOCKCMATTACH(r6, 0x89e0, &(0x7f000031aff8)={r4, r5})
ioctl$sock_kcm_SIOCKCMCLONE(r6, 0x89e2, &(0x7f00000002c0)={<r7=>0xffffffffffffffff})
sendmsg$nl_xfrm(r7, &(0x7f0000000780)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000740)={&(0x7f0000000480)=@updpolicy={0xb8, 0x19, 0x0, 0x0, 0x0, {{@in=@loopback=0x7f000001, @in6=@mcast1={0xff, 0x1, [], 0x1}}}}, 0xffcb}, 0x1}, 0x0)
ioctl$sock_kcm_SIOCKCMUNATTACH(r7, 0x89e1, &(0x7f0000000040)={r4})
r8 = fcntl$getown(r3, 0x9)
r9 = accept4$inet(0xffffffffffffff9c, &(0x7f0000000700)={0x0, 0x0, @broadcast}, &(0x7f0000000740)=0x10, 0x80000)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r9, 0x84, 0x64, &(0x7f0000000300)=[@in6={0xa, 0x4e23, 0x0, @dev={0xfe, 0x80, [], 0xf}, 0x6}, @in={0x2, 0xff, @local={0xac, 0x14, 0x14, 0xaa}}, @in={0x2, 0x4e23, @multicast1=0xe0000001}, @in={0x2, 0x4e20, @dev={0xac, 0x14, 0x14}}, @in={0x2, 0x4e20, @multicast1=0xe0000001}, @in={0x2, 0x4e24}, @in={0x2, 0x4e24, @broadcast=0xffffffff}, @in6={0xa, 0x4e21, 0xed34, @local={0xfe, 0x80, [], 0xaa}, 0x3}, @in={0x2, 0x4e23, @loopback=0x7f000001}], 0xfffffffffffffe00)
ptrace$setregset(0x4205, r8, 0x0, &(0x7f00000005c0)={&(0x7f0000000080)="449ed0dd6831a7fb44eca4221b1fb01abfec082aa7d0ee6f0ba9db0ece7da2bd3f", 0x21})
r10 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r11 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x1fffd, 0x0)
syz_open_dev$sndtimer(&(0x7f00000000c0)='/dev/snd/timer\x00', 0x0, 0x0)
read(r0, &(0x7f0000000140)=""/50, 0x32)
fcntl$dupfd(r10, 0x0, r11)

2018/03/31 01:45:01 executing program 1:
r0 = creat(&(0x7f0000000b40)='./file0\x00', 0x20)
ioctl$DRM_IOCTL_AGP_ALLOC(0xffffffffffffff9c, 0xc0206434, &(0x7f0000000b80)={0x5, <r1=>0x0, 0x0, 0x81})
ioctl$DRM_IOCTL_SG_FREE(r0, 0x40106439, &(0x7f0000000bc0)={0x3, r1})
r2 = socket$inet(0x2, 0x6, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f00000008c0)=@broute={'broute\x00', 0x20, 0x2, 0x3e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000280], 0x0, &(0x7f0000000240), &(0x7f0000000280)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff01000000110000000000000000006970366772657461703000000000f8010000000000006e000000000000000000697036746e6c3000000000000000000073797a5f74756e0000000000000000000180c200000000000000ff00aaaaaaaaaabb00000000000000007000000008010000580100005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a30000000000000000000000000000000000000000000000000000000004c45440000000000000000000000000000000000000000000000000000000000280000000000000073797a3000000000000000000000000000000000000000000000000000000000000000000000000049444c4554494d4552000000000000000000000000000000000000000000000028000000000000000000010073797a30000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001000000ffffffff010000000d0000000000000086dd73797a6b616c6c65723000000000000074756e6c3000000000000000000000007369743000000000000000000000000069666230000000000000000000000000000000000000000000000000ffffffffffff000000000000000030010000b001000000020000697036000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000ffffac1414aa0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006c696d6974000000000000000000000000000000000000000000000000000000200000000000000000000000ec00000000000000000000000000000000000000000000000000000049444c4554494d4552000000000000000000000000000000000000000000000028000000000000008100000073797a3100000000000000000000000000000000000000000000000000000000000000004e46515545554500000000000000000000000000000000000000000000000000080000000000000000000000000000004c45440000000000000000000000000000000000000000000000000000000000280000000000000073797a30000000000000000000000000000000000000000000000000000000000000000000000000"]}, 0x460)
getsockopt$inet_sctp6_SCTP_CONTEXT(0xffffffffffffff9c, 0x84, 0x11, &(0x7f0000000000)={<r3=>0x0, 0x7}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r2, 0x84, 0xa, &(0x7f0000000140)={0x0, 0xa2b, 0x4, 0x7, 0x2, 0x20, 0x10000, 0x8a82, r3}, &(0x7f0000000180)=0x20)
setsockopt$inet_group_source_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000680)={0x1000, {{0x2, 0x4e23, @multicast1=0xe0000001}}, {{0x2, 0x4e22, @broadcast=0xffffffff}}}, 0x108)
sendmsg(r2, &(0x7f0000001100)={&(0x7f0000000c80)=@pppol2tpv3={0x18, 0x1, {0x0, r0, {0x2, 0x4e24, @broadcast=0xffffffff}, 0x2, 0x3, 0x3}}, 0x80, &(0x7f0000000dc0)=[{&(0x7f0000000d00)="de67ae2964cc9d7cd61a3bc6efd2ec98e3caa7d77a20919b47279dd7af4645aa87d892a3d7ee140da51ce11c30", 0x2d}, {&(0x7f0000000d40)="d6e2ef74bdd7bb68aa4a8117c97b16070af0bff6d0fdd4d3e402bc1d89404e433805010cc25b00c5a1e90b7058a0f89d4b743e8611550cbc253f79a9e68268fe50fa832d6565b4894002d5cccafa8fb535565f225107005b6a619bf3d0", 0x5d}], 0x2, &(0x7f0000000e00)=[{0x50, 0x10d, 0x9fa, "237aafaff181f8499cc142750f3a781ac17fef2e5725bb24dc8d1dcb67c2b1129053481530012f2db5b4524f1237f0b8c8caff889712b31d36e3a9f06fcfc4"}, {0x38, 0x117, 0x200, "dd06160fffc4ecbec30a1e63dbd3650cac803e55417f092d7221fae72f276448c6fe055c560e43"}, {0x48, 0x102, 0x30, "d4fc78c8b5eeb2313ba6c16681d16e04f76d6fa01c76739e3e3d3d0646cd27b0e00ae5ec68907c871aaa9e6cc6c425f3e5ea51aefa24ff8d"}, {0x78, 0x104, 0x9, "ef3c330eca8188cb6cf91678e2d46c91fe47aad48b3cb6dad4dc4b74da24d259d93158798678fdde264932d1b7d03349c615de148e6bf234004492576b60090bcfe5a9a13795f73bcdb92cf34d9d2398b70770a409f50e91f19993cfa0192ee1a32bd952"}, {0x100, 0x84, 0x400, "66984e3b9a47c670c11c6c62ff35953d7c6c7bdcb2118acdbbf6c60de10f794895ceb1b014795818506737c842afd399b8437528ad0df94823f89a270905dac0d63e251a50ffffd58d0ef35c9b37296438ffe2617e2fb9d28c8149204ad84dce9c364b8fdd9976c4c5c494c8cf8f64ae0a062c783267e7c8171a9e4cc299cfb6651f7ec3e6f34cb258e0592f83c6507b21c35100d75ff09c0966aaf4c74cd3be6448b9e30a88ea1223139397ed2728191718d7da4dab7a50c37ff1bd67a5d082a83cc9a6165142e1a729a860fb4cced83e3a860bae11623ed736bd611c97b9a34110d0f16cfd385a9925d8298593"}, {0x90, 0x18d, 0xffff, "5208187fdc26583eb7d00a666b96e54b50ccee23bcf7708da14821da22b86032e92c182bff0b49bbe877aa759fa7272799188888b949605f05fa5162ec28793d52e94cb37ac264570532b56dff85b8f370c78cd266916d3081002e0343c345acad6f1a1c00cae2e916426cf0c364f311b9a812cc891f3b9b73"}], 0x2d8}, 0x8000)
ioctl$DRM_IOCTL_AGP_ENABLE(0xffffffffffffffff, 0x40086432, &(0x7f0000000100))
r4 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/vs/sync_version\x00', 0x2, 0x0)
ioctl$TIOCGSOFTCAR(r4, 0x5419, &(0x7f00000007c0))
r5 = socket$inet6(0x10, 0x2, 0x0)
sendmsg(r5, &(0x7f0000000080)={&(0x7f0000000240)=@un=@abs={0x1, 0x0, 0x4e23}, 0x80, &(0x7f0000000040)=[{&(0x7f00000001c0)="5500000018007f04002d1cb2a4a280930a0600007da843cf19d0f869390009402f002100040000001900050000fc1700000000dc1338d54400009b84136ef75afb83de448daa7227c43ab8220000060c", 0x50}], 0x1, &(0x7f00000000c0)}, 0x0)
socket$bt_cmtp(0x1f, 0x3, 0x5)
fcntl$addseals(r5, 0x409, 0x7)
syz_open_dev$sndmidi(&(0x7f0000000c00)='/dev/snd/midiC#D#\x00', 0x100000001, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f0000001640)=@broute={'broute\x00', 0x20, 0x1, 0x1e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20001700], 0x0, &(0x7f0000001980), &(0x7f0000001700)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1, [{{{0x13, 0x0, 0x0, 'vcan0\x00', 'ifb0\x00', 'syzkaller0\x00', 'vcan0\x00', @remote={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xbb}, [], @link_local={0x1, 0x80, 0xc2}, [], 0x70, 0xf8, 0x128}, [@common=@dnat={'dnat\x00', 0x10, {{@dev={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa]}, 0xffffffffffffffff}}}, @common=@IDLETIMER={'IDLETIMER\x00', 0x28, {{0x4, 'syz0\x00'}}}]}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8}}]}, {0x0, '\x00', 0x1, 0xffffbffffffffffe}]}, 0x260)
setsockopt$EBT_SO_SET_ENTRIES(0xffffffffffffffff, 0x0, 0x80, &(0x7f0000000840)=@nat={'nat\x00', 0x19, 0x1, 0x200, [0x20000940, 0x0, 0x0, 0x20000970, 0x200009a0], 0x0, &(0x7f0000000800), &(0x7f0000000940)=[{}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x14, 0x98ab, 'teql0\x00', 'ip6gretap0\x00', 'ip_vti0\x00', 'nr0\x00', @empty, [0x0, 0xff, 0x0, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2}, [0xff, 0x0, 0xff, 0x0, 0x0, 0xff], 0x100, 0x138, 0x170, [@time={'time\x00', 0x18, {{0x7, 0x3, 0x13782, 0x14fdf, 0x80, 0x4, 0x1}}}, @nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x2}}}]}, [@snat={'snat\x00', 0x10, {{@random="07901c8f0140"}}}]}, @common=@dnat={'dnat\x00', 0x10, {{@local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}, 0x10}}}}]}]}, 0x278)
syz_open_dev$dmmidi(&(0x7f0000000c40)='/dev/dmmidi#\x00', 0xae6d, 0x200)

2018/03/31 01:45:01 executing program 0:
r0 = socket(0x10, 0x2, 0xc)
accept4$inet6(r0, &(0x7f0000000040)={0x0, 0x0, 0x0, @loopback}, &(0x7f0000000080)=0x1c, 0x80000)
write(r0, &(0x7f0000000000)="1f0000000104fffffd3b000007110000f30501000b000100030423ca0000cf", 0x1f)
io_setup(0x1, &(0x7f00000000c0)=<r1=>0x0)
r2 = syz_open_dev$midi(&(0x7f00000001c0)='/dev/midi#\x00', 0x9b9, 0x600)
setsockopt$inet_sctp6_SCTP_MAX_BURST(r0, 0x84, 0x14, &(0x7f0000000280)=@int=0x22c, 0x4)
io_cancel(r1, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x6, 0x8, r0, &(0x7f0000000100)="46e54ede6814758464f475537bd5839704dd6fc641f745fa2b57ecfd61994d9db0b4ef12c38f3c450a60b5dc9303882ff610c5962667fba35e076bd6959f94b04bc215f7f07d82ee7ddffe8b332d6f210c5cccf6c2cbbdde377e9d809d5b8bd48ce45b5e36d8c1124b8b58a78c856ef1a4bad1c7880d9595640262ff16fd8ff3d4ad80bd24ab0f46090829055bec588c203498797010bf463f70a581d3e1687026a2b39b66e6f4a0e69c0b", 0xab, 0x7, 0x0, 0x1, r2}, &(0x7f0000000240))

2018/03/31 01:45:01 executing program 7:
clone(0x200, &(0x7f0000000100)="abbcd764d5b6fd853189b4a102b248f0de7c0a5cc328ca13455598dc3d760fa566c64d7cb06a7e15cdb085165670f42b32809442c69a5942d03eb3fd42bf0ebb0272fc4beb43f269f26f57bbb67316f7c76c8d570edaa564720b4dfd8f32453fc2354ddc753155ac051e9e9657989f0bbf1c03e4cd9f735c6d1b95719dbbb1c04092f54f44256722d954f0000000000000000000000000000000", &(0x7f00000000c0), &(0x7f00008c8000), &(0x7f0000828ffe))
mknod(&(0x7f0000000000)='./file0\x00', 0x1000000000001040, 0x0)
execve(&(0x7f000007b000)='./file0\x00', &(0x7f0000000180), &(0x7f0000000040))
r0 = gettid()
r1 = syz_open_dev$mice(&(0x7f0000149000)='/dev/input/mice\x00', 0x0, 0x0)
execve(&(0x7f00000001c0)='./file0\x00', &(0x7f0000001540)=[&(0x7f0000000200)='user\x00', &(0x7f0000000240)='vmnet0\x00', &(0x7f0000000280)='user\x00', &(0x7f0000001480)='user\x00'], &(0x7f00000015c0)=[&(0x7f0000001580)='#keyring\x00'])
msgget$private(0x0, 0x400)
timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000))
uselib(&(0x7f00000002c0)='./file0/file0\x00')
mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x0, 0x32, 0xffffffffffffffff, 0x0)
getsockopt$inet_sctp6_SCTP_INITMSG(r1, 0x84, 0x2, &(0x7f0000000040), &(0x7f0000000080)=0x8)
tkill(r0, 0x1000000000015)

2018/03/31 01:45:01 executing program 5:
r0 = syz_open_dev$amidi(&(0x7f0000000400)='/dev/amidi#\x00', 0x401, 0x40)
accept4$llc(r0, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, &(0x7f0000000480)=0x10, 0x80800)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f0000005fd8)={'vcan0\x00', <r2=>0x0})
ioctl$KVM_SET_DEVICE_ATTR(r0, 0x4018aee1, &(0x7f0000000500)={0x0, 0x100000001, 0x0, &(0x7f00000004c0)})
connect$can_bcm(r1, &(0x7f0000001ff0)={0x1d, r2}, 0x10)
ioctl$TIOCGSID(0xffffffffffffff9c, 0x5429, &(0x7f00000002c0)=<r3=>0x0)
waitid(0x0, r3, 0x0, 0x1000009, &(0x7f0000000300))
r4 = syz_open_dev$vcsn(&(0x7f0000000000)='/dev/vcs#\x00', 0xcd8, 0x101000)
getsockopt$SO_BINDTODEVICE(r4, 0x1, 0x19, &(0x7f0000000280), 0x10)
ioctl$EVIOCGABS0(r4, 0x80184540, &(0x7f0000000240)=""/64)
bind$vsock_dgram(r1, &(0x7f00000003c0)={0x28, 0x0, 0x2711, @reserved=0x1}, 0x10)
exit(0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000200)={r4, 0x0, 0x47, 0xde, &(0x7f0000000080)="3541471374d1e455c1f501bb3e7418a21f930d9fb82ac3588f54ad5a1a9e778bdf654fa39f19bcbc6ee4636a10d409c877cfe11ba160f73d4cde40422564bfdb62d8e5f8ba5097", &(0x7f0000000100)=""/222, 0x4, 0x3f}, 0x28)
ioctl$KVM_SET_TSS_ADDR(r4, 0xae47, 0xd000)
ioctl$KVM_CHECK_EXTENSION(r4, 0xae03, 0xffffffffffffffff)
openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000580)='/dev/qat_adf_ctl\x00', 0x4600, 0x0)
sendmsg$can_raw(r1, &(0x7f0000001fc8)={&(0x7f000000a000)={0x1d}, 0x10, &(0x7f0000000040)={&(0x7f000000a000)=@canfd={{0x1}, 0x0, 0x0, 0x0, 0x0, "0327e1b22b5fcef7739c699f5ff986ca08990039576a7d5cb2bdac3fa80acf584ecb5fee496e6866856b76b5f700000000000000004e2f9663a918fa1efd9b0b"}, 0x48}, 0x1}, 0x0)
ioctl$VHOST_GET_VRING_ENDIAN(r0, 0x4008af14, &(0x7f0000000540)={0x0, 0x9})

2018/03/31 01:45:01 executing program 2:
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
sendmmsg(r0, &(0x7f00000001c0)=[{{&(0x7f0000000380)=@nl=@unspec, 0x80, &(0x7f0000002b00), 0x0, &(0x7f0000002b40)}}, {{&(0x7f0000000040)=@nl=@unspec, 0x80, &(0x7f0000000340), 0x0, &(0x7f0000000400)}}], 0x2, 0x0)
getsockopt$inet_mreqn(r0, 0x0, 0x24, &(0x7f00000015c0)={@remote, @rand_addr, <r1=>0x0}, &(0x7f0000001600)=0xc)
setsockopt$inet_mreqn(r0, 0x0, 0x24, &(0x7f0000001640)={@local={0xac, 0x14, 0x14, 0xaa}, @remote={0xac, 0x14, 0x14, 0xbb}, r1}, 0xc)

2018/03/31 01:45:01 executing program 4:
r0 = request_key(&(0x7f0000000200)='encrypted\x00', &(0x7f0000000300)={0x73, 0x79, 0x7a, 0x3}, &(0x7f0000000340)='wp384-generic\x00', 0xfffffffffffffff8)
r1 = add_key$keyring(&(0x7f00000003c0)='keyring\x00', &(0x7f0000000080)={0x73, 0x79, 0x7a}, 0x0, 0x0, r0)
r2 = add_key$keyring(&(0x7f00000000c0)='keyring\x00', &(0x7f0000000000)={0x73, 0x79, 0x7a}, 0x0, 0x0, r1)
r3 = add_key$user(&(0x7f00003bd000)='user\x00', &(0x7f0000a00000)={0x73, 0x79, 0x7a}, &(0x7f0000facfff)="01", 0x1, r2)
r4 = add_key$user(&(0x7f0000fc0ffb)='user\x00', &(0x7f0000752ffb)={0x73, 0x79, 0x7a, 0x3}, &(0x7f00003eb000)="b3", 0x1, r2)
keyctl$update(0x2, r4, &(0x7f0000000240)="df02754677212dfc3e2acc26fdc3ffa64813da494137e175e9f2780ac5e2a09f43a1fcebf272a5a135de92bf4a9033933824f6e6aa023895113293535d1c0066d20e0f275188b4b4c187e18774fc2227cbb60fc6697f5337726164c8fbe1181e6d50986cd98a5c44ac0ec375deb27eafcf7d06438f252510d87bd91d03e7dc2faed85adcd88ca30e75b1e143a72d94defa187e48b89efbbbcc9b9a9a307353df7a21affce4e9149eb122cbc356cb681365afd979e97b57b596e901864a68679f", 0xc0)
keyctl$dh_compute(0x17, &(0x7f0000000100)={r3, r4, r3}, &(0x7f0000000140)=""/5, 0x5, &(0x7f00000001c0)={&(0x7f0000000180)={'wp384-generic\x00'}})

[  194.913278] FAULT_INJECTION: forcing a failure.
[  194.913278] name failslab, interval 1, probability 0, space 0, times 0
[  194.924589] CPU: 0 PID: 13900 Comm: syz-executor3 Not tainted 4.16.0-rc7+ #372
[  194.931955] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  194.941307] Call Trace:
[  194.943899]  dump_stack+0x194/0x24d
[  194.947532]  ? arch_local_irq_restore+0x53/0x53
[  194.952213]  should_fail+0x8c0/0xa40
[  194.955933]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  194.961043]  ? rb_first_postorder+0xa0/0xa0
[  194.965367]  ? __mutex_lock+0x16f/0x1a80
[  194.969432]  ? trace_event_raw_event_lock+0x340/0x340
[  194.974621]  ? trace_hardirqs_off+0x10/0x10
[  194.978955]  ? find_held_lock+0x35/0x1d0
[  194.983021]  ? __lock_is_held+0xb6/0x140
[  194.987093]  ? check_same_owner+0x320/0x320
[  194.991413]  ? lock_downgrade+0x980/0x980
[  194.995550]  ? rcu_note_context_switch+0x710/0x710
[  195.000472]  should_failslab+0xec/0x120
[  195.004431]  __kmalloc_track_caller+0x5f/0x760
[  195.009003]  ? string+0x180/0x200
[  195.012438]  ? kstrdup_const+0x39/0x50
[  195.016306]  kstrdup+0x39/0x70
[  195.019476]  kstrdup_const+0x39/0x50
[  195.023169]  __kernfs_new_node+0xa2/0x570
[  195.027294]  ? kernfs_dop_revalidate+0x380/0x380
[  195.032037]  ? snprintf+0xc0/0xf0
[  195.035465]  ? vsprintf+0x40/0x40
[  195.038896]  ? debug_lockdep_rcu_enabled+0x77/0x90
[  195.043805]  ? cgroup_file_name+0x1d0/0x1d0
[  195.048106]  kernfs_new_node+0x80/0xe0
[  195.051970]  __kernfs_create_file+0x4b/0x320
[  195.056356]  cgroup_addrm_files+0x3c5/0xa70
[  195.060659]  ? cgroup_file_write+0x710/0x710
[  195.065049]  ? cgroup_idr_replace+0x3f/0x50
[  195.069351]  ? __lock_is_held+0xb6/0x140
[  195.073394]  ? __local_bh_enable_ip+0x121/0x230
[  195.078039]  ? online_css+0x224/0x2e0
[  195.081819]  css_populate_dir+0x198/0x420
[  195.085949]  cgroup_apply_control_enable+0x390/0xbc0
[  195.091034]  ? cgroup_propagate_control+0x570/0x570
[  195.096031]  ? css_populate_dir+0x289/0x420
[  195.100331]  cgroup_mkdir+0x56f/0xfc0
[  195.104107]  ? __lock_is_held+0xb6/0x140
[  195.108146]  ? cgroup_destroy_locked+0x750/0x750
[  195.112882]  ? rcu_read_lock_sched_held+0x108/0x120
[  195.117874]  ? kmem_cache_free+0x258/0x2a0
[  195.122084]  ? set_nlink+0xc1/0x160
[  195.125687]  ? debug_lockdep_rcu_enabled+0x77/0x90
[  195.130592]  ? generic_permission+0x105/0x3c0
[  195.135063]  ? cgroup_destroy_locked+0x750/0x750
[  195.139795]  kernfs_iop_mkdir+0x153/0x1e0
[  195.143921]  vfs_mkdir+0x390/0x600
[  195.147444]  SyS_mkdirat+0x22b/0x2b0
[  195.151136]  ? SyS_mknod+0x480/0x480
[  195.154830]  ? do_syscall_64+0xe9/0x940
[  195.158777]  ? SyS_mknod+0x480/0x480
[  195.162467]  do_syscall_64+0x281/0x940
[  195.166330]  ? vmalloc_sync_all+0x30/0x30
[  195.170452]  ? _raw_spin_unlock_irq+0x27/0x70
[  195.174921]  ? finish_task_switch+0x1c1/0x7e0
[  195.179393]  ? syscall_return_slowpath+0x550/0x550
[  195.184297]  ? syscall_return_slowpath+0x2ac/0x550
[  195.189202]  ? prepare_exit_to_usermode+0x350/0x350
[  195.194196]  ? entry_SYSCALL_64_after_hwframe+0x52/0xb7
[  195.199535]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  195.204356]  entry_SYSCALL_64_after_hwframe+0x42/0xb7
[  195.209522] RIP: 0033:0x454e79
[  195.212687] RSP: 002b:00007fa6ef25cc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
[  195.220372] RAX: ffffffffffffffda RBX: 00007fa6ef25d6d4 RCX: 0000000000454e79
[  195.227620] RDX: 0000000000000020 RSI: 0000000020000280 RDI: 0000000000000013
[  195.234867] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  195.242113] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000014
[  195.249357] R13: 00000000000003eb R14: 00000000006f7ea8 R15: 000000000000002f
[  195.256816] cgroup: cgroup_addrm_files: failed to add max, err=-12
2018/03/31 01:45:02 executing program 4:
r0 = syz_open_dev$vcsa(&(0x7f00000017c0)='/dev/vcsa#\x00', 0x20, 0xa000)
getsockopt$netrom_NETROM_IDLE(r0, 0x103, 0x7, &(0x7f0000000100)=0x5, &(0x7f0000000140)=0x4)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = eventfd2(0x7f, 0x11)
ioctl$KVM_ASSIGN_DEV_IRQ(r2, 0x4040ae70, &(0x7f0000000180)={0x8, 0xff, 0x3b37, 0x202})
sendto$unix(r0, &(0x7f0000001800)="6165e846e54686630cee6eff2f7fc82a59b3dce8d9647af7456b189d8863020145326e4930b2749d2b3d2bdcf2cf62570df3a00de109e7525ab45acf0f5c6ead9f3c173b35512751cdec4205640c83d5810e06550fdd2532a242632c68ed0b291fe42b7082277f5e77c5af8f045bce82b8d31e5ac588e8be7ebf723fd7774de28c1ac3df4e9732dcacd78057df923a5f7dbd8b85ba017c8e082e024cfbbd02", 0x9f, 0x10, &(0x7f00000018c0)=@abs={0x1, 0x0, 0x4e22}, 0x6e)
ioctl$KVM_IOEVENTFD(r2, 0x4040ae79, &(0x7f0000000080)={0x7001, &(0x7f000002d000), 0x2, r3, 0xa})
setsockopt$packet_rx_ring(r0, 0x107, 0x5, &(0x7f00000001c0)=@req3={0x3, 0x200, 0x3, 0x64, 0x0, 0x2, 0x3}, 0x1c)
ioctl$KVM_IOEVENTFD(r2, 0x4040ae79, &(0x7f0000683000)={0x1, &(0x7f000002d000), 0x2, r3, 0xb})
ioctl$KVM_CREATE_DEVICE(r3, 0xc00caee0, &(0x7f0000000000)={0x6, <r4=>r3, 0x1})
r5 = getpgrp(0x0)
r6 = getpgid(0xffffffffffffffff)
getsockopt$inet6_IPV6_IPSEC_POLICY(r4, 0x29, 0x22, &(0x7f0000000240)={{{@in=@loopback, @in6=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r7=>0x0}}, {{@in6=@local}, 0x0, @in6=@mcast1}}, &(0x7f0000000340)=0xe8)
sendmsg$nl_netfilter(r4, &(0x7f00000000c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x40100001}, 0xc, &(0x7f0000001700)={&(0x7f0000000380)=ANY=[@ANYBLOB="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", @ANYRES32=r5, @ANYBLOB="1c60b3c620a8d51874972ee7ccb3331a9f359decac0e17e7252d062df81302b90771ade5b3f4ce0edc5ced7b73af5a2ccafbceaec590bcac11c5805e9f3a70879d04379d944dcbf4c5f5e629ceb1f21e2b8b69b8efd662b852a6fc8509cf543fdf4e48c1b33bd72079c2c3d7a97fcb77d60f18bbff04e29cb1a02b31b918668c3b8391591a5caead2df5f98f1ce934eefba324e2f6d5c314000300fe8000000000000000000000000000bb08000d00", @ANYRES32=r6, @ANYBLOB="d8102700a0c1c85a8da765e2224220e6733085180c5699bfbb6f18351f2b39de6e89fdfb9181312ae8ddb3330edd5f8f9885d66de4ef46720c100041002f6465762f6b766d0000000076d5504f9cb5b3458afc5098cf18745b78b8bfe0380083ba42236e5d5de01c0799f4ab67f9e3a5c7dc632d41a496de769134cbada921f0c1c0f9a6bb924e83e8adc7f7776564313a750b12b2f6c7d9ac9362c9f18cb670475cd02cb133c0e2e1e999b11321383200b77b429216333bd95b0b9179486a77100038002f6465762f7663736123000008006700", @ANYRES32=r7, @ANYBLOB="f5335e71836e188769e201f1686dba0c475d4e8b264f14215ba6001dc0d129e0b4709df4ffbd4941adc77557531740ffabe060a49c3b589053ec768516beb40509995e540a07187a5e0740218bacb60859a293018ae7d48ac60d68957f5fd217377548750db6d38e998e3b5b1d8eeaa12a5e7043385d795a56e9ba6b2ae710054f1a7605e3abec368f1bca21a7f3553e203f39600ce63aebf93e29e353b6184950f894dc35e3b86c754423cc88eb79db0efd8091ee3b2bbb880e3b70da7a2f7d24a756ade4487c3ac81ae50fe71692c415da40a4ad9d2f3760251097c7d67e41d474347347d70a7fc3938da91727174e683287e1aa106353449cadb7500614925198df3fd6c90b333bcba89d4c5e0a0dbe3512acba4422535f8a5cc4b53f1739d7be345ea3e24e1803f857a048f28b424740ab218559d7a6ef5bf46a51e3332a349adc03c97e312d53a339554018203163745fcb3c2bd4261b08f6ac98acee98f52b913da303354be3bb5d6bbe16ea01f85b808d4043569556f41be2c0ffb02dc210d1a1c9516ad0f415a52a835f073c3f2e89ff02df3c6e67ba03a7d4db01329eb0d8bf367aca29326c4a0809050899ad8df2be40a730135ae0bb99a2d83a1591c2430a8d3ed4fad3fc69b428995b687ea76198d052a6da1be5227e03937e8ca8bba21d08dbded3cd3f9ba1cc92842863c536f56cee939dce477b3a700e9f7db29a6cfdecbcc35a1a1d49411a1af8a149cadf3b0f037b3ff31dac9136fe722b46f136ca27fdd739869b63b7cf46b95fa44f375da393e93594e88f20185cea362c23b31eef8ad27f8eb1c5d2b13242acdee808ee1f265744834af213567e811664c2e5e33a54b33d091cfa5e1952b836f644b6b78cb72491f2e3d81d3de8f79e719550804b8a84045ccc4c6ff901ff5c0d22b56ddc21e1bebc6a9bbbe9386510d69e8294071a599a76a8db8f548be35bd532b162a60a0591379a01ca67dc1c3f0ff60200741436caa2963cd9288d7a657401067b6806982be48e68949c399faa83f4ac4544bd8935f5e506c97259d29fcbe21baf0342c7d812f622ef58e5dbd421f7a26cd9255a09e1f1130426e9eaae7a332b5a3818784b69568d23bc49971c499f77c4848b3d4359d92d94a8c9c387068796e4675734375e97332a8e4e888dd4d9c27f34ae13acc82291a64830aa5368b3055d2e53dd171c3b6916d8c6c59444be27deb82b59930f2be83f72608c404b766e9f285da813c765e1af9e318c90f42ba25a99dbd0288a4a84200fc92a3edf1cb6d5d92230735f51379d532d2c33f7ea267eec0e4f3561f6c0dbd30969c9853569bfc0db4175a26d54733b4323d986666f5566dc56e94c9406c0e051dd159b90834243cba98dbebe78fdd9d9ba3c7646a2cfccd2d68c4189b8ebf4a375ded90cf3af25802cf0f0f98cdaa4738b7050a3a15129ce6cf9445dff2cf4617e896114b6e3130939b5e99d8ab5dd61ff7b70be3db8990d134b48d30bb6bd17b216c4ab3848172b6559287c58302727556b42a8a49ebf462a0177fa38ffbd1276eb520bcf2f6dc74be1f4445d01b5e8ad5dedd5b0f21af1adf834657d8330d0670e5e24fa36e2336a4db0bcbc1f3de48cd2328141969dff962fae2b1db0f6579131df2c8846ed831065101a6b9c7cfa005661923aa660aca2be252423e8cf96d90a1bffd845a44453d280540917595520cd8b6a19a31373184a929dcc6ec6f4791a1d3d1dfc0c8a6e48cc24b144a9d7f04eabec11cfcdc8cf06590a2e72fed835c85e2bb37ef1ae9093f7dc44a12459b44b7d5ca1fac97e1ba398cb88e06588ce60a30106485c2f60a3944627660811a18e7f63142af74ad4db4b2676b34257c6747c7639a5bf3138f7dab067a7ef5dc2350a71f07c06a0615b3e2e45ca89f9c6214d5d57a8e1861e3df899e991e499e697e3f477a854c8d02cd2074883eb9f9628901930e90a923d174fc28939cdc8edb0aed6e87ec22076c426dd5165e8006b935ac865a9edd137f5c6e156acfe7ee5650aa2acbcf40030d887a1c0b4cd274e690a66f069fa3ec3befa8e3afcaf952b1ec843de9070fed763fd68937b78e5966c44fa0a4100bb86e0b0734c6a9f53846d45bf97b7d7ddb2f8925145c10dd315cf6b61c1ebf1fd3b2e5790a8819f2a0c2cb284a99f8d40e3f189b8b718ab8d233981e61b61d50bf3be10ec3fc423896255c613576c24b218ad389a0707b8e6273d1e03a658f6a0d7929ac423508cfc943cba1f45067796be7980929c5c4b653c9b41fd2015fd32905154ca09ea3d156a16c5efaf81764d7f639af7c5def3632347ab99d78bb28d7dbac95dbc25e5eb1a06e6cdd1c9f71dde85ea5b7846517fdeb15ce71effaa28799e407e0e788c3d6cae3bfe6725ef18d3aeeffee113be756a3770d9d11a8440e2241de4a3769c7a843c3ebb590b5ba837f82377126bcc17a48943c27ac0c4db4b881fba88d15f04b8c8ee8690a74197ea350bce2342c23084649ace06853ae842c313feeec2bc0e2a7762a608219793bc61527a7978177935282c8bca4ee4e012634593cf116dcb5bafa49a8a2ed4ee56865bdc5b05b89da47f93e40f63f793fbe5d1eadeb0dea835d2292fd27320c5a6319dc8362229c2c5f2676e9d36b40829b556c533c0b600b0b9f7e3f8ea9419d6281dddab6f730b760e18cb370bb0d6f113a9c15ecef094f1a3abc0c4cfd58669c9e04010ff7dab5f977d207391fa3015b835520368a313b4e8234c63249f0b83b7cd86489872525fba0c93a649ab0e55cc48d990c6ada50d4e2ce88226e2546db52b65688f1532a214556ea5639d98bf86baadb1df33b9c753602b413ce03a9f7266701f70d1cb981391532f7e79788cb017617a22c1a7968f07468afb866ac1c965d3b2bbe90a7735de520f02605a52b7ef8d77280d4297fe6b0a1c3b4dbb430fccd90e47f703389fa9afdc8aea5bce06f9a847fa593d0be93f2b9ce741aa8c8e3617abec83f477a034eb1ac4715cf3fec2454ad54d35ef7877110e2b7698f9b36e0ddddf4dd93a329f1344cef588d7e6155ca2cff9d5613d216f385cbec98429aeb0c916b418d210a65119ba6fad19048d03919dfc11e819b6c326eb27b9aa954ad1ae4ecedfaef6e643626157305dd882d77086aedd6924a9bb151d962b72efc30db8832ad0edb8e7047335b3600f3612e88b4d7b303989e227389d817c1ea9e233f3025f126b243a7e2aeb655ad9dff075e9abae3e7ad311f9791f964c267baff87538972cdf0669d8600e3b698edeae094a4e356e46b6f0375d6baa9752762f02f8433fb1ccdac1e5cae016994363ca54aa6e4cb0cc26253a571d22d591dad51cea0a2adda1a5b845b0d7d0836d9f8c24da68faae6bda463c0cb1582ebe46793cbd614e825d1b034260f20b89fb3f463d1f4aaaa988decd294119bc4b0e33c370625a6c9d54f42231d330efb9ae55148d60a7bfe9eafb3f79c43a7f16dfb6ccc326ba5fc104508854fadbf3516f005b7e92644f7e99a6d9df2df77a2d597ab62e47e49124eb81f0e1c7c5f4883f1bb122dca9181c739879acd348bb1d29f07723e709f8dac8b6a955b832cd963453fce59c971513fb8e709ea3caf7e911a765390d5cfe0df88667b842242eec186e5540be22dea47a0befebff4363a81eba4316985f80d8829c25969afb03691e0d23e0e12cfd07052c060222ab1bb50ba9d4e9c57b3ae4c35d7955b8d096ae86a83b4f3facb1c06ca8ec42413742914dd2733edfc47272e3492c563f6c0caae5add4f065cba4e680c925207dadad4e99c8185584164ee248318ea9b42c758b5207db0b6bbb987787941fbe1914da7b48e46dc07ae49c368a1fe65a3e35967315a1fc179973ef4e397c61967f7173ed04dd0e385ddf3d89b138b91ead238052146ed658fe41b9f3610df1283d858f78b2eecc7a3990c1ea2c1ae9926743f6d421b6f408c1e31ae0f47f7acf41dfec772c7f25aa336a77c40ae2d2d3fffbfa54c2947ed6bfbc3a6732a2427cd5d850a0dcdc7c0dc4e8f2cb5d620f6220b3a373df31a2cf631490ba6165c35d331c772213004016e3403f692b3fab31ee8805f495fc1fbd9574bab5b8d456f2744f1cbc2a36a0b088d6d890c7d6814c517ca0d16ffbdbbd8c1532b928d4808ac1e9045f2014b0cc34a47d71c142afef019346f1b2631cc2c4d1c61a086e6be5c7d60206652724c6159699391d3fd9d095e997471ad408472875920710d05bf30c966355ba8eddb978e7f54d6a3dbec2888bfa6f2d4b1a2d830888c6687e62fb386a6f8e86d8df39b36ade0ee8833ec4582c3f3dcec67c2d22f879ace66c94aecce75ad58bee7a1ac221a51f317cd374ab34305b7887feb70e83e9106be4c100ca7a2853cf78c2c6ba51e025e822830a42c96190bc8dfe58b7dc046663d60ee2abdcd0cc6357558ad85cef59710aba7b9000b2ac750fe5ddaef9543af79cdd4ffbe671179bfa352d1a9382b23c1f8d9817a23b342b7f775fd3667b539bb6c1808fb525be8bb312741d0dedb5564d6a1b85c553226c43f591f931ac829ec744d29b1c49519b864de23effb5897782c324b55d8588aea1776472c65706e109821b07d77ae51a8d12e80b9be776503d279a60184149038e7e42851dce76168f5d3b6f35da933745a19f43d1ebd1f7f7281728adf6c19661e34bf54ce266a2074257d833a888213b86f612be2f04cbcdc6d2e3635a6f778705138db26fde9b921253e51e22353886bf5c974c0d9a4925036f234acd3dc2a5d1c00774444232d94ac18fd141137e890738e978c731804d697625a1b1f2835860166ef23de4d8ebdafb5b7c78de2c9bba194725be5f1dca6fdd4af63b33ac1ad1f5e954fab4557e9c627168431710a88d3b47c632d9b5ab19e233332905ef2e827589aec84f1a19aa9d37fde76722ad5ad8d2389ad8c149f8335aa111de4eba44e256f8b46d5ece753873d11aafbf4e51ff3a4b571fdc6356d497a8a9e9e0f64b9ffd3e540f4ad1c8e9846478615db35bb2e7028e8fb9c57f5fcfb6278cf7530865700aecf44063dcefee2ab35be9bb28f9e18e85ffa67cd8d840707bc35c2a83af6ba5c540d426c0d26947b815fd55417efb83ffd91b59549bdee08d4f8153b4436520137619ac213bd992d95315a2df852be6822dc6719ea3eecf0e10d9fab62a306324ad9d15fb355d7f763ce0fd72223713126e61ab6085308cd7f1652b53c99c30362943deca3a57734a0aac6ee08b46ca7ae2d6d988de2cd2f8ffa50f0144174c2c95afc48dc4bf04ff8c5c44b85ad27807395ad5953a9eeaaa5d77078b08d1277392749f99f41accb8add983e75e75d8abf08cec668ddbae06452e36ad2566b69ef2d69ee3e589bd66349df36b68adebf3aa5cb4ec4eafd886e5a5534454e494842d56fd971a7c1808c21244364665269464770488914c73b362fc601f9abf389467082997e0b0bb5595516f128f4a521b167efcc121ebaa90bba47c98c69bc9fa16697994c4d0b873c49522f3f81551f20b6d41c349e9cf5470b4f9edd4d10e4d243409c876d79657304c60f1c9e85f67f07a63e8df98b7eeedc3e61100d5a7f2ad0173fe45a453c110782587ea16a9cb7f4f474ded8524b00cb07e2fe8ff8b0cadbc219a18af6ee57788ad47eabddf7dade3193ab36570f682e4bc5b264d0f5cdf2534d1f0b617c8d7f93121d22e9086905de47ce3ea550064c7aa79d0b3708c016f294ed8f61ec616eebc71f5eb988f549eef801718b2c256631f69f416753a0dc4060000"], 0x1348}, 0x1, 0x0, 0x0, 0x1}, 0x24040090)

2018/03/31 01:45:02 executing program 0:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = memfd_create(&(0x7f0000000080)='\x00', 0x2)
fcntl$addseals(r0, 0x409, 0x8)
socket$inet_sctp(0x2, 0x1, 0x84)
accept4$nfc_llcp(r0, 0x0, &(0x7f00000000c0), 0x800)
setsockopt$inet_sctp6_SCTP_MAX_BURST(r0, 0x84, 0x14, &(0x7f0000000040)=@int=0x7ff, 0x4)

2018/03/31 01:45:02 executing program 2:
r0 = getpid()
r1 = perf_event_open(&(0x7f000001d000)={0x2, 0x78, 0xe2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10001, 0x0, 0x0, 0x0, 0x5}, r0, 0x0, 0xffffffffffffffff, 0x0)
socket$inet(0x2, 0x0, 0x0)
r2 = perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r3 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000180)='/proc/sys/net/ipv4/vs/conn_reuse_mode\x00', 0x2, 0x0)
getsockopt$nfc_llcp(r3, 0x118, 0x1, &(0x7f00000001c0)=""/214, 0xd6)
r4 = syz_open_dev$sndseq(&(0x7f0000ff0ff3)='/dev/snd/seq\x00', 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_DELETE_QUEUE(r3, 0x408c5333, &(0x7f0000000300)={0x100000001, 0x5, 0x0, 'queue1\x00', 0x8001})
read(r4, &(0x7f0000fb6000)=""/28, 0x1c)
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r4, 0xc0a85320, &(0x7f0000418f50)={{0x80}, "0a4ceaa05d9a00000000000000039b3fd4cec307e8ef3d13eb790ec9c65abaf90d229db692542e5b78f8b29e0a27800f0000000000000009fb42f376589701a4", 0xa9824f69d1376637, 0x10800a})
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r4, 0x4040534e, &(0x7f000019ffe9)={0xc1})
ioctl$SNDRV_SEQ_IOCTL_QUERY_NEXT_PORT(r4, 0xc0a85352, &(0x7f00000000c0)={{}, 'port0\x00'})
ioctl$SNDRV_SEQ_IOCTL_DELETE_PORT(r4, 0x40a85321, &(0x7f0000000000)={{0x0, 0x2}, 'port1\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0xfffffffffffffffd})
r5 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000fdbff0)='/dev/sequencer2\x00', 0x0, 0x0)
ioctl$KVM_CREATE_DEVICE(r5, 0xc00caee0, &(0x7f00000002c0)={0x6, r5, 0x1})
dup2(r2, r1)

2018/03/31 01:45:02 executing program 1:
r0 = creat(&(0x7f0000000b40)='./file0\x00', 0x20)
ioctl$DRM_IOCTL_AGP_ALLOC(0xffffffffffffff9c, 0xc0206434, &(0x7f0000000b80)={0x5, <r1=>0x0, 0x0, 0x81})
ioctl$DRM_IOCTL_SG_FREE(r0, 0x40106439, &(0x7f0000000bc0)={0x2000000000003, r1})
r2 = socket$inet(0x2, 0x6, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f00000008c0)=@broute={'broute\x00', 0x20, 0x2, 0x3e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000280], 0x0, &(0x7f0000000240), &(0x7f0000000280)=ANY=[@ANYBLOB="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"]}, 0x460)
getsockopt$inet_sctp6_SCTP_CONTEXT(0xffffffffffffff9c, 0x84, 0x11, &(0x7f0000000000)={<r3=>0x0, 0x7}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r2, 0x84, 0xa, &(0x7f0000000140)={0x0, 0xa2b, 0x4, 0x7, 0x2, 0x20, 0x10000, 0x8a82, r3}, &(0x7f0000000180)=0x20)
setsockopt$inet_group_source_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000680)={0x1000, {{0x2, 0x4e23, @multicast1=0xe0000001}}, {{0x2, 0x4e22, @broadcast=0xffffffff}}}, 0x108)
ioctl$DRM_IOCTL_AGP_ENABLE(0xffffffffffffffff, 0x40086432, &(0x7f0000000100))
r4 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/vs/sync_version\x00', 0x2, 0x0)
ioctl$TIOCGSOFTCAR(r4, 0x5419, &(0x7f00000007c0))
r5 = socket$inet6(0x10, 0x80005, 0x1)
sendmsg(r5, &(0x7f0000000080)={&(0x7f0000000240)=@un=@abs={0x1, 0x0, 0x4e23}, 0x80, &(0x7f0000000040)=[{&(0x7f00000001c0)="5500000018007f04002d1cb2a4a280930a0600007da843cf19d0f869390009402f002100040000001900050000fc1700000000dc1338d54400009b84136ef75afb83de448daa7227c43ab8220000060c", 0x50}], 0x1, &(0x7f00000000c0)}, 0x0)
socket$bt_cmtp(0x1f, 0x3, 0x5)
fcntl$addseals(r5, 0x409, 0x7)
syz_open_dev$sndmidi(&(0x7f0000000c00)='/dev/snd/midiC#D#\x00', 0x100000001, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f0000001640)=@broute={'broute\x00', 0x20, 0x1, 0x1e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20001700], 0x0, &(0x7f0000001980), &(0x7f0000001700)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1, [{{{0x13, 0x0, 0x0, 'vcan0\x00', 'ifb0\x00', 'syzkaller0\x00', 'vcan0\x00', @remote={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xbb}, [], @link_local={0x1, 0x80, 0xc2}, [], 0x70, 0xf8, 0x128}, [@common=@dnat={'dnat\x00', 0x10, {{@dev={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa]}, 0xffffffffffffffff}}}, @common=@IDLETIMER={'IDLETIMER\x00', 0x28, {{0x4, 'syz0\x00'}}}]}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8}}]}, {0x0, '\x00', 0x1, 0xffffbffffffffffe}]}, 0x260)
setsockopt$EBT_SO_SET_ENTRIES(0xffffffffffffffff, 0x0, 0x80, &(0x7f0000000840)=@nat={'nat\x00', 0x19, 0x1, 0x200, [0x20000940, 0x0, 0x0, 0x20000970, 0x200009a0], 0x0, &(0x7f0000000800), &(0x7f0000000940)=[{}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x14, 0x98ab, 'teql0\x00', 'ip6gretap0\x00', 'ip_vti0\x00', 'nr0\x00', @empty, [0x0, 0xff, 0x0, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2}, [0xff, 0x0, 0xff, 0x0, 0x0, 0xff], 0x100, 0x138, 0x170, [@time={'time\x00', 0x18, {{0x7, 0x3, 0x13782, 0x14fdf, 0x80, 0x4, 0x1}}}, @nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x2}}}]}, [@snat={'snat\x00', 0x10, {{@random="07901c8f0140"}}}]}, @common=@dnat={'dnat\x00', 0x10, {{@local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}, 0x10}}}}]}]}, 0x278)
syz_open_dev$dmmidi(&(0x7f0000000c40)='/dev/dmmidi#\x00', 0xae6d, 0x200)

2018/03/31 01:45:02 executing program 6:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x200, 0x0)
socketpair$inet6_icmp_raw(0xa, 0x3, 0x3a, &(0x7f0000000680)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
setsockopt$sock_linger(r1, 0x1, 0xd, &(0x7f00000006c0)={0x400, 0x9}, 0x8)
perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
mmap(&(0x7f0000000000/0x9d7000)=nil, 0x9d7000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x7)
perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r4, &(0x7f0000e5b000)={0x2, 0x4e20, @multicast1=0xe0000001}, 0x10)
syz_open_dev$sg(&(0x7f0000000440)='/dev/sg#\x00', 0x0, 0x0)
connect$inet(r4, &(0x7f0000000100)={0x2, 0x4e20, @multicast2=0xe0000002}, 0x10)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000eb0fb8)={0x1, 0x3, &(0x7f00009ff000)=@framed={{0x18}, [], {0x95}}, &(0x7f00002bf000)='syzkaller\x00', 0x4, 0xb7, &(0x7f00006ab000)=""/183}, 0x48)
setsockopt$inet_tcp_int(r4, 0x6, 0x19, &(0x7f0000000240)=0x8, 0x4)
setsockopt$SO_BINDTODEVICE(r4, 0x1, 0x19, &(0x7f0000000000)="6970365f76746930000000000400", 0x10)
r6 = socket$kcm(0x29, 0x2, 0x0)
ioctl$sock_kcm_SIOCKCMATTACH(r6, 0x89e0, &(0x7f000031aff8)={r4, r5})
ioctl$sock_kcm_SIOCKCMCLONE(r6, 0x89e2, &(0x7f00000002c0)={<r7=>0xffffffffffffffff})
sendmsg$nl_xfrm(r7, &(0x7f0000000780)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000740)={&(0x7f0000000480)=@updpolicy={0xb8, 0x19, 0x0, 0x0, 0x0, {{@in=@loopback=0x7f000001, @in6=@mcast1={0xff, 0x1, [], 0x1}}}}, 0xffcb}, 0x1}, 0x0)
ioctl$sock_kcm_SIOCKCMUNATTACH(r7, 0x89e1, &(0x7f0000000040)={r4})
r8 = fcntl$getown(r3, 0x9)
r9 = accept4$inet(0xffffffffffffff9c, &(0x7f0000000700)={0x0, 0x0, @broadcast}, &(0x7f0000000740)=0x10, 0x80000)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r9, 0x84, 0x64, &(0x7f0000000300)=[@in6={0xa, 0x4e23, 0x0, @dev={0xfe, 0x80, [], 0xf}, 0x6}, @in={0x2, 0xff, @local={0xac, 0x14, 0x14, 0xaa}}, @in={0x2, 0x4e23, @multicast1=0xe0000001}, @in={0x2, 0x4e20, @dev={0xac, 0x14, 0x14}}, @in={0x2, 0x4e20, @multicast1=0xe0000001}, @in={0x2, 0x4e24}, @in={0x2, 0x4e24, @broadcast=0xffffffff}, @in6={0xa, 0x4e21, 0xed34, @local={0xfe, 0x80, [], 0xaa}, 0x3}, @in={0x2, 0x4e23, @loopback=0x7f000001}], 0xfffffffffffffe00)
ptrace$setregset(0x4205, r8, 0x0, &(0x7f00000005c0)={&(0x7f0000000080)="449ed0dd6831a7fb44eca4221b1fb01abfec082aa7d0ee6f0ba9db0ece7da2bd3f", 0x21})
r10 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r11 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x1fffd, 0x0)
syz_open_dev$sndtimer(&(0x7f00000000c0)='/dev/snd/timer\x00', 0x0, 0x0)
read(r0, &(0x7f0000000140)=""/50, 0x32)
fcntl$dupfd(r10, 0x0, r11)

2018/03/31 01:45:02 executing program 7:
clone(0x200, &(0x7f0000000100)="abbcd764d5b6fd853189b4a102b248f0de7c0a5cc328ca13455598dc3d760fa566c64d7cb06a7e15cdb085165670f42b32809442c69a5942d03eb3fd42bf0ebb0272fc4beb43f269f26f57bbb67316f7c76c8d570edaa564720b4dfd8f32453fc2354ddc753155ac051e9e9657989f0bbf1c03e4cd9f735c6d1b95719dbbb1c04092f54f44256722d954f0000000000000000000000000000000", &(0x7f00000000c0), &(0x7f00008c8000), &(0x7f0000828ffe))
mknod(&(0x7f0000000000)='./file0\x00', 0x1000000000001040, 0x0)
execve(&(0x7f000007b000)='./file0\x00', &(0x7f0000000180), &(0x7f0000000040))
r0 = gettid()
r1 = syz_open_dev$mice(&(0x7f0000149000)='/dev/input/mice\x00', 0x0, 0x0)
execve(&(0x7f00000001c0)='./file0\x00', &(0x7f0000001540)=[&(0x7f0000000200)='user\x00', &(0x7f0000000240)='vmnet0\x00', &(0x7f0000000280)='user\x00', &(0x7f0000001480)='user\x00'], &(0x7f00000015c0)=[&(0x7f0000001580)='#keyring\x00'])
msgget$private(0x0, 0x400)
timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000))
uselib(&(0x7f00000002c0)='./file0/file0\x00')
mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x0, 0x32, 0xffffffffffffffff, 0x0)
getsockopt$inet_sctp6_SCTP_INITMSG(r1, 0x84, 0x2, &(0x7f0000000040), &(0x7f0000000080)=0x8)
tkill(r0, 0x1000000000015)

2018/03/31 01:45:02 executing program 5:
r0 = syz_open_dev$amidi(&(0x7f0000000400)='/dev/amidi#\x00', 0x401, 0x40)
accept4$llc(r0, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, &(0x7f0000000480)=0x10, 0x80800)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f0000005fd8)={'vcan0\x00', <r2=>0x0})
ioctl$KVM_SET_DEVICE_ATTR(r0, 0x4018aee1, &(0x7f0000000500)={0x0, 0x100000001, 0x5a, &(0x7f00000004c0)})
connect$can_bcm(0xffffffffffffffff, &(0x7f0000001ff0)={0x1d, r2}, 0x10)
ioctl$TIOCGSID(0xffffffffffffff9c, 0x5429, &(0x7f00000002c0)=<r3=>0x0)
waitid(0x0, r3, 0x0, 0x1000009, &(0x7f0000000300))
r4 = syz_open_dev$vcsn(&(0x7f0000000000)='/dev/vcs#\x00', 0xcd8, 0x101000)
getsockopt$SO_BINDTODEVICE(r4, 0x1, 0x19, &(0x7f0000000280), 0x10)
ioctl$EVIOCGABS0(r4, 0x80184540, &(0x7f0000000240)=""/64)
bind$vsock_dgram(r1, &(0x7f00000003c0)={0x28, 0x0, 0x2711, @reserved=0x1}, 0x10)
exit(0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000200)={r4, 0x0, 0x47, 0xde, &(0x7f0000000080)="3541471374d1e455c1f501bb3e7418a21f930d9fb82ac3588f54ad5a1a9e778bdf654fa39f19bcbc6ee4636a10d409c877cfe11ba160f73d4cde40422564bfdb62d8e5f8ba5097", &(0x7f0000000100)=""/222, 0x4, 0x3f}, 0x28)
ioctl$KVM_SET_TSS_ADDR(r4, 0xae47, 0xd000)
ioctl$KVM_CHECK_EXTENSION(r4, 0xae03, 0xffffffffffffffff)
openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000580)='/dev/qat_adf_ctl\x00', 0x4600, 0x0)
sendmsg$can_raw(r1, &(0x7f0000001fc8)={&(0x7f000000a000)={0x1d}, 0x10, &(0x7f0000000040)={&(0x7f000000a000)=@canfd={{0x1}, 0x0, 0x0, 0x0, 0x0, "0327e1b22b5fcef7739c699f5ff986ca08990039576a7d5cb2bdac3fa80acf584ecb5fee496e6866856b76b5f700000000000000004e2f9663a918fa1efd9b0b"}, 0x48}, 0x1}, 0x0)
ioctl$VHOST_GET_VRING_ENDIAN(r0, 0x4008af14, &(0x7f0000000540)={0x0, 0x9})

2018/03/31 01:45:02 executing program 3 (fault-call:3 fault-nth:48):
mkdir(&(0x7f00000001c0)='./file0\x00', 0x0)
mount(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000380)='./file0\x00', &(0x7f0000000300)='cgroup2\x00', 0x0, 0x0)
r0 = open$dir(&(0x7f000001bff4)='./file0\x00', 0x0, 0x0)
mkdirat(r0, &(0x7f0000000280)='./file0\x00', 0x20)
getdents64(r0, &(0x7f00000007c0)=""/250, 0x1015a)
fadvise64(r0, 0x0, 0x41, 0x3)
unlinkat(r0, &(0x7f0000000080)='./file0\x00', 0x200)
r1 = open$dir(&(0x7f0000000180)='./file0\x00', 0x105600, 0x81)
fchdir(r0)
link(&(0x7f0000000740)='./file1\x00', &(0x7f0000000780)='./file0/file0\x00')
renameat2(r1, &(0x7f0000000200)='./file1\x00', r0, &(0x7f0000000240)='./file0\x00', 0xfd1092750066ec78)
pivot_root(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='./file0\x00')
r2 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000100)='/dev/rfkill\x00', 0x2c42, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_LIST(r2, 0xc0505510, &(0x7f0000000480)={0x1000, 0x1, 0x474, 0x1, &(0x7f0000000140)=[{}]})
unlink(&(0x7f00000000c0)='./file0\x00')
symlinkat(&(0x7f0000000400)='./file0/file0\x00', r0, &(0x7f0000000440)='./file0/file0\x00')
iopl(0x6)
recvmsg$kcm(0xffffffffffffffff, &(0x7f0000000680)={&(0x7f0000000500)=@pppol2tp={0x0, 0x0, {0x0, <r3=>0xffffffffffffffff, {0x0, 0x0, @broadcast}}}, 0x80, &(0x7f0000000600)=[{&(0x7f0000000580)=""/80, 0x50}, {&(0x7f00000008c0)=""/4096, 0x1000}], 0x2, &(0x7f0000000640)=""/45, 0x2d, 0x206e}, 0x20)
r4 = syz_open_dev$sndpcmp(&(0x7f00000018c0)='/dev/snd/pcmC#D#p\x00', 0x5, 0x10a00)
ioctl$KVM_GET_DEVICE_ATTR(r4, 0x4018aee2, &(0x7f0000001940)={0x0, 0x100, 0x9, &(0x7f0000001900)})
recvfrom$ipx(r3, &(0x7f00000006c0)=""/52, 0x34, 0x100, &(0x7f0000000700)={0x4, 0x9a2, 0x4, "dc108d9d4391", 0x5}, 0x10)
renameat(r0, &(0x7f0000001980)='./file1\x00', r4, &(0x7f00000019c0)='./file0/file0\x00')

[  195.868164] FAULT_INJECTION: forcing a failure.
[  195.868164] name failslab, interval 1, probability 0, space 0, times 0
[  195.879446] CPU: 0 PID: 13931 Comm: syz-executor3 Not tainted 4.16.0-rc7+ #372
[  195.879455] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  195.879459] Call Trace:
[  195.879477]  dump_stack+0x194/0x24d
[  195.879492]  ? arch_local_irq_restore+0x53/0x53
[  195.879513]  should_fail+0x8c0/0xa40
[  195.910706]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  195.915795]  ? rb_first_postorder+0xa0/0xa0
[  195.920143]  ? __mutex_lock+0x16f/0x1a80
[  195.924191]  ? trace_event_raw_event_lock+0x340/0x340
[  195.929363]  ? trace_hardirqs_off+0x10/0x10
[  195.933668]  ? find_held_lock+0x35/0x1d0
[  195.937714]  ? __lock_is_held+0xb6/0x140
[  195.941768]  ? check_same_owner+0x320/0x320
[  195.946069]  ? lock_downgrade+0x980/0x980
[  195.950202]  ? rcu_note_context_switch+0x710/0x710
[  195.955123]  should_failslab+0xec/0x120
[  195.959082]  __kmalloc_track_caller+0x5f/0x760
[  195.963652]  ? string+0x180/0x200
[  195.967088]  ? kstrdup_const+0x39/0x50
[  195.970961]  kstrdup+0x39/0x70
[  195.974136]  kstrdup_const+0x39/0x50
[  195.977829]  __kernfs_new_node+0xa2/0x570
[  195.981957]  ? kernfs_dop_revalidate+0x380/0x380
[  195.986702]  ? snprintf+0xc0/0xf0
[  195.990135]  ? vsprintf+0x40/0x40
[  195.993567]  ? debug_lockdep_rcu_enabled+0x77/0x90
[  195.998846]  ? cgroup_file_name+0x1d0/0x1d0
[  196.003158]  kernfs_new_node+0x80/0xe0
[  196.007038]  __kernfs_create_file+0x4b/0x320
[  196.011428]  cgroup_addrm_files+0x3c5/0xa70
[  196.015748]  ? cgroup_file_write+0x710/0x710
[  196.020145]  ? cgroup_idr_replace+0x3f/0x50
[  196.024450]  ? __lock_is_held+0xb6/0x140
[  196.028497]  ? __local_bh_enable_ip+0x121/0x230
[  196.033148]  ? online_css+0x224/0x2e0
[  196.036934]  css_populate_dir+0x198/0x420
[  196.041067]  cgroup_apply_control_enable+0x390/0xbc0
[  196.046155]  ? cgroup_propagate_control+0x570/0x570
[  196.051158]  ? css_populate_dir+0x289/0x420
[  196.055463]  cgroup_mkdir+0x56f/0xfc0
[  196.059242]  ? __lock_is_held+0xb6/0x140
[  196.063287]  ? cgroup_destroy_locked+0x750/0x750
[  196.068028]  ? rcu_read_lock_sched_held+0x108/0x120
[  196.073031]  ? kmem_cache_free+0x258/0x2a0
[  196.077247]  ? set_nlink+0xc1/0x160
[  196.080856]  ? debug_lockdep_rcu_enabled+0x77/0x90
[  196.085762]  ? generic_permission+0x105/0x3c0
[  196.090238]  ? cgroup_destroy_locked+0x750/0x750
[  196.094973]  kernfs_iop_mkdir+0x153/0x1e0
[  196.099105]  vfs_mkdir+0x390/0x600
[  196.102627]  SyS_mkdirat+0x22b/0x2b0
[  196.106323]  ? SyS_mknod+0x480/0x480
[  196.110020]  ? trace_hardirqs_on+0xd/0x10
[  196.114154]  ? do_syscall_64+0xb7/0x940
[  196.118109]  ? SyS_mknod+0x480/0x480
[  196.121802]  do_syscall_64+0x281/0x940
[  196.125669]  ? vmalloc_sync_all+0x30/0x30
[  196.129797]  ? _raw_spin_unlock_irq+0x27/0x70
[  196.134270]  ? finish_task_switch+0x1c1/0x7e0
[  196.138745]  ? syscall_return_slowpath+0x550/0x550
[  196.143654]  ? syscall_return_slowpath+0x2ac/0x550
[  196.148563]  ? prepare_exit_to_usermode+0x350/0x350
[  196.153560]  ? entry_SYSCALL_64_after_hwframe+0x52/0xb7
[  196.158909]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  196.163738]  entry_SYSCALL_64_after_hwframe+0x42/0xb7
[  196.168907] RIP: 0033:0x454e79
[  196.172074] RSP: 002b:00007fa6ef25cc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
[  196.179763] RAX: ffffffffffffffda RBX: 00007fa6ef25d6d4 RCX: 0000000000454e79
[  196.187015] RDX: 0000000000000020 RSI: 0000000020000280 RDI: 0000000000000013
[  196.194268] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  196.201514] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000014
[  196.208764] R13: 00000000000003eb R14: 00000000006f7ea8 R15: 0000000000000030
[  196.216269] cgroup: cgroup_addrm_files: failed to add max, err=-12
2018/03/31 01:45:02 executing program 1:
r0 = creat(&(0x7f0000000b40)='./file0\x00', 0x20)
ioctl$DRM_IOCTL_AGP_ALLOC(0xffffffffffffff9c, 0xc0206434, &(0x7f0000000b80)={0x5, <r1=>0x0, 0x0, 0x81})
ioctl$DRM_IOCTL_SG_FREE(r0, 0x40106439, &(0x7f0000000bc0)={0x3, r1})
r2 = socket$inet(0x2, 0x6, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f00000008c0)=@broute={'broute\x00', 0x20, 0x2, 0x3e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000280], 0x0, &(0x7f0000000240), &(0x7f0000000280)=ANY=[@ANYBLOB="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"]}, 0x460)
getsockopt$inet_sctp6_SCTP_CONTEXT(0xffffffffffffff9c, 0x84, 0x11, &(0x7f0000000000)={<r3=>0x0, 0x7}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r2, 0x84, 0xa, &(0x7f0000000140)={0x0, 0xa2b, 0x4, 0x7, 0x2, 0x20, 0x10000, 0x8a82, r3}, &(0x7f0000000180)=0x20)
setsockopt$inet_group_source_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000680)={0x1000, {{0x2, 0x4e23, @multicast1=0xe0000001}}, {{0x2, 0x4e22, @broadcast=0xffffffff}}}, 0x108)
ioctl$DRM_IOCTL_AGP_ENABLE(0xffffffffffffffff, 0x40086432, &(0x7f0000000100))
r4 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/vs/sync_version\x00', 0x2, 0x0)
ioctl$TIOCGSOFTCAR(r4, 0x5419, &(0x7f00000007c0))
r5 = socket$inet6(0x10, 0x2, 0x0)
sendmsg(r5, &(0x7f0000000080)={&(0x7f0000000240)=@un=@abs={0x1, 0x0, 0x4e23}, 0x80, &(0x7f0000000040), 0x0, &(0x7f00000019c0)=[{0x0, 0x1, 0x8a, "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"}, {0x0, 0x11d, 0x80000001, "e7b04b527a540be7e1e560d5855310650ad7d180d175768c9ddeb353c891e46cb2a89b80fd693bbfaa58a0c3f9f9ad85905dbac8900fef0282d725e31a559dce36809c9ab86c62401812c1c2a83b4304d39283603ab8d78d0fd4128b65adb984b8059667c748de0d6ae85f3c4ebae3233a7e92c6afa1672857e3814e32e1d6c016bdaa47a894678e993321ecea628bdc7b9bcc0ef35e7e35370058c5eb96369dc41422c7c7322a721bf95fa83827d6620e75e5a57bcc23665c612073f359d1c1993d52ef4a4d116a7cbbb93816"}, {0x0, 0x10c, 0x50c, "60a41afccd6154"}], 0x1fc}, 0x0)
socket$bt_cmtp(0x1f, 0x3, 0x5)
fcntl$addseals(r5, 0x409, 0x7)
syz_open_dev$sndmidi(&(0x7f0000000c00)='/dev/snd/midiC#D#\x00', 0x100000001, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f0000001640)=@broute={'broute\x00', 0x20, 0x1, 0x1e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20001700], 0x0, &(0x7f0000001980), &(0x7f0000001700)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1, [{{{0x13, 0x0, 0x0, 'vcan0\x00', 'ifb0\x00', 'syzkaller0\x00', 'vcan0\x00', @remote={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xbb}, [], @link_local={0x1, 0x80, 0xc2}, [], 0x70, 0xf8, 0x128}, [@common=@dnat={'dnat\x00', 0x10, {{@dev={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa]}, 0xffffffffffffffff}}}, @common=@IDLETIMER={'IDLETIMER\x00', 0x28, {{0x4, 'syz0\x00'}}}]}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8}}]}, {0x0, '\x00', 0x1, 0xffffbffffffffffe}]}, 0x260)
setsockopt$EBT_SO_SET_ENTRIES(0xffffffffffffffff, 0x0, 0x80, &(0x7f0000000840)=@nat={'nat\x00', 0x19, 0x1, 0x200, [0x20000940, 0x0, 0x0, 0x20000970, 0x200009a0], 0x0, &(0x7f0000000800), &(0x7f0000000940)=[{}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x14, 0x98ab, 'teql0\x00', 'ip6gretap0\x00', 'ip_vti0\x00', 'nr0\x00', @empty, [0x0, 0xff, 0x0, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2}, [0xff, 0x0, 0xff, 0x0, 0x0, 0xff], 0x100, 0x138, 0x170, [@time={'time\x00', 0x18, {{0x7, 0x3, 0x13782, 0x14fdf, 0x80, 0x4, 0x1}}}, @nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x2}}}]}, [@snat={'snat\x00', 0x10, {{@random="07901c8f0140"}}}]}, @common=@dnat={'dnat\x00', 0x10, {{@local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}, 0x10}}}}]}]}, 0x278)
syz_open_dev$dmmidi(&(0x7f0000000c40)='/dev/dmmidi#\x00', 0xae6d, 0x200)

2018/03/31 01:45:02 executing program 6:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x200, 0x0)
socketpair$inet6_icmp_raw(0xa, 0x3, 0x3a, &(0x7f0000000680)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
setsockopt$sock_linger(r1, 0x1, 0xd, &(0x7f00000006c0)={0x400, 0x9}, 0x8)
perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
mmap(&(0x7f0000000000/0x9d7000)=nil, 0x9d7000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x7)
perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r4, &(0x7f0000e5b000)={0x2, 0x4e20, @multicast1=0xe0000001}, 0x10)
syz_open_dev$sg(&(0x7f0000000440)='/dev/sg#\x00', 0x0, 0x0)
connect$inet(r4, &(0x7f0000000100)={0x2, 0x4e20, @multicast2=0xe0000002}, 0x10)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000eb0fb8)={0x1, 0x3, &(0x7f00009ff000)=@framed={{0x18}, [], {0x95}}, &(0x7f00002bf000)='syzkaller\x00', 0x4, 0xb7, &(0x7f00006ab000)=""/183}, 0x48)
setsockopt$inet_tcp_int(r4, 0x6, 0x19, &(0x7f0000000240)=0x8, 0x4)
setsockopt$SO_BINDTODEVICE(r4, 0x1, 0x19, &(0x7f0000000000)="6970365f76746930000000000400", 0x10)
r6 = socket$kcm(0x29, 0x2, 0x0)
ioctl$sock_kcm_SIOCKCMATTACH(r6, 0x89e0, &(0x7f000031aff8)={r4, r5})
ioctl$sock_kcm_SIOCKCMCLONE(r6, 0x89e2, &(0x7f00000002c0)={<r7=>0xffffffffffffffff})
sendmsg$nl_xfrm(r7, &(0x7f0000000780)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000740)={&(0x7f0000000480)=@updpolicy={0xb8, 0x19, 0x0, 0x0, 0x0, {{@in=@loopback=0x7f000001, @in6=@mcast1={0xff, 0x1, [], 0x1}}}}, 0xffcb}, 0x1}, 0x0)
ioctl$sock_kcm_SIOCKCMUNATTACH(r7, 0x89e1, &(0x7f0000000040)={r4})
r8 = fcntl$getown(r3, 0x9)
r9 = accept4$inet(0xffffffffffffff9c, &(0x7f0000000700)={0x0, 0x0, @broadcast}, &(0x7f0000000740)=0x10, 0x80000)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r9, 0x84, 0x64, &(0x7f0000000300)=[@in6={0xa, 0x4e23, 0x0, @dev={0xfe, 0x80, [], 0xf}, 0x6}, @in={0x2, 0xff, @local={0xac, 0x14, 0x14, 0xaa}}, @in={0x2, 0x4e23, @multicast1=0xe0000001}, @in={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x10}}, @in={0x2, 0x4e24}, @in={0x2, 0x4e24, @broadcast=0xffffffff}, @in6={0xa, 0x4e21, 0xed34, @local={0xfe, 0x80, [], 0xaa}, 0x3}, @in={0x2, 0x4e23, @loopback=0x7f000001}], 0x98)
ptrace$setregset(0x4205, r8, 0x0, &(0x7f00000005c0)={&(0x7f0000000080)="449ed0dd6831a7fb44eca4221b1fb01abfec082aa7d0ee6f0ba9db0ece7da2bd3f", 0x21})
r10 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r11 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x1fffd, 0x0)
syz_open_dev$sndtimer(&(0x7f00000000c0)='/dev/snd/timer\x00', 0x0, 0x0)
read(r0, &(0x7f0000000140)=""/50, 0x32)
fcntl$dupfd(r10, 0x0, r11)

2018/03/31 01:45:02 executing program 4:
r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/expire_quiescent_template\x00', 0x2, 0x0)
sendmsg$IPVS_CMD_SET_INFO(r0, &(0x7f0000000480)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000440)={&(0x7f0000000200)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="02000000000000001400020073797a7e616c6c657230000000000000080004e60500000008000600b50000000200000000000000000000"], 0x3c}, 0x1, 0x0, 0x0, 0x44040}, 0x800)
io_setup(0x3, &(0x7f0000000000)=<r1=>0x0)
io_cancel(0x0, &(0x7f0000000240)={0x0, 0x0, 0x0, 0xf, 0x3, 0xffffffffffffffff, &(0x7f0000000140)="940c1f2149747e7734510c34c143183667a187dc4f624f6c2de12452792a6fb529e6bf2a661dc23a844b00925c244a9f2967c0ca9868ee50eacf67a2ad7681d82f5a38cbd6d7641f843fa129e00f701fb01835f497b53672b3e5a3f6838f28aa240bf21eb5e5cbe7804fd307404474ae0242f8dea7a08e0fe9479b06f2", 0x7d, 0x0, 0x0, 0x1}, &(0x7f0000000280))
io_getevents(r1, 0x2, 0x8f, &(0x7f0000d83f60)=[{}, {}], &(0x7f00005cfff0)={0x4000000000001, 0x7})
clock_gettime(0x0, &(0x7f0000000380)={<r2=>0x0})
munlockall()
io_getevents(r1, 0x4, 0x5, &(0x7f00000002c0)=[{}, {}, {}, {}, {}], &(0x7f00000003c0)={r2})
accept$alg(r0, 0x0, 0x0)
io_setup(0x7, &(0x7f0000000040))
r3 = memfd_create(&(0x7f00000001c0)=':+To#\x00', 0x2)
io_submit(r1, 0x1, &(0x7f0000001280)=[&(0x7f0000001100)={0x0, 0x0, 0x0, 0x0, 0x0, r3, &(0x7f0000000100)}])
ioctl$KVM_ASSIGN_SET_MSIX_ENTRY(r3, 0x4010ae74, &(0x7f0000000100)={0x10001, 0x100000000, 0x8})
ioctl$sock_proto_private(r3, 0x89ec, &(0x7f00000004c0)="11b7ea9066a7186ddabf68bfc6115854de19b0139b24dbf742c84ac9fdd4cab34af707d7cdede8d2f0378dc58f6fc661f32ea1bfd9027a5334680df1ec7a492e717036717f9a0e1b555f5e9fd9a81d8fc65d39af46f16292ec1b3136ce0ec46cf9e02b5eb6dbb16dcbe0938092ceffe366bfe372")
io_destroy(r1)

2018/03/31 01:45:02 executing program 0:
r0 = gettid()
r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000140)='/dev/hwrng\x00', 0x0, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(0xffffffffffffffff, 0x84, 0x66, &(0x7f00000001c0)={<r2=>0x0, 0x14000000000}, &(0x7f0000000540)=0x8)
getsockopt$inet_sctp6_SCTP_DEFAULT_SEND_PARAM(r1, 0x84, 0xa, &(0x7f0000000580)={0x40, 0x9, 0x8000, 0x6, 0x9, 0x80000001, 0x7, 0x7, r2}, &(0x7f00000005c0)=0x20)
r3 = syz_open_procfs(r0, &(0x7f0000000000)='comm\x00')
exit(0x0)
ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000180))
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(r3, 0x40505330, &(0x7f0000000040)={{0x0, 0x8000}, {0x20, 0x1}, 0x3, 0x0, 0x3c})
getsockopt$inet_mreqn(r3, 0x0, 0x23, &(0x7f00000000c0)={@broadcast, @rand_addr}, &(0x7f0000000100)=0xc)
setsockopt$inet6_MCAST_MSFILTER(r3, 0x29, 0x30, &(0x7f0000000300)={0x6, {{0xa, 0x4e24, 0x7, @empty, 0xfffffffffffffffa}}, 0x0, 0x3, [{{0xa, 0x4e24, 0x3, @mcast1={0xff, 0x1, [], 0x1}, 0x8}}, {{0xa, 0x4e21, 0x8, @remote={0xfe, 0x80, [], 0xbb}, 0x100000001}}, {{0xa, 0x4e20, 0xb3, @ipv4={[], [0xff, 0xff], @dev={0xac, 0x14, 0x14, 0xc}}, 0x2}}]}, 0x210)
pread64(r3, &(0x7f0000000200)=""/193, 0xc1, 0x0)

2018/03/31 01:45:03 executing program 1:
r0 = creat(&(0x7f0000000b40)='./file0\x00', 0x20)
ioctl$DRM_IOCTL_AGP_ALLOC(0xffffffffffffff9c, 0xc0206434, &(0x7f0000000b80)={0x5, <r1=>0x0, 0x0, 0x81})
ioctl$DRM_IOCTL_SG_FREE(r0, 0x40106439, &(0x7f0000000bc0)={0x3, r1})
r2 = socket$inet(0x2, 0x6, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f00000008c0)=@broute={'broute\x00', 0x20, 0x2, 0x3e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000280], 0x0, &(0x7f0000000240), &(0x7f0000000280)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff01000000110000000000000000006970366772657461703000000000f8010000000000006e000000000000000000697036746e6c3000000000000000000073797a5f74756e0000000000000000000180c200000000000000ff00aaaaaaaaaabb00000000000000007000000008010000580100005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a30000000000000000000000000000000000000000000000000000000004c45440000000000000000000000000000000000000000000000000000000000280000000000000073797a3000000000000000000000000000000000000000000000000000000000000000000000000049444c4554494d4552000000000000000000000000000000000000000000000028000000000000000000010073797a30000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001000000ffffffff010000000d0000000000000086dd73797a6b616c6c65723000000000000074756e6c3000000000000000000000007369743000000000000000000000000069666230000000000000000000000000000000000000000000000000ffffffffffff000000000000000030010000b001000000020000697036000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000ffffac1414aa0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006c696d6974000000000000000000000000000000000000000000000000000000200000000000000000000000ec00000000000000000000000000000000000000000000000000000049444c4554494d4552000000000000000000000000000000000000000000000028000000000000008100000073797a3100000000000000000000000000000000000000000000000000000000000000004e46515545554500000000000000000000000000000000000000000000000000080000000000000000000000000000004c45440000000000000000000000000000000000000000000000000000000000280000000000000073797a30000000000000000000000000000000000000000000000000000000000000000000000000"]}, 0x460)
getsockopt$inet_sctp6_SCTP_CONTEXT(0xffffffffffffff9c, 0x84, 0x11, &(0x7f0000000000)={<r3=>0x0, 0x7}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r2, 0x84, 0xa, &(0x7f0000000140)={0x0, 0xa2b, 0x4, 0x7, 0x2, 0x20, 0x10000, 0x8a82, r3}, &(0x7f0000000180)=0x20)
setsockopt$inet_group_source_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000680)={0x1000, {{0x2, 0x4e23, @multicast1=0xe0000001}}, {{0x2, 0x4e22, @broadcast=0xffffffff}}}, 0x108)
ioctl$DRM_IOCTL_AGP_ENABLE(0xffffffffffffffff, 0x40086432, &(0x7f0000000100))
r4 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/vs/sync_version\x00', 0x2, 0x0)
ioctl$TIOCGSOFTCAR(r4, 0x5419, &(0x7f00000007c0))
r5 = socket$inet6(0x10, 0x2, 0x1)
sendmsg(r5, &(0x7f0000000080)={&(0x7f0000000240)=@un=@abs={0x1, 0x0, 0x4e23}, 0x80, &(0x7f0000000040)=[{&(0x7f00000001c0)="5500000018007f04002d1cb2a4a280930a0600007da843cf19d0f869390009402f002100040000001900050000fc1700000000dc1338d54400009b84136ef75afb83de448daa7227c43ab8220000060c", 0x50}], 0x1, &(0x7f00000000c0)}, 0x0)
r6 = socket$bt_cmtp(0x1f, 0x3, 0x5)
fcntl$addseals(r5, 0x409, 0x7)
splice(r5, &(0x7f0000000c80), r6, &(0x7f0000000cc0), 0xfffffffffffffce0, 0x8)
r7 = syz_open_dev$sndmidi(&(0x7f0000000c00)='/dev/snd/midiC#D#\x00', 0x100000001, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f0000001640)=@broute={'broute\x00', 0x20, 0x1, 0x1e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20001700], 0x0, &(0x7f0000001980), &(0x7f0000001700)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1, [{{{0x13, 0x0, 0x0, 'vcan0\x00', 'ifb0\x00', 'syzkaller0\x00', 'vcan0\x00', @remote={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xbb}, [], @link_local={0x1, 0x80, 0xc2}, [], 0x70, 0xf8, 0x128}, [@common=@dnat={'dnat\x00', 0x10, {{@dev={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa]}, 0xffffffffffffffff}}}, @common=@IDLETIMER={'IDLETIMER\x00', 0x28, {{0x4, 'syz0\x00'}}}]}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8}}]}, {0x0, '\x00', 0x1, 0xffffbffffffffffe}]}, 0x260)
setsockopt$EBT_SO_SET_ENTRIES(r7, 0x0, 0x80, &(0x7f0000000840)=@nat={'nat\x00', 0x19, 0x1, 0x200, [0x20000940, 0x0, 0x0, 0x20000970, 0x200009a0], 0x0, &(0x7f0000000800), &(0x7f0000000940)=[{}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x14, 0x98ab, 'teql0\x00', 'ip6gretap0\x00', 'ip_vti0\x00', 'nr0\x00', @empty, [0x0, 0xff, 0x0, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2}, [0xff, 0x0, 0xff, 0x0, 0x0, 0xff], 0x100, 0x138, 0x170, [@time={'time\x00', 0x18, {{0x7, 0x3, 0x13782, 0x14fdf, 0x80, 0x4, 0x1}}}, @nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x2}}}]}, [@snat={'snat\x00', 0x10, {{@random="07901c8f0140"}}}]}, @common=@dnat={'dnat\x00', 0x10, {{@local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}, 0x10}}}}]}]}, 0x278)
syz_open_dev$dmmidi(&(0x7f0000000c40)='/dev/dmmidi#\x00', 0xae6d, 0x200)

2018/03/31 01:45:03 executing program 3 (fault-call:3 fault-nth:49):
mkdir(&(0x7f00000001c0)='./file0\x00', 0x0)
mount(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000380)='./file0\x00', &(0x7f0000000300)='cgroup2\x00', 0x0, 0x0)
r0 = open$dir(&(0x7f000001bff4)='./file0\x00', 0x0, 0x0)
mkdirat(r0, &(0x7f0000000280)='./file0\x00', 0x20)
getdents64(r0, &(0x7f00000007c0)=""/250, 0x1015a)
fadvise64(r0, 0x0, 0x41, 0x3)
unlinkat(r0, &(0x7f0000000080)='./file0\x00', 0x200)
r1 = open$dir(&(0x7f0000000180)='./file0\x00', 0x105600, 0x81)
fchdir(r0)
link(&(0x7f0000000740)='./file1\x00', &(0x7f0000000780)='./file0/file0\x00')
renameat2(r1, &(0x7f0000000200)='./file1\x00', r0, &(0x7f0000000240)='./file0\x00', 0xfd1092750066ec78)
pivot_root(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='./file0\x00')
r2 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000100)='/dev/rfkill\x00', 0x2c42, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_LIST(r2, 0xc0505510, &(0x7f0000000480)={0x1000, 0x1, 0x474, 0x1, &(0x7f0000000140)=[{}]})
unlink(&(0x7f00000000c0)='./file0\x00')
symlinkat(&(0x7f0000000400)='./file0/file0\x00', r0, &(0x7f0000000440)='./file0/file0\x00')
iopl(0x6)
recvmsg$kcm(0xffffffffffffffff, &(0x7f0000000680)={&(0x7f0000000500)=@pppol2tp={0x0, 0x0, {0x0, <r3=>0xffffffffffffffff, {0x0, 0x0, @broadcast}}}, 0x80, &(0x7f0000000600)=[{&(0x7f0000000580)=""/80, 0x50}, {&(0x7f00000008c0)=""/4096, 0x1000}], 0x2, &(0x7f0000000640)=""/45, 0x2d, 0x206e}, 0x20)
r4 = syz_open_dev$sndpcmp(&(0x7f00000018c0)='/dev/snd/pcmC#D#p\x00', 0x5, 0x10a00)
ioctl$KVM_GET_DEVICE_ATTR(r4, 0x4018aee2, &(0x7f0000001940)={0x0, 0x100, 0x9, &(0x7f0000001900)})
recvfrom$ipx(r3, &(0x7f00000006c0)=""/52, 0x34, 0x100, &(0x7f0000000700)={0x4, 0x9a2, 0x4, "dc108d9d4391", 0x5}, 0x10)
renameat(r0, &(0x7f0000001980)='./file1\x00', r4, &(0x7f00000019c0)='./file0/file0\x00')

2018/03/31 01:45:03 executing program 6:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x200, 0x0)
socketpair$inet6_icmp_raw(0xa, 0x3, 0x3a, &(0x7f0000000680)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
setsockopt$sock_linger(r1, 0x1, 0xd, &(0x7f00000006c0)={0x400, 0x9}, 0x8)
perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
mmap(&(0x7f0000000000/0x9d7000)=nil, 0x9d7000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x7)
perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r4, &(0x7f0000e5b000)={0x2, 0x4e20, @multicast1=0xe0000001}, 0x10)
syz_open_dev$sg(&(0x7f0000000440)='/dev/sg#\x00', 0x0, 0x0)
connect$inet(r4, &(0x7f0000000100)={0x2, 0x4e20, @multicast2=0xe0000002}, 0x10)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000eb0fb8)={0x1, 0x3, &(0x7f00009ff000)=@framed={{0x18}, [], {0x95}}, &(0x7f00002bf000)='syzkaller\x00', 0x4, 0xb7, &(0x7f00006ab000)=""/183}, 0x48)
setsockopt$inet_tcp_int(r4, 0x6, 0x19, &(0x7f0000000240)=0x8, 0x4)
setsockopt$SO_BINDTODEVICE(r4, 0x1, 0x19, &(0x7f0000000000)="6970365f76746930000000000400", 0x10)
r6 = socket$kcm(0x29, 0x2, 0x0)
ioctl$sock_kcm_SIOCKCMATTACH(r6, 0x89e0, &(0x7f000031aff8)={r4, r5})
ioctl$sock_kcm_SIOCKCMCLONE(r6, 0x89e2, &(0x7f00000002c0)={<r7=>0xffffffffffffffff})
sendmsg$nl_xfrm(r7, &(0x7f0000000780)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000740)={&(0x7f0000000480)=@updpolicy={0xb8, 0x19, 0x0, 0x0, 0x0, {{@in=@loopback=0x7f000001, @in6=@mcast1={0xff, 0x1, [], 0x1}}}}, 0xffcb}, 0x1}, 0x0)
ioctl$sock_kcm_SIOCKCMUNATTACH(r7, 0x89e1, &(0x7f0000000040)={r4})
r8 = fcntl$getown(r3, 0x9)
r9 = accept4$inet(0xffffffffffffff9c, &(0x7f0000000700)={0x0, 0x0, @broadcast}, &(0x7f0000000740)=0x10, 0x80000)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r9, 0x84, 0x64, &(0x7f0000000300)=[@in6={0xa, 0x4e23, 0x0, @dev={0xfe, 0x80, [], 0xf}, 0x6}, @in={0x2, 0xff, @local={0xac, 0x14, 0x14, 0xaa}}, @in={0x2, 0x4e23, @multicast1=0xe0000001}, @in={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x10}}, @in={0x2, 0x4e24}, @in={0x2, 0x4e24, @broadcast=0xffffffff}, @in6={0xa, 0x4e21, 0xed34, @local={0xfe, 0x80, [], 0xaa}, 0x3}, @in={0x2, 0x4e23, @loopback=0x7f000001}], 0x98)
ptrace$setregset(0x4205, r8, 0x0, &(0x7f00000005c0)={&(0x7f0000000080)="449ed0dd6831a7fb44eca4221b1fb01abfec082aa7d0ee6f0ba9db0ece7da2bd3f", 0x21})
r10 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r11 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x1fffd, 0x0)
syz_open_dev$sndtimer(&(0x7f00000000c0)='/dev/snd/timer\x00', 0x0, 0x0)
read(r0, &(0x7f0000000140)=""/50, 0x32)
fcntl$dupfd(r10, 0x0, r11)

[  196.474336] FAULT_INJECTION: forcing a failure.
[  196.474336] name failslab, interval 1, probability 0, space 0, times 0
[  196.485635] CPU: 0 PID: 13965 Comm: syz-executor3 Not tainted 4.16.0-rc7+ #372
[  196.492993] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  196.502344] Call Trace:
[  196.504927]  dump_stack+0x194/0x24d
[  196.508537]  ? arch_local_irq_restore+0x53/0x53
[  196.513192]  should_fail+0x8c0/0xa40
[  196.516886]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  196.522002]  ? rb_first_postorder+0xa0/0xa0
[  196.526306]  ? __mutex_lock+0x16f/0x1a80
[  196.530348]  ? trace_event_raw_event_lock+0x340/0x340
[  196.535513]  ? trace_hardirqs_off+0x10/0x10
[  196.539829]  ? find_held_lock+0x35/0x1d0
[  196.543872]  ? __lock_is_held+0xb6/0x140
[  196.547919]  ? check_same_owner+0x320/0x320
[  196.552217]  ? lock_downgrade+0x980/0x980
[  196.556345]  ? rcu_note_context_switch+0x710/0x710
[  196.561259]  should_failslab+0xec/0x120
[  196.565210]  __kmalloc_track_caller+0x5f/0x760
[  196.569774]  ? string+0x180/0x200
[  196.573202]  ? kstrdup_const+0x39/0x50
[  196.577070]  kstrdup+0x39/0x70
[  196.580239]  kstrdup_const+0x39/0x50
[  196.583935]  __kernfs_new_node+0xa2/0x570
[  196.588062]  ? kernfs_dop_revalidate+0x380/0x380
[  196.592799]  ? snprintf+0xc0/0xf0
[  196.596230]  ? vsprintf+0x40/0x40
[  196.599659]  ? debug_lockdep_rcu_enabled+0x77/0x90
[  196.604564]  ? cgroup_file_name+0x1d0/0x1d0
[  196.608868]  kernfs_new_node+0x80/0xe0
[  196.612735]  __kernfs_create_file+0x4b/0x320
[  196.617123]  cgroup_addrm_files+0x3c5/0xa70
[  196.621429]  ? cgroup_file_write+0x710/0x710
[  196.625822]  ? cgroup_idr_replace+0x3f/0x50
[  196.630125]  ? __lock_is_held+0xb6/0x140
[  196.634163]  ? __local_bh_enable_ip+0x121/0x230
[  196.638812]  ? online_css+0x224/0x2e0
[  196.642592]  css_populate_dir+0x198/0x420
[  196.646718]  cgroup_apply_control_enable+0x390/0xbc0
[  196.651804]  ? cgroup_propagate_control+0x570/0x570
[  196.656808]  ? css_populate_dir+0x289/0x420
[  196.661107]  cgroup_mkdir+0x56f/0xfc0
[  196.664889]  ? __lock_is_held+0xb6/0x140
[  196.668933]  ? cgroup_destroy_locked+0x750/0x750
[  196.673665]  ? rcu_read_lock_sched_held+0x108/0x120
[  196.678658]  ? kmem_cache_free+0x258/0x2a0
[  196.682871]  ? set_nlink+0xc1/0x160
[  196.686476]  ? debug_lockdep_rcu_enabled+0x77/0x90
[  196.691382]  ? generic_permission+0x105/0x3c0
[  196.695853]  ? cgroup_destroy_locked+0x750/0x750
[  196.700588]  kernfs_iop_mkdir+0x153/0x1e0
[  196.704712]  vfs_mkdir+0x390/0x600
[  196.708230]  SyS_mkdirat+0x22b/0x2b0
[  196.711922]  ? SyS_mknod+0x480/0x480
[  196.715610]  ? trace_hardirqs_on+0xd/0x10
[  196.719737]  ? do_syscall_64+0xb7/0x940
[  196.723691]  ? SyS_mknod+0x480/0x480
[  196.727381]  do_syscall_64+0x281/0x940
[  196.731244]  ? vmalloc_sync_all+0x30/0x30
[  196.735369]  ? finish_task_switch+0x1c1/0x7e0
[  196.739842]  ? syscall_return_slowpath+0x550/0x550
[  196.744747]  ? syscall_return_slowpath+0x2ac/0x550
[  196.749652]  ? prepare_exit_to_usermode+0x350/0x350
[  196.754649]  ? entry_SYSCALL_64_after_hwframe+0x52/0xb7
[  196.759991]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  196.764820]  entry_SYSCALL_64_after_hwframe+0x42/0xb7
[  196.769985] RIP: 0033:0x454e79
2018/03/31 01:45:03 executing program 1:
r0 = creat(&(0x7f0000000b40)='./file0\x00', 0x20)
ioctl$DRM_IOCTL_AGP_ALLOC(0xffffffffffffff9c, 0xc0206434, &(0x7f0000000b80)={0x5, <r1=>0x0, 0x0, 0x81})
ioctl$DRM_IOCTL_SG_FREE(r0, 0x40106439, &(0x7f0000000bc0)={0x3, r1})
r2 = socket$inet(0x2, 0x6, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f00000008c0)=@broute={'broute\x00', 0x20, 0x2, 0x3e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000280], 0x0, &(0x7f0000000240), &(0x7f0000000d00)=ANY=[@ANYBLOB="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"]}, 0x4e7)
getsockopt$inet_sctp_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000c80), &(0x7f0000000cc0)=0xb)
getsockopt$inet_sctp6_SCTP_CONTEXT(0xffffffffffffff9c, 0x84, 0x11, &(0x7f0000000000)={<r3=>0x0, 0x7}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r2, 0x84, 0xa, &(0x7f0000000140)={0x0, 0xa2b, 0x4, 0x7, 0x2, 0x20, 0x10000, 0x8a82, r3}, &(0x7f0000000180)=0x20)
setsockopt$inet_group_source_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000680)={0x1000, {{0x2, 0x4e23, @multicast1=0xe0000001}}, {{0x2, 0x4e22, @broadcast=0xffffffff}}}, 0x108)
setsockopt$inet_sctp_SCTP_STREAM_SCHEDULER_VALUE(r0, 0x84, 0x7c, &(0x7f00000002c0)={r3, 0x181a, 0xdb00000000000000}, 0x8)
ioctl$DRM_IOCTL_AGP_ENABLE(0xffffffffffffffff, 0x40086432, &(0x7f0000000100))
r4 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/vs/sync_version\x00', 0x2, 0x0)
ioctl$TIOCGSOFTCAR(r4, 0x5419, &(0x7f00000007c0))
r5 = socket$inet6(0x10, 0x2, 0x0)
sendmsg(r5, &(0x7f0000000080)={&(0x7f0000000240)=@un=@abs={0x1, 0x0, 0x4e23}, 0x80, &(0x7f0000000040)=[{&(0x7f00000001c0)="5500000018007f04002d1cb2a4a280930a0600007da843cf19d0f869390009402f002100040000001900050000fc1700000000dc1338d54400009b84136ef75afb83de448daa7227c43ab8220000060c", 0x50}], 0x1, &(0x7f00000000c0)}, 0x0)
socket$bt_cmtp(0x1f, 0x3, 0x5)
fcntl$addseals(r5, 0x409, 0x7)
unlinkat(r4, &(0x7f0000000300)='./file0\x00', 0x0)
syz_open_dev$sndmidi(&(0x7f0000000c00)='/dev/snd/midiC#D#\x00', 0x100000001, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f0000001640)=@broute={'broute\x00', 0x20, 0x1, 0x1e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20001700], 0x0, &(0x7f0000001980), &(0x7f0000001700)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1, [{{{0x13, 0x0, 0x0, 'vcan0\x00', 'ifb0\x00', 'syzkaller0\x00', 'vcan0\x00', @remote={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xbb}, [], @link_local={0x1, 0x80, 0xc2}, [], 0x70, 0xf8, 0x128}, [@common=@dnat={'dnat\x00', 0x10, {{@dev={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa]}, 0xffffffffffffffff}}}, @common=@IDLETIMER={'IDLETIMER\x00', 0x28, {{0x4, 'syz0\x00'}}}]}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8}}]}, {0x0, '\x00', 0x1, 0xffffbffffffffffe}]}, 0x260)
setsockopt$inet_sctp6_SCTP_ASSOCINFO(r0, 0x84, 0x1, &(0x7f0000000440)={r3, 0x800, 0x6, 0x5, 0x6, 0xffffffffffff8001}, 0x14)
getsockopt$inet_mreqn(r5, 0x0, 0x24, &(0x7f0000000340)={@dev, @rand_addr, <r6=>0x0}, &(0x7f0000000380)=0xc)
ioctl$sock_inet6_SIOCDELRT(r0, 0x890c, &(0x7f00000003c0)={@empty, @dev={0xfe, 0x80, [], 0x16}, @mcast1={0xff, 0x1, [], 0x1}, 0xffff, 0x0, 0x2, 0x100, 0x6, 0x800002, r6})
syz_open_dev$dmmidi(&(0x7f0000000c40)='/dev/dmmidi#\x00', 0xae6d, 0x200)

[  196.773154] RSP: 002b:00007fa6ef25cc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
[  196.780838] RAX: ffffffffffffffda RBX: 00007fa6ef25d6d4 RCX: 0000000000454e79
[  196.788085] RDX: 0000000000000020 RSI: 0000000020000280 RDI: 0000000000000013
[  196.795330] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  196.802575] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000014
[  196.809821] R13: 00000000000003eb R14: 00000000006f7ea8 R15: 0000000000000031
[  196.817377] cgroup: cgroup_addrm_files: failed to add weight, err=-12
2018/03/31 01:45:03 executing program 3 (fault-call:3 fault-nth:50):
mkdir(&(0x7f00000001c0)='./file0\x00', 0x0)
mount(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000380)='./file0\x00', &(0x7f0000000300)='cgroup2\x00', 0x0, 0x0)
r0 = open$dir(&(0x7f000001bff4)='./file0\x00', 0x0, 0x0)
mkdirat(r0, &(0x7f0000000280)='./file0\x00', 0x20)
getdents64(r0, &(0x7f00000007c0)=""/250, 0x1015a)
fadvise64(r0, 0x0, 0x41, 0x3)
unlinkat(r0, &(0x7f0000000080)='./file0\x00', 0x200)
r1 = open$dir(&(0x7f0000000180)='./file0\x00', 0x105600, 0x81)
fchdir(r0)
link(&(0x7f0000000740)='./file1\x00', &(0x7f0000000780)='./file0/file0\x00')
renameat2(r1, &(0x7f0000000200)='./file1\x00', r0, &(0x7f0000000240)='./file0\x00', 0xfd1092750066ec78)
pivot_root(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='./file0\x00')
r2 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000100)='/dev/rfkill\x00', 0x2c42, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_LIST(r2, 0xc0505510, &(0x7f0000000480)={0x1000, 0x1, 0x474, 0x1, &(0x7f0000000140)=[{}]})
unlink(&(0x7f00000000c0)='./file0\x00')
symlinkat(&(0x7f0000000400)='./file0/file0\x00', r0, &(0x7f0000000440)='./file0/file0\x00')
iopl(0x6)
recvmsg$kcm(0xffffffffffffffff, &(0x7f0000000680)={&(0x7f0000000500)=@pppol2tp={0x0, 0x0, {0x0, <r3=>0xffffffffffffffff, {0x0, 0x0, @broadcast}}}, 0x80, &(0x7f0000000600)=[{&(0x7f0000000580)=""/80, 0x50}, {&(0x7f00000008c0)=""/4096, 0x1000}], 0x2, &(0x7f0000000640)=""/45, 0x2d, 0x206e}, 0x20)
r4 = syz_open_dev$sndpcmp(&(0x7f00000018c0)='/dev/snd/pcmC#D#p\x00', 0x5, 0x10a00)
ioctl$KVM_GET_DEVICE_ATTR(r4, 0x4018aee2, &(0x7f0000001940)={0x0, 0x100, 0x9, &(0x7f0000001900)})
recvfrom$ipx(r3, &(0x7f00000006c0)=""/52, 0x34, 0x100, &(0x7f0000000700)={0x4, 0x9a2, 0x4, "dc108d9d4391", 0x5}, 0x10)
renameat(r0, &(0x7f0000001980)='./file1\x00', r4, &(0x7f00000019c0)='./file0/file0\x00')

[  196.842692] kernel msg: ebtables bug: please report to author: Wrong len argument
[  196.862120] kernel msg: ebtables bug: please report to author: Wrong len argument
[  196.907665] FAULT_INJECTION: forcing a failure.
[  196.907665] name failslab, interval 1, probability 0, space 0, times 0
[  196.918972] CPU: 1 PID: 13981 Comm: syz-executor3 Not tainted 4.16.0-rc7+ #372
[  196.926327] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  196.935684] Call Trace:
[  196.938259]  dump_stack+0x194/0x24d
[  196.941874]  ? arch_local_irq_restore+0x53/0x53
[  196.946531]  should_fail+0x8c0/0xa40
[  196.950228]  ? kstrdup+0x39/0x70
[  196.953575]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  196.958656]  ? cgroup_apply_control_enable+0x390/0xbc0
[  196.963914]  ? kernfs_iop_mkdir+0x153/0x1e0
[  196.968209]  ? vfs_mkdir+0x390/0x600
[  196.971898]  ? SyS_mkdirat+0x22b/0x2b0
[  196.975759]  ? do_syscall_64+0x281/0x940
[  196.979799]  ? entry_SYSCALL_64_after_hwframe+0x42/0xb7
[  196.985143]  ? find_held_lock+0x35/0x1d0
[  196.989187]  ? find_held_lock+0x35/0x1d0
[  196.993230]  ? __lock_is_held+0xb6/0x140
[  196.997281]  ? check_same_owner+0x320/0x320
[  197.001583]  ? rcu_note_context_switch+0x710/0x710
[  197.006492]  ? rcu_read_lock_sched_held+0x108/0x120
[  197.011492]  should_failslab+0xec/0x120
[  197.015443]  kmem_cache_alloc+0x47/0x760
[  197.019478]  ? memcpy+0x45/0x50
[  197.022739]  ? kstrdup+0x59/0x70
[  197.026086]  __kernfs_new_node+0xe2/0x570
[  197.030211]  ? kernfs_dop_revalidate+0x380/0x380
[  197.034953]  ? snprintf+0xc0/0xf0
[  197.038384]  ? vsprintf+0x40/0x40
[  197.041814]  ? debug_lockdep_rcu_enabled+0x77/0x90
[  197.046723]  ? cgroup_file_name+0x1d0/0x1d0
[  197.051027]  kernfs_new_node+0x80/0xe0
[  197.054894]  __kernfs_create_file+0x4b/0x320
[  197.059284]  cgroup_addrm_files+0x3c5/0xa70
[  197.063586]  ? cgroup_file_write+0x710/0x710
[  197.067975]  ? cgroup_idr_replace+0x3f/0x50
[  197.072278]  ? __lock_is_held+0xb6/0x140
[  197.076319]  ? __local_bh_enable_ip+0x121/0x230
[  197.080962]  ? online_css+0x224/0x2e0
[  197.084739]  css_populate_dir+0x198/0x420
[  197.088865]  cgroup_apply_control_enable+0x390/0xbc0
[  197.093950]  ? cgroup_propagate_control+0x570/0x570
[  197.098946]  ? css_populate_dir+0x289/0x420
[  197.103245]  cgroup_mkdir+0x56f/0xfc0
[  197.107024]  ? __lock_is_held+0xb6/0x140
[  197.111064]  ? cgroup_destroy_locked+0x750/0x750
[  197.115796]  ? rcu_read_lock_sched_held+0x108/0x120
[  197.120791]  ? kmem_cache_free+0x258/0x2a0
[  197.125003]  ? set_nlink+0xc1/0x160
[  197.128613]  ? debug_lockdep_rcu_enabled+0x77/0x90
[  197.133523]  ? generic_permission+0x105/0x3c0
[  197.137998]  ? cgroup_destroy_locked+0x750/0x750
[  197.142738]  kernfs_iop_mkdir+0x153/0x1e0
[  197.146863]  vfs_mkdir+0x390/0x600
[  197.150381]  SyS_mkdirat+0x22b/0x2b0
[  197.154075]  ? SyS_mknod+0x480/0x480
[  197.157764]  ? trace_hardirqs_on+0xd/0x10
[  197.161889]  ? do_syscall_64+0xb7/0x940
[  197.165853]  ? SyS_mknod+0x480/0x480
[  197.169544]  do_syscall_64+0x281/0x940
[  197.173408]  ? vmalloc_sync_all+0x30/0x30
[  197.177537]  ? _raw_spin_unlock_irq+0x27/0x70
[  197.182012]  ? finish_task_switch+0x1c1/0x7e0
[  197.186485]  ? syscall_return_slowpath+0x550/0x550
[  197.191393]  ? syscall_return_slowpath+0x2ac/0x550
[  197.196301]  ? prepare_exit_to_usermode+0x350/0x350
[  197.201295]  ? entry_SYSCALL_64_after_hwframe+0x52/0xb7
[  197.206636]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  197.211456]  entry_SYSCALL_64_after_hwframe+0x42/0xb7
[  197.216621] RIP: 0033:0x454e79
[  197.219788] RSP: 002b:00007fa6ef25cc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
[  197.227472] RAX: ffffffffffffffda RBX: 00007fa6ef25d6d4 RCX: 0000000000454e79
[  197.234717] RDX: 0000000000000020 RSI: 0000000020000280 RDI: 0000000000000013
[  197.241961] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  197.249204] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000014
2018/03/31 01:45:03 executing program 6:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x200, 0x0)
socketpair$inet6_icmp_raw(0xa, 0x3, 0x3a, &(0x7f0000000680)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
setsockopt$sock_linger(r1, 0x1, 0xd, &(0x7f00000006c0)={0x400, 0x9}, 0x8)
perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
mmap(&(0x7f0000000000/0x9d7000)=nil, 0x9d7000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x7)
perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r4, &(0x7f0000e5b000)={0x2, 0x4e20, @multicast1=0xe0000001}, 0x10)
syz_open_dev$sg(&(0x7f0000000440)='/dev/sg#\x00', 0x0, 0x0)
connect$inet(r4, &(0x7f0000000100)={0x2, 0x4e20, @multicast2=0xe0000002}, 0x10)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000eb0fb8)={0x1, 0x3, &(0x7f00009ff000)=@framed={{0x18}, [], {0x95}}, &(0x7f00002bf000)='syzkaller\x00', 0x4, 0xb7, &(0x7f00006ab000)=""/183}, 0x48)
setsockopt$inet_tcp_int(r4, 0x6, 0x19, &(0x7f0000000240)=0x8, 0x4)
setsockopt$SO_BINDTODEVICE(r4, 0x1, 0x19, &(0x7f0000000000)="6970365f76746930000000000400", 0x10)
r6 = socket$kcm(0x29, 0x2, 0x0)
ioctl$sock_kcm_SIOCKCMATTACH(r6, 0x89e0, &(0x7f000031aff8)={r4, r5})
ioctl$sock_kcm_SIOCKCMCLONE(r6, 0x89e2, &(0x7f00000002c0)={<r7=>0xffffffffffffffff})
sendmsg$nl_xfrm(r7, &(0x7f0000000780)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000740)={&(0x7f0000000480)=@updpolicy={0xb8, 0x19, 0x0, 0x0, 0x0, {{@in=@loopback=0x7f000001, @in6=@mcast1={0xff, 0x1, [], 0x1}}}}, 0xffcb}, 0x1}, 0x0)
ioctl$sock_kcm_SIOCKCMUNATTACH(r7, 0x89e1, &(0x7f0000000040)={r4})
r8 = fcntl$getown(r3, 0x9)
r9 = accept4$inet(0xffffffffffffff9c, &(0x7f0000000700)={0x0, 0x0, @broadcast}, &(0x7f0000000740)=0x10, 0x80000)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r9, 0x84, 0x64, &(0x7f0000000300)=[@in6={0xa, 0x4e23, 0x0, @dev={0xfe, 0x80, [], 0xf}, 0x6}, @in={0x2, 0xff, @local={0xac, 0x14, 0x14, 0xaa}}, @in={0x2, 0x4e23, @multicast1=0xe0000001}, @in={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x10}}, @in={0x2, 0x4e24}, @in={0x2, 0x4e24, @broadcast=0xffffffff}, @in6={0xa, 0x4e21, 0xed34, @local={0xfe, 0x80, [], 0xaa}, 0x3}, @in={0x2, 0x4e23, @loopback=0x7f000001}], 0x98)
ptrace$setregset(0x4205, r8, 0x0, &(0x7f00000005c0)={&(0x7f0000000080)="449ed0dd6831a7fb44eca4221b1fb01abfec082aa7d0ee6f0ba9db0ece7da2bd3f", 0x21})
r10 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r11 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x1fffd, 0x0)
syz_open_dev$sndtimer(&(0x7f00000000c0)='/dev/snd/timer\x00', 0x0, 0x0)
read(r0, &(0x7f0000000140)=""/50, 0x32)
fcntl$dupfd(r10, 0x0, r11)

[  197.256449] R13: 00000000000003eb R14: 00000000006f7ea8 R15: 0000000000000032
[  197.263856] cgroup: cgroup_addrm_files: failed to add weight, err=-12
2018/03/31 01:45:04 executing program 1:
r0 = creat(&(0x7f0000000b40)='./file0\x00', 0x20)
ioctl$DRM_IOCTL_AGP_ALLOC(0xffffffffffffff9c, 0xc0206434, &(0x7f0000000b80)={0x5, <r1=>0x0, 0x0, 0x81})
ioctl$DRM_IOCTL_SG_FREE(r0, 0x40106439, &(0x7f0000000bc0)={0x3, r1})
r2 = socket$inet(0x2, 0x6, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f00000008c0)=@broute={'broute\x00', 0x20, 0x2, 0x3e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000280], 0x0, &(0x7f0000000240), &(0x7f0000000280)=ANY=[@ANYBLOB="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"]}, 0x460)
getsockopt$inet_sctp6_SCTP_CONTEXT(0xffffffffffffff9c, 0x84, 0x11, &(0x7f0000000000)={<r3=>0x0, 0x7}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r2, 0x84, 0xa, &(0x7f0000000140)={0x0, 0xa2b, 0x4, 0x7, 0x2, 0x20, 0x10000, 0x8a82, r3}, &(0x7f0000000180)=0x20)
setsockopt$inet_group_source_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000680)={0x1000, {{0x2, 0x4e23, @multicast1=0xe0000001}}, {{0x2, 0x4e22, @broadcast=0xffffffff}}}, 0x108)
ioctl$DRM_IOCTL_AGP_ENABLE(0xffffffffffffffff, 0x40086432, &(0x7f0000000100))
r4 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000d00)='/proc/sys/net/ipv4/vs/lblc_expiration\x00', 0x2, 0x0)
ioctl$TIOCGSOFTCAR(r4, 0x5419, &(0x7f00000007c0))
r5 = socket$inet6(0x10, 0x2, 0x0)
sendmsg(r5, &(0x7f0000000080)={&(0x7f0000000240)=@un=@abs={0x1, 0x0, 0x4e23}, 0x80, &(0x7f0000000040)=[{&(0x7f00000001c0)="5500000018007f04002d1cb2a4a280930a0600007da843cf19d0f869390009402f002100040000001900050000fc1700000000dc1338d54400009b84136ef75afb83de448daa7227c43ab8220000060c", 0x50}], 0x1, &(0x7f00000000c0)}, 0x0)
socket$bt_cmtp(0x1f, 0x3, 0x5)
fcntl$addseals(r5, 0x409, 0x7)
syz_open_dev$sndmidi(&(0x7f0000000c00)='/dev/snd/midiC#D#\x00', 0x100000001, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f0000001640)=@broute={'broute\x00', 0x20, 0x1, 0x1e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20001700], 0x0, &(0x7f0000001980), &(0x7f0000001700)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1, [{{{0x13, 0x0, 0x0, 'vcan0\x00', 'ifb0\x00', 'syzkaller0\x00', 'vcan0\x00', @remote={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xbb}, [], @link_local={0x1, 0x80, 0xc2}, [], 0x70, 0xf8, 0x128}, [@common=@dnat={'dnat\x00', 0x10, {{@dev={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa]}, 0xffffffffffffffff}}}, @common=@IDLETIMER={'IDLETIMER\x00', 0x28, {{0x4, 'syz0\x00'}}}]}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8}}]}, {0x0, '\x00', 0x1, 0xffffbffffffffffe}]}, 0x260)
setsockopt$EBT_SO_SET_ENTRIES(0xffffffffffffffff, 0x0, 0x80, &(0x7f0000000840)=@nat={'nat\x00', 0x19, 0x1, 0x200, [0x20000940, 0x0, 0x0, 0x20000970, 0x200009a0], 0x0, &(0x7f0000000800), &(0x7f0000000940)=[{}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x14, 0x98ab, 'teql0\x00', 'ip6gretap0\x00', 'ip_vti0\x00', 'nr0\x00', @empty, [0x0, 0xff, 0x0, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2}, [0xff, 0x0, 0xff, 0x0, 0x0, 0xff], 0x100, 0x138, 0x170, [@time={'time\x00', 0x18, {{0x7, 0x3, 0x13782, 0x14fdf, 0x80, 0x4, 0x1}}}, @nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x2}}}]}, [@snat={'snat\x00', 0x10, {{@random="07901c8f0140"}}}]}, @common=@dnat={'dnat\x00', 0x10, {{@local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}, 0x10}}}}]}]}, 0x278)
syz_open_dev$dmmidi(&(0x7f0000000c40)='/dev/dmmidi#\x00', 0xae6d, 0x200)

2018/03/31 01:45:04 executing program 7:
clone(0x200, &(0x7f0000000100)="abbcd764d5b6fd853189b4a102b248f0de7c0a5cc328ca13455598dc3d760fa566c64d7cb06a7e15cdb085165670f42b32809442c69a5942d03eb3fd42bf0ebb0272fc4beb43f269f26f57bbb67316f7c76c8d570edaa564720b4dfd8f32453fc2354ddc753155ac051e9e9657989f0bbf1c03e4cd9f735c6d1b95719dbbb1c04092f54f44256722d954f0000000000000000000000000000000", &(0x7f00000000c0), &(0x7f00008c8000), &(0x7f0000828ffe))
mknod(&(0x7f0000000000)='./file0\x00', 0x1000000000001040, 0x0)
execve(&(0x7f000007b000)='./file0\x00', &(0x7f0000000180), &(0x7f0000000040))
r0 = gettid()
r1 = syz_open_dev$mice(&(0x7f0000149000)='/dev/input/mice\x00', 0x0, 0x0)
execve(&(0x7f00000001c0)='./file0\x00', &(0x7f0000001540)=[&(0x7f0000000200)='user\x00', &(0x7f0000000240)='vmnet0\x00', &(0x7f0000000280)='user\x00', &(0x7f0000001480)='user\x00'], &(0x7f00000015c0)=[&(0x7f0000001580)='#keyring\x00'])
msgget$private(0x0, 0x400)
timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000))
uselib(&(0x7f00000002c0)='./file0/file0\x00')
mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x0, 0x32, 0xffffffffffffffff, 0x0)
getsockopt$inet_sctp6_SCTP_INITMSG(r1, 0x84, 0x2, &(0x7f0000000040), &(0x7f0000000080)=0x8)
tkill(r0, 0x1000000000015)

2018/03/31 01:45:04 executing program 5:
r0 = syz_open_dev$amidi(&(0x7f0000000400)='/dev/amidi#\x00', 0x401, 0x40)
accept4$llc(r0, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, &(0x7f0000000480)=0x10, 0x80800)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f0000005fd8)={'vcan0\x00', <r2=>0x0})
ioctl$KVM_SET_DEVICE_ATTR(r0, 0x4018aee1, &(0x7f0000000500)={0x0, 0x100000001, 0x5a, &(0x7f00000004c0)})
connect$can_bcm(0xffffffffffffffff, &(0x7f0000001ff0)={0x1d, r2}, 0x10)
ioctl$TIOCGSID(0xffffffffffffff9c, 0x5429, &(0x7f00000002c0)=<r3=>0x0)
waitid(0x0, r3, 0x0, 0x1000009, &(0x7f0000000300))
r4 = syz_open_dev$vcsn(&(0x7f0000000000)='/dev/vcs#\x00', 0xcd8, 0x101000)
getsockopt$SO_BINDTODEVICE(r4, 0x1, 0x19, &(0x7f0000000280), 0x10)
ioctl$EVIOCGABS0(r4, 0x80184540, &(0x7f0000000240)=""/64)
bind$vsock_dgram(r1, &(0x7f00000003c0)={0x28, 0x0, 0x2711, @reserved=0x1}, 0x10)
exit(0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000200)={r4, 0x0, 0x47, 0xde, &(0x7f0000000080)="3541471374d1e455c1f501bb3e7418a21f930d9fb82ac3588f54ad5a1a9e778bdf654fa39f19bcbc6ee4636a10d409c877cfe11ba160f73d4cde40422564bfdb62d8e5f8ba5097", &(0x7f0000000100)=""/222, 0x4, 0x3f}, 0x28)
ioctl$KVM_SET_TSS_ADDR(r4, 0xae47, 0xd000)
ioctl$KVM_CHECK_EXTENSION(r4, 0xae03, 0xffffffffffffffff)
openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000580)='/dev/qat_adf_ctl\x00', 0x4600, 0x0)
sendmsg$can_raw(r1, &(0x7f0000001fc8)={&(0x7f000000a000)={0x1d}, 0x10, &(0x7f0000000040)={&(0x7f000000a000)=@canfd={{0x1}, 0x0, 0x0, 0x0, 0x0, "0327e1b22b5fcef7739c699f5ff986ca08990039576a7d5cb2bdac3fa80acf584ecb5fee496e6866856b76b5f700000000000000004e2f9663a918fa1efd9b0b"}, 0x48}, 0x1}, 0x0)
ioctl$VHOST_GET_VRING_ENDIAN(r0, 0x4008af14, &(0x7f0000000540)={0x0, 0x9})

2018/03/31 01:45:04 executing program 4:
r0 = syz_open_dev$evdev(&(0x7f0000057fee)='/dev/input/event#\x00', 0xafd, 0x8000040000001)
ioctl$EVIOCSMASK(r0, 0x40104593, &(0x7f0000cfbff0)={0x2, 0xfffffffffffffd99, &(0x7f0000d8c309)="454eee1e5f010400000000000012d1c601977c2ec12181485a3d00284f4bca6ed22a7058a803000000fe36bec2c13281d458db77afe8b1c6ea643e1de9edf4b06189ceef4c82d678c0d0055d46910f60560c5621c14105000000d7d9ccc0a65dc7798a9eba792400137112963a6b034a9f029e7aa4a62fc8"})
r1 = request_key(&(0x7f0000000140)='pkcs7_test\x00', &(0x7f0000000180)={0x73, 0x79, 0x7a, 0x3}, &(0x7f00000001c0)='}posix_acl_access\x00', 0xffffffffffffffff)
add_key$user(&(0x7f0000000040)='user\x00', &(0x7f0000000080)={0x73, 0x79, 0x7a, 0x1}, &(0x7f00000000c0)="0f47fbbef0b9ee79f54a9a30bf776d77f1e943b3fde6391d0e0c75229ddb89bb3b13d44067f091f78102adbd77423a87b2107a93e3940370ccf09f2f5f5fb8047bf96a49fdfa76694fd8e7efe528a1f5da89f0a6eb11f55cea1b7bba8a7d28c887885984b5c7861006d03ae490f39c478ffe96e6354963", 0x77, r1)
r2 = dup3(r0, r0, 0x80000)
ioctl$sock_ipx_SIOCIPXCFGDATA(r2, 0x89e2, &(0x7f0000000000))
write$evdev(r0, &(0x7f00008c1fd0)=[{{}, 0x2, 0x0, 0x40c}, {}], 0x30)

2018/03/31 01:45:04 executing program 3 (fault-call:3 fault-nth:51):
mkdir(&(0x7f00000001c0)='./file0\x00', 0x0)
mount(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000380)='./file0\x00', &(0x7f0000000300)='cgroup2\x00', 0x0, 0x0)
r0 = open$dir(&(0x7f000001bff4)='./file0\x00', 0x0, 0x0)
mkdirat(r0, &(0x7f0000000280)='./file0\x00', 0x20)
getdents64(r0, &(0x7f00000007c0)=""/250, 0x1015a)
fadvise64(r0, 0x0, 0x41, 0x3)
unlinkat(r0, &(0x7f0000000080)='./file0\x00', 0x200)
r1 = open$dir(&(0x7f0000000180)='./file0\x00', 0x105600, 0x81)
fchdir(r0)
link(&(0x7f0000000740)='./file1\x00', &(0x7f0000000780)='./file0/file0\x00')
renameat2(r1, &(0x7f0000000200)='./file1\x00', r0, &(0x7f0000000240)='./file0\x00', 0xfd1092750066ec78)
pivot_root(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='./file0\x00')
r2 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000100)='/dev/rfkill\x00', 0x2c42, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_LIST(r2, 0xc0505510, &(0x7f0000000480)={0x1000, 0x1, 0x474, 0x1, &(0x7f0000000140)=[{}]})
unlink(&(0x7f00000000c0)='./file0\x00')
symlinkat(&(0x7f0000000400)='./file0/file0\x00', r0, &(0x7f0000000440)='./file0/file0\x00')
iopl(0x6)
recvmsg$kcm(0xffffffffffffffff, &(0x7f0000000680)={&(0x7f0000000500)=@pppol2tp={0x0, 0x0, {0x0, <r3=>0xffffffffffffffff, {0x0, 0x0, @broadcast}}}, 0x80, &(0x7f0000000600)=[{&(0x7f0000000580)=""/80, 0x50}, {&(0x7f00000008c0)=""/4096, 0x1000}], 0x2, &(0x7f0000000640)=""/45, 0x2d, 0x206e}, 0x20)
r4 = syz_open_dev$sndpcmp(&(0x7f00000018c0)='/dev/snd/pcmC#D#p\x00', 0x5, 0x10a00)
ioctl$KVM_GET_DEVICE_ATTR(r4, 0x4018aee2, &(0x7f0000001940)={0x0, 0x100, 0x9, &(0x7f0000001900)})
recvfrom$ipx(r3, &(0x7f00000006c0)=""/52, 0x34, 0x100, &(0x7f0000000700)={0x4, 0x9a2, 0x4, "dc108d9d4391", 0x5}, 0x10)
renameat(r0, &(0x7f0000001980)='./file1\x00', r4, &(0x7f00000019c0)='./file0/file0\x00')

2018/03/31 01:45:04 executing program 6:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x200, 0x0)
socketpair$inet6_icmp_raw(0xa, 0x3, 0x3a, &(0x7f0000000680)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
setsockopt$sock_linger(r1, 0x1, 0xd, &(0x7f00000006c0)={0x400, 0x9}, 0x8)
perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
mmap(&(0x7f0000000000/0x9d7000)=nil, 0x9d7000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x7)
perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r4, &(0x7f0000e5b000)={0x2, 0x4e20, @multicast1=0xe0000001}, 0x10)
syz_open_dev$sg(&(0x7f0000000440)='/dev/sg#\x00', 0x0, 0x0)
connect$inet(r4, &(0x7f0000000100)={0x2, 0x4e20, @multicast2=0xe0000002}, 0x10)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000eb0fb8)={0x1, 0x3, &(0x7f00009ff000)=@framed={{0x18}, [], {0x95}}, &(0x7f00002bf000)='syzkaller\x00', 0x4, 0xb7, &(0x7f00006ab000)=""/183}, 0x48)
setsockopt$inet_tcp_int(r4, 0x6, 0x19, &(0x7f0000000240)=0x8, 0x4)
setsockopt$SO_BINDTODEVICE(r4, 0x1, 0x19, &(0x7f0000000000)="6970365f76746930000000000400", 0x10)
r6 = socket$kcm(0x29, 0x2, 0x0)
ioctl$sock_kcm_SIOCKCMATTACH(r6, 0x89e0, &(0x7f000031aff8)={r4, r5})
ioctl$sock_kcm_SIOCKCMCLONE(r6, 0x89e2, &(0x7f00000002c0)={<r7=>0xffffffffffffffff})
sendmsg$nl_xfrm(r7, &(0x7f0000000780)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000740)={&(0x7f0000000480)=@updpolicy={0xb8, 0x19, 0x0, 0x0, 0x0, {{@in=@loopback=0x7f000001, @in6=@mcast1={0xff, 0x1, [], 0x1}}}}, 0xffcb}, 0x1}, 0x0)
ioctl$sock_kcm_SIOCKCMUNATTACH(r7, 0x89e1, &(0x7f0000000040)={r4})
r8 = fcntl$getown(r3, 0x9)
r9 = accept4$inet(0xffffffffffffff9c, &(0x7f0000000700)={0x0, 0x0, @broadcast}, &(0x7f0000000740)=0x10, 0x80000)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r9, 0x84, 0x64, &(0x7f0000000300)=[@in6={0xa, 0x4e23, 0x0, @dev={0xfe, 0x80, [], 0xf}, 0x6}, @in={0x2, 0xff, @local={0xac, 0x14, 0x14, 0xaa}}, @in={0x2, 0x4e23, @multicast1=0xe0000001}, @in={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x10}}, @in={0x2, 0x0, @multicast1=0xe0000001}, @in={0x2, 0x4e24}, @in={0x2, 0x4e24, @broadcast=0xffffffff}, @in6={0xa, 0x4e21, 0xed34, @local={0xfe, 0x80, [], 0xaa}, 0x3}, @in={0x2, 0x4e23, @loopback=0x7f000001}], 0xfffffffffffffe00)
ptrace$setregset(0x4205, r8, 0x0, &(0x7f00000005c0)={&(0x7f0000000080)="449ed0dd6831a7fb44eca4221b1fb01abfec082aa7d0ee6f0ba9db0ece7da2bd3f", 0x21})
r10 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r11 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x1fffd, 0x0)
syz_open_dev$sndtimer(&(0x7f00000000c0)='/dev/snd/timer\x00', 0x0, 0x0)
read(r0, &(0x7f0000000140)=""/50, 0x32)
fcntl$dupfd(r10, 0x0, r11)

2018/03/31 01:45:04 executing program 0:
syz_open_dev$admmidi(&(0x7f0000000040)='/dev/admmidi#\x00', 0x9, 0x20400)
r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000e4dff1)='/dev/sequencer\x00', 0xa202, 0x0)
setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r0, 0x84, 0x16, &(0x7f00000000c0)=ANY=[@ANYBLOB="04ffff010e59e3285376416f60aacd9f10c6940040000900"], 0xc)
r1 = perf_event_open(&(0x7f0000348f88)={0x2, 0x70, 0x3e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$sndseq(r0, &(0x7f0000c4a000)=[{0x0, 0x0, 0x0, 0x0, @tick=0x4, {0x5, 0xffffffffffffffff}, {}, @control}], 0x30)
ioctl$EVIOCSMASK(r1, 0x40104593, &(0x7f0000000200)={0x0, 0x1, &(0x7f0000000100)='|'})

2018/03/31 01:45:04 executing program 2:
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/hwrng\x00', 0x2, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
fcntl$F_SET_RW_HINT(r1, 0x40c, &(0x7f0000000140)=0x3)
ioctl$TIOCSCTTY(r0, 0x540e, 0x34)
r2 = perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0xe2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
accept4$packet(r0, &(0x7f0000000040), &(0x7f0000000100)=0x14, 0x80800)
close(r2)
dup2(r1, r1)

[  197.552358] FAULT_INJECTION: forcing a failure.
[  197.552358] name failslab, interval 1, probability 0, space 0, times 0
[  197.563635] CPU: 1 PID: 14006 Comm: syz-executor3 Not tainted 4.16.0-rc7+ #372
[  197.570987] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  197.580594] Call Trace:
[  197.583182]  dump_stack+0x194/0x24d
[  197.586809]  ? arch_local_irq_restore+0x53/0x53
[  197.591486]  should_fail+0x8c0/0xa40
[  197.595212]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  197.600321]  ? rb_first_postorder+0xa0/0xa0
[  197.604627]  ? __mutex_lock+0x16f/0x1a80
[  197.608676]  ? save_stack+0x43/0xd0
[  197.612287]  ? kasan_kmalloc+0xad/0xe0
[  197.616162]  ? trace_hardirqs_off+0x10/0x10
[  197.620465]  ? find_held_lock+0x35/0x1d0
[  197.624510]  ? __lock_is_held+0xb6/0x140
[  197.628561]  ? check_same_owner+0x320/0x320
[  197.632863]  ? lock_downgrade+0x980/0x980
[  197.636996]  ? rcu_note_context_switch+0x710/0x710
[  197.641918]  should_failslab+0xec/0x120
[  197.645874]  __kmalloc_track_caller+0x5f/0x760
[  197.650441]  ? string+0x180/0x200
[  197.653873]  ? kstrdup_const+0x39/0x50
[  197.657745]  kstrdup+0x39/0x70
[  197.660917]  kstrdup_const+0x39/0x50
[  197.664612]  __kernfs_new_node+0xa2/0x570
[  197.668742]  ? kernfs_dop_revalidate+0x380/0x380
[  197.673486]  ? snprintf+0xc0/0xf0
[  197.676921]  ? vsprintf+0x40/0x40
[  197.680371]  ? debug_lockdep_rcu_enabled+0x77/0x90
[  197.685283]  ? cgroup_file_name+0x1d0/0x1d0
[  197.689590]  kernfs_new_node+0x80/0xe0
[  197.693461]  __kernfs_create_file+0x4b/0x320
[  197.697854]  cgroup_addrm_files+0x3c5/0xa70
[  197.702162]  ? cgroup_file_write+0x710/0x710
[  197.706563]  ? cgroup_idr_replace+0x3f/0x50
[  197.710870]  ? __lock_is_held+0xb6/0x140
[  197.714915]  ? __local_bh_enable_ip+0x121/0x230
[  197.719566]  ? online_css+0x224/0x2e0
[  197.723350]  css_populate_dir+0x198/0x420
[  197.727483]  cgroup_apply_control_enable+0x390/0xbc0
[  197.732575]  ? cgroup_propagate_control+0x570/0x570
[  197.737576]  ? css_populate_dir+0x289/0x420
[  197.741881]  cgroup_mkdir+0x56f/0xfc0
[  197.745660]  ? __lock_is_held+0xb6/0x140
[  197.749707]  ? cgroup_destroy_locked+0x750/0x750
[  197.754457]  ? rcu_read_lock_sched_held+0x108/0x120
[  197.759452]  ? kmem_cache_free+0x258/0x2a0
[  197.763667]  ? set_nlink+0xc1/0x160
[  197.767275]  ? debug_lockdep_rcu_enabled+0x77/0x90
[  197.772193]  ? generic_permission+0x105/0x3c0
[  197.776674]  ? cgroup_destroy_locked+0x750/0x750
[  197.781412]  kernfs_iop_mkdir+0x153/0x1e0
[  197.785540]  vfs_mkdir+0x390/0x600
[  197.789063]  SyS_mkdirat+0x22b/0x2b0
[  197.792759]  ? SyS_mknod+0x480/0x480
[  197.796454]  ? trace_hardirqs_on+0xd/0x10
[  197.800584]  ? do_syscall_64+0xb7/0x940
[  197.804539]  ? SyS_mknod+0x480/0x480
[  197.808232]  do_syscall_64+0x281/0x940
[  197.812096]  ? vmalloc_sync_all+0x30/0x30
[  197.816226]  ? _raw_spin_unlock_irq+0x27/0x70
[  197.820700]  ? finish_task_switch+0x1c1/0x7e0
[  197.825174]  ? syscall_return_slowpath+0x550/0x550
[  197.830081]  ? syscall_return_slowpath+0x2ac/0x550
[  197.835717]  ? prepare_exit_to_usermode+0x350/0x350
[  197.840718]  ? entry_SYSCALL_64_after_hwframe+0x52/0xb7
[  197.846063]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  197.850891]  entry_SYSCALL_64_after_hwframe+0x42/0xb7
[  197.856062] RIP: 0033:0x454e79
[  197.859227] RSP: 002b:00007fa6ef25cc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
[  197.866914] RAX: ffffffffffffffda RBX: 00007fa6ef25d6d4 RCX: 0000000000454e79
[  197.874161] RDX: 0000000000000020 RSI: 0000000020000280 RDI: 0000000000000013
[  197.881409] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  197.888657] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000014
[  197.895902] R13: 00000000000003eb R14: 00000000006f7ea8 R15: 0000000000000033
2018/03/31 01:45:04 executing program 4:
r0 = socket$key(0xf, 0x3, 0x2)
ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000000d00)=<r1=>0x0)
ioctl$sock_SIOCSPGRP(r0, 0x8902, &(0x7f0000000d40)=r1)
r2 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0)
write$rdma_cm(r2, &(0x7f00000000c0)=@create_id={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000080)={<r3=>0xffffffff}, 0x2}}, 0xfffffe84)
ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffff9c, 0x89e2, &(0x7f0000000240)={<r4=>0xffffffffffffffff})
getsockopt$inet_sctp_SCTP_AUTOCLOSE(r4, 0x84, 0x4, &(0x7f0000000440), &(0x7f0000000400)=0xfffffffffffffd7f)
write$rdma_cm(r2, &(0x7f0000000180)=@resolve_ip={0x3, 0x40, 0xfa00, {{0xa, 0x0, 0x0, @loopback={0x0, 0x1}}, {0xa, 0x0, 0x0, @dev={0xfe, 0x80}}, r3}}, 0x48)
syz_open_dev$dspn(&(0x7f0000000000)='/dev/dsp#\x00', 0x3, 0xa8480)
socketpair$inet6_tcp(0xa, 0x1, 0x0, &(0x7f0000000040)={<r5=>0xffffffffffffffff})
r6 = msgget$private(0x0, 0x8)
msgctl$IPC_RMID(r6, 0x0)
socket$inet_dccp(0x2, 0x6, 0x0)
setsockopt$inet6_MRT6_ADD_MFC_PROXY(r5, 0x29, 0xd2, &(0x7f0000000300)={{0xa, 0x4e20, 0x3, @mcast2={0xff, 0x2, [], 0x1}, 0x8}, {0xa, 0x4e20, 0x5, @loopback={0x0, 0x1}, 0x4}, 0xffff, [0x5, 0x2, 0x3f800000000000, 0x3, 0x3, 0x571d, 0x80000000, 0x4]}, 0x5c)
write$rdma_cm(r2, &(0x7f0000000480)=@resolve_addr={0x15, 0x110, 0xfa00, {r3, 0x3ff, 0x0, 0x0, 0x0, @ib={0x1b, 0x5, 0x8, {"13f8b79d3a910e118570670a89f78181"}, 0x0, 0x9, 0x2}, @in={0x2, 0x4e23, @rand_addr=0x40}}}, 0x40b)
ioctl$PPPIOCGL2TPSTATS(0xffffffffffffffff, 0x80487436, &(0x7f0000000100)="b2371c66f54317c265472ef22dc2c161b5ebafa3cd542a365673e89fd6119ddc")
syz_open_dev$dspn(&(0x7f0000000200)='/dev/dsp#\x00', 0xdf, 0x80000)

2018/03/31 01:45:04 executing program 1:
r0 = creat(&(0x7f0000000b40)='./file0\x00', 0x20)
ioctl$DRM_IOCTL_AGP_ALLOC(0xffffffffffffff9c, 0xc0206434, &(0x7f0000000b80)={0x5, <r1=>0x0, 0x0, 0x81})
ioctl$DRM_IOCTL_SG_FREE(r0, 0x40106439, &(0x7f0000000bc0)={0x3, r1})
r2 = socket$inet(0x2, 0x6, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f00000008c0)=@broute={'broute\x00', 0x20, 0x2, 0x3e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000280], 0x0, &(0x7f0000000240), &(0x7f0000000280)=ANY=[@ANYBLOB="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"]}, 0x460)
getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f0000000c80)={0x0, 0xfffffffffffffffd}, &(0x7f0000000cc0)=0x8)
getsockopt$inet_sctp_SCTP_PEER_AUTH_CHUNKS(r0, 0x84, 0x1a, &(0x7f0000000d40)={<r3=>0x0}, &(0x7f0000000d80)=0x8)
getsockopt$inet_sctp6_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f0000000000)={<r4=>r3, 0x27}, &(0x7f0000000d00)=0xfffffffffffffec8)
getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r2, 0x84, 0xa, &(0x7f0000000140)={0x0, 0xa2b, 0x4, 0x7, 0x2, 0x20, 0x10000, 0x8a82, r4}, &(0x7f0000000180)=0x20)
setsockopt$inet_group_source_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000680)={0x1000, {{0x2, 0x4e23, @multicast1=0xe0000001}}, {{0x2, 0x4e22, @broadcast=0xffffffff}}}, 0x108)
ioctl$DRM_IOCTL_AGP_ENABLE(0xffffffffffffffff, 0x40086432, &(0x7f0000000100))
r5 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/vs/sync_version\x00', 0x2, 0x0)
ioctl$TIOCGSOFTCAR(r5, 0x5419, &(0x7f00000007c0))
r6 = socket$inet6(0x10, 0x2, 0x0)
sendmsg(r6, &(0x7f0000000080)={&(0x7f0000000240)=@un=@abs={0x1, 0x0, 0x4e23}, 0x80, &(0x7f0000000040)=[{&(0x7f00000001c0)="5500000018007f04002d1cb2a4a280930a0600007da843cf19d0f869390009402f002100040000001900050000fc1700000000dc1338d54400009b84136ef75afb83de448daa7227c43ab8220000060c", 0x50}], 0x1, &(0x7f00000000c0)}, 0x0)
socket$bt_cmtp(0x1f, 0x3, 0x5)
fcntl$addseals(r6, 0x409, 0x7)
syz_open_dev$sndmidi(&(0x7f0000000c00)='/dev/snd/midiC#D#\x00', 0x100000001, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f0000001640)=@broute={'broute\x00', 0x20, 0x1, 0x1e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20001700], 0x0, &(0x7f0000001980), &(0x7f0000001700)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1, [{{{0x13, 0x0, 0x0, 'vcan0\x00', 'ifb0\x00', 'syzkaller0\x00', 'vcan0\x00', @remote={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xbb}, [], @link_local={0x1, 0x80, 0xc2}, [], 0x70, 0xf8, 0x128}, [@common=@dnat={'dnat\x00', 0x10, {{@dev={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa]}, 0xffffffffffffffff}}}, @common=@IDLETIMER={'IDLETIMER\x00', 0x28, {{0x4, 'syz0\x00'}}}]}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8}}]}, {0x0, '\x00', 0x1, 0xffffbffffffffffe}]}, 0x260)
setsockopt$EBT_SO_SET_ENTRIES(0xffffffffffffffff, 0x0, 0x80, &(0x7f0000000840)=@nat={'nat\x00', 0x19, 0x1, 0x200, [0x20000940, 0x0, 0x0, 0x20000970, 0x200009a0], 0x0, &(0x7f0000000800), &(0x7f0000000940)=[{}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x14, 0x98ab, 'teql0\x00', 'ip6gretap0\x00', 'ip_vti0\x00', 'nr0\x00', @empty, [0x0, 0xff, 0x0, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2}, [0xff, 0x0, 0xff, 0x0, 0x0, 0xff], 0x100, 0x138, 0x170, [@time={'time\x00', 0x18, {{0x7, 0x3, 0x13782, 0x14fdf, 0x80, 0x4, 0x1}}}, @nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x2}}}]}, [@snat={'snat\x00', 0x10, {{@random="07901c8f0140"}}}]}, @common=@dnat={'dnat\x00', 0x10, {{@local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}, 0x10}}}}]}]}, 0x278)
syz_open_dev$dmmidi(&(0x7f0000000c40)='/dev/dmmidi#\x00', 0xae6d, 0x200)

[  197.903358] cgroup: cgroup_addrm_files: failed to add bfq.weight, err=-12
2018/03/31 01:45:04 executing program 2:
r0 = gettid()
socketpair$inet_icmp(0x2, 0x2, 0x1, &(0x7f0000000040)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
signalfd4(r1, &(0x7f0000000080)={0x4481d8f9}, 0x8, 0x80800)
setsockopt$EBT_SO_SET_COUNTERS(r2, 0x0, 0x81, &(0x7f0000000140)={'filter\x00', 0x5, [{}, {}, {}, {}, {}]}, 0x78)
r3 = syz_open_procfs(r0, &(0x7f00000000c0)="6368696c6472656e004a27902b0e25c57313f3ab78197fbcc4737f4cd47ff5d372baaf1f99952d3b424133fa9f237b9cd01dd438168da33209874d933cdd6e7a8554a2aa977f86b5b35c6d04eb20e572de43dc43ed4722dfc1f42c7540cc9dc9bb3650342ede803e580cef5e75c6c49122699a2e3f5332ed")
perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pread64(r3, &(0x7f00000001c0)=""/26, 0x52, 0x0)
ioctl$KVM_GET_DEBUGREGS(r3, 0x8080aea1, &(0x7f0000000200))

2018/03/31 01:45:04 executing program 6:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x200, 0x0)
socketpair$inet6_icmp_raw(0xa, 0x3, 0x3a, &(0x7f0000000680)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
setsockopt$sock_linger(r1, 0x1, 0xd, &(0x7f00000006c0)={0x400, 0x9}, 0x8)
perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
mmap(&(0x7f0000000000/0x9d7000)=nil, 0x9d7000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x7)
perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r4, &(0x7f0000e5b000)={0x2, 0x4e20, @multicast1=0xe0000001}, 0x10)
syz_open_dev$sg(&(0x7f0000000440)='/dev/sg#\x00', 0x0, 0x0)
connect$inet(r4, &(0x7f0000000100)={0x2, 0x4e20, @multicast2=0xe0000002}, 0x10)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000eb0fb8)={0x1, 0x3, &(0x7f00009ff000)=@framed={{0x18}, [], {0x95}}, &(0x7f00002bf000)='syzkaller\x00', 0x4, 0xb7, &(0x7f00006ab000)=""/183}, 0x48)
setsockopt$inet_tcp_int(r4, 0x6, 0x19, &(0x7f0000000240)=0x8, 0x4)
setsockopt$SO_BINDTODEVICE(r4, 0x1, 0x19, &(0x7f0000000000)="6970365f76746930000000000400", 0x10)
r6 = socket$kcm(0x29, 0x2, 0x0)
ioctl$sock_kcm_SIOCKCMATTACH(r6, 0x89e0, &(0x7f000031aff8)={r4, r5})
ioctl$sock_kcm_SIOCKCMCLONE(r6, 0x89e2, &(0x7f00000002c0)={<r7=>0xffffffffffffffff})
sendmsg$nl_xfrm(r7, &(0x7f0000000780)={&(0x7f0000000200)={0x10}, 0xc, &(0x7f0000000740)={&(0x7f0000000480)=@updpolicy={0xb8, 0x19, 0x0, 0x0, 0x0, {{@in=@loopback=0x7f000001, @in6=@mcast1={0xff, 0x1, [], 0x1}}}}, 0xffcb}, 0x1}, 0x0)
ioctl$sock_kcm_SIOCKCMUNATTACH(r7, 0x89e1, &(0x7f0000000040)={r4})
r8 = fcntl$getown(r3, 0x9)
r9 = accept4$inet(0xffffffffffffff9c, &(0x7f0000000700)={0x0, 0x0, @broadcast}, &(0x7f0000000740)=0x10, 0x80000)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r9, 0x84, 0x64, &(0x7f0000000300)=[@in6={0xa, 0x4e23, 0x0, @dev={0xfe, 0x80, [], 0xf}, 0x6}, @in={0x2, 0xff, @local={0xac, 0x14, 0x14, 0xaa}}, @in={0x2, 0x4e23, @multicast1=0xe0000001}, @in={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x10}}, @in={0x2, 0x0, @multicast1=0xe0000001}, @in={0x2, 0x4e24}, @in={0x2, 0x4e24, @broadcast=0xffffffff}, @in6={0xa, 0x4e21, 0xed34, @local={0xfe, 0x80, [], 0xaa}, 0x3}, @in={0x2, 0x4e23, @loopback=0x7f000001}], 0xfffffffffffffe00)
ptrace$setregset(0x4205, r8, 0x0, &(0x7f00000005c0)={&(0x7f0000000080)="449ed0dd6831a7fb44eca4221b1fb01abfec082aa7d0ee6f0ba9db0ece7da2bd3f", 0x21})
r10 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r11 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x1fffd, 0x0)
syz_open_dev$sndtimer(&(0x7f00000000c0)='/dev/snd/timer\x00', 0x0, 0x0)
read(r0, &(0x7f0000000140)=""/50, 0x32)
fcntl$dupfd(r10, 0x0, r11)

2018/03/31 01:45:04 executing program 4:
timerfd_create(0x1, 0x800)
r0 = syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0)
syz_open_dev$evdev(&(0x7f0000000100)='/dev/input/event#\x00', 0xc052, 0x20000)
r1 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dsp\x00', 0x80000, 0x0)
ioctl$sock_ipx_SIOCAIPXPRISLT(r1, 0x89e1, &(0x7f0000000140)=0xfffffffeffffffff)
bind$netrom(r1, &(0x7f0000000080)=@full={{0x3, {"098d781cd88d57"}, 0x8}, [{"9a85b330aed25d"}, {"e4d5f6d8a84337"}, {"6f3d872226c87c"}, {"0f954018216164"}, {"e7dec53142af23"}, {"32574166b761c7"}, {"7426a9b69b5779"}, {"d56eb1a1e44fb7"}]}, 0x48)
ioctl$EVIOCGRAB(r0, 0x40044590, &(0x7f0000001d40))
close(r0)

2018/03/31 01:45:04 executing program 0:
syz_open_dev$admmidi(&(0x7f0000000040)='/dev/admmidi#\x00', 0x9, 0x20400)
r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000e4dff1)='/dev/sequencer\x00', 0xa202, 0x0)
setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r0, 0x84, 0x16, &(0x7f00000000c0)=ANY=[@ANYBLOB="04ffff010e59e3285376416f60aacd9f10c6940040000900"], 0xc)
r1 = perf_event_open(&(0x7f0000348f88)={0x2, 0x70, 0x3e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$sndseq(r0, &(0x7f0000c4a000)=[{0x0, 0x0, 0x0, 0x0, @tick=0x4, {0x5, 0xffffffffffffffff}, {}, @control}], 0x30)
ioctl$EVIOCSMASK(r1, 0x40104593, &(0x7f0000000200)={0x0, 0x1, &(0x7f0000000100)='|'})

2018/03/31 01:45:04 executing program 3 (fault-call:3 fault-nth:52):
mkdir(&(0x7f00000001c0)='./file0\x00', 0x0)
mount(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000380)='./file0\x00', &(0x7f0000000300)='cgroup2\x00', 0x0, 0x0)
r0 = open$dir(&(0x7f000001bff4)='./file0\x00', 0x0, 0x0)
mkdirat(r0, &(0x7f0000000280)='./file0\x00', 0x20)
getdents64(r0, &(0x7f00000007c0)=""/250, 0x1015a)
fadvise64(r0, 0x0, 0x41, 0x3)
unlinkat(r0, &(0x7f0000000080)='./file0\x00', 0x200)
r1 = open$dir(&(0x7f0000000180)='./file0\x00', 0x105600, 0x81)
fchdir(r0)
link(&(0x7f0000000740)='./file1\x00', &(0x7f0000000780)='./file0/file0\x00')
renameat2(r1, &(0x7f0000000200)='./file1\x00', r0, &(0x7f0000000240)='./file0\x00', 0xfd1092750066ec78)
pivot_root(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='./file0\x00')
r2 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000100)='/dev/rfkill\x00', 0x2c42, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_LIST(r2, 0xc0505510, &(0x7f0000000480)={0x1000, 0x1, 0x474, 0x1, &(0x7f0000000140)=[{}]})
unlink(&(0x7f00000000c0)='./file0\x00')
symlinkat(&(0x7f0000000400)='./file0/file0\x00', r0, &(0x7f0000000440)='./file0/file0\x00')
iopl(0x6)
recvmsg$kcm(0xffffffffffffffff, &(0x7f0000000680)={&(0x7f0000000500)=@pppol2tp={0x0, 0x0, {0x0, <r3=>0xffffffffffffffff, {0x0, 0x0, @broadcast}}}, 0x80, &(0x7f0000000600)=[{&(0x7f0000000580)=""/80, 0x50}, {&(0x7f00000008c0)=""/4096, 0x1000}], 0x2, &(0x7f0000000640)=""/45, 0x2d, 0x206e}, 0x20)
r4 = syz_open_dev$sndpcmp(&(0x7f00000018c0)='/dev/snd/pcmC#D#p\x00', 0x5, 0x10a00)
ioctl$KVM_GET_DEVICE_ATTR(r4, 0x4018aee2, &(0x7f0000001940)={0x0, 0x100, 0x9, &(0x7f0000001900)})
recvfrom$ipx(r3, &(0x7f00000006c0)=""/52, 0x34, 0x100, &(0x7f0000000700)={0x4, 0x9a2, 0x4, "dc108d9d4391", 0x5}, 0x10)
renameat(r0, &(0x7f0000001980)='./file1\x00', r4, &(0x7f00000019c0)='./file0/file0\x00')

2018/03/31 01:45:04 executing program 1:
r0 = creat(&(0x7f0000000b40)='./file0\x00', 0x20)
ioctl$DRM_IOCTL_AGP_ALLOC(0xffffffffffffff9c, 0xc0206434, &(0x7f0000000b80)={0x5, <r1=>0x0, 0x0, 0x81})
ioctl$DRM_IOCTL_SG_FREE(r0, 0x40106439, &(0x7f0000000bc0)={0x3, r1})
r2 = socket$inet(0x2, 0x6, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f00000008c0)=@broute={'broute\x00', 0x20, 0x2, 0x3e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000280], 0x0, &(0x7f0000000240), &(0x7f0000000280)=ANY=[@ANYBLOB="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"]}, 0x460)
getsockopt$inet_sctp6_SCTP_CONTEXT(0xffffffffffffff9c, 0x84, 0x11, &(0x7f0000000000)={<r3=>0x0, 0x7}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r2, 0x84, 0xa, &(0x7f0000000140)={0x0, 0xa2b, 0x4, 0x7, 0x2, 0x20, 0x10000, 0x8a82, r3}, &(0x7f0000000180)=0x20)
setsockopt$inet_group_source_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000680)={0x1000, {{0x2, 0x4e23, @multicast1=0xe0000001}}, {{0x2, 0x4e22, @broadcast=0xffffffff}}}, 0x108)
ioctl$DRM_IOCTL_AGP_ENABLE(0xffffffffffffffff, 0x40086432, &(0x7f0000000100))
r4 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/vs/sync_version\x00', 0x2, 0x0)
ioctl$TIOCGSOFTCAR(r4, 0x5419, &(0x7f00000007c0))
r5 = socket$inet6(0x10, 0x2, 0x0)
sendmsg(r5, &(0x7f0000000080)={&(0x7f0000000240)=@un=@abs={0x1, 0x0, 0x4e23}, 0x80, &(0x7f0000000040)=[{&(0x7f00000001c0)="5500000018007f04002d1cb2a4a280930a0600007da843cf19d0f869390009402f002100040000001900050000fc1700000000dc1338d54400009b84136ef75afb83de448daa7227c43ab8220000060c", 0x50}], 0x1, &(0x7f00000000c0)}, 0x0)
socket$bt_cmtp(0x1f, 0x3, 0x5)
fcntl$addseals(r5, 0x409, 0x7)
syz_open_dev$sndmidi(&(0x7f0000000c00)='/dev/snd/midiC#D#\x00', 0x100000001, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f0000001640)=@broute={'broute\x00', 0x20, 0x1, 0x1e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20001700], 0x0, &(0x7f0000001980), &(0x7f0000001700)=ANY=[@ANYBLOB="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"]}, 0x260)
setsockopt$EBT_SO_SET_ENTRIES(0xffffffffffffffff, 0x0, 0x80, &(0x7f0000000840)=@nat={'nat\x00', 0x19, 0x1, 0x200, [0x20000940, 0x0, 0x0, 0x20000970, 0x200009a0], 0x0, &(0x7f0000000800), &(0x7f0000000940)=[{}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x14, 0x98ab, 'teql0\x00', 'ip6gretap0\x00', 'ip_vti0\x00', 'nr0\x00', @empty, [0x0, 0xff, 0x0, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2}, [0xff, 0x0, 0xff, 0x0, 0x0, 0xff], 0x100, 0x138, 0x170, [@time={'time\x00', 0x18, {{0x7, 0x3, 0x13782, 0x14fdf, 0x80, 0x4, 0x1}}}, @nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x2}}}]}, [@snat={'snat\x00', 0x10, {{@random="07901c8f0140"}}}]}, @common=@dnat={'dnat\x00', 0x10, {{@local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}, 0x10}}}}]}]}, 0x278)
syz_open_dev$dmmidi(&(0x7f0000000c40)='/dev/dmmidi#\x00', 0xae6d, 0x200)

[  198.095919] FAULT_INJECTION: forcing a failure.
[  198.095919] name failslab, interval 1, probability 0, space 0, times 0
[  198.107269] CPU: 1 PID: 14051 Comm: syz-executor3 Not tainted 4.16.0-rc7+ #372
[  198.114633] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  198.123989] Call Trace:
[  198.126588]  dump_stack+0x194/0x24d
[  198.130234]  ? arch_local_irq_restore+0x53/0x53
[  198.134908]  should_fail+0x8c0/0xa40
[  198.138611]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  198.143704]  ? rb_first_postorder+0xa0/0xa0
[  198.148008]  ? __mutex_lock+0x16f/0x1a80
[  198.152060]  ? trace_event_raw_event_lock+0x340/0x340
[  198.157230]  ? trace_hardirqs_off+0x10/0x10
[  198.161533]  ? find_held_lock+0x35/0x1d0
[  198.165572]  ? __lock_is_held+0xb6/0x140
[  198.169620]  ? check_same_owner+0x320/0x320
[  198.173920]  ? lock_downgrade+0x980/0x980
[  198.178055]  ? rcu_note_context_switch+0x710/0x710
[  198.182967]  should_failslab+0xec/0x120
[  198.186921]  __kmalloc_track_caller+0x5f/0x760
[  198.191490]  ? string+0x180/0x200
[  198.194922]  ? kstrdup_const+0x39/0x50
[  198.198788]  kstrdup+0x39/0x70
[  198.201958]  kstrdup_const+0x39/0x50
[  198.205654]  __kernfs_new_node+0xa2/0x570
[  198.209784]  ? kernfs_dop_revalidate+0x380/0x380
[  198.214525]  ? snprintf+0xc0/0xf0
[  198.217954]  ? vsprintf+0x40/0x40
[  198.221382]  ? debug_lockdep_rcu_enabled+0x77/0x90
[  198.226292]  ? cgroup_file_name+0x1d0/0x1d0
[  198.230595]  kernfs_new_node+0x80/0xe0
[  198.234464]  __kernfs_create_file+0x4b/0x320
[  198.238856]  cgroup_addrm_files+0x3c5/0xa70
[  198.243163]  ? cgroup_file_write+0x710/0x710
[  198.247558]  ? cgroup_idr_replace+0x3f/0x50
[  198.251860]  ? __lock_is_held+0xb6/0x140
[  198.255903]  ? __local_bh_enable_ip+0x121/0x230
[  198.260552]  ? online_css+0x224/0x2e0
[  198.264334]  css_populate_dir+0x198/0x420
[  198.268463]  cgroup_apply_control_enable+0x390/0xbc0
[  198.273546]  ? cgroup_propagate_control+0x570/0x570
[  198.278544]  ? css_populate_dir+0x289/0x420
[  198.282844]  cgroup_mkdir+0x56f/0xfc0
[  198.286627]  ? __lock_is_held+0xb6/0x140
[  198.290667]  ? cgroup_destroy_locked+0x750/0x750
[  198.295404]  ? rcu_read_lock_sched_held+0x108/0x120
[  198.300396]  ? kmem_cache_free+0x258/0x2a0
[  198.304616]  ? set_nlink+0xc1/0x160
[  198.308223]  ? debug_lockdep_rcu_enabled+0x77/0x90
[  198.313131]  ? generic_permission+0x105/0x3c0
[  198.317602]  ? cgroup_destroy_locked+0x750/0x750
[  198.322335]  kernfs_iop_mkdir+0x153/0x1e0
[  198.326461]  vfs_mkdir+0x390/0x600
[  198.329979]  SyS_mkdirat+0x22b/0x2b0
[  198.333671]  ? SyS_mknod+0x480/0x480
[  198.337363]  ? trace_hardirqs_on+0xd/0x10
[  198.341493]  ? do_syscall_64+0xb7/0x940
[  198.345460]  ? SyS_mknod+0x480/0x480
[  198.349152]  do_syscall_64+0x281/0x940
[  198.353025]  ? vmalloc_sync_all+0x30/0x30
[  198.357172]  ? _raw_spin_unlock_irq+0x27/0x70
[  198.361657]  ? finish_task_switch+0x1c1/0x7e0
[  198.366130]  ? syscall_return_slowpath+0x550/0x550
[  198.371040]  ? syscall_return_slowpath+0x2ac/0x550
[  198.375950]  ? prepare_exit_to_usermode+0x350/0x350
[  198.380946]  ? entry_SYSCALL_64_after_hwframe+0x52/0xb7
[  198.386289]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  198.391124]  entry_SYSCALL_64_after_hwframe+0x42/0xb7
[  198.396292] RIP: 0033:0x454e79
[  198.399459] RSP: 002b:00007fa6ef25cc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
[  198.407146] RAX: ffffffffffffffda RBX: 00007fa6ef25d6d4 RCX: 0000000000454e79
[  198.414399] RDX: 0000000000000020 RSI: 0000000020000280 RDI: 0000000000000013
[  198.421643] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  198.428889] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000014
[  198.436149] R13: 00000000000003eb R14: 00000000006f7ea8 R15: 0000000000000034
2018/03/31 01:45:05 executing program 2:
r0 = open(&(0x7f0000a1cff8)='./file0\x00', 0x8040, 0x0)
socket$alg(0x26, 0x5, 0x0)
accept$nfc_llcp(r0, &(0x7f0000000000), &(0x7f0000000080)=0x60)
ioctl$SIOCGIFMTU(r0, 0x8921, &(0x7f00000000c0))
fcntl$setlease(r0, 0x400, 0x2)

[  198.443565] cgroup: cgroup_addrm_files: failed to add bfq.weight, err=-12
2018/03/31 01:45:05 executing program 7:
clone(0x200, &(0x7f0000000100)="abbcd764d5b6fd853189b4a102b248f0de7c0a5cc328ca13455598dc3d760fa566c64d7cb06a7e15cdb085165670f42b32809442c69a5942d03eb3fd42bf0ebb0272fc4beb43f269f26f57bbb67316f7c76c8d570edaa564720b4dfd8f32453fc2354ddc753155ac051e9e9657989f0bbf1c03e4cd9f735c6d1b95719dbbb1c04092f54f44256722d954f0000000000000000000000000000000", &(0x7f00000000c0), &(0x7f00008c8000), &(0x7f0000828ffe))
mknod(&(0x7f0000000000)='./file0\x00', 0x1000000000001040, 0x0)
execve(&(0x7f000007b000)='./file0\x00', &(0x7f0000000180), &(0x7f0000000040))
r0 = gettid()
r1 = syz_open_dev$mice(&(0x7f0000149000)='/dev/input/mice\x00', 0x0, 0x0)
execve(&(0x7f00000001c0)='./file0\x00', &(0x7f0000001540)=[&(0x7f0000000200)='user\x00', &(0x7f0000000240)='vmnet0\x00', &(0x7f0000000280)='user\x00', &(0x7f0000001480)='user\x00'], &(0x7f00000015c0)=[&(0x7f0000001580)='#keyring\x00'])
msgget$private(0x0, 0x400)
timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000))
uselib(&(0x7f00000002c0)='./file0/file0\x00')
mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
getsockopt$inet_sctp6_SCTP_INITMSG(r1, 0x84, 0x2, &(0x7f0000000040), &(0x7f0000000080)=0x8)
tkill(r0, 0x1000000000015)

2018/03/31 01:45:05 executing program 5:
r0 = syz_open_dev$amidi(&(0x7f0000000400)='/dev/amidi#\x00', 0x401, 0x40)
accept4$llc(r0, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, &(0x7f0000000480)=0x10, 0x80800)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f0000005fd8)={'vcan0\x00', <r2=>0x0})
ioctl$KVM_SET_DEVICE_ATTR(r0, 0x4018aee1, &(0x7f0000000500)={0x0, 0x100000001, 0x5a, &(0x7f00000004c0)})
connect$can_bcm(0xffffffffffffffff, &(0x7f0000001ff0)={0x1d, r2}, 0x10)
ioctl$TIOCGSID(0xffffffffffffff9c, 0x5429, &(0x7f00000002c0)=<r3=>0x0)
waitid(0x0, r3, 0x0, 0x1000009, &(0x7f0000000300))
r4 = syz_open_dev$vcsn(&(0x7f0000000000)='/dev/vcs#\x00', 0xcd8, 0x101000)
getsockopt$SO_BINDTODEVICE(r4, 0x1, 0x19, &(0x7f0000000280), 0x10)
ioctl$EVIOCGABS0(r4, 0x80184540, &(0x7f0000000240)=""/64)
bind$vsock_dgram(r1, &(0x7f00000003c0)={0x28, 0x0, 0x2711, @reserved=0x1}, 0x10)
exit(0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000200)={r4, 0x0, 0x47, 0xde, &(0x7f0000000080)="3541471374d1e455c1f501bb3e7418a21f930d9fb82ac3588f54ad5a1a9e778bdf654fa39f19bcbc6ee4636a10d409c877cfe11ba160f73d4cde40422564bfdb62d8e5f8ba5097", &(0x7f0000000100)=""/222, 0x4, 0x3f}, 0x28)
ioctl$KVM_SET_TSS_ADDR(r4, 0xae47, 0xd000)
ioctl$KVM_CHECK_EXTENSION(r4, 0xae03, 0xffffffffffffffff)
openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000580)='/dev/qat_adf_ctl\x00', 0x4600, 0x0)
sendmsg$can_raw(r1, &(0x7f0000001fc8)={&(0x7f000000a000)={0x1d}, 0x10, &(0x7f0000000040)={&(0x7f000000a000)=@canfd={{0x1}, 0x0, 0x0, 0x0, 0x0, "0327e1b22b5fcef7739c699f5ff986ca08990039576a7d5cb2bdac3fa80acf584ecb5fee496e6866856b76b5f700000000000000004e2f9663a918fa1efd9b0b"}, 0x48}, 0x1}, 0x0)
ioctl$VHOST_GET_VRING_ENDIAN(r0, 0x4008af14, &(0x7f0000000540)={0x0, 0x9})

2018/03/31 01:45:05 executing program 4:
r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000ea3000)='/dev/sequencer\x00', 0x0, 0x0)
ioctl$KVM_SET_SIGNAL_MASK(r0, 0xc08c5102, &(0x7f0000000000))
ioctl$int_in(r0, 0x5421, &(0x7f0000000040)=0x1)

2018/03/31 01:45:05 executing program 2:
r0 = syz_open_dev$tun(&(0x7f0000000280)='/dev/net/tun\x00', 0x0, 0x0)
ioctl$TUNGETVNETHDRSZ(r0, 0x800454d7, &(0x7f0000000040))
getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f0000000140)={{{@in6=@mcast1, @in6=@mcast2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r1=>0x0}}, {{@in=@broadcast}, 0x0, @in=@dev}}, &(0x7f0000000240)=0xe8)
ioctl$TUNSETOWNER(r0, 0x400454cc, r1)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000002c0)={"d202b999cf85000000000088f301e710", 0x100})
mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0xfffffffffffffffc, 0x100000000032, 0xffffffffffffffff, 0x0)
ioctl$TUNSETVNETLE(r0, 0x400454dc, &(0x7f0000000000))
r2 = syz_open_dev$midi(&(0x7f0000000080)='/dev/midi#\x00', 0x4, 0x20200)
connect$vsock_dgram(r2, &(0x7f0000000100)={0x28, 0x0, 0x2711, @my=0x1}, 0x10)

2018/03/31 01:45:05 executing program 3 (fault-call:3 fault-nth:53):
mkdir(&(0x7f00000001c0)='./file0\x00', 0x0)
mount(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000380)='./file0\x00', &(0x7f0000000300)='cgroup2\x00', 0x0, 0x0)
r0 = open$dir(&(0x7f000001bff4)='./file0\x00', 0x0, 0x0)
mkdirat(r0, &(0x7f0000000280)='./file0\x00', 0x20)
getdents64(r0, &(0x7f00000007c0)=""/250, 0x1015a)
fadvise64(r0, 0x0, 0x41, 0x3)
unlinkat(r0, &(0x7f0000000080)='./file0\x00', 0x200)
r1 = open$dir(&(0x7f0000000180)='./file0\x00', 0x105600, 0x81)
fchdir(r0)
link(&(0x7f0000000740)='./file1\x00', &(0x7f0000000780)='./file0/file0\x00')
renameat2(r1, &(0x7f0000000200)='./file1\x00', r0, &(0x7f0000000240)='./file0\x00', 0xfd1092750066ec78)
pivot_root(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='./file0\x00')
r2 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000100)='/dev/rfkill\x00', 0x2c42, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_LIST(r2, 0xc0505510, &(0x7f0000000480)={0x1000, 0x1, 0x474, 0x1, &(0x7f0000000140)=[{}]})
unlink(&(0x7f00000000c0)='./file0\x00')
symlinkat(&(0x7f0000000400)='./file0/file0\x00', r0, &(0x7f0000000440)='./file0/file0\x00')
iopl(0x6)
recvmsg$kcm(0xffffffffffffffff, &(0x7f0000000680)={&(0x7f0000000500)=@pppol2tp={0x0, 0x0, {0x0, <r3=>0xffffffffffffffff, {0x0, 0x0, @broadcast}}}, 0x80, &(0x7f0000000600)=[{&(0x7f0000000580)=""/80, 0x50}, {&(0x7f00000008c0)=""/4096, 0x1000}], 0x2, &(0x7f0000000640)=""/45, 0x2d, 0x206e}, 0x20)
r4 = syz_open_dev$sndpcmp(&(0x7f00000018c0)='/dev/snd/pcmC#D#p\x00', 0x5, 0x10a00)
ioctl$KVM_GET_DEVICE_ATTR(r4, 0x4018aee2, &(0x7f0000001940)={0x0, 0x100, 0x9, &(0x7f0000001900)})
recvfrom$ipx(r3, &(0x7f00000006c0)=""/52, 0x34, 0x100, &(0x7f0000000700)={0x4, 0x9a2, 0x4, "dc108d9d4391", 0x5}, 0x10)
renameat(r0, &(0x7f0000001980)='./file1\x00', r4, &(0x7f00000019c0)='./file0/file0\x00')

2018/03/31 01:45:05 executing program 1:
r0 = creat(&(0x7f0000000b40)='./file0\x00', 0x20)
ioctl$DRM_IOCTL_AGP_ALLOC(0xffffffffffffff9c, 0xc0206434, &(0x7f0000000b80)={0x5, <r1=>0x0, 0x0, 0x81})
ioctl$DRM_IOCTL_SG_FREE(r0, 0x40106439, &(0x7f0000000bc0)={0x3, r1})
r2 = socket$inet(0x2, 0x6, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f00000008c0)=@broute={'broute\x00', 0x20, 0x2, 0x3e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000280], 0x0, &(0x7f0000000240), &(0x7f0000000280)=ANY=[@ANYBLOB="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"]}, 0x460)
getsockopt$inet_sctp6_SCTP_CONTEXT(0xffffffffffffff9c, 0x84, 0x11, &(0x7f0000000000)={<r3=>0x0, 0x7}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r2, 0x84, 0xa, &(0x7f0000000140)={0x0, 0xa2b, 0x4, 0x7, 0x2, 0x20, 0x10000, 0x8a82, r3}, &(0x7f0000000180)=0x20)
setsockopt$inet_group_source_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000680)={0x1000, {{0x2, 0x4e23, @multicast1=0xe0000001}}, {{0x2, 0x4e22, @broadcast=0xffffffff}}}, 0x108)
ioctl$DRM_IOCTL_AGP_ENABLE(0xffffffffffffffff, 0x40086432, &(0x7f0000000100))
r4 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/vs/sync_version\x00', 0x2, 0x0)
ioctl$TIOCGSOFTCAR(r4, 0x5419, &(0x7f00000007c0))
r5 = socket$inet6(0x10, 0x2, 0x0)
setsockopt$ax25_buf(r4, 0x101, 0x19, &(0x7f0000000c80)="b407b55b2d7efd13753236b5c33cc6a24d41461ccf9c5a9f9835275311d071cf54f8bfc226410cb9071efe59a9d8ee9f3bd7f6cfc1b638e202b437c89200fecefa4f474544cd1a126eaf9afdbce42caafb93f4d9e931d10388c3b0e6003a48ae7ba7f34365a4dd2612c25e2e1aad79b0cee2600f1c8f14ad20f586bceaf5139d8dba97852dc88eb8c17ee43ce6e5cd073b4866bb63ec13ebdf9cbdd5c8ad3ea9415effca5c3e8a526a4ac18745982f93a01d4c5e06b3144d11761da5bf262f127b6fd757e66baf5dd33d69bf6044cb", 0xcf)
sendmsg(r5, &(0x7f0000000080)={&(0x7f0000000240)=@un=@abs={0x1, 0x0, 0x4e23}, 0x80, &(0x7f0000000040)=[{&(0x7f00000001c0)="5500000018007f04002d1cb2a4a280930a0600007da843cf19d0f869390009402f002100040000001900050000fc1700000000dc1338d54400009b84136ef75afb83de448daa7227c43ab8220000060c", 0x50}], 0x1, &(0x7f00000000c0)}, 0x0)
socket$bt_cmtp(0x1f, 0x3, 0x5)
fcntl$addseals(r5, 0x409, 0x7)
syz_open_dev$sndmidi(&(0x7f0000000c00)='/dev/snd/midiC#D#\x00', 0x100000001, 0x0)
setsockopt$inet_sctp6_SCTP_I_WANT_MAPPED_V4_ADDR(r5, 0x84, 0xc, &(0x7f0000000d80)=0x1, 0x4)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f0000001640)=@broute={'broute\x00', 0x20, 0x1, 0x1e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20001700], 0x0, &(0x7f0000001980), &(0x7f0000001700)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1, [{{{0x13, 0x0, 0x0, 'vcan0\x00', 'ifb0\x00', 'syzkaller0\x00', 'vcan0\x00', @remote={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xbb}, [], @link_local={0x1, 0x80, 0xc2}, [], 0x70, 0xf8, 0x128}, [@common=@dnat={'dnat\x00', 0x10, {{@dev={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa]}, 0xffffffffffffffff}}}, @common=@IDLETIMER={'IDLETIMER\x00', 0x28, {{0x4, 'syz0\x00'}}}]}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8}}]}, {0x0, '\x00', 0x1, 0xffffbffffffffffe}]}, 0x260)
setsockopt$EBT_SO_SET_ENTRIES(0xffffffffffffffff, 0x0, 0x80, &(0x7f0000000840)=@nat={'nat\x00', 0x19, 0x1, 0x200, [0x20000940, 0x0, 0x0, 0x20000970, 0x200009a0], 0x0, &(0x7f0000000800), &(0x7f0000000940)=[{}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0xb, 0x14, 0x98ab, 'teql0\x00', 'ip6gretap0\x00', 'ip_vti0\x00', 'nr0\x00', @empty, [0x0, 0xff, 0x0, 0xff, 0xff], @link_local={0x1, 0x80, 0xc2}, [0xff, 0x0, 0xff, 0x0, 0x0, 0xff], 0x100, 0x138, 0x170, [@time={'time\x00', 0x18, {{0x7, 0x3, 0x13782, 0x14fdf, 0x80, 0x4, 0x1}}}, @nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x2}}}]}, [@snat={'snat\x00', 0x10, {{@random="07901c8f0140"}}}]}, @common=@dnat={'dnat\x00', 0x10, {{@local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}, 0x10}}}}]}]}, 0x278)
syz_open_dev$dmmidi(&(0x7f0000000c40)='/dev/dmmidi#\x00', 0xae6d, 0x200)

[  198.613621] FAULT_INJECTION: forcing a failure.
[  198.613621] name failslab, interval 1, probability 0, space 0, times 0
[  198.624897] CPU: 1 PID: 14078 Comm: syz-executor3 Not tainted 4.16.0-rc7+ #372
[  198.632252] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  198.641599] Call Trace:
[  198.644190]  dump_stack+0x194/0x24d
[  198.647822]  ? arch_local_irq_restore+0x53/0x53
[  198.652502]  should_fail+0x8c0/0xa40
[  198.656216]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  198.661315]  ? rcu_read_lock_sched_held+0x108/0x120
[  198.666343]  ? find_held_lock+0x35/0x1d0
[  198.670409]  ? __lock_is_held+0xb6/0x140
[  198.674482]  ? check_same_owner+0x320/0x320
[  198.678805]  ? rcu_note_context_switch+0x710/0x710
[  198.683734]  should_failslab+0xec/0x120
[  198.687689]  kmem_cache_alloc_node_trace+0x5a/0x760
[  198.692685]  ? idr_alloc_u32+0x390/0x390
[  198.696740]  mem_cgroup_css_alloc+0x3b6/0x19c0
[  198.701302]  ? setup_cpu_cache+0x1c0/0x1c0
[  198.705514]  ? __kernfs_new_node+0x3f5/0x570
[  198.709900]  ? kernfs_dop_revalidate+0x380/0x380
[  198.714640]  ? trace_hardirqs_off+0x10/0x10
[  198.718940]  ? kernfs_link_sibling+0x27d/0x380
[  198.723519]  ? debug_lockdep_rcu_enabled+0x77/0x90
[  198.728428]  ? cgroup_kn_set_ugid+0x2c7/0x370
[  198.732899]  ? cgroup_file_name+0x1d0/0x1d0
[  198.737196]  ? mutex_unlock+0xd/0x10
[  198.740888]  ? __lock_is_held+0xb6/0x140
[  198.744932]  ? cgroup_addrm_files+0x67f/0xa70
[  198.749422]  ? trace_hardirqs_off+0x10/0x10
[  198.753725]  ? cgroup_file_write+0x710/0x710
[  198.758121]  ? cgroup_idr_replace+0x3f/0x50
[  198.762429]  ? trace_hardirqs_off+0x10/0x10
[  198.766732]  ? __lock_is_held+0xb6/0x140
[  198.770780]  ? __local_bh_enable_ip+0x121/0x230
[  198.775432]  ? __lock_is_held+0xb6/0x140
[  198.779481]  cgroup_apply_control_enable+0x44d/0xbc0
[  198.784578]  ? cgroup_propagate_control+0x570/0x570
[  198.789578]  ? css_populate_dir+0x289/0x420
[  198.793882]  cgroup_mkdir+0x56f/0xfc0
[  198.797659]  ? __lock_is_held+0xb6/0x140
[  198.801701]  ? cgroup_destroy_locked+0x750/0x750
[  198.806459]  ? rcu_read_lock_sched_held+0x108/0x120
[  198.811452]  ? kmem_cache_free+0x258/0x2a0
[  198.815665]  ? set_nlink+0xc1/0x160
[  198.819271]  ? debug_lockdep_rcu_enabled+0x77/0x90
[  198.824185]  ? generic_permission+0x105/0x3c0
[  198.828659]  ? cgroup_destroy_locked+0x750/0x750
[  198.833396]  kernfs_iop_mkdir+0x153/0x1e0
[  198.837523]  vfs_mkdir+0x390/0x600
[  198.841044]  SyS_mkdirat+0x22b/0x2b0
[  198.844736]  ? SyS_mknod+0x480/0x480
[  198.848425]  ? trace_hardirqs_on+0xd/0x10
[  198.852549]  ? do_syscall_64+0xb7/0x940
[  198.856502]  ? SyS_mknod+0x480/0x480
[  198.860192]  do_syscall_64+0x281/0x940
[  198.864058]  ? vmalloc_sync_all+0x30/0x30
[  198.868184]  ? _raw_spin_unlock_irq+0x27/0x70
[  198.872655]  ? finish_task_switch+0x1c1/0x7e0
[  198.877131]  ? syscall_return_slowpath+0x550/0x550
[  198.882039]  ? syscall_return_slowpath+0x2ac/0x550
[  198.886946]  ? prepare_exit_to_usermode+0x350/0x350
[  198.891943]  ? entry_SYSCALL_64_after_hwframe+0x52/0xb7
[  198.897286]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  198.902110]  entry_SYSCALL_64_after_hwframe+0x42/0xb7
[  198.907277] RIP: 0033:0x454e79
[  198.910441] RSP: 002b:00007fa6ef25cc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
[  198.918128] RAX: ffffffffffffffda RBX: 00007fa6ef25d6d4 RCX: 0000000000454e79
[  198.925372] RDX: 0000000000000020 RSI: 0000000020000280 RDI: 0000000000000013
[  198.932619] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  198.939865] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000014
[  198.947113] R13: 00000000000003eb R14: 00000000006f7ea8 R15: 0000000000000035
[  198.954800] kasan: CONFIG_KASAN_INLINE enabled
[  198.959799] kasan: GPF could be caused by NULL-ptr deref or user memory access
[  198.967191] general protection fault: 0000 [#1] SMP KASAN
[  198.972705] Dumping ftrace buffer:
[  198.976244]    (ftrace buffer empty)
[  198.979930] Modules linked in:
[  198.983099] CPU: 1 PID: 14078 Comm: syz-executor3 Not tainted 4.16.0-rc7+ #372
[  198.990436] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  198.999773] RIP: 0010:__mem_cgroup_free+0x71/0x110
[  199.004672] RSP: 0018:ffff8801b42e75a8 EFLAGS: 00010206
[  199.010015] RAX: 0000000000000011 RBX: 0000000000000000 RCX: ffffffff8310cdfd
[  199.017263] RDX: 0000000000040000 RSI: ffffc900030b1000 RDI: 0000000000000088
[  199.024522] RBP: ffff8801b42e75c8 R08: 0000000000000000 R09: ffff8801b42e73a0
[  199.031765] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  199.039014] R13: ffff8801b5dee600 R14: dffffc0000000000 R15: ffff8801b5dee600
[  199.046262] FS:  00007fa6ef25d700(0000) GS:ffff8801db100000(0000) knlGS:0000000000000000
[  199.054463] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  199.060319] CR2: 00000000004d8884 CR3: 00000001afc6d004 CR4: 00000000001626e0
[  199.067566] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  199.074810] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  199.082054] Call Trace:
[  199.084624]  mem_cgroup_css_alloc+0x403/0x19c0
[  199.089182]  ? setup_cpu_cache+0x1c0/0x1c0
[  199.093393]  ? __kernfs_new_node+0x3f5/0x570
[  199.097778]  ? kernfs_dop_revalidate+0x380/0x380
[  199.102511]  ? trace_hardirqs_off+0x10/0x10
[  199.106811]  ? kernfs_link_sibling+0x27d/0x380
[  199.111366]  ? debug_lockdep_rcu_enabled+0x77/0x90
[  199.116270]  ? cgroup_kn_set_ugid+0x2c7/0x370
[  199.120741]  ? cgroup_file_name+0x1d0/0x1d0
[  199.125036]  ? mutex_unlock+0xd/0x10
[  199.128724]  ? __lock_is_held+0xb6/0x140
[  199.132763]  ? cgroup_addrm_files+0x67f/0xa70
[  199.137234]  ? trace_hardirqs_off+0x10/0x10
[  199.141528]  ? cgroup_file_write+0x710/0x710
[  199.145917]  ? cgroup_idr_replace+0x3f/0x50
[  199.150213]  ? trace_hardirqs_off+0x10/0x10
[  199.154510]  ? __lock_is_held+0xb6/0x140
[  199.158550]  ? __local_bh_enable_ip+0x121/0x230
[  199.163193]  ? __lock_is_held+0xb6/0x140
[  199.167232]  cgroup_apply_control_enable+0x44d/0xbc0
[  199.172313]  ? cgroup_propagate_control+0x570/0x570
[  199.177307]  ? css_populate_dir+0x289/0x420
[  199.181606]  cgroup_mkdir+0x56f/0xfc0
[  199.185380]  ? __lock_is_held+0xb6/0x140
[  199.189416]  ? cgroup_destroy_locked+0x750/0x750
[  199.194146]  ? rcu_read_lock_sched_held+0x108/0x120
[  199.199137]  ? kmem_cache_free+0x258/0x2a0
[  199.203348]  ? set_nlink+0xc1/0x160
[  199.206950]  ? debug_lockdep_rcu_enabled+0x77/0x90
[  199.211852]  ? generic_permission+0x105/0x3c0
[  199.216320]  ? cgroup_destroy_locked+0x750/0x750
[  199.221051]  kernfs_iop_mkdir+0x153/0x1e0
[  199.225175]  vfs_mkdir+0x390/0x600
[  199.228691]  SyS_mkdirat+0x22b/0x2b0
[  199.232381]  ? SyS_mknod+0x480/0x480
[  199.236067]  ? trace_hardirqs_on+0xd/0x10
[  199.240190]  ? do_syscall_64+0xb7/0x940
[  199.244138]  ? SyS_mknod+0x480/0x480
[  199.247828]  do_syscall_64+0x281/0x940
[  199.251689]  ? vmalloc_sync_all+0x30/0x30
[  199.255814]  ? _raw_spin_unlock_irq+0x27/0x70
[  199.260281]  ? finish_task_switch+0x1c1/0x7e0
[  199.264750]  ? syscall_return_slowpath+0x550/0x550
[  199.269653]  ? syscall_return_slowpath+0x2ac/0x550
[  199.274557]  ? prepare_exit_to_usermode+0x350/0x350
[  199.279547]  ? entry_SYSCALL_64_after_hwframe+0x52/0xb7
[  199.284883]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  199.289701]  entry_SYSCALL_64_after_hwframe+0x42/0xb7
[  199.294863] RIP: 0033:0x454e79
[  199.298028] RSP: 002b:00007fa6ef25cc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
[  199.305710] RAX: ffffffffffffffda RBX: 00007fa6ef25d6d4 RCX: 0000000000454e79
[  199.312953] RDX: 0000000000000020 RSI: 0000000020000280 RDI: 0000000000000013
[  199.320199] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  199.327443] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000014
[  199.334688] R13: 00000000000003eb R14: 00000000006f7ea8 R15: 0000000000000035
[  199.341947] Code: 00 00 48 89 f8 48 c1 e8 03 42 80 3c 30 00 0f 85 99 00 00 00 4f 8b a4 e5 f0 09 00 00 49 8d bc 24 88 00 00 00 48 89 f8 48 c1 e8 03 <42> 80 3c 30 00 0f 85 88 00 00 00 49 8b bc 24 88 00 00 00 e8 77 
[  199.361097] RIP: __mem_cgroup_free+0x71/0x110 RSP: ffff8801b42e75a8
[  199.367516] ---[ end trace 3ceafb2b0a09121e ]---
[  199.372286] Kernel panic - not syncing: Fatal exception
[  199.378060] Dumping ftrace buffer:
[  199.381580]    (ftrace buffer empty)
[  199.385259] Kernel Offset: disabled
[  199.388856] Rebooting in 86400 seconds..