00200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)) syz_open_dev$swradio(&(0x7f00000000c0)='/dev/swradio#\x00', 0x1, 0x2) 05:28:51 executing program 3: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f", 0x47, 0x10000}], 0x0, 0x0) 05:28:51 executing program 5: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000140)='./file0\x00', 0xff, 0x1, &(0x7f0000000000)=[{&(0x7f0000000180)="8da4363ac0ed0000000000000001004d0100000000000000000000000009000000000000009748aeb81e1b00920efd9a0000010000000000098cffffff0000005f42485266535f4d", 0x48}], 0x0, 0x0) 05:28:51 executing program 4: r0 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x1, 0x2) ioctl$VIDIOC_S_FREQUENCY(r0, 0x402c5639, &(0x7f0000000180)={0x0, 0x1}) ioctl$TIOCVHANGUP(r0, 0x5437, 0x0) r1 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r1, 0x84, 0x6e, &(0x7f0000961fe4)=[@in={0x2, 0x0, @dev}], 0x10) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r1, 0x84, 0x1d, &(0x7f00000001c0)={0x1, [0x0]}, &(0x7f00000000c0)=0xfe10) getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r1, 0x84, 0x66, &(0x7f0000000040)={r2}, &(0x7f0000000140)=0x8) setsockopt$inet_sctp_SCTP_RESET_ASSOC(0xffffffffffffffff, 0x84, 0x78, &(0x7f0000000040)=r2, 0x4) 05:28:51 executing program 3: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f", 0x47, 0x10000}], 0x0, 0x0) 05:28:51 executing program 1: r0 = syz_open_dev$radio(&(0x7f0000000040)='/dev/radio#\x00', 0x3, 0x2) r1 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r1, 0x84, 0x6e, &(0x7f0000961fe4)=[@in={0x2, 0x0, @dev}], 0x10) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r1, 0x84, 0x1d, &(0x7f00000001c0)={0x1, [0x0]}, &(0x7f00000000c0)=0xfe10) getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r1, 0x84, 0x66, &(0x7f0000000040)={r2}, &(0x7f0000000140)=0x8) getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x9, &(0x7f0000000080)={r2, @in6={{0xa, 0x4e24, 0x10000, @rand_addr="e4cf95ad3c96e60e3d9789e0d22a712f", 0x1}}, 0x9, 0x1f, 0x40, 0x7, 0x4}, &(0x7f0000000140)=0x98) getsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000180)={r3, 0xffffffff}, &(0x7f00000001c0)=0xc) setsockopt$inet_sctp_SCTP_RECVRCVINFO(0xffffffffffffffff, 0x84, 0x20, &(0x7f0000000000)=0xfffffff7, 0x4) 05:28:51 executing program 5: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000140)='./file0\x00', 0xff, 0x1, &(0x7f0000000000)=[{&(0x7f0000000180)="8da4363ac0ed0000000000000001004d0100000000000000000000000009000000000000009748aeb81e1b00920efd9a0000010000000000098cffffff0000005f42485266535f4d", 0x48}], 0x0, 0x0) 05:28:51 executing program 2: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x4, 0x4182) r1 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) pwritev(r1, &(0x7f0000000340)=[{&(0x7f0000000140)='!', 0x1}], 0x1, 0x81805) r2 = dup2(r1, r1) ioctl$SG_GET_RESERVED_SIZE(r1, 0x2272, 0x0) ioctl$LOOP_CHANGE_FD(r0, 0x4c00, r1) write$P9_RLERRORu(r2, &(0x7f00000003c0)=ANY=[@ANYBLOB="1400000007650d6c24ed92c8397291335cf616f0010200070062726f0c62077600b365a0a59e7eea"], 0x28) getsockopt$sock_cred(r2, 0x1, 0x11, 0x0, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f00000007c0)={{{@in=@remote, @in6=@initdev}}, {{@in=@empty}, 0x0, @in6=@ipv4}}, &(0x7f00000008c0)=0xe8) sendfile(r2, r0, 0x0, 0x2400003e) ioctl$SNDRV_CTL_IOCTL_ELEM_READ(r2, 0xc4c85512, &(0x7f0000000280)={{0x1, 0xcd64bd69cc04e394, 0x9, 0x1, 'syz1\x00', 0x2}, 0x0, [0x1, 0x100000000, 0x70da9ae3, 0xfff, 0x1, 0x1, 0x8, 0x7, 0x4, 0xfffffffffffffffd, 0x7fff, 0x0, 0xffff, 0x79, 0x100000001, 0x6, 0x7, 0x8, 0x1, 0x7, 0x9, 0x7, 0x6, 0x8dc3, 0x100000001, 0x100000000, 0x8, 0xffff, 0x0, 0x4b, 0x9, 0xac, 0x7ff, 0x7, 0x6, 0xffffffffffffff00, 0x3, 0x5, 0x6, 0x6, 0x51fa, 0x5, 0x4, 0x1, 0x8, 0x6, 0xdc, 0x9, 0x3, 0x5, 0x3, 0x1, 0x40, 0x26, 0x2, 0x1, 0x9, 0x93, 0x2, 0x100000000, 0x1, 0x9, 0x4, 0x100000000, 0x6, 0x1, 0x3, 0x1, 0x0, 0xfff, 0x65, 0x400, 0x4, 0x8, 0x81, 0x400, 0x84d8, 0xb481, 0x80, 0xffffffffffffffe1, 0x4, 0x1, 0x9, 0x0, 0x10000, 0x3, 0xfffffffffffffffb, 0xb1, 0x2, 0x3f, 0x42, 0x6, 0x3, 0xce1e, 0x1, 0x9, 0x4, 0x20, 0x80000001, 0x1000, 0x4, 0x9, 0xa4, 0x1, 0x6, 0x2, 0x4, 0x4, 0x7, 0x3, 0x7, 0x9, 0x4, 0x3, 0xfff, 0x3f, 0x1, 0x666, 0xbe, 0xff, 0x1, 0x2, 0xd471, 0x2, 0x1, 0x0, 0x80000000, 0x2]}) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dlm-monitor\x00', 0x62000, 0x0) ioctl$VIDIOC_CROPCAP(r4, 0xc02c563a, &(0x7f0000000100)={0x6, {0x5, 0xfff, 0x200, 0xaa5}, {0x5, 0x8, 0xffffae34, 0x7fffffff}, {0x101, 0x827}}) 05:28:51 executing program 0: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)) syz_open_dev$swradio(&(0x7f00000000c0)='/dev/swradio#\x00', 0x1, 0x2) 05:28:51 executing program 5: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000140)='./file0\x00', 0xff, 0x1, &(0x7f0000000000)=[{&(0x7f0000000180)="8da4363ac0ed0000000000000001004d0100000000000000000000000009000000000000009748aeb81e1b00920efd9a0000010000000000098cffffff0000005f42485266535f4d", 0x48}], 0x0, 0x0) 05:28:51 executing program 3: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48}], 0x0, 0x0) 05:28:51 executing program 0: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)) syz_open_dev$swradio(&(0x7f00000000c0)='/dev/swradio#\x00', 0x1, 0x2) 05:28:52 executing program 5: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)) syz_open_dev$swradio(&(0x7f00000000c0)='/dev/swradio#\x00', 0x1, 0x2) 05:28:52 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000000)={0x0, 0x0}, &(0x7f0000000040)=0xc) keyctl$get_persistent(0x7, r1, 0x0) r2 = getuid() setreuid(r1, r2) syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) 05:28:52 executing program 0: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) 05:28:52 executing program 4: syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x1, 0x2) 05:28:52 executing program 3: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48}], 0x0, 0x0) 05:28:52 executing program 5: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000040)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffd) r1 = add_key(&(0x7f0000000140)='big_key\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f0000000400)="f9", 0x1, r0) keyctl$revoke(0x3, r1) keyctl$get_keyring_id(0x0, r1, 0x9) socket$inet_tcp(0x2, 0x1, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$inet_tcp(0x2, 0x1, 0x0) unshare(0x20600) prctl$PR_GET_TIMERSLACK(0x1e) fstat(0xffffffffffffffff, 0x0) fcntl$getown(0xffffffffffffffff, 0x9) r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000280)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0) geteuid() ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82) ioctl$LOOP_CTL_ADD(r2, 0x4c80, 0x0) add_key$keyring(&(0x7f00000000c0)='keyring\x00', &(0x7f0000000140)={'syz', 0x0}, 0x0, 0x0, 0x0) openat$rtc(0xffffffffffffff9c, 0x0, 0x0, 0x0) dup(0xffffffffffffffff) ioctl$RTC_ALM_SET(0xffffffffffffffff, 0x40247007, 0x0) openat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x200, 0x0) prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) r3 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = fcntl$dupfd(r3, 0x0, 0xffffffffffffffff) getsockopt$EBT_SO_GET_INIT_INFO(r4, 0x0, 0x82, &(0x7f0000000180)={'broute\x00'}, &(0x7f0000000240)=0x50) ioctl$TIOCSCTTY(r4, 0x540e, 0xffffffff) getsockopt$sock_cred(r4, 0x1, 0x11, 0x0, &(0x7f0000000640)) readlinkat(r4, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)=""/1, 0x1) syz_mount_image$hfs(&(0x7f0000000280)='hfs\x00', &(0x7f00000002c0)='./file0\x00', 0x7, 0x3, &(0x7f0000000440)=[{&(0x7f0000000680)="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", 0x1000, 0x20}, {&(0x7f0000000300)="049096b44b6319b4ea449b58640574e1f398382e8b9adb4036f432754585f9f81ddff3ac536b013fb1202ab670119cadfd3c6acc1463a9d36820736cab610f74ec5e35bf39b3dcf8266aee77b0418f85b881a7bfba37024653160968b378d234305f6c1c2b03df38ae72f552f47ff93364461074c8d13a8d19a8cd0c3f34713c4fa068ba6822a733eaac938d4eb7f2919f2bcdd256358a880aaa5d64a28d4d004051a305e00706d15e5d089793ce33470cefb9433ec3d4478a2675f69e", 0xbd, 0x7fff}, {&(0x7f00000003c0)="ef8f60", 0x3, 0x1000}], 0x808, &(0x7f0000001680)=ANY=[@ANYBLOB="636f6465706167653d69736f383835392d312c63726561746f723d072e382b2c73657373696f6e3d3078303030303030303130303030303030312c66696c655f756d61736b3d30303030303030303030303030303030303137373737372c71756965742c66736d616769633d307830303030303030303030303030303008000000626a9003e3409ab34f1a35fe6e677b766d6e65af70fd49322bec5896af7e783fdf757430707070302c6f626a5f747970653d6274726673002c6673636f6e746578743d00"/212]) 05:28:52 executing program 2: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000140)='/dev/qat_adf_ctl\x00', 0x400, 0x0) ioctl$DRM_IOCTL_FREE_BUFS(r1, 0x4010641a, &(0x7f00000001c0)={0x5, &(0x7f0000000180)=[0x40, 0x3, 0x0, 0x3, 0x10001]}) getsockopt$IP_VS_SO_GET_SERVICES(r0, 0x0, 0x482, &(0x7f00000000c0)=""/42, &(0x7f0000000100)=0x2a) 05:28:52 executing program 1: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x4, 0x4182) r1 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) pwritev(r1, &(0x7f0000000340)=[{&(0x7f0000000140)='!', 0x1}], 0x1, 0x81805) r2 = dup2(r1, r1) ioctl$SG_GET_RESERVED_SIZE(r1, 0x2272, 0x0) ioctl$LOOP_CHANGE_FD(r0, 0x4c00, r1) write$P9_RLERRORu(r2, &(0x7f00000003c0)=ANY=[@ANYBLOB="1400000007650d6c24ed92c8397291335cf616f0010200070062726f0c62077600b365a0a59e7eea"], 0x28) getsockopt$sock_cred(r2, 0x1, 0x11, 0x0, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f00000007c0)={{{@in=@remote, @in6=@initdev}}, {{@in=@empty}, 0x0, @in6=@ipv4}}, &(0x7f00000008c0)=0xe8) sendfile(r2, r0, 0x0, 0x2400003e) getsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000000100)={{{@in6=@mcast1, @in=@multicast2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@ipv4}, 0x0, @in6=@local}}, &(0x7f0000000280)=0xe8) quotactl(0x0, &(0x7f00000000c0)='./file0\x00', r3, &(0x7f00000002c0)="c2460771c04518c30dff9c71a149467b0e48ac15a6a883d46c789544efd4bbc12d73643063bd6ca6cbd2ce38b149cb011ebc0b287966185919cd763bcb23398da9d7f1808f4aa7bba10da65e34f66465338c32af699975acf7ffd6d6660f970c703e54d9a5478c963618c23b633135f470c694ea54f3c57cf97fc262ed938674601dc0be662bc46290e24320998ccc16e38f03a2236ca8fba14df5e96b0d90b8eedc844c7d8c") 05:28:52 executing program 0: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) 05:28:52 executing program 3: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48}], 0x0, 0x0) [ 326.945204] QAT: Invalid ioctl 05:28:52 executing program 4: r0 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x1, 0x2) r1 = syz_open_dev$vcsa(&(0x7f0000000300)='/dev/vcsa#\x00', 0x80000001, 0x404240) getsockopt$inet6_IPV6_IPSEC_POLICY(r1, 0x29, 0x22, 0x0, &(0x7f0000000780)) ioctl$VIDIOC_S_FREQUENCY(r0, 0x402c5639, &(0x7f0000000040)={0x200000, 0x1}) 05:28:52 executing program 4: r0 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x1, 0x2) ioctl$VIDIOC_S_FREQUENCY(r0, 0x402c5639, &(0x7f0000000180)={0xffffffff, 0x4}) setsockopt$nfc_llcp_NFC_LLCP_RW(r0, 0x118, 0x0, &(0x7f0000000040), 0x4) r1 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000080)='/dev/btrfs-control\x00', 0x121100, 0x0) ioctl$SNDRV_CTL_IOCTL_PCM_NEXT_DEVICE(r1, 0x80045530, &(0x7f00000000c0)=""/34) 05:28:52 executing program 0: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) [ 327.071404] hfs: session requires an argument [ 327.075944] hfs: unable to parse mount options [ 327.114295] QAT: Invalid ioctl 05:28:52 executing program 4: r0 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x1, 0x2) r1 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x4, 0x4182) r2 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) pwritev(r2, &(0x7f0000000340)=[{&(0x7f0000000140)='!', 0x1}], 0x1, 0x81805) r3 = dup2(r2, r2) ioctl$SG_GET_RESERVED_SIZE(r2, 0x2272, 0x0) ioctl$LOOP_CHANGE_FD(r1, 0x4c00, r2) write$P9_RLERRORu(r3, &(0x7f00000003c0)=ANY=[@ANYBLOB="1400000007650d6c24ed92c8397291335cf616f0010200070062726f0c62077600b365a0a59e7eea"], 0x28) getsockopt$sock_cred(r3, 0x1, 0x11, 0x0, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(r3, 0x29, 0x23, &(0x7f00000007c0)={{{@in=@remote, @in6=@initdev}}, {{@in=@empty}, 0x0, @in6=@ipv4}}, &(0x7f00000008c0)=0xe8) sendfile(r3, r1, 0x0, 0x2400003e) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000200)='IPVS\x00') sendmsg$IPVS_CMD_NEW_SERVICE(r5, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)={0x44, r6, 0x101, 0x0, 0x0, {}, [@IPVS_CMD_ATTR_SERVICE={0x30, 0x1, [@IPVS_SVC_ATTR_PORT={0x8}, @IPVS_SVC_ATTR_PROTOCOL={0x8}, @IPVS_SVC_ATTR_AF={0x8, 0x1, 0x2}, @IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv4=@local}]}]}, 0x44}}, 0x0) sendmsg$IPVS_CMD_ZERO(r4, &(0x7f00000002c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000240)={0x68, r6, 0x108, 0x70bd28, 0x25dfdbfc, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x1f}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x2}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x9}, @IPVS_CMD_ATTR_DEST={0x3c, 0x2, [@IPVS_DEST_ATTR_TUN_PORT={0x8, 0xe, 0x4e20}, @IPVS_DEST_ATTR_WEIGHT={0x8, 0x4, 0x3fe0000}, @IPVS_DEST_ATTR_PORT={0x8, 0x2, 0x4e22}, @IPVS_DEST_ATTR_TUN_PORT={0x8, 0xe, 0x4e23}, @IPVS_DEST_ATTR_PERSIST_CONNS={0x8, 0x9, 0x10001}, @IPVS_DEST_ATTR_L_THRESH={0x8, 0x6, 0x8}, @IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0x81}]}]}, 0x68}, 0x1, 0x0, 0x0, 0x40}, 0x20000000) ioctl$sock_bt_cmtp_CMTPGETCONNINFO(r3, 0x800443d3, &(0x7f00000000c0)={{0x80, 0xff, 0x0, 0x3, 0x9}, 0x3, 0x3, 0x7fff}) ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r0, 0x4058534c, &(0x7f0000000040)={0x2, 0x2, 0xa610, 0x400, 0x9, 0x9}) ioctl$VIDIOC_S_FREQUENCY(r0, 0x402c5639, &(0x7f0000000180)={0x0, 0x1}) 05:28:52 executing program 5: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000040)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffd) r1 = add_key(&(0x7f0000000140)='big_key\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f0000000400)="f9", 0x1, r0) keyctl$revoke(0x3, r1) keyctl$get_keyring_id(0x0, r1, 0x9) socket$inet_tcp(0x2, 0x1, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$inet_tcp(0x2, 0x1, 0x0) unshare(0x20600) prctl$PR_GET_TIMERSLACK(0x1e) fstat(0xffffffffffffffff, 0x0) fcntl$getown(0xffffffffffffffff, 0x9) r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000280)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0) geteuid() ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82) ioctl$LOOP_CTL_ADD(r2, 0x4c80, 0x0) add_key$keyring(&(0x7f00000000c0)='keyring\x00', &(0x7f0000000140)={'syz', 0x0}, 0x0, 0x0, 0x0) openat$rtc(0xffffffffffffff9c, 0x0, 0x0, 0x0) dup(0xffffffffffffffff) ioctl$RTC_ALM_SET(0xffffffffffffffff, 0x40247007, 0x0) openat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x200, 0x0) prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) r3 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = fcntl$dupfd(r3, 0x0, 0xffffffffffffffff) getsockopt$EBT_SO_GET_INIT_INFO(r4, 0x0, 0x82, &(0x7f0000000180)={'broute\x00'}, &(0x7f0000000240)=0x50) ioctl$TIOCSCTTY(r4, 0x540e, 0xffffffff) getsockopt$sock_cred(r4, 0x1, 0x11, 0x0, &(0x7f0000000640)) readlinkat(r4, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)=""/1, 0x1) syz_mount_image$hfs(&(0x7f0000000280)='hfs\x00', &(0x7f00000002c0)='./file0\x00', 0x7, 0x3, &(0x7f0000000440)=[{&(0x7f0000000680)="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", 0x1000, 0x20}, {&(0x7f0000000300)="049096b44b6319b4ea449b58640574e1f398382e8b9adb4036f432754585f9f81ddff3ac536b013fb1202ab670119cadfd3c6acc1463a9d36820736cab610f74ec5e35bf39b3dcf8266aee77b0418f85b881a7bfba37024653160968b378d234305f6c1c2b03df38ae72f552f47ff93364461074c8d13a8d19a8cd0c3f34713c4fa068ba6822a733eaac938d4eb7f2919f2bcdd256358a880aaa5d64a28d4d004051a305e00706d15e5d089793ce33470cefb9433ec3d4478a2675f69e", 0xbd, 0x7fff}, {&(0x7f00000003c0)="ef8f60", 0x3, 0x1000}], 0x808, &(0x7f0000001680)=ANY=[@ANYBLOB="636f6465706167653d69736f383835392d312c63726561746f723d072e382b2c73657373696f6e3d3078303030303030303130303030303030312c66696c655f756d61736b3d30303030303030303030303030303030303137373737372c71756965742c66736d616769633d307830303030303030303030303030303008000000626a9003e3409ab34f1a35fe6e677b766d6e65af70fd49322bec5896af7e783fdf757430707070302c6f626a5f747970653d6274726673002c6673636f6e746578743d00"/212]) 05:28:53 executing program 3 (fault-call:0 fault-nth:0): syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 05:28:53 executing program 2: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/sequencer2\x00', 0x40000, 0x0) ioctl$UFFDIO_WAKE(r1, 0x8010aa02, &(0x7f0000000140)={&(0x7f0000ffc000/0x4000)=nil, 0x4000}) r2 = syz_open_dev$vcsa(&(0x7f0000000300)='/dev/vcsa#\x00', 0x80000001, 0x20000) getsockopt$inet6_IPV6_IPSEC_POLICY(r2, 0x29, 0x22, 0x0, &(0x7f0000000780)) getsockopt$bt_rfcomm_RFCOMM_CONNINFO(r2, 0x12, 0x2, &(0x7f0000000100)=""/28, &(0x7f0000000180)=0x1c) [ 327.275746] FAULT_INJECTION: forcing a failure. [ 327.275746] name failslab, interval 1, probability 0, space 0, times 0 [ 327.297556] CPU: 1 PID: 22172 Comm: syz-executor.3 Not tainted 4.14.146 #0 [ 327.304622] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 327.304628] Call Trace: [ 327.304646] dump_stack+0x138/0x197 [ 327.304663] should_fail.cold+0x10f/0x159 [ 327.320234] should_failslab+0xdb/0x130 [ 327.320247] __kmalloc+0x2f0/0x7a0 [ 327.320255] ? __sb_end_write+0xc1/0x100 [ 327.320266] ? strnlen_user+0x12f/0x1a0 [ 327.320274] ? SyS_memfd_create+0xba/0x3a0 [ 327.320285] SyS_memfd_create+0xba/0x3a0 [ 327.320294] ? shmem_fcntl+0x130/0x130 [ 327.353209] ? do_syscall_64+0x53/0x640 [ 327.357172] ? shmem_fcntl+0x130/0x130 [ 327.361056] do_syscall_64+0x1e8/0x640 [ 327.364931] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 327.369771] entry_SYSCALL_64_after_hwframe+0x42/0xb7 05:28:53 executing program 3 (fault-call:0 fault-nth:1): syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 327.374946] RIP: 0033:0x459a29 [ 327.378129] RSP: 002b:00007fb1975c7a88 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 327.385825] RAX: ffffffffffffffda RBX: 0000000020000000 RCX: 0000000000459a29 [ 327.393081] RDX: 0000000020000028 RSI: 0000000000000000 RDI: 00000000004be948 [ 327.400338] RBP: 000000000075bf20 R08: fe03f80fe03f80ff R09: 00000000fbad8001 [ 327.407593] R10: 0000000000010000 R11: 0000000000000246 R12: 00007fb1975c86d4 [ 327.414854] R13: 00000000004c8b25 R14: 00000000004dfbc8 R15: 0000000000000003 05:28:53 executing program 4: r0 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x1, 0x2) r1 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000040)='/dev/cuse\x00', 0x2, 0x0) sendfile(r0, r1, &(0x7f0000000080), 0x3f) ioctl$VIDIOC_S_FREQUENCY(r0, 0x402c5639, &(0x7f0000000180)={0x0, 0x1, 0xfffffc00}) r2 = add_key(&(0x7f00000000c0)='pkcs7_test\x00', &(0x7f0000000100)={'syz', 0x2}, &(0x7f0000000140)="baddeec90df93f5cae6dc8c4284408614512a7", 0x13, 0xffffffffffffffff) r3 = add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000040)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffd) r4 = add_key(&(0x7f0000000140)='big_key\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f0000000400)="f9", 0x1, r3) keyctl$revoke(0x3, r4) keyctl$dh_compute(0x17, &(0x7f00000001c0)={0x0, r2, r4}, &(0x7f0000000200)=""/114, 0x72, &(0x7f00000002c0)={&(0x7f0000000280)={'poly1305\x00'}}) [ 327.509168] FAULT_INJECTION: forcing a failure. [ 327.509168] name failslab, interval 1, probability 0, space 0, times 0 [ 327.553913] CPU: 1 PID: 22187 Comm: syz-executor.3 Not tainted 4.14.146 #0 [ 327.560978] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 327.570604] Call Trace: [ 327.573247] dump_stack+0x138/0x197 [ 327.576999] should_fail.cold+0x10f/0x159 [ 327.581171] should_failslab+0xdb/0x130 [ 327.585167] kmem_cache_alloc+0x2d7/0x780 [ 327.589415] ? __alloc_fd+0x1d4/0x4a0 [ 327.593326] __d_alloc+0x2d/0x9f0 [ 327.596791] ? lock_downgrade+0x6e0/0x6e0 [ 327.600956] d_alloc_pseudo+0x1e/0x30 [ 327.604771] __shmem_file_setup.part.0+0xd8/0x400 [ 327.609713] ? __alloc_fd+0x1d4/0x4a0 [ 327.613533] ? shmem_fill_super+0x8c0/0x8c0 [ 327.617985] SyS_memfd_create+0x1f9/0x3a0 [ 327.622150] ? shmem_fcntl+0x130/0x130 [ 327.626054] ? do_syscall_64+0x53/0x640 [ 327.630053] ? shmem_fcntl+0x130/0x130 [ 327.633973] do_syscall_64+0x1e8/0x640 [ 327.637871] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 327.642743] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 327.647970] RIP: 0033:0x459a29 [ 327.651251] RSP: 002b:00007fb1975c7a88 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 327.659078] RAX: ffffffffffffffda RBX: 0000000020000000 RCX: 0000000000459a29 [ 327.666368] RDX: 0000000020000028 RSI: 0000000000000000 RDI: 00000000004be948 [ 327.673647] RBP: 000000000075bf20 R08: fe03f80fe03f80ff R09: 00000000fbad8001 [ 327.680950] R10: 0000000000010000 R11: 0000000000000246 R12: 00007fb1975c86d4 [ 327.688246] R13: 00000000004c8b25 R14: 00000000004dfbc8 R15: 0000000000000003 05:28:53 executing program 3 (fault-call:0 fault-nth:2): syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 05:28:53 executing program 0: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) 05:28:53 executing program 2: syz_mount_image$btrfs(&(0x7f0000000340)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x1, 0xd5, &(0x7f0000000000)=[{&(0x7f0000000140)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) eventfd(0x9) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x34080, 0x0) ioctl$TCFLSH(r0, 0x540b, 0xffffffffa565a2c9) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/dlm_plock\x00', 0x7d5e229b94ccd01, 0x0) ioctl$VHOST_VSOCK_SET_GUEST_CID(r2, 0x4008af60, &(0x7f0000000240)) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0)='\x00\xcfk\xff\xda\x1eM\xbfu\x00', 0x0, 0x0) ioctl$TCSETS(r3, 0x40045431, &(0x7f0000000080)) syz_open_pts(r3, 0x0) ioctl$TIOCGPTLCK(r3, 0x80045439, &(0x7f0000000100)) r4 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000280)='/dev/btrfs-control\x00', 0x80000, 0x0) ioctl$KDGETLED(r4, 0x4b31, &(0x7f0000000300)) r5 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='attr/sockcreate\x00') ioctl$GIO_UNISCRNMAP(r5, 0x4b69, &(0x7f0000000380)=""/222) 05:28:53 executing program 4: r0 = syz_open_dev$radio(&(0x7f0000000040)='/dev/radio#\x00', 0x1, 0x2) ioctl$VIDIOC_S_FREQUENCY(r0, 0x402c5639, &(0x7f0000000180)={0x0, 0x1}) r1 = socket$inet6_dccp(0xa, 0x6, 0x0) fchdir(r1) [ 327.917581] FAULT_INJECTION: forcing a failure. [ 327.917581] name failslab, interval 1, probability 0, space 0, times 0 05:28:53 executing program 5: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000040)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffd) r1 = add_key(&(0x7f0000000140)='big_key\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f0000000400)="f9", 0x1, r0) keyctl$revoke(0x3, r1) keyctl$get_keyring_id(0x0, r1, 0x9) socket$inet_tcp(0x2, 0x1, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$inet_tcp(0x2, 0x1, 0x0) unshare(0x20600) prctl$PR_GET_TIMERSLACK(0x1e) fstat(0xffffffffffffffff, 0x0) fcntl$getown(0xffffffffffffffff, 0x9) r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000280)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0) geteuid() ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82) ioctl$LOOP_CTL_ADD(r2, 0x4c80, 0x0) add_key$keyring(&(0x7f00000000c0)='keyring\x00', &(0x7f0000000140)={'syz', 0x0}, 0x0, 0x0, 0x0) openat$rtc(0xffffffffffffff9c, 0x0, 0x0, 0x0) dup(0xffffffffffffffff) ioctl$RTC_ALM_SET(0xffffffffffffffff, 0x40247007, 0x0) openat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x200, 0x0) prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) r3 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = fcntl$dupfd(r3, 0x0, 0xffffffffffffffff) getsockopt$EBT_SO_GET_INIT_INFO(r4, 0x0, 0x82, &(0x7f0000000180)={'broute\x00'}, &(0x7f0000000240)=0x50) ioctl$TIOCSCTTY(r4, 0x540e, 0xffffffff) getsockopt$sock_cred(r4, 0x1, 0x11, 0x0, &(0x7f0000000640)) readlinkat(r4, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)=""/1, 0x1) syz_mount_image$hfs(&(0x7f0000000280)='hfs\x00', &(0x7f00000002c0)='./file0\x00', 0x7, 0x3, &(0x7f0000000440)=[{&(0x7f0000000680)="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", 0x1000, 0x20}, {&(0x7f0000000300)="049096b44b6319b4ea449b58640574e1f398382e8b9adb4036f432754585f9f81ddff3ac536b013fb1202ab670119cadfd3c6acc1463a9d36820736cab610f74ec5e35bf39b3dcf8266aee77b0418f85b881a7bfba37024653160968b378d234305f6c1c2b03df38ae72f552f47ff93364461074c8d13a8d19a8cd0c3f34713c4fa068ba6822a733eaac938d4eb7f2919f2bcdd256358a880aaa5d64a28d4d004051a305e00706d15e5d089793ce33470cefb9433ec3d4478a2675f69e", 0xbd, 0x7fff}, {&(0x7f00000003c0)="ef8f60", 0x3, 0x1000}], 0x808, &(0x7f0000001680)=ANY=[@ANYBLOB="636f6465706167653d69736f383835392d312c63726561746f723d072e382b2c73657373696f6e3d3078303030303030303130303030303030312c66696c655f756d61736b3d30303030303030303030303030303030303137373737372c71756965742c66736d616769633d307830303030303030303030303030303008000000626a9003e3409ab34f1a35fe6e677b766d6e65af70fd49322bec5896af7e783fdf757430707070302c6f626a5f747970653d6274726673002c6673636f6e746578743d00"/212]) [ 327.998487] CPU: 1 PID: 22204 Comm: syz-executor.3 Not tainted 4.14.146 #0 [ 328.005558] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 328.014942] Call Trace: [ 328.017553] dump_stack+0x138/0x197 [ 328.021193] should_fail.cold+0x10f/0x159 [ 328.021211] should_failslab+0xdb/0x130 [ 328.029355] kmem_cache_alloc+0x2d7/0x780 [ 328.033522] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 328.038987] ? rcu_read_lock_sched_held+0x110/0x130 [ 328.039018] ? shmem_destroy_callback+0xa0/0xa0 [ 328.039031] shmem_alloc_inode+0x1c/0x50 [ 328.039043] alloc_inode+0x64/0x180 [ 328.056442] new_inode_pseudo+0x19/0xf0 [ 328.060430] new_inode+0x1f/0x40 [ 328.063817] shmem_get_inode+0x75/0x750 [ 328.067815] __shmem_file_setup.part.0+0x111/0x400 [ 328.072761] ? __alloc_fd+0x1d4/0x4a0 [ 328.076587] ? shmem_fill_super+0x8c0/0x8c0 [ 328.080938] SyS_memfd_create+0x1f9/0x3a0 [ 328.085099] ? shmem_fcntl+0x130/0x130 [ 328.088987] ? do_syscall_64+0x53/0x640 [ 328.092972] ? shmem_fcntl+0x130/0x130 [ 328.096949] do_syscall_64+0x1e8/0x640 [ 328.100847] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 328.105742] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 328.110935] RIP: 0033:0x459a29 [ 328.114133] RSP: 002b:00007fb1975c7a88 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 328.121852] RAX: ffffffffffffffda RBX: 0000000020000000 RCX: 0000000000459a29 [ 328.129224] RDX: 0000000020000028 RSI: 0000000000000000 RDI: 00000000004be948 [ 328.136501] RBP: 000000000075bf20 R08: fe03f80fe03f80ff R09: 00000000fbad8001 05:28:53 executing program 1: r0 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000440)='/dev/autofs\x00', 0x22040, 0x0) bind$unix(r0, &(0x7f0000000480)=@abs={0x0, 0x0, 0x4e22}, 0x6e) syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/hwrng\x00', 0x200000, 0x0) r2 = socket$alg(0x26, 0x5, 0x0) bind$alg(r2, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'ghash-generic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, 0x0, 0x0) ioctl$FS_IOC_MEASURE_VERITY(r2, 0xc0046686, &(0x7f00000002c0)=ANY=[@ANYBLOB="0300c00065d97480852b936029e9ac048b27fd90d6a36ad471661bdf1544ba42bd16d4d1ddf28df9480098f2b70f556e0721593fc37fc10eb8cb10fac701a1fb20496df398f716013c5920e177c57a62c2d1242cbc44200ca52582d74dcd0bdb002ca4664c01449595c80e81d0f01d617b76492149edfecc0bbf54ed9a87a48a3f360306f2733bed4fa7fb69324187a464c41adf1d1ac280dfffffce0187403534a660a805b4b4c329a1dbb8eef767d14b38473b3ac1330f0db05da6000000"]) r3 = syz_genetlink_get_family_id$net_dm(&(0x7f00000000c0)='NET_DM\x00') sendmsg$NET_DM_CMD_STOP(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000140), 0xc, &(0x7f0000000400)={&(0x7f0000000200)={0x14, r3, 0x0, 0x70bd25, 0x25dfdbfe, {}, ["", "", "", "", "", "", ""]}, 0x329}, 0x1, 0x0, 0x0, 0x8000}, 0x40000) setsockopt$inet_sctp_SCTP_RECVRCVINFO(0xffffffffffffffff, 0x84, 0x20, &(0x7f00000003c0)=0x1, 0x4) sendmsg$NET_DM_CMD_START(r1, &(0x7f00000001c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0xffffffffffffff47, r3, 0x300, 0x70bd28, 0x25dfdbfe, {}, ["", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x44000}, 0x20040004) 05:28:53 executing program 4: r0 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x1, 0x2) ioctl$VIDIOC_S_FREQUENCY(r0, 0x402c5639, &(0x7f0000000180)={0xaa}) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = fcntl$dupfd(r1, 0x0, 0xffffffffffffffff) getsockopt$EBT_SO_GET_INIT_INFO(r2, 0x0, 0x82, &(0x7f0000000180)={'broute\x00'}, &(0x7f0000000240)=0x50) ioctl$TIOCSCTTY(r2, 0x540e, 0xffffffff) getsockopt$sock_cred(r2, 0x1, 0x11, 0x0, &(0x7f0000000640)) clock_gettime(0x0, &(0x7f0000000040)={0x0, 0x0}) write$evdev(r2, &(0x7f0000000080)=[{{}, 0x16, 0x40, 0xe7}, {{}, 0x2, 0x7, 0x5}, {{0x0, 0x7530}, 0x5, 0x0, 0x8}, {{r3, r4/1000+10000}, 0x1, 0x3ff, 0x6}, {{0x77359400}, 0x16, 0x0, 0x8000}], 0x78) [ 328.143788] R10: 0000000000010000 R11: 0000000000000246 R12: 00007fb1975c86d4 [ 328.151077] R13: 00000000004c8b25 R14: 00000000004dfbc8 R15: 0000000000000003 05:28:54 executing program 0: syz_mount_image$btrfs(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) 05:28:54 executing program 2: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x4, 0x4182) r2 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) pwritev(r2, &(0x7f0000000340)=[{&(0x7f0000000140)='!', 0x1}], 0x1, 0x81805) r3 = dup2(r2, r2) ioctl$SG_GET_RESERVED_SIZE(r2, 0x2272, 0x0) ioctl$LOOP_CHANGE_FD(r1, 0x4c00, r2) write$P9_RLERRORu(r3, &(0x7f00000003c0)=ANY=[@ANYBLOB="1400000007650d6c24ed92c8397291335cf616f0010200070062726f0c62077600b365a0a59e7eea"], 0x28) r4 = socket$alg(0x26, 0x5, 0x0) bind$alg(r4, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'ghash-generic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r4, 0x117, 0x1, 0x0, 0x0) fadvise64(r4, 0x17, 0x1, 0x5) getsockopt$sock_cred(r3, 0x1, 0x11, 0x0, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(r3, 0x29, 0x23, &(0x7f00000007c0)={{{@in=@remote, @in6=@initdev}}, {{@in=@empty}, 0x0, @in6=@ipv4}}, &(0x7f00000008c0)=0xe8) sendfile(r3, r1, 0x0, 0x2400003e) write$smack_current(r3, &(0x7f00000000c0)='btrfs\x00', 0x6) 05:28:54 executing program 4: r0 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x1, 0x2) r1 = syz_open_dev$vcsa(&(0x7f0000000300)='/dev/vcsa#\x00', 0x80000001, 0x20000) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r1, 0x84, 0x1d, &(0x7f0000000040)={0x3, [0x0, 0x0, 0x0]}, &(0x7f0000000080)=0x10) ioctl$VIDIOC_S_FREQUENCY(r0, 0x402c5639, &(0x7f0000000180)={0x0, 0x1}) 05:28:54 executing program 0: syz_mount_image$btrfs(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) 05:28:54 executing program 1 (fault-call:0 fault-nth:0): syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000140)='./file0\x00', 0xff, 0x1, &(0x7f0000000000)=[{&(0x7f0000000180)="8da4363ac0ed0000000000000001004d0100000000000000000000000009000000000000009748aeb81e1b00920efd9a0000010000000000098cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 328.446396] hfs: session requires an argument [ 328.484153] hfs: unable to parse mount options [ 328.502521] FAULT_INJECTION: forcing a failure. [ 328.502521] name failslab, interval 1, probability 0, space 0, times 0 [ 328.638577] CPU: 0 PID: 22267 Comm: syz-executor.1 Not tainted 4.14.146 #0 [ 328.646333] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 328.646341] Call Trace: [ 328.658472] dump_stack+0x138/0x197 [ 328.662113] should_fail.cold+0x10f/0x159 [ 328.666275] should_failslab+0xdb/0x130 [ 328.670255] __kmalloc+0x2f0/0x7a0 [ 328.670265] ? __sb_end_write+0xc1/0x100 [ 328.670277] ? strnlen_user+0x12f/0x1a0 [ 328.670285] ? SyS_memfd_create+0xba/0x3a0 [ 328.670295] SyS_memfd_create+0xba/0x3a0 [ 328.670305] ? shmem_fcntl+0x130/0x130 [ 328.670315] ? do_syscall_64+0x53/0x640 [ 328.670325] ? shmem_fcntl+0x130/0x130 [ 328.670335] do_syscall_64+0x1e8/0x640 [ 328.670342] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 328.670363] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 328.716209] RIP: 0033:0x459a29 [ 328.719404] RSP: 002b:00007f617e384a88 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 328.727139] RAX: ffffffffffffffda RBX: 0000000020000000 RCX: 0000000000459a29 [ 328.734965] RDX: 0000000020000028 RSI: 0000000000000000 RDI: 00000000004be948 [ 328.742246] RBP: 000000000075bf20 R08: fe03f80fe03f80ff R09: 00000000fbad8001 [ 328.749527] R10: 0000000000010000 R11: 0000000000000246 R12: 00007f617e3856d4 [ 328.756801] R13: 00000000004c8b25 R14: 00000000004dfbc8 R15: 0000000000000003 05:28:54 executing program 3 (fault-call:0 fault-nth:3): syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 05:28:54 executing program 0: syz_mount_image$btrfs(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) 05:28:54 executing program 4: r0 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x1, 0x2) pipe(&(0x7f0000000040)) ioctl$VIDIOC_S_FREQUENCY(r0, 0x402c5639, &(0x7f0000000180)={0x0, 0x1}) 05:28:54 executing program 1 (fault-call:0 fault-nth:1): syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000140)='./file0\x00', 0xff, 0x1, &(0x7f0000000000)=[{&(0x7f0000000180)="8da4363ac0ed0000000000000001004d0100000000000000000000000009000000000000009748aeb81e1b00920efd9a0000010000000000098cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 328.857337] FAULT_INJECTION: forcing a failure. [ 328.857337] name failslab, interval 1, probability 0, space 0, times 0 [ 328.885650] FAULT_INJECTION: forcing a failure. [ 328.885650] name failslab, interval 1, probability 0, space 0, times 0 [ 328.900826] CPU: 1 PID: 22281 Comm: syz-executor.3 Not tainted 4.14.146 #0 [ 328.907878] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 328.917242] Call Trace: [ 328.919936] dump_stack+0x138/0x197 [ 328.923595] should_fail.cold+0x10f/0x159 [ 328.927760] should_failslab+0xdb/0x130 [ 328.931741] kmem_cache_alloc+0x2d7/0x780 [ 328.935897] ? shmem_alloc_inode+0x1c/0x50 [ 328.940134] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 328.945599] selinux_inode_alloc_security+0xb6/0x2a0 [ 328.950713] security_inode_alloc+0x94/0xd0 [ 328.955041] inode_init_always+0x552/0xaf0 [ 328.959280] alloc_inode+0x81/0x180 [ 328.962912] new_inode_pseudo+0x19/0xf0 [ 328.966892] new_inode+0x1f/0x40 [ 328.970434] shmem_get_inode+0x75/0x750 [ 328.974414] __shmem_file_setup.part.0+0x111/0x400 [ 328.979345] ? __alloc_fd+0x1d4/0x4a0 [ 328.983148] ? shmem_fill_super+0x8c0/0x8c0 [ 328.987491] SyS_memfd_create+0x1f9/0x3a0 [ 328.991664] ? shmem_fcntl+0x130/0x130 [ 328.995558] ? do_syscall_64+0x53/0x640 [ 328.999534] ? shmem_fcntl+0x130/0x130 [ 329.003435] do_syscall_64+0x1e8/0x640 [ 329.007324] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 329.012193] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 329.017381] RIP: 0033:0x459a29 [ 329.020574] RSP: 002b:00007fb1975c7a88 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 329.028462] RAX: ffffffffffffffda RBX: 0000000020000000 RCX: 0000000000459a29 [ 329.035734] RDX: 0000000020000028 RSI: 0000000000000000 RDI: 00000000004be948 [ 329.043013] RBP: 000000000075bf20 R08: fe03f80fe03f80ff R09: 00000000fbad8001 [ 329.050285] R10: 0000000000010000 R11: 0000000000000246 R12: 00007fb1975c86d4 [ 329.057824] R13: 00000000004c8b25 R14: 00000000004dfbc8 R15: 0000000000000003 [ 329.065117] CPU: 0 PID: 22289 Comm: syz-executor.1 Not tainted 4.14.146 #0 [ 329.072151] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 329.081509] Call Trace: [ 329.084105] dump_stack+0x138/0x197 [ 329.087747] should_fail.cold+0x10f/0x159 [ 329.092253] should_failslab+0xdb/0x130 [ 329.096234] kmem_cache_alloc+0x2d7/0x780 [ 329.100384] ? __alloc_fd+0x1d4/0x4a0 [ 329.104196] __d_alloc+0x2d/0x9f0 [ 329.107655] ? lock_downgrade+0x6e0/0x6e0 [ 329.111814] d_alloc_pseudo+0x1e/0x30 [ 329.115619] __shmem_file_setup.part.0+0xd8/0x400 [ 329.120462] ? __alloc_fd+0x1d4/0x4a0 [ 329.124266] ? shmem_fill_super+0x8c0/0x8c0 [ 329.128596] SyS_memfd_create+0x1f9/0x3a0 [ 329.132748] ? shmem_fcntl+0x130/0x130 [ 329.136636] ? do_syscall_64+0x53/0x640 [ 329.140614] ? shmem_fcntl+0x130/0x130 [ 329.144514] do_syscall_64+0x1e8/0x640 [ 329.148410] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 329.153267] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 329.158465] RIP: 0033:0x459a29 [ 329.161656] RSP: 002b:00007f617e384a88 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 329.169370] RAX: ffffffffffffffda RBX: 0000000020000000 RCX: 0000000000459a29 [ 329.176648] RDX: 0000000020000028 RSI: 0000000000000000 RDI: 00000000004be948 [ 329.183931] RBP: 000000000075bf20 R08: fe03f80fe03f80ff R09: 00000000fbad8001 [ 329.191205] R10: 0000000000010000 R11: 0000000000000246 R12: 00007f617e3856d4 [ 329.198582] R13: 00000000004c8b25 R14: 00000000004dfbc8 R15: 0000000000000003 05:28:55 executing program 5 (fault-call:0 fault-nth:0): syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 05:28:55 executing program 4: socket$key(0xf, 0x3, 0x2) r0 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x1, 0x2) ioctl$VIDIOC_S_FREQUENCY(r0, 0x402c5639, &(0x7f0000000180)={0x0, 0x1}) 05:28:55 executing program 0: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', 0x0, 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) 05:28:55 executing program 2: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = syz_open_dev$vcsa(&(0x7f0000000300)='/dev/vcsa#\x00', 0x80000001, 0x20000) getsockopt$inet6_IPV6_IPSEC_POLICY(r0, 0x29, 0x22, 0x0, &(0x7f0000000780)) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f0000000100)={{{@in6=@initdev, @in=@multicast2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@remote}, 0x0, @in=@multicast1}}, &(0x7f0000000280)=0xe8) r2 = geteuid() r3 = syz_init_net_socket$ax25(0x3, 0x5, 0x6) r4 = socket$alg(0x26, 0x5, 0x0) bind$alg(r4, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'ghash-generic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r4, 0x117, 0x1, 0x0, 0x0) r5 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000002d80)='/dev/sequencer2\x00', 0x404000, 0x0) r6 = socket$alg(0x26, 0x5, 0x0) bind$alg(r6, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'ghash-generic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r6, 0x117, 0x1, 0x0, 0x0) r7 = socket$alg(0x26, 0x5, 0x0) bind$alg(r7, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'ghash-generic\x00'}, 0x58) openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000002e00)='/dev/btrfs-control\x00', 0x4000, 0x0) setsockopt$ALG_SET_KEY(r7, 0x117, 0x1, 0x0, 0x0) r8 = socket$alg(0x26, 0x5, 0x0) bind$alg(r8, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'ghash-generic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r8, 0x117, 0x1, 0x0, 0x0) r9 = syz_open_dev$mice(&(0x7f0000002dc0)='/dev/input/mice\x00', 0x0, 0x0) pipe(&(0x7f0000002ec0)={0xffffffffffffffff}) r11 = inotify_init1(0x800) r12 = socket$alg(0x26, 0x5, 0x0) bind$alg(r12, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'ghash-generic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r12, 0x117, 0x1, 0x0, 0x0) r13 = socket$alg(0x26, 0x5, 0x0) bind$alg(r13, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'ghash-generic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r13, 0x117, 0x1, 0x0, 0x0) r14 = socket$alg(0x26, 0x5, 0x0) bind$alg(r14, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'ghash-generic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r14, 0x117, 0x1, 0x0, 0x0) r15 = openat(0xffffffffffffffff, &(0x7f0000002f00)='./file0\x00', 0x400, 0x50) r16 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r17 = fcntl$dupfd(r16, 0x0, 0xffffffffffffffff) getsockopt$EBT_SO_GET_INIT_INFO(r17, 0x0, 0x82, &(0x7f0000000180)={'broute\x00'}, &(0x7f0000000240)=0x50) ioctl$TIOCSCTTY(r17, 0x540e, 0xffffffff) getsockopt$sock_cred(r17, 0x1, 0x11, 0x0, &(0x7f0000000640)) ioctl$VIDIOC_EXPBUF(0xffffffffffffffff, 0xc0405610, &(0x7f0000002f40)={0x2, 0x8, 0x7, 0x1000, r17}) r19 = socket$can_raw(0x1d, 0x3, 0x1) r20 = socket$alg(0x26, 0x5, 0x0) bind$alg(r20, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'ghash-generic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r20, 0x117, 0x1, 0x0, 0x0) sendmsg$netlink(r0, &(0x7f0000003000)={&(0x7f00000000c0)=@proc={0x10, 0x0, 0x25dfdbfc, 0x10000000}, 0xc, &(0x7f0000002d40)=[{&(0x7f00000002c0)={0x22f8, 0x2c, 0x200, 0x70bd27, 0x25dfdbfb, "", [@generic="3b5bec80c5a546f0cb5a49907d099738830f8f8b084debf5c39608644859ef208064f554a42e772efcbcf354c0aea2df67a9079f0d6dd79f2b782b76b75912fef2fb6f336c9c8d681e5025a97a6771e8e892cc506ab6552fedb107e60a8d7985cef4693c86b4470b48e75521d1156c9619de972d676ffefbc34d458eb8085255cbeb13591dba14f7fbb6f5a8d77d71859e840f530e45fe9e22915610ec20e9a7dcdb9f08eb77a2a410d2c7a23569683626e9dd217f142021dd9abc02af623bad2e1dd8582da7691ecccfa750e6e3d8b886b91cdcfdaff5784dc2c5fe26eeae1b05d20b5856e23d7c0cda920ad5", @typed={0x8, 0x77, @uid=r1}, @nested={0x1004, 0x3a, [@generic="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"]}, @nested={0x1158, 0x2, [@generic="6e5d035c074d53e806cc64ec086e26e9d4d26efc02942d9ca3aa1355232840860761001ee8dbfb20908ec6daa78fd386b4add5deba8b6566d454ff9ed90c5dd57cec7e3464b18947e6259e8a16f3ada80cfeece580", @typed={0x8, 0x79, @uid=r2}, @generic="d829e60c1a0d49f57306ee01caadb5b2cabd55f72559c3aadac15bcf04085bfffdd48f181ca7e364c696136ec970e412cfa3a047963d031a4b0819c16d9efd8ed931c32815b23414b8b1583a50f291f44c79fe29b01d244209ee31a488da67aca37359f80f924e2d607fe979dce8bcc8ff3b874672962bc4328a9aaaecd43081867326339887fbc35f2a30016f477fc15b315f2f2322cf0bd277b47eedb8edf3f20c17bae12751fbdfd252ffcb018fcfa97a16b9b4002f16e5085d6ef341451b096306", @typed={0xc, 0x22, @str='btrfs\x00'}, @generic="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", @typed={0x14, 0x13, @ipv6=@ipv4={[], [], @broadcast}}, @typed={0x14, 0x47, @ipv6=@dev={0xfe, 0x80, [], 0x23}}]}, @typed={0x8, 0x51, @ipv4=@loopback}, @nested={0x8c, 0x60, [@typed={0x8, 0x78, @u32=0xfd2}, @generic="61bfa6d144e17dd008f71a6cb21f1328108490126a7e05c33d7e9660cd8d8cb0385cde60031ae799c6f496df3b020e6a7ddc528919d2bbb5356dbdf9aa39bbf0b1f25e6de9cf32b6712cbd200a482ca1ed0bde4665c3e7207b3b8fc8b3be70eb1c0f7fbe58e23f8903442756e8109f06e9105bcdde912ea2aebcf11eb3"]}]}, 0x22f8}, {&(0x7f00000025c0)={0x778, 0x1e, 0x400, 0x70bd25, 0x25dfdbfb, "", [@generic="16f62f22779257df618d3700e3c1730484d423f7b233", @nested={0x25c, 0x7, [@typed={0xf0, 0x53, @binary="d63757170abb6ed417d6f5a697cf7b11ee941b9b7c3a3557f24205797c568e7968e89750928361d90214fbe34527dcadbf382f7e640af1c44e8d0f90a234246fcb5771edf62cbf2f3d0772c621f2c2df06e15b06bfa6e1f705a51a13f8e47002e4d00f3ce6a41c34cdfec6795ab51869585bdc224f2bd28522e6962135064e6f7c17c13484b07baad9f408aec77a7c69004f5e3323152a7f8870a0b6ac2f2872f3ae6af11b7a5e8aaf6359372404ba901dc5282f7b391ee3ad65a0a70c5184809db754cf119abdb4f2a2b5b1e4a820d1aff25cd66f1f4431581305b17f5a1597e281c5b28180d71d1631b659"}, @typed={0xc, 0x10, @str='btrfs\x00'}, @generic="c9a95565a0a0db1c71db9e25d32a2cf0deb6ca2e6897c415f109b8c986fb95ffaf5ce1b6c2368de332226359356d2db4eb548fa09b273c77e3cc32273addc326e868ddc2428a1b55f2cd3f1a6774f7cddb3d7aabe1f66744d2ff6fe0771e42490312ea6b14df15", @generic, @typed={0x8, 0x5b, @str='\x00'}, @generic="0e58c573f67fb9a32b73d96fa8515c84b31285efd439a32e652287bd98", @generic="7d2edc6a80c54c8f444b85601abb1152373e3a041883", @generic="f265f18a0e387ea72b97e78ec45d510b9d8084b3a464318aa39bc0ffefb979c707b9ed5ab1fe09cd8b6fa6510f9f80175f92fe6c13661f9cc1313d37596b75677a91d272497971f16cf42d96f00e3c06eb310a6e78fc9f2379ff7cc39788e794434f980d908ed1484f53f9463a6626c37b194a07a2b13e6ea7e67fba526b60036817bef22c194b5d4b8323e40ecb22f77b89c9aee3aff49b3f619749df1b11bef494416c5e8bc67c8b70936daf5ad5f4cecd", @typed={0x8, 0x73, @u32=0x7fffffff}]}, @typed={0x4, 0x2b}, @nested={0x4f0, 0x3a, [@generic="d9c5e07fd832119f27b66675776013ff65dbd752d5eedf2e85c64dd5ac6be4dc47e73e52245167bb217ab8342e43df1f2c7cefa5b4d63500c6f5dc9bdbf896ad071e126a75f6dc61d6f390040fc682562024c0c83683d0ae8e36af84786463afffd719fd805fe15d9f377c491b49", @generic="069a9dd96e403c6465f4d07c1b5786ce1413f69609f6329df335bd0727651d6ba3d96b14e007ecdda1298ffd42f5aef71f0f46942a0ca6de12d082a000f9856bd1c5759b4b9984a4ad99227a62b5da3dd62e51bec1abdd3d67220a08a72b419e45bcb19a10061c0b845ff1a87b4f4938dec26db9e3bea954b28f25e44ae57520606cf0740900cb12da578adeb25cb000d776f7abdf22d890070b69420e43424c9c076b9b2d25dfdf411eda6d443b517a10bdceba19c1de9e663e6c18f66ff6c7b3fc1e67b6370c9e9c20354d9a003e980d6ac6c87b657409e40335604fee1566ab4a8643e59e2ebd5aa7a28aff", @typed={0x14, 0x24, @ipv6=@empty}, @generic="dd61e2e528fb8f1c6583e07a9c6ef26eba831f6125e822b88c02caf84f75e30d1f6863a91ce41f20b0771bbd9b97cf7ed959c72655d6e46ae024013bb9ebe66eb4fea393054d78366ed892961f0dfdae91b4dd3752f0e03840076dbde3fe159f0517a8f9a6e879dc1a82c82f23d9dd8b9c0a856bc2c985d9ff01331e96abdccdae44a1c28aaf5ea13d8604eb615a9321370b640537e18064d50833fb2ce45d37a20e02966a7c23cff180758e068885a24bcbd9", @generic="5d5bfbffdd9a846aa5bda94b00b2ebab50058c9b5ab5aae7c8b589a2313519a0819a22eb1165b82ebc4e1da5aa0b3618677dd206d5d945459563ec8f3abec8db472b22b95485c5e523d01e039dfe0097d2a15fd12f23a0681e7a604945", @generic="3ae240b7ea9c9b1626269dfd633f8e", @generic="6d6338cbbf44517ee918fe11b13af68996a6547d938f27d38da0dc1e477a96ada063f5b0c9ef9a6ae619615393dc6776b7cebaef36568946cadb56bb24598b7e12ae47aa2248f2e51b216f2ec7bbfb70732379fbcc170f9a92c370a2d665a2f0eee0081ffb37d56bcaf03a50baa9bea4366892aac9732b15c23704ea7109a7f6ff20a2b7a0da7e80b204c4dcd341ab748db32b52cc6eaa8faaf2f61af667190ef60b05f9a508c99766259a4aeaca6ebdbf7059030a5d77ee99d487a756790d720e2bebdc779285", @generic="015b0c0d8f5f29b229ae6a4c51ffa5fbd27c0a64e2b3c750de34640703fe3e633fef781155a05c78920dc106a68a9357b83c86df0b5849f7eef73b38375c7438fda1d79b0c9f90e9c9acd4a44886de380614785d847ccd7c45833aee36ca5d8d3b9818960479fd957f96806ea378ccc8fe8a4e22f9ccf99748565e28c543cae93d7ca447121780dca7961f0555124e7fcb8b13e6dcace88ee015929b95e8f45aeac578bbcf8315ef1bc10be1a6896a6e84409d32e02d7dc8ffb2b8c721bdc99f6f57db5242e7fd6cde85b5b57984975b", @generic="4d1dc5f755e34e2ca9f94799305db9e47c411910292a9ba582d678db08e724f9486cac43c35bba5d9d7faefafedabe89d7dee27a422718c1d4ca28552f666cd72fdd80df9e402f36efef9dca7f53f5da67c0ddb2a4eb639e0ac5ad4a3f152a9bc917e23cb62e3df58abc2f2cc48cd2dd07792e445b5ca625f78655021e4434ba3f19dfa565c30ef26a07341619f7cfefc088a73521010b685ebf55cdfb8b3c30eb38634b2cb81ffe9ee903c111872b9a89043983e434e36d854e63412e29cb1e7c0e7f7ab8"]}]}, 0x778}], 0x2, &(0x7f0000002f80)=[@rights={{0x34, 0x1, 0x1, [r3, r4, r5, 0xffffffffffffffff, r6, r7, r8, r9, r10]}}, @rights={{0x24, 0x1, 0x1, [r11, r12, r13, r14, r15]}}, @rights={{0x1c, 0x1, 0x1, [r18, r19, r20]}}], 0x80, 0x6}, 0x4004000) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r21, 0x8912, 0x400200) 05:28:55 executing program 1 (fault-call:0 fault-nth:2): syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000140)='./file0\x00', 0xff, 0x1, &(0x7f0000000000)=[{&(0x7f0000000180)="8da4363ac0ed0000000000000001004d0100000000000000000000000009000000000000009748aeb81e1b00920efd9a0000010000000000098cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 329.268892] FAULT_INJECTION: forcing a failure. [ 329.268892] name failslab, interval 1, probability 0, space 0, times 0 [ 329.296008] CPU: 0 PID: 22298 Comm: syz-executor.5 Not tainted 4.14.146 #0 [ 329.303078] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 329.312441] Call Trace: [ 329.315048] dump_stack+0x138/0x197 [ 329.318720] should_fail.cold+0x10f/0x159 [ 329.322886] should_failslab+0xdb/0x130 [ 329.326877] __kmalloc+0x2f0/0x7a0 [ 329.330431] ? __sb_end_write+0xc1/0x100 [ 329.334503] ? strnlen_user+0x12f/0x1a0 [ 329.338485] ? SyS_memfd_create+0xba/0x3a0 [ 329.342733] SyS_memfd_create+0xba/0x3a0 [ 329.346800] ? shmem_fcntl+0x130/0x130 [ 329.350692] ? do_syscall_64+0x53/0x640 [ 329.350704] ? shmem_fcntl+0x130/0x130 [ 329.358552] do_syscall_64+0x1e8/0x640 [ 329.358561] ? trace_hardirqs_off_thunk+0x1a/0x1c 05:28:55 executing program 3 (fault-call:0 fault-nth:4): syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 329.358577] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 329.358587] RIP: 0033:0x459a29 [ 329.375651] RSP: 002b:00007fc73341fa88 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 329.383355] RAX: ffffffffffffffda RBX: 0000000020000000 RCX: 0000000000459a29 [ 329.383360] RDX: 0000000020000028 RSI: 0000000000000000 RDI: 00000000004be948 [ 329.383366] RBP: 000000000075bf20 R08: fe03f80fe03f80ff R09: 00000000fbad8001 [ 329.383371] R10: 0000000000010000 R11: 0000000000000246 R12: 00007fc7334206d4 05:28:55 executing program 5 (fault-call:0 fault-nth:1): syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 329.383375] R13: 00000000004c8b25 R14: 00000000004dfbc8 R15: 0000000000000003 [ 329.429752] FAULT_INJECTION: forcing a failure. [ 329.429752] name failslab, interval 1, probability 0, space 0, times 0 [ 329.464653] CPU: 0 PID: 22304 Comm: syz-executor.3 Not tainted 4.14.146 #0 [ 329.471723] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 329.481079] Call Trace: [ 329.481109] dump_stack+0x138/0x197 [ 329.481127] should_fail.cold+0x10f/0x159 [ 329.481142] should_failslab+0xdb/0x130 [ 329.481154] kmem_cache_alloc+0x2d7/0x780 [ 329.481167] ? lock_downgrade+0x6e0/0x6e0 [ 329.481183] get_empty_filp+0x8c/0x3f0 [ 329.481225] alloc_file+0x23/0x440 05:28:55 executing program 4: r0 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x1, 0x2) ioctl$VIDIOC_S_FREQUENCY(r0, 0x402c5639, &(0x7f0000000080)={0x0, 0x1}) [ 329.481238] __shmem_file_setup.part.0+0x1b1/0x400 [ 329.481249] ? __alloc_fd+0x1d4/0x4a0 [ 329.491713] ? shmem_fill_super+0x8c0/0x8c0 [ 329.491731] SyS_memfd_create+0x1f9/0x3a0 [ 329.491740] ? shmem_fcntl+0x130/0x130 [ 329.491749] ? do_syscall_64+0x53/0x640 [ 329.491757] ? shmem_fcntl+0x130/0x130 [ 329.491766] do_syscall_64+0x1e8/0x640 [ 329.491774] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 329.491789] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 329.491798] RIP: 0033:0x459a29 05:28:55 executing program 4: r0 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x1, 0x2) ioctl$VIDIOC_S_FREQUENCY(r0, 0x402c5639, &(0x7f0000000180)={0x0, 0x1}) setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f0000000040)=0x6, 0x4) [ 329.500005] RSP: 002b:00007fb1975c7a88 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 329.500017] RAX: ffffffffffffffda RBX: 0000000020000000 RCX: 0000000000459a29 [ 329.500022] RDX: 0000000020000028 RSI: 0000000000000000 RDI: 00000000004be948 [ 329.500028] RBP: 000000000075bf20 R08: fe03f80fe03f80ff R09: 00000000fbad8001 [ 329.500033] R10: 0000000000010000 R11: 0000000000000246 R12: 00007fb1975c86d4 [ 329.500038] R13: 00000000004c8b25 R14: 00000000004dfbc8 R15: 0000000000000003 [ 329.503018] FAULT_INJECTION: forcing a failure. [ 329.503018] name failslab, interval 1, probability 0, space 0, times 0 05:28:55 executing program 5 (fault-call:0 fault-nth:2): syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 05:28:55 executing program 3 (fault-call:0 fault-nth:5): syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 329.506154] FAULT_INJECTION: forcing a failure. [ 329.506154] name failslab, interval 1, probability 0, space 0, times 0 [ 329.511835] CPU: 0 PID: 22314 Comm: syz-executor.5 Not tainted 4.14.146 #0 [ 329.511844] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 329.511847] Call Trace: [ 329.511867] dump_stack+0x138/0x197 [ 329.511884] should_fail.cold+0x10f/0x159 [ 329.511900] should_failslab+0xdb/0x130 [ 329.511915] kmem_cache_alloc+0x2d7/0x780 [ 329.511927] ? __alloc_fd+0x1d4/0x4a0 05:28:55 executing program 4: r0 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000000)={0x0, 0x0}, &(0x7f0000000040)=0xc) r2 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = fcntl$dupfd(r2, 0x0, 0xffffffffffffffff) getsockopt$EBT_SO_GET_INIT_INFO(r3, 0x0, 0x82, &(0x7f0000000180)={'broute\x00'}, &(0x7f0000000240)=0x50) ioctl$TIOCSCTTY(r3, 0x540e, 0xffffffff) getsockopt$sock_cred(r3, 0x1, 0x11, 0x0, &(0x7f0000000640)) r4 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x4, 0x4182) r5 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) pwritev(r5, &(0x7f0000000340)=[{&(0x7f0000000140)='!', 0x1}], 0x1, 0x81805) r6 = dup2(r5, r5) ioctl$SG_GET_RESERVED_SIZE(r5, 0x2272, 0x0) ioctl$LOOP_CHANGE_FD(r4, 0x4c00, r5) write$P9_RLERRORu(r6, &(0x7f00000003c0)=ANY=[@ANYBLOB="1400000007650d6c24ed92c8397291335cf616f0010200070062726f0c62077600b365a0a59e7eea"], 0x28) getsockopt$sock_cred(r6, 0x1, 0x11, 0x0, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(r6, 0x29, 0x23, &(0x7f00000007c0)={{{@in=@remote, @in6=@initdev}}, {{@in=@empty}, 0x0, @in6=@ipv4}}, &(0x7f00000008c0)=0xe8) sendfile(r6, r4, 0x0, 0x2400003e) getsockopt$inet_sctp6_SCTP_EVENTS(r6, 0x84, 0xb, &(0x7f0000000080), &(0x7f00000000c0)=0xb) r7 = syz_open_dev$sndpcmp(&(0x7f0000000100)='/dev/snd/pcmC#D#p\x00', 0x1, 0xa0000) r8 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r8, &(0x7f0000000200)={0x0, 0x18, 0xfa00, {0x3, &(0x7f00000001c0)={0xffffffffffffffff}, 0x1, 0x928fbd0049e2916c}}, 0x20) write$RDMA_USER_CM_CMD_JOIN_IP_MCAST(r7, &(0x7f0000000180)={0x10, 0x30, 0xfa00, {&(0x7f0000000140), 0x3, {0xa, 0x4e22, 0x7, @initdev={0xfe, 0x88, [], 0x0, 0x0}, 0x10}, r9}}, 0x38) write$RDMA_USER_CM_CMD_RESOLVE_ADDR(r3, &(0x7f00000001c0)={0x15, 0x110, 0xfa00, {r9, 0xe15, 0x0, 0x0, 0x0, @in={0x2, 0x4e22, @empty}, @ib={0x1b, 0x0, 0x1000, {"44faf88c2c7d524217a227f50b7bae35"}, 0x4e35, 0x5, 0xff}}}, 0x118) keyctl$get_persistent(0x7, r1, 0x0) setuid(r1) r10 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x1, 0x2) ioctl$VIDIOC_S_FREQUENCY(r10, 0x402c5639, &(0x7f0000000180)={0x0, 0x1}) [ 329.511942] __d_alloc+0x2d/0x9f0 [ 329.511952] ? lock_downgrade+0x6e0/0x6e0 [ 329.511966] d_alloc_pseudo+0x1e/0x30 [ 329.511979] __shmem_file_setup.part.0+0xd8/0x400 [ 329.511987] ? __alloc_fd+0x1d4/0x4a0 [ 329.511996] ? shmem_fill_super+0x8c0/0x8c0 [ 329.512012] SyS_memfd_create+0x1f9/0x3a0 [ 329.512021] ? shmem_fcntl+0x130/0x130 [ 329.512031] ? do_syscall_64+0x53/0x640 [ 329.512041] ? shmem_fcntl+0x130/0x130 [ 329.512055] do_syscall_64+0x1e8/0x640 [ 329.520804] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 329.520826] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 329.520834] RIP: 0033:0x459a29 [ 329.520840] RSP: 002b:00007fc73341fa88 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 329.520858] RAX: ffffffffffffffda RBX: 0000000020000000 RCX: 0000000000459a29 [ 329.541034] RDX: 0000000020000028 RSI: 0000000000000000 RDI: 00000000004be948 [ 329.541041] RBP: 000000000075bf20 R08: fe03f80fe03f80ff R09: 00000000fbad8001 [ 329.541045] R10: 0000000000010000 R11: 0000000000000246 R12: 00007fc7334206d4 [ 329.541051] R13: 00000000004c8b25 R14: 00000000004dfbc8 R15: 0000000000000003 [ 329.654496] FAULT_INJECTION: forcing a failure. [ 329.654496] name failslab, interval 1, probability 0, space 0, times 0 [ 329.663580] CPU: 1 PID: 22313 Comm: syz-executor.1 Not tainted 4.14.146 #0 [ 329.682450] FAULT_INJECTION: forcing a failure. [ 329.682450] name failslab, interval 1, probability 0, space 0, times 0 [ 329.684320] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 329.684325] Call Trace: [ 329.684343] dump_stack+0x138/0x197 [ 329.684362] should_fail.cold+0x10f/0x159 [ 329.684385] should_failslab+0xdb/0x130 [ 329.684399] kmem_cache_alloc+0x2d7/0x780 [ 329.823929] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 329.829399] ? rcu_read_lock_sched_held+0x110/0x130 [ 329.834412] ? shmem_destroy_callback+0xa0/0xa0 [ 329.839099] shmem_alloc_inode+0x1c/0x50 [ 329.843155] alloc_inode+0x64/0x180 [ 329.846775] new_inode_pseudo+0x19/0xf0 [ 329.850747] new_inode+0x1f/0x40 [ 329.854102] shmem_get_inode+0x75/0x750 [ 329.858333] __shmem_file_setup.part.0+0x111/0x400 [ 329.863264] ? __alloc_fd+0x1d4/0x4a0 [ 329.867062] ? shmem_fill_super+0x8c0/0x8c0 [ 329.871416] SyS_memfd_create+0x1f9/0x3a0 [ 329.875560] ? shmem_fcntl+0x130/0x130 [ 329.879442] ? do_syscall_64+0x53/0x640 [ 329.883410] ? shmem_fcntl+0x130/0x130 [ 329.887469] do_syscall_64+0x1e8/0x640 [ 329.891350] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 329.896195] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 329.901381] RIP: 0033:0x459a29 [ 329.904562] RSP: 002b:00007f617e384a88 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 329.912277] RAX: ffffffffffffffda RBX: 0000000020000000 RCX: 0000000000459a29 [ 329.919712] RDX: 0000000020000028 RSI: 0000000000000000 RDI: 00000000004be948 [ 329.926970] RBP: 000000000075bf20 R08: fe03f80fe03f80ff R09: 00000000fbad8001 [ 329.934329] R10: 0000000000010000 R11: 0000000000000246 R12: 00007f617e3856d4 [ 329.941593] R13: 00000000004c8b25 R14: 00000000004dfbc8 R15: 0000000000000003 [ 329.951955] CPU: 0 PID: 22326 Comm: syz-executor.5 Not tainted 4.14.146 #0 [ 329.958989] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 329.968340] Call Trace: [ 329.970923] dump_stack+0x138/0x197 [ 329.970937] should_fail.cold+0x10f/0x159 [ 329.970951] should_failslab+0xdb/0x130 [ 329.970961] kmem_cache_alloc+0x2d7/0x780 [ 329.970971] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 329.970982] ? rcu_read_lock_sched_held+0x110/0x130 [ 329.978732] ? shmem_destroy_callback+0xa0/0xa0 [ 329.986812] shmem_alloc_inode+0x1c/0x50 [ 329.997235] alloc_inode+0x64/0x180 [ 330.005926] new_inode_pseudo+0x19/0xf0 [ 330.014270] new_inode+0x1f/0x40 [ 330.017637] shmem_get_inode+0x75/0x750 [ 330.021785] __shmem_file_setup.part.0+0x111/0x400 [ 330.021794] ? __alloc_fd+0x1d4/0x4a0 [ 330.021802] ? shmem_fill_super+0x8c0/0x8c0 [ 330.021817] SyS_memfd_create+0x1f9/0x3a0 [ 330.021826] ? shmem_fcntl+0x130/0x130 [ 330.021833] ? do_syscall_64+0x53/0x640 [ 330.021847] ? shmem_fcntl+0x130/0x130 [ 330.051646] do_syscall_64+0x1e8/0x640 [ 330.055573] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 330.060868] entry_SYSCALL_64_after_hwframe+0x42/0xb7 05:28:55 executing program 0: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', 0x0, 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) 05:28:55 executing program 1 (fault-call:0 fault-nth:3): syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000140)='./file0\x00', 0xff, 0x1, &(0x7f0000000000)=[{&(0x7f0000000180)="8da4363ac0ed0000000000000001004d0100000000000000000000000009000000000000009748aeb81e1b00920efd9a0000010000000000098cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 330.066063] RIP: 0033:0x459a29 [ 330.072988] RSP: 002b:00007fc73341fa88 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 330.080708] RAX: ffffffffffffffda RBX: 0000000020000000 RCX: 0000000000459a29 [ 330.087981] RDX: 0000000020000028 RSI: 0000000000000000 RDI: 00000000004be948 [ 330.095385] RBP: 000000000075bf20 R08: fe03f80fe03f80ff R09: 00000000fbad8001 [ 330.102658] R10: 0000000000010000 R11: 0000000000000246 R12: 00007fc7334206d4 [ 330.109936] R13: 00000000004c8b25 R14: 00000000004dfbc8 R15: 0000000000000003 05:28:55 executing program 5 (fault-call:0 fault-nth:3): syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 330.131077] CPU: 0 PID: 22325 Comm: syz-executor.3 Not tainted 4.14.146 #0 [ 330.138133] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 330.147506] Call Trace: [ 330.150098] dump_stack+0x138/0x197 [ 330.153737] should_fail.cold+0x10f/0x159 [ 330.157900] should_failslab+0xdb/0x130 [ 330.161885] kmem_cache_alloc+0x2d7/0x780 [ 330.166300] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 330.172457] ? check_preemption_disabled+0x3c/0x250 [ 330.177571] selinux_file_alloc_security+0xb4/0x190 [ 330.182589] security_file_alloc+0x6d/0xa0 [ 330.186948] get_empty_filp+0x162/0x3f0 [ 330.190930] alloc_file+0x23/0x440 [ 330.194466] __shmem_file_setup.part.0+0x1b1/0x400 [ 330.199377] ? __alloc_fd+0x1d4/0x4a0 [ 330.203178] ? shmem_fill_super+0x8c0/0x8c0 [ 330.207497] SyS_memfd_create+0x1f9/0x3a0 [ 330.211638] ? shmem_fcntl+0x130/0x130 [ 330.215527] ? do_syscall_64+0x53/0x640 [ 330.219483] ? shmem_fcntl+0x130/0x130 [ 330.223358] do_syscall_64+0x1e8/0x640 [ 330.227225] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 330.232081] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 330.237346] RIP: 0033:0x459a29 [ 330.240523] RSP: 002b:00007fb1975c7a88 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 330.248232] RAX: ffffffffffffffda RBX: 0000000020000000 RCX: 0000000000459a29 [ 330.255490] RDX: 0000000020000028 RSI: 0000000000000000 RDI: 00000000004be948 [ 330.262784] RBP: 000000000075bf20 R08: fe03f80fe03f80ff R09: 00000000fbad8001 [ 330.270040] R10: 0000000000010000 R11: 0000000000000246 R12: 00007fb1975c86d4 [ 330.277300] R13: 00000000004c8b25 R14: 00000000004dfbc8 R15: 0000000000000003 [ 330.312713] FAULT_INJECTION: forcing a failure. [ 330.312713] name failslab, interval 1, probability 0, space 0, times 0 [ 330.333431] FAULT_INJECTION: forcing a failure. [ 330.333431] name failslab, interval 1, probability 0, space 0, times 0 [ 330.347772] CPU: 0 PID: 22343 Comm: syz-executor.1 Not tainted 4.14.146 #0 [ 330.354824] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 330.354829] Call Trace: [ 330.354848] dump_stack+0x138/0x197 [ 330.354866] should_fail.cold+0x10f/0x159 [ 330.354883] should_failslab+0xdb/0x130 [ 330.354894] kmem_cache_alloc+0x2d7/0x780 [ 330.354906] ? shmem_alloc_inode+0x1c/0x50 [ 330.354917] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 330.354936] selinux_inode_alloc_security+0xb6/0x2a0 [ 330.354950] security_inode_alloc+0x94/0xd0 [ 330.354960] inode_init_always+0x552/0xaf0 [ 330.354971] alloc_inode+0x81/0x180 [ 330.354980] new_inode_pseudo+0x19/0xf0 [ 330.354989] new_inode+0x1f/0x40 [ 330.354996] shmem_get_inode+0x75/0x750 [ 330.355009] __shmem_file_setup.part.0+0x111/0x400 [ 330.370583] ? __alloc_fd+0x1d4/0x4a0 [ 330.378683] ? shmem_fill_super+0x8c0/0x8c0 [ 330.378703] SyS_memfd_create+0x1f9/0x3a0 [ 330.378713] ? shmem_fcntl+0x130/0x130 [ 330.409745] ? do_syscall_64+0x53/0x640 [ 330.409760] ? shmem_fcntl+0x130/0x130 [ 330.409773] do_syscall_64+0x1e8/0x640 [ 330.417088] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 330.425966] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 330.425977] RIP: 0033:0x459a29 [ 330.425981] RSP: 002b:00007f617e384a88 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 330.434079] RAX: ffffffffffffffda RBX: 0000000020000000 RCX: 0000000000459a29 [ 330.434085] RDX: 0000000020000028 RSI: 0000000000000000 RDI: 00000000004be948 [ 330.434089] RBP: 000000000075bf20 R08: fe03f80fe03f80ff R09: 00000000fbad8001 [ 330.434094] R10: 0000000000010000 R11: 0000000000000246 R12: 00007f617e3856d4 [ 330.434098] R13: 00000000004c8b25 R14: 00000000004dfbc8 R15: 0000000000000003 [ 330.471245] CPU: 1 PID: 22347 Comm: syz-executor.5 Not tainted 4.14.146 #0 [ 330.482553] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 330.482559] Call Trace: [ 330.482578] dump_stack+0x138/0x197 [ 330.482595] should_fail.cold+0x10f/0x159 [ 330.482613] should_failslab+0xdb/0x130 [ 330.542531] kmem_cache_alloc+0x2d7/0x780 [ 330.546665] ? shmem_alloc_inode+0x1c/0x50 [ 330.550883] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 330.557537] selinux_inode_alloc_security+0xb6/0x2a0 [ 330.562625] security_inode_alloc+0x94/0xd0 [ 330.566997] inode_init_always+0x552/0xaf0 [ 330.571215] alloc_inode+0x81/0x180 [ 330.574837] new_inode_pseudo+0x19/0xf0 [ 330.578807] new_inode+0x1f/0x40 [ 330.582171] shmem_get_inode+0x75/0x750 [ 330.586149] __shmem_file_setup.part.0+0x111/0x400 [ 330.591070] ? __alloc_fd+0x1d4/0x4a0 [ 330.594860] ? shmem_fill_super+0x8c0/0x8c0 [ 330.599169] SyS_memfd_create+0x1f9/0x3a0 [ 330.603314] ? shmem_fcntl+0x130/0x130 [ 330.607191] ? do_syscall_64+0x53/0x640 [ 330.611156] ? shmem_fcntl+0x130/0x130 [ 330.615053] do_syscall_64+0x1e8/0x640 [ 330.618922] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 330.623753] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 330.628926] RIP: 0033:0x459a29 [ 330.632101] RSP: 002b:00007fc73341fa88 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 330.639813] RAX: ffffffffffffffda RBX: 0000000020000000 RCX: 0000000000459a29 [ 330.647261] RDX: 0000000020000028 RSI: 0000000000000000 RDI: 00000000004be948 [ 330.654515] RBP: 000000000075bf20 R08: fe03f80fe03f80ff R09: 00000000fbad8001 [ 330.661777] R10: 0000000000010000 R11: 0000000000000246 R12: 00007fc7334206d4 [ 330.669030] R13: 00000000004c8b25 R14: 00000000004dfbc8 R15: 0000000000000003 05:28:56 executing program 1 (fault-call:0 fault-nth:4): syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000140)='./file0\x00', 0xff, 0x1, &(0x7f0000000000)=[{&(0x7f0000000180)="8da4363ac0ed0000000000000001004d0100000000000000000000000009000000000000009748aeb81e1b00920efd9a0000010000000000098cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 05:28:56 executing program 3 (fault-call:0 fault-nth:6): syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 05:28:56 executing program 5 (fault-call:0 fault-nth:4): syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 05:28:56 executing program 4: r0 = syz_open_dev$radio(&(0x7f0000000000)='/dev/ra`io\xe1u', 0x1, 0x2) ioctl$VIDIOC_S_FREQUENCY(r0, 0x402c5639, &(0x7f0000000180)={0x0, 0x1}) r1 = socket$alg(0x26, 0x5, 0x0) bind$alg(r1, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'ghash-generic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, 0x0, 0x0) ioctl$sock_TIOCOUTQ(r1, 0x5411, &(0x7f0000000040)) 05:28:56 executing program 2: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000280)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = syz_open_dev$vcsa(&(0x7f0000000300)='/dev/vcsa#\x00', 0x80000001, 0x20000) getsockopt$inet6_IPV6_IPSEC_POLICY(r1, 0x29, 0x22, 0x0, &(0x7f0000000780)) r2 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = fcntl$dupfd(r2, 0x0, 0xffffffffffffffff) getsockopt$EBT_SO_GET_INIT_INFO(r3, 0x0, 0x82, &(0x7f0000000180)={'broute\x00'}, &(0x7f0000000240)=0x50) ioctl$TIOCSCTTY(r3, 0x540e, 0xffffffff) getsockopt$sock_cred(r3, 0x1, 0x11, 0x0, &(0x7f0000000640)) ioctl$VHOST_SET_VRING_CALL(r1, 0x4008af21, &(0x7f0000000100)={0x0, r3}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r4 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/qat_adf_ctl\x00', 0x5040, 0x0) ioctl$DRM_IOCTL_AGP_RELEASE(r4, 0x6431) 05:28:56 executing program 0: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', 0x0, 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) [ 330.749345] FAULT_INJECTION: forcing a failure. [ 330.749345] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 330.772655] CPU: 0 PID: 22363 Comm: syz-executor.3 Not tainted 4.14.146 #0 [ 330.774949] FAULT_INJECTION: forcing a failure. [ 330.774949] name failslab, interval 1, probability 0, space 0, times 0 [ 330.779724] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 330.779730] Call Trace: [ 330.779748] dump_stack+0x138/0x197 [ 330.779769] should_fail.cold+0x10f/0x159 [ 330.811497] ? __might_sleep+0x93/0xb0 [ 330.815465] __alloc_pages_nodemask+0x1d6/0x7a0 [ 330.820145] ? __alloc_pages_slowpath+0x2930/0x2930 [ 330.825158] ? lock_downgrade+0x6e0/0x6e0 [ 330.829307] alloc_pages_vma+0xc9/0x4c0 [ 330.833280] shmem_alloc_page+0xf6/0x1a0 [ 330.837333] ? shmem_swapin+0x1a0/0x1a0 [ 330.841299] ? cred_has_capability+0x142/0x290 [ 330.845872] ? check_preemption_disabled+0x3c/0x250 [ 330.850880] ? __this_cpu_preempt_check+0x1d/0x30 [ 330.855709] ? percpu_counter_add_batch+0x112/0x160 [ 330.860718] ? __vm_enough_memory+0x26a/0x490 [ 330.865208] shmem_alloc_and_acct_page+0x12a/0x680 [ 330.870131] shmem_getpage_gfp+0x3e7/0x25d0 [ 330.874453] ? shmem_add_to_page_cache+0x860/0x860 [ 330.879372] ? iov_iter_fault_in_readable+0x1da/0x3c0 [ 330.884566] shmem_write_begin+0xfd/0x1b0 [ 330.888704] ? trace_hardirqs_on_caller+0x400/0x590 [ 330.893709] generic_perform_write+0x1f8/0x480 [ 330.898288] ? page_endio+0x530/0x530 [ 330.902077] ? current_time+0xb0/0xb0 [ 330.906128] ? generic_file_write_iter+0x9a/0x660 [ 330.910962] __generic_file_write_iter+0x239/0x5b0 [ 330.916009] generic_file_write_iter+0x303/0x660 [ 330.920935] __vfs_write+0x4a7/0x6b0 [ 330.924647] ? selinux_file_open+0x420/0x420 [ 330.929062] ? kernel_read+0x120/0x120 [ 330.932952] ? check_preemption_disabled+0x3c/0x250 [ 330.937961] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 330.943405] ? rcu_sync_lockdep_assert+0x6d/0xb0 [ 330.948148] ? __sb_start_write+0x153/0x2f0 [ 330.952461] vfs_write+0x198/0x500 [ 330.955994] SyS_pwrite64+0x115/0x140 [ 330.959791] ? SyS_pread64+0x140/0x140 [ 330.963673] ? do_syscall_64+0x53/0x640 [ 330.967635] ? SyS_pread64+0x140/0x140 [ 330.971512] do_syscall_64+0x1e8/0x640 [ 330.975386] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 330.980225] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 330.985408] RIP: 0033:0x413977 [ 330.988624] RSP: 002b:00007fb1975c7a80 EFLAGS: 00000293 ORIG_RAX: 0000000000000012 [ 330.996325] RAX: ffffffffffffffda RBX: 0000000020000010 RCX: 0000000000413977 [ 331.003692] RDX: 0000000000000048 RSI: 0000000020000200 RDI: 0000000000000004 [ 331.011646] RBP: 0000000000000000 R08: fe03f80fe03f80ff R09: 00000000fbad8001 [ 331.018903] R10: 0000000000010000 R11: 0000000000000293 R12: 0000000000000004 [ 331.026248] R13: 00000000004c8b25 R14: 00000000004dfbc8 R15: 0000000000000003 [ 331.033780] CPU: 1 PID: 22365 Comm: syz-executor.1 Not tainted 4.14.146 #0 [ 331.040815] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 331.050168] Call Trace: [ 331.052968] dump_stack+0x138/0x197 [ 331.056596] should_fail.cold+0x10f/0x159 [ 331.060734] should_failslab+0xdb/0x130 [ 331.064791] kmem_cache_alloc+0x2d7/0x780 [ 331.068922] ? lock_downgrade+0x6e0/0x6e0 [ 331.073053] get_empty_filp+0x8c/0x3f0 [ 331.076921] alloc_file+0x23/0x440 [ 331.080463] __shmem_file_setup.part.0+0x1b1/0x400 [ 331.085373] ? __alloc_fd+0x1d4/0x4a0 [ 331.089173] ? shmem_fill_super+0x8c0/0x8c0 [ 331.093489] SyS_memfd_create+0x1f9/0x3a0 [ 331.097617] ? shmem_fcntl+0x130/0x130 [ 331.101489] ? do_syscall_64+0x53/0x640 [ 331.105580] ? shmem_fcntl+0x130/0x130 [ 331.109460] do_syscall_64+0x1e8/0x640 [ 331.113334] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 331.118177] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 331.123360] RIP: 0033:0x459a29 [ 331.126550] RSP: 002b:00007f617e384a88 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 331.134250] RAX: ffffffffffffffda RBX: 0000000020000000 RCX: 0000000000459a29 [ 331.141601] RDX: 0000000020000028 RSI: 0000000000000000 RDI: 00000000004be948 05:28:56 executing program 1 (fault-call:0 fault-nth:5): syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000140)='./file0\x00', 0xff, 0x1, &(0x7f0000000000)=[{&(0x7f0000000180)="8da4363ac0ed0000000000000001004d0100000000000000000000000009000000000000009748aeb81e1b00920efd9a0000010000000000098cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 331.148854] RBP: 000000000075bf20 R08: fe03f80fe03f80ff R09: 00000000fbad8001 [ 331.156108] R10: 0000000000010000 R11: 0000000000000246 R12: 00007f617e3856d4 [ 331.163371] R13: 00000000004c8b25 R14: 00000000004dfbc8 R15: 0000000000000003 05:28:57 executing program 3 (fault-call:0 fault-nth:7): syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 331.228762] FAULT_INJECTION: forcing a failure. [ 331.228762] name failslab, interval 1, probability 0, space 0, times 0 [ 331.257284] FAULT_INJECTION: forcing a failure. [ 331.257284] name failslab, interval 1, probability 0, space 0, times 0 [ 331.299220] CPU: 0 PID: 22374 Comm: syz-executor.1 Not tainted 4.14.146 #0 [ 331.306284] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 331.315647] Call Trace: [ 331.318247] dump_stack+0x138/0x197 [ 331.321892] should_fail.cold+0x10f/0x159 [ 331.326055] should_failslab+0xdb/0x130 [ 331.330067] kmem_cache_alloc+0x2d7/0x780 [ 331.332490] FAULT_INJECTION: forcing a failure. [ 331.332490] name failslab, interval 1, probability 0, space 0, times 0 [ 331.334223] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 331.351504] ? check_preemption_disabled+0x3c/0x250 [ 331.356516] selinux_file_alloc_security+0xb4/0x190 [ 331.361525] security_file_alloc+0x6d/0xa0 [ 331.365844] get_empty_filp+0x162/0x3f0 [ 331.369807] alloc_file+0x23/0x440 [ 331.373349] __shmem_file_setup.part.0+0x1b1/0x400 [ 331.378263] ? __alloc_fd+0x1d4/0x4a0 [ 331.382138] ? shmem_fill_super+0x8c0/0x8c0 [ 331.386450] SyS_memfd_create+0x1f9/0x3a0 [ 331.390596] ? shmem_fcntl+0x130/0x130 [ 331.394470] ? do_syscall_64+0x53/0x640 [ 331.398521] ? shmem_fcntl+0x130/0x130 [ 331.402407] do_syscall_64+0x1e8/0x640 [ 331.406279] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 331.411111] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 331.416288] RIP: 0033:0x459a29 [ 331.419461] RSP: 002b:00007f617e384a88 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 331.427172] RAX: ffffffffffffffda RBX: 0000000020000000 RCX: 0000000000459a29 [ 331.434441] RDX: 0000000020000028 RSI: 0000000000000000 RDI: 00000000004be948 [ 331.441708] RBP: 000000000075bf20 R08: fe03f80fe03f80ff R09: 00000000fbad8001 [ 331.448961] R10: 0000000000010000 R11: 0000000000000246 R12: 00007f617e3856d4 [ 331.456229] R13: 00000000004c8b25 R14: 00000000004dfbc8 R15: 0000000000000003 [ 331.463512] CPU: 1 PID: 22390 Comm: syz-executor.3 Not tainted 4.14.146 #0 [ 331.470534] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 331.479888] Call Trace: [ 331.482485] dump_stack+0x138/0x197 [ 331.486120] should_fail.cold+0x10f/0x159 [ 331.490310] should_failslab+0xdb/0x130 [ 331.494287] kmem_cache_alloc+0x47/0x780 [ 331.498342] ? __alloc_pages_slowpath+0x2930/0x2930 [ 331.503353] ? lock_downgrade+0x6e0/0x6e0 [ 331.507501] radix_tree_node_alloc.constprop.0+0x1c7/0x310 [ 331.513124] __radix_tree_create+0x337/0x4d0 [ 331.517536] __radix_tree_insert+0xab/0x570 [ 331.521856] ? __radix_tree_create+0x4d0/0x4d0 [ 331.526435] shmem_add_to_page_cache+0x5a4/0x860 [ 331.531201] ? shmem_writepage+0xbb0/0xbb0 [ 331.535429] ? __radix_tree_preload+0x1d2/0x260 [ 331.540094] shmem_getpage_gfp+0x1757/0x25d0 [ 331.544500] ? shmem_add_to_page_cache+0x860/0x860 [ 331.549423] ? iov_iter_fault_in_readable+0x1da/0x3c0 [ 331.554605] shmem_write_begin+0xfd/0x1b0 [ 331.558756] ? trace_hardirqs_on_caller+0x400/0x590 [ 331.563764] generic_perform_write+0x1f8/0x480 [ 331.568341] ? page_endio+0x530/0x530 [ 331.572132] ? current_time+0xb0/0xb0 [ 331.575930] ? generic_file_write_iter+0x9a/0x660 [ 331.580764] __generic_file_write_iter+0x239/0x5b0 [ 331.585688] generic_file_write_iter+0x303/0x660 [ 331.590453] __vfs_write+0x4a7/0x6b0 [ 331.594686] ? selinux_file_open+0x420/0x420 [ 331.599097] ? kernel_read+0x120/0x120 [ 331.602995] ? check_preemption_disabled+0x3c/0x250 [ 331.608012] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 331.613457] ? rcu_sync_lockdep_assert+0x6d/0xb0 [ 331.618209] ? __sb_start_write+0x153/0x2f0 [ 331.622530] vfs_write+0x198/0x500 [ 331.626068] SyS_pwrite64+0x115/0x140 [ 331.629875] ? SyS_pread64+0x140/0x140 [ 331.633781] ? do_syscall_64+0x53/0x640 [ 331.637746] ? SyS_pread64+0x140/0x140 [ 331.642328] do_syscall_64+0x1e8/0x640 [ 331.646204] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 331.651047] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 331.656224] RIP: 0033:0x413977 [ 331.659416] RSP: 002b:00007fb1975c7a80 EFLAGS: 00000293 ORIG_RAX: 0000000000000012 [ 331.667123] RAX: ffffffffffffffda RBX: 0000000020000010 RCX: 0000000000413977 [ 331.674393] RDX: 0000000000000048 RSI: 0000000020000200 RDI: 0000000000000004 [ 331.681662] RBP: 0000000000000000 R08: fe03f80fe03f80ff R09: 00000000fbad8001 [ 331.688928] R10: 0000000000010000 R11: 0000000000000293 R12: 0000000000000004 05:28:57 executing program 1 (fault-call:0 fault-nth:6): syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000140)='./file0\x00', 0xff, 0x1, &(0x7f0000000000)=[{&(0x7f0000000180)="8da4363ac0ed0000000000000001004d0100000000000000000000000009000000000000009748aeb81e1b00920efd9a0000010000000000098cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 331.688935] R13: 00000000004c8b25 R14: 00000000004dfbc8 R15: 0000000000000003 [ 331.719834] CPU: 0 PID: 22379 Comm: syz-executor.5 Not tainted 4.14.146 #0 [ 331.727054] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 331.728646] FAULT_INJECTION: forcing a failure. [ 331.728646] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 331.736409] Call Trace: [ 331.736426] dump_stack+0x138/0x197 [ 331.736442] should_fail.cold+0x10f/0x159 [ 331.736456] should_failslab+0xdb/0x130 [ 331.736467] kmem_cache_alloc+0x2d7/0x780 [ 331.736480] ? lock_downgrade+0x6e0/0x6e0 [ 331.736492] get_empty_filp+0x8c/0x3f0 [ 331.736508] alloc_file+0x23/0x440 [ 331.778252] __shmem_file_setup.part.0+0x1b1/0x400 [ 331.783183] ? __alloc_fd+0x1d4/0x4a0 [ 331.786977] ? shmem_fill_super+0x8c0/0x8c0 [ 331.791301] SyS_memfd_create+0x1f9/0x3a0 [ 331.795446] ? shmem_fcntl+0x130/0x130 05:28:57 executing program 4: r0 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = fcntl$dupfd(r0, 0x0, 0xffffffffffffffff) getsockopt$EBT_SO_GET_INIT_INFO(r1, 0x0, 0x82, &(0x7f0000000180)={'broute\x00'}, &(0x7f0000000240)=0x50) ioctl$TIOCSCTTY(r1, 0x540e, 0xffffffff) getsockopt$sock_cred(r1, 0x1, 0x11, 0x0, &(0x7f0000000640)) r2 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x4, 0x4182) r3 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) pwritev(r3, &(0x7f0000000340)=[{&(0x7f0000000140)='!', 0x1}], 0x1, 0x81805) r4 = dup2(r3, r3) ioctl$SG_GET_RESERVED_SIZE(r3, 0x2272, 0x0) ioctl$LOOP_CHANGE_FD(r2, 0x4c00, r3) write$P9_RLERRORu(r4, &(0x7f00000032c0)=ANY=[@ANYBLOB="1400000007650d0900ed92c83972911a002c1bd718335cd45337f616f011ebf92fe2cb6f49fc62077600b365a0a59e7eeaa3f1b7a06fbc2e008cb4fbd72ba5963d2f1d80b275bfa9606222bc3375ccb022e35c55e401878b8336f42e64539a0a841e0b9b4143e2"], 0x28) getsockopt$sock_cred(r4, 0x1, 0x11, 0x0, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(r4, 0x29, 0x23, &(0x7f00000007c0)={{{@in=@remote, @in6=@initdev}}, {{@in=@empty}, 0x0, @in6=@ipv4}}, &(0x7f00000008c0)=0xe8) sendfile(r4, r2, 0x0, 0x2400003e) r5 = openat$proc_capi20ncci(0xffffffffffffff9c, &(0x7f0000000380)='/proc/capi/capi20ncci\x00', 0x2002, 0x0) bpf$BPF_MAP_FREEZE(0x16, &(0x7f0000003280)=r5, 0x4) r6 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x4, 0x4182) r7 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) pwritev(r7, &(0x7f0000000340)=[{&(0x7f0000000140)='!', 0x1}], 0x1, 0x81805) r8 = dup2(r7, r7) ioctl$SG_GET_RESERVED_SIZE(r7, 0x2272, 0x0) ioctl$LOOP_CHANGE_FD(r6, 0x4c00, r7) write$P9_RLERRORu(r8, &(0x7f00000003c0)=ANY=[@ANYBLOB="1400000007650d6c24ed92c8397291335cf616f0010200070062726f0c62077600b365a0a59e7eea"], 0x28) getsockopt$sock_cred(r8, 0x1, 0x11, 0x0, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(r8, 0x29, 0x23, &(0x7f00000007c0)={{{@in=@remote, @in6=@initdev}}, {{@in=@empty}, 0x0, @in6=@ipv4}}, &(0x7f00000008c0)=0xe8) sendfile(r8, r6, 0x0, 0x2400003e) r9 = ioctl$LOOP_CTL_GET_FREE(r8, 0x4c82) ioctl$LOOP_CTL_REMOVE(r5, 0x4c81, r9) sendmmsg$alg(r4, &(0x7f0000003100)=[{0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000080)="3a693cb5b423c5b02e72b0dff6f76f8bfd40786931065ebd797b59572f834db0e1014af0022176264131b28f355dd113a15bbeb958affb3007a1d761cd101198874b7f0dfa9ccb6e667711887da7314ecba25e63fa8fb4695c46cbf719e6bc0c37508da92053c40f4031a1", 0x6b}, {&(0x7f0000000280)="26afd2461463f2dca3728eaf12955f242b42b9557299a9f39c9a764248dc5240e766ed48379039d0e82364d57be26bccf1962a7d0412d9ec39b1836dd266af1aa0e4e6984f60c1e194f587f0c87d6f2f7f8f7e974b8db86f38d390058b028af942e32e88863c8e25e40cfd7afed595978babd224b4b5f423ab3e593de1867d36832383c22b409702710de4275be1015161817f76ffb2ff41f9085631102f092e9de0ebbfa7c502f2ca0c89028535285023c506768650cf2db9ca7221a2af0b1db9", 0xc1}], 0x2, &(0x7f0000000140)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18, 0x800}, {0x0, 0x0, &(0x7f0000000780)=[{&(0x7f0000000200)="c17fc49632de5d489176550c41e81ce9d77e67e550d0a14a67a4c9805a4b5195b6d04e83e03df564ba22b30c82107d4d2b", 0x31}, {&(0x7f0000000380)}, {&(0x7f00000003c0)="3f6d06f589de03e871fc4a419fd33dcb93f282b2c289a70d1de9a792f69464452399abebb77804c23ba5e1eacc4eaf16beb00dded9cffb8fb76bea355e08dab0532cf7d4ca262bde2f4d36ae6cecdce051ab2f7b16bc8192d88bd0eea2f3e7516e9c9df4047083624add34a43e991bafce236b2f8f", 0x75}, {&(0x7f0000000440)="0a6658c57fbe849196124623184e75094bfab6ac6b8053f161be629bdf9e6301299b43d2855f3f04e93be6ebeceaa6d00ac9ff9ccfddbed945a04a7ee249d020f1035596f7a0e99fdf8e3c9dd8bbdeab5d375208b7b145ffa1c63c06b163760cc404c0617a97b626765979e290767e9dd10d9d2e955800af9741d730c6c1d3b4829c148dc7fe3a9424e708d3950dcc017f6fa1aba9d58d78aa9d3f1a96e59dbc4021f77a4940ab9e98a3031a390d09b407bab416f96da5", 0xb7}, {&(0x7f0000000500)="caf9b65ad667bccb5a4b47131aa630a56d19162a5ca4af0a30fa758fa996f91453a7a6113b8fd10bf1a83c1bfe714076d672356c2e1b3bcc286a65e43bc4a3ae8304e24da7139b1ac658091415fe1b9a1502590c66d990f79f0a48ec91ea40b1b22a0ab19dd5cb2d8eac345c49d161903ef11976e9f1ba98d417628aeb428fe37ec91a7570e25f2fae0c994adb936fdc2bf55007fe861415af94f034816f1d15115f209ae71f435fa860ecdf0c2600f227bd852762280b06fec8b8aca8e630a5f75acd4f1d449fc3d7a9", 0xca}, {&(0x7f0000000680)="35d8e8659d373d472383b055df00e9a1eaa041a0d49c85623a28cf787987b09265f4d95a4e1b495fce7dc0e68dac279ef4300ff9105c222af38b85219966c90fef5468944b5402ac6c1e8c19dd2c84087e615258799c27a7aacf3472d3d45e04e9030009dc85a9f9ac8b1b4d907c7ae69164c32899fbdd7a4c04e35e1ffec92a5e5d4f9a3b7ce60fe3b87d0592a7b82ad3af2879efd1549b1d457b2cfe12229de41638857c51368fcc2302dbfa98113c9a7d900c55ae9a09c27d8a87760a49db59de2dd882399dd7bac094d4eda5b5f9aab7db0cbb5818be09ec6dda2e52", 0xde}], 0x6, &(0x7f0000000600)=[@assoc={0x18, 0x117, 0x4, 0x8001}], 0x18}, {0x0, 0x0, &(0x7f0000000880)=[{&(0x7f0000000800)="e5628e065be9298bc44fd88328f7b192221690e4447420280d9f5fa687767123d5226648e7075d3826d9464c7fea888078dcdf78907a30c0717ad8302acdaf342b30e00cb1915524d33e216025634e144ea9f28987dac0fb0028b4b6f16678a7312b995a0c27b62e09331ae1db66", 0x6e}], 0x1, &(0x7f00000008c0)=[@op={0x18, 0x117, 0x3, 0x1}, @op={0x18, 0x117, 0x3, 0x1}], 0x30, 0x800}, {0x0, 0x0, &(0x7f0000001d00)=[{&(0x7f0000000900)="653ace829697d028197f3568dd62a705918106b8f9578da3b5ee2928495096534ecbae12c94da6c25f5a781c418f192df94b287575a28ebcb896f969df2b8e8dc561d814aa181696827d10540341c1dcb5448ea5f5ed5b460d7f086231bbcfe1b073d586ecde01bab41445cdde65c7bef14f008c78221be45f06c9358e43dc4b6b6f60a8a64170291232fe2354a77d45dae42498673a0e14394176a0e0aa5ab4567f58bbabf9f0620ae1000118b74fe58d724dd56d3781015aa6958a3cff13789a732019dbc50f37f4af2752ed653414ba602ad107d90dcd4a7eb94503c0d9a51e60bed7d26c4dd09b508f97c9d098534b3ade5e121aca7d50ba6e063fc273eaa250f791ea67cb3bc7cb89e19136e921f2e3fab40f42be6e1c498f2e793a84d1f81d0728525f219c930a56bd739d5342c06d58c7eff5d1ae41c1add195ddb6c1d8c97f9a494a0193a5bc96024665d58739507d25a42792fc28e74038edff1e3b29ba28edc5f3b686a46bcea39daea2dfc469f1db1994962b8e633cbebcafba63dc37cb2d8a8a45b8c8753f4eb1e0796b178f713ba23f52adc48fc30b7802428607586fac0f7184e96d186e4e231948326f17132da951afea0dc2bc0cbc70cf0eee7ae02803c0ab4619dc09ceb5ea95b8abb36d2c2ebb05e0a5d912b559484f5ea07fb002552fd1be606c954a2a4734f9cd2cff1e7e59e3bef37173f6e0b0d7f58c711325ab920553fdc9974d7fcf3ca4aa14cbcfc215347b6ff2fc69ed43c83e45c5221c1435a60d836af281b7001544cdf846bbde44c69943c536f01880c50971c9a073a8cb5bebdba72bd3c01c46dee8f13a5eb5f2acd8422cffb1a208883bc108d213bc754fab7c5d501e9a9404b0bd3072224452966c74ce9317f33302f1ab727cba28bf56f686077f7e4ed6ddb3ae04ad40d01947fe4fc2df1f7a406d3ecdf0a31c54b8d5d52ad4e3c64d3adff8cb95fe64996bb79269767aa00af2fbf9a5459e000baa0c63fe52909b71842fc15def06584a1fa40a4de3119811913501280b5b146d9ee51713a4fd665cd68e2a42c517173d63430bffd60c75f484fc8b7926e8ab186fbceea0f3728bad2f966568da47815c2d945ff99253d34d9348d618ca2ea694d24c282a9745e9cf2257829f6f9729f52103f08c3caff54191a533a48cd019282c1461ead35cffc0b0d310445028b38d7248aca54aae6a953406e92fe08325c6812e74a4cb0d91e78c2a7a1ebcbce2567be46cf40b8cc9581f66fccec458c48266ef2a76cb8c07b54675c35e033a6caffa6e98b734d9155c0497b57c2d9ff78bd1acecbae6c5268450c7a78e4a164844e6b5febc6b0dd0c56c7608b2f482c35750f15cfd3819174eacd1bf629620b795a2d69bc63b104c4a2ce80bf8281c91e390d76d808c32c3798afd4d919947fe53c04ba9a7d6af76689f5d9582b2712789c14db1236d25308e3db66ca28d5391fcc759c9b05d002efb7c3e84df48024b410873ad3b036109bee34bf48a86f75c629ab3f2023d4c9e321e80f8014f72ec58c7e0635c2186da3d768a7360a4ab4f730beb07d25dc93cb098a660825875d44592c546753c982e3ad2d8b1fefaaf453afafc9e66a035fbd4afca704041d8d118fc8967d6e78d44c96e6333f41480370848ff33efacbba5887a50e68cfe76e3370be6493fe2079a31a2e380a6b78c55e938aaef18ba97672f0d8b89af615dd3bd9491315b0c89a765c91c33392516c716eebd652a914f0d4b519d7d32df514877ec985ca346ba5e2328df9710a569ecaa2a8e272f60abad03e7c8ca3e34b69bb72995767d8a9dfdb04797292a80170b924054b6289d0d2f228a365cb1418e5e3c092a581c41f872b32b3d9c73e6a04d6ae513c1914d9b729af3e57300e69a64fb47b1c696ffa3a975c048c3bd1967af509cd2df3969967b5e3a010499494fc3be2ff98bfb45e9776c46fd0f3ac9d9d201d9f2bfd9c910e6c182a9f07b2ca1441887232735ab8a041d2c3269e0d76acef31bed15a486ddced56fa108c0c52da9631daaea064cac7b565b8b9536b5b2045580b88b94ee4d9dce388c126029dc53d717ac4fbb264b7ff45a88aa466c44b44fa100863de7d6e2c6cbc6eaf891e9982d05193431b7990554c014fc806d4b0043e68450917d5b1663bade5cc5af9cf5be5616490df48630fdcb8f5715547dfb826c2752e18a5b626926504a1dac446f5b839d51ef42b55cdcf44a99f3d1f9230112a4f1942c8e439e9b3636c5907784dd4252934dc31015fc9841760d48e4ee2546f0589d46760c48d355cb752f41f0709d4ef54d5e9925b815a6a491ecdb4c8a18f9aae8fb74e5f4abcadd573d151adb75872ec23ad2cec90d773377728903decb792565824abd229d2434b952c4c396d37e49362b601a455fe202ac6b14a0b44e247c48d0895c13fcbc0dedac8af7971bc62dc82c1d8770a7e98a0d106f174dd4b612f0f022202ebecac8eb1e3d5cb0d809d66dca2b9f502affbbff79c8f2e02d3908e1ec5c2180a5a7a1fbf750820c292fc43399178db9463b85145105862d69462f03a45cb53d88543eb973273b8f139e835f6a32c02c865a896f33745a5d19e9c7e33f5000ad7a717c78441a700f9a6e48374e8bb16b7d3246dc2e7c21ae6b6982f3f97014fcc5637fabc3e39b17babc6ee33a432654e0fc804b8c3bd330c45476935b8dbcafef7158e51f4b1755b57115ebe06e271032473ec3f88a80ffee37187b5eac6dc2af81771911d7844a90921025082bbf7e6b61e24d2002146068b3b8b3cca6bf5546637b4cfc2ed3d0aed920c23148f5a2110cf6d7c67e8cd189da9ff7d913df0a199865b6ae55889f71fcebbe7bf43f4c6027aba056ed30789dedad5d4a99000ff232bf802d222c0f8a1740548d67b27d0b3add56adfca603c4b4c4b38036e6c545599caff1a4dc9ed9b901564f23500fc5329babfe2776dc8f9adc6b354df98cf271521b58cca160764d1b7f7d44a4c0c276f2e9c3445d5694ea00c59264ee6b4adaf7f679243b78c5b476767a296ddf8b1d78d428bf66083f0c9df93f9dad4da42a192d90fb9757cd1643b948b86ab1f9886429de434c29faa6054279230cc346680cce3a7c67c2528284db8c73a90504268ebffefffcca3be92f569b157392d436d6128e1072b2ae5e00164df15fd4fbeaf5682748b9ecca58c11c36163ca16dee6334ece1590158b79dd9caa8ddec814c0fd740b234531897616d093817dd7194e1fd64198303f7e723d8bd65de60f1f5df2b95ced67a34076011dde97baf3918278ae1a493c1c9f27df1d007a68dafcf66ad1f09f2b054eca9f1786f520eda8e1eb9e85bd84ee56607a696d59d248cad70cbe44badcf9a7f2e07db9fc44a676371ea3a46518686581d99dd1f1d35a7cfee49fcff51a5bef4b81bd33067f634cad6ecfb634e79a6c26c082c00ca33a72e994da1ea59b04195fa82094866e4237601a8444f53e69842de53cd2b8f89f58d453b4b5c2bd32cd5767e4ca16f6f6983d152a39917b787aacd6a9ac269548f5482634d6241370625f15ca40aa14f4653d015b33e9e6f5ddf44a28a5d266ee8abb15cbe6ce048397033fb86386a8c6df96620afc4fcc4e629bd6999c9b7823e54e201007879ecb6af9bef7f7cba25c46d41db5a689e855454ca9159d38c8dbb30efee096d751d9c69ea5704af11bf2514861502a7a864ac40ab25e5b8bcb336852e74a718d3753b93c3514097e490574c2e9dee105a38e7dad3bb6f8e1ccf8445ba1fe6e049153b4b0c9dcfc3e5638e437ee0eed89e2b5ebf4a083e243f2d28cf75d4137240dd13822da156258cbda4fa4af219434bd0fd5c1577c7ae09285a1660c4eda2a5e7d0980871b8bc97d964ed84be5f87d5f088a24cf0a8b980fb8ce157fa1109a256c425a30c0847100e7ea882125ee5b90f4e4ade3a140ebc9ad8aa7dae58006899166222bec596216dd7f57aecd9262f33cabe4cc06f303e6eb2fcb96420ac8f38ae1580597e0d5c8bb815667112722a284ab7c5e9e1df51b510bad66824135468dd167100a79574f97b1f64dbcf636fced53a43b4ffe19b930c34ecc6c736fac1fb0daeb45efd952d481783928e2b1cca5c5f6b80b61ff8d6853677c46bc58b8f3f47ebb1a5ea3d56e7acd09bc47aa21307b93cdca576509433f5f09de9e089f31808b1c27891331abb47895d2febc126441b29c476f44a186b15c62e3dc612e54f2c63f0168bf8718bcc009a0a3e282c40ee31e590d6f13ea8533680beb12c93e541be1f200fafb5c562ce535d5f834919302dcf0cd27bb83c17f624fcb795fba548cde7827af2df11d953c2fdabe600dbf4b6efe9542016fa1c30c54804fa5c08403c9861df9fa7f2844e5dfd386316e27b801a1be861ebe03a78b4d453aa314d3c146af3822e9709e0cf89a7c282b24822b8fc5ece045da52d7b2348b0aba83f0935c9ec696e098c72559c8bc4fbe0eab877477d157fd4812a19830b0717d379f84eeafd7144bd44c611d12c0a4adfe409d844843278f986d79bd9083a973e7cf110408bb73676a9ba0af24491453633c42d977b3444699feabb31760361fdb9076d6a5c5b84a16499b3b43e98fef9bf23e8d37f335b7db745ebe77a545464774c8c01a876398081273324595cdd8a532f49fd43603dd8853b37e2c69e3d97cc46d184f5988f1fb386090f6747889357bac094958ba24df6719e4164a393b799e3656eac802e85047fda904c1ef482ff5431e452e1da2b884a7e6066a08f273b858788622cf6df94634cd7998e63f97b2b772879af1d0641878e28890f5b98146ae07d927f3bdb521f1a554978e475668bc9a4f92ad8200545d676481afca9f66a11f654d9a137eae89c2bf6362f628a3fe130c94e2654771a2f36e5817327f5550a80daf82cf319ebb26a3c77086d79bfa60f22274a42ab9680d1293f534043e1788b9410618c81237d495c92cdbe5c2488248955320ad7dc5d1e7ac9273e41abd48ebebd89422987e1b0611d675c1db3293177f90b6c7572c51d05e250f59204f2c18e767af81f0f9966cd88c482b3f50b48783fb1fa3479b547d67a2cd7bfbbabd71f8efc2e1af70ca97f8dcfd4a5cac9f6449dbfd6d83aff994178b1d9c3bd7451f40297a08e579edcbfeae9a8576955945bdde432f68a87498f2f8908414912f9a26c8f2ee095498bd47010378dca5acad2b39636f782e4635943d4edb6a2242a8498d2cba453a2d4afab30df2577852ddeb5c58272629c707ea1677c9f9eaad5b2f8e5303447a4d7f86834bb4aad51684fde56d121940efb1be81f4776ae8993799031d7b501320c9525203df9bb29f6a013e5e3b79ba68851746547b6ab0f8595ce1276d1e9ae8a29c4a90b481af058c036b6101ac560e9eaf95ce34e2ef4b5e9ae6fb4267f650aaf4a1883b9bf9b6df5d2e01ae3db400f692f857e89205f68a4fce01694e72ef3dfd573ecfaa78e2a0b7a0bb37406de87fdd4f1472132cc716c7e1e41fe0c5f58f51f0305090dbab8b231da1cdcc539657afd82b5ef29ed4b2cebfc97b9009aee9117c2e1c302dda88545ba86a07ed6ad2f6827a91bf239064b00389ab5d21231814ec6d342e787760c5ec45b1523b409743ed36c65ad00e759d49459e5bf3936fee29ae3a816c72384d0ff27b7c3702ee6540148262a2be4e88abaa8f03be95874ff5d86d33f5382be52b1361c8b787a2692cf17a80bb17dd0414bd0cb53c69dbe81d7f08698dcd9d4bc238a91001f930c9cec9e61539aca51ec2acffccd30", 0x1000}, {&(0x7f0000001900)="67d5a3f43e16dd33f11b4ba7518f4a028b5c65324a2f7e575f623d60259da137ede2a21144e9bdd607b8f3f206a8bd0714b597cf354de795bd353b55b640a464300ffb4a63436b77ea93b3c429653b4515960afccf482f2c29fa2b752c07ed3f7f35abfb72668adee631116e477168beee819d6edafd368273d47dac27563aff3ccd74e4e87da40ad710d4b46b54aa33288a90b6397b79a3ff52b2b4ff74f45ee72ad6ba415bc43e078be36c08c86588eadc2cbb106a9014fee0bc004f449ef68c8e1380f5fe977ec0b22ad59f439c48ec1428f769d81b901d558abf6027265771f48e2d38903295c4bd3268c4453e26fe76", 0xf2}, {&(0x7f0000001a00)="8fd1b9ec58d235d718fc4058364cb3bbeaa9a7bd4b640ac84b85803add842c88b7a60e0aa61c7eb3e6b46a3f84178e29eb43643a16fde4e87711077ea48eb297d9b7d04dd8a1a17c306c67125dcf8727f6839ea5d7fa9c3ea03a00487e3defff4df2da2c111318ced8af54c9ce", 0x6d}, {&(0x7f0000001a80)="c41b10470dd66c84963673bd09550b6317626bf57a1940622746dcaae9292b99e5774236e8da5b33252a2b465dff405655fbc24bd61d340d6173ae3831974b6fecac54c0db17eb1979717713d754c4056e46c1d6c18b7d5a99e02769adde0a6396af4a9a9e5e93ae7eac", 0x6a}, {&(0x7f0000001b00)="814c8740fed01875853d062091621c2efcaf6e7636e0eb32793ec9d566f9c3d6a18e149264c7efa97c6c9ec327d80aa68d5654f25fd1e1a41b4264be6cfd897e617897a474644fae874e633c4be3060d1dd7af460a5745273294f9da788382e890c90cf92d8e340569c481a7f8e8f7053c6a8b6c95da5aded9c13589cc580674b06a5279e2ad6ea1a52a39a093a1d5ec737c06dd80e3f678b964a818da3bb12f01a1d5e81c7a7284", 0xa8}, {&(0x7f0000001bc0)="26cd2456601b9af420", 0x9}, {&(0x7f0000001c00)="e86d20e9202e5b9142b95f79817a3577713d909cd7895b3b41a76384c1cde656ff9a4699", 0x24}, {&(0x7f0000001c40)="44432e66939e18d64eec5044f206b9f1acbed2c72a904c2df3e830d3efc357cea9061cb9079a19231e184b86e9e87de893148c6aca2c4ad6e0ed2af091b153b9ecace5362ae71936329de778b2be334d249a90e3ead8d16c52d2158535044b12b437619dc1e4065eb19ea46a8603b5f98c9cff56762f2235167a832692ff8537f82f0587afcbd627", 0x88}], 0x8, 0x0, 0x0, 0x4051}, {0x0, 0x0, &(0x7f0000001dc0)=[{&(0x7f0000001d80)="09c0cef75f8736a9f95d2682322c14b1d931ca248f52276c54fc21a0f8d3ac6d76bf21cd7e5919fb34adeb8b8912", 0x2e}], 0x1, &(0x7f0000001e00)=[@iv={0x30, 0x117, 0x2, 0x1a, "c0c8be2a8c194d5690706856731b2e4cc8e412b373acf03a42c6"}, @op={0x18, 0x117, 0x3, 0x3}, @iv={0x90, 0x117, 0x2, 0x79, "31a7b0769cf9f86918681f499d71579ae9982bafae5fe32559d5da297a76fb02c936de8dfc42a70c2893fa359f02b8d232b69f7fdc4f0bf9737eab1414c4469355e3bfc6ee96acfe223852055f8ceb83f85422d73cda114a8900f224354625785e9651319aa72ede506f1f152cb5c09341c534712fa1fd1031"}], 0xd8, 0x8000800}, {0x0, 0x0, &(0x7f0000003080)=[{&(0x7f0000001f00)="a166f4df74fde6abc25a270eb0672219f5c01aa0295bbe057e9ac8d30df13198d89eecde8b9b582f07264e6e786f462f53a2f0cbbf10c960714e80220faac1a327db9c31c9413e0530b2bba7ef47c3e006025092ca24baa7815cfa34eafd6c0326", 0x61}, {&(0x7f0000001f80)="9e1f09874b191b87bf731cae8db568cb1c5a38a98ec2b29c481cc577acbe4df5388430599271b1cdc081fa844ea0593bbf80472921e4502162fca74dd0d6169dbe57cbf7202a142d11b32891314471", 0x4f}, {&(0x7f0000002000)="19b454c1498a105535704f05edf6d9a48dac45954645bb81f98ea3cf19ea8bf33bad8ac6628e7c07ab16e205f84088279e5e8d905eb13f", 0x37}, {&(0x7f0000002040)="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", 0x1000}, {&(0x7f0000003040)="a4300b799fdea110351d89f4ee4f6ee95ec776fefec803dee4faf4908399b218f63c1e9490b0f2a9da8b27a27f337e396cca5100", 0x34}], 0x5}], 0x6, 0x40) setsockopt$TIPC_SRC_DROPPABLE(r1, 0x10f, 0x80, &(0x7f0000000040)=0x9, 0x4) r10 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x1, 0x2) ioctl$VIDIOC_S_FREQUENCY(r10, 0x402c5639, &(0x7f0000000180)={0x0, 0x1}) [ 331.799328] ? do_syscall_64+0x53/0x640 [ 331.803292] ? shmem_fcntl+0x130/0x130 [ 331.807173] do_syscall_64+0x1e8/0x640 [ 331.811052] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 331.815899] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 331.821091] RIP: 0033:0x459a29 [ 331.824281] RSP: 002b:00007fc73341fa88 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 331.831997] RAX: ffffffffffffffda RBX: 0000000020000000 RCX: 0000000000459a29 [ 331.839268] RDX: 0000000020000028 RSI: 0000000000000000 RDI: 00000000004be948 [ 331.846543] RBP: 000000000075bf20 R08: fe03f80fe03f80ff R09: 00000000fbad8001 [ 331.853811] R10: 0000000000010000 R11: 0000000000000246 R12: 00007fc7334206d4 [ 331.861083] R13: 00000000004c8b25 R14: 00000000004dfbc8 R15: 0000000000000003 [ 331.868447] CPU: 1 PID: 22396 Comm: syz-executor.1 Not tainted 4.14.146 #0 [ 331.875466] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 331.875471] Call Trace: [ 331.875488] dump_stack+0x138/0x197 [ 331.875505] should_fail.cold+0x10f/0x159 [ 331.875516] ? __might_sleep+0x93/0xb0 [ 331.899061] __alloc_pages_nodemask+0x1d6/0x7a0 [ 331.903736] ? __alloc_pages_slowpath+0x2930/0x2930 [ 331.908751] ? lock_downgrade+0x6e0/0x6e0 [ 331.912889] alloc_pages_vma+0xc9/0x4c0 [ 331.916851] shmem_alloc_page+0xf6/0x1a0 [ 331.920898] ? shmem_swapin+0x1a0/0x1a0 [ 331.924898] ? cred_has_capability+0x142/0x290 [ 331.929627] ? check_preemption_disabled+0x3c/0x250 [ 331.934640] ? __this_cpu_preempt_check+0x1d/0x30 [ 331.939466] ? percpu_counter_add_batch+0x112/0x160 [ 331.944470] ? __vm_enough_memory+0x26a/0x490 [ 331.948952] shmem_alloc_and_acct_page+0x12a/0x680 [ 331.953878] shmem_getpage_gfp+0x3e7/0x25d0 [ 331.958186] ? shmem_add_to_page_cache+0x860/0x860 [ 331.963111] ? iov_iter_fault_in_readable+0x1da/0x3c0 [ 331.968296] shmem_write_begin+0xfd/0x1b0 [ 331.972441] ? trace_hardirqs_on_caller+0x400/0x590 [ 331.977442] generic_perform_write+0x1f8/0x480 [ 331.982026] ? page_endio+0x530/0x530 [ 331.985826] ? current_time+0xb0/0xb0 [ 331.989622] ? generic_file_write_iter+0x9a/0x660 [ 331.994466] __generic_file_write_iter+0x239/0x5b0 [ 331.999381] generic_file_write_iter+0x303/0x660 [ 332.004131] __vfs_write+0x4a7/0x6b0 [ 332.007828] ? selinux_file_open+0x420/0x420 [ 332.012226] ? kernel_read+0x120/0x120 [ 332.016119] ? check_preemption_disabled+0x3c/0x250 [ 332.021120] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 332.026560] ? rcu_sync_lockdep_assert+0x6d/0xb0 [ 332.031307] ? __sb_start_write+0x153/0x2f0 [ 332.035614] vfs_write+0x198/0x500 [ 332.039160] SyS_pwrite64+0x115/0x140 [ 332.042955] ? SyS_pread64+0x140/0x140 [ 332.046899] ? do_syscall_64+0x53/0x640 [ 332.050860] ? SyS_pread64+0x140/0x140 [ 332.054744] do_syscall_64+0x1e8/0x640 [ 332.058621] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 332.063453] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 332.068625] RIP: 0033:0x413977 [ 332.071894] RSP: 002b:00007f617e384a80 EFLAGS: 00000293 ORIG_RAX: 0000000000000012 [ 332.079679] RAX: ffffffffffffffda RBX: 0000000020000010 RCX: 0000000000413977 [ 332.086946] RDX: 0000000000000048 RSI: 0000000020000180 RDI: 0000000000000004 [ 332.094204] RBP: 0000000000000000 R08: fe03f80fe03f80ff R09: 00000000fbad8001 05:28:57 executing program 5 (fault-call:0 fault-nth:5): syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 05:28:57 executing program 2: r0 = syz_open_dev$vcsa(&(0x7f0000000300)='/dev/vcsa#\x00', 0x80000001, 0x20000) getsockopt$inet6_IPV6_IPSEC_POLICY(r0, 0x29, 0x22, 0x0, &(0x7f0000000780)) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = fcntl$dupfd(r1, 0x0, 0xffffffffffffffff) getsockopt$EBT_SO_GET_INIT_INFO(r2, 0x0, 0x82, &(0x7f0000000180)={'broute\x00'}, &(0x7f0000000240)=0x50) ioctl$TIOCSCTTY(r2, 0x540e, 0xffffffff) getsockopt$sock_cred(r2, 0x1, 0x11, 0x0, &(0x7f0000000640)) ioctl$KVM_GET_SUPPORTED_CPUID(r2, 0xc008ae05, &(0x7f0000000340)=""/231) openat$cgroup_type(r0, &(0x7f0000000280)='cgroup.type\x00', 0x2, 0x0) r3 = syz_open_dev$vcsa(&(0x7f0000000300)='/dev/vcsa#\x00', 0x80000001, 0x20000) getsockopt$inet6_IPV6_IPSEC_POLICY(r3, 0x29, 0x22, 0x0, &(0x7f0000000780)) accept4$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @remote}, &(0x7f00000002c0)=0x14, 0x1000) r4 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000140)='/dev/snapshot\x00', 0x10000, 0x0) ioctl$TIOCGPKT(r4, 0x80045438, &(0x7f0000000180)) syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) mknod(&(0x7f00000000c0)='./file0\x00', 0x8000, 0xae) [ 332.101478] R10: 0000000000010000 R11: 0000000000000293 R12: 0000000000000004 [ 332.108740] R13: 00000000004c8b25 R14: 00000000004dfbc8 R15: 0000000000000003 05:28:58 executing program 3: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10001}], 0x0, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'ghash-generic\x00'}, 0x58) r1 = syz_open_dev$midi(&(0x7f00000001c0)='/dev/midi#\x00', 0x100000000, 0x8000) getsockopt$inet_sctp6_SCTP_GET_ASSOC_NUMBER(r1, 0x84, 0x1c, &(0x7f0000000280), &(0x7f00000002c0)=0x4) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, 0x0, 0x0) r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000100)='/dev/hwrng\x00', 0x6440, 0x0) getsockopt$inet_sctp6_SCTP_RECVNXTINFO(r2, 0x84, 0x21, &(0x7f0000000140), &(0x7f0000000180)=0x4) signalfd(r0, &(0x7f00000000c0)={0x1283}, 0x8) 05:28:58 executing program 0: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) 05:28:58 executing program 1 (fault-call:0 fault-nth:7): syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000140)='./file0\x00', 0xff, 0x1, &(0x7f0000000000)=[{&(0x7f0000000180)="8da4363ac0ed0000000000000001004d0100000000000000000000000009000000000000009748aeb81e1b00920efd9a0000010000000000098cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 332.274336] FAULT_INJECTION: forcing a failure. [ 332.274336] name failslab, interval 1, probability 0, space 0, times 0 [ 332.302138] CPU: 0 PID: 22420 Comm: syz-executor.5 Not tainted 4.14.146 #0 [ 332.309196] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 332.318583] Call Trace: 05:28:58 executing program 4: r0 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x1, 0x2) ioctl$VIDIOC_S_FREQUENCY(r0, 0x402c5639, &(0x7f0000000180)={0x0, 0x1}) r1 = syz_open_dev$swradio(&(0x7f0000000040)='/dev/swradio#\x00', 0x1, 0x2) ioctl$SNDRV_SEQ_IOCTL_DELETE_QUEUE(r1, 0x408c5333, &(0x7f0000000080)={0x7, 0x3ff, 0x1000, 'queue0\x00', 0x7}) [ 332.321171] dump_stack+0x138/0x197 [ 332.321191] should_fail.cold+0x10f/0x159 [ 332.321208] should_failslab+0xdb/0x130 [ 332.321217] kmem_cache_alloc+0x2d7/0x780 [ 332.321228] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 332.321238] ? check_preemption_disabled+0x3c/0x250 [ 332.321251] selinux_file_alloc_security+0xb4/0x190 [ 332.321263] security_file_alloc+0x6d/0xa0 [ 332.321278] get_empty_filp+0x162/0x3f0 [ 332.321289] alloc_file+0x23/0x440 [ 332.321302] __shmem_file_setup.part.0+0x1b1/0x400 [ 332.321311] ? __alloc_fd+0x1d4/0x4a0 [ 332.321320] ? shmem_fill_super+0x8c0/0x8c0 [ 332.321336] SyS_memfd_create+0x1f9/0x3a0 [ 332.321346] ? shmem_fcntl+0x130/0x130 [ 332.321354] ? do_syscall_64+0x53/0x640 [ 332.321364] ? shmem_fcntl+0x130/0x130 [ 332.394799] do_syscall_64+0x1e8/0x640 [ 332.398671] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 332.403501] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 332.408673] RIP: 0033:0x459a29 [ 332.411859] RSP: 002b:00007fc73341fa88 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 332.419548] RAX: ffffffffffffffda RBX: 0000000020000000 RCX: 0000000000459a29 [ 332.426801] RDX: 0000000020000028 RSI: 0000000000000000 RDI: 00000000004be948 [ 332.434054] RBP: 000000000075bf20 R08: fe03f80fe03f80ff R09: 00000000fbad8001 [ 332.441322] R10: 0000000000010000 R11: 0000000000000246 R12: 00007fc7334206d4 [ 332.448597] R13: 00000000004c8b25 R14: 00000000004dfbc8 R15: 0000000000000003 05:28:58 executing program 5 (fault-call:0 fault-nth:6): syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 332.505495] FAULT_INJECTION: forcing a failure. [ 332.505495] name failslab, interval 1, probability 0, space 0, times 0 [ 332.516820] CPU: 1 PID: 22435 Comm: syz-executor.1 Not tainted 4.14.146 #0 [ 332.523842] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 332.533297] Call Trace: [ 332.536024] dump_stack+0x138/0x197 [ 332.539788] should_fail.cold+0x10f/0x159 [ 332.543955] should_failslab+0xdb/0x130 [ 332.547933] kmem_cache_alloc+0x47/0x780 05:28:58 executing program 4: r0 = syz_open_dev$radio(&(0x7f0000000000), 0x1, 0x2) ioctl$TUNSETSNDBUF(r0, 0x400454d4, &(0x7f0000000040)=0x9) r1 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dlm-monitor\x00', 0x200000, 0x0) ioctl$TIOCSPTLCK(r1, 0x40045431, &(0x7f0000000140)=0x8) ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f0000000080)={0x7ff, 0xfffffffffffffffc, 0x800}) ioctl$sock_bt_bnep_BNEPCONNADD(r0, 0x400442c8, &(0x7f00000000c0)={r0, 0x2, 0x1000, 'jP@'}) 05:28:58 executing program 0: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) [ 332.551980] ? __alloc_pages_slowpath+0x2930/0x2930 [ 332.556996] ? lock_downgrade+0x6e0/0x6e0 [ 332.561162] radix_tree_node_alloc.constprop.0+0x1c7/0x310 [ 332.566799] __radix_tree_create+0x337/0x4d0 [ 332.571219] __radix_tree_insert+0xab/0x570 [ 332.575555] ? __radix_tree_create+0x4d0/0x4d0 [ 332.580163] shmem_add_to_page_cache+0x5a4/0x860 [ 332.584920] ? shmem_writepage+0xbb0/0xbb0 [ 332.589336] ? __radix_tree_preload+0x1d2/0x260 [ 332.594007] shmem_getpage_gfp+0x1757/0x25d0 [ 332.598528] ? shmem_add_to_page_cache+0x860/0x860 [ 332.603458] ? iov_iter_fault_in_readable+0x1da/0x3c0 [ 332.608645] shmem_write_begin+0xfd/0x1b0 [ 332.612795] ? trace_hardirqs_on_caller+0x400/0x590 [ 332.617797] generic_perform_write+0x1f8/0x480 [ 332.622375] ? page_endio+0x530/0x530 [ 332.626170] ? current_time+0xb0/0xb0 [ 332.629955] ? generic_file_write_iter+0x9a/0x660 [ 332.634782] __generic_file_write_iter+0x239/0x5b0 [ 332.639697] generic_file_write_iter+0x303/0x660 [ 332.644438] __vfs_write+0x4a7/0x6b0 [ 332.648146] ? selinux_file_open+0x420/0x420 [ 332.652788] ? kernel_read+0x120/0x120 [ 332.656715] ? check_preemption_disabled+0x3c/0x250 [ 332.662341] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 332.667956] ? rcu_sync_lockdep_assert+0x6d/0xb0 [ 332.672699] ? __sb_start_write+0x153/0x2f0 [ 332.677018] vfs_write+0x198/0x500 [ 332.680546] SyS_pwrite64+0x115/0x140 [ 332.684347] ? SyS_pread64+0x140/0x140 [ 332.688225] ? do_syscall_64+0x53/0x640 [ 332.692190] ? SyS_pread64+0x140/0x140 [ 332.696333] do_syscall_64+0x1e8/0x640 [ 332.700201] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 332.705230] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 332.710404] RIP: 0033:0x413977 [ 332.713599] RSP: 002b:00007f617e384a80 EFLAGS: 00000293 ORIG_RAX: 0000000000000012 [ 332.721288] RAX: ffffffffffffffda RBX: 0000000020000010 RCX: 0000000000413977 [ 332.728551] RDX: 0000000000000048 RSI: 0000000020000180 RDI: 0000000000000004 [ 332.736856] RBP: 0000000000000000 R08: fe03f80fe03f80ff R09: 00000000fbad8001 [ 332.744128] R10: 0000000000010000 R11: 0000000000000293 R12: 0000000000000004 [ 332.751384] R13: 00000000004c8b25 R14: 00000000004dfbc8 R15: 0000000000000003 05:28:58 executing program 2: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$zero(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/zero\x00', 0x8000, 0x0) r2 = syz_open_dev$vcsa(&(0x7f0000000300)='/dev/vcsa#\x00', 0x80000001, 0x20000) getsockopt$inet6_IPV6_IPSEC_POLICY(r2, 0x29, 0x22, 0x0, &(0x7f0000000780)) renameat2(r1, &(0x7f0000000100)='./file0\x00', r2, &(0x7f0000000140)='./file0\x00', 0x6) 05:28:58 executing program 4: syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x3, 0x2) r0 = syz_open_dev$dmmidi(&(0x7f0000000040)='/dev/dmmidi#\x00', 0x400, 0x2200) r1 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x4, 0x4182) r2 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) pwritev(r2, &(0x7f0000000340)=[{&(0x7f0000000140)='!', 0x1}], 0x1, 0x81805) r3 = dup2(r2, r2) ioctl$SG_GET_RESERVED_SIZE(r2, 0x2272, 0x0) ioctl$LOOP_CHANGE_FD(r1, 0x4c00, r2) write$P9_RLERRORu(r3, &(0x7f00000003c0)=ANY=[@ANYBLOB="1400000007650d6c24ed92c8397291335cf616f0010200070062726f0c62077600b365a0a59e7eea"], 0x28) getsockopt$sock_cred(r3, 0x1, 0x11, 0x0, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(r3, 0x29, 0x23, &(0x7f00000007c0)={{{@in=@remote, @in6=@initdev}}, {{@in=@empty}, 0x0, @in6=@ipv4}}, &(0x7f00000008c0)=0xe8) sendfile(r3, r1, 0x0, 0x2400003e) ioctl$CAPI_NCCI_OPENCOUNT(r3, 0x80044326, &(0x7f0000000180)=0x8) ioctl$VIDIOC_S_FREQUENCY(r0, 0x402c5639, &(0x7f0000000080)={0x0, 0x1}) ioctl$VIDIOC_G_SELECTION(r0, 0xc040565e, &(0x7f0000000140)={0x5, 0x81, 0x0, {0x5, 0xe86a, 0x40, 0x1ff}}) fsetxattr$security_ima(0xffffffffffffffff, &(0x7f00000000c0)='security.ima\x00', &(0x7f0000000100)=ANY=[@ANYBLOB="040337a29872ace6fdfb38db"], 0xc, 0x2) [ 332.866289] FAULT_INJECTION: forcing a failure. [ 332.866289] name fail_page_alloc, interval 1, probability 0, space 0, times 0 05:28:58 executing program 1 (fault-call:0 fault-nth:8): syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000140)='./file0\x00', 0xff, 0x1, &(0x7f0000000000)=[{&(0x7f0000000180)="8da4363ac0ed0000000000000001004d0100000000000000000000000009000000000000009748aeb81e1b00920efd9a0000010000000000098cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 05:28:58 executing program 3: r0 = syz_open_dev$vcsa(&(0x7f0000000300)='/dev/vcsa#\x00', 0x80000001, 0x20000) getsockopt$inet6_IPV6_IPSEC_POLICY(r0, 0x29, 0x22, 0x0, &(0x7f0000000780)) write$USERIO_CMD_REGISTER(r0, &(0x7f00000000c0)={0x0, 0x10}, 0x2) syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) openat$vnet(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/vhost-net\x00', 0x2, 0x0) recvfrom$x25(r0, &(0x7f0000000100)=""/96, 0x60, 0x20, &(0x7f0000000180)={0x9, @remote={[], 0x0}}, 0x12) 05:28:58 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) [ 332.979755] CPU: 0 PID: 22452 Comm: syz-executor.5 Not tainted 4.14.146 #0 [ 332.986825] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 332.996190] Call Trace: [ 332.998795] dump_stack+0x138/0x197 [ 333.002447] should_fail.cold+0x10f/0x159 [ 333.006601] ? __might_sleep+0x93/0xb0 [ 333.010492] __alloc_pages_nodemask+0x1d6/0x7a0 [ 333.010508] ? __alloc_pages_slowpath+0x2930/0x2930 [ 333.010519] ? lock_downgrade+0x6e0/0x6e0 [ 333.010537] alloc_pages_vma+0xc9/0x4c0 [ 333.010555] shmem_alloc_page+0xf6/0x1a0 [ 333.010570] ? shmem_swapin+0x1a0/0x1a0 [ 333.010584] ? cred_has_capability+0x142/0x290 [ 333.010597] ? check_preemption_disabled+0x3c/0x250 [ 333.010610] ? __this_cpu_preempt_check+0x1d/0x30 [ 333.050763] ? percpu_counter_add_batch+0x112/0x160 [ 333.055766] ? __vm_enough_memory+0x26a/0x490 [ 333.060248] shmem_alloc_and_acct_page+0x12a/0x680 [ 333.065169] shmem_getpage_gfp+0x3e7/0x25d0 [ 333.069487] ? shmem_add_to_page_cache+0x860/0x860 [ 333.074429] ? iov_iter_fault_in_readable+0x1da/0x3c0 [ 333.079618] shmem_write_begin+0xfd/0x1b0 [ 333.083753] ? trace_hardirqs_on_caller+0x400/0x590 [ 333.088752] generic_perform_write+0x1f8/0x480 [ 333.093321] ? page_endio+0x530/0x530 [ 333.097117] ? current_time+0xb0/0xb0 [ 333.100911] ? generic_file_write_iter+0x9a/0x660 [ 333.105738] __generic_file_write_iter+0x239/0x5b0 [ 333.110652] generic_file_write_iter+0x303/0x660 [ 333.115396] __vfs_write+0x4a7/0x6b0 [ 333.119092] ? selinux_file_open+0x420/0x420 [ 333.123484] ? kernel_read+0x120/0x120 [ 333.127356] ? check_preemption_disabled+0x3c/0x250 [ 333.132372] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 333.137817] ? rcu_sync_lockdep_assert+0x6d/0xb0 [ 333.143253] ? __sb_start_write+0x153/0x2f0 [ 333.147561] vfs_write+0x198/0x500 [ 333.151087] SyS_pwrite64+0x115/0x140 [ 333.154869] ? SyS_pread64+0x140/0x140 [ 333.158737] ? do_syscall_64+0x53/0x640 [ 333.162956] ? SyS_pread64+0x140/0x140 [ 333.166841] do_syscall_64+0x1e8/0x640 [ 333.170737] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 333.175568] entry_SYSCALL_64_after_hwframe+0x42/0xb7 05:28:59 executing program 0: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) [ 333.180741] RIP: 0033:0x413977 [ 333.183910] RSP: 002b:00007fc73341fa80 EFLAGS: 00000293 ORIG_RAX: 0000000000000012 [ 333.191604] RAX: ffffffffffffffda RBX: 0000000020000010 RCX: 0000000000413977 [ 333.198862] RDX: 0000000000000048 RSI: 0000000020000200 RDI: 0000000000000004 [ 333.206114] RBP: 0000000000000000 R08: fe03f80fe03f80ff R09: 00000000fbad8001 [ 333.213366] R10: 0000000000010000 R11: 0000000000000293 R12: 0000000000000004 [ 333.220622] R13: 00000000004c8b25 R14: 00000000004dfbc8 R15: 0000000000000003 [ 333.242072] FAULT_INJECTION: forcing a failure. [ 333.242072] name failslab, interval 1, probability 0, space 0, times 0 [ 333.275046] CPU: 0 PID: 22468 Comm: syz-executor.1 Not tainted 4.14.146 #0 [ 333.282106] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 05:28:59 executing program 2: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = syz_open_dev$vcsa(&(0x7f00000000c0)='/dev/vcsa#\x00', 0x4, 0x400000) r2 = syz_open_dev$vcsa(&(0x7f0000000300)='/dev/vcsa#\x00', 0x80000001, 0x20000) getsockopt$inet6_IPV6_IPSEC_POLICY(r2, 0x29, 0x22, 0x0, &(0x7f0000000780)) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2) r4 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$sock_cred(r4, 0x1, 0x11, &(0x7f0000000000)={0x0, 0x0}, &(0x7f0000000040)=0xc) keyctl$get_persistent(0x7, r5, 0x0) r6 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x4, 0x4182) r7 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) pwritev(r7, &(0x7f0000000340)=[{&(0x7f0000000140)='!', 0x1}], 0x1, 0x81805) r8 = dup2(r7, r7) ioctl$SG_GET_RESERVED_SIZE(r7, 0x2272, 0x0) ioctl$LOOP_CHANGE_FD(r6, 0x4c00, r7) write$P9_RLERRORu(r8, &(0x7f00000003c0)=ANY=[@ANYBLOB="1400000007650d6c24ed92c8397291335cf616f0010200070062726f0c62077600b365a0a59e7eea"], 0x28) getsockopt$sock_cred(r8, 0x1, 0x11, 0x0, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(r8, 0x29, 0x23, &(0x7f00000007c0)={{{@in=@remote, @in6=@initdev}}, {{@in=@empty}, 0x0, @in6=@ipv4}}, &(0x7f00000008c0)=0x11a) sendfile(r8, r6, 0x0, 0x2400003e) getsockopt$inet_IP_IPSEC_POLICY(r8, 0x0, 0x10, &(0x7f0000000280)={{{@in6, @in6=@empty, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@local}, 0x0, @in6=@mcast2}}, &(0x7f0000000180)=0xe8) mount$9p_fd(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='9p\x00', 0x800000, &(0x7f0000000380)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@dfltuid={'dfltuid', 0x3d, r5}}, {@mmap='mmap'}, {@access_uid={'access', 0x3d, r9}}], [{@dont_appraise='dont_appraise'}, {@context={'context', 0x3d, 'system_u'}}, {@dont_appraise='dont_appraise'}, {@permit_directio='permit_directio'}, {@obj_role={'obj_role', 0x3d, '['}}, {@hash='hash'}, {@permit_directio='permit_directio'}]}}) r10 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x4, 0x4182) r11 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) pwritev(r11, &(0x7f0000000340)=[{&(0x7f0000000140)='!', 0x1}], 0x1, 0x81805) r12 = dup2(r11, r11) ioctl$SG_GET_RESERVED_SIZE(r11, 0x2272, 0x0) ioctl$LOOP_CHANGE_FD(r10, 0x4c00, r11) write$P9_RLERRORu(r12, &(0x7f0000000580)=ANY=[@ANYBLOB="1400000007650d02499d220a838ef27530dbdaebdb4b6c24ed92c8397291335cf616f0010219074000726f0c62077600b365"], 0x28) getsockopt$sock_cred(r12, 0x1, 0x11, 0x0, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(r12, 0x29, 0x23, &(0x7f00000007c0)={{{@in=@remote, @in6=@initdev}}, {{@in=@empty}, 0x0, @in6=@ipv4}}, &(0x7f00000008c0)=0xe8) sendfile(r12, r10, 0x0, 0x2400003e) r13 = syz_genetlink_get_family_id$tipc(&(0x7f0000000480)='TIPC\x00') sendmsg$TIPC_CMD_SET_LINK_WINDOW(r12, &(0x7f0000000540)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000500)={&(0x7f00000004c0)={0x34, r13, 0x3c122c3852873877, 0x70bd2c, 0x25dfdbfe, {{}, 0x0, 0x4109, 0x0, {0x18, 0x18, {0x0, @bearer=@l2={'ib', 0x3a, 'bond_slave_0\x00'}}}}, ["", "", ""]}, 0x34}}, 0x10) [ 333.291469] Call Trace: [ 333.294079] dump_stack+0x138/0x197 [ 333.297726] should_fail.cold+0x10f/0x159 [ 333.301888] should_failslab+0xdb/0x130 [ 333.305884] kmem_cache_alloc+0x2d7/0x780 [ 333.310137] ? vfs_write+0x25f/0x500 [ 333.313853] getname_flags+0xcb/0x580 [ 333.319552] ? check_preemption_disabled+0x3c/0x250 [ 333.324556] getname+0x1a/0x20 [ 333.327845] do_sys_open+0x1e7/0x430 [ 333.331554] ? filp_open+0x70/0x70 [ 333.335086] ? fput+0xd4/0x150 [ 333.338276] ? SyS_pwrite64+0xca/0x140 [ 333.342159] SyS_open+0x2d/0x40 [ 333.345428] ? do_sys_open+0x430/0x430 [ 333.349309] do_syscall_64+0x1e8/0x640 [ 333.353190] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 333.358043] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 333.363248] RIP: 0033:0x413911 [ 333.366421] RSP: 002b:00007f617e384a80 EFLAGS: 00000293 ORIG_RAX: 0000000000000002 [ 333.374121] RAX: ffffffffffffffda RBX: 0000000020000028 RCX: 0000000000413911 [ 333.381380] RDX: 00007f617e384b0a RSI: 0000000000000002 RDI: 00007f617e384b00 05:28:59 executing program 1 (fault-call:0 fault-nth:9): syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000140)='./file0\x00', 0xff, 0x1, &(0x7f0000000000)=[{&(0x7f0000000180)="8da4363ac0ed0000000000000001004d0100000000000000000000000009000000000000009748aeb81e1b00920efd9a0000010000000000098cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 333.388666] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 333.395923] R10: 0000000000000075 R11: 0000000000000293 R12: 0000000000000004 [ 333.403183] R13: 00000000004c8b25 R14: 00000000004dfbc8 R15: 0000000000000003 [ 333.508796] FAULT_INJECTION: forcing a failure. [ 333.508796] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 333.520639] CPU: 0 PID: 22496 Comm: syz-executor.1 Not tainted 4.14.146 #0 [ 333.527692] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 333.537058] Call Trace: [ 333.539677] dump_stack+0x138/0x197 [ 333.543327] should_fail.cold+0x10f/0x159 [ 333.547492] __alloc_pages_nodemask+0x1d6/0x7a0 [ 333.552165] ? fs_reclaim_acquire+0x20/0x20 05:28:59 executing program 0: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f0000000000), 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) [ 333.552181] ? __alloc_pages_slowpath+0x2930/0x2930 [ 333.552207] cache_grow_begin+0x80/0x400 [ 333.552221] kmem_cache_alloc+0x6a6/0x780 [ 333.552232] ? vfs_write+0x25f/0x500 [ 333.552247] getname_flags+0xcb/0x580 [ 333.552259] ? check_preemption_disabled+0x3c/0x250 [ 333.552270] getname+0x1a/0x20 [ 333.552280] do_sys_open+0x1e7/0x430 [ 333.561631] ? filp_open+0x70/0x70 [ 333.561641] ? fput+0xd4/0x150 [ 333.561652] ? SyS_pwrite64+0xca/0x140 [ 333.561666] SyS_open+0x2d/0x40 [ 333.561675] ? do_sys_open+0x430/0x430 [ 333.561686] do_syscall_64+0x1e8/0x640 [ 333.561693] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 333.561707] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 333.561715] RIP: 0033:0x413911 [ 333.561720] RSP: 002b:00007f617e384a80 EFLAGS: 00000293 ORIG_RAX: 0000000000000002 [ 333.561731] RAX: ffffffffffffffda RBX: 0000000020000028 RCX: 0000000000413911 [ 333.561736] RDX: 00007f617e384b0a RSI: 0000000000000002 RDI: 00007f617e384b00 [ 333.561740] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 333.561744] R10: 0000000000000075 R11: 0000000000000293 R12: 0000000000000004 [ 333.561749] R13: 00000000004c8b25 R14: 00000000004dfbc8 R15: 0000000000000003 [ 333.640612] 9pnet: Insufficient options for proto=fd 05:28:59 executing program 5: r0 = syz_open_dev$vcsa(&(0x7f0000000300)='/dev/vcsa#\x00', 0x80000001, 0x20000) getsockopt$inet6_IPV6_IPSEC_POLICY(r0, 0x29, 0x22, 0x0, &(0x7f0000000780)) getsockopt$inet_opts(r0, 0x0, 0xd, &(0x7f00000001c0)=""/177, &(0x7f0000000180)=0xffffffffffffff21) pivot_root(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0\x00') syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x0, &(0x7f00000024c0), 0x0, 0x0) 05:28:59 executing program 4: r0 = syz_open_dev$radio(&(0x7f0000000000)='#\x00\xe7\xf3\xff\xff\x00\xe8\xff\x00\x80\x00', 0x3, 0x2) ioctl$VIDIOC_S_FREQUENCY(r0, 0x402c5639, &(0x7f0000000180)={0x0, 0x1}) r1 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x4, 0x4182) r2 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) pwritev(r2, &(0x7f0000000340)=[{&(0x7f0000000140)='!', 0x1}], 0x1, 0x81805) r3 = dup2(r2, r2) ioctl$SG_GET_RESERVED_SIZE(r2, 0x2272, 0x0) ioctl$LOOP_CHANGE_FD(r1, 0x4c00, r2) write$P9_RLERRORu(r3, &(0x7f0000000100)=ANY=[@ANYBLOB="14d0101c00000007650d6cd29292c8397291335cf62df70100000000000000625a6f0c077600b347ef950788884c07b4b68465a0a59e7ec07c"], 0x28) getsockopt$sock_cred(r3, 0x1, 0x11, 0x0, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000007c0)={{{@in=@remote, @in6=@initdev}}, {{@in=@empty}, 0x0, @in6=@ipv4}}, &(0x7f00000008c0)=0xe8) sendfile(r3, r1, 0x0, 0x2400003e) r4 = getpid() tkill(r4, 0x9) ioctl$SNDRV_CTL_IOCTL_ELEM_INFO(r3, 0xc1105511, &(0x7f00000001c0)={{0x9, 0x3, 0xfffffff8, 0x5, 'syz1\x00', 0x7}, 0x1, 0x400, 0x80000000, r4, 0x2, 0x81, 'syz0\x00', &(0x7f0000000040)=['#\x00\xe7\xf3\xff\xff\x00\xe8\xff\x00\x80\x00', 'trustedppp1Dcpusetcgroup\x00'], 0x25, [], [0x2, 0x1ff, 0x1, 0xff]}) 05:28:59 executing program 3: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0xaaaaaaaaaaaaabf, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed000000000000004732bf986e72a9b7a101004d09000000000000000000000000000000fff6f2a2299748aeb81e1b00900efd9a0000010000000000018cffffff0000", 0x48, 0x2}], 0x10, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'ghash-generic\x00'}, 0x58) r1 = socket$alg(0x26, 0x5, 0x0) bind$alg(r1, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'ghash-generic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, 0x0, 0x0) setsockopt$ALG_SET_AEAD_AUTHSIZE(r1, 0x117, 0x5, 0x0, 0x1f) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, 0x0, 0x0) getsockopt$inet_sctp_SCTP_HMAC_IDENT(0xffffffffffffffff, 0x84, 0x16, &(0x7f0000000100)={0x2, [0x1, 0x2]}, &(0x7f0000000140)=0x8) ioctl(r0, 0x7, &(0x7f00000000c0)="eb6199c0afd7ed8128a37bb51c318fe79d611e1772eb1de4af9e451a9511386d03a62db1343300f67f5bd08c13ed3341") 05:28:59 executing program 4: r0 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x1, 0x2) ioctl$VIDIOC_S_FREQUENCY(r0, 0x402c5639, &(0x7f0000000180)={0x0, 0x1}) r1 = syz_open_dev$mice(&(0x7f00000000c0)='/dev/input/mice\x00', 0x0, 0x2c4880) ioctl$VIDIOC_UNSUBSCRIBE_EVENT(r1, 0x4020565b, &(0x7f0000000200)={0x6, 0x0, 0x2}) ioctl$LOOP_SET_BLOCK_SIZE(r0, 0x4c09, 0x4) ioctl$BLKBSZGET(r0, 0x80081270, &(0x7f0000000140)) r2 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = fcntl$dupfd(r2, 0x0, 0xffffffffffffffff) getsockopt$EBT_SO_GET_INIT_INFO(r3, 0x0, 0x82, &(0x7f0000000180)={'broute\x00'}, &(0x7f0000000240)=0x50) ioctl$TIOCSCTTY(r0, 0x540e, 0xffffffff) openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000440)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) getsockopt$sock_cred(r3, 0x1, 0x11, 0x0, &(0x7f0000000640)) getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f0000000040)={0x0, 0x3}, &(0x7f0000000080)=0x8) getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r3, 0x84, 0x6, &(0x7f0000000280)={r4, @in6={{0xa, 0x4e20, 0x4, @mcast2, 0x8001}}}, &(0x7f00000001c0)=0x84) r5 = openat$selinux_mls(0xffffffffffffff9c, &(0x7f0000000380)='/selinux/mls\x00', 0x0, 0x0) ioctl$sock_ax25_SIOCDELRT(r5, 0x890c, &(0x7f00000003c0)={@default, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}, 0x6, [@null, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @null, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default, @default]}) getsockopt$inet_sctp_SCTP_RECVNXTINFO(r3, 0x84, 0x21, &(0x7f0000000340), &(0x7f0000000100)=0xffffffffffffff82) 05:28:59 executing program 0: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f0000000000), 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) 05:28:59 executing program 1 (fault-call:0 fault-nth:10): syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000140)='./file0\x00', 0xff, 0x1, &(0x7f0000000000)=[{&(0x7f0000000180)="8da4363ac0ed0000000000000001004d0100000000000000000000000009000000000000009748aeb81e1b00920efd9a0000010000000000098cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 333.860818] 9pnet: Insufficient options for proto=fd 05:28:59 executing program 2: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = syz_open_dev$amidi(&(0x7f00000000c0)='/dev/amidi#\x00', 0xfffffffffffffff7, 0x2) connect$rds(r1, &(0x7f0000000100)={0x2, 0x4e24, @multicast1}, 0x10) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000280)={0x0}, &(0x7f00000002c0)=0xc) sched_getparam(r2, &(0x7f0000000300)) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r3 = syz_open_dev$radio(&(0x7f00000001c0)='/dev/radio#\x00', 0x3, 0x2) perf_event_open$cgroup(&(0x7f0000000140)={0x0, 0x70, 0x80, 0x7, 0x5, 0x9, 0x0, 0xe3, 0x2400, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0xae1, 0xb, @perf_config_ext={0x1, 0x1}, 0x4000, 0x8, 0xfcb, 0x5, 0xfffffffffffffff8, 0x8000, 0xf0b}, r1, 0x6, r3, 0x9) [ 333.969253] FAULT_INJECTION: forcing a failure. [ 333.969253] name failslab, interval 1, probability 0, space 0, times 0 [ 334.025419] CPU: 0 PID: 22539 Comm: syz-executor.1 Not tainted 4.14.146 #0 [ 334.032515] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 334.032520] Call Trace: [ 334.032548] dump_stack+0x138/0x197 [ 334.032570] should_fail.cold+0x10f/0x159 [ 334.054289] should_failslab+0xdb/0x130 [ 334.058276] kmem_cache_alloc+0x2d7/0x780 [ 334.062427] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 334.067872] ? check_preemption_disabled+0x3c/0x250 [ 334.072896] selinux_file_alloc_security+0xb4/0x190 [ 334.077907] security_file_alloc+0x6d/0xa0 [ 334.082149] get_empty_filp+0x162/0x3f0 [ 334.086113] path_openat+0x8f/0x3f70 [ 334.089815] ? generic_perform_write+0x34f/0x480 [ 334.094562] ? path_lookupat.isra.0+0x7b0/0x7b0 [ 334.099234] ? save_trace+0x290/0x290 [ 334.103023] ? __alloc_fd+0x1d4/0x4a0 [ 334.106819] do_filp_open+0x18e/0x250 [ 334.110607] ? may_open_dev+0xe0/0xe0 [ 334.114395] ? lock_downgrade+0x6e0/0x6e0 [ 334.118535] ? _raw_spin_unlock+0x2d/0x50 [ 334.122684] ? __alloc_fd+0x1d4/0x4a0 [ 334.126490] do_sys_open+0x2c5/0x430 [ 334.130203] ? filp_open+0x70/0x70 [ 334.133733] ? fput+0xd4/0x150 [ 334.136914] ? SyS_pwrite64+0xca/0x140 [ 334.140790] SyS_open+0x2d/0x40 [ 334.144053] ? do_sys_open+0x430/0x430 [ 334.147925] do_syscall_64+0x1e8/0x640 [ 334.151809] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 334.156646] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 334.161820] RIP: 0033:0x413911 [ 334.164994] RSP: 002b:00007f617e384a80 EFLAGS: 00000293 ORIG_RAX: 0000000000000002 05:29:00 executing program 5: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socket$vsock_stream(0x28, 0x1, 0x0) [ 334.172788] RAX: ffffffffffffffda RBX: 0000000020000028 RCX: 0000000000413911 [ 334.180040] RDX: 00007f617e384b0a RSI: 0000000000000002 RDI: 00007f617e384b00 [ 334.187294] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 334.194563] R10: 0000000000000075 R11: 0000000000000293 R12: 0000000000000004 [ 334.201837] R13: 00000000004c8b25 R14: 00000000004dfbc8 R15: 0000000000000003 05:29:00 executing program 0: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f0000000000), 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) 05:29:00 executing program 4: r0 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x1, 0x2) ioctl$VIDIOC_S_FREQUENCY(r0, 0x402c5639, &(0x7f0000000180)={0x0, 0x1}) open(&(0x7f00000000c0)='./file0\x00', 0x4000, 0x141) r1 = add_key$keyring(&(0x7f0000000100)='keyring\x00', &(0x7f0000000140)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffb) r2 = socket$alg(0x26, 0x5, 0x0) bind$alg(r2, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'ghash-generic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, 0x0, 0x0) fstat(r2, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0}) r4 = syz_open_dev$vbi(0x0, 0x2, 0x2) r5 = getgid() write$FUSE_ENTRY(r4, &(0x7f0000000200)={0x90, 0x0, 0x0, {0x6, 0x3, 0xf24, 0x0, 0x5, 0x0, {0x0, 0x0, 0x9, 0x0, 0x5, 0x5, 0x9, 0x0, 0x0, 0x3, 0x0, 0x0, r5, 0x1, 0x1}}}, 0x90) keyctl$chown(0x4, r1, r3, r5) read(0xffffffffffffffff, &(0x7f0000000040)=""/108, 0x6c) 05:29:00 executing program 3: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = syz_open_dev$swradio(&(0x7f00000000c0)='/dev/swradio#\x00', 0x0, 0x2) r1 = syz_open_dev$sndpcmp(&(0x7f0000000100)='/dev/snd/pcmC#D#p\x00', 0x1, 0xa0000) r2 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f0000000200)={0x0, 0x18, 0xfa00, {0x3, &(0x7f00000001c0)={0xffffffffffffffff}, 0x1, 0x3}}, 0x320) write$RDMA_USER_CM_CMD_JOIN_IP_MCAST(r1, &(0x7f0000000180)={0x10, 0x30, 0xfa00, {&(0x7f0000000140), 0x3, {0xa, 0x4e22, 0x7, @initdev={0xfe, 0x88, [], 0x0, 0x0}, 0xfffffff7}, r3}}, 0x38) write$RDMA_USER_CM_CMD_RESOLVE_ROUTE(r0, &(0x7f0000000100)={0x4, 0x8, 0xfa00, {r3, 0x1}}, 0x10) 05:29:00 executing program 4: ioctl$VIDIOC_S_FREQUENCY(0xffffffffffffffff, 0x402c5639, &(0x7f0000000180)={0x0, 0xa}) 05:29:00 executing program 1 (fault-call:0 fault-nth:11): syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000140)='./file0\x00', 0xff, 0x1, &(0x7f0000000000)=[{&(0x7f0000000180)="8da4363ac0ed0000000000000001004d0100000000000000000000000009000000000000009748aeb81e1b00920efd9a0000010000000000098cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 05:29:00 executing program 0: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{0x0, 0x0, 0x10000}], 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) 05:29:00 executing program 4: r0 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x1, 0x2) ioctl$VIDIOC_S_FREQUENCY(r0, 0x402c5639, &(0x7f0000000180)={0x0, 0x1}) r1 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x4, 0x4182) r2 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) pwritev(r2, &(0x7f0000000340)=[{&(0x7f0000000140)='!', 0x1}], 0x1, 0x81805) r3 = dup2(r2, r2) ioctl$SG_GET_RESERVED_SIZE(r2, 0x2272, 0x0) ioctl$LOOP_CHANGE_FD(r1, 0x4c00, r2) write$P9_RLERRORu(r3, &(0x7f00000003c0)=ANY=[@ANYBLOB="1400000007650d6c24ed92c8397291335cf616f0010200070062726f0c62077600b365a0a59e7eea"], 0x28) getsockopt$sock_cred(r3, 0x1, 0x11, 0x0, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(r3, 0x29, 0x23, &(0x7f00000007c0)={{{@in=@remote, @in6=@initdev}}, {{@in=@empty}, 0x0, @in6=@ipv4}}, &(0x7f00000008c0)=0xe8) sendfile(r3, r1, 0x0, 0x2400003e) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r3, 0x84, 0x1d, &(0x7f0000000040)={0x3, [0x0, 0x0, 0x0]}, &(0x7f0000000080)=0x10) [ 334.484948] FAULT_INJECTION: forcing a failure. [ 334.484948] name failslab, interval 1, probability 0, space 0, times 0 [ 334.527690] CPU: 0 PID: 22589 Comm: syz-executor.1 Not tainted 4.14.146 #0 [ 334.534747] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 334.534752] Call Trace: [ 334.534771] dump_stack+0x138/0x197 [ 334.550359] should_fail.cold+0x10f/0x159 [ 334.554523] should_failslab+0xdb/0x130 [ 334.558505] kmem_cache_alloc+0x2d7/0x780 [ 334.558517] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 334.558533] ? check_preemption_disabled+0x3c/0x250 [ 334.573143] selinux_file_alloc_security+0xb4/0x190 [ 334.578178] security_file_alloc+0x6d/0xa0 [ 334.582422] get_empty_filp+0x162/0x3f0 [ 334.586385] path_openat+0x8f/0x3f70 [ 334.590093] ? trace_hardirqs_on+0x10/0x10 [ 334.594316] ? check_preemption_disabled+0x3c/0x250 [ 334.599607] ? path_lookupat.isra.0+0x7b0/0x7b0 [ 334.604267] ? find_held_lock+0x35/0x130 [ 334.608319] ? save_trace+0x290/0x290 [ 334.612109] ? __alloc_fd+0x1d4/0x4a0 [ 334.615901] do_filp_open+0x18e/0x250 [ 334.619687] ? may_open_dev+0xe0/0xe0 [ 334.623473] ? lock_downgrade+0x6e0/0x6e0 [ 334.627607] ? _raw_spin_unlock+0x2d/0x50 [ 334.631736] ? __alloc_fd+0x1d4/0x4a0 [ 334.635528] do_sys_open+0x2c5/0x430 [ 334.639225] ? filp_open+0x70/0x70 [ 334.642745] ? fput+0xd4/0x150 [ 334.645919] ? SyS_pwrite64+0xca/0x140 [ 334.649788] SyS_open+0x2d/0x40 [ 334.653059] ? do_sys_open+0x430/0x430 [ 334.656939] do_syscall_64+0x1e8/0x640 [ 334.660807] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 334.665635] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 334.670814] RIP: 0033:0x413911 [ 334.673997] RSP: 002b:00007f617e384a80 EFLAGS: 00000293 ORIG_RAX: 0000000000000002 [ 334.682298] RAX: ffffffffffffffda RBX: 0000000020000028 RCX: 0000000000413911 [ 334.689550] RDX: 00007f617e384b0a RSI: 0000000000000002 RDI: 00007f617e384b00 [ 334.696801] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 334.704055] R10: 0000000000000075 R11: 0000000000000293 R12: 0000000000000004 [ 334.711316] R13: 00000000004c8b25 R14: 00000000004dfbc8 R15: 0000000000000003 05:29:00 executing program 1 (fault-call:0 fault-nth:12): syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000140)='./file0\x00', 0xff, 0x1, &(0x7f0000000000)=[{&(0x7f0000000180)="8da4363ac0ed0000000000000001004d0100000000000000000000000009000000000000009748aeb81e1b00920efd9a0000010000000000098cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 334.876574] FAULT_INJECTION: forcing a failure. [ 334.876574] name failslab, interval 1, probability 0, space 0, times 0 [ 334.892921] CPU: 0 PID: 22615 Comm: syz-executor.1 Not tainted 4.14.146 #0 [ 334.899965] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 334.909320] Call Trace: [ 334.911917] dump_stack+0x138/0x197 [ 334.915554] should_fail.cold+0x10f/0x159 [ 334.919696] should_failslab+0xdb/0x130 [ 334.923675] kmem_cache_alloc_trace+0x2e9/0x790 [ 334.928327] ? __lockdep_init_map+0x10c/0x570 [ 334.932816] ? loop_get_status64+0x120/0x120 [ 334.937214] __kthread_create_on_node+0xe3/0x3e0 [ 334.941953] ? kthread_park+0x140/0x140 [ 334.945914] ? __fget+0x210/0x370 [ 334.949356] ? loop_get_status64+0x120/0x120 [ 334.953757] kthread_create_on_node+0xa8/0xd0 [ 334.958242] ? __kthread_create_on_node+0x3e0/0x3e0 [ 334.963355] ? __lockdep_init_map+0x10c/0x570 [ 334.968098] lo_ioctl+0xcf7/0x1ce0 [ 334.971635] ? debug_check_no_obj_freed+0x2aa/0x7b7 [ 334.976645] ? loop_probe+0x160/0x160 [ 334.980436] blkdev_ioctl+0x96b/0x1860 [ 334.984311] ? blkpg_ioctl+0x980/0x980 [ 334.988185] ? __might_sleep+0x93/0xb0 [ 334.992065] ? __fget+0x210/0x370 [ 334.995512] block_ioctl+0xde/0x120 [ 334.999123] ? blkdev_fallocate+0x3b0/0x3b0 [ 335.003449] do_vfs_ioctl+0x7ae/0x1060 [ 335.007328] ? selinux_file_mprotect+0x5d0/0x5d0 [ 335.012092] ? lock_downgrade+0x6e0/0x6e0 [ 335.016236] ? ioctl_preallocate+0x1c0/0x1c0 [ 335.020952] ? __fget+0x237/0x370 [ 335.024401] ? security_file_ioctl+0x89/0xb0 [ 335.028794] SyS_ioctl+0x8f/0xc0 [ 335.032152] ? do_vfs_ioctl+0x1060/0x1060 [ 335.036301] do_syscall_64+0x1e8/0x640 [ 335.040186] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 335.045027] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 335.050210] RIP: 0033:0x459897 [ 335.053389] RSP: 002b:00007f617e384a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 335.061086] RAX: ffffffffffffffda RBX: 0000000020000028 RCX: 0000000000459897 [ 335.068353] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 05:29:00 executing program 5: syz_mount_image$btrfs(&(0x7f0000000040)='\x7ftrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 05:29:00 executing program 4: r0 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x1, 0x2) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = fcntl$dupfd(r1, 0x0, 0xffffffffffffffff) r3 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/net/pfkey\x00', 0x105000, 0x0) r4 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x4, 0x4182) r5 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) pwritev(r5, &(0x7f0000000340)=[{&(0x7f0000000140)='!', 0x1}], 0x1, 0x81805) r6 = dup2(r5, r5) ioctl$SG_GET_RESERVED_SIZE(r5, 0x2272, 0x0) ioctl$LOOP_CHANGE_FD(r4, 0x4c00, r5) r7 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x4, 0x4182) r8 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) pwritev(r8, &(0x7f0000000340)=[{&(0x7f0000000140)='!', 0x1}], 0x1, 0x81805) r9 = dup2(r8, r8) ioctl$SG_GET_RESERVED_SIZE(r8, 0x2272, 0x0) ioctl$LOOP_CHANGE_FD(r7, 0x4c00, r8) write$P9_RLERRORu(r9, &(0x7f00000003c0)=ANY=[@ANYBLOB="1400000007650d6c24ed92c8397291335cf616f0010200070062726f0c62077600b365a0a59e7eea"], 0x28) getsockopt$sock_cred(r9, 0x1, 0x11, 0x0, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(r9, 0x29, 0x23, &(0x7f0000000400)={{{@in=@remote, @in6=@initdev}}, {{@in=@empty}, 0x0, @in6=@ipv4}}, &(0x7f0000000280)=0xe8) sendfile(r9, r7, 0x0, 0x2400003e) ioctl$KVM_CREATE_VM(r9, 0xae01, 0x0) write$P9_RLERRORu(r6, &(0x7f00000003c0)=ANY=[@ANYBLOB="1400000007650d6c24edf0010a00071562726f0c62077600b365a0a59e7eea"], 0x28) getsockopt$sock_cred(r6, 0x1, 0x11, 0x0, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(r6, 0x29, 0x23, &(0x7f00000007c0)={{{@in=@remote, @in6=@initdev}}, {{@in=@empty}, 0x0, @in6=@ipv4}}, &(0x7f00000008c0)=0xe8) sendfile(r6, r4, 0x0, 0x2400003e) ioctl$NBD_SET_SOCK(r3, 0xab00, r6) getsockopt$EBT_SO_GET_INIT_INFO(r2, 0x0, 0x82, &(0x7f0000000180)={'broute\x00'}, &(0x7f0000000240)=0x50) ioctl$TIOCSCTTY(r2, 0x540e, 0xffffffff) getsockopt$sock_cred(r2, 0x1, 0x11, 0x0, &(0x7f0000000640)) setsockopt$ax25_int(r2, 0x101, 0x9, &(0x7f0000000040)=0x10001, 0x4) ioctl$VIDIOC_S_FREQUENCY(r0, 0x402c5639, &(0x7f0000000180)={0x0, 0x1}) r10 = socket$alg(0x26, 0x5, 0x0) bind$alg(r10, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'ghash-generic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r10, 0x117, 0x1, 0x0, 0x0) fsetxattr$security_capability(r10, &(0x7f00000000c0)='security.capability\x00', &(0x7f0000000100)=@v1={0x1000000, [{0x0, 0x20}]}, 0xc, 0x0) [ 335.075617] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 335.082871] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 335.090129] R13: 00000000004c8b25 R14: 00000000004dfbc8 R15: 0000000000000003 05:29:00 executing program 2: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = syz_open_dev$usbmon(&(0x7f00000000c0)='/dev/usbmon#\x00', 0x9423, 0x20000) ioctl$EVIOCGSW(r1, 0x8040451b, &(0x7f0000000100)=""/98) r2 = socket$alg(0x26, 0x5, 0x0) bind$alg(r2, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'ghash-generic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, 0x0, 0x0) fsetxattr$trusted_overlay_upper(r2, &(0x7f0000000180)='trusted.overlay.upper\x00', &(0x7f0000000280)={0x0, 0xfb, 0x1015, 0x5, 0x3, "d7791fffa6f7abb2fa4caad1b5fd15e8", "a0d61532e41f8943ac1e09d8cdf09b8899e8b8a14fc40b53eed7728586c17586169089f4fc6e088d3927645ac28c21f21f797958d3f5d05a8323120cb78ad5d3d896602755b6fa0b8fdad2c540b1537d3d4b6dc769f908fd25e498455e656c15a4956de7bb3cd61e496713f5485a3026adf1dcda20d4e7aa8515634dceff9a7af170593b01d8fc5f37f6b9defe78f88790f10a5b7570d1cf37b79d5a9f4dd31a1958bff3577208cd4628bee4e2fb3b8faff304ec1f6de1e265956a8881e3e20471a0d4fa9bb11e1e8d8146bc8a10b0caf62f0347679bb5cfb3c5814e7e8338411eab47e0c2e5324c2dbff371afcdd3e9c4828ac2397066297964a6639fe556df16e108046d46eeaf8e01e2a201a910f032b3ed53139627abbf791ed0531d8fe6684f3841a6d285c52f157915a1e9bbe94c88338b46720bab2d9b15443e02dc74d3ed0162bee0e837abed65774d175b0cadc509f017d09656f36cd17c168aa3083d229aa226a05e553562a3b980c957de2bcae43c3ec45d0d95017480cdd3ef08dd6ff57324484fdca6f9291d7bc5a0237e291f9ce18338aab111c39e696ba3823c64be9f924f3111b945b0dd9ab252fe8ecd32526af24dad1b34557b5336aeff7828fdd84d1b51fc18e7d15adad5dfec4766fe17525eda22ea41747d448935d2335594d126a6d0ef63006e89f904a8ce9cc8b23d8730d711239aec02ec32aedd906233f7653b35c90d5e35f5c766a7777f9f4eda84276641d57e708f5d5be95da3933866e2818176c0e1d0482523bb30a2f281b6798e2d2cfa7faf23f5fbf17d1473a04b515c10f5feae79fcd6167cfb737ae4ad15b92d930960ea7a5fdc34fbe2c2f8ed0fa1144375fc449f6db1133cf0f6c3ea6732f34c2ca8e72a7af54f6d6fb5bfe0ab46519735fa5b360ceec60e8257c7c868f5a3d3ffb905e0a7519879b9df507553dc8fc78484d70450bce8e0ceaa2b28989a4c56f5518a0f4306c7f694fbb5ee8e411196152e299ed5845c5bf155031dac35c6d7117b349f5a7450d05da1a100f04ebd1218a32072f63c11c5c33db10941f87607a7015a0ed6cd1fc2265bbc09af8ffe1e3ae27fcefd27c15ed1944f5265471d9a5e77e7b6d8a96a1917539ae98ca245f4c31c3bfa9f0d25e08ca6da9f029851353b412f4ecc5e65dadbe9d3449babda5beceef05ef1c9e5b6009f35dabbb885895aa41219e22df592dc7b7e52f40468bc94eb02eb2470cc67aed0150b83374cd3bd93cc98bcfc987b8b283869bdedf82362a5bd891335de9cf5a3400553b7f27f324b3f9a39e9639afb84b986a9512d4ec0643053f8025d453ec2cf6846ea3382345601ed8ef3c52602694d52c8f6ef82b9980b0bd89be5f3c17838f4b3ec4fa7988aaef772c48c3acae6c82766fc116cd13b99b065fb97cffa7c3e838428f96f23db4289de99be4e2a82dc435973092f4c58dff5c129cbae9059ae27fcfc3d1952905dd204ab273a86cf6d9c6eb64335822fd2c18cb796b27f166bed4767c4303537997f84d5e0583520770146d288b536a9cb2953742c01a38d265a7472bcfef6d8f0dc919fa7761933969b15f08292e88f99d97f89a474322a5602795a453e3a047a5f470ecd6ffae737f88d05ad0cb48ddcf2bb782c3a6e0ddeb1f8ea1af3a211c9b38505b3f30f96ee926263acf02eab4715b0b5e4d614e031ce3fd6e436aeabdf8f2f2cfe400837b0de095a2da87f79f66e9fa12fb51dc653b485bc431c2aa1c28600280854a98159e33b058384a2f4c1bbe638d30f9192af301d09cf1025d61c4001fd7451ae4bf2916013f07ef3fae09246c67a8cf955aa74dda6cafe81d76723fb891f60aa45483d680e9353487c2e33566107189089ed19d1348e55b1b6cf2c36dd88f35421175b3b0479ddd355aa8fbb959aa395e729b9f9bcda2fb790b8a1f77337535c5f97d6ea7391f7e075a6ee0453fd790a6886fbe2338be00acf467183eaa3bcc7cc14e3a5be4e085a76ff1a6d6cee5916d4873990de3ae94ee4dca8502152082442517a5cd24606e19370ba7d6abbb4924570a94be7ed069540c42a43a548c152933226d3a7937921b09704fffc93ad101e423316562dea3c4b11b26b371cbbde553010a27ddfa5c2e82bd6bbdfc5fef7ea87ac9a2d84b5cfe18efba449d3cf934b1858824a579075552a14435f43b3147db3387b949625d5f4e76e850bed7df546a8736bcd2883978ce240bee17de1d8e239fc29b8b52cdef774a1f8e29cd2fe58b15316e3a15f904a663427cdac827092a49b8435739cb815df88297ae4c426722a832c02eb2787968579cbc221c7ad0b8794d3278de4873e47ab9a2c8e84487705f5b226690d10dc90d329199d23d332b95b4a6aef843ff4f583ef4dc424798dd6cd0c19947193190e2f1d7c22f6964a9cc6ed19d13cded270025a25e0d4e829e18699cd7ad5962e1a44b4e8197aeca995ab8018e6ce7d9c10de12cd6b8d944816d038c462e278183ecd2b98718bc9bc0728fbbc7182b78c9cb0dc6fd3d494e67ce90f471eb26117f73eb0891fe7afc51a582f6680063b54e55a4142a04ceac45cbd92a93c159ecb63860fb5c10a4349fb2d2fafe953255a12e369c735266231c67401ac3d57209fb25adacbf12d65ae89ce5de6f3c636ac8b68329c1f5ace622405af74b3679799a8264fa307dd1ad0e70729f6016dfeefba8102ea22cc0df648efa2667bd561b6719d0da1441e0e3691d72a417b1bc3e009c6b0b10df144ea8ef560c347c2dae984b01989f15a0ba347cf89e6484b014bbb05a354d07f562e21873a7e10b1b184c17456579eeb3d6f25c4ba24ae84a4dda09d2f57a4e146018c3b6acf2041447db67e4a012682621b81a7af73adb1c754c08eef7ea195cd1b3663fb41c253152847191b9724661a058fc8d0fc4eb3f226413ae4f94b727ae2ebed00c2dfa2b7d259e556d4efb16a2df77213c0947961b07ecebe2c719f60735a9dab0e54ac3b5030cec32ec52d10e9dd60a285610c38ae9a57a3ad9a85797d070b18b576681c60c1cfc8755033d8829b9f99459a885b7f072d323c20fc23c34352d5517a98f9e12f78627fccfbaf47f271a8579359ccd5576980a9744377bf8aa7bacba00c652a1431945c347e84e986122ad46000d8b971ad2afd4e17cc362673d2750ed0e187c586c7c51c7d8addc2f4afc76298eff8305ba0e4dbe7634264d7ea2332bf6135b0c9b6cc7a7714005dd7a5595460353901a5cc0f25a00f38e88ec043e440cbd584dd0b117437e06ae2237dcc7ea125852aa13efc6c0c8ffb8c29954bd1e4e20d6af522fe73381c108e6c05e6905d3ec7b16bb2c16283f981fe303676a30c919f7ea96730b73b5c679b565a1d910c39d8000c3e96035a138dd2eda8c038c32430ed4be1c3944a4a93d6367299bbb2bd02ba021169c23bf7343f2d48d65b3954be0616e3f34764461ff17301bfa49ff20bc4983f98a62e2d75bbf31de5afb3f97f2f313572d7d9f1008ee78ead92d7b8f09346ceb3b702e0a8ee3587de3bf79980e0c05131da68e8b33e4f69d3e20dbf9c09c771ea912a73d2cc645b2a9dc44e61963dfde503e91ef4198e18663ef69f6afc617ac4bdbe62a3f5bd9aec1c2e49baea1a2fbe69314356087275098ee68c86da2732db91ca6501f11da28e7d2f25e6fa80f9dde7a97bb4bf464e44cf76c183aa994cc7dfba3aa94bf93c2627d4dbf546fb6dd943c59f7b29ada4e4276a61522e6d2708c6855692cb96981d70a63480f11ba462fc1d60a355a3eaf6742be9656ad1442d360f2d3680d6f9513b728516e810d7001a2c69efa752eedc4fbce9d28dc4425492a8d7a1bd9c82566be0f022da87c605c5b6180bd65e797ff2e86293d7d3ded0f75157f80ca79d0516ae377ac05cbc1ee68f847c48877b22679777a0ae12fd722efe2b2c0613a1e46bdbeeee146c473de64071654374bbee846a99a5ca16e771287aa9a89cd359b972a420b49c90bdaf4241a8e8b62092fbedf5e8bb6714187dd536676acadae783d9706e510ca2ec4f591ba727f6a1e505266d2856429a65d5c54bece08caa6a800331ab724d6166c73ff4ba9780f05290865d0edc9a130a927953fe8809eaf08925f23fe52f397f9c3fa6ef39b6496316be952c5f223017116f8c18ecccebefbcdb5738545b8dcfb866521fbba286bc8aaf7a3a36829ad2398413ae6720dec991e9e05b687cf4f4fa90ee0f73f717b91363a4b8f12f181eca60d943ebf87e1fb142161850dfb996731b42e42d2f7e4059b8d4b1f27cd1c57f59dec4c3a9905dd65bbb557db7910644d6751d1c9f08d246845de7b3875404ed6c13b62d59615a6ba17deac9d70088bf4b1a7a38902a80ec902b95b4fb6a4475b123ea961d3dfecdf38675c87cb946f3e6beeaa6b934adc990990c78197e8d7e79cced748c51cc82c975cebe943f7f68bfe33f056fa510a976a39ca7d3c7252386a197b0551add6fbfd017f8f7cad174c4bcaa06fb7ef37f70b1791a0d62151066a5a8e15659d7e146e47c26df1b0effbbeb41d8321a2fbe329ddbe2eea854af72a0fb6bb4dface45f8a6f8132ef7316ff248fd714c4c2f0fc4a3289d6a4fdba7fe681db098f342ab99825aa0dd47b1be7c07c998fe27494dc2c7c822123e6cc834878650329d07ccb3dea990253d2e0abc2cd6c16986dac92448ee342f9e698ecad16dbb9215f3d277480c23a4e5acaa4851e8c8bd2e04c530411c29cb5d08010a21387e02d30979ac8a55511b8882b05359f321e986066646a2624da792b75f112ebf0b95a1819a57e8821e461bb73beea3231e9473f50ed631b99d57bb1a8e2688bdcd8c95e834d97573838917767652e894dd0e715ca64a78c7f0d1048a7ab2c2675e1e201cdf0de0386bcfab16e2b0ecd9f823b5efe4e6e3abfc044f1d34aa7cbcd829d9b33f0dd0f2843546f93a42d377b5c077033426d670a943d82ed6afdad98c1054de7e33b3062c355403c616f2038246da6f2c0e5f747db25e6eaa700ad49847e9e50eb1481d710f1dc4d1fa2031bebc0b37ff606746d33d58d56f45929ed4adf29578dedad0ad836f47687fc200ef27334c2e2e065b0da5918baa4e870170aaa8423626b54f07b3329ebc2f5d043052186e86b4bba2226d737e209caf949c37c6ebb21bae7ddb6e0be01eb0f2f8af98ba19d768c310f76e84f288774178c9243b3e1ced72cf2995e3bfdc35da11c0759b5efafe34c53a27d06288b4fc5a78bcfb40851da6f083954032e6595d2e0a98fac9266fc561c0449782a3b198359f04ebe27741d2dceff40adb0b68aac3b72934612d78c85e2f06878f6353cdd8c963a762f0459665ed465b247aa1404a817b585be995d563ec4d965a7e20a507691fc4eecd63d0cd763e924a1d5e8d8e064b43dd0edc7f6708064a14eed1a0eb8fa98a5130a6588a65ca7eb8c7b83313eb20dd025a1bf7783aed5f1735d09d72a9d279dee5a078a72845574007b208100fa7f3f604fdeee76146200ac333b5ad46cd59d522555e4bd75f8b7e2a4d73610e1302901ffb09d29d79d79abaf01eae8ac58c9c811f74f6c5ed0b3f3ada601a35f728f06e6df99c9a869df4c9fd7e4814937f050b855385d0b2ba80c5e2a82e440eb35197377fe4a8164caf44151868c3bc2a85110ef1e3a7ec0bd37146e4b6ca1309fab8b8fb6034ab1e98f1942668504d11694a92fc4be7467d0de24be8aae74ac04dbd690d9736e1c0d5d73d089e58a1883759c9ce31238764791b6afa9d3b1effb9c5b11fccc1b54bd6f49a1"}, 0x1015, 0x2) 05:29:00 executing program 3: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = fcntl$dupfd(r0, 0x0, 0xffffffffffffffff) getsockopt$EBT_SO_GET_INIT_INFO(r1, 0x0, 0x82, &(0x7f0000000180)={'broute\x00'}, &(0x7f0000000240)=0x50) ioctl$TIOCSCTTY(r1, 0x540e, 0xffffffff) getsockopt$sock_cred(r1, 0x1, 0x11, 0x0, &(0x7f0000000640)) r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r2, 0x84, 0x6e, &(0x7f0000961fe4)=[@in={0x2, 0x0, @dev}], 0x10) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f00000001c0)={0x1, [0x0]}, &(0x7f00000000c0)=0xfe10) getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r2, 0x84, 0x66, &(0x7f0000000040)={r3}, &(0x7f0000000140)=0x8) setsockopt$inet_sctp_SCTP_PR_SUPPORTED(r1, 0x84, 0x71, &(0x7f0000000140)={r3, 0x4}, 0x8) r4 = openat$cuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/cuse\x00', 0x2, 0x0) write$FUSE_GETXATTR(r4, &(0x7f0000000100)={0x18, 0xfffffffffffffff5, 0x4, {0x8}}, 0x18) 05:29:01 executing program 0: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{0x0, 0x0, 0x10000}], 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) 05:29:01 executing program 1 (fault-call:0 fault-nth:13): syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000140)='./file0\x00', 0xff, 0x1, &(0x7f0000000000)=[{&(0x7f0000000180)="8da4363ac0ed0000000000000001004d0100000000000000000000000009000000000000009748aeb81e1b00920efd9a0000010000000000098cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 335.376688] FAULT_INJECTION: forcing a failure. [ 335.376688] name failslab, interval 1, probability 0, space 0, times 0 [ 335.423620] CPU: 0 PID: 22645 Comm: syz-executor.1 Not tainted 4.14.146 #0 [ 335.430691] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 335.440162] Call Trace: [ 335.442761] dump_stack+0x138/0x197 [ 335.446417] should_fail.cold+0x10f/0x159 [ 335.450582] should_failslab+0xdb/0x130 [ 335.454557] kmem_cache_alloc_trace+0x2e9/0x790 [ 335.459214] ? __lockdep_init_map+0x10c/0x570 [ 335.463706] ? loop_get_status64+0x120/0x120 [ 335.468107] __kthread_create_on_node+0xe3/0x3e0 [ 335.472864] ? kthread_park+0x140/0x140 [ 335.476986] ? __fget+0x210/0x370 [ 335.480450] ? loop_get_status64+0x120/0x120 [ 335.484860] kthread_create_on_node+0xa8/0xd0 [ 335.489340] ? __kthread_create_on_node+0x3e0/0x3e0 [ 335.494347] ? __lockdep_init_map+0x10c/0x570 [ 335.498846] lo_ioctl+0xcf7/0x1ce0 [ 335.502375] ? debug_check_no_obj_freed+0x2aa/0x7b7 [ 335.507401] ? loop_probe+0x160/0x160 [ 335.511457] blkdev_ioctl+0x96b/0x1860 [ 335.515342] ? blkpg_ioctl+0x980/0x980 [ 335.519252] ? __might_sleep+0x93/0xb0 [ 335.523149] ? __fget+0x210/0x370 [ 335.526699] block_ioctl+0xde/0x120 [ 335.530318] ? blkdev_fallocate+0x3b0/0x3b0 [ 335.534808] do_vfs_ioctl+0x7ae/0x1060 [ 335.538692] ? selinux_file_mprotect+0x5d0/0x5d0 [ 335.543442] ? lock_downgrade+0x6e0/0x6e0 [ 335.547585] ? ioctl_preallocate+0x1c0/0x1c0 [ 335.553744] ? __fget+0x237/0x370 [ 335.557219] ? security_file_ioctl+0x89/0xb0 [ 335.561622] SyS_ioctl+0x8f/0xc0 [ 335.564978] ? do_vfs_ioctl+0x1060/0x1060 [ 335.569114] do_syscall_64+0x1e8/0x640 [ 335.572997] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 335.577849] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 335.583025] RIP: 0033:0x459897 [ 335.586205] RSP: 002b:00007f617e384a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 335.593939] RAX: ffffffffffffffda RBX: 0000000020000028 RCX: 0000000000459897 [ 335.601245] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 335.608673] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 335.616457] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 335.623719] R13: 00000000004c8b25 R14: 00000000004dfbc8 R15: 0000000000000003 05:29:01 executing program 0: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{0x0, 0x0, 0x10000}], 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) 05:29:01 executing program 1 (fault-call:0 fault-nth:14): syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000140)='./file0\x00', 0xff, 0x1, &(0x7f0000000000)=[{&(0x7f0000000180)="8da4363ac0ed0000000000000001004d0100000000000000000000000009000000000000009748aeb81e1b00920efd9a0000010000000000098cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 05:29:01 executing program 4: r0 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x1, 0x2) ioctl$VIDIOC_S_FREQUENCY(r0, 0x402c5639, &(0x7f0000000180)={0x9, 0x1}) r1 = socket$alg(0x26, 0x5, 0x0) r2 = syz_open_dev$vcsa(&(0x7f0000000300)='/dev/vcsa#\x00', 0x80000001, 0x20000) getsockopt$inet6_IPV6_IPSEC_POLICY(r2, 0x29, 0x22, 0x0, &(0x7f0000000780)) ioctl$VIDIOC_QUERYCAP(r2, 0x80685600, &(0x7f00000001c0)) bind$alg(r1, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'ghash-generic\x00'}, 0x58) r3 = syz_open_dev$dri(&(0x7f0000000140)='/dev/dri/card#\x00', 0x0, 0x0) ioctl$DRM_IOCTL_SET_SAREA_CTX(r3, 0x4010641c, &(0x7f0000000440)={0x0, 0x0}) ioctl$DRM_IOCTL_ADD_BUFS(r3, 0xc0206416, &(0x7f0000000100)={0x2, 0x20, 0x2, 0x1, 0x1, 0x10001}) setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, 0x0, 0x0) ioctl$sock_SIOCGPGRP(r1, 0x8904, &(0x7f0000000040)=0x0) shutdown(r2, 0x1) ptrace$PTRACE_SECCOMP_GET_FILTER(0x420c, r4, 0x1, &(0x7f0000000080)=""/66) 05:29:01 executing program 2: r0 = add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000040)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffd) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000080)={0x0, 0x0}, &(0x7f00000001c0)=0xc) mount$bpf(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='bpf\x00', 0x8, &(0x7f0000000340)={[{@mode={'mode', 0x3d, 0x1007fff}}, {@mode={'mode', 0x3d, 0x3f}}, {@mode={'\x01\b\x01\x00', 0x3d, 0xfffe}}], [{@func={'func', 0x3d, 'BPRM_CHECK'}}, {@fsname={'frname', 0x3d, 'keyring\x00'}}, {@measure='measure'}, {@uid_lt={'uid<', r1}}]}) r2 = add_key(&(0x7f0000000140)='big_key\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f0000000400)="f9", 0x1, r0) keyctl$revoke(0x3, r2) keyctl$revoke(0x3, r2) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$addseals(r3, 0x409, 0x5) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) 05:29:01 executing program 5: syz_open_dev$usb(&(0x7f0000000000)='/dev/bus/usb/00#/00#\x00', 0xfffffffffffffffb, 0x100) [ 335.836017] FAULT_INJECTION: forcing a failure. [ 335.836017] name failslab, interval 1, probability 0, space 0, times 0 [ 335.848172] CPU: 0 PID: 22670 Comm: syz-executor.1 Not tainted 4.14.146 #0 [ 335.855216] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 335.864575] Call Trace: [ 335.867178] dump_stack+0x138/0x197 [ 335.870825] should_fail.cold+0x10f/0x159 [ 335.875007] should_failslab+0xdb/0x130 [ 335.879011] kmem_cache_alloc+0x2d7/0x780 05:29:01 executing program 2: syz_mount_image$btrfs(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) truncate(&(0x7f00000000c0)='./file0\x00', 0x6) [ 335.883208] ? __mutex_unlock_slowpath+0x71/0x800 [ 335.888054] ? __lock_is_held+0xb6/0x140 [ 335.892129] __kernfs_new_node+0x70/0x420 [ 335.896292] kernfs_new_node+0x80/0xf0 [ 335.900382] __kernfs_create_file+0x46/0x323 [ 335.900394] sysfs_add_file_mode_ns+0x1e4/0x450 [ 335.900406] internal_create_group+0x232/0x7b0 [ 335.900419] sysfs_create_group+0x20/0x30 [ 335.900430] lo_ioctl+0x1176/0x1ce0 [ 335.900441] ? loop_probe+0x160/0x160 [ 335.900453] blkdev_ioctl+0x96b/0x1860 [ 335.900461] ? blkpg_ioctl+0x980/0x980 [ 335.900476] ? __might_sleep+0x93/0xb0 [ 335.900484] ? __fget+0x210/0x370 [ 335.900498] block_ioctl+0xde/0x120 [ 335.910390] ? blkdev_fallocate+0x3b0/0x3b0 [ 335.910402] do_vfs_ioctl+0x7ae/0x1060 [ 335.910412] ? selinux_file_mprotect+0x5d0/0x5d0 [ 335.910421] ? lock_downgrade+0x6e0/0x6e0 [ 335.910430] ? ioctl_preallocate+0x1c0/0x1c0 [ 335.910441] ? __fget+0x237/0x370 [ 335.910456] ? security_file_ioctl+0x89/0xb0 [ 335.910466] SyS_ioctl+0x8f/0xc0 [ 335.930765] ? do_vfs_ioctl+0x1060/0x1060 05:29:01 executing program 4: r0 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x1, 0x2) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f0000001500)={{{@in6=@ipv4={[], [], @empty}, @in=@multicast2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@remote}, 0x0, @in=@multicast2}}, &(0x7f0000001600)=0xe8) sendmsg$nl_route(r0, &(0x7f00000016c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000001680)={&(0x7f0000000080)=ANY=[@ANYBLOB="34000000190000002bbd7000fcdbdf2502201000fc048f060010000008000400", @ANYRES32=r1, @ANYBLOB="08000100ac1414bb080034000300000041ebbb071193c8bea091a4f5d6c3779ee63a8ca960fa9670aeec233c20b7e34701d7c3ee404510448a69dfa6dea5601ddcad84d175e2917537d8cd723fa7ce424b18839e2ccc6757dafeaba88e7fcd4132b0f35f796fb5bc0e6ec86e74e40182e6e2227248a586103aeaafbaab8d"], 0x34}, 0x1, 0x0, 0x0, 0xc004}, 0x4000000) ioctl$VIDIOC_S_FREQUENCY(r0, 0x402c5639, &(0x7f0000000180)={0x0, 0x1}) [ 335.930781] do_syscall_64+0x1e8/0x640 [ 335.930790] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 335.930805] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 335.930813] RIP: 0033:0x459897 [ 335.930817] RSP: 002b:00007f617e384a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 335.930827] RAX: ffffffffffffffda RBX: 0000000020000028 RCX: 0000000000459897 [ 335.930831] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 335.930835] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 335.930840] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 335.930844] R13: 00000000004c8b25 R14: 00000000004dfbc8 R15: 0000000000000003 05:29:01 executing program 4: r0 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x1, 0x2) ioctl$VIDIOC_S_FREQUENCY(r0, 0x402c5639, &(0x7f0000000180)={0x0, 0x1}) r1 = socket$alg(0x26, 0x5, 0x0) bind$alg(r1, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'ghash-generic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, 0x0, 0x0) fcntl$setflags(r1, 0x2, 0x0) bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000080)={0x0, 0x5, 0x8}, 0xc) 05:29:01 executing program 0: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200), 0x0, 0x10000}], 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) 05:29:02 executing program 3: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000040)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffd) r1 = add_key(&(0x7f0000000140)='big_key\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f0000000400)="f9", 0x1, r0) keyctl$revoke(0x3, r1) r2 = add_key$user(&(0x7f00000000c0)='user\x00', &(0x7f0000000100)={'syz', 0x3}, &(0x7f0000000140)="bbd1e2d679999af67c9f8773a133f78c1b06e11d8b6ce690d47f7e466fe73777101ac8104d6eeecd3a4dabfac2a6", 0x2e, r1) keyctl$update(0x2, r2, &(0x7f0000000180)="3146be3537260f98fe855b5e2a31ddbdef74bc7b6850b068b824a027695a3933989c5bf57e84b4bede7d61a25f4b7f9e29ff2cb789ba1177b3c551be356f8316cea1bd3a8a3f", 0x46) r3 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = fcntl$dupfd(r3, 0x0, 0xffffffffffffffff) getsockopt$EBT_SO_GET_INIT_INFO(r4, 0x0, 0x82, &(0x7f0000000180)={'broute\x00'}, &(0x7f0000000240)=0x50) ioctl$TIOCSCTTY(r4, 0x540e, 0xffffffff) getsockopt$sock_cred(r4, 0x1, 0x11, 0x0, &(0x7f0000000640)) ioctl$BLKRESETZONE(r4, 0x40101283, &(0x7f0000000280)={0x7, 0x4}) 05:29:02 executing program 1 (fault-call:0 fault-nth:15): syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000140)='./file0\x00', 0xff, 0x1, &(0x7f0000000000)=[{&(0x7f0000000180)="8da4363ac0ed0000000000000001004d0100000000000000000000000009000000000000009748aeb81e1b00920efd9a0000010000000000098cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 05:29:02 executing program 2: r0 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = fcntl$dupfd(r0, 0x0, 0xffffffffffffffff) getsockopt$EBT_SO_GET_INIT_INFO(r1, 0x0, 0x82, &(0x7f0000000180)={'broute\x00'}, &(0x7f0000000240)=0x50) ioctl$TIOCSCTTY(r1, 0x540e, 0xffffffff) getsockopt$sock_cred(r1, 0x1, 0x11, 0x0, &(0x7f0000000640)) ioctl$TUNDETACHFILTER(r1, 0x401054d6, 0x0) syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f0000000000), 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) pipe(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = syz_genetlink_get_family_id$tipc(&(0x7f0000000100)='TIPC\x00') sendmsg$TIPC_CMD_DISABLE_BEARER(r3, &(0x7f00000001c0)={&(0x7f00000000c0), 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x30, r4, 0x100, 0x70bd28, 0x25dfdbfc, {{}, 0x0, 0x4102, 0x0, {0x14, 0x13, @l2={'eth', 0x3a, 'ip6gretap0\x00'}}}, ["", "", "", "", ""]}, 0x30}, 0x1, 0x0, 0x0, 0x8010}, 0x20004824) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) 05:29:02 executing program 5: r0 = getpgrp(0xffffffffffffffff) rt_sigqueueinfo(r0, 0x13, &(0x7f00000000c0)={0x32, 0xff, 0x8001}) r1 = syz_open_dev$vbi(&(0x7f0000000140)='/dev/vbi#\x00', 0x1, 0x2) ioctl$PPPIOCSFLAGS(r1, 0x40047459, &(0x7f0000000180)=0x2022) syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 05:29:02 executing program 4: r0 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x2, 0x2) ioctl$VIDIOC_S_FREQUENCY(r0, 0x402c5639, &(0x7f0000000180)={0x0, 0x1}) 05:29:02 executing program 0: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200), 0x0, 0x10000}], 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) [ 336.360516] FAULT_INJECTION: forcing a failure. [ 336.360516] name failslab, interval 1, probability 0, space 0, times 0 [ 336.422591] CPU: 1 PID: 22725 Comm: syz-executor.1 Not tainted 4.14.146 #0 [ 336.429653] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 336.429659] Call Trace: [ 336.429680] dump_stack+0x138/0x197 [ 336.429698] should_fail.cold+0x10f/0x159 [ 336.429714] should_failslab+0xdb/0x130 [ 336.441769] kmem_cache_alloc+0x2d7/0x780 [ 336.441781] ? wait_for_completion+0x420/0x420 [ 336.441797] __kernfs_new_node+0x70/0x420 [ 336.441811] kernfs_new_node+0x80/0xf0 [ 336.441823] __kernfs_create_file+0x46/0x323 [ 336.441835] sysfs_add_file_mode_ns+0x1e4/0x450 [ 336.480589] internal_create_group+0x232/0x7b0 [ 336.485171] sysfs_create_group+0x20/0x30 [ 336.489306] lo_ioctl+0x1176/0x1ce0 [ 336.492921] ? loop_probe+0x160/0x160 [ 336.496706] blkdev_ioctl+0x96b/0x1860 [ 336.500585] ? blkpg_ioctl+0x980/0x980 [ 336.504469] ? __might_sleep+0x93/0xb0 [ 336.508355] ? __fget+0x210/0x370 [ 336.511803] block_ioctl+0xde/0x120 [ 336.515463] ? blkdev_fallocate+0x3b0/0x3b0 [ 336.519810] do_vfs_ioctl+0x7ae/0x1060 [ 336.523699] ? selinux_file_mprotect+0x5d0/0x5d0 [ 336.528453] ? lock_downgrade+0x6e0/0x6e0 [ 336.532621] ? ioctl_preallocate+0x1c0/0x1c0 [ 336.537028] ? __fget+0x237/0x370 [ 336.540473] ? security_file_ioctl+0x89/0xb0 [ 336.545000] SyS_ioctl+0x8f/0xc0 [ 336.548360] ? do_vfs_ioctl+0x1060/0x1060 [ 336.552512] do_syscall_64+0x1e8/0x640 [ 336.556618] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 336.563020] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 336.568248] RIP: 0033:0x459897 05:29:02 executing program 4: r0 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x1, 0x2) ioctl$VIDIOC_S_FREQUENCY(r0, 0x402c5639, &(0x7f0000000180)={0x0, 0x1}) r1 = socket$nl_generic(0x10, 0x3, 0x10) read(r1, &(0x7f00000011c0)=""/202, 0xca) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000080)={0x1, &(0x7f0000000040)="43c82b28997d39d642986041587b43f14128a89e21434417571def", &(0x7f00000001c0)="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", 0x4}, 0x20) fcntl$setlease(r0, 0x400, 0x0) r2 = syz_open_dev$vcsn(&(0x7f00000000c0)='/dev/vcs#\x00', 0x8, 0x12200) name_to_handle_at(r2, &(0x7f0000000100)='./file0\x00', &(0x7f0000001380)=ANY=[@ANYBLOB="83000000030000e62b4f473668372512ff6c363b35e62efccd0600dc4ce1f4d11b425dfb775cc888b48155024a9d707cf7ef791f2602e60391c4b9838e40eb3dcf56d4e037ad0a831c32b86fd5ccb2d361b02762a53a70d0174a4eb63b60d7b2bb5e5d6b2eabf3f83c51c7262a6290ea754622a06635000000000000000000002000000000"], &(0x7f0000000140), 0x200) [ 336.571420] RSP: 002b:00007f617e384a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 336.579110] RAX: ffffffffffffffda RBX: 0000000020000028 RCX: 0000000000459897 [ 336.586362] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 336.593644] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 336.601504] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 336.608788] R13: 00000000004c8b25 R14: 00000000004dfbc8 R15: 0000000000000003 05:29:02 executing program 2: socket$pptp(0x18, 0x1, 0x2) syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)) r0 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fcntl$dupfd(r0, 0x0, 0xffffffffffffffff) syz_open_dev$admmidi(&(0x7f00000000c0)='/dev/admmidi#\x00', 0x3, 0x800) openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ubi_ctrl\x00', 0x440002, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x6) 05:29:02 executing program 3: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = openat$selinux_status(0xffffffffffffff9c, &(0x7f00000000c0)='/selinux/status\x00', 0x0, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000100)={0xffffffffffffffff}, 0x237, 0x5}}, 0x20) write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, &(0x7f0000000180)={0x3, 0x40, 0xfa00, {{0xa, 0x4e21, 0x8, @remote, 0x7fff}, {0xa, 0x4e21, 0x1, @remote, 0x100}, r1, 0xee51}}, 0x48) 05:29:02 executing program 0: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200), 0x0, 0x10000}], 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) 05:29:02 executing program 5: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0xc2000, 0x0) 05:29:02 executing program 1 (fault-call:0 fault-nth:16): syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000140)='./file0\x00', 0xff, 0x1, &(0x7f0000000000)=[{&(0x7f0000000180)="8da4363ac0ed0000000000000001004d0100000000000000000000000009000000000000009748aeb81e1b00920efd9a0000010000000000098cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 05:29:02 executing program 0: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2", 0x24, 0x10000}], 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) 05:29:02 executing program 0: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2", 0x24, 0x10000}], 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) [ 336.936964] FAULT_INJECTION: forcing a failure. [ 336.936964] name failslab, interval 1, probability 0, space 0, times 0 [ 336.966636] CPU: 0 PID: 22788 Comm: syz-executor.1 Not tainted 4.14.146 #0 [ 336.973692] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 336.983165] Call Trace: [ 336.985754] dump_stack+0x138/0x197 [ 336.989371] should_fail.cold+0x10f/0x159 [ 336.993701] should_failslab+0xdb/0x130 [ 336.997791] kmem_cache_alloc+0x2d7/0x780 [ 337.001937] ? wait_for_completion+0x420/0x420 [ 337.006630] __kernfs_new_node+0x70/0x420 [ 337.010772] kernfs_new_node+0x80/0xf0 [ 337.014653] __kernfs_create_file+0x46/0x323 [ 337.019179] sysfs_add_file_mode_ns+0x1e4/0x450 [ 337.023838] internal_create_group+0x232/0x7b0 [ 337.028414] sysfs_create_group+0x20/0x30 [ 337.032552] lo_ioctl+0x1176/0x1ce0 [ 337.036204] ? loop_probe+0x160/0x160 [ 337.039998] blkdev_ioctl+0x96b/0x1860 [ 337.043878] ? blkpg_ioctl+0x980/0x980 [ 337.047765] ? __might_sleep+0x93/0xb0 [ 337.051645] ? __fget+0x210/0x370 [ 337.055091] block_ioctl+0xde/0x120 [ 337.058703] ? blkdev_fallocate+0x3b0/0x3b0 [ 337.063007] do_vfs_ioctl+0x7ae/0x1060 [ 337.066876] ? selinux_file_mprotect+0x5d0/0x5d0 [ 337.071625] ? lock_downgrade+0x6e0/0x6e0 [ 337.075817] ? ioctl_preallocate+0x1c0/0x1c0 [ 337.080223] ? __fget+0x237/0x370 [ 337.083671] ? security_file_ioctl+0x89/0xb0 [ 337.088065] SyS_ioctl+0x8f/0xc0 [ 337.091421] ? do_vfs_ioctl+0x1060/0x1060 [ 337.095563] do_syscall_64+0x1e8/0x640 [ 337.099443] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 337.104286] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 337.109469] RIP: 0033:0x459897 [ 337.112652] RSP: 002b:00007f617e384a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 337.120621] RAX: ffffffffffffffda RBX: 0000000020000028 RCX: 0000000000459897 [ 337.127893] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 337.136387] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 337.143733] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 337.150995] R13: 00000000004c8b25 R14: 00000000004dfbc8 R15: 0000000000000003 05:29:03 executing program 5: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'ghash-generic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, 0x0, 0x0) getsockname(r0, &(0x7f0000000280)=@pptp={0x18, 0x2, {0x0, @initdev}}, &(0x7f0000000180)=0xffffffffffffff8a) mknod(&(0x7f0000000080)='./file0\x00', 0x1, 0x11d6979) r1 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x4, 0x4182) r2 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) pwritev(r2, &(0x7f0000000340)=[{&(0x7f0000000140)='!', 0x1}], 0x1, 0x81805) r3 = dup2(r2, r2) ioctl$SG_GET_RESERVED_SIZE(r2, 0x2272, 0x0) ioctl$LOOP_CHANGE_FD(r1, 0x4c00, r2) write$P9_RLERRORu(r3, &(0x7f00000003c0)=ANY=[@ANYBLOB="1400000007650d6c24ed92c8397291335cf616f0010200070062726f0c62077600b365a0a59e7eea"], 0x28) getsockopt$sock_cred(r3, 0x1, 0x11, 0x0, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(r3, 0x29, 0x23, &(0x7f00000007c0)={{{@in=@remote, @in6=@initdev}}, {{@in=@empty}, 0x0, @in6=@ipv4}}, &(0x7f00000008c0)=0xe8) sendfile(r1, r1, 0x0, 0x2400003e) r4 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x4, 0x4182) r5 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) pwritev(r5, &(0x7f0000000340)=[{&(0x7f0000000140)='!', 0x1}], 0x1, 0x81805) r6 = dup2(r5, r5) ioctl$SG_GET_RESERVED_SIZE(r5, 0x2272, 0x0) ioctl$LOOP_CHANGE_FD(r4, 0x4c00, r5) write$P9_RLERRORu(r6, &(0x7f00000003c0)=ANY=[@ANYBLOB="1400000007650d6c24ed92c8397291335cf616f0010200070062726f0c62077600b365a0a59e7eea"], 0x28) getsockopt$sock_cred(r6, 0x1, 0x11, 0x0, 0x0) syz_open_dev$radio(&(0x7f0000000100)='/dev/radio#\x00', 0x1, 0x2) r7 = accept4$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x0, 0x0, @local}, &(0x7f0000000300)=0x1c, 0x1800) getsockopt$inet6_IPV6_XFRM_POLICY(r7, 0x29, 0x23, &(0x7f00000007c0)={{{@in=@remote, @in6=@initdev}}, {{@in=@empty}, 0x0, @in6=@ipv4}}, &(0x7f0000000380)=0x1407ad12f19c98bd) sendfile(r6, r4, 0x0, 0x2400003e) ioctl$KVM_CREATE_DEVICE(r3, 0xc00caee0, &(0x7f00000000c0)={0x6, r6, 0x1}) 05:29:03 executing program 1 (fault-call:0 fault-nth:17): syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000140)='./file0\x00', 0xff, 0x1, &(0x7f0000000000)=[{&(0x7f0000000180)="8da4363ac0ed0000000000000001004d0100000000000000000000000009000000000000009748aeb81e1b00920efd9a0000010000000000098cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 05:29:03 executing program 3: r0 = openat$selinux_relabel(0xffffffffffffff9c, &(0x7f00000000c0)='/selinux/relabel\x00', 0x2, 0x0) add_key$keyring(&(0x7f0000000080)='keyring\x00', &(0x7f0000000540)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffff9) writev(r0, &(0x7f00000004c0)=[{&(0x7f0000000100)="99c648568562495f1e3a044b45862f28c57a320e76aac80be10e59d9cecd7c0d8efd18e469e58f0cf0bb106e57ab3eb855388d984110a1d3f5920a7c4c905c51ba1ea04a3cb4ef8e228302fcace6de4af9eae810d2a5963723b0379418d1a50e412fe963a3f94e50682d9ec59a2df1e8271ef0abe1351afa64cfe9b928a5fd3b3cf4e3f97221128fcbff4657b8e0a79e4554c0e43918d6dc45cb", 0x9a}, {&(0x7f0000000280)="13dd991da4c5b346ac19ffbe31aa0017183e7d0aeb057b9f3bc237d588d355ed9b6a61982294a08619188a7ba4fea141894db14f20e2d7a09a8af858c78436b3b4859e681c21b936af5610129ee6f607335c9b99adb022ec91fc", 0x5a}, {&(0x7f0000000300)="34e831348084d25705e0bd987ce004e8feaa5c65896de4c4c830536439b9abc4766622450d6a347d75a5a826c70ee3f6ac597f7f66ba284c63f7b49079ecd004dd0e788f9e0c6b640030536f0959028a9bb4f8195fbda463c15bf0bf3de53dd9b6e760f9e8aa3d55f753fff98ba47d62d95b1ac26bb2237e648611a8fe5bdc349092f5fd48c917d845210c9187865bfa", 0x90}, {&(0x7f00000003c0)="0591b6e3cd15547bcc3a8e77c2b9f75acf6f9d414f47057acc73a98591a36c5d7dff1172492893e26270d43a5226e565505b7a885903daa9dc9ff90985a8989c63679582be586d46d5b2dc51a7c1", 0x4e}, {&(0x7f0000000440)="33ddb09704067d5ce09903a82e1dc3155a120c650418d10d4bf85c20d901f50acf858b772f968e68b0e8a8dffc2b39ebbf2c812ee9d60401720c9d1899b00f5ec31cce99d3505cafafa02c07a866ee142cebc9acaf230318dc95c9467745d75aea03809edbe5ace3b6a8628e8277e4ab", 0x70}], 0x5) syz_mount_image$btrfs(&(0x7f0000000040)='\x00 \x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 05:29:03 executing program 2: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$alg(0x26, 0x5, 0x0) bind$alg(r1, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'ghash-generic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, 0x0, 0x0) getsockopt(r1, 0x6, 0xcdd, &(0x7f0000000240)=""/193, &(0x7f0000000140)=0xc1) setxattr$security_ima(&(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)='security.ima\x00', &(0x7f0000000340)=@ng={0x4, 0x8, "2517d0b1f48022ae"}, 0xa, 0x2) [ 337.354436] FAULT_INJECTION: forcing a failure. [ 337.354436] name failslab, interval 1, probability 0, space 0, times 0 [ 337.408743] CPU: 0 PID: 22813 Comm: syz-executor.1 Not tainted 4.14.146 #0 [ 337.415813] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 337.425182] Call Trace: [ 337.427790] dump_stack+0x138/0x197 [ 337.431452] should_fail.cold+0x10f/0x159 [ 337.435624] should_failslab+0xdb/0x130 [ 337.439619] kmem_cache_alloc+0x2d7/0x780 [ 337.443892] ? wait_for_completion+0x420/0x420 [ 337.448591] __kernfs_new_node+0x70/0x420 [ 337.452752] kernfs_new_node+0x80/0xf0 [ 337.456658] __kernfs_create_file+0x46/0x323 [ 337.461087] sysfs_add_file_mode_ns+0x1e4/0x450 [ 337.465778] internal_create_group+0x232/0x7b0 [ 337.470383] sysfs_create_group+0x20/0x30 [ 337.474552] lo_ioctl+0x1176/0x1ce0 [ 337.478200] ? loop_probe+0x160/0x160 [ 337.482014] blkdev_ioctl+0x96b/0x1860 [ 337.485915] ? blkpg_ioctl+0x980/0x980 [ 337.489818] ? __might_sleep+0x93/0xb0 [ 337.493718] ? __fget+0x210/0x370 [ 337.497272] block_ioctl+0xde/0x120 [ 337.500913] ? blkdev_fallocate+0x3b0/0x3b0 [ 337.505244] do_vfs_ioctl+0x7ae/0x1060 [ 337.509142] ? selinux_file_mprotect+0x5d0/0x5d0 [ 337.513915] ? lock_downgrade+0x6e0/0x6e0 [ 337.518082] ? ioctl_preallocate+0x1c0/0x1c0 [ 337.522504] ? __fget+0x237/0x370 [ 337.525973] ? security_file_ioctl+0x89/0xb0 [ 337.530395] SyS_ioctl+0x8f/0xc0 [ 337.533775] ? do_vfs_ioctl+0x1060/0x1060 [ 337.537936] do_syscall_64+0x1e8/0x640 [ 337.541832] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 337.546692] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 337.552413] RIP: 0033:0x459897 05:29:03 executing program 0: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2", 0x24, 0x10000}], 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) 05:29:03 executing program 4: r0 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x1, 0x2) r1 = openat$proc_capi20(0xffffffffffffff9c, &(0x7f0000000040)='/proc/capi/capi20\x00', 0x8000, 0x0) getsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(r1, 0x84, 0x18, 0x0, &(0x7f0000000080)) r2 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x4, 0x4182) r3 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) pwritev(r3, &(0x7f0000000340)=[{&(0x7f0000000140)='!', 0x1}], 0x1, 0x81805) r4 = dup2(r3, r3) ioctl$SG_GET_RESERVED_SIZE(r3, 0x2272, 0x0) ioctl$LOOP_CHANGE_FD(r2, 0x4c00, r3) write$P9_RLERRORu(r4, &(0x7f00000003c0)=ANY=[@ANYBLOB="1400000007650d6c24ed92c8397291335cf616f0010200070062726f0c62077600b365a0a59e7eea"], 0x28) getsockopt$sock_cred(r4, 0x1, 0x11, 0x0, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(r4, 0x29, 0x23, &(0x7f00000007c0)={{{@in=@remote, @in6=@initdev}}, {{@in=@empty}, 0x0, @in6=@ipv4}}, &(0x7f00000008c0)=0xe8) sendfile(r4, r2, 0x0, 0x2400003e) ioctl$SG_SCSI_RESET(r4, 0x2284, 0x0) ioctl$VIDIOC_S_FREQUENCY(r0, 0x402c5639, &(0x7f0000000180)={0x0, 0x1}) [ 337.555693] RSP: 002b:00007f617e384a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 337.563409] RAX: ffffffffffffffda RBX: 0000000020000028 RCX: 0000000000459897 [ 337.570692] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 337.577974] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 337.577980] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 337.577985] R13: 00000000004c8b25 R14: 00000000004dfbc8 R15: 0000000000000003 05:29:03 executing program 3: r0 = syz_open_dev$radio(&(0x7f00000000c0)='/dev/radio#\x00', 0x3, 0x2) socket$inet(0x2, 0x5, 0x88) r1 = syz_open_dev$usbmon(&(0x7f0000000100)='/dev/usbmon#\x00', 0x4, 0x101000) prctl$PR_GET_UNALIGN(0x5, &(0x7f0000000140)) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, r1) syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x81}], 0x0, 0x0) syz_init_net_socket$x25(0x9, 0x5, 0x0) 05:29:03 executing program 1 (fault-call:0 fault-nth:18): syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000140)='./file0\x00', 0xff, 0x1, &(0x7f0000000000)=[{&(0x7f0000000180)="8da4363ac0ed0000000000000001004d0100000000000000000000000009000000000000009748aeb81e1b00920efd9a0000010000000000098cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 05:29:03 executing program 0: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a000001000000", 0x36, 0x10000}], 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) 05:29:03 executing program 5: r0 = syz_open_dev$vcsa(&(0x7f0000000300)='/dev/vcsa#\x00', 0x80000001, 0x20000) getsockopt$inet6_IPV6_IPSEC_POLICY(r0, 0x29, 0x22, 0x0, &(0x7f0000000780)) ioctl$SG_SET_TIMEOUT(r0, 0x2201, &(0x7f00000000c0)=0x7ff) syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 05:29:03 executing program 4: syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x1, 0x2) r0 = syz_open_dev$audion(&(0x7f0000000040)='/dev/audio#\x00', 0x7, 0x444000) getsockname$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=@newlink={0x20, 0x10, 0x705, 0x0, 0x0, {0x0, 0x0, 0x0, r1}}, 0x20}}, 0x0) clock_gettime(0x0, &(0x7f0000000100)={0x0, 0x0}) sendmsg$can_bcm(r0, &(0x7f0000000280)={&(0x7f00000000c0)={0x1d, r1}, 0x10, &(0x7f0000000240)={&(0x7f0000000180)=ANY=[@ANYBLOB="02000000c949bb520900000000000000", @ANYRES64=r2, @ANYRES64=r3/1000+30000, @ANYRES64=0x77359400, @ANYRES64=0x0, @ANYBLOB="0200006001000000010000803b0100001e256b3c38432dd3d46565ef7bf16726d24abb5453a1a2c73b2ba40895bf6cf177783661acbfefd19c7f3b365d30ec9b1f632f93f614879268610988c36d921a"], 0x80}, 0x1, 0x0, 0x0, 0x8000001}, 0x4) r4 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x4, 0x4182) r5 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) pwritev(r5, &(0x7f0000000340)=[{&(0x7f0000000140)='!', 0x1}], 0x1, 0x81805) r6 = dup2(r5, r5) ioctl$SG_GET_RESERVED_SIZE(r5, 0x2272, 0x0) ioctl$LOOP_CHANGE_FD(r4, 0x4c00, r5) write$P9_RLERRORu(r6, &(0x7f00000003c0)=ANY=[@ANYBLOB="1400000007650d6c24ed92c8397291335cf616f0010200070062726f0c62077600b365a0a59e7eea"], 0x28) getsockopt$sock_cred(r6, 0x1, 0x11, 0x0, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(r6, 0x29, 0x23, &(0x7f00000007c0)={{{@in=@remote, @in6=@initdev}}, {{@in=@empty}, 0x0, @in6=@ipv4}}, &(0x7f00000008c0)=0xe8) sendfile(r6, r4, 0x0, 0x2400003e) ioctl$VIDIOC_S_FREQUENCY(r6, 0x402c5639, &(0x7f0000000080)={0x40000, 0x1, 0x80000000}) 05:29:03 executing program 2: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) set_mempolicy(0x3, &(0x7f00000000c0), 0x71302708) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) [ 337.827761] FAULT_INJECTION: forcing a failure. [ 337.827761] name failslab, interval 1, probability 0, space 0, times 0 [ 337.903675] CPU: 1 PID: 22870 Comm: syz-executor.1 Not tainted 4.14.146 #0 [ 337.910729] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 337.910735] Call Trace: [ 337.910753] dump_stack+0x138/0x197 [ 337.910770] should_fail.cold+0x10f/0x159 [ 337.930482] should_failslab+0xdb/0x130 [ 337.934465] kmem_cache_alloc+0x2d7/0x780 [ 337.934476] ? wait_for_completion+0x420/0x420 [ 337.934496] __kernfs_new_node+0x70/0x420 [ 337.934509] kernfs_new_node+0x80/0xf0 [ 337.934523] __kernfs_create_file+0x46/0x323 [ 337.934534] sysfs_add_file_mode_ns+0x1e4/0x450 [ 337.934547] internal_create_group+0x232/0x7b0 [ 337.965013] sysfs_create_group+0x20/0x30 [ 337.969261] lo_ioctl+0x1176/0x1ce0 [ 337.972904] ? loop_probe+0x160/0x160 [ 337.976718] blkdev_ioctl+0x96b/0x1860 [ 337.980625] ? blkpg_ioctl+0x980/0x980 [ 337.984530] ? __might_sleep+0x93/0xb0 [ 337.988420] ? __fget+0x210/0x370 [ 337.991881] block_ioctl+0xde/0x120 [ 337.995517] ? blkdev_fallocate+0x3b0/0x3b0 [ 337.999847] do_vfs_ioctl+0x7ae/0x1060 05:29:03 executing program 3: openat$selinux_avc_cache_stats(0xffffffffffffff9c, &(0x7f0000000080)='/selinux/avc/cache_stats\x00', 0x0, 0x0) r0 = syz_genetlink_get_family_id$tipc(&(0x7f0000000140)='TIPC\x00') r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = fcntl$dupfd(r1, 0x0, 0xffffffffffffffff) getsockopt$EBT_SO_GET_INIT_INFO(r2, 0x0, 0x82, &(0x7f0000000180)={'broute\x00'}, &(0x7f0000000240)=0x50) ioctl$TIOCSCTTY(r2, 0x540e, 0xffffffff) getsockopt$sock_cred(r2, 0x1, 0x11, 0x0, &(0x7f0000000640)) sendmsg$TIPC_CMD_GET_MAX_PORTS(r2, &(0x7f0000000280)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x8400000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x1c, r0, 0x100, 0x5070bd27, 0x25dfdbfc, {}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000050}, 0x2000020) syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r3 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = fcntl$dupfd(r3, 0x0, 0xffffffffffffffff) getsockopt$EBT_SO_GET_INIT_INFO(r4, 0x0, 0x82, &(0x7f0000000180)={'broute\x00'}, &(0x7f0000000240)=0x50) ioctl$TIOCSCTTY(r4, 0x540e, 0xffffffff) getsockopt$sock_cred(r4, 0x1, 0x11, 0x0, &(0x7f0000000640)) recvfrom$llc(r4, &(0x7f00000002c0)=""/48, 0x30, 0x978cd82290bf1d8d, &(0x7f0000000300)={0x1a, 0x5d68282aedf45b5a, 0x0, 0xf, 0x9, 0xe6, @random="6c0c4d1cf2b2"}, 0x10) [ 338.003745] ? selinux_file_mprotect+0x5d0/0x5d0 [ 338.008515] ? lock_downgrade+0x6e0/0x6e0 [ 338.012687] ? ioctl_preallocate+0x1c0/0x1c0 [ 338.018323] ? __fget+0x237/0x370 [ 338.021779] ? security_file_ioctl+0x89/0xb0 [ 338.026205] SyS_ioctl+0x8f/0xc0 [ 338.026216] ? do_vfs_ioctl+0x1060/0x1060 [ 338.026230] do_syscall_64+0x1e8/0x640 [ 338.026239] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 338.026258] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 338.026267] RIP: 0033:0x459897 [ 338.026272] RSP: 002b:00007f617e384a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 338.026282] RAX: ffffffffffffffda RBX: 0000000020000028 RCX: 0000000000459897 [ 338.026287] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 338.026295] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 338.051173] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 338.051180] R13: 00000000004c8b25 R14: 00000000004dfbc8 R15: 0000000000000003 05:29:03 executing program 0: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a000001000000", 0x36, 0x10000}], 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) 05:29:04 executing program 4: r0 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x1, 0x2) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = fcntl$dupfd(r1, 0x0, 0xffffffffffffffff) getsockopt$EBT_SO_GET_INIT_INFO(r2, 0x0, 0x82, &(0x7f0000000180)={'broute\x00'}, &(0x7f0000000240)=0x50) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100)={0xffffffffffffffff}) close(r3) io_setup(0x7, &(0x7f0000000140)=0x0) io_submit(r4, 0x1e09328e, &(0x7f0000000040)=[&(0x7f0000000000)={0x0, 0x0, 0x0, 0x1000800000000001, 0x0, r3, 0x0, 0x12f}]) io_getevents(r4, 0x1, 0x1, &(0x7f0000000100)=[{}], &(0x7f0000000140)={0x77359400}) ioctl$TIOCSCTTY(r2, 0x540e, 0xffffffff) getsockopt$sock_cred(r2, 0x1, 0x11, 0x0, &(0x7f0000000640)) getpeername$ax25(r2, &(0x7f0000000040)={{0x3, @bcast}, [@rose, @remote, @remote, @rose, @netrom, @remote, @rose]}, &(0x7f00000000c0)=0x48) ioctl$VIDIOC_S_FREQUENCY(r0, 0x402c5639, &(0x7f0000000180)={0x0, 0x1}) 05:29:04 executing program 1 (fault-call:0 fault-nth:19): syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000140)='./file0\x00', 0xff, 0x1, &(0x7f0000000000)=[{&(0x7f0000000180)="8da4363ac0ed0000000000000001004d0100000000000000000000000009000000000000009748aeb81e1b00920efd9a0000010000000000098cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 338.322466] FAULT_INJECTION: forcing a failure. [ 338.322466] name failslab, interval 1, probability 0, space 0, times 0 [ 338.361818] CPU: 0 PID: 22923 Comm: syz-executor.1 Not tainted 4.14.146 #0 [ 338.368887] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 338.378252] Call Trace: [ 338.380857] dump_stack+0x138/0x197 [ 338.384508] should_fail.cold+0x10f/0x159 [ 338.388686] should_failslab+0xdb/0x130 [ 338.393023] kmem_cache_alloc+0x2d7/0x780 [ 338.397274] ? wait_for_completion+0x420/0x420 [ 338.401882] __kernfs_new_node+0x70/0x420 [ 338.406048] kernfs_new_node+0x80/0xf0 [ 338.409955] __kernfs_create_file+0x46/0x323 [ 338.414381] sysfs_add_file_mode_ns+0x1e4/0x450 [ 338.419070] internal_create_group+0x232/0x7b0 [ 338.423681] sysfs_create_group+0x20/0x30 [ 338.427838] lo_ioctl+0x1176/0x1ce0 [ 338.431479] ? loop_probe+0x160/0x160 [ 338.435294] blkdev_ioctl+0x96b/0x1860 [ 338.439189] ? blkpg_ioctl+0x980/0x980 [ 338.443240] ? __might_sleep+0x93/0xb0 [ 338.447124] ? __fget+0x210/0x370 [ 338.450577] block_ioctl+0xde/0x120 [ 338.454195] ? blkdev_fallocate+0x3b0/0x3b0 [ 338.458709] do_vfs_ioctl+0x7ae/0x1060 [ 338.462600] ? selinux_file_mprotect+0x5d0/0x5d0 [ 338.467698] ? lock_downgrade+0x6e0/0x6e0 [ 338.471844] ? ioctl_preallocate+0x1c0/0x1c0 [ 338.476282] ? __fget+0x237/0x370 [ 338.479747] ? security_file_ioctl+0x89/0xb0 [ 338.484156] SyS_ioctl+0x8f/0xc0 [ 338.487519] ? do_vfs_ioctl+0x1060/0x1060 [ 338.491727] do_syscall_64+0x1e8/0x640 [ 338.495618] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 338.500456] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 338.505633] RIP: 0033:0x459897 [ 338.508808] RSP: 002b:00007f617e384a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 05:29:04 executing program 0: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a000001000000", 0x36, 0x10000}], 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) 05:29:04 executing program 5: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920afd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dlm-monitor\x00', 0x1, 0x0) r1 = syz_open_dev$vcsa(&(0x7f0000000300)='/dev/vcsa#\x00', 0x80000001, 0x20000) getsockopt$inet6_IPV6_IPSEC_POLICY(r1, 0x29, 0x22, 0x0, &(0x7f0000000780)) r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r2, 0x84, 0x6e, &(0x7f0000961fe4)=[@in={0x2, 0x0, @dev}], 0x10) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f00000001c0)={0x1, [0x0]}, &(0x7f00000000c0)=0xfe10) syz_open_dev$audion(&(0x7f0000000280)='/dev/audio#\x00', 0x6b0e, 0x101000) getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r2, 0x84, 0x66, &(0x7f0000000040)={r3}, &(0x7f0000000140)=0x8) getsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(r1, 0x84, 0x22, &(0x7f0000000100)={0x78da, 0x2, 0x2, 0x6, r3}, &(0x7f0000000140)=0x10) getsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000180)=@assoc_value={r4, 0x60}, &(0x7f00000001c0)=0x8) [ 338.516496] RAX: ffffffffffffffda RBX: 0000000020000028 RCX: 0000000000459897 [ 338.523751] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 338.531006] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 338.538345] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 338.545601] R13: 00000000004c8b25 R14: 00000000004dfbc8 R15: 0000000000000003 05:29:04 executing program 2: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = fcntl$dupfd(r1, 0x0, 0xffffffffffffffff) getsockopt$EBT_SO_GET_INIT_INFO(r2, 0x0, 0x82, &(0x7f0000000180)={'broute\x00'}, &(0x7f0000000240)=0x50) ioctl$TIOCSCTTY(r2, 0x540e, 0xffffffff) getsockopt$sock_cred(r2, 0x1, 0x11, 0x0, &(0x7f0000000640)) setsockopt$llc_int(r2, 0x10c, 0x3, &(0x7f00000000c0)=0x8, 0x4) [ 338.639863] BTRFS: device fsid fff6f2a2-2997-48ae-b81e-1b00920afd9a devid 0 transid 0 /dev/loop5 05:29:04 executing program 0: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000", 0x3f, 0x10000}], 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) 05:29:04 executing program 3: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0xe9, 0x10000}], 0x0, 0x0) 05:29:04 executing program 1 (fault-call:0 fault-nth:20): syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000140)='./file0\x00', 0xff, 0x1, &(0x7f0000000000)=[{&(0x7f0000000180)="8da4363ac0ed0000000000000001004d0100000000000000000000000009000000000000009748aeb81e1b00920efd9a0000010000000000098cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 05:29:04 executing program 0: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000", 0x3f, 0x10000}], 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) [ 338.817575] FAULT_INJECTION: forcing a failure. [ 338.817575] name failslab, interval 1, probability 0, space 0, times 0 [ 338.860216] CPU: 1 PID: 22976 Comm: syz-executor.1 Not tainted 4.14.146 #0 [ 338.867271] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 338.876636] Call Trace: [ 338.879235] dump_stack+0x138/0x197 [ 338.883395] should_fail.cold+0x10f/0x159 [ 338.883413] should_failslab+0xdb/0x130 [ 338.883426] kmem_cache_alloc_trace+0x2e9/0x790 [ 338.883442] ? kernfs_put+0x35e/0x490 [ 338.899978] ? sysfs_add_file_mode_ns+0x1e4/0x450 [ 338.904826] ? devm_device_remove_groups+0x50/0x50 [ 338.909771] kobject_uevent_env+0x378/0xc23 [ 338.914099] ? internal_create_group+0x49a/0x7b0 [ 338.918874] kobject_uevent+0x20/0x26 [ 338.922676] lo_ioctl+0x11e7/0x1ce0 [ 338.926291] ? loop_probe+0x160/0x160 [ 338.930086] blkdev_ioctl+0x96b/0x1860 [ 338.934001] ? blkpg_ioctl+0x980/0x980 [ 338.937874] ? __might_sleep+0x93/0xb0 [ 338.941745] ? __fget+0x210/0x370 [ 338.945215] block_ioctl+0xde/0x120 [ 338.949014] ? blkdev_fallocate+0x3b0/0x3b0 [ 338.953318] do_vfs_ioctl+0x7ae/0x1060 [ 338.957219] ? selinux_file_mprotect+0x5d0/0x5d0 [ 338.961957] ? lock_downgrade+0x6e0/0x6e0 [ 338.966109] ? ioctl_preallocate+0x1c0/0x1c0 [ 338.970501] ? __fget+0x237/0x370 [ 338.973940] ? security_file_ioctl+0x89/0xb0 [ 338.978332] SyS_ioctl+0x8f/0xc0 [ 338.981691] ? do_vfs_ioctl+0x1060/0x1060 [ 338.985938] do_syscall_64+0x1e8/0x640 [ 338.989831] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 338.995107] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 339.000394] RIP: 0033:0x459897 05:29:04 executing program 0: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000", 0x3f, 0x10000}], 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) [ 339.003567] RSP: 002b:00007f617e384a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 339.011255] RAX: ffffffffffffffda RBX: 0000000020000028 RCX: 0000000000459897 [ 339.018517] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 339.025773] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 339.033141] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 339.040395] R13: 00000000004c8b25 R14: 00000000004dfbc8 R15: 0000000000000003 05:29:04 executing program 2: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) openat$mixer(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/mixer\x00', 0x80, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) 05:29:05 executing program 3: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f00000000c0)='./cgroup/syz0\x00', 0x1ff) 05:29:05 executing program 4: r0 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x1, 0x2) pipe(&(0x7f0000000040)) ioctl$VIDIOC_S_FREQUENCY(r0, 0x402c5639, &(0x7f0000000180)={0x0, 0x1}) lsetxattr$security_smack_transmute(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='security.SMACK64TRANSMUTE\x00', &(0x7f0000000100)='TRUE', 0x4, 0x0) r1 = syz_open_dev$vcsa(&(0x7f0000000300)='/dev/vcsa#\x00', 0x80000001, 0x20000) getsockopt$inet6_IPV6_IPSEC_POLICY(r1, 0x29, 0x22, 0x0, &(0x7f0000000780)) ioctl$EVIOCSREP(r1, 0x40084503, &(0x7f0000000140)=[0x2, 0x2000]) 05:29:05 executing program 1 (fault-call:0 fault-nth:21): syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000140)='./file0\x00', 0xff, 0x1, &(0x7f0000000000)=[{&(0x7f0000000180)="8da4363ac0ed0000000000000001004d0100000000000000000000000009000000000000009748aeb81e1b00920efd9a0000010000000000098cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 05:29:05 executing program 0: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f424852", 0x44, 0x10000}], 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) [ 339.319546] FAULT_INJECTION: forcing a failure. [ 339.319546] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 339.331402] CPU: 1 PID: 23013 Comm: syz-executor.1 Not tainted 4.14.146 #0 [ 339.331410] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 339.331414] Call Trace: [ 339.331433] dump_stack+0x138/0x197 [ 339.331450] should_fail.cold+0x10f/0x159 [ 339.331465] __alloc_pages_nodemask+0x1d6/0x7a0 [ 339.362998] ? __alloc_pages_slowpath+0x2930/0x2930 [ 339.363024] cache_grow_begin+0x80/0x400 [ 339.372089] kmem_cache_alloc_trace+0x6b2/0x790 [ 339.377987] ? kernfs_put+0x35e/0x490 [ 339.381805] ? devm_device_remove_groups+0x50/0x50 [ 339.386835] kobject_uevent_env+0x378/0xc23 [ 339.391170] ? internal_create_group+0x49a/0x7b0 [ 339.395937] kobject_uevent+0x20/0x26 [ 339.395951] lo_ioctl+0x11e7/0x1ce0 [ 339.395969] ? loop_probe+0x160/0x160 [ 339.403421] blkdev_ioctl+0x96b/0x1860 [ 339.403432] ? blkpg_ioctl+0x980/0x980 [ 339.403447] ? __might_sleep+0x93/0xb0 [ 339.403459] ? __fget+0x210/0x370 [ 339.411131] block_ioctl+0xde/0x120 [ 339.411140] ? blkdev_fallocate+0x3b0/0x3b0 [ 339.411149] do_vfs_ioctl+0x7ae/0x1060 [ 339.411159] ? selinux_file_mprotect+0x5d0/0x5d0 [ 339.411172] ? lock_downgrade+0x6e0/0x6e0 [ 339.426001] ? ioctl_preallocate+0x1c0/0x1c0 [ 339.426014] ? __fget+0x237/0x370 [ 339.426035] ? security_file_ioctl+0x89/0xb0 [ 339.455363] SyS_ioctl+0x8f/0xc0 [ 339.458760] ? do_vfs_ioctl+0x1060/0x1060 [ 339.462916] do_syscall_64+0x1e8/0x640 [ 339.466816] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 339.471676] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 339.476871] RIP: 0033:0x459897 [ 339.480060] RSP: 002b:00007f617e384a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 339.487768] RAX: ffffffffffffffda RBX: 0000000020000028 RCX: 0000000000459897 [ 339.495134] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 339.502391] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 339.509669] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 339.516953] R13: 00000000004c8b25 R14: 00000000004dfbc8 R15: 0000000000000003 05:29:05 executing program 4: socket(0x9, 0x809, 0x9) syz_open_dev$radio(&(0x7f0000000000)='Pdev/radi/#\x00', 0x3, 0x2) r0 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = fcntl$dupfd(r0, 0x0, 0xffffffffffffffff) getsockopt$EBT_SO_GET_INIT_INFO(r1, 0x0, 0x82, &(0x7f0000000180)={'broute\x00'}, &(0x7f0000000240)=0x50) r2 = shmget$private(0x0, 0x1000, 0x1800, &(0x7f0000ffd000/0x1000)=nil) r3 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000000000)={0x0, 0x0}, &(0x7f0000000040)=0xc) keyctl$get_persistent(0x7, r4, 0x0) stat(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) r6 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$sock_cred(r6, 0x1, 0x11, &(0x7f0000000000)={0x0, 0x0}, &(0x7f0000000040)=0xc) keyctl$get_persistent(0x7, r7, 0x0) r8 = syz_open_dev$vbi(0x0, 0x2, 0x2) r9 = getgid() write$FUSE_ENTRY(r8, &(0x7f0000000200)={0x90, 0x0, 0x0, {0x6, 0x3, 0xf24, 0x0, 0x5, 0x0, {0x0, 0x0, 0x9, 0x0, 0x5, 0x5, 0x9, 0x0, 0x0, 0x3, 0x0, 0x0, r9, 0x1, 0x1}}}, 0x90) r10 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000013c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r10, 0x40045431, &(0x7f0000000080)) syz_open_pts(r10, 0x0) ioctl$TIOCGPGRP(r10, 0x540f, &(0x7f0000000140)=0x0) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000200)={0x0}, &(0x7f0000000280)=0xc) shmctl$IPC_SET(r2, 0x1, &(0x7f00000002c0)={{0x401, r4, r5, r7, r9, 0x1d8, 0x5}, 0x4, 0x2, 0x7f, 0xfffffffffffffff7, r11, r12, 0x4}) ioctl$TIOCSCTTY(r1, 0x540e, 0xffffffff) getsockopt$sock_cred(r1, 0x1, 0x11, 0x0, &(0x7f0000000640)) ioctl$VIDIOC_S_FREQUENCY(r1, 0x402c5639, &(0x7f0000000040)={0x8002000, 0x5, 0x8}) 05:29:05 executing program 5: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = fcntl$dupfd(r0, 0x0, 0xffffffffffffffff) r2 = syz_open_dev$media(&(0x7f0000000300)='/dev/media#\x00', 0xb3c, 0xc0) ioctl$BLKGETSIZE64(r2, 0x80081272, &(0x7f0000000340)) getsockopt$EBT_SO_GET_INIT_INFO(r1, 0x0, 0x82, &(0x7f0000000180)={'broute\x00'}, &(0x7f0000000240)=0x50) ioctl$TIOCSCTTY(r1, 0x540e, 0xffffffff) getsockopt$sock_cred(r1, 0x1, 0x11, 0x0, &(0x7f0000000640)) ioctl$sock_FIOGETOWN(r1, 0x8903, &(0x7f0000000280)=0x0) sched_setattr(r3, &(0x7f00000002c0)={0x30, 0x5, 0x2, 0x3, 0x0, 0x7, 0x6520257b, 0x5377c409}, 0x0) r4 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$sock_cred(r4, 0x1, 0x11, &(0x7f0000000000)={0x0, 0x0}, &(0x7f0000000040)=0xc) keyctl$get_persistent(0x7, r5, 0x0) setsockopt$inet_IP_XFRM_POLICY(r1, 0x0, 0x11, &(0x7f00000000c0)={{{@in=@multicast2, @in6=@rand_addr="73e065005f6f455fd484d6e62afb69e1", 0x4e20, 0xff, 0x4e20, 0x9, 0x2, 0x0, 0xa0, 0x33, 0x0, r5}, {0x5031, 0x2, 0x3, 0x6, 0x7fff, 0x4, 0xc31e, 0x5}, {0x9, 0xffff, 0x2, 0x10000}, 0x8, 0x6e6bbc, 0x3, 0x1, 0x9763d8bb0cdda6b8}, {{@in6=@mcast2, 0x4d3, 0x33}, 0x2, @in6=@rand_addr="53a4c74372e802c11188ad2681a3c29a", 0x3502, 0x3, 0x3, 0xe2, 0xa4fa, 0x84000000, 0xf26}}, 0xe8) 05:29:05 executing program 0: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f424852", 0x44, 0x10000}], 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) 05:29:05 executing program 1 (fault-call:0 fault-nth:22): syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000140)='./file0\x00', 0xff, 0x1, &(0x7f0000000000)=[{&(0x7f0000000180)="8da4363ac0ed0000000000000001004d0100000000000000000000000009000000000000009748aeb81e1b00920efd9a0000010000000000098cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 05:29:05 executing program 2: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)) r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ftruncate(r0, 0x9) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) 05:29:05 executing program 4: r0 = syz_open_dev$admmidi(&(0x7f0000000040)='/dev/admmidi#\x00', 0x9, 0x20100) setsockopt$sock_void(r0, 0x1, 0x3f, 0x0, 0x0) r1 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x1, 0x2) ioctl$VIDIOC_S_FREQUENCY(r1, 0x402c5639, &(0x7f0000000180)={0x0, 0x1}) 05:29:05 executing program 4: r0 = syz_open_dev$radio(&(0x7f0000000040)='/dev/radio#\x00', 0x3, 0x2) ioctl$LOOP_SET_BLOCK_SIZE(r0, 0x4c09, 0x10000) r1 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x1, 0x2) ioctl$VIDIOC_S_FREQUENCY(r1, 0x402c5639, &(0x7f0000000080)={0x0, 0x4}) [ 339.846657] FAULT_INJECTION: forcing a failure. [ 339.846657] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 339.858684] CPU: 0 PID: 23063 Comm: syz-executor.1 Not tainted 4.14.146 #0 [ 339.858693] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 339.858698] Call Trace: [ 339.858715] dump_stack+0x138/0x197 [ 339.858733] should_fail.cold+0x10f/0x159 [ 339.858746] __alloc_pages_nodemask+0x1d6/0x7a0 [ 339.875140] ? __alloc_pages_slowpath+0x2930/0x2930 [ 339.875166] cache_grow_begin+0x80/0x400 [ 339.875181] kmem_cache_alloc_trace+0x6b2/0x790 [ 339.881492] ? kernfs_put+0x35e/0x490 [ 339.881503] ? devm_device_remove_groups+0x50/0x50 [ 339.881516] kobject_uevent_env+0x378/0xc23 [ 339.881525] ? internal_create_group+0x49a/0x7b0 [ 339.881539] kobject_uevent+0x20/0x26 [ 339.881549] lo_ioctl+0x11e7/0x1ce0 [ 339.881566] ? loop_probe+0x160/0x160 [ 339.881577] blkdev_ioctl+0x96b/0x1860 [ 339.912791] ? blkpg_ioctl+0x980/0x980 [ 339.940932] ? __might_sleep+0x93/0xb0 [ 339.944824] ? __fget+0x210/0x370 [ 339.948321] block_ioctl+0xde/0x120 [ 339.951952] ? blkdev_fallocate+0x3b0/0x3b0 [ 339.956277] do_vfs_ioctl+0x7ae/0x1060 [ 339.960164] ? selinux_file_mprotect+0x5d0/0x5d0 [ 339.964923] ? lock_downgrade+0x6e0/0x6e0 [ 339.969063] ? ioctl_preallocate+0x1c0/0x1c0 [ 339.973457] ? __fget+0x237/0x370 [ 339.976899] ? security_file_ioctl+0x89/0xb0 [ 339.981294] SyS_ioctl+0x8f/0xc0 [ 339.984658] ? do_vfs_ioctl+0x1060/0x1060 [ 339.988807] do_syscall_64+0x1e8/0x640 [ 339.992680] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 339.997526] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 340.002710] RIP: 0033:0x459897 [ 340.005967] RSP: 002b:00007f617e384a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 340.013658] RAX: ffffffffffffffda RBX: 0000000020000028 RCX: 0000000000459897 [ 340.020911] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 340.028271] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 340.035532] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 05:29:05 executing program 4: r0 = syz_open_dev$radio(&(0x7f0000000000)='/dev/rad\x00o#\x00', 0x2, 0x2) ioctl$VIDIOC_S_FREQUENCY(r0, 0x402c5639, &(0x7f0000000180)={0x0, 0x1}) 05:29:05 executing program 3: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0xaaaaaaaaaaaab4e, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = openat$zero(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/zero\x00', 0x80000, 0x0) ioctl$KVM_GET_EMULATED_CPUID(r0, 0xc008ae09, &(0x7f0000000100)=""/239) r1 = getpid() r2 = getpid() tkill(r2, 0x9) r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000013c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r3, 0x40045431, &(0x7f0000000080)) r4 = syz_open_pts(r3, 0x0) ioctl$SNDRV_CTL_IOCTL_PCM_INFO(r0, 0xc1205531, &(0x7f00000002c0)={0x4, 0x2, 0x81, 0x699, [], [], [], 0x9, 0x7e, 0x0, 0x401, "31cc83c07eff24c7c5daeb30f1e3edbd"}) ioctl$TIOCSETD(r4, 0x5423, &(0x7f00000000c0)=0x5) ioctl$VT_RESIZEX(r4, 0x560a, &(0x7f0000000280)={0xf66b, 0x8001, 0xa, 0x3ac, 0x9, 0x40}) tkill(r2, 0x42) ptrace$setopts(0x4200, r1, 0x2, 0x100000) [ 340.042788] R13: 00000000004c8b25 R14: 00000000004dfbc8 R15: 0000000000000003 05:29:05 executing program 4: r0 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x1, 0x2) ioctl$VIDIOC_S_FREQUENCY(r0, 0x402c5639, &(0x7f0000000180)={0x0, 0x1}) setxattr$security_ima(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='security.ima\x00', &(0x7f00000000c0)=@v1={0x2, "de07108a3bbe56a53b9b1af84b733716"}, 0x11, 0x1) 05:29:05 executing program 0: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f424852", 0x44, 0x10000}], 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) 05:29:05 executing program 4: r0 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x1, 0x2) ioctl$VIDIOC_S_FREQUENCY(r0, 0x402c5639, &(0x7f0000000180)={0x0, 0x1}) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = fcntl$dupfd(r1, 0x0, 0xffffffffffffffff) getsockopt$EBT_SO_GET_INIT_INFO(r2, 0x0, 0x82, &(0x7f0000000180)={'broute\x00'}, &(0x7f0000000240)=0x50) ioctl$TIOCSCTTY(r2, 0x540e, 0xffffffff) getsockopt$sock_cred(r2, 0x1, 0x11, 0x0, &(0x7f0000000640)) ioctl$SIOCX25SCUDMATCHLEN(r2, 0x89e7, &(0x7f0000000040)={0x25}) 05:29:05 executing program 5: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x1001000, 0x0) r0 = open(&(0x7f00000000c0)='./file0\x00', 0x4000, 0x4) ioctl$TCSETAW(r0, 0x5407, &(0x7f0000000100)={0x4, 0x80, 0x2, 0x40, 0x9, 0x4, 0x5, 0x40, 0x4, 0x7}) 05:29:06 executing program 1 (fault-call:0 fault-nth:23): syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000140)='./file0\x00', 0xff, 0x1, &(0x7f0000000000)=[{&(0x7f0000000180)="8da4363ac0ed0000000000000001004d0100000000000000000000000009000000000000009748aeb81e1b00920efd9a0000010000000000098cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 05:29:06 executing program 0: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f4248526653", 0x46, 0x10000}], 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) 05:29:06 executing program 2: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10400}], 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$zero(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/zero\x00', 0x1, 0x0) r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r2, 0x84, 0x6e, &(0x7f0000961fe4)=[@in={0x2, 0x0, @dev}], 0x10) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f00000001c0)={0x1, [0x0]}, &(0x7f00000000c0)=0xfe10) getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r2, 0x84, 0x66, &(0x7f0000000040)={r3}, &(0x7f0000000140)=0x8) r4 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r4, 0x84, 0x6e, &(0x7f0000961fe4)=[@in={0x2, 0x0, @dev}], 0x10) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r4, 0x84, 0x1d, &(0x7f00000001c0)={0x1, [0x0]}, &(0x7f00000000c0)=0xfe10) getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r4, 0x84, 0x66, &(0x7f0000000040)={r5}, &(0x7f0000000140)=0x8) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, &(0x7f0000000100)={r5, 0xf2, "457095b9cce74bca131e1aa6b7f34e78693ac74c8778d0ec9d447f853ca04946cf8d29e480dcadbe3e16a0e1d8b736f4e19602bdf424ea1ebfb80c7578e14d909762b29d8a85f5343ceb4d58f5ea627c4956837816b20760268eb83f273478d1720be7d1b4891a623f9516b5dbc590199465000e89b06eeae0d3abd4f816ec27999a584efe816860be7fd0958c4bcf1f5c6bfbead19bad867a7b9e8dcd55635e62b33924f375cf5ea6d683caef8dab7cfdb6bf136c2bb70705290b95c185f953a296a3d67ae15b298caf69e9521e5d9b33dcf1d471f3970b483f8fd2c6279844d18f0ea587de4ba951ba6fc0d1d47a231eb4"}, &(0x7f0000000280)=0xfa) r7 = openat$dlm_control(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/dlm-control\x00', 0x420000, 0x0) setsockopt$inet_sctp6_SCTP_AUTO_ASCONF(r7, 0x84, 0x1e, &(0x7f0000000400)=0x2, 0x4) getsockopt$inet_sctp_SCTP_STATUS(r1, 0x84, 0xe, &(0x7f00000002c0)={r3, 0x9, 0x4, 0x3, 0x57, 0xfffa, 0x9, 0x3f, {r6, @in={{0x2, 0x4e23, @rand_addr=0x1}}, 0x5, 0x800, 0x20, 0x200, 0x5}}, &(0x7f0000000380)=0xb0) 05:29:06 executing program 4: syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x1, 0x2) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x4, 0x4182) r1 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) pwritev(r1, &(0x7f0000000340)=[{&(0x7f0000000140)='!', 0x1}], 0x1, 0x81805) r2 = dup2(r1, r1) ioctl$SG_GET_RESERVED_SIZE(r1, 0x2272, 0x0) ioctl$LOOP_CHANGE_FD(r0, 0x4c00, r1) write$P9_RLERRORu(r2, &(0x7f00000003c0)=ANY=[@ANYBLOB="1400000007650d6c24ed92c8397291335cf616f0010200070062726f0c62077600b365a0a59e7eea"], 0x28) getsockopt$sock_cred(r2, 0x1, 0x11, 0x0, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f00000007c0)={{{@in=@remote, @in6=@initdev}}, {{@in=@empty}, 0x0, @in6=@ipv4}}, &(0x7f00000008c0)=0xe8) sendfile(r2, r0, 0x0, 0x2400003e) ioctl$VIDIOC_S_FREQUENCY(r2, 0x402c5639, &(0x7f0000000180)={0x0, 0x1}) 05:29:06 executing program 3: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = syz_open_dev$audion(&(0x7f00000000c0)='/dev/audio#\x00', 0x20, 0x910240) ioctl$PERF_EVENT_IOC_PERIOD(r0, 0x40082404, &(0x7f0000000100)=0x397f) [ 340.303119] FAULT_INJECTION: forcing a failure. [ 340.303119] name failslab, interval 1, probability 0, space 0, times 0 [ 340.316097] CPU: 0 PID: 23111 Comm: syz-executor.1 Not tainted 4.14.146 #0 [ 340.323149] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 340.332524] Call Trace: [ 340.332615] dump_stack+0x138/0x197 [ 340.332633] should_fail.cold+0x10f/0x159 [ 340.332652] should_failslab+0xdb/0x130 [ 340.346962] kmem_cache_alloc_node_trace+0x280/0x770 [ 340.352069] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 340.352089] __kmalloc_node_track_caller+0x3d/0x80 [ 340.352102] __kmalloc_reserve.isra.0+0x40/0xe0 [ 340.352112] __alloc_skb+0xcf/0x500 [ 340.352120] ? skb_scrub_packet+0x4b0/0x4b0 [ 340.352130] ? netlink_has_listeners+0x20a/0x330 [ 340.352143] kobject_uevent_env+0x781/0xc23 [ 340.352152] ? internal_create_group+0x49a/0x7b0 [ 340.352168] kobject_uevent+0x20/0x26 [ 340.352180] lo_ioctl+0x11e7/0x1ce0 [ 340.362549] ? loop_probe+0x160/0x160 [ 340.362563] blkdev_ioctl+0x96b/0x1860 [ 340.362573] ? blkpg_ioctl+0x980/0x980 [ 340.362590] ? __might_sleep+0x93/0xb0 [ 340.362599] ? __fget+0x210/0x370 [ 340.362609] block_ioctl+0xde/0x120 [ 340.362617] ? blkdev_fallocate+0x3b0/0x3b0 [ 340.362627] do_vfs_ioctl+0x7ae/0x1060 [ 340.362637] ? selinux_file_mprotect+0x5d0/0x5d0 [ 340.362646] ? lock_downgrade+0x6e0/0x6e0 [ 340.362656] ? ioctl_preallocate+0x1c0/0x1c0 [ 340.362666] ? __fget+0x237/0x370 [ 340.362682] ? security_file_ioctl+0x89/0xb0 [ 340.362692] SyS_ioctl+0x8f/0xc0 [ 340.362701] ? do_vfs_ioctl+0x1060/0x1060 [ 340.362713] do_syscall_64+0x1e8/0x640 [ 340.362720] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 340.362736] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 340.380066] RIP: 0033:0x459897 [ 340.380072] RSP: 002b:00007f617e384a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 340.380081] RAX: ffffffffffffffda RBX: 0000000020000028 RCX: 0000000000459897 [ 340.380086] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 340.380090] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 340.380095] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 340.380100] R13: 00000000004c8b25 R14: 00000000004dfbc8 R15: 0000000000000003 [ 340.401010] print_req_error: I/O error, dev loop4, sector 0 05:29:06 executing program 4: syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x1, 0x2) r0 = syz_open_dev$vbi(&(0x7f0000000040)='/dev/vbi#\x00', 0x3, 0x2) ioctl$VIDIOC_S_FREQUENCY(r0, 0x402c5639, &(0x7f0000000180)={0xffffffff, 0x3, 0x801}) 05:29:06 executing program 0: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f4248526653", 0x46, 0x10000}], 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) 05:29:06 executing program 1 (fault-call:0 fault-nth:24): syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000140)='./file0\x00', 0xff, 0x1, &(0x7f0000000000)=[{&(0x7f0000000180)="8da4363ac0ed0000000000000001004d0100000000000000000000000009000000000000009748aeb81e1b00920efd9a0000010000000000098cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 05:29:06 executing program 4: r0 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x1, 0x2) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = fcntl$dupfd(r0, 0xa0f, 0xffffffffffffffff) getsockopt$EBT_SO_GET_INIT_INFO(r1, 0x0, 0x82, &(0x7f0000000180)={'broute\x00'}, &(0x7f0000000240)=0x50) ioctl$TIOCSCTTY(r1, 0x540e, 0xffffffff) getsockopt$sock_cred(r1, 0x1, 0x11, 0x0, &(0x7f0000000080)=0xc0e07b5696126219) ioctl$VIDIOC_S_FREQUENCY(r1, 0x402c5639, &(0x7f0000000180)={0x43457539, 0x3, 0x81}) 05:29:06 executing program 5: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x8, 0x0, 0x0, 0x0, 0x0, 0x101, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, @perf_config_ext={0x7}, 0x0, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x8) r0 = socket$inet(0x10, 0x3, 0x0) sendmsg(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000680)="4c0000001200ff09ff1cfe956fa283b724a6008000000000000008000000150024001d001fc41180b598bc593ab6821148a730de33aa46ffecfde0258823dd8da49848c6cea97da172dcc121", 0xfdf6}], 0x1}, 0x0) r1 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x4, 0x4182) r2 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) pwritev(r2, &(0x7f0000000340)=[{&(0x7f0000000140)='!', 0x1}], 0x1, 0x81805) r3 = dup2(r2, r2) ioctl$SG_GET_RESERVED_SIZE(r2, 0x2272, 0x0) ioctl$LOOP_CHANGE_FD(r1, 0x4c00, r2) write$P9_RLERRORu(r3, &(0x7f00000003c0)=ANY=[@ANYBLOB="1400000007650d6c24ed92c8397291335cf616f0010200070062726f0c62077600b365a0a59e7eea"], 0x28) getsockopt$sock_cred(r3, 0x1, 0x11, 0x0, 0x0) r4 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x4, 0x4182) r5 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) r6 = socket$alg(0x26, 0x5, 0x0) bind$alg(r6, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'ghash-generic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r6, 0x117, 0x1, 0x0, 0x0) pwritev(r6, &(0x7f0000000340)=[{&(0x7f0000000500)="74a27eaed83d9ce47658bb2ea7844433f05b2f08a1eb528d90d9efd3848db6854f9f6ae989a7686f9f75398ad62ad2b24909ed89a6c04046ac75fdc59e48e731aece02d3e40e50cdbbea42c7947582f85ab5d2da55d954c66dc7f5341006e910370d41394cf93f940ca3683e26a25169fc2d1df3d009d95afa16d5b81e3a5c566654da09cb5c38ce6bc9229b03d003329499f19cf4", 0x95}], 0x10000000000000ec, 0x81804) r7 = dup2(0xffffffffffffffff, r5) ioctl$SG_GET_RESERVED_SIZE(r5, 0x2272, 0x0) ioctl$LOOP_CHANGE_FD(r4, 0x4c00, r5) write$P9_RLERRORu(r7, &(0x7f00000003c0)=ANY=[@ANYBLOB="1400000007650d6c24ed92c8397291335cf616f0010200070062726f0c62077600b365a0a59e7eea"], 0x28) getsockopt$sock_cred(r7, 0x1, 0x11, 0x0, 0x0) r8 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x4, 0x4182) r9 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) pwritev(r9, &(0x7f0000000340)=[{&(0x7f0000000140)='!', 0x1}], 0x1, 0x81805) r10 = dup2(r9, r9) ioctl$SG_GET_RESERVED_SIZE(r9, 0x2272, 0x0) ioctl$LOOP_CHANGE_FD(r8, 0x4c00, r9) write$P9_RLERRORu(r10, &(0x7f00000003c0)=ANY=[@ANYBLOB="1400000007650d6c24ed92c8397291335cf616f0010200070062726f0c62077600b365a0a59e7eea"], 0x28) getsockopt$sock_cred(r10, 0x1, 0x11, 0x0, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(r10, 0x29, 0x23, &(0x7f0000000400)={{{@in=@remote, @in6=@initdev}}, {{@in=@empty}, 0x0, @in6=@ipv4}}, &(0x7f00000000c0)=0x36e) sendfile(r10, r8, 0x0, 0x2400003e) 05:29:06 executing program 3: [ 340.761083] FAULT_INJECTION: forcing a failure. [ 340.761083] name failslab, interval 1, probability 0, space 0, times 0 [ 340.799665] CPU: 1 PID: 23161 Comm: syz-executor.1 Not tainted 4.14.146 #0 [ 340.806753] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 340.816119] Call Trace: [ 340.818729] dump_stack+0x138/0x197 [ 340.822380] should_fail.cold+0x10f/0x159 [ 340.826549] should_failslab+0xdb/0x130 [ 340.830541] kmem_cache_alloc_node+0x287/0x780 [ 340.835130] __alloc_skb+0x9c/0x500 [ 340.838748] ? skb_scrub_packet+0x4b0/0x4b0 [ 340.838762] ? netlink_has_listeners+0x20a/0x330 [ 340.838777] kobject_uevent_env+0x781/0xc23 [ 340.838794] kobject_uevent+0x20/0x26 [ 340.838806] lo_ioctl+0x11e7/0x1ce0 [ 340.859591] ? loop_probe+0x160/0x160 [ 340.863489] blkdev_ioctl+0x96b/0x1860 [ 340.867388] ? blkpg_ioctl+0x980/0x980 [ 340.871285] ? __might_sleep+0x93/0xb0 [ 340.875166] ? __fget+0x210/0x370 [ 340.875180] block_ioctl+0xde/0x120 [ 340.875191] ? blkdev_fallocate+0x3b0/0x3b0 [ 340.882268] do_vfs_ioctl+0x7ae/0x1060 [ 340.882281] ? selinux_file_mprotect+0x5d0/0x5d0 [ 340.882290] ? lock_downgrade+0x6e0/0x6e0 [ 340.882300] ? ioctl_preallocate+0x1c0/0x1c0 [ 340.882312] ? __fget+0x237/0x370 05:29:06 executing program 4: r0 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x1, 0x2) ioctl$VIDIOC_S_FREQUENCY(r0, 0x402c5639, &(0x7f0000000180)={0x0, 0x1}) ioctl$BLKALIGNOFF(r0, 0x127a, &(0x7f0000000040)) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = fcntl$dupfd(r1, 0x0, 0xffffffffffffffff) getsockopt$EBT_SO_GET_INIT_INFO(r2, 0x0, 0x82, &(0x7f0000000180)={'broute\x00'}, &(0x7f0000000240)=0x50) ioctl$TIOCSCTTY(r2, 0x540e, 0xffffffff) getsockopt$sock_cred(r2, 0x1, 0x11, 0x0, &(0x7f0000000640)) pipe2(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}, 0x2000) ioctl$VIDIOC_ENUM_FMT(r3, 0xc0405602, &(0x7f00000000c0)={0x5, 0x4, 0x3, "03582e2a0396a21aec24fda6f2e37fdc7fd4eff8477deaca24352839f9b2d16d", 0x42475251}) sendto$rxrpc(r2, &(0x7f00000001c0)="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", 0x1000, 0x4c091, 0x0, 0x0) [ 340.882330] ? security_file_ioctl+0x89/0xb0 [ 340.882341] SyS_ioctl+0x8f/0xc0 [ 340.882350] ? do_vfs_ioctl+0x1060/0x1060 [ 340.895173] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.5'. [ 340.895299] do_syscall_64+0x1e8/0x640 [ 340.905269] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.5'. [ 340.907277] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 340.907296] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 340.907304] RIP: 0033:0x459897 [ 340.907309] RSP: 002b:00007f617e384a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 05:29:06 executing program 0: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f4248526653", 0x46, 0x10000}], 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) 05:29:06 executing program 4: r0 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x1, 0x2) ioctl$VIDIOC_S_FREQUENCY(r0, 0x402c5639, &(0x7f0000000180)={0x0, 0x1, 0xfffffffc}) [ 340.928205] RAX: ffffffffffffffda RBX: 0000000020000028 RCX: 0000000000459897 [ 340.928211] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 340.928216] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 340.928220] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 340.928225] R13: 00000000004c8b25 R14: 00000000004dfbc8 R15: 0000000000000003 [ 341.200322] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.5'. [ 341.226417] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.5'. 05:29:07 executing program 2: syz_mount_image$btrfs(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = syz_open_dev$usbmon(&(0x7f00000000c0)='/dev/usbmon#\x00', 0x1, 0x400) syz_open_pts(r1, 0x4000) 05:29:07 executing program 4: r0 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x1, 0x2) ioctl$VIDIOC_S_FREQUENCY(r0, 0x402c5639, &(0x7f0000000180)={0x0, 0x1}) r1 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x4, 0x4182) r2 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) pwritev(r2, &(0x7f0000000340)=[{&(0x7f0000000140)='!', 0x1}], 0x1, 0x81805) r3 = dup2(r2, r2) ioctl$SG_GET_RESERVED_SIZE(r2, 0x2272, 0x0) ioctl$LOOP_CHANGE_FD(r1, 0x4c00, r2) write$P9_RLERRORu(r3, &(0x7f00000003c0)=ANY=[@ANYBLOB="1400000007650d6c24ed92c8397291335cf616f0010200070062726f0c62077600b365a0a59e7eea"], 0x28) getsockopt$sock_cred(r3, 0x1, 0x11, 0x0, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(r3, 0x29, 0x23, &(0x7f00000007c0)={{{@in=@remote, @in6=@initdev}}, {{@in=@empty}, 0x0, @in6=@ipv4}}, &(0x7f00000008c0)=0xe8) sendfile(r3, r1, 0x0, 0x2400003e) r4 = syz_genetlink_get_family_id$tipc(&(0x7f0000000080)='TIPC\x00') sendmsg$TIPC_CMD_GET_MEDIA_NAMES(r3, &(0x7f0000000140)={&(0x7f0000000040), 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x1c, r4, 0x200, 0x70bd2d, 0x25dfdbfd, {}, [""]}, 0x1c}, 0x1, 0x0, 0x0, 0x4}, 0x4) 05:29:07 executing program 3: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000000)={0x0, 0x0}, &(0x7f0000000040)=0xc) mount$9p_tcp(&(0x7f00000000c0)='127.0.0.1\x00', &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='9p\x00', 0x28, &(0x7f0000000340)=ANY=[@ANYBLOB='trans=tcp,port=0x0000000000004e23,aname=)vmnet0proc\\keyringem1,afid=0x0000000000000fff,debug=0x0000000000000009,access=user,audit,mask=MAY_EXEC,fowner<', @ANYRESDEC=r1, @ANYBLOB="2c706572040000000000000072656374696f2c00"]) creat(&(0x7f0000000180)='./file0\x00', 0x10) r2 = syz_open_dev$vcsa(&(0x7f0000000300)='/dev/vcsa#\x00', 0x80000001, 0x20000) getsockopt$inet6_IPV6_IPSEC_POLICY(r2, 0x29, 0x22, 0x0, &(0x7f0000000780)) ioctl$VIDIOC_G_FBUF(r2, 0x8030560a, &(0x7f00000001c0)={0x10, 0x61, &(0x7f0000000400)="ac640b491a47d16da27fbe2ba2a1d9a11616e195037e6f8a8fca3a78690b7b37b8f7c885981231fadab6f49d174b054b03c93fa348325a275df07726f393919075c1bc499399e4a5bde1198d664abb45adff2f21376834a11581fb7a6bad293ff54b89e871786032c0c0a9c89d2298c954bd38ee538182fa235d7ed4cf661815e081c6389a87278bfbdd000ac54fb01e7d008ba1f3180a2cc87c792eddbb5b3726b8ceabc1ce7a9eb2180761e4d672ca981e7fd6676c7c592e550ca16c61b14f6dbc4930dd58cd94a90b7b18d9dd22e467a04081d7b41d5e71136d023ddec8b1c9d641b2339e8378ec4c8e58ade0d1ecc3f137203dab49db01ef0361a600cb9941bf9c9c694da5a9a57caa16152daf638a1b", {0x3, 0x3, 0x32525942, 0x8, 0x1fc00000, 0x4, 0x9}}) sched_yield() 05:29:07 executing program 1 (fault-call:0 fault-nth:25): syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000140)='./file0\x00', 0xff, 0x1, &(0x7f0000000000)=[{&(0x7f0000000180)="8da4363ac0ed0000000000000001004d0100000000000000000000000009000000000000009748aeb81e1b00920efd9a0000010000000000098cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 05:29:07 executing program 0: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f", 0x47, 0x10000}], 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) 05:29:07 executing program 5: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = openat$selinux_checkreqprot(0xffffffffffffff9c, &(0x7f0000000180)='/selinux/checkreqprot\x00', 0x80, 0x0) ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, &(0x7f0000000300)={'team0\x00', 0x0}) setsockopt$packet_add_memb(r0, 0x107, 0x1, &(0x7f0000000340)={r1, 0x1, 0x6, @remote}, 0x10) r2 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x4, 0x4182) r3 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) pwritev(r3, &(0x7f0000000340)=[{&(0x7f0000000140)='!', 0x1}], 0x1, 0x81805) r4 = dup2(r3, r3) ioctl$SG_GET_RESERVED_SIZE(r3, 0x2272, 0x0) ioctl$LOOP_CHANGE_FD(r2, 0x4c00, r3) write$P9_RLERRORu(r4, &(0x7f00000003c0)=ANY=[@ANYBLOB="1400000007650d6c24ed92c8397291335cf616f0010200070062726f0c62077600b365a0a59e7eea"], 0x28) getsockopt$sock_cred(r4, 0x1, 0x11, 0x0, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(r4, 0x29, 0x23, &(0x7f00000007c0)={{{@in=@remote, @in6=@initdev}}, {{@in=@empty}, 0x0, @in6=@ipv4}}, &(0x7f00000008c0)=0xe8) sendfile(r4, r2, 0x0, 0x2400003e) setsockopt$IP_VS_SO_SET_TIMEOUT(r4, 0x0, 0x48a, &(0x7f00000000c0)={0x4, 0x5, 0xfffff9b7}, 0xc) 05:29:07 executing program 0: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f", 0x47, 0x10000}], 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) 05:29:07 executing program 4: r0 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = fcntl$dupfd(r0, 0x0, 0xffffffffffffffff) getsockopt$EBT_SO_GET_INIT_INFO(r1, 0x0, 0x82, &(0x7f0000000180)={'broute\x00'}, &(0x7f0000000240)=0x50) ioctl$TIOCSCTTY(r1, 0x540e, 0xffffffff) getsockopt$sock_cred(r1, 0x1, 0x11, 0x0, &(0x7f0000000640)) ioctl$KVM_S390_UCAS_UNMAP(r1, 0x4018ae51, &(0x7f00000000c0)={0x8, 0x20, 0xfff}) syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x1, 0x2) r2 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x4, 0x4182) r3 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) pwritev(r3, &(0x7f0000000340)=[{&(0x7f0000000140)='!', 0x1}], 0x1, 0x81805) r4 = dup2(r3, r3) ioctl$SG_GET_RESERVED_SIZE(r3, 0x2272, 0x0) ioctl$LOOP_CHANGE_FD(r2, 0x4c00, r3) write$P9_RLERRORu(r4, &(0x7f00000003c0)=ANY=[@ANYBLOB="1400000007650d6c24ed92c8397291335cf6ffffff7f00070062726f0c62077600b3cd62a59e7eea"], 0x28) getsockopt$sock_cred(r4, 0x1, 0x11, 0x0, 0x0) socket$inet6(0xa, 0x80807, 0x6) r5 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x4, 0x4182) r6 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) pwritev(r6, &(0x7f0000000340)=[{&(0x7f0000000140)='!', 0x1}], 0x1, 0x81805) r7 = dup2(r6, r6) ioctl$SG_GET_RESERVED_SIZE(r6, 0x2272, 0x0) ioctl$LOOP_CHANGE_FD(r5, 0x4c00, r6) write$P9_RLERRORu(r7, &(0x7f00000003c0)=ANY=[@ANYBLOB="1400000007650d6c24ed92c8397291335cf616f0010200070062726f0c62077600b365a0a59e7eea"], 0x28) getsockopt$sock_cred(r7, 0x1, 0x11, 0x0, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(r7, 0x29, 0x23, &(0x7f00000007c0)={{{@in=@remote, @in6=@initdev}}, {{@in=@empty}, 0x0, @in6=@ipv4}}, &(0x7f00000008c0)=0xe8) sendfile(r7, r5, 0x0, 0x2400003e) getsockopt$inet6_IPV6_XFRM_POLICY(r7, 0x29, 0x23, &(0x7f00000007c0)={{{@in=@remote, @in6=@initdev}}, {{@in=@empty}, 0x0, @in6=@ipv4}}, &(0x7f00000008c0)=0xfffffffffffffe47) sendfile(r4, r2, 0x0, 0x2400003e) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$VIDIOC_S_FREQUENCY(r4, 0x402c5639, &(0x7f0000000040)={0x40, 0x5, 0x7f}) [ 341.474973] FAULT_INJECTION: forcing a failure. [ 341.474973] name failslab, interval 1, probability 0, space 0, times 0 [ 341.499381] CPU: 1 PID: 23236 Comm: syz-executor.1 Not tainted 4.14.146 #0 [ 341.506471] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 341.515830] Call Trace: [ 341.519921] dump_stack+0x138/0x197 [ 341.523656] should_fail.cold+0x10f/0x159 [ 341.527800] should_failslab+0xdb/0x130 [ 341.531762] kmem_cache_alloc_node+0x287/0x780 [ 341.536336] __alloc_skb+0x9c/0x500 [ 341.539953] ? skb_scrub_packet+0x4b0/0x4b0 [ 341.544261] ? netlink_has_listeners+0x20a/0x330 [ 341.549014] kobject_uevent_env+0x781/0xc23 [ 341.553321] kobject_uevent+0x20/0x26 [ 341.557107] lo_ioctl+0x11e7/0x1ce0 [ 341.560719] ? loop_probe+0x160/0x160 [ 341.564508] blkdev_ioctl+0x96b/0x1860 [ 341.568380] ? blkpg_ioctl+0x980/0x980 [ 341.572389] ? __might_sleep+0x93/0xb0 [ 341.576267] ? __fget+0x210/0x370 [ 341.579854] block_ioctl+0xde/0x120 [ 341.583474] ? blkdev_fallocate+0x3b0/0x3b0 [ 341.587782] do_vfs_ioctl+0x7ae/0x1060 [ 341.591655] ? selinux_file_mprotect+0x5d0/0x5d0 [ 341.596404] ? lock_downgrade+0x6e0/0x6e0 [ 341.600547] ? ioctl_preallocate+0x1c0/0x1c0 [ 341.604949] ? __fget+0x237/0x370 [ 341.608392] ? security_file_ioctl+0x89/0xb0 [ 341.612787] SyS_ioctl+0x8f/0xc0 [ 341.616215] ? do_vfs_ioctl+0x1060/0x1060 [ 341.620382] do_syscall_64+0x1e8/0x640 [ 341.624256] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 341.629093] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 341.634273] RIP: 0033:0x459897 [ 341.637453] RSP: 002b:00007f617e384a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 341.645145] RAX: ffffffffffffffda RBX: 0000000020000028 RCX: 0000000000459897 [ 341.652413] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 341.659668] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 341.666924] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 05:29:07 executing program 2: setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x40, &(0x7f0000000280)=@nat={'nat\x00', 0x1b, 0x5, 0x420, 0x0, 0x2b8, 0xf8, 0x1c8, 0x1c8, 0x388, 0x388, 0x388, 0x388, 0x388, 0x5, &(0x7f00000000c0), {[{{@ip={@empty, @remote, 0x0, 0xff, 'bcsf0\x00', 'hwsim0\x00', {}, {0x377cb06b79efa7cb}, 0x67, 0x3, 0x40}, 0x0, 0xc0, 0xf8, 0x0, {}, [@common=@icmp={0x28, 'icmp\x00', 0x0, {0x5, 0x6c, 0x5}}]}, @DNAT0={0x38, 'DNAT\x00', 0x0, {0x1, {0x20, @loopback, @dev={0xac, 0x14, 0x14, 0xe}, @icmp_id=0x66, @icmp_id=0x68}}}}, {{@uncond, 0x0, 0x98, 0xd0}, @REDIRECT={0x38, 'REDIRECT\x00', 0x0, {0x1, {0x19, @dev={0xac, 0x14, 0x14, 0x19}, @local, @gre_key=0x4, @gre_key=0x81}}}}, {{@uncond, 0x0, 0xb8, 0xf0, 0x0, {}, [@common=@socket0={0x20, 'socket\x00'}]}, @NETMAP={0x38, 'NETMAP\x00', 0x0, {0x1, {0x1, @rand_addr=0x28, @initdev={0xac, 0x1e, 0x1, 0x0}, @gre_key=0x1ff, @port=0x4e21}}}}, {{@ip={@loopback, @remote, 0xffffff00, 0xffffff00, '\x00', 'batadv0\x00', {0x101}, {}, 0x84, 0x0, 0x1}, 0x0, 0x98, 0xd0}, @DNAT0={0x38, 'DNAT\x00', 0x0, {0x1, {0x10, @rand_addr=0x10000, @local, @icmp_id=0x64, @port=0x4e21}}}}], {{[], 0x0, 0x70, 0x98}, {0x28}}}}, 0x480) syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) [ 341.674183] R13: 00000000004c8b25 R14: 00000000004dfbc8 R15: 0000000000000003 05:29:07 executing program 3: r0 = openat$selinux_avc_cache_threshold(0xffffffffffffff9c, &(0x7f00000001c0)='/selinux/avc/cache_threshold\x00', 0x2, 0x0) ioctl$KVM_REINJECT_CONTROL(r0, 0xae71, &(0x7f0000001280)={0x2}) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = fcntl$dupfd(r1, 0x0, 0xffffffffffffffff) getsockopt$EBT_SO_GET_INIT_INFO(r2, 0x0, 0x82, &(0x7f0000000180)={'broute\x00'}, &(0x7f0000000240)=0x50) ioctl$TIOCSCTTY(r2, 0x540e, 0xffffffff) getsockopt$sock_cred(r2, 0x1, 0x11, 0x0, &(0x7f0000000640)) r3 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r3, 0x84, 0x6e, &(0x7f0000961fe4)=[@in={0x2, 0x0, @dev}], 0x10) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r3, 0x84, 0x1d, &(0x7f00000001c0)={0x1, [0x0]}, &(0x7f00000000c0)=0xfe10) getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r3, 0x84, 0x66, &(0x7f0000000040)={r4}, &(0x7f0000000140)=0x8) setsockopt$inet_sctp_SCTP_ASSOCINFO(r2, 0x84, 0x1, &(0x7f0000000240)={r4, 0x401, 0x3, 0x40, 0x4, 0x7}, 0x14) syz_mount_image$vfat(&(0x7f00000000c0)='vfat\x00', &(0x7f0000000100)='./file0\x00', 0x2, 0x1, &(0x7f0000000140)=[{&(0x7f0000000280)="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", 0x1000, 0x3}], 0x20, &(0x7f0000000180)={[{@numtail='nonumtail=0'}, {@fat=@dos1xfloppy='dos1xfloppy'}], [{@rootcontext={'rootcontext', 0x3d, 'system_u'}}]}) r5 = getpid() tkill(r5, 0x9) r6 = getpid() tkill(r6, 0x9) r7 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x4, 0x4182) ioctl$TIOCGPTLCK(r0, 0x80045439, &(0x7f0000000040)) r8 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) pwritev(r8, &(0x7f0000000340)=[{&(0x7f0000000140)='!', 0x1}], 0x1, 0x81805) r9 = dup2(r8, r8) ioctl$RTC_EPOCH_READ(0xffffffffffffffff, 0x8008700d, &(0x7f00000012c0)) ioctl$SG_GET_RESERVED_SIZE(r8, 0x2272, 0x0) ioctl$LOOP_CHANGE_FD(r7, 0x4c00, r8) write$P9_RLERRORu(r9, &(0x7f00000003c0)=ANY=[@ANYBLOB="1400000007650d6c24ed92c8397291335cf616f0010200070062726f0c62077600b365a0a59e7eea"], 0x28) getsockopt$sock_cred(r9, 0x1, 0x11, 0x0, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(r9, 0x29, 0x23, &(0x7f00000007c0)={{{@in=@remote, @in6=@initdev}}, {{@in=@empty}, 0x0, @in6=@ipv4}}, &(0x7f00000008c0)=0xe8) sendfile(r9, r7, 0x0, 0x2400003e) kcmp$KCMP_EPOLL_TFD(r5, r6, 0x7, r0, &(0x7f0000000000)={r9, r0, 0x3ff}) 05:29:07 executing program 4: r0 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x1, 0x2) ioctl$VIDIOC_S_FREQUENCY(r0, 0x402c5639, &(0x7f0000000180)={0x0, 0x1}) r1 = syz_open_dev$vcsa(&(0x7f0000000300)='/dev/vcsa#\x00', 0x80000001, 0x20000) getsockopt$inet6_IPV6_IPSEC_POLICY(r1, 0x29, 0x22, 0x0, &(0x7f0000000780)) ioctl$VIDIOC_SUBDEV_S_DV_TIMINGS(r1, 0xc0845657, &(0x7f0000000040)={0x0, @bt={0x2, 0x7, 0x0, 0x4, 0x5, 0xb98e, 0x80000000, 0x80000000, 0x0, 0x4, 0x1, 0x5, 0x7, 0x2, 0x6, 0x20}}) getuid() r2 = syz_open_dev$vcsa(&(0x7f0000000300)='/dev/vcsa#\x00', 0x80000001, 0x20000) getsockopt$inet6_IPV6_IPSEC_POLICY(r2, 0x29, 0x22, 0x0, &(0x7f0000000780)) ioctl$SIOCGETLINKNAME(r2, 0x89e0, &(0x7f0000000100)={0x2}) 05:29:07 executing program 0: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f", 0x47, 0x10000}], 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) 05:29:07 executing program 4: r0 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x1, 0x2) r1 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x4, 0x4182) r2 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) pwritev(r2, &(0x7f0000000340)=[{&(0x7f0000000140)='!', 0x1}], 0x1, 0x81805) r3 = dup2(r2, r2) ioctl$SG_GET_RESERVED_SIZE(r2, 0x2272, 0x0) ioctl$LOOP_CHANGE_FD(r1, 0x4c00, r2) write$P9_RLERRORu(r3, &(0x7f00000003c0)=ANY=[@ANYBLOB="1400000007650d6c24ed92c8397291335cf616f0010200070062726f0c62077600b365a0a59e7eea"], 0x28) getsockopt$sock_cred(r3, 0x1, 0x11, 0x0, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(r3, 0x29, 0x23, &(0x7f00000007c0)={{{@in=@remote, @in6=@initdev}}, {{@in=@empty}, 0x0, @in6=@ipv4}}, &(0x7f00000008c0)=0xe8) sendfile(r3, r1, 0x0, 0x2400003e) getsockopt$TIPC_SRC_DROPPABLE(r3, 0x10f, 0x80, &(0x7f0000000040), &(0x7f0000000080)=0x4) ioctl$VIDIOC_S_FREQUENCY(r0, 0x402c5639, &(0x7f0000000180)={0x0, 0x1}) 05:29:07 executing program 3: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = syz_open_dev$midi(&(0x7f0000000340)='/dev/midi#\x00', 0x7158, 0x200202) write$UHID_CREATE2(r0, &(0x7f0000000380)=ANY=[@ANYBLOB="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"], 0x1118) r1 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000000)={0x0, 0x0}, &(0x7f0000000040)=0xc) keyctl$get_persistent(0x7, r2, 0x0) syz_mount_image$f2fs(&(0x7f00000000c0)='f2fs\x00', &(0x7f0000000100)='./file0\x00', 0x2, 0x1, &(0x7f00000001c0)=[{&(0x7f0000000140)="bbfb8512d10476526442f29f917572f8911c309618a8f026b9f977eafcafd1a5357a1838865f73e03b5f36525b5fd54ea35329b6fb040c29bd911cf6af0fd317d0ad349bb4678435d46b47ec62d8e7de60be0d06664fb9a87487c009aeb5350f3c4e69b992d65dda43b8", 0x6a, 0x9}], 0x108080, &(0x7f0000000280)={[{@disable_roll_forward='disable_roll_forward'}, {@quota='quota'}, {@disable_ext_identify='disable_ext_identify'}], [{@fowner_eq={'fowner', 0x3d, r2}}, {@defcontext={'defcontext', 0x3d, 'unconfined_u'}}, {@mask={'mask', 0x3d, 'MAY_EXEC'}}, {@measure='measure'}, {@seclabel='seclabel'}]}) 05:29:07 executing program 5: r0 = semget$private(0x0, 0x6, 0x0) semctl$GETALL(r0, 0x0, 0xd, &(0x7f0000000280)=""/71) semop(r0, &(0x7f00000000c0)=[{0x2, 0x4000, 0x1800}, {0x0, 0x6, 0x1000}], 0x2) syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 05:29:07 executing program 1 (fault-call:0 fault-nth:26): syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000140)='./file0\x00', 0xff, 0x1, &(0x7f0000000000)=[{&(0x7f0000000180)="8da4363ac0ed0000000000000001004d0100000000000000000000000009000000000000009748aeb81e1b00920efd9a0000010000000000098cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 05:29:07 executing program 0: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48}], 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) [ 342.158585] FAULT_INJECTION: forcing a failure. [ 342.158585] name failslab, interval 1, probability 0, space 0, times 0 [ 342.176048] CPU: 1 PID: 23306 Comm: syz-executor.1 Not tainted 4.14.146 #0 [ 342.183111] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 342.192477] Call Trace: [ 342.195080] dump_stack+0x138/0x197 [ 342.198729] should_fail.cold+0x10f/0x159 [ 342.202895] should_failslab+0xdb/0x130 [ 342.206883] kmem_cache_alloc_node_trace+0x280/0x770 [ 342.211999] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 342.217467] __kmalloc_node_track_caller+0x3d/0x80 [ 342.222499] __kmalloc_reserve.isra.0+0x40/0xe0 [ 342.227181] __alloc_skb+0xcf/0x500 [ 342.230820] ? skb_scrub_packet+0x4b0/0x4b0 [ 342.235153] ? netlink_has_listeners+0x20a/0x330 [ 342.239922] kobject_uevent_env+0x781/0xc23 [ 342.244271] kobject_uevent+0x20/0x26 [ 342.248079] lo_ioctl+0x11e7/0x1ce0 [ 342.251717] ? loop_probe+0x160/0x160 [ 342.255528] blkdev_ioctl+0x96b/0x1860 [ 342.259420] ? blkpg_ioctl+0x980/0x980 [ 342.263411] ? __might_sleep+0x93/0xb0 [ 342.267305] ? __fget+0x210/0x370 [ 342.270763] block_ioctl+0xde/0x120 [ 342.274397] ? blkdev_fallocate+0x3b0/0x3b0 [ 342.278724] do_vfs_ioctl+0x7ae/0x1060 [ 342.282622] ? selinux_file_mprotect+0x5d0/0x5d0 [ 342.287386] ? lock_downgrade+0x6e0/0x6e0 [ 342.291543] ? ioctl_preallocate+0x1c0/0x1c0 [ 342.296055] ? __fget+0x237/0x370 [ 342.299516] ? security_file_ioctl+0x89/0xb0 [ 342.303930] SyS_ioctl+0x8f/0xc0 05:29:08 executing program 2: syz_mount_image$btrfs(&(0x7f0000000740)='btrfs\x00', &(0x7f0000000780)='./file0/file0/file0\x00', 0x80000001, 0x4, &(0x7f0000000b80)=[{&(0x7f0000000900)="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", 0xff, 0x4}, {&(0x7f0000000a00)="fabb2dbb7cd69e4756d838a489c7f7de435804584848d6b126236cd2d2ab92c0269512f9ef62307e1dc87d5c4bd035823165670c5b7b0a236f0e4b90a4e8c8c24e3f155129f5295bb52b9df436b2cfb3f23d", 0x52, 0x4}, {&(0x7f0000000a80)="78be300f02703e9099290c4d686d201b8e9256658564ed61dab6afb08ca96e0ce70334e931c5c327fe45070303ce0f3131ebe8a2342a71b03ab284314affd6e34c3824a7ac36b241d0cb37b2935b802426615e4e163181ac9fae2c37a86af1f619bab3", 0x63, 0x5}, {&(0x7f0000000b00)="d17c2c0d907391885f6404d737aff4fb258b0d5876c734381e736563fdd42204561aa6bbe309777fc03d0e037b9deeba1d339346c6623b490824ab555e206259adb101c1", 0x44, 0x3}], 0x0, 0x0) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x4, 0x4182) r1 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) pwritev(r1, &(0x7f0000000340)=[{&(0x7f0000000140)='!', 0x1}], 0x1, 0x81805) r2 = dup2(r1, r1) ioctl$SG_GET_RESERVED_SIZE(r1, 0x2272, 0x0) r3 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x4, 0x4182) r4 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) r5 = socket$alg(0x26, 0x5, 0x0) bind$alg(r5, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'ghash-generic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r5, 0x117, 0x1, 0x0, 0x0) pwritev(r5, &(0x7f0000000340)=[{&(0x7f0000000140)='!', 0x1}], 0x1, 0x81805) r6 = dup2(r4, r4) ioctl$SG_GET_RESERVED_SIZE(r4, 0x2272, 0x0) ioctl$LOOP_CHANGE_FD(r3, 0x4c00, r4) write$P9_RLERRORu(r6, &(0x7f0000000500)=ANY=[@ANYBLOB="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"], 0x28) getsockopt$sock_cred(r6, 0x1, 0x11, 0x0, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(r6, 0x29, 0x23, &(0x7f00000007c0)={{{@in=@remote, @in6=@initdev}}, {{@in=@empty}, 0x0, @in6=@ipv4}}, &(0x7f00000008c0)=0x49406ccd) r7 = socket$alg(0x26, 0x5, 0x0) bind$alg(r7, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'ghash-generic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r7, 0x117, 0x1, 0x0, 0x0) r8 = openat$full(0xffffffffffffff9c, &(0x7f0000000380)='/dev/full\x00', 0x14800, 0x0) ioctl$LOOP_CHANGE_FD(r8, 0x4c00, r7) write$P9_RLERRORu(r2, &(0x7f0000000c00)=ANY=[@ANYBLOB="140007f4cf35b57539721b6059f5650d6c24ed92c8207291335cf64480cfb632480d686c3a30e619172ac8f0010000070062726f0c"], 0x28) getsockopt$sock_cred(r2, 0x1, 0x11, 0x0, 0x0) r9 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x4, 0x4182) r10 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) pwritev(r10, &(0x7f0000000340)=[{&(0x7f0000000140)='!', 0x1}], 0x1, 0x81805) r11 = dup2(r10, r10) ioctl$SG_GET_RESERVED_SIZE(r10, 0x2272, 0x0) ioctl$LOOP_CHANGE_FD(r9, 0x4c00, r10) write$P9_RLERRORu(r11, &(0x7f0000000680)=ANY=[@ANYBLOB="140000f5060f9cd58300000000000000000000000000000000000e2b3a021a0a2afb38dd3f18b04f4754cb2252adf17f09dc80e5b6fe7bb9047294c1eca74de3a3ba8a860768653551eaf3d374297922aea9810fb32c31dac9bbb0f2632f7827beb02fe8290a0feb399c2d3e8d226c04d1947a29f28be18fb6d02a87fd1f70928227d4d11b13558b1ac4e9b7074530f819f9e85726f70356ae9e44c83bd352e48b7029a0f607bf54058d14bee282397d9e297f1c5c243a"], 0x28) getsockopt$sock_cred(r11, 0x1, 0x11, 0x0, 0x0) r12 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r13 = fcntl$dupfd(r12, 0x0, 0xffffffffffffffff) getsockopt$EBT_SO_GET_INIT_INFO(r13, 0x0, 0x82, &(0x7f0000000180)={'broute\x00'}, &(0x7f0000000240)=0x50) ioctl$TIOCSCTTY(r13, 0x540e, 0xffffffff) getsockopt$sock_cred(r13, 0x1, 0x11, 0x0, &(0x7f0000000640)) getsockopt$inet6_IPV6_XFRM_POLICY(r13, 0x29, 0x23, &(0x7f00000007c0)={{{@in=@remote, @in6=@initdev}}, {{@in=@empty}, 0x0, @in6=@ipv4}}, &(0x7f00000008c0)=0xe8) sendfile(r11, r9, 0x0, 0x2400003e) getsockopt$inet6_IPV6_XFRM_POLICY(r11, 0x29, 0x23, &(0x7f00000007c0)={{{@in=@remote, @in6=@initdev}}, {{@in=@empty}, 0x0, @in6=@ipv4}}, &(0x7f00000008c0)=0x117) sendfile(r2, r0, 0x0, 0x2400003e) r14 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r15 = fcntl$dupfd(r14, 0x0, 0xffffffffffffffff) getsockopt$EBT_SO_GET_INIT_INFO(r15, 0x0, 0x82, &(0x7f0000000180)={'broute\x00'}, &(0x7f0000000240)=0x50) ioctl$TIOCSCTTY(r15, 0x540e, 0xffffffff) getsockopt$sock_cred(r15, 0x1, 0x11, 0x0, &(0x7f0000000640)) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_PREFER_SUBDEVICE(r15, 0x40045542, &(0x7f0000000080)=0x5) getsockopt$inet_sctp_SCTP_LOCAL_AUTH_CHUNKS(0xffffffffffffffff, 0x84, 0x1b, &(0x7f0000000c40)=ANY=[@ANYRES32=0x0, @ANYBLOB="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"], &(0x7f0000000280)=0xd6) getsockopt$inet_sctp_SCTP_ASSOCINFO(r2, 0x84, 0x1, &(0x7f00000002c0)={r16, 0xda, 0x37, 0x1, 0x4}, &(0x7f0000000300)=0x14) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r18, 0x8912, 0x400200) fsetxattr$trusted_overlay_origin(r17, &(0x7f00000000c0)='trusted.overlay.origin\x00', &(0x7f0000000100)='y\x00', 0x1, 0x5) [ 342.307305] ? do_vfs_ioctl+0x1060/0x1060 [ 342.311460] do_syscall_64+0x1e8/0x640 [ 342.315348] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 342.320200] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 342.325390] RIP: 0033:0x459897 [ 342.328576] RSP: 002b:00007f617e384a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 342.336287] RAX: ffffffffffffffda RBX: 0000000020000028 RCX: 0000000000459897 [ 342.336294] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 342.336299] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 342.336305] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 342.336311] R13: 00000000004c8b25 R14: 00000000004dfbc8 R15: 0000000000000003 [ 342.373926] print_req_error: I/O error, dev loop4, sector 0 05:29:08 executing program 4: r0 = syz_open_dev$radio(&(0x7f0000000040)='/dev/radio#\x00', 0x2, 0x2) r1 = syz_open_dev$vcsa(&(0x7f0000000300)='/dev/vcsa#\x00', 0x80000001, 0x20000) getsockopt$inet6_IPV6_IPSEC_POLICY(r1, 0x29, 0x22, 0x0, &(0x7f0000000780)) ioctl$VIDIOC_QUERYCAP(r1, 0x80685600, &(0x7f0000000080)) ioctl$VIDIOC_S_FREQUENCY(r0, 0x402c5639, &(0x7f0000000180)={0x0, 0x1}) 05:29:08 executing program 5: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = openat$proc_capi20(0xffffffffffffff9c, &(0x7f00000000c0)='/]r/c/\x00\x01\x00\x00\x00\x00\x00\x00i20\x00', 0x391282, 0x0) r1 = getgid() syz_mount_image$hfs(&(0x7f0000000180)='hfs\x00', &(0x7f00000001c0)='./file0\x00', 0x1f, 0x5, &(0x7f0000000580)=[{&(0x7f0000000280)="9684d25fc9b5ebcd081005731c989c41ffa333a75f1f10232373e2a82ca19d269ec21336302e90c231e9839c07cfe5842aa4fd6b95f95bd2564f982b7e7f333ffaeeec54f0d4b2f58bf28a32ab8565c4e40693d33276a6b821f83171713f40e8e620c30a6c6e8e2aff30d03cff8e0422b3787127fe87048eecb2c5cc2ca241475db7d05d0addf6359cff86d456b04bb727e8596377e3f4a5de", 0x99, 0xffff}, {&(0x7f0000000340)="078e41e302b605637a3df3eccbb69c8c", 0x10}, {&(0x7f0000000380)="d44281fe82fe3430e2a362715840448807b1d3f71af6cfb89c4033cc7bb26ab7f71ce16feb8d96b6169318763dd6780b3a053f83b3e3f3a8545f7e42b9dc66320735bd800135da044db28da9b1f790ae30116e1aeb98bbff5c6b94b46da30c910fcf4c3fb306335e", 0x68, 0x6000000000000}, {&(0x7f0000000400)="1a7cdc79f882226dbd4f68b448428072a911cde538c0a396b6a603d909d78fc4a02493d743ffd95c297be7b24b1cb2b01ecf99d59e8779b6260a32208489338c17cc6db16b16785b9441d90e6f6affa176bf9b23fc9b9e57d1c96511d4bc6d4c8b8a7c5426c517907dd1e491f3d16ee7aaeb545160fe3eaf10ca942172ef4704309bd57a69dd9ef53a65f8e48b6de771419feeed7dd802e0a41e69aca64498b7cf8681e5924df1f3cf5ea4a7ba557965700e3596fb6631b5320b9532d0eddad8e4adec3944356f54966b563c5e8b3e17c04241e079ed61af71d57fd7c77c3ed5839955c6e504d48d5c4b39ef08", 0xed, 0x402}, {&(0x7f0000000500)="f4dda6249a273b23cbe5b8528c369f6d9fffb8c391d83694adb27837439888da25733cf47a715d630843309b4ab8b017d80b0a4d47e07c0d49eb46837870da84acbbf231d380", 0x46, 0x3229}], 0x2113884, &(0x7f0000000780)=ANY=[@ANYBLOB="747970653d97877ec32c6769643d04c150d93c9adc5655ff39c7bf814e234f8a18a9ee89d8af0788df0b7b7eb4024676e3d84e59f264eeb955b42e0c0800000033b99adf122f508156821b53fa15e777f0cda37933914326adcc53b09af6d08627a922d605df3240ac55a3e022ecb501b876f6990ae47199ed352c1a3740dc39a3b6f5d1e0a46598c5c432d025bdfeca66b5903d000000000000311b347036f040705fd4e01162fc0464ef6e68752f7f50a61b7b3f951700", @ANYRESHEX=r1, @ANYBLOB=',file_umask=00000000000000000000003,iocharset=cp737,umask=00000000000000000000010,umask=00000000000000000000003,codepage=cp857,dont_appraise,subj_role=cpusetcpusetselinux,\x00']) r2 = syz_open_dev$vcsa(&(0x7f0000000300)='/dev/vcsa#\x00', 0x80000001, 0x20000) openat$selinux_checkreqprot(0xffffffffffffff9c, &(0x7f0000000680)='/selinux/checkreqprot\x00', 0x800, 0x0) getsockopt$inet6_IPV6_IPSEC_POLICY(r2, 0x29, 0x22, 0x0, &(0x7f0000000780)) getsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r2, 0x84, 0x72, &(0x7f0000000600)={0x0, 0x7fffffff}, &(0x7f0000000640)=0xc) getsockname$inet6(r0, &(0x7f0000000100)={0xa, 0x0, 0x0, @initdev}, &(0x7f0000000140)=0x1c) 05:29:08 executing program 0: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48}], 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) 05:29:08 executing program 3: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x1f, 0x0, &(0x7f00000001c0), 0x800, 0x0) r0 = openat$selinux_checkreqprot(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/checkreqprot\x00', 0x80000, 0x0) ioctl$EVIOCRMFF(r0, 0x40044581, &(0x7f00000000c0)=0x1) quotactl(0x1ff, &(0x7f0000000100)='./file0\x00', 0xee01, &(0x7f0000000140)="9b94ddd1e6a5b7176fb397754ab959f567d5229e18334d243f9b6f90f2d2b846ad6a12f6a3a4ed6f264234caa91f6104e968d9e30e7d52efa8756121b25072424fa51221ebc03d7835916bc64e62ad1161fe4e0cf89c81d3cf030f0d87511d05835cf5ce6bc82f7367a7a5066b5eb51a2e9d4471b669dc8eb627d474394b18cfe0913c1e6c35af7e1ed225cb47cc071cde0658ca59bfaa60450cb355b7120d528e942056fe98edde9201fec6fc422d7ffd11f5985011f6e7fa41e7fed8ef114032b943be32921ed24b1a050999cc85fda1582ee21fbf2c18d9f6bd948be2acafa6ac13ae8ba151307c876796ee4d74ba36f7c62a412974defdfbc65ba4c1d4c7ab0e0c04758a89f48a441df3540a3090fb66eb1774367385f61ebdbc19b165c9eece708ca442e1e6034a7f211f45bf890bcc6f32e26996dc1904f229fa515638abe17ddbaea5d144365310e7ef4c0e27cdf10fea08992c4796e9cdf2dfa37a344c7d4500b38a323db6aafa94153e9cccd35236111dd28d8cee827b9568cb4a558ce9b7793e7034744a63c1429bbfa6b1762594b3c752a34430a99a1a9cf0428d09393184909a1227ba19f3c858365a39a942dd7046aa1d2ec40798a2f71a9dfc64bd60fa781e04b830e32fcfe1821a74490e7341c159c2d1795c8d3770611645d8153a6b25fdcefc15c6724e25112386df0be22cc660b9af43081f3319e2861cad6fec04dfe34b23e1938e5781729769235343905477392807fa223a34a34baaff9ca461e00638856176cee73444ce85cfe3da3bfc78ec6cd054d96cbceb63c83d01d401bcdc15b81bf2ec4d161c7a8dbe0c8f6fe7a1a09cae422ac4237bc9aabcabc3f690c0b09bfb2e5e18ab3998e1096f1b5e3401ae72d9253aec66cd854937e649dab50b41b3cf234c24b5c9d033bd66cdc5f7915fdceaac8573930d02f65788467f7405cbd8d59c70e87c4a02a48b57462a20116de22bc9267b1a753bde969e104938751d84d5690d0301ac35cc9aa82e176354adbadf0458681bfa51fa05862ddf7770d8e1a39e27d404787ef44c30df932acf5d1409c81b29613263b11bff62e0c5b33f4bb142cf1b754661842ea3083c15d6cb4564c991674692b2c92367127622734985430c03bc07b9a1ed032d7ec3210c1e127c1f0b5acae0f47431e29166dd4ea869f337eac7ba30a699bf032b152b31ba13b3e24e900eebe3269cca1004f971952ae1cc357fce540cc511a8c2372c0346a7bab9ea78c9110286b07afbbfa116e7b1bd58465a3125579015a6182b434ce85ab8c24d47760b017b153b417b6bc8d69630fa9374c0a235d0e867734f18a04d61c2a38e4f8cf67e4f21d158fab4524f238c255e3cb9b6420f30cdb02e1bc5020c0751ff75cf4c01c1b651216d8798c8f71ea047f327c1acc81f9a3af4321bb4088a3db8c3c54705872e7db4702e3df7182efd91745fbb6c0df4f970a88ae2e2035349e4c6361342c5428e9d805b198efb28939872e96107fcd796a9d3cfe545c2e1d143741d1dff79033d98a3c0f00933d8ee6d306cee67d480140f57c797feec71126b04a9404c5409ab070bf976549ca64239d002a5550779df5b657c33999d2403066a221afe0b62b509a23e6589a71e89a11ebc9796d1698ab6f8378d82b80696c5024594ee9491eaa7d4085905044da40f6464f199bf88a5aa291d0b6485d85abeb7ef8a4cf17bab5d030fc93c488f20bc3a8924d887be3c2f8dfb62c42848c711c4093e0079f57aa7663a5c79d12f5475b43f9f80be27841718ffe774b2a4a314db012ab703506519aefafef48aa5fb26350dc8eb91df75a8d5829c1f22e15578ace99b9903ab0542a81ea867b76c614de6726be0dc6e70a501d408d36d0081fcb36d3b5b0c8205762144a7c6e86109a548ed9c124baae3d1c3731e0513fcf417ce63cfa082d4e2f5d40b06e2af2f412ee14a0bc57bf711e81de1c4bcb96638a98063b56f786f8c557dd9c6b9dda928bf0e24c3080139e0782baf5c7706c729e46cffb10cc8b4fbf19347e0f775eff15d7f33ec2ead98bd00d205c26cb9e69c351e4f4817358a99a9a49ab23546510eda8c0cfb505d993de38a075670f6027a98854b8baa8902bafcd0a3e31482808f2143ea60ce161f0da5eab222b731947c9becc0401b95f9690082e1d57da4ad3717d47e36faa06ac4b5324e475fb62e344bb22c8c170c62386f5c28d1bfac48409132632caacad05c345d6d20b46e096cd71c32742c962e8fde2d999c00f20e4875247519037aa6bcf9a93df9b051261acd6b8ff22341c95f5300016b3633118e687789cfdc947b448b80b7ed0a36f9140864f58dd10709959143366fc0e54dffab93e16ab1460f186024621e889baeed9ddd2b243d0b3fd284391bb99050f4345a505a67858cdcc353b82b46cd69885bf507c0804037599fc8f9495a5f12fc206c38c4a44f9114e5fe26d8344f5a495879fca70a07b213a3df21f091fe8f80a398551de25d1414b8b3345e259b1b18459267d8d9f56000c7e2ae44b82704d5a4e000dd5900a33aa4921d8e465b56ff6cef075eca27754bc8c7c5fb8a90efd7ea6ed4d70513d54891c66abfedf9087359059a7063a59f4477c26ebae6f2e3c37e2016bbb233541a45a8dd150e4fa4952223764e2d1c53e0c06af3a73184554c4d4fdb337a8403b67134d59c218d1888893a521223d28899bdecaa281ea5779746fa7bcfd56a3f77af97654b0addc06649b218ce3c77334c853aa5cb2907eaa454358a793e6fe7ee1196f75720cc8c440c03bd20fae9596fd2985ebf0df6fcaab63c3f1385fb384841bdaabe0513c54ba6a0cfed331dbf1d6963d8ec9111f98209669dbfaf0c41928cce8e7e6897c5b8640f980729aa1110054cfa14559b8b0c76c5c65307868d1e009ae870b0710da00ac32f48f58f8b3ce4482dcfc48cac65d9f8fb03af28c1b22e52cf1b6c8192696f6fba5f828e169045616a4ed46f7998949deffb3f79c5adea627591711887605f6be057d6482dbd1ac88ab392b3fddcadf6a1ad48cd861896f2b83b06e8b28997007c674b86e63c25ce5ca75bcdd65819bc9d7ebceda3e5ce1b59cbdc8daee36e632deffc6c99cf56dd31024cfdeb08db6d2831d1b71ef0452e779e7c7a2e0472bfc57d9d7f3946421197628e54dd1bad838d8dfd8e659efb524f4bc944ef11b21a32cde58c05cdda84f31a7eea60c4f639823a9e7a2cd87d8ec6f7752dc0e720e792c1fcbb4c1316c5ea470eb88cfa13b46aff8cb587d463be7741e2be23e6017e8546933edf2de6fae342d0c36e2d0d4287d49886a3713b0a21611f1ed504ded6a0060b613c649250426019fb013602c58c9dbc97a2ce4379c090e9ef87bf2bfb76c8f1a07a8c8f98a62db876ed2b415f493a577983d1503756d00ee9b269ccb5556cd5bd194ee05bee43cbf6bf9cf86cd7817b21cf7703908e49a064412f5db42c01235c321aa73cd640bdc0502d03841edf225086de7833f23f52f0920d2c51bb564d2598de5b39d6a922d1c77b534df33f01a135ab7b18adb9f0a7dd6756ff96b0608528238aa57a6df041dc360b2eea07382404b46540d0fef73e50a9770e07bfb1d2c6b112225aeffe5fd1141caa61d031e4a95daa0e1d0b149bfd98fdd0d464e9e625596dc27d8537df69da2341910a41cb8721ea91b8e955960e14cedc30baf157a30dd513f7b37319a1df6a7c954f134cf4c83321ceaaf8deb465459accb648cea7a81b3e8e152b75fbfd84f14f7d4f7ebe7a267709569fc617f8ee71a73ec9e3b6671a7d071a5cba4e8c62c8b80495967047a1af765bc45d5f2f0cb3cc591091b115d96dde63b81afdd5cd4db06c7ae8091d7d1cce48584521af98e4dcf5274f0ea1a702e685f250cd4004ceff0424d43d2ed11474dd91d55a5e7cd0b43fc6e7de5b7ad8bf0986c6fff623f47e529e036bf63ee47157fb9e244a99381de773d1f45a9196431cfbe3472c17a03fd977cfc30ce08ac1d66a2c6343d4e127ff506a2bec6f4271ab5ff2b6aa1c8a5ed1f34e8420acbc0d47c926f01cf4550e7696469962a6deab36d4b65a044d5116ce341e2f219b9b0a6ce03400c1c6fc3e920a5f600b8d1d69dc6384d9c719af9a596ccfa20b66927f70d44f5cfc7b0a37e2bc2faca5750abad91a0df4243b764540c46c54f1723bdf273932be2d6202cec466d2fb0397e4108f56c59361f5995089f1b260f58e9afdc85240da28d14316a10df47599b5234a86be4671620ee11e336faa215ed9fdd3f46ea5b999f55a3bd4c23d231d89bf5740d3517153cb53513060965fe1eb0821606ec8f65dab50f5a1afd11e123315252f184bcb28cfb8184037fab06d8d84d5960d8ef0747dd3f68dfe0fad1e45b733e4a831a8b791c82129a08615a6051cfb62523c590ca9b23abe571c720fc6272afe88a55cfb4adf5d479b9afbffa276dda275255fd2135510c8a1fbd04244f68a09cbb1481d6b27cd6f76b4bd0a19aa297d78601cd698ee14834091290fcde418b64f3e297f3d0d1479ae435196362df40f6f2822c2016b303797687a290569ef5240da1129a9f852e1105a9a2f25668e086e0b2bd9fcc14f9857985b7b331cb0293d4d3e5f1920c0661fcb6f9b11bf7aea4cd63f5fd3b620e71725123bdbe0182fafbd311b61ae5ed16a3385c4cd001a1c9d33807d0697ad62c112ab394fca6bda7b6b9dc4aa5bbd708ab9ee9b2f015d7e7439fb640cabad408f469c576f7409c8e6dacef5437cd71a623c3e7f32ba94c4b9029024874607e7117fe1907ec526822852337d002805d9c2c213b1f3377e259dacf0f63467c6d11890f48d95e693d886bd517772532e87976407b1cc06ccf5362ef51dff93271ddaa1a12c4c8b5688702e0a3860f6bf07d2c4b2d6ccda2be2dd405a1ed54c83aac048a6f775e264c8c6ca2d6f13183a6555c78915c510d5cf86419bd826e78a5c417165274d8e42f18c47d24489961bbb68faa3c10eb38d8478994ab96951037c95cb71e5a6cb9994f840fb7ad619f6e4546c178577ba0852626eea941e3073c4a366361da8de9071e23194751757209e15220839d34c93be1b56936f07c1fdca65ff52a3bf7a881cc4e59c0a462bdf1deab0a475554269776d9f74c44f7f519a588559c73f8afa67152b565b78d976687e7060cd98a025944a1fafdfcef6c9b4aae0d546c61966977169d5c0ae4da8fecbc8fd82116b7ca1677632cf4a69e12c9645834d68ffea7426dfe687e521bdc7a3f048a64948eda9c5c93bb4eb9bb5172444d479fdf6d9b4883a3ca4fd33931f45bb47486e5285daed259d40c424e0db602509ce0c5019a181cf5f0700f3570111fe7c7ed2760cba52a91e6b329e1a5b4d920a71a6266addc2a21988c77ecab1c0e662a7139adb08bd1a03fde506508e4dce961cee660d492c7397948c7012831f3d965b8337e6fe7c0d0b913766f07737709d3c568476d10c59b5ad90c8271d96d49b63623964d5f203456fc06613f743fdec80566e7218359fbbd673ae50bccddd4a27c85aa6989a96a85cf2263b387b29aab098047ba1ffe8e35a3a8c66546d987c04482397dbd06ccde26c5c8d374467206df71b34627c366c754c22844368d5c4b507fcc4a377b6036dcded08ce478480c76b6fca16fcf9473cdcf07578da37f5c8b07c1c76617830700cc404acaf3a49dd2e012b0b983f9d1094f3ab784067d6d6d4d8454fcf77ed5e9a271031a3b22ac90a29ff7ce95ce27f62f2a5ec20ff69d64bd108471d1dc0efd54a298afa66de") 05:29:08 executing program 2: syz_mount_image$btrfs(&(0x7f0000000100)='btrfs\x00', &(0x7f00000000c0)='./file0\x00', 0x7, 0x348, &(0x7f0000000000), 0x30010f2, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff}) getsockname$unix(r0, &(0x7f0000000140), &(0x7f00000001c0)=0xfffffffffffffc88) openat$selinux_mls(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/mls\x00', 0x0, 0x0) syz_open_dev$media(&(0x7f0000000040)='/dev/media#\x00', 0xffff, 0x103100) r1 = syz_open_dev$vcsa(&(0x7f0000000300)='/dev/vcsa#\x00', 0x80000001, 0x20000) getsockopt$inet6_IPV6_IPSEC_POLICY(r1, 0x29, 0x22, 0x0, &(0x7f0000000780)) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0xfffffffffffffffe) 05:29:08 executing program 1 (fault-call:0 fault-nth:27): syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000140)='./file0\x00', 0xff, 0x1, &(0x7f0000000000)=[{&(0x7f0000000180)="8da4363ac0ed0000000000000001004d0100000000000000000000000009000000000000009748aeb81e1b00920efd9a0000010000000000098cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 342.722717] FAULT_INJECTION: forcing a failure. [ 342.722717] name failslab, interval 1, probability 0, space 0, times 0 05:29:08 executing program 4: r0 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x1, 0x2) setsockopt$packet_fanout_data(0xffffffffffffffff, 0x107, 0x16, &(0x7f0000000100)={0xa, &(0x7f0000000080)=[{0x40, 0x5, 0x0, 0x38}, {0xb34b, 0x2, 0x2, 0x4b2}, {0x200, 0x3f, 0x0, 0x1}, {0x9a53, 0x3}, {0xf4d, 0x1f, 0x1, 0x9}, {0x5, 0xe0, 0x6a, 0x1}, {0x5, 0x4, 0x1f, 0x6}, {0x6, 0x8c, 0x0, 0x20}, {0x1, 0x40, 0x1, 0x4}, {0x2aeb, 0x7, 0x7, 0x1f}]}, 0x10) openat$dsp(0xffffffffffffff9c, &(0x7f0000000140)='/dev/dsp\x00', 0x4000, 0x0) ioctl$VIDIOC_S_FREQUENCY(r0, 0x402c5639, &(0x7f0000000180)={0x0, 0x1}) setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000040)=0x1, 0x4) [ 342.764533] CPU: 1 PID: 23363 Comm: syz-executor.1 Not tainted 4.14.146 #0 [ 342.771671] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 342.771676] Call Trace: [ 342.771695] dump_stack+0x138/0x197 [ 342.771714] should_fail.cold+0x10f/0x159 [ 342.771733] should_failslab+0xdb/0x130 [ 342.771747] kmem_cache_alloc_node_trace+0x280/0x770 [ 342.771760] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 342.771774] __kmalloc_node_track_caller+0x3d/0x80 05:29:08 executing program 4: r0 = syz_open_dev$radio(&(0x7f0000000000)='/\x00\x00\x00\x80\x00', 0x3, 0x2) r1 = syz_open_dev$sndpcmp(&(0x7f0000000100)='/dev/snd/pcmC#D#p\x00', 0x1, 0xa0000) r2 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f0000000200)={0x0, 0x18, 0xfa00, {0x3, &(0x7f00000001c0)={0xffffffffffffffff}, 0x1, 0x928fbd0049e2916c}}, 0x20) write$RDMA_USER_CM_CMD_JOIN_IP_MCAST(r1, &(0x7f0000000180)={0x10, 0x30, 0xfa00, {&(0x7f0000000140), 0x3, {0xa, 0x4e22, 0x7, @initdev={0xfe, 0x88, [], 0x0, 0x0}, 0xfffffff7}, r3}}, 0x38) write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, &(0x7f0000000040)={0x3, 0x40, 0xfa00, {{0xa, 0x4e23, 0x5e, @loopback, 0x4bd}, {0xa, 0x4e20, 0x0, @dev={0xfe, 0x80, [], 0x23}, 0x4}, r3, 0x9}}, 0x48) ioctl$VIDIOC_S_FREQUENCY(r0, 0x402c5639, &(0x7f0000000180)={0x0, 0x1}) [ 342.771787] __kmalloc_reserve.isra.0+0x40/0xe0 [ 342.771799] __alloc_skb+0xcf/0x500 [ 342.819909] ? skb_scrub_packet+0x4b0/0x4b0 [ 342.824241] ? netlink_has_listeners+0x20a/0x330 [ 342.829053] kobject_uevent_env+0x781/0xc23 [ 342.833502] kobject_uevent+0x20/0x26 [ 342.837469] lo_ioctl+0x11e7/0x1ce0 [ 342.841220] ? loop_probe+0x160/0x160 [ 342.845111] blkdev_ioctl+0x96b/0x1860 [ 342.849038] ? blkpg_ioctl+0x980/0x980 [ 342.852918] ? __might_sleep+0x93/0xb0 [ 342.856791] ? __fget+0x210/0x370 [ 342.860234] block_ioctl+0xde/0x120 [ 342.866236] ? blkdev_fallocate+0x3b0/0x3b0 [ 342.870548] do_vfs_ioctl+0x7ae/0x1060 [ 342.874451] ? selinux_file_mprotect+0x5d0/0x5d0 [ 342.879206] ? lock_downgrade+0x6e0/0x6e0 [ 342.883383] ? ioctl_preallocate+0x1c0/0x1c0 [ 342.887791] ? __fget+0x237/0x370 [ 342.891251] ? security_file_ioctl+0x89/0xb0 [ 342.895647] SyS_ioctl+0x8f/0xc0 [ 342.898996] ? do_vfs_ioctl+0x1060/0x1060 [ 342.903140] do_syscall_64+0x1e8/0x640 [ 342.907105] ? trace_hardirqs_off_thunk+0x1a/0x1c 05:29:08 executing program 0: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48}], 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) [ 342.911947] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 342.917128] RIP: 0033:0x459897 [ 342.920316] RSP: 002b:00007f617e384a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 342.928010] RAX: ffffffffffffffda RBX: 0000000020000028 RCX: 0000000000459897 [ 342.935279] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 342.942545] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 342.949800] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 342.957058] R13: 00000000004c8b25 R14: 00000000004dfbc8 R15: 0000000000000003 05:29:08 executing program 4: r0 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x1, 0x2) ioctl$VIDIOC_S_FREQUENCY(r0, 0x402c5639, &(0x7f0000000180)={0x0, 0x5, 0x8000}) 05:29:08 executing program 3: r0 = syz_open_dev$vcsa(&(0x7f0000000300)='/dev/vcsa#\x00', 0x80000001, 0x20000) getsockopt$inet6_IPV6_IPSEC_POLICY(r0, 0x29, 0x22, 0x0, &(0x7f0000000780)) setsockopt$inet_sctp_SCTP_AUTO_ASCONF(r0, 0x84, 0x1e, &(0x7f00000000c0)=0x5, 0x4) syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r1 = socket$alg(0x26, 0x5, 0x0) bind$alg(r1, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'ghash-generic\x00'}, 0x58) syz_open_dev$audion(&(0x7f0000000180)='/dev/audio#\x00', 0xff, 0x0) setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, 0x0, 0x0) r2 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000100)='/dev/cachefiles\x00', 0x4200, 0x0) ioctl$EXT4_IOC_MOVE_EXT(r1, 0xc028660f, &(0x7f0000000140)={0x0, r2, 0x8, 0xba, 0x2455, 0x56abb396}) r3 = openat$selinux_checkreqprot(0xffffffffffffff9c, &(0x7f00000005c0)='/selinux/checkreqprot\x00', 0xc00400, 0x0) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r3, 0x29, 0xd2, &(0x7f0000000600)={{0xa, 0x4e24, 0x8217, @dev={0xfe, 0x80, [], 0x1b}, 0xffffffff}, {0xa, 0x4e20, 0x81, @dev={0xfe, 0x80, [], 0x11}, 0x7}, 0x5, [0x8a, 0x9, 0x1, 0x34a15d6c, 0x6, 0x7a5, 0x3, 0x6]}, 0x5c) 05:29:08 executing program 2: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = openat$mixer(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/mixer\x00', 0x580300, 0x0) r2 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x4, 0x4182) r3 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) pwritev(r3, &(0x7f0000000340)=[{&(0x7f0000000140)='!', 0x1}], 0x1, 0x81805) r4 = dup2(r3, r3) ioctl$SG_GET_RESERVED_SIZE(r3, 0x2272, 0x0) ioctl$LOOP_CHANGE_FD(r2, 0x4c00, r3) write$P9_RLERRORu(r4, &(0x7f00000003c0)=ANY=[@ANYBLOB="1400000007650d6c24ed92c8397291335cf616f0010200070062726f0c62077600b365a0a59e7eea"], 0x28) getsockopt$sock_cred(r4, 0x1, 0x11, 0x0, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(r4, 0x29, 0x23, &(0x7f00000007c0)={{{@in=@remote, @in6=@initdev}}, {{@in=@empty}, 0x0, @in6=@ipv4}}, &(0x7f00000008c0)=0xe8) sendfile(r4, r2, 0x0, 0x2400003e) getsockopt$inet_sctp_SCTP_SOCKOPT_PEELOFF(r4, 0x84, 0x66, &(0x7f0000000100)={0x0, 0xffffff25}, &(0x7f0000000140)=0x8) getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER(r1, 0x84, 0x7b, &(0x7f0000000180)={r5}, &(0x7f00000001c0)=0x8) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) 05:29:08 executing program 4: ioctl$VIDIOC_S_FREQUENCY(0xffffffffffffffff, 0x402c5639, &(0x7f0000000180)={0x0, 0x1}) r0 = syz_open_dev$vcsa(&(0x7f0000000300)='/dev/vcsa#\x00', 0x80000001, 0x20000) getsockopt$inet6_IPV6_IPSEC_POLICY(r0, 0x29, 0x22, 0x0, &(0x7f0000000780)) ioctl$EVIOCRMFF(r0, 0x40044581, &(0x7f0000000000)=0x7fff) 05:29:08 executing program 5: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x4, 0x0, &(0x7f0000000000)=[{&(0x7f00000000c0)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) bpf$OBJ_GET_MAP(0x7, &(0x7f0000000180)={&(0x7f0000000140)='./file0\x00', 0x0, 0x20}, 0x10) 05:29:08 executing program 1 (fault-call:0 fault-nth:28): syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000140)='./file0\x00', 0xff, 0x1, &(0x7f0000000000)=[{&(0x7f0000000180)="8da4363ac0ed0000000000000001004d0100000000000000000000000009000000000000009748aeb81e1b00920efd9a0000010000000000098cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 05:29:09 executing program 0: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) 05:29:09 executing program 4: r0 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x1, 0x2) ioctl$VIDIOC_S_FREQUENCY(r0, 0x402c5639, &(0x7f0000000180)={0x2001}) openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhost-vsock\x00', 0x2, 0x0) [ 343.317899] FAULT_INJECTION: forcing a failure. [ 343.317899] name failslab, interval 1, probability 0, space 0, times 0 [ 343.337088] CPU: 1 PID: 23433 Comm: syz-executor.1 Not tainted 4.14.146 #0 [ 343.344250] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 343.353593] Call Trace: [ 343.356175] dump_stack+0x138/0x197 [ 343.359801] should_fail.cold+0x10f/0x159 [ 343.363948] should_failslab+0xdb/0x130 [ 343.367909] kmem_cache_alloc_node+0x287/0x780 [ 343.372495] __alloc_skb+0x9c/0x500 [ 343.376121] ? skb_scrub_packet+0x4b0/0x4b0 [ 343.380434] ? netlink_has_listeners+0x20a/0x330 [ 343.385176] kobject_uevent_env+0x781/0xc23 [ 343.389500] kobject_uevent+0x20/0x26 [ 343.393284] lo_ioctl+0x11e7/0x1ce0 [ 343.396903] ? loop_probe+0x160/0x160 [ 343.400694] blkdev_ioctl+0x96b/0x1860 [ 343.404572] ? blkpg_ioctl+0x980/0x980 [ 343.408455] ? __might_sleep+0x93/0xb0 [ 343.412333] ? __fget+0x210/0x370 [ 343.415772] block_ioctl+0xde/0x120 [ 343.419380] ? blkdev_fallocate+0x3b0/0x3b0 [ 343.423692] do_vfs_ioctl+0x7ae/0x1060 [ 343.427565] ? selinux_file_mprotect+0x5d0/0x5d0 [ 343.432305] ? lock_downgrade+0x6e0/0x6e0 [ 343.436437] ? ioctl_preallocate+0x1c0/0x1c0 [ 343.440831] ? __fget+0x237/0x370 [ 343.444271] ? security_file_ioctl+0x89/0xb0 [ 343.449117] SyS_ioctl+0x8f/0xc0 [ 343.452531] ? do_vfs_ioctl+0x1060/0x1060 [ 343.456677] do_syscall_64+0x1e8/0x640 [ 343.460552] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 343.465394] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 343.470580] RIP: 0033:0x459897 [ 343.473930] RSP: 002b:00007f617e384a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 343.481637] RAX: ffffffffffffffda RBX: 0000000020000028 RCX: 0000000000459897 [ 343.488897] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 343.496160] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 343.503418] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 343.510681] R13: 00000000004c8b25 R14: 00000000004dfbc8 R15: 0000000000000003 05:29:09 executing program 3: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266135f4d", 0x48, 0x10000}], 0x0, 0x0) prctl$PR_MCE_KILL_GET(0x22) 05:29:09 executing program 2: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = syz_open_dev$vcsa(&(0x7f0000000300)='/dev/vcsa#\x00', 0x80000001, 0x20000) getsockopt$inet6_IPV6_IPSEC_POLICY(r1, 0x29, 0x22, 0x0, &(0x7f0000000780)) setsockopt$IP_VS_SO_SET_ZERO(r1, 0x0, 0x48f, &(0x7f00000000c0)={0x2f, @broadcast, 0x4e21, 0x1, 'sh\x00', 0x0, 0x3, 0x66}, 0x2c) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) 05:29:09 executing program 5: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x53, 0xb5, &(0x7f0000000000), 0x400, 0x0) r0 = syz_open_dev$vcsa(&(0x7f0000000300)='/dev/vcsa#\x00', 0x80000001, 0x20000) getsockopt$inet6_IPV6_IPSEC_POLICY(r0, 0x29, 0x22, 0x0, &(0x7f0000000780)) bind$inet(r0, &(0x7f00000002c0)={0x2, 0x4e21, @local}, 0x10) r1 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/vs/nat_icmp_send\x00', 0x2, 0x0) r2 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x4, 0x4182) r3 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) pwritev(r3, &(0x7f0000000340)=[{&(0x7f0000000140)='!', 0x1}], 0x1, 0x81805) r4 = dup2(r3, r3) ioctl$SG_GET_RESERVED_SIZE(r3, 0x2272, 0x0) ioctl$LOOP_CHANGE_FD(r2, 0x4c00, r3) write$P9_RLERRORu(r4, &(0x7f00000003c0)=ANY=[@ANYBLOB="1400000007650d6c24ed92c8397291335cf616f0010200070062726f0c62077600b365a0a59e7eea"], 0x28) getsockopt$sock_cred(r4, 0x1, 0x11, 0x0, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(r4, 0x29, 0x23, &(0x7f00000007c0)={{{@in=@remote, @in6=@initdev}}, {{@in=@empty}, 0x0, @in6=@ipv4}}, &(0x7f00000008c0)=0xe8) sendfile(r4, r2, 0x0, 0x2400003e) getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r4, 0x84, 0x9, &(0x7f00000000c0)={0x0, @in={{0x2, 0x4e21, @remote}}, 0x5, 0xfffe, 0x9, 0x68a, 0x20}, &(0x7f0000000180)=0x98) getsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r1, 0x84, 0x1f, &(0x7f00000001c0)={r5, @in={{0x2, 0x4e20, @loopback}}, 0x0, 0x4}, &(0x7f0000000280)=0x90) r6 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x4, 0x4182) r7 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) pwritev(r7, &(0x7f0000000340)=[{&(0x7f0000000140)='!', 0x1}], 0x1, 0x81805) r8 = dup2(r7, r7) r9 = syz_open_dev$vbi(&(0x7f0000000380)='/dev/vbi#\x00', 0x3, 0x2) ioctl$VIDIOC_SUBDEV_S_EDID(r9, 0xc0285629, &(0x7f0000000500)={0x0, 0x7, 0x8, [], &(0x7f00000004c0)=0x2}) ioctl$SG_GET_RESERVED_SIZE(r7, 0x2272, 0x0) ioctl$LOOP_CHANGE_FD(r6, 0x4c00, r7) write$P9_RLERRORu(r8, &(0x7f00000003c0)=ANY=[@ANYBLOB="1400000007650d6c24ed92c8397291335cf616f0010200070062726f0c62077600b365a0a59e7eea"], 0x28) getsockopt$sock_cred(r8, 0x1, 0x11, 0x0, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(r8, 0x29, 0x23, &(0x7f00000007c0)={{{@in=@remote, @in6=@initdev}}, {{@in=@empty}, 0x0, @in6=@ipv4}}, &(0x7f00000008c0)=0xe8) sendfile(r8, r6, 0x0, 0x2400003e) ioctl$LOOP_GET_STATUS(r8, 0x4c03, &(0x7f0000000400)) 05:29:09 executing program 4: r0 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x1, 0x2) ioctl$VIDIOC_S_FREQUENCY(r0, 0x402c5639, &(0x7f0000000180)={0x0, 0x1}) ioctl$VIDIOC_S_OUTPUT(r0, 0xc004562f, &(0x7f0000000040)=0xf8) 05:29:09 executing program 1 (fault-call:0 fault-nth:29): syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000140)='./file0\x00', 0xff, 0x1, &(0x7f0000000000)=[{&(0x7f0000000180)="8da4363ac0ed0000000000000001004d0100000000000000000000000009000000000000009748aeb81e1b00920efd9a0000010000000000098cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 05:29:09 executing program 0: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) 05:29:09 executing program 4: r0 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x1, 0x2) writev(r0, &(0x7f0000001400)=[{&(0x7f00000001c0)="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", 0x1000}, {&(0x7f0000001540)="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", 0x109}, {&(0x7f00000011c0)="e53f619c7408e07ccaa779a57e406ec16fc3b6b36e6cdbbdc2c8d5f0326f272b1c6580cb127dfb1a382501c1b91ecae2712e145771ba9ef7ea495e39d5bf7cd9c93241afe83763986bfc98f9adfd8fc8d6e2a4b8621a2d27b1bdf3adb6ae1697b78d05176150f82fe5231df494bb4931656b01d9656b438cbb07902ce63e8a9a8d1d7a4b112b9034205256d4a87da8e87ca8ef8f6dfe403d5590701a3440829d", 0xa0}, {&(0x7f0000001280)="fef3dc2521af36bd06d5d519089378c2ee9e152fe9e39b4bed74bab7cb14ac5dbbab17c8dfccf2f665c4ba61ea9ba939c41ceab853e7384532a69a19631b97e682e8c25bdd51d1d7270b43a84ecde7b3208dfa1bcb996b3173a348e835abb96ced", 0x61}, {&(0x7f0000001300)="f2586c2f335084c8d480bdf115024da8c9174991fc1079ad7bd4b7692716093b01e16ea15bfad79858cfd854e75fab87cf897ddeed2ea79d7c1cd3761986c6657b8ef0b003d4faf12c84d7aca8bc3f55466c23336c5ce16a9093742366c697ea5bb2e6fc98dcb9023522b2bd0b03e272759b082ffdeba63abd0d4a4f031c3dee36c19af921c7036b7b537c173bbb6a890ea1d5e9c0687fdd4b77090e082b88c126ff86fcfa92431100e31d08031a090b93b774fea2c8435f240429184517e84571a09e7f4fed194e254ec4bb7573f1294e6120d84ff4e1e8fd7de655238c8fb104aae97464b05acc73ceace63236db7e7913ff1e045a59", 0xf7}, {&(0x7f0000000140)="988489bb7df55d512de31e264fc2a5d40398614c0f5fed794b4f1de6e24a30fcff4076b29a340a", 0x27}], 0x6) ioctl$VIDIOC_S_FREQUENCY(r0, 0x402c5639, &(0x7f0000000180)={0x0, 0x1}) ioctl$KVM_GET_REGS(r0, 0x8090ae81, &(0x7f0000001480)) r1 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x4, 0x4182) r2 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) pwritev(r2, &(0x7f0000000340)=[{&(0x7f0000000140)='!', 0x1}], 0x1, 0x81805) r3 = dup2(r2, r2) ioctl$SG_GET_RESERVED_SIZE(r2, 0x2272, 0x0) ioctl$LOOP_CHANGE_FD(r1, 0x4c00, r2) ioctl$BLKIOMIN(r1, 0x1278, &(0x7f00000000c0)) write$P9_RLERRORu(r3, &(0x7f00000003c0)=ANY=[@ANYBLOB="1400000007650d6c24ed92c8397291335cf616040002000700622e6f0c62077600b365a0a59e7eea"], 0x28) getsockopt$sock_cred(r3, 0x1, 0x11, 0x0, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(r3, 0x29, 0x23, &(0x7f00000007c0)={{{@in=@remote, @in6=@initdev}}, {{@in=@empty}, 0x0, @in6=@ipv4}}, &(0x7f00000008c0)=0xe8) sendfile(r3, r1, 0x0, 0x2400003e) getsockopt$MISDN_TIME_STAMP(r3, 0x0, 0x1, &(0x7f0000000040), &(0x7f0000000080)=0x4) r4 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r5 = fcntl$dupfd(r4, 0x0, 0xffffffffffffffff) getsockopt$EBT_SO_GET_INIT_INFO(r5, 0x0, 0x82, &(0x7f0000000180)={'broute\x00'}, &(0x7f0000000240)=0x50) ioctl$TIOCSCTTY(r5, 0x540e, 0xffffffff) creat(&(0x7f0000001680)='./file0\x00', 0x124) getsockopt$sock_cred(r5, 0x1, 0x11, 0x0, &(0x7f0000000640)) faccessat(r5, &(0x7f0000000100)='./file0\x00', 0x2c, 0x1100) 05:29:09 executing program 3: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = openat$selinux_avc_cache_stats(0xffffffffffffff9c, &(0x7f00000001c0)='/selinux/avc/cache_stats\x00', 0x0, 0x0) ioctl$TUNSETQUEUE(r1, 0x400454d9, &(0x7f00000002c0)={'hsr0\x00'}) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000000)={0x0, 0x0, 0x0}, &(0x7f0000000040)=0xc) keyctl$get_persistent(0x7, r2, 0x0) r4 = syz_open_dev$vbi(0x0, 0x2, 0x2) r5 = getgid() write$FUSE_ENTRY(r4, &(0x7f0000000200)={0x90, 0x0, 0x0, {0x6, 0x3, 0xf24, 0x0, 0x5, 0x0, {0x0, 0x0, 0x9, 0x0, 0x5, 0x5, 0x9, 0x0, 0x0, 0x3, 0x0, 0x0, r5, 0x0, 0x1}}}, 0x90) r6 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x4, 0x4182) r7 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) pwritev(r7, &(0x7f0000000340)=[{&(0x7f0000000140)='!', 0x1}], 0x1, 0x81805) r8 = dup2(r7, r7) ioctl$SG_GET_RESERVED_SIZE(r7, 0x2272, 0x0) ioctl$LOOP_CHANGE_FD(r6, 0x4c00, r7) write$P9_RLERRORu(r8, &(0x7f00000003c0)=ANY=[@ANYBLOB="1400000007650d6c24ed92c8397291335cf616f0010200070062726f0c62077600b365a0a59e7eea"], 0x28) getsockopt$sock_cred(r8, 0x1, 0x11, 0x0, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(r8, 0x29, 0x23, &(0x7f00000007c0)={{{@in=@remote, @in6=@initdev}}, {{@in=@empty}, 0x0, @in6=@ipv4}}, &(0x7f00000008c0)=0xe8) sendfile(r8, r6, 0x0, 0x2400003e) r9 = syz_open_dev$vbi(0x0, 0x2, 0x2) r10 = getgid() write$FUSE_ENTRY(r9, &(0x7f0000000200)={0x90, 0x0, 0x0, {0x6, 0x3, 0xf24, 0x0, 0x5, 0x0, {0x0, 0x0, 0x9, 0x0, 0x5, 0x5, 0x9, 0x0, 0x0, 0x3, 0x0, 0x0, r10, 0x1, 0x1}}}, 0x90) mount$fuseblk(&(0x7f0000000300)='/dev/loop0\x00', &(0x7f0000000340)='./file0\x00', &(0x7f0000000380)='fuseblk\x00', 0x64020, &(0x7f00000003c0)={{'fd', 0x3d, r8}, 0x2c, {'rootmode', 0x3d, 0x2000}, 0x2c, {'user_id', 0x3d, 0xee01}, 0x2c, {'group_id', 0x3d, r10}, 0x2c, {[{@max_read={'max_read'}}, {@blksize={'blksize', 0x3d, 0xc00}}, {@allow_other='allow_other'}, {@max_read={'max_read', 0x3d, 0xfffffffffffffffb}}, {@default_permissions='default_permissions'}, {@max_read={'max_read', 0x3d, 0x7}}, {@allow_other='allow_other'}], [{@seclabel='seclabel'}, {@seclabel='seclabel'}]}}) syz_open_dev$mouse(&(0x7f0000000180)='/dev/input/mouse#\x00', 0x8, 0x60400) r11 = syz_open_dev$vbi(0x0, 0x2, 0x2) r12 = socket$alg(0x26, 0x5, 0x0) bind$alg(r12, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'ghash-generic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r12, 0x117, 0x1, 0x0, 0x0) fchown(r12, r2, r3) r13 = getgid() write$FUSE_ENTRY(r11, &(0x7f0000000200)={0x90, 0x0, 0x0, {0x6, 0x3, 0xf24, 0x0, 0x5, 0x0, {0x0, 0x0, 0x9, 0x0, 0x5, 0x5, 0x9, 0x0, 0x0, 0x3, 0x0, 0x0, r13, 0x1, 0x1}}}, 0x90) getgroups(0x4, &(0x7f0000000140)=[r5, r13, 0x0, 0xffffffffffffffff]) chown(&(0x7f0000000100)='./file0\x00', r2, r14) openat$selinux_avc_cache_stats(0xffffffffffffff9c, &(0x7f00000000c0)='/selinux/avc/cache_stats\x00', 0x0, 0x0) [ 343.808642] FAULT_INJECTION: forcing a failure. [ 343.808642] name failslab, interval 1, probability 0, space 0, times 0 [ 343.820469] CPU: 1 PID: 23483 Comm: syz-executor.1 Not tainted 4.14.146 #0 [ 343.827504] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 343.837019] Call Trace: [ 343.839623] dump_stack+0x138/0x197 [ 343.843253] should_fail.cold+0x10f/0x159 [ 343.847402] should_failslab+0xdb/0x130 [ 343.851374] kmem_cache_alloc_node_trace+0x280/0x770 [ 343.856465] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 343.861910] __kmalloc_node_track_caller+0x3d/0x80 [ 343.866914] __kmalloc_reserve.isra.0+0x40/0xe0 [ 343.871572] __alloc_skb+0xcf/0x500 [ 343.875259] ? skb_scrub_packet+0x4b0/0x4b0 [ 343.879591] ? netlink_has_listeners+0x20a/0x330 [ 343.884351] kobject_uevent_env+0x781/0xc23 [ 343.888674] kobject_uevent+0x20/0x26 [ 343.892460] lo_ioctl+0x11e7/0x1ce0 [ 343.896077] ? loop_probe+0x160/0x160 [ 343.899868] blkdev_ioctl+0x96b/0x1860 [ 343.903742] ? blkpg_ioctl+0x980/0x980 [ 343.907620] ? __might_sleep+0x93/0xb0 [ 343.911842] ? __fget+0x210/0x370 [ 343.915280] block_ioctl+0xde/0x120 [ 343.918914] ? blkdev_fallocate+0x3b0/0x3b0 [ 343.923270] do_vfs_ioctl+0x7ae/0x1060 [ 343.927157] ? selinux_file_mprotect+0x5d0/0x5d0 [ 343.931904] ? lock_downgrade+0x6e0/0x6e0 [ 343.936046] ? ioctl_preallocate+0x1c0/0x1c0 [ 343.940448] ? __fget+0x237/0x370 [ 343.943897] ? security_file_ioctl+0x89/0xb0 [ 343.948293] SyS_ioctl+0x8f/0xc0 [ 343.951646] ? do_vfs_ioctl+0x1060/0x1060 [ 343.955782] do_syscall_64+0x1e8/0x640 [ 343.959666] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 343.964495] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 343.969672] RIP: 0033:0x459897 [ 343.972845] RSP: 002b:00007f617e384a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 343.980540] RAX: ffffffffffffffda RBX: 0000000020000028 RCX: 0000000000459897 [ 343.987802] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 343.995067] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 344.002329] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 344.009763] R13: 00000000004c8b25 R14: 00000000004dfbc8 R15: 0000000000000003 05:29:09 executing program 1 (fault-call:0 fault-nth:30): syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000140)='./file0\x00', 0xff, 0x1, &(0x7f0000000000)=[{&(0x7f0000000180)="8da4363ac0ed0000000000000001004d0100000000000000000000000009000000000000009748aeb81e1b00920efd9a0000010000000000098cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 05:29:09 executing program 5: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = fcntl$dupfd(r0, 0x0, 0xffffffffffffffff) getsockopt$EBT_SO_GET_INIT_INFO(r1, 0x0, 0x82, &(0x7f0000000180)={'broute\x00'}, &(0x7f0000000240)=0x50) ioctl$TIOCSCTTY(r1, 0x540e, 0xffffffff) getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000140)={0xa, [0x101, 0xffff, 0x0, 0x2, 0x2, 0x5, 0x2, 0x3, 0x6, 0x2a]}, &(0x7f0000000280)=0x18) getsockopt$sock_cred(r1, 0x1, 0x11, 0x0, &(0x7f0000000640)) ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_TEMPO(r1, 0xc02c5341, &(0x7f00000000c0)) 05:29:10 executing program 3: syz_mount_image$btrfs(&(0x7f0000000040)='b\xed\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x8, &(0x7f0000000640)=[{&(0x7f0000000100)="fe2cde6d975a328a9f42c58eecf19353dca707586531366997df4e517a7753fb7a8070145583d13cb203", 0x2a, 0x2}, {&(0x7f0000000140)="c116c95db5e2c004a8a560f2b196dc04bde375a5e94ef64d9777c7a4fe2130849768b1d00954956b4965608b63ef9b63cb1e3de7bd0a864afe4c7f6e6d5e7501e723eb8d19fd3fdd04dc149cd802c33301a5abad19a80cd913875be461b7dfdfd0d3cb13fc3d413a5e5110d82930b85cf2a63344f798247076dd7cf6a820081477a81ea09cf0c28c7ed2420e1cf086d74ccb7ee5f46be4d09470d207b9ee6e261b7456cbee43b770480d891af0", 0xad, 0x80000000}, {&(0x7f0000000280)="c03c4d7fc877e24f29cbc3da7b706ffc253ee728351fe33e1a1391556ca66c0d621f8573e7cc972d411e348deb794ea03fffc8ec4cb06c8c0c9ef4d51b195a054b0411e9503aebafc94247afc46249b3bbc48ec488c84a26e044", 0x1c, 0x3ff}, {&(0x7f0000000300)="d5ec28eda03fef03081d1ba03150f43b05ee95f7b1c47e6e8124c99ab287fa111559a77510b3b14ea8e69a8fe2cab9a0135c6b4c74bf81cc88af1ee4fba7345b6150039c8310b5da023bfa7fc3c9ef64bb5712a0930bf3fa54423d0fbe72982023e00c9596dd214e244ed22657222e0ca3a90dfc5f9dea61ccde8e2e4db93d2002ddf184f016239df72c405fae4a98643c93e0ab15ecb4575eefe9a29dfc875dbde5f12b7590bf43f2f6c969b7db4c6db68fe0cad744a1f77771d7f9c38f8f6ae2e909ed87bfb67b271858ed1c86d401f4310f900d0448043ebc7e8646f73ae2882cdf610b4368", 0xe7, 0x4}, {&(0x7f0000000400)="6b0eafd6b50a370d0c68a450", 0xe, 0x8}, {&(0x7f0000000440)="3735ac0a8d93e91e17cfb662fa2b89d433a629179e6ccd71a0774e2ad192b9caf2df294a8d6c85c7e7560003496648628fd0fa718a342162fd696ccb94cd96f0041bab7821809795e56401a4004fdabc5301997887cd9850a72448761061672c5f5634d117a35bab254c92a52abcfe81ae44fc30faa9408b0b0cdcada2207a8c12176b7161850d4c59f88c6d", 0x8c, 0x8}, {&(0x7f0000000500)="472417c948a545e96b885d20bf20f5988af5bc882372eb27e4d75ad86d950f21e4d182657737ed628d28512ae9ad3801d3ebbc4a16180dc7bb4f0e61acf106fa745e0c81f90c0dc4d2ec1b45d4fcebfefe341fbd5b09aac13eb740476ba31d2669d5e59c11878ba3f90a59ead627b9053303d1e7e415c03cdd9dedc221ac1b74c71d1ee955c483dd1882809f70a0cad46b36d2fab9eaee188d2a997e057a5e6b35e98142a1e0415c4b075a50999d7b80c3b4d2e4e5c5471c279023911fb94e428cbc3bbd73a3b29b185ae824c6e441a2d9688ad6b66b4856996a4c6755c25707f84f86258075bffe199f3bd157282454b0e24852", 0xf4}, {&(0x7f0000000600)}], 0x0, 0x0) r0 = syz_open_dev$adsp(&(0x7f0000000000)='/dev/adsp#\x00', 0x2, 0x80800) sendmsg$rds(r0, &(0x7f0000002e00)={&(0x7f0000000080)={0x2, 0x4e23, @empty}, 0x10, &(0x7f0000002a00)=[{&(0x7f0000000700)=""/245, 0xf5}, {&(0x7f0000000800)=""/4096, 0x1000}, {&(0x7f0000001800)=""/189, 0xbd}, {&(0x7f0000000200)=""/41, 0x29}, {&(0x7f00000018c0)=""/4096, 0x1000}, {&(0x7f00000028c0)=""/112, 0x70}, {&(0x7f0000002940)=""/158, 0x9e}, {&(0x7f0000000240)=""/16, 0x10}, {&(0x7f0000000600)=""/3, 0x3}], 0x9, &(0x7f0000002d40)=[@cswp={0x58, 0x114, 0x7, {{0x40, 0x7}, &(0x7f0000002ac0)=0x8, &(0x7f0000002b00)=0x200, 0x7fffffff, 0x8, 0x401, 0x400, 0x12, 0x7fffffff}}, @rdma_args={0x48, 0x114, 0x1, {{0xff, 0x5}, {&(0x7f0000002b40)=""/216, 0xd8}, &(0x7f0000002d00)=[{&(0x7f0000002c40)=""/182, 0xb6}], 0x1, 0x16, 0x1000}}, @zcopy_cookie={0x18, 0x114, 0xc, 0x6c26}], 0xb8, 0xfdcb317c87126388}, 0x10) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = fcntl$dupfd(r1, 0x0, 0xffffffffffffffff) getsockopt$EBT_SO_GET_INIT_INFO(r2, 0x0, 0x82, &(0x7f0000000180)={'broute\x00'}, &(0x7f0000000240)=0x50) ioctl$TIOCSCTTY(r2, 0x540e, 0xffffffff) getsockopt$sock_cred(r2, 0x1, 0x11, 0x0, &(0x7f0000000640)) r3 = syz_genetlink_get_family_id$ipvs(&(0x7f0000002e80)='IPVS\x00') sendmsg$IPVS_CMD_GET_CONFIG(r2, &(0x7f0000003080)={&(0x7f0000002e40), 0xc, &(0x7f0000003040)={&(0x7f0000002ec0)={0x150, r3, 0x600, 0x70bd2d, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_DAEMON={0x58, 0x3, [@IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x6}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x8, 0x7, 0x4e22}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x8, 0x7, 0x4e23}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @mcast2}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @loopback}, @IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'ipddp0\x00'}]}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x7fff}, @IPVS_CMD_ATTR_SERVICE={0x20, 0x1, [@IPVS_SVC_ATTR_FWMARK={0x8, 0x5, 0x1}, @IPVS_SVC_ATTR_SCHED_NAME={0xc, 0x6, 'lblcr\x00'}, @IPVS_SVC_ATTR_NETMASK={0x8, 0x9, 0xe}]}, @IPVS_CMD_ATTR_DAEMON={0x30, 0x3, [@IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @ipv4={[], [], @broadcast}}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x8, 0x8, 0x47}, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x8, 0x4, 0xff}, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x8, 0x4, 0x4}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x4}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x2}, @IPVS_CMD_ATTR_DAEMON={0x2c, 0x3, [@IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @loopback}, @IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'veth1_to_bond\x00'}]}, @IPVS_CMD_ATTR_DEST={0x14, 0x2, [@IPVS_DEST_ATTR_FWD_METHOD={0x8, 0x3, 0x2}, @IPVS_DEST_ATTR_PERSIST_CONNS={0x8, 0x9, 0x8001}]}, @IPVS_CMD_ATTR_SERVICE={0x3c, 0x1, [@IPVS_SVC_ATTR_PE_NAME={0x8, 0xb, 'sip\x00'}, @IPVS_SVC_ATTR_PORT={0x8, 0x4, 0x4e24}, @IPVS_SVC_ATTR_FWMARK={0x8, 0x5, 0x1}, @IPVS_SVC_ATTR_PE_NAME={0x8, 0xb, 'sip\x00'}, @IPVS_SVC_ATTR_PORT={0x8, 0x4, 0x4e21}, @IPVS_SVC_ATTR_PROTOCOL={0x8, 0x2, 0x32}, @IPVS_SVC_ATTR_PORT={0x8, 0x4, 0x4e22}]}]}, 0x150}, 0x1, 0x0, 0x0, 0x80}, 0xf06e9c9eb1e178af) 05:29:10 executing program 2: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x4, 0x4182) r1 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) pwritev(r1, &(0x7f0000000340)=[{&(0x7f0000000140)='!', 0x1}], 0x1, 0x81805) r2 = dup2(r1, r1) ioctl$SG_GET_RESERVED_SIZE(r1, 0x2272, 0x0) ioctl$LOOP_CHANGE_FD(r0, 0x4c00, r1) write$P9_RLERRORu(r2, &(0x7f00000003c0)=ANY=[@ANYBLOB="1400000007650d6c24ed92c8397291335cf616f0019e7eea"], 0x28) getsockopt$sock_cred(r2, 0x1, 0x11, 0x0, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f00000007c0)={{{@in=@remote, @in6=@initdev}}, {{@in=@empty}, 0x0, @in6=@ipv4}}, &(0x7f00000008c0)=0xffffffffffffffea) sendfile(r2, r0, 0x0, 0x2400003e) socketpair(0x11, 0x800, 0x1, &(0x7f0000000080)={0xffffffffffffffff}) r4 = socket$alg(0x26, 0x5, 0x0) bind$alg(r4, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'ghash-generic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r4, 0x117, 0x1, 0x0, 0x0) write(r4, &(0x7f0000000400)="224c41bcbfab75130804ccb3e46c763e1ed91e7610b2b744024f5d473233f1d35dd3bcfa061ddf87d0e971922f4040d2ff16435de9003177f1c76822560bc79e3aad2baf7dcbc8d910db8f4dd7c5b272c1e1bd0a51212e1f5fe4ad6a96639eae10e781f6e62682668a484d538ff281ad0f659746e03f3397d7d18d3ba5b016d534e351d684044e4a5213ff6ccd", 0x8d) ioctl$sock_bt_cmtp_CMTPCONNADD(r2, 0x400443c8, &(0x7f0000000140)={r3, 0x5}) r5 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r6 = fcntl$dupfd(r5, 0x0, 0xffffffffffffffff) getsockopt$EBT_SO_GET_INIT_INFO(r6, 0x0, 0x82, &(0x7f0000000180)={'broute\x00'}, &(0x7f0000000240)=0x50) ioctl$TIOCSCTTY(r6, 0x540e, 0xffffffff) getsockopt$sock_cred(r6, 0x1, 0x11, 0x0, &(0x7f0000000640)) r7 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$sock_cred(r7, 0x1, 0x11, &(0x7f0000000000)={0x0, 0x0}, &(0x7f0000000040)=0xc) write$P9_RSYMLINK(r2, &(0x7f0000000280)={0x14, 0x11, 0x2, {0x10a547996ee10bc0, 0x4, 0x2}}, 0x14) keyctl$get_persistent(0x7, r8, 0x0) ioctl$SIOCAX25GETUID(r6, 0x89e0, &(0x7f0000000180)={0x3, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, r8}) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r9, 0x8912, 0x400200) 05:29:10 executing program 0: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) [ 344.308280] FAULT_INJECTION: forcing a failure. [ 344.308280] name failslab, interval 1, probability 0, space 0, times 0 [ 344.364019] CPU: 1 PID: 23521 Comm: syz-executor.1 Not tainted 4.14.146 #0 [ 344.371168] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 344.380528] Call Trace: [ 344.383140] dump_stack+0x138/0x197 [ 344.386921] should_fail.cold+0x10f/0x159 [ 344.391092] should_failslab+0xdb/0x130 [ 344.395082] kmem_cache_alloc_node+0x287/0x780 [ 344.399681] __alloc_skb+0x9c/0x500 [ 344.403319] ? skb_scrub_packet+0x4b0/0x4b0 [ 344.407648] ? netlink_has_listeners+0x20a/0x330 [ 344.412416] kobject_uevent_env+0x781/0xc23 [ 344.416742] kobject_uevent+0x20/0x26 [ 344.420537] lo_ioctl+0x11e7/0x1ce0 [ 344.424150] ? loop_probe+0x160/0x160 [ 344.427942] blkdev_ioctl+0x96b/0x1860 [ 344.431830] ? blkpg_ioctl+0x980/0x980 [ 344.435719] ? __might_sleep+0x93/0xb0 [ 344.439600] ? __fget+0x210/0x370 [ 344.443128] block_ioctl+0xde/0x120 [ 344.446844] ? blkdev_fallocate+0x3b0/0x3b0 [ 344.451177] do_vfs_ioctl+0x7ae/0x1060 [ 344.455067] ? selinux_file_mprotect+0x5d0/0x5d0 [ 344.459809] ? lock_downgrade+0x6e0/0x6e0 [ 344.464679] ? ioctl_preallocate+0x1c0/0x1c0 [ 344.469106] ? __fget+0x237/0x370 [ 344.472575] ? security_file_ioctl+0x89/0xb0 [ 344.476966] SyS_ioctl+0x8f/0xc0 [ 344.480316] ? do_vfs_ioctl+0x1060/0x1060 [ 344.484469] do_syscall_64+0x1e8/0x640 [ 344.488337] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 344.493172] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 344.498356] RIP: 0033:0x459897 [ 344.501535] RSP: 002b:00007f617e384a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 05:29:10 executing program 4: r0 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x1, 0x2) r1 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dsp\x00', 0x883, 0x0) r2 = getpid() tkill(r2, 0x9) r3 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000000000)={0x0, 0x0}, &(0x7f0000000040)=0xc) keyctl$get_persistent(0x7, r4, 0x0) r5 = openat$zero(0xffffffffffffff9c, &(0x7f0000000200)='/dev/zero\x00', 0x412101, 0x0) r6 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/dlm_plock\x00', 0x20000, 0x0) r7 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x4, 0x4182) r8 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) pwritev(r8, &(0x7f0000000340)=[{&(0x7f0000000140)='!', 0x1}], 0x1, 0x81805) r9 = dup2(r8, r8) ioctl$SG_GET_RESERVED_SIZE(r8, 0x2272, 0x0) ioctl$LOOP_CHANGE_FD(r7, 0x4c00, r8) write$P9_RLERRORu(r9, &(0x7f00000003c0)=ANY=[@ANYBLOB="1400000007650d6c24ed92c8397291335cf616f0010200070062726f0c62077600b365a0a59e7eea"], 0x28) getsockopt$sock_cred(r9, 0x1, 0x11, 0x0, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(r9, 0x29, 0x23, &(0x7f00000007c0)={{{@in=@remote, @in6=@initdev}}, {{@in=@empty}, 0x0, @in6=@ipv4}}, &(0x7f00000008c0)=0xe8) sendfile(r9, r7, 0x0, 0x2400003e) getsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(r9, 0x84, 0x75, &(0x7f0000003bc0)={0x0, 0x101}, &(0x7f0000003c00)=0x8) setsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r6, 0x84, 0x1f, &(0x7f0000003c40)={r10, @in={{0x2, 0x4e21, @multicast2}}, 0x101, 0x5}, 0x90) r11 = socket$alg(0x26, 0x5, 0x0) bind$alg(r11, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'ghash-generic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r11, 0x117, 0x1, 0x0, 0x0) r12 = socket$netlink(0x10, 0x3, 0x5da38760db18079a) r13 = getpid() tkill(r13, 0x9) r14 = syz_open_procfs(r13, &(0x7f0000000240)='sessionid\x00') r15 = socket$isdn(0x22, 0x3, 0x21) r16 = socket$alg(0x26, 0x5, 0x0) bind$alg(r16, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'ghash-generic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r16, 0x117, 0x1, 0x0, 0x0) fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000003800)={0x0, 0x0}) r18 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$sock_cred(r18, 0x1, 0x11, &(0x7f0000000000)={0x0, 0x0}, &(0x7f0000000040)=0xc) keyctl$get_persistent(0x7, r19, 0x0) r20 = syz_open_dev$vbi(0x0, 0x2, 0x2) r21 = getgid() write$FUSE_ENTRY(r20, &(0x7f0000000200)={0x90, 0x0, 0x0, {0x6, 0x3, 0xf24, 0x0, 0x5, 0x0, {0x0, 0x0, 0x9, 0x0, 0x5, 0x5, 0x9, 0x0, 0x0, 0x3, 0x0, 0x0, r21, 0x1, 0x1}}}, 0x90) getgroups(0x3, &(0x7f0000003840)=[0xee00, 0xee00, r21]) sendmmsg$unix(r1, &(0x7f0000003a00)=[{&(0x7f0000000080)=@abs={0x0, 0x0, 0x4e24}, 0x6e, &(0x7f00000001c0)=[{&(0x7f0000000100)="c54af115b90e8a6642846750ee7b91d33e240d775edfdada344112fe071958ce8107f43bfb92a05e1d61f294beec7950bb024bcd4ea990a8833f724de17df11d7d4cf28dda061e9ce7eaafa49ab63700db11505c27373046bcb5ee892ee6b7e4", 0x60}], 0x1, &(0x7f0000003ac0)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32=r2, @ANYRES32=r4, @ANYRES32, @ANYBLOB="0000000034000000000000000100000001000180f585b0811b67f360392503a3729819c692a82a10c555c93bf3f1707ceb050ff5b6983823a6c210b99cf88496dc0609fd215f053dba7b86fdf4123bd3a5bd449634d612ac686bbd913e0914eba772ff9be819aa242517c8aaba3bd239f138315846529a400108eec88cc86b261aa01b078b9e9a5e", @ANYRES32=r5, @ANYRES32=r11, @ANYRES32=r12, @ANYRES32=r0, @ANYRES32=r14, @ANYRES32=r15, @ANYRES32=r16, @ANYRES32=r0, @ANYRES32=r0, @ANYBLOB='\x00\x00\x00\x00'], 0x58, 0x4070560}, {&(0x7f0000000300)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000003740)=[{&(0x7f0000000380)="1ad8c4c0f10857c125673baa4097e36bf9942c8106a93189fd7565aa12e0ad4b89879a681b5518924f8e6f3e789fe1d6b8d712b6e4c151f438f53e5d6185996aed532f8896e813399f4d8fb89997e0a38b3c1374e7cad9c52fe7479200eec9b5607d8921ac998b4839e59824a56a9487b375bafd4c6a92421fd5dfe9a98d7208e382c83494daeab3db420e5b75c7853a8663cc5e44cbfc1e36a921a78fd0229bcca610ca10a38d3b796610b6cc5e3383633ad777748f8b26310e6c11f449d5b6ac3e52e886c42b3bbe8d5f91a1842e77d6dd339cc0188a78957f4b35f9efaa18ddb66fd521445e3488f64e89ab225cf8e2e5757700dc52534b823e22099b0a1a2d9c58683b2b64740c673bafdfa1bd5ff8875b4bc7e0c5d1cddcbefb69c27325b5f5b6e97311c6fff8fea91132c44e36f731a8a6786e9dd38df38ad4c282d9f988a2570f514ca077c33b48f2487958b19be04ca2897f961bdb71b00d08098ea0fbfc9e01c848e4e60f00c8308904d7c389fbdc06fff4a0b5dd4f3f6f655039f7d92b3f02485f041dca163cf431b301b394f42ecb28e41cfe2c70bbb05c40fee4b55f5758f4a6464b298d97f0abe32c6168ebec05b02bc4b37ff0a44370609d7d78c874c28fe9f52419c01b7033653c1a92f96f66c61c3b00f664ebeb5e9efa4847df65c150115da72370e71e6ce4787e93fb7e41435e46401359c25b01001abe715487f1f038ab7d899799dd79e55c0ecf8d58d0a1671c54caf081de48cd03422ba066c9906e52a3436830090830f3356e5a0166d097781f3449f3250feef94b5e1563d399928cd70e22f148bbc4205d0c0ca81b70805abd6420b58e8b5c89728a60a13daae040bc83161cf1a5ec748735277da5abfad1e15b74aada113650614b2463f85b1887ef444d8db70f4627f2cfece223c499543c1309739e7acb1eee06c37dc4b33c1ebb4bbc2955473ce38a20c8d33e22cd6b7633711f98de74998cdff20d999e3c73fd9817144aad04e750f232c6c12c222c14f9f8aac4fea56e209d5a2d0441b0cf174304bf61b2e3d980ac143eaa8d4d2f9450451877ef8f804525a3c68ee5d199c0a723108eb935837ef848ccfc817c5fdc8cf6a88e274f9b084d2276de95cda2dbe22a8223627745da205f3c27e11ae7e8238f9d2af9b348d1ecde2f22aa2ecc001682d39f476be7db31d38d64afece6d75a4d44fbe3c6df4dfa6575e446d4f467259fcf952f48bc82fae5ac681e6fb20e98411186b31811297deb11f1b771f9c9e00486dc9f5f6c4892f4cadb66f9ec14e3cf22503ae83faf9426fb3370641118785cfcbb17d27db9ce526606434a57f92dfcca315ed5dddf86bfca9b8607b47a76fba1a99cb6382287bcf80d8d3ff2514cd887799ae7fcc17c31340e20313ff72b36eddb78ff590214cb2555e85daffc88feb41ca2b1c78ee0036d3350d3995922e836c35a1cf1e83011a876b9a98418b14c6680ee56b2fb476d0a5be577a0789da766dbf4646a2d01bc883cfad0ce983fce15e0c25dbf8cba85208d393fc10a580bae0a0e7132dccc6a207381f16fdf59d8ddd4a0622a5830b9c57d9d5b69706ef32abee03fd5afdb5236174b6329bf58a67e1863338be72360af3cd77113f676c94a19b6a74e80847e51e1882f912e12d42a95ca98abcb5ef5c7646ef3d0fa36d517de155a454cbc3d416bb3cb2275382eea8718a144071a709010e78406da0f4aed6f1dd35d12060364759658e90fef20d6b2dfed178346ebb45425142f369eda8f96c0c1d9cbad5e55f9a7756d53019ed467a797ed5fc6918fd9920619fab9b154fc58863ce857b3428f01bb49ccca42801437f4a8d0da3eaa47b32da71d30c5961485d6a7a42d0d2e377e128b9a71486c6581628408882ec0caedcae8119dff2fc8c49bde6ba1f930aedb69d3115071829e998fb6577f92f905441ab216026967970923e123a0fdb547fafc38f5661782510e7c4822d15130cbe5ee3e0ce9dacae18fa80eab4760889156be59378513f343ccff783b5fb4a1fc10542fa7b1e5747101b174dc9feb59775055ca2a477bd0faa4f5a83fb231228840a832471507c41acfd4243fedc6d8ae809a929e1c20d0a1872ffcdbfe18f41ce78f21c91476fc75124c35a97811c71b4d11291205c12bc97fff716ef2a891c55db98de6affd5aec3a2450bcb22c98d323e9ff46f783e2b2d23665c2a7214fc997b536c0c76ceb1dca6f16308cd34b3887a57ef3f5b83f31fb829723d6621b4f68bd09b7d05e24e564da6599d3ae84a9279cc7700f511bd2798c2abe6f0e2c808274c2f6fa8634ddba8a77e7682809b3afc933636268e956eebb1f2890ab599bbe9a75d69dcdf376b578aa49df598e2b9cb3867edafeba8c3e4f35c83168eec1d117c9b142341e02b4fedc44a57f2722ee803388808fba14d42c0aa5956569f6d2b9c5391e7239b13a79a48492e8496eec69678bee9320274e5bbc489f9d03b02094900968663a8748d6b0815a50fa7d4b78be349d3e0cc70ebd17939e3f75360e1d0c5fe71c9f4124c54b2eac33144590802fc5159a85728d7e2c6b2c433d805729c40f91e4f3ff862f486cc60c97e52180c426e09e1fca0ae2f35d1c4027704db6db1dce854e00f2d44d45812b5bc3c5d6100a55a4c6cb7c523a2b2b638716af41978021644e7458b6748172b29e2d3bcc408d387b9a6cd1635b5225136fbde056e76428f97c6f2d95604c36bfe2d7ad4a35e61e0a3274d93a803278a0237bf684c4237e0ac67e281dbbd7c16116c92aa4291923c4d2b8916b565bd79f856c3da09636f2e826c337b54faaa24bac63f30baf2c50a1c4482d839b75d5c2b42e5c2b755165b874b0d05c0603a8282e596e79cc161d5ca90787c0110f35fc4c0bd27b206f1912b00e798299b67ef8b7c68bd94854dbb7174436cd05fe60cebc54edc3c744cdd9b45547b2bd1a3205f1be1aeac8e13061867b2f820b4684bb287e75424ad99cdd1431163f8b6b6fe35c748276c9e1dffa4fceff64423fed13f1b97d52bdc008af9000efcd0eec58c336ab00af888e04031720aabd791ca2c17b35e3728c08f9239865dce893e725704cf7625f4adc1c682a78f1c5b836af520f4a95b601054542f0974f3ed354e1fd494b18bdf4d4759adc400a52dc2be5eee1983eed9b249f57a28c430952bf83e15234367103f99fdc3e147e56dedf56fbe66afe68e14df943177ac0d7cd7bcf63ee50e1e3a9504f2045b3ff0525376b97eaff71372a0e4a3b5e5e066305b78e5c1f3a8b0604a0fed326843a83272f1ce8ef8a7f511267c6146852bdda5197e6a93da8be554eb5d8ee0102b004fa5db735b51253aaf330476ae9cf51df0365967f3974f63376e818a8a422ef2dd22aabe5196a928fd6b0fd7f3b73934b93ef7302588239ac18d25a8d221e7f1c393b2f95438ed5c5bf1973f8039d50f32a3f2839a69db6a8986ca718eda347cf46b0284de19aad3e7d18626b681d4c3f0a3a620a16d421a6c056aa0b0e6ce9896afeb76914f98daf3e1638c30f34f67fd34edd841b1d647f7ad39f39c373ef9e5c78d2f39e328a1dd52cf21c4b6ba9dfa3159f39d393b4334fff572cb8f1b4410a461bf3dfe4d5a606285a169f6ed1bbdce699826114a49b504dd31cf3f0ca5cbfdd5613c95cda223cf68824975e39892eca7ac84ce2952f7e63088a5c96d55950275a9bd799d334a6b46e4d9ed15fb608a386e58f248b1fc0108cf171718f62ee3962e38a0bef17a290fac8b61ea489e4512262aba543dbe3b16815c371419849f4bd3057464501f1e5ac0fe26ad03d366b4121545d799da6ef7bf97333205b3aaffb51b81bdf0081354abb4a03e2d33bb59384c26411771f5c13b13968828f7ff74e54c49326de66c8063a0cfd3af876c2c2ee1414a9153d431a4fe3b9f2709b761058baff8ff08874f6379fa05c838582e91fea0191d4f9f2951c943d3162165267ae83684ab638954247c3072f8896ec43653ff7a1ca7b7cc23757a9c0aee6c2d47a1a9f013fbfefa575a936f91c1b43bfa847ffcede1bdbd2c73816b5186985c561334a4b767c77a720051d6ea3d51f8b48ecb97c7d85f5d4b4019ed784ee743a70e5005cb62d0b4ceb5078d5951a7d95811e1512f3b7a064204cf1a2ccb8013a11ec2bf75642aac6d167814c922f309dfad8159b94b7c9d3ad11936ecb9aeda0f633a7086dceed5a65c8c41223c1d02e34c5af4e56e999ddefdd3931b5fde79aadee54f3e8271ddb4e24cdb4157ef3faa7d6fe3f3eb0c05629598b1a7333a658067de9d9682eb13b1ded33ad1dafc4b0b6f670a7285d2f8ce3dae770a233aecfcaba98400fed5c5dfd39e17c3b9d795d7e82a40e0a0ce2a150b4ad919a874e55575ecca6e0e0b33fd16c4e2994fdc346f0987e1e7c125f2969e998d55695ee365edad21ca30a0ef81e33e2f5582d08be99f4e77d9b76d4a45f11b95f79e9f0136a2cc15f83a6df0c7322d259b36a87f69b84899cac0301283fdb1ad4947370915fdef9384fe940c5fb7e867bd09633c986f4825a75b94a3523683ddb9cba89cb7594ac4a41482517717e714a766e21d32f1bbec6c97e5bdfccd65827015d23b4b940b4c6f1e7e362940d82c216071f4a4553322fd69a90329fc06665fd093c2351ed1b0030245ccf39932ac850de74c8ac64f6878058aaaaae510d8fe7ccaa1668d2d571285da7ead7e7bdbaab57c732912ecb0f5f6b000d9766bb70fc33ebcd2211a88274d3131dad4eefa5085c493c6a6c08e2e423fa03238b5fbec40a0d1c01ef286fa6f00996c909461c5ad87e0d215f6ca616969f2b8c5b64450bab94b641013e9eb630b91b68674142f6652c555262ce8cda006817631de38140763f02103b86c95c9ca977d176d537efd73218d95eacd7542bbc08fe12339ee4555c94fcd03ff9d6ed606a3a41d6e0b0bc45d2b72e112acf371cda181056f538eba991b8307775f4d5ca462f44abee417ef3a4d2ce52a87e914c04af85af4e7b17413137704a88718061629a200cf8952ea737fc6788afb7faf70ae1cc02f5633e7f6bfc546c63566eb20f7372633150b8fbdfdb17212c5ac23b96c7111972b893f17521e621b4377c474f31641ad1efef2d93a42051e733352a3c77396862d9aeb44fb954467111955e18f057387c6e89bac313719650ccd67ded71b079e85008a749c8baa07c9472f39d656dd89fe384081239e60f49aa99d10ad015f9dbc944ba84b41f09ae6c8e403a83b146777e04bd309a8f5a03dcbbc613606a4b2bccdd0e90f3ab7b50e26223da3be0078ccbed13f589e44eda70aa91c07bf3a14fc9a0cfb0ff798e95d1af438ffceb690960c0e1441642cd2478f5fd0a224a183f61b1105282cc07a292be564882350080e4aee1c725b9cbbf42bcb584cad8fba8b31ffa1ccca8b2c9f8dd116988521678648411af87bb1a36e2b14d7fe5cc9a648e746cb41f90dd12143e25d0a349d3307ad7dd37c85316f84ec8afe60f97c918db2c127e80c020820b900463cfa102b9414e7761b3b0dbc6c9bb400c69fee62049189f2396e8e3bfae73c054d42e6b2540173b397793caffe7947f8a0321ded4d2cf522a24e169841dbeb77f58bfbb0138138024f0bd01edd2679263c6e2700b828b21be20c2fe01f3e5528f1ca787a6034aeb30f0605292e6818eaf369f26133760a455f6c782040b29c6fa27bd3697b4f6f62212ce05689539c6a7addf6ca980a0c3f1809d0c29c1226cce80f881081794cae9b12fa35bcd4ec6545ab6d3e5d64143", 0x1000}, {&(0x7f0000001380)="b2a1aca226efc6a1b8ab65f9f1b24bddd3810014b72979de484f630d16cadffe300f0bacf87dc391badbe381183f8372385ba46042d45553984f48bc0914a812dc8879af2b4a061b905e4682640ee5086fd87c039ae630d19766f7c0b973b5201432347c", 0x64}, {&(0x7f0000001400)="cd2f37d844f87b3ab7153e82e90a8865eea123b8318c5c209948027c2fe3b1ef1ef2cec30062f64b75c99db947fa2eb8c12295b0ed633a78362e1283308083baff5ede943d4f3430b713cad770d2c340968fd7aeab93b3eb90dce604da1ff31d0f3f09973f73dd3c06112d9ddd3397102098ffdb6f7aab421b7d72f7d57449", 0x7f}, {&(0x7f0000001480)="eaae3dd05e80daa0e8e58735cd39cb244de52624be942c8085bef029023561429fd3e936ccc2e63f224c3e62a2e367f0824c35a9f12cd972a43144a4b314e3e8a81045512c0dac23a90509b61bc7dbd01b8df3d39b0b8a", 0x57}, {&(0x7f0000001500)="faa8c50956d37dfe29842ecd73d21f442e34f52202c4447e419f", 0x1a}, {&(0x7f0000001540)="d268b58d6d2339474afbea086f402ed057f6e482fbb0801931bdab44f8180b18c9297ca7b9add2391e1cfb956955b0369296ca2c15f249b836cdfad67ee2b66cf7d42dbeabcad0ba7b64e3274e17ea54fdf8cec43de981a11fa7f73460e51d1476c13e97c5a7f2abbccfefeae40b47b590c47a84652314fbe312d8ea6a97bfa68a2eeb555c8c56cb21d0135b946b6843094fda89393a2c", 0x97}, {&(0x7f0000001600)="75cffcf0217fdb93cd37175274c0712897d056151fe6be66074ca060a25b747a00773f2d9345eb4b4c13388a5f19fea5784357bcbf314208def8eb5193808d6948d436d2c919d6e4cb72d7371448e3e8b057dc84cbaee5e219e14f027bdd3caabe41071c9380157ec16b1efa96dbae293d6ff3eb0d8b19d37c6cb7e7018196ae0801d34f3f5edf62a2dd00bf413bf5143ec4837b8b44746d8abf7b0f016a8866d804aa11678cbf0b46f5761c0eda177d505ee464ea264474d7c7a5db9c682072259d9a0438fe8632759878bdb6b0d8f7ebefaf9b9d3252f9ab48202a9594cf75017b4604a48fb70df35e35544107caa7123ae0b50d88444475e684154e7961d1be76950ca296568c805a0cf3398aa79416c5032ca73449b203a0fa57e9049720d32b8441a6fccdc341273fbd6fe1640cb973547c33a472882880aa49aaf719da15f3ee99d83ca439dd53424445ea6b3ba61932b7ac6901bb6b013f11023896c90ed41671b14b34a3d342e38464be7d0f94f50dc903d3a361bd240d0262875dfb5ee7601fc47f2f4b172120cbcaea29a7f35a2de0fc6207e46b59f8c79b1257820811608f069f0f8e6832848566d5e886905c3277843aac04397aeb981fd21e96bef08e9cfcbd8efa0145eade22e6630b7b95dec8d58ff46ab57049f9d7e86d833be407bbb3665ccfa165f6f264b4b0ca0b6bd1f63b3726823909517f0d78d4c57e911c9622055d710321b154d0c9dd44f80c8e80619f8f2451be438e9559329ec876aa20401ef6884ac847ed03a6d4860ab836cbf737c04747a64a54b953f33cf6240b1423bed35ede840d0115ccc82d35a95e57dde18b7ec2168e6e0d44c3e10aa209533688fdcff28254b4d174612d9a65ea355870b13cf073a285e0d9387d87d322a10eee1eef75f6ae6c1b602dd63eb6a31f5106870e440372b34c5853727b2a2cf7f9d246d35643900d107ffa07dae4962b3eec822870b7350062a37fa7c89779c6f79ab96d6f58758273cdfc5b05b2db9c2716900a66b82cec5fb9956c0d4ee41d27b4f29748b52f8a35cdfdac48bf60920027d4e68f1d75f75ded1b89cfb57c3883fa426c78b025605925f5252462f507bc66793439a8fc4dbcf13c03e19311c67ee8d204bdc97bfa3e6d501d8e781147539318a1d06af3dc81d31bd50251bddb5aae45b4a67dfb8b5b84fa0577d7d9199c67024945629a5b7b769e86a3cbb600ee346e0cd8cf0ac8f9b5d9daa60ecfb187803b016fedda3db9699534591ea691312533f3632f31116745e5f2f0dc5055468177466f1f3f5964353b42c92d507b5cf54065618648b89eb793fa8bade2d961fb8eb2d596559345a74809dcf1564876728f556b533c99bee0b3139cd5617c999afb76927c5ad70ad1c85b4366d1a01c5762a82c8784f6d7896089c63b2ee1802f995ef1407dcb9c8c4f05bea84e66320fb63d1913a2dbcd4573abe5022d01732ffe7be76449453378bbb415b2fff2c44b607b7a23861e3320fdb798bf5ce6557353877506c353e2acf18c029533c5aeaf63b907c65d5791329d2740d348f81281317ebdf8fd080430497997936dfb1ef9d8056af6b76a2558ba9793314c179f7d59bfca1c5d9f212b53a250512e10cf7e0886c9b7dadee38df09fed8fe99dc9f26d7b99ad84eb655b82dc16fcf0731419e055cb7c2154262d6271ec27842e5de774027cf0f556fd61989e9d950119625eca8035294b2607a6d5e26ec726aeb828af7fc80ed91c72f65d3ae7be77706ab78a716c41e9753837a70712e68623a7a466a6ac9e3ad14f2bfcdcb3f33228b3c703f0a2814e8e4a97942aea54d38d52b43826f44e13057f4cec3b425ec8259b2c9d6ed35de6bd122fd4c166f04f26095556c734a610e6d8c88c0a067ddd839b470a9b3ca590f820e0583a4c622834ed8396f2d67cbeba44acbb6dddbd0cccf354eea92fe358562ef9566ddb8c9b2a62982e11ae6643745b615c9c2aa5f7caff7281168946169c0d7148e11a629982a4e720d9f1bd935cb1ff62f2f1aa6b444c0ea613f99439e06f6061f9b3f0158dda166225b765d89ccac4b4063da2277262cbf34dd286b8ee0bd63c3fad6d46899a9d5f3a6e0f66048f9cdb2e01145858d4ec1b12affa20416158e94e163714bdf1e1fdf991ac9a4eab737a70346262e219e709c82df457d989e225888a96cd94234279d887f714933592a0701b409d4affe20aa37a31e7d1e5325f8811a4da61c097a230eb2e34f08edb8b172737916b7e6bfe824eb99ce77038525345355e5db335a5fbdcba702d8570e516e29bc95a43a3c0af0579588b00b857a06f0abf7ffcf2d0d50d78288bcfe9ae6b20db7f5f76c313a835358577945918f45b878b4d3d53f9f71d4c99f948fffd4b774e27473207a127a04e15258f4e27a3c639a37ec57d8d630cf79d3e10b9d9f88c21eb3486b31ccd1c6ed0fdf5855c483889b9c7efbb8bbd693026d9195f788c90db7d1607a32429f149ed4a92803cc9beeab2214a4168b5c034e6859ce335ff4a06aa28d7d237c976b200c17c0de46698b890c0c98dea85b8224a543b2281c31d8baf2ff3eec2ae01d31d1c3a0a750e3742ef5572af62d3b1534e5ac8436c4647891445184a080f71d5a46d2836e29dfead5b380fe412aa21898aeb126c150547785d1224b626477d2a48bac4199ad06bb5281b0f7bc9b5fd197ed7d8ecf49aff37305aac9960a432f4363bbba3ab145c6f0288b5cc8a474f451b5d4021631f71380a269548ee369cae45b9d9a13a4aad9f8214cbc8fa78a35f085ad14abc0461d30597d2b427bc47644ecb376726b585274b4eccb5c4cb3360e22c5e512187ed3053b93971d2140380cc344a624193ef295e21fe277c15e785a59e4af5722d74292ffe2ff155614afa1456e5fddde8ef6093853e3af8ee2f4e4fca8630142108bf2bf38cbddabc0c7010562b77612e3064144acd532831be68d8adb916387623909bc3428ec112cdd195b0b3b291827e5b47062716449abb0c234fe0a2a717006190741f19ac3f9f786213ce38f59f9c140d81549e8eae3f92be7d4c6489b61008ff28fe1a1f43e6e5eb64093775063eda98f0f24ec94cd267e4c41746bad34cedda80f4b44ed800ec2d8c969275a954cf96be5c3b43caf10cdbca2abfb71ce576fac6b88b7800f1fcea091328eb2b0f2053028aa389353570ef1db5e5d247900487c211df5efa00b9d7778577467c0e787d910c3368f0619d79153448adb8e117719029a04f1d63fcaa34ed7198396718a7f57cbc556158e738250fbef56909db941a385b07145dff4c4550e2794caac2871aae177b44ec334a29b5a303f20aad7b1cedf17c197aacb26a2df5e0f661d5b2e504aa438246b3563193e8b1dc8828831ed85edfbb4cbbcd9f5dc5083fd090215a01099e6561eacd9d3550fb132a4c44006f174d90815caef988c273c1f9005e72d760edd097353fb4a7757ebc8f5220b03afb5e3b2176d40dfbfae3b881a726ea65065f6f628bd740f8ab98bc21b2e1bb748282c1f439c7a0e3c58f23d20d920a418141751970d3c2f507c2ea623f7aff9ceb48bc296bababc061fa2fb6928d3d8e9c27ad401b171799e896b7b5199f12dafb69059ea65752b66e925b58642c3d582318f37c6c567b7fa976f90d6daf7aa9a3799cc6a7b3708c36737a91552a60d0fd263b74402baa977169667cfe7cc08c812c7fc4b868948cf636f31c68cf79436a06639e204bfc5fa023542090d4e2d65a0c8d7d5b0a3c2f70d1a13c1caec258d14d0e099c8653d071e611fefb84ae17dcc5abd57240f814967f2c773f96115397480bf8590a670fc038965294c3a0009872bba22de5f26639f7fc18d65947c77f95194744c6b5afa211e31a111b45031246fee8c49ea679ee4a34d02e3335590330c253b3b714056d7ca02cd235902461c5285a04d4dcfa6b0e00c5fb2f6d4e66371b230e30c2f17a34461d911381f1dc7528996da7adaa0e92eb864cd7fc4d1ec55a127a7081126e8b78d1532ae4c9d02309ef677569a36ad58519606f391e33d8ae0cb6c469565f7d047f19173c402ef726f44cb8b122ddee78dffa9089f4f5718d1c3dcd9cdd39af180a8ef8f91992876a604855396ef8da8a6cc886509f2bbc6575b58019fa24dadb7dd036e61e60e5ab0e55e1d63649be91d3861532c59320b2de1f9cf69c188989daf25b8303d0b1c2b8aac4375defb7996b047ac84a441bb96ff95e79db171580259bf531a5a63ae2d514e4247ab8e1e1743b6b1d4ea177a7e9b561d4f774017580142fa34ca693b11e02ac3fd6782f75a08a440cf112315d5d9ab87c5179289e53e5ab6a68aca15891f81b2bbdd533b5ee437b7888504cd7b371ada05942cab49d68074c7ed0dfba94d91a5346a1915d85645e6c660a463c79c22a6b71665537c494600b2466ef0219b86184ca508f34960c57a6d868dc37420b63519ab994a4917f0c6a845efa0f337490840b7094087c36cb511c318604d6b6c4d4e3e4f2e7f81c422ff418c8820c28260d4f6e9f6c30a73106e4449b5aec3a0079489faf3a905046a2b3f112e46a47b428edd20ba5f2a96c9eee0a344fe303a724d88044d72a40e7512257d2981479358de9acb9519cd45d4e03f3b5447e5c68b49561c9e0dcf8e983fa144d4c1a29ad766b76a178b41626823a95b28b0b296abc000f0e810a632b45a563cdd48b428d1eb549754075ac2c73e9fdc6e89d58adcbceceb94dc609887e8ace4f349b5218268ea4769be3d09e614fae92326d4cee1fc1c241be2fbbf483cd2c32a1414e9f24d67f671b33f401ae715b8113104a7b52fffe97acc6aa8e48834d9076a5eab90e5f2ca41bf0687b5a884ab90d8aa3f5a2f296e8665ca61a9421403b756b4c20683fb86a0b4867556062cdc7d538d0927d6dcd721e8648e37235db6b90a6a4eb235636178f3420d93a97257e2f2238e392629ceb1533eba2863175759498383c161cb30bb09fb090867ddebc474e95922fb2c4873622d3ba7baee89ec49960339efe54f29d66f22baf161ac62c6cb620498ef4007b6b109a2a53ec586a36d060c7acb7a97a86842c7689c11d3ccde9bb6836caca9bdb6aded21923df9bfd817c2883afb02d893127d720017638eafd260f9b9019f7b01273eb07e260b134198bc498f038e14874c7e695ff8a8f3bfacaf09dff1ebb00de5e695a12b4130b2c75382732b385f041221699cf2544e7538b125029e04283f8b4f92a68044de7a5f73c4484f46ecbba12809e687db53795b791ce94f02ea0a8737ac752cfe18d99545ccefc02092bdeefbbda1113ae9b0af585dceadaa90e418b5d999234b2a4b2bcef03f6a5674cfe3cbfb8b7794b4b5c0d1ffa0e9a04cde2df859f4561c87074a3e29e5231b8dd54d99ec04a438afe9ad97b3ead8e83edad95dfa129ff317321de0d1c9999f324d8ae8835873c3b6eddf43948f08fd3ba6dd64ecd5c5931b50277a514ef1c676f39b8e1c6cf685ef8663612894c908d2672b521ec6e4e9062987391863d08ce0dd695ae80ba6e6cda9fd68cd3a671424574b96d4a62d315d1c8187f3a133f93672d52486721fb516bb9f74307e0807a8f78c0ade5e804c196007a1ab6c7c4c312215904a8bd9a7299d5c5b8ff85422329c03ddfadd109be03d6ba8d1136b02323a157e5d64865e02b08ec535a65a8c8b3b92672096b87b999551854b18106ca11899b14a752a0bf559a55af86ec5d010e66925e00f32ce5976bc54cd8641ae36b22434252671b9a9802f110b01070b8", 0x1000}, {&(0x7f0000002600)="0f7a2cdaea2fe9be2fb1563dc3a4c6e82c042059216a57b340aa07afccdec75ee0fdaa1bd474abf410ec54a12f834bf4532d89a3a8c747322a6a9b253e3a2ab567ca659302be2b0434667ce9f7805222cb3cb29abb4682e2018587b874dea801e89ad825a43c3b6682437c20f7c771ea432e679ea1fe8c314f4a05af1bfd46006b6c47bcf9d3e8e17af3b70e09abb750e1ae5b21efbfbc1016aad0be74d6860c61e6096ecf8c25995da837678b98f1a6d3df376044b8cec7588d2ff1b002820bb1f88b5c700c", 0xc6}, {&(0x7f0000002700)="860eeb9909d5d0c0422eaf6f0c2467697e92c389", 0x14}, {&(0x7f0000002740)="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", 0x1000}], 0xa, &(0x7f0000003880)=[@cred={{0x1c, 0x1, 0x2, {r17, r19, r22}}}], 0x20, 0x84}, {&(0x7f00000038c0)=@file={0x2, './file0\x00'}, 0x6e, &(0x7f00000039c0)=[{&(0x7f0000003940)="a68f88c29c5e33b022ff49a35990c29068686c7a57a8f259e41b6bfa187a811a5f5a0ca1eb8a45133007a1df28fb7c257c2c151f385ee6b81299999a48d88392305dca9693d3147918fffff33dcad341a72c420a29abbc8f83bb8cfde5da4913ebd9428cf508b4eec3de3f27ac0179d48ba39fd4ddf8d5bf734b", 0x7a}], 0x1, 0x0, 0x0, 0x1}], 0x3, 0x10) ioctl$VIDIOC_S_FREQUENCY(r0, 0x402c5639, &(0x7f0000000180)={0x0, 0x1}) 05:29:10 executing program 4: r0 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = fcntl$dupfd(r0, 0x0, 0xffffffffffffffff) getsockopt$EBT_SO_GET_INIT_INFO(r1, 0x0, 0x82, &(0x7f0000000180)={'broute\x00'}, &(0x7f0000000240)=0x50) ioctl$TIOCSCTTY(r1, 0x540e, 0xffffffff) getsockopt$sock_cred(r1, 0x1, 0x11, 0x0, &(0x7f0000000640)) ioctl$EVIOCGKEY(r1, 0x80404518, &(0x7f0000001640)=""/247) r2 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vsock\x00', 0x1, 0x0) setsockopt$inet6_tcp_buf(r2, 0x6, 0x21, &(0x7f0000000080)="01b9c2648cc0a68b55662b8953772bdd2c1fe9a563d05c9e096184ec09831c4a50efa88750", 0x25) r3 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x1, 0x2) ioctl$VIDIOC_S_FREQUENCY(r3, 0x402c5639, &(0x7f0000000180)={0x0, 0x1}) vmsplice(r3, &(0x7f0000000100)=[{&(0x7f00000000c0)="6a678ae347f1c50ed30bc252a675472bfd7d4a26d853c8280906", 0x1a}, {&(0x7f00000001c0)="11f4041bd8b5cacd2d92edeb5a8a2d02623c926f30e6f5cebae9c8a25ff80a15b532e443d887974c6d948566998f0a9c8de74918a33deb3cac197f4bf726832ee0b518014ca7a46db1f5662215f125d22758071450f2c793f051afa8e5fef807ca1010f82d1217aa16aa7ddc27e260328023f5bf41e7059aa88ea52929dfc035e752ccdd6280279487b19b6b0b7400676fa88993fb65b592e1ced7ded9fe02cc8eb9aad42e8cea0469beb577d0a64cff1e6fe1cc91be3de569f89a47c8ae3c523b72d20d21eaf5cd8d68288d78cb45012b5a1701be7294c8770373195a", 0xdd}, {&(0x7f00000002c0)="7a301c75b4a2e6fb738a82a95f87bb492ccc53502c4b6a78b4327ec97276d220b6abcb36d30c989930a40fe6809a1fc89c5f9ca348792ff216dda6aa4765e99af52213e437d110e52b11a16d29fb292cf70b96f141ec7afb853ec3967e51c9d20b6122624b9d32fb0844884bc29b4e9d87b49de3bb84e7871cf8ef8a15400847e1aff6bc7728a39a04e83d2d4f57f738181d9e99044122839434f9e4a9058add097bc94d97eb3869341e8ddc485e024be3972975c1d7279bd114809267ce3e6b49ced48444a6541b44d5c889a65b46e195f6cb82932f0aed138088524b484e", 0xdf}, {&(0x7f00000003c0)="2664e48a3cdacc14bb5f156b9c24816a02bee7a54f9d7eb02098ebc8e157b91e866522621b60a00cb765995262789ca008390ed68f9fb5376cbd0b60d7a6e1cf009b040f3926a697581a8997778ce21b388bdd5e62fec5baf887125dc63eb141c36d00e682907602e729c692b6d9427d732a89deb3185cd81d292c2f4287431176fe7c24346bc19312cf58d0f83f19375fa0ad727585c4304e8fb6627960928ccf7598865214", 0xa6}, {&(0x7f0000000480)="4a1443436b83741e26a36df75e83cc8b9c255a6cac6afc6177209c8d90181a9b9374b4a118c452946d8b8328e583b4698502cb8ce200fc99751c6644d991383795848ca165c351e225770b3a456df47dae879f6310f1a5eef995aada2197905caf35ac7acf2bed65684be924e469723de53fd5a083764e47653e0f39d74f191b2b0dec30500043b182cbd7f5fc2f78eb91649c1ef131477537c6f9dbf95e6bae3d645760f515c39b925a42f5a21e40df20c8c6eab2ffb5285a76d22cef66ed487052575ef298c84381df95aff994ea1b4128527131095ff227cc6fd927a2de827db1e879", 0xe4}, {&(0x7f0000000580)="62a349e79de99d3f5d85452bf0afebe56d32ad450ba62ad317cf2ad52a16c02f2f17eec77968f2bfb42caffedd388d975856f8b353236f253ab4974f8663b801eea2639b9713cfdcb019e43d87ad79e7b5df0abd7e302a0c002c21506913979edf55fa04ed60d181c34cd68cd38314ba0e5a4e1ba63e2daa21cd057fd77b2e903ff33ab72e6f55917506b5bf89844af53bfd5384535903", 0x97}, {&(0x7f0000000640)="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", 0x1000}], 0x7, 0x5) [ 344.509233] RAX: ffffffffffffffda RBX: 0000000020000028 RCX: 0000000000459897 [ 344.516496] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 344.524226] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 344.531485] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 344.538793] R13: 00000000004c8b25 R14: 00000000004dfbc8 R15: 0000000000000003 05:29:10 executing program 0: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) 05:29:10 executing program 4: r0 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x1, 0x2) ioctl$VIDIOC_S_FREQUENCY(r0, 0x402c5639, &(0x7f0000000040)={0x0, 0x1}) r1 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x4, 0x4182) r2 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) pwritev(r2, &(0x7f0000000340)=[{&(0x7f0000000140)='!', 0x1}], 0x1, 0x81805) r3 = dup2(r2, r2) ioctl$SG_GET_RESERVED_SIZE(r2, 0x2272, 0x0) ioctl$LOOP_CHANGE_FD(r1, 0x4c00, r2) write$P9_RLERRORu(r3, &(0x7f00000003c0)=ANY=[@ANYBLOB="1400000007650d6c24ed92c8397291335cf616f0010200070062726f0c62077600b365a0a59e7eea"], 0x28) r4 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/qat_adf_ctl\x00', 0x200000, 0x0) accept(r4, &(0x7f0000000180)=@xdp, &(0x7f0000000100)=0x80) getsockopt$sock_cred(r3, 0x1, 0x11, 0x0, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(r3, 0x29, 0x23, &(0x7f00000007c0)={{{@in=@remote, @in6=@initdev}}, {{@in=@empty}, 0x0, @in6=@ipv4}}, &(0x7f00000008c0)=0xe8) sendfile(r3, r1, 0x0, 0x2400003e) ioctl$KVM_S390_UCAS_UNMAP(r3, 0x4018ae51, &(0x7f0000000080)={0x6, 0x101, 0x80000001}) 05:29:10 executing program 2: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x4, 0x4182) r2 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) pwritev(r2, &(0x7f0000000340)=[{&(0x7f0000000140)='!', 0x1}], 0x1, 0x81805) r3 = syz_open_dev$vbi(&(0x7f00000001c0)='/dev/vbi#\x00', 0x2, 0x2) setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r3, 0x6, 0x14, &(0x7f0000000280)=0x2, 0x4) r4 = dup2(r2, r2) ioctl$SG_GET_RESERVED_SIZE(r2, 0x2272, 0x0) ioctl$LOOP_CHANGE_FD(r1, 0x4c00, r2) write$P9_RLERRORu(r4, &(0x7f00000003c0)=ANY=[@ANYBLOB="1400000007650d6c24ed92c8397291335cf616f0010200073ab570cb6c0ab8214756dd9e51f20062"], 0x28) ioctl$KDMKTONE(0xffffffffffffffff, 0x4b30, 0x2) getsockopt$sock_cred(r4, 0x1, 0x11, 0x0, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(r4, 0x29, 0x23, &(0x7f00000007c0)={{{@in=@remote, @in6=@initdev}}, {{@in=@empty}, 0x0, @in6=@ipv4}}, &(0x7f00000008c0)=0xe8) sendfile(r4, r1, 0x0, 0x2400003e) ioctl$UFFDIO_WAKE(r4, 0x8010aa02, &(0x7f00000000c0)={&(0x7f0000ffe000/0x1000)=nil, 0x1000}) memfd_create(&(0x7f0000000180)='security\x00', 0x4) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) ioctl$RNDADDTOENTCNT(0xffffffffffffffff, 0x40045201, &(0x7f0000000100)=0x6) r5 = accept$netrom(0xffffffffffffffff, &(0x7f00000002c0)={{0x3, @rose}, [@null, @remote, @bcast, @default, @default, @remote, @null, @bcast]}, &(0x7f0000000380)=0x48) write(r5, &(0x7f0000000400)="814a4a326889f925bc0e8437f9678d37955969dcd74d5e7a7300f3aa04adeab03b5457969be1cf13ff4b35653362a7d5a3dfeff28d6689d58dac0fc138e2aceecf0b484061563eaa696ceb842f6f7be2b39b14ba8c221dbc3f5dbebafda04ccd630db8620baa996fdef5686b0c2a62cf32ae949c285fa379761f646884e61e544d26e93cff73", 0x86) 05:29:10 executing program 1 (fault-call:0 fault-nth:31): syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000140)='./file0\x00', 0xff, 0x1, &(0x7f0000000000)=[{&(0x7f0000000180)="8da4363ac0ed0000000000000001004d0100000000000000000000000009000000000000009748aeb81e1b00920efd9a0000010000000000098cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 05:29:10 executing program 0: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) 05:29:10 executing program 5: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = syz_open_dev$mouse(&(0x7f0000000100)='/dev/input/mouse#\x00', 0x80, 0x10400) ioctl$VT_WAITACTIVE(r0, 0x5607) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000013c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r1, 0x40045431, &(0x7f0000000080)) r2 = syz_open_pts(r1, 0x0) ioctl$TIOCSETD(r2, 0x5423, &(0x7f00000000c0)=0x5) ioctl$TCSETSF(r2, 0x5412, &(0x7f0000000000)={0xffffffc0}) r3 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = fcntl$dupfd(r3, 0x0, 0xffffffffffffffff) getsockopt$EBT_SO_GET_INIT_INFO(r4, 0x0, 0x82, &(0x7f0000000180)={'broute\x00'}, &(0x7f0000000240)=0x50) ioctl$TIOCSCTTY(r4, 0x540e, 0xffffffff) getsockopt$sock_cred(r4, 0x1, 0x11, 0x0, &(0x7f0000000640)) ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_INFO(r4, 0x40bc5311, &(0x7f0000000140)={0x0, 0x2, 'client1\x00', 0x4, "1770e49872d4bb20", "ba0641a2364bc7baadcc4ae408f024e7c2f92c059d29d5926cba3e367f4f4e97", 0x401, 0x2c8a}) ioctl$KDSIGACCEPT(r2, 0x4b4e, 0x1c) 05:29:10 executing program 3: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) prctl$PR_SET_THP_DISABLE(0x29, 0x0) [ 344.844621] FAULT_INJECTION: forcing a failure. [ 344.844621] name failslab, interval 1, probability 0, space 0, times 0 [ 344.874115] CPU: 0 PID: 23582 Comm: syz-executor.1 Not tainted 4.14.146 #0 [ 344.881173] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 344.881178] Call Trace: [ 344.881198] dump_stack+0x138/0x197 [ 344.881215] should_fail.cold+0x10f/0x159 [ 344.893264] should_failslab+0xdb/0x130 [ 344.893279] kmem_cache_alloc_node_trace+0x280/0x770 [ 344.893294] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 344.915606] __kmalloc_node_track_caller+0x3d/0x80 [ 344.920538] __kmalloc_reserve.isra.0+0x40/0xe0 [ 344.925215] __alloc_skb+0xcf/0x500 [ 344.925226] ? skb_scrub_packet+0x4b0/0x4b0 [ 344.925239] ? netlink_has_listeners+0x20a/0x330 [ 344.925252] kobject_uevent_env+0x781/0xc23 [ 344.933191] kobject_uevent+0x20/0x26 [ 344.933203] lo_ioctl+0x11e7/0x1ce0 [ 344.933215] ? loop_probe+0x160/0x160 [ 344.933225] blkdev_ioctl+0x96b/0x1860 [ 344.933233] ? blkpg_ioctl+0x980/0x980 [ 344.933248] ? __might_sleep+0x93/0xb0 [ 344.933255] ? __fget+0x210/0x370 [ 344.933266] block_ioctl+0xde/0x120 [ 344.933275] ? blkdev_fallocate+0x3b0/0x3b0 [ 344.933284] do_vfs_ioctl+0x7ae/0x1060 [ 344.933294] ? selinux_file_mprotect+0x5d0/0x5d0 [ 344.933305] ? lock_downgrade+0x6e0/0x6e0 [ 344.942367] ? ioctl_preallocate+0x1c0/0x1c0 [ 344.942381] ? __fget+0x237/0x370 [ 344.942397] ? security_file_ioctl+0x89/0xb0 [ 344.942407] SyS_ioctl+0x8f/0xc0 [ 344.942414] ? do_vfs_ioctl+0x1060/0x1060 [ 344.942426] do_syscall_64+0x1e8/0x640 [ 344.942433] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 344.942448] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 344.942455] RIP: 0033:0x459897 [ 344.942464] RSP: 002b:00007f617e384a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 345.036393] RAX: ffffffffffffffda RBX: 0000000020000028 RCX: 0000000000459897 [ 345.043649] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 345.051009] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 345.058276] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 345.065534] R13: 00000000004c8b25 R14: 00000000004dfbc8 R15: 0000000000000003 [ 345.081737] mkiss: ax0: crc mode is auto. 05:29:10 executing program 4: r0 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x1, 0x2) ioctl$VIDIOC_S_FREQUENCY(r0, 0x402c5639, &(0x7f0000000080)={0x80000001, 0x1}) r1 = syz_open_dev$vcsa(&(0x7f0000000300)='/dev/vcsa#\x00', 0x80000001, 0x20000) getsockopt$inet6_IPV6_IPSEC_POLICY(r1, 0x29, 0x22, 0x0, &(0x7f0000000780)) r2 = dup3(r1, 0xffffffffffffffff, 0x80000) bpf$BPF_MAP_FREEZE(0x16, &(0x7f0000000180)=r2, 0x4) r3 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000000000)={0x0, 0x0}, &(0x7f0000000040)=0xc) keyctl$get_persistent(0x7, r4, 0x0) r5 = syz_open_dev$vbi(0x0, 0x2, 0x2) r6 = getgid() write$FUSE_ENTRY(r5, &(0x7f0000000200)={0x90, 0x0, 0x0, {0x6, 0x3, 0xf24, 0x0, 0x5, 0x0, {0x0, 0x0, 0x9, 0x0, 0x5, 0x5, 0x9, 0x0, 0x0, 0x3, 0x0, 0x0, r6, 0x1, 0x1}}}, 0x90) write$P9_RGETATTR(r1, &(0x7f00000000c0)={0xa0, 0x19, 0x2, {0xc4, {0x82, 0x2, 0x5}, 0x10, r4, r6, 0x7fffffff, 0x401, 0xe4, 0x1200000000, 0xee, 0x7, 0x100000001, 0x9, 0x8000, 0x7, 0x0, 0x5, 0x8001, 0x1, 0xfffffffffffffffb}}, 0xa0) 05:29:11 executing program 4: r0 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x1, 0x2) r1 = socket$alg(0x26, 0x5, 0x0) bind$alg(r1, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'ghash-generic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, 0x0, 0x0) dup3(r1, 0xffffffffffffffff, 0x80000) r2 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x4, 0x4182) r3 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) pwritev(r3, &(0x7f0000000340)=[{&(0x7f0000000140)='!', 0x1}], 0x1, 0x81805) r4 = dup2(r3, r3) ioctl$SG_GET_RESERVED_SIZE(r3, 0x2272, 0x0) ioctl$LOOP_CHANGE_FD(r2, 0x4c00, r3) write$P9_RLERRORu(r4, &(0x7f00000003c0)=ANY=[@ANYBLOB="1400000007650d6c24ed92c8397291335cf616f0010200070062726f0c62077600b365a0a59e7eea"], 0x28) getsockopt$sock_cred(r4, 0x1, 0x11, 0x0, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(r4, 0x29, 0x23, &(0x7f00000007c0)={{{@in=@remote, @in6=@initdev}}, {{@in=@empty}, 0x0, @in6=@ipv4}}, &(0x7f00000008c0)=0x304) sendfile(r4, r2, 0x0, 0x2400003e) r5 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r6 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/vga_arbiter\x00', 0x42480, 0x0) r7 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r7, 0x84, 0x6e, &(0x7f0000961fe4)=[@in={0x2, 0x0, @dev}], 0x10) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r7, 0x84, 0x1d, &(0x7f00000001c0)={0x1, [0x0]}, &(0x7f00000000c0)=0xfe10) getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r7, 0x84, 0x66, &(0x7f0000000040)={r8}, &(0x7f0000000140)=0x8) getsockopt$inet_sctp_SCTP_PEER_AUTH_CHUNKS(0xffffffffffffffff, 0x84, 0x1a, &(0x7f0000000400)={r8, 0xf9, "e91f814a8f891ddcede13caa2d508ea512b1d233193e74d60a383f6cfdb45eef5592a85258ff0fe943c0bf13740cd0c06f4e6667728f4eb39f1cc2ff89c0ead14c837a6f2ebfdc713a7578be90a3bb2e31c2e564c5d875fb37eb74e5b7679d2efe697ce1178d7b128e13f0849efe9f1e44f7c00aa41d733b9e11042a82085e4478a20266cced334713489931ce9510c43188c8cc23048d0174dfe8969e10845b613a762fe10c761198bf1c7326267c1523ce335dbe92e9b766443a705ac09c7e68c1a88a77140e96425f5f17763f8a497855cbf1414f1bd0209e34308c0a6ddaf00335619962f7531e19f2950927fd3c25a2064217effe55b9"}, &(0x7f0000000540)=0x101) setsockopt$inet_sctp_SCTP_PR_SUPPORTED(r6, 0x84, 0x71, &(0x7f0000000580)={r9, 0x10000}, 0x8) r10 = fcntl$dupfd(r5, 0x0, 0xffffffffffffffff) getsockopt$EBT_SO_GET_INIT_INFO(r10, 0x0, 0x82, &(0x7f0000000180)={'broute\x00'}, &(0x7f0000000240)=0x50) ioctl$TIOCSCTTY(r10, 0x540e, 0xffffffff) getsockopt$sock_cred(r10, 0x1, 0x11, 0x0, &(0x7f0000000640)) ioctl$VIDIOC_S_FREQUENCY(r10, 0x402c5639, &(0x7f0000000180)={0x80000, 0x1, 0xfffffff7}) pipe2(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}, 0x800) ioctl$FIGETBSZ(r0, 0x2, &(0x7f0000000280)) ioctl$VIDIOC_SUBSCRIBE_EVENT(r11, 0x4020565a, &(0x7f0000000080)={0x8001005, 0x66, 0x3}) ioctl$BLKTRACESTOP(r0, 0x1275, 0x0) r12 = socket$alg(0x26, 0x5, 0x0) bind$alg(r12, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'ghash-generic\x00'}, 0x58) ioctl$sock_ifreq(0xffffffffffffffff, 0x0, &(0x7f0000000100)={'batadv0\x00', @ifru_addrs=@generic={0x5, "83fc78208ada4de1134666a395f1"}}) fcntl$F_GET_FILE_RW_HINT(r12, 0x40d, &(0x7f00000000c0)) 05:29:11 executing program 2: r0 = syz_open_dev$vcsa(&(0x7f0000000300)='/dev/vcsa#\x00', 0x80000001, 0x20000) getsockopt$inet6_IPV6_IPSEC_POLICY(r0, 0x29, 0x22, 0x0, &(0x7f0000000780)) setsockopt$TIPC_MCAST_BROADCAST(r0, 0x10f, 0x85) syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) 05:29:11 executing program 1 (fault-call:0 fault-nth:32): syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000140)='./file0\x00', 0xff, 0x1, &(0x7f0000000000)=[{&(0x7f0000000180)="8da4363ac0ed0000000000000001004d0100000000000000000000000009000000000000009748aeb81e1b00920efd9a0000010000000000098cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 05:29:11 executing program 0: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) 05:29:11 executing program 3: keyctl$session_to_parent(0x12) syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'ghash-generic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, 0x0, 0x0) r1 = accept4$unix(0xffffffffffffffff, &(0x7f00000000c0), &(0x7f0000000140)=0x6e, 0x1000) sendmsg$sock(r0, &(0x7f0000001380)={&(0x7f0000000180)=@pppol2tpv3in6={0x18, 0x1, {0x0, r1, 0x2, 0x0, 0x1, 0x1, {0xa, 0x4e23, 0x7, @loopback, 0x4}}}, 0x80, &(0x7f0000001280)=[{&(0x7f0000000280)="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", 0x1000}], 0x1, &(0x7f00000012c0)=[@txtime={{0x18, 0x1, 0x3d, 0x800}}, @txtime={{0x18, 0x1, 0x3d, 0x6}}, @mark={{0x14, 0x1, 0x24, 0x6}}, @timestamping={{0x14, 0x1, 0x25, 0xfffffffe}}, @txtime={{0x18, 0x1, 0x3d, 0x7}}, @timestamping={{0x14, 0x1, 0x25, 0xfffffffa}}, @timestamping={{0x14, 0x1, 0x25, 0x40}}], 0xa8}, 0x20048050) [ 345.475611] FAULT_INJECTION: forcing a failure. [ 345.475611] name failslab, interval 1, probability 0, space 0, times 0 [ 345.512897] CPU: 0 PID: 23637 Comm: syz-executor.1 Not tainted 4.14.146 #0 [ 345.521360] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 345.530719] Call Trace: [ 345.533329] dump_stack+0x138/0x197 [ 345.536975] should_fail.cold+0x10f/0x159 [ 345.542190] should_failslab+0xdb/0x130 [ 345.546176] kmem_cache_alloc_node+0x287/0x780 [ 345.550779] __alloc_skb+0x9c/0x500 [ 345.554413] ? skb_scrub_packet+0x4b0/0x4b0 [ 345.558746] ? netlink_has_listeners+0x20a/0x330 [ 345.563512] kobject_uevent_env+0x781/0xc23 [ 345.567852] kobject_uevent+0x20/0x26 [ 345.571661] lo_ioctl+0x11e7/0x1ce0 [ 345.575300] ? loop_probe+0x160/0x160 [ 345.579201] blkdev_ioctl+0x96b/0x1860 [ 345.583095] ? blkpg_ioctl+0x980/0x980 [ 345.587432] ? __might_sleep+0x93/0xb0 [ 345.591335] ? __fget+0x210/0x370 [ 345.594807] block_ioctl+0xde/0x120 [ 345.598442] ? blkdev_fallocate+0x3b0/0x3b0 [ 345.602774] do_vfs_ioctl+0x7ae/0x1060 [ 345.606669] ? selinux_file_mprotect+0x5d0/0x5d0 [ 345.611432] ? lock_downgrade+0x6e0/0x6e0 [ 345.615595] ? ioctl_preallocate+0x1c0/0x1c0 [ 345.620018] ? __fget+0x237/0x370 05:29:11 executing program 5: syz_mount_image$btrfs(&(0x7f0000000540), &(0x7f0000000500)='./file0\x00', 0x0, 0xd35, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = syz_open_dev$vcsa(&(0x7f0000000300)='/dev/vcsa#\x00', 0x80000001, 0x20000) getsockopt$inet6_IPV6_IPSEC_POLICY(r0, 0x29, 0x22, 0x0, &(0x7f0000000780)) openat$full(0xffffffffffffff9c, &(0x7f0000000140)='/dev/full\x00', 0x400000, 0x0) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = fcntl$dupfd(r1, 0x0, 0xffffffffffffffff) getsockopt$EBT_SO_GET_INIT_INFO(r2, 0x0, 0x82, &(0x7f0000000180)={'broute\x00'}, &(0x7f0000000240)=0x50) r3 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r3, 0x84, 0x6e, &(0x7f0000961fe4)=[@in={0x2, 0x0, @dev}], 0x10) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r3, 0x84, 0x1d, &(0x7f00000001c0)={0x1, [0x0]}, &(0x7f00000000c0)=0xfe10) getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r3, 0x84, 0x66, &(0x7f0000000040)={r4}, &(0x7f0000000140)=0x8) getsockopt$inet_sctp_SCTP_GET_ASSOC_STATS(0xffffffffffffffff, 0x84, 0x70, &(0x7f00000003c0)={r4, @in6={{0xa, 0x4e23, 0x1, @ipv4={[], [], @remote}, 0x10001}}, [0x0, 0x0, 0xffffffffffffff09, 0x2, 0x1, 0x20, 0x7, 0x1000, 0x3f, 0x1000, 0x20, 0x9, 0x40, 0x0, 0x7]}, &(0x7f00000000c0)=0x100) setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(0xffffffffffffffff, 0x84, 0x7c, &(0x7f00000004c0)={r5, 0x9, 0x4}, 0x8) ioctl$TIOCSCTTY(r2, 0x540e, 0xffffffff) getsockopt$sock_cred(r2, 0x1, 0x11, 0x0, &(0x7f0000000640)) getsockopt$inet_IP_XFRM_POLICY(r2, 0x0, 0x11, &(0x7f0000000280)={{{@in=@multicast2, @in=@empty}}, {{@in6}, 0x0, @in6=@mcast1}}, &(0x7f0000000180)=0xe8) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f0000000100)='9p\x00', 0x30000, &(0x7f00000004c0)=ANY=[]) [ 345.623484] ? security_file_ioctl+0x89/0xb0 [ 345.627902] SyS_ioctl+0x8f/0xc0 [ 345.631275] ? do_vfs_ioctl+0x1060/0x1060 [ 345.635431] do_syscall_64+0x1e8/0x640 [ 345.639323] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 345.644181] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 345.649369] RIP: 0033:0x459897 [ 345.652567] RSP: 002b:00007f617e384a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 345.660289] RAX: ffffffffffffffda RBX: 0000000020000028 RCX: 0000000000459897 [ 345.667567] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 345.674939] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 345.682213] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 345.689514] R13: 00000000004c8b25 R14: 00000000004dfbc8 R15: 0000000000000003 05:29:11 executing program 0: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) 05:29:11 executing program 2: r0 = syz_open_dev$mice(&(0x7f0000000100)='/dev/input/mice\x00', 0x0, 0x0) write$FUSE_GETXATTR(r0, &(0x7f0000000140)={0x18, 0xfffffffffffffffe, 0x2, {0x80000000}}, 0x18) syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)) 05:29:11 executing program 1 (fault-call:0 fault-nth:33): syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000140)='./file0\x00', 0xff, 0x1, &(0x7f0000000000)=[{&(0x7f0000000180)="8da4363ac0ed0000000000000001004d0100000000000000000000000009000000000000009748aeb81e1b00920efd9a0000010000000000098cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 05:29:11 executing program 3: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f0000000000), 0x0, 0x0) r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000000)='/dev/rfkill\x00', 0x80000, 0x0) ioctl$FITRIM(r0, 0xc0185879, &(0x7f00000000c0)={0x3f, 0x7f, 0x8}) 05:29:11 executing program 0: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) [ 345.958913] FAULT_INJECTION: forcing a failure. [ 345.958913] name failslab, interval 1, probability 0, space 0, times 0 [ 345.985111] CPU: 0 PID: 23687 Comm: syz-executor.1 Not tainted 4.14.146 #0 [ 345.992163] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 346.001622] Call Trace: [ 346.004216] dump_stack+0x138/0x197 [ 346.008619] should_fail.cold+0x10f/0x159 [ 346.012859] should_failslab+0xdb/0x130 [ 346.016820] kmem_cache_alloc_node+0x287/0x780 [ 346.021398] __alloc_skb+0x9c/0x500 [ 346.025006] ? skb_scrub_packet+0x4b0/0x4b0 [ 346.029310] ? netlink_has_listeners+0x20a/0x330 [ 346.034052] kobject_uevent_env+0x781/0xc23 [ 346.038380] kobject_uevent+0x20/0x26 [ 346.042192] lo_ioctl+0x11e7/0x1ce0 [ 346.045820] ? loop_probe+0x160/0x160 [ 346.049604] blkdev_ioctl+0x96b/0x1860 [ 346.053472] ? blkpg_ioctl+0x980/0x980 [ 346.057355] ? __might_sleep+0x93/0xb0 [ 346.061246] ? __fget+0x210/0x370 [ 346.064687] block_ioctl+0xde/0x120 [ 346.068295] ? blkdev_fallocate+0x3b0/0x3b0 [ 346.073297] do_vfs_ioctl+0x7ae/0x1060 [ 346.077215] ? selinux_file_mprotect+0x5d0/0x5d0 [ 346.081952] ? lock_downgrade+0x6e0/0x6e0 [ 346.086104] ? ioctl_preallocate+0x1c0/0x1c0 [ 346.090500] ? __fget+0x237/0x370 [ 346.093941] ? security_file_ioctl+0x89/0xb0 [ 346.098334] SyS_ioctl+0x8f/0xc0 [ 346.101682] ? do_vfs_ioctl+0x1060/0x1060 [ 346.105829] do_syscall_64+0x1e8/0x640 [ 346.109705] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 346.114559] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 346.119738] RIP: 0033:0x459897 [ 346.122913] RSP: 002b:00007f617e384a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 346.130609] RAX: ffffffffffffffda RBX: 0000000020000028 RCX: 0000000000459897 [ 346.137886] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 346.145141] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 346.152421] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 346.160371] R13: 00000000004c8b25 R14: 00000000004dfbc8 R15: 0000000000000003 05:29:12 executing program 1 (fault-call:0 fault-nth:34): syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000140)='./file0\x00', 0xff, 0x1, &(0x7f0000000000)=[{&(0x7f0000000180)="8da4363ac0ed0000000000000001004d0100000000000000000000000009000000000000009748aeb81e1b00920efd9a0000010000000000098cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 05:29:12 executing program 4: r0 = getpid() tkill(r0, 0x9) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={r0, 0xffffffffffffffff, 0x0, 0xc, &(0x7f0000000040)='/dev/radio#\x00', 0xffffffffffffffff}, 0x30) setpriority(0x0, r1, 0xdc) r2 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x1, 0x2) ioctl$VIDIOC_S_FREQUENCY(r2, 0x402c5639, &(0x7f0000000180)={0x0, 0x1}) 05:29:12 executing program 0: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) 05:29:12 executing program 2: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="8da4363ac0ed0000000000000001004d0100000000000000000000000000fec3530000fff6f2a2299748ae00000000018cffffff0000004d00"/72, 0x48, 0x10001}], 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = openat$selinux_avc_cache_stats(0xffffffffffffff9c, &(0x7f0000000140)='/selinux/avc/cache_stats\x00', 0x0, 0x0) ioctl$DRM_IOCTL_CONTROL(r1, 0x40086414, &(0x7f0000000180)={0x3, 0x4}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) 05:29:12 executing program 3: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) statfs(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)=""/99) 05:29:12 executing program 4: r0 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x1, 0x2) r1 = syz_open_dev$midi(&(0x7f0000000040)='/dev/midi#\x00', 0x81, 0x2160c1) fallocate(r1, 0x31, 0x2, 0x3) ioctl$VIDIOC_S_FREQUENCY(r0, 0x402c5639, &(0x7f0000000180)={0x0, 0x1}) [ 346.473852] FAULT_INJECTION: forcing a failure. [ 346.473852] name failslab, interval 1, probability 0, space 0, times 0 [ 346.504216] CPU: 1 PID: 23717 Comm: syz-executor.1 Not tainted 4.14.146 #0 [ 346.511711] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 346.521076] Call Trace: [ 346.523763] dump_stack+0x138/0x197 [ 346.527410] should_fail.cold+0x10f/0x159 [ 346.531566] should_failslab+0xdb/0x130 [ 346.535552] kmem_cache_alloc_node_trace+0x280/0x770 [ 346.540668] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 346.546139] __kmalloc_node_track_caller+0x3d/0x80 [ 346.551075] __kmalloc_reserve.isra.0+0x40/0xe0 [ 346.555750] __alloc_skb+0xcf/0x500 [ 346.559397] ? skb_scrub_packet+0x4b0/0x4b0 [ 346.563722] ? netlink_has_listeners+0x20a/0x330 [ 346.563738] kobject_uevent_env+0x781/0xc23 [ 346.563758] kobject_uevent+0x20/0x26 [ 346.572826] lo_ioctl+0x11e7/0x1ce0 [ 346.572840] ? loop_probe+0x160/0x160 [ 346.572852] blkdev_ioctl+0x96b/0x1860 [ 346.572861] ? blkpg_ioctl+0x980/0x980 [ 346.572878] ? __might_sleep+0x93/0xb0 [ 346.572886] ? __fget+0x210/0x370 [ 346.572898] block_ioctl+0xde/0x120 [ 346.572906] ? blkdev_fallocate+0x3b0/0x3b0 [ 346.572915] do_vfs_ioctl+0x7ae/0x1060 [ 346.572928] ? selinux_file_mprotect+0x5d0/0x5d0 [ 346.615849] ? lock_downgrade+0x6e0/0x6e0 [ 346.620360] ? ioctl_preallocate+0x1c0/0x1c0 [ 346.625178] ? __fget+0x237/0x370 [ 346.628701] ? security_file_ioctl+0x89/0xb0 [ 346.633105] SyS_ioctl+0x8f/0xc0 [ 346.636593] ? do_vfs_ioctl+0x1060/0x1060 [ 346.640728] do_syscall_64+0x1e8/0x640 [ 346.644807] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 346.649652] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 346.654980] RIP: 0033:0x459897 [ 346.658179] RSP: 002b:00007f617e384a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 346.666407] RAX: ffffffffffffffda RBX: 0000000020000028 RCX: 0000000000459897 [ 346.673662] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 346.680913] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 346.688165] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 346.695417] R13: 00000000004c8b25 R14: 00000000004dfbc8 R15: 0000000000000003 05:29:12 executing program 4: r0 = syz_open_dev$radio(&(0x7f0000000040)='/dev/radio#\x00', 0x1, 0x2) ioctl$VIDIOC_S_FREQUENCY(r0, 0x402c5639, &(0x7f0000000180)={0x0, 0x1}) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f00000001c0)={{{@in6=@loopback, @in6=@ipv4={[], [], @local}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@initdev}, 0x0, @in6=@loopback}}, &(0x7f0000000100)=0xe8) r2 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x4, 0x4182) r3 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) pwritev(r3, &(0x7f0000000340)=[{&(0x7f0000000140)='!', 0x1}], 0x1, 0x81805) r4 = dup2(r3, r3) ioctl$SG_GET_RESERVED_SIZE(r3, 0x2272, 0x0) ioctl$LOOP_CHANGE_FD(r2, 0x4c00, r3) write$P9_RLERRORu(r4, &(0x7f00000003c0)=ANY=[@ANYBLOB="1400000007650d6c24ed92c8397291335cf616f0010200070062726f0c62077600b365a0a59e7eea"], 0x28) getsockopt$sock_cred(r4, 0x1, 0x11, 0x0, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(r4, 0x29, 0x23, &(0x7f00000007c0)={{{@in=@remote, @in6=@initdev}}, {{@in=@empty}, 0x0, @in6=@ipv4}}, &(0x7f00000008c0)=0xe8) sendfile(r4, r2, 0x0, 0x2400003e) getsockopt$inet6_IPV6_IPSEC_POLICY(r4, 0x29, 0x22, &(0x7f00000002c0)={{{@in6=@local, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@mcast1}, 0x0, @in6=@mcast2}}, &(0x7f0000000140)=0xe8) mount$9p_unix(&(0x7f0000000000)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='9p\x00', 0x20, &(0x7f00000003c0)={'trans=unix,', {[{@uname={'uname'}}, {@posixacl='posixacl'}, {@msize={'msize', 0x3d, 0x5}}, {@aname={'aname', 0x3d, 'em0['}}, {@uname={'uname', 0x3d, '/dev/radio#\x00'}}, {@access_user='access=user'}, {@dfltuid={'dfltuid', 0x3d, r1}}, {@uname={'uname', 0x3d, '/dev/radio#\x00'}}], [{@fsmagic={'fsmagic', 0x3d, 0x3}}, {@fsuuid={'fsuuid', 0x3d, {[0x33, 0x54, 0x7be719ae63375d37, 0x43, 0x30, 0x64, 0x61, 0x62], 0x2d, [0x32, 0x30, 0x32, 0xa293e42fb7bdbd3a], 0x2d, [0x50, 0x79, 0x7e5d78c8b9ef53d2, 0x30], 0x2d, [0x38, 0x33, 0x65, 0x35], 0x2d, [0x63, 0x30, 0x61, 0x37, 0x32, 0x35, 0x33, 0x39]}}}, {@subj_role={'subj_role', 0x3d, 'proc'}}, {@obj_type={'obj_type', 0x3d, '/.}'}}, {@fowner_gt={'fowner>', r5}}, {@dont_measure='dont_measure'}, {@hash='hash'}]}}) 05:29:12 executing program 5: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x7, &(0x7f0000000640)=[{&(0x7f0000000180)="80277403da1434a1c806b8cdafc3c13a11fdef8ad4331229e257fdb8cf1a882cc6c266c34f25574ce99af696fcde80102668debd8eaab73ac032c2914f7b60a857ff2b6c0399da9b1481b4ab58f768257114e40b", 0x54, 0x2}, {&(0x7f0000000700)="70c49456e2a4098f261af899ac9fb0c783a77afce2dfc909a0fe04429aa94c3322eb6dd9f96d814777d23192cdc4b377343332c87222b9c652d4e9bb9862eaa95d3cc8caa856fd4644502ab000"/86, 0x56, 0x8}, {&(0x7f0000000280)="d72a15b02912b1252a320b90be52c15ba0e1b058788046b68163552e8d553832f1ed630dde46f12ad7e59e1e8dbd9333e305ae21074edf16883ca3b299a4e8adf7e67418ed6f293e8309d4a824302cdaf4", 0x51, 0x4551}, {&(0x7f0000000300)="d32dcce7b5b7fe5dd8fc3c8b200a2517a92096f2cdd29ed8f7b0c72f7e8eff6c0aaa4701f8498f494f4e448e3419259627cb9e96bcb1266e9796b729c2e3dc3aa80d038c8a988061b3afb26646d5b71c588e0946ee3e7c76be993309fab02c3ab413f59ef900ab7833976017b8d67124aa", 0x71, 0x1}, {&(0x7f0000000380)="f4dd269ed868934cbf07eae4402837e366bdeee39e743119957a0cadc9b4d3068c2d9660bfa5f5df1a8ac5322ea54051cdfe9aa608b822ec752cde0d8e8c7d1c7cb5be07c20b0f4166880c7e84d2c247322130cce78a82b5898501be1bc2e87aa3cd63cbc2716ae21193373da44c49d4779dcf0703a59d823f57b5d1c6568d0463848550a24a43a3a741a8e2db8b8706f13207ab7084305ef65d6e078dbec34040fede85b8e44fc91187cd0746f44a6c44a97226a870baa64e76a79d9028ff1ca18e8608c6b1c6fe435d5cc0876f8c5545d9a97f6d90162d509c9ef91f76b633d7276920e9ec", 0xe6, 0x7f}, {&(0x7f0000000480)="d0962394cee43f63966bf356c91a33a5fa59c6db07fcc9719463bc40976b14b4bc4ed39ab54890a2547e81983a60a0d08ee2912af27c780f469b4a2665a432d9451a7038f9bbfdcd086663fa8ac68488e55b5c24b49ea265c19d3db086888b6e5de68555bc0c04a5b98e99aaf8eb5dcb30c8799902fe7a58feba53e96c1855711d0b6865c5b64bcfa7aadc3c8e3aeb909aff27956b29f4ec76d41782cb82ef693f2a8eb791e0619d05ff4822593a540b", 0xb0, 0x5a35}, {&(0x7f0000000540)="4bd2146b04b56a17e37da346a2e3fdf58d7c284d422983cde615d84115a254465c1bb67d97285a24985bb0ebe2f2d938292587e33b1d9294f9d1f140bde31506539d56f773f2bef7318f38930c54136395b277f9ef77ff15b1933beee9ab97633ce6136a82e9898ddf009e24940f2a206d670502aa6be511b776eff19da6e1091a189c135083f52967e10ed507198c8a88a3db63cb0c4f152165336f11c3a66063a502fa1be8fd133395d9496a2b6b38c944291d71633a0d232e24a05165c0797eeb20234132eeb75c37773093ed78c600b220eb5cfe4ba2c8256bac4ae931700e6a337b3d5d989a", 0xe8, 0x80000001}], 0x101021, 0x0) lsetxattr$security_evm(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='security.evm\x00', &(0x7f0000000140)=@md5={0x1, "ca5b505cbf8ac9908651d6c0666744c1"}, 0x11, 0x1) 05:29:12 executing program 0: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x0) 05:29:12 executing program 1 (fault-call:0 fault-nth:35): syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000140)='./file0\x00', 0xff, 0x1, &(0x7f0000000000)=[{&(0x7f0000000180)="8da4363ac0ed0000000000000001004d0100000000000000000000000009000000000000009748aeb81e1b00920efd9a0000010000000000098cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 05:29:12 executing program 5: r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x4, 0x4182) r1 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) pwritev(r1, &(0x7f0000000340)=[{&(0x7f0000000140)='!', 0x1}], 0x1, 0x81805) r2 = dup2(r1, r1) ioctl$SG_GET_RESERVED_SIZE(r1, 0x2272, 0x0) ioctl$LOOP_CHANGE_FD(r0, 0x4c00, r1) write$P9_RLERRORu(r2, &(0x7f00000003c0)=ANY=[@ANYBLOB="1400000007650d6c24ed92c8397291335cf616f0010200070062726f0c62077600b365a0a59e7eea"], 0x28) getsockopt$sock_cred(r2, 0x1, 0x11, 0x0, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f00000007c0)={{{@in=@remote, @in6=@initdev}}, {{@in=@empty}, 0x0, @in6=@ipv4}}, &(0x7f00000008c0)=0xe8) sendfile(r2, r0, 0x0, 0x2400003e) setsockopt$inet_sctp_SCTP_RECVNXTINFO(r2, 0x84, 0x21, &(0x7f00000000c0)=0x4c3, 0x179) syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 05:29:12 executing program 4: r0 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$alg(0x26, 0x5, 0x0) bind$alg(r1, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'ghash-generic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, 0x0, 0x0) r2 = fcntl$dupfd(r0, 0x0, r1) getsockopt$EBT_SO_GET_INIT_INFO(r2, 0x0, 0x82, &(0x7f0000000180)={'broute\x00'}, &(0x7f0000000240)=0x50) ioctl$TIOCSCTTY(r2, 0x540e, 0xffffffff) getsockopt$sock_cred(r2, 0x1, 0x11, 0x0, &(0x7f0000000640)) bind$netrom(r2, &(0x7f00000000c0)={{0x3, @bcast, 0x8}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @bcast, @default, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @null, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @null, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}]}, 0xfffffffffffffe0e) r3 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x1, 0x2) r4 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/vs/sync_ports\x00', 0x2, 0x0) ioctl$EXT4_IOC_MIGRATE(r4, 0x6609) ioctl$TIOCGICOUNT(r3, 0x545d, 0x0) ioctl$VIDIOC_S_FREQUENCY(r3, 0x402c5639, &(0x7f0000000180)={0x0, 0x1}) ioctl$sock_SIOCINQ(r2, 0x541b, &(0x7f0000000140)) write$P9_RCLUNK(0xffffffffffffffff, &(0x7f0000000080)={0x7, 0x79, 0x2}, 0x7) 05:29:12 executing program 2: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x4, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) [ 347.024650] FAULT_INJECTION: forcing a failure. [ 347.024650] name failslab, interval 1, probability 0, space 0, times 0 [ 347.039655] CPU: 0 PID: 23779 Comm: syz-executor.1 Not tainted 4.14.146 #0 [ 347.046710] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 347.056052] Call Trace: [ 347.058717] dump_stack+0x138/0x197 [ 347.062343] should_fail.cold+0x10f/0x159 [ 347.066598] should_failslab+0xdb/0x130 [ 347.070557] kmem_cache_alloc_node_trace+0x280/0x770 [ 347.075651] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 347.081090] __kmalloc_node_track_caller+0x3d/0x80 [ 347.086004] __kmalloc_reserve.isra.0+0x40/0xe0 [ 347.090658] __alloc_skb+0xcf/0x500 [ 347.094269] ? skb_scrub_packet+0x4b0/0x4b0 [ 347.098670] ? netlink_has_listeners+0x20a/0x330 [ 347.103411] kobject_uevent_env+0x781/0xc23 [ 347.107720] kobject_uevent+0x20/0x26 [ 347.111512] lo_ioctl+0x11e7/0x1ce0 [ 347.115137] ? loop_probe+0x160/0x160 [ 347.118928] blkdev_ioctl+0x96b/0x1860 [ 347.122803] ? blkpg_ioctl+0x980/0x980 [ 347.126685] ? __might_sleep+0x93/0xb0 [ 347.130642] ? __fget+0x210/0x370 [ 347.134094] block_ioctl+0xde/0x120 [ 347.137704] ? blkdev_fallocate+0x3b0/0x3b0 [ 347.142008] do_vfs_ioctl+0x7ae/0x1060 [ 347.145882] ? selinux_file_mprotect+0x5d0/0x5d0 [ 347.150633] ? lock_downgrade+0x6e0/0x6e0 [ 347.154765] ? ioctl_preallocate+0x1c0/0x1c0 [ 347.159169] ? __fget+0x237/0x370 [ 347.162612] ? security_file_ioctl+0x89/0xb0 [ 347.167003] SyS_ioctl+0x8f/0xc0 [ 347.170356] ? do_vfs_ioctl+0x1060/0x1060 [ 347.174583] do_syscall_64+0x1e8/0x640 [ 347.178511] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 347.183350] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 347.188525] RIP: 0033:0x459897 [ 347.191700] RSP: 002b:00007f617e384a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 347.199393] RAX: ffffffffffffffda RBX: 0000000020000028 RCX: 0000000000459897 [ 347.206773] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 347.214049] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 347.221304] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 347.228558] R13: 00000000004c8b25 R14: 00000000004dfbc8 R15: 0000000000000003 05:29:13 executing program 3: socket$packet(0x11, 0x2, 0x300) setxattr$security_selinux(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='security.selinux\x00', &(0x7f00000001c0)='system_u:object_r:su_exec_t:s0\x00', 0x1f, 0x7) r0 = syz_open_dev$midi(&(0x7f00000000c0)='/dev/midi#\x00', 0x3, 0x0) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000100)={0x3, {0x1f, 0x5, 0x8, 0x7, 0x1, 0x7}}) syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 05:29:13 executing program 1 (fault-call:0 fault-nth:36): syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000140)='./file0\x00', 0xff, 0x1, &(0x7f0000000000)=[{&(0x7f0000000180)="8da4363ac0ed0000000000000001004d0100000000000000000000000009000000000000009748aeb81e1b00920efd9a0000010000000000098cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 05:29:13 executing program 0: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x0) [ 347.495066] FAULT_INJECTION: forcing a failure. [ 347.495066] name failslab, interval 1, probability 0, space 0, times 0 [ 347.527620] CPU: 0 PID: 23816 Comm: syz-executor.1 Not tainted 4.14.146 #0 [ 347.534760] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 347.544109] Call Trace: [ 347.546691] dump_stack+0x138/0x197 [ 347.550327] should_fail.cold+0x10f/0x159 [ 347.554511] should_failslab+0xdb/0x130 [ 347.558496] kmem_cache_alloc_node_trace+0x280/0x770 [ 347.563614] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 347.569084] __kmalloc_node_track_caller+0x3d/0x80 [ 347.574121] __kmalloc_reserve.isra.0+0x40/0xe0 [ 347.578807] __alloc_skb+0xcf/0x500 [ 347.582443] ? skb_scrub_packet+0x4b0/0x4b0 [ 347.586777] ? netlink_has_listeners+0x20a/0x330 05:29:13 executing program 4: r0 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x1, 0x2) ioctl$VIDIOC_S_FREQUENCY(r0, 0x402c5639, &(0x7f0000000180)={0x0, 0x1}) r1 = socket$alg(0x26, 0x5, 0x0) bind$alg(r1, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'ghash-generic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, 0x0, 0x0) r2 = getpid() tkill(r2, 0x9) r3 = syz_open_dev$dspn(&(0x7f0000000100)='/dev/dsp#\x00', 0xfffffffffffffffc, 0x100) write$selinux_attr(r3, &(0x7f0000000140)='system_u:object_r:textrel_shlib_t:s0\x00', 0x25) r4 = getpid() tkill(r4, 0x9) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000740)={0xffffffffffffffff, 0xc0, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, 0x10) openat$apparmor_thread_current(0xffffffffffffff9c, &(0x7f0000000200)='/proc/thread-self/attr/current\x00', 0x2, 0x0) socket$inet6_sctp(0xa, 0x5, 0x84) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000000c0)={r4, 0xffffffffffffffff, 0x0, 0x6, &(0x7f0000000080)='ramfs\x00', r5}, 0x30) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={r2, r0, 0x0, 0x8, &(0x7f0000000040)='trusted\x00', r5}, 0x30) setsockopt$inet_sctp_SCTP_AUTOCLOSE(r0, 0x84, 0x4, &(0x7f00000001c0)=0x1ff, 0x4) fcntl$setown(r1, 0x8, r6) 05:29:13 executing program 4: r0 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x1, 0x2) ioctl$SNDRV_SEQ_IOCTL_PVERSION(0xffffffffffffffff, 0x80045300, &(0x7f0000000040)) ioctl$VIDIOC_S_FREQUENCY(r0, 0x402c5639, &(0x7f0000000180)={0x0, 0x1}) [ 347.591600] kobject_uevent_env+0x781/0xc23 [ 347.595940] kobject_uevent+0x20/0x26 [ 347.599755] lo_ioctl+0x11e7/0x1ce0 [ 347.603394] ? loop_probe+0x160/0x160 [ 347.607202] blkdev_ioctl+0x96b/0x1860 [ 347.611105] ? blkpg_ioctl+0x980/0x980 [ 347.615026] ? __might_sleep+0x93/0xb0 [ 347.618923] ? __fget+0x210/0x370 [ 347.622385] block_ioctl+0xde/0x120 [ 347.626013] ? blkdev_fallocate+0x3b0/0x3b0 [ 347.630342] do_vfs_ioctl+0x7ae/0x1060 [ 347.634231] ? selinux_file_mprotect+0x5d0/0x5d0 [ 347.639007] ? lock_downgrade+0x6e0/0x6e0 [ 347.643154] ? ioctl_preallocate+0x1c0/0x1c0 [ 347.647637] ? __fget+0x237/0x370 [ 347.651091] ? security_file_ioctl+0x89/0xb0 [ 347.655523] SyS_ioctl+0x8f/0xc0 [ 347.658874] ? do_vfs_ioctl+0x1060/0x1060 [ 347.663013] do_syscall_64+0x1e8/0x640 [ 347.666913] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 347.672117] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 347.677300] RIP: 0033:0x459897 [ 347.680476] RSP: 002b:00007f617e384a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 347.688180] RAX: ffffffffffffffda RBX: 0000000020000028 RCX: 0000000000459897 05:29:13 executing program 2: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x4, 0x4182) r1 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) pwritev(r1, &(0x7f0000000340)=[{&(0x7f0000000140)='!', 0x1}], 0x1, 0x81805) r2 = dup2(r1, r1) ioctl$SG_GET_RESERVED_SIZE(r1, 0x2272, 0x0) ioctl$LOOP_CHANGE_FD(r0, 0x4c00, r1) write$P9_RLERRORu(r2, &(0x7f00000003c0)=ANY=[@ANYBLOB="1400000007650d6c24ed92c8397291335cf616f0010200070062726f0c62077600b365a0a59e7eea"], 0x28) getsockopt$sock_cred(r2, 0x1, 0x11, 0x0, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f00000007c0)={{{@in=@remote, @in6=@initdev}}, {{@in=@empty}, 0x0, @in6=@ipv4}}, &(0x7f00000008c0)=0xe8) sendfile(r2, r0, 0x0, 0x2400003e) ioctl$VIDIOC_G_EDID(r2, 0xc0285628, &(0x7f0000000140)={0x0, 0x3, 0x10001, [], &(0x7f0000000100)}) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) write$P9_RXATTRCREATE(0xffffffffffffffff, &(0x7f00000000c0)={0x7, 0x21, 0x2}, 0x7) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) [ 347.695441] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 347.702959] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 347.710219] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 347.717483] R13: 00000000004c8b25 R14: 00000000004dfbc8 R15: 0000000000000003 05:29:13 executing program 5: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) pread64(0xffffffffffffffff, &(0x7f00000000c0)=""/21, 0x15, 0x0) 05:29:13 executing program 4: r0 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x1, 0x2) ioctl$VIDIOC_S_FREQUENCY(r0, 0x402c5639, &(0x7f0000000180)={0x800000, 0x1, 0x2}) r1 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x4, 0x4182) r2 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) pwritev(r2, &(0x7f0000000340)=[{&(0x7f0000000140)='!', 0x1}], 0x1, 0x81805) r3 = dup2(r2, r2) ioctl$SG_GET_RESERVED_SIZE(r2, 0x2272, 0x0) ioctl$LOOP_CHANGE_FD(r1, 0x4c00, r2) write$P9_RLERRORu(r3, &(0x7f00000003c0)=ANY=[@ANYBLOB="1400000007650d6c24ed92c8397291335cf616f0010200070062726f0c62077600b365a0a59e7eea"], 0x28) getsockopt$sock_cred(r3, 0x1, 0x11, 0x0, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(r3, 0x29, 0x23, &(0x7f00000007c0)={{{@in=@remote, @in6=@initdev}}, {{@in=@empty}, 0x0, @in6=@ipv4}}, &(0x7f00000008c0)=0xe8) sendfile(r3, r1, 0x0, 0x2400003e) ioctl$VIDIOC_DQBUF(r3, 0xc0585611, &(0x7f0000000040)={0x3, 0xc, 0x4, 0x70000, {0x77359400}, {0x4, 0x2, 0x0, 0xb2, 0x81, 0x3, "90076bd6"}, 0x9, 0x0, @offset=0x13b, 0x4}) r4 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcs\x00', 0x20000, 0x0) ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(r4, 0x40505330, &(0x7f0000000100)={{0xb5, 0x3}, {0x8, 0xa}, 0x8000, 0x2, 0x1}) 05:29:13 executing program 0: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x0) 05:29:13 executing program 1 (fault-call:0 fault-nth:37): syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000140)='./file0\x00', 0xff, 0x1, &(0x7f0000000000)=[{&(0x7f0000000180)="8da4363ac0ed0000000000000001004d0100000000000000000000000009000000000000009748aeb81e1b00920efd9a0000010000000000098cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 05:29:13 executing program 3: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) syz_mount_image$bfs(&(0x7f00000000c0)='bfs\x00', &(0x7f0000000100)='./file0\x00', 0x81, 0x3, &(0x7f00000012c0)=[{&(0x7f0000000280)="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", 0x1000, 0xc547}, {&(0x7f0000000140)="8978d8ac49883f6b40a8f8efde907fc3d61aa7bee3a75838d8706c5a1639fc9e31fad2a2b2d2d67132acfff771386f244a8a4f2085fca76947580899ba90d6758986241ccb5aa7580c3a705e9222be63e820803f581e9aa3e7daa2ac909b3ea67daa53474a7364ba62b833df35050595a58b99093ea926bc3ba3c0fb94d3b13332b222d6d003e8906bddd0e1ec77a9a2c655cec1961422e095e4945cdb6c", 0x9e, 0x356}, {&(0x7f0000001340)="4ed3bccd8a31c6fb2c85ec324c5a714902b4b6aa8341c0e071cf76588dc79ca4d038528eb31c86b5fd48ba093d92adb4283df22672df", 0x36, 0x1}], 0x1, 0x0) 05:29:13 executing program 5: r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x4, 0x4182) r1 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) pwritev(r1, &(0x7f0000000340)=[{&(0x7f0000000140)='!', 0x1}], 0x1, 0x81805) r2 = dup2(r1, r1) ioctl$SG_GET_RESERVED_SIZE(r1, 0x2272, 0x0) ioctl$LOOP_CHANGE_FD(r0, 0x4c00, r1) write$P9_RLERRORu(r2, &(0x7f00000003c0)=ANY=[@ANYBLOB="1400000007650d6c24ed92c8397291335cf616f0010200070062726f0c62077600b365a0a59e7eea"], 0x28) getsockopt$sock_cred(r2, 0x1, 0x11, 0x0, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f00000007c0)={{{@in=@remote, @in6=@initdev}}, {{@in=@empty}, 0x0, @in6=@ipv4}}, &(0x7f00000008c0)=0xe8) ioctl$IOC_PR_PREEMPT(r2, 0x401870cb, &(0x7f0000000180)={0x800, 0x3f, 0x0, 0xbd}) sendfile(r2, r0, 0x0, 0x2400003e) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f0000000100)={0x2, [0x0, 0x0]}, &(0x7f0000000140)=0xc) syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r3 = openat$selinux_status(0xffffffffffffff9c, &(0x7f00000000c0)='/selinux/status\x00', 0x0, 0x0) ioctl$UI_SET_LEDBIT(r3, 0x40045569, 0x8) 05:29:13 executing program 4: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'ghash-generic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, 0x0, 0x0) ioctl$EXT4_IOC_MOVE_EXT(0xffffffffffffffff, 0xc028660f, &(0x7f0000000040)={0x0, r0, 0xfff, 0x4, 0x5, 0xbdd}) r1 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x1, 0x2) r2 = syz_open_dev$vcsa(&(0x7f0000000300)='/dev/vcsa#\x00', 0x80000001, 0x20000) getsockopt$inet6_IPV6_IPSEC_POLICY(r2, 0x29, 0x22, 0x0, &(0x7f0000000780)) ioctl$VIDIOC_LOG_STATUS(r2, 0x5646, 0x0) ioctl$VIDIOC_S_FREQUENCY(r1, 0x402c5639, &(0x7f0000000180)={0x0, 0x1}) write$selinux_load(r1, &(0x7f00000001c0)={0xf97cff8c, 0x8, 'SE Linux', "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"}, 0x1010) [ 348.129817] FAULT_INJECTION: forcing a failure. [ 348.129817] name failslab, interval 1, probability 0, space 0, times 0 [ 348.149143] CPU: 1 PID: 23870 Comm: syz-executor.1 Not tainted 4.14.146 #0 [ 348.156208] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 348.165567] Call Trace: [ 348.168166] dump_stack+0x138/0x197 [ 348.171791] should_fail.cold+0x10f/0x159 [ 348.175931] should_failslab+0xdb/0x130 [ 348.179895] kmem_cache_alloc+0x2d7/0x780 [ 348.184026] ? selinux_file_mprotect+0x5d0/0x5d0 [ 348.188764] ? lock_downgrade+0x6e0/0x6e0 [ 348.192931] ? ioctl_preallocate+0x1c0/0x1c0 [ 348.197324] getname_flags+0xcb/0x580 [ 348.201111] SyS_mkdir+0x7e/0x200 [ 348.204547] ? SyS_mkdirat+0x210/0x210 [ 348.208419] ? do_syscall_64+0x53/0x640 [ 348.212771] ? SyS_mkdirat+0x210/0x210 [ 348.216645] do_syscall_64+0x1e8/0x640 [ 348.220517] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 348.225345] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 348.230601] RIP: 0033:0x458e47 [ 348.233773] RSP: 002b:00007f617e384a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 348.241462] RAX: ffffffffffffffda RBX: 0000000020000028 RCX: 0000000000458e47 [ 348.248713] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 0000000020000140 [ 348.255964] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 348.263218] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 348.270484] R13: 00000000004c8b25 R14: 00000000004dfbc8 R15: 0000000000000003 05:29:14 executing program 2: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) getsockopt$sock_linger(r0, 0x1, 0xd, &(0x7f00000000c0), &(0x7f0000000100)=0x8) ioprio_get$uid(0x3, 0xee01) 05:29:14 executing program 1 (fault-call:0 fault-nth:38): syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000140)='./file0\x00', 0xff, 0x1, &(0x7f0000000000)=[{&(0x7f0000000180)="8da4363ac0ed0000000000000001004d0100000000000000000000000009000000000000009748aeb81e1b00920efd9a0000010000000000098cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 05:29:14 executing program 4: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'ghash-generic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, 0x0, 0x0) write$binfmt_elf32(r0, &(0x7f0000000c00)=ANY=[@ANYBLOB="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"/2702], 0xa86) r1 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x1, 0x2) ioctl$VIDIOC_S_FREQUENCY(r1, 0x402c5639, &(0x7f0000000040)={0xa, 0xaee649fbff1b2d70}) r2 = openat$selinux_avc_cache_threshold(0xffffffffffffff9c, &(0x7f0000000b40)='/selinux/avc/cache_threshold\x00', 0x2, 0x0) getsockopt$inet_sctp_SCTP_AUTOCLOSE(r2, 0x84, 0x4, &(0x7f0000000b80), &(0x7f0000000bc0)=0x4) 05:29:14 executing program 0: creat(&(0x7f0000000000)='./file0\x00', 0x0) mount$fuseblk(&(0x7f00000002c0)='/dev/loop0\x00', &(0x7f0000000380)='./file0\x00', &(0x7f0000000140)='fuseblk\x00', 0x0, 0x0) [ 348.483763] FAULT_INJECTION: forcing a failure. [ 348.483763] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 348.495607] CPU: 1 PID: 23899 Comm: syz-executor.1 Not tainted 4.14.146 #0 [ 348.502624] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 348.511987] Call Trace: [ 348.514590] dump_stack+0x138/0x197 [ 348.518235] should_fail.cold+0x10f/0x159 [ 348.522401] __alloc_pages_nodemask+0x1d6/0x7a0 [ 348.527256] ? fs_reclaim_acquire+0x20/0x20 05:29:14 executing program 0: mknod$loop(&(0x7f0000000000)='./file0\x00', 0x0, 0x1) syz_open_dev$vcsa(0x0, 0x0, 0x0) r0 = socket$inet_udplite(0x2, 0x2, 0x88) socket(0x0, 0x80002, 0x0) dup2(r0, 0xffffffffffffffff) r1 = socket$inet_udplite(0x2, 0x2, 0x88) r2 = socket(0xa, 0x80002, 0x0) dup2(r1, r2) setsockopt$inet_int(r2, 0x0, 0xb, &(0x7f00000000c0)=0x1002, 0x4) sendto$inet(r2, 0x0, 0xfd6e, 0x0, &(0x7f0000000000)={0x2, 0x4e20}, 0x10) recvmsg(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x2001) ioctl$FS_IOC_SETVERSION(r2, 0x40047602, &(0x7f00000000c0)=0x1) ioctl$SIOCGSTAMPNS(r0, 0x8907, &(0x7f0000000200)) fremovexattr(r0, &(0x7f0000000080)=@known='trusted.overlay.nlink\x00') perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x10, 0x80000, 0xff) perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb9, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x1, 0xffffffffffffffff, 0x0) clone(0x102, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r3 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x900000000000000, &(0x7f0000000200)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x40010000, &(0x7f0000000400)={{'fd', 0x3d, r3}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}, 0x2c, {[], [], 0xffff1f00}}) 05:29:14 executing program 4: r0 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x1, 0x2) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = fcntl$dupfd(r1, 0x0, 0xffffffffffffffff) getsockopt$EBT_SO_GET_INIT_INFO(r2, 0x0, 0x82, &(0x7f0000000180)={'broute\x00'}, &(0x7f0000000240)=0x50) ioctl$TIOCSCTTY(r2, 0x540e, 0xffffffff) getsockopt$sock_cred(r2, 0x1, 0x11, 0x0, &(0x7f0000000640)) getsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r0, 0x84, 0x76, &(0x7f00000000c0)={0x0, 0x8}, &(0x7f0000000100)=0x8) r4 = msgget(0x0, 0x400) msgsnd(r4, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0xf6, 0xc00) setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(r2, 0x84, 0x7c, &(0x7f0000000140)={r3, 0x4, 0x209}, 0x8) ioctl$VIDIOC_S_FREQUENCY(r0, 0x402c5639, &(0x7f0000000180)={0x0, 0x1}) [ 348.531584] ? __alloc_pages_slowpath+0x2930/0x2930 [ 348.536614] cache_grow_begin+0x80/0x400 [ 348.540685] kmem_cache_alloc+0x6a6/0x780 [ 348.540698] ? selinux_file_mprotect+0x5d0/0x5d0 [ 348.540709] ? lock_downgrade+0x6e0/0x6e0 [ 348.540722] getname_flags+0xcb/0x580 [ 348.540734] SyS_mkdir+0x7e/0x200 [ 348.540743] ? SyS_mkdirat+0x210/0x210 [ 348.549634] ? do_syscall_64+0x53/0x640 [ 348.549646] ? SyS_mkdirat+0x210/0x210 [ 348.549658] do_syscall_64+0x1e8/0x640 [ 348.549672] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 348.549688] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 348.549697] RIP: 0033:0x458e47 [ 348.561078] RSP: 002b:00007f617e384a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 348.561090] RAX: ffffffffffffffda RBX: 0000000020000028 RCX: 0000000000458e47 [ 348.561096] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 0000000020000140 [ 348.561102] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 348.561108] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 05:29:14 executing program 3: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'ghash-generic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, 0x0, 0x0) socket$inet_smc(0x2b, 0x1, 0x0) r1 = socket$alg(0x26, 0x5, 0x0) bind$alg(r1, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'ghash-generic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, 0x0, 0x0) r2 = socket$alg(0x26, 0x5, 0x0) bind$alg(r2, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'ghash-generic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, 0x0, 0x0) dup(r2) r3 = socket$alg(0x26, 0x5, 0x0) bind$alg(r3, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'ghash-generic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, 0x0, 0x0) fcntl$addseals(r3, 0x409, 0x3) [ 348.561113] R13: 00000000004c8b25 R14: 00000000004dfbc8 R15: 0000000000000003 05:29:14 executing program 0: r0 = socket$kcm(0x2, 0x2, 0x73) bind$inet(r0, &(0x7f0000001240)={0x2, 0x0, @dev}, 0x10) connect(r0, &(0x7f0000000000)=@pppol2tpv3={0x2, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @local}}}, 0x80) r1 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) sendmmsg(r0, &(0x7f0000001540), 0x24c, 0x0) 05:29:14 executing program 4: r0 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x1, 0x2) r1 = syz_open_dev$vcsa(&(0x7f0000000300)='/dev/vcsa#\x00', 0x80000001, 0x20000) r2 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = fcntl$dupfd(r2, 0x0, 0xffffffffffffffff) getsockopt$EBT_SO_GET_INIT_INFO(r3, 0x0, 0x82, &(0x7f0000000180)={'broute\x00'}, &(0x7f0000000240)=0x50) ioctl$TIOCSCTTY(r3, 0x540e, 0xffffffff) getsockopt$sock_cred(r3, 0x1, 0x11, 0x0, &(0x7f0000000640)) ioctl$PPPIOCSNPMODE(r3, 0x4008744b, &(0x7f0000000bc0)={0xc021, 0x3}) getsockopt$inet6_IPV6_IPSEC_POLICY(r1, 0x29, 0x22, 0x0, &(0x7f0000000780)) getsockname$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000c00)=ANY=[@ANYBLOB="200000001000050700"/20, @ANYRES32=r4, @ANYBLOB="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"], 0x20}}, 0x0) sendmsg$nl_route_sched(r1, &(0x7f00000000c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000080)={&(0x7f00000001c0)=ANY=[@ANYBLOB="d4000000290037972bbd7000fddbdf2500000000", @ANYRES32=r4, @ANYBLOB="08000a000000080004000c000c00010064736d61726b00000c000200080004009a00000008000100687462003c080200300001000900000003008000ffff00007f0120680600000000000000e90f00000000000004000000050000000000000c040403000100000000000080cb080000764b0000040000000900000004000000090000000100000005000000030000000000000000000000810000000700000000000000800f000006000000050000000100000009000000000000000600000007000000040000009bbce80efe00000000010000ffffffff290000002e000000000000004c0000007f0000000900000008000000060000000600000015060000ffffff7f0200000004000000000000000900000003000000000000000500000008000000000400005a000000400000000004000004000000930600009de90000ffff00001c00000001000080596300002e000000560d000066d80000ff070000feffffff0600000001000000ff070000000000c081000000040000000000000007000000732c00000100000009000000780700007d000000060000001f000000ff0300000200000008000000e30b00000500000000000000090000000500000002000000ff0f0000120a00000104000002000000000000000400000008000000ff0700000200000001040000040000000700000001010000c75b000002000000080000003f0000000100000008000000ff00000001800000020000000800000002000000010000000100000000020000050000004750742e810000000600000020000000001000000500000020ac0000000000000600000001800000070000000100000000000000000000000900000007000000000001002c750000010400000100000005000000f105000080ffffff06000000018000000800000007000000ff070000040000000300000000000000fcffffff27c400000e08000003000000050000000900000007000000020000004e5391280900000009000000000030390100000016000000bf8c000001040000fffffffffe010000010000000300000002000000010000002000000000008000018000000200000001000000800000001f020000ff0700000010000000080000090000000000010006000000feffffff01000000ff0f00000900000000000000ff010000b7ab603f0800000008000000e9000000ff0700008000000007000000ffff0000fbffffff0400000009000000ffffffff6205000000020000080000004b06000003000000000100000200000004000000d4000000080000000700000004000000ff0100007f00000002000000000000000700000008000000000000000000b05b0300000008000000d40000000300000000000000e3090000020000000000000007000000018000000300000000000000000000000180000000000000050000000300000020000000f500000007000000000000000000000006000000ff0000003f00000001000000ff0700003f000000feffffff0400000000000000010000800101000080000000000400000300000004040400ffffff7f3f00000058000000896200001f00000003000000020000000900000000020000010000000100ffff0400000003000000ffffffff080000000000000086030000fd00000000100000e601000008000000010001002700000008000000080000003e0800000200000001ffffff0100010021000000ffffffff0900000037dc0000090000000600000007000000008000003f000000b0000000ff010000040000000100000012050000ffffffff0700000000feffffffff000000000000ff0700000800000001000000090000000700000058050000ff0700000700000008000000d528447e0800000017f10000ffd6bc1f07000000ffff0000a0d700000500000000000000008000000700000045ffffff04000000ffffffff0800000000000000000800000b00000090b70000000001000200000005000000710f0000000008000800000009000000090000005a090000ff0100000800000007000000020000000000010004000000020000000300000009000000010000008100000006000000080000000900000001010000070000000100000000800000800000007f000000d502000007000000060000000400000081000000ffffffff0200000001000000000000000000000004000000ff0000000200000006000000e10000004000000006000000ffffffff000000008100000000800000ce00000000000000ff0f00000100000080ffffffff0000000500000002000000001000000100000085cee17e020000001f00000005000000080000000500000008000000040000007fffffff0200000048000000000020001cd5ffffc4000000ff0f0000b2000000018000000000000004000000e7660000ff01000000f8ffff09000000050000000200000000040000fe46000000000000000000000000000008000000ff030000010000007f000000001000000200000007000000090000000100000001000100fc01000000800000020000000900000003000000ffffffffa50400003e0e00008100000003050000d1a3000008000000d1040000070000000500000005000000ff01000000000000090000001f000000fbffffff090000000800000037de000001000000000001002a00000083010000ffffff7f7f000000ffffff7f0900000003000000000400000200000008000000f12e00000400000005000000090000000800000000000000ff030000050000000100000000080000ffffffff0001000072deffff090000000000000002000000ff07000007000000fcfdffff09000000200000000300000008000000010000800100000007000000060000000900000008000000ff01000003000000050000000800000000000100ff7f000009000000040000000700000067060000090000000200000001040000070000000200000008000500030800000c00010064736d61726b00000c000200080004004500000008000100716671002c000200080002008c000000080001000700000008000200ff0700000800020006000000080002001f090000"], 0x8d4}, 0x1, 0x0, 0x0, 0x80}, 0x4) ioctl$VIDIOC_S_FREQUENCY(r0, 0x402c5639, &(0x7f0000000180)={0x0, 0x1}) r5 = syz_genetlink_get_family_id$tipc(&(0x7f0000000ac0)='TIPC\x00') sendmsg$TIPC_CMD_GET_MEDIA_NAMES(r1, &(0x7f0000000b80)={&(0x7f0000000140), 0xc, &(0x7f0000000b40)={&(0x7f0000000b00)={0x1c, r5, 0x0, 0x70bd25, 0x25dfdbfb, {}, ["", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x20098}, 0x44004) 05:29:14 executing program 4: syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x1, 0x2) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x4, 0x4182) r1 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) pwritev(r1, &(0x7f0000000340)=[{&(0x7f0000000140)='!', 0x1}], 0x1, 0x81805) r2 = dup2(r1, r1) ioctl$SG_GET_RESERVED_SIZE(r1, 0x2272, 0x0) ioctl$LOOP_CHANGE_FD(r0, 0x4c00, r1) write$P9_RLERRORu(r2, &(0x7f00000003c0)=ANY=[@ANYBLOB="1400000007650d6c24ed92c8397291335cf616f0010200070062726f0c62077600b365a0a59e7eea"], 0x28) getsockopt$sock_cred(r2, 0x1, 0x11, 0x0, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f00000007c0)={{{@in=@remote, @in6=@initdev}}, {{@in=@empty}, 0x0, @in6=@ipv4}}, &(0x7f00000008c0)=0xe8) sendfile(r2, r0, 0x0, 0x2400003e) r3 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = fcntl$dupfd(r3, 0x0, 0xffffffffffffffff) getsockopt$EBT_SO_GET_INIT_INFO(r4, 0x0, 0x82, &(0x7f0000000180)={'broute\x00'}, &(0x7f0000000240)=0x50) ioctl$TIOCSCTTY(r4, 0x540e, 0xffffffff) getsockopt$sock_cred(r4, 0x1, 0x11, 0x0, &(0x7f0000000640)) ioctl$VIDIOC_S_FREQUENCY(r4, 0x402c5639, &(0x7f0000000180)={0x0, 0x1}) 05:29:14 executing program 5: syz_mount_image$btrfs(&(0x7f00000000c0)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 05:29:14 executing program 3: syz_open_dev$radio(&(0x7f0000000100)='/dev/radio#\x00', 0x3, 0x2) syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d0100000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42487266535f4d", 0xffffffffffffffe0, 0x10000}], 0x0, 0x0) open$dir(&(0x7f00000000c0)='./file0\x00', 0x400000, 0xb6) 05:29:14 executing program 0: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000080)='./cgroup.cpu\x005\n\xff\xd9\x15\xc1m\xd6\xcc\x05\xed\xac\xb3\xfe\x13\xadD\x1ai\xfck\x948\xcfT\xa4Q8\xcb\x9d\x80\x01V\xea\x8a\x112\xd8\xfe\x7f\x0f\"pX\xa4>\xf9\x00r\x14+\x1e\xdc\xb3]N\b\x00\x00\x00 +\xf4\xe1.\xb6\xde\xce\xe7`\xb2{\xeeu\x88b\xd7j`\xa8z\x89H\xcb\xfb\xc0\x06\xf8.\aA\xcf', 0x200002, 0x0) r1 = openat$cgroup_int(r0, &(0x7f0000000000)='cgroup.clone_children\x00', 0x2, 0x0) sendfile(r1, r1, 0x0, 0x100000000000002) 05:29:14 executing program 1 (fault-call:0 fault-nth:39): syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000140)='./file0\x00', 0xff, 0x1, &(0x7f0000000000)=[{&(0x7f0000000180)="8da4363ac0ed0000000000000001004d0100000000000000000000000009000000000000009748aeb81e1b00920efd9a0000010000000000098cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 05:29:14 executing program 4: r0 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x1, 0x2) ioctl$VIDIOC_S_FREQUENCY(r0, 0x402c5639, &(0x7f0000000180)={0x0, 0x1}) r1 = syz_genetlink_get_family_id$tipc(&(0x7f0000000080)='TIPC\x00') sendmsg$TIPC_CMD_SHOW_STATS(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4400220}, 0xc, &(0x7f0000000100)={&(0x7f00000001c0)={0x1c, r1, 0x4, 0x70bd2c, 0x25dfdbff, {}, ["", "", "", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x80004b1}, 0xc080000) 05:29:15 executing program 0: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)=@newlink={0x3c, 0x10, 0x501, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, @ipip={{0xc, 0x1, 'ipip\x00'}, {0xc, 0x2, [@IFLA_IPTUN_PROTO={0x8}]}}}]}, 0x3c}}, 0x0) [ 349.171432] FAULT_INJECTION: forcing a failure. [ 349.171432] name failslab, interval 1, probability 0, space 0, times 0 05:29:15 executing program 4: r0 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x1, 0x2) ioctl$VIDIOC_S_FREQUENCY(r0, 0x402c5639, &(0x7f0000000180)={0x0, 0x1}) getsockopt$inet_tcp_TCP_ZEROCOPY_RECEIVE(r0, 0x6, 0x23, &(0x7f0000000040)={&(0x7f0000ffe000/0x2000)=nil, 0x2000}, &(0x7f0000000080)=0x10) [ 349.242996] CPU: 0 PID: 23979 Comm: syz-executor.1 Not tainted 4.14.146 #0 [ 349.250061] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 349.259605] Call Trace: [ 349.262209] dump_stack+0x138/0x197 [ 349.265852] should_fail.cold+0x10f/0x159 [ 349.270013] should_failslab+0xdb/0x130 [ 349.274000] kmem_cache_alloc+0x2d7/0x780 [ 349.278157] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 349.283620] ? ext4_sync_fs+0x800/0x800 [ 349.283650] ext4_alloc_inode+0x1d/0x610 [ 349.283661] alloc_inode+0x64/0x180 [ 349.283671] new_inode_pseudo+0x19/0xf0 [ 349.283681] new_inode+0x1f/0x40 [ 349.291717] __ext4_new_inode+0x32c/0x4860 [ 349.291737] ? avc_has_perm+0x2df/0x4b0 [ 349.291749] ? ext4_free_inode+0x1210/0x1210 [ 349.291767] ? dquot_get_next_dqblk+0x160/0x160 [ 349.291782] ext4_mkdir+0x331/0xc20 [ 349.291798] ? ext4_init_dot_dotdot+0x4c0/0x4c0 [ 349.291810] ? security_inode_mkdir+0xd0/0x110 [ 349.291823] vfs_mkdir+0x3ca/0x610 [ 349.291833] SyS_mkdir+0x1b7/0x200 [ 349.291842] ? SyS_mkdirat+0x210/0x210 [ 349.291852] ? do_syscall_64+0x53/0x640 [ 349.291861] ? SyS_mkdirat+0x210/0x210 [ 349.291870] do_syscall_64+0x1e8/0x640 [ 349.291880] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 349.360765] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 349.365953] RIP: 0033:0x458e47 [ 349.369141] RSP: 002b:00007f617e384a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 349.376855] RAX: ffffffffffffffda RBX: 0000000020000028 RCX: 0000000000458e47 [ 349.384128] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 0000000020000140 05:29:15 executing program 0: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000680)={'lo\x00\x00\x00\x00\x00\x14\x00\x00\t\x00'}) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='stat\t\xc0\xd2\xfe\xbc\xf9\xdf-\xea\xc8\xc1w\xff\x17\x12H\xe9\x11\x93Q0I\xf81U\ro}\xe6l\xf67\xbd\xbf\x13\x11\x92\f\x8a&\xed\xa4\xdc\xc3x?\x9d\xb5\x11k4\xd3\x1b\x05\x12\xa5`\x8a\xaf\xf0\x1eyR4\f\xd6\xfd\x00\x00\x00\x00', 0x275a, 0x0) r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r1, 0x0, 0x4000003, 0xc0e) write$P9_RXATTRCREATE(r0, &(0x7f0000000100)={0x7}, 0x7) fallocate(r0, 0x0, 0x0, 0x110001) write$binfmt_elf64(r1, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x15a) ioctl$EXT4_IOC_MOVE_EXT(r0, 0xc028660f, &(0x7f0000000040)={0x0, r1, 0x0, 0x8}) [ 349.384136] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 349.398676] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 349.405954] R13: 00000000004c8b25 R14: 00000000004dfbc8 R15: 0000000000000003 05:29:15 executing program 5: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000100)='/dev/qat_adf_ctl\x00', 0x10082, 0x0) 05:29:15 executing program 1 (fault-call:0 fault-nth:40): syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000140)='./file0\x00', 0xff, 0x1, &(0x7f0000000000)=[{&(0x7f0000000180)="8da4363ac0ed0000000000000001004d0100000000000000000000000009000000000000009748aeb81e1b00920efd9a0000010000000000098cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 05:29:15 executing program 4: r0 = syz_open_dev$radio(&(0x7f0000000000)='/dev/rFd\xd3\xfa.\r', 0x3, 0x2) ioctl$VIDIOC_S_FREQUENCY(r0, 0x402c5639, &(0x7f0000000180)={0x0, 0x1}) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = fcntl$dupfd(r1, 0x0, 0xffffffffffffffff) getsockopt$EBT_SO_GET_INIT_INFO(r2, 0x0, 0x82, &(0x7f0000000180)={'broute\x00'}, &(0x7f0000000240)=0x50) ioctl$TIOCSCTTY(r2, 0x540e, 0xffffffff) getsockopt$sock_cred(r2, 0x1, 0x11, 0x0, &(0x7f0000000640)) r3 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) getpid() r4 = fcntl$dupfd(r3, 0x0, 0xffffffffffffffff) getsockopt$EBT_SO_GET_INIT_INFO(r4, 0x0, 0x82, &(0x7f0000000180)={'broute\x00'}, &(0x7f0000000240)=0x50) r5 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000200)='IPVS\x00') sendmsg$IPVS_CMD_SET_DEST(r0, &(0x7f0000000380)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000340)={&(0x7f0000000280)={0x88, r5, 0x3, 0x70bd2c, 0x25dfdbfd, {}, [@IPVS_CMD_ATTR_DAEMON={0x20, 0x3, [@IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x6}, @IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'veth0_to_hsr\x00'}]}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0xfffffffc}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x241a0220}, @IPVS_CMD_ATTR_DEST={0x44, 0x2, [@IPVS_DEST_ATTR_TUN_TYPE={0x8, 0xd, 0x1}, @IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv4=@multicast1}, @IPVS_DEST_ATTR_TUN_TYPE={0x8}, @IPVS_DEST_ATTR_FWD_METHOD={0x8, 0x3, 0x4}, @IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv4=@loopback}]}]}, 0x88}, 0x1, 0x0, 0x0, 0x4064}, 0x80) ioctl$TIOCSCTTY(r4, 0x540e, 0xffffffff) getsockopt$sock_cred(r4, 0x1, 0x11, 0x0, &(0x7f0000000640)) ioctl$SG_GET_COMMAND_Q(r0, 0x2270, &(0x7f0000000140)) setxattr$security_selinux(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='security.selinux\x00', &(0x7f00000000c0)='system_u:object_r:default_context_t:s0\x00', 0x27, 0x2) [ 349.570783] FAULT_INJECTION: forcing a failure. [ 349.570783] name failslab, interval 1, probability 0, space 0, times 0 [ 349.582727] CPU: 0 PID: 24009 Comm: syz-executor.1 Not tainted 4.14.146 #0 [ 349.590190] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 349.599547] Call Trace: [ 349.602134] dump_stack+0x138/0x197 [ 349.605751] should_fail.cold+0x10f/0x159 [ 349.609889] should_failslab+0xdb/0x130 [ 349.613850] __kmalloc+0x71/0x7a0 [ 349.617286] ? mls_compute_context_len+0x3f6/0x5e0 [ 349.622222] ? context_struct_to_string+0x33a/0x630 [ 349.627241] context_struct_to_string+0x33a/0x630 [ 349.632077] ? security_load_policycaps+0x320/0x320 [ 349.637088] security_sid_to_context_core+0x18a/0x200 [ 349.642272] security_sid_to_context_force+0x2b/0x40 [ 349.647364] selinux_inode_init_security+0x493/0x700 [ 349.652455] ? selinux_inode_create+0x30/0x30 [ 349.656966] ? kfree+0x20a/0x270 [ 349.660322] security_inode_init_security+0x18d/0x360 [ 349.665498] ? ext4_init_acl+0x1f0/0x1f0 [ 349.669545] ? security_kernel_post_read_file+0xd0/0xd0 [ 349.675024] ? posix_acl_create+0xf5/0x3a0 [ 349.679246] ? ext4_set_acl+0x400/0x400 [ 349.683202] ? lock_downgrade+0x6e0/0x6e0 [ 349.687335] ext4_init_security+0x34/0x40 [ 349.691466] __ext4_new_inode+0x3385/0x4860 [ 349.695780] ? ext4_free_inode+0x1210/0x1210 [ 349.700176] ? dquot_get_next_dqblk+0x160/0x160 [ 349.704831] ext4_mkdir+0x331/0xc20 [ 349.708473] ? ext4_init_dot_dotdot+0x4c0/0x4c0 [ 349.713136] ? security_inode_mkdir+0xd0/0x110 [ 349.717708] vfs_mkdir+0x3ca/0x610 [ 349.721239] SyS_mkdir+0x1b7/0x200 [ 349.724808] ? SyS_mkdirat+0x210/0x210 [ 349.728683] ? do_syscall_64+0x53/0x640 [ 349.732646] ? SyS_mkdirat+0x210/0x210 [ 349.736532] do_syscall_64+0x1e8/0x640 [ 349.740409] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 349.745242] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 349.750424] RIP: 0033:0x458e47 [ 349.753595] RSP: 002b:00007f617e384a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 349.761286] RAX: ffffffffffffffda RBX: 0000000020000028 RCX: 0000000000458e47 05:29:15 executing program 0: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000003dc0)=0x3f) stat(&(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)) [ 349.768558] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 0000000020000140 [ 349.775814] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 349.783153] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 349.790425] R13: 00000000004c8b25 R14: 00000000004dfbc8 R15: 0000000000000003 05:29:15 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="11dca50d5e0bcfe47bf070") prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x802102001ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = gettid() r2 = epoll_create(0x3) epoll_pwait(r2, &(0x7f0000000340)=[{}], 0x1, 0x7fff, &(0x7f0000000380), 0x8) ptrace$setopts(0x4206, r1, 0x0, 0x0) tkill(r1, 0x38) 05:29:15 executing program 3: r0 = syz_open_dev$vcsa(&(0x7f0000000300)='\x00\x00\x00\x00\xe7\x00', 0x80000001, 0xa00c0) ioctl$KDSETKEYCODE(r0, 0x4b4d, &(0x7f0000000340)={0x6, 0xa1}) getsockopt$inet6_IPV6_IPSEC_POLICY(r0, 0x29, 0x22, 0x0, &(0x7f0000000780)) ioctl$BLKREPORTZONE(0xffffffffffffffff, 0xc0101282, &(0x7f0000000100)={0x1, 0x7, 0x0, [{0x0, 0x8, 0x0, 0x2, 0xcc, 0xbc, 0xf8}, {0x6, 0x9, 0xa7, 0x5, 0x85, 0x0, 0x4}, {0x4, 0x3, 0x4, 0x40, 0x2, 0x9, 0x66}, {0x5, 0x100, 0xfff, 0xb9, 0xfb, 0x0, 0x58}, {0x97, 0x6, 0x81, 0x80, 0x7, 0x9, 0x5}, {0x1, 0x9, 0x298a, 0x7f, 0x20, 0x3, 0xfc}, {0x8, 0xff, 0x0, 0xff, 0xff, 0xff, 0x6}]}) ioctl$UFFDIO_ZEROPAGE(r0, 0xc020aa04, &(0x7f00000000c0)={{&(0x7f0000ffe000/0x1000)=nil, 0x1000}, 0x1}) r1 = syz_open_dev$cec(&(0x7f0000000000)='/dev/cec#\x00', 0x0, 0x2) ioctl$VHOST_SET_VRING_ENDIAN(r1, 0x4008af13, &(0x7f0000000040)={0x3, 0x8}) ioctl$VIDIOC_STREAMON(0xffffffffffffffff, 0x40045612, &(0x7f0000000080)=0x717d7bc7) 05:29:15 executing program 4: r0 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x1, 0x2) r1 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x4, 0x4182) r2 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) pwritev(r2, &(0x7f0000000340)=[{&(0x7f0000000140)='!', 0x1}], 0x1, 0x81805) r3 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = fcntl$dupfd(r3, 0x0, 0xffffffffffffffff) getsockopt$EBT_SO_GET_INIT_INFO(r4, 0x0, 0x82, &(0x7f0000000180)={'broute\x00'}, &(0x7f0000000240)=0x50) ioctl$TIOCSCTTY(r4, 0x540e, 0xffffffff) getsockopt$sock_cred(r4, 0x1, 0x11, 0x0, &(0x7f0000000640)) r5 = accept$netrom(r4, &(0x7f00000000c0)={{}, [@bcast, @bcast, @netrom, @bcast, @bcast, @bcast, @bcast, @rose]}, &(0x7f00000001c0)=0x48) fallocate(r5, 0x72, 0xfffffffffffffffb, 0x2) r6 = dup2(r2, r2) ioctl$SG_GET_RESERVED_SIZE(r2, 0x2272, 0x0) ioctl$LOOP_CHANGE_FD(r1, 0x4c00, r2) write$P9_RLERRORu(r6, &(0x7f00000003c0)=ANY=[@ANYBLOB="1400000007650d6c24ed92c8397291335cf616f0010200070062726f0c62077600b365a0a59e7eea"], 0x28) getsockopt$sock_cred(r6, 0x1, 0x11, 0x0, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(r6, 0x29, 0x23, &(0x7f0000000400)={{{@in=@remote, @in6=@initdev}}, {{@in=@empty}, 0x0, @in6=@ipv4}}, &(0x7f00000008c0)=0xe8) sendfile(r6, r1, 0x0, 0x2400003e) setsockopt$RXRPC_SECURITY_KEYRING(r6, 0x110, 0x2, &(0x7f0000000040)='/dev/radio#\x00', 0xc) ioctl$VIDIOC_S_FREQUENCY(r0, 0x402c5639, &(0x7f0000000180)={0x0, 0x1}) 05:29:15 executing program 3: r0 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = fcntl$dupfd(r0, 0x0, 0xffffffffffffffff) getsockopt$EBT_SO_GET_INIT_INFO(r1, 0x0, 0x82, &(0x7f0000000180)={'oute\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02\x00\x00@\x00\x00\x00\x00\x00\xf2\'\x13`\x00'}, &(0x7f0000000240)=0x78) ioctl$TIOCSCTTY(r1, 0x540e, 0xffffffff) getsockopt$sock_cred(r1, 0x1, 0x11, 0x0, &(0x7f0000000640)) sendmsg$nfc_llcp(r1, &(0x7f00000004c0)={&(0x7f0000000140)={0x27, 0x0, 0x0, 0x6, 0xf8, 0x0, "613777b74efb6e44206b1711d50bc2bd4f8dd3532522dd54c2e1a8c292d7c18df148ac3140f5643f13cab5ce561905a335c374acde1113312de5dcafd380fc", 0x3b}, 0x60, &(0x7f0000000480)=[{&(0x7f00000001c0)="eca786ac6377c5c49b17add8321092459af9f595160bed8fd42acc8e6af19abf9533f93ec7788ee62d31f40316452c3cd3729aabf0b3d6b27de91716d19b6b4269b5d88b2aaeca35f55c1172d8a94d98ec94f80552a6c2d46d96cbd18868c37ecfcaf583f4affce096ddc7b5779f4c73cce967e3a5ba94ca25748349cb82d7f81b74a0a3a9e67c283cdf1e8734705cffe1a11675d6b2582c4e7edcb7c38f3b1f55d6f0b97255ecd99e924d7e28b08602d1526caee1f8ad79502c1a166d2e1eb0332a1d154480f96406eb406d7fb5c62759f5a8a1299bcc3de86886e56cb981272a9bda1b37563df2e65ff1b430b5", 0xee}, {&(0x7f00000002c0)="f86a18d9ebf21693cba5f5ced858720ac517f87ca513a4857e45bc5af6254e2497b7e4c2531ff6f6e41937570bb86b0e18b492f3f8a5b446e634d71824a5e4d84daee8cbce9f05c135648c9c984878be67cbee2b0d406f23cdba2d3174794b525183b7624cb27db116dc34b8b577a0b071432741cdff06a8c335360b6eb26632c24255431a64da7d0e7f3fed59f897a5915854cc3d364e5f19e9d1ab7319368dff20d228f409a98b2b8e96302e73e6f8f4b9440c6ca50007", 0xb8}, {&(0x7f0000000380)="1d6e29584b28852a1ffe2605319caf70a9310f3ae534eaafafd24ae11c94f1e2740135f2ab23b64cbf391cb20efd0976fd3077843fbc643eb87def6bdb841b73b20130a9a99e63c31fe17e056a547b6d34611052d0c33d887cb7d350978562812b61", 0x62}, {&(0x7f0000000400)="ffd6541cdedc8a5bd479b3007b623d60f9a279a111e1f3491b07f68b19ec602ea0f0761fe44152e686db99162cee5bb32e67b38b019213b29f4677bec97d252892e7c8d8764575c3ff3edb09a66366f3d8", 0x51}], 0x4}, 0x80) syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0xaaaaaaaaaaaabb9, &(0x7f0000000000)=[{&(0x7f00000000c0)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 05:29:15 executing program 4: r0 = syz_open_dev$radio(&(0x7f0000000040)='/dev/r`dio#\x00', 0x1, 0x2) ioctl$VIDIOC_S_FREQUENCY(r0, 0x402c5639, &(0x7f0000000180)={0x0, 0x1}) 05:29:16 executing program 1 (fault-call:0 fault-nth:41): syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000140)='./file0\x00', 0xff, 0x1, &(0x7f0000000000)=[{&(0x7f0000000180)="8da4363ac0ed0000000000000001004d0100000000000000000000000009000000000000009748aeb81e1b00920efd9a0000010000000000098cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 05:29:16 executing program 4: r0 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x1, 0x2) r1 = socket$alg(0x26, 0x5, 0x0) bind$alg(r1, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'ghash-generic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, 0x0, 0x0) write$binfmt_elf32(r1, &(0x7f00000001c0)={{0x7f, 0x45, 0x4c, 0x46, 0x7, 0xff, 0x4, 0x7f, 0x8, 0x74dbf8fb3dd3349b, 0x3e, 0xaf, 0x319, 0x38, 0x160, 0x54, 0x8, 0x20, 0x1, 0x4, 0x3, 0x5}, [{0x0, 0x101, 0x3, 0x10001, 0xfffffffc, 0x5, 0x2, 0xfff}], "6e34f62595e61e4786340da50ecb3ea8854dc6cd8721b4413feeee43ffc26f00d7bec4990f9fa647b527ec05154fcd24d08a61cd668df96cdfbae2677de3dfa6be484b08e5ecacefba54c22101a8224d155464", [[], []]}, 0x2ab) ioctl$VIDIOC_S_FREQUENCY(r0, 0x402c5639, &(0x7f0000000180)={0x0, 0x1}) 05:29:16 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x200, 0x14c) ioctl$DRM_IOCTL_SWITCH_CTX(r0, 0x40086424, &(0x7f0000000100)={0x0, 0x2}) syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 350.314513] FAULT_INJECTION: forcing a failure. [ 350.314513] name failslab, interval 1, probability 0, space 0, times 0 [ 350.405158] CPU: 1 PID: 24055 Comm: syz-executor.1 Not tainted 4.14.146 #0 [ 350.412219] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 350.421583] Call Trace: [ 350.424199] dump_stack+0x138/0x197 [ 350.427844] should_fail.cold+0x10f/0x159 [ 350.432014] should_failslab+0xdb/0x130 [ 350.436002] kmem_cache_alloc+0x2d7/0x780 [ 350.440157] ? __debug_object_init+0x171/0x8e0 [ 350.446314] ? ext4_alloc_inode+0x1d/0x610 [ 350.450564] selinux_inode_alloc_security+0xb6/0x2a0 [ 350.455684] security_inode_alloc+0x94/0xd0 [ 350.460026] inode_init_always+0x552/0xaf0 [ 350.464273] alloc_inode+0x81/0x180 [ 350.467905] new_inode_pseudo+0x19/0xf0 [ 350.471891] new_inode+0x1f/0x40 [ 350.475259] __ext4_new_inode+0x32c/0x4860 [ 350.479510] ? avc_has_perm+0x2df/0x4b0 [ 350.483494] ? ext4_free_inode+0x1210/0x1210 [ 350.487916] ? dquot_get_next_dqblk+0x160/0x160 [ 350.492600] ext4_mkdir+0x331/0xc20 [ 350.496239] ? ext4_init_dot_dotdot+0x4c0/0x4c0 [ 350.500917] ? security_inode_mkdir+0xd0/0x110 [ 350.505511] vfs_mkdir+0x3ca/0x610 [ 350.509060] SyS_mkdir+0x1b7/0x200 [ 350.512609] ? SyS_mkdirat+0x210/0x210 [ 350.516506] ? do_syscall_64+0x53/0x640 [ 350.520487] ? SyS_mkdirat+0x210/0x210 [ 350.524390] do_syscall_64+0x1e8/0x640 [ 350.528454] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 350.533309] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 350.538503] RIP: 0033:0x458e47 [ 350.541695] RSP: 002b:00007f617e384a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 05:29:16 executing program 4: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'ghash-generic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, 0x0, 0x0) accept$alg(r0, 0x0, 0x0) r1 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x1, 0x2) r2 = syz_open_dev$dri(&(0x7f0000000080)='/dev/dri/card#\x00', 0x800, 0x400000) fsetxattr$security_smack_entry(r2, &(0x7f00000000c0)='security.SMACK64MMAP\x00', &(0x7f0000000100)='\x00', 0x1, 0x40902fe7073d4718) ioctl$VIDIOC_S_FREQUENCY(r1, 0x402c5639, &(0x7f0000000180)={0x0, 0x1}) [ 350.549501] RAX: ffffffffffffffda RBX: 0000000020000028 RCX: 0000000000458e47 [ 350.556778] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 0000000020000140 [ 350.564073] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 350.571378] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 350.578668] R13: 00000000004c8b25 R14: 00000000004dfbc8 R15: 0000000000000003 05:29:16 executing program 1 (fault-call:0 fault-nth:42): syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000140)='./file0\x00', 0xff, 0x1, &(0x7f0000000000)=[{&(0x7f0000000180)="8da4363ac0ed0000000000000001004d0100000000000000000000000009000000000000009748aeb81e1b00920efd9a0000010000000000098cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 05:29:16 executing program 5: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x4, 0x4182) r1 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) pwritev(r1, &(0x7f0000000340)=[{&(0x7f0000000140)='!', 0x1}], 0x1, 0x81805) r2 = dup2(r1, r1) ioctl$SG_GET_RESERVED_SIZE(r1, 0x2272, 0x0) r3 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000100)='/dev/mixer\x00', 0x10000, 0x0) r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000013c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r4, 0x40045431, &(0x7f0000000080)) syz_open_pts(r4, 0x0) ioctl$TIOCGPGRP(r4, 0x540f, &(0x7f0000000180)=0x0) fcntl$setown(r3, 0x8, r5) ioctl$GIO_FONTX(r3, 0x4b6b, &(0x7f0000000400)=""/7) ioctl$LOOP_CHANGE_FD(r0, 0x4c00, r1) write$P9_RLERRORu(r2, &(0x7f00000003c0)=ANY=[@ANYBLOB="1400000007650d6c24ed92c8397291335cf616f0010200070062726f0c62077600b365a0a59e7eea"], 0x28) getsockopt$sock_cred(r2, 0x1, 0x11, 0x0, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f00000007c0)={{{@in=@remote, @in6=@initdev}}, {{@in=@empty}, 0x0, @in6=@ipv4}}, &(0x7f00000008c0)=0xe8) r6 = socket$netlink(0x10, 0x3, 0x2c) r7 = syz_genetlink_get_family_id$tipc(&(0x7f0000000280)='TIPC\x00') sendmsg$TIPC_CMD_GET_BEARER_NAMES(r6, &(0x7f0000000380)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x400060}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x1c, r7, 0x9b5e737f6f3cf333, 0x70bd25, 0x25dfdbfe, {}, ["", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x2}, 0x20000080) sendfile(r2, r0, 0x0, 0x2400003e) read$alg(r2, &(0x7f00000000c0)=""/9, 0x9) [ 350.720013] FAULT_INJECTION: forcing a failure. [ 350.720013] name failslab, interval 1, probability 0, space 0, times 0 05:29:16 executing program 3: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f0000000000), 0x30e0041, 0x0) fsetxattr$trusted_overlay_redirect(0xffffffffffffffff, &(0x7f00000000c0)='trusted.overlay.redirect\x00', &(0x7f0000000100)='./file0\x00', 0x8, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'ghash-generic\x00'}, 0x58) clock_gettime(0x0, &(0x7f0000000a40)={0x0, 0x0}) recvmmsg(r0, &(0x7f0000000980)=[{{&(0x7f0000000140)=@pppol2tpv3in6, 0x80, &(0x7f00000002c0)=[{&(0x7f00000001c0)=""/25, 0x19}, {&(0x7f0000000280)=""/47, 0x2f}], 0x2, &(0x7f0000000300)=""/145, 0x91}, 0x63}, {{0x0, 0x0, &(0x7f00000007c0)=[{&(0x7f00000003c0)=""/92, 0x5c}, {&(0x7f0000000440)=""/61, 0x3d}, {&(0x7f0000000480)=""/164, 0xa4}, {&(0x7f0000000540)=""/220, 0xdc}, {&(0x7f0000000640)=""/148, 0x94}, {&(0x7f0000000700)=""/95, 0x5f}, {&(0x7f0000000780)}], 0x7}, 0xfffffffc}, {{&(0x7f0000000840)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @dev}}}, 0x80, &(0x7f00000008c0), 0x0, &(0x7f0000000900)=""/109, 0x6d}, 0xa56}], 0x3, 0x163, &(0x7f0000000a80)={r1, r2+30000000}) r4 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r4, 0x84, 0x6e, &(0x7f0000961fe4)=[@in={0x2, 0x0, @dev}], 0x10) r5 = openat$proc_capi20ncci(0xffffffffffffff9c, &(0x7f0000000200)='/proc/capi/capi20ncci\x00', 0x4040, 0x0) setsockopt$TIPC_GROUP_LEAVE(r5, 0x10f, 0x88) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r4, 0x84, 0x1d, &(0x7f0000000b40)=ANY=[@ANYBLOB="01000000128e6c41ba8a924cd7fa26b33e03b13f3d7041d8de9158c45ed84906d4e54b27b23ec4c1f57fb25cee55d0e29663dcbb6480968a1c2ee6668bf721f1a383cfb010056e0e549cef43cf93a090ed83705ca7741df311da7f4b0ac09a3776fe2909dd4a467acb5ad818faee5affa5d3f9c7dc8cb914f942f2206a85", @ANYRES32=0x0], &(0x7f00000000c0)=0xfe10) getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r4, 0x84, 0x66, &(0x7f0000000040)={r6}, &(0x7f0000000140)=0x8) getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER_VALUE(r3, 0x84, 0x7c, &(0x7f0000000ac0)={r6, 0x8, 0x7ff}, &(0x7f0000000b00)=0x8) [ 350.765076] CPU: 0 PID: 24080 Comm: syz-executor.1 Not tainted 4.14.146 #0 [ 350.772137] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 350.781500] Call Trace: [ 350.784102] dump_stack+0x138/0x197 [ 350.787735] should_fail.cold+0x10f/0x159 [ 350.791890] should_failslab+0xdb/0x130 [ 350.795868] __kmalloc+0x2f0/0x7a0 [ 350.799416] ? ext4_find_extent+0x709/0x960 [ 350.803747] ext4_find_extent+0x709/0x960 [ 350.807997] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 350.813502] ext4_ext_map_blocks+0x1a3/0x4fa0 [ 350.818003] ? save_trace+0x290/0x290 [ 350.821811] ? ext4_find_delalloc_cluster+0xb0/0xb0 [ 350.826832] ? __lock_is_held+0xb6/0x140 [ 350.830931] ? lock_acquire+0x16f/0x430 [ 350.834909] ? ext4_map_blocks+0x402/0x17c0 [ 350.839244] ext4_map_blocks+0xd3c/0x17c0 [ 350.843392] ? __lock_is_held+0xb6/0x140 [ 350.847464] ? check_preemption_disabled+0x3c/0x250 [ 350.852487] ? ext4_issue_zeroout+0x160/0x160 [ 350.857076] ? __brelse+0x50/0x60 [ 350.860537] ext4_getblk+0xac/0x450 [ 350.864223] ? ext4_iomap_begin+0x8a0/0x8a0 [ 350.868550] ? ext4_free_inode+0x1210/0x1210 [ 350.872970] ext4_bread+0x6e/0x1a0 [ 350.876690] ? ext4_getblk+0x450/0x450 [ 350.880587] ext4_append+0x14b/0x360 [ 350.884314] ext4_mkdir+0x531/0xc20 [ 350.887951] ? ext4_init_dot_dotdot+0x4c0/0x4c0 [ 350.892625] ? security_inode_mkdir+0xd0/0x110 [ 350.897215] vfs_mkdir+0x3ca/0x610 [ 350.900763] SyS_mkdir+0x1b7/0x200 [ 350.904304] ? SyS_mkdirat+0x210/0x210 [ 350.908213] ? do_syscall_64+0x53/0x640 [ 350.912191] ? SyS_mkdirat+0x210/0x210 [ 350.916080] do_syscall_64+0x1e8/0x640 [ 350.919970] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 350.924830] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 350.930026] RIP: 0033:0x458e47 [ 350.933211] RSP: 002b:00007f617e384a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 350.940933] RAX: ffffffffffffffda RBX: 0000000020000028 RCX: 0000000000458e47 [ 350.948345] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 0000000020000140 [ 350.955706] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 350.962984] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 350.970262] R13: 00000000004c8b25 R14: 00000000004dfbc8 R15: 0000000000000003 05:29:18 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="11dca50d5e0bcfe47bf070") prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x802102001ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = gettid() r2 = epoll_create(0x3) epoll_pwait(r2, &(0x7f0000000340)=[{}], 0x1, 0x7fff, &(0x7f0000000380), 0x8) ptrace$setopts(0x4206, r1, 0x0, 0x0) tkill(r1, 0x38) 05:29:18 executing program 4: r0 = syz_open_dev$cec(&(0x7f0000000380)='/dev/cec#\x00', 0x3, 0x2) getsockopt$inet_udp_int(r0, 0x11, 0x66, &(0x7f00000001c0), &(0x7f0000000240)=0x4) r1 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x1, 0x2) r2 = syz_open_dev$admmidi(&(0x7f0000000040)='/dev/admmidi#\x00', 0x5, 0x648802) ioctl$NBD_SET_SOCK(r2, 0xab00, r1) r3 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x4, 0x4182) r4 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) pwritev(r4, &(0x7f0000000340)=[{&(0x7f0000000140)='!', 0x1}], 0x1, 0x81805) r5 = dup2(r4, r4) ioctl$SG_GET_RESERVED_SIZE(r4, 0x2272, 0x0) ioctl$LOOP_CHANGE_FD(r3, 0x4c00, r4) write$P9_RLERRORu(r5, &(0x7f00000003c0)=ANY=[@ANYBLOB="1400000007650d6c24ed92c8397291335cf616f0010200070062726f0c62077600b365a0a59e7eea"], 0x28) getsockopt$sock_cred(r5, 0x1, 0x11, 0x0, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(r5, 0x29, 0x23, &(0x7f00000007c0)={{{@in=@remote, @in6=@initdev}}, {{@in=@empty}, 0x0, @in6=@ipv4}}, &(0x7f00000008c0)=0xe8) sendfile(r5, r3, 0x0, 0x2400003e) getsockname$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) r7 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000280)='/dev/mixer\x00', 0x0, 0x0) ioctl$SG_SET_COMMAND_Q(r7, 0x2271, &(0x7f00000002c0)) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=@newlink={0x20, 0x10, 0x705, 0x0, 0x0, {0x0, 0x0, 0x0, r6}}, 0x20}}, 0x0) bind$packet(r5, &(0x7f0000000080)={0x11, 0x1, r6, 0x1, 0x74}, 0x14) r8 = syz_open_dev$vcsa(&(0x7f0000000300)='/dev/vcsa#\x00', 0x80000001, 0x20000) getsockopt$inet6_IPV6_IPSEC_POLICY(r8, 0x29, 0x22, 0x0, &(0x7f0000000780)) ioctl$VIDIOC_S_FREQUENCY(r8, 0x402c5639, &(0x7f0000000180)={0x8c, 0x1}) 05:29:18 executing program 2: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e00000000018cffffff0000005f42485266535f4d", 0x3bf, 0x10000}], 0x440, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = pkey_alloc(0x0, 0x7) pkey_free(r1) r2 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = syz_open_dev$vcsa(&(0x7f0000000300)='/dev/vcsa#\x00', 0x80000001, 0x20000) getsockopt$inet6_IPV6_IPSEC_POLICY(r3, 0x29, 0x22, 0x0, &(0x7f0000000780)) write$UHID_DESTROY(r3, &(0x7f0000000140), 0x4) r4 = fcntl$dupfd(r2, 0x0, 0xffffffffffffffff) getsockopt$EBT_SO_GET_INIT_INFO(r4, 0x0, 0x82, &(0x7f0000000180)={'broute\x00'}, &(0x7f0000000240)=0x50) ioctl$TIOCSCTTY(r4, 0x540e, 0xffffffff) getsockopt$sock_cred(r4, 0x1, 0x11, 0x0, &(0x7f0000000640)) getsockopt$inet_tcp_TCP_REPAIR_WINDOW(r4, 0x6, 0x1d, &(0x7f00000000c0), &(0x7f0000000100)=0x14) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x8, r1) 05:29:18 executing program 5: syz_mount_image$btrfs(&(0x7f0000000040)='b\xba\xac\xa86\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f00000000c0)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6d9a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0xfffffecc, 0x10000}], 0x0, 0x0) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x4, 0x4182) r1 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) pwritev(r1, &(0x7f0000000340)=[{&(0x7f0000000140)='!', 0x1}], 0x1, 0x81805) r2 = dup2(r1, r1) ioctl$SG_GET_RESERVED_SIZE(r1, 0x2272, 0x0) r3 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x4, 0x4182) r4 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) pwritev(r4, &(0x7f0000000340)=[{&(0x7f0000000140)='!', 0x1}], 0x1, 0x81805) r5 = dup2(r4, r4) ioctl$SG_GET_RESERVED_SIZE(r4, 0x2272, 0x0) ioctl$LOOP_CHANGE_FD(r3, 0x4c00, r4) write$P9_RLERRORu(r5, &(0x7f00000003c0)=ANY=[@ANYBLOB="1400000007650d6c24ed92c8397291335cf616f0010200070062726f0c62077600b365a0a59e7eea"], 0x28) getsockopt$sock_cred(r5, 0x1, 0x11, 0x0, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(r5, 0x29, 0x23, &(0x7f00000007c0)={{{@in=@remote, @in6=@initdev}}, {{@in=@empty}, 0x0, @in6=@ipv4}}, &(0x7f00000008c0)=0xe8) sendfile(r5, r3, 0x0, 0x2400003e) r6 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000100)='TIPCv2\x00') sendmsg$TIPC_NL_SOCK_GET(r5, &(0x7f0000000280)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0xc0a00000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x34, r6, 0x1, 0x70bd2c, 0x25dfdbfd, {}, [@TIPC_NLA_MON={0x14, 0x9, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x800}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x3}]}, @TIPC_NLA_BEARER={0xc, 0x1, [@TIPC_NLA_BEARER_DOMAIN={0x8}]}]}, 0x34}, 0x1, 0x0, 0x0, 0x40000}, 0x0) ioctl$LOOP_CHANGE_FD(r0, 0x4c00, r1) write$P9_RLERRORu(r2, &(0x7f00000003c0)=ANY=[@ANYBLOB="1400000007650d6c24ed92c8397291335cf616f0010200070062726f0c62077600b365a0a59e7eea"], 0x28) getsockopt$sock_cred(r2, 0x1, 0x11, 0x0, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f00000007c0)={{{@in=@remote, @in6=@initdev}}, {{@in=@empty}, 0x0, @in6=@ipv4}}, &(0x7f00000008c0)=0xe8) sendfile(r2, r0, 0x0, 0x2400003e) setsockopt$l2tp_PPPOL2TP_SO_RECVSEQ(r2, 0x111, 0x2, 0x0, 0x4) 05:29:18 executing program 1 (fault-call:0 fault-nth:43): syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000140)='./file0\x00', 0xff, 0x1, &(0x7f0000000000)=[{&(0x7f0000000180)="8da4363ac0ed0000000000000001004d0100000000000000000000000009000000000000009748aeb81e1b00920efd9a0000010000000000098cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 05:29:18 executing program 3: r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x4, 0x4182) r1 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) pwritev(r1, &(0x7f0000000340)=[{&(0x7f0000000140)='!', 0x1}], 0x1, 0x81805) r2 = dup2(r1, r1) ioctl$SG_GET_RESERVED_SIZE(r1, 0x2272, 0x0) ioctl$LOOP_CHANGE_FD(r0, 0x4c00, r1) ioctl$SG_GET_KEEP_ORPHAN(r2, 0x2288, &(0x7f0000000280)) write$P9_RLERRORu(r2, &(0x7f00000003c0)=ANY=[@ANYBLOB="1400000007650d6c24ed92c8397291335cf616f0010200070062726f0c62077600b365a0a59e7eea"], 0x28) getsockopt$sock_cred(r2, 0x1, 0x11, 0x0, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f00000007c0)={{{@in=@remote, @in6=@initdev}}, {{@in=@empty}, 0x0, @in6=@ipv4}}, &(0x7f00000008c0)=0xe8) sendfile(r2, r0, 0x0, 0x2400003e) r3 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = fcntl$dupfd(r3, 0x0, 0xffffffffffffffff) getsockopt$EBT_SO_GET_INIT_INFO(r4, 0x0, 0x82, &(0x7f0000000180)={'broute\x00'}, &(0x7f0000000240)=0x50) ioctl$TIOCSCTTY(r4, 0x540e, 0xffffffff) getsockopt$sock_cred(r4, 0x1, 0x11, 0x0, &(0x7f0000000640)) ioctl$VIDIOC_G_TUNER(r4, 0xc054561d, &(0x7f00000000c0)={0x30f, "d212b2394271fea3360698cae69bdcd1397041aa5618c6c08088c0dde8d58aa8", 0x6768116426106bb8, 0x400, 0x2, 0x5, 0x2, 0x1, 0x2, 0x4}) ioctl$VFIO_SET_IOMMU(r2, 0x3b66, 0x3) syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 353.007922] FAULT_INJECTION: forcing a failure. [ 353.007922] name failslab, interval 1, probability 0, space 0, times 0 [ 353.019677] CPU: 0 PID: 24122 Comm: syz-executor.1 Not tainted 4.14.146 #0 [ 353.026705] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 353.037722] Call Trace: [ 353.040323] dump_stack+0x138/0x197 [ 353.043968] should_fail.cold+0x10f/0x159 [ 353.048130] ? __es_tree_search.isra.0+0x15f/0x1c0 [ 353.053067] should_failslab+0xdb/0x130 [ 353.053155] kmem_cache_alloc+0x47/0x780 [ 353.053173] __es_insert_extent+0x26c/0xe60 [ 353.053188] ext4_es_insert_extent+0x1f0/0x590 [ 353.053200] ? check_preemption_disabled+0x3c/0x250 [ 353.053212] ? ext4_es_find_delayed_extent_range+0x960/0x960 [ 353.053224] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 353.061276] ? ext4_es_find_delayed_extent_range+0x31d/0x960 [ 353.061290] ext4_ext_put_gap_in_cache+0xcb/0x110 [ 353.061299] ? ext4_zeroout_es+0x170/0x170 [ 353.061310] ? ext4_find_extent+0x64c/0x960 [ 353.061327] ext4_ext_map_blocks+0x1d4b/0x4fa0 [ 353.061339] ? save_trace+0x290/0x290 [ 353.061353] ? ext4_find_delalloc_cluster+0xb0/0xb0 [ 353.061360] ? __lock_is_held+0xb6/0x140 [ 353.061376] ? lock_acquire+0x16f/0x430 [ 353.061384] ? ext4_map_blocks+0x402/0x17c0 [ 353.061399] ext4_map_blocks+0xd3c/0x17c0 [ 353.061408] ? __lock_is_held+0xb6/0x140 [ 353.061419] ? check_preemption_disabled+0x3c/0x250 [ 353.061437] ? ext4_issue_zeroout+0x160/0x160 [ 353.061447] ? __brelse+0x50/0x60 [ 353.061460] ext4_getblk+0xac/0x450 [ 353.156803] ? ext4_iomap_begin+0x8a0/0x8a0 [ 353.161113] ? ext4_free_inode+0x1210/0x1210 [ 353.165505] ext4_bread+0x6e/0x1a0 [ 353.169041] ? ext4_getblk+0x450/0x450 [ 353.172915] ext4_append+0x14b/0x360 [ 353.176650] ext4_mkdir+0x531/0xc20 [ 353.180265] ? ext4_init_dot_dotdot+0x4c0/0x4c0 [ 353.184928] ? security_inode_mkdir+0xd0/0x110 [ 353.189506] vfs_mkdir+0x3ca/0x610 [ 353.193032] SyS_mkdir+0x1b7/0x200 [ 353.196558] ? SyS_mkdirat+0x210/0x210 [ 353.200432] ? do_syscall_64+0x53/0x640 [ 353.204404] ? SyS_mkdirat+0x210/0x210 [ 353.208277] do_syscall_64+0x1e8/0x640 [ 353.212146] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 353.216977] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 353.222160] RIP: 0033:0x458e47 [ 353.225330] RSP: 002b:00007f617e384a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 353.233019] RAX: ffffffffffffffda RBX: 0000000020000028 RCX: 0000000000458e47 [ 353.240271] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 0000000020000140 [ 353.247522] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 353.254775] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 353.262029] R13: 00000000004c8b25 R14: 00000000004dfbc8 R15: 0000000000000003 05:29:19 executing program 4: r0 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x1, 0x2) ioctl$VIDIOC_S_FREQUENCY(r0, 0x402c5639, &(0x7f0000000180)={0x6, 0x1, 0x6a}) 05:29:19 executing program 4: r0 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x1, 0x2) ioctl$VIDIOC_S_FREQUENCY(r0, 0x402c5639, &(0x7f0000000180)={0x0, 0x1}) r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ppp\x00', 0x20000, 0x0) ioctl$PPPIOCSPASS(r1, 0x40107447, &(0x7f00000000c0)={0x3, &(0x7f0000000080)=[{0x8, 0x9, 0x1, 0x2}, {0x9, 0x0, 0x2}, {0xe58, 0xff, 0x6, 0x494}]}) 05:29:19 executing program 2: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$ASHMEM_GET_PIN_STATUS(0xffffffffffffffff, 0x7709, 0x0) r0 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = fcntl$dupfd(r0, 0x0, 0xffffffffffffffff) getsockopt$EBT_SO_GET_INIT_INFO(r1, 0x0, 0x82, &(0x7f0000000180)={'broute\x00'}, &(0x7f0000000240)=0x50) ioctl$TIOCSCTTY(r1, 0x540e, 0xffffffff) getsockopt$sock_cred(r1, 0x1, 0x11, 0x0, &(0x7f0000000640)) ioctl$UI_SET_EVBIT(r1, 0x40045564, 0xe) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) 05:29:19 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000013c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000080)={0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}) syz_open_pts(r0, 0x0) r1 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dlm_plock\x00', 0x4ab0f231186e5b11, 0x0) ioctl$BLKPG(r1, 0x1269, &(0x7f0000000140)={0x4, 0x6, 0x21, &(0x7f0000000100)="011458215f7b20e7493ee499ecb2c035b0fe43966ed82849b8b26011cc3084b13a"}) ioctl$TIOCLINUX5(r0, 0x541c, &(0x7f0000000040)={0x5, 0x6, 0x0, 0x7fff, 0xb9a}) r2 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x1, 0x2) ioctl$VIDIOC_S_FREQUENCY(r2, 0x402c5639, &(0x7f0000000180)={0x0, 0x1}) r3 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x4, 0x4182) r4 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) pwritev(r4, &(0x7f0000000340)=[{&(0x7f0000000140)='!', 0x1}], 0x1, 0x81805) r5 = dup2(r4, r4) ioctl$SG_GET_RESERVED_SIZE(r4, 0x2272, 0x0) ioctl$LOOP_CHANGE_FD(r3, 0x4c00, r4) write$P9_RLERRORu(r5, &(0x7f0000000240)=ANY=[@ANYBLOB="1400000007650d6c24ed92c8397291335cf616f0010200070062726f0c62077600b365a0a59e7eead3f31e4b65bcf33e72903b079644379b35ce115aba00c5fa76e0627bd477a2ff235b68c90f2fb5d33e994a4abb2f60143de42df9602522eb5b659e9fed8e7aca4206687313eff575fd87022a6043c952b374a5fcbb7025d1652dd65d750f6628da0ef20dda8ac0bd828c710e6a7547c8f0e12b6a16c0782cbd10aed6f4d98f72e5b2e2bc5d0089c3bcf1322c6f638ba061bba69c542273fed521b9adc529b73bd13bf198894aa52d1c111b2b20bfe17400"/226], 0x28) prctl$PR_CAPBSET_DROP(0x18, 0xf) r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000013c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r6, 0x40045431, &(0x7f0000000080)) syz_open_pts(r6, 0x0) ioctl$GIO_FONTX(r6, 0x4b6b, &(0x7f0000000380)=""/84) getsockopt$sock_cred(r5, 0x1, 0x11, 0x0, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(r5, 0x29, 0x23, &(0x7f00000007c0)={{{@in=@remote, @in6=@initdev}}, {{@in=@empty}, 0x0, @in6=@ipv4}}, &(0x7f00000008c0)=0xe8) sendfile(r5, r3, 0x0, 0x2400003e) ioctl$VIDIOC_S_OUTPUT(r5, 0xc004562f, &(0x7f00000001c0)=0x4120) 05:29:19 executing program 1 (fault-call:0 fault-nth:44): syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000140)='./file0\x00', 0xff, 0x1, &(0x7f0000000000)=[{&(0x7f0000000180)="8da4363ac0ed0000000000000001004d0100000000000000000000000009000000000000009748aeb81e1b00920efd9a0000010000000000098cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 05:29:19 executing program 5: socket$inet6(0xa, 0x2, 0x4) syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x1040000, 0x0) [ 353.666641] FAULT_INJECTION: forcing a failure. [ 353.666641] name failslab, interval 1, probability 0, space 0, times 0 [ 353.696285] CPU: 1 PID: 24168 Comm: syz-executor.1 Not tainted 4.14.146 #0 [ 353.703347] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 353.712796] Call Trace: [ 353.715382] dump_stack+0x138/0x197 [ 353.718997] should_fail.cold+0x10f/0x159 [ 353.723132] should_failslab+0xdb/0x130 [ 353.727092] __kmalloc+0x2f0/0x7a0 [ 353.730617] ? check_preemption_disabled+0x3c/0x250 [ 353.735639] ? ext4_find_extent+0x709/0x960 [ 353.739961] ext4_find_extent+0x709/0x960 [ 353.744098] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 353.749533] ext4_ext_map_blocks+0x1a3/0x4fa0 [ 353.754016] ? save_trace+0x290/0x290 [ 353.757814] ? ext4_find_delalloc_cluster+0xb0/0xb0 [ 353.762813] ? __lock_is_held+0xb6/0x140 [ 353.766868] ? lock_acquire+0x16f/0x430 [ 353.770833] ? ext4_map_blocks+0x829/0x17c0 [ 353.775144] ext4_map_blocks+0x881/0x17c0 [ 353.779280] ? ext4_issue_zeroout+0x160/0x160 [ 353.783760] ? __brelse+0x50/0x60 [ 353.787204] ext4_getblk+0xac/0x450 [ 353.790816] ? ext4_iomap_begin+0x8a0/0x8a0 [ 353.795123] ? ext4_free_inode+0x1210/0x1210 [ 353.799529] ext4_bread+0x6e/0x1a0 [ 353.803053] ? ext4_getblk+0x450/0x450 [ 353.806930] ext4_append+0x14b/0x360 [ 353.810627] ext4_mkdir+0x531/0xc20 [ 353.814241] ? ext4_init_dot_dotdot+0x4c0/0x4c0 [ 353.818894] ? security_inode_mkdir+0xd0/0x110 [ 353.823460] vfs_mkdir+0x3ca/0x610 [ 353.826983] SyS_mkdir+0x1b7/0x200 [ 353.830604] ? SyS_mkdirat+0x210/0x210 [ 353.834474] ? do_syscall_64+0x53/0x640 [ 353.838432] ? SyS_mkdirat+0x210/0x210 [ 353.842304] do_syscall_64+0x1e8/0x640 [ 353.846176] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 353.851020] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 353.856204] RIP: 0033:0x458e47 [ 353.859388] RSP: 002b:00007f617e384a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 353.867088] RAX: ffffffffffffffda RBX: 0000000020000028 RCX: 0000000000458e47 [ 353.874340] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 0000000020000140 [ 353.881593] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 353.889204] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 353.896457] R13: 00000000004c8b25 R14: 00000000004dfbc8 R15: 0000000000000003 05:29:21 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="11dca50d5e0bcfe47bf070") prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x802102001ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = gettid() r2 = epoll_create(0x3) epoll_pwait(r2, &(0x7f0000000340)=[{}], 0x1, 0x7fff, &(0x7f0000000380), 0x8) ptrace$setopts(0x4206, r1, 0x0, 0x0) tkill(r1, 0x38) 05:29:21 executing program 3: timer_settime(0x0, 0x2, &(0x7f00000000c0), &(0x7f0000000100)) syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 05:29:21 executing program 2: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) openat$selinux_avc_hash_stats(0xffffffffffffff9c, &(0x7f00000000c0)='/selinux/avc/hash_stats\x00', 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) 05:29:21 executing program 5: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) lsetxattr$trusted_overlay_opaque(&(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)='trusted.overlay.opaque\x00', &(0x7f0000000280)='y\x00', 0x2, 0x0) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x4, 0x4182) r1 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) pwritev(r1, &(0x7f0000000340)=[{&(0x7f0000000140)='!', 0x1}], 0x1, 0x81805) r2 = dup2(r1, r1) ioctl$SG_GET_RESERVED_SIZE(r1, 0x2272, 0x0) ioctl$LOOP_CHANGE_FD(r0, 0x4c00, r1) write$P9_RLERRORu(r2, &(0x7f00000003c0)=ANY=[@ANYBLOB="1400000007650d6c24ed92c8397291335cf616f0010200070062726f0c62077600b365a0a59e7eea"], 0x28) getsockopt$sock_cred(r2, 0x1, 0x11, 0x0, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f00000007c0)={{{@in=@remote, @in6=@initdev}}, {{@in=@empty}, 0x0, @in6=@ipv4}}, &(0x7f00000008c0)=0xe8) sendfile(r2, r0, 0x0, 0x2400003e) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r2, 0x84, 0x64, &(0x7f00000000c0)=[@in={0x2, 0x4e22, @multicast2}, @in6={0xa, 0x4e23, 0x0, @empty, 0x200}, @in6={0xa, 0x4e21, 0x8, @local, 0x1000}], 0x48) 05:29:21 executing program 1 (fault-call:0 fault-nth:45): syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000140)='./file0\x00', 0xff, 0x1, &(0x7f0000000000)=[{&(0x7f0000000180)="8da4363ac0ed0000000000000001004d0100000000000000000000000009000000000000009748aeb81e1b00920efd9a0000010000000000098cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 05:29:21 executing program 4: r0 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x1, 0x2) ioctl$VIDIOC_S_FREQUENCY(r0, 0x402c5639, &(0x7f0000000180)={0x10000, 0x1}) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = syz_genetlink_get_family_id$tipc(&(0x7f00000000c0)='TIPC\x00') sendmsg$TIPC_CMD_RESET_LINK_STATS(r0, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x201000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x28, r2, 0x4, 0x70bd2b, 0x25dfdbfe, {{}, 0x0, 0x410c, 0x0, {0xc, 0x14, 'syz0\x00'}}, [""]}, 0x28}, 0x1, 0x0, 0x0, 0x4028822}, 0x4010) r3 = fcntl$dupfd(r1, 0x0, 0xffffffffffffffff) getsockopt$EBT_SO_GET_INIT_INFO(r3, 0x0, 0x82, &(0x7f0000000180)={'broute\x00'}, &(0x7f0000000240)=0x50) ioctl$TIOCSCTTY(r3, 0x540e, 0xffffffff) getsockopt$sock_cred(r3, 0x1, 0x11, 0x0, &(0x7f0000000640)) ioctl$VIDIOC_REQBUFS(r3, 0xc0145608, &(0x7f0000000040)={0x1000, 0xb, 0x1}) [ 356.041630] FAULT_INJECTION: forcing a failure. [ 356.041630] name failslab, interval 1, probability 0, space 0, times 0 [ 356.053060] CPU: 1 PID: 24208 Comm: syz-executor.1 Not tainted 4.14.146 #0 [ 356.062381] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 356.071742] Call Trace: [ 356.074347] dump_stack+0x138/0x197 [ 356.079396] should_fail.cold+0x10f/0x159 [ 356.083911] ? __es_tree_search.isra.0+0x15f/0x1c0 05:29:21 executing program 4: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x7c, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone(0x8280303, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) [ 356.088860] should_failslab+0xdb/0x130 [ 356.092940] kmem_cache_alloc+0x47/0x780 [ 356.097104] ? ext4_es_can_be_merged+0x16e/0x230 [ 356.101878] __es_insert_extent+0x26c/0xe60 [ 356.106236] ext4_es_insert_extent+0x1f0/0x590 [ 356.106253] ? ext4_es_find_delayed_extent_range+0x960/0x960 [ 356.106270] ext4_map_blocks+0xab1/0x17c0 [ 356.116656] ? ext4_issue_zeroout+0x160/0x160 [ 356.116670] ? __brelse+0x50/0x60 [ 356.116687] ext4_getblk+0xac/0x450 [ 356.116703] ? ext4_iomap_begin+0x8a0/0x8a0 [ 356.116716] ? ext4_free_inode+0x1210/0x1210 [ 356.125369] ext4_bread+0x6e/0x1a0 [ 356.125382] ? ext4_getblk+0x450/0x450 [ 356.125402] ext4_append+0x14b/0x360 [ 356.125413] ext4_mkdir+0x531/0xc20 [ 356.133988] ? ext4_init_dot_dotdot+0x4c0/0x4c0 [ 356.134003] ? security_inode_mkdir+0xd0/0x110 [ 356.134020] vfs_mkdir+0x3ca/0x610 [ 356.134032] SyS_mkdir+0x1b7/0x200 [ 356.134041] ? SyS_mkdirat+0x210/0x210 [ 356.134057] ? do_syscall_64+0x53/0x640 [ 356.134065] ? SyS_mkdirat+0x210/0x210 [ 356.134076] do_syscall_64+0x1e8/0x640 [ 356.189314] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 356.194167] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 356.199340] RIP: 0033:0x458e47 [ 356.202518] RSP: 002b:00007f617e384a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 356.210300] RAX: ffffffffffffffda RBX: 0000000020000028 RCX: 0000000000458e47 [ 356.217640] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 0000000020000140 [ 356.224897] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 356.232149] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 356.239404] R13: 00000000004c8b25 R14: 00000000004dfbc8 R15: 0000000000000003 [ 356.258072] print_req_error: I/O error, dev loop4, sector 0 05:29:22 executing program 1 (fault-call:0 fault-nth:46): syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000140)='./file0\x00', 0xff, 0x1, &(0x7f0000000000)=[{&(0x7f0000000180)="8da4363ac0ed0000000000000001004d0100000000000000000000000009000000000000009748aeb81e1b00920efd9a0000010000000000098cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 05:29:22 executing program 4: socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$int_in(r0, 0x5452, &(0x7f0000008ff8)=0x20000000000007) readv(r0, &(0x7f0000000140)=[{&(0x7f0000000000)=""/241, 0xf1}], 0x1) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) dup2(r2, r1) tkill(0x0, 0x0) 05:29:22 executing program 5: fsetxattr$security_evm(0xffffffffffffffff, &(0x7f00000000c0)='security.evm\x00', &(0x7f0000000100)=@sha1={0x1, "f0f630e43088adae1bcb5ef1a1f8a52c0b7e6df7"}, 0x15, 0x2) syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 05:29:22 executing program 2: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0xffffffffffffffff, 0x358, &(0x7f0000000000)=[{&(0x7f00000000c0)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x40, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) [ 356.472891] FAULT_INJECTION: forcing a failure. [ 356.472891] name failslab, interval 1, probability 0, space 0, times 0 [ 356.490803] CPU: 1 PID: 24244 Comm: syz-executor.1 Not tainted 4.14.146 #0 [ 356.497860] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 356.507309] Call Trace: [ 356.509909] dump_stack+0x138/0x197 [ 356.513559] should_fail.cold+0x10f/0x159 [ 356.517725] should_failslab+0xdb/0x130 [ 356.521713] kmem_cache_alloc+0x2d7/0x780 [ 356.525871] ? rcu_read_lock_sched_held+0x110/0x130 [ 356.530898] ? __mark_inode_dirty+0x2b7/0x1040 [ 356.535501] ext4_mb_new_blocks+0x509/0x3990 [ 356.539920] ? ext4_find_extent+0x709/0x960 [ 356.544277] ext4_ext_map_blocks+0x26cd/0x4fa0 [ 356.548890] ? ext4_find_delalloc_cluster+0xb0/0xb0 [ 356.553917] ? __lock_is_held+0xb6/0x140 [ 356.558015] ? lock_acquire+0x16f/0x430 [ 356.562016] ext4_map_blocks+0x881/0x17c0 [ 356.566190] ? ext4_issue_zeroout+0x160/0x160 [ 356.570694] ? __brelse+0x50/0x60 [ 356.574161] ext4_getblk+0xac/0x450 [ 356.577800] ? ext4_iomap_begin+0x8a0/0x8a0 [ 356.582141] ? ext4_free_inode+0x1210/0x1210 [ 356.586565] ext4_bread+0x6e/0x1a0 [ 356.590117] ? ext4_getblk+0x450/0x450 [ 356.594055] ext4_append+0x14b/0x360 [ 356.597784] ext4_mkdir+0x531/0xc20 [ 356.601430] ? ext4_init_dot_dotdot+0x4c0/0x4c0 [ 356.606119] ? security_inode_mkdir+0xd0/0x110 [ 356.610755] vfs_mkdir+0x3ca/0x610 [ 356.614310] SyS_mkdir+0x1b7/0x200 [ 356.617870] ? SyS_mkdirat+0x210/0x210 [ 356.621778] ? do_syscall_64+0x53/0x640 [ 356.625765] ? SyS_mkdirat+0x210/0x210 [ 356.629702] do_syscall_64+0x1e8/0x640 [ 356.633689] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 356.638544] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 356.643745] RIP: 0033:0x458e47 [ 356.646937] RSP: 002b:00007f617e384a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 356.654660] RAX: ffffffffffffffda RBX: 0000000020000028 RCX: 0000000000458e47 [ 356.661942] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 0000000020000140 05:29:22 executing program 4: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000080)=0x1, 0x4) connect$inet(r0, &(0x7f0000000000)={0x2, 0x0, @local}, 0x10) [ 356.669241] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 356.676522] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 356.683803] R13: 00000000004c8b25 R14: 00000000004dfbc8 R15: 0000000000000003 05:29:24 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="11dca50d5e0bcfe47bf070") prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x802102001ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = gettid() r2 = epoll_create(0x3) epoll_pwait(r2, &(0x7f0000000340)=[{}], 0x1, 0x7fff, &(0x7f0000000380), 0x8) ptrace$setopts(0x4206, r1, 0x0, 0x0) tkill(r1, 0x38) 05:29:24 executing program 5: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000013c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$GIO_FONTX(0xffffffffffffffff, 0x4b6b, &(0x7f0000000000)=""/50) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000080)) r1 = syz_open_dev$usb(&(0x7f00000000c0)='/dev/bus/usb/00#/00#\x00', 0x401, 0x40f001) r2 = syz_open_dev$vcsa(&(0x7f0000000300)='/dev/vcsa#\x00', 0x80000001, 0x20000) getsockopt$inet6_IPV6_IPSEC_POLICY(r2, 0x29, 0x22, 0x0, &(0x7f0000000780)) ioctl$VHOST_VSOCK_SET_RUNNING(r2, 0x4004af61, &(0x7f0000000140)=0x1) bind$inet(r1, &(0x7f0000000100)={0x2, 0x4e22, @broadcast}, 0x10) r3 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x4, 0x4182) r4 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) pwritev(r4, &(0x7f0000000340)=[{&(0x7f0000000140)='!', 0x1}], 0x1, 0x81805) r5 = dup2(r4, r4) ioctl$SG_GET_RESERVED_SIZE(r4, 0x2272, 0x0) ioctl$LOOP_CHANGE_FD(r3, 0x4c00, r4) write$P9_RLERRORu(r5, &(0x7f0000000380)=ANY=[@ANYBLOB="1400000007650d6c24ed9289aab56dc8397291335cf616f0010200070062726f0c62077600b365a0a59e7eea"], 0x28) getsockopt$sock_cred(r5, 0x1, 0x11, 0x0, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(r5, 0x29, 0x23, &(0x7f00000007c0)={{{@in=@remote, @in6=@initdev}}, {{@in=@empty}, 0x0, @in6=@ipv4}}, &(0x7f00000008c0)=0xe8) sendfile(r5, r3, 0x0, 0x2400003e) r6 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80980, 0x0) ioctl$SG_GET_VERSION_NUM(r6, 0x2282, &(0x7f0000000180)) syz_open_pts(r0, 0x0) ioctl$TIOCSCTTY(r0, 0x540e, 0x10001) syz_mount_image$btrfs(&(0x7f0000000040)='%\xaeff\x00\b', &(0x7f0000000080)='./file0\x00', 0x0, 0x235, &(0x7f0000000000), 0x1, 0x0) getsockname(r6, &(0x7f0000000240)=@ethernet={0x0, @link_local}, &(0x7f00000002c0)=0x80) 05:29:24 executing program 4: syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) sendmsg$netlink(0xffffffffffffffff, &(0x7f0000000680)={&(0x7f0000000500), 0xc, 0x0}, 0x0) ptrace$setsig(0x4203, 0x0, 0x0, &(0x7f00000002c0)={0x0, 0x1}) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) getsockopt$inet6_opts(0xffffffffffffffff, 0x29, 0x0, &(0x7f0000000580)=""/143, &(0x7f0000000340)=0xfee5) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000000000/0x1000)=nil}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb], 0xd000}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000380)) ioctl$KVM_RUN(r2, 0xae80, 0x0) socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000040)) 05:29:24 executing program 2: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = syz_open_dev$dri(&(0x7f0000000140)='/dev/dri/card#\x00', 0x0, 0x0) ioctl$DRM_IOCTL_SET_SAREA_CTX(r1, 0x4010641c, &(0x7f0000000440)={0x0, 0x0}) ioctl$DRM_IOCTL_SET_MASTER(r1, 0x641e) 05:29:24 executing program 1 (fault-call:0 fault-nth:47): syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000140)='./file0\x00', 0xff, 0x1, &(0x7f0000000000)=[{&(0x7f0000000180)="8da4363ac0ed0000000000000001004d0100000000000000000000000009000000000000009748aeb81e1b00920efd9a0000010000000000098cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 05:29:24 executing program 3: r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/netstat\x00') r1 = syz_open_dev$dri(&(0x7f0000000140)='/dev/dri/card#\x00', 0x0, 0x0) ioctl$DRM_IOCTL_SET_SAREA_CTX(r1, 0x4010641c, &(0x7f0000000440)={0x0, 0x0}) ioctl$DRM_IOCTL_AGP_ALLOC(r1, 0xc0206434, &(0x7f0000000100)={0x5, 0x0, 0x10001, 0x2}) ioctl$DRM_IOCTL_AGP_ALLOC(r0, 0xc0206434, &(0x7f0000000140)={0x5a, r2, 0x1, 0x1}) syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 359.148547] FAULT_INJECTION: forcing a failure. [ 359.148547] name failslab, interval 1, probability 0, space 0, times 0 [ 359.198940] CPU: 1 PID: 24285 Comm: syz-executor.1 Not tainted 4.14.146 #0 [ 359.206004] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 359.215370] Call Trace: [ 359.217980] dump_stack+0x138/0x197 [ 359.221627] should_fail.cold+0x10f/0x159 [ 359.225777] should_failslab+0xdb/0x130 [ 359.229756] kmem_cache_alloc+0x2d7/0x780 [ 359.233904] ? rcu_read_lock_sched_held+0x110/0x130 [ 359.238916] ? __mark_inode_dirty+0x2b7/0x1040 [ 359.243491] ext4_mb_new_blocks+0x509/0x3990 [ 359.247887] ? ext4_find_extent+0x709/0x960 [ 359.252202] ext4_ext_map_blocks+0x26cd/0x4fa0 [ 359.256776] ? ext4_find_delalloc_cluster+0xb0/0xb0 [ 359.261787] ? __lock_is_held+0xb6/0x140 [ 359.265838] ? lock_acquire+0x16f/0x430 [ 359.269804] ext4_map_blocks+0x881/0x17c0 [ 359.273943] ? ext4_issue_zeroout+0x160/0x160 [ 359.278423] ? __brelse+0x50/0x60 [ 359.281874] ext4_getblk+0xac/0x450 [ 359.285924] ? ext4_iomap_begin+0x8a0/0x8a0 [ 359.290235] ? ext4_free_inode+0x1210/0x1210 [ 359.294631] ext4_bread+0x6e/0x1a0 [ 359.298180] ? ext4_getblk+0x450/0x450 [ 359.302059] ext4_append+0x14b/0x360 [ 359.305778] ext4_mkdir+0x531/0xc20 [ 359.309391] ? ext4_init_dot_dotdot+0x4c0/0x4c0 [ 359.314066] ? security_inode_mkdir+0xd0/0x110 [ 359.318639] vfs_mkdir+0x3ca/0x610 [ 359.322165] SyS_mkdir+0x1b7/0x200 [ 359.325691] ? SyS_mkdirat+0x210/0x210 [ 359.329569] ? do_syscall_64+0x53/0x640 [ 359.333526] ? SyS_mkdirat+0x210/0x210 [ 359.337396] do_syscall_64+0x1e8/0x640 [ 359.341269] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 359.346101] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 359.352144] RIP: 0033:0x458e47 [ 359.355333] RSP: 002b:00007f617e384a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 359.363024] RAX: ffffffffffffffda RBX: 0000000020000028 RCX: 0000000000458e47 [ 359.370278] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 0000000020000140 [ 359.377540] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 359.384790] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 359.392045] R13: 00000000004c8b25 R14: 00000000004dfbc8 R15: 0000000000000003 05:29:25 executing program 1 (fault-call:0 fault-nth:48): syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000140)='./file0\x00', 0xff, 0x1, &(0x7f0000000000)=[{&(0x7f0000000180)="8da4363ac0ed0000000000000001004d0100000000000000000000000009000000000000009748aeb81e1b00920efd9a0000010000000000098cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 05:29:25 executing program 2: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = fcntl$dupfd(r1, 0x0, 0xffffffffffffffff) getsockopt$EBT_SO_GET_INIT_INFO(r2, 0x0, 0x82, &(0x7f0000000180)={'broute\x00'}, &(0x7f0000000240)=0x50) ioctl$TIOCSCTTY(r2, 0x540e, 0xffffffff) getsockopt$sock_cred(r2, 0x1, 0x11, 0x0, &(0x7f0000000640)) r3 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r3, 0x84, 0x6e, &(0x7f0000961fe4)=[@in={0x2, 0x0, @dev}], 0x10) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r3, 0x84, 0x1d, &(0x7f00000001c0)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES32=0x0], &(0x7f00000000c0)=0xfe10) r5 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x4, 0x4182) r6 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) pwritev(r6, &(0x7f0000000340)=[{&(0x7f0000000140)='!', 0x1}], 0x1, 0x81805) r7 = dup2(r6, r6) ioctl$SG_GET_RESERVED_SIZE(r6, 0x2272, 0x0) ioctl$LOOP_CHANGE_FD(r5, 0x4c00, r6) write$P9_RLERRORu(r7, &(0x7f00000003c0)=ANY=[@ANYBLOB="1400000007650d6c24ed92c8397291335cf616f0010200070062726f0c62077600b365a0a59e7eea"], 0x28) getsockopt$sock_cred(r7, 0x1, 0x11, 0x0, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(r7, 0x29, 0x23, &(0x7f00000007c0)={{{@in=@remote, @in6=@initdev}}, {{@in=@empty}, 0x0, @in6=@ipv4}}, &(0x7f0000000440)=0xe8) sendfile(r7, r5, 0x0, 0x2400003e) r8 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x4, 0x4182) r9 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) pwritev(r9, &(0x7f0000000340)=[{&(0x7f0000000140)='!', 0x1}], 0x1, 0x81805) r10 = dup2(r9, r9) ioctl$SG_GET_RESERVED_SIZE(r9, 0x2272, 0x0) ioctl$LOOP_CHANGE_FD(r8, 0x4c00, r9) write$P9_RLERRORu(r10, &(0x7f00000003c0)=ANY=[@ANYBLOB="1400000007650d6c24ed92c8397291335cf616f0010200070062726f0c62077600b365a0a59e7eea"], 0x28) getsockopt$sock_cred(r10, 0x1, 0x11, 0x0, 0x0) r11 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x4, 0x4182) r12 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) pwritev(r12, &(0x7f0000000340)=[{&(0x7f0000000140)='!', 0x1}], 0x1, 0x81805) r13 = dup2(r12, r12) ioctl$SG_GET_RESERVED_SIZE(r12, 0x2272, 0x0) ioctl$LOOP_CHANGE_FD(r11, 0x4c00, r12) write$P9_RLERRORu(r13, &(0x7f00000003c0)=ANY=[@ANYBLOB="1400000007650d6c24ed92c8397291335cf616f0010200070062726f0c62077600b365a0a59e7eea"], 0x28) getsockopt$sock_cred(r13, 0x1, 0x11, 0x0, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(r13, 0x29, 0x23, &(0x7f00000007c0)={{{@in=@remote, @in6=@initdev}}, {{@in=@empty}, 0x0, @in6=@ipv4}}, &(0x7f00000008c0)=0xe8) sendfile(r13, r11, 0x0, 0x2400003e) getsockopt$inet6_IPV6_XFRM_POLICY(r13, 0x29, 0x23, &(0x7f00000007c0)={{{@in=@remote, @in6=@initdev}}, {{@in=@empty}, 0x0, @in6=@ipv4}}, &(0x7f0000000400)=0x23) sendfile(r10, r8, 0x0, 0x2400003e) ioctl$VHOST_GET_VRING_BASE(r10, 0xc008af12, &(0x7f0000000380)) setsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(r7, 0x84, 0x6, &(0x7f00000002c0)={0x0, @in={{0x2, 0x4e24, @broadcast}}}, 0x84) getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r3, 0x84, 0x66, &(0x7f0000000040)={r4}, &(0x7f0000000140)=0x8) r14 = msgget$private(0x0, 0x10) msgsnd(r14, &(0x7f0000000280)=ANY=[@ANYBLOB="020000000000000087ef57a26e78a68aa4b49d9eaa5598394c0243d7761ebdb3fdd7f50450f9dd7423fc8eead5521a000000000000"], 0x35, 0xec6779a9ce9abbe) setsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(r2, 0x84, 0x6, &(0x7f0000000140)={r4, @in={{0x2, 0x4e23, @loopback}}}, 0x84) r15 = openat$proc_capi20ncci(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/capi/capi20ncci\x00', 0x200000, 0x0) ioctl$KVM_ARM_SET_DEVICE_ADDR(r15, 0x4010aeab, &(0x7f0000000100)={0x18, 0x3000}) [ 359.583637] FAULT_INJECTION: forcing a failure. [ 359.583637] name failslab, interval 1, probability 0, space 0, times 0 05:29:25 executing program 3: inotify_init1(0x400) r0 = syz_open_dev$mice(&(0x7f0000000180)='/dev/input/mice\x00', 0x0, 0x41080) getsockopt$IP6T_SO_GET_REVISION_TARGET(r0, 0x29, 0x45, &(0x7f00000001c0)={'HL\x00'}, &(0x7f0000001280)=0x1e) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$team(&(0x7f00000000c0)='team\x00') sendmsg$TEAM_CMD_OPTIONS_SET(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000880)=ANY=[@ANYBLOB="14000000", @ANYRES16=r2, @ANYBLOB="2100000000063f19060001ef8375"], 0x14}}, 0x0) r3 = socket$alg(0x26, 0x5, 0x0) bind$alg(r3, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'ghash-generic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, 0x0, 0x0) ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8933, &(0x7f0000000240)={'team0\x00', 0x0}) r5 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x4, 0x4182) r6 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) pwritev(r6, &(0x7f0000000340)=[{&(0x7f0000000140)='!', 0x1}], 0x1, 0x81805) r7 = dup2(r6, r6) ioctl$SG_GET_RESERVED_SIZE(r6, 0x2272, 0x0) ioctl$LOOP_CHANGE_FD(r5, 0x4c00, r6) write$P9_RLERRORu(r7, &(0x7f00000003c0)=ANY=[@ANYBLOB="1400000007650d6c24ed92c8397291335cf616f0010200070062726f0c62077600b365a0a59e7eea"], 0x28) getsockopt$sock_cred(r7, 0x1, 0x11, 0x0, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(r7, 0x29, 0x23, &(0x7f00000007c0)={{{@in=@remote, @in6=@initdev}}, {{@in=@empty}, 0x0, @in6=@ipv4}}, &(0x7f00000008c0)=0xe8) sendfile(r7, r5, 0x0, 0x2400003e) getsockopt$inet_IP_IPSEC_POLICY(r7, 0x0, 0x10, &(0x7f0000001340)={{{@in6=@mcast2, @in6=@empty, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@local}, 0x0, @in6}}, &(0x7f0000001440)=0xe8) sendmsg$TEAM_CMD_OPTIONS_GET(r0, &(0x7f00000015c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000001580)={&(0x7f0000001480)={0xd0, r2, 0x200, 0x70bd2b, 0x25dfdbfd, {}, [{{0x8, 0x1, r4}, {0xb4, 0x2, [{0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24, 0x1, 'lb_tx_hash_to_port_mapping\x00'}, {0x8}, {0x8, 0x4, r8}}, {0x8}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24, 0x1, 'mcast_rejoin_interval\x00'}, {0x8}, {0x8}}}, {0x38, 0x1, @mcast_rejoin_count={{0x24, 0x1, 'mcast_rejoin_count\x00'}, {0x8}, {0x8, 0x4, 0x9}}}]}}]}, 0xd0}}, 0x60) clone(0x2200, &(0x7f00000000c0)="97c4a8459306612d58b01a686fffd8227c981c4ce30c56ceea3251990c48a52a70764d92d0df37", &(0x7f0000000100), &(0x7f0000000140), &(0x7f0000000280)="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") syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000012c0)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 359.624044] CPU: 0 PID: 24313 Comm: syz-executor.1 Not tainted 4.14.146 #0 [ 359.631109] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 359.640483] Call Trace: [ 359.643092] dump_stack+0x138/0x197 [ 359.646741] should_fail.cold+0x10f/0x159 [ 359.650931] should_failslab+0xdb/0x130 [ 359.654947] __kmalloc_track_caller+0x2ec/0x790 [ 359.659634] ? strndup_user+0x62/0xf0 [ 359.663459] memdup_user+0x26/0xa0 [ 359.667014] strndup_user+0x62/0xf0 [ 359.670656] SyS_mount+0x3c/0x120 [ 359.674156] ? copy_mnt_ns+0x8c0/0x8c0 [ 359.678055] do_syscall_64+0x1e8/0x640 [ 359.681953] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 359.686931] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 359.692223] RIP: 0033:0x45c47a [ 359.695422] RSP: 002b:00007f617e384a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 359.703135] RAX: ffffffffffffffda RBX: 00007f617e384b40 RCX: 000000000045c47a [ 359.710418] RDX: 00007f617e384ae0 RSI: 0000000020000140 RDI: 00007f617e384b00 [ 359.717671] RBP: 0000000000000001 R08: 00007f617e384b40 R09: 00007f617e384ae0 [ 359.724941] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000004 [ 359.732193] R13: 00000000004c8b25 R14: 00000000004dfbc8 R15: 0000000000000003 05:29:25 executing program 2: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000013c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r1, 0x40045431, &(0x7f0000000080)) r2 = syz_open_pts(r1, 0x0) ioctl$TIOCSETD(r2, 0x5423, &(0x7f00000000c0)=0x5) ioctl$TCSETSF(r2, 0x5412, &(0x7f0000000000)={0xffffffc0}) ioctl$KDGKBLED(r2, 0x4b64, &(0x7f00000001c0)) r3 = openat$audio(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/audio\x00', 0x8906a89601d98cba, 0x0) write$selinux_load(r3, &(0x7f0000000100)={0xf97cff8c, 0x8, 'SE Linux', "61203a780f24d8511f9f8b32a2c5eb22a0470ce0eba433b6d840a84335443f081bb3c77cf7bf77ba325385ec95c5bbf6f5bad0f1676fcb8cbcdc26cc8d441b5fe5fcbb9590abbaf535965712d99c2d6c6c627ee9048056bee9cc9a646bbbab6fd7857f32eea3a5f9e29ff4c7876f4981cf8c76d63dbbe7bd7d85865e80898d81ddc56ab0974c457966eef3accb"}, 0x9d) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) 05:29:25 executing program 5: r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x4, 0x4182) r1 = memfd_create(&(0x7f0000000380)='\x00'/17, 0x4) pwritev(r1, &(0x7f0000000340)=[{&(0x7f0000000140)='!', 0x1}], 0x1, 0x81805) r2 = dup2(r1, r1) ioctl$SG_GET_RESERVED_SIZE(r1, 0x2272, 0x0) r3 = socket$alg(0x26, 0x5, 0x0) bind$alg(r3, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'ghash-generic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, 0x0, 0x0) r4 = dup2(r3, r0) symlinkat(&(0x7f0000000100)='./file1\x00', r4, &(0x7f0000000280)='./file0\x00') ioctl$LOOP_CHANGE_FD(r0, 0x4c00, r1) syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0) write$P9_RLERRORu(r2, &(0x7f00000003c0)=ANY=[@ANYBLOB="1400000007650d6c24ed92c8397291335cf616f0010200070062726f0c62077600b365a0a59e7eea"], 0x28) getsockopt$sock_cred(r2, 0x1, 0x11, 0x0, 0x0) ioctl$CAPI_GET_SERIAL(r2, 0xc0044308, &(0x7f00000000c0)=0x2) getsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f00000007c0)={{{@in=@remote, @in6=@initdev}}, {{@in=@empty}, 0x0, @in6=@ipv4}}, &(0x7f00000008c0)=0xe8) sendfile(r2, r0, 0x0, 0x2400003e) r5 = socket$alg(0x26, 0x5, 0x0) bind$alg(r5, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'ghash-generic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r5, 0x117, 0x1, 0x0, 0x0) pread64(r5, &(0x7f0000000180)=""/105, 0x69, 0x0) ioctl$LOOP_SET_CAPACITY(r2, 0x4c07) syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 05:29:25 executing program 1 (fault-call:0 fault-nth:49): syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000140)='./file0\x00', 0xff, 0x1, &(0x7f0000000000)=[{&(0x7f0000000180)="8da4363ac0ed0000000000000001004d0100000000000000000000000009000000000000009748aeb81e1b00920efd9a0000010000000000098cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 359.895049] FAULT_INJECTION: forcing a failure. [ 359.895049] name failslab, interval 1, probability 0, space 0, times 0 [ 359.967802] CPU: 1 PID: 24338 Comm: syz-executor.1 Not tainted 4.14.146 #0 [ 359.974866] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 359.984222] Call Trace: [ 359.986802] dump_stack+0x138/0x197 [ 359.990422] should_fail.cold+0x10f/0x159 [ 359.994563] should_failslab+0xdb/0x130 [ 359.998522] __kmalloc_track_caller+0x2ec/0x790 [ 360.003176] ? strndup_user+0x62/0xf0 [ 360.006961] memdup_user+0x26/0xa0 [ 360.010579] strndup_user+0x62/0xf0 [ 360.014198] SyS_mount+0x3c/0x120 [ 360.017635] ? copy_mnt_ns+0x8c0/0x8c0 [ 360.021523] do_syscall_64+0x1e8/0x640 [ 360.025394] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 360.030221] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 360.035388] RIP: 0033:0x45c47a [ 360.038575] RSP: 002b:00007f617e384a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 360.046270] RAX: ffffffffffffffda RBX: 00007f617e384b40 RCX: 000000000045c47a [ 360.053630] RDX: 00007f617e384ae0 RSI: 0000000020000140 RDI: 00007f617e384b00 [ 360.060883] RBP: 0000000000000001 R08: 00007f617e384b40 R09: 00007f617e384ae0 [ 360.068133] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000004 [ 360.075650] R13: 00000000004c8b25 R14: 00000000004dfbc8 R15: 0000000000000003 [ 360.147430] mkiss: ax0: crc mode is auto. [ 360.363923] mkiss: ax0: crc mode is auto. 05:29:27 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="11dca50d5e0bcfe47bf070") prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x802102001ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = gettid() r2 = epoll_create(0x3) epoll_pwait(r2, &(0x7f0000000340)=[{}], 0x1, 0x7fff, &(0x7f0000000380), 0x8) tkill(r1, 0x38) 05:29:27 executing program 4: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="11dca50d5e0bcfe47bf070") r1 = socket(0x11, 0x802, 0x0) ioctl$sock_inet_SIOCSIFFLAGS(r1, 0x8914, &(0x7f0000000040)={'team0\x00\n\xfa\xff\xff\xff\xff\xae\x00'}) ioctl$sock_inet_SIOCSIFFLAGS(0xffffffffffffffff, 0x8914, &(0x7f0000000240)={'team0\x00\xfd\xff\xfd\xff\xc0\x00\a\x00\"\xff', 0x4bfd}) 05:29:27 executing program 1 (fault-call:0 fault-nth:50): syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000140)='./file0\x00', 0xff, 0x1, &(0x7f0000000000)=[{&(0x7f0000000180)="8da4363ac0ed0000000000000001004d0100000000000000000000000009000000000000009748aeb81e1b00920efd9a0000010000000000098cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 05:29:27 executing program 5: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = syz_open_dev$vbi(0x0, 0x2, 0x2) r1 = getgid() write$FUSE_ENTRY(r0, &(0x7f0000000200)={0x90, 0x0, 0x0, {0x0, 0x3, 0xf24, 0x0, 0x5, 0x0, {0x0, 0x0, 0x9, 0x0, 0x4, 0x5, 0x9, 0x0, 0x0, 0x3, 0x0, 0x0, r1, 0x1, 0x1}}}, 0x26) r2 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000000000)={0x0, 0x0, 0x0}, &(0x7f0000000040)=0xc) setfsgid(r4) keyctl$get_persistent(0x7, r3, 0x0) syz_mount_image$hfsplus(&(0x7f00000000c0)='hfsplus\x00', &(0x7f0000000100)='./file0\x00', 0x2008000000000000, 0x2, &(0x7f0000000140)=[{&(0x7f0000000280)="b4f82ca36c9f24fe91b05f7b721098285cfeb7adea5e1c4290a6c39c06f0a1fda960bd52dd5570acd4eb10a50b77603fbc1d0ee7168028dc2a047059f6daa6d9a924904067b00d681d46863ef085b081c9dff7316b26cf41d457093aa098fbef4ddbf029e36f37ebb40deede4241e58736a064aafab46fcf67636a6ae177f1d638252930ab17ee46cc97b4755caa49b984c60094a605816939253970552339810caa5eba6815e66e1ce95b2e21603ed386697b7866ae8602fd42f88fd8ee5ed8b39f8a2ff14b", 0xc6, 0x3f}, {&(0x7f0000000380)="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", 0x1000, 0x6}], 0x2, &(0x7f0000001380)={[{@gid={'gid', 0x3d, r1}}, {@type={'type', 0x3d, "14ae875c"}}, {@type={'type', 0x3d, "6420d8a8"}}, {@force='force'}, {@part={'part', 0x3d, 0x3}}, {@barrier='barrier'}, {@session={'session', 0x3d, 0x7f}}, {@nobarrier='nobarrier'}], [{@smackfstransmute={'smackfstransmute', 0x3d, 'btrfs\x00'}}, {@fscontext={'fscontext', 0x3d, 'user_u'}}, {@obj_user={'obj_user', 0x3d, 'btrfs\x00'}}, {@hash='hash'}]}) 05:29:27 executing program 3: syz_mount_image$btrfs(&(0x7f0000000040)='b\a\xea\xd3\xd3\x00', &(0x7f00000000c0)='./file0\x00', 0x5, 0x0, &(0x7f0000000000), 0x20000, 0x0) r0 = getpid() tkill(r0, 0x9) r1 = getpid() tkill(r1, 0x9) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000740)={0xffffffffffffffff, 0xc0, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000000c0)={r1, 0xffffffffffffffff, 0x0, 0x6, &(0x7f0000000080)='ramfs\x00', r2}, 0x1eb) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={r0, 0xffffffffffffffff, 0x0, 0x12, &(0x7f0000000000)='selinuxppp1nodev!\x00', r2}, 0x30) ptrace$pokeuser(0x6, r3, 0x91, 0x2) 05:29:27 executing program 2: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="8da47650c0e60000000000000001004d0100000000fff6f2a2299748aeb81e1b00920efd9a113cac8c040000010000000000018cff5266535f21c0f96000000000000000aa", 0x45, 0x10000}], 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) [ 362.184445] FAULT_INJECTION: forcing a failure. [ 362.184445] name failslab, interval 1, probability 0, space 0, times 0 [ 362.204173] CPU: 1 PID: 24400 Comm: syz-executor.1 Not tainted 4.14.146 #0 [ 362.211226] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 362.220576] Call Trace: [ 362.220598] dump_stack+0x138/0x197 [ 362.220617] should_fail.cold+0x10f/0x159 05:29:28 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="11dca50d5e0bcfe47bf070") prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x802102001ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = gettid() r2 = epoll_create(0x3) epoll_pwait(r2, &(0x7f0000000340)=[{}], 0x1, 0x7fff, &(0x7f0000000380), 0x8) tkill(r1, 0x38) [ 362.220634] should_failslab+0xdb/0x130 [ 362.220647] kmem_cache_alloc_trace+0x2e9/0x790 [ 362.220656] ? kasan_check_write+0x14/0x20 [ 362.220665] ? _copy_from_user+0x99/0x110 [ 362.220678] copy_mount_options+0x5c/0x2f0 [ 362.220690] SyS_mount+0x87/0x120 [ 362.239658] ? copy_mnt_ns+0x8c0/0x8c0 [ 362.239675] do_syscall_64+0x1e8/0x640 [ 362.239684] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 362.239702] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 362.239710] RIP: 0033:0x45c47a [ 362.239715] RSP: 002b:00007f617e384a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 05:29:28 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="11dca50d5e0bcfe47bf070") prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x802102001ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = gettid() r2 = epoll_create(0x3) epoll_pwait(r2, &(0x7f0000000340)=[{}], 0x1, 0x7fff, &(0x7f0000000380), 0x8) tkill(r1, 0x38) 05:29:28 executing program 3: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = syz_open_dev$adsp(&(0x7f00000000c0)='/dev/adsp#\x00', 0x0, 0x80040) r1 = syz_open_dev$vcsa(&(0x7f0000000300)='/dev/vcsa#\x00', 0x80000001, 0x20000) getsockopt$inet6_IPV6_IPSEC_POLICY(r1, 0x29, 0x22, 0x0, &(0x7f0000000780)) ioctl$RTC_PLL_SET(r1, 0x40207012, &(0x7f0000000140)={0x5, 0x3, 0x7d1, 0x1ff, 0x100, 0x4, 0x100}) ioctl$IOC_PR_PREEMPT_ABORT(r0, 0x401870cc, &(0x7f0000000100)={0x8, 0x3, 0x40, 0xffce}) ioctl$EVIOCGEFFECTS(r0, 0x80044584, &(0x7f0000000280)=""/4096) [ 362.284827] RAX: ffffffffffffffda RBX: 00007f617e384b40 RCX: 000000000045c47a [ 362.292101] RDX: 00007f617e384ae0 RSI: 0000000020000140 RDI: 00007f617e384b00 [ 362.299378] RBP: 0000000000000001 R08: 00007f617e384b40 R09: 00007f617e384ae0 [ 362.306916] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000004 [ 362.314198] R13: 00000000004c8b25 R14: 00000000004dfbc8 R15: 0000000000000003 05:29:28 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="11dca50d5e0bcfe47bf070") prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x802102001ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = gettid() epoll_create(0x3) ptrace$setopts(0x4206, r1, 0x0, 0x0) tkill(r1, 0x38) 05:29:28 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptmx\x00', 0x8000000002046, 0x0) r1 = dup2(r0, r0) write$P9_RMKNOD(r1, &(0x7f0000000000)={0x103b1}, 0xfffffee2) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000080)) r2 = syz_open_pts(r0, 0x0) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070") ioctl$TCSETSF(r2, 0x5403, &(0x7f0000000040)={0x0, 0x0, 0x1000}) 05:29:28 executing program 1 (fault-call:0 fault-nth:51): syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000140)='./file0\x00', 0xff, 0x1, &(0x7f0000000000)=[{&(0x7f0000000180)="8da4363ac0ed0000000000000001004d0100000000000000000000000009000000000000009748aeb81e1b00920efd9a0000010000000000098cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 05:29:28 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="11dca50d5e0bcfe47bf070") prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x802102001ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = gettid() epoll_create(0x3) ptrace$setopts(0x4206, r1, 0x0, 0x0) tkill(r1, 0x38) 05:29:28 executing program 2: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0xfffffffffffffe78, 0x10000}], 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = shmget(0x1, 0x1000, 0x480, &(0x7f0000ffd000/0x1000)=nil) shmctl$SHM_STAT(r1, 0xd, &(0x7f0000001600)=""/195) r2 = openat$dlm_control(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dlm-control\x00', 0x20000, 0x0) ioctl$VIDIOC_S_TUNER(r2, 0x4054561e, &(0x7f0000000100)={0x7fffffff, "1b6c78c4f20b498b2923bba06cca4865fd15425ca1a0bf20dc040a247fbefd93", 0x3, 0x100, 0x7, 0x6, 0x2, 0x4, 0x3, 0x3ff}) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f00000001c0)=0x0) r4 = getpid() tkill(r4, 0x9) r5 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$sock_cred(r5, 0x1, 0x11, &(0x7f0000000000)={0x0, 0x0}, &(0x7f0000000040)=0xc) keyctl$get_persistent(0x7, r6, 0x0) sendmsg$nl_generic(r2, &(0x7f0000002680)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x9893004}, 0xc, &(0x7f0000002640)={&(0x7f0000000280)={0x1350, 0x1c, 0x201, 0x70bd29, 0x25dfdbfe, {0x1f}, [@generic="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", @generic="ba2eb959d9a756d6b2b77a5739678ee0ce85e88aac7439982c05a2ae93063893dd4064974be138d01211d932705e7c94", @generic="ef86fc6af8ea2a68a4657833cbb26ac4fc136bd759a49b1d75ad1439b578c5e2894a9f682764e4d0c2d79364c706aad7662d1f810efb93478440468a8aa073444b2de18eb68fd217f5f03cad2f1ad9a32d42015cef7e489b843e46618d7516f668af5a176480977680a9eea5e0fbe62d41fb4e1a93116c38cbe82c4a14", @typed={0x8, 0x6a, @pid=r4}, @typed={0x8, 0x6b, @u32=0x5}, @typed={0x58, 0x80, @binary="02e2e803dd5782c93b990011d62e0d2ed1da063f82a1d54f8d534ffc81c7ec5b83248cff656ea7620e9c3177183fd31cbc8f1c51b4cee97cbbc787a3763b7b17079563ab1063cbc5fe588aa06f427d247b20"}, @nested={0x208, 0x4d, [@typed={0x14, 0x12, @ipv6=@remote}, @typed={0x8, 0x7a, @ipv4=@rand_addr=0xfffff801}, @typed={0x14, 0xa, @ipv6=@initdev={0xfe, 0x88, [], 0x1, 0x0}}, @generic="a2ec6a2df1dff775eeebad0632e420f13490ec925b0a952585554ab21fea4077b8f975c382", @generic="3940282892858b929f77b007c023e256b54922d49b43101eeedcc64486ad4ef50aa4f8a6785400a18657d791e1d34d971b2300ffc7b06e692794a5dc4fa19936fc3237990ff57cc634f6e3c622169f45e619fadd27b0717078640c4e271184498d221f39bb9c2e2e99863718a0ebb0d8afda0487c1b31c2bf0567aed5771491316c318942b5e9ac54c69d512d06de90670c90bae84aed0ffe2d717b67e48e9e23a6594848031c5142662c8bfef3bac5d8d92ac711b1f2b0a2b53371bae79093de7e7828e6cb10281120bdaf7", @generic="2cf9f2a46c5e360c857b09fe6b9aacb2bc18760491c171470fbdcff10cdc85e53008cb2b129d7dc558c147a2c6c4cc6812b9f126c7a1a5e7aa70a323de67e7ff5797ebabed24a6f062ec4412cd7d6d371b0b2d0f055de5e2784552c197065e40b2bc114fcf0ca57382b082eb1f16221ad822bc96444bf592fd1fb767bcd23fdd4666160bdac651f7d9b6b23e7f4a615d00d35c2ff145d70b88d4f8fb83cfd100292988084d7ab6eb48c1abf370e38918fbedf3c9db758aca3c7836007cedde0bef", @typed={0x8, 0x22, @uid=r6}, @typed={0x8, 0x8a, @u32=0x200}, @typed={0x8, 0x8a, @pid=r3}, @typed={0x8, 0x41, @fd}]}, @typed={0x14, 0x55, @ipv6=@loopback}, @typed={0x8, 0x80, @u32=0x3f}]}, 0x1350}, 0x1, 0x0, 0x0, 0x4}, 0x4004000) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) fcntl$setpipe(r0, 0x407, 0x1) 05:29:28 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="11dca50d5e0bcfe47bf070") prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x802102001ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = gettid() epoll_create(0x3) ptrace$setopts(0x4206, r1, 0x0, 0x0) tkill(r1, 0x38) 05:29:28 executing program 5: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = syz_open_dev$vcsa(&(0x7f0000000300)='/dev/vcsa#\x00', 0x80000001, 0x20000) getsockopt$inet6_IPV6_IPSEC_POLICY(r0, 0x29, 0x22, 0x0, &(0x7f0000000780)) r1 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x4, 0x4182) r2 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) pwritev(r2, &(0x7f0000000340)=[{&(0x7f0000000140)='!', 0x1}], 0x1, 0x81805) r3 = dup2(r2, r2) ioctl$SG_GET_RESERVED_SIZE(r2, 0x2272, 0x0) ioctl$LOOP_CHANGE_FD(r1, 0x4c00, r2) write$P9_RLERRORu(r3, &(0x7f00000003c0)=ANY=[@ANYBLOB="1400000007650d6c24ed92c8397291335cf616f0010200070062726f0c62077600b365a0a59e7eea"], 0x28) getsockopt$sock_cred(r3, 0x1, 0x11, 0x0, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(r3, 0x29, 0x23, &(0x7f00000007c0)={{{@in=@remote, @in6=@initdev}}, {{@in=@empty}, 0x0, @in6=@ipv4}}, &(0x7f00000008c0)=0xe8) sendfile(r3, r1, 0x0, 0x2400003e) ioctl$KVM_GET_SUPPORTED_CPUID(r3, 0xc008ae05, &(0x7f00000000c0)=""/39) write$P9_RREADDIR(r0, &(0x7f0000000340)=ANY=[@ANYBLOB="68000000290100000000407204000000070000000000000008000000000000000207002e2f66696c653022040000000200000000000000350d0000000000000607002e2f66696c6530b403000000080000000000000005000000000000008107002e2f66696c6530483b12eb8af12fd5bfd24e6ac07f5405886c69c81d2ecf2088bb860bcd500071e395853b864924a7ab128efa63f2e43808fe4b7f40de1eaba63b36499cedcd95f2f8aa3ffc0273cc08a312d39ac560c8c9645bc7012982d1272a706093e9315dbd13e4afee46fc55b64ded8343e74e7c814e901b9c7ff1f9aa88"], 0x68) 05:29:28 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="11dca50d5e0bcfe47bf070") prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x802102001ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = gettid() epoll_pwait(0xffffffffffffffff, &(0x7f0000000340)=[{}], 0x1, 0x7fff, &(0x7f0000000380), 0x8) ptrace$setopts(0x4206, r1, 0x0, 0x0) tkill(r1, 0x38) 05:29:28 executing program 3: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$sock_inet_SIOCGIFBRDADDR(0xffffffffffffffff, 0x8919, &(0x7f00000000c0)={'team_slave_0\x00', {0x2, 0x4e20, @initdev={0xac, 0x1e, 0x1, 0x0}}}) r0 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000100)='/dev/snapshot\x00', 0x0, 0x0) getsockopt$inet_udp_int(r0, 0x11, 0x65, &(0x7f0000000140), &(0x7f0000000180)=0x4) 05:29:28 executing program 2: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$selinux_checkreqprot(0xffffffffffffff9c, &(0x7f0000002f40)='/selinux/checkreqprot\x00', 0x200, 0x0) r2 = syz_genetlink_get_family_id$tipc(&(0x7f0000002fc0)='TIPC\x00') sendmsg$TIPC_CMD_SET_LINK_PRI(r1, &(0x7f00000030c0)={&(0x7f0000002f80)={0x10, 0x0, 0x0, 0x76b72bffad779b78}, 0xc, &(0x7f0000003080)={&(0x7f0000003000)={0x68, r2, 0x0, 0x70bd27, 0x25dfdbff, {{}, 0x0, 0x4108, 0x0, {0x4c, 0x18, {0x4, @media='udp\x00'}}}, ["", "", ""]}, 0x68}, 0x1, 0x0, 0x0, 0x1}, 0xed470ca11a648349) [ 362.593434] FAULT_INJECTION: forcing a failure. [ 362.593434] name failslab, interval 1, probability 0, space 0, times 0 [ 362.653653] CPU: 0 PID: 24459 Comm: syz-executor.1 Not tainted 4.14.146 #0 [ 362.660722] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 362.670169] Call Trace: [ 362.672775] dump_stack+0x138/0x197 [ 362.676432] should_fail.cold+0x10f/0x159 [ 362.680600] should_failslab+0xdb/0x130 [ 362.684582] kmem_cache_alloc_trace+0x2e9/0x790 [ 362.684597] ? kasan_check_write+0x14/0x20 [ 362.684610] ? _copy_from_user+0x99/0x110 [ 362.684624] copy_mount_options+0x5c/0x2f0 [ 362.684637] SyS_mount+0x87/0x120 [ 362.693524] ? copy_mnt_ns+0x8c0/0x8c0 [ 362.693537] do_syscall_64+0x1e8/0x640 [ 362.693545] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 362.693560] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 362.693567] RIP: 0033:0x45c47a [ 362.693572] RSP: 002b:00007f617e384a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 362.734376] RAX: ffffffffffffffda RBX: 00007f617e384b40 RCX: 000000000045c47a [ 362.741633] RDX: 00007f617e384ae0 RSI: 0000000020000140 RDI: 00007f617e384b00 05:29:28 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="11dca50d5e0bcfe47bf070") prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x802102001ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = gettid() epoll_pwait(0xffffffffffffffff, &(0x7f0000000340)=[{}], 0x1, 0x7fff, &(0x7f0000000380), 0x8) ptrace$setopts(0x4206, r1, 0x0, 0x0) tkill(r1, 0x38) [ 362.749492] RBP: 0000000000000001 R08: 00007f617e384b40 R09: 00007f617e384ae0 [ 362.756743] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000004 [ 362.763996] R13: 00000000004c8b25 R14: 00000000004dfbc8 R15: 0000000000000003 05:29:28 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="11dca50d5e0bcfe47bf070") prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x802102001ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = gettid() epoll_pwait(0xffffffffffffffff, &(0x7f0000000340)=[{}], 0x1, 0x7fff, &(0x7f0000000380), 0x8) ptrace$setopts(0x4206, r1, 0x0, 0x0) tkill(r1, 0x38) 05:29:28 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="11dca50d5e0bcfe47bf070") prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x802102001ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = epoll_create(0x3) epoll_pwait(r1, &(0x7f0000000340)=[{}], 0x1, 0x7fff, &(0x7f0000000380), 0x8) ptrace$setopts(0x4206, 0x0, 0x0, 0x0) tkill(0x0, 0x38) 05:29:29 executing program 4: r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) r2 = dup3(r1, r0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000040)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffc) keyctl$search(0xa, r3, &(0x7f0000000100)='keyring\x00', &(0x7f0000000140)={'syz', 0x1}, 0x0) 05:29:29 executing program 1 (fault-call:0 fault-nth:52): syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000140)='./file0\x00', 0xff, 0x1, &(0x7f0000000000)=[{&(0x7f0000000180)="8da4363ac0ed0000000000000001004d0100000000000000000000000009000000000000009748aeb81e1b00920efd9a0000010000000000098cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 05:29:29 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="11dca50d5e0bcfe47bf070") prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x802102001ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = epoll_create(0x3) epoll_pwait(r1, &(0x7f0000000340)=[{}], 0x1, 0x7fff, &(0x7f0000000380), 0x8) ptrace$setopts(0x4206, 0x0, 0x0, 0x0) tkill(0x0, 0x38) 05:29:29 executing program 5: r0 = syz_open_dev$audion(&(0x7f00000000c0)='/dev/audio#\x00', 0x38e, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX_OLD(r0, 0x84, 0x6b, &(0x7f0000000100)=[@in6={0xa, 0x4e20, 0x0, @dev={0xfe, 0x80, [], 0x14}, 0x8}, @in={0x2, 0x4e24, @local}, @in6={0xa, 0x4e22, 0x0, @mcast2, 0x800}], 0x48) r1 = openat$zero(0xffffffffffffff9c, &(0x7f0000000180)='/dev/zero\x00', 0x1, 0x0) setsockopt$nfc_llcp_NFC_LLCP_MIUX(r1, 0x118, 0x1, &(0x7f00000001c0)=0x6, 0x4) syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 05:29:29 executing program 3: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0xfffffffffffffff8, 0xaaaaaaaaaaaaa96, &(0x7f0000001700)=[{&(0x7f0000001840)="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", 0x0, 0x3}, {&(0x7f0000001280)="dae56a613a1866c61856b7d1c8dbafbe9b76017806c9ddd18a4384520e027ad559b74c76d51a4caaa7f375f93f886539639919ce63acd7dfa148917b888a988afd008a7da434e836e2e6f49aef40aa680033bcbe9a920d8ba8b5b11770cc55168c8f7f785f07ce5b812aa90632bd0a3e5517346b0851d91664fac634c847ad667b868008cc147631b14cfb0e0050230311a7043738051510508615f56f9ed6ef7fdc48f637da02839015ba9bad13b833ed6d45da2a5a5f8a3d27fcd172d25e5571723bba1444ce755f4c2e97", 0x11e, 0xfff}, {&(0x7f0000002840)="df67684db8f308df78690166eedcd0b11c9c0a4cb808732b14247c04556c58f6e78b0668d39988f14527393c7acef41922d2de182049c1eae0c4b4f79552299e42e5cf79ce08032436e92d83f1f4f4df5af0aecbd5364e497f5eee6dc3abab8ce8cb3a39ddebd249ea79f1239478189b45c759d53f08fc96418fea165d5637d7f3551d82f92c8cba597f9f4e4b974369dc65cdb6f330f849bedd293c475e3d95c27299e5b18ab4a8e13f8bd378000d2cb84d95a4a59f2358", 0xfffffffffffffeba, 0x3}, {&(0x7f0000000180)="94073450c32589b4bfc861e7682949692f723d9956164b8dc9c516637746947921d881577a", 0x0, 0xf72}, {&(0x7f0000001440)="1e206e8b8bf517231fc7bcc093377feaef7a0cf1676dce330c2bd9bc2ce6ffa42311f9987e242d454e1f6938f6162a9fb7e66f34b44802313ef78747d058998dd39f7d2c59634d2f56a042290d2cbd38a3f9243419e4a9de56abb162e422dc9290f563cf1016fc247b4aed2401352386c59d06d8499d1bbbf220c103a6681deff64b3d6a6a241d95213e2c2bfba9842bed9e229b62f3ff26ceb5eb0d6ad081bf904f3db96e7339caf5676a171b154fc39e0d47aef0113b463ffac39436e088bd3458e26d198d5babc93d0d1ba225ec4663ba0498efde352027adf11a", 0x0, 0x401}, {&(0x7f0000001800)="1636b7c079f4693062a2f3f6bef381f033e282230f235997e9eaa6ac89e570f981f086bc4cec66f5223b19b788b700"/61, 0x0, 0xfffffffffffffffe}, {&(0x7f0000001540)="4edccdd3eb36dd29270ae9053923b5edf659b7d25e20d792e9f3c5ca039ede52b0ba343e9e74b82dff0869815f1fa128fe989a8067784ce7c79a9366134125b37ab36cafe6cc4b6f5dcb1cc80a0404f4b4ee8bf012f337e13a102502a5", 0xffffffffffffff55, 0x8}, {&(0x7f00000015c0)="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", 0xffffffffffffffa1, 0x80}, {&(0x7f00000016c0)="ef592833e3866d4e1596a18aa815640930a6206c14", 0xfffffffffffffcf0, 0x4}], 0x120808, 0x0) uselib(&(0x7f00000000c0)='./file0\x00') r0 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = fcntl$dupfd(r0, 0x0, 0xffffffffffffffff) getsockopt$EBT_SO_GET_INIT_INFO(r1, 0x0, 0x82, &(0x7f0000000180)={'broute\x00'}, &(0x7f0000000240)=0x50) ioctl$TIOCSCTTY(r1, 0x540e, 0xffffffff) r2 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000280)='/dev/dlm_plock\x00', 0x765060, 0x0) setsockopt$inet_sctp_SCTP_AUTO_ASCONF(r2, 0x84, 0x1e, &(0x7f00000002c0)=0x8, 0x4) getsockopt$sock_cred(r1, 0x1, 0x11, 0x0, &(0x7f0000000640)) r3 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r3, 0x84, 0x6e, &(0x7f0000961fe4)=[@in={0x2, 0x0, @dev}], 0x10) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r3, 0x84, 0x1d, &(0x7f00000001c0)={0x1, [0x0]}, &(0x7f00000000c0)=0xfe10) getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r3, 0x84, 0x66, &(0x7f0000000040)={r4}, &(0x7f0000000140)=0x8) getsockopt$inet_sctp6_SCTP_STATUS(0xffffffffffffffff, 0x84, 0xe, &(0x7f00000001c0)={r4, 0x0, 0x3ff, 0x200, 0x20, 0x6, 0xffff, 0x7fffffff, {0x0, @in6={{0xa, 0x4e20, 0x400, @dev={0xfe, 0x80, [], 0xc}, 0xffff}}, 0x0, 0x5, 0x8, 0x8, 0xffffffff}}, &(0x7f0000000000)=0xb0) getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(r1, 0x84, 0x73, &(0x7f0000000100)={r5, 0x7a23, 0x20, 0x663, 0xe1}, &(0x7f0000000140)=0x18) 05:29:29 executing program 2: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x4, 0x4182) r1 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) pwritev(r1, &(0x7f0000000340)=[{&(0x7f0000000140)='!', 0x1}], 0x1, 0x81805) r2 = dup2(r1, r1) ioctl$SG_GET_RESERVED_SIZE(r1, 0x2272, 0x0) ioctl$LOOP_CHANGE_FD(r0, 0x4c00, r1) write$P9_RLERRORu(r2, &(0x7f00000003c0)=ANY=[@ANYBLOB="1400000007650d6c24ed92c8397291335cf6218a8c5100070062726f0c62077600b365a0a59e7eea"], 0x28) getsockopt$sock_cred(r2, 0x1, 0x11, 0x0, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f00000007c0)={{{@in=@remote, @in6=@initdev}}, {{@in=@empty}, 0x0, @in6=@ipv4}}, &(0x7f00000008c0)=0xe8) sendfile(r2, r0, 0x0, 0x2400003e) ioctl$KVM_DEASSIGN_PCI_DEVICE(r2, 0x4040ae72, &(0x7f00000000c0)={0x6, 0x1000, 0x3, 0x2, 0x1}) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) 05:29:29 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="11dca50d5e0bcfe47bf070") prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x802102001ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = epoll_create(0x3) epoll_pwait(r1, &(0x7f0000000340)=[{}], 0x1, 0x7fff, &(0x7f0000000380), 0x8) ptrace$setopts(0x4206, 0x0, 0x0, 0x0) tkill(0x0, 0x38) [ 363.360979] FAULT_INJECTION: forcing a failure. [ 363.360979] name failslab, interval 1, probability 0, space 0, times 0 [ 363.380564] CPU: 1 PID: 24529 Comm: syz-executor.1 Not tainted 4.14.146 #0 [ 363.387619] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 363.397088] Call Trace: [ 363.397108] dump_stack+0x138/0x197 [ 363.397125] should_fail.cold+0x10f/0x159 [ 363.397141] should_failslab+0xdb/0x130 [ 363.407486] kmem_cache_alloc_trace+0x2e9/0x790 [ 363.416113] ? kasan_check_write+0x14/0x20 [ 363.420353] ? _copy_from_user+0x99/0x110 [ 363.424605] copy_mount_options+0x5c/0x2f0 [ 363.428854] SyS_mount+0x87/0x120 [ 363.432322] ? copy_mnt_ns+0x8c0/0x8c0 [ 363.436228] do_syscall_64+0x1e8/0x640 [ 363.440122] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 363.444980] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 363.450178] RIP: 0033:0x45c47a [ 363.453373] RSP: 002b:00007f617e384a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 05:29:29 executing program 4: r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) r2 = dup3(r1, r0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = socket$nl_route(0x10, 0x3, 0x0) socket$netlink(0x10, 0x3, 0x0) r4 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0xa) sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0) sendmsg$nl_route_sched(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=@newqdisc={0x38, 0x24, 0x507, 0x0, 0x0, {0x0, r5, {}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_hhf={{0x8, 0x1, 'hhf\x00'}, {0xc, 0x2, [@TCA_HHF_NON_HH_WEIGHT={0x8, 0x7, 0x1}]}}]}, 0x38}}, 0x0) 05:29:29 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="11dca50d5e0bcfe47bf070") prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) r1 = gettid() r2 = epoll_create(0x3) epoll_pwait(r2, &(0x7f0000000340)=[{}], 0x1, 0x7fff, &(0x7f0000000380), 0x8) ptrace$setopts(0x4206, r1, 0x0, 0x0) tkill(r1, 0x38) [ 363.461092] RAX: ffffffffffffffda RBX: 00007f617e384b40 RCX: 000000000045c47a [ 363.468370] RDX: 00007f617e384ae0 RSI: 0000000020000140 RDI: 00007f617e384b00 [ 363.475661] RBP: 0000000000000001 R08: 00007f617e384b40 R09: 00007f617e384ae0 [ 363.475667] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000004 [ 363.475671] R13: 00000000004c8b25 R14: 00000000004dfbc8 R15: 0000000000000003 [ 363.524843] print_req_error: I/O error, dev loop4, sector 0 05:29:29 executing program 4: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$loop(&(0x7f00000004c0)='/dev/loop#\x00', 0x0, 0x100082) dup(0xffffffffffffffff) r1 = memfd_create(&(0x7f0000000380)='\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x01\x00\x00\x00v\x8e\x05\xf7\xc1U\xad}\xc6\x94|W>Zi$Nv8,\n\xa6=W^\xa3Y\x7f\x8b\x17(\'~\xf7k0TM{\xa9-\xcf\x97\x8f\x1f\x81\xdc\x1b\x7f\x8f{4Q\xda\xda\x02\xec\xb4\xf1\xdd\xcc\x8bRA\xda\x89Efn\x00s\xc2Zb\x01\x00M\xbe\xa3z\xab\xd3\xeb\x98\x88\xc4\xc6)A\x9fP\x93zhH\xe0\xd2\x81\xdb\xeeV\x8cM\xe9\xa06\xc2o\x19\"\xf6Iq\xd4\xdf\x97\xfb\xab\x04\xe8\xceI8\xb3\x1d\xcf%\x9bK\xc6\t\x01\xe1\x86a\xfa\xb8\xfb)\x88\xcd+\xc2`\xc2\xf5r5>k\xb0\xa0\x02\xfc\x16MO\x18\x9b\x06\x80b\xd1\x01\x00\x00\x00\x00\x00\x00\x00@\f\fL\xa5{Tk\x940\x17.\xa56.\xe0\x14\x1b=\xf0j\xd25\xe8\x15\xd8\x9e\xea\xd3\xd9G4\t\xc0\x9c.\'\xa9R3z$\xf2\x01\x88\xc0\x13\x12<\xc01j3\xd8\xb4CE7s\xe4\xa0\x9e\xdd\x801\x12M\xee\x13\xce\x9cu(\x8f.\xc83\xc7\xe6j\xf5\xb1\x9a\x00\x00\x00\x00\x00\x00\x00', 0x0) fsetxattr$security_smack_entry(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) pwritev(r1, &(0x7f0000000340)=[{&(0x7f00000001c0)='\'', 0x1}], 0x1, 0x81806) ioctl$LOOP_CHANGE_FD(r0, 0x4c00, r1) r2 = dup(r1) write$evdev(r2, &(0x7f0000000240)=[{{0x77359400}, 0x0, 0x0, 0x7}], 0x18) sendfile(r0, r1, 0x0, 0x20000102000007) r3 = socket$inet_tcp(0x2, 0x1, 0x0) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r3, &(0x7f0000000200)) r4 = socket$inet_tcp(0x2, 0x1, 0x0) r5 = epoll_create1(0x0) epoll_ctl$EPOLL_CTL_ADD(r5, 0x1, r4, &(0x7f0000000200)) ioctl$EXT4_IOC_MOVE_EXT(r3, 0xc028660f, &(0x7f00000000c0)={0x0, r4, 0x8, 0x4, 0x3, 0x2f8}) r6 = creat(0x0, 0x0) ioctl$FS_IOC_FIEMAP(r6, 0xc020660b, &(0x7f0000000500)=ANY=[@ANYBLOB]) r7 = socket(0x0, 0x803, 0x0) sendto(r7, &(0x7f0000000040), 0x0, 0x0, 0x0, 0x0) recvmmsg(r7, 0x0, 0x0, 0x0, 0x0) ioctl$sock_FIOGETOWN(r7, 0x8903, 0x0) getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1c, &(0x7f0000000000)={@initdev}, 0x0) 05:29:29 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="11dca50d5e0bcfe47bf070") prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) r1 = gettid() r2 = epoll_create(0x3) epoll_pwait(r2, &(0x7f0000000340)=[{}], 0x1, 0x7fff, &(0x7f0000000380), 0x8) ptrace$setopts(0x4206, r1, 0x0, 0x0) tkill(r1, 0x38) 05:29:29 executing program 5: r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ftruncate(r0, 0x9) r1 = perf_event_open$cgroup(&(0x7f00000000c0)={0x3, 0x70, 0x5, 0x2, 0x1, 0x7, 0x0, 0xffff, 0xdb8d524c2852e4de, 0x6, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x2, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x7, 0x1, @perf_config_ext={0x81, 0x20}, 0x400, 0xfd9, 0x5, 0x7, 0xeeb, 0x4, 0x2}, 0xffffffffffffffff, 0xc, r0, 0x7) ioctl$PERF_EVENT_IOC_QUERY_BPF(r1, 0xc008240a, &(0x7f0000000140)={0x3, 0x0, [0x0, 0x0, 0x0]}) syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r2 = syz_open_dev$dspn(&(0x7f0000000180)='/dev/dsp#\x00', 0x100000001, 0x400000) ioctl$DRM_IOCTL_MARK_BUFS(r2, 0x40206417, &(0x7f00000001c0)={0x3d, 0x98, 0xb80, 0x200, 0x4}) 05:29:29 executing program 2: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f00000000c0)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a000001000000000047aa0c2b93a90cafa5578a38d9bde801", 0x48, 0x10000}], 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) 05:29:29 executing program 1 (fault-call:0 fault-nth:53): syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000140)='./file0\x00', 0xff, 0x1, &(0x7f0000000000)=[{&(0x7f0000000180)="8da4363ac0ed0000000000000001004d0100000000000000000000000009000000000000009748aeb81e1b00920efd9a0000010000000000098cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 363.942940] FAULT_INJECTION: forcing a failure. [ 363.942940] name failslab, interval 1, probability 0, space 0, times 0 05:29:29 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="11dca50d5e0bcfe47bf070") prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) r1 = gettid() r2 = epoll_create(0x3) epoll_pwait(r2, &(0x7f0000000340)=[{}], 0x1, 0x7fff, &(0x7f0000000380), 0x8) ptrace$setopts(0x4206, r1, 0x0, 0x0) tkill(r1, 0x38) [ 364.039892] CPU: 1 PID: 24597 Comm: syz-executor.1 Not tainted 4.14.146 #0 [ 364.047666] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 364.057032] Call Trace: [ 364.059721] dump_stack+0x138/0x197 [ 364.063364] should_fail.cold+0x10f/0x159 [ 364.067530] should_failslab+0xdb/0x130 [ 364.071704] __kmalloc_track_caller+0x2ec/0x790 [ 364.076405] ? kstrdup_const+0x48/0x60 [ 364.080738] kstrdup+0x3a/0x70 [ 364.087142] kstrdup_const+0x48/0x60 [ 364.090854] alloc_vfsmnt+0xe5/0x7d0 [ 364.094566] vfs_kern_mount.part.0+0x2a/0x3d0 [ 364.099060] do_mount+0x417/0x27d0 [ 364.102611] ? copy_mount_options+0x5c/0x2f0 [ 364.107034] ? rcu_read_lock_sched_held+0x110/0x130 [ 364.112053] ? copy_mount_string+0x40/0x40 [ 364.116291] ? copy_mount_options+0x1fe/0x2f0 [ 364.120795] SyS_mount+0xab/0x120 [ 364.124244] ? copy_mnt_ns+0x8c0/0x8c0 [ 364.128130] do_syscall_64+0x1e8/0x640 [ 364.133053] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 364.137897] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 364.143082] RIP: 0033:0x45c47a [ 364.146268] RSP: 002b:00007f617e384a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 364.154670] RAX: ffffffffffffffda RBX: 00007f617e384b40 RCX: 000000000045c47a [ 364.161931] RDX: 00007f617e384ae0 RSI: 0000000020000140 RDI: 00007f617e384b00 [ 364.169197] RBP: 0000000000000001 R08: 00007f617e384b40 R09: 00007f617e384ae0 [ 364.176458] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000004 05:29:30 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="11dca50d5e0bcfe47bf070") clone(0x802102001ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = gettid() r2 = epoll_create(0x3) epoll_pwait(r2, &(0x7f0000000340)=[{}], 0x1, 0x7fff, &(0x7f0000000380), 0x8) ptrace$setopts(0x4206, r1, 0x0, 0x0) tkill(r1, 0x38) [ 364.183718] R13: 00000000004c8b25 R14: 00000000004dfbc8 R15: 0000000000000003 05:29:30 executing program 2: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) sigaltstack(&(0x7f0000ff9000/0x4000)=nil, &(0x7f00000000c0)) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)) 05:29:30 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="11dca50d5e0bcfe47bf070") clone(0x802102001ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = gettid() r2 = epoll_create(0x3) epoll_pwait(r2, &(0x7f0000000340)=[{}], 0x1, 0x7fff, &(0x7f0000000380), 0x8) ptrace$setopts(0x4206, r1, 0x0, 0x0) tkill(r1, 0x38) [ 364.320316] ptrace attach of "/root/syz-executor.0"[24615] was attempted by "/root/syz-executor.0"[24617] 05:29:30 executing program 3: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = open(&(0x7f00000000c0)='./file0\x00', 0x4040, 0x60) r1 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r1, 0x84, 0x6e, &(0x7f0000961fe4)=[@in={0x2, 0x0, @dev}], 0x10) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r1, 0x84, 0x1d, &(0x7f00000001c0)=ANY=[@ANYBLOB="fbff8b55", @ANYRES32=0x0], &(0x7f00000000c0)=0xfe10) getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r1, 0x84, 0x66, &(0x7f0000000040)={r2}, &(0x7f0000000140)=0x8) getsockopt$inet_sctp_SCTP_GET_ASSOC_STATS(r0, 0x84, 0x70, &(0x7f0000000100)={r2, @in={{0x2, 0x4e21, @multicast1}}, [0x9, 0x0, 0x5ef2addc, 0xdf0c, 0x0, 0x62d6, 0xc0, 0x1, 0x9, 0x7, 0x67, 0x3, 0x8, 0x8000, 0x74d]}, &(0x7f0000000280)=0x100) 05:29:30 executing program 1 (fault-call:0 fault-nth:54): syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000140)='./file0\x00', 0xff, 0x1, &(0x7f0000000000)=[{&(0x7f0000000180)="8da4363ac0ed0000000000000001004d0100000000000000000000000009000000000000009748aeb81e1b00920efd9a0000010000000000098cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 05:29:30 executing program 5: r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcs\x00', 0x3e70fa65e66e4ab9, 0x0) r1 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r1, 0x84, 0x6e, &(0x7f0000961fe4)=[@in={0x2, 0x0, @dev}], 0x10) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r1, 0x84, 0x1d, &(0x7f00000001c0)={0x1, [0x0]}, &(0x7f00000000c0)=0xfe10) getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r1, 0x84, 0x66, &(0x7f0000000040)={r2}, &(0x7f0000000140)=0x8) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) r5 = fcntl$dupfd(r4, 0x0, r3) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r6 = openat$kvm(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/kvm\x00', 0x0, 0x0) getpeername$packet(0xffffffffffffffff, &(0x7f0000000b80)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000000)=0x14) r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000080)="f2a6bad004b00fee0f090f3036f30f1a970000660f3806581e0f08bad004b0beeef30f2af8baa100b000ee", 0x2b}], 0x1, 0x0, 0x0, 0x0) setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x0, &(0x7f0000000040), 0x4) ioctl$KVM_CREATE_IRQCHIP(r7, 0xae60) r8 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r7, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r8, 0x4090ae82, &(0x7f00000002c0)={[0x0, 0x0, 0x800, 0x0, 0x0, 0x0, 0x4ce]}) ioctl$KVM_RUN(r8, 0xae80, 0x0) ioctl$KVM_RUN(r8, 0xae80, 0x0) r9 = syz_open_dev$vcsa(&(0x7f0000000300)='/dev/vcsa#\x00', 0x80000001, 0x20000) getsockopt$inet6_IPV6_IPSEC_POLICY(r9, 0x29, 0x22, 0x0, &(0x7f0000000780)) ioctl$VHOST_NET_SET_BACKEND(r0, 0x4008af30, &(0x7f0000000100)={0x2, r9}) getsockopt$inet_sctp6_SCTP_DELAYED_SACK(r0, 0x84, 0x10, &(0x7f0000000040)=@sack_info={r2, 0x4, 0x5}, &(0x7f0000000080)=0xc) 05:29:30 executing program 4: r0 = syz_open_dev$sndmidi(&(0x7f0000000180)='/dev/snd/midiC#D#\x00', 0x2, 0x0) read(r0, 0x0, 0x2fc) r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000002800)='/dev/ashmem\x00', 0x0, 0x0) r2 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x2, 0x0) dup2(r1, r2) 05:29:30 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="11dca50d5e0bcfe47bf070") clone(0x802102001ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = gettid() r2 = epoll_create(0x3) epoll_pwait(r2, &(0x7f0000000340)=[{}], 0x1, 0x7fff, &(0x7f0000000380), 0x8) ptrace$setopts(0x4206, r1, 0x0, 0x0) tkill(r1, 0x38) [ 364.485325] ptrace attach of "/root/syz-executor.0"[24639] was attempted by "/root/syz-executor.0"[24641] [ 364.499292] FAULT_INJECTION: forcing a failure. [ 364.499292] name failslab, interval 1, probability 0, space 0, times 0 [ 364.515025] CPU: 0 PID: 24635 Comm: syz-executor.1 Not tainted 4.14.146 #0 [ 364.520691] audit: type=1800 audit(1569562170.316:72): pid=24644 uid=0 auid=4294967295 ses=4294967295 subj=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 op="collect_data" cause="failed(directio)" comm="syz-executor.3" name="file0" dev="sda1" ino=17345 res=0 [ 364.522076] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 364.522081] Call Trace: [ 364.522099] dump_stack+0x138/0x197 [ 364.522117] should_fail.cold+0x10f/0x159 [ 364.564984] should_failslab+0xdb/0x130 [ 364.569402] __kmalloc_track_caller+0x2ec/0x790 [ 364.574090] ? kstrdup_const+0x48/0x60 [ 364.577973] kstrdup+0x3a/0x70 [ 364.581157] kstrdup_const+0x48/0x60 [ 364.584877] alloc_vfsmnt+0xe5/0x7d0 [ 364.588593] vfs_kern_mount.part.0+0x2a/0x3d0 [ 364.593082] do_mount+0x417/0x27d0 [ 364.596621] ? copy_mount_options+0x5c/0x2f0 [ 364.601033] ? rcu_read_lock_sched_held+0x110/0x130 [ 364.606038] ? copy_mount_string+0x40/0x40 [ 364.610272] ? copy_mount_options+0x1fe/0x2f0 [ 364.614762] SyS_mount+0xab/0x120 [ 364.618221] ? copy_mnt_ns+0x8c0/0x8c0 [ 364.622104] do_syscall_64+0x1e8/0x640 [ 364.625983] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 364.630828] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 364.636018] RIP: 0033:0x45c47a [ 364.639202] RSP: 002b:00007f617e384a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 364.646918] RAX: ffffffffffffffda RBX: 00007f617e384b40 RCX: 000000000045c47a [ 364.654173] RDX: 00007f617e384ae0 RSI: 0000000020000140 RDI: 00007f617e384b00 [ 364.661428] RBP: 0000000000000001 R08: 00007f617e384b40 R09: 00007f617e384ae0 [ 364.668709] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000004 [ 364.675965] R13: 00000000004c8b25 R14: 00000000004dfbc8 R15: 0000000000000003 05:29:30 executing program 1 (fault-call:0 fault-nth:55): syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000140)='./file0\x00', 0xff, 0x1, &(0x7f0000000000)=[{&(0x7f0000000180)="8da4363ac0ed0000000000000001004d0100000000000000000000000009000000000000009748aeb81e1b00920efd9a0000010000000000098cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 05:29:30 executing program 2: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x76c}], 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/sequencer2\x00', 0x1, 0x0) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000380)={r1, 0xc0, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000100)=0x4, 0x0, 0x0, 0x0, &(0x7f0000000140)={0x2, 0x3}, 0x0, 0x0, &(0x7f0000000180)={0x4, 0x5, 0x0, 0x1}, &(0x7f00000001c0)=0x1, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000280)=0x9}}, 0x10) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) [ 364.829470] ptrace attach of "/root/syz-executor.0"[24656] was attempted by "/root/syz-executor.0"[24665] 05:29:30 executing program 0: socket$inet_udplite(0x2, 0x2, 0x88) prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x802102001ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() r1 = epoll_create(0x3) epoll_pwait(r1, &(0x7f0000000340)=[{}], 0x1, 0x7fff, &(0x7f0000000380), 0x8) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x38) [ 364.886932] FAULT_INJECTION: forcing a failure. [ 364.886932] name failslab, interval 1, probability 0, space 0, times 0 [ 364.948232] CPU: 0 PID: 24671 Comm: syz-executor.1 Not tainted 4.14.146 #0 [ 364.955293] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 364.964653] Call Trace: [ 364.967239] dump_stack+0x138/0x197 [ 364.970864] should_fail.cold+0x10f/0x159 [ 364.975030] should_failslab+0xdb/0x130 [ 364.979045] kmem_cache_alloc+0x2d7/0x780 [ 364.983292] ? lock_downgrade+0x6e0/0x6e0 [ 364.987428] alloc_vfsmnt+0x28/0x7d0 [ 364.991128] vfs_kern_mount.part.0+0x2a/0x3d0 [ 364.995610] do_mount+0x417/0x27d0 [ 364.999132] ? retint_kernel+0x2d/0x2d [ 365.003006] ? copy_mount_string+0x40/0x40 [ 365.007227] ? __sanitizer_cov_trace_pc+0xe/0x60 [ 365.011968] ? copy_mount_options+0x1fe/0x2f0 [ 365.016451] SyS_mount+0xab/0x120 [ 365.019888] ? copy_mnt_ns+0x8c0/0x8c0 [ 365.023760] do_syscall_64+0x1e8/0x640 [ 365.027632] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 365.032460] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 365.037631] RIP: 0033:0x45c47a [ 365.040803] RSP: 002b:00007f617e384a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 05:29:30 executing program 0: socket$inet_udplite(0x2, 0x2, 0x88) prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x802102001ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() r1 = epoll_create(0x3) epoll_pwait(r1, &(0x7f0000000340)=[{}], 0x1, 0x7fff, &(0x7f0000000380), 0x8) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x38) [ 365.048495] RAX: ffffffffffffffda RBX: 00007f617e384b40 RCX: 000000000045c47a [ 365.055748] RDX: 00007f617e384ae0 RSI: 0000000020000140 RDI: 00007f617e384b00 [ 365.063000] RBP: 0000000000000001 R08: 00007f617e384b40 R09: 00007f617e384ae0 [ 365.070256] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000004 [ 365.077607] R13: 00000000004c8b25 R14: 00000000004dfbc8 R15: 0000000000000003 05:29:30 executing program 4: r0 = syz_open_dev$sndmidi(&(0x7f0000000180)='/dev/snd/midiC#D#\x00', 0x2, 0x0) read(r0, 0x0, 0x2fc) r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000002800)='/dev/ashmem\x00', 0x0, 0x0) r2 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x2, 0x0) dup2(r1, r2) 05:29:30 executing program 0: socket$inet_udplite(0x2, 0x2, 0x88) prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x802102001ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() r1 = epoll_create(0x3) epoll_pwait(r1, &(0x7f0000000340)=[{}], 0x1, 0x7fff, &(0x7f0000000380), 0x8) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x38) 05:29:31 executing program 5: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) execve(&(0x7f00000000c0)='./file0/file0\x00', &(0x7f0000000180)=[&(0x7f0000000100)='btrfs\x00', &(0x7f0000000140)='btrfs\x00'], &(0x7f0000000480)=[&(0x7f00000001c0)=']posix_acl_access.\x00', &(0x7f0000000280)='btrfs\x00', &(0x7f00000002c0)='btrfs\x00', &(0x7f0000000300)='lokeyring&.bdev*mime_type\x00', &(0x7f0000000340)='mime_typevboxnet1^\x00', &(0x7f0000000380)='\x00', &(0x7f00000003c0)='wlan0eth1@securityuser\x00', &(0x7f0000000400)='btrfs\x00', &(0x7f0000000440)='btrfs\x00']) 05:29:31 executing program 1 (fault-call:0 fault-nth:56): syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000140)='./file0\x00', 0xff, 0x1, &(0x7f0000000000)=[{&(0x7f0000000180)="8da4363ac0ed0000000000000001004d0100000000000000000000000009000000000000009748aeb81e1b00920efd9a0000010000000000098cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 05:29:31 executing program 4: r0 = syz_open_dev$sndmidi(&(0x7f0000000180)='/dev/snd/midiC#D#\x00', 0x2, 0x0) read(r0, 0x0, 0x2fc) r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000002800)='/dev/ashmem\x00', 0x0, 0x0) r2 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x2, 0x0) dup2(r1, r2) 05:29:31 executing program 2: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x4, 0x4182) ioctl$LOOP_SET_DIRECT_IO(r0, 0x4c08, 0x7) r1 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) pwritev(r1, &(0x7f0000000340)=[{&(0x7f0000000140)='!', 0x1}], 0x1, 0x81805) r2 = dup2(r1, r1) ioctl$SG_GET_RESERVED_SIZE(r1, 0x2272, 0x0) ioctl$LOOP_CHANGE_FD(r0, 0x4c00, r1) syz_genetlink_get_family_id$SEG6(&(0x7f0000000180)='SEG6\x00') write$P9_RLERRORu(r2, &(0x7f00000003c0)=ANY=[@ANYBLOB="1400000007650d6c24ed92c8397291335cf616f0010200070062726f0c62077600b365a0a59e7eea"], 0x28) getsockopt$sock_cred(r2, 0x1, 0x11, 0x0, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f00000007c0)={{{@in=@remote, @in6=@initdev}}, {{@in=@empty}, 0x0, @in6=@ipv4}}, &(0x7f00000008c0)=0xe8) sendfile(r2, r0, 0x0, 0x2400003e) readlinkat(r2, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)=""/8, 0x8) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) [ 365.315548] audit: type=1800 audit(1569562171.116:73): pid=24644 uid=0 auid=4294967295 ses=4294967295 subj=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 op="collect_data" cause="failed(directio)" comm="syz-executor.3" name="file0" dev="sda1" ino=17345 res=0 05:29:31 executing program 3: r0 = syz_open_dev$vcsa(&(0x7f0000000300)='/dev/vcsa#\x00', 0x80000001, 0x20000) getsockopt$inet6_IPV6_IPSEC_POLICY(r0, 0x29, 0x22, 0x0, &(0x7f0000000780)) r1 = syz_open_dev$vcsa(&(0x7f0000000300)='/dev/vcsa#\x00', 0x80000001, 0x20000) getsockopt$inet6_IPV6_IPSEC_POLICY(r1, 0x29, 0x22, 0x0, &(0x7f0000000780)) getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER_VALUE(r1, 0x84, 0x7c, &(0x7f00000000c0)={0x0, 0x101, 0x2}, &(0x7f0000000100)=0x8) getsockopt$inet_sctp_SCTP_GET_LOCAL_ADDRS(r0, 0x84, 0x6d, &(0x7f0000000140)={r2, 0x7c, "09a16b4b3e64bdf0cc3126d066abd1c03933046d973f55caa0167c696941fe3b85f4a2b9a5976ebb22c4a0ff143dff352c034305063776baca6050885d0f18e5fa7721daeaa95f261272b7de4dd24c1a70d92ff02fec07dde84cdbaf4a9b327603abbed9b41066f1bb6492952f2022f75615d90173e5ec423418647f"}, &(0x7f0000000280)=0x84) syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 365.393692] FAULT_INJECTION: forcing a failure. [ 365.393692] name failslab, interval 1, probability 0, space 0, times 0 [ 365.412903] CPU: 1 PID: 24723 Comm: syz-executor.1 Not tainted 4.14.146 #0 [ 365.419966] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 365.429338] Call Trace: [ 365.429361] dump_stack+0x138/0x197 [ 365.429382] should_fail.cold+0x10f/0x159 [ 365.429400] should_failslab+0xdb/0x130 [ 365.429417] __kmalloc_track_caller+0x2ec/0x790 [ 365.435627] ? unwind_get_return_address+0x61/0xa0 [ 365.435642] ? __save_stack_trace+0x7b/0xd0 [ 365.435656] ? btrfs_parse_early_options+0xa3/0x310 [ 365.435668] kstrdup+0x3a/0x70 [ 365.435681] btrfs_parse_early_options+0xa3/0x310 [ 365.471168] ? btrfs_freeze+0xc0/0xc0 [ 365.475073] ? find_next_bit+0x28/0x30 [ 365.478978] ? pcpu_alloc+0xcf0/0x1050 [ 365.482874] ? find_held_lock+0x35/0x130 [ 365.486966] ? pcpu_alloc+0xcf0/0x1050 [ 365.490868] btrfs_mount+0x11d/0x2b28 [ 365.494654] ? lock_downgrade+0x6e0/0x6e0 [ 365.498796] ? find_held_lock+0x35/0x130 [ 365.503455] ? pcpu_alloc+0x3af/0x1050 [ 365.507432] ? _find_next_bit+0xee/0x120 [ 365.511480] ? check_preemption_disabled+0x3c/0x250 [ 365.516519] ? btrfs_remount+0x11f0/0x11f0 [ 365.520760] ? rcu_read_lock_sched_held+0x110/0x130 [ 365.525767] ? __lockdep_init_map+0x10c/0x570 [ 365.530251] ? __lockdep_init_map+0x10c/0x570 [ 365.534734] mount_fs+0x97/0x2a1 [ 365.538136] vfs_kern_mount.part.0+0x5e/0x3d0 [ 365.542621] do_mount+0x417/0x27d0 [ 365.546149] ? copy_mount_options+0x5c/0x2f0 [ 365.550547] ? rcu_read_lock_sched_held+0x110/0x130 [ 365.555567] ? copy_mount_string+0x40/0x40 [ 365.559802] ? copy_mount_options+0x1fe/0x2f0 [ 365.564425] SyS_mount+0xab/0x120 [ 365.567884] ? copy_mnt_ns+0x8c0/0x8c0 [ 365.571784] do_syscall_64+0x1e8/0x640 [ 365.575769] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 365.580607] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 365.586221] RIP: 0033:0x45c47a 05:29:31 executing program 4: r0 = syz_open_dev$sndmidi(&(0x7f0000000180)='/dev/snd/midiC#D#\x00', 0x2, 0x0) read(r0, 0x0, 0x2fc) r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000002800)='/dev/ashmem\x00', 0x0, 0x0) r2 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x2, 0x0) dup2(r1, r2) [ 365.589395] RSP: 002b:00007f617e384a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 365.597089] RAX: ffffffffffffffda RBX: 00007f617e384b40 RCX: 000000000045c47a [ 365.604351] RDX: 00007f617e384ae0 RSI: 0000000020000140 RDI: 00007f617e384b00 [ 365.611615] RBP: 0000000000000001 R08: 00007f617e384b40 R09: 00007f617e384ae0 [ 365.618870] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000004 [ 365.626126] R13: 00000000004c8b25 R14: 00000000004dfbc8 R15: 0000000000000003 05:29:31 executing program 1 (fault-call:0 fault-nth:57): syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000140)='./file0\x00', 0xff, 0x1, &(0x7f0000000000)=[{&(0x7f0000000180)="8da4363ac0ed0000000000000001004d0100000000000000000000000009000000000000009748aeb81e1b00920efd9a0000010000000000098cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 365.799755] FAULT_INJECTION: forcing a failure. [ 365.799755] name failslab, interval 1, probability 0, space 0, times 0 [ 365.848142] CPU: 1 PID: 24744 Comm: syz-executor.1 Not tainted 4.14.146 #0 [ 365.855202] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 365.864568] Call Trace: [ 365.867177] dump_stack+0x138/0x197 [ 365.870827] should_fail.cold+0x10f/0x159 [ 365.875021] should_failslab+0xdb/0x130 [ 365.878988] kmem_cache_alloc+0x2d7/0x780 [ 365.883126] ? check_preemption_disabled+0x3c/0x250 [ 365.888133] alloc_vfsmnt+0x28/0x7d0 [ 365.891832] vfs_kern_mount.part.0+0x2a/0x3d0 [ 365.896323] ? find_held_lock+0x35/0x130 [ 365.900368] vfs_kern_mount+0x40/0x60 [ 365.904167] btrfs_mount+0x3ce/0x2b28 [ 365.907951] ? lock_downgrade+0x6e0/0x6e0 [ 365.912081] ? find_held_lock+0x35/0x130 [ 365.916129] ? pcpu_alloc+0x3af/0x1050 [ 365.920023] ? btrfs_remount+0x11f0/0x11f0 [ 365.924244] ? rcu_read_lock_sched_held+0x110/0x130 [ 365.930294] ? __lockdep_init_map+0x10c/0x570 [ 365.934772] ? __lockdep_init_map+0x10c/0x570 [ 365.939270] mount_fs+0x97/0x2a1 [ 365.942635] vfs_kern_mount.part.0+0x5e/0x3d0 [ 365.948433] do_mount+0x417/0x27d0 [ 365.951956] ? copy_mount_options+0x5c/0x2f0 [ 365.956347] ? rcu_read_lock_sched_held+0x110/0x130 [ 365.961362] ? copy_mount_string+0x40/0x40 [ 365.965581] ? copy_mount_options+0x1fe/0x2f0 [ 365.970065] SyS_mount+0xab/0x120 [ 365.973674] ? copy_mnt_ns+0x8c0/0x8c0 [ 365.977549] do_syscall_64+0x1e8/0x640 [ 365.981418] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 365.986247] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 365.991421] RIP: 0033:0x45c47a 05:29:31 executing program 4: r0 = syz_open_dev$sndmidi(&(0x7f0000000180)='/dev/snd/midiC#D#\x00', 0x2, 0x0) read(r0, 0x0, 0x2fc) r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000002800)='/dev/ashmem\x00', 0x0, 0x0) dup2(r1, 0xffffffffffffffff) 05:29:31 executing program 3: r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x4, 0x4182) r1 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) pwritev(r1, &(0x7f0000000340)=[{&(0x7f0000000140)='!', 0x1}], 0x1, 0x81805) r2 = dup2(r1, r1) ioctl$SG_GET_RESERVED_SIZE(r1, 0x2272, 0x0) ioctl$LOOP_CHANGE_FD(r0, 0x4c00, r1) write$P9_RLERRORu(r2, &(0x7f00000003c0)=ANY=[@ANYBLOB="1400000007650d6c24ed92c8397291335cf616f0010200070062726f0c62077600b365a0a59e7eea"], 0x28) getsockopt$sock_cred(r2, 0x1, 0x11, 0x0, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f00000007c0)={{{@in=@remote, @in6=@initdev}}, {{@in=@empty}, 0x0, @in6=@ipv4}}, &(0x7f00000008c0)=0xe8) sendfile(r2, r0, 0x0, 0x2400003e) ioctl$RTC_WIE_OFF(r2, 0x7010) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) openat$cachefiles(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/cachefiles\x00', 0x100, 0x0) ioctl$VT_WAITACTIVE(r3, 0x5607) syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r4 = socket(0x4, 0x800, 0x7) getsockopt$inet_sctp_SCTP_HMAC_IDENT(r4, 0x84, 0x16, &(0x7f0000000100)={0x3, [0x4, 0x6, 0x5]}, &(0x7f0000000180)=0xa) r5 = openat$selinux_avc_hash_stats(0xffffffffffffff9c, &(0x7f0000000280)='/selinux/avc/hash_stats\x00', 0x0, 0x0) ioctl$KDSETLED(r5, 0x4b32, 0x9) [ 365.994595] RSP: 002b:00007f617e384a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 366.003586] RAX: ffffffffffffffda RBX: 00007f617e384b40 RCX: 000000000045c47a [ 366.010839] RDX: 00007f617e384ae0 RSI: 0000000020000140 RDI: 00007f617e384b00 [ 366.018178] RBP: 0000000000000001 R08: 00007f617e384b40 R09: 00007f617e384ae0 [ 366.025687] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000004 [ 366.032952] R13: 00000000004c8b25 R14: 00000000004dfbc8 R15: 0000000000000003 05:29:31 executing program 2: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = syz_open_dev$radio(&(0x7f00000000c0)='/dev/radio#\x00', 0x3, 0x2) getsockopt$ARPT_SO_GET_ENTRIES(r1, 0x0, 0x61, &(0x7f0000000100)={'filter\x00', 0x2e, "ba6501d625882af6276e9657944571b70f4fab4d70fe688fcf5e42e57f3a636d7916edad6f1ea51f170eed5f8a91"}, &(0x7f0000000180)=0x52) r2 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = fcntl$dupfd(r2, 0x0, 0xffffffffffffffff) getsockopt$EBT_SO_GET_INIT_INFO(r3, 0x0, 0x82, &(0x7f0000000180)={'broute\x00'}, &(0x7f0000000240)=0x50) ioctl$TIOCSCTTY(r3, 0x540e, 0xffffffff) getsockopt$sock_cred(r3, 0x1, 0x11, 0x0, &(0x7f0000000640)) ioctl$EVIOCSCLOCKID(r3, 0x400445a0, &(0x7f00000001c0)=0x10001) 05:29:32 executing program 1 (fault-call:0 fault-nth:58): syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000140)='./file0\x00', 0xff, 0x1, &(0x7f0000000000)=[{&(0x7f0000000180)="8da4363ac0ed0000000000000001004d0100000000000000000000000009000000000000009748aeb81e1b00920efd9a0000010000000000098cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 366.296653] FAULT_INJECTION: forcing a failure. [ 366.296653] name failslab, interval 1, probability 0, space 0, times 0 [ 366.315608] CPU: 0 PID: 24777 Comm: syz-executor.1 Not tainted 4.14.146 #0 [ 366.322753] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 366.332103] Call Trace: [ 366.332123] dump_stack+0x138/0x197 [ 366.332142] should_fail.cold+0x10f/0x159 [ 366.332157] should_failslab+0xdb/0x130 [ 366.332169] __kmalloc+0x2f0/0x7a0 [ 366.332182] ? find_held_lock+0x35/0x130 [ 366.342543] ? pcpu_alloc+0xcf0/0x1050 [ 366.350030] ? btrfs_mount+0x19a/0x2b28 [ 366.350044] btrfs_mount+0x19a/0x2b28 [ 366.350055] ? lock_downgrade+0x6e0/0x6e0 [ 366.350062] ? find_held_lock+0x35/0x130 [ 366.350071] ? pcpu_alloc+0x3af/0x1050 [ 366.350087] ? btrfs_remount+0x11f0/0x11f0 [ 366.350103] ? rcu_read_lock_sched_held+0x110/0x130 [ 366.350122] ? __lockdep_init_map+0x10c/0x570 [ 366.392198] ? __lockdep_init_map+0x10c/0x570 [ 366.396718] mount_fs+0x97/0x2a1 [ 366.400104] vfs_kern_mount.part.0+0x5e/0x3d0 [ 366.404618] do_mount+0x417/0x27d0 [ 366.408176] ? copy_mount_options+0x5c/0x2f0 [ 366.412600] ? rcu_read_lock_sched_held+0x110/0x130 [ 366.417633] ? copy_mount_string+0x40/0x40 [ 366.421881] ? copy_mount_options+0x1fe/0x2f0 [ 366.426391] SyS_mount+0xab/0x120 [ 366.429850] ? copy_mnt_ns+0x8c0/0x8c0 [ 366.433752] do_syscall_64+0x1e8/0x640 [ 366.437655] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 366.442513] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 366.447828] RIP: 0033:0x45c47a [ 366.451019] RSP: 002b:00007f617e384a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 366.458731] RAX: ffffffffffffffda RBX: 00007f617e384b40 RCX: 000000000045c47a [ 366.466010] RDX: 00007f617e384ae0 RSI: 0000000020000140 RDI: 00007f617e384b00 [ 366.473293] RBP: 0000000000000001 R08: 00007f617e384b40 R09: 00007f617e384ae0 [ 366.480585] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000004 [ 366.487858] R13: 00000000004c8b25 R14: 00000000004dfbc8 R15: 0000000000000003 05:29:34 executing program 0: ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000100)="11dca50d5e0bcfe47bf070") prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x802102001ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() r1 = epoll_create(0x3) epoll_pwait(r1, &(0x7f0000000340)=[{}], 0x1, 0x7fff, &(0x7f0000000380), 0x8) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x38) 05:29:34 executing program 2: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000340)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) socket$inet6_sctp(0xa, 0x4, 0x84) r1 = getpid() tkill(r1, 0x9) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000100)={r1, 0xffffffffffffffff, 0x0, 0x6, &(0x7f00000000c0)='btrfs\x00'}, 0x30) get_robust_list(r2, &(0x7f0000000080)=&(0x7f0000000280)={&(0x7f0000000180)={&(0x7f0000000140)}, 0x0, &(0x7f00000001c0)}, &(0x7f0000000300)=0x18) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) 05:29:34 executing program 1 (fault-call:0 fault-nth:59): syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000140)='./file0\x00', 0xff, 0x1, &(0x7f0000000000)=[{&(0x7f0000000180)="8da4363ac0ed0000000000000001004d0100000000000000000000000009000000000000009748aeb81e1b00920efd9a0000010000000000098cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 05:29:34 executing program 3: syz_mount_image$btrfs(&(0x7f0000000040)='bt%Ks\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x31, 0x10000}], 0x0, 0x0) r0 = syz_open_dev$dri(&(0x7f0000000140)='/dev/dri/card#\x00', 0x0, 0x0) ioctl$DRM_IOCTL_SET_SAREA_CTX(r0, 0x4010641c, &(0x7f0000000440)={0x0, 0x0}) ioctl$DRM_IOCTL_GET_MAGIC(r0, 0x80046402, &(0x7f00000000c0)=0x1000) 05:29:34 executing program 4: r0 = syz_open_dev$sndmidi(&(0x7f0000000180)='/dev/snd/midiC#D#\x00', 0x2, 0x0) read(r0, 0x0, 0x2fc) r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000002800)='/dev/ashmem\x00', 0x0, 0x0) dup2(r1, 0xffffffffffffffff) 05:29:34 executing program 5: r0 = open(&(0x7f0000000000)='./file0\x00', 0x2000, 0x1) ioctl$DRM_IOCTL_AGP_ALLOC(0xffffffffffffffff, 0xc0206434, &(0x7f00000001c0)={0x0, 0x0, 0x2}) ioctl$DRM_IOCTL_AGP_ALLOC(r0, 0xc0206434, &(0x7f0000000200)={0x3, r1, 0x0, 0xdcaa}) syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f0000000000), 0x36b140a0f8bb89c0, 0x0) set_robust_list(&(0x7f0000000180)={&(0x7f00000000c0), 0x3, &(0x7f0000000140)={&(0x7f0000000100)}}, 0x18) [ 368.288246] FAULT_INJECTION: forcing a failure. [ 368.288246] name failslab, interval 1, probability 0, space 0, times 0 [ 368.313990] CPU: 1 PID: 24802 Comm: syz-executor.1 Not tainted 4.14.146 #0 [ 368.321070] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 368.330435] Call Trace: [ 368.333034] dump_stack+0x138/0x197 [ 368.336679] should_fail.cold+0x10f/0x159 [ 368.340836] should_failslab+0xdb/0x130 [ 368.345687] __kmalloc_track_caller+0x2ec/0x790 [ 368.350401] ? trace_hardirqs_on_caller+0x400/0x590 [ 368.355450] ? _raw_spin_unlock_irq+0x5e/0x90 [ 368.359938] ? btrfs_parse_early_options+0xa3/0x310 [ 368.364957] kstrdup+0x3a/0x70 [ 368.368148] btrfs_parse_early_options+0xa3/0x310 [ 368.372997] ? save_trace+0x290/0x290 [ 368.376789] ? btrfs_freeze+0xc0/0xc0 [ 368.380573] ? pcpu_alloc+0xcf0/0x1050 [ 368.384450] ? find_held_lock+0x35/0x130 [ 368.388502] ? pcpu_alloc+0xcf0/0x1050 [ 368.392381] btrfs_mount+0x11d/0x2b28 [ 368.396178] ? lock_downgrade+0x6e0/0x6e0 [ 368.400460] ? _find_next_bit+0xee/0x120 [ 368.404624] ? check_preemption_disabled+0x3c/0x250 [ 368.409625] ? btrfs_remount+0x11f0/0x11f0 [ 368.413856] ? rcu_read_lock_sched_held+0x110/0x130 [ 368.418879] ? __lockdep_init_map+0x10c/0x570 [ 368.423378] ? __lockdep_init_map+0x10c/0x570 [ 368.427867] mount_fs+0x97/0x2a1 [ 368.431220] vfs_kern_mount.part.0+0x5e/0x3d0 [ 368.435700] ? find_held_lock+0x35/0x130 [ 368.439745] vfs_kern_mount+0x40/0x60 [ 368.443532] btrfs_mount+0x3ce/0x2b28 [ 368.447333] ? lock_downgrade+0x6e0/0x6e0 [ 368.451477] ? find_held_lock+0x35/0x130 [ 368.455642] ? pcpu_alloc+0x3af/0x1050 [ 368.459523] ? btrfs_remount+0x11f0/0x11f0 [ 368.463745] ? rcu_read_lock_sched_held+0x110/0x130 [ 368.468754] ? __lockdep_init_map+0x10c/0x570 [ 368.473236] ? __lockdep_init_map+0x10c/0x570 [ 368.477715] mount_fs+0x97/0x2a1 [ 368.481070] vfs_kern_mount.part.0+0x5e/0x3d0 [ 368.485555] do_mount+0x417/0x27d0 [ 368.489076] ? copy_mount_options+0x5c/0x2f0 [ 368.493467] ? rcu_read_lock_sched_held+0x110/0x130 [ 368.498478] ? copy_mount_string+0x40/0x40 [ 368.502706] ? copy_mount_options+0x1fe/0x2f0 [ 368.507208] SyS_mount+0xab/0x120 [ 368.510644] ? copy_mnt_ns+0x8c0/0x8c0 [ 368.514532] do_syscall_64+0x1e8/0x640 [ 368.518401] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 368.523235] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 368.528767] RIP: 0033:0x45c47a [ 368.531952] RSP: 002b:00007f617e384a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 368.539643] RAX: ffffffffffffffda RBX: 00007f617e384b40 RCX: 000000000045c47a [ 368.546905] RDX: 00007f617e384ae0 RSI: 0000000020000140 RDI: 00007f617e384b00 [ 368.554159] RBP: 0000000000000001 R08: 00007f617e384b40 R09: 00007f617e384ae0 [ 368.561409] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000004 [ 368.568748] R13: 00000000004c8b25 R14: 00000000004dfbc8 R15: 0000000000000003 05:29:34 executing program 2: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\xfc', &(0x7f0000000080)='./file0\x00', 0x1, 0x0, &(0x7f0000000100), 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) 05:29:34 executing program 1 (fault-call:0 fault-nth:60): syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000140)='./file0\x00', 0xff, 0x1, &(0x7f0000000000)=[{&(0x7f0000000180)="8da4363ac0ed0000000000000001004d0100000000000000000000000009000000000000009748aeb81e1b00920efd9a0000010000000000098cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 05:29:34 executing program 5: r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x4, 0x4182) r1 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) pwritev(r1, &(0x7f0000000340)=[{&(0x7f0000000140)='!', 0x1}], 0x1, 0x81805) r2 = dup2(r1, r1) ioctl$SG_GET_RESERVED_SIZE(r1, 0x2272, 0x0) ioctl$LOOP_CHANGE_FD(r0, 0x4c00, r1) write$P9_RLERRORu(r2, &(0x7f0000000500)=ANY=[@ANYBLOB="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"], 0x28) getsockopt$sock_cred(r2, 0x1, 0x11, 0x0, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f00000007c0)={{{@in=@remote, @in6=@initdev}}, {{@in=@empty}, 0x0, @in6=@ipv4}}, &(0x7f00000008c0)=0xe8) sendfile(r2, r0, 0x0, 0x2400003e) r3 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r3, 0x84, 0x6e, &(0x7f0000961fe4)=[@in={0x2, 0x0, @dev}], 0x10) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r3, 0x84, 0x1d, &(0x7f00000001c0)={0x1, [0x0]}, &(0x7f00000000c0)=0xfe10) getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r3, 0x84, 0x66, &(0x7f0000000040)={r4}, &(0x7f0000000140)=0x8) getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r2, 0x84, 0x66, &(0x7f0000000000)={r4}, &(0x7f0000000040)=0x8) 05:29:34 executing program 3: [ 368.733252] FAULT_INJECTION: forcing a failure. [ 368.733252] name failslab, interval 1, probability 0, space 0, times 0 05:29:34 executing program 3: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x24, 0x1, &(0x7f0000000000), 0x86048, 0x0) r0 = openat$selinux_avc_cache_stats(0xffffffffffffff9c, &(0x7f0000000100)='/selinux/avc/cache_stats\x00', 0x0, 0x0) r1 = syz_open_dev$dri(&(0x7f0000000140)='/dev/dri/card#\x00', 0x0, 0x0) ioctl$DRM_IOCTL_SET_SAREA_CTX(r1, 0x4010641c, &(0x7f0000000440)={0x0, 0x0}) ioctl$DRM_IOCTL_AGP_ALLOC(r1, 0xc0206434, &(0x7f0000000280)={0x1ff, 0x0, 0x9b9ce957db8548e3, 0x1}) write$rfkill(r0, &(0x7f0000000480)={0x7, 0x8, 0x3, 0x1, 0x1}, 0xfffffc25) ioctl$TUNSETLINK(0xffffffffffffffff, 0x400454cd, 0x17) setsockopt$inet_sctp6_SCTP_AUTH_CHUNK(0xffffffffffffffff, 0x84, 0x15, &(0x7f0000000340)={0x4}, 0x1) ioctl$DRM_IOCTL_AGP_FREE(r0, 0x40206435, &(0x7f00000002c0)={0xffff, r2, 0x1, 0x20}) r3 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = fcntl$dupfd(r3, 0x0, 0xffffffffffffffff) getsockopt$EBT_SO_GET_INIT_INFO(r4, 0x0, 0x82, &(0x7f0000000180)={'broute\x00'}, &(0x7f0000000240)=0x50) ioctl$TIOCSCTTY(r4, 0x540e, 0xffffffff) getsockopt$sock_cred(r4, 0x1, 0x11, 0x0, &(0x7f0000000640)) sendto$x25(r4, &(0x7f0000000300)="ecc448fe20a9cea8f4", 0x9, 0x160, 0x0, 0x0) syz_mount_image$jfs(&(0x7f0000000000)='jfs\x00', &(0x7f00000000c0)='./file0\x00', 0xffffffffffff8d0d, 0x2, &(0x7f00000001c0)=[{&(0x7f0000000100), 0x0, 0x4}, {&(0x7f0000000140)="b7482e3ff076f2c29c8d8307fcbfca97f944d905b88807475c716f091e5b0fe717d2decb76e07e1d1637a67719c335ad52cb20ac57f85d19f16456f757f93ab36b801c6c56727de56575e8f510a2f496709d5d6e7b48382a00ef9c0ee8d140f5737a92", 0x63, 0x7}], 0x4000, &(0x7f0000000200)=ANY=[@ANYBLOB="6925ffffffffffff303030303030303030303030303030352c6d6561737572652c66736e616d653d6274726673002c736d61636b6673726f6f7439757365722d255d2c00"]) [ 368.807097] CPU: 1 PID: 24845 Comm: syz-executor.1 Not tainted 4.14.146 #0 [ 368.814160] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 368.824134] Call Trace: [ 368.824156] dump_stack+0x138/0x197 [ 368.824175] should_fail.cold+0x10f/0x159 [ 368.824191] should_failslab+0xdb/0x130 [ 368.824207] __kmalloc_track_caller+0x2ec/0x790 [ 368.830405] ? unwind_get_return_address+0x61/0xa0 [ 368.830419] ? __save_stack_trace+0x7b/0xd0 [ 368.830433] ? btrfs_parse_early_options+0xa3/0x310 [ 368.830446] kstrdup+0x3a/0x70 [ 368.830456] btrfs_parse_early_options+0xa3/0x310 [ 368.830470] ? save_trace+0x290/0x290 [ 368.869357] ? btrfs_freeze+0xc0/0xc0 [ 368.873139] ? pcpu_alloc+0xcf0/0x1050 [ 368.877009] ? find_held_lock+0x35/0x130 [ 368.881053] ? pcpu_alloc+0xcf0/0x1050 [ 368.884931] btrfs_mount+0x11d/0x2b28 [ 368.888711] ? lock_downgrade+0x6e0/0x6e0 [ 368.892843] ? find_held_lock+0x35/0x130 [ 368.897000] ? pcpu_alloc+0x3af/0x1050 [ 368.900882] ? _find_next_bit+0xee/0x120 [ 368.904930] ? check_preemption_disabled+0x3c/0x250 [ 368.909930] ? btrfs_remount+0x11f0/0x11f0 [ 368.914311] ? rcu_read_lock_sched_held+0x110/0x130 [ 368.919329] ? __lockdep_init_map+0x10c/0x570 [ 368.923868] ? __lockdep_init_map+0x10c/0x570 [ 368.928353] mount_fs+0x97/0x2a1 [ 368.931720] vfs_kern_mount.part.0+0x5e/0x3d0 [ 368.936202] ? find_held_lock+0x35/0x130 [ 368.940261] vfs_kern_mount+0x40/0x60 [ 368.944229] btrfs_mount+0x3ce/0x2b28 [ 368.948029] ? lock_downgrade+0x6e0/0x6e0 [ 368.952168] ? find_held_lock+0x35/0x130 [ 368.956211] ? pcpu_alloc+0x3af/0x1050 [ 368.960083] ? btrfs_remount+0x11f0/0x11f0 [ 368.964309] ? rcu_read_lock_sched_held+0x110/0x130 [ 368.969310] ? __lockdep_init_map+0x10c/0x570 [ 368.973786] ? __lockdep_init_map+0x10c/0x570 [ 368.978263] mount_fs+0x97/0x2a1 [ 368.981615] vfs_kern_mount.part.0+0x5e/0x3d0 [ 368.986094] do_mount+0x417/0x27d0 [ 368.989623] ? retint_kernel+0x2d/0x2d [ 368.993504] ? copy_mount_string+0x40/0x40 [ 368.997722] ? copy_mount_options+0x1a0/0x2f0 [ 369.002215] ? copy_mount_options+0x1fe/0x2f0 [ 369.006710] SyS_mount+0xab/0x120 [ 369.010150] ? copy_mnt_ns+0x8c0/0x8c0 [ 369.014023] do_syscall_64+0x1e8/0x640 [ 369.017888] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 369.022714] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 369.027971] RIP: 0033:0x45c47a [ 369.031152] RSP: 002b:00007f617e384a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 369.038951] RAX: ffffffffffffffda RBX: 00007f617e384b40 RCX: 000000000045c47a [ 369.046206] RDX: 00007f617e384ae0 RSI: 0000000020000140 RDI: 00007f617e384b00 05:29:34 executing program 4: r0 = syz_open_dev$sndmidi(&(0x7f0000000180)='/dev/snd/midiC#D#\x00', 0x2, 0x0) read(r0, 0x0, 0x2fc) r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000002800)='/dev/ashmem\x00', 0x0, 0x0) dup2(r1, 0xffffffffffffffff) [ 369.053458] RBP: 0000000000000001 R08: 00007f617e384b40 R09: 00007f617e384ae0 [ 369.060711] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000004 [ 369.067971] R13: 00000000004c8b25 R14: 00000000004dfbc8 R15: 0000000000000003 [ 369.119715] jfs: Unrecognized mount option "i%ÿÿÿÿÿÿ0000000000000005" or missing value 05:29:37 executing program 0: ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000100)="11dca50d5e0bcfe47bf070") prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x802102001ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() r1 = epoll_create(0x3) epoll_pwait(r1, &(0x7f0000000340)=[{}], 0x1, 0x7fff, &(0x7f0000000380), 0x8) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x38) 05:29:37 executing program 2: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x6, &(0x7f0000000500)=[{&(0x7f0000000140)="b0f3cf6f60fef4e3f47be7a57c5c1fd90aed2aab8bc24307aefc8fb73bae6f21c148de5ee5ea6c97573f371a0c8e7e9a1e211bfd7752092a5dbad49a21959fea88f21b5174d3088c8fbc8993a6d98b194bf30e9da2863ca0f7ba16a80c36a05cf868448edec4aa0344f0481588e442c5d9be5679a168cbbf0d02ef80b0abdcff89bde6bccc270387419e2208d143", 0x8e, 0x1}, {&(0x7f00000005c0)="7da224cfa363d2442cb600b5e3a17774ab1d72e1fd5325dc3b1c53b77b8a8a38d26c5347bd6453339349ec0fa5094a260d595a5da75d8e291ad5aeed8a0f37b0fdbfa234b6e1852b932272e7342bad495d166d2241a1a87518fda74bdf72eaf2329639ff11cb3872b388bf00864ac2a9d57278c71fe1", 0x76, 0x800}, {&(0x7f0000000300)="9eb4d0d14fcdcf5d4d3fb64bfe603082983c4d5d5addd53ab90b45b780ff2b68160c43fb7db9db53ab5cd95d58a31849bd3103d7b6d4cdf0134c4267cdf342e2366d577b34784ff96d3f9be3b291cf6f5924eb367d113037d8059e379a977aea78e51b9fcc1290bacd", 0x138, 0x401}, {&(0x7f0000000640)="ccb203aec0e5f044e768674b9fa5f95b6bb8cb47b49046eb631587446563386b2c0b503c17aaf2be0de5afd6436646be9c39e9a8cc3ae5e58b3004206a4a0ec533f92fa2f6dd5b5fd25fa8fb677a1d3534c3f6c71216c0e3a1f087328000018878c7e4d57cdd9e09a219ff707df85e40307bf55858ad739a09509f7f39c6de00efe16d3dd9661ba16c9be5c24f6f32fe67d75e22006ba66e6f09a928ed1e1a2e1b1917f29229a852f38052ad9126194a60e7", 0xa8, 0x4}, {&(0x7f0000000440)="2d96f9d2fad6a9dbbf7e99f2da9b920ebdccdd88e4ffb1fe64a56018a982bddf725e0fa14af20eb708dbf35b9c63a2e12b504cf71c1ecb568c19a5d0dc3d5a329d2c99330cc96ce54726608078f55fd4e57c72de042d9c484b2978d1d1c7d04bedd2296dd748e17a902f705b829d147801e8fa", 0x73, 0x2}, {&(0x7f00000004c0)="9b2f264895444a86a7915a0e53f43d95e11110c8c3a936344811b36097aa76bf09604d57fc", 0x25, 0xffffffff9b8ced98}], 0x0, 0x0) prctl$PR_GET_UNALIGN(0x5, &(0x7f00000000c0)) recvmmsg(0xffffffffffffffff, &(0x7f0000002780)=[{{&(0x7f0000000280)=@tipc=@name, 0x80, &(0x7f0000001a40)=[{&(0x7f0000000700)=""/226, 0xe2}, {&(0x7f0000000380)=""/118, 0x76}, {&(0x7f0000000800)=""/184, 0xb8}, {&(0x7f00000008c0)=""/4096, 0x1000}, {&(0x7f00000018c0)=""/217, 0xd9}, {&(0x7f00000019c0)=""/120, 0x78}], 0x6, &(0x7f0000001ac0)=""/196, 0xc4}, 0x3}, {{&(0x7f0000001bc0)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff}}, 0x80, &(0x7f0000001f80)=[{&(0x7f0000001c40)=""/99, 0x63}, {&(0x7f0000001cc0)=""/146, 0x92}, {&(0x7f0000000400)=""/38, 0x26}, {&(0x7f0000001d80)=""/200, 0xc8}, {&(0x7f0000001e80)=""/238, 0xee}], 0x5}, 0x7f}, {{0x0, 0x0, &(0x7f0000002300)=[{&(0x7f0000002000)=""/121, 0x79}, {&(0x7f0000002080)=""/13, 0xd}, {&(0x7f00000020c0)=""/5, 0x5}, {&(0x7f0000002100)=""/213, 0xd5}, {&(0x7f0000002200)=""/250, 0xfa}], 0x5, &(0x7f0000002380)=""/70, 0x46}, 0x8}, {{&(0x7f0000002400)=@un=@abs, 0x80, &(0x7f0000002640)=[{&(0x7f0000002480)=""/249, 0xf9}, {&(0x7f0000002580)=""/88, 0x58}, {&(0x7f0000002600)=""/34, 0x22}], 0x3, &(0x7f0000002680)=""/233, 0xe9}, 0xa1}], 0x4, 0x40000000, &(0x7f0000002880)) bind$bt_l2cap(r0, &(0x7f00000028c0)={0x1f, 0x8000, {0x81, 0x26, 0x4, 0x1f, 0x1, 0x40}, 0x84}, 0xe) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, &(0x7f0000000000)={0x0, 0x80000, 0xffffffffffffffff}) ioctl$DRM_IOCTL_GET_STATS(r2, 0x80f86406, &(0x7f0000000240)=""/6) syz_open_dev$admmidi(&(0x7f0000000100)='/dev/admmidi#\x00', 0x5, 0x80) 05:29:37 executing program 1 (fault-call:0 fault-nth:61): syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000140)='./file0\x00', 0xff, 0x1, &(0x7f0000000000)=[{&(0x7f0000000180)="8da4363ac0ed0000000000000001004d0100000000000000000000000009000000000000009748aeb81e1b00920efd9a0000010000000000098cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 05:29:37 executing program 3: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="8da4363ac0ed0000000000000001f84c01000000009748aeb81e1b00920efd9a000001001b560000018cffffff0000005f42485266535f4db1fbf5120660206d24264443f41979e1efa0afc87ba42a53ab822a14861900"/102, 0xe, 0x10000}], 0x0, 0x0) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x4, 0x4182) r1 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) pwritev(r1, &(0x7f0000000340)=[{&(0x7f0000000140)='1', 0x1}], 0x1, 0x81805) r2 = dup2(r1, r1) ioctl$SG_GET_RESERVED_SIZE(r1, 0x2272, 0x0) ioctl$LOOP_CHANGE_FD(r0, 0x4c00, r1) write$P9_RLERRORu(r2, &(0x7f00000003c0)=ANY=[@ANYBLOB="1400000007650d6c24ed92c8397291335cf616f0010200070062726f0c62077600b365a0a59e7eea"], 0x28) r3 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = fcntl$dupfd(r3, 0x0, 0xffffffffffffffff) getsockopt$EBT_SO_GET_INIT_INFO(r4, 0x0, 0x82, &(0x7f0000000180)={'broute\x00'}, &(0x7f0000000240)=0x50) ioctl$TIOCSCTTY(r4, 0x540e, 0xffffffff) getsockopt$sock_cred(r4, 0x1, 0x11, 0x0, &(0x7f0000000640)) connect$nfc_llcp(r4, &(0x7f0000000180)={0x27, 0x1, 0x2, 0xa, 0x64, 0x3f, "3c2f894bf5262006f8a1d3fec328e2b9c97ce31c41004b9b72d6d553f6e1b2369878e3096d0dcc3a060342a99602f3bd8fa94817f57ec5000daa9729dd7bde", 0x22}, 0x60) getsockopt$sock_cred(r2, 0x1, 0x11, 0x0, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f00000007c0)={{{@in=@remote, @in6=@initdev}}, {{@in=@empty}, 0x0, @in6=@ipv4}}, &(0x7f00000008c0)=0xe8) sendfile(r2, r0, 0x0, 0x2400003e) ioctl$sock_inet6_tcp_SIOCOUTQ(r2, 0x5411, &(0x7f0000000140)) 05:29:37 executing program 5: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = syz_open_dev$mouse(&(0x7f0000000400)='/dev/input/mouse#\x00', 0x5, 0x395200) getpeername$inet(r0, &(0x7f0000000440)={0x2, 0x0, @empty}, &(0x7f0000000480)=0x10) prctl$PR_GET_FPEXC(0xb, &(0x7f00000000c0)) lstat(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0}) r2 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f00000004c0)={0xfffffffb, 0x1000, 0x0, 0x7ff, 0x1f}) getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000000000)={0x0, 0x0}, &(0x7f0000000040)=0xc) keyctl$get_persistent(0x7, r3, 0x0) mount$9p_tcp(&(0x7f0000000100)='127.0.0.1\x00', &(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='9p\x00', 0x4000, &(0x7f0000000300)=ANY=[@ANYBLOB="7472616e733d7463702c706f72743d3078303030303030303030303030346532322c8473697a653d3078303030303030303030303030303430302c6163636573733d", @ANYRESDEC=r1, @ANYBLOB=',nodevmap,smackfshat=btrfs\x00,context=root,fowner<', @ANYRESDEC=r3, @ANYBLOB=',smackfsroot=-,subj_role=btrfs\x00,subj_type=,\x00']) 05:29:37 executing program 4: r0 = syz_open_dev$sndmidi(&(0x7f0000000180)='/dev/snd/midiC#D#\x00', 0x2, 0x0) read(r0, 0x0, 0x2fc) r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x2, 0x0) dup2(0xffffffffffffffff, r1) [ 371.331693] FAULT_INJECTION: forcing a failure. [ 371.331693] name failslab, interval 1, probability 0, space 0, times 0 [ 371.356512] CPU: 1 PID: 24897 Comm: syz-executor.1 Not tainted 4.14.146 #0 [ 371.363573] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 371.372942] Call Trace: [ 371.372963] dump_stack+0x138/0x197 [ 371.372979] should_fail.cold+0x10f/0x159 [ 371.372995] should_failslab+0xdb/0x130 [ 371.373010] __kmalloc_track_caller+0x2ec/0x790 [ 371.380423] 9pnet: p9_fd_create_tcp (24910): problem connecting socket to 127.0.0.1 [ 371.383469] ? kstrdup_const+0x48/0x60 [ 371.383482] kstrdup+0x3a/0x70 [ 371.383491] kstrdup_const+0x48/0x60 [ 371.383504] alloc_vfsmnt+0xe5/0x7d0 [ 371.392133] vfs_kern_mount.part.0+0x2a/0x3d0 [ 371.392144] ? find_held_lock+0x35/0x130 [ 371.392156] vfs_kern_mount+0x40/0x60 [ 371.402135] print_req_error: I/O error, dev loop4, sector 0 [ 371.403855] btrfs_mount+0x3ce/0x2b28 [ 371.403868] ? lock_downgrade+0x6e0/0x6e0 [ 371.403875] ? find_held_lock+0x35/0x130 [ 371.403886] ? pcpu_alloc+0x3af/0x1050 [ 371.449316] ? btrfs_remount+0x11f0/0x11f0 [ 371.453557] ? rcu_read_lock_sched_held+0x110/0x130 [ 371.458674] ? __lockdep_init_map+0x10c/0x570 [ 371.463211] ? __lockdep_init_map+0x10c/0x570 [ 371.467696] mount_fs+0x97/0x2a1 [ 371.471052] vfs_kern_mount.part.0+0x5e/0x3d0 [ 371.475542] do_mount+0x417/0x27d0 [ 371.479087] ? retint_kernel+0x2d/0x2d [ 371.482970] ? copy_mount_string+0x40/0x40 [ 371.487191] ? __sanitizer_cov_trace_pc+0x29/0x60 [ 371.493843] ? copy_mount_options+0x1fe/0x2f0 [ 371.498324] SyS_mount+0xab/0x120 [ 371.501764] ? copy_mnt_ns+0x8c0/0x8c0 [ 371.505635] do_syscall_64+0x1e8/0x640 [ 371.509601] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 371.514439] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 371.519825] RIP: 0033:0x45c47a [ 371.523001] RSP: 002b:00007f617e384a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 05:29:37 executing program 2: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) chroot(&(0x7f00000000c0)='./file0\x00') r1 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000100)='/dev/btrfs-control\x00', 0x40000, 0x0) recvmmsg(r1, &(0x7f0000002000)=[{{0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000000140)=""/157, 0x9d}, {&(0x7f0000000280)=""/41, 0x29}], 0x2, &(0x7f0000000300)=""/132, 0x84}, 0x6}, {{&(0x7f00000003c0)=@un=@abs, 0x80, &(0x7f00000005c0)=[{&(0x7f0000000440)=""/45, 0x2d}, {&(0x7f0000000480)=""/226, 0xe2}, {&(0x7f0000000580)=""/2, 0x2}], 0x3, &(0x7f0000000600)=""/160, 0xa0}, 0x5}, {{&(0x7f00000006c0)=@ax25={{0x3, @bcast}, [@bcast, @rose, @default, @bcast, @null, @remote, @rose, @default]}, 0x80, &(0x7f0000001800)=[{&(0x7f0000000740)=""/47, 0x2f}, {&(0x7f0000000780)=""/48, 0x30}, {&(0x7f00000007c0)=""/49, 0x31}, {&(0x7f0000000800)=""/4096, 0x1000}], 0x4, &(0x7f0000001840)=""/82, 0x52}, 0x1f}, {{0x0, 0x0, &(0x7f0000001ec0)=[{&(0x7f00000018c0)=""/122, 0x7a}, {&(0x7f0000001940)=""/73, 0x49}, {&(0x7f00000019c0)=""/217, 0xd9}, {&(0x7f0000001ac0)=""/140, 0x8c}, {&(0x7f0000001b80)=""/95, 0x5f}, {&(0x7f0000001c00)=""/169, 0xa9}, {&(0x7f0000001cc0)=""/198, 0xc6}, {&(0x7f0000001dc0)=""/217, 0xd9}], 0x8, &(0x7f0000001f40)=""/143, 0x8f}}], 0x4, 0x20, &(0x7f0000002100)={0x0, 0x989680}) [ 371.530690] RAX: ffffffffffffffda RBX: 00007f617e384b40 RCX: 000000000045c47a [ 371.537956] RDX: 00007f617e384ae0 RSI: 0000000020000140 RDI: 00007f617e384b00 [ 371.545206] RBP: 0000000000000001 R08: 00007f617e384b40 R09: 00007f617e384ae0 [ 371.552463] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000004 [ 371.559734] R13: 00000000004c8b25 R14: 00000000004dfbc8 R15: 0000000000000003 05:29:37 executing program 1 (fault-call:0 fault-nth:62): syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000140)='./file0\x00', 0xff, 0x1, &(0x7f0000000000)=[{&(0x7f0000000180)="8da4363ac0ed0000000000000001004d0100000000000000000000000009000000000000009748aeb81e1b00920efd9a0000010000000000098cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 05:29:37 executing program 3: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = openat$proc_capi20(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/capi/capi20\x00', 0x80c080, 0x0) sendto$unix(r0, &(0x7f0000000100)="998c669b79615ba4aa288c8556abec841d86c6424f67fde2d7bc7853019dc677e7c526f3608d13a864fd7836374a9d9d9d79183f5543cc2ee8e0c0962578c837b57f846a8903422da785d86f31affd6daad6cf7e73e73a6f644dae4c3bcdedc88c7d3a88be79765962b0dc052656ebd29ee671e16b8cdc744a95", 0x7a, 0x20002080, 0x0, 0x0) [ 371.676444] 9pnet: p9_fd_create_tcp (24910): problem connecting socket to 127.0.0.1 05:29:37 executing program 5: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/lo\x03p#\x1f', 0x804, 0x10000) r1 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) pwritev(r1, &(0x7f0000000340)=[{&(0x7f0000000280)="e298f7ec6fb96b59a18cb13720ffcd1a65a8ffb80f1f24a51d636c5622003d4661e07409cbd0e594121883935235ca910676a9337240582f7af1b973f2f143d203d7fef8064a0c35640e12caadb7072037d3e10da248e9b19a15e494ae98122fe6f576ea39fd84a1287198490c50f91617d2978c4bc22cf5d72fb152e888386ee7971cd4a80c88bcdce95afeccfd7f55ccfca48cd0c868b1099581d4dd51f8cac8c8c1c97fca1b1121aa35851368c61b8c", 0x26a}], 0x1, 0x0) r2 = dup2(r1, r1) ioctl$SG_GET_RESERVED_SIZE(r1, 0x2272, 0x0) openat$dsp(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/dsp\x00', 0x10000, 0x0) ioctl$LOOP_CHANGE_FD(r2, 0x4c00, r0) write$P9_RLERRORu(r2, &(0x7f00000003c0)=ANY=[@ANYBLOB="1400000007650d6c24ed92c8397291335cf616f0010200070062726f0c62077600b365a0a59e7eea"], 0x28) getsockopt$sock_cred(r2, 0x1, 0x11, 0x0, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f00000007c0)={{{@in=@remote, @in6=@initdev}}, {{@in=@empty}, 0x0, @in6=@ipv4}}, &(0x7f00000008c0)=0xe8) sendfile(r2, r0, 0x0, 0x2400003e) ioctl$SIOCX25GSUBSCRIP(r2, 0x89e0, &(0x7f00000000c0)={'nr0\x00', 0x1000, 0x5}) 05:29:37 executing program 2: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) ioctl$INOTIFY_IOC_SETNEXTWD(r0, 0x40044900, 0x5) syz_mount_image$nfs4(&(0x7f00000000c0)='nfs4\x00', &(0x7f0000000100)='./file0\x00', 0x1, 0x4, &(0x7f0000001380)=[{&(0x7f0000000140)="faf6615e65d3f04980650ab05398c74046ffd11c753891903ff037856db46a59c840e6c8b40f812d772e7ff4f5a96eeacf262438b305893eb6794f7cf8469989922877bebdfaad9f9c7b4138d4aa236acaced070d2cd23e853ee04b7b3f184ceeebb81ddacdb43ae94a47238a058ade489e64c9358e02c24fd9673740e7859118b60d2d2d179a36bc907e9c330845715f8fd35cccc8710a49e6dbfbd0d2f45313247b01f368149", 0xa7, 0x7}, {&(0x7f0000000280)="8b1dc331529788616ad5b09d6254d0a420e7790a17d8e8f9fe87e4360e30712fc65a4da499424a23f18df9d6a1815e2df1f6b0aba431c3017377ef5caf975c716b398f5d9ce6b442239873fba8c03d5747880396bf04e4bdfa9ccfde6243692497c9394be1888de89cafae6e5f72a4609fc997f8fd71363cb2fe9b4cc84f8b6e1440f1483b6d3fbd5603a5a22e2653a18a7956e7071e646d5d6137d822d097e2611e8ce1ec01bcf8c20ace5973", 0xad, 0x7}, {&(0x7f0000000340)="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", 0x1000, 0x1}, {&(0x7f0000001340), 0x0, 0x5}], 0x1, &(0x7f0000001400)='btrfs\x00') r1 = socket$alg(0x26, 0x5, 0x0) bind$alg(r1, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'ghash-generic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, 0x0, 0x0) ioctl$FS_IOC_GETFLAGS(r1, 0x80086601, &(0x7f0000001340)) [ 371.825376] FAULT_INJECTION: forcing a failure. [ 371.825376] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 371.879841] CPU: 0 PID: 24932 Comm: syz-executor.1 Not tainted 4.14.146 #0 [ 371.886902] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 371.886909] Call Trace: [ 371.886926] dump_stack+0x138/0x197 [ 371.886946] should_fail.cold+0x10f/0x159 [ 371.898895] ? __might_sleep+0x93/0xb0 [ 371.898910] __alloc_pages_nodemask+0x1d6/0x7a0 [ 371.898925] ? check_preemption_disabled+0x3c/0x250 [ 371.906677] ? __alloc_pages_slowpath+0x2930/0x2930 [ 371.906688] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 371.906699] ? __alloc_pages_nodemask+0x639/0x7a0 [ 371.915232] alloc_pages_current+0xec/0x1e0 [ 371.915242] ? btrfs_parse_early_options+0x1a2/0x310 [ 371.915257] __get_free_pages+0xf/0x40 [ 371.915268] get_zeroed_page+0x11/0x20 [ 371.952692] selinux_sb_copy_data+0x2a/0x390 [ 371.957103] security_sb_copy_data+0x75/0xb0 [ 371.961497] parse_security_options+0x37/0xa0 [ 371.965977] btrfs_mount+0x2bb/0x2b28 [ 371.969767] ? lock_downgrade+0x6e0/0x6e0 [ 371.973899] ? find_held_lock+0x35/0x130 [ 371.977945] ? pcpu_alloc+0x3af/0x1050 [ 371.981822] ? btrfs_remount+0x11f0/0x11f0 [ 371.986056] ? rcu_read_lock_sched_held+0x110/0x130 [ 371.991064] ? __lockdep_init_map+0x10c/0x570 [ 371.995555] mount_fs+0x97/0x2a1 [ 371.998930] vfs_kern_mount.part.0+0x5e/0x3d0 [ 372.003407] ? find_held_lock+0x35/0x130 [ 372.008495] vfs_kern_mount+0x40/0x60 [ 372.012282] btrfs_mount+0x3ce/0x2b28 [ 372.016064] ? lock_downgrade+0x6e0/0x6e0 [ 372.020195] ? find_held_lock+0x35/0x130 [ 372.024237] ? pcpu_alloc+0x3af/0x1050 [ 372.028893] ? btrfs_remount+0x11f0/0x11f0 [ 372.033464] ? rcu_read_lock_sched_held+0x110/0x130 [ 372.038468] ? __lockdep_init_map+0x10c/0x570 [ 372.042949] ? __lockdep_init_map+0x10c/0x570 [ 372.047429] mount_fs+0x97/0x2a1 [ 372.050781] vfs_kern_mount.part.0+0x5e/0x3d0 [ 372.055262] do_mount+0x417/0x27d0 [ 372.058786] ? copy_mount_options+0x5c/0x2f0 [ 372.063176] ? rcu_read_lock_sched_held+0x110/0x130 [ 372.068178] ? copy_mount_string+0x40/0x40 [ 372.072423] ? copy_mount_options+0x1fe/0x2f0 [ 372.076906] SyS_mount+0xab/0x120 [ 372.080340] ? copy_mnt_ns+0x8c0/0x8c0 [ 372.084211] do_syscall_64+0x1e8/0x640 [ 372.088081] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 372.092997] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 372.098167] RIP: 0033:0x45c47a [ 372.101346] RSP: 002b:00007f617e384a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 372.109035] RAX: ffffffffffffffda RBX: 00007f617e384b40 RCX: 000000000045c47a [ 372.116289] RDX: 00007f617e384ae0 RSI: 0000000020000140 RDI: 00007f617e384b00 [ 372.123547] RBP: 0000000000000001 R08: 00007f617e384b40 R09: 00007f617e384ae0 05:29:37 executing program 4: r0 = syz_open_dev$sndmidi(&(0x7f0000000180)='/dev/snd/midiC#D#\x00', 0x2, 0x0) read(r0, 0x0, 0x2fc) r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x2, 0x0) dup2(0xffffffffffffffff, r1) [ 372.130801] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000004 [ 372.138054] R13: 00000000004c8b25 R14: 00000000004dfbc8 R15: 0000000000000003 05:29:40 executing program 2: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) rt_sigtimedwait(&(0x7f00000000c0), 0x0, 0x0, 0x8) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000400)={&(0x7f0000000180), 0xc, &(0x7f00000003c0)={0x0}}, 0x0) r0 = getpid() rt_tgsigqueueinfo(r0, r0, 0x16, &(0x7f0000000100)) ptrace(0x10, r0) ptrace$pokeuser(0x6, r0, 0x388, 0xffffffffffffffff) ptrace$pokeuser(0x6, r0, 0x0, 0x0) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = fcntl$dupfd(r1, 0x0, 0xffffffffffffffff) getsockopt$EBT_SO_GET_INIT_INFO(r2, 0x0, 0x82, &(0x7f0000000180)={'broute\x00'}, &(0x7f0000000240)=0x50) ioctl$TIOCSCTTY(r2, 0x540e, 0xffffffff) getsockopt$sock_cred(r2, 0x1, 0x11, 0x0, &(0x7f0000000640)) ioctl$SNDRV_CTL_IOCTL_ELEM_READ(r2, 0xc4c85512, &(0x7f0000000440)={{0x5, 0x1, 0xfe3c, 0x8000, 'syz1\x00', 0x8}, 0x0, [0x4000000000000000, 0xc, 0xc1d4, 0x40, 0x3, 0x8, 0x3f, 0x77f4, 0x5, 0x9, 0x0, 0x6, 0x9, 0x4, 0x20, 0x200, 0x0, 0x0, 0xe5, 0x8492, 0x1, 0x8000, 0x7ff, 0x1ff, 0x3f, 0x7, 0x10001, 0x3, 0x8, 0x100000001, 0x8, 0x7, 0xb7b9, 0x7, 0x7, 0xbe8, 0x8000, 0x7, 0x9, 0x5, 0x9, 0x50000000000, 0x0, 0xfffffffeffffffff, 0x5, 0x1ff, 0x9, 0x4, 0x3, 0x3, 0x3, 0x200, 0x1, 0xffff, 0x5, 0x4eac, 0x0, 0xffffffffffff8001, 0x2, 0x2, 0x3f, 0xffffffff, 0x7fff, 0x9, 0x5, 0x2, 0xe061, 0x1ff, 0x0, 0x8, 0x3, 0x3, 0xaad6, 0x10000, 0xff, 0x10000, 0x9, 0x7, 0x5, 0x4, 0x81, 0x4, 0x1000, 0x800, 0x100, 0x7, 0x6, 0x81, 0xfffffffffffffc00, 0x2, 0x0, 0x10000, 0x1ff, 0x48f, 0xad0, 0x340000, 0x6, 0x2, 0x7, 0x2, 0x9, 0x9, 0x1, 0x3a2, 0x0, 0x4, 0x5, 0x8, 0x5, 0x7, 0x800, 0x0, 0x6, 0x6, 0xdc1, 0x7, 0x947e, 0x0, 0x8, 0x9, 0x0, 0x4, 0x2, 0x754b, 0x401, 0x9, 0x8000, 0x6], {0x0, 0x1c9c380}}) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) 05:29:40 executing program 0: ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000100)="11dca50d5e0bcfe47bf070") prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x802102001ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() r1 = epoll_create(0x3) epoll_pwait(r1, &(0x7f0000000340)=[{}], 0x1, 0x7fff, &(0x7f0000000380), 0x8) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x38) 05:29:40 executing program 3: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="8da4363ac0ed0000000000000001004d01000000000000c00000002fa0000000000000fff6f2a2299748aedb1e1b00920efd9a0000010000000000018cffffff0000005f42485266539dc8a9a5c1115f4d33334fbfd96ba7f89ce452349d9c133e73de01f697000100a59935a89b7ca77058a40422ea0512e34389d90f40f798abfe321fcac50376e2e384f5a36009ef4229d4cede9d2026394ff71e6ee359b1d69308924e0d4cb9a9ddc7cc443008c968e72412406addd1c5d62dca4eba684f06e60f7cee5421f614160736b0b04039a68f68c70c663efa89d037e79fa435e2c94c6d9eb9094766cc7725ac1ac7de92076b", 0xf2, 0x10000}], 0x0, 0x0) syz_mount_image$ntfs(&(0x7f00000001c0)='ntfs\x00', &(0x7f0000000200)='./file0\x00', 0xaea5, 0x2, &(0x7f00000003c0)=[{&(0x7f0000000240)="e5d61c0668144f3d888297704de7d9c132dc9116247132c6adc206cbb93ca03d50a6348187bdec66e82e2444d4758217cceca1e0e556623de68050f15130a9644c98d92bc78c6e46683e2ecebc1e7c8ef1dbb40ee74e621074e8f794b0d95c0cd193a7bb385ae04673451e17", 0x6c, 0x8}, {&(0x7f00000002c0)="9a26e9ad217855f1ec6bb0493ca6d520f0ad6bb68fca7fdf7b246cbc455d220aa8479526c5bfbacd15ec24018c0585677cc70fee67aeb9bc322f6608e79e5f372de88135f1ec7f8de40006328d353da3e7659062047c8e8c78f2f2b01ac52e10b0e415255eb1aaba2409228fe11521e62bb1ec14763160cc453d15e9ee18b6bf36ff07e9ada2761c6c41b89784d33a307df76dbc8fe900936e7a7d5f3e38f94a965709018f714ec1cb79d271f383df6bc39335f0240fc9d105b92d2cf3def4806ca3", 0xc2, 0x8000}], 0x4000, &(0x7f0000000400)={[{@case_sensitive_yes='case_sensitive=yes'}, {@disable_sparse_yes='disable_sparse=yes'}, {@mft_zone_multiplier={'mft_zone_multiplier'}}], [{@defcontext={'defcontext', 0x3d, 'system_u'}}, {@smackfsdef={'smackfsdef', 0x3d, 'GPL&-'}}, {@permit_directio='permit_directio'}, {@permit_directio='permit_directio'}]}) 05:29:40 executing program 1 (fault-call:0 fault-nth:63): syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000140)='./file0\x00', 0xff, 0x1, &(0x7f0000000000)=[{&(0x7f0000000180)="8da4363ac0ed0000000000000001004d0100000000000000000000000009000000000000009748aeb81e1b00920efd9a0000010000000000098cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 05:29:40 executing program 4: r0 = syz_open_dev$sndmidi(&(0x7f0000000180)='/dev/snd/midiC#D#\x00', 0x2, 0x0) read(r0, 0x0, 0x2fc) r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x2, 0x0) dup2(0xffffffffffffffff, r1) 05:29:40 executing program 5: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = syz_open_dev$vcsa(&(0x7f0000000300)='/de\x02\x00vcsa#\x00', 0x4, 0x20000) getsockopt$inet6_IPV6_IPSEC_POLICY(r0, 0x29, 0x22, 0x0, &(0x7f0000000780)) symlinkat(&(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000000100)='./file0\x00') [ 374.385162] FAULT_INJECTION: forcing a failure. [ 374.385162] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 374.411142] ntfs: (device loop3): parse_options(): Unrecognized mount option smackfsdef. [ 374.423182] ntfs: (device loop3): parse_options(): Unrecognized mount option permit_directio. [ 374.428201] CPU: 1 PID: 24990 Comm: syz-executor.1 Not tainted 4.14.146 #0 [ 374.432720] ntfs: (device loop3): parse_options(): Unrecognized mount option permit_directio. [ 374.438892] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 374.438898] Call Trace: [ 374.438921] dump_stack+0x138/0x197 [ 374.438941] should_fail.cold+0x10f/0x159 [ 374.447820] ntfs: (device loop3): parse_options(): Unrecognized mount option . [ 374.456953] ? __might_sleep+0x93/0xb0 [ 374.456969] __alloc_pages_nodemask+0x1d6/0x7a0 [ 374.456979] ? trace_hardirqs_on+0xd/0x10 [ 374.456988] ? __alloc_pages_slowpath+0x2930/0x2930 [ 374.457000] ? btrfs_parse_early_options+0x1a2/0x310 [ 374.499279] alloc_pages_current+0xec/0x1e0 [ 374.503642] __get_free_pages+0xf/0x40 [ 374.507548] get_zeroed_page+0x11/0x20 [ 374.511437] parse_security_options+0x1f/0xa0 [ 374.515941] btrfs_mount+0x2bb/0x2b28 [ 374.519824] ? lock_downgrade+0x6e0/0x6e0 [ 374.523971] ? find_held_lock+0x35/0x130 [ 374.528023] ? pcpu_alloc+0x3af/0x1050 [ 374.531908] ? btrfs_remount+0x11f0/0x11f0 [ 374.536144] ? rcu_read_lock_sched_held+0x110/0x130 [ 374.541167] ? __lockdep_init_map+0x10c/0x570 [ 374.545659] mount_fs+0x97/0x2a1 [ 374.549024] vfs_kern_mount.part.0+0x5e/0x3d0 [ 374.553560] ? find_held_lock+0x35/0x130 [ 374.557617] vfs_kern_mount+0x40/0x60 [ 374.562027] btrfs_mount+0x3ce/0x2b28 [ 374.566022] ? lock_downgrade+0x6e0/0x6e0 [ 374.570153] ? find_held_lock+0x35/0x130 [ 374.574199] ? pcpu_alloc+0x3af/0x1050 [ 374.578075] ? btrfs_remount+0x11f0/0x11f0 [ 374.582313] ? rcu_read_lock_sched_held+0x110/0x130 [ 374.587331] ? __lockdep_init_map+0x10c/0x570 [ 374.591830] ? __lockdep_init_map+0x10c/0x570 [ 374.597469] mount_fs+0x97/0x2a1 [ 374.600843] vfs_kern_mount.part.0+0x5e/0x3d0 [ 374.605335] do_mount+0x417/0x27d0 [ 374.608873] ? copy_mount_options+0x5c/0x2f0 [ 374.613277] ? rcu_read_lock_sched_held+0x110/0x130 [ 374.618303] ? copy_mount_string+0x40/0x40 [ 374.622541] ? copy_mount_options+0x1fe/0x2f0 [ 374.627084] SyS_mount+0xab/0x120 [ 374.630539] ? copy_mnt_ns+0x8c0/0x8c0 [ 374.634468] do_syscall_64+0x1e8/0x640 [ 374.638384] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 374.643219] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 374.648394] RIP: 0033:0x45c47a [ 374.651565] RSP: 002b:00007f617e384a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 374.659260] RAX: ffffffffffffffda RBX: 00007f617e384b40 RCX: 000000000045c47a [ 374.666530] RDX: 00007f617e384ae0 RSI: 0000000020000140 RDI: 00007f617e384b00 [ 374.673972] RBP: 0000000000000001 R08: 00007f617e384b40 R09: 00007f617e384ae0 [ 374.681234] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000004 [ 374.688499] R13: 00000000004c8b25 R14: 00000000004dfbc8 R15: 0000000000000003 05:29:40 executing program 3: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f00000002c0)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x3a, 0x10004}], 0x0, 0x0) r0 = openat$mixer(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/mixer\x00', 0x60401, 0x0) readlinkat(r0, &(0x7f0000000100)='./file0/file0\x00', &(0x7f0000000140)=""/127, 0x7f) getsockopt$bt_BT_RCVMTU(r0, 0x112, 0xd, &(0x7f00000001c0)=0x6, &(0x7f0000000280)=0x2) 05:29:40 executing program 5: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = getpid() r1 = socket$alg(0x26, 0x5, 0x0) bind$alg(r1, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'ghash-generic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, 0x0, 0x0) ioctl$sock_FIOGETOWN(r1, 0x8903, &(0x7f0000001480)=0x0) getpgid(r2) tkill(r0, 0x9) execve(&(0x7f00000000c0)='./file0\x00', &(0x7f00000001c0)=[&(0x7f0000000100)='bdevmime_typevmnet1wlan0\x00', &(0x7f0000000140)='\x00', &(0x7f0000000180)='btrfs\x00'], &(0x7f00000013c0)=[&(0x7f0000001280)='selinux#nodev@vboxnet1&\xa0%\x00', &(0x7f00000012c0)='btrfs\x00', &(0x7f0000001300)='btrfs\x00', &(0x7f0000001340)='cpuset*{.proc(%\x00', &(0x7f0000001380)='\x00']) ptrace$setregs(0xf, r0, 0x1, &(0x7f0000000280)="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") r3 = openat$null(0xffffffffffffff9c, &(0x7f0000001400)='/dev/null\x00', 0x4000, 0x0) ioctl$sock_bt_hidp_HIDPCONNDEL(r3, 0x400448c9, &(0x7f0000001440)={{0x9, 0x80, 0x1, 0x9, 0xf3, 0x73}}) 05:29:40 executing program 1 (fault-call:0 fault-nth:64): syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000140)='./file0\x00', 0xff, 0x1, &(0x7f0000000000)=[{&(0x7f0000000180)="8da4363ac0ed0000000000000001004d0100000000000000000000000009000000000000009748aeb81e1b00920efd9a0000010000000000098cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 374.861109] FAULT_INJECTION: forcing a failure. [ 374.861109] name failslab, interval 1, probability 0, space 0, times 0 [ 374.872795] CPU: 0 PID: 25015 Comm: syz-executor.1 Not tainted 4.14.146 #0 [ 374.879837] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 374.889196] Call Trace: [ 374.891785] dump_stack+0x138/0x197 [ 374.895415] should_fail.cold+0x10f/0x159 [ 374.899573] should_failslab+0xdb/0x130 [ 374.903540] kmem_cache_alloc_trace+0x2e9/0x790 [ 374.908208] selinux_parse_opts_str+0x3c1/0xa30 [ 374.912866] ? selinux_sb_show_options+0xd50/0xd50 [ 374.917783] ? free_pages+0x46/0x50 [ 374.921398] ? selinux_sb_copy_data+0x21e/0x390 [ 374.926063] security_sb_parse_opts_str+0x75/0xb0 [ 374.930899] parse_security_options+0x4e/0xa0 [ 374.935380] btrfs_mount+0x2bb/0x2b28 [ 374.939169] ? lock_downgrade+0x6e0/0x6e0 [ 374.943300] ? find_held_lock+0x35/0x130 [ 374.947347] ? pcpu_alloc+0x3af/0x1050 [ 374.951226] ? btrfs_remount+0x11f0/0x11f0 [ 374.955451] ? rcu_read_lock_sched_held+0x110/0x130 [ 374.960459] ? __lockdep_init_map+0x10c/0x570 [ 374.964947] mount_fs+0x97/0x2a1 [ 374.968306] vfs_kern_mount.part.0+0x5e/0x3d0 [ 374.972786] ? find_held_lock+0x35/0x130 [ 374.976946] vfs_kern_mount+0x40/0x60 [ 374.980747] btrfs_mount+0x3ce/0x2b28 [ 374.984537] ? lock_downgrade+0x6e0/0x6e0 [ 374.988688] ? find_held_lock+0x35/0x130 [ 374.992733] ? pcpu_alloc+0x3af/0x1050 [ 374.996615] ? btrfs_remount+0x11f0/0x11f0 [ 375.000838] ? rcu_read_lock_sched_held+0x110/0x130 [ 375.005851] ? __lockdep_init_map+0x10c/0x570 [ 375.010333] ? __lockdep_init_map+0x10c/0x570 [ 375.014818] mount_fs+0x97/0x2a1 [ 375.018193] vfs_kern_mount.part.0+0x5e/0x3d0 [ 375.022684] do_mount+0x417/0x27d0 [ 375.026207] ? copy_mount_options+0x5c/0x2f0 [ 375.030621] ? rcu_read_lock_sched_held+0x110/0x130 [ 375.035623] ? copy_mount_string+0x40/0x40 [ 375.039850] ? copy_mount_options+0x1fe/0x2f0 [ 375.044332] SyS_mount+0xab/0x120 [ 375.047801] ? copy_mnt_ns+0x8c0/0x8c0 [ 375.051761] do_syscall_64+0x1e8/0x640 [ 375.055631] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 375.060514] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 375.065688] RIP: 0033:0x45c47a [ 375.068860] RSP: 002b:00007f617e384a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 375.076555] RAX: ffffffffffffffda RBX: 00007f617e384b40 RCX: 000000000045c47a [ 375.083894] RDX: 00007f617e384ae0 RSI: 0000000020000140 RDI: 00007f617e384b00 [ 375.091161] RBP: 0000000000000001 R08: 00007f617e384b40 R09: 00007f617e384ae0 [ 375.098432] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000004 [ 375.105707] R13: 00000000004c8b25 R14: 00000000004dfbc8 R15: 0000000000000003 05:29:40 executing program 1 (fault-call:0 fault-nth:65): syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000140)='./file0\x00', 0xff, 0x1, &(0x7f0000000000)=[{&(0x7f0000000180)="8da4363ac0ed0000000000000001004d0100000000000000000000000009000000000000009748aeb81e1b00920efd9a0000010000000000098cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 05:29:41 executing program 4: syz_open_dev$sndmidi(&(0x7f0000000180)='/dev/snd/midiC#D#\x00', 0x2, 0x0) r0 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000002800)='/dev/ashmem\x00', 0x0, 0x0) r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x2, 0x0) dup2(r0, r1) 05:29:41 executing program 3: r0 = accept4$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x0, @initdev}, &(0x7f0000000040)=0x10, 0x80000) r1 = openat$proc_capi20ncci(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/capi/capi20ncci\x00', 0xf637ab0907c0c10a, 0x0) recvfrom$netrom(r1, &(0x7f0000000100)=""/131, 0x83, 0x1, &(0x7f00000001c0)={{0x3, @null, 0x2}, [@rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}, @null, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @default, @bcast, @bcast]}, 0x48) ioctl$sock_inet_tcp_SIOCOUTQ(r0, 0x5411, &(0x7f0000000080)) r2 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x4, 0x4182) r3 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) pwritev(r3, &(0x7f0000000340)=[{&(0x7f0000000140)='!', 0x1}], 0x1, 0x81805) r4 = dup2(r3, r3) ioctl$SG_GET_RESERVED_SIZE(r3, 0x2272, 0x0) ioctl$LOOP_CHANGE_FD(r2, 0x4c00, r3) write$P9_RLERRORu(r4, &(0x7f00000003c0)=ANY=[@ANYBLOB="1400000007650d6c24ed92c8397291335cf616f0010200070062726f0c62077600b365a0a59e7eea"], 0x28) getsockopt$sock_cred(r4, 0x1, 0x11, 0x0, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(r4, 0x29, 0x23, &(0x7f00000007c0)={{{@in=@remote, @in6=@initdev}}, {{@in=@empty}, 0x0, @in6=@ipv4}}, &(0x7f00000008c0)=0xe8) sendfile(r4, r2, 0x0, 0x2400003e) recvfrom$inet6(r4, &(0x7f0000000240)=""/247, 0xf7, 0x0, 0x0, 0x0) 05:29:41 executing program 2: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x4, 0x4182) r1 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) pwritev(r1, &(0x7f0000000340)=[{&(0x7f0000000140)='!', 0x1}], 0x1, 0x81805) r2 = dup2(r1, r1) ioctl$SG_GET_RESERVED_SIZE(r1, 0x2272, 0x0) r3 = syz_open_dev$vcsa(&(0x7f0000000300)='/dev/vcsa#\x00', 0x80000001, 0x20000) getsockopt$inet6_IPV6_IPSEC_POLICY(r3, 0x29, 0x22, 0x0, &(0x7f0000000780)) ioctl$SG_GET_RESERVED_SIZE(r3, 0x2272, &(0x7f00000001c0)) ioctl$LOOP_CHANGE_FD(r0, 0x4c00, r1) write$P9_RLERRORu(r2, &(0x7f00000003c0)=ANY=[@ANYBLOB="1400000007650d6c24ed92c8397291335cf616f0010200070062726f0c62077600b365a0a59e7eea"], 0x28) getsockopt$sock_cred(r2, 0x1, 0x11, 0x0, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f00000007c0)={{{@in=@remote, @in6=@initdev}}, {{@in=@empty}, 0x0, @in6=@ipv4}}, &(0x7f00000008c0)=0xe8) sendfile(r2, r0, 0x0, 0x2400003e) setsockopt$X25_QBITINCL(r2, 0x106, 0x1, &(0x7f0000000100)=0x1, 0x4) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) r5 = socket$alg(0x26, 0x5, 0x0) bind$alg(r5, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'ghash-generic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r5, 0x117, 0x1, 0x0, 0x0) r6 = syz_open_dev$vcsa(&(0x7f0000000300)='/dev/vcsa#\x00', 0x80000001, 0x20000) getsockopt$inet6_IPV6_IPSEC_POLICY(r6, 0x29, 0x22, 0x0, &(0x7f0000000780)) ioctl$sock_inet_tcp_SIOCOUTQ(r6, 0x5411, &(0x7f0000000180)) r7 = dup3(0xffffffffffffffff, r5, 0x80000) faccessat(r7, &(0x7f00000000c0)='./file0\x00', 0xba, 0x1d00) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) [ 375.312656] FAULT_INJECTION: forcing a failure. [ 375.312656] name failslab, interval 1, probability 0, space 0, times 0 [ 375.324227] CPU: 0 PID: 25042 Comm: syz-executor.1 Not tainted 4.14.146 #0 [ 375.324257] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 375.324261] Call Trace: [ 375.324278] dump_stack+0x138/0x197 [ 375.324294] should_fail.cold+0x10f/0x159 [ 375.324309] should_failslab+0xdb/0x130 [ 375.324323] kmem_cache_alloc+0x47/0x780 [ 375.324343] radix_tree_node_alloc.constprop.0+0x1c7/0x310 [ 375.324357] __radix_tree_create+0x337/0x4d0 [ 375.324374] page_cache_tree_insert+0xa7/0x2d0 [ 375.324386] ? file_check_and_advance_wb_err+0x380/0x380 [ 375.324395] ? debug_smp_processor_id+0x1c/0x20 [ 375.324411] __add_to_page_cache_locked+0x2ab/0x7e0 [ 375.324424] ? find_lock_entry+0x3f0/0x3f0 [ 375.324437] add_to_page_cache_lru+0xf4/0x310 [ 375.324447] ? add_to_page_cache_locked+0x40/0x40 [ 375.324455] ? __page_cache_alloc+0xdd/0x3e0 [ 375.324468] do_read_cache_page+0x64e/0xfc0 [ 375.324477] ? blkdev_writepages+0xd0/0xd0 [ 375.324492] ? find_get_pages_contig+0xaa0/0xaa0 [ 375.324501] ? blkdev_get+0xb0/0x8e0 [ 375.324511] ? dput.part.0+0x170/0x750 [ 375.324522] ? bd_may_claim+0xd0/0xd0 [ 375.324532] ? path_put+0x50/0x70 [ 375.324540] ? lookup_bdev.part.0+0xe1/0x160 [ 375.324551] read_cache_page_gfp+0x6e/0x90 [ 375.324563] btrfs_read_disk_super+0xdd/0x440 [ 375.324575] btrfs_scan_one_device+0xc6/0x400 [ 375.324587] ? device_list_add+0x8d0/0x8d0 [ 375.324597] ? __free_pages+0x54/0x90 [ 375.341038] ? free_pages+0x46/0x50 [ 375.341055] btrfs_mount+0x2e3/0x2b28 [ 375.341066] ? lock_downgrade+0x6e0/0x6e0 [ 375.341074] ? find_held_lock+0x35/0x130 [ 375.341083] ? pcpu_alloc+0x3af/0x1050 [ 375.341098] ? btrfs_remount+0x11f0/0x11f0 [ 375.347302] ? rcu_read_lock_sched_held+0x110/0x130 [ 375.347323] ? __lockdep_init_map+0x10c/0x570 [ 375.347338] mount_fs+0x97/0x2a1 [ 375.359668] vfs_kern_mount.part.0+0x5e/0x3d0 [ 375.359677] ? find_held_lock+0x35/0x130 [ 375.359688] vfs_kern_mount+0x40/0x60 [ 375.510205] btrfs_mount+0x3ce/0x2b28 [ 375.513995] ? lock_downgrade+0x6e0/0x6e0 [ 375.518124] ? find_held_lock+0x35/0x130 [ 375.522167] ? pcpu_alloc+0x3af/0x1050 [ 375.526042] ? btrfs_remount+0x11f0/0x11f0 [ 375.530267] ? rcu_read_lock_sched_held+0x110/0x130 [ 375.535272] ? __lockdep_init_map+0x10c/0x570 [ 375.539752] ? __lockdep_init_map+0x10c/0x570 [ 375.544237] mount_fs+0x97/0x2a1 [ 375.547598] vfs_kern_mount.part.0+0x5e/0x3d0 [ 375.552512] do_mount+0x417/0x27d0 [ 375.556040] ? copy_mount_options+0x5c/0x2f0 [ 375.560440] ? rcu_read_lock_sched_held+0x110/0x130 [ 375.565441] ? copy_mount_string+0x40/0x40 [ 375.569663] ? copy_mount_options+0x1fe/0x2f0 [ 375.574143] SyS_mount+0xab/0x120 [ 375.577577] ? copy_mnt_ns+0x8c0/0x8c0 [ 375.581458] do_syscall_64+0x1e8/0x640 [ 375.585337] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 375.590189] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 375.595372] RIP: 0033:0x45c47a [ 375.598549] RSP: 002b:00007f617e384a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 375.606241] RAX: ffffffffffffffda RBX: 00007f617e384b40 RCX: 000000000045c47a [ 375.613508] RDX: 00007f617e384ae0 RSI: 0000000020000140 RDI: 00007f617e384b00 [ 375.620774] RBP: 0000000000000001 R08: 00007f617e384b40 R09: 00007f617e384ae0 [ 375.628045] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000004 [ 375.635302] R13: 00000000004c8b25 R14: 00000000004dfbc8 R15: 0000000000000003 05:29:43 executing program 0: socket$inet_udplite(0x2, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000100)="11dca50d5e0bcfe47bf070") prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x802102001ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() r1 = epoll_create(0x3) epoll_pwait(r1, &(0x7f0000000340)=[{}], 0x1, 0x7fff, &(0x7f0000000380), 0x8) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x38) 05:29:43 executing program 5: 05:29:43 executing program 4: syz_open_dev$sndmidi(&(0x7f0000000180)='/dev/snd/midiC#D#\x00', 0x2, 0x0) r0 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000002800)='/dev/ashmem\x00', 0x0, 0x0) r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x2, 0x0) dup2(r0, r1) 05:29:43 executing program 2: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = syz_open_dev$vcsn(&(0x7f00000000c0)='/\xcba,w\r\xdf\x8b\x04\x00', 0x7, 0xc000) write$P9_RLCREATE(r1, &(0x7f0000000100)={0x18, 0xf, 0x2, {{0x1, 0x2, 0x4}, 0x1}}, 0x18) 05:29:43 executing program 1 (fault-call:0 fault-nth:66): syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000140)='./file0\x00', 0xff, 0x1, &(0x7f0000000000)=[{&(0x7f0000000180)="8da4363ac0ed0000000000000001004d0100000000000000000000000009000000000000009748aeb81e1b00920efd9a0000010000000000098cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 05:29:43 executing program 3: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x4, 0xaaaaaaaaaaaaada, &(0x7f0000000000), 0x1cc0b6, 0x0) r0 = syz_open_dev$vcsa(&(0x7f0000000300)='/dev/vcsa#\x00', 0x80000001, 0x20000) getsockopt$inet6_IPV6_IPSEC_POLICY(r0, 0x29, 0x22, 0x0, &(0x7f0000000780)) getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(0xffffffffffffffff, 0x84, 0x7c, &(0x7f0000000000)={0x0, 0xfe01, 0x4}, &(0x7f00000000c0)=0x8) getsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(r0, 0x84, 0x18, &(0x7f0000000100)={r1, 0xcbe4}, &(0x7f0000000140)=0x35d) getsockopt$inet_tcp_buf(r0, 0x6, 0x21, &(0x7f0000000180)=""/40, &(0x7f00000001c0)=0x28) 05:29:43 executing program 5: r0 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = fcntl$dupfd(r0, 0x0, 0xffffffffffffffff) r2 = socket$alg(0x26, 0x5, 0x0) bind$alg(r2, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'ghash-generic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, 0x0, 0x0) ioctl$int_in(r2, 0x5452, &(0x7f0000000300)=0x1000) getsockopt$EBT_SO_GET_INIT_INFO(r1, 0x0, 0x82, &(0x7f0000000180)={'broute\x00'}, &(0x7f0000000240)=0x50) r3 = syz_open_dev$sndtimer(&(0x7f00000002c0)='/dev/snd/timer\x00', 0x0, 0x10000) r4 = openat$selinux_checkreqprot(0xffffffffffffff9c, &(0x7f0000000340)='/selinux/checkreqprot\x00', 0x80000, 0x0) tee(r3, r4, 0x7fff, 0x4) ioctl$TIOCSCTTY(r1, 0x540e, 0xffffffff) syz_genetlink_get_family_id$net_dm(&(0x7f0000000100)='NET_DM\x00') getsockopt$sock_cred(r1, 0x1, 0x11, 0x0, &(0x7f0000000640)) ioctl$sock_inet6_udp_SIOCINQ(r1, 0x541b, &(0x7f00000000c0)) syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r5 = socket$alg(0x26, 0x5, 0x0) bind$alg(r5, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'ghash-generic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r5, 0x117, 0x1, 0x0, 0x0) ioctl$sock_SIOCSIFBR(r5, 0x8941, &(0x7f0000000280)=@add_del={0x2, &(0x7f0000000140)='bond_slave_0\x00'}) 05:29:43 executing program 4: syz_open_dev$sndmidi(&(0x7f0000000180)='/dev/snd/midiC#D#\x00', 0x2, 0x0) r0 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000002800)='/dev/ashmem\x00', 0x0, 0x0) r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x2, 0x0) dup2(r0, r1) [ 377.436796] FAULT_INJECTION: forcing a failure. [ 377.436796] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 377.448659] CPU: 0 PID: 25072 Comm: syz-executor.1 Not tainted 4.14.146 #0 [ 377.455672] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 377.455691] Call Trace: [ 377.455708] dump_stack+0x138/0x197 [ 377.455725] should_fail.cold+0x10f/0x159 [ 377.455739] __alloc_pages_nodemask+0x1d6/0x7a0 [ 377.455752] ? __alloc_pages_slowpath+0x2930/0x2930 [ 377.455781] cache_grow_begin+0x80/0x400 [ 377.471329] kmem_cache_alloc+0x6a6/0x780 [ 377.471343] ? _raw_spin_unlock_irqrestore+0x6b/0xe0 [ 377.471357] getname_kernel+0x53/0x350 [ 377.471367] kern_path+0x20/0x40 [ 377.471377] lookup_bdev.part.0+0x63/0x160 [ 377.471386] ? blkdev_open+0x260/0x260 [ 377.498655] ? free_hot_cold_page+0x763/0xca0 [ 377.498671] blkdev_get_by_path+0x76/0xf0 [ 377.498685] btrfs_scan_one_device+0x97/0x400 [ 377.498697] ? device_list_add+0x8d0/0x8d0 [ 377.511134] ? __free_pages+0x54/0x90 [ 377.511146] ? free_pages+0x46/0x50 [ 377.511160] btrfs_mount+0x2e3/0x2b28 [ 377.511170] ? lock_downgrade+0x6e0/0x6e0 [ 377.511178] ? find_held_lock+0x35/0x130 [ 377.511187] ? pcpu_alloc+0x3af/0x1050 [ 377.511202] ? btrfs_remount+0x11f0/0x11f0 [ 377.511216] ? rcu_read_lock_sched_held+0x110/0x130 [ 377.511233] ? __lockdep_init_map+0x10c/0x570 [ 377.570244] mount_fs+0x97/0x2a1 [ 377.573623] vfs_kern_mount.part.0+0x5e/0x3d0 [ 377.578126] ? find_held_lock+0x35/0x130 [ 377.582200] vfs_kern_mount+0x40/0x60 [ 377.586006] btrfs_mount+0x3ce/0x2b28 [ 377.589984] ? lock_downgrade+0x6e0/0x6e0 [ 377.594147] ? find_held_lock+0x35/0x130 [ 377.598205] ? pcpu_alloc+0x3af/0x1050 [ 377.602092] ? btrfs_remount+0x11f0/0x11f0 [ 377.606455] ? rcu_read_lock_sched_held+0x110/0x130 [ 377.611556] ? __lockdep_init_map+0x10c/0x570 [ 377.616212] ? __lockdep_init_map+0x10c/0x570 [ 377.620706] mount_fs+0x97/0x2a1 [ 377.624088] vfs_kern_mount.part.0+0x5e/0x3d0 [ 377.628583] do_mount+0x417/0x27d0 [ 377.632194] ? copy_mount_options+0x5c/0x2f0 [ 377.636582] ? rcu_read_lock_sched_held+0x110/0x130 [ 377.641592] ? copy_mount_string+0x40/0x40 [ 377.645830] ? copy_mount_options+0x1fe/0x2f0 [ 377.650311] SyS_mount+0xab/0x120 [ 377.653749] ? copy_mnt_ns+0x8c0/0x8c0 [ 377.657639] do_syscall_64+0x1e8/0x640 [ 377.661517] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 377.666356] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 377.671551] RIP: 0033:0x45c47a [ 377.674728] RSP: 002b:00007f617e384a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 05:29:43 executing program 2: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x4, 0x4182) r1 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) pwritev(r1, &(0x7f0000000340)=[{&(0x7f0000000140)='!', 0x1}], 0x1, 0x81805) r2 = dup2(r1, r1) ioctl$SG_GET_RESERVED_SIZE(r1, 0x2272, 0x0) ioctl$LOOP_CHANGE_FD(r0, 0x4c00, r1) write$P9_RLERRORu(r2, &(0x7f00000003c0)=ANY=[@ANYBLOB="1400000007650d6c24ed92c8397291335cf616f0010200070062726f0c62077600b365a0a59e7eea"], 0x28) getsockopt$sock_cred(r2, 0x1, 0x11, 0x0, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f00000007c0)={{{@in=@remote, @in6=@initdev}}, {{@in=@empty}, 0x0, @in6=@ipv4}}, &(0x7f00000008c0)=0xe8) sendfile(r2, r0, 0x0, 0x2400003e) setsockopt$IP6T_SO_SET_ADD_COUNTERS(r2, 0x29, 0x41, &(0x7f00000000c0)={'filter\x00', 0x3, [{}, {}, {}]}, 0x58) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) [ 377.682423] RAX: ffffffffffffffda RBX: 00007f617e384b40 RCX: 000000000045c47a [ 377.689681] RDX: 00007f617e384ae0 RSI: 0000000020000140 RDI: 00007f617e384b00 [ 377.697107] RBP: 0000000000000001 R08: 00007f617e384b40 R09: 00007f617e384ae0 [ 377.704360] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000004 [ 377.711615] R13: 00000000004c8b25 R14: 00000000004dfbc8 R15: 0000000000000003 05:29:43 executing program 4: read(0xffffffffffffffff, 0x0, 0x2fc) r0 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000002800)='/dev/ashmem\x00', 0x0, 0x0) r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x2, 0x0) dup2(r0, r1) 05:29:43 executing program 4: read(0xffffffffffffffff, 0x0, 0x2fc) r0 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000002800)='/dev/ashmem\x00', 0x0, 0x0) r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x2, 0x0) dup2(r0, r1) 05:29:43 executing program 3: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x8a, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 05:29:46 executing program 0: socket$inet_udplite(0x2, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000100)="11dca50d5e0bcfe47bf070") prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x802102001ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() r1 = epoll_create(0x3) epoll_pwait(r1, &(0x7f0000000340)=[{}], 0x1, 0x7fff, &(0x7f0000000380), 0x8) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x38) 05:29:46 executing program 1 (fault-call:0 fault-nth:67): syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000140)='./file0\x00', 0xff, 0x1, &(0x7f0000000000)=[{&(0x7f0000000180)="8da4363ac0ed0000000000000001004d0100000000000000000000000009000000000000009748aeb81e1b00920efd9a0000010000000000098cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 05:29:46 executing program 2: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = fcntl$dupfd(r0, 0x0, 0xffffffffffffffff) getsockopt$EBT_SO_GET_INIT_INFO(r1, 0x0, 0x82, &(0x7f0000000180)={'broute\x00'}, &(0x7f0000000240)=0x50) ioctl$TIOCSCTTY(r1, 0x540e, 0xffffffff) getsockopt$sock_cred(r1, 0x1, 0x11, 0x0, &(0x7f0000000640)) r2 = socket$alg(0x26, 0x5, 0x0) bind$alg(r2, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'ghash-generic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, 0x0, 0x0) r3 = fcntl$dupfd(r2, 0x0, 0xffffffffffffffff) mount$9p_fd(0x0, &(0x7f00000000c0)='./file1\x00', &(0x7f0000000100)='9p\x00', 0x2000, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@access_client='access=client'}, {@cache_fscache='cache=fscache'}, {@access_user='access=user'}, {@cachetag={'cachetag'}}, {@afid={'afid', 0x3d, 0x4}}, {@cache_loose='cache=loose'}, {@aname={'aname', 0x3d, 'btrfs\x00'}}, {@fscache='fscache'}], [{@fowner_gt={'fowner>', 0xee01}}]}}) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) 05:29:46 executing program 5: r0 = creat(&(0x7f0000000600)='./file0\x00', 0xd6b8f186f10d1cfe) recvfrom$rose(r0, &(0x7f0000000640)=""/139, 0x8b, 0x80012000, &(0x7f0000000700)=@short={0xb, @dev={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, 0x1, @null}, 0x1c) syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f00000000c0)='/dev/dsp#\x00', 0xfffffffffffffeff, 0x701584) r2 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000140)='/proc/self/net/pfkey\x00', 0x0, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000140)='TIPCv2\x00') sendmsg$TIPC_NL_LINK_SET(r3, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000300)={0x38, r4, 0x1, 0x0, 0x0, {}, [@TIPC_NLA_LINK={0x24, 0x4, [@TIPC_NLA_LINK_PROP={0xc, 0x7, [@TIPC_NLA_PROP_TOL={0x8}]}, @TIPC_NLA_LINK_NAME={0x14, 0x1, 'broadcast-link\x00'}]}]}, 0x38}}, 0x0) sendmsg$TIPC_NL_PEER_REMOVE(r2, &(0x7f00000005c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000280)={0x33c, r4, 0x100, 0x70bd2a, 0x25dfdbfc, {}, [@TIPC_NLA_MEDIA={0xb0, 0x5, [@TIPC_NLA_MEDIA_PROP={0x3c, 0x2, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x8e}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x3}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xff}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x3}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x3}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x10001}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x9}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_PROP={0x1c, 0x2, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x6}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x11}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x889a}]}, @TIPC_NLA_MEDIA_PROP={0x4c, 0x2, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x4}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x3}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x19}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x800}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x3}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x5}]}]}, @TIPC_NLA_BEARER={0x68, 0x1, [@TIPC_NLA_BEARER_PROP={0xc, 0x2, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8001}]}, @TIPC_NLA_BEARER_NAME={0x10, 0x1, @udp='udp:syz0\x00'}, @TIPC_NLA_BEARER_NAME={0x10, 0x1, @udp='udp:syz1\x00'}, @TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x14, 0x1, @in={0x2, 0x4e21, @empty}}, {0x20, 0x2, @in6={0xa, 0xa5df, 0x9, @mcast2, 0x9}}}}]}, @TIPC_NLA_BEARER={0xc, 0x1, [@TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x5}]}, @TIPC_NLA_MEDIA={0x1c, 0x5, [@TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}]}, @TIPC_NLA_MON={0xc, 0x9, [@TIPC_NLA_MON_REF={0x8, 0x2, 0x2}]}, @TIPC_NLA_MEDIA={0xd4, 0x5, [@TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_PROP={0x44, 0x2, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xca71}, @TIPC_NLA_PROP_MTU={0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xc}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xc9fb}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x10}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xffffff18}]}, @TIPC_NLA_MEDIA_PROP={0xc, 0x2, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x100}]}, @TIPC_NLA_MEDIA_PROP={0x44, 0x2, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x9}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xf5}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x17}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x97a6}, @TIPC_NLA_PROP_TOL={0xffffff7b, 0x2, 0x7fff}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x17}, @TIPC_NLA_PROP_WIN={0x8}]}, @TIPC_NLA_MEDIA_PROP={0x14, 0x2, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8001}]}]}, @TIPC_NLA_NODE={0x8, 0x6, [@TIPC_NLA_NODE_UP={0x4}]}, @TIPC_NLA_MON={0x54, 0x9, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x100}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x4}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x66d}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x40}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x80000001}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x5}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x2}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x3}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x7}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x101}]}, @TIPC_NLA_MON={0x34, 0x9, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0xad}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x87}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0xfe4f}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x1}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x9}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x6}]}, @TIPC_NLA_BEARER={0x78, 0x1, [@TIPC_NLA_BEARER_NAME={0x10, 0x1, @udp='udp:syz0\x00'}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x4e}, @TIPC_NLA_BEARER_PROP={0x4c, 0x2, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x9}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x80000001}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xcd}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xa9}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x4}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7}]}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x1}, @TIPC_NLA_BEARER_DOMAIN={0x8}]}]}, 0x33c}, 0x1, 0x0, 0x0, 0x18}, 0x4000) ioctl$BINDER_GET_NODE_DEBUG_INFO(r1, 0xc018620b, &(0x7f0000000100)={0x3}) 05:29:46 executing program 4: read(0xffffffffffffffff, 0x0, 0x2fc) r0 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000002800)='/dev/ashmem\x00', 0x0, 0x0) r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x2, 0x0) dup2(r0, r1) 05:29:46 executing program 3: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dlm_plock\x00', 0x101000, 0x0) ioctl$SIOCX25GCAUSEDIAG(r0, 0x89e6, &(0x7f0000000100)={0x9, 0xff}) [ 380.457810] FAULT_INJECTION: forcing a failure. [ 380.457810] name failslab, interval 1, probability 0, space 0, times 0 [ 380.469060] CPU: 1 PID: 25132 Comm: syz-executor.1 Not tainted 4.14.146 #0 [ 380.476069] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 380.485420] Call Trace: [ 380.485439] dump_stack+0x138/0x197 [ 380.485455] should_fail.cold+0x10f/0x159 [ 380.485471] should_failslab+0xdb/0x130 [ 380.485482] kmem_cache_alloc+0x47/0x780 [ 380.485500] radix_tree_node_alloc.constprop.0+0x1c7/0x310 [ 380.485514] __radix_tree_create+0x337/0x4d0 [ 380.515370] page_cache_tree_insert+0xa7/0x2d0 [ 380.519939] ? file_check_and_advance_wb_err+0x380/0x380 [ 380.525373] ? debug_smp_processor_id+0x1c/0x20 [ 380.530034] __add_to_page_cache_locked+0x2ab/0x7e0 [ 380.535033] ? find_lock_entry+0x3f0/0x3f0 [ 380.539269] add_to_page_cache_lru+0xf4/0x310 [ 380.543751] ? add_to_page_cache_locked+0x40/0x40 [ 380.548572] ? __page_cache_alloc+0xdd/0x3e0 [ 380.553663] do_read_cache_page+0x64e/0xfc0 [ 380.558053] ? blkdev_writepages+0xd0/0xd0 [ 380.562276] ? find_get_pages_contig+0xaa0/0xaa0 [ 380.567113] ? blkdev_get+0xb0/0x8e0 [ 380.570812] ? dput.part.0+0x170/0x750 [ 380.574693] ? bd_may_claim+0xd0/0xd0 [ 380.578481] ? path_put+0x50/0x70 [ 380.581916] ? lookup_bdev.part.0+0xe1/0x160 [ 380.586310] read_cache_page_gfp+0x6e/0x90 [ 380.590533] btrfs_read_disk_super+0xdd/0x440 [ 380.595099] btrfs_scan_one_device+0xc6/0x400 [ 380.599614] ? device_list_add+0x8d0/0x8d0 [ 380.603867] ? __free_pages+0x54/0x90 [ 380.607668] ? free_pages+0x46/0x50 [ 380.611296] btrfs_mount+0x2e3/0x2b28 [ 380.615084] ? lock_downgrade+0x6e0/0x6e0 [ 380.619215] ? find_held_lock+0x35/0x130 [ 380.623266] ? pcpu_alloc+0x3af/0x1050 [ 380.627139] ? btrfs_remount+0x11f0/0x11f0 [ 380.631370] ? rcu_read_lock_sched_held+0x110/0x130 [ 380.636462] ? __lockdep_init_map+0x10c/0x570 [ 380.640946] mount_fs+0x97/0x2a1 [ 380.644298] vfs_kern_mount.part.0+0x5e/0x3d0 [ 380.648922] ? find_held_lock+0x35/0x130 [ 380.652971] vfs_kern_mount+0x40/0x60 [ 380.656754] btrfs_mount+0x3ce/0x2b28 [ 380.660536] ? lock_downgrade+0x6e0/0x6e0 [ 380.664675] ? find_held_lock+0x35/0x130 [ 380.668719] ? pcpu_alloc+0x3af/0x1050 [ 380.672605] ? btrfs_remount+0x11f0/0x11f0 [ 380.676829] ? rcu_read_lock_sched_held+0x110/0x130 [ 380.681845] ? __lockdep_init_map+0x10c/0x570 [ 380.686324] ? __lockdep_init_map+0x10c/0x570 [ 380.690902] mount_fs+0x97/0x2a1 [ 380.694256] vfs_kern_mount.part.0+0x5e/0x3d0 [ 380.698994] do_mount+0x417/0x27d0 [ 380.702535] ? copy_mount_options+0x5c/0x2f0 [ 380.706925] ? rcu_read_lock_sched_held+0x110/0x130 [ 380.711928] ? copy_mount_string+0x40/0x40 [ 380.716146] ? copy_mount_options+0x1fe/0x2f0 [ 380.720626] SyS_mount+0xab/0x120 [ 380.724077] ? copy_mnt_ns+0x8c0/0x8c0 [ 380.727950] do_syscall_64+0x1e8/0x640 [ 380.731822] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 380.736654] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 380.741824] RIP: 0033:0x45c47a [ 380.745000] RSP: 002b:00007f617e384a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 05:29:46 executing program 4: r0 = syz_open_dev$sndmidi(0x0, 0x2, 0x0) read(r0, 0x0, 0x2fc) r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000002800)='/dev/ashmem\x00', 0x0, 0x0) r2 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x2, 0x0) dup2(r1, r2) 05:29:46 executing program 2: syz_open_dev$admmidi(&(0x7f0000000180)='/dev/admmidi#\x00', 0x5, 0x40180) syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) unlink(&(0x7f0000000140)='./file0\x00') r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = fcntl$dupfd(r1, 0x0, 0xffffffffffffffff) getsockopt$EBT_SO_GET_INIT_INFO(r2, 0x0, 0x82, &(0x7f0000000180)={'broute\x00'}, &(0x7f0000000240)=0x50) ioctl$TIOCSCTTY(r2, 0x540e, 0xffffffff) getsockopt$sock_cred(r2, 0x1, 0x11, 0x0, &(0x7f0000000640)) r3 = syz_genetlink_get_family_id$SEG6(&(0x7f00000003c0)='SEG6\x00') sendmsg$SEG6_CMD_SET_TUNSRC(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000400)={0x20, r3, 0x400, 0x0, 0x0, {}, [@SEG6_ATTR_SECRET={0xc, 0x4, [0x0, 0x71]}]}, 0x20}, 0x1, 0x0, 0x0, 0x40}, 0x0) sendmsg$SEG6_CMD_DUMPHMAC(r2, &(0x7f0000000380)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)={0x30, r3, 0xf11d59e84cca26f0, 0x70bd2a, 0x25dfdbfe, {}, [@SEG6_ATTR_SECRETLEN={0x8, 0x5, 0x3}, @SEG6_ATTR_DST={0x14, 0x1, @dev={0xfe, 0x80, [], 0x25}}]}, 0x30}, 0x1, 0x0, 0x0, 0x400c040}, 0xc04) fsetxattr$trusted_overlay_opaque(0xffffffffffffffff, &(0x7f0000000600)='trusted.overlay.opaque\x00', &(0x7f0000000680)='y\x00', 0x2, 0x0) removexattr(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)=@known='trusted.syz\x00') r4 = openat$proc_capi20(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/capi/capi20\x00', 0x608000, 0x0) r5 = openat$cachefiles(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/cachefiles\x00', 0x1, 0x0) flistxattr(r5, &(0x7f0000000500)=""/198, 0xc6) write$P9_RXATTRCREATE(r4, &(0x7f0000000280)={0x7, 0x21, 0x2}, 0x7) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) [ 380.753927] RAX: ffffffffffffffda RBX: 00007f617e384b40 RCX: 000000000045c47a [ 380.761193] RDX: 00007f617e384ae0 RSI: 0000000020000140 RDI: 00007f617e384b00 [ 380.768446] RBP: 0000000000000001 R08: 00007f617e384b40 R09: 00007f617e384ae0 [ 380.775699] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000004 [ 380.782951] R13: 00000000004c8b25 R14: 00000000004dfbc8 R15: 0000000000000003 05:29:46 executing program 4: r0 = syz_open_dev$sndmidi(0x0, 0x2, 0x0) read(r0, 0x0, 0x2fc) r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000002800)='/dev/ashmem\x00', 0x0, 0x0) r2 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x2, 0x0) dup2(r1, r2) 05:29:46 executing program 2: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000140)={0x0}, &(0x7f0000000180)=0xc) sched_setattr(r2, &(0x7f00000001c0)={0x30, 0x1, 0x0, 0x2, 0x2, 0x6, 0x8, 0x2}, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r3 = getpid() tkill(r3, 0x9) perf_event_open(&(0x7f00000000c0)={0x0, 0x70, 0x2, 0x0, 0x6, 0x7, 0x0, 0x6ac, 0x4000, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext={0xf85a, 0x800}, 0x1000, 0x80000000, 0x5, 0x3, 0x3a94, 0xff5, 0x8}, r3, 0x0, 0xffffffffffffffff, 0x2) r4 = syz_open_dev$vbi(&(0x7f0000000280)='/dev/vbi#\x00', 0x1, 0x2) ioctl$SG_SET_KEEP_ORPHAN(r4, 0x2287, &(0x7f00000002c0)=0x1c00) 05:29:46 executing program 4: r0 = syz_open_dev$sndmidi(0x0, 0x2, 0x0) read(r0, 0x0, 0x2fc) r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000002800)='/dev/ashmem\x00', 0x0, 0x0) r2 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x2, 0x0) dup2(r1, r2) 05:29:46 executing program 2: socket$inet6(0xa, 0x80000, 0x80) syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f0000000000), 0x0, 0x0) r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x280, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x18, 0xfa00, {0x4, &(0x7f00000000c0)={0xffffffffffffffff}, 0x111, 0xa}}, 0x20) write$RDMA_USER_CM_CMD_QUERY(r0, &(0x7f0000000140)={0x13, 0x10, 0xfa00, {&(0x7f0000000240), r1, 0x2}}, 0x18) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = syz_open_dev$radio(&(0x7f0000000180)='/dev/radio#\x00', 0x3, 0x2) ioctl$KDSKBSENT(r3, 0x4b49, &(0x7f0000000440)="d0a8fb22217e359a30b1a7959e1b98071b9e927a56fe6ed6960e6eb559520e091200bb80cc5ed3f0c92ef8b04e993cc421ef3cf5ffec2506437e4b5cb69b900fc75452cf0bbfa1846ec01ab57a814079") 05:29:49 executing program 0: socket$inet_udplite(0x2, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000100)="11dca50d5e0bcfe47bf070") prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x802102001ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() r1 = epoll_create(0x3) epoll_pwait(r1, &(0x7f0000000340)=[{}], 0x1, 0x7fff, &(0x7f0000000380), 0x8) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x38) 05:29:49 executing program 4: r0 = syz_open_dev$sndmidi(&(0x7f0000000180)='/dev/snd/midiC#D#\x00', 0x0, 0x0) read(r0, 0x0, 0x2fc) r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000002800)='/dev/ashmem\x00', 0x0, 0x0) r2 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x2, 0x0) dup2(r1, r2) 05:29:49 executing program 1 (fault-call:0 fault-nth:68): syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000140)='./file0\x00', 0xff, 0x1, &(0x7f0000000000)=[{&(0x7f0000000180)="8da4363ac0ed0000000000000001004d0100000000000000000000000009000000000000009748aeb81e1b00920efd9a0000010000000000098cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 05:29:49 executing program 3: 05:29:49 executing program 5: ioctl$DRM_IOCTL_GET_UNIQUE(0xffffffffffffffff, 0xc0106401, &(0x7f0000000000)={0x42, &(0x7f0000000100)=""/66}) syz_open_dev$media(&(0x7f0000000180)='/dev/media#\x00', 0x1000, 0x1) socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000600)) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x4, 0x4182) r1 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) pwritev(r1, &(0x7f0000000340)=[{&(0x7f0000000140)='!', 0x1}], 0x1, 0x81805) r2 = dup2(r1, r1) ioctl$SG_GET_RESERVED_SIZE(r1, 0x2272, 0x0) ioctl$LOOP_CHANGE_FD(r0, 0x4c00, r1) write$P9_RLERRORu(r2, &(0x7f00000003c0)=ANY=[@ANYBLOB="1400000007650d6c24ed92c8397291335cf616f0010200070062726f0c62077600b365a0a59e7eea"], 0x28) getsockopt$sock_cred(r2, 0x1, 0x11, 0x0, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f00000007c0)={{{@in=@remote, @in6=@initdev}}, {{@in=@empty}, 0x0, @in6=@ipv4}}, &(0x7f00000008c0)=0xe8) sendfile(r2, r0, 0x0, 0x2400003e) sendmsg$tipc(r2, &(0x7f00000005c0)={&(0x7f00000001c0)=@name={0x1e, 0x2, 0x3, {{0x2, 0x1}}}, 0xfffffffffffffcbb, &(0x7f00000004c0), 0xfffff90, &(0x7f0000000500)="71fc12824064b27ab4527fb2c6ad451e8471e27db1e76f5607cfacc2cbee2432860d617593bff724a3e59abfb767a0a696a6c1b8107bfe179e921aadfb5314ef458d16f8da774397519235e3a25fb4d1c742ebe1d1f1105cf8831d5e0504b491da6e88d3de31366cecc137d9405c1f69f52cf5f69e3c05cf2b23a8ed5ea6c0bef41ae33899d3aca15581f48b9a402a3a6e6f0d220723444d0a791dadeb2fed866f42c3450ae7d0a601", 0xa9, 0x810}, 0x4001) syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f00000000c0)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10002}], 0x0, 0x0) getpid() getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000001640)={{{@in6=@loopback, @in6=@ipv4={[], [], @multicast1}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6}, 0x0, @in=@multicast2}}, &(0x7f0000000440)=0xe8) r4 = syz_open_dev$vbi(0x0, 0x2, 0x2) r5 = getgid() write$FUSE_ENTRY(r4, &(0x7f0000000200)={0x90, 0x0, 0x0, {0x6, 0x3, 0xf24, 0x0, 0x5, 0x0, {0x0, 0x0, 0x9, 0x0, 0x5, 0x5, 0x9, 0x0, 0x0, 0x3, 0x0, 0x0, r5, 0x1, 0x1}}}, 0x90) r6 = syz_open_dev$vbi(0x0, 0x2, 0x2) r7 = getgid() write$FUSE_ENTRY(r6, &(0x7f0000000200)={0x90, 0x0, 0x0, {0x6, 0x3, 0xf24, 0x0, 0x5, 0x0, {0x0, 0x0, 0x9, 0x0, 0x5, 0x5, 0x9, 0x0, 0x0, 0x3, 0x0, 0x0, r7, 0x1, 0x1}}}, 0x90) syz_mount_image$ntfs(&(0x7f0000000280)='ntfs\x00', &(0x7f00000002c0)='./file0\x00', 0x83b, 0x0, &(0x7f00000003c0), 0x8010, &(0x7f00000017c0)={[{@fmask={'fmask', 0x3d, 0x80000001}}, {@fmask={'fmask'}}, {@fmask={'fmask', 0x3d, 0x7}}, {@nls={'nls', 0x3d, 'iso8859-14'}}, {@gid={'gid', 0x3d, r5}}, {@gid={'gid', 0x3d, r7}}, {@fmask={'fmask', 0x3d, 0x5}}, {@mft_zone_multiplier={'mft_zone_multiplier', 0x3d, 0xffffffffffffffff}}], [{@smackfshat={'smackfshat', 0x3d, 'btrfs\x00'}}, {@fowner_eq={'fowner', 0x3d, r3}}]}) 05:29:49 executing program 2: r0 = syz_open_dev$midi(&(0x7f0000000380)='/dev/midi#\x00', 0x74, 0x0) ioctl$sock_inet_tcp_SIOCOUTQ(r0, 0x5411, &(0x7f00000003c0)) syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = fcntl$dupfd(r3, 0x0, 0xffffffffffffffff) getsockopt$EBT_SO_GET_INIT_INFO(r4, 0x0, 0x82, &(0x7f0000000180)={'broute\x00'}, &(0x7f0000000240)=0x50) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r5 = socket$bt_hidp(0x1f, 0x3, 0x6) r6 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r7 = fcntl$dupfd(r6, 0x0, 0xffffffffffffffff) getsockopt$EBT_SO_GET_INIT_INFO(r7, 0x0, 0x82, &(0x7f0000000180)={'broute\x00'}, &(0x7f0000000240)=0x50) ioctl$TIOCSCTTY(r7, 0x540e, 0xffffffff) getsockopt$sock_cred(r7, 0x1, 0x11, 0x0, &(0x7f0000000640)) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000500)='/dev/midi#\x00', r7}, 0x10) r8 = socket$alg(0x26, 0x5, 0x0) bind$alg(r8, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'ghash-generic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r8, 0x117, 0x1, 0x0, 0x0) r9 = fcntl$dupfd(r5, 0x0, r8) getsockopt$EBT_SO_GET_INIT_INFO(r9, 0x0, 0x82, &(0x7f0000000180)={'broute\x00'}, &(0x7f0000000240)=0x50) ioctl$TIOCSCTTY(r9, 0x540e, 0xffffffff) getsockopt$sock_cred(r9, 0x1, 0x11, 0x0, &(0x7f0000000640)=0xfffffd23) setsockopt$packet_buf(r9, 0x107, 0x2, &(0x7f0000000280)="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", 0xff) ioctl$TIOCSCTTY(r4, 0x540e, 0xffffffff) getsockopt$sock_cred(r4, 0x1, 0x11, 0x0, &(0x7f0000000640)) setsockopt$l2tp_PPPOL2TP_SO_REORDERTO(r4, 0x111, 0x5, 0x1, 0x4) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) write(r1, &(0x7f00000000c0)="e9a3b9a19733e9b46279b2c710157de95c05915d9e40d623bf7cbab1347f763eeefef5e445be5b59ca828faad54937e6cb47fb0f0822b55c5d79b8c9a6287e46dd83a890b411dd3154c44fb0beb6fb1e36e2dababc7e64060c9ce52f3ca65242678dfb56328319f203", 0x69) pivot_root(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') r10 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r11 = fcntl$dupfd(r10, 0x0, 0xffffffffffffffff) getsockopt$EBT_SO_GET_INIT_INFO(r11, 0x0, 0x82, &(0x7f0000000180)={'broute\x00'}, &(0x7f0000000240)=0x50) ioctl$TIOCSCTTY(r11, 0x540e, 0xffffffff) getsockopt$sock_cred(r11, 0x1, 0x11, 0x0, &(0x7f0000000640)) io_cancel(0x0, &(0x7f0000000480)={0x0, 0x0, 0x0, 0xa, 0x3, r4, &(0x7f0000000400)="60d6c00246fcc11742fa5937761f0504ae50cb6a2375a278f08a064a6c26903bfbd527513cd0d6a8ef951907208623ec644914b3b51b4c91f47355079b34941cef78f2a2b1c05cb0d652b0b9dee526655d9a8e44022d", 0x56, 0x3, 0x0, 0x2, r11}, &(0x7f00000004c0)) times(&(0x7f00000001c0)) 05:29:49 executing program 3: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0xfffffffffffffffc, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) mount$overlay(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='overlay\x00', 0x3080, &(0x7f0000000140)={[{@nfs_export_on='nfs_export=on'}, {@workdir={'workdir', 0x3d, './file0'}}, {@xino_off='xino=off'}, {@xino_auto='xino=auto'}, {@index_off='index=off'}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@xino_off='xino=off'}], [{@dont_appraise='dont_appraise'}, {@defcontext={'defcontext', 0x3d, 'system_u'}}]}) 05:29:49 executing program 2: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = syz_open_dev$dspn(&(0x7f00000000c0)='/dev/dsp#\x00', 0x9b, 0x200) r2 = syz_open_dev$vcsa(&(0x7f0000000300)='/dev/vcsa#\x00', 0x80000001, 0x20000) getsockopt$inet6_IPV6_IPSEC_POLICY(r2, 0x29, 0x22, 0x0, &(0x7f0000000780)) renameat(r1, &(0x7f0000000100)='./file0\x00', r2, &(0x7f0000000140)='./file0\x00') [ 383.494455] FAULT_INJECTION: forcing a failure. [ 383.494455] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 383.526850] CPU: 0 PID: 25191 Comm: syz-executor.1 Not tainted 4.14.146 #0 [ 383.533990] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 383.543345] Call Trace: [ 383.543364] dump_stack+0x138/0x197 [ 383.543380] should_fail.cold+0x10f/0x159 [ 383.543394] ? __might_sleep+0x93/0xb0 [ 383.553728] __alloc_pages_nodemask+0x1d6/0x7a0 [ 383.562282] ? __alloc_pages_slowpath+0x2930/0x2930 [ 383.562295] ? lock_downgrade+0x6e0/0x6e0 [ 383.562316] alloc_pages_current+0xec/0x1e0 [ 383.562328] __page_cache_alloc+0x248/0x3e0 [ 383.562340] do_read_cache_page+0x625/0xfc0 [ 383.562349] ? blkdev_writepages+0xd0/0xd0 [ 383.562363] ? find_get_pages_contig+0xaa0/0xaa0 05:29:49 executing program 2: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) ioctl$sock_proto_private(r0, 0x7, &(0x7f00000000c0)="580d6a3d7d470bc28d89c1d7d7002c37e98e5b7cffeaf09158757d353859c17abeab51c61ecffac457941f3d8434c023a0575b0496c825264d44dcde8471e23355f54cd02789ca2bbc56404e1959b541623fd10eb550f303d7b9a04bb02854196ecfb1987897f9a49558eb7b4c3a7dad08e89bd79714c43ac1ebfb815ee9093eab83f175fcfb3ab52b0208df7acd365daf4845c900b2931580908d1660b8e1bf84f526b147174e71760381fb71c07eda636ff48f669701c98319bd739d93e2cc972d1d155b6572c552463f7507") [ 383.562370] ? blkdev_get+0xb0/0x8e0 [ 383.562380] ? dput.part.0+0x170/0x750 [ 383.562390] ? bd_may_claim+0xd0/0xd0 [ 383.562403] ? path_put+0x50/0x70 [ 383.575871] ? lookup_bdev.part.0+0xe1/0x160 [ 383.584591] read_cache_page_gfp+0x6e/0x90 [ 383.584607] btrfs_read_disk_super+0xdd/0x440 [ 383.584622] btrfs_scan_one_device+0xc6/0x400 [ 383.597315] ? device_list_add+0x8d0/0x8d0 [ 383.597329] ? __free_pages+0x54/0x90 [ 383.597339] ? free_pages+0x46/0x50 [ 383.597356] btrfs_mount+0x2e3/0x2b28 [ 383.612890] ? lock_downgrade+0x6e0/0x6e0 [ 383.612899] ? find_held_lock+0x35/0x130 [ 383.612908] ? pcpu_alloc+0x3af/0x1050 [ 383.612927] ? btrfs_remount+0x11f0/0x11f0 [ 383.612945] ? rcu_read_lock_sched_held+0x110/0x130 [ 383.612966] ? __lockdep_init_map+0x10c/0x570 [ 383.612983] mount_fs+0x97/0x2a1 [ 383.612996] vfs_kern_mount.part.0+0x5e/0x3d0 [ 383.637898] ? find_held_lock+0x35/0x130 [ 383.637916] vfs_kern_mount+0x40/0x60 [ 383.637930] btrfs_mount+0x3ce/0x2b28 [ 383.637937] ? lock_downgrade+0x6e0/0x6e0 05:29:49 executing program 2: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x4, 0x4182) r2 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) pwritev(r2, &(0x7f0000000340)=[{&(0x7f0000000140)='!', 0x1}], 0x1, 0x81805) r3 = dup2(r2, r2) ioctl$SG_GET_RESERVED_SIZE(r2, 0x2272, 0x0) ioctl$LOOP_CHANGE_FD(r1, 0x4c00, r2) write$P9_RLERRORu(r3, &(0x7f00000003c0)=ANY=[@ANYBLOB="1400000007650d6c24ed92c8397291335cf616f0010200070062726f0c62077600b365a0a59e7eea"], 0x28) getsockopt$sock_cred(r3, 0x1, 0x11, 0x0, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(r3, 0x29, 0x23, &(0x7f00000007c0)={{{@in=@remote, @in6=@initdev}}, {{@in=@empty}, 0x0, @in6=@ipv4}}, &(0x7f00000008c0)=0xe8) sendfile(r3, r1, 0x0, 0x2400003e) ioctl$SNDRV_SEQ_IOCTL_DELETE_PORT(r3, 0x40a85321, &(0x7f00000000c0)={{0xf4, 0x81}, 'port0\x00', 0x491d9bb24dbbcd27, 0x80400, 0x7, 0x4, 0xaedb, 0x8f, 0x9, 0x0, 0x6, 0x8}) [ 383.637951] ? find_held_lock+0x35/0x130 [ 383.655285] ? pcpu_alloc+0x3af/0x1050 [ 383.676848] ? btrfs_remount+0x11f0/0x11f0 [ 383.676868] ? rcu_read_lock_sched_held+0x110/0x130 [ 383.676887] ? __lockdep_init_map+0x10c/0x570 [ 383.676898] ? __lockdep_init_map+0x10c/0x570 [ 383.718858] mount_fs+0x97/0x2a1 [ 383.718876] vfs_kern_mount.part.0+0x5e/0x3d0 [ 383.718888] do_mount+0x417/0x27d0 [ 383.718899] ? copy_mount_options+0x5c/0x2f0 [ 383.734772] ? rcu_read_lock_sched_held+0x110/0x130 [ 383.739803] ? copy_mount_string+0x40/0x40 [ 383.744226] ? copy_mount_options+0x1fe/0x2f0 [ 383.748737] SyS_mount+0xab/0x120 [ 383.752202] ? copy_mnt_ns+0x8c0/0x8c0 [ 383.756103] do_syscall_64+0x1e8/0x640 [ 383.759995] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 383.764848] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 383.770041] RIP: 0033:0x45c47a [ 383.773233] RSP: 002b:00007f617e384a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 383.780944] RAX: ffffffffffffffda RBX: 00007f617e384b40 RCX: 000000000045c47a [ 383.780949] RDX: 00007f617e384ae0 RSI: 0000000020000140 RDI: 00007f617e384b00 05:29:49 executing program 4: r0 = syz_open_dev$sndmidi(&(0x7f0000000180)='/dev/snd/midiC#D#\x00', 0x0, 0x0) read(r0, 0x0, 0x2fc) r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000002800)='/dev/ashmem\x00', 0x0, 0x0) r2 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x2, 0x0) dup2(r1, r2) [ 383.780954] RBP: 0000000000000001 R08: 00007f617e384b40 R09: 00007f617e384ae0 [ 383.780958] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000004 [ 383.780963] R13: 00000000004c8b25 R14: 00000000004dfbc8 R15: 0000000000000003 05:29:49 executing program 4: r0 = syz_open_dev$sndmidi(&(0x7f0000000180)='/dev/snd/midiC#D#\x00', 0x0, 0x0) read(r0, 0x0, 0x2fc) r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000002800)='/dev/ashmem\x00', 0x0, 0x0) r2 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x2, 0x0) dup2(r1, r2) 05:29:52 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x0, &(0x7f0000000100)="11dca50d5e0bcfe47bf070") prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x802102001ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = gettid() r2 = epoll_create(0x3) epoll_pwait(r2, &(0x7f0000000340)=[{}], 0x1, 0x7fff, &(0x7f0000000380), 0x8) ptrace$setopts(0x4206, r1, 0x0, 0x0) tkill(r1, 0x38) 05:29:52 executing program 2: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x4, 0x4182) r2 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) pwritev(r2, &(0x7f0000000340)=[{&(0x7f0000000140)='!', 0x1}], 0x1, 0x81805) r3 = dup2(r2, r2) ioctl$SG_GET_RESERVED_SIZE(r2, 0x2272, 0x0) ioctl$LOOP_CHANGE_FD(r1, 0x4c00, r2) write$P9_RLERRORu(r3, &(0x7f00000003c0)=ANY=[@ANYBLOB="1400000007650d6c24ed92c8397291335cf616f0010200070062726f0c62077600b365a0a59e7eea"], 0x28) getsockopt$sock_cred(r3, 0x1, 0x11, 0x0, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(r3, 0x29, 0x23, &(0x7f00000007c0)={{{@in=@remote, @in6=@initdev}}, {{@in=@empty}, 0x0, @in6=@ipv4}}, &(0x7f00000008c0)=0xe8) sendfile(r3, r1, 0x0, 0x2400003e) mq_getsetattr(r3, &(0x7f00000000c0)={0x8, 0x8, 0x401, 0x1, 0x985, 0x6, 0x7f, 0x2100}, &(0x7f0000000100)) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) 05:29:52 executing program 4: syz_open_dev$sndmidi(&(0x7f0000000180)='/dev/snd/midiC#D#\x00', 0x2, 0x0) read(0xffffffffffffffff, 0x0, 0x2fc) r0 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000002800)='/dev/ashmem\x00', 0x0, 0x0) r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x2, 0x0) dup2(r0, r1) 05:29:52 executing program 1 (fault-call:0 fault-nth:69): syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000140)='./file0\x00', 0xff, 0x1, &(0x7f0000000000)=[{&(0x7f0000000180)="8da4363ac0ed0000000000000001004d0100000000000000000000000009000000000000009748aeb81e1b00920efd9a0000010000000000098cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 05:29:52 executing program 3: syz_mount_image$btrfs(&(0x7f00000000c0)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x3, &(0x7f00000005c0)=[{&(0x7f0000000680)="9e0dc4f425254e5da5b5b698faae0f1f29b08a4b3b1149a129901135677d167bb8183254d1423f33565e4943c02034b9d59fd5f04b8bec1de295ed0f333f7d89f127a5b0c3fa1708a65ecbe18f43dedf606e76fc49c01c732041666b42e8b1b792b044466b6a93a4a11259df685517f231c998ed22a9cca4bbd2bcc4360920e831a7a43e1ae0c0be250104f3932cecdbdb77da1a1b18c9a0da1a4c7380e05512e83f7132460cb197581561ebd7e9f5b6909143a08a9fff5f28a605e43dc758e5ca41f55b7a91dedf2cada8f7dfdb1833f1e6759bcf4463b32385c7849ac7b33637cf11e93192", 0xdc, 0x8}, {&(0x7f0000000000)="5c9515a52db2ea09c0bfb6f3d7cfbcb7e25cc83b802683d84044971991e7fafc78cebcbaaa64a5437cf4e81c3240d8dfccd25b485a62a3256116b7cdf2f1decf0e4d6b893a56a412a9", 0x49, 0xffffffffffffffff}, {&(0x7f0000000200)="e626d774d07e28f13561d39a7743a418420ba3ea4a2a2713072ac954f497718b878172", 0x23, 0x4}, {&(0x7f0000000240)="6bbc04b72a4345cef348430b3ab52ee7ed7e5154e6918ec0fd715a6d116d9d9562a694c305211d887f802d631cb5ca1e3cf57279356ea944c205a59cd9919ed3449edb470709427aa58a3d133ec23fb0d25ce2ba4a8be44e6c845f4d273805d285e796", 0x63, 0x40}, {&(0x7f00000002c0)="0c700bb7490723ad0d629f1954b31b8901a690bc7fe02f4350732cac8363630220559f8fbb90da00098e17390da5864cefea47d17a54167b1ba50f99e01a76ecccf5c4a672a692da98bd2dc32adc3587714cb0298bda552c34ba0b7fed337d3abc7c120200381f88f5197698b8135edeee495af38bd0736d76b13b394d72afc4316a5f1da4d988431fd0fbd0582fa909c77682f6076861b98c96b0", 0x9b, 0xeffffffffffff800}, {&(0x7f0000000380)="956c8e1265548e6f1dd95540a1334562a59783a8b8d3cdf353d0a3b0d18dd24f384669b350ac09a561151a7350f548e1360c7a20943a8ad306e485fcc9089a1d050a45dbacaa54d385f2932b31f30948c07e8b87ef46b70a31bb686d1069ad77c30177b37ef581e883029a87e84c839164223b76b03cba66c733fcdf138ed02eb227", 0x82, 0xffffffffffffffe0}, {&(0x7f0000000440)="d6e631d35b1a790069b6bd3ef2e24ea4d4b489c6d5cebf72fa8027ccd100eb7f9b392859962c595f3284e1f962ab4670a2de44b20062127957dc4aedc2f040594abf52c1fa5168e48b2f1cc66afe689fadff4dca5a8c2b50d37a76b973f68805760179af8cd384bbee8cb67abcd4ec85bb5f9f28474041855ef1f83041bb613079f9515873733c9d60d1dec8c6c2ebfefc2085453e1c15a68fdfaa41c3d2f995e632606cc77cea82f55c50f3f08c3d2d7a7bbf9cd6ce7d05a815ad11ecd12b59522c735721bd3489207a9e9c17902d485918e0889914651c15af4329659eccd60ba5cc530b860698d006750215e71e505207887904dd58", 0xf7, 0x6}, {&(0x7f0000000540)="0d8d7de7d36e09fa2f44376271cc4b82790f3786b88db5156505e5b723429d3f0a87aaa63a705dc88e8ff2de10953b6c0d5c8b53832f7c4439bcfe4cd99414ecaced015f5e25e144b385a5045fad51c41096f9d97ae39bfa5bf6fcc53cc24cb6ed52e6", 0x63, 0x3}], 0x183384d, 0x0) lsetxattr$security_evm(&(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='security.evm\x00', &(0x7f0000000180)=@ng={0x4, 0x1, "acd6182f5a6e469ae9bf867efeece4ab"}, 0x12, 0x3) 05:29:52 executing program 5: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) timer_create(0x0, &(0x7f0000000080)={0x0, 0xa, 0x2, @thr={&(0x7f0000000040), &(0x7f0000000140)="7614ac9aa70614e91a97059fd8005b90523643da334dc2841975f2ba6e0702a02169e69bbd754a347598b4ed0eddf979cf5b70383b7e7984622b2002ddb52812b5f54402177d92697443f1f16243752f4e026e882f8d12e466c1a029cf9181f62077bb4efd36744b8c3a139a84628aa0cfcc28c2a2719b95c228a559a94e340bacd88714cf267a21152cd2b40e99474ddf99fc3d82f62b1fdae0215cbaf3becbc09466910a3479f948aeda9374a38b0ba613cdef74ac1751c9fc1bd7d984fb5bcff1fd10cb2ce548a6da860f"}}, &(0x7f0000000240)=0x0) timer_delete(r0) r1 = openat$selinux_avc_hash_stats(0xffffffffffffff9c, &(0x7f0000000380)='/selinux/avc/hash_stats\x00', 0x0, 0x0) r2 = getpid() tkill(r2, 0x9) r3 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000000000)={0x0, 0x0}, &(0x7f0000000040)=0xc) keyctl$get_persistent(0x7, r4, 0x0) lstat(&(0x7f0000000680)='./file0\x00', &(0x7f00000006c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) r6 = socket$alg(0x26, 0x5, 0x0) bind$alg(r6, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'ghash-generic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r6, 0x117, 0x1, 0x0, 0x0) getsockopt$sock_cred(r6, 0x1, 0x11, &(0x7f0000000740)={0x0}, &(0x7f0000000900)=0xc) r8 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$sock_cred(r8, 0x1, 0x11, &(0x7f0000000000)={0x0, 0x0}, &(0x7f0000000040)=0xc) keyctl$get_persistent(0x7, r9, 0x0) r10 = syz_open_dev$vbi(0x0, 0x2, 0x2) r11 = getgid() write$FUSE_ENTRY(r10, &(0x7f0000000200)={0x90, 0x0, 0x0, {0x6, 0x3, 0xf24, 0x0, 0x5, 0x0, {0x0, 0x0, 0x9, 0x0, 0x5, 0x5, 0x9, 0x0, 0x0, 0x3, 0x0, 0x0, r11, 0x1, 0x1}}}, 0x90) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000940)=0x0) r13 = geteuid() r14 = getgid() r15 = getpid() tkill(r15, 0x9) r16 = getuid() r17 = syz_open_dev$vbi(0x0, 0x2, 0x2) r18 = getgid() write$FUSE_ENTRY(r17, &(0x7f0000000200)={0x90, 0x0, 0x0, {0x6, 0x3, 0xf24, 0x0, 0x5, 0x0, {0x0, 0x0, 0x9, 0x0, 0x5, 0x5, 0x9, 0x0, 0x0, 0x3, 0x0, 0x0, r18, 0x1, 0x1}}}, 0x90) r19 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000980)='/dev/dsp\x00', 0x200, 0x0) r20 = socket$alg(0x26, 0x5, 0x0) bind$alg(r20, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'ghash-generic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r20, 0x117, 0x1, 0x0, 0x0) r21 = openat$rtc(0xffffffffffffff9c, &(0x7f00000009c0)='/dev/rtc0\x00', 0x4a00, 0x0) r22 = socket$alg(0x26, 0x5, 0x0) bind$alg(r22, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'ghash-generic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r22, 0x117, 0x1, 0x0, 0x0) r23 = getpgid(0x0) r24 = socket$alg(0x26, 0x5, 0x0) bind$alg(r24, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'ghash-generic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r24, 0x117, 0x1, 0x0, 0x0) fstat(r24, &(0x7f0000000a00)={0x0, 0x0, 0x0, 0x0, 0x0}) r26 = syz_open_dev$vbi(0x0, 0x2, 0x2) r27 = getgid() write$FUSE_ENTRY(r26, &(0x7f0000000200)={0x90, 0x0, 0x0, {0x6, 0x3, 0xf24, 0x0, 0x5, 0x0, {0x0, 0x0, 0x9, 0x0, 0x5, 0x5, 0x9, 0x0, 0x0, 0x3, 0x0, 0x0, r27, 0x1, 0x1}}}, 0x90) r28 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x4, 0x4182) r29 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) pwritev(r29, &(0x7f0000000340)=[{&(0x7f0000000140)='!', 0x1}], 0x1, 0x81805) r30 = dup2(r29, r29) ioctl$SG_GET_RESERVED_SIZE(r29, 0x2272, 0x0) ioctl$LOOP_CHANGE_FD(r28, 0x4c00, r29) write$P9_RLERRORu(r30, &(0x7f00000003c0)=ANY=[@ANYBLOB="1400000007650d6c24ed92c8397291335cf616f0010200070062726f0c62077600b365a0a59e7eea"], 0x28) getsockopt$sock_cred(r30, 0x1, 0x11, 0x0, 0x0) r31 = syz_open_dev$vcsa(&(0x7f0000000300)='/dev/vcsa#\x00', 0x80000001, 0x20000) getsockopt$inet6_IPV6_IPSEC_POLICY(r31, 0x29, 0x22, 0x0, &(0x7f0000000780)) getsockopt$inet6_IPV6_XFRM_POLICY(r31, 0x29, 0x23, &(0x7f00000007c0)={{{@in=@remote, @in6=@initdev}}, {{@in=@empty}, 0x0, @in6=@ipv4}}, &(0x7f00000008c0)=0xe8) sendfile(r30, r28, 0x0, 0x2400003e) ioctl$VIDIOC_EXPBUF(0xffffffffffffffff, 0xc0405610, &(0x7f0000000a80)={0x3f39df0b6bf5134a, 0x6, 0x1, 0x800, r30}) r33 = socket$alg(0x26, 0x5, 0x0) bind$alg(r33, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'ghash-generic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r33, 0x117, 0x1, 0x0, 0x0) sendmmsg$unix(r1, &(0x7f0000000bc0)=[{&(0x7f0000000540)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000000640)=[{&(0x7f00000005c0)="5c26d936df0bfa209838d485b608b6fbab76e1215df832bc99573b9197859b181b1366588e91a0c5386d607d7cfef80edd63efb43a04af2f3475582dcac13ff1a534520f4c21", 0x46}], 0x1, &(0x7f0000000ac0)=[@cred={{0x1c, 0x1, 0x2, {r2, r4, r5}}}, @cred={{0x1c, 0x1, 0x2, {r7, r9, r11}}}, @cred={{0x1c, 0x1, 0x2, {r12, r13, r14}}}, @cred={{0x1c, 0x1, 0x2, {r15, r16, r18}}}, @rights={{0x20, 0x1, 0x1, [r19, r20, r21, r22]}}, @cred={{0x1c, 0x1, 0x2, {r23, r25, r27}}}, @rights={{0x14, 0x1, 0x1, [r32]}}, @rights={{0x14, 0x1, 0x1, [r33]}}], 0xf0, 0x80}], 0x1, 0x800) r34 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x4, 0x4182) r35 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) pwritev(r35, &(0x7f0000000340)=[{&(0x7f0000000140)='!', 0x1}], 0x1, 0x81805) r36 = dup2(r35, r35) ioctl$SG_GET_RESERVED_SIZE(r35, 0x2272, 0x0) ioctl$LOOP_CHANGE_FD(r34, 0x4c00, r35) write$P9_RLERRORu(r36, &(0x7f00000003c0)=ANY=[@ANYBLOB="1400000007650d6c24ed92c8397291335cf616f0010200070062726f0c62077600b365a0a59e7eea"], 0x28) getsockopt$sock_cred(r36, 0x1, 0x11, 0x0, 0x0) r37 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/dlm-monitor\x00', 0x800, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(r37, 0x29, 0x23, &(0x7f00000007c0)={{{@in=@remote, @in6=@initdev}}, {{@in=@empty}, 0x0, @in6=@ipv4}}, &(0x7f00000008c0)=0xffffffb5) r38 = syz_open_dev$vcsa(&(0x7f0000000300)='/dev/vcsa#\x00', 0x80000001, 0x20000) getsockopt$inet6_IPV6_IPSEC_POLICY(r38, 0x29, 0x22, 0x0, &(0x7f0000000780)) write$UHID_CREATE2(r38, &(0x7f0000000400)=ANY=[@ANYBLOB="0b00000073797a310000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000200000000000000000000000000000000000000000073797a310000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a000073797a310000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002400630005000000000000002b96000007000000e87f3382645bb48e86dc9f3030b43d943399adefadcd322b8c494ce43400235167acc4be"], 0x13c) sendfile(r36, r34, 0x0, 0x2400003e) setsockopt$packet_tx_ring(r36, 0x107, 0xd, &(0x7f0000000100)=@req={0x5, 0x0, 0x80000000}, 0x10) ioctl$SG_GET_PACK_ID(r36, 0x227c, &(0x7f0000000280)) timer_settime(r0, 0x0, &(0x7f00000000c0)={{}, {0x0, 0x1c9c380}}, 0x0) 05:29:52 executing program 4: syz_open_dev$sndmidi(&(0x7f0000000180)='/dev/snd/midiC#D#\x00', 0x2, 0x0) read(0xffffffffffffffff, 0x0, 0x2fc) r0 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000002800)='/dev/ashmem\x00', 0x0, 0x0) r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x2, 0x0) dup2(r0, r1) 05:29:52 executing program 2: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) lsetxattr$trusted_overlay_redirect(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='trusted.overlay.redirect\x00', &(0x7f0000000140)='./file0\x00', 0x8, 0x1) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) 05:29:52 executing program 4: syz_open_dev$sndmidi(&(0x7f0000000180)='/dev/snd/midiC#D#\x00', 0x2, 0x0) read(0xffffffffffffffff, 0x0, 0x2fc) r0 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000002800)='/dev/ashmem\x00', 0x0, 0x0) r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x2, 0x0) dup2(r0, r1) 05:29:52 executing program 5: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0xaaaaaaaaaaaacdf, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x1200040, 0x0) [ 386.651284] FAULT_INJECTION: forcing a failure. [ 386.651284] name failslab, interval 1, probability 0, space 0, times 0 [ 386.676120] CPU: 0 PID: 25257 Comm: syz-executor.1 Not tainted 4.14.146 #0 [ 386.683203] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 386.692569] Call Trace: [ 386.695176] dump_stack+0x138/0x197 [ 386.698835] should_fail.cold+0x10f/0x159 [ 386.703003] should_failslab+0xdb/0x130 [ 386.706996] kmem_cache_alloc_node_trace+0x280/0x770 [ 386.712102] ? mutex_unlock+0xd/0x10 [ 386.715819] ? btrfs_scan_one_device+0xeb/0x400 [ 386.720494] __kmalloc_node+0x3d/0x80 [ 386.724300] kvmalloc_node+0x93/0xe0 [ 386.728118] btrfs_mount+0xf88/0x2b28 [ 386.731904] ? lock_downgrade+0x6e0/0x6e0 [ 386.736042] ? find_held_lock+0x35/0x130 [ 386.740097] ? pcpu_alloc+0x3af/0x1050 [ 386.743981] ? btrfs_remount+0x11f0/0x11f0 [ 386.748207] ? rcu_read_lock_sched_held+0x110/0x130 [ 386.753230] ? __lockdep_init_map+0x10c/0x570 [ 386.757734] mount_fs+0x97/0x2a1 [ 386.761106] vfs_kern_mount.part.0+0x5e/0x3d0 [ 386.765592] ? find_held_lock+0x35/0x130 [ 386.769920] vfs_kern_mount+0x40/0x60 [ 386.773718] btrfs_mount+0x3ce/0x2b28 [ 386.777503] ? lock_downgrade+0x6e0/0x6e0 [ 386.781647] ? find_held_lock+0x35/0x130 [ 386.785710] ? pcpu_alloc+0x3af/0x1050 [ 386.789727] ? btrfs_remount+0x11f0/0x11f0 [ 386.793959] ? rcu_read_lock_sched_held+0x110/0x130 [ 386.798989] ? __lockdep_init_map+0x10c/0x570 [ 386.803827] ? __lockdep_init_map+0x10c/0x570 [ 386.808315] mount_fs+0x97/0x2a1 [ 386.811670] vfs_kern_mount.part.0+0x5e/0x3d0 [ 386.816156] do_mount+0x417/0x27d0 [ 386.819704] ? copy_mount_options+0x5c/0x2f0 [ 386.824104] ? rcu_read_lock_sched_held+0x110/0x130 [ 386.829110] ? copy_mount_string+0x40/0x40 [ 386.833333] ? copy_mount_options+0x1fe/0x2f0 [ 386.837814] SyS_mount+0xab/0x120 [ 386.841258] ? copy_mnt_ns+0x8c0/0x8c0 [ 386.845142] do_syscall_64+0x1e8/0x640 [ 386.849028] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 386.853878] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 386.859118] RIP: 0033:0x45c47a [ 386.862296] RSP: 002b:00007f617e384a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 386.870019] RAX: ffffffffffffffda RBX: 00007f617e384b40 RCX: 000000000045c47a [ 386.877279] RDX: 00007f617e384ae0 RSI: 0000000020000140 RDI: 00007f617e384b00 [ 386.884535] RBP: 0000000000000001 R08: 00007f617e384b40 R09: 00007f617e384ae0 [ 386.893706] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000004 [ 386.900973] R13: 00000000004c8b25 R14: 00000000004dfbc8 R15: 0000000000000003 05:29:52 executing program 2: syz_mount_image$btrfs(&(0x7f0000000140)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x102, 0xe5, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed00000000fffa00000000020000000000000000a2299748aeb81e1b00920efd9a000001000000000001e78b198a8cffffff0000f25e4248526653", 0x48, 0x10000}], 0x0, 0x0) socketpair$unix(0x1, 0x4, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) 05:29:52 executing program 3: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$EXT4_IOC_PRECACHE_EXTENTS(0xffffffffffffffff, 0x6612) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x40000, 0x0) fcntl$getown(r0, 0x9) 05:29:55 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x0, &(0x7f0000000100)="11dca50d5e0bcfe47bf070") prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x802102001ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = gettid() r2 = epoll_create(0x3) epoll_pwait(r2, &(0x7f0000000340)=[{}], 0x1, 0x7fff, &(0x7f0000000380), 0x8) ptrace$setopts(0x4206, r1, 0x0, 0x0) tkill(r1, 0x38) 05:29:55 executing program 4: r0 = syz_open_dev$sndmidi(&(0x7f0000000180)='/dev/snd/midiC#D#\x00', 0x2, 0x0) read(r0, 0x0, 0x2fc) r1 = openat$ashmem(0xffffffffffffff9c, 0x0, 0x0, 0x0) r2 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x2, 0x0) dup2(r1, r2) 05:29:55 executing program 1 (fault-call:0 fault-nth:70): syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000140)='./file0\x00', 0xff, 0x1, &(0x7f0000000000)=[{&(0x7f0000000180)="8da4363ac0ed0000000000000001004d0100000000000000000000000009000000000000009748aeb81e1b00920efd9a0000010000000000098cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 05:29:55 executing program 5: syz_mount_image$btrfs(&(0x7f00000002c0)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x540702b2, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f0000000100)={{{@in6=@ipv4={[], [], @remote}, @in=@multicast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@initdev}, 0x0, @in6=@initdev}}, &(0x7f0000000280)=0xffffffffffffff6e) lchown(&(0x7f00000000c0)='./file0\x00', r0, 0xee01) r1 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000000)={0x0, 0x0}, &(0x7f0000000040)=0xc) keyctl$get_persistent(0x7, r2, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000300), &(0x7f0000000340)=0xc) add_key$keyring(&(0x7f0000000380)='keyring\x00', &(0x7f00000003c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffff9) 05:29:55 executing program 2: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x1}], 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$IMDELTIMER(0xffffffffffffffff, 0x80044941, &(0x7f00000000c0)=0x2) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) 05:29:55 executing program 3: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) syz_open_dev$vivid(&(0x7f00000000c0)='\x00\x04\x00\x00\x0e\x00', 0x3, 0x2) r0 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) r1 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x4, 0x4182) r2 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) pwritev(r2, &(0x7f0000000340)=[{&(0x7f0000000140)='!', 0x1}], 0x1, 0x81805) r3 = dup2(r2, r2) ioctl$SG_GET_RESERVED_SIZE(r2, 0x2272, 0x0) ioctl$LOOP_CHANGE_FD(r1, 0x4c00, r2) write$P9_RLERRORu(r3, &(0x7f00000003c0)=ANY=[@ANYBLOB="1400000007650d6c24ed92c8397291335cf616f0010200070062726f0c62077600b365a0a59e7eea"], 0x28) getsockopt$sock_cred(r3, 0x1, 0x11, 0x0, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(r3, 0x29, 0x23, &(0x7f00000007c0)={{{@in=@remote, @in6=@initdev}}, {{@in=@empty}, 0x0, @in6=@ipv4}}, &(0x7f00000008c0)=0xe8) sendfile(r3, r1, 0x0, 0x2400003e) setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r3, 0x84, 0x6e, &(0x7f0000961fe4)=[@in={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xfd}}], 0x10) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, &(0x7f00000001c0)={0x1, [0x0]}, &(0x7f00000000c0)=0xfe10) getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r0, 0x84, 0x66, &(0x7f0000000040)={r4}, &(0x7f0000000140)=0x8) setsockopt$inet_sctp_SCTP_ADD_STREAMS(0xffffffffffffffff, 0x84, 0x79, &(0x7f0000000100)={r4, 0x0, 0x1}, 0x8) r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptmx\x00', 0x40, 0x0) ioctl$FS_IOC_SETVERSION(r5, 0x40087602, &(0x7f0000000380)=0x1) syz_emit_ethernet(0x1, &(0x7f0000000280)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaabb00044e0009c59ec6c9aa193ef7b4e9167a97ebdc90edccd8dccca11d02d5c29c953df3dbdfe04e7d5fc929b32397597bdcc8646d67f58530bef3f08f445e35a7ba07e2e4fc664058829f13798d7a786eb4630e79c58a4635407154897e0f134f99afaf3480adebae662e11227d004d306bbc78b17e616ccdef02e415a234c44cfc9b24676af29e35d1c449bc8184f72fb495cd9c00555cd5e90636bf8d0484a60291bcb4d7cfeab30200000000"], &(0x7f00000001c0)={0x1, 0x4, [0x7d5, 0xafe, 0xf23, 0x28]}) [ 389.585560] FAULT_INJECTION: forcing a failure. [ 389.585560] name failslab, interval 1, probability 0, space 0, times 0 [ 389.624761] CPU: 0 PID: 25319 Comm: syz-executor.1 Not tainted 4.14.146 #0 05:29:55 executing program 2: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = fcntl$dupfd(r1, 0x0, 0xffffffffffffffff) getsockopt$EBT_SO_GET_INIT_INFO(r2, 0x0, 0x82, &(0x7f0000000180)={'broute\x00'}, &(0x7f0000000240)=0x50) ioctl$TIOCSCTTY(r2, 0x540e, 0xffffffff) getsockopt$sock_cred(r2, 0x1, 0x11, 0x0, &(0x7f0000000640)) r3 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = fcntl$dupfd(r3, 0x0, 0xffffffffffffffff) getsockopt$EBT_SO_GET_INIT_INFO(r4, 0x0, 0x82, &(0x7f0000000180)={'broute\x00'}, &(0x7f0000000240)=0x50) ioctl$TIOCSCTTY(r4, 0x540e, 0xffffffff) getsockopt$sock_cred(r4, 0x1, 0x11, 0x0, &(0x7f0000000640)) ioctl$PPPIOCSMRU1(r2, 0x40047452, &(0x7f00000000c0)=0x5) r5 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r6 = fcntl$dupfd(r5, 0x0, 0xffffffffffffffff) getsockopt$EBT_SO_GET_INIT_INFO(r6, 0x0, 0x82, &(0x7f0000000180)={'broute\x00'}, &(0x7f0000000240)=0x50) ioctl$TIOCSCTTY(r6, 0x540e, 0xffffffff) getsockopt$sock_cred(r6, 0x1, 0x11, 0x0, &(0x7f0000000640)) ioctl$KVM_ASSIGN_SET_INTX_MASK(r6, 0x4040aea4, &(0x7f0000000280)={0x4, 0x4, 0x7, 0x3, 0xffffb7fa}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r7 = syz_open_dev$sndmidi(&(0x7f0000000100)='/dev/snd/midiC#D#\x00', 0x5, 0x542) ioctl$SNDRV_RAWMIDI_IOCTL_DROP(r7, 0x40045730, &(0x7f0000000140)=0x1) [ 389.631855] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 389.641216] Call Trace: [ 389.641236] dump_stack+0x138/0x197 [ 389.641255] should_fail.cold+0x10f/0x159 [ 389.641266] ? __lock_is_held+0xb6/0x140 [ 389.641280] ? mempool_free+0x1d0/0x1d0 [ 389.641293] should_failslab+0xdb/0x130 [ 389.641304] kmem_cache_alloc+0x47/0x780 [ 389.641319] ? mempool_free+0x1d0/0x1d0 [ 389.641329] mempool_alloc_slab+0x47/0x60 [ 389.641338] mempool_alloc+0x138/0x300 [ 389.641352] ? remove_element.isra.0+0x1b0/0x1b0 [ 389.655753] ? find_held_lock+0x35/0x130 [ 389.655767] ? create_empty_buffers+0x2d3/0x480 [ 389.655779] ? save_trace+0x290/0x290 [ 389.655794] bio_alloc_bioset+0x368/0x680 [ 389.655807] ? bvec_alloc+0x2e0/0x2e0 [ 389.705419] submit_bh_wbc+0xf6/0x720 [ 389.709354] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 389.714825] block_read_full_page+0x7a2/0x960 [ 389.719323] ? set_init_blocksize+0x220/0x220 [ 389.723817] ? __bread_gfp+0x290/0x290 [ 389.727700] ? add_to_page_cache_lru+0x159/0x310 05:29:55 executing program 2: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000000), 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) [ 389.732451] ? add_to_page_cache_locked+0x40/0x40 [ 389.732466] blkdev_readpage+0x1d/0x30 [ 389.732476] do_read_cache_page+0x671/0xfc0 [ 389.732485] ? blkdev_writepages+0xd0/0xd0 [ 389.732502] ? find_get_pages_contig+0xaa0/0xaa0 [ 389.732511] ? blkdev_get+0xb0/0x8e0 [ 389.732520] ? dput.part.0+0x170/0x750 [ 389.732530] ? bd_may_claim+0xd0/0xd0 [ 389.732539] ? path_put+0x50/0x70 [ 389.732546] ? lookup_bdev.part.0+0xe1/0x160 [ 389.732556] read_cache_page_gfp+0x6e/0x90 [ 389.732569] btrfs_read_disk_super+0xdd/0x440 [ 389.732581] btrfs_scan_one_device+0xc6/0x400 [ 389.732593] ? device_list_add+0x8d0/0x8d0 [ 389.732603] ? __free_pages+0x54/0x90 [ 389.732619] ? free_pages+0x46/0x50 [ 389.741352] btrfs_mount+0x2e3/0x2b28 [ 389.741362] ? lock_downgrade+0x6e0/0x6e0 [ 389.741370] ? find_held_lock+0x35/0x130 [ 389.741379] ? pcpu_alloc+0x3af/0x1050 [ 389.741397] ? btrfs_remount+0x11f0/0x11f0 [ 389.741415] ? rcu_read_lock_sched_held+0x110/0x130 [ 389.741436] ? __lockdep_init_map+0x10c/0x570 05:29:55 executing program 2: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) [ 389.741452] mount_fs+0x97/0x2a1 [ 389.741466] vfs_kern_mount.part.0+0x5e/0x3d0 [ 389.741474] ? find_held_lock+0x35/0x130 [ 389.741485] vfs_kern_mount+0x40/0x60 [ 389.801404] btrfs_mount+0x3ce/0x2b28 [ 389.801417] ? lock_downgrade+0x6e0/0x6e0 [ 389.801425] ? find_held_lock+0x35/0x130 [ 389.801436] ? pcpu_alloc+0x3af/0x1050 [ 389.801453] ? btrfs_remount+0x11f0/0x11f0 [ 389.801469] ? rcu_read_lock_sched_held+0x110/0x130 [ 389.809310] ? __lockdep_init_map+0x10c/0x570 [ 389.870807] ? __lockdep_init_map+0x10c/0x570 [ 389.870824] mount_fs+0x97/0x2a1 [ 389.870841] vfs_kern_mount.part.0+0x5e/0x3d0 [ 389.870855] do_mount+0x417/0x27d0 [ 389.870863] ? copy_mount_options+0x5c/0x2f0 [ 389.870873] ? rcu_read_lock_sched_held+0x110/0x130 [ 389.870885] ? copy_mount_string+0x40/0x40 [ 389.870898] ? copy_mount_options+0x1fe/0x2f0 [ 389.870910] SyS_mount+0xab/0x120 [ 389.870917] ? copy_mnt_ns+0x8c0/0x8c0 [ 389.870930] do_syscall_64+0x1e8/0x640 [ 389.870939] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 389.870955] entry_SYSCALL_64_after_hwframe+0x42/0xb7 05:29:55 executing program 2: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x5, 0x0, &(0x7f0000000000), 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = fcntl$dupfd(r1, 0x0, 0xffffffffffffffff) r3 = syz_open_dev$vcsa(&(0x7f0000000300)='/dev/vcsa#\x00', 0x80000001, 0x20000) getsockopt$inet6_IPV6_IPSEC_POLICY(r3, 0x29, 0x22, 0x0, &(0x7f0000000780)) getsockopt$EBT_SO_GET_INIT_INFO(r3, 0x0, 0x82, &(0x7f0000000380)={'filter\x00'}, &(0x7f0000000000)=0xd8) ioctl$TIOCSCTTY(r2, 0x540e, 0xffffffff) getsockopt$sock_cred(r2, 0x1, 0x11, 0x0, &(0x7f0000000640)) r4 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) r5 = fcntl$dupfd(r4, 0x0, 0xffffffffffffffff) getsockopt$EBT_SO_GET_INIT_INFO(r5, 0x0, 0x82, &(0x7f0000000180)={'broute\x00'}, &(0x7f0000000240)=0x50) ioctl$TIOCSCTTY(r5, 0x540e, 0xffffffff) getsockopt$sock_cred(r5, 0x1, 0x11, 0x0, &(0x7f0000000640)) r6 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000340)='/dev/hwrng\x00', 0x10000, 0x0) accept4$bt_l2cap(r6, &(0x7f0000000140), &(0x7f00000000c0)=0xd, 0x180000) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) getsockopt$bt_rfcomm_RFCOMM_CONNINFO(r2, 0x12, 0x2, &(0x7f0000000280)=""/147, &(0x7f0000000100)=0x93) 05:29:55 executing program 2: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x200000000d8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) accept4$bt_l2cap(0xffffffffffffffff, 0x0, 0x0, 0x1000) unshare(0x2040400) r0 = perf_event_open(&(0x7f00000000c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x77db}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) msgget$private(0x0, 0x0) accept$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000400)=0x14) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setstatus(r2, 0x4, 0x2000) bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x8, 0x8, &(0x7f0000000140)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe2}, [@jmp={0x5, 0x1, 0x8, 0x1, 0x6, 0xfffffffffffffffa}, @map={0x18, 0x4, 0x1, 0x0, 0x1}, @func={0x85, 0x0, 0x1, 0x0, 0x8}, @exit]}, &(0x7f0000000080)='syzkaller\x00', 0x3f, 0xc2, &(0x7f0000000280)=""/194, 0x40f00, 0x0, [], r1, 0x9, r2, 0x8, &(0x7f0000000440)={0x9, 0x4}, 0x8, 0x10, &(0x7f0000000480)={0x0, 0x4}, 0x10}, 0x70) ioctl$sock_inet6_tcp_SIOCATMARK(0xffffffffffffffff, 0x8905, 0x0) ioctl$UFFDIO_REGISTER(0xffffffffffffffff, 0xc020aa00, 0x0) fcntl$setstatus(0xffffffffffffffff, 0x4, 0x2000) ioctl$TIOCCONS(0xffffffffffffffff, 0x541d) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) r4 = perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='cpuacct.usage_sys\x00\xc7\xec\xac\xd9&{\x0f\x96\xad\xd1\x8fl![\x8f\xb9\f\xca\x1d\xc2{\xee\xb7\x03K\x0f\xa6\xaa;\xf6\x89\xf7b^\xa5\xafI\r\xc4\x9f\v\xf2\x1c\xdc\xddp2\xb7\xbb\x1b\xfev\xea\xed\xe0\xaa\xe8\xceR`\xbb\xf2\xed;pC\x19\xbfn\x16\xaa\x199\xfe.Q\xebvB\xd2\x19&l?\x87\x17H\x1f.\xdbA\x1b\xafz\xe3\xdc};*\xec\xfe\xfa\xfb/\x18g\x80y\xfe\x89', 0x26e1, 0x0) close(r4) close(r5) socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000040)) write$cgroup_type(r5, &(0x7f0000000080)='threaded\x00', 0xfffffc61) recvmsg(r4, &(0x7f0000000140)={0x0, 0x1d, &(0x7f0000000000)=[{&(0x7f00000000c0)=""/110, 0x2000012e}], 0x1, 0x0, 0xd01}, 0x3f00) r6 = dup2(r3, r3) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) ioctl$KVM_X86_SET_MCE(0xffffffffffffffff, 0x4040ae9e, 0x0) r7 = socket$nl_netfilter(0x10, 0x3, 0xc) ioctl$sock_ifreq(r7, 0x8991, &(0x7f00000000c0)={'bond0\x00\x16\b\xea\xff\xff\x80\x00\x00\x02\xff', @ifru_names='bond_slave_1\x00'}) ioctl$sock_ifreq(r7, 0x8990, &(0x7f0000000240)={'bond0\x00\xe1\x03\n\x00!!\x00\x01\x00', @ifru_names='bond_slave_1\x00\x00\x00\b'}) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$VHOST_RESET_OWNER(r0, 0xaf02, 0x0) [ 389.870962] RIP: 0033:0x45c47a [ 389.870967] RSP: 002b:00007f617e384a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 389.870979] RAX: ffffffffffffffda RBX: 00007f617e384b40 RCX: 000000000045c47a [ 389.880556] RDX: 00007f617e384ae0 RSI: 0000000020000140 RDI: 00007f617e384b00 [ 389.880562] RBP: 0000000000000001 R08: 00007f617e384b40 R09: 00007f617e384ae0 [ 389.880566] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000004 [ 389.880571] R13: 00000000004c8b25 R14: 00000000004dfbc8 R15: 0000000000000003 05:29:55 executing program 1 (fault-call:0 fault-nth:71): syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000140)='./file0\x00', 0xff, 0x1, &(0x7f0000000000)=[{&(0x7f0000000180)="8da4363ac0ed0000000000000001004d0100000000000000000000000009000000000000009748aeb81e1b00920efd9a0000010000000000098cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 390.156317] audit: type=1400 audit(1569562195.946:74): avc: denied { ioctl } for pid=25351 comm="syz-executor.2" path="socket:[83634]" dev="sockfs" ino=83634 ioctlcmd=0x8991 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_netfilter_socket permissive=1 [ 390.209844] bond0: Releasing backup interface bond_slave_1 [ 390.226389] FAULT_INJECTION: forcing a failure. [ 390.226389] name failslab, interval 1, probability 0, space 0, times 0 [ 390.237600] CPU: 0 PID: 25369 Comm: syz-executor.1 Not tainted 4.14.146 #0 [ 390.244621] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 390.253966] Call Trace: [ 390.256549] dump_stack+0x138/0x197 [ 390.260174] should_fail.cold+0x10f/0x159 [ 390.264320] should_failslab+0xdb/0x130 [ 390.268281] kmem_cache_alloc+0x47/0x780 [ 390.272336] radix_tree_node_alloc.constprop.0+0x1c7/0x310 [ 390.277948] __radix_tree_create+0x337/0x4d0 [ 390.282345] page_cache_tree_insert+0xa7/0x2d0 [ 390.286998] ? file_check_and_advance_wb_err+0x380/0x380 [ 390.292438] __add_to_page_cache_locked+0x2ab/0x7e0 [ 390.297439] ? find_lock_entry+0x3f0/0x3f0 [ 390.301678] add_to_page_cache_lru+0xf4/0x310 [ 390.307037] ? add_to_page_cache_locked+0x40/0x40 [ 390.311867] ? __page_cache_alloc+0xdd/0x3e0 [ 390.316273] do_read_cache_page+0x64e/0xfc0 [ 390.320579] ? blkdev_writepages+0xd0/0xd0 [ 390.324804] ? find_get_pages_contig+0xaa0/0xaa0 [ 390.329543] ? blkdev_get+0xb0/0x8e0 [ 390.333242] ? dput.part.0+0x170/0x750 [ 390.337126] ? bd_may_claim+0xd0/0xd0 [ 390.340909] ? path_put+0x50/0x70 [ 390.344344] ? lookup_bdev.part.0+0xe1/0x160 [ 390.348823] read_cache_page_gfp+0x6e/0x90 [ 390.353063] btrfs_read_disk_super+0xdd/0x440 [ 390.357561] btrfs_scan_one_device+0xc6/0x400 [ 390.362044] ? device_list_add+0x8d0/0x8d0 [ 390.366270] ? __free_pages+0x54/0x90 [ 390.370056] ? free_pages+0x46/0x50 [ 390.373670] btrfs_mount+0x2e3/0x2b28 [ 390.377456] ? lock_downgrade+0x6e0/0x6e0 [ 390.381587] ? find_held_lock+0x35/0x130 [ 390.385630] ? pcpu_alloc+0x3af/0x1050 [ 390.389628] ? btrfs_remount+0x11f0/0x11f0 [ 390.393985] ? rcu_read_lock_sched_held+0x110/0x130 [ 390.399006] ? __lockdep_init_map+0x10c/0x570 [ 390.403510] mount_fs+0x97/0x2a1 [ 390.406871] vfs_kern_mount.part.0+0x5e/0x3d0 [ 390.411438] ? find_held_lock+0x35/0x130 [ 390.415594] vfs_kern_mount+0x40/0x60 [ 390.419389] btrfs_mount+0x3ce/0x2b28 [ 390.423186] ? lock_downgrade+0x6e0/0x6e0 [ 390.427326] ? find_held_lock+0x35/0x130 [ 390.431373] ? pcpu_alloc+0x3af/0x1050 [ 390.435601] ? btrfs_remount+0x11f0/0x11f0 [ 390.439825] ? rcu_read_lock_sched_held+0x110/0x130 [ 390.444841] ? __lockdep_init_map+0x10c/0x570 [ 390.449338] ? __lockdep_init_map+0x10c/0x570 [ 390.453833] mount_fs+0x97/0x2a1 [ 390.457195] vfs_kern_mount.part.0+0x5e/0x3d0 [ 390.461764] do_mount+0x417/0x27d0 [ 390.465285] ? copy_mount_options+0x5c/0x2f0 [ 390.469685] ? rcu_read_lock_sched_held+0x110/0x130 [ 390.474686] ? copy_mount_string+0x40/0x40 [ 390.478910] ? copy_mount_options+0x1fe/0x2f0 [ 390.483390] SyS_mount+0xab/0x120 [ 390.486834] ? copy_mnt_ns+0x8c0/0x8c0 [ 390.490707] do_syscall_64+0x1e8/0x640 [ 390.494574] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 390.499407] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 390.504579] RIP: 0033:0x45c47a [ 390.507755] RSP: 002b:00007f617e384a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 390.515447] RAX: ffffffffffffffda RBX: 00007f617e384b40 RCX: 000000000045c47a [ 390.522716] RDX: 00007f617e384ae0 RSI: 0000000020000140 RDI: 00007f617e384b00 [ 390.530020] RBP: 0000000000000001 R08: 00007f617e384b40 R09: 00007f617e384ae0 [ 390.537394] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000004 [ 390.544739] R13: 00000000004c8b25 R14: 00000000004dfbc8 R15: 0000000000000003 05:29:58 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x0, &(0x7f0000000100)="11dca50d5e0bcfe47bf070") prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x802102001ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = gettid() r2 = epoll_create(0x3) epoll_pwait(r2, &(0x7f0000000340)=[{}], 0x1, 0x7fff, &(0x7f0000000380), 0x8) ptrace$setopts(0x4206, r1, 0x0, 0x0) tkill(r1, 0x38) 05:29:58 executing program 5: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = syz_open_dev$vbi(0x0, 0x2, 0x2) r1 = getgid() write$FUSE_ENTRY(r0, &(0x7f0000000200)={0x90, 0x0, 0x0, {0x6, 0x3, 0xf24, 0x0, 0x5, 0x0, {0x0, 0x0, 0x9, 0x0, 0x5, 0x5, 0x9, 0x0, 0x0, 0x3, 0x0, 0x0, r1, 0x1, 0x1}}}, 0x90) r2 = syz_open_dev$vbi(0x0, 0x2, 0x2) r3 = getgid() write$FUSE_ENTRY(r2, &(0x7f0000000200)={0x90, 0x0, 0x0, {0x6, 0x3, 0xf24, 0x0, 0x7, 0x0, {0x0, 0x0, 0xd, 0x0, 0x5, 0x5, 0x9, 0x0, 0x7, 0x3, 0x0, 0x0, r3, 0x1, 0x1}}}, 0xb) prctl$PR_TASK_PERF_EVENTS_DISABLE(0x1f) getgroups(0x5, &(0x7f00000000c0)=[0xffffffffffffffff, 0x0, 0x0, 0xffffffffffffffff, r3]) setresgid(r1, 0x0, r4) 05:29:58 executing program 3: r0 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snapshot\x00', 0x46c10e43be3d941a, 0x0) r1 = syz_open_dev$vcsa(&(0x7f0000000300)='/dev/vcsa#\x00', 0x80000001, 0x20000) getsockopt$inet6_IPV6_IPSEC_POLICY(r1, 0x29, 0x22, 0x0, &(0x7f0000000780)) getsockopt$TIPC_SOCK_RECVQ_DEPTH(r1, 0x10f, 0x84, &(0x7f00000000c0), &(0x7f0000000100)=0x4) ioctl$SG_GET_VERSION_NUM(r0, 0x2282, &(0x7f0000000040)) r2 = socket$alg(0x26, 0x5, 0x0) bind$alg(r2, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'ghash-generic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, 0x0, 0x0) ioctl$FIGETBSZ(r2, 0x2, &(0x7f0000000080)) 05:29:58 executing program 4: r0 = syz_open_dev$sndmidi(&(0x7f0000000180)='/dev/snd/midiC#D#\x00', 0x2, 0x0) read(r0, 0x0, 0x2fc) r1 = openat$ashmem(0xffffffffffffff9c, 0x0, 0x0, 0x0) r2 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x2, 0x0) dup2(r1, r2) 05:29:58 executing program 1 (fault-call:0 fault-nth:72): syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000140)='./file0\x00', 0xff, 0x1, &(0x7f0000000000)=[{&(0x7f0000000180)="8da4363ac0ed0000000000000001004d0100000000000000000000000009000000000000009748aeb81e1b00920efd9a0000010000000000098cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 05:29:58 executing program 2: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = syz_open_dev$vcsa(&(0x7f0000000300)='/dev/vcsa#\x00', 0x80000001, 0x20000) getsockopt$inet6_IPV6_IPSEC_POLICY(r1, 0x29, 0x22, 0x0, &(0x7f0000000780)) ioctl$SNDRV_SEQ_IOCTL_GET_CLIENT_INFO(r1, 0xc0bc5310, &(0x7f00000000c0)) [ 392.632082] FAULT_INJECTION: forcing a failure. [ 392.632082] name failslab, interval 1, probability 0, space 0, times 0 05:29:58 executing program 3: r0 = syz_open_dev$amidi(&(0x7f0000000680)='/dev/amidi#\x00', 0x51d2, 0x700) setsockopt$inet_sctp_SCTP_DISABLE_FRAGMENTS(r0, 0x84, 0x8, &(0x7f00000006c0)=0x1, 0x4) openat$nullb(0xffffffffffffff9c, &(0x7f0000000640)='/dev/nullb0\x00', 0x400, 0x0) syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f00000007c0)='./file0/file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000740)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x101}], 0x0, 0x0) r1 = syz_open_dev$mice(&(0x7f00000000c0)='/dev/input/mice\x00', 0x0, 0x6a4b02) r2 = syz_open_dev$dri(&(0x7f0000000140)='/dev/dri/card#\x00', 0x0, 0x80000) ioctl$DRM_IOCTL_SET_SAREA_CTX(r2, 0x4010641c, &(0x7f0000000440)={0x0, 0x0}) syz_mount_image$nfs(&(0x7f0000000180)='nfs\x00', &(0x7f00000001c0)='./file0/file0\x00', 0x2, 0x4, &(0x7f0000000580)=[{&(0x7f0000000280)="7704c9a5f6ed9e141818b98660b39e", 0xf, 0xb137}, {&(0x7f00000002c0)="2069efd55456d59709e8181e8ee42a350d72ed62ad189a75d6d072862848b406c28dbdf748e54327367f85379b308f18d7ee5cb3e27c574537e577c2f4e83d30b6445b2dfd988aaf632c8bf91bbf99b2a5cfaf3b8db8cef695579d693cf181c5b837e37cf1d11e2db1cd74cf51862a847063ede72c894fe71a135f0f3271ce078cc86903c7638fa2338837b550c1716b06e6331fc1b7be535f3bef7af45edad6710debb874383148efbf3c9e4fd54369b2b7e6dc6f7ee71fc62ff327f8546423fe4d0263db75a0ce48005d9b68a1c47005c8699d291253a280eb519659d1843f63", 0xffffffffffffff3b, 0x1}, {&(0x7f0000000480)="86052de3044d46cec16fc6c4b75f0b9d9716ee10cb3e51c85f59fe46c081014c4f2960a5a040728c847315d0b08a42300c0d7e4076d37bed565533097bb4a68523b034813234a780c7999803f7002da3eef1081d46ac4b868f7b6fdf39cd47c3a91fb55a09071f1cc22463745a6cdf950e203f637049241f990badabe97f6ea0a59998d662cc05b13350b0c64864a807258dbba61d666c87877b089180baa9643a33af7b8493229556ebcd0be746e1f400682f93dc920c8b0f5ba75117b3e7121aa32d05a2943dc6dbb4d21470477391f5ac34a84d6802e872143aadbecc84a433c9be3a57bb07", 0xe7, 0x9}, {&(0x7f00000003c0)="744ff209ab50f3c601b0505f9a54230984c9b1a0cf3c6a2adce77522743410c22ba49af2f0bdc6b846e3e8839bceb46de5fd48e33c1a0759c6b3356ea3a57651fbcb87ae", 0x44, 0x2000000081}], 0x3020000, &(0x7f0000000600)='/dev/input/mice\x00') r3 = semget(0x2, 0x4, 0x40) getsockopt$inet_IP_XFRM_POLICY(r1, 0x0, 0x11, &(0x7f0000000800)={{{@in6, @in6=@mcast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6}, 0x0, @in6}}, &(0x7f0000000080)=0xe8) r5 = syz_open_dev$vbi(0x0, 0x2, 0x2) r6 = getgid() write$FUSE_ENTRY(r5, &(0x7f0000000200)={0x90, 0x0, 0x0, {0x6, 0x3, 0xf24, 0x0, 0x5, 0x0, {0x0, 0x0, 0x9, 0x0, 0x5, 0x5, 0x9, 0x0, 0x0, 0x3, 0x0, 0x0, r6, 0x1, 0x1}}}, 0x90) lstat(&(0x7f0000000200)='./file0/file0\x00', &(0x7f0000000900)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) semctl$IPC_SET(r3, 0x0, 0x1, &(0x7f0000000980)={{0x811, r4, r6, 0xffffffffffffffff, r7, 0x92, 0x3}, 0x3, 0x6, 0x4}) ioctl$DRM_IOCTL_GET_CAP(r2, 0xc010640c, &(0x7f0000000100)={0x1d1, 0x8}) [ 392.672440] CPU: 0 PID: 25393 Comm: syz-executor.1 Not tainted 4.14.146 #0 [ 392.679510] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 392.688870] Call Trace: [ 392.692522] dump_stack+0x138/0x197 [ 392.696167] should_fail.cold+0x10f/0x159 [ 392.700328] ? __lock_is_held+0xb6/0x140 [ 392.704397] ? mempool_free+0x1d0/0x1d0 [ 392.708383] should_failslab+0xdb/0x130 [ 392.712362] kmem_cache_alloc+0x47/0x780 [ 392.716418] ? mempool_free+0x1d0/0x1d0 [ 392.720396] mempool_alloc_slab+0x47/0x60 [ 392.724552] mempool_alloc+0x138/0x300 [ 392.728446] ? remove_element.isra.0+0x1b0/0x1b0 [ 392.733206] ? find_held_lock+0x35/0x130 [ 392.737358] ? create_empty_buffers+0x2d3/0x480 [ 392.742032] ? save_trace+0x290/0x290 [ 392.745834] bio_alloc_bioset+0x368/0x680 [ 392.749983] ? bvec_alloc+0x2e0/0x2e0 [ 392.750002] submit_bh_wbc+0xf6/0x720 [ 392.750013] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 392.750023] block_read_full_page+0x7a2/0x960 [ 392.750034] ? set_init_blocksize+0x220/0x220 [ 392.750046] ? __bread_gfp+0x290/0x290 [ 392.750058] ? add_to_page_cache_lru+0x159/0x310 [ 392.750068] ? add_to_page_cache_locked+0x40/0x40 [ 392.750078] blkdev_readpage+0x1d/0x30 [ 392.750088] do_read_cache_page+0x671/0xfc0 [ 392.757717] ? blkdev_writepages+0xd0/0xd0 [ 392.757736] ? find_get_pages_contig+0xaa0/0xaa0 [ 392.757745] ? blkdev_get+0xb0/0x8e0 [ 392.757759] ? dput.part.0+0x170/0x750 [ 392.810546] ? bd_may_claim+0xd0/0xd0 [ 392.814355] ? path_put+0x50/0x70 [ 392.817823] ? lookup_bdev.part.0+0xe1/0x160 [ 392.822243] read_cache_page_gfp+0x6e/0x90 [ 392.826483] btrfs_read_disk_super+0xdd/0x440 [ 392.830988] btrfs_scan_one_device+0xc6/0x400 [ 392.835494] ? device_list_add+0x8d0/0x8d0 [ 392.839737] ? __free_pages+0x54/0x90 [ 392.843540] ? free_pages+0x46/0x50 [ 392.847174] btrfs_mount+0x2e3/0x2b28 [ 392.850979] ? lock_downgrade+0x6e0/0x6e0 [ 392.855132] ? find_held_lock+0x35/0x130 [ 392.859202] ? pcpu_alloc+0x3af/0x1050 [ 392.863098] ? btrfs_remount+0x11f0/0x11f0 [ 392.867342] ? rcu_read_lock_sched_held+0x110/0x130 [ 392.872364] ? __lockdep_init_map+0x10c/0x570 [ 392.876851] mount_fs+0x97/0x2a1 [ 392.880220] vfs_kern_mount.part.0+0x5e/0x3d0 [ 392.884721] ? find_held_lock+0x35/0x130 [ 392.888771] vfs_kern_mount+0x40/0x60 [ 392.892735] btrfs_mount+0x3ce/0x2b28 [ 392.896534] ? lock_downgrade+0x6e0/0x6e0 [ 392.900709] ? find_held_lock+0x35/0x130 [ 392.904765] ? pcpu_alloc+0x3af/0x1050 [ 392.908649] ? btrfs_remount+0x11f0/0x11f0 [ 392.912873] ? rcu_read_lock_sched_held+0x110/0x130 [ 392.917889] ? __lockdep_init_map+0x10c/0x570 [ 392.922470] ? __lockdep_init_map+0x10c/0x570 [ 392.926977] mount_fs+0x97/0x2a1 [ 392.930341] vfs_kern_mount.part.0+0x5e/0x3d0 [ 392.934833] do_mount+0x417/0x27d0 [ 392.938367] ? copy_mount_options+0x5c/0x2f0 [ 392.942772] ? rcu_read_lock_sched_held+0x110/0x130 [ 392.947950] ? copy_mount_string+0x40/0x40 [ 392.952207] ? copy_mount_options+0x1fe/0x2f0 [ 392.956697] SyS_mount+0xab/0x120 [ 392.960164] ? copy_mnt_ns+0x8c0/0x8c0 [ 392.964144] do_syscall_64+0x1e8/0x640 [ 392.968034] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 392.972866] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 392.978040] RIP: 0033:0x45c47a [ 392.981216] RSP: 002b:00007f617e384a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 392.988930] RAX: ffffffffffffffda RBX: 00007f617e384b40 RCX: 000000000045c47a [ 392.996181] RDX: 00007f617e384ae0 RSI: 0000000020000140 RDI: 00007f617e384b00 [ 393.003443] RBP: 0000000000000001 R08: 00007f617e384b40 R09: 00007f617e384ae0 [ 393.010714] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000004 05:29:58 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, 0x0) prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x802102001ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = gettid() r2 = epoll_create(0x3) epoll_pwait(r2, &(0x7f0000000340)=[{}], 0x1, 0x7fff, &(0x7f0000000380), 0x8) ptrace$setopts(0x4206, r1, 0x0, 0x0) tkill(r1, 0x38) 05:29:58 executing program 2: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = fcntl$dupfd(r0, 0x0, 0xffffffffffffffff) getsockopt$EBT_SO_GET_INIT_INFO(r1, 0x0, 0x82, &(0x7f0000000180)={'broute\x00'}, &(0x7f0000000240)=0x50) ioctl$TIOCSCTTY(r1, 0x540e, 0xffffffff) getsockopt$sock_cred(r1, 0x1, 0x11, 0x0, &(0x7f0000000640)) r2 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000500)='TIPCv2\x00') sendmsg$TIPC_NL_NAME_TABLE_GET(r1, &(0x7f0000000600)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x80020000}, 0xc, &(0x7f00000005c0)={&(0x7f0000000540)={0x74, r2, 0x100, 0x70bd26, 0x25dfdbfc, {}, [@TIPC_NLA_MON={0x24, 0x9, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x3}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x1000}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x9}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0xffffffff}]}, @TIPC_NLA_NODE={0x24, 0x6, [@TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x8}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x10001}, @TIPC_NLA_NODE_UP={0x4}]}, @TIPC_NLA_SOCK={0x18, 0x2, [@TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x7}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x8}]}]}, 0x74}, 0x1, 0x0, 0x0, 0x10850}, 0x4) syz_open_dev$sndseq(&(0x7f00000000c0)='/dev/snd/seq\x00', 0x0, 0x88102) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = socket$alg(0x26, 0x5, 0x0) r5 = syz_open_dev$usbmon(&(0x7f0000000140)='/dev/usbmon#\x00', 0x1ff, 0x88000) fsetxattr$trusted_overlay_upper(r5, &(0x7f0000000180)='trusted.overlay.upper\x00', &(0x7f0000000280)=ANY=[@ANYBLOB="00fbe40401fb795377718e1cea23c4ddfdb1359a2f0d55b88adba90bcd84fd69409c27de9da10680ae244779a2cef0b6a17e45e5378a4dff2f70778ce13038952cb93ab0c0ce6deb35e57788685c52c0884daef043d6392fddf8e08c1234efa62cb01a3df29eeb96db9debc285787a433e46f2fa7e609acd41297456a063e645898f0ad6efea22f0f180b548662c834efea33c884e13ceced766b5a08adecb2612a6c3342e80bf8f8a26bfebaea317ddad44848475d9fdf0b45420074194aa8dca89008d742d3560f6c800"/215], 0xe4, 0x5) bind$alg(r4, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'ghash-generic\x00'}, 0x58) r6 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x4, 0x4182) r7 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) pwritev(r7, &(0x7f0000000340)=[{&(0x7f0000000140)='!', 0x1}], 0x1, 0x81805) r8 = dup2(r7, r7) ioctl$SG_GET_RESERVED_SIZE(r7, 0x2272, 0x0) ioctl$LOOP_CHANGE_FD(r6, 0x4c00, r7) write$P9_RLERRORu(r8, &(0x7f00000003c0)=ANY=[@ANYBLOB="1400000007650d6c24ed92c8397291335cf616f0010200070062726f0c62077600b365a0a59e7eea"], 0x28) getsockopt$sock_cred(r8, 0x1, 0x11, 0x0, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(r5, 0x29, 0x23, &(0x7f0000000400)={{{@in=@remote, @in6=@initdev}}, {{@in=@empty}, 0x0, @in6=@ipv4}}, &(0x7f00000008c0)=0xffffffffffffffc1) sendfile(r8, r6, 0x0, 0x2400003e) ioctl$UI_DEV_DESTROY(r8, 0x5502) setsockopt$ALG_SET_KEY(r4, 0x117, 0x1, 0x0, 0x0) setsockopt$inet_mtu(r5, 0x0, 0xa, &(0x7f00000001c0), 0x4) ioctl$sock_inet_SIOCSIFBRDADDR(r4, 0x891a, &(0x7f0000000100)={'ifb0\x00', {0x2, 0x4e23, @multicast2}}) [ 393.017968] R13: 00000000004c8b25 R14: 00000000004dfbc8 R15: 0000000000000003 05:29:58 executing program 1 (fault-call:0 fault-nth:73): syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000140)='./file0\x00', 0xff, 0x1, &(0x7f0000000000)=[{&(0x7f0000000180)="8da4363ac0ed0000000000000001004d0100000000000000000000000009000000000000009748aeb81e1b00920efd9a0000010000000000098cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 05:29:58 executing program 2: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(0xffffffffffffffff, 0x40a85323, &(0x7f0000000100)={{0x6, 0x2}, 'port0\x00', 0xc2, 0x10000, 0x7, 0x1ff, 0x3, 0x401, 0x7, 0x0, 0x4, 0x9}) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'ghash-generic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, 0x0, 0x0) ioctl$SIOCGSTAMPNS(r0, 0x8907, &(0x7f00000000c0)) 05:29:58 executing program 5: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000100)="e9cdb66f0d178d84a9ec3f71ea500305986168037ddb1dbe5b8baa7aa56ff687fb28aac2160ec9f834919facbca17105ccaa11f12291e1dbb87eb84aa258378627a42ee9d6c84b369f4b98b42a65a7b8b82478d78a7324561dc557998df3c9666cb4844abd5f3abd59140d8f89fb70e59a5b2d0db505545c6c57c9b9b62fab0d5e505047a733a2ddf8c5fabcb157f676abff48abc170fe6f1f1b4192922f08f8a1fc152cfdf190fd1e3c23b72bb8c4f25ad94ec47031810b8c16a8a0bd585d8b", 0xc0, 0x7}], 0x2028000, 0x0) r0 = syz_open_dev$vcsa(&(0x7f0000000300)='/dev/vcsa#\x00', 0x80000001, 0x20000) getsockopt$inet6_IPV6_IPSEC_POLICY(r0, 0x29, 0x22, 0x0, &(0x7f0000000780)) ioctl$VIDIOC_S_EXT_CTRLS(r0, 0xc0205648, &(0x7f0000000200)={0xa20000, 0x5, 0x8, [], &(0x7f00000001c0)={0x1321938, 0x8, [], @string=&(0x7f0000000080)=0x5}}) [ 393.225572] FAULT_INJECTION: forcing a failure. [ 393.225572] name failslab, interval 1, probability 0, space 0, times 0 [ 393.239392] CPU: 1 PID: 25437 Comm: syz-executor.1 Not tainted 4.14.146 #0 [ 393.246432] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 393.255789] Call Trace: [ 393.258385] dump_stack+0x138/0x197 [ 393.262028] should_fail.cold+0x10f/0x159 [ 393.266183] ? __lock_is_held+0xb6/0x140 [ 393.270260] ? mempool_free+0x1d0/0x1d0 05:29:59 executing program 2: r0 = openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0xe2a02, 0x0) readlinkat(r0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)=""/143, 0x8f) syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x4, 0x4182) r3 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) pwritev(r3, &(0x7f0000000340)=[{&(0x7f0000000140)='!', 0x1}], 0x1, 0x81805) r4 = dup2(r3, r3) ioctl$SG_GET_RESERVED_SIZE(r3, 0x2272, 0x0) ioctl$LOOP_CHANGE_FD(r2, 0x4c00, r3) write$P9_RLERRORu(r4, &(0x7f00000003c0)=ANY=[@ANYBLOB="140000000c650d6c24ed92c8397291335cf616f0010200070062726f0c62077600b365a0a59e7e00"], 0x28) getsockopt$sock_cred(r4, 0x1, 0x11, 0x0, 0x0) r5 = syz_open_dev$vcsa(&(0x7f0000000300)='/dev/vcsa#\x00', 0x80000001, 0x20000) getsockopt$inet6_IPV6_IPSEC_POLICY(r5, 0x29, 0x22, 0x0, &(0x7f0000000780)) getsockopt$inet6_IPV6_XFRM_POLICY(r5, 0x29, 0x23, &(0x7f0000000640)={{{@in=@remote, @in6=@initdev}}, {{@in=@empty}, 0x0, @in6=@ipv4}}, &(0x7f0000000500)=0xe8) sendfile(r4, r2, 0x0, 0x2400003e) getsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(r0, 0x84, 0x75, &(0x7f0000000280)={0x0, 0x6}, &(0x7f00000002c0)=0x8) getsockopt$inet_sctp_SCTP_GET_PEER_ADDR_INFO(r4, 0x84, 0xf, &(0x7f0000000300)={r6, @in6={{0xa, 0x4e20, 0x2, @mcast1, 0xfffffff8}}, 0x9, 0x9, 0x9, 0x3, 0xea}, &(0x7f00000003c0)=0x98) [ 393.274242] should_failslab+0xdb/0x130 [ 393.278315] kmem_cache_alloc+0x47/0x780 [ 393.282381] ? mempool_free+0x1d0/0x1d0 [ 393.286364] mempool_alloc_slab+0x47/0x60 [ 393.290510] mempool_alloc+0x138/0x300 [ 393.290525] ? remove_element.isra.0+0x1b0/0x1b0 [ 393.290537] ? find_held_lock+0x35/0x130 [ 393.303236] ? create_empty_buffers+0x2d3/0x480 [ 393.307913] ? save_trace+0x290/0x290 [ 393.307933] bio_alloc_bioset+0x368/0x680 [ 393.307948] ? bvec_alloc+0x2e0/0x2e0 [ 393.307965] submit_bh_wbc+0xf6/0x720 [ 393.307976] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 393.307989] block_read_full_page+0x7a2/0x960 [ 393.328922] ? set_init_blocksize+0x220/0x220 [ 393.328938] ? __bread_gfp+0x290/0x290 [ 393.328953] ? add_to_page_cache_lru+0x159/0x310 [ 393.347405] ? add_to_page_cache_locked+0x40/0x40 [ 393.347420] blkdev_readpage+0x1d/0x30 [ 393.347431] do_read_cache_page+0x671/0xfc0 [ 393.347441] ? blkdev_writepages+0xd0/0xd0 [ 393.347458] ? find_get_pages_contig+0xaa0/0xaa0 [ 393.347469] ? blkdev_get+0xb0/0x8e0 05:29:59 executing program 4: r0 = syz_open_dev$sndmidi(&(0x7f0000000180)='/dev/snd/midiC#D#\x00', 0x2, 0x0) read(r0, 0x0, 0x2fc) r1 = openat$ashmem(0xffffffffffffff9c, 0x0, 0x0, 0x0) r2 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x2, 0x0) dup2(r1, r2) [ 393.373153] ? dput.part.0+0x170/0x750 [ 393.377051] ? bd_may_claim+0xd0/0xd0 [ 393.380860] ? path_put+0x50/0x70 [ 393.384320] ? lookup_bdev.part.0+0xe1/0x160 [ 393.388735] read_cache_page_gfp+0x6e/0x90 [ 393.394546] btrfs_read_disk_super+0xdd/0x440 [ 393.399055] btrfs_scan_one_device+0xc6/0x400 [ 393.403574] ? device_list_add+0x8d0/0x8d0 [ 393.407812] ? __free_pages+0x54/0x90 [ 393.411635] ? free_pages+0x46/0x50 [ 393.415271] btrfs_mount+0x2e3/0x2b28 [ 393.419065] ? lock_downgrade+0x6e0/0x6e0 [ 393.423310] ? find_held_lock+0x35/0x130 [ 393.427370] ? pcpu_alloc+0x3af/0x1050 [ 393.431261] ? btrfs_remount+0x11f0/0x11f0 [ 393.435500] ? rcu_read_lock_sched_held+0x110/0x130 [ 393.440516] ? __lockdep_init_map+0x10c/0x570 [ 393.445014] mount_fs+0x97/0x2a1 [ 393.448369] vfs_kern_mount.part.0+0x5e/0x3d0 [ 393.452864] ? find_held_lock+0x35/0x130 [ 393.457027] vfs_kern_mount+0x40/0x60 [ 393.460819] btrfs_mount+0x3ce/0x2b28 [ 393.464606] ? lock_downgrade+0x6e0/0x6e0 [ 393.468795] ? find_held_lock+0x35/0x130 [ 393.472850] ? pcpu_alloc+0x3af/0x1050 [ 393.476734] ? btrfs_remount+0x11f0/0x11f0 [ 393.480958] ? rcu_read_lock_sched_held+0x110/0x130 [ 393.485978] ? __lockdep_init_map+0x10c/0x570 [ 393.490454] ? __lockdep_init_map+0x10c/0x570 [ 393.494940] mount_fs+0x97/0x2a1 [ 393.498297] vfs_kern_mount.part.0+0x5e/0x3d0 [ 393.502778] do_mount+0x417/0x27d0 [ 393.506306] ? copy_mount_options+0x5c/0x2f0 [ 393.510712] ? rcu_read_lock_sched_held+0x110/0x130 [ 393.515709] ? copy_mount_string+0x40/0x40 [ 393.520151] ? copy_mount_options+0x1fe/0x2f0 [ 393.524637] SyS_mount+0xab/0x120 [ 393.528076] ? copy_mnt_ns+0x8c0/0x8c0 [ 393.532014] do_syscall_64+0x1e8/0x640 [ 393.535889] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 393.540730] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 393.546170] RIP: 0033:0x45c47a [ 393.549340] RSP: 002b:00007f617e384a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 393.557029] RAX: ffffffffffffffda RBX: 00007f617e384b40 RCX: 000000000045c47a [ 393.564288] RDX: 00007f617e384ae0 RSI: 0000000020000140 RDI: 00007f617e384b00 [ 393.571538] RBP: 0000000000000001 R08: 00007f617e384b40 R09: 00007f617e384ae0 [ 393.578792] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000004 [ 393.586089] R13: 00000000004c8b25 R14: 00000000004dfbc8 R15: 0000000000000003 05:29:59 executing program 3: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x4, 0x4182) r1 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) pwritev(r1, &(0x7f0000000340)=[{&(0x7f0000000140)='!', 0x1}], 0x1, 0x81805) r2 = dup2(r1, r1) ioctl$SG_GET_RESERVED_SIZE(r1, 0x2272, 0x0) ioctl$LOOP_CHANGE_FD(r0, 0x4c00, r1) write$P9_RLERRORu(r2, &(0x7f00000003c0)=ANY=[@ANYBLOB="1400000007650d6c24ed92c8397291335cf616f0010200070062726f0c62077600b365a0a59e7eea"], 0x28) getsockopt$sock_cred(r2, 0x1, 0x11, 0x0, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f00000007c0)={{{@in=@remote, @in6=@initdev}}, {{@in=@empty}, 0x0, @in6=@ipv4}}, &(0x7f00000008c0)=0xe8) sendfile(r2, r0, 0x0, 0x2400003e) ioctl$EVIOCRMFF(r2, 0x40044581, &(0x7f00000000c0)) 05:29:59 executing program 5: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = socket$key(0xf, 0x3, 0x2) sendmsg$sock(r0, &(0x7f00000006c0)={&(0x7f00000000c0)=@alg={0x26, 'aead\x00', 0x0, 0x0, 'aegis128l-generic\x00'}, 0x80, &(0x7f00000005c0)=[{&(0x7f0000000140)="92340bed79f078cd397f5413b5b498a738d091f9134ec30cf9a67347acaaf052639bc1dbc4503492f7e71100960242d91325256ab500b8555e8490da0937d5447cb6104913aedd1db4ddf1475e45fe82a6bdc06ee149c7b445eb5d12f692d1e0b32e81554625a3e8c79af804c4345ecc0bc93f6ee34d3de5b532ce36d91f39a3a4b9dd000e80f9208189144cd725405c2a61b34be8986d917209", 0x9a}, {&(0x7f0000000280)="ca091ee5eb3041288b26fcd1ad1e2bb344d0bc2237412a0464bc2e545e1bd98262a3e79cd684160dd89c67d9dbb26b9bae89a186c4d9f86093d4d6ea7ec11b5f1c626ddc7eb72d4237909dd9287bbd0f1cabc9dfe8f3c76b414512d3201b12cb3d5ddb721f50df54fdca9d16004044fa2a6bc85c79220e378fd7f22b9e561464317f545bab362c9435d413e6d1187741a1127de8d330099571792b6c0772c13e8493723efc8327e5f8729eb8ffd9f0d295dfac5d9808cccc", 0xb8}, {&(0x7f0000000340)="b6855f05c147d66dc181b73e1deb3aceeb3e3cffc8e92654a4116a691724939fa27a5c0c463bf585dd55bdfdd4223f801566d3546df1457b321af57c5906312c6fac61251b9dfe36d201503cfc5c5dd5c0a37c2abfef3e58b720ead64624f5231e4fff637f9291cb961351860e7b113db60a3d9a75d0d6b9f8165d5abd1074390746f0413366279ff850098668e8a3ff473e22c48b84e83786144f4b2a50b5e761e8f1cc0cbabd544597f8fdabf4139f388113eb69f09ba45318075d786b07074dc7384e77e8ea82a0f824acc538601d4274bec397360b47b06224fe52311c8d684dd10e9e4fa830620fb004d43628da096797cc6bec", 0xf6}, {&(0x7f0000000440)="39292b7fac12d7c7c62f2bd8c62f72e1698682bc4501ac760a9814b959ef0f3d537bcb8ce0f833755f85e8a9b83b8aef65ec2fb94bb68a87b47af20e881408aa02bf73fd8c789d05a641dd8c4235c2324364082b3723e50960f3c06b1a1fa4f4936f3186c310a3c01db573bd90cff286397530fbe90dbdbd1653c497de5e9d94d58234d34c60c66f854117baae747b72d6176bdab730f6c31b92c86773c25201ab9cf21fd57a15091627db8e95a2ce23b75678d6504c86957f13a510dc76df8b87c2", 0xc2}, {&(0x7f0000000540)="2368fd545a964d0cd7377bd82f143614d2e1e30032d4fc0189704779f0843f9a0e4b9b04901ee0f9a3e8c5688f6736e3cff6b6e40be12a4919871955d71c451949fbfa247a630ac9c83f0b13187e294a4a28d7080a2956438f8cec0378be1193372c4acc1ffc45", 0x67}], 0x5, &(0x7f0000000640)=[@mark={{0x14, 0x1, 0x24, 0xfff}}, @timestamping={{0x14, 0x1, 0x25, 0xfff}}, @mark={{0x14, 0x1, 0x24, 0x4}}], 0x48}, 0x20000004) 05:29:59 executing program 2: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) 05:29:59 executing program 2: r0 = syz_open_dev$vcsa(&(0x7f0000000300)='/dev/vcsa#\x00', 0x80000001, 0x20000) getsockopt$inet6_IPV6_IPSEC_POLICY(r0, 0x29, 0x22, 0x0, &(0x7f0000000780)) getsockopt$inet6_dccp_int(r0, 0x21, 0xb, &(0x7f0000000100), &(0x7f0000000140)=0x4) syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) 05:29:59 executing program 1 (fault-call:0 fault-nth:74): syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000140)='./file0\x00', 0xff, 0x1, &(0x7f0000000000)=[{&(0x7f0000000180)="8da4363ac0ed0000000000000001004d0100000000000000000000000009000000000000009748aeb81e1b00920efd9a0000010000000000098cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 393.995323] FAULT_INJECTION: forcing a failure. [ 393.995323] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 394.007171] CPU: 0 PID: 25486 Comm: syz-executor.1 Not tainted 4.14.146 #0 [ 394.014185] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 394.014191] Call Trace: [ 394.014210] dump_stack+0x138/0x197 [ 394.014229] should_fail.cold+0x10f/0x159 [ 394.033939] __alloc_pages_nodemask+0x1d6/0x7a0 [ 394.038622] ? fs_reclaim_acquire+0x20/0x20 [ 394.042948] ? __alloc_pages_slowpath+0x2930/0x2930 [ 394.042971] cache_grow_begin+0x80/0x400 [ 394.042984] kmem_cache_alloc_node_trace+0x697/0x770 [ 394.057142] ? mutex_unlock+0xd/0x10 [ 394.060867] ? btrfs_scan_one_device+0xeb/0x400 [ 394.065638] __kmalloc_node+0x3d/0x80 [ 394.069462] kvmalloc_node+0x93/0xe0 [ 394.073184] btrfs_mount+0xf88/0x2b28 [ 394.076986] ? lock_downgrade+0x6e0/0x6e0 [ 394.081132] ? find_held_lock+0x35/0x130 [ 394.081143] ? pcpu_alloc+0x3af/0x1050 [ 394.081160] ? btrfs_remount+0x11f0/0x11f0 [ 394.081174] ? rcu_read_lock_sched_held+0x110/0x130 [ 394.081191] ? __lockdep_init_map+0x10c/0x570 [ 394.081207] mount_fs+0x97/0x2a1 [ 394.089128] vfs_kern_mount.part.0+0x5e/0x3d0 [ 394.089142] vfs_kern_mount+0x40/0x60 [ 394.089157] btrfs_mount+0x3ce/0x2b28 [ 394.089166] ? lock_downgrade+0x6e0/0x6e0 [ 394.089173] ? find_held_lock+0x35/0x130 [ 394.089182] ? pcpu_alloc+0x3af/0x1050 [ 394.130335] ? btrfs_remount+0x11f0/0x11f0 [ 394.134570] ? rcu_read_lock_sched_held+0x110/0x130 [ 394.139586] ? __lockdep_init_map+0x10c/0x570 [ 394.144068] ? __lockdep_init_map+0x10c/0x570 [ 394.148550] mount_fs+0x97/0x2a1 [ 394.151920] vfs_kern_mount.part.0+0x5e/0x3d0 [ 394.156582] do_mount+0x417/0x27d0 [ 394.160124] ? copy_mount_options+0x5c/0x2f0 [ 394.164536] ? rcu_read_lock_sched_held+0x110/0x130 [ 394.169614] ? copy_mount_string+0x40/0x40 [ 394.173861] ? copy_mount_options+0x1fe/0x2f0 [ 394.178355] SyS_mount+0xab/0x120 [ 394.181794] ? copy_mnt_ns+0x8c0/0x8c0 [ 394.185678] do_syscall_64+0x1e8/0x640 [ 394.189553] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 394.195180] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 394.200369] RIP: 0033:0x45c47a [ 394.203542] RSP: 002b:00007f617e384a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 394.211244] RAX: ffffffffffffffda RBX: 00007f617e384b40 RCX: 000000000045c47a [ 394.218512] RDX: 00007f617e384ae0 RSI: 0000000020000140 RDI: 00007f617e384b00 [ 394.225863] RBP: 0000000000000001 R08: 00007f617e384b40 R09: 00007f617e384ae0 [ 394.233129] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000004 [ 394.240484] R13: 00000000004c8b25 R14: 00000000004dfbc8 R15: 0000000000000003 05:30:01 executing program 5: stat(&(0x7f0000002740)='./file0\x00', &(0x7f00000024c0)={0x0, 0x0, 0x0, 0x0, 0x0}) r1 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000000)={0x0, 0x0}, &(0x7f0000000040)=0xc) keyctl$get_persistent(0x7, r2, 0x0) lstat(&(0x7f0000002540)='./file0\x00', &(0x7f0000002580)={0x0, 0x0, 0x0, 0x0, 0x0}) r4 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$sock_cred(r4, 0x1, 0x11, &(0x7f0000000000)={0x0, 0x0}, &(0x7f0000000040)=0xc) r6 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x4, 0x4182) r7 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) r8 = openat$selinux_mls(0xffffffffffffff9c, &(0x7f0000002700)='/selinux/mls\x00', 0x0, 0x0) getsockopt$inet_sctp_SCTP_GET_ASSOC_NUMBER(r8, 0x84, 0x1c, &(0x7f0000002780), &(0x7f00000027c0)=0x4) pwritev(r7, &(0x7f0000000340)=[{&(0x7f0000000140)='!', 0x1}], 0x1, 0x81805) r9 = dup2(r7, r7) ioctl$SG_GET_RESERVED_SIZE(r7, 0x2272, 0x0) ioctl$LOOP_CHANGE_FD(r6, 0x4c00, r7) write$P9_RLERRORu(r9, &(0x7f00000003c0)=ANY=[@ANYBLOB="1400000007650d6c24ed92c8397291335cf616f0010200070062726f0c62077600b365a0a59e7eea"], 0x28) getsockopt$sock_cred(r9, 0x1, 0x11, 0x0, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(r9, 0x29, 0x23, &(0x7f00000007c0)={{{@in=@remote, @in6=@initdev}}, {{@in=@empty}, 0x0, @in6=@ipv4}}, &(0x7f00000008c0)=0xe8) sendfile(r9, r6, 0x0, 0x2400003e) r10 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r10, 0x84, 0x6e, &(0x7f0000961fe4)=[@in={0x2, 0x0, @dev}], 0x10) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r10, 0x84, 0x1d, &(0x7f00000001c0)={0x1, [0x0]}, &(0x7f00000000c0)=0xfe10) getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r10, 0x84, 0x66, &(0x7f0000000040)={r11}, &(0x7f0000000140)=0x8) setsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(r9, 0x84, 0x18, &(0x7f00000001c0)={r11, 0x1}, 0x8) keyctl$get_persistent(0x7, r5, 0x0) syz_mount_image$iso9660(&(0x7f00000000c0)='iso9660\x00', &(0x7f0000000100)='./file1\x00', 0x7, 0x5, &(0x7f0000002440)=[{&(0x7f0000000280)="5a3b10313b9d2dd96a6966b4074188e026acd18c1dc092fce1fd1d7d5de4e57403f1a38d558e88af371a229aff8d633cf251d2565712cd762d43daae08002aa796675270710ce3a0a22441ae6565aa955351e8984e7dab3ab98641e6cbcded5aee0d8d9c9dcb746ad694e29337a2a70df3dc0dd07773a4da723beed06724c6d04ed832ec24ab4ed927d442663a23a081c05000596de39a568abec81ca2c9312afc15b3bab7ebca30dea8b0179be79e5e1e1153821158b8817d0e0fe453a66d1c58137190ea315298f01056821140c52f8410b03ef672b179a00990b633517f5facdf73d2401cee5d2cd69b741633ed98340e2343b8ca0e808a2ac6e1a6458dbe8c2f59a9517e47f2f7cd0a6fdaa1ded0fde1bdcd763d4aa4e4037e1f0ef751c634a2775e6d15f4075b67e6c636996ed4d9f0215cd90b180f64b20d312314960e3eb1c4d0e3d0b0d31d6e2066f03ec25debfa707ea795f1ed0095e5acc9850a9e29c2826e5c5f206b586ef9ff779bbf7493643d8886aa8931812a587a72963f3ce27611e01cd839145fb352a97fdc9f38a666440da355a111f5ba9ca9dafd75a12d5d431f2ee7f9a36cb19a56b1449754e2538e890b04725faff24dc1f412c72ae5e10eb5e935c1b6d5d7a55df12bdde9f48728a7a5bc12359923e452849bb00ca97594efd905bd4c7e312770b0d73945c83c46a9b50f12a54137b8c6be2fbb06ee0b2b685c01c608a5048dd0aa6e8599d1a4ae83f49ca61ffa02f760b2692ecad4769fcf61ae6995700300c458bd410b3bb3b177bf62f4f995312e71836dbdccf34871c290512daa09da6b84d21f679b3c685630400e004db2b48392d2e0d21d98fb2cac1cd56f5c56664aedee5166314afb4fa02fee5b026975ec56e35c0fc36536f193170e5ac04ca4c55807d6d2328db5cd69f3ea4e67573a615ba9aa8336a0f9d6b61987f543363769020f8492c9f315f6929cd921b229ae9865239e9e856170ef2c557f6f48f4928684649b1fbb07f2b186288e0f34f2c4a80d81b7fb2cc126734c52f3963a0adb891e76241d715da9ce01d3735c470b464dca39e202365b7bf7fd957f3ff14df24f53ad5d8dda18418e3dc115824317b4e8e176188bddac423598b44634962f508409a17799b3da85b4964112280a9e00ba3415d81deeeaae85f294aec021d030a644a57005f1db168c2a8c9ed2b8d4cfbb11ca60ddf3cb9611a8ae8801f81bbd235d34b0b1cffe55c8a2e966795360d48658e440189ad3c159bdb623f6b6694f3c23ef5231e9b38693cb9e2f1ebf7259d5e86c9de510e35285b039a3bd6bd678a0529a6c076e3011777e4b0b74f6d91be332871a23bb8c758452f1bd45792023ad0f00e31232e99ff976d6deb1f0734d0cf81ba3d7023219d3ce5e62a36fe8456d27e921efa193063417a2f3058cf4a685631cecc64acea0c8fde9cc16c8f9a59dfe0fd037e589e905020107dfefe39ab34366758773bb27f6777282cb581abc12d90c54027f65d4eada54c77bcdba13a308a4518442286f758e9cff5fa63bc6716b0b4e1ee52b31583b02a753025989f664736077f3fd077fe82b52a777bc62a066804ff9af987919064455a7fbfa121ed5c7637b86469d24295052fbea576098df16254c534d8539191faa1d8be898c1bf90ad1e24322549241cccda2899dedea808d43821783a83c6bf3af16f1f590b73326c899f6a5dbd9353ba68ca5d2408d284ed4b6db6db16b3414dc0afef0d79906c10a67869db321085319ffd9538a513ceedd665b7ff82c6b8adcafba94aa017d26c57909b69bc4d9e98373cc35da894e8aeb5b960c43265d70a7e4077910bc19dad56995579155b817050d482691f17df85318e656dad1f0682b7bd1dc3c994910881c4a6d9213cceeb0185a84332192dc2c3e1ebf7714801f8466aec8890aa4d0e857961222fedbb4298a0f4a8dda4c1013b90358b4440fdae95be2ca544177f0b2da5f2cd11ce4c79ecd64c7f1bbf4d6016550bfb34663c785c99eb1195aeb733143701d377cec7dfccedbc8edc6630969ffa3bbe4fd6c2ee84aff755efa808e5c804b78ae3324ec0330c2c43b74023e43c87f533ffa6f9cd0ec89fe47ced139c871f2f1098ccd637042aff2b3069e29df95afffca7d140a3f012576a2112b1b3feb9b83cb0bc697519a073499c3a83d9db88a112e80759128e1158a79030ae0b6a412fe41724231d849f6324a10ca5b0e040384eefec393261c4218e623abbb78763a7383b0c81a9f19f028aebb3b580aa14cadaf1c330d377f62c2da74e05f40d9182b4f55a1418c13f108a869f7b84f30f63672430f59a317c3ba8ec431a4974f6b72b03b7c3c906b07b3e7f516b818b927adca86696c846a6eaef88c011d2a23fc48089d0659b1f98605d7ca0fdd6183f685a0e79751ae12577b2f350c6a78a9c01baa67a286a66411297bb70f70295607dd1902787f6bc2d1f4a187ea39e6a82251a5d50f9f5b8652938c393125ff0d5a46929b877f3c3ecc2c0eac11701c22b7f4821c39d1acc89f035132ae6ead577f43b036ff65ae539fa7fbccfa70c7946e55ea63bc2c1ddec35607a141dfa79211d46975872e3cc73acddb50e1c4b28491b6b5e741ed830f6fcc6a23128911d3f632afef4ba4ca49ae9a3a2bd200d11457e86288f5c680f3b53d5c28ffdbbae6d56b51acd65925838d11b4c234dd11d498878c2a5a1456eb3e65ac0ccc94bd8d964654b0a397a86237445d21059ed45316c9b197651974eefea1d09b683d4b38e3735c88ac9ab050b20f107caaf824f7a619747c9bb0ebbd6ce5457b5510237bf2845faa428be2892e756ae3b7b25a8872e8ea0dda174cc08ad3b0966deb9f4757d598099c9558fa377bee67bc62796f1a91c37f19843e1807b9e261b57b6fbfde9ce1ee4b222cac3dee0dd1c0faeee8d02d76e52302967117cb1bfe0b3e3936f79e505a009d1897cd0b24e8db1a519a831b6126e90760dcb9edd4798ab15a52846c23d9f180eeb87611ed953e5274bd57c13e6686ad3ec18e486de2596fc96b258668e81a2eb7968e2e305719b67fdde526dd93deae931bb5d7227f1d32e1156977865fbd80309904248957c8351af7f12a071cdb42a1989ae5ff888910402100c5d5f494ac98d7a1d916b0faa906636422c90dda28beb1696a791834fa391b2e185c83d64ed8af67ebb9771ffc5f9efeb2cfdbd6d2f6fa4d166a71abd07b82264d6f436a5e71ab7f835fb1b3881f8b9f6062ae534e8eeef00f45fe351df66fe4cb895ac0b7a6958326fefedc3e153fcb78f49474e1963dd5b9a50d51ea40f6b5e93fff548ec57865c9530627f1e65b989d736fe95c137b3b4944560eca17bbe115b6e89625463d08c899e5e996e4025706786dabae498dbbc7448c03dba9e40117f82ddc34f0ce797a156853110427c11fea251427fd7afc85cf8236c14891a24e9c64c21b75dde981280443dfc772dc2f6ed83d409fa0657e479bd0ea19012aa11942b1959c5032d501c1896a34a809635edbbb25a04e150e02169ca58febdeb5df9f56ffac3bc31e2cbdf546cec1a2ba32b6a83d3a171503f8760bdd79f5d5436363638f453e3e9a4770108023924be7d4d46cef3d704d401eb7fefec0f2feebf91f4913af40ee008be0e66a05ac796948251bbc65037ac8a2540effba17c42b234720676ab4a330ad5ccfac72c3df9ff70a16915f504c166fb0f1c7393e3120970ff542465ae719b0f0c87829324da494c06cd43d4df6fb2a5f514956b29f38f4c39fd84a877bc9a90586e2b47a0187fd2b3072a61889956820a68c57fbc62169eab22ccfca86117e9a9c986bdbbd0365856c22e83fcbbe0aa2c59e324beefff950692bf905b2530385fe459760c25917affff0671aa890b76b3142d55a2e725b68fa72cc2e7c55651bcd0c737502ac59ae4dea1b6212f59d39f0d66c38393919f046d8d63e3b9e6bb0bb26d56b2fdc503eb61517e0242e12c09050a1245811ec797105c6ef4964011950f5522525c7e9c347f7c508ab5728b0db1f7533b4d5ed1e73e46bdcff344fc2406e8ea8ca83f70a1a1761a7cb1db2493d4b2ea9013ee35158884ccee39bd813490142c8aea3defa5e7421466a3d07e60ebee81dfdd70f65881369c074e5ea068d7689223b93dd79a52606104120d6faffd7d96a63318751a9f5fb1be1dc9b90128ce7e09939815346d5a7fb13ca777d54a4444cf163ec0baab26fe0f86593e449a9a08952676da4feb2b9b4dd06ef07519839a888ca86e3d4e0ced094bdf90a8c457a967a18976f90f7edb8b43bd7abdd15ae25b39f111bb9b3c804f33b09e109b8593867a8014730d6794bac833a3c9ac427f01c491f11c442655ab535ffac3ac4f8aa97a6fd979f2153dbed4b7a9dbee0d120eaf56740c2f4339826c8151e07a9e127fde78c954bae0b70e0e7aa5b9fba5453ec2df76a895f559042128dd2c950dd7a80e603503096089a0f0253d7121a0441b497c3180dfdb51f56e61dfe40145b518735fc1b11fd16e4991749e906378e4d4d5edafde11fdab950ee8d96a762abb90a5a3b9df309564732419d8d575bcb1911203976959d208f04c4bb3ff58dd691e1863458dfe7f056dc22b4f53d906c4fc2572afd7d494a257e760c75fa16123b2075e5b7668b0958660ceeaf86d43130b7e403599c50c263da22c6743438e15b2919148d4ea1f383b2fdddcf7f3c04383851086a6339ec3b9eb00928823234ea5923e90f123b6d1deb6c9130ff002f272ce31fe81a5b4fc031426747aa3265d3dd34a3a52aee56469dc40205e473e21a5107e7d37e11ec370f4c986572752584304c6cad7fa14f79ce64d32e237a85359c6d5f8456077551fe101bb4cc644f2a09ae6b0b1fd30660767fa6f91dc55810376454600f7dca1618e8d98a5784e058d14468f51542c7a5c70337bad1d60bace7fdbb94263fd849d31a64e69eaa2469ccf01a87fab6d38abc1caac9feedabd468e0ebcc7c49a8654cc639426bb6b297d39fc0c01383698b5645710c5dd380857cb7c79fbd61a6eb35019cf12c7ec4ca6a39374a2f344bd63e41a02b188885e2cf1524cf3fae92fbe956d217791fb5569fa606072d1ceeb9328db76ac0cbdacdb4e017bdffd10bf1dbe4771d766996994fb452a0eff814040c18ee445d48581972fe506d68f2e3597197a50bbe3dbc49c2524f18a9e75d98ba498933399a7531cd4f6e30ffe4fbf4bfce010de32c152cdc8a04fea5b9e3629d78addaa5ad952a2f60ef2e0f437b3d388b9dbea2feed4607c409901e0aeeaafdc3347944abe8dc76d8aee2547ae309b854d6011bbf409c92fb4dfc2a2ed9e74c36e176f0a2ebd90180081885afc63a70da1afaee5a3f230a650bfdb9833e418c86af3f79fa03fff6be8da1dffe3cba69d3ec186ef98c8aefb845caa913a8d93cc29ef45ce797d5faa3bfccd75fc3509ae981a5b8ff2a6768f37e04a73ff57f1eae4c1fb7e55f87adca93734067426d3f4ef3a170d3070b339a977e49092971feba840df1b79a5e7d431deef1a26bee36d28d228d4e937132977b9f0f5c76a6475f672447c275e4aacaccb2529622fc48b3720b657e84ce65a65e706c5cf2e76140fef01e0253420ffc721f59f57a14a504b0480d0b81726ec3161a0c658a08f13a81722285194e4def9777b1fa31fde79628a6fe6a301918e3761e8393f4a16e9b83097b90e4ed09e28fa3f39f70d7f757ebbdeb3fccf5876c9b27fb9c104caa27d328c0366a76976ec50b7b8399473a6610f6c46a42d54", 0x1000, 0x1000}, {&(0x7f0000001280)="18ecdee7aa674889b4c7bfa715d8bf3a1a92d9e715154c6153baa83baea7f6d45b3708364c3835854cfea4e5f95323557e0b7d66a7d33177e8ab706b9e298a2a05b5174f16873b30b3a54dfeff45e739bbbb07cb6720487a49d4d234d789a3fd70d95ab033152965756bb3da2585ffd2976e0340d29159aa0d1e9df315f6589f02e32d7403c39ae7d645e41784ecedbd86e6559a4ab92f6529d52176e09862d93591d8065150460bf308f0cffbf0ba0a6464fbfeedeeba09d08416f1f92fc3770c9624163abfd68872465f38f88a47f7fa9663590cdc1671ee", 0xd9, 0x5a}, {&(0x7f0000001380)="15b8059fc66768a9a6b66c948c847d67627bd8c723a90fee3065a3e970a6edf55a2bd36c9bde342081dd7a16c68a3929a7d3f17397fc697769ad45899b2d51899c07a4a52e4de3dc15a59e55b59883091dac297ddf85452796d7ca121c8e4876aa1da6a73f1a5206aa543644c7c9ec8ca4b018c483c08c5d37878c92121128008a8049c7cb84771749ce69e0383b17cb694c56a9a56045bfdeb231166fe39492ec59384c6d02e242251219e8eb48da19f15de4b7fd445fbad576aea4d796fd6501cf3f328d614419ef4835c3058aab5d66c23d6479bec4e4feb8396065b07ca8e0225c379a67d5f5ad7821bdbbfa98c3ed0d63201a3c6f780c2f666f9f56e6fb77888d2cdbde93e3b2ad7fba72300ed3f8ced02c8cf7c8096fff56fca7349ba090b40fbda51d208b0dd4848262d3315ddcfd2d65fbd2401d5ac02891ff7ebbd0e3b521c111bff7a8b161bac4ff19e8303d99d7fd1cf7ff6295d6a969f732cb0f0d845392f3cbd5fcdfd06c3db87d9eb5bc4f4bfaed3a5481502595731edfb6cb734e17604e37874c044c5f4bcc2ca402e7a09696281e3e2052f77660b494732002b6858c2ff15eeaa5d806556ceeef11f9942d6ac455ae53adc33ca413f0fdf26907e420e7b1eaacb9d5bc96de9251053169f088add735164dc6d2d8c07564060d99d867caef2a78be233d3833fd1e80e9b2b3b5e2a88673e9c26f7a5dbddec537f0d1fe08f081548f901b532c253d3c96c242bd9205b3b45a9345e194a7c1e6d94a1e17377f00b9d96bef10070b99969e7ea2c9c676a1377d070448f96f69557317bd04ed6d199f55534a6f88fa151e2aef91383200d24d8621829ece5242fee843399d6485a1a618016a35ed759a2d8be64b773c03ba066183badde3a673f9e090bbe6d9215bd65eca3b5cfd58095d9e65c1ae5db7aff1fa4ad6fb781eb6410a8c46c4e30bfa54c5f14d2bf8389e91cc2b3464117419f5c26fea23e4b4649a2f9f3b6c84175c58a7e308036e007ca1a282cb67e0740e21344567cea70793dc867a30bb0c24ee7fe5b7a70b14d841ce5364437ec710af082af03aad1cc78f0ada22ff20b8c5eaab8502ab5ac238d7cf221ca7cf4267ab57cb3e35f3e92a8b3f0bd5f4d01ed71ea3fd90564b6c400428a917af97d5fc63fe7112cb55c183b47ab9fbb63d309c6b4faf9fc4bf4391325663d637d7405de525cfbbc2e9c66ef58da7b71c6d16c6e485fa06dcf5cfdc263bccb86fc5952c8e10a56ffe126a89152be29aa3f1945d8fc8dbe6051cb014034ff70df5b6b9193eb596875b3adbb929ed13c026d36d54606052b40ed515614ef3dae18962bce36e8f2a6e5b445ec348ab1520be2830e770f9c62eaca3a0826920e97a9a28a7d999ac7e3c5726e224cbf0f0b9e3199f68c1136e949134fa4b097a7c1c1159d94b4441765b185c9f87f84384d9f0726f25fb54e13145a69c0bd8899f078cc4766618976ec1a7bf4abf2a40d6063c8f802d14652c87d413863b30bca8fc5ea1a753ee6c6acf6916c0d14712c2817e7987ff742221af4bfe52df049d2c6cb198e5b60f54111e19227c21566a4734d440c7c2b275b6ea0fef0f03aa8b4fe974af72ca7a3f1840e8719c91c3ff85ebcfa74595e6677c947f051e0320b4a98464696735940dcfdf2ffe8c1a6a7666b411e324d3b99308e1f6e435f0d753dca5f959d340a1e682d553dc2857603737147feee75d89869195a449baf8f1d3926197fa2beaedd17c800c8f49137b4ab0a561734a03aff877b998557fec816a55b16841d14f59bb5d448f0a53b18c1307c2e1f565d49f0a33c48710953d19c56fb83d02e6891bbdc3cc54295b00a50728da7410dbd2bfbf7b77c515bfc661ccc3a26e1d048f4f49aa94557b1a1917b637d9b76bc695d2d32411db7def019f9a760500468a36089f125b5d68c6e2eadfbf2c8d6a5dcf629557bd79db5a53f17886ef0317a7731a7db4ecdef9199b43b66144b99286916d78cf6e8b54b1a0b96c173482a5a4a993577a47ea4189d27dd9af5fc19506d38444ac939f738fbe71ce4d9e8c52400af9884fcacbbc522a7e7f0af912101fb8c59cec5eca22b94e922defa6da141b766e2ff58fa80ed3cf23d36e35532b58bbb2c9b8819cbca44d637258a65c1a8c88b8467fd3f4740ea8d9952b7c85d69631afac706c1aa46ba2a567f491249dd8d364c9798e09e5d4dde92ee52de06ee95682e1ec6f6ff5acc5218f82c2031cea747f3dfcd29ea73a8bb65186a6bc0e86c5a2bddd3cc950c7249494d2493391b60bd6492f3c6e7a05e84524736777706c858ae9d15801f9749f6b89e64cf103d17666d057ff7cc39b8494c77fc37e8444bbd8470488ff65354957ebb2bfe660e675fdd74738854c26f8b27bee95ae0aa518cbb507c5463c218d70aa4661f7a74c15279663c5b51b94e529b80221de5414f27fb0735fb9dac0fdb6cd697ea884db9af7deddd4cf67b37c4d1818bf4e20aa01ddeac37594c612f384cd58d29fba61ecc881a9e77f29d60fc4c9276a8980ee451cc12775b72964e6fbb53a24d6591638183282c34942fcccd9dc7b737f0cfb625af65f1dd8c3dec5b17b907d280c58d728ff61f8ffb909280fd234e3354d1f996cf6f795271d94bbf50c03efe78d5de08100016d461d0253379b56b33e98665516090eb64c03b81eadb4ddb1695ef987434eb526825cf91aa794645b5dccd69036e1481c143b8afd51576aede18213940583dc5a041a7e4dff8fc56a2badf6b94821e922b5754dc6932980eedc3940adb8de10642e0d1f0b6c30d7d3cb5576aeaa7e53dca1106f865eb0a8063986c72f70349c5159d37503b4171222112f154813c74c692981086ce9654d9b64f2c93e595832aeb71d9990cd332c1968a58de6317515485a0fe848dd1167b3bcca8ae7ce6b8cf2320a53e36506af4d35f611dcd404904ce502908ff9c98356889a8269915085072cac93029920b1e3a980c80ba0e080feb5a4076c9b677890fec2d5d8dfebcaeb0935c56d51218888c57dbf0d8cf16c1b12b1bfa8ba2c2c7b51176cca1f8f98179c21e1a14c93e1be1f52b47c6830be251b2e211ba92a566777474155ce32b3e6c44fc7414fd8fe26fc6848b551e2bfa5abcb3e13e1d2d9f8fbe1b8cd02775e579dbb5d93ea0791f85e48becb978a37125da2ac8a95537dc8d79cccdc7f017ed09f3d94044ddd74268a7e42a07675bc9bb68e1dcdef66d7f883f7a413205affd2b5507abbe8d7fbfca5090b95f3601d78ead8ab0a3b149424c0b4bab57c943bcb64eff41101e0334607d1bd0a9841cb45cdf2070ab1ce8458d1109008bab2d960b4987edea71188d176339b605455c61acd3f9f17cff1f3509d0a6d908d49c800278cb3cb35c2d10210ed08f299076181146e1cc1238c465ee1dcb5d73f0eb5b55d0e7e9985369fac874c7ac6c07fac71db7ae6931ddd1109cb782add7bca29bddf255631edde0d8cb597e1ae4cc5c8db03580bbc4d52c8e5b45a48cab6525005c3ae1f76af378617916137cfd7112eaa5b55d90b47c8b9fa5658cf02194db0b96e57bc541ff9afda95ad2d02bec71d930c2a3ae65bb8cb55a99d12472352cfc0b635db1d5db5d002a57ab0ed350a7db54703160ee469c6d735e5b7c37304c44c850ae4183a12e8607a37626534d070dcdbd37552c1a9e66ccccf002d3e3493241942f6bb21c3f19588e759a3cf061b03e1bc056743f5acedc43f71f5b886037d3767cf6d4bfb0b5bf52bf09f06a291230f0fd491dc9d768ecc9bd5d65d25f9938b685181c7d2d97b54f3b88adcd05b9ab8ee9e7762088c28460ab60c174686d91d6e7c80b3cec0ba8a9383cabdfcc8de61e691f298666e0c4f8b6fc19a16b1d111c9c55cded5db8d637368d4bb226d63b78256daa2dcb2d72ffe2c565e7028cacc3cf7269e2986d84d0bd43832d772cce89072667e76612721d703fb3472ade1e2d36b89bf5adfc7bef2536329e3f87b8cf548bcef36aecce45e47b36593611b70a49601157561251ff3b14e4daa1622ee3295796cb7dbbffc4613e166b2a1101970d7c33036cf71ea0e6f77a2fbd049b23610e522f9bb758d2cfb79fecfd9d1535b77ed3f3ef151f7cfd46555d6ffee55e3710b81e01fcc0fb0e06d33416ef5120421d57110e47d5f8aa66d17286bc686937203504c2aab8be5fb733db5300f3336cc4588ebda025be26a0a61dd605418bd864c71a61e5ec5f824101486fcf06b15b1c7b46a687ff9577d08c8fc97c5402d8be8e82434bd6a194aa7e370d8cb71351cdb1042883a24a9c4ecd50be10344b3d01403b033515077e84f025b9552f13fc160448b0217be02854fc1fd4db13aed90b8db873f932106bc09b57ae8bc29ab6bf8f4754e3f2d1b2d1ec4933ebd714aafdec9ce70b87deef5cb9bfe648579aa86b4731b92706d2948d2a88445ad3a5357337bfb8c790efc5592ca72bc867f8e536d9af3fc61f03e1a30837c8520d5696a5c5605152637ae93486a192284f839fbac1d694099037115143ea41d4ac98857e37e587cb04d60b7e4a1aa4d84097c4f94c642e2b292e489cb7a58b912cc389e103a35d89e42cdd72390655a98bbe82bd1487c011489b5972ab3a5a90c0040a68e652bf8351bce2ddb2ec290232e92af53bbc19f89b023a426783e0b90b910ac7ee49d6acf45dab5db335ce4ff72c13383e3c36abde5d342a64ccb3af63882315ac6b39851a22ec4206573cf5f7bff496e8eb715a30789da782c23dda03e7f850dd4a74d7e3d59728c8eed5d0afa68704e0750a7bdc4522628a30eca4c15ec11042ad542b34771257d4456652781a5dd168d5bc24a6b625f7f76c3ee487bc84b43a449bfe1bf37f280c4e598f5c46c6b7fd1b82b341ae9fce1f3803b10b78db36764f8293ce017537cc7dfb537bba14c87194ec966bfbcd75adf71f4ffbb1962718e82b86fdf8e5e889a532a0d6e4326dd4e2c87cf6e16332cf98f54b07b2cf3acb1684911c56a23cb6b229bbc102115189e49a958bfc13c4404998816b7a095009fe66c2b6eac96e1dca94e3ec78656356abe9fc6b1afe417b993b1fdbcf80da52a01212fb609e4562d48bba60cea4ae6c42e3292a920378c1dfd380f8d07e83292c2747fbd5231bde905ef4fd65b5b96505ce171270246489770f1a2bdca7d74fe3aa2f735ada229833860bb8bd64c55902dec01b6cdc0e77a9208a014115eb99dcdefe450276c15fa5f7f17f4e7c03fb8f388edfced56b61303a30940744a344e4271a8230fb498df5705b5bb3e412683f669976628e9fc000c8def8b12d5c882a5c7d863154fa1cd9bf8738e0e87fd658ae3a8aefabfe2051f73ff76d89f7de36452be7e015f9d461c144cea77d81116f2024c83db7f626f896c6544680594701bfaf6b877a5ddee511e929306355b438199ff10f877113a96bb1a776596906b425de29489d3747d142c6ce5e7c955212c16abe54d3397fcd655bbe6b278af11bd644e61d6fb654ead2167a13d5aa3f3324b25a36179aafcf495a85f83d93f33bb2b274bddde79a57c6f6363f14e603769f887cb7754eef4be2f993ebd301208297e8f2f7aee255a49f2839f5d80ec70b271f66e2a9f9838d7ffbe977af494e60671c6476f79e5a4710d9d71b0c35184f50036fa493757a7a9a31aa2cd436cfbc6a9b1088ba52e5266330e956828632345ef323ac294c565bbe4733bd9512c46256ca3e0a07a83c79d15386be25871360e986ca77be2521e822dccda9dde3c09402ee263d657464124c1270790ef1ee339", 0x1000, 0x7}, {&(0x7f0000000140)="e351d9abf577c3defbf1788e6e80126464a32a5d9e43e4bdf212cbf9c8b6cd03d1c4a899d9947bbd6b3ddb1509189fba979266ddfccb17f9ba15230f9d1afffed7c3d807373df98a605dbad13a4256", 0x4f, 0x4}, {&(0x7f0000002380)="43fdd382ddd62ff5980d56792c5c719678625999ae90afcd8137af643b8389a3f5413bbb28af66070b2393587f8a889012afe5322e49a0e8889d2726d519f21045f1c87799c98eb710569513cb68ef24c18b26ed35e39d73bb9008652ff1ee22d499e8c7607ec8721fc05b064820f421c631122a3f5aa6d88f24e4d3d95bfc180a1fcf12689037578e866aa755adb616a6b3a7b7bc7c5c13c2a92338e90a1cc4613273d7940a4dd25852cf144c3adc5872c4aa12e5cf0131", 0xb8, 0x9}], 0x4000000, &(0x7f0000002600)={[{@hide='hide'}, {@map_acorn='map=acorn'}, {@overriderock='overriderockperm'}, {@cruft='cruft'}], [{@fowner_gt={'fowner>', r0}}, {@fscontext={'fscontext', 0x3d, 'unconfined_u'}}, {@fowner_eq={'fowner', 0x3d, r2}}, {@uid_eq={'uid', 0x3d, r3}}, {@smackfsdef={'smackfsdef', 0x3d, 'btrfs\x00'}}, {@euid_eq={'euid', 0x3d, r5}}, {@dont_measure='dont_measure'}]}) syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 05:30:01 executing program 1 (fault-call:0 fault-nth:75): syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000140)='./file0\x00', 0xff, 0x1, &(0x7f0000000000)=[{&(0x7f0000000180)="8da4363ac0ed0000000000000001004d0100000000000000000000000009000000000000009748aeb81e1b00920efd9a0000010000000000098cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 05:30:01 executing program 2: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)) 05:30:01 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, 0x0) prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x802102001ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = gettid() r2 = epoll_create(0x3) epoll_pwait(r2, &(0x7f0000000340)=[{}], 0x1, 0x7fff, &(0x7f0000000380), 0x8) ptrace$setopts(0x4206, r1, 0x0, 0x0) tkill(r1, 0x38) 05:30:01 executing program 4: r0 = syz_open_dev$sndmidi(&(0x7f0000000180)='/dev/snd/midiC#D#\x00', 0x2, 0x0) read(r0, 0x0, 0x2fc) r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000002800)='/dev/ashmem\x00', 0x0, 0x0) r2 = openat$sequencer2(0xffffffffffffff9c, 0x0, 0x2, 0x0) dup2(r1, r2) 05:30:01 executing program 3: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x6, 0x0, &(0x7f0000000000), 0x0, 0x0) [ 396.098854] FAULT_INJECTION: forcing a failure. [ 396.098854] name failslab, interval 1, probability 0, space 0, times 0 [ 396.126327] CPU: 1 PID: 25513 Comm: syz-executor.1 Not tainted 4.14.146 #0 [ 396.133390] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 396.133396] Call Trace: 05:30:01 executing program 2: r0 = openat$snapshot(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/snapshot\x00', 0x86000, 0x0) ioctl$VIDIOC_G_SELECTION(r0, 0xc040565e, &(0x7f0000000100)={0x8, 0x3, 0x4, {0x619, 0x6, 0xffff4673, 0x1}}) syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) [ 396.133417] dump_stack+0x138/0x197 [ 396.133436] should_fail.cold+0x10f/0x159 [ 396.133453] should_failslab+0xdb/0x130 [ 396.133465] kmem_cache_alloc+0x2d7/0x780 [ 396.133475] ? delete_node+0x1fb/0x690 [ 396.133484] ? save_trace+0x290/0x290 [ 396.133497] alloc_buffer_head+0x24/0xe0 [ 396.133507] alloc_page_buffers+0xb7/0x200 [ 396.133519] create_empty_buffers+0x39/0x480 [ 396.133527] ? __lock_is_held+0xb6/0x140 [ 396.133537] ? check_preemption_disabled+0x3c/0x250 [ 396.133550] create_page_buffers+0x153/0x1c0 [ 396.133560] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 396.133573] block_read_full_page+0xcd/0x960 [ 396.133585] ? set_init_blocksize+0x220/0x220 [ 396.133594] ? __lru_cache_add+0x18a/0x250 [ 396.133607] ? __bread_gfp+0x290/0x290 [ 396.133618] ? add_to_page_cache_lru+0x159/0x310 [ 396.133630] ? add_to_page_cache_locked+0x40/0x40 [ 396.133641] blkdev_readpage+0x1d/0x30 [ 396.133650] do_read_cache_page+0x671/0xfc0 [ 396.133659] ? blkdev_writepages+0xd0/0xd0 [ 396.133674] ? find_get_pages_contig+0xaa0/0xaa0 [ 396.133682] ? blkdev_get+0xb0/0x8e0 05:30:02 executing program 2: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dlm_plock\x00', 0x100, 0x0) ioctl$TCSETAF(r0, 0x5408, &(0x7f0000000100)={0x9c, 0x3, 0x101, 0x0, 0x7, 0x0, 0x2, 0x8, 0x7eb, 0x1}) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) [ 396.133692] ? dput.part.0+0x170/0x750 [ 396.133703] ? bd_may_claim+0xd0/0xd0 [ 396.133713] ? path_put+0x50/0x70 [ 396.133721] ? lookup_bdev.part.0+0xe1/0x160 [ 396.133732] read_cache_page_gfp+0x6e/0x90 [ 396.133745] btrfs_read_disk_super+0xdd/0x440 [ 396.173542] btrfs_scan_one_device+0xc6/0x400 [ 396.173555] ? device_list_add+0x8d0/0x8d0 [ 396.173566] ? __free_pages+0x54/0x90 [ 396.173576] ? free_pages+0x46/0x50 [ 396.173590] btrfs_mount+0x2e3/0x2b28 [ 396.173602] ? lock_downgrade+0x6e0/0x6e0 05:30:02 executing program 2: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x4, 0x4182) r1 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) pwritev(r1, &(0x7f0000000340)=[{&(0x7f0000000140)='!', 0x1}], 0x1, 0x81805) r2 = dup2(r1, r1) ioctl$SG_GET_RESERVED_SIZE(r1, 0x2272, 0x0) ioctl$LOOP_CHANGE_FD(r0, 0x4c00, r1) write$P9_RLERRORu(r2, &(0x7f00000003c0)=ANY=[@ANYBLOB="1400000007650d6c24ed92c8397291335cf616f0010200070062726f0c62077600b365a0a59e7eea"], 0x28) getsockopt$sock_cred(r2, 0x1, 0x11, 0x0, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f00000007c0)={{{@in=@remote, @in6=@initdev}}, {{@in=@empty}, 0x0, @in6=@ipv4}}, &(0x7f00000008c0)=0xe8) sendfile(r2, r0, 0x0, 0x2400003e) setsockopt$inet_opts(r2, 0x0, 0x4, &(0x7f00000000c0)="04f25af0c102cb2c7adaaf18b5451ad084dc6ef8a56813355f64857f5b06ebdff8246a659c5e66f3c817323ef3b8d1282ea29e972ebe6794024b4dcd0efc6deff85d3ec70a37ed70e3bd6e843a1d15be09", 0x51) r3 = syz_open_dev$vcsa(&(0x7f0000000300)='/dev/vcsa#\x00', 0x80000001, 0x20000) getsockopt$inet6_IPV6_IPSEC_POLICY(r3, 0x29, 0x22, 0x0, &(0x7f0000000780)) ioctl$KVM_SET_SREGS(r3, 0x4138ae84, &(0x7f0000000400)={{0xf000, 0x6000, 0x0, 0x6, 0x7, 0x7f, 0xff, 0x3f, 0x80, 0x81, 0xcd, 0x4}, {0x102800, 0x0, 0x1, 0x4a, 0x8, 0xff, 0xff, 0x1, 0xfc, 0x9, 0xf9, 0x7f}, {0x10000, 0xf000, 0x3, 0xff, 0x1, 0x7, 0xb6, 0x1, 0x40, 0x9, 0xa0, 0x20}, {0x2, 0x4002, 0xf, 0x7, 0x9, 0x4d, 0x1, 0x5f, 0x3, 0x0, 0xcc, 0x3}, {0x3000, 0xf000, 0x3, 0x1, 0x6, 0x9, 0x7, 0x3, 0x9, 0x5, 0x1, 0x1}, {0x5000, 0x4000, 0xe, 0xa4, 0x5, 0x0, 0xff, 0x1, 0x3f, 0x9, 0xa0, 0x2}, {0xd000, 0x3000, 0xf, 0x0, 0x4, 0x3f, 0x0, 0x2, 0x60, 0x10, 0x1, 0x3f}, {0x0, 0x2, 0x0, 0xff, 0xaa, 0x3, 0x9, 0xf1, 0x1, 0x0, 0x7f}, {0xf1fa888093c7418f, 0x1a000}, {0xd000}, 0x2a492b7db967a470, 0x0, 0x5000, 0x40, 0x9, 0xc00, 0x2, [0x80000000, 0x52, 0x5, 0x80000000]}) getpriority(0x1, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) [ 396.173610] ? find_held_lock+0x35/0x130 [ 396.173620] ? pcpu_alloc+0x3af/0x1050 [ 396.173635] ? btrfs_remount+0x11f0/0x11f0 [ 396.173650] ? rcu_read_lock_sched_held+0x110/0x130 [ 396.173667] ? __lockdep_init_map+0x10c/0x570 [ 396.186410] mount_fs+0x97/0x2a1 [ 396.186428] vfs_kern_mount.part.0+0x5e/0x3d0 [ 396.186438] ? find_held_lock+0x35/0x130 [ 396.186451] vfs_kern_mount+0x40/0x60 [ 396.186464] btrfs_mount+0x3ce/0x2b28 [ 396.186473] ? lock_downgrade+0x6e0/0x6e0 [ 396.278866] ? find_held_lock+0x35/0x130 [ 396.287168] ? pcpu_alloc+0x3af/0x1050 [ 396.287194] ? btrfs_remount+0x11f0/0x11f0 [ 396.287211] ? rcu_read_lock_sched_held+0x110/0x130 [ 396.287229] ? __lockdep_init_map+0x10c/0x570 [ 396.328586] ? __lockdep_init_map+0x10c/0x570 [ 396.348472] mount_fs+0x97/0x2a1 [ 396.348489] vfs_kern_mount.part.0+0x5e/0x3d0 [ 396.348504] do_mount+0x417/0x27d0 [ 396.348513] ? copy_mount_options+0x5c/0x2f0 [ 396.348525] ? rcu_read_lock_sched_held+0x110/0x130 [ 396.386514] ? copy_mount_string+0x40/0x40 [ 396.386531] ? copy_mount_options+0x1fe/0x2f0 [ 396.386545] SyS_mount+0xab/0x120 [ 396.386553] ? copy_mnt_ns+0x8c0/0x8c0 [ 396.386568] do_syscall_64+0x1e8/0x640 [ 396.400273] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 396.400294] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 396.400303] RIP: 0033:0x45c47a [ 396.400309] RSP: 002b:00007f617e384a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 396.400320] RAX: ffffffffffffffda RBX: 00007f617e384b40 RCX: 000000000045c47a [ 396.400326] RDX: 00007f617e384ae0 RSI: 0000000020000140 RDI: 00007f617e384b00 05:30:02 executing program 2: syz_mount_image$btrfs(&(0x7f0000000040)='b\t\x00fs\x01', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f00000000c0)="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", 0x110, 0x10000}], 0x2100004, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$alg(0x26, 0x5, 0x0) bind$alg(r1, &(0x7f0000000000)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_nopr_sha1\x00'}, 0xfffffffffffffcba) setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, 0x0, 0x0) ioctl$FIGETBSZ(r1, 0x2, &(0x7f0000000240)) r2 = syz_open_dev$usbmon(&(0x7f0000000280)='/dev/usbmon#\x00', 0x8, 0x208000) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(r2, 0x40106614, &(0x7f00000002c0)) r3 = perf_event_open(0x0, 0x0, 0xfffffffffffffeff, 0xffffffffffffffff, 0x0) r4 = fcntl$dupfd(r3, 0x0, 0xffffffffffffffff) getsockopt$EBT_SO_GET_INIT_INFO(r4, 0x0, 0x82, &(0x7f0000000180)={'broute\x00'}, &(0x7f0000000240)=0x50) ioctl$TIOCSCTTY(r4, 0x540e, 0xffffffff) getsockopt$sock_cred(r4, 0x1, 0x11, 0x0, &(0x7f0000000640)) getsockopt$inet_mtu(r4, 0x0, 0xa, &(0x7f0000000300), &(0x7f0000000340)=0x4) 05:30:02 executing program 2: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000000)={0x0, 0x0}, &(0x7f0000000040)=0xc) keyctl$get_persistent(0x7, r1, 0x0) r2 = socket$inet(0x2, 0xa, 0x8) setsockopt$IP_VS_SO_SET_EDITDEST(r2, 0x0, 0x489, &(0x7f0000002740)={{0x0, @dev={0xac, 0x14, 0x14, 0x19}, 0x4e24, 0x2, 'lblc\x00', 0x14, 0x1, 0x4d}, {@initdev={0xac, 0x1e, 0x1, 0x0}, 0x4e22, 0x4, 0x0, 0xfffffbff, 0x200}}, 0x44) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000002600)={0x0, 0x0}, &(0x7f0000002640)=0xc) syz_mount_image$ntfs(&(0x7f0000000100)='ntfs\x00', &(0x7f0000000140)='./file0\x00', 0x1, 0x9, &(0x7f0000002500)=[{&(0x7f0000000180)="0633c36c5d2e8d0adff29593d969321fc94ed0f0d0637f89d8af0579857b052c7e", 0x21, 0x9}, {&(0x7f0000000280)="381afc2adf0110ab6c6edde3cd75f9d922d3648171ba4a54515a7f27784946dec16420e19fe06304b9d5b9ec992d50f27fce595e229c7f7d7ded1f89d8638fb27a74db56d9875849dec9498b01fbe2a0635bcbcedcc43a0be82308f9e643740695495768f622ee59e5d3b5f2ffcde4a88251ffb1859fc321f79d213fb10842093e01", 0x82, 0xfffffffffffffffd}, {&(0x7f00000001c0)="24c29706567836e89353478ef35454d4f8b493fa7b5d05c5d83dd0ac703ac996360887b587a4e94bc4fc9993c0e34eb50e3931762e485bcaa9a0d7399a", 0x3d, 0x73}, {&(0x7f0000000340)="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", 0x1000}, {&(0x7f0000001340)="200511d6417a7f6b30cad5cd322978814d6c913395923fc5ecf209fe5550bfccda88296820337f41c6a67340081a5583da28bcdce60018d9e3f74e4756a5f83fe3ab2ca7a61f1208e9f07080921aeadfa9864e597f7f4e0c99da85efbccd6937429fddcba623e5afaca5aed1d11ada2386ef5dda75d4ae0eaf129557de1ffd532e956d85e40768c68b2a107fbb63d84966482e4fe7d6d6389eea56d17141443b436829fc35911e8903fe004c3674cbef0ff307b4", 0xb4, 0x8}, {&(0x7f0000001400)="4fe44d5af7658fbfe68fb71bd34c725dc69a91fb7a8378df0b3633ebf84317996390909926576d996744c507b8716bd077201238495c6806132bda8b72fb98a30bcdd5fe34ac95e93d858a857a5241556c6988932e23f46d67cb99dd30d675a9e493d3a8af0c544adfe5d0110551aa605bcd9685739206", 0x77, 0x2}, {&(0x7f0000001480)="af9257b272819c532fd568e0a97f49e9dc02c0", 0x13, 0x200}, {&(0x7f00000014c0)="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", 0x1000, 0x3}, {&(0x7f00000024c0), 0x0, 0x3}], 0x2, &(0x7f0000002680)={[{@case_sensitive_yes='case_sensitive=yes'}], [{@appraise_type='appraise_type=imasig'}, {@euid_gt={'euid>', 0xee01}}, {@uid_gt={'uid>', r1}}, {@euid_lt={'euid<', r3}}]}) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) r5 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x4, 0x4182) r6 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) pwritev(r6, &(0x7f0000000340)=[{&(0x7f0000000140)='!', 0x1}], 0x1, 0x81805) r7 = dup2(r6, r6) ioctl$SG_GET_RESERVED_SIZE(r6, 0x2272, 0x0) ioctl$LOOP_CHANGE_FD(r5, 0x4c00, r6) write$P9_RLERRORu(r7, &(0x7f00000003c0)=ANY=[@ANYBLOB="1400000007650d6c24ed92c8397291335cf616ed01020007006272730c62077600b365a0a59e7eea"], 0x28) getsockopt$sock_cred(r7, 0x1, 0x11, 0x0, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(r7, 0x29, 0x23, &(0x7f00000007c0)={{{@in=@remote, @in6=@initdev}}, {{@in=@empty}, 0x0, @in6=@ipv4}}, &(0x7f00000008c0)=0x8) sendfile(r7, r5, 0x0, 0x2400003e) getsockopt$inet_tcp_int(r7, 0x6, 0x19, &(0x7f00000024c0), &(0x7f0000002700)=0x4) ioctl$SNDRV_TIMER_IOCTL_STATUS(0xffffffffffffffff, 0x80605414, &(0x7f00000000c0)=""/21) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) [ 396.400330] RBP: 0000000000000001 R08: 00007f617e384b40 R09: 00007f617e384ae0 [ 396.400342] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000004 [ 396.400347] R13: 00000000004c8b25 R14: 00000000004dfbc8 R15: 0000000000000003 05:30:02 executing program 3: r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dlm-control\x00', 0x800, 0x0) getsockopt$netrom_NETROM_T2(r0, 0x103, 0x2, &(0x7f0000000100)=0x5, &(0x7f0000000140)=0x4) syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x62778dbc1deb2bda, 0x0) 05:30:02 executing program 5: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f00000000c0)={0x9, 0x81}, 0xc) 05:30:04 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, 0x0) prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x802102001ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = gettid() r2 = epoll_create(0x3) epoll_pwait(r2, &(0x7f0000000340)=[{}], 0x1, 0x7fff, &(0x7f0000000380), 0x8) ptrace$setopts(0x4206, r1, 0x0, 0x0) tkill(r1, 0x38) 05:30:04 executing program 1 (fault-call:0 fault-nth:76): syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000140)='./file0\x00', 0xff, 0x1, &(0x7f0000000000)=[{&(0x7f0000000180)="8da4363ac0ed0000000000000001004d0100000000000000000000000009000000000000009748aeb81e1b00920efd9a0000010000000000098cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 05:30:04 executing program 2: r0 = syz_open_dev$sndmidi(&(0x7f0000000180)='/dev/snd/midiC#D#\x00', 0x2, 0x0) read(r0, 0x0, 0x2fc) r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000002800)='/dev/ashmem\x00', 0x0, 0x0) r2 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x2, 0x0) dup2(r1, r2) 05:30:04 executing program 3: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x1000000010000}], 0x0, 0x0) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x4, 0x4182) r1 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) pwritev(r1, &(0x7f0000000340)=[{&(0x7f0000000140)='!', 0x1}], 0x1, 0x81805) r2 = dup2(r1, r1) ioctl$SG_GET_RESERVED_SIZE(r1, 0x2272, 0x0) ioctl$LOOP_CHANGE_FD(r0, 0x4c00, r1) r3 = socket$alg(0x26, 0x5, 0x0) bind$alg(r3, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'ghash-generic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, 0x0, 0x0) ioctl$FS_IOC_SETFLAGS(r3, 0x40086602, &(0x7f0000001640)=0x5) write$P9_RLERRORu(r2, &(0x7f00000003c0)=ANY=[@ANYBLOB="1c00000007650d6c24ed92c8397291335cf616f0010200070062726f0c62077600b365a0a59e7eea"], 0x26) getsockopt$sock_cred(r2, 0x1, 0x11, 0x0, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f00000007c0)={{{@in=@remote, @in6=@initdev}}, {{@in=@empty}, 0x0, @in6=@ipv4}}, &(0x7f00000008c0)=0xe8) sendfile(r2, r0, 0x0, 0x2400003e) recvmsg$kcm(r2, &(0x7f0000000180)={&(0x7f00000000c0)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @dev}}}, 0x80, &(0x7f0000000140)=[{&(0x7f0000000280)=""/248, 0xf8}], 0x1}, 0x80000040) sendmsg$kcm(r4, &(0x7f0000001600)={&(0x7f0000000380)=@ethernet={0x1}, 0x80, &(0x7f00000001c0)=[{&(0x7f0000000400)="ed02f54b192a38df3b549508004604b23163893fb97655b35bb682dcaadfc5550baad4c2fe52dfeb801fc53714ae564f67c1767b09e2d56bfeb25431630d7c662fd8f1ed9ff1aac95b543c435cbadf08dea377470747fcc0ba34a5e9e8c28c5dedc740d9ab41eb3ae89f2f16cc73ebae17c31199fa7f95b6fb5752ae53b47fb3779d36fcfba7cb2ef3f6d6d3a97870fe1b5973eaf651f7127652d90d46bfc054d6a576e0ad7e701ba3578437780a4495c113c9851ab041fef0158d77d4d04f566e07a88087c39aacdff44aa904ef", 0xce}, {&(0x7f0000000500)="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", 0x1000}], 0x2, &(0x7f0000001500)=[{0x60, 0x109, 0x2, "8b0df133fb2322570cfca71e3eab0ea76b17bec2941dd1000c09d89f845c32fb0245ece3b2903e3670065c8a5794821e0f79377a7227fe844aa6bbc455152eaaaf5a95116d539db5274cfee9de"}, {0x98, 0x3a, 0x5, "23d3160814bb6b83fd14dfdbdd352bbd6bb6d13fd7a06b0df0a29fd8916198dfc5338ede1cfc5ea9a80fabdcbcb387200ed83357955e2a44840011287e2414338e64d9646204d5cc03126908298626164a686d85a903f4255373667a562d4329d316243fbc1090577f277026b1f3a65ae30aabf262982790844a2dff7db60f1f2fb8"}], 0xf8}, 0x80) munmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000) 05:30:04 executing program 4: r0 = syz_open_dev$sndmidi(&(0x7f0000000180)='/dev/snd/midiC#D#\x00', 0x2, 0x0) read(r0, 0x0, 0x2fc) r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000002800)='/dev/ashmem\x00', 0x0, 0x0) r2 = openat$sequencer2(0xffffffffffffff9c, 0x0, 0x2, 0x0) dup2(r1, r2) 05:30:04 executing program 5: r0 = syz_open_dev$vcsa(&(0x7f00000001c0)='/dev/vcsa#\x00', 0x3, 0x202) getsockopt$IPT_SO_GET_INFO(r0, 0x0, 0x40, &(0x7f0000000280)={'raw\x00'}, &(0x7f0000000300)=0x54) syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0xfffffffffffffeeb, 0x10000}], 0x0, 0x0) syz_emit_ethernet(0x88, &(0x7f00000000c0)=ANY=[@ANYBLOB="fffffdffffffe6ab01130ca39100060081000100080049ee0072b96601ff089406ffff00016c07153da24cb20001004e244e23004e9078818f0001418100008202000000000000e200000180000000e16d0000571c5cb7436d0f228e86cee574d14b6bc390fd8fc24226d5832964e1c9c03c96c2afb4db68ddbb9e32600000030000000000000000"], &(0x7f0000000180)={0x0, 0x1, [0x28e, 0x8a, 0x1bd, 0x76c]}) [ 399.149452] FAULT_INJECTION: forcing a failure. [ 399.149452] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 399.161331] CPU: 1 PID: 25604 Comm: syz-executor.1 Not tainted 4.14.146 #0 [ 399.168359] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 399.177725] Call Trace: [ 399.180330] dump_stack+0x138/0x197 [ 399.183976] should_fail.cold+0x10f/0x159 [ 399.188140] __alloc_pages_nodemask+0x1d6/0x7a0 [ 399.192824] ? fs_reclaim_acquire+0x20/0x20 [ 399.197185] ? __alloc_pages_slowpath+0x2930/0x2930 [ 399.202226] cache_grow_begin+0x80/0x400 [ 399.206291] kmem_cache_alloc_trace+0x6b2/0x790 [ 399.206311] btrfs_mount+0x1001/0x2b28 [ 399.206323] ? lock_downgrade+0x6e0/0x6e0 [ 399.214881] ? find_held_lock+0x35/0x130 [ 399.214894] ? pcpu_alloc+0x3af/0x1050 [ 399.214912] ? btrfs_remount+0x11f0/0x11f0 [ 399.231224] ? rcu_read_lock_sched_held+0x110/0x130 [ 399.236266] ? __lockdep_init_map+0x10c/0x570 [ 399.240787] mount_fs+0x97/0x2a1 [ 399.244168] vfs_kern_mount.part.0+0x5e/0x3d0 05:30:05 executing program 2: r0 = syz_open_dev$sndmidi(&(0x7f0000000180)='/dev/snd/midiC#D#\x00', 0x2, 0x0) read(r0, 0x0, 0x2fc) r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000002800)='/dev/ashmem\x00', 0x0, 0x0) r2 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x2, 0x0) dup2(r1, r2) [ 399.249301] ? find_held_lock+0x35/0x130 [ 399.253371] vfs_kern_mount+0x40/0x60 [ 399.253386] btrfs_mount+0x3ce/0x2b28 [ 399.253397] ? lock_downgrade+0x6e0/0x6e0 [ 399.260973] ? find_held_lock+0x35/0x130 [ 399.260983] ? pcpu_alloc+0x3af/0x1050 [ 399.261000] ? btrfs_remount+0x11f0/0x11f0 [ 399.261016] ? rcu_read_lock_sched_held+0x110/0x130 [ 399.261034] ? __lockdep_init_map+0x10c/0x570 [ 399.261043] ? __lockdep_init_map+0x10c/0x570 [ 399.261058] mount_fs+0x97/0x2a1 [ 399.295327] vfs_kern_mount.part.0+0x5e/0x3d0 [ 399.299883] do_mount+0x417/0x27d0 [ 399.303420] ? copy_mount_options+0x5c/0x2f0 [ 399.307874] ? rcu_read_lock_sched_held+0x110/0x130 [ 399.312878] ? copy_mount_string+0x40/0x40 [ 399.317100] ? copy_mount_options+0x1fe/0x2f0 [ 399.321583] SyS_mount+0xab/0x120 [ 399.325027] ? copy_mnt_ns+0x8c0/0x8c0 [ 399.328904] do_syscall_64+0x1e8/0x640 [ 399.332795] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 399.337658] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 399.342846] RIP: 0033:0x45c47a 05:30:05 executing program 2: r0 = syz_open_dev$sndmidi(&(0x7f0000000180)='/dev/snd/midiC#D#\x00', 0x2, 0x0) read(r0, 0x0, 0x2fc) r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000002800)='/dev/ashmem\x00', 0x0, 0x0) r2 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x2, 0x0) dup2(r1, r2) 05:30:05 executing program 4: r0 = syz_open_dev$sndmidi(&(0x7f0000000180)='/dev/snd/midiC#D#\x00', 0x2, 0x0) read(r0, 0x0, 0x2fc) r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000002800)='/dev/ashmem\x00', 0x0, 0x0) r2 = openat$sequencer2(0xffffffffffffff9c, 0x0, 0x2, 0x0) dup2(r1, r2) [ 399.346038] RSP: 002b:00007f617e384a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 399.353744] RAX: ffffffffffffffda RBX: 00007f617e384b40 RCX: 000000000045c47a [ 399.353750] RDX: 00007f617e384ae0 RSI: 0000000020000140 RDI: 00007f617e384b00 [ 399.353756] RBP: 0000000000000001 R08: 00007f617e384b40 R09: 00007f617e384ae0 [ 399.353760] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000004 [ 399.353765] R13: 00000000004c8b25 R14: 00000000004dfbc8 R15: 0000000000000003 05:30:05 executing program 4: r0 = syz_open_dev$sndmidi(&(0x7f0000000180)='/dev/snd/midiC#D#\x00', 0x2, 0x0) read(r0, 0x0, 0x2fc) r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000002800)='/dev/ashmem\x00', 0x0, 0x0) r2 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x0, 0x0) dup2(r1, r2) 05:30:05 executing program 2: r0 = syz_open_dev$sndmidi(&(0x7f0000000180)='/dev/snd/midiC#D#\x00', 0x2, 0x0) read(r0, 0x0, 0x2fc) openat$ashmem(0xffffffffffffff9c, &(0x7f0000002800)='/dev/ashmem\x00', 0x0, 0x0) openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x2, 0x0) 05:30:05 executing program 1 (fault-call:0 fault-nth:77): syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000140)='./file0\x00', 0xff, 0x1, &(0x7f0000000000)=[{&(0x7f0000000180)="8da4363ac0ed0000000000000001004d0100000000000000000000000009000000000000009748aeb81e1b00920efd9a0000010000000000098cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 399.565294] FAULT_INJECTION: forcing a failure. [ 399.565294] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 399.577279] CPU: 0 PID: 25640 Comm: syz-executor.1 Not tainted 4.14.146 #0 [ 399.584300] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 399.593670] Call Trace: [ 399.596270] dump_stack+0x138/0x197 [ 399.599915] should_fail.cold+0x10f/0x159 [ 399.604188] __alloc_pages_nodemask+0x1d6/0x7a0 [ 399.608877] ? __alloc_pages_slowpath+0x2930/0x2930 [ 399.614022] cache_grow_begin+0x80/0x400 [ 399.618101] kmem_cache_alloc+0x6a6/0x780 [ 399.622426] ? save_stack_trace+0x16/0x20 [ 399.626576] ? save_stack+0x45/0xd0 [ 399.630213] ? kmem_cache_alloc_trace+0x152/0x790 [ 399.635052] getname_kernel+0x53/0x350 [ 399.635063] kern_path+0x20/0x40 [ 399.635075] lookup_bdev.part.0+0x63/0x160 [ 399.646551] ? blkdev_open+0x260/0x260 [ 399.646566] ? btrfs_open_devices+0x27/0xb0 [ 399.646577] blkdev_get_by_path+0x76/0xf0 [ 399.658909] btrfs_get_bdev_and_sb+0x38/0x2e0 [ 399.663409] __btrfs_open_devices+0x194/0xab0 [ 399.667907] ? check_preemption_disabled+0x3c/0x250 [ 399.672932] ? find_device+0x100/0x100 [ 399.676838] ? btrfs_mount+0x1069/0x2b28 [ 399.680904] ? rcu_read_lock_sched_held+0x110/0x130 [ 399.685958] btrfs_open_devices+0xa4/0xb0 [ 399.690115] btrfs_mount+0x11b4/0x2b28 [ 399.694006] ? lock_downgrade+0x6e0/0x6e0 [ 399.698160] ? find_held_lock+0x35/0x130 [ 399.702221] ? pcpu_alloc+0x3af/0x1050 [ 399.706110] ? btrfs_remount+0x11f0/0x11f0 [ 399.710343] ? rcu_read_lock_sched_held+0x110/0x130 [ 399.715457] ? __lockdep_init_map+0x10c/0x570 [ 399.719950] mount_fs+0x97/0x2a1 [ 399.723319] vfs_kern_mount.part.0+0x5e/0x3d0 [ 399.727805] ? find_held_lock+0x35/0x130 [ 399.731852] vfs_kern_mount+0x40/0x60 [ 399.735644] btrfs_mount+0x3ce/0x2b28 [ 399.739426] ? lock_downgrade+0x6e0/0x6e0 [ 399.743566] ? find_held_lock+0x35/0x130 [ 399.747617] ? pcpu_alloc+0x3af/0x1050 [ 399.751492] ? btrfs_remount+0x11f0/0x11f0 [ 399.755729] ? rcu_read_lock_sched_held+0x110/0x130 [ 399.761793] ? __lockdep_init_map+0x10c/0x570 [ 399.766291] ? __lockdep_init_map+0x10c/0x570 [ 399.770783] mount_fs+0x97/0x2a1 [ 399.774145] vfs_kern_mount.part.0+0x5e/0x3d0 [ 399.778620] do_mount+0x417/0x27d0 [ 399.782152] ? copy_mount_options+0x5c/0x2f0 [ 399.786558] ? rcu_read_lock_sched_held+0x110/0x130 [ 399.791563] ? copy_mount_string+0x40/0x40 [ 399.795781] ? copy_mount_options+0x1fe/0x2f0 [ 399.800266] SyS_mount+0xab/0x120 [ 399.803714] ? copy_mnt_ns+0x8c0/0x8c0 [ 399.807585] do_syscall_64+0x1e8/0x640 [ 399.811453] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 399.816281] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 399.821480] RIP: 0033:0x45c47a [ 399.824659] RSP: 002b:00007f617e384a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 399.832357] RAX: ffffffffffffffda RBX: 00007f617e384b40 RCX: 000000000045c47a [ 399.839633] RDX: 00007f617e384ae0 RSI: 0000000020000140 RDI: 00007f617e384b00 [ 399.846888] RBP: 0000000000000001 R08: 00007f617e384b40 R09: 00007f617e384ae0 [ 399.854153] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000004 [ 399.861410] R13: 00000000004c8b25 R14: 00000000004dfbc8 R15: 0000000000000003 05:30:07 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)) prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x802102001ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = gettid() r2 = epoll_create(0x3) epoll_pwait(r2, &(0x7f0000000340)=[{}], 0x1, 0x7fff, &(0x7f0000000380), 0x8) ptrace$setopts(0x4206, r1, 0x0, 0x0) tkill(r1, 0x38) 05:30:07 executing program 3: r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm-control\x00', 0x204000, 0x0) getsockname(r0, &(0x7f0000000480)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @initdev}}}, &(0x7f0000000500)=0x80) r1 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x4, 0x4182) r2 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) pwritev(r2, &(0x7f0000000340)=[{&(0x7f0000000140)='!', 0x1}], 0x1, 0x81805) r3 = dup2(r2, r2) ioctl$SG_GET_RESERVED_SIZE(r2, 0x2272, 0x0) ioctl$LOOP_CHANGE_FD(r1, 0x4c00, r2) write$P9_RLERRORu(r3, &(0x7f00000003c0)=ANY=[@ANYBLOB="1400000007650d6c24ed0ac8397291335cf616f0010200070062726f0c62077600b365a0a59e7eea"], 0x28) getsockopt$sock_cred(r3, 0x1, 0x11, 0x0, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(r3, 0x29, 0x23, &(0x7f00000007c0)={{{@in=@remote, @in6=@initdev}}, {{@in=@empty}, 0x0, @in6=@ipv4}}, &(0x7f00000008c0)=0xe8) sendfile(r3, r1, 0x0, 0x2400003e) getsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0x10, &(0x7f0000000680)={{{@in6=@remote, @in=@multicast2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@initdev}, 0x0, @in=@multicast1}}, &(0x7f0000000640)=0xfffffffffffffdde) r5 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x4, 0x4182) r6 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) pwritev(r6, &(0x7f0000000340)=[{&(0x7f0000000140)='!', 0x1}], 0x1, 0x81805) r7 = dup2(r6, r6) ioctl$SG_GET_RESERVED_SIZE(r6, 0x2272, 0x0) ioctl$LOOP_CHANGE_FD(r5, 0x4c00, r6) write$P9_RLERRORu(r7, &(0x7f00000003c0)=ANY=[@ANYBLOB="1400000007650d6c24ed92c8397291335cf616f0010200070062726f0c62077600b365a0a59e7eea"], 0x28) r8 = getpid() tkill(r8, 0x9) r9 = syz_open_procfs(r8, &(0x7f0000000380)='task\x00') ioctl$TUNGETVNETHDRSZ(r9, 0x800454d7, &(0x7f0000000400)) getsockopt$sock_cred(r7, 0x1, 0x11, 0x0, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(r7, 0x29, 0x23, &(0x7f0000000540)={{{@in=@remote, @in6=@initdev}}, {{@in=@empty}, 0x0, @in6=@ipv4}}, &(0x7f00000008c0)=0xe8) sendfile(r7, r5, 0x0, 0x2400003e) write$RDMA_USER_CM_CMD_JOIN_IP_MCAST(r7, &(0x7f0000000340)={0x10, 0x30, 0xfa00, {&(0x7f0000000300), 0x4, {0xa, 0x4e21, 0x6, @initdev={0xfe, 0x88, [], 0x1, 0x0}, 0x1}}}, 0x38) setsockopt$kcm_KCM_RECV_DISABLE(r9, 0x119, 0x1, &(0x7f00000000c0)=0x3, 0x4) sendmsg$nl_route(r0, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20020}, 0xc, &(0x7f0000000280)={&(0x7f00000001c0)=@bridge_getlink={0x90, 0x12, 0x8, 0x70bd26, 0x25dfdbff, {0x7, 0x0, 0x0, r4, 0x324, 0x44208}, [@IFLA_IFNAME={0x14, 0x3, 'veth0_to_hsr\x00'}, @IFLA_LINKINFO={0x20, 0x12, @bond_slave={{0x10, 0x1, 'bond_slave\x00'}, {0xc, 0x5, @IFLA_BOND_SLAVE_QUEUE_ID={0x8, 0x5, 0x4}}}}, @IFLA_GROUP={0x8, 0x1b, 0x7}, @IFLA_TXQLEN={0x8, 0xd, 0x4}, @IFLA_MAP={0x24, 0xe, {0x4, 0x1, 0x1, 0x81, 0x3, 0x6}}, @IFLA_CARRIER={0x8, 0x21, 0x5}]}, 0x90}, 0x1, 0x0, 0x0, 0x800}, 0x9000) 05:30:07 executing program 5: syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0xaaaaaac, &(0x7f0000000000), 0x800000, 0x0) ioctl$SNDRV_TIMER_IOCTL_INFO(0xffffffffffffffff, 0x80e85411, &(0x7f00000001c0)=""/4096) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x4, 0x4182) r1 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) pwritev(r1, &(0x7f0000000340)=[{&(0x7f0000000140)='!', 0x1}], 0x1, 0x81805) r2 = dup2(r1, r1) ioctl$SG_GET_RESERVED_SIZE(r1, 0x2272, 0x0) socket$netlink(0x10, 0x3, 0xb) ioctl$LOOP_CHANGE_FD(r0, 0x4c00, r1) write$P9_RLERRORu(r2, &(0x7f00000003c0)=ANY=[@ANYBLOB="1400000007650d6c24ed92c8397291335cf616f0010200070062726f0c62077600b365a0a59e7eea"], 0x28) getsockopt$sock_cred(r2, 0x1, 0x11, 0x0, 0x0) ioctl$LOOP_SET_CAPACITY(0xffffffffffffffff, 0x4c07) getsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f00000007c0)={{{@in=@remote, @in6=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@ipv4}}, &(0x7f00000008c0)=0xe8) fcntl$getownex(r0, 0x10, &(0x7f0000001300)={0x0, 0x0}) r5 = perf_event_open(0x0, r4, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r6 = fcntl$dupfd(r5, 0x0, 0xffffffffffffffff) getsockopt$EBT_SO_GET_INIT_INFO(0xffffffffffffffff, 0x0, 0x82, &(0x7f0000001280)={'br\xf1\x92\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x00r$\x00\x005\xe3\x1f.<\x9b\xac3\x00\x00\x1d\x00'}, &(0x7f0000001240)=0x78) ioctl$TIOCSCTTY(r6, 0x540e, 0xffffffff) getsockopt$sock_cred(r6, 0x1, 0x11, 0x0, &(0x7f0000000640)) r7 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000040)='IPVS\x00') r8 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x4, 0x4182) r9 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) pwritev(r9, &(0x7f0000000340)=[{&(0x7f0000000140)='!', 0x1}], 0x1, 0x81805) r10 = dup2(r9, r9) ioctl$SG_GET_RESERVED_SIZE(r9, 0x2272, 0x0) ioctl$LOOP_CHANGE_FD(r8, 0x4c00, r9) write$P9_RLERRORu(r10, &(0x7f00000003c0)=ANY=[@ANYBLOB="1400000007650d6c24ed92c8397291335cf616f0010200070062726f0c62077600b365a0a59e7eea"], 0x28) getsockopt$sock_cred(r10, 0x1, 0x11, 0x0, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(r10, 0x29, 0x23, &(0x7f00000007c0)={{{@in=@remote, @in6=@initdev}}, {{@in=@empty}, 0x0, @in6=@ipv4}}, &(0x7f00000008c0)=0xe8) sendfile(r10, r8, 0x0, 0x2400003e) sendmsg$IPVS_CMD_GET_DEST(r10, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000100)={&(0x7f00000011c0)={0x60, r7, 0x10, 0x70bd2b, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_UDP={0x8}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x4, 0x5, 0x1ff}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0xffff7fff}, @IPVS_CMD_ATTR_DAEMON={0x2c, 0x3, [@IPVS_DAEMON_ATTR_MCAST_PORT={0x8, 0x7, 0x4e23}, @IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @broadcast}, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0xffffffffffffffd0, 0x4, 0x7}, @IPVS_DAEMON_ATTR_SYNC_ID={0x8, 0x3, 0x2}, @IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @initdev={0xac, 0x1e, 0x1, 0x0}}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x9}]}, 0x60}, 0x1, 0x0, 0x0, 0x4044}, 0x800) sendfile(r2, r0, 0x0, 0x2400003e) ioctl$PERF_EVENT_IOC_REFRESH(r2, 0x2402, 0x6aaf) r11 = syz_genetlink_get_family_id$team(&(0x7f0000001380)='team\x00') getsockname$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=@newlink={0x6, 0x10, 0x705, 0x0, 0x0, {0x0, 0x0, 0x0, r12}}, 0x20}}, 0x0) getsockname$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=@newlink={0x20, 0x10, 0x705, 0x0, 0x0, {0x0, 0x0, 0x0, r13}}, 0x20}}, 0x0) getsockname$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000019c0)=ANY=[@ANYBLOB="200000001000050700"/20, @ANYRES32=r14, @ANYBLOB="00000003007300000c0202000000ef4205d4c4ed337ca16cc33dbfdbe0577ce2"], 0x20}}, 0x0) recvmsg$kcm(0xffffffffffffffff, &(0x7f0000001680)={&(0x7f00000013c0)=@ll={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, 0x80, &(0x7f0000001580)=[{&(0x7f0000001440)=""/27, 0x1b}, {&(0x7f0000001480)=""/225, 0xe1}], 0x2, &(0x7f00000015c0)=""/183, 0xb7}, 0x2040) getsockname$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=@newlink={0x20, 0x10, 0x705, 0x0, 0x0, {0x0, 0x0, 0x0, r16}}, 0x20}}, 0x0) sendmsg$TEAM_CMD_OPTIONS_SET(r6, &(0x7f0000001980)={&(0x7f0000001340)={0x10, 0x0, 0x0, 0x1000008}, 0xc, &(0x7f0000001940)={&(0x7f00000016c0)={0x258, r11, 0x8, 0x70bd29, 0x25dfdbfe, {}, [{{0x8, 0x1, r12}, {0x17c, 0x2, [{0x3c, 0x1, @user_linkup_enabled={{{0x24, 0x1, 'user_linkup_enabled\x00'}, {0x8}, {0x4}}, {0x8}}}, {0x3c, 0x1, @enabled={{{0x24, 0x1, 'enabled\x00'}, {0x8}, {0x4}}, {0x8, 0x6, r13}}}, {0x4c, 0x1, @lb_tx_method={{0x24, 0x1, 'lb_tx_method\x00'}, {0x8}, {0x1c, 0x4, 'hash_to_port_mapping\x00'}}}, {0x3c, 0x1, @user_linkup_enabled={{{0x24, 0x1, 'user_linkup_enabled\x00'}, {0x8}, {0x4}}, {0x8, 0x6, r3}}}, {0x38, 0x1, @lb_stats_refresh_interval={{0x24, 0x1, 'lb_stats_refresh_interval\x00'}, {0x8}, {0x8, 0x4, 0xfa}}}, {0x40, 0x1, @queue_id={{{0x24, 0x1, 'queue_id\x00'}, {0x8}, {0x8, 0x4, 0x5}}, {0x8, 0x6, r3}}}]}}, {{0x8, 0x1, r14}, {0xb8, 0x2, [{0x3c, 0x1, @user_linkup_enabled={{{0x24, 0x1, 'user_linkup_enabled\x00'}, {0x8}, {0x4}}, {0x8, 0x6, r15}}}, {0x3c, 0x1, @enabled={{{0x24, 0x1, 'enabled\x00'}, {0x8}, {0x4}}, {0x8}}}, {0x3c, 0x1, @enabled={{{0x24, 0x1, 'enabled\x00'}, {0x8}, {0x4}}, {0x8, 0x6, r16}}}]}}]}, 0x258}, 0x1, 0x0, 0x0, 0x1}, 0x4000008) timerfd_create(0x12, 0x1400) 05:30:07 executing program 1 (fault-call:0 fault-nth:78): syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000140)='./file0\x00', 0xff, 0x1, &(0x7f0000000000)=[{&(0x7f0000000180)="8da4363ac0ed0000000000000001004d0100000000000000000000000009000000000000009748aeb81e1b00920efd9a0000010000000000098cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 05:30:07 executing program 4: r0 = syz_open_dev$sndmidi(&(0x7f0000000180)='/dev/snd/midiC#D#\x00', 0x2, 0x0) read(r0, 0x0, 0x2fc) r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000002800)='/dev/ashmem\x00', 0x0, 0x0) r2 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x0, 0x0) dup2(r1, r2) 05:30:07 executing program 2: r0 = syz_open_dev$sndmidi(&(0x7f0000000180)='/dev/snd/midiC#D#\x00', 0x2, 0x0) read(r0, 0x0, 0x2fc) openat$ashmem(0xffffffffffffff9c, &(0x7f0000002800)='/dev/ashmem\x00', 0x0, 0x0) openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x2, 0x0) [ 402.186882] FAULT_INJECTION: forcing a failure. [ 402.186882] name failslab, interval 1, probability 0, space 0, times 0 [ 402.204274] CPU: 1 PID: 25663 Comm: syz-executor.1 Not tainted 4.14.146 #0 [ 402.211407] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 402.220910] Call Trace: [ 402.223495] dump_stack+0x138/0x197 [ 402.227376] should_fail.cold+0x10f/0x159 [ 402.231513] ? __lock_is_held+0xb6/0x140 [ 402.235711] ? mempool_free+0x1d0/0x1d0 [ 402.239687] should_failslab+0xdb/0x130 [ 402.243652] kmem_cache_alloc+0x47/0x780 [ 402.247709] ? mempool_free+0x1d0/0x1d0 [ 402.251783] mempool_alloc_slab+0x47/0x60 [ 402.255940] mempool_alloc+0x138/0x300 [ 402.259816] ? __find_get_block+0x5c4/0xb10 [ 402.264127] ? remove_element.isra.0+0x1b0/0x1b0 [ 402.269061] ? mark_held_locks+0xb1/0x100 [ 402.273192] ? save_trace+0x290/0x290 [ 402.276992] ? trace_hardirqs_on_caller+0x400/0x590 [ 402.282007] bio_alloc_bioset+0x368/0x680 [ 402.286181] ? bvec_alloc+0x2e0/0x2e0 [ 402.289979] ? __getblk_gfp+0x5c/0x710 [ 402.293852] submit_bh_wbc+0xf6/0x720 [ 402.297636] __bread_gfp+0x106/0x290 [ 402.301363] btrfs_read_dev_one_super+0x9f/0x270 [ 402.306108] btrfs_read_dev_super+0x5d/0xb0 [ 402.310459] ? btrfs_read_dev_one_super+0x270/0x270 [ 402.315466] btrfs_get_bdev_and_sb+0xdc/0x2e0 [ 402.319962] __btrfs_open_devices+0x194/0xab0 [ 402.324461] ? check_preemption_disabled+0x3c/0x250 [ 402.329459] ? find_device+0x100/0x100 [ 402.333331] ? btrfs_mount+0x1069/0x2b28 [ 402.337390] ? rcu_read_lock_sched_held+0x110/0x130 [ 402.342400] btrfs_open_devices+0xa4/0xb0 [ 402.346626] btrfs_mount+0x11b4/0x2b28 [ 402.350668] ? lock_downgrade+0x6e0/0x6e0 [ 402.354884] ? find_held_lock+0x35/0x130 [ 402.358925] ? pcpu_alloc+0x3af/0x1050 [ 402.362822] ? btrfs_remount+0x11f0/0x11f0 [ 402.367041] ? rcu_read_lock_sched_held+0x110/0x130 [ 402.372048] ? __lockdep_init_map+0x10c/0x570 [ 402.376531] mount_fs+0x97/0x2a1 [ 402.380057] vfs_kern_mount.part.0+0x5e/0x3d0 [ 402.384533] ? find_held_lock+0x35/0x130 [ 402.388580] vfs_kern_mount+0x40/0x60 [ 402.392376] btrfs_mount+0x3ce/0x2b28 [ 402.396171] ? lock_downgrade+0x6e0/0x6e0 [ 402.400296] ? find_held_lock+0x35/0x130 [ 402.404350] ? pcpu_alloc+0x3af/0x1050 [ 402.408224] ? btrfs_remount+0x11f0/0x11f0 [ 402.412455] ? rcu_read_lock_sched_held+0x110/0x130 [ 402.417467] ? __lockdep_init_map+0x10c/0x570 [ 402.421958] ? __lockdep_init_map+0x10c/0x570 [ 402.426445] mount_fs+0x97/0x2a1 [ 402.429823] vfs_kern_mount.part.0+0x5e/0x3d0 [ 402.434316] do_mount+0x417/0x27d0 [ 402.437841] ? copy_mount_options+0x5c/0x2f0 [ 402.442319] ? rcu_read_lock_sched_held+0x110/0x130 [ 402.447332] ? copy_mount_string+0x40/0x40 [ 402.451559] ? copy_mount_options+0x1fe/0x2f0 [ 402.456040] SyS_mount+0xab/0x120 [ 402.459475] ? copy_mnt_ns+0x8c0/0x8c0 [ 402.463351] do_syscall_64+0x1e8/0x640 [ 402.467217] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 402.472407] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 402.477579] RIP: 0033:0x45c47a 05:30:08 executing program 3: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0xaaaaaaaaaaaadbb, &(0x7f00000000c0)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0xe2, 0x10000}], 0x61007, 0x0) r0 = semget(0x2, 0x0, 0x160) semctl$GETNCNT(r0, 0x2, 0xe, &(0x7f0000000400)=""/115) getresuid(&(0x7f0000000180)=0x0, &(0x7f00000001c0), &(0x7f0000000280)) mount$9p_unix(&(0x7f0000000000)='./file0\x00', &(0x7f0000000100)='./file0/file0\x00', &(0x7f0000000140)='9p\x00', 0x1000040, &(0x7f00000002c0)=ANY=[@ANYBLOB='trans=unix,msize=0x0000000000002fe7,loose,cachI=mmap,access=any,cachetag=btrfs\x00,posixacl,fowner<', @ANYRESDEC=r1, @ANYBLOB=',\x00']) unlink(&(0x7f0000000480)='./file0/file0\x00') futex(&(0x7f0000000340), 0x0, 0x1, &(0x7f0000000380)={0x0, 0x1c9c380}, &(0x7f00000003c0), 0x2) [ 402.480749] RSP: 002b:00007f617e384a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 402.488449] RAX: ffffffffffffffda RBX: 00007f617e384b40 RCX: 000000000045c47a [ 402.495785] RDX: 00007f617e384ae0 RSI: 0000000020000140 RDI: 00007f617e384b00 [ 402.503152] RBP: 0000000000000001 R08: 00007f617e384b40 R09: 00007f617e384ae0 [ 402.510408] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000004 [ 402.517665] R13: 00000000004c8b25 R14: 00000000004dfbc8 R15: 0000000000000003 05:30:08 executing program 1 (fault-call:0 fault-nth:79): syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000140)='./file0\x00', 0xff, 0x1, &(0x7f0000000000)=[{&(0x7f0000000180)="8da4363ac0ed0000000000000001004d0100000000000000000000000009000000000000009748aeb81e1b00920efd9a0000010000000000098cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 05:30:08 executing program 3: syz_genetlink_get_family_id$nbd(&(0x7f00000000c0)='nbd\x00') syz_mount_image$btrfs(&(0x7f0000000100)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x4, 0x0, &(0x7f0000000000), 0x2000, 0x0) [ 402.871495] FAULT_INJECTION: forcing a failure. [ 402.871495] name failslab, interval 1, probability 0, space 0, times 0 [ 402.890289] CPU: 0 PID: 25693 Comm: syz-executor.1 Not tainted 4.14.146 #0 [ 402.897345] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 402.906734] Call Trace: [ 402.909339] dump_stack+0x138/0x197 [ 402.912990] should_fail.cold+0x10f/0x159 [ 402.917163] should_failslab+0xdb/0x130 [ 402.921163] kmem_cache_alloc+0x2d7/0x780 [ 402.925321] ? add_to_page_cache_lru+0x159/0x310 [ 402.930091] ? add_to_page_cache_locked+0x40/0x40 [ 402.934957] alloc_buffer_head+0x24/0xe0 [ 402.939024] alloc_page_buffers+0xb7/0x200 [ 402.943267] __getblk_gfp+0x342/0x710 [ 402.947071] ? lru_add_drain_all+0x18/0x20 [ 402.951316] __bread_gfp+0x2e/0x290 [ 402.954957] btrfs_read_dev_one_super+0x9f/0x270 [ 402.959730] btrfs_read_dev_super+0x5d/0xb0 [ 402.964061] ? btrfs_read_dev_one_super+0x270/0x270 [ 402.969082] btrfs_get_bdev_and_sb+0xdc/0x2e0 [ 402.973685] __btrfs_open_devices+0x194/0xab0 [ 402.978188] ? check_preemption_disabled+0x3c/0x250 [ 402.983215] ? find_device+0x100/0x100 [ 402.987194] ? btrfs_mount+0x1069/0x2b28 [ 402.991259] ? rcu_read_lock_sched_held+0x110/0x130 [ 402.996310] btrfs_open_devices+0xa4/0xb0 [ 403.000462] btrfs_mount+0x11b4/0x2b28 [ 403.004359] ? lock_downgrade+0x6e0/0x6e0 [ 403.008510] ? find_held_lock+0x35/0x130 [ 403.012576] ? pcpu_alloc+0x3af/0x1050 [ 403.016474] ? btrfs_remount+0x11f0/0x11f0 [ 403.020720] ? rcu_read_lock_sched_held+0x110/0x130 [ 403.025756] ? __lockdep_init_map+0x10c/0x570 [ 403.030264] mount_fs+0x97/0x2a1 [ 403.033629] vfs_kern_mount.part.0+0x5e/0x3d0 [ 403.038108] ? find_held_lock+0x35/0x130 [ 403.042169] vfs_kern_mount+0x40/0x60 [ 403.045974] btrfs_mount+0x3ce/0x2b28 [ 403.049777] ? lock_downgrade+0x6e0/0x6e0 [ 403.053933] ? find_held_lock+0x35/0x130 [ 403.057998] ? pcpu_alloc+0x3af/0x1050 [ 403.061897] ? btrfs_remount+0x11f0/0x11f0 [ 403.066145] ? rcu_read_lock_sched_held+0x110/0x130 [ 403.071171] ? __lockdep_init_map+0x10c/0x570 [ 403.075670] ? __lockdep_init_map+0x10c/0x570 [ 403.080173] mount_fs+0x97/0x2a1 [ 403.083549] vfs_kern_mount.part.0+0x5e/0x3d0 [ 403.088052] do_mount+0x417/0x27d0 [ 403.091594] ? copy_mount_options+0x5c/0x2f0 [ 403.096009] ? rcu_read_lock_sched_held+0x110/0x130 [ 403.101032] ? copy_mount_string+0x40/0x40 [ 403.105273] ? copy_mount_options+0x1fe/0x2f0 [ 403.109776] SyS_mount+0xab/0x120 [ 403.113238] ? copy_mnt_ns+0x8c0/0x8c0 [ 403.117141] do_syscall_64+0x1e8/0x640 [ 403.121037] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 403.126077] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 403.131269] RIP: 0033:0x45c47a [ 403.134458] RSP: 002b:00007f617e384a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 403.142199] RAX: ffffffffffffffda RBX: 00007f617e384b40 RCX: 000000000045c47a [ 403.151296] RDX: 00007f617e384ae0 RSI: 0000000020000140 RDI: 00007f617e384b00 [ 403.158577] RBP: 0000000000000001 R08: 00007f617e384b40 R09: 00007f617e384ae0 [ 403.165855] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000004 [ 403.173125] R13: 00000000004c8b25 R14: 00000000004dfbc8 R15: 0000000000000003 05:30:09 executing program 5: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dlm-control\x00', 0x121000, 0x0) ioctl$PPPIOCGL2TPSTATS(r0, 0x80487436, &(0x7f0000000680)="2708c19d28324be357122c3771bf8564dd0ce3b2cf693ce341305e0d1a5097ae9f2a7c65d174ea766e0858e8477d7b0c2f4843729551948847ca036dcacc39caa62c099b9717a12ce96de89a9c15c6b57c7b3b66c332d8735ee58ca1b10a5fbe225e506213ea01762c846233b78c179ce498155fda501412615c7b05ec885677444ad8444b3571f8ec5d5d2a29f854f8f13bf46257c1120fe8cfcb815dac825eb47a84c7d6fbf7b556865e4e8cfd47890d9aae0506643e9b2376f65b1b434c0aad3746b14dbf74b5fa0014dc1bfea28440e0372e4d5f71e98891f7ee0ea66ca88c1b8894d295c38678f4dfbc9c155d8cdb2b4c5a72cc932f774d29a83caf915d46045b930ecedf3d49eb839001b8398a81bb8211f9fcd741d104b0e6cd354e8405278533e07acfa0547b99a8e189adcd1c40acc1d3a7310e39930978fb985bd3229bf388787ed0b01fa9ba8cc51169549ac51a89016fe6242eadcfff3346c21a833b73cdeef9e9780dc6d75f854eb497952037a784ec3802fd6526cc3699a162090d842c5661067b96dc414e805c30a897824b9e2a2f0cf8635e1a76a084753a0011d60f8c3b3108f8c60ba2fdca24e5323d88b69d8e10ce57c51b26a3f4d5f5c9a33b338775db7964256e2dc62fa2ad457349bfb832f582b967afaf672229ba00f35b7924dbced13d78df38fa7de280b9182eeeffe03d673b224addbb41a129e2442c45ac7384d14ecc2a46e64c69db45c5d47236a0a9e710cbd2e95af2528b41f5ea752201bad2cc7d73c5ff99f322405605c784021b8cb2311161cdf92f8b09d0157ef15695dff6d8a635c0a45391e1cff779c39972226f87802042772c915c5c6243bb4c533d365be540bfb8aa9f2767ee42372bdd2aa96cd4f1af1cfd54c21286081b6e62a70b554d6d49b1a6d0ab4d7f197eeae94e459a490b1aba27d7d5a11de2b6cc5bf5664bf8b68b6739f1b53b779a4165ae90ee8468bdac5d884643829f9ca09f043d52b9f8d2b3ba90b98ddf0315839b883cd6e02a5ab51ca7e7f71eb895f42a2be2df1792d8a7bc1a1bf5f555b33a36eab6a109f93ce57cdb96fb3ddf04eaf79694ed9a70d6da02caafc3914a32a9eb0ea8484428458a335617128c772131ab55a4e824a7ede8fd77926c792438d593ea4363c36b816c6b42803dc9ebd85d4889948091edad772b850ab7562a874a84860c2d1f81e3e551019a953c620547a3d6bb0df31781d97b01ae4cdf6d5c3f938e2542e641b2750d3db0c6ad9bcebd06cb31a64314b57b5dea19946fd45ab04d7d9b3a14ce4806a585c86c9ed5f8984f9a08f700270e1d830ec19cef2b1e529cf08aa3354b2bfd4d82bd2c290966942adebb56c5e4ed0c61f51e677b292388d9a202a279862f6c551d9ac6110b597689171f19172eabb7e6c53f6942bce3c400238e40fa8d325c1df61b2dcc04e2ee6c3fe37dacabf70709620dd384f47d93fac5ee5a08c114cab0f79453fec4d1a7846573cdb672ee752ce09c8b5c4b3054272d0f0c98d40f1011b77786c8f34814a36528bb42fb66ff4eecfb986bb7eab89bafc4b6ca6ea8ee1854684fe39bd7fbcf56d4d85766672f4e2c476069af99a6f18be687e0dd72742c0743a437548f5dfa655aa3b6ac404c692f7e06cc741fd0d8937e63b7a4e2afaae9f4eaa9eec5b0452c7374e14a8eec5a366697631899910a720a90782169854a156a1dfe32e66ba6da26e588760ae4a8eca9251b6b4091715488272ab7930a09b5b730ed844592eb81ad58efe7cfe01226c8e8462b8a4460d75cb962234865debd9be0872572af20f689da38b11999960eac57a56645479dfc2d68e56958558f4fa6907320951c973718a853db74cf5b6985735614476d30c13b53f810270b1d14d7bb43f23f5a7f090d269e707bcb2a2dac6cdb7b2d7fff5a0631b57fe0e3dae4e7397870a1e24f309c5e27a149aab9c818f99a1545c20a779e19009df09a86663fd3d78be144fc96730b2fcec56febbe73bcc8702923473dc81d0f3718ac8ee96c47f1a4d268596c140f50651c0d34b5a04a1431394a36525a92f5c42fdfeef4cba3fa695f3c68c680fda8f9fae487f8624a8b5a727afacc1d0c263bec182258b356c0e928465da3facb3ce033f1f4234927044734920f87bcc22637ed7565da9267bd3fc3d9df69cf5de17140cc739f598a0ba6780f9faa99bf2664ae661b543bd6600bfa6f265952f34cd375b94aaeb621ba97a96ebe9ad9912e8247c9ecf630977eb08bd18450da5282a3c80ed05c7d1a7727b6407e0e4907b4d1cd98c2455a7870be6a9abfe2d7b2ddad86ea45e8b86b2df5039ca73d8aa51f3b6cf9a24d1b17be6bbdca277d44558bef131c7a22f19c1f08df08710ca20cdf3eded72762443caf1184cd8870f90b19753666998a81d8ffdb5d6e171e22df7df85434629d0484e5ec2c08a00b2ab1f85df47e0c35543552931051c74e4d60da1b6e26ecca9c999e1bb76ddf546fd3b967875547a05e80cbe0ba01dadb06b2701f8fdddae80df215caf87abf82fc9d0cb42447abcb72f68057d1ce4be9f9477e4af78ae1debd57bdf2121eeac68f223531485653c5795642a09c6cc4ae807dabe0de7f6f01dea3a5002994ef6bf2c879fd625aefb5de77c209f4eca9e1093d76cb09a6cb6c3d0540ead6d63707e882b8cd6a64a76e9dffdeb6050796ec4bbd1c35021639eb782b8cc2119bd4c0e5dd80940bc86328c0722b06d8ee8b63d03c65b3fa303052de348e5f635e117e32417c5b090904d3cf20b8dd9084278ea1af8afa58114b80c3f948a1bead9eb37d4a80c7a30dfd7a979e9a2aae367f3f242a4fe8f87ae44c092cc133d80ce73b5a7c2e9f8b59e55f87650ac83effaaa8727e0ad113153eb4e84f249d48146deeea57178c2dc4927b3321234e142ecc1915f1623b94123c776f6d60e0943994cbe7a241792f7f83442848b2306c0cea07d3b55d21496aae071b3a406be7f910bf79bd5eded1d2a2b828e3ebda92391cac2e18006672c835821d9cb786e2d455793eebafb6977c4524f749abb8fa7681d1c70fe6663486b8e345fd0ad9262b60e9e0979192ef4cc4f00d33c23631d035ad52135fc85df7bf93bf3f22b7d85c3e66b653e02ec1cb8cae6d555c449fe16c5b85e7124af4cb4f5e4b3fde22784f66ff417e5d11e49dfa03ecf1ee4c3d66ea28599d86edc0465b1991550a57f4d6b3c494af1a6205739dd5e82835a03c49188a4739ba0c76b2bc2a9c37768f95c76fa4b38cf34138aca0c08ce72b820b603290cd684f6cc18f6197ff180e5057b539f7cb0e4f56baa04891adc10170315c88e12bc1bdafa01b4a20ddc7646a9d4c605ada8c1ce477910b0c87e71bfa6cc1d51771eaddedbcabbbafab3eaee35552bc18493acd25ae1e94a7789df488542ebd4fc0bd35a641795b037cb43cbdd7e43d10f3fd412fbd884c323a879da746eadae1678b776f115e4ea394b333ebca213c2876cb11c2224dad9e0b824817a3813d47a42c1ee9d48c37cab3ad40321bd7e955dd3eb57dae9c3aec5e2af6e42a0f3cb1bc5eb45f271e89732e79b400e71126d006da3191b5236e1c8bbd5ce34580398401fa62149236c57b0a768798ff4ec74bccc495c4157b858c4b54150713bc5611543e864c53842d63b9d488e92faa14afdb4e2ff37abe09f9359943bc87d7f45e221af747d09eed51bd6ef5d97d1897e25d5a614809867bd285e88fa26a48f4d3d8e55e30fab545f35bac85640edab0bf6e89760ab24e26eed1cf8cc212216cd10aac766138ea950315d97d88c1e8faa4f101366526c5bd834c2fe5a9c9c2eb10c6511f8a996b8f686c7af284a157a9549fc56a4842b31777877f8dc625e7cd6a407731848a58cfca3ac2082bebf8fb7c3253e3b5661ab12e145f653aa99ca8b164c4a5ea04667f7fe969041c108af81d494ef0a3acec0e97a6f1afe6d11dbf78e366a28f8975b72e5bae74344083e7efd8e22823df1fe533d166bb277a6ba94d33de0e898f65dad1cb2a768e567abc978fb1506bea4d881a55a821c64f1ad36d4c613bf03ad5d79b4f40f138933b9b880d3c7cfdba6e74d57af30e312295a3df1c1867d8fac6b01709fc77246adaeda85fcc2796dd9a75d1da872e90c4416b7d28bdf6379914e62607df1fe3784c1937df59023001807c42c51649aee449ca2666afb1d78070e59b4bb09983f52a1cc69de335961ba478174f88755e46766e1b3e7cb226f4fd62c2b53563e318e1ff17a50e9ce0a21f0048682f4a5d59a948bb3968fa252fc11d2ee3501d3d1ee6ad9baea6f362725098b90687104a06ea6c5fa8c0bd0202fb90a24ad9dd7a080e453643f528c5dc3613c2b0a4c517b67ecb8b1cf6cbfcb017e999e01299d7fe63c1878be85cbc25ca5138fbc10ea09d932b79f64310788974c0b7930aa908d875ead9477ef3f114a9f16358ab2337b9cdc09d826f500e3480e97f4b028b0e7feae16fa4b1dc7d538052fb6c1f038ae1c0eb41e7e6197a1b0afe2fa663705e3bd8f146cc58b170f5a30d1bc04a9ca6ba6caa3b51d7a1d3cfefd23ab1baf0c7c77c2c2880c8f8ba5dfc426b84da5304cbe9fef5abfb13304c6197d4c3d4ed8438f636dca5b48765741bec349142f8750484b20ac31b6fd4cb38221521e6b70c46534e3abd70cd20eaed45695dc8f9e6ff0af773eccd308cce02b80534f90bb1a2b03f0b251209ffb519721722d89f0261d57886ad7579b31dac014e84b9d0b110b1fafedfffac32166245fdf8464c4374a714264b31d26023a5493aa1ffde1f2b95b074c7e6e7bd64970b66a843f17b2697eece3fe90d7c67ccd74d11ccdf63bba0bc987faa93302e19b4bbe60729057a2938144eb33a6ce22e511e25e2ad59059d587bf3375103c8a32554d8c729c0780e463da70849ec45cd3e5c5cb1822fe256f4b777ced45c4144c44c2dc0ec125d6b5c4840e7a0f3800d144c67fbffbddeb9925dc2d292f0cbc232725bf165b2c5a3745f999bec21795a41f313b12670c11dbb9264c64c7155477be72c6b959b551079b4e96e474e91d0899019f74cef111bd0945622644c314619078eaa57512810cc7d88d838fefd18db284c85bbb7e361ed1e944a561cd21df46a7dcf17295b596d3367da24dbf33391284e15836b2a2142c3cc3f9345b0bc5f50c1b14ae40997f5593584e9e9b8f43a554085bdf9896cce32c367afe9b37a8e88f2d7e496e1872cd98e4ba6444717b295cd80de28693bb0c4fcaa70603633664ce034834aed30174ebf03afda77885ab95f82d0013663e78dbb9afa5e95373097087fe93cfca2f47627c8dd08dd2bc3104fb8ce6cfd3edb00f91d64f473d309806c6a86e07dcafb7944db4dadfbc9f1d8d5cb50a08bb6ea40b74b0ce2c48776023eaf58e0dc6b590d6a05991c6028812da21c325d188238fa7de129a44ad33b0d6b6cfb18d90f117b906a53b0adc91adcdb7b2e90485eec7232103dad19e94d6d6a45fbc03c966cb03a041f2155f533155034db5d7da9932aa434fa0fc8399deef147fc837622952f91fdcc614769c19349cd63ec9549a31a6c3f839f032b0c5d2ddf871fcf01f27ba83c1bcd96b4c81342c289f547dc860cd83a7dbca78c15abdb1ac352cf7e61fcf5cf0a9305806e074cbe53afe09ea5de35a6c1147282ef02fc50fdf69924312777c917612a6d854264e7e3a4dcb93a7321bbf80b2191e6a91778be4895355229b4348a4622c4f12f631ac48b7ed545eeb095df1550201ecaa0ff8bc8aed1f49248013752af03e4d3b4") clock_gettime(0x0, &(0x7f00000001c0)={0x0, 0x0}) futimesat(r0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000280)={{}, {r1, r2/1000+10000}}) ioctl$VIDIOC_ENUMOUTPUT(r0, 0xc0485630, &(0x7f0000000100)={0xfffffffe, "3336c32f91d6a28aedf58344de531c6893143028950cf7b692618802faaa0fb6", 0x1, 0x2, 0x10001, 0x40004, 0x2}) r3 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = fcntl$dupfd(r3, 0x0, 0xffffffffffffffff) getsockopt$EBT_SO_GET_INIT_INFO(r4, 0x0, 0x82, &(0x7f0000000180)={'broute\x00'}, &(0x7f0000000240)=0x50) ioctl$TIOCSCTTY(r4, 0x540e, 0xffffffff) getsockopt$sock_cred(r4, 0x1, 0x11, 0x0, &(0x7f0000000640)) r5 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000280)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r5, 0x4c81, 0x0) r6 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82) ioctl$LOOP_CTL_ADD(r5, 0x4c80, r6) ioctl$LOOP_CTL_REMOVE(r4, 0x4c81, r6) 05:30:09 executing program 4: r0 = syz_open_dev$sndmidi(&(0x7f0000000180)='/dev/snd/midiC#D#\x00', 0x2, 0x0) read(r0, 0x0, 0x2fc) r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000002800)='/dev/ashmem\x00', 0x0, 0x0) r2 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x0, 0x0) dup2(r1, r2) 05:30:09 executing program 2: r0 = syz_open_dev$sndmidi(&(0x7f0000000180)='/dev/snd/midiC#D#\x00', 0x2, 0x0) read(r0, 0x0, 0x2fc) openat$ashmem(0xffffffffffffff9c, &(0x7f0000002800)='/dev/ashmem\x00', 0x0, 0x0) openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x2, 0x0) 05:30:10 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)) prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x802102001ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = gettid() r2 = epoll_create(0x3) epoll_pwait(r2, &(0x7f0000000340)=[{}], 0x1, 0x7fff, &(0x7f0000000380), 0x8) ptrace$setopts(0x4206, r1, 0x0, 0x0) tkill(r1, 0x38) 05:30:10 executing program 3: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x4, 0x4182) r1 = memfd_create(&(0x7f0000000080)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) pwritev(r1, &(0x7f0000000340)=[{&(0x7f0000000140)='!', 0x1}], 0x1, 0x81805) r2 = dup2(r1, r1) ioctl$SG_GET_RESERVED_SIZE(r1, 0x2272, 0x0) ioctl$LOOP_CHANGE_FD(r0, 0x4c00, r1) write$P9_RLERRORu(r2, &(0x7f00000003c0)=ANY=[@ANYBLOB="1400000007650d6c24ed92c8397291335cf616f0010200070062726f0c62077600b365a0a59e7eea"], 0x28) getsockopt$sock_cred(r2, 0x1, 0x11, 0x0, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f00000007c0)={{{@in=@remote, @in6=@initdev}}, {{@in=@empty}, 0x0, @in6=@ipv4}}, &(0x7f00000008c0)=0xe8) sendfile(r2, r0, 0x0, 0x2400003e) recvfrom$x25(r2, &(0x7f00000000c0)=""/105, 0x69, 0x1, &(0x7f0000000140)={0x9, @null=' \x00'}, 0x12) 05:30:10 executing program 1 (fault-call:0 fault-nth:80): syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000140)='./file0\x00', 0xff, 0x1, &(0x7f0000000000)=[{&(0x7f0000000180)="8da4363ac0ed0000000000000001004d0100000000000000000000000009000000000000009748aeb81e1b00920efd9a0000010000000000098cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 05:30:10 executing program 5: r0 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = fcntl$dupfd(r0, 0x0, 0xffffffffffffffff) getsockopt$EBT_SO_GET_INIT_INFO(r1, 0x0, 0x82, &(0x7f0000000180)={'broute\x00'}, &(0x7f0000000240)=0x50) r2 = openat$selinux_user(0xffffffffffffff9c, &(0x7f00000002c0)='/selinux/user\x00', 0x2, 0x0) prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r2) ioctl$TIOCSCTTY(r1, 0x540e, 0xffffffff) setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r1, 0x6, 0x14, &(0x7f0000000100), 0x4) getsockopt$sock_cred(r1, 0x1, 0x11, 0x0, &(0x7f0000000640)) r3 = socket$alg(0x26, 0x5, 0x0) bind$alg(r3, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'ghash-generic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, 0x0, 0x0) r4 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r5 = fcntl$dupfd(r4, 0x0, 0xffffffffffffffff) getsockopt$EBT_SO_GET_INIT_INFO(r5, 0x0, 0x82, &(0x7f0000000180)={'broute\x00'}, &(0x7f0000000240)=0x50) ioctl$TIOCSCTTY(r5, 0x540e, 0xffffffff) getsockopt$sock_cred(r5, 0x1, 0x11, 0x0, &(0x7f0000000640)) r6 = accept4$llc(r5, &(0x7f0000000140), &(0x7f0000000280)=0x10, 0x80000) syz_open_dev$media(&(0x7f0000000300)='/dev/media#\x00', 0xff, 0x488b01) sendfile(r3, r6, 0x0, 0x200) setsockopt$SO_VM_SOCKETS_BUFFER_MIN_SIZE(r1, 0x28, 0x1, &(0x7f00000000c0)=0x3f, 0x8) syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0xfc71a08fd71e512d, 0x0) 05:30:10 executing program 4: r0 = syz_open_dev$sndmidi(&(0x7f0000000180)='/dev/snd/midiC#D#\x00', 0x2, 0x0) read(r0, 0x0, 0x2fc) openat$ashmem(0xffffffffffffff9c, &(0x7f0000002800)='/dev/ashmem\x00', 0x0, 0x0) r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x2, 0x0) dup2(0xffffffffffffffff, r1) 05:30:10 executing program 2: r0 = syz_open_dev$sndmidi(&(0x7f0000000180)='/dev/snd/midiC#D#\x00', 0x2, 0x0) read(r0, 0x0, 0x2fc) r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000002800)='/dev/ashmem\x00', 0x0, 0x0) dup2(r1, 0xffffffffffffffff) [ 405.186727] FAULT_INJECTION: forcing a failure. [ 405.186727] name failslab, interval 1, probability 0, space 0, times 0 [ 405.197984] CPU: 1 PID: 25738 Comm: syz-executor.1 Not tainted 4.14.146 #0 [ 405.205002] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 405.205008] Call Trace: [ 405.205026] dump_stack+0x138/0x197 [ 405.205044] should_fail.cold+0x10f/0x159 [ 405.205063] should_failslab+0xdb/0x130 [ 405.220766] kmem_cache_alloc+0x47/0x780 [ 405.220786] radix_tree_node_alloc.constprop.0+0x1c7/0x310 [ 405.220799] __radix_tree_create+0x337/0x4d0 [ 405.220813] page_cache_tree_insert+0xa7/0x2d0 [ 405.220826] ? file_check_and_advance_wb_err+0x380/0x380 [ 405.257046] ? debug_smp_processor_id+0x1c/0x20 [ 405.261707] __add_to_page_cache_locked+0x2ab/0x7e0 [ 405.266711] ? find_lock_entry+0x3f0/0x3f0 [ 405.270928] ? lock_downgrade+0x6e0/0x6e0 [ 405.275058] add_to_page_cache_lru+0xf4/0x310 [ 405.279534] ? add_to_page_cache_locked+0x40/0x40 [ 405.284359] ? __page_cache_alloc+0xdd/0x3e0 [ 405.288766] pagecache_get_page+0x1f5/0x750 [ 405.293073] __getblk_gfp+0x24b/0x710 [ 405.296864] ? lru_add_drain_all+0x18/0x20 [ 405.301101] __bread_gfp+0x2e/0x290 [ 405.304714] btrfs_read_dev_one_super+0x9f/0x270 [ 405.309886] btrfs_read_dev_super+0x5d/0xb0 [ 405.314188] ? btrfs_read_dev_one_super+0x270/0x270 [ 405.319361] btrfs_get_bdev_and_sb+0xdc/0x2e0 [ 405.323838] __btrfs_open_devices+0x194/0xab0 [ 405.328319] ? check_preemption_disabled+0x3c/0x250 [ 405.333329] ? find_device+0x100/0x100 [ 405.337199] ? btrfs_mount+0x1069/0x2b28 [ 405.341242] ? rcu_read_lock_sched_held+0x110/0x130 [ 405.346243] btrfs_open_devices+0xa4/0xb0 [ 405.350375] btrfs_mount+0x11b4/0x2b28 [ 405.354243] ? lock_downgrade+0x6e0/0x6e0 [ 405.358371] ? find_held_lock+0x35/0x130 [ 405.362415] ? pcpu_alloc+0x3af/0x1050 [ 405.366289] ? btrfs_remount+0x11f0/0x11f0 [ 405.370509] ? rcu_read_lock_sched_held+0x110/0x130 [ 405.375794] ? __lockdep_init_map+0x10c/0x570 [ 405.380292] mount_fs+0x97/0x2a1 [ 405.383675] vfs_kern_mount.part.0+0x5e/0x3d0 [ 405.388161] ? find_held_lock+0x35/0x130 [ 405.392211] vfs_kern_mount+0x40/0x60 [ 405.395999] btrfs_mount+0x3ce/0x2b28 [ 405.399784] ? lock_downgrade+0x6e0/0x6e0 [ 405.403910] ? find_held_lock+0x35/0x130 [ 405.407953] ? pcpu_alloc+0x3af/0x1050 [ 405.411827] ? btrfs_remount+0x11f0/0x11f0 [ 405.416046] ? rcu_read_lock_sched_held+0x110/0x130 [ 405.422787] ? __lockdep_init_map+0x10c/0x570 [ 405.427265] ? __lockdep_init_map+0x10c/0x570 [ 405.431747] mount_fs+0x97/0x2a1 [ 405.435103] vfs_kern_mount.part.0+0x5e/0x3d0 [ 405.439588] do_mount+0x417/0x27d0 [ 405.443111] ? copy_mount_options+0x5c/0x2f0 [ 405.447500] ? rcu_read_lock_sched_held+0x110/0x130 [ 405.452877] ? copy_mount_string+0x40/0x40 [ 405.457104] ? copy_mount_options+0x1fe/0x2f0 [ 405.461599] SyS_mount+0xab/0x120 [ 405.465040] ? copy_mnt_ns+0x8c0/0x8c0 [ 405.468914] do_syscall_64+0x1e8/0x640 [ 405.472784] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 405.477635] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 405.482811] RIP: 0033:0x45c47a [ 405.485988] RSP: 002b:00007f617e384a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 405.493679] RAX: ffffffffffffffda RBX: 00007f617e384b40 RCX: 000000000045c47a [ 405.500933] RDX: 00007f617e384ae0 RSI: 0000000020000140 RDI: 00007f617e384b00 [ 405.508185] RBP: 0000000000000001 R08: 00007f617e384b40 R09: 00007f617e384ae0 [ 405.515439] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000004 [ 405.522692] R13: 00000000004c8b25 R14: 00000000004dfbc8 R15: 0000000000000003 05:30:11 executing program 5: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = fcntl$dupfd(r0, 0x0, 0xffffffffffffffff) r2 = socket$alg(0x26, 0x5, 0x0) bind$alg(r2, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'ghash-generic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, 0x0, 0x0) r3 = socket$alg(0x26, 0x5, 0x0) bind$alg(r3, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'ghash-generic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, 0x0, 0x0) r4 = openat$null(0xffffffffffffff9c, &(0x7f0000000080)='/dev/null\x00', 0x60040, 0x0) poll(&(0x7f0000000280)=[{r2, 0x1}, {0xffffffffffffffff, 0xe10}, {r1, 0x101a}, {r0, 0x8044}, {r3, 0x2000}, {r4, 0x400}, {r1, 0x1}, {r1, 0x2000}, {r0, 0x40}], 0x9, 0x1) getsockopt$EBT_SO_GET_INIT_INFO(r1, 0x0, 0x82, &(0x7f0000000180)={'broute\x00'}, &(0x7f0000000240)=0x50) ioctl$TIOCSCTTY(r1, 0x540e, 0xffffffff) ioctl$VIDIOC_QUERYMENU(r1, 0xc02c5625, &(0x7f0000000140)={0x0, 0x9, @value=0x7}) getsockopt$sock_cred(r1, 0x1, 0x11, 0x0, &(0x7f0000000640)) ioctl$VHOST_GET_FEATURES(r1, 0x8008af00, &(0x7f00000000c0)) 05:30:11 executing program 1 (fault-call:0 fault-nth:81): syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000140)='./file0\x00', 0xff, 0x1, &(0x7f0000000000)=[{&(0x7f0000000180)="8da4363ac0ed0000000000000001004d0100000000000000000000000009000000000000009748aeb81e1b00920efd9a0000010000000000098cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 405.694184] FAULT_INJECTION: forcing a failure. [ 405.694184] name failslab, interval 1, probability 0, space 0, times 0 [ 405.711430] CPU: 0 PID: 25770 Comm: syz-executor.1 Not tainted 4.14.146 #0 [ 405.718495] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 405.727867] Call Trace: [ 405.730468] dump_stack+0x138/0x197 [ 405.736559] should_fail.cold+0x10f/0x159 [ 405.740728] should_failslab+0xdb/0x130 [ 405.744719] kmem_cache_alloc+0x2d7/0x780 [ 405.748884] ? add_to_page_cache_lru+0x159/0x310 [ 405.753822] ? add_to_page_cache_locked+0x40/0x40 [ 405.758657] alloc_buffer_head+0x24/0xe0 [ 405.762722] alloc_page_buffers+0xb7/0x200 [ 405.767030] __getblk_gfp+0x342/0x710 [ 405.771260] ? lru_add_drain_all+0x18/0x20 [ 405.775484] __bread_gfp+0x2e/0x290 [ 405.779104] btrfs_read_dev_one_super+0x9f/0x270 [ 405.783859] btrfs_read_dev_super+0x5d/0xb0 [ 405.788250] ? btrfs_read_dev_one_super+0x270/0x270 [ 405.793263] btrfs_get_bdev_and_sb+0xdc/0x2e0 [ 405.797740] __btrfs_open_devices+0x194/0xab0 [ 405.802229] ? check_preemption_disabled+0x3c/0x250 [ 405.807242] ? find_device+0x100/0x100 [ 405.811125] ? btrfs_mount+0x1069/0x2b28 [ 405.815701] ? rcu_read_lock_sched_held+0x110/0x130 [ 405.820704] btrfs_open_devices+0xa4/0xb0 [ 405.824839] btrfs_mount+0x11b4/0x2b28 [ 405.828714] ? lock_downgrade+0x6e0/0x6e0 [ 405.833215] ? find_held_lock+0x35/0x130 [ 405.837261] ? pcpu_alloc+0x3af/0x1050 [ 405.841236] ? btrfs_remount+0x11f0/0x11f0 [ 405.845462] ? rcu_read_lock_sched_held+0x110/0x130 [ 405.850465] ? __lockdep_init_map+0x10c/0x570 [ 405.854968] mount_fs+0x97/0x2a1 [ 405.858325] vfs_kern_mount.part.0+0x5e/0x3d0 [ 405.862800] ? find_held_lock+0x35/0x130 [ 405.866845] vfs_kern_mount+0x40/0x60 [ 405.870631] btrfs_mount+0x3ce/0x2b28 [ 405.874415] ? lock_downgrade+0x6e0/0x6e0 [ 405.878545] ? find_held_lock+0x35/0x130 [ 405.882590] ? pcpu_alloc+0x3af/0x1050 [ 405.886711] ? btrfs_remount+0x11f0/0x11f0 [ 405.890933] ? rcu_read_lock_sched_held+0x110/0x130 [ 405.895949] ? __lockdep_init_map+0x10c/0x570 [ 405.900428] ? __lockdep_init_map+0x10c/0x570 [ 405.904910] mount_fs+0x97/0x2a1 [ 405.908268] vfs_kern_mount.part.0+0x5e/0x3d0 [ 405.912761] do_mount+0x417/0x27d0 [ 405.916293] ? copy_mount_options+0x5c/0x2f0 [ 405.920686] ? rcu_read_lock_sched_held+0x110/0x130 [ 405.925694] ? copy_mount_string+0x40/0x40 [ 405.929912] ? copy_mount_options+0x1fe/0x2f0 [ 405.934395] SyS_mount+0xab/0x120 [ 405.938178] ? copy_mnt_ns+0x8c0/0x8c0 [ 405.942051] do_syscall_64+0x1e8/0x640 [ 405.945961] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 405.950800] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 405.955979] RIP: 0033:0x45c47a [ 405.959189] RSP: 002b:00007f617e384a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 405.966879] RAX: ffffffffffffffda RBX: 00007f617e384b40 RCX: 000000000045c47a [ 405.974132] RDX: 00007f617e384ae0 RSI: 0000000020000140 RDI: 00007f617e384b00 [ 405.981384] RBP: 0000000000000001 R08: 00007f617e384b40 R09: 00007f617e384ae0 05:30:11 executing program 2: r0 = syz_open_dev$sndmidi(&(0x7f0000000180)='/dev/snd/midiC#D#\x00', 0x2, 0x0) read(r0, 0x0, 0x2fc) dup2(0xffffffffffffffff, 0xffffffffffffffff) 05:30:11 executing program 4: r0 = syz_open_dev$sndmidi(&(0x7f0000000180)='/dev/snd/midiC#D#\x00', 0x2, 0x0) read(r0, 0x0, 0x2fc) openat$ashmem(0xffffffffffffff9c, &(0x7f0000002800)='/dev/ashmem\x00', 0x0, 0x0) r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x2, 0x0) dup2(0xffffffffffffffff, r1) 05:30:11 executing program 5: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000013c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000080)) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f00000000c0)=0x5) ioctl$TCSETSF(r1, 0x5412, &(0x7f0000000000)={0xffffffc0}) ioctl$TCSETXW(r1, 0x5435, &(0x7f00000000c0)={0xfff, 0x1, [0x3a47, 0x800, 0x3, 0x0, 0x5], 0x5}) [ 405.988636] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000004 [ 405.995904] R13: 00000000004c8b25 R14: 00000000004dfbc8 R15: 0000000000000003 05:30:11 executing program 3: r0 = dup(0xffffffffffffffff) ioctl$EVIOCGSW(r0, 0x8040451b, &(0x7f0000000280)=""/4096) syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 406.132073] mkiss: ax0: crc mode is auto. [ 406.357594] mkiss: ax0: crc mode is auto. 05:30:13 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)) prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x802102001ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = gettid() r2 = epoll_create(0x3) epoll_pwait(r2, &(0x7f0000000340)=[{}], 0x1, 0x7fff, &(0x7f0000000380), 0x8) ptrace$setopts(0x4206, r1, 0x0, 0x0) tkill(r1, 0x38) 05:30:13 executing program 1 (fault-call:0 fault-nth:82): syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000140)='./file0\x00', 0xff, 0x1, &(0x7f0000000000)=[{&(0x7f0000000180)="8da4363ac0ed0000000000000001004d0100000000000000000000000009000000000000009748aeb81e1b00920efd9a0000010000000000098cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 05:30:13 executing program 3: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x4}], 0x0, 0x0) r0 = openat$selinux_mls(0xffffffffffffff9c, &(0x7f00000000c0)='/selinux/mls\x00', 0x0, 0x0) ioctl$EVIOCSABS20(r0, 0x401845e0, &(0x7f0000000100)={0x8000, 0xffffffff, 0x20, 0x2, 0x8000}) 05:30:13 executing program 5: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) prctl$PR_SET_FPEXC(0xc, 0xe04f16d4766a661b) 05:30:13 executing program 4: r0 = syz_open_dev$sndmidi(&(0x7f0000000180)='/dev/snd/midiC#D#\x00', 0x2, 0x0) read(r0, 0x0, 0x2fc) openat$ashmem(0xffffffffffffff9c, &(0x7f0000002800)='/dev/ashmem\x00', 0x0, 0x0) r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x2, 0x0) dup2(0xffffffffffffffff, r1) 05:30:13 executing program 2: r0 = syz_open_dev$sndmidi(&(0x7f0000000180)='/dev/snd/midiC#D#\x00', 0x2, 0x0) read(r0, 0x0, 0x2fc) dup2(0xffffffffffffffff, 0xffffffffffffffff) 05:30:14 executing program 3: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x4, &(0x7f0000000500)=[{&(0x7f00000002c0)="d0197877475190df594b855aedfd1761de98c1fcd651c0fb08a0862dce5c3357fe46cb255334a292ab5cc66fae554aad3113865a60957a9f7774b6466ff691dd13f5523e2d33a914f0cdf6ce006053ed7e6f8243b778aae06c1e661dd200a887778cc477a0f875d697186e0b25ad", 0x6e, 0x7fff}, {&(0x7f0000000340)="1d536adf5bbf3d7f02ab0b73c7fb558058376a63eb421af0c4d3f778ad5a476f5c65754d639ed32debb71d9b7a1d84a39fb808cb348f46f61fa5e473767ebcb7f9a93ab1afc5282e189aee0809cf22ff6000f52deabc1b62d3ed0ad6fbd827e404f22e44906e278e", 0x68, 0x10000}, {&(0x7f00000003c0)="dadcca2ff877b7641c3c6a9d3847f34e41d246244f72146bb90c437f2bda527c531fec7927f76e840f36915cd7ed422ca12d277ccbafd8d8a77f6250f4d0a703c966be68ef80bb1d630695a9177950ab03c0e3da0b5662b36638ce728b486133e24573442f898cb455b55f645bf6c7e28e27ac4145b6adf6aec81b676813c481d894e9c80e0cebb3fa53402d144367f1a7bf", 0x92, 0x60}, {&(0x7f0000000480)="1750a86194aca335385fe4de51e57145a72f9762bf17e5135466605ea043a92a5dbea02fce078a0cbed471eef70a638577cc455a94e668465ac99f9079479cc0dfb2ef867620e5d61762509bf313731451e1cad34bb3affa537aaa71", 0x5c, 0xed0}], 0x0, 0x0) r0 = openat$dir(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x2002, 0x187) name_to_handle_at(r0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)=ANY=[@ANYBLOB="7a00000003000000a694fe0349d8fab04c53ae052590ee557a29f936273c700180b9cc8c1d42e0913500fcffffffffffff462121222192e904000000000000000daaf7fa7f62a41e12ed8c1530f88d7d11c436f4529faab2bd4571a016a03f9a3c9307b1fbd2f9a1810efeed57befbfefd8ef1604307f0bc8f15"], &(0x7f00000001c0), 0x0) r1 = openat$selinux_avc_cache_stats(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/avc/cache_stats\x00', 0x0, 0x0) r2 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000240)='IPVS\x00') sendmsg$IPVS_CMD_SET_INFO(r1, &(0x7f00000005c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x2025}, 0xc, &(0x7f0000000580)={&(0x7f0000000280)={0x1c, r2, 0x400, 0x70bd2a, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x10001}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40}, 0x44080) r3 = openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f0000000600)='/selinux/commit_pending_bools\x00', 0x1, 0x0) ioctl$KDGKBMETA(r3, 0x4b62, &(0x7f0000000640)) [ 408.335392] FAULT_INJECTION: forcing a failure. [ 408.335392] name failslab, interval 1, probability 0, space 0, times 0 [ 408.355716] CPU: 1 PID: 25849 Comm: syz-executor.1 Not tainted 4.14.146 #0 [ 408.362765] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 408.362771] Call Trace: [ 408.362791] dump_stack+0x138/0x197 [ 408.362810] should_fail.cold+0x10f/0x159 [ 408.362827] should_failslab+0xdb/0x130 [ 408.362839] __kmalloc+0x2f0/0x7a0 [ 408.362848] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 408.362859] ? kobject_uevent_env+0x378/0xc23 [ 408.362871] ? rcu_read_lock_sched_held+0x110/0x130 [ 408.362881] ? kobject_get_path+0xbb/0x1a0 [ 408.362893] kobject_get_path+0xbb/0x1a0 [ 408.362902] ? devm_device_remove_groups+0x50/0x50 [ 408.362912] kobject_uevent_env+0x39c/0xc23 [ 408.362922] ? lock_downgrade+0x6e0/0x6e0 [ 408.362937] kobject_uevent+0x20/0x26 [ 408.362947] loop_clr_fd+0x4a7/0xae0 [ 408.362959] lo_ioctl+0x8ea/0x1ce0 [ 408.362971] ? SyS_mount+0xcf/0x120 [ 408.362981] ? loop_probe+0x160/0x160 [ 408.362992] blkdev_ioctl+0x96b/0x1860 [ 408.363001] ? blkpg_ioctl+0x980/0x980 [ 408.363017] ? __might_sleep+0x93/0xb0 [ 408.363025] ? __fget+0x210/0x370 [ 408.363038] block_ioctl+0xde/0x120 [ 408.363047] ? blkdev_fallocate+0x3b0/0x3b0 [ 408.363054] do_vfs_ioctl+0x7ae/0x1060 [ 408.363068] ? selinux_file_mprotect+0x5d0/0x5d0 [ 408.379777] ? lock_downgrade+0x6e0/0x6e0 [ 408.379792] ? ioctl_preallocate+0x1c0/0x1c0 [ 408.379804] ? __fget+0x237/0x370 [ 408.379823] ? security_file_ioctl+0x89/0xb0 [ 408.379834] SyS_ioctl+0x8f/0xc0 [ 408.379842] ? do_vfs_ioctl+0x1060/0x1060 [ 408.379853] do_syscall_64+0x1e8/0x640 [ 408.379863] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 408.379878] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 408.379889] RIP: 0033:0x459897 [ 408.519406] RSP: 002b:00007f617e384a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 408.527109] RAX: ffffffffffffffda RBX: 00007f617e384b40 RCX: 0000000000459897 05:30:14 executing program 5: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000013c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000080)) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f00000000c0)=0x5) ioctl$TCSETSF(r1, 0x5412, &(0x7f0000000000)={0xffffffc0}) r2 = syz_open_pts(r1, 0x86000) ioctl$TIOCGICOUNT(r2, 0x545d, 0x0) syz_mount_image$btrfs(&(0x7f00000000c0)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f0000000000), 0x1900000, 0x0) 05:30:14 executing program 1 (fault-call:0 fault-nth:83): syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000140)='./file0\x00', 0xff, 0x1, &(0x7f0000000000)=[{&(0x7f0000000180)="8da4363ac0ed0000000000000001004d0100000000000000000000000009000000000000009748aeb81e1b00920efd9a0000010000000000098cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 408.534388] RDX: 0000000000000000 RSI: 0000000000004c01 RDI: 0000000000000005 [ 408.541643] RBP: 0000000000000001 R08: 00007f617e384b40 R09: 00007f617e384ae0 [ 408.549103] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 408.556382] R13: 00000000004c8b25 R14: 00000000004dfbc8 R15: 0000000000000003 05:30:14 executing program 3: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000200)="8da4363ac0ed0000000000000001004d01000000000000000000000000000000fff6f2a2299748aeb81e1b00920efd9a0000010000000000018cffffff0000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = socket(0x11, 0x1, 0x3) r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = fcntl$dupfd(r1, 0x0, 0xffffffffffffffff) getsockopt$EBT_SO_GET_INIT_INFO(r2, 0x0, 0x82, &(0x7f0000000180)={'broute\x00'}, &(0x7f0000000240)=0x50) ioctl$TIOCSCTTY(r2, 0x540e, 0xffffffff) getsockopt$sock_cred(r2, 0x1, 0x11, 0x0, &(0x7f0000000640)) setsockopt$bt_l2cap_L2CAP_CONNINFO(r2, 0x6, 0x2, &(0x7f0000000140)={0x0, 0x2, 0xff}, 0x6) ioctl$sock_rose_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={@remote={0xcc, 0xcc, 0xcc, 0xcc, 0x3}, 0x3, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @netrom={'nr', 0x0}, 0x0, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @bcast, @default, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}]}) [ 408.676600] FAULT_INJECTION: forcing a failure. [ 408.676600] name failslab, interval 1, probability 0, space 0, times 0 [ 408.706095] CPU: 0 PID: 25876 Comm: syz-executor.1 Not tainted 4.14.146 #0 [ 408.713419] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 408.722783] Call Trace: [ 408.725394] dump_stack+0x138/0x197 [ 408.729024] should_fail.cold+0x10f/0x159 [ 408.733164] should_failslab+0xdb/0x130 [ 408.737137] kmem_cache_alloc_trace+0x2e9/0x790 [ 408.741813] ? mutex_trylock+0x1c0/0x1c0 [ 408.745870] ? btrfs_close_devices+0x21/0x140 [ 408.750468] btrfs_alloc_device+0xa4/0x6a0 [ 408.754686] ? btrfs_find_device_by_devspec+0xf0/0xf0 [ 408.759955] __btrfs_close_devices+0x2c6/0xa90 [ 408.764532] ? __mutex_unlock_slowpath+0x71/0x800 [ 408.769372] ? btrfs_alloc_device+0x6a0/0x6a0 [ 408.773875] btrfs_close_devices+0x29/0x140 [ 408.778206] btrfs_mount+0x1fd9/0x2b28 [ 408.782095] ? lock_downgrade+0x6e0/0x6e0 [ 408.786264] ? find_held_lock+0x35/0x130 [ 408.790322] ? pcpu_alloc+0x3af/0x1050 [ 408.794197] ? btrfs_remount+0x11f0/0x11f0 [ 408.798420] ? rcu_read_lock_sched_held+0x110/0x130 [ 408.803424] ? __lockdep_init_map+0x10c/0x570 [ 408.807915] mount_fs+0x97/0x2a1 [ 408.811270] vfs_kern_mount.part.0+0x5e/0x3d0 [ 408.815756] ? find_held_lock+0x35/0x130 [ 408.819813] vfs_kern_mount+0x40/0x60 [ 408.823596] btrfs_mount+0x3ce/0x2b28 [ 408.827386] ? lock_downgrade+0x6e0/0x6e0 [ 408.831521] ? find_held_lock+0x35/0x130 [ 408.835573] ? pcpu_alloc+0x3af/0x1050 [ 408.839477] ? btrfs_remount+0x11f0/0x11f0 [ 408.843712] ? rcu_read_lock_sched_held+0x110/0x130 [ 408.848726] ? __lockdep_init_map+0x10c/0x570 [ 408.853211] ? __lockdep_init_map+0x10c/0x570 [ 408.857817] mount_fs+0x97/0x2a1 [ 408.861190] vfs_kern_mount.part.0+0x5e/0x3d0 [ 408.865678] do_mount+0x417/0x27d0 [ 408.869206] ? retint_kernel+0x2d/0x2d [ 408.873114] ? copy_mount_string+0x40/0x40 [ 408.877361] ? copy_mount_options+0x199/0x2f0 [ 408.881934] ? copy_mount_options+0x1fe/0x2f0 [ 408.886414] SyS_mount+0xab/0x120 [ 408.889848] ? copy_mnt_ns+0x8c0/0x8c0 [ 408.893727] do_syscall_64+0x1e8/0x640 [ 408.897607] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 408.902436] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 408.908304] RIP: 0033:0x45c47a [ 408.911651] RSP: 002b:00007f617e384a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 408.919340] RAX: ffffffffffffffda RBX: 00007f617e384b40 RCX: 000000000045c47a [ 408.926593] RDX: 00007f617e384ae0 RSI: 0000000020000140 RDI: 00007f617e384b00 [ 408.933847] RBP: 0000000000000001 R08: 00007f617e384b40 R09: 00007f617e384ae0 [ 408.941102] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000004 [ 408.949069] R13: 00000000004c8b25 R14: 00000000004dfbc8 R15: 0000000000000003 [ 408.965960] ------------[ cut here ]------------ [ 408.970732] kernel BUG at fs/btrfs/volumes.c:890! [ 408.974082] invalid opcode: 0000 [#1] PREEMPT SMP KASAN [ 408.976355] kobject: 'loop5' (ffff8880a4a581a0): fill_kobj_path: path = '/devices/virtual/block/loop5' [ 408.981256] Modules linked in: [ 408.981269] CPU: 0 PID: 25876 Comm: syz-executor.1 Not tainted 4.14.146 #0 [ 408.981275] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 408.981280] task: ffff88809c7820c0 task.stack: ffff888050fc8000 [ 408.981296] RIP: 0010:__btrfs_close_devices+0x7d8/0xa90 [ 408.981300] RSP: 0018:ffff888050fcf700 EFLAGS: 00010246 [ 408.981306] RAX: 0000000000040000 RBX: ffff8880a58d7240 RCX: ffffc9000a460000 [ 408.981315] RDX: 0000000000040000 RSI: ffffffff8265c1b8 RDI: 0000000000000282 [ 408.981319] RBP: ffff888050fcf7c8 R08: ffff88809c7820c0 R09: ffff88809c782988 [ 408.981323] R10: 0000000000000000 R11: 0000000000000000 R12: ffff8880a61302c0 [ 408.981328] R13: ffff8880a58d7308 R14: fffffffffffffff4 R15: dffffc0000000000 [ 408.981334] FS: 00007f617e385700(0000) GS:ffff8880aee00000(0000) knlGS:0000000000000000 [ 408.981339] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 408.981343] CR2: 0000000000738000 CR3: 000000004a91e000 CR4: 00000000001406f0 [ 408.981351] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 408.981355] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 408.981357] Call Trace: [ 408.981369] ? __mutex_unlock_slowpath+0x71/0x800 [ 408.981379] ? btrfs_alloc_device+0x6a0/0x6a0 [ 408.981390] btrfs_close_devices+0x29/0x140 [ 408.981401] btrfs_mount+0x1fd9/0x2b28 [ 408.981410] ? lock_downgrade+0x6e0/0x6e0 [ 408.981416] ? find_held_lock+0x35/0x130 [ 408.981424] ? pcpu_alloc+0x3af/0x1050 [ 408.981435] ? btrfs_remount+0x11f0/0x11f0 [ 408.981446] ? rcu_read_lock_sched_held+0x110/0x130 [ 408.981458] ? __lockdep_init_map+0x10c/0x570 [ 408.981469] mount_fs+0x97/0x2a1 [ 408.981479] vfs_kern_mount.part.0+0x5e/0x3d0 [ 408.981485] ? find_held_lock+0x35/0x130 [ 408.981493] vfs_kern_mount+0x40/0x60 [ 408.981501] btrfs_mount+0x3ce/0x2b28 [ 408.981508] ? lock_downgrade+0x6e0/0x6e0 [ 408.981515] ? find_held_lock+0x35/0x130 [ 408.981521] ? pcpu_alloc+0x3af/0x1050 [ 408.981531] ? btrfs_remount+0x11f0/0x11f0 [ 408.981541] ? rcu_read_lock_sched_held+0x110/0x130 [ 408.981554] ? __lockdep_init_map+0x10c/0x570 [ 409.190484] ? __lockdep_init_map+0x10c/0x570 [ 409.195065] mount_fs+0x97/0x2a1 [ 409.198413] vfs_kern_mount.part.0+0x5e/0x3d0 [ 409.202891] do_mount+0x417/0x27d0 [ 409.206412] ? retint_kernel+0x2d/0x2d [ 409.210281] ? copy_mount_string+0x40/0x40 [ 409.214498] ? copy_mount_options+0x199/0x2f0 [ 409.218972] ? copy_mount_options+0x1fe/0x2f0 [ 409.223458] SyS_mount+0xab/0x120 [ 409.226894] ? copy_mnt_ns+0x8c0/0x8c0 [ 409.230763] do_syscall_64+0x1e8/0x640 [ 409.234630] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 409.239455] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 409.244623] RIP: 0033:0x45c47a [ 409.247813] RSP: 002b:00007f617e384a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 409.255501] RAX: ffffffffffffffda RBX: 00007f617e384b40 RCX: 000000000045c47a [ 409.262750] RDX: 00007f617e384ae0 RSI: 0000000020000140 RDI: 00007f617e384b00 [ 409.270102] RBP: 0000000000000001 R08: 00007f617e384b40 R09: 00007f617e384ae0 05:30:15 executing program 4: r0 = syz_open_dev$sndmidi(&(0x7f0000000180)='/dev/snd/midiC#D#\x00', 0x2, 0x0) read(r0, 0x0, 0x2fc) r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000002800)='/dev/ashmem\x00', 0x0, 0x0) openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x2, 0x0) dup2(r1, 0xffffffffffffffff) [ 409.277526] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000004 [ 409.284789] R13: 00000000004c8b25 R14: 00000000004dfbc8 R15: 0000000000000003 [ 409.292128] Code: c1 ea 03 0f b6 04 02 84 c0 74 08 3c 03 0f 8e 59 02 00 00 48 8b 45 80 c7 80 10 01 00 00 00 00 00 00 e9 e2 f8 ff ff e8 38 21 f7 fe <0f> 0b e8 31 21 f7 fe 0f 0b 48 89 f7 e8 37 d1 20 ff e9 ad f8 ff [ 409.312644] RIP: __btrfs_close_devices+0x7d8/0xa90 RSP: ffff888050fcf700 [ 409.320656] ---[ end trace 15d6ea19458a9183 ]--- [ 409.336778] Kernel panic - not syncing: Fatal exception [ 409.343832] Kernel Offset: disabled [ 409.347457] Rebooting in 86400 seconds..