[ 1355.774858] Buffer I/O error on dev loop1, logical block 3, async page read [ 1355.782054] print_req_error: I/O error, dev loop1, sector 4 [ 1355.787835] Buffer I/O error on dev loop1, logical block 4, async page read [ 1355.794953] print_req_error: I/O error, dev loop1, sector 5 [ 1355.800708] Buffer I/O error on dev loop1, logical block 5, async page read [ 1355.810232] VFS: could not find a valid V7 on loop1. [ 1356.935897] Bluetooth: hci6 command 0x1003 tx timeout [ 1356.941201] Bluetooth: hci6 sending frame failed (-49) [ 1357.335821] Bluetooth: hci7 command 0x1003 tx timeout [ 1357.341125] Bluetooth: hci7 sending frame failed (-49) [ 1357.656061] Bluetooth: hci9 command 0x1003 tx timeout [ 1357.661333] Bluetooth: hci9 sending frame failed (-49) [ 1357.667687] Bluetooth: hci8 command 0x1003 tx timeout [ 1357.673003] Bluetooth: hci8 sending frame failed (-49) [ 1359.015729] Bluetooth: hci6 command 0x1001 tx timeout [ 1359.021013] Bluetooth: hci6 sending frame failed (-49) [ 1359.415732] Bluetooth: hci7 command 0x1001 tx timeout [ 1359.421033] Bluetooth: hci7 sending frame failed (-49) [ 1359.735770] Bluetooth: hci9 command 0x1001 tx timeout [ 1359.738160] Bluetooth: hci8 command 0x1001 tx timeout [ 1359.741057] Bluetooth: hci9 sending frame failed (-49) [ 1359.755764] Bluetooth: hci8 sending frame failed (-49) [ 1361.095696] Bluetooth: hci6 command 0x1009 tx timeout [ 1361.495566] Bluetooth: hci7 command 0x1009 tx timeout [ 1361.815715] Bluetooth: hci8 command 0x1009 tx timeout [ 1361.820943] Bluetooth: hci9 command 0x1009 tx timeout 09:59:03 executing program 3: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x0) (fail_nth: 44) 09:59:03 executing program 2: r0 = socket(0x2a, 0x800, 0x4) sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0}}, 0x0) getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) getsockopt$bt_l2cap_L2CAP_LM(r0, 0x6, 0x3, &(0x7f0000000080), &(0x7f00000000c0)) r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0x4, 0x1}, 0x6) bind$bt_hci(r1, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6) bind$bt_hci(r1, &(0x7f0000000180)={0x1f, 0x2, 0x2}, 0x6) r2 = dup2(r1, r1) r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6) bind$bt_hci(r3, &(0x7f00000001c0)={0x1f, 0x1}, 0x6) r4 = dup2(0xffffffffffffffff, r3) write(r4, &(0x7f0000000280)="23000000010007", 0x7) renameat(r2, &(0x7f0000000100)='./file0\x00', r4, &(0x7f0000000140)='./file0\x00') write(r2, &(0x7f0000000280)="23000000010007", 0x7) [ 1365.525348] FAULT_INJECTION: forcing a failure. [ 1365.525348] name failslab, interval 1, probability 0, space 0, times 0 [ 1365.536643] CPU: 1 PID: 20028 Comm: syz-executor.3 Not tainted 4.14.262-syzkaller #0 [ 1365.544521] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1365.553871] Call Trace: [ 1365.556464] dump_stack+0x1b2/0x281 [ 1365.560087] should_fail.cold+0x10a/0x149 [ 1365.564217] should_failslab+0xd6/0x130 [ 1365.568177] kmem_cache_alloc_node_trace+0x25a/0x400 [ 1365.573262] __kmalloc_node_track_caller+0x38/0x70 [ 1365.578180] __alloc_skb+0x96/0x510 [ 1365.581794] kobject_uevent_env+0x882/0xf30 [ 1365.586102] device_add+0xa47/0x15c0 [ 1365.589792] ? device_is_dependent+0x2a0/0x2a0 [ 1365.594355] ? start_creating+0x144/0x200 [ 1365.598490] hci_register_dev+0x2e2/0x8f0 [ 1365.602623] hci_uart_tty_ioctl+0x6d1/0xa60 [ 1365.606926] tty_ioctl+0x5af/0x1430 [ 1365.610531] ? hci_uart_tty_receive+0x4c0/0x4c0 [ 1365.615177] ? tty_fasync+0x2c0/0x2c0 [ 1365.618959] ? proc_fail_nth_write+0x7b/0x180 [ 1365.623434] ? trace_hardirqs_on+0x10/0x10 [ 1365.627650] ? fsnotify+0x974/0x11b0 [ 1365.631341] ? proc_tgid_io_accounting+0x7a0/0x7a0 [ 1365.636257] ? __handle_mm_fault+0x80f/0x4620 [ 1365.640738] ? SyS_write+0x1b7/0x210 [ 1365.644430] ? tty_fasync+0x2c0/0x2c0 [ 1365.648218] do_vfs_ioctl+0x75a/0xff0 [ 1365.652005] ? lock_acquire+0x170/0x3f0 [ 1365.655961] ? ioctl_preallocate+0x1a0/0x1a0 [ 1365.660356] ? __fget+0x2df/0x460 [ 1365.663788] ? do_vfs_ioctl+0xff0/0xff0 [ 1365.667744] ? security_file_ioctl+0x83/0xb0 [ 1365.672128] SyS_ioctl+0x7f/0xb0 [ 1365.675473] ? do_vfs_ioctl+0xff0/0xff0 [ 1365.679425] do_syscall_64+0x1d5/0x640 [ 1365.683292] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1365.688458] RIP: 0033:0x7fa331314fe9 [ 1365.692151] RSP: 002b:00007fa32fc8a168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1365.699854] RAX: ffffffffffffffda RBX: 00007fa331427f60 RCX: 00007fa331314fe9 [ 1365.707110] RDX: 0000000000000000 RSI: 00000000400455c8 RDI: 0000000000000003 [ 1365.714356] RBP: 00007fa32fc8a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1365.721601] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1365.728849] R13: 00007ffe09471b3f R14: 00007fa32fc8a300 R15: 0000000000022000 [ 1365.746438] Bluetooth: hci6: Frame reassembly failed (-84) 09:59:04 executing program 0: prlimit64(0x0, 0x0, 0x0, 0x0) sched_setattr(0x0, 0x0, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x0) (fail_nth: 34) 09:59:04 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) r1 = dup2(r0, r0) write(r1, &(0x7f0000000280)='#\x00\x00\x00', 0x4) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) 09:59:04 executing program 5: prlimit64(0x0, 0xe, &(0x7f0000000280), 0x0) getrlimit(0xc, &(0x7f0000000000)) (async) sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0xffffffffffff0162) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) (async) ioctl$KDADDIO(r0, 0x400455c8, 0x4) 09:59:04 executing program 2: r0 = socket(0x2a, 0x800, 0x4) sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0}}, 0x0) getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) getsockopt$bt_l2cap_L2CAP_LM(r0, 0x6, 0x3, &(0x7f0000000080), &(0x7f00000000c0)) r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0x4, 0x1}, 0x6) bind$bt_hci(r1, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6) bind$bt_hci(r1, &(0x7f0000000180)={0x1f, 0x2, 0x2}, 0x6) r2 = dup2(r1, r1) r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6) bind$bt_hci(r3, &(0x7f00000001c0)={0x1f, 0x1}, 0x6) r4 = dup2(0xffffffffffffffff, r3) write(r4, &(0x7f0000000280)="23000000010007", 0x7) renameat(r2, &(0x7f0000000100)='./file0\x00', r4, &(0x7f0000000140)='./file0\x00') write(r2, &(0x7f0000000280)="23000000010007", 0x7) [ 1366.182405] FAULT_INJECTION: forcing a failure. [ 1366.182405] name failslab, interval 1, probability 0, space 0, times 0 [ 1366.193661] Bluetooth: hci7 sending frame failed (-49) [ 1366.206174] CPU: 0 PID: 20049 Comm: syz-executor.0 Not tainted 4.14.262-syzkaller #0 [ 1366.214070] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1366.223421] Call Trace: [ 1366.226008] dump_stack+0x1b2/0x281 09:59:04 executing program 4: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) (async) r1 = getpid() sched_setscheduler(r1, 0x5, &(0x7f0000000380)) (async) sched_setattr(r1, &(0x7f0000000000)={0x38, 0x2, 0x0, 0x715, 0x6, 0x4, 0x6, 0x8, 0x9, 0x3800}, 0x0) (async) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) sched_setattr(0xffffffffffffffff, &(0x7f00000000c0)={0x38, 0x1, 0x7, 0x1, 0x80000000, 0x800, 0x1, 0x7, 0x800, 0x5}, 0x0) (async) ioctl$KDADDIO(r0, 0x400455c8, 0x0) sched_setattr(r1, &(0x7f0000000080)={0x38, 0x7, 0x10, 0x80000001, 0x7, 0x0, 0x3, 0x6, 0x40, 0x99}, 0x0) 09:59:04 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) (async) r1 = dup2(r0, r0) write(r1, &(0x7f0000000280)='#\x00\x00\x00', 0x4) (async) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) [ 1366.229640] should_fail.cold+0x10a/0x149 [ 1366.233793] should_failslab+0xd6/0x130 [ 1366.237768] __kmalloc+0x2c1/0x400 [ 1366.241307] ? kobject_get_path+0xb5/0x230 [ 1366.245539] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 1366.250994] kobject_get_path+0xb5/0x230 [ 1366.255056] kobject_uevent_env+0x230/0xf30 [ 1366.259376] ? wait_for_completion_io+0x10/0x10 [ 1366.264048] device_add+0xa47/0x15c0 [ 1366.268026] ? device_is_dependent+0x2a0/0x2a0 [ 1366.272611] ? start_creating+0x144/0x200 [ 1366.276762] hci_register_dev+0x2e2/0x8f0 09:59:04 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) r1 = dup2(r0, r0) write(r1, &(0x7f0000000280)='#\x00\x00\x00', 0x4) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) (async) dup2(r0, r0) (async) write(r1, &(0x7f0000000280)='#\x00\x00\x00', 0x4) (async) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async) 09:59:04 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xfffd, 0x2}, 0x6) r1 = dup2(r0, r0) write(r1, &(0x7f0000000280)='#\x00\x00\x00', 0x4) [ 1366.280916] hci_uart_tty_ioctl+0x6d1/0xa60 [ 1366.285242] tty_ioctl+0x5af/0x1430 [ 1366.288869] ? hci_uart_tty_receive+0x4c0/0x4c0 [ 1366.293534] ? tty_fasync+0x2c0/0x2c0 [ 1366.297332] ? proc_fail_nth_write+0x7b/0x180 [ 1366.301826] ? trace_hardirqs_on+0x10/0x10 [ 1366.306066] ? fsnotify+0x974/0x11b0 [ 1366.309787] ? proc_tgid_io_accounting+0x7a0/0x7a0 [ 1366.314710] ? __handle_mm_fault+0x80f/0x4620 [ 1366.319202] ? SyS_write+0x1b7/0x210 [ 1366.322918] ? tty_fasync+0x2c0/0x2c0 [ 1366.326718] do_vfs_ioctl+0x75a/0xff0 09:59:04 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xfffd, 0x2}, 0x6) (async, rerun: 32) r1 = dup2(r0, r0) (rerun: 32) write(r1, &(0x7f0000000280)='#\x00\x00\x00', 0x4) [ 1366.330522] ? lock_acquire+0x170/0x3f0 [ 1366.334496] ? ioctl_preallocate+0x1a0/0x1a0 [ 1366.338914] ? __fget+0x2df/0x460 [ 1366.342367] ? do_vfs_ioctl+0xff0/0xff0 [ 1366.346345] ? security_file_ioctl+0x83/0xb0 [ 1366.350752] SyS_ioctl+0x7f/0xb0 [ 1366.354114] ? do_vfs_ioctl+0xff0/0xff0 [ 1366.358085] do_syscall_64+0x1d5/0x640 [ 1366.361971] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1366.367155] RIP: 0033:0x7fbb944a7fe9 [ 1366.370859] RSP: 002b:00007fbb92e1d168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 09:59:04 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xfffd, 0x2}, 0x6) r1 = dup2(r0, r0) write(r1, &(0x7f0000000280)='#\x00\x00\x00', 0x4) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xfffd, 0x2}, 0x6) (async) dup2(r0, r0) (async) write(r1, &(0x7f0000000280)='#\x00\x00\x00', 0x4) (async) [ 1366.378562] RAX: ffffffffffffffda RBX: 00007fbb945baf60 RCX: 00007fbb944a7fe9 [ 1366.385866] RDX: 0000000000000000 RSI: 00000000400455c8 RDI: 0000000000000003 [ 1366.393128] RBP: 00007fbb92e1d1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1366.400395] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1366.407673] R13: 00007ffc96d7392f R14: 00007fbb92e1d300 R15: 0000000000022000 [ 1366.428575] Bluetooth: hci8: Frame reassembly failed (-84) [ 1367.815324] Bluetooth: hci6 command 0x1003 tx timeout [ 1367.820632] Bluetooth: hci6 sending frame failed (-49) [ 1368.215186] Bluetooth: hci9 command 0x1003 tx timeout [ 1368.220496] Bluetooth: hci9 sending frame failed (-49) [ 1368.226526] Bluetooth: hci7 command 0x1003 tx timeout [ 1368.231772] Bluetooth: hci7 sending frame failed (-49) [ 1368.455145] Bluetooth: hci8 command 0x1003 tx timeout [ 1368.460452] Bluetooth: hci8 sending frame failed (-49) [ 1369.895418] Bluetooth: hci6 command 0x1001 tx timeout [ 1369.900682] Bluetooth: hci6 sending frame failed (-49) [ 1370.295012] Bluetooth: hci7 command 0x1001 tx timeout [ 1370.295038] Bluetooth: hci9 command 0x1001 tx timeout [ 1370.300279] Bluetooth: hci7 sending frame failed (-49) [ 1370.309152] Bluetooth: hci9 sending frame failed (-49) [ 1370.534999] Bluetooth: hci8 command 0x1001 tx timeout [ 1370.540280] Bluetooth: hci8 sending frame failed (-49) [ 1371.985055] Bluetooth: hci6 command 0x1009 tx timeout [ 1372.374938] Bluetooth: hci9 command 0x1009 tx timeout [ 1372.385373] Bluetooth: hci7 command 0x1009 tx timeout [ 1372.614872] Bluetooth: hci8 command 0x1009 tx timeout 09:59:14 executing program 3: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x0) (fail_nth: 45) 09:59:14 executing program 2: r0 = socket(0x2a, 0x800, 0x4) sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0}}, 0x0) getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) getsockopt$bt_l2cap_L2CAP_LM(r0, 0x6, 0x3, &(0x7f0000000080), &(0x7f00000000c0)) r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0x4, 0x1}, 0x6) bind$bt_hci(r1, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6) bind$bt_hci(r1, &(0x7f0000000180)={0x1f, 0x2, 0x2}, 0x6) r2 = dup2(r1, r1) r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6) bind$bt_hci(r3, &(0x7f00000001c0)={0x1f, 0x1}, 0x6) r4 = dup2(0xffffffffffffffff, r3) write(r4, &(0x7f0000000280)="23000000010007", 0x7) renameat(r2, &(0x7f0000000100)='./file0\x00', r4, &(0x7f0000000140)='./file0\x00') write(r2, &(0x7f0000000280)="23000000010007", 0x7) [ 1376.443302] FAULT_INJECTION: forcing a failure. [ 1376.443302] name failslab, interval 1, probability 0, space 0, times 0 [ 1376.454785] CPU: 1 PID: 20108 Comm: syz-executor.3 Not tainted 4.14.262-syzkaller #0 [ 1376.462678] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1376.472026] Call Trace: [ 1376.474623] dump_stack+0x1b2/0x281 [ 1376.478256] should_fail.cold+0x10a/0x149 [ 1376.482407] should_failslab+0xd6/0x130 [ 1376.486406] kmem_cache_alloc_node+0x263/0x410 [ 1376.490983] __alloc_skb+0x5c/0x510 [ 1376.494601] kobject_uevent_env+0x882/0xf30 [ 1376.498911] device_add+0xa47/0x15c0 [ 1376.502604] ? device_is_dependent+0x2a0/0x2a0 [ 1376.507165] ? start_creating+0x144/0x200 [ 1376.511295] hci_register_dev+0x2e2/0x8f0 [ 1376.515435] hci_uart_tty_ioctl+0x6d1/0xa60 [ 1376.519746] tty_ioctl+0x5af/0x1430 [ 1376.523350] ? hci_uart_tty_receive+0x4c0/0x4c0 [ 1376.527995] ? tty_fasync+0x2c0/0x2c0 [ 1376.531777] ? proc_fail_nth_write+0x7b/0x180 [ 1376.536258] ? trace_hardirqs_on+0x10/0x10 [ 1376.540490] ? fsnotify+0x974/0x11b0 [ 1376.544187] ? proc_tgid_io_accounting+0x7a0/0x7a0 [ 1376.549096] ? __handle_mm_fault+0x80f/0x4620 [ 1376.553571] ? SyS_write+0x1b7/0x210 [ 1376.557275] ? tty_fasync+0x2c0/0x2c0 [ 1376.561063] do_vfs_ioctl+0x75a/0xff0 [ 1376.564843] ? lock_acquire+0x170/0x3f0 [ 1376.568797] ? ioctl_preallocate+0x1a0/0x1a0 [ 1376.573185] ? __fget+0x2df/0x460 [ 1376.576627] ? do_vfs_ioctl+0xff0/0xff0 [ 1376.580588] ? security_file_ioctl+0x83/0xb0 [ 1376.584975] SyS_ioctl+0x7f/0xb0 [ 1376.588321] ? do_vfs_ioctl+0xff0/0xff0 [ 1376.592276] do_syscall_64+0x1d5/0x640 [ 1376.596156] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1376.601328] RIP: 0033:0x7fa331314fe9 [ 1376.605020] RSP: 002b:00007fa32fc8a168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1376.612707] RAX: ffffffffffffffda RBX: 00007fa331427f60 RCX: 00007fa331314fe9 [ 1376.619952] RDX: 0000000000000000 RSI: 00000000400455c8 RDI: 0000000000000003 [ 1376.627197] RBP: 00007fa32fc8a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1376.634444] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1376.641737] R13: 00007ffe09471b3f R14: 00007fa32fc8a300 R15: 0000000000022000 09:59:14 executing program 0: prlimit64(0x0, 0x0, 0x0, 0x0) sched_setattr(0x0, 0x0, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x0) (fail_nth: 35) 09:59:14 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) r1 = dup2(r0, r0) write(r1, &(0x7f0000000280)='#\x00\x00\x00', 0x4) 09:59:14 executing program 5: prlimit64(0x0, 0xe, &(0x7f0000000280), 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0xffffffffffff0162) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r1, 0x400455c8, 0x4) ioctl$TIOCSETD(r1, 0x5412, &(0x7f0000000000)=0x33) ioctl$KDADDIO(r1, 0x400455c8, 0x223) openat$incfs(0xffffffffffffff9c, &(0x7f0000000000)='.pending_reads\x00', 0x7a6f9b740f420bb3, 0x4f) 09:59:14 executing program 2: r0 = socket(0x2a, 0x800, 0x4) sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0}}, 0x0) getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) getsockopt$bt_l2cap_L2CAP_LM(r0, 0x6, 0x3, &(0x7f0000000080), &(0x7f00000000c0)) r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0x4, 0x1}, 0x6) bind$bt_hci(r1, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6) bind$bt_hci(r1, &(0x7f0000000180)={0x1f, 0x2, 0x2}, 0x6) r2 = dup2(r1, r1) r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6) bind$bt_hci(r3, &(0x7f00000001c0)={0x1f, 0x1}, 0x6) r4 = dup2(r3, 0xffffffffffffffff) write(r4, &(0x7f0000000280)="23000000010007", 0x7) renameat(r2, &(0x7f0000000100)='./file0\x00', r4, &(0x7f0000000140)='./file0\x00') write(r2, &(0x7f0000000280)="23000000010007", 0x7) 09:59:14 executing program 4: setregid(0x0, 0xee01) prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) r1 = getpgrp(0xffffffffffffffff) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xf8, 0x7, 0x3, 0x75, 0x0, 0xfff, 0x82171, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x3, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0xe, 0x1, @perf_bp={&(0x7f0000000000), 0x6}, 0x40000, 0x3, 0x7, 0x6, 0x401, 0xe3, 0x7ff, 0x0, 0x0, 0x0, 0x800}, r1, 0x9, 0xffffffffffffffff, 0x8) ioctl$KDADDIO(r0, 0x400455c8, 0x0) r2 = getpid() sched_setscheduler(r2, 0x5, &(0x7f0000000380)) sched_setattr(r2, &(0x7f0000000100)={0x38, 0x5, 0x8, 0x1000, 0x80000000, 0xf34e, 0x1ff, 0xffffffffffffffe1, 0x3, 0x100}, 0x0) 09:59:14 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) r1 = dup2(r0, r0) write(r1, &(0x7f0000000280)='#\x00\x00\x00', 0x4) 09:59:14 executing program 2: r0 = socket(0x2a, 0x800, 0x4) sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0}}, 0x0) getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) getsockopt$bt_l2cap_L2CAP_LM(r0, 0x6, 0x3, &(0x7f0000000080), &(0x7f00000000c0)) r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0x4, 0x1}, 0x6) bind$bt_hci(r1, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6) bind$bt_hci(r1, &(0x7f0000000180)={0x1f, 0x2, 0x2}, 0x6) r2 = dup2(r1, r1) r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6) bind$bt_hci(r3, &(0x7f00000001c0)={0x1f, 0x1}, 0x6) r4 = dup2(r3, 0xffffffffffffffff) write(r4, &(0x7f0000000280)="23000000010007", 0x7) renameat(r2, &(0x7f0000000100)='./file0\x00', r4, &(0x7f0000000140)='./file0\x00') write(r2, &(0x7f0000000280)="23000000010007", 0x7) [ 1377.047418] Bluetooth: hci7: Frame reassembly failed (-84) [ 1377.052586] FAULT_INJECTION: forcing a failure. [ 1377.052586] name failslab, interval 1, probability 0, space 0, times 0 [ 1377.096108] CPU: 0 PID: 20125 Comm: syz-executor.0 Not tainted 4.14.262-syzkaller #0 [ 1377.104018] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1377.113373] Call Trace: [ 1377.115962] dump_stack+0x1b2/0x281 [ 1377.119581] should_fail.cold+0x10a/0x149 [ 1377.123714] should_failslab+0xd6/0x130 [ 1377.127671] kmem_cache_alloc_node+0x263/0x410 [ 1377.132234] __alloc_skb+0x5c/0x510 [ 1377.135843] kobject_uevent_env+0x882/0xf30 [ 1377.140160] device_add+0xa47/0x15c0 [ 1377.143863] ? device_is_dependent+0x2a0/0x2a0 [ 1377.148422] ? start_creating+0x144/0x200 [ 1377.152552] hci_register_dev+0x2e2/0x8f0 [ 1377.156683] hci_uart_tty_ioctl+0x6d1/0xa60 [ 1377.161002] tty_ioctl+0x5af/0x1430 [ 1377.164617] ? hci_uart_tty_receive+0x4c0/0x4c0 [ 1377.169278] ? tty_fasync+0x2c0/0x2c0 [ 1377.173058] ? proc_fail_nth_write+0x7b/0x180 [ 1377.177531] ? trace_hardirqs_on+0x10/0x10 [ 1377.181748] ? fsnotify+0x974/0x11b0 [ 1377.185446] ? proc_tgid_io_accounting+0x7a0/0x7a0 [ 1377.190360] ? __handle_mm_fault+0x80f/0x4620 [ 1377.194835] ? SyS_write+0x1b7/0x210 [ 1377.198534] ? tty_fasync+0x2c0/0x2c0 [ 1377.202320] do_vfs_ioctl+0x75a/0xff0 [ 1377.206133] ? lock_acquire+0x170/0x3f0 [ 1377.210098] ? ioctl_preallocate+0x1a0/0x1a0 [ 1377.214497] ? __fget+0x2df/0x460 [ 1377.217939] ? do_vfs_ioctl+0xff0/0xff0 [ 1377.221899] ? security_file_ioctl+0x83/0xb0 [ 1377.226294] SyS_ioctl+0x7f/0xb0 [ 1377.229647] ? do_vfs_ioctl+0xff0/0xff0 [ 1377.233600] do_syscall_64+0x1d5/0x640 [ 1377.237473] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1377.242643] RIP: 0033:0x7fbb944a7fe9 09:59:15 executing program 2: r0 = socket(0x2a, 0x800, 0x4) sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0}}, 0x0) getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) getsockopt$bt_l2cap_L2CAP_LM(r0, 0x6, 0x3, &(0x7f0000000080), &(0x7f00000000c0)) r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0x4, 0x1}, 0x6) bind$bt_hci(r1, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6) bind$bt_hci(r1, &(0x7f0000000180)={0x1f, 0x2, 0x2}, 0x6) r2 = dup2(r1, r1) r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6) bind$bt_hci(r3, &(0x7f00000001c0)={0x1f, 0x1}, 0x6) r4 = dup2(r3, 0xffffffffffffffff) write(r4, &(0x7f0000000280)="23000000010007", 0x7) renameat(r2, &(0x7f0000000100)='./file0\x00', r4, &(0x7f0000000140)='./file0\x00') write(r2, &(0x7f0000000280)="23000000010007", 0x7) 09:59:15 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) r1 = dup2(r0, r0) write(r1, &(0x7f0000000280)='#\x00\x00\x00', 0x4) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) (async) dup2(r0, r0) (async) write(r1, &(0x7f0000000280)='#\x00\x00\x00', 0x4) (async) [ 1377.246337] RSP: 002b:00007fbb92e1d168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1377.254031] RAX: ffffffffffffffda RBX: 00007fbb945baf60 RCX: 00007fbb944a7fe9 [ 1377.261280] RDX: 0000000000000000 RSI: 00000000400455c8 RDI: 0000000000000003 [ 1377.268528] RBP: 00007fbb92e1d1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1377.275873] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1377.283122] R13: 00007ffc96d7392f R14: 00007fbb92e1d300 R15: 0000000000022000 09:59:15 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000040), 0x40, 0x0) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0x4, 0x2}, 0x6) r1 = dup2(r0, r0) write(r1, &(0x7f0000000280)='#\x00\x00\x00', 0x4) [ 1377.316297] Bluetooth: hci8: Frame reassembly failed (-84) [ 1378.694517] Bluetooth: hci6 command 0x1003 tx timeout [ 1378.699813] Bluetooth: hci6 sending frame failed (-49) [ 1379.094546] Bluetooth: hci7 command 0x1003 tx timeout [ 1379.099863] Bluetooth: hci7 sending frame failed (-49) [ 1379.334536] Bluetooth: hci9 command 0x1003 tx timeout [ 1379.339809] Bluetooth: hci8 command 0x1003 tx timeout [ 1379.339854] Bluetooth: hci9 sending frame failed (-49) [ 1379.345238] Bluetooth: hci8 sending frame failed (-49) [ 1380.774448] Bluetooth: hci6 command 0x1001 tx timeout [ 1380.780470] Bluetooth: hci6 sending frame failed (-49) [ 1381.174416] Bluetooth: hci7 command 0x1001 tx timeout [ 1381.179728] Bluetooth: hci7 sending frame failed (-49) [ 1381.414338] Bluetooth: hci8 command 0x1001 tx timeout [ 1381.414342] Bluetooth: hci9 command 0x1001 tx timeout [ 1381.414426] Bluetooth: hci9 sending frame failed (-49) [ 1381.419610] Bluetooth: hci8 sending frame failed (-49) [ 1382.854260] Bluetooth: hci6 command 0x1009 tx timeout [ 1383.254344] Bluetooth: hci7 command 0x1009 tx timeout [ 1383.494308] Bluetooth: hci8 command 0x1009 tx timeout [ 1383.494319] Bluetooth: hci9 command 0x1009 tx timeout 09:59:25 executing program 3: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x0) (fail_nth: 46) 09:59:25 executing program 2: r0 = socket(0x2a, 0x800, 0x4) sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0}}, 0x0) getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) getsockopt$bt_l2cap_L2CAP_LM(r0, 0x6, 0x3, &(0x7f0000000080), &(0x7f00000000c0)) r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0x4, 0x1}, 0x6) bind$bt_hci(r1, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6) bind$bt_hci(r1, &(0x7f0000000180)={0x1f, 0x2, 0x2}, 0x6) r2 = dup2(r1, r1) r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6) bind$bt_hci(r3, &(0x7f00000001c0)={0x1f, 0x1}, 0x6) r4 = dup2(r3, r3) write(0xffffffffffffffff, &(0x7f0000000280)="23000000010007", 0x7) renameat(r2, &(0x7f0000000100)='./file0\x00', r4, &(0x7f0000000140)='./file0\x00') write(r2, &(0x7f0000000280)="23000000010007", 0x7) [ 1387.306612] FAULT_INJECTION: forcing a failure. [ 1387.306612] name failslab, interval 1, probability 0, space 0, times 0 [ 1387.317956] CPU: 1 PID: 20171 Comm: syz-executor.3 Not tainted 4.14.262-syzkaller #0 [ 1387.325836] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1387.335188] Call Trace: [ 1387.337786] dump_stack+0x1b2/0x281 [ 1387.341424] should_fail.cold+0x10a/0x149 [ 1387.345575] should_failslab+0xd6/0x130 [ 1387.349546] kmem_cache_alloc_trace+0x29a/0x3d0 [ 1387.354195] ? kobj_ns_drop+0x80/0x80 [ 1387.357977] call_usermodehelper_setup+0x73/0x2e0 [ 1387.362804] kobject_uevent_env+0xc21/0xf30 [ 1387.367111] device_add+0xa47/0x15c0 [ 1387.371239] ? device_is_dependent+0x2a0/0x2a0 [ 1387.375799] ? start_creating+0x144/0x200 [ 1387.379929] hci_register_dev+0x2e2/0x8f0 [ 1387.384058] hci_uart_tty_ioctl+0x6d1/0xa60 [ 1387.388359] tty_ioctl+0x5af/0x1430 [ 1387.391973] ? hci_uart_tty_receive+0x4c0/0x4c0 [ 1387.396619] ? tty_fasync+0x2c0/0x2c0 [ 1387.400402] ? proc_fail_nth_write+0x7b/0x180 [ 1387.404880] ? trace_hardirqs_on+0x10/0x10 [ 1387.409103] ? fsnotify+0x974/0x11b0 [ 1387.412800] ? proc_tgid_io_accounting+0x7a0/0x7a0 [ 1387.417716] ? __handle_mm_fault+0x80f/0x4620 [ 1387.422196] ? SyS_write+0x1b7/0x210 [ 1387.425937] ? tty_fasync+0x2c0/0x2c0 [ 1387.429803] do_vfs_ioctl+0x75a/0xff0 [ 1387.433582] ? lock_acquire+0x170/0x3f0 [ 1387.437533] ? ioctl_preallocate+0x1a0/0x1a0 [ 1387.441922] ? __fget+0x2df/0x460 [ 1387.445350] ? do_vfs_ioctl+0xff0/0xff0 [ 1387.449302] ? security_file_ioctl+0x83/0xb0 [ 1387.453687] SyS_ioctl+0x7f/0xb0 [ 1387.457030] ? do_vfs_ioctl+0xff0/0xff0 [ 1387.460981] do_syscall_64+0x1d5/0x640 [ 1387.464847] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1387.470015] RIP: 0033:0x7fa331314fe9 [ 1387.473702] RSP: 002b:00007fa32fc8a168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1387.481457] RAX: ffffffffffffffda RBX: 00007fa331427f60 RCX: 00007fa331314fe9 [ 1387.488705] RDX: 0000000000000000 RSI: 00000000400455c8 RDI: 0000000000000003 [ 1387.495955] RBP: 00007fa32fc8a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1387.503201] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1387.510448] R13: 00007ffe09471b3f R14: 00007fa32fc8a300 R15: 0000000000022000 [ 1387.528668] Bluetooth: hci6: Frame reassembly failed (-84) 09:59:25 executing program 0: prlimit64(0x0, 0x0, 0x0, 0x0) sched_setattr(0x0, 0x0, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x0) (fail_nth: 36) 09:59:25 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000040), 0x40, 0x0) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0x4, 0x2}, 0x6) r1 = dup2(r0, r0) write(r1, &(0x7f0000000280)='#\x00\x00\x00', 0x4) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async) openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000040), 0x40, 0x0) (async) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0x4, 0x2}, 0x6) (async) dup2(r0, r0) (async) write(r1, &(0x7f0000000280)='#\x00\x00\x00', 0x4) (async) 09:59:25 executing program 2: r0 = socket(0x2a, 0x800, 0x4) sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0}}, 0x0) getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) getsockopt$bt_l2cap_L2CAP_LM(r0, 0x6, 0x3, &(0x7f0000000080), &(0x7f00000000c0)) r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0x4, 0x1}, 0x6) bind$bt_hci(r1, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6) bind$bt_hci(r1, &(0x7f0000000180)={0x1f, 0x2, 0x2}, 0x6) r2 = dup2(r1, r1) r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6) bind$bt_hci(r3, &(0x7f00000001c0)={0x1f, 0x1}, 0x6) r4 = dup2(r3, r3) write(0xffffffffffffffff, &(0x7f0000000280)="23000000010007", 0x7) renameat(r2, &(0x7f0000000100)='./file0\x00', r4, &(0x7f0000000140)='./file0\x00') write(r2, &(0x7f0000000280)="23000000010007", 0x7) 09:59:25 executing program 4: setregid(0x0, 0xee01) prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) r1 = getpgrp(0xffffffffffffffff) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xf8, 0x7, 0x3, 0x75, 0x0, 0xfff, 0x82171, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x3, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0xe, 0x1, @perf_bp={&(0x7f0000000000), 0x6}, 0x40000, 0x3, 0x7, 0x6, 0x401, 0xe3, 0x7ff, 0x0, 0x0, 0x0, 0x800}, r1, 0x9, 0xffffffffffffffff, 0x8) ioctl$KDADDIO(r0, 0x400455c8, 0x0) r2 = getpid() sched_setscheduler(r2, 0x5, &(0x7f0000000380)) sched_setattr(r2, &(0x7f0000000100)={0x38, 0x5, 0x8, 0x1000, 0x80000000, 0xf34e, 0x1ff, 0xffffffffffffffe1, 0x3, 0x100}, 0x0) setregid(0x0, 0xee01) (async) prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) (async) sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0) (async) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) (async) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) (async) getpgrp(0xffffffffffffffff) (async) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xf8, 0x7, 0x3, 0x75, 0x0, 0xfff, 0x82171, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x3, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0xe, 0x1, @perf_bp={&(0x7f0000000000), 0x6}, 0x40000, 0x3, 0x7, 0x6, 0x401, 0xe3, 0x7ff, 0x0, 0x0, 0x0, 0x800}, r1, 0x9, 0xffffffffffffffff, 0x8) (async) ioctl$KDADDIO(r0, 0x400455c8, 0x0) (async) getpid() (async) sched_setscheduler(r2, 0x5, &(0x7f0000000380)) (async) sched_setattr(r2, &(0x7f0000000100)={0x38, 0x5, 0x8, 0x1000, 0x80000000, 0xf34e, 0x1ff, 0xffffffffffffffe1, 0x3, 0x100}, 0x0) (async) 09:59:25 executing program 5: prlimit64(0x0, 0xe, &(0x7f0000000280), 0x0) (async) sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0xffffffffffff0162) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) (async, rerun: 32) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) (rerun: 32) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000040)=0xf) (async) ioctl$KDADDIO(r1, 0x400455c8, 0x4) (async) ioctl$TIOCSETD(r1, 0x5412, &(0x7f0000000000)=0x33) ioctl$KDADDIO(r1, 0x400455c8, 0x223) (async) openat$incfs(0xffffffffffffff9c, &(0x7f0000000000)='.pending_reads\x00', 0x7a6f9b740f420bb3, 0x4f) 09:59:25 executing program 2: r0 = socket(0x2a, 0x800, 0x4) sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0}}, 0x0) getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) getsockopt$bt_l2cap_L2CAP_LM(r0, 0x6, 0x3, &(0x7f0000000080), &(0x7f00000000c0)) r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0x4, 0x1}, 0x6) bind$bt_hci(r1, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6) bind$bt_hci(r1, &(0x7f0000000180)={0x1f, 0x2, 0x2}, 0x6) r2 = dup2(r1, r1) r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6) bind$bt_hci(r3, &(0x7f00000001c0)={0x1f, 0x1}, 0x6) r4 = dup2(r3, r3) write(0xffffffffffffffff, &(0x7f0000000280)="23000000010007", 0x7) renameat(r2, &(0x7f0000000100)='./file0\x00', r4, &(0x7f0000000140)='./file0\x00') write(r2, &(0x7f0000000280)="23000000010007", 0x7) [ 1387.928792] Bluetooth: hci7: Frame reassembly failed (-84) [ 1387.947757] FAULT_INJECTION: forcing a failure. [ 1387.947757] name failslab, interval 1, probability 0, space 0, times 0 [ 1387.976024] CPU: 0 PID: 20191 Comm: syz-executor.0 Not tainted 4.14.262-syzkaller #0 [ 1387.983934] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1387.993290] Call Trace: [ 1387.995878] dump_stack+0x1b2/0x281 [ 1387.999528] should_fail.cold+0x10a/0x149 [ 1388.003683] should_failslab+0xd6/0x130 [ 1388.007658] kmem_cache_alloc_node_trace+0x25a/0x400 [ 1388.012768] __kmalloc_node_track_caller+0x38/0x70 [ 1388.017705] __alloc_skb+0x96/0x510 [ 1388.021336] kobject_uevent_env+0x882/0xf30 [ 1388.025661] device_add+0xa47/0x15c0 [ 1388.029373] ? device_is_dependent+0x2a0/0x2a0 [ 1388.033952] ? start_creating+0x144/0x200 [ 1388.038099] hci_register_dev+0x2e2/0x8f0 [ 1388.042249] hci_uart_tty_ioctl+0x6d1/0xa60 [ 1388.046568] tty_ioctl+0x5af/0x1430 [ 1388.050191] ? hci_uart_tty_receive+0x4c0/0x4c0 [ 1388.054860] ? tty_fasync+0x2c0/0x2c0 [ 1388.058657] ? proc_fail_nth_write+0x7b/0x180 [ 1388.063151] ? trace_hardirqs_on+0x10/0x10 [ 1388.067391] ? fsnotify+0x974/0x11b0 [ 1388.071102] ? proc_tgid_io_accounting+0x7a0/0x7a0 [ 1388.076029] ? __handle_mm_fault+0x80f/0x4620 [ 1388.080519] ? SyS_write+0x1b7/0x210 [ 1388.084233] ? tty_fasync+0x2c0/0x2c0 [ 1388.088037] do_vfs_ioctl+0x75a/0xff0 [ 1388.091834] ? lock_acquire+0x170/0x3f0 [ 1388.095804] ? ioctl_preallocate+0x1a0/0x1a0 [ 1388.100216] ? __fget+0x2df/0x460 [ 1388.103664] ? do_vfs_ioctl+0xff0/0xff0 [ 1388.107635] ? security_file_ioctl+0x83/0xb0 [ 1388.112040] SyS_ioctl+0x7f/0xb0 [ 1388.115399] ? do_vfs_ioctl+0xff0/0xff0 [ 1388.119369] do_syscall_64+0x1d5/0x640 [ 1388.123254] entry_SYSCALL_64_after_hwframe+0x46/0xbb 09:59:25 executing program 5: prlimit64(0x0, 0xe, &(0x7f0000000280), 0x0) (async) sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0xffffffffffff0162) (async) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) (async, rerun: 64) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) (rerun: 64) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000040)=0xf) (async, rerun: 64) ioctl$KDADDIO(r1, 0x400455c8, 0x4) (async, rerun: 64) ioctl$TIOCSETD(r1, 0x5412, &(0x7f0000000000)=0x33) (async) ioctl$KDADDIO(r1, 0x400455c8, 0x223) (async, rerun: 32) openat$incfs(0xffffffffffffff9c, &(0x7f0000000000)='.pending_reads\x00', 0x7a6f9b740f420bb3, 0x4f) (rerun: 32) 09:59:25 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000040), 0x40, 0x0) (async) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0x4, 0x2}, 0x6) r1 = dup2(r0, r0) write(r1, &(0x7f0000000280)='#\x00\x00\x00', 0x4) 09:59:25 executing program 2: r0 = socket(0x2a, 0x800, 0x4) sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0}}, 0x0) getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) getsockopt$bt_l2cap_L2CAP_LM(r0, 0x6, 0x3, &(0x7f0000000080), &(0x7f00000000c0)) r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0x4, 0x1}, 0x6) bind$bt_hci(r1, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6) bind$bt_hci(r1, &(0x7f0000000180)={0x1f, 0x2, 0x2}, 0x6) r2 = dup2(r1, r1) r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6) bind$bt_hci(r3, &(0x7f00000001c0)={0x1f, 0x1}, 0x6) r4 = dup2(r3, r3) write(r4, 0x0, 0x0) renameat(r2, &(0x7f0000000100)='./file0\x00', r4, &(0x7f0000000140)='./file0\x00') write(r2, &(0x7f0000000280)="23000000010007", 0x7) 09:59:25 executing program 2: r0 = socket(0x2a, 0x800, 0x4) sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0}}, 0x0) getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) getsockopt$bt_l2cap_L2CAP_LM(r0, 0x6, 0x3, &(0x7f0000000080), &(0x7f00000000c0)) r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0x4, 0x1}, 0x6) bind$bt_hci(r1, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6) bind$bt_hci(r1, &(0x7f0000000180)={0x1f, 0x2, 0x2}, 0x6) r2 = dup2(r1, r1) r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6) bind$bt_hci(r3, &(0x7f00000001c0)={0x1f, 0x1}, 0x6) r4 = dup2(r3, r3) write(r4, 0x0, 0x0) renameat(r2, &(0x7f0000000100)='./file0\x00', r4, &(0x7f0000000140)='./file0\x00') write(r2, &(0x7f0000000280)="23000000010007", 0x7) [ 1388.128436] RIP: 0033:0x7fbb944a7fe9 [ 1388.132140] RSP: 002b:00007fbb92e1d168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1388.139842] RAX: ffffffffffffffda RBX: 00007fbb945baf60 RCX: 00007fbb944a7fe9 [ 1388.147107] RDX: 0000000000000000 RSI: 00000000400455c8 RDI: 0000000000000003 [ 1388.154372] RBP: 00007fbb92e1d1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1388.161758] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1388.169030] R13: 00007ffc96d7392f R14: 00007fbb92e1d300 R15: 0000000000022000 [ 1388.203552] Bluetooth: hci8: Frame reassembly failed (-84) [ 1389.573867] Bluetooth: hci6 command 0x1003 tx timeout [ 1389.579171] Bluetooth: hci6 sending frame failed (-49) [ 1389.973853] Bluetooth: hci7 command 0x1003 tx timeout [ 1389.979129] Bluetooth: hci7 sending frame failed (-49) [ 1390.223905] Bluetooth: hci8 command 0x1003 tx timeout [ 1390.229238] Bluetooth: hci8 sending frame failed (-49) [ 1391.653753] Bluetooth: hci6 command 0x1001 tx timeout [ 1391.659044] Bluetooth: hci6 sending frame failed (-49) [ 1392.053820] Bluetooth: hci7 command 0x1001 tx timeout [ 1392.059156] Bluetooth: hci7 sending frame failed (-49) [ 1392.293674] Bluetooth: hci8 command 0x1001 tx timeout [ 1392.298956] Bluetooth: hci8 sending frame failed (-49) [ 1393.733721] Bluetooth: hci6 command 0x1009 tx timeout [ 1394.133632] Bluetooth: hci7 command 0x1009 tx timeout [ 1394.373602] Bluetooth: hci8 command 0x1009 tx timeout 09:59:36 executing program 3: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x0) (fail_nth: 47) 09:59:36 executing program 2: r0 = socket(0x2a, 0x800, 0x4) sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0}}, 0x0) getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) getsockopt$bt_l2cap_L2CAP_LM(r0, 0x6, 0x3, &(0x7f0000000080), &(0x7f00000000c0)) r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0x4, 0x1}, 0x6) bind$bt_hci(r1, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6) bind$bt_hci(r1, &(0x7f0000000180)={0x1f, 0x2, 0x2}, 0x6) r2 = dup2(r1, r1) r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6) bind$bt_hci(r3, &(0x7f00000001c0)={0x1f, 0x1}, 0x6) r4 = dup2(r3, r3) write(r4, 0x0, 0x0) renameat(r2, &(0x7f0000000100)='./file0\x00', r4, &(0x7f0000000140)='./file0\x00') write(r2, &(0x7f0000000280)="23000000010007", 0x7) [ 1398.177117] FAULT_INJECTION: forcing a failure. [ 1398.177117] name failslab, interval 1, probability 0, space 0, times 0 [ 1398.188399] CPU: 0 PID: 20242 Comm: syz-executor.3 Not tainted 4.14.262-syzkaller #0 [ 1398.196284] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1398.205639] Call Trace: [ 1398.208233] dump_stack+0x1b2/0x281 [ 1398.211867] should_fail.cold+0x10a/0x149 [ 1398.216026] should_failslab+0xd6/0x130 [ 1398.220015] kmem_cache_alloc_node_trace+0x25a/0x400 [ 1398.225130] __kmalloc_node_track_caller+0x38/0x70 [ 1398.230065] devm_kmalloc+0x57/0x1b0 [ 1398.233784] hci_leds_init+0x2b/0x1a0 [ 1398.237591] hci_register_dev+0x2fe/0x8f0 [ 1398.241747] hci_uart_tty_ioctl+0x6d1/0xa60 [ 1398.246071] tty_ioctl+0x5af/0x1430 [ 1398.249705] ? hci_uart_tty_receive+0x4c0/0x4c0 [ 1398.254366] ? tty_fasync+0x2c0/0x2c0 [ 1398.258148] ? proc_fail_nth_write+0x7b/0x180 [ 1398.262627] ? trace_hardirqs_on+0x10/0x10 [ 1398.266853] ? fsnotify+0x974/0x11b0 [ 1398.270556] ? proc_tgid_io_accounting+0x7a0/0x7a0 [ 1398.275462] ? __handle_mm_fault+0x80f/0x4620 [ 1398.279934] ? SyS_write+0x1b7/0x210 [ 1398.283638] ? tty_fasync+0x2c0/0x2c0 [ 1398.287428] do_vfs_ioctl+0x75a/0xff0 [ 1398.291275] ? lock_acquire+0x170/0x3f0 [ 1398.295237] ? ioctl_preallocate+0x1a0/0x1a0 [ 1398.299643] ? __fget+0x2df/0x460 [ 1398.303079] ? do_vfs_ioctl+0xff0/0xff0 [ 1398.307043] ? security_file_ioctl+0x83/0xb0 [ 1398.311439] SyS_ioctl+0x7f/0xb0 [ 1398.314791] ? do_vfs_ioctl+0xff0/0xff0 [ 1398.318764] do_syscall_64+0x1d5/0x640 [ 1398.322659] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1398.327842] RIP: 0033:0x7fa331314fe9 [ 1398.331556] RSP: 002b:00007fa32fc8a168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1398.339259] RAX: ffffffffffffffda RBX: 00007fa331427f60 RCX: 00007fa331314fe9 [ 1398.346513] RDX: 0000000000000000 RSI: 00000000400455c8 RDI: 0000000000000003 [ 1398.353770] RBP: 00007fa32fc8a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1398.361026] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1398.368285] R13: 00007ffe09471b3f R14: 00007fa32fc8a300 R15: 0000000000022000 [ 1398.378973] Bluetooth: hci6: Frame reassembly failed (-84) 09:59:36 executing program 0: prlimit64(0x0, 0x0, 0x0, 0x0) sched_setattr(0x0, 0x0, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x0) (fail_nth: 37) 09:59:36 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) r1 = socket(0x10, 0x803, 0x0) sendmsg$BATADV_CMD_GET_MESH(r1, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0}}, 0x0) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0x1}, 0x6) r2 = dup2(r0, r0) write(r2, &(0x7f0000000280)='#\x00\x00\x00', 0x4) 09:59:36 executing program 5: prlimit64(0x0, 0xe, &(0x7f0000000280), 0x0) prlimit64(0xffffffffffffffff, 0x4, &(0x7f0000000000)={0x0, 0x5}, &(0x7f0000000080)) sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0xffffffffffff0162) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x4) 09:59:36 executing program 4: setregid(0x0, 0xee01) (async, rerun: 32) prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) (async, rerun: 32) sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) r1 = getpgrp(0xffffffffffffffff) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xf8, 0x7, 0x3, 0x75, 0x0, 0xfff, 0x82171, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x3, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0xe, 0x1, @perf_bp={&(0x7f0000000000), 0x6}, 0x40000, 0x3, 0x7, 0x6, 0x401, 0xe3, 0x7ff, 0x0, 0x0, 0x0, 0x800}, r1, 0x9, 0xffffffffffffffff, 0x8) (async) ioctl$KDADDIO(r0, 0x400455c8, 0x0) (async) r2 = getpid() sched_setscheduler(r2, 0x5, &(0x7f0000000380)) sched_setattr(r2, &(0x7f0000000100)={0x38, 0x5, 0x8, 0x1000, 0x80000000, 0xf34e, 0x1ff, 0xffffffffffffffe1, 0x3, 0x100}, 0x0) 09:59:36 executing program 2: r0 = socket(0x2a, 0x800, 0x4) sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0}}, 0x0) getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) getsockopt$bt_l2cap_L2CAP_LM(r0, 0x6, 0x3, &(0x7f0000000080), &(0x7f00000000c0)) r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0x4, 0x1}, 0x6) bind$bt_hci(r1, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6) bind$bt_hci(r1, &(0x7f0000000180)={0x1f, 0x2, 0x2}, 0x6) r2 = dup2(r1, r1) r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6) bind$bt_hci(r3, &(0x7f00000001c0)={0x1f, 0x1}, 0x6) r4 = dup2(r3, r3) write(r4, &(0x7f0000000280), 0x0) renameat(r2, &(0x7f0000000100)='./file0\x00', r4, &(0x7f0000000140)='./file0\x00') write(r2, &(0x7f0000000280)="23000000010007", 0x7) [ 1398.804251] Bluetooth: Unknown HCI packet type 5e [ 1398.812740] FAULT_INJECTION: forcing a failure. [ 1398.812740] name failslab, interval 1, probability 0, space 0, times 0 [ 1398.812758] Bluetooth: hci8: Frame reassembly failed (-84) [ 1398.834169] CPU: 0 PID: 20263 Comm: syz-executor.0 Not tainted 4.14.262-syzkaller #0 [ 1398.842068] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1398.851420] Call Trace: 09:59:36 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) r1 = socket(0x10, 0x803, 0x0) sendmsg$BATADV_CMD_GET_MESH(r1, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0}}, 0x0) (async) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) (async) bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0x1}, 0x6) (async) r2 = dup2(r0, r0) write(r2, &(0x7f0000000280)='#\x00\x00\x00', 0x4) 09:59:36 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) r1 = socket(0x10, 0x803, 0x0) sendmsg$BATADV_CMD_GET_MESH(r1, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0}}, 0x0) (async) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) (async) bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0x1}, 0x6) r2 = dup2(r0, r0) write(r2, &(0x7f0000000280)='#\x00\x00\x00', 0x4) [ 1398.854011] dump_stack+0x1b2/0x281 [ 1398.857646] should_fail.cold+0x10a/0x149 [ 1398.861799] should_failslab+0xd6/0x130 [ 1398.865814] kmem_cache_alloc_node_trace+0x25a/0x400 [ 1398.870923] __kmalloc_node_track_caller+0x38/0x70 [ 1398.875859] __alloc_skb+0x96/0x510 [ 1398.879497] kobject_uevent_env+0x882/0xf30 [ 1398.883829] device_add+0xa47/0x15c0 [ 1398.887539] ? device_is_dependent+0x2a0/0x2a0 [ 1398.892117] ? start_creating+0x144/0x200 [ 1398.896269] hci_register_dev+0x2e2/0x8f0 [ 1398.900421] hci_uart_tty_ioctl+0x6d1/0xa60 [ 1398.904737] tty_ioctl+0x5af/0x1430 [ 1398.908345] ? hci_uart_tty_receive+0x4c0/0x4c0 [ 1398.912996] ? tty_fasync+0x2c0/0x2c0 [ 1398.916779] ? proc_fail_nth_write+0x7b/0x180 [ 1398.921255] ? trace_hardirqs_on+0x10/0x10 [ 1398.925470] ? fsnotify+0x974/0x11b0 [ 1398.929164] ? proc_tgid_io_accounting+0x7a0/0x7a0 [ 1398.934076] ? __handle_mm_fault+0x80f/0x4620 [ 1398.938551] ? SyS_write+0x1b7/0x210 [ 1398.942243] ? tty_fasync+0x2c0/0x2c0 [ 1398.946022] do_vfs_ioctl+0x75a/0xff0 [ 1398.949808] ? lock_acquire+0x170/0x3f0 [ 1398.953761] ? ioctl_preallocate+0x1a0/0x1a0 [ 1398.958149] ? __fget+0x2df/0x460 [ 1398.961583] ? do_vfs_ioctl+0xff0/0xff0 [ 1398.965538] ? security_file_ioctl+0x83/0xb0 [ 1398.969925] SyS_ioctl+0x7f/0xb0 [ 1398.973268] ? do_vfs_ioctl+0xff0/0xff0 [ 1398.977232] do_syscall_64+0x1d5/0x640 [ 1398.981119] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1398.986302] RIP: 0033:0x7fbb944a7fe9 [ 1398.990000] RSP: 002b:00007fbb92e1d168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1398.997687] RAX: ffffffffffffffda RBX: 00007fbb945baf60 RCX: 00007fbb944a7fe9 09:59:36 executing program 2: r0 = socket(0x2a, 0x800, 0x4) sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0}}, 0x0) getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) getsockopt$bt_l2cap_L2CAP_LM(r0, 0x6, 0x3, &(0x7f0000000080), &(0x7f00000000c0)) r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0x4, 0x1}, 0x6) bind$bt_hci(r1, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6) bind$bt_hci(r1, &(0x7f0000000180)={0x1f, 0x2, 0x2}, 0x6) r2 = dup2(r1, r1) r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6) bind$bt_hci(r3, &(0x7f00000001c0)={0x1f, 0x1}, 0x6) r4 = dup2(r3, r3) write(r4, &(0x7f0000000280), 0x0) renameat(r2, &(0x7f0000000100)='./file0\x00', r4, &(0x7f0000000140)='./file0\x00') write(r2, &(0x7f0000000280)="23000000010007", 0x7) 09:59:36 executing program 2: r0 = socket(0x2a, 0x800, 0x4) sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0}}, 0x0) getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) getsockopt$bt_l2cap_L2CAP_LM(r0, 0x6, 0x3, &(0x7f0000000080), &(0x7f00000000c0)) r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0x4, 0x1}, 0x6) bind$bt_hci(r1, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6) bind$bt_hci(r1, &(0x7f0000000180)={0x1f, 0x2, 0x2}, 0x6) r2 = dup2(r1, r1) r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6) bind$bt_hci(r3, &(0x7f00000001c0)={0x1f, 0x1}, 0x6) r4 = dup2(r3, r3) write(r4, &(0x7f0000000280), 0x0) renameat(r2, &(0x7f0000000100)='./file0\x00', r4, &(0x7f0000000140)='./file0\x00') write(r2, &(0x7f0000000280)="23000000010007", 0x7) [ 1399.004940] RDX: 0000000000000000 RSI: 00000000400455c8 RDI: 0000000000000003 [ 1399.012187] RBP: 00007fbb92e1d1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1399.019436] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1399.026682] R13: 00007ffc96d7392f R14: 00007fbb92e1d300 R15: 0000000000022000 [ 1399.045727] Bluetooth: hci9: Frame reassembly failed (-84) 09:59:36 executing program 2: r0 = socket(0x2a, 0x800, 0x4) sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0}}, 0x0) getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) getsockopt$bt_l2cap_L2CAP_LM(r0, 0x6, 0x3, &(0x7f0000000080), &(0x7f00000000c0)) r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0x4, 0x1}, 0x6) bind$bt_hci(r1, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6) bind$bt_hci(r1, &(0x7f0000000180)={0x1f, 0x2, 0x2}, 0x6) r2 = dup2(r1, r1) r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6) bind$bt_hci(r3, &(0x7f00000001c0)={0x1f, 0x1}, 0x6) r4 = dup2(r3, r3) write(r4, &(0x7f0000000280)='#\x00\x00\x00', 0x4) renameat(r2, &(0x7f0000000100)='./file0\x00', r4, &(0x7f0000000140)='./file0\x00') write(r2, &(0x7f0000000280)="23000000010007", 0x7) 09:59:36 executing program 1: r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000040), 0x800, 0x0) ioctl$sock_inet_SIOCGIFPFLAGS(r0, 0x8935, &(0x7f0000000080)={'syzkaller0\x00'}) r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r1, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) r2 = dup2(r1, r1) write(r2, &(0x7f0000000280)='#\x00\x00\x00', 0x4) [ 1400.463234] Bluetooth: hci6 command 0x1003 tx timeout [ 1400.469302] Bluetooth: hci6 sending frame failed (-49) [ 1400.853151] Bluetooth: hci8 command 0x1003 tx timeout [ 1400.853155] Bluetooth: hci7 command 0x1003 tx timeout [ 1400.863716] Bluetooth: hci7 sending frame failed (-49) [ 1400.869115] Bluetooth: hci8 sending frame failed (-49) [ 1401.103242] Bluetooth: hci9 command 0x1003 tx timeout [ 1401.108634] Bluetooth: hci9 sending frame failed (-49) [ 1402.533067] Bluetooth: hci6 command 0x1001 tx timeout [ 1402.538345] Bluetooth: hci6 sending frame failed (-49) [ 1402.933048] Bluetooth: hci7 command 0x1001 tx timeout [ 1402.938316] Bluetooth: hci7 sending frame failed (-49) [ 1402.943667] Bluetooth: hci8 command 0x1001 tx timeout [ 1402.948935] Bluetooth: hci8 sending frame failed (-49) [ 1403.173365] Bluetooth: hci9 command 0x1001 tx timeout [ 1403.178695] Bluetooth: hci9 sending frame failed (-49) [ 1404.613106] Bluetooth: hci6 command 0x1009 tx timeout [ 1405.012999] Bluetooth: hci8 command 0x1009 tx timeout [ 1405.013010] Bluetooth: hci7 command 0x1009 tx timeout [ 1405.253052] Bluetooth: hci9 command 0x1009 tx timeout 09:59:46 executing program 3: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x0) (fail_nth: 48) [ 1409.060884] FAULT_INJECTION: forcing a failure. [ 1409.060884] name failslab, interval 1, probability 0, space 0, times 0 [ 1409.072669] CPU: 0 PID: 20309 Comm: syz-executor.3 Not tainted 4.14.262-syzkaller #0 [ 1409.080557] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1409.089914] Call Trace: [ 1409.092505] dump_stack+0x1b2/0x281 [ 1409.096138] should_fail.cold+0x10a/0x149 [ 1409.100293] should_failslab+0xd6/0x130 [ 1409.104281] kmem_cache_alloc_node_trace+0x25a/0x400 [ 1409.109393] __kmalloc_node_track_caller+0x38/0x70 [ 1409.114325] ? led_trigger_unregister+0x2e0/0x2e0 [ 1409.119170] __devres_alloc_node+0x36/0x140 [ 1409.123499] devm_led_trigger_register+0x32/0xc0 [ 1409.128259] hci_leds_init+0xdf/0x1a0 [ 1409.132063] hci_register_dev+0x2fe/0x8f0 [ 1409.136209] hci_uart_tty_ioctl+0x6d1/0xa60 [ 1409.140521] tty_ioctl+0x5af/0x1430 [ 1409.144129] ? hci_uart_tty_receive+0x4c0/0x4c0 [ 1409.148776] ? tty_fasync+0x2c0/0x2c0 [ 1409.152555] ? proc_fail_nth_write+0x7b/0x180 [ 1409.157029] ? trace_hardirqs_on+0x10/0x10 [ 1409.161246] ? fsnotify+0x974/0x11b0 [ 1409.164942] ? proc_tgid_io_accounting+0x7a0/0x7a0 [ 1409.169852] ? __handle_mm_fault+0x80f/0x4620 [ 1409.174325] ? SyS_write+0x1b7/0x210 [ 1409.178018] ? tty_fasync+0x2c0/0x2c0 [ 1409.181795] do_vfs_ioctl+0x75a/0xff0 [ 1409.185578] ? lock_acquire+0x170/0x3f0 [ 1409.189528] ? ioctl_preallocate+0x1a0/0x1a0 [ 1409.193929] ? __fget+0x2df/0x460 [ 1409.197361] ? do_vfs_ioctl+0xff0/0xff0 [ 1409.201325] ? security_file_ioctl+0x83/0xb0 [ 1409.205724] SyS_ioctl+0x7f/0xb0 [ 1409.209068] ? do_vfs_ioctl+0xff0/0xff0 [ 1409.213022] do_syscall_64+0x1d5/0x640 [ 1409.216893] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1409.222066] RIP: 0033:0x7fa331314fe9 [ 1409.225760] RSP: 002b:00007fa32fc8a168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1409.233504] RAX: ffffffffffffffda RBX: 00007fa331427f60 RCX: 00007fa331314fe9 [ 1409.240750] RDX: 0000000000000000 RSI: 00000000400455c8 RDI: 0000000000000003 [ 1409.247997] RBP: 00007fa32fc8a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1409.255247] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1409.262499] R13: 00007ffe09471b3f R14: 00007fa32fc8a300 R15: 0000000000022000 [ 1409.274617] Bluetooth: hci6: Frame reassembly failed (-84) 09:59:47 executing program 0: prlimit64(0x0, 0x0, 0x0, 0x0) sched_setattr(0x0, 0x0, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x0) (fail_nth: 38) 09:59:47 executing program 1: r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000040), 0x800, 0x0) ioctl$sock_inet_SIOCGIFPFLAGS(r0, 0x8935, &(0x7f0000000080)={'syzkaller0\x00'}) r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r1, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) r2 = dup2(r1, r1) write(r2, &(0x7f0000000280)='#\x00\x00\x00', 0x4) openat$vcsa(0xffffffffffffff9c, &(0x7f0000000040), 0x800, 0x0) (async) ioctl$sock_inet_SIOCGIFPFLAGS(r0, 0x8935, &(0x7f0000000080)={'syzkaller0\x00'}) (async) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async) bind$bt_hci(r1, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) (async) dup2(r1, r1) (async) write(r2, &(0x7f0000000280)='#\x00\x00\x00', 0x4) (async) 09:59:47 executing program 2: r0 = socket(0x2a, 0x800, 0x4) sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0}}, 0x0) getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) getsockopt$bt_l2cap_L2CAP_LM(r0, 0x6, 0x3, &(0x7f0000000080), &(0x7f00000000c0)) r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0x4, 0x1}, 0x6) bind$bt_hci(r1, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6) bind$bt_hci(r1, &(0x7f0000000180)={0x1f, 0x2, 0x2}, 0x6) r2 = dup2(r1, r1) r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6) bind$bt_hci(r3, &(0x7f00000001c0)={0x1f, 0x1}, 0x6) r4 = dup2(r3, r3) write(r4, &(0x7f0000000280)='#\x00\x00\x00', 0x4) renameat(r2, &(0x7f0000000100)='./file0\x00', r4, &(0x7f0000000140)='./file0\x00') write(r2, &(0x7f0000000280)="23000000010007", 0x7) 09:59:47 executing program 5: prlimit64(0x0, 0xe, &(0x7f0000000280), 0x0) (async) prlimit64(0xffffffffffffffff, 0x4, &(0x7f0000000000)={0x0, 0x5}, &(0x7f0000000080)) (async) sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0xffffffffffff0162) (async, rerun: 32) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) (rerun: 32) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) (async, rerun: 64) ioctl$KDADDIO(r0, 0x400455c8, 0x4) (rerun: 64) 09:59:47 executing program 4: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) getpid() ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x0) [ 1409.688490] Bluetooth: hci7: Frame reassembly failed (-84) [ 1409.705712] FAULT_INJECTION: forcing a failure. [ 1409.705712] name failslab, interval 1, probability 0, space 0, times 0 [ 1409.717740] CPU: 1 PID: 20334 Comm: syz-executor.0 Not tainted 4.14.262-syzkaller #0 [ 1409.725633] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1409.734989] Call Trace: [ 1409.737578] dump_stack+0x1b2/0x281 [ 1409.741209] should_fail.cold+0x10a/0x149 [ 1409.745360] should_failslab+0xd6/0x130 [ 1409.749340] kmem_cache_alloc_node_trace+0x25a/0x400 [ 1409.754450] __kmalloc_node_track_caller+0x38/0x70 [ 1409.759383] __alloc_skb+0x96/0x510 [ 1409.763019] kobject_uevent_env+0x882/0xf30 [ 1409.767348] device_add+0xa47/0x15c0 [ 1409.771069] ? device_is_dependent+0x2a0/0x2a0 [ 1409.775655] ? start_creating+0x144/0x200 [ 1409.779809] hci_register_dev+0x2e2/0x8f0 [ 1409.783964] hci_uart_tty_ioctl+0x6d1/0xa60 09:59:47 executing program 2: r0 = socket(0x2a, 0x800, 0x4) sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0}}, 0x0) getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) getsockopt$bt_l2cap_L2CAP_LM(r0, 0x6, 0x3, &(0x7f0000000080), &(0x7f00000000c0)) r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0x4, 0x1}, 0x6) bind$bt_hci(r1, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6) bind$bt_hci(r1, &(0x7f0000000180)={0x1f, 0x2, 0x2}, 0x6) r2 = dup2(r1, r1) r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6) bind$bt_hci(r3, &(0x7f00000001c0)={0x1f, 0x1}, 0x6) r4 = dup2(r3, r3) write(r4, &(0x7f0000000280)='#\x00\x00\x00', 0x4) renameat(r2, &(0x7f0000000100)='./file0\x00', r4, &(0x7f0000000140)='./file0\x00') write(r2, &(0x7f0000000280)="23000000010007", 0x7) 09:59:47 executing program 2: r0 = socket(0x2a, 0x800, 0x4) sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0}}, 0x0) getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) getsockopt$bt_l2cap_L2CAP_LM(r0, 0x6, 0x3, &(0x7f0000000080), &(0x7f00000000c0)) r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0x4, 0x1}, 0x6) bind$bt_hci(r1, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6) bind$bt_hci(r1, &(0x7f0000000180)={0x1f, 0x2, 0x2}, 0x6) r2 = dup2(r1, r1) r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6) bind$bt_hci(r3, &(0x7f00000001c0)={0x1f, 0x1}, 0x6) r4 = dup2(r3, r3) write(r4, &(0x7f0000000280)="230000000100", 0x6) renameat(r2, &(0x7f0000000100)='./file0\x00', r4, &(0x7f0000000140)='./file0\x00') write(r2, &(0x7f0000000280)="23000000010007", 0x7) 09:59:47 executing program 2: r0 = socket(0x2a, 0x800, 0x4) sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0}}, 0x0) getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) getsockopt$bt_l2cap_L2CAP_LM(r0, 0x6, 0x3, &(0x7f0000000080), &(0x7f00000000c0)) r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0x4, 0x1}, 0x6) bind$bt_hci(r1, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6) bind$bt_hci(r1, &(0x7f0000000180)={0x1f, 0x2, 0x2}, 0x6) r2 = dup2(r1, r1) r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6) bind$bt_hci(r3, &(0x7f00000001c0)={0x1f, 0x1}, 0x6) r4 = dup2(r3, r3) write(r4, &(0x7f0000000280)="230000000100", 0x6) renameat(r2, &(0x7f0000000100)='./file0\x00', r4, &(0x7f0000000140)='./file0\x00') write(r2, &(0x7f0000000280)="23000000010007", 0x7) 09:59:47 executing program 2: r0 = socket(0x2a, 0x800, 0x4) sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0}}, 0x0) getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) getsockopt$bt_l2cap_L2CAP_LM(r0, 0x6, 0x3, &(0x7f0000000080), &(0x7f00000000c0)) r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0x4, 0x1}, 0x6) bind$bt_hci(r1, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6) bind$bt_hci(r1, &(0x7f0000000180)={0x1f, 0x2, 0x2}, 0x6) r2 = dup2(r1, r1) r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6) bind$bt_hci(r3, &(0x7f00000001c0)={0x1f, 0x1}, 0x6) r4 = dup2(r3, r3) write(r4, &(0x7f0000000280)="230000000100", 0x6) renameat(r2, &(0x7f0000000100)='./file0\x00', r4, &(0x7f0000000140)='./file0\x00') write(r2, &(0x7f0000000280)="23000000010007", 0x7) [ 1409.788292] tty_ioctl+0x5af/0x1430 [ 1409.791922] ? hci_uart_tty_receive+0x4c0/0x4c0 [ 1409.796590] ? tty_fasync+0x2c0/0x2c0 [ 1409.800394] ? proc_fail_nth_write+0x7b/0x180 [ 1409.804888] ? trace_hardirqs_on+0x10/0x10 [ 1409.809128] ? fsnotify+0x974/0x11b0 [ 1409.812850] ? proc_tgid_io_accounting+0x7a0/0x7a0 [ 1409.817780] ? __handle_mm_fault+0x80f/0x4620 [ 1409.822272] ? SyS_write+0x1b7/0x210 [ 1409.825981] ? tty_fasync+0x2c0/0x2c0 [ 1409.829790] do_vfs_ioctl+0x75a/0xff0 [ 1409.833596] ? lock_acquire+0x170/0x3f0 09:59:47 executing program 2: r0 = socket(0x2a, 0x800, 0x4) sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0}}, 0x0) getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) getsockopt$bt_l2cap_L2CAP_LM(r0, 0x6, 0x3, &(0x7f0000000080), &(0x7f00000000c0)) r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0x4, 0x1}, 0x6) bind$bt_hci(r1, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6) bind$bt_hci(r1, &(0x7f0000000180)={0x1f, 0x2, 0x2}, 0x6) r2 = dup2(r1, r1) r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6) bind$bt_hci(r3, &(0x7f00000001c0)={0x1f, 0x1}, 0x6) r4 = dup2(r3, r3) write(r4, &(0x7f0000000280)="23000000010007", 0x7) renameat(0xffffffffffffffff, &(0x7f0000000100)='./file0\x00', r4, &(0x7f0000000140)='./file0\x00') write(r2, &(0x7f0000000280)="23000000010007", 0x7) 09:59:47 executing program 2: r0 = socket(0x2a, 0x800, 0x4) sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0}}, 0x0) getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) getsockopt$bt_l2cap_L2CAP_LM(r0, 0x6, 0x3, &(0x7f0000000080), &(0x7f00000000c0)) r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0x4, 0x1}, 0x6) bind$bt_hci(r1, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6) bind$bt_hci(r1, &(0x7f0000000180)={0x1f, 0x2, 0x2}, 0x6) r2 = dup2(r1, r1) r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6) bind$bt_hci(r3, &(0x7f00000001c0)={0x1f, 0x1}, 0x6) r4 = dup2(r3, r3) write(r4, &(0x7f0000000280)="23000000010007", 0x7) renameat(0xffffffffffffffff, &(0x7f0000000100)='./file0\x00', r4, &(0x7f0000000140)='./file0\x00') write(r2, &(0x7f0000000280)="23000000010007", 0x7) [ 1409.837573] ? ioctl_preallocate+0x1a0/0x1a0 [ 1409.841982] ? __fget+0x2df/0x460 [ 1409.845439] ? do_vfs_ioctl+0xff0/0xff0 [ 1409.849421] ? security_file_ioctl+0x83/0xb0 [ 1409.853848] SyS_ioctl+0x7f/0xb0 [ 1409.857222] ? do_vfs_ioctl+0xff0/0xff0 [ 1409.861191] do_syscall_64+0x1d5/0x640 [ 1409.865079] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1409.870262] RIP: 0033:0x7fbb944a7fe9 [ 1409.873968] RSP: 002b:00007fbb92e1d168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1409.881677] RAX: ffffffffffffffda RBX: 00007fbb945baf60 RCX: 00007fbb944a7fe9 [ 1409.888955] RDX: 0000000000000000 RSI: 00000000400455c8 RDI: 0000000000000003 [ 1409.896217] RBP: 00007fbb92e1d1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1409.903466] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1409.910712] R13: 00007ffc96d7392f R14: 00007fbb92e1d300 R15: 0000000000022000 [ 1411.332599] Bluetooth: hci6 command 0x1003 tx timeout [ 1411.338541] Bluetooth: hci6 sending frame failed (-49) [ 1411.742511] Bluetooth: hci7 command 0x1003 tx timeout [ 1411.747823] Bluetooth: hci7 sending frame failed (-49) [ 1411.972595] Bluetooth: hci9 command 0x1003 tx timeout [ 1411.977884] Bluetooth: hci9 sending frame failed (-49) [ 1413.422466] Bluetooth: hci6 command 0x1001 tx timeout [ 1413.427754] Bluetooth: hci6 sending frame failed (-49) [ 1413.812472] Bluetooth: hci7 command 0x1001 tx timeout [ 1413.817781] Bluetooth: hci7 sending frame failed (-49) [ 1414.052422] Bluetooth: hci9 command 0x1001 tx timeout [ 1414.057717] Bluetooth: hci9 sending frame failed (-49) [ 1415.492419] Bluetooth: hci6 command 0x1009 tx timeout [ 1415.892342] Bluetooth: hci7 command 0x1009 tx timeout [ 1416.132454] Bluetooth: hci9 command 0x1009 tx timeout 09:59:57 executing program 3: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x0) (fail_nth: 49) 09:59:57 executing program 2: r0 = socket(0x2a, 0x800, 0x4) sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0}}, 0x0) getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) getsockopt$bt_l2cap_L2CAP_LM(r0, 0x6, 0x3, &(0x7f0000000080), &(0x7f00000000c0)) r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0x4, 0x1}, 0x6) bind$bt_hci(r1, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6) bind$bt_hci(r1, &(0x7f0000000180)={0x1f, 0x2, 0x2}, 0x6) r2 = dup2(r1, r1) r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6) bind$bt_hci(r3, &(0x7f00000001c0)={0x1f, 0x1}, 0x6) r4 = dup2(r3, r3) write(r4, &(0x7f0000000280)="23000000010007", 0x7) renameat(0xffffffffffffffff, &(0x7f0000000100)='./file0\x00', r4, &(0x7f0000000140)='./file0\x00') write(r2, &(0x7f0000000280)="23000000010007", 0x7) 09:59:57 executing program 1: r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000040), 0x800, 0x0) ioctl$sock_inet_SIOCGIFPFLAGS(r0, 0x8935, &(0x7f0000000080)={'syzkaller0\x00'}) (async) r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r1, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) (async, rerun: 64) r2 = dup2(r1, r1) (rerun: 64) write(r2, &(0x7f0000000280)='#\x00\x00\x00', 0x4) 09:59:57 executing program 0: prlimit64(0x0, 0x0, 0x0, 0x0) sched_setattr(0x0, 0x0, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x0) (fail_nth: 39) [ 1419.957096] FAULT_INJECTION: forcing a failure. [ 1419.957096] name failslab, interval 1, probability 0, space 0, times 0 [ 1419.970668] CPU: 1 PID: 20384 Comm: syz-executor.0 Not tainted 4.14.262-syzkaller #0 [ 1419.978572] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1419.987928] Call Trace: [ 1419.990503] dump_stack+0x1b2/0x281 [ 1419.994111] should_fail.cold+0x10a/0x149 [ 1419.998242] should_failslab+0xd6/0x130 [ 1420.002197] kmem_cache_alloc_node+0x263/0x410 [ 1420.006759] __alloc_skb+0x5c/0x510 [ 1420.010367] kobject_uevent_env+0x882/0xf30 [ 1420.014673] device_add+0xa47/0x15c0 [ 1420.018366] ? device_is_dependent+0x2a0/0x2a0 [ 1420.022928] ? start_creating+0x144/0x200 [ 1420.027058] hci_register_dev+0x2e2/0x8f0 [ 1420.031187] hci_uart_tty_ioctl+0x6d1/0xa60 [ 1420.035490] tty_ioctl+0x5af/0x1430 [ 1420.039092] ? hci_uart_tty_receive+0x4c0/0x4c0 [ 1420.043738] ? tty_fasync+0x2c0/0x2c0 [ 1420.047518] ? proc_fail_nth_write+0x7b/0x180 [ 1420.051993] ? trace_hardirqs_on+0x10/0x10 [ 1420.056207] ? fsnotify+0x974/0x11b0 [ 1420.059900] ? proc_tgid_io_accounting+0x7a0/0x7a0 [ 1420.064808] ? __handle_mm_fault+0x80f/0x4620 [ 1420.069284] ? SyS_write+0x1b7/0x210 [ 1420.073074] ? tty_fasync+0x2c0/0x2c0 [ 1420.076852] do_vfs_ioctl+0x75a/0xff0 [ 1420.080632] ? lock_acquire+0x170/0x3f0 [ 1420.084586] ? ioctl_preallocate+0x1a0/0x1a0 [ 1420.088973] ? __fget+0x2df/0x460 [ 1420.092403] ? do_vfs_ioctl+0xff0/0xff0 [ 1420.096356] ? security_file_ioctl+0x83/0xb0 [ 1420.100740] SyS_ioctl+0x7f/0xb0 [ 1420.104081] ? do_vfs_ioctl+0xff0/0xff0 [ 1420.108031] do_syscall_64+0x1d5/0x640 [ 1420.111899] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1420.117068] RIP: 0033:0x7fbb944a7fe9 [ 1420.120768] RSP: 002b:00007fbb92e1d168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1420.128456] RAX: ffffffffffffffda RBX: 00007fbb945baf60 RCX: 00007fbb944a7fe9 [ 1420.135710] RDX: 0000000000000000 RSI: 00000000400455c8 RDI: 0000000000000003 [ 1420.143197] RBP: 00007fbb92e1d1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1420.150461] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1420.157719] R13: 00007ffc96d7392f R14: 00007fbb92e1d300 R15: 0000000000022000 [ 1420.171622] FAULT_INJECTION: forcing a failure. [ 1420.171622] name failslab, interval 1, probability 0, space 0, times 0 [ 1420.182963] CPU: 1 PID: 20386 Comm: syz-executor.3 Not tainted 4.14.262-syzkaller #0 [ 1420.190862] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1420.200214] Call Trace: [ 1420.202806] dump_stack+0x1b2/0x281 [ 1420.206442] should_fail.cold+0x10a/0x149 [ 1420.210592] should_failslab+0xd6/0x130 [ 1420.214570] kmem_cache_alloc_node_trace+0x25a/0x400 [ 1420.219678] __kmalloc_node_track_caller+0x38/0x70 [ 1420.224608] ? led_trigger_unregister+0x2e0/0x2e0 [ 1420.229448] __devres_alloc_node+0x36/0x140 [ 1420.233774] devm_led_trigger_register+0x32/0xc0 [ 1420.238532] hci_leds_init+0xdf/0x1a0 [ 1420.242326] hci_register_dev+0x2fe/0x8f0 [ 1420.246467] hci_uart_tty_ioctl+0x6d1/0xa60 [ 1420.250773] tty_ioctl+0x5af/0x1430 [ 1420.254381] ? hci_uart_tty_receive+0x4c0/0x4c0 [ 1420.259156] ? tty_fasync+0x2c0/0x2c0 [ 1420.262965] ? proc_fail_nth_write+0x7b/0x180 [ 1420.267443] ? trace_hardirqs_on+0x10/0x10 [ 1420.271660] ? fsnotify+0x974/0x11b0 [ 1420.275355] ? proc_tgid_io_accounting+0x7a0/0x7a0 [ 1420.280266] ? __handle_mm_fault+0x80f/0x4620 [ 1420.284742] ? SyS_write+0x1b7/0x210 [ 1420.288454] ? tty_fasync+0x2c0/0x2c0 [ 1420.292256] do_vfs_ioctl+0x75a/0xff0 [ 1420.296046] ? lock_acquire+0x170/0x3f0 [ 1420.300000] ? ioctl_preallocate+0x1a0/0x1a0 [ 1420.304391] ? __fget+0x2df/0x460 [ 1420.307826] ? do_vfs_ioctl+0xff0/0xff0 [ 1420.311785] ? security_file_ioctl+0x83/0xb0 [ 1420.316176] SyS_ioctl+0x7f/0xb0 [ 1420.319524] ? do_vfs_ioctl+0xff0/0xff0 [ 1420.323487] do_syscall_64+0x1d5/0x640 [ 1420.327365] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1420.332536] RIP: 0033:0x7fa331314fe9 [ 1420.336228] RSP: 002b:00007fa32fc8a168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1420.343918] RAX: ffffffffffffffda RBX: 00007fa331427f60 RCX: 00007fa331314fe9 [ 1420.351168] RDX: 0000000000000000 RSI: 00000000400455c8 RDI: 0000000000000003 [ 1420.358423] RBP: 00007fa32fc8a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1420.365676] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1420.372926] R13: 00007ffe09471b3f R14: 00007fa32fc8a300 R15: 0000000000022000 [ 1420.392672] Bluetooth: hci7: Frame reassembly failed (-84) [ 1420.398603] Bluetooth: hci6: Frame reassembly failed (-84) 09:59:58 executing program 5: prlimit64(0x0, 0xe, &(0x7f0000000280), 0x0) (async, rerun: 32) prlimit64(0xffffffffffffffff, 0x4, &(0x7f0000000000)={0x0, 0x5}, &(0x7f0000000080)) (async, rerun: 32) sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0xffffffffffff0162) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) (async, rerun: 32) ioctl$KDADDIO(r0, 0x400455c8, 0x4) (rerun: 32) 09:59:58 executing program 4: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) getpid() ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) (async) sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0) (async) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) (async) getpid() (async) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) (async) ioctl$KDADDIO(r0, 0x400455c8, 0x0) (async) 09:59:58 executing program 1: bind$bt_hci(0xffffffffffffffff, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) r0 = dup2(0xffffffffffffffff, 0xffffffffffffffff) write(r0, &(0x7f0000000280)='#\x00\x00\x00', 0x4) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000074, 0x25d) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$inet_tcp_TCP_QUEUE_SEQ(r0, 0x6, 0x15, &(0x7f0000000040)=0x5, 0x4) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe1}]}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) setsockopt$sock_int(r1, 0x1, 0x21, &(0x7f0000000600)=0xda9, 0x4) sendto$inet(r1, &(0x7f0000000640)="febc3b777d549ffacdd9ee6633af6e737f2e6d654105f04716908ec7af8775d530c2cc83e31b3f3c7f9e351ba553af429ff9367031b7ec0aed61ea15d08f299f9241acf82356d0859eb45aec582cd03d4cdbdcd6755c166133d9ba85529c0ed8913418402ba7d907115e75", 0x6b, 0x4000081, 0x0, 0x0) sendto$inet(r1, &(0x7f00000012c0)="e1158a927f1f6588b927481241ba7860f46ef65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a97425a3a07e758044ab0ea6f7ae55d88fecf9221a750fbf746bec66ba", 0xfe6a, 0xe, 0x0, 0xfffffffffffffe2b) fallocate(r1, 0x20, 0x1, 0x101) 09:59:58 executing program 2: r0 = socket(0x2a, 0x800, 0x4) sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0}}, 0x0) getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) getsockopt$bt_l2cap_L2CAP_LM(r0, 0x6, 0x3, &(0x7f0000000080), &(0x7f00000000c0)) r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0x4, 0x1}, 0x6) bind$bt_hci(r1, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6) bind$bt_hci(r1, &(0x7f0000000180)={0x1f, 0x2, 0x2}, 0x6) r2 = dup2(r1, r1) r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6) bind$bt_hci(r3, &(0x7f00000001c0)={0x1f, 0x1}, 0x6) r4 = dup2(r3, r3) write(r4, &(0x7f0000000280)="23000000010007", 0x7) renameat(r2, 0x0, r4, &(0x7f0000000140)='./file0\x00') write(r2, &(0x7f0000000280)="23000000010007", 0x7) [ 1420.567811] Bluetooth: Unknown HCI packet type 5e [ 1420.577930] Bluetooth: hci9: Frame reassembly failed (-84) [ 1420.584684] Bluetooth: Unknown HCI packet type 43 [ 1420.606039] Bluetooth: Unknown HCI packet type 5e 09:59:58 executing program 2: r0 = socket(0x2a, 0x800, 0x4) sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0}}, 0x0) getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) getsockopt$bt_l2cap_L2CAP_LM(r0, 0x6, 0x3, &(0x7f0000000080), &(0x7f00000000c0)) r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0x4, 0x1}, 0x6) bind$bt_hci(r1, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6) bind$bt_hci(r1, &(0x7f0000000180)={0x1f, 0x2, 0x2}, 0x6) r2 = dup2(r1, r1) r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6) bind$bt_hci(r3, &(0x7f00000001c0)={0x1f, 0x1}, 0x6) r4 = dup2(r3, r3) write(r4, &(0x7f0000000280)="23000000010007", 0x7) renameat(r2, 0x0, r4, &(0x7f0000000140)='./file0\x00') write(r2, &(0x7f0000000280)="23000000010007", 0x7) 09:59:58 executing program 2: r0 = socket(0x2a, 0x800, 0x4) sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0}}, 0x0) getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) getsockopt$bt_l2cap_L2CAP_LM(r0, 0x6, 0x3, &(0x7f0000000080), &(0x7f00000000c0)) r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0x4, 0x1}, 0x6) bind$bt_hci(r1, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6) bind$bt_hci(r1, &(0x7f0000000180)={0x1f, 0x2, 0x2}, 0x6) r2 = dup2(r1, r1) r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6) bind$bt_hci(r3, &(0x7f00000001c0)={0x1f, 0x1}, 0x6) r4 = dup2(r3, r3) write(r4, &(0x7f0000000280)="23000000010007", 0x7) renameat(r2, 0x0, r4, &(0x7f0000000140)='./file0\x00') write(r2, &(0x7f0000000280)="23000000010007", 0x7) [ 1420.617308] Bluetooth: Unknown HCI packet type 50 [ 1420.625621] Bluetooth: Unknown HCI packet type 5e [ 1420.630540] Bluetooth: Unknown HCI packet type 40 09:59:58 executing program 2: r0 = socket(0x2a, 0x800, 0x4) sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0}}, 0x0) getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) getsockopt$bt_l2cap_L2CAP_LM(r0, 0x6, 0x3, &(0x7f0000000080), &(0x7f00000000c0)) r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0x4, 0x1}, 0x6) bind$bt_hci(r1, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6) bind$bt_hci(r1, &(0x7f0000000180)={0x1f, 0x2, 0x2}, 0x6) r2 = dup2(r1, r1) r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6) bind$bt_hci(r3, &(0x7f00000001c0)={0x1f, 0x1}, 0x6) r4 = dup2(r3, r3) write(r4, &(0x7f0000000280)="23000000010007", 0x7) renameat(r2, &(0x7f0000000100)='./file0\x00', 0xffffffffffffffff, &(0x7f0000000140)='./file0\x00') write(r2, &(0x7f0000000280)="23000000010007", 0x7) 09:59:58 executing program 2: r0 = socket(0x2a, 0x800, 0x4) sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0}}, 0x0) getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) getsockopt$bt_l2cap_L2CAP_LM(r0, 0x6, 0x3, &(0x7f0000000080), &(0x7f00000000c0)) r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0x4, 0x1}, 0x6) bind$bt_hci(r1, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6) bind$bt_hci(r1, &(0x7f0000000180)={0x1f, 0x2, 0x2}, 0x6) r2 = dup2(r1, r1) r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6) bind$bt_hci(r3, &(0x7f00000001c0)={0x1f, 0x1}, 0x6) r4 = dup2(r3, r3) write(r4, &(0x7f0000000280)="23000000010007", 0x7) renameat(r2, &(0x7f0000000100)='./file0\x00', 0xffffffffffffffff, &(0x7f0000000140)='./file0\x00') write(r2, &(0x7f0000000280)="23000000010007", 0x7) [ 1422.452010] Bluetooth: hci6 command 0x1003 tx timeout [ 1422.457284] Bluetooth: hci7 command 0x1003 tx timeout [ 1422.458349] Bluetooth: hci6 sending frame failed (-49) [ 1422.466241] Bluetooth: hci7 sending frame failed (-49) [ 1422.611907] Bluetooth: hci8 command 0x1003 tx timeout [ 1422.611941] Bluetooth: hci9 command 0x1003 tx timeout [ 1422.617339] Bluetooth: hci8 sending frame failed (-49) [ 1422.626199] Bluetooth: hci9 sending frame failed (-49) [ 1424.531857] Bluetooth: hci6 command 0x1001 tx timeout [ 1424.531911] Bluetooth: hci7 command 0x1001 tx timeout [ 1424.542346] Bluetooth: hci6 sending frame failed (-49) [ 1424.547811] Bluetooth: hci7 sending frame failed (-49) [ 1424.691842] Bluetooth: hci9 command 0x1001 tx timeout [ 1424.697160] Bluetooth: hci9 sending frame failed (-49) [ 1424.702538] Bluetooth: hci8 command 0x1001 tx timeout [ 1424.707786] Bluetooth: hci8 sending frame failed (-49) [ 1426.611784] Bluetooth: hci7 command 0x1009 tx timeout [ 1426.617036] Bluetooth: hci6 command 0x1009 tx timeout [ 1426.771666] Bluetooth: hci8 command 0x1009 tx timeout [ 1426.771670] Bluetooth: hci9 command 0x1009 tx timeout 10:00:08 executing program 3: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x0) (fail_nth: 50) 10:00:08 executing program 2: r0 = socket(0x2a, 0x800, 0x4) sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0}}, 0x0) getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) getsockopt$bt_l2cap_L2CAP_LM(r0, 0x6, 0x3, &(0x7f0000000080), &(0x7f00000000c0)) r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0x4, 0x1}, 0x6) bind$bt_hci(r1, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6) bind$bt_hci(r1, &(0x7f0000000180)={0x1f, 0x2, 0x2}, 0x6) r2 = dup2(r1, r1) r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6) bind$bt_hci(r3, &(0x7f00000001c0)={0x1f, 0x1}, 0x6) r4 = dup2(r3, r3) write(r4, &(0x7f0000000280)="23000000010007", 0x7) renameat(r2, &(0x7f0000000100)='./file0\x00', 0xffffffffffffffff, &(0x7f0000000140)='./file0\x00') write(r2, &(0x7f0000000280)="23000000010007", 0x7) 10:00:08 executing program 1: bind$bt_hci(0xffffffffffffffff, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) r0 = dup2(0xffffffffffffffff, 0xffffffffffffffff) write(r0, &(0x7f0000000280)='#\x00\x00\x00', 0x4) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000074, 0x25d) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$inet_tcp_TCP_QUEUE_SEQ(r0, 0x6, 0x15, &(0x7f0000000040)=0x5, 0x4) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe1}]}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) setsockopt$sock_int(r1, 0x1, 0x21, &(0x7f0000000600)=0xda9, 0x4) sendto$inet(r1, &(0x7f0000000640)="febc3b777d549ffacdd9ee6633af6e737f2e6d654105f04716908ec7af8775d530c2cc83e31b3f3c7f9e351ba553af429ff9367031b7ec0aed61ea15d08f299f9241acf82356d0859eb45aec582cd03d4cdbdcd6755c166133d9ba85529c0ed8913418402ba7d907115e75", 0x6b, 0x4000081, 0x0, 0x0) sendto$inet(r1, &(0x7f00000012c0)="e1158a927f1f6588b927481241ba7860f46ef65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a97425a3a07e758044ab0ea6f7ae55d88fecf9221a750fbf746bec66ba", 0xfe6a, 0xe, 0x0, 0xfffffffffffffe2b) fallocate(r1, 0x20, 0x1, 0x101) bind$bt_hci(0xffffffffffffffff, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) (async) dup2(0xffffffffffffffff, 0xffffffffffffffff) (async) write(r0, &(0x7f0000000280)='#\x00\x00\x00', 0x4) (async) socket$inet(0x2, 0x4000000000000001, 0x0) (async) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000074, 0x25d) (async) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) (async) setsockopt$inet_tcp_TCP_QUEUE_SEQ(r0, 0x6, 0x15, &(0x7f0000000040)=0x5, 0x4) (async) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe1}]}, 0x10) (async) sendto$inet(r1, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) (async) setsockopt$sock_int(r1, 0x1, 0x21, &(0x7f0000000600)=0xda9, 0x4) (async) sendto$inet(r1, &(0x7f0000000640)="febc3b777d549ffacdd9ee6633af6e737f2e6d654105f04716908ec7af8775d530c2cc83e31b3f3c7f9e351ba553af429ff9367031b7ec0aed61ea15d08f299f9241acf82356d0859eb45aec582cd03d4cdbdcd6755c166133d9ba85529c0ed8913418402ba7d907115e75", 0x6b, 0x4000081, 0x0, 0x0) (async) sendto$inet(r1, &(0x7f00000012c0)="e1158a927f1f6588b927481241ba7860f46ef65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a97425a3a07e758044ab0ea6f7ae55d88fecf9221a750fbf746bec66ba", 0xfe6a, 0xe, 0x0, 0xfffffffffffffe2b) (async) fallocate(r1, 0x20, 0x1, 0x101) (async) 10:00:08 executing program 0: prlimit64(0x0, 0x0, 0x0, 0x0) sched_setattr(0x0, 0x0, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x0) (fail_nth: 40) 10:00:08 executing program 4: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) getpid() ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) (async) sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0) (async) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) (async) getpid() (async) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) (async) ioctl$KDADDIO(r0, 0x400455c8, 0x0) (async) 10:00:08 executing program 5: prlimit64(0x0, 0xe, &(0x7f0000000280), 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0xffffffffffff0162) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) r1 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f00000000c0), 0x202, 0x0) r2 = syz_genetlink_get_family_id$devlink(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$DEVLINK_CMD_RELOAD(r1, &(0x7f0000000240)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x14, r2, 0x100, 0x70bd2a, 0x25dfdbfd}, 0x14}, 0x1, 0x0, 0x0, 0x4}, 0x20000004) r3 = accept4$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @empty}, &(0x7f0000000080)=0x10, 0x80800) sendto$inet(r3, &(0x7f0000000000)="667b84d9db7c2e5284dbd4a85a40d527d202045e6eb75abaaf474308707bd3d6985c0001757c82", 0x27, 0x4008800, &(0x7f0000000180)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x25}}, 0x10) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r3, &(0x7f0000000000)={0x2}) ioctl$KDADDIO(r0, 0x400455c8, 0x4) [ 1430.816725] FAULT_INJECTION: forcing a failure. [ 1430.816725] name failslab, interval 1, probability 0, space 0, times 0 [ 1430.828648] CPU: 0 PID: 20456 Comm: syz-executor.3 Not tainted 4.14.262-syzkaller #0 [ 1430.836536] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1430.845886] Call Trace: [ 1430.848470] dump_stack+0x1b2/0x281 [ 1430.852091] should_fail.cold+0x10a/0x149 [ 1430.856232] should_failslab+0xd6/0x130 [ 1430.860188] __kmalloc+0x2c1/0x400 [ 1430.863709] ? rfkill_alloc+0x98/0x2b0 [ 1430.867581] rfkill_alloc+0x98/0x2b0 [ 1430.871280] hci_register_dev+0x318/0x8f0 [ 1430.875413] hci_uart_tty_ioctl+0x6d1/0xa60 [ 1430.879722] tty_ioctl+0x5af/0x1430 [ 1430.883353] ? hci_uart_tty_receive+0x4c0/0x4c0 [ 1430.888006] ? tty_fasync+0x2c0/0x2c0 [ 1430.891802] ? proc_fail_nth_write+0x7b/0x180 [ 1430.896287] ? trace_hardirqs_on+0x10/0x10 [ 1430.900506] ? fsnotify+0x974/0x11b0 [ 1430.904201] ? proc_tgid_io_accounting+0x7a0/0x7a0 [ 1430.909112] ? __handle_mm_fault+0x80f/0x4620 [ 1430.913598] ? SyS_write+0x1b7/0x210 [ 1430.917294] ? tty_fasync+0x2c0/0x2c0 [ 1430.921080] do_vfs_ioctl+0x75a/0xff0 [ 1430.924863] ? lock_acquire+0x170/0x3f0 [ 1430.928841] ? ioctl_preallocate+0x1a0/0x1a0 [ 1430.933237] ? __fget+0x2df/0x460 [ 1430.936673] ? do_vfs_ioctl+0xff0/0xff0 [ 1430.940632] ? security_file_ioctl+0x83/0xb0 [ 1430.945021] SyS_ioctl+0x7f/0xb0 [ 1430.948368] ? do_vfs_ioctl+0xff0/0xff0 [ 1430.952327] do_syscall_64+0x1d5/0x640 [ 1430.956201] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1430.961385] RIP: 0033:0x7fa331314fe9 [ 1430.965112] RSP: 002b:00007fa32fc8a168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1430.972816] RAX: ffffffffffffffda RBX: 00007fa331427f60 RCX: 00007fa331314fe9 [ 1430.980075] RDX: 0000000000000000 RSI: 00000000400455c8 RDI: 0000000000000003 [ 1430.987333] RBP: 00007fa32fc8a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1430.994585] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1431.001837] R13: 00007ffe09471b3f R14: 00007fa32fc8a300 R15: 0000000000022000 10:00:08 executing program 2: r0 = socket(0x2a, 0x800, 0x4) sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0}}, 0x0) getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) getsockopt$bt_l2cap_L2CAP_LM(r0, 0x6, 0x3, &(0x7f0000000080), &(0x7f00000000c0)) r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0x4, 0x1}, 0x6) bind$bt_hci(r1, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6) bind$bt_hci(r1, &(0x7f0000000180)={0x1f, 0x2, 0x2}, 0x6) r2 = dup2(r1, r1) r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6) bind$bt_hci(r3, &(0x7f00000001c0)={0x1f, 0x1}, 0x6) r4 = dup2(r3, r3) write(r4, &(0x7f0000000280)="23000000010007", 0x7) renameat(r2, &(0x7f0000000100)='./file0\x00', r4, 0x0) write(r2, &(0x7f0000000280)="23000000010007", 0x7) [ 1431.013133] Bluetooth: hci6: Frame reassembly failed (-84) [ 1431.028917] FAULT_INJECTION: forcing a failure. [ 1431.028917] name failslab, interval 1, probability 0, space 0, times 0 [ 1431.068985] CPU: 1 PID: 20466 Comm: syz-executor.0 Not tainted 4.14.262-syzkaller #0 [ 1431.076896] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1431.086248] Call Trace: [ 1431.088840] dump_stack+0x1b2/0x281 [ 1431.092455] should_fail.cold+0x10a/0x149 [ 1431.096606] should_failslab+0xd6/0x130 [ 1431.100585] kmem_cache_alloc_node+0x263/0x410 [ 1431.105160] __alloc_skb+0x5c/0x510 [ 1431.108776] kobject_uevent_env+0x882/0xf30 [ 1431.113103] device_add+0xa47/0x15c0 [ 1431.116807] ? device_is_dependent+0x2a0/0x2a0 [ 1431.121374] ? start_creating+0x144/0x200 [ 1431.125508] hci_register_dev+0x2e2/0x8f0 [ 1431.129645] hci_uart_tty_ioctl+0x6d1/0xa60 [ 1431.133950] tty_ioctl+0x5af/0x1430 [ 1431.137560] ? hci_uart_tty_receive+0x4c0/0x4c0 [ 1431.142211] ? tty_fasync+0x2c0/0x2c0 [ 1431.145995] ? proc_fail_nth_write+0x7b/0x180 [ 1431.150474] ? trace_hardirqs_on+0x10/0x10 [ 1431.154698] ? fsnotify+0x974/0x11b0 [ 1431.158390] ? proc_tgid_io_accounting+0x7a0/0x7a0 [ 1431.163302] ? __handle_mm_fault+0x80f/0x4620 [ 1431.167777] ? SyS_write+0x1b7/0x210 [ 1431.171474] ? tty_fasync+0x2c0/0x2c0 [ 1431.175257] do_vfs_ioctl+0x75a/0xff0 [ 1431.179040] ? lock_acquire+0x170/0x3f0 [ 1431.182995] ? ioctl_preallocate+0x1a0/0x1a0 [ 1431.187387] ? __fget+0x2df/0x460 [ 1431.190822] ? do_vfs_ioctl+0xff0/0xff0 [ 1431.194778] ? security_file_ioctl+0x83/0xb0 [ 1431.199172] SyS_ioctl+0x7f/0xb0 [ 1431.202523] ? do_vfs_ioctl+0xff0/0xff0 [ 1431.206482] do_syscall_64+0x1d5/0x640 [ 1431.210358] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1431.215534] RIP: 0033:0x7fbb944a7fe9 10:00:09 executing program 2: r0 = socket(0x2a, 0x800, 0x4) sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0}}, 0x0) getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) getsockopt$bt_l2cap_L2CAP_LM(r0, 0x6, 0x3, &(0x7f0000000080), &(0x7f00000000c0)) r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0x4, 0x1}, 0x6) bind$bt_hci(r1, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6) bind$bt_hci(r1, &(0x7f0000000180)={0x1f, 0x2, 0x2}, 0x6) r2 = dup2(r1, r1) r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6) bind$bt_hci(r3, &(0x7f00000001c0)={0x1f, 0x1}, 0x6) r4 = dup2(r3, r3) write(r4, &(0x7f0000000280)="23000000010007", 0x7) renameat(r2, &(0x7f0000000100)='./file0\x00', r4, 0x0) write(r2, &(0x7f0000000280)="23000000010007", 0x7) [ 1431.219223] RSP: 002b:00007fbb92dfc168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1431.226913] RAX: ffffffffffffffda RBX: 00007fbb945bb030 RCX: 00007fbb944a7fe9 [ 1431.234183] RDX: 0000000000000000 RSI: 00000000400455c8 RDI: 0000000000000003 [ 1431.241436] RBP: 00007fbb92dfc1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1431.248685] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1431.255935] R13: 00007ffc96d7392f R14: 00007fbb92dfc300 R15: 0000000000022000 10:00:09 executing program 2: r0 = socket(0x2a, 0x800, 0x4) sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0}}, 0x0) getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) getsockopt$bt_l2cap_L2CAP_LM(r0, 0x6, 0x3, &(0x7f0000000080), &(0x7f00000000c0)) r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0x4, 0x1}, 0x6) bind$bt_hci(r1, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6) bind$bt_hci(r1, &(0x7f0000000180)={0x1f, 0x2, 0x2}, 0x6) r2 = dup2(r1, r1) r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6) bind$bt_hci(r3, &(0x7f00000001c0)={0x1f, 0x1}, 0x6) r4 = dup2(r3, r3) write(r4, &(0x7f0000000280)="23000000010007", 0x7) renameat(r2, &(0x7f0000000100)='./file0\x00', r4, 0x0) write(r2, &(0x7f0000000280)="23000000010007", 0x7) [ 1431.285254] Bluetooth: hci8: Frame reassembly failed (-84) 10:00:09 executing program 1: bind$bt_hci(0xffffffffffffffff, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) r0 = dup2(0xffffffffffffffff, 0xffffffffffffffff) write(r0, &(0x7f0000000280)='#\x00\x00\x00', 0x4) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000074, 0x25d) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$inet_tcp_TCP_QUEUE_SEQ(r0, 0x6, 0x15, &(0x7f0000000040)=0x5, 0x4) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe1}]}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) setsockopt$sock_int(r1, 0x1, 0x21, &(0x7f0000000600)=0xda9, 0x4) sendto$inet(r1, &(0x7f0000000640)="febc3b777d549ffacdd9ee6633af6e737f2e6d654105f04716908ec7af8775d530c2cc83e31b3f3c7f9e351ba553af429ff9367031b7ec0aed61ea15d08f299f9241acf82356d0859eb45aec582cd03d4cdbdcd6755c166133d9ba85529c0ed8913418402ba7d907115e75", 0x6b, 0x4000081, 0x0, 0x0) sendto$inet(r1, &(0x7f00000012c0)="e1158a927f1f6588b927481241ba7860f46ef65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a97425a3a07e758044ab0ea6f7ae55d88fecf9221a750fbf746bec66ba", 0xfe6a, 0xe, 0x0, 0xfffffffffffffe2b) fallocate(r1, 0x20, 0x1, 0x101) bind$bt_hci(0xffffffffffffffff, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) (async) dup2(0xffffffffffffffff, 0xffffffffffffffff) (async) write(r0, &(0x7f0000000280)='#\x00\x00\x00', 0x4) (async) socket$inet(0x2, 0x4000000000000001, 0x0) (async) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000074, 0x25d) (async) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) (async) setsockopt$inet_tcp_TCP_QUEUE_SEQ(r0, 0x6, 0x15, &(0x7f0000000040)=0x5, 0x4) (async) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe1}]}, 0x10) (async) sendto$inet(r1, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) (async) setsockopt$sock_int(r1, 0x1, 0x21, &(0x7f0000000600)=0xda9, 0x4) (async) sendto$inet(r1, &(0x7f0000000640)="febc3b777d549ffacdd9ee6633af6e737f2e6d654105f04716908ec7af8775d530c2cc83e31b3f3c7f9e351ba553af429ff9367031b7ec0aed61ea15d08f299f9241acf82356d0859eb45aec582cd03d4cdbdcd6755c166133d9ba85529c0ed8913418402ba7d907115e75", 0x6b, 0x4000081, 0x0, 0x0) (async) sendto$inet(r1, &(0x7f00000012c0)="e1158a927f1f6588b927481241ba7860f46ef65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a97425a3a07e758044ab0ea6f7ae55d88fecf9221a750fbf746bec66ba", 0xfe6a, 0xe, 0x0, 0xfffffffffffffe2b) (async) fallocate(r1, 0x20, 0x1, 0x101) (async) 10:00:09 executing program 2: r0 = socket(0x2a, 0x800, 0x4) sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0}}, 0x0) getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) getsockopt$bt_l2cap_L2CAP_LM(r0, 0x6, 0x3, &(0x7f0000000080), &(0x7f00000000c0)) r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0x4, 0x1}, 0x6) bind$bt_hci(r1, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6) bind$bt_hci(r1, &(0x7f0000000180)={0x1f, 0x2, 0x2}, 0x6) r2 = dup2(r1, r1) r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6) bind$bt_hci(r3, &(0x7f00000001c0)={0x1f, 0x1}, 0x6) r4 = dup2(r3, r3) write(r4, &(0x7f0000000280)="23000000010007", 0x7) renameat(r2, &(0x7f0000000100)='./file0\x00', r4, &(0x7f0000000140)='./file0\x00') write(0xffffffffffffffff, &(0x7f0000000280)="23000000010007", 0x7) 10:00:09 executing program 2: r0 = socket(0x2a, 0x800, 0x4) sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0}}, 0x0) getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) getsockopt$bt_l2cap_L2CAP_LM(r0, 0x6, 0x3, &(0x7f0000000080), &(0x7f00000000c0)) r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0x4, 0x1}, 0x6) bind$bt_hci(r1, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6) bind$bt_hci(r1, &(0x7f0000000180)={0x1f, 0x2, 0x2}, 0x6) r2 = dup2(r1, r1) r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6) bind$bt_hci(r3, &(0x7f00000001c0)={0x1f, 0x1}, 0x6) r4 = dup2(r3, r3) write(r4, &(0x7f0000000280)="23000000010007", 0x7) renameat(r2, &(0x7f0000000100)='./file0\x00', r4, &(0x7f0000000140)='./file0\x00') write(0xffffffffffffffff, &(0x7f0000000280)="23000000010007", 0x7) [ 1433.091270] Bluetooth: hci6 command 0x1003 tx timeout [ 1433.096593] Bluetooth: hci6 sending frame failed (-49) [ 1433.341280] Bluetooth: hci9 command 0x1003 tx timeout [ 1433.346589] Bluetooth: hci9 sending frame failed (-49) [ 1433.352168] Bluetooth: hci8 command 0x1003 tx timeout [ 1433.357387] Bluetooth: hci7 command 0x1003 tx timeout [ 1433.357434] Bluetooth: hci8 sending frame failed (-49) [ 1433.363058] Bluetooth: hci7 sending frame failed (-49) [ 1435.171163] Bluetooth: hci6 command 0x1001 tx timeout [ 1435.176578] Bluetooth: hci6 sending frame failed (-49) [ 1435.411156] Bluetooth: hci7 command 0x1001 tx timeout [ 1435.411178] Bluetooth: hci8 command 0x1001 tx timeout [ 1435.416400] Bluetooth: hci9 command 0x1001 tx timeout [ 1435.421618] Bluetooth: hci7 sending frame failed (-49) [ 1435.427450] Bluetooth: hci9 sending frame failed (-49) [ 1435.437986] Bluetooth: hci8 sending frame failed (-49) [ 1437.251130] Bluetooth: hci6 command 0x1009 tx timeout [ 1437.491011] Bluetooth: hci8 command 0x1009 tx timeout [ 1437.491014] Bluetooth: hci7 command 0x1009 tx timeout [ 1437.501508] Bluetooth: hci9 command 0x1009 tx timeout 10:00:19 executing program 3: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x0) (fail_nth: 51) 10:00:19 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) r1 = socket(0x10, 0x803, 0x0) sendmsg$BATADV_CMD_GET_MESH(r1, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0}}, 0x0) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) ioctl$sock_bt_hci(r1, 0x800448d7, &(0x7f00000000c0)="2fde93946badc2f941ca41036b18008a157ca3205f0d0c2937af47f64080d7d1e01ee006651807ef80141f8a55b50a9e7a944448f8aa41c776a2ca76e4011e2f2cb42f2590385da727cbad41a082aa585008364ce267098c0395ad1c42e93ff7440941104272137d84e9c4bcaf670f870ece5c187dca5599f75dd521b30f878b0dfa7f7d696e87699ceeee8563b8959cbb9d2e6ebb2e") ioctl$sock_bt_hci(r0, 0x800448d7, &(0x7f0000000040)="589cb3ffb3fb7dc4286e7f4e5fe1c4e03211911bb48a52a7eb31b752634d0b45c8cf0e832b89ba9e7ea9a620b109ff444c42770a007a949a9b2464968d7dd7afa052c663d29d7ccc88480479cc6c8b5bc49013ab9f0b1b226ff70aa791c6c238cf834c352c05c8f8a3dfa6ed0b64aef583984bfa412364ca5f35") bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) r2 = dup2(r0, r0) write(r2, &(0x7f0000000280)='#\x00\x00\x00', 0x4) 10:00:19 executing program 5: prlimit64(0x0, 0xe, &(0x7f0000000280), 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0xffffffffffff0162) (async) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) r1 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f00000000c0), 0x202, 0x0) r2 = syz_genetlink_get_family_id$devlink(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$DEVLINK_CMD_RELOAD(r1, &(0x7f0000000240)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x14, r2, 0x100, 0x70bd2a, 0x25dfdbfd}, 0x14}, 0x1, 0x0, 0x0, 0x4}, 0x20000004) (async) r3 = accept4$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @empty}, &(0x7f0000000080)=0x10, 0x80800) sendto$inet(r3, &(0x7f0000000000)="667b84d9db7c2e5284dbd4a85a40d527d202045e6eb75abaaf474308707bd3d6985c0001757c82", 0x27, 0x4008800, &(0x7f0000000180)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x25}}, 0x10) (async) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r3, &(0x7f0000000000)={0x2}) ioctl$KDADDIO(r0, 0x400455c8, 0x4) 10:00:19 executing program 0: prlimit64(0x0, 0x0, 0x0, 0x0) sched_setattr(0x0, 0x0, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x0) (fail_nth: 41) 10:00:19 executing program 2: r0 = socket(0x2a, 0x800, 0x4) sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0}}, 0x0) getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) getsockopt$bt_l2cap_L2CAP_LM(r0, 0x6, 0x3, &(0x7f0000000080), &(0x7f00000000c0)) r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0x4, 0x1}, 0x6) bind$bt_hci(r1, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6) bind$bt_hci(r1, &(0x7f0000000180)={0x1f, 0x2, 0x2}, 0x6) r2 = dup2(r1, r1) r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6) bind$bt_hci(r3, &(0x7f00000001c0)={0x1f, 0x1}, 0x6) r4 = dup2(r3, r3) write(r4, &(0x7f0000000280)="23000000010007", 0x7) renameat(r2, &(0x7f0000000100)='./file0\x00', r4, &(0x7f0000000140)='./file0\x00') write(0xffffffffffffffff, &(0x7f0000000280)="23000000010007", 0x7) 10:00:19 executing program 4: prlimit64(0x0, 0x0, &(0x7f0000000280)={0x3, 0x8d}, 0x0) sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) openat$nvme_fabrics(0xffffffffffffff9c, &(0x7f0000000100), 0x982, 0x0) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000040)=0xf) write(0xffffffffffffffff, &(0x7f0000000200)="1ee4593ae55b", 0x6) ioctl$KDADDIO(r1, 0x400455c8, 0x4) ioctl$TIOCSETD(r1, 0x5412, &(0x7f0000000000)=0x33) openat$full(0xffffffffffffff9c, &(0x7f0000000080), 0x8102, 0x0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r2, 0x400455c8, 0x4) ioctl$TIOCSETD(r2, 0x5412, &(0x7f0000000000)=0x33) ioctl$TIOCSETD(r2, 0x5423, &(0x7f00000001c0)=0x16) sched_setattr(0xffffffffffffffff, &(0x7f00000000c0)={0x38, 0x6, 0x66, 0x0, 0x4, 0x89b8, 0x8, 0x1e, 0x3, 0x2644}, 0x0) ioctl$KDADDIO(r0, 0x400455c8, 0x0) sched_setattr(0xffffffffffffffff, &(0x7f0000000000)={0x38, 0x5, 0x1000002a, 0x90ca, 0x7, 0x40, 0x2, 0x101, 0x8, 0x8a5}, 0x0) 10:00:19 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async, rerun: 32) r1 = socket(0x10, 0x803, 0x0) (rerun: 32) sendmsg$BATADV_CMD_GET_MESH(r1, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0}}, 0x0) (async, rerun: 32) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) (async, rerun: 32) ioctl$sock_bt_hci(r1, 0x800448d7, &(0x7f00000000c0)="2fde93946badc2f941ca41036b18008a157ca3205f0d0c2937af47f64080d7d1e01ee006651807ef80141f8a55b50a9e7a944448f8aa41c776a2ca76e4011e2f2cb42f2590385da727cbad41a082aa585008364ce267098c0395ad1c42e93ff7440941104272137d84e9c4bcaf670f870ece5c187dca5599f75dd521b30f878b0dfa7f7d696e87699ceeee8563b8959cbb9d2e6ebb2e") (async, rerun: 32) ioctl$sock_bt_hci(r0, 0x800448d7, &(0x7f0000000040)="589cb3ffb3fb7dc4286e7f4e5fe1c4e03211911bb48a52a7eb31b752634d0b45c8cf0e832b89ba9e7ea9a620b109ff444c42770a007a949a9b2464968d7dd7afa052c663d29d7ccc88480479cc6c8b5bc49013ab9f0b1b226ff70aa791c6c238cf834c352c05c8f8a3dfa6ed0b64aef583984bfa412364ca5f35") (async, rerun: 32) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) (async) r2 = dup2(r0, r0) write(r2, &(0x7f0000000280)='#\x00\x00\x00', 0x4) [ 1441.709450] FAULT_INJECTION: forcing a failure. [ 1441.709450] name failslab, interval 1, probability 0, space 0, times 0 [ 1441.721561] CPU: 1 PID: 20545 Comm: syz-executor.3 Not tainted 4.14.262-syzkaller #0 [ 1441.729460] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1441.738816] Call Trace: [ 1441.741407] dump_stack+0x1b2/0x281 [ 1441.745036] should_fail.cold+0x10a/0x149 [ 1441.749187] should_failslab+0xd6/0x130 [ 1441.753163] __kmalloc_track_caller+0x2bc/0x400 10:00:19 executing program 2: r0 = socket(0x2a, 0x800, 0x4) sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0}}, 0x0) getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) getsockopt$bt_l2cap_L2CAP_LM(r0, 0x6, 0x3, &(0x7f0000000080), &(0x7f00000000c0)) r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0x4, 0x1}, 0x6) bind$bt_hci(r1, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6) bind$bt_hci(r1, &(0x7f0000000180)={0x1f, 0x2, 0x2}, 0x6) r2 = dup2(r1, r1) r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6) bind$bt_hci(r3, &(0x7f00000001c0)={0x1f, 0x1}, 0x6) r4 = dup2(r3, r3) write(r4, &(0x7f0000000280)="23000000010007", 0x7) renameat(r2, &(0x7f0000000100)='./file0\x00', r4, &(0x7f0000000140)='./file0\x00') write(r2, 0x0, 0x0) [ 1441.757844] ? kvasprintf_const+0x55/0x180 [ 1441.762094] kvasprintf+0xa8/0x100 [ 1441.765636] ? bust_spinlocks+0xc0/0xc0 [ 1441.769611] ? __mutex_lock+0x360/0x1310 [ 1441.771063] FAULT_INJECTION: forcing a failure. [ 1441.771063] name failslab, interval 1, probability 0, space 0, times 0 [ 1441.773672] kvasprintf_const+0x55/0x180 [ 1441.773700] kobject_set_name_vargs+0x56/0x150 [ 1441.773711] dev_set_name+0xa4/0xc0 [ 1441.773720] ? device_initialize+0x430/0x430 [ 1441.773731] ? __lockdep_init_map+0x100/0x560 [ 1441.773746] rfkill_register+0xdb/0xab0 10:00:19 executing program 2: r0 = socket(0x2a, 0x800, 0x4) sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0}}, 0x0) getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) getsockopt$bt_l2cap_L2CAP_LM(r0, 0x6, 0x3, &(0x7f0000000080), &(0x7f00000000c0)) r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0x4, 0x1}, 0x6) bind$bt_hci(r1, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6) bind$bt_hci(r1, &(0x7f0000000180)={0x1f, 0x2, 0x2}, 0x6) r2 = dup2(r1, r1) r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6) bind$bt_hci(r3, &(0x7f00000001c0)={0x1f, 0x1}, 0x6) r4 = dup2(r3, r3) write(r4, &(0x7f0000000280)="23000000010007", 0x7) renameat(r2, &(0x7f0000000100)='./file0\x00', r4, &(0x7f0000000140)='./file0\x00') write(r2, 0x0, 0x0) [ 1441.810008] hci_register_dev+0x359/0x8f0 [ 1441.814172] hci_uart_tty_ioctl+0x6d1/0xa60 [ 1441.818494] tty_ioctl+0x5af/0x1430 [ 1441.822118] ? hci_uart_tty_receive+0x4c0/0x4c0 [ 1441.826778] ? tty_fasync+0x2c0/0x2c0 [ 1441.830569] ? proc_fail_nth_write+0x7b/0x180 [ 1441.835066] ? trace_hardirqs_on+0x10/0x10 [ 1441.839302] ? fsnotify+0x974/0x11b0 [ 1441.843013] ? proc_tgid_io_accounting+0x7a0/0x7a0 [ 1441.847943] ? __handle_mm_fault+0x80f/0x4620 [ 1441.852440] ? SyS_write+0x1b7/0x210 [ 1441.856157] ? tty_fasync+0x2c0/0x2c0 10:00:19 executing program 2: r0 = socket(0x2a, 0x800, 0x4) sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0}}, 0x0) getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) getsockopt$bt_l2cap_L2CAP_LM(r0, 0x6, 0x3, &(0x7f0000000080), &(0x7f00000000c0)) r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0x4, 0x1}, 0x6) bind$bt_hci(r1, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6) bind$bt_hci(r1, &(0x7f0000000180)={0x1f, 0x2, 0x2}, 0x6) r2 = dup2(r1, r1) r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6) bind$bt_hci(r3, &(0x7f00000001c0)={0x1f, 0x1}, 0x6) r4 = dup2(r3, r3) write(r4, &(0x7f0000000280)="23000000010007", 0x7) renameat(r2, &(0x7f0000000100)='./file0\x00', r4, &(0x7f0000000140)='./file0\x00') write(r2, 0x0, 0x0) [ 1441.859955] do_vfs_ioctl+0x75a/0xff0 [ 1441.863763] ? lock_acquire+0x170/0x3f0 [ 1441.867726] ? ioctl_preallocate+0x1a0/0x1a0 [ 1441.872131] ? __fget+0x2df/0x460 [ 1441.875580] ? do_vfs_ioctl+0xff0/0xff0 [ 1441.879546] ? security_file_ioctl+0x83/0xb0 [ 1441.883945] SyS_ioctl+0x7f/0xb0 [ 1441.887470] ? do_vfs_ioctl+0xff0/0xff0 [ 1441.891437] do_syscall_64+0x1d5/0x640 [ 1441.895337] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1441.900514] RIP: 0033:0x7fa331314fe9 10:00:19 executing program 2: r0 = socket(0x2a, 0x800, 0x4) sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0}}, 0x0) getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) getsockopt$bt_l2cap_L2CAP_LM(r0, 0x6, 0x3, &(0x7f0000000080), &(0x7f00000000c0)) r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0x4, 0x1}, 0x6) bind$bt_hci(r1, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6) bind$bt_hci(r1, &(0x7f0000000180)={0x1f, 0x2, 0x2}, 0x6) r2 = dup2(r1, r1) r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6) bind$bt_hci(r3, &(0x7f00000001c0)={0x1f, 0x1}, 0x6) r4 = dup2(r3, r3) write(r4, &(0x7f0000000280)="23000000010007", 0x7) renameat(r2, &(0x7f0000000100)='./file0\x00', r4, &(0x7f0000000140)='./file0\x00') write(r2, &(0x7f0000000280), 0x0) [ 1441.904206] RSP: 002b:00007fa32fc8a168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1441.911905] RAX: ffffffffffffffda RBX: 00007fa331427f60 RCX: 00007fa331314fe9 [ 1441.919172] RDX: 0000000000000000 RSI: 00000000400455c8 RDI: 0000000000000003 [ 1441.926440] RBP: 00007fa32fc8a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1441.933700] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1441.940980] R13: 00007ffe09471b3f R14: 00007fa32fc8a300 R15: 0000000000022000 [ 1441.962870] CPU: 0 PID: 20556 Comm: syz-executor.0 Not tainted 4.14.262-syzkaller #0 [ 1441.970774] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1441.980121] Call Trace: [ 1441.982704] dump_stack+0x1b2/0x281 [ 1441.986331] should_fail.cold+0x10a/0x149 [ 1441.990474] should_failslab+0xd6/0x130 [ 1441.994436] kmem_cache_alloc_node+0x263/0x410 [ 1441.998998] __alloc_skb+0x5c/0x510 [ 1442.002608] kobject_uevent_env+0x882/0xf30 [ 1442.006913] device_add+0xa47/0x15c0 [ 1442.010612] ? device_is_dependent+0x2a0/0x2a0 [ 1442.015172] ? start_creating+0x144/0x200 [ 1442.019300] hci_register_dev+0x2e2/0x8f0 [ 1442.023429] hci_uart_tty_ioctl+0x6d1/0xa60 [ 1442.027730] tty_ioctl+0x5af/0x1430 [ 1442.031336] ? hci_uart_tty_receive+0x4c0/0x4c0 [ 1442.035983] ? tty_fasync+0x2c0/0x2c0 [ 1442.039760] ? proc_fail_nth_write+0x7b/0x180 [ 1442.044231] ? trace_hardirqs_on+0x10/0x10 [ 1442.048444] ? fsnotify+0x974/0x11b0 [ 1442.052134] ? proc_tgid_io_accounting+0x7a0/0x7a0 [ 1442.057038] ? __handle_mm_fault+0x80f/0x4620 [ 1442.061508] ? SyS_write+0x1b7/0x210 [ 1442.065200] ? tty_fasync+0x2c0/0x2c0 [ 1442.068978] do_vfs_ioctl+0x75a/0xff0 [ 1442.072758] ? lock_acquire+0x170/0x3f0 [ 1442.076710] ? ioctl_preallocate+0x1a0/0x1a0 [ 1442.081098] ? __fget+0x2df/0x460 [ 1442.084527] ? do_vfs_ioctl+0xff0/0xff0 [ 1442.088482] ? security_file_ioctl+0x83/0xb0 [ 1442.092867] SyS_ioctl+0x7f/0xb0 [ 1442.096210] ? do_vfs_ioctl+0xff0/0xff0 [ 1442.100162] do_syscall_64+0x1d5/0x640 [ 1442.104034] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1442.109200] RIP: 0033:0x7fbb944a7fe9 10:00:20 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) r1 = socket(0x10, 0x803, 0x0) sendmsg$BATADV_CMD_GET_MESH(r1, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0}}, 0x0) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) (async) ioctl$sock_bt_hci(r1, 0x800448d7, &(0x7f00000000c0)="2fde93946badc2f941ca41036b18008a157ca3205f0d0c2937af47f64080d7d1e01ee006651807ef80141f8a55b50a9e7a944448f8aa41c776a2ca76e4011e2f2cb42f2590385da727cbad41a082aa585008364ce267098c0395ad1c42e93ff7440941104272137d84e9c4bcaf670f870ece5c187dca5599f75dd521b30f878b0dfa7f7d696e87699ceeee8563b8959cbb9d2e6ebb2e") (async) ioctl$sock_bt_hci(r0, 0x800448d7, &(0x7f0000000040)="589cb3ffb3fb7dc4286e7f4e5fe1c4e03211911bb48a52a7eb31b752634d0b45c8cf0e832b89ba9e7ea9a620b109ff444c42770a007a949a9b2464968d7dd7afa052c663d29d7ccc88480479cc6c8b5bc49013ab9f0b1b226ff70aa791c6c238cf834c352c05c8f8a3dfa6ed0b64aef583984bfa412364ca5f35") (async) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) (async) r2 = dup2(r0, r0) write(r2, &(0x7f0000000280)='#\x00\x00\x00', 0x4) 10:00:20 executing program 2: r0 = socket(0x2a, 0x800, 0x4) sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0}}, 0x0) getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) getsockopt$bt_l2cap_L2CAP_LM(r0, 0x6, 0x3, &(0x7f0000000080), &(0x7f00000000c0)) r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0x4, 0x1}, 0x6) bind$bt_hci(r1, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6) bind$bt_hci(r1, &(0x7f0000000180)={0x1f, 0x2, 0x2}, 0x6) r2 = dup2(r1, r1) r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6) bind$bt_hci(r3, &(0x7f00000001c0)={0x1f, 0x1}, 0x6) r4 = dup2(r3, r3) write(r4, &(0x7f0000000280)="23000000010007", 0x7) renameat(r2, &(0x7f0000000100)='./file0\x00', r4, &(0x7f0000000140)='./file0\x00') write(r2, &(0x7f0000000280), 0x0) [ 1442.112887] RSP: 002b:00007fbb92dfc168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1442.120573] RAX: ffffffffffffffda RBX: 00007fbb945bb030 RCX: 00007fbb944a7fe9 [ 1442.127820] RDX: 0000000000000000 RSI: 00000000400455c8 RDI: 0000000000000003 [ 1442.135066] RBP: 00007fbb92dfc1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1442.142314] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1442.149567] R13: 00007ffc96d7392f R14: 00007fbb92dfc300 R15: 0000000000022000 [ 1442.177902] Bluetooth: Unknown HCI packet type 5e [ 1442.182990] Bluetooth: Unknown HCI packet type 5e [ 1442.192754] Bluetooth: Unknown HCI packet type 43 [ 1442.197758] Bluetooth: Unknown HCI packet type 43 [ 1442.208223] Bluetooth: hci9: Frame reassembly failed (-84) [ 1442.216092] Bluetooth: Unknown HCI packet type 5e [ 1442.223805] Bluetooth: Unknown HCI packet type 5e [ 1442.233205] Bluetooth: Unknown HCI packet type 50 [ 1442.238738] Bluetooth: Unknown HCI packet type 50 [ 1442.248114] Bluetooth: Unknown HCI packet type 5e [ 1442.256327] Bluetooth: Unknown HCI packet type 5e [ 1442.279556] Bluetooth: Unknown HCI packet type 40 [ 1442.285721] Bluetooth: Unknown HCI packet type 40 [ 1443.980660] Bluetooth: hci6 command 0x1003 tx timeout [ 1443.985997] Bluetooth: hci6 sending frame failed (-49) [ 1444.210633] Bluetooth: hci9 command 0x1003 tx timeout [ 1444.215928] Bluetooth: hci11 command 0x1003 tx timeout [ 1444.215961] Bluetooth: hci9 sending frame failed (-49) [ 1444.221657] Bluetooth: hci10 command 0x1003 tx timeout [ 1444.227997] Bluetooth: hci8 command 0x1003 tx timeout [ 1444.236580] Bluetooth: hci11 sending frame failed (-49) [ 1444.237142] Bluetooth: hci7 command 0x1003 tx timeout [ 1444.243680] Bluetooth: Unknown HCI packet type 5e [ 1444.248647] Bluetooth: hci7 sending frame failed (-49) [ 1444.257078] Bluetooth: Unknown HCI packet type 5e [ 1444.258357] Bluetooth: Unknown HCI packet type 41 [ 1444.263651] Bluetooth: Unknown HCI packet type 41 [ 1444.268042] Bluetooth: Unknown HCI packet type 5e [ 1444.277077] Bluetooth: Unknown HCI packet type 5e [ 1444.277600] Bluetooth: Unknown HCI packet type 41 [ 1444.283387] Bluetooth: Unknown HCI packet type 41 [ 1444.287306] Bluetooth: Unknown HCI packet type 5e [ 1444.297158] Bluetooth: Unknown HCI packet type 50 [ 1444.299461] Bluetooth: Unknown HCI packet type 5e [ 1444.302099] Bluetooth: Unknown HCI packet type 5e [ 1444.302104] Bluetooth: Unknown HCI packet type 40 [ 1444.316875] Bluetooth: Unknown HCI packet type 50 [ 1444.321807] Bluetooth: Unknown HCI packet type 5e [ 1444.326641] Bluetooth: Unknown HCI packet type 40 [ 1446.050512] Bluetooth: hci6 command 0x1001 tx timeout [ 1446.055808] Bluetooth: hci6 sending frame failed (-49) [ 1446.290548] Bluetooth: hci8 command 0x1001 tx timeout [ 1446.295797] Bluetooth: hci10 command 0x1001 tx timeout [ 1446.296007] Bluetooth: Unknown HCI packet type 5e [ 1446.305953] Bluetooth: hci11 command 0x1001 tx timeout [ 1446.306038] Bluetooth: hci7 command 0x1001 tx timeout [ 1446.312329] Bluetooth: hci11 sending frame failed (-49) [ 1446.316607] Bluetooth: Unknown HCI packet type 5e [ 1446.321915] Bluetooth: hci7 sending frame failed (-49) [ 1446.328140] Bluetooth: Unknown HCI packet type 41 [ 1446.335818] Bluetooth: hci9 command 0x1001 tx timeout [ 1446.337813] Bluetooth: Unknown HCI packet type 41 [ 1446.342486] Bluetooth: hci9 sending frame failed (-49) [ 1446.347751] Bluetooth: Unknown HCI packet type 09 [ 1446.356636] Bluetooth: Unknown HCI packet type 09 [ 1446.357176] Bluetooth: Unknown HCI packet type 5e [ 1446.362336] Bluetooth: Unknown HCI packet type 5e [ 1446.368857] Bluetooth: Unknown HCI packet type 50 [ 1446.377208] Bluetooth: Unknown HCI packet type 5e [ 1446.377332] Bluetooth: Unknown HCI packet type 50 [ 1446.382795] Bluetooth: Unknown HCI packet type 40 [ 1446.387274] Bluetooth: Unknown HCI packet type 5e [ 1446.396698] Bluetooth: Unknown HCI packet type 40 [ 1448.130525] Bluetooth: hci6 command 0x1009 tx timeout [ 1448.370427] Bluetooth: hci10 command 0x1009 tx timeout [ 1448.370438] Bluetooth: hci9 command 0x1009 tx timeout [ 1448.375752] Bluetooth: hci8 command 0x1009 tx timeout [ 1448.382339] Bluetooth: hci7 command 0x1009 tx timeout [ 1448.391722] Bluetooth: hci11 command 0x1009 tx timeout 10:00:30 executing program 3: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x0) (fail_nth: 52) 10:00:30 executing program 2: r0 = socket(0x2a, 0x800, 0x4) sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0}}, 0x0) getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) getsockopt$bt_l2cap_L2CAP_LM(r0, 0x6, 0x3, &(0x7f0000000080), &(0x7f00000000c0)) r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0x4, 0x1}, 0x6) bind$bt_hci(r1, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6) bind$bt_hci(r1, &(0x7f0000000180)={0x1f, 0x2, 0x2}, 0x6) r2 = dup2(r1, r1) r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6) bind$bt_hci(r3, &(0x7f00000001c0)={0x1f, 0x1}, 0x6) r4 = dup2(r3, r3) write(r4, &(0x7f0000000280)="23000000010007", 0x7) renameat(r2, &(0x7f0000000100)='./file0\x00', r4, &(0x7f0000000140)='./file0\x00') write(r2, &(0x7f0000000280), 0x0) 10:00:30 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) r1 = dup2(r0, r0) bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0x2, 0xe08ef0b008088a76}, 0x6) fcntl$setpipe(r0, 0x407, 0x2) write(r1, &(0x7f0000000280)='#\x00\x00\x00', 0x4) 10:00:30 executing program 0: prlimit64(0x0, 0x0, 0x0, 0x0) sched_setattr(0x0, 0x0, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x0) (fail_nth: 42) [ 1452.580494] FAULT_INJECTION: forcing a failure. [ 1452.580494] name failslab, interval 1, probability 0, space 0, times 0 [ 1452.591774] CPU: 0 PID: 20628 Comm: syz-executor.3 Not tainted 4.14.262-syzkaller #0 [ 1452.599659] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1452.606830] FAULT_INJECTION: forcing a failure. [ 1452.606830] name failslab, interval 1, probability 0, space 0, times 0 [ 1452.609010] Call Trace: [ 1452.622775] dump_stack+0x1b2/0x281 [ 1452.626401] should_fail.cold+0x10a/0x149 [ 1452.630548] should_failslab+0xd6/0x130 [ 1452.634519] __kmalloc_track_caller+0x2bc/0x400 [ 1452.639191] ? kvasprintf_const+0x55/0x180 [ 1452.643415] kvasprintf+0xa8/0x100 [ 1452.646943] ? bust_spinlocks+0xc0/0xc0 [ 1452.650900] ? __mutex_lock+0x360/0x1310 [ 1452.654943] kvasprintf_const+0x55/0x180 [ 1452.658989] kobject_set_name_vargs+0x56/0x150 [ 1452.663561] dev_set_name+0xa4/0xc0 [ 1452.667169] ? device_initialize+0x430/0x430 [ 1452.671563] ? __lockdep_init_map+0x100/0x560 [ 1452.676052] rfkill_register+0xdb/0xab0 [ 1452.680009] hci_register_dev+0x359/0x8f0 [ 1452.684164] hci_uart_tty_ioctl+0x6d1/0xa60 [ 1452.688470] tty_ioctl+0x5af/0x1430 [ 1452.692081] ? hci_uart_tty_receive+0x4c0/0x4c0 [ 1452.696737] ? tty_fasync+0x2c0/0x2c0 [ 1452.700522] ? proc_fail_nth_write+0x7b/0x180 [ 1452.705032] ? trace_hardirqs_on+0x10/0x10 [ 1452.709252] ? fsnotify+0x974/0x11b0 [ 1452.712948] ? proc_tgid_io_accounting+0x7a0/0x7a0 [ 1452.717858] ? __handle_mm_fault+0x80f/0x4620 [ 1452.722338] ? SyS_write+0x1b7/0x210 [ 1452.726040] ? tty_fasync+0x2c0/0x2c0 [ 1452.729822] do_vfs_ioctl+0x75a/0xff0 [ 1452.733606] ? lock_acquire+0x170/0x3f0 [ 1452.737563] ? ioctl_preallocate+0x1a0/0x1a0 [ 1452.741954] ? __fget+0x2df/0x460 [ 1452.745390] ? do_vfs_ioctl+0xff0/0xff0 [ 1452.749346] ? security_file_ioctl+0x83/0xb0 [ 1452.753735] SyS_ioctl+0x7f/0xb0 [ 1452.757084] ? do_vfs_ioctl+0xff0/0xff0 [ 1452.761041] do_syscall_64+0x1d5/0x640 [ 1452.764913] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1452.770083] RIP: 0033:0x7fa331314fe9 [ 1452.773776] RSP: 002b:00007fa32fc8a168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1452.781469] RAX: ffffffffffffffda RBX: 00007fa331427f60 RCX: 00007fa331314fe9 [ 1452.788720] RDX: 0000000000000000 RSI: 00000000400455c8 RDI: 0000000000000003 [ 1452.795972] RBP: 00007fa32fc8a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1452.803228] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1452.810478] R13: 00007ffe09471b3f R14: 00007fa32fc8a300 R15: 0000000000022000 [ 1452.817746] CPU: 1 PID: 20631 Comm: syz-executor.0 Not tainted 4.14.262-syzkaller #0 [ 1452.823509] Bluetooth: hci6: Frame reassembly failed (-84) [ 1452.825623] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1452.825628] Call Trace: [ 1452.825642] dump_stack+0x1b2/0x281 [ 1452.825655] should_fail.cold+0x10a/0x149 [ 1452.850918] should_failslab+0xd6/0x130 [ 1452.854898] kmem_cache_alloc_node_trace+0x25a/0x400 [ 1452.860015] __kmalloc_node_track_caller+0x38/0x70 [ 1452.864956] __alloc_skb+0x96/0x510 [ 1452.868590] kobject_uevent_env+0x882/0xf30 [ 1452.872921] device_add+0xa47/0x15c0 [ 1452.876642] ? device_is_dependent+0x2a0/0x2a0 [ 1452.881222] ? start_creating+0x144/0x200 [ 1452.885378] hci_register_dev+0x2e2/0x8f0 [ 1452.889526] hci_uart_tty_ioctl+0x6d1/0xa60 [ 1452.893835] tty_ioctl+0x5af/0x1430 [ 1452.897452] ? hci_uart_tty_receive+0x4c0/0x4c0 [ 1452.902111] ? tty_fasync+0x2c0/0x2c0 [ 1452.905898] ? proc_fail_nth_write+0x7b/0x180 [ 1452.910379] ? trace_hardirqs_on+0x10/0x10 [ 1452.914599] ? fsnotify+0x974/0x11b0 [ 1452.918294] ? proc_tgid_io_accounting+0x7a0/0x7a0 [ 1452.923205] ? __handle_mm_fault+0x80f/0x4620 [ 1452.927678] ? SyS_write+0x1b7/0x210 [ 1452.931372] ? tty_fasync+0x2c0/0x2c0 [ 1452.935152] do_vfs_ioctl+0x75a/0xff0 [ 1452.938939] ? lock_acquire+0x170/0x3f0 [ 1452.942899] ? ioctl_preallocate+0x1a0/0x1a0 [ 1452.947296] ? __fget+0x2df/0x460 [ 1452.950732] ? do_vfs_ioctl+0xff0/0xff0 [ 1452.954684] ? security_file_ioctl+0x83/0xb0 [ 1452.959072] SyS_ioctl+0x7f/0xb0 [ 1452.962424] ? do_vfs_ioctl+0xff0/0xff0 [ 1452.966387] do_syscall_64+0x1d5/0x640 [ 1452.970270] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1452.975442] RIP: 0033:0x7fbb944a7fe9 [ 1452.979129] RSP: 002b:00007fbb92e1d168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1452.986827] RAX: ffffffffffffffda RBX: 00007fbb945baf60 RCX: 00007fbb944a7fe9 [ 1452.994111] RDX: 0000000000000000 RSI: 00000000400455c8 RDI: 0000000000000003 [ 1453.001398] RBP: 00007fbb92e1d1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1453.008653] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1453.015906] R13: 00007ffc96d7392f R14: 00007fbb92e1d300 R15: 0000000000022000 10:00:30 executing program 4: prlimit64(0x0, 0x0, &(0x7f0000000280)={0x3, 0x8d}, 0x0) sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) openat$nvme_fabrics(0xffffffffffffff9c, &(0x7f0000000100), 0x982, 0x0) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000040)=0xf) write(0xffffffffffffffff, &(0x7f0000000200)="1ee4593ae55b", 0x6) ioctl$KDADDIO(r1, 0x400455c8, 0x4) ioctl$TIOCSETD(r1, 0x5412, &(0x7f0000000000)=0x33) openat$full(0xffffffffffffff9c, &(0x7f0000000080), 0x8102, 0x0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r2, 0x400455c8, 0x4) ioctl$TIOCSETD(r2, 0x5412, &(0x7f0000000000)=0x33) ioctl$TIOCSETD(r2, 0x5423, &(0x7f00000001c0)=0x16) sched_setattr(0xffffffffffffffff, &(0x7f00000000c0)={0x38, 0x6, 0x66, 0x0, 0x4, 0x89b8, 0x8, 0x1e, 0x3, 0x2644}, 0x0) ioctl$KDADDIO(r0, 0x400455c8, 0x0) sched_setattr(0xffffffffffffffff, &(0x7f0000000000)={0x38, 0x5, 0x1000002a, 0x90ca, 0x7, 0x40, 0x2, 0x101, 0x8, 0x8a5}, 0x0) prlimit64(0x0, 0x0, &(0x7f0000000280)={0x3, 0x8d}, 0x0) (async) sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0) (async) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) (async) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) (async) openat$nvme_fabrics(0xffffffffffffff9c, &(0x7f0000000100), 0x982, 0x0) (async) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) (async) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000040)=0xf) (async) write(0xffffffffffffffff, &(0x7f0000000200)="1ee4593ae55b", 0x6) (async) ioctl$KDADDIO(r1, 0x400455c8, 0x4) (async) ioctl$TIOCSETD(r1, 0x5412, &(0x7f0000000000)=0x33) (async) openat$full(0xffffffffffffff9c, &(0x7f0000000080), 0x8102, 0x0) (async) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) (async) ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000040)=0xf) (async) ioctl$KDADDIO(r2, 0x400455c8, 0x4) (async) ioctl$TIOCSETD(r2, 0x5412, &(0x7f0000000000)=0x33) (async) ioctl$TIOCSETD(r2, 0x5423, &(0x7f00000001c0)=0x16) (async) sched_setattr(0xffffffffffffffff, &(0x7f00000000c0)={0x38, 0x6, 0x66, 0x0, 0x4, 0x89b8, 0x8, 0x1e, 0x3, 0x2644}, 0x0) (async) ioctl$KDADDIO(r0, 0x400455c8, 0x0) (async) sched_setattr(0xffffffffffffffff, &(0x7f0000000000)={0x38, 0x5, 0x1000002a, 0x90ca, 0x7, 0x40, 0x2, 0x101, 0x8, 0x8a5}, 0x0) (async) 10:00:30 executing program 5: prlimit64(0x0, 0xe, &(0x7f0000000280), 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0xffffffffffff0162) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) r1 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f00000000c0), 0x202, 0x0) r2 = syz_genetlink_get_family_id$devlink(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$DEVLINK_CMD_RELOAD(r1, &(0x7f0000000240)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x14, r2, 0x100, 0x70bd2a, 0x25dfdbfd}, 0x14}, 0x1, 0x0, 0x0, 0x4}, 0x20000004) r3 = accept4$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @empty}, &(0x7f0000000080)=0x10, 0x80800) sendto$inet(r3, &(0x7f0000000000)="667b84d9db7c2e5284dbd4a85a40d527d202045e6eb75abaaf474308707bd3d6985c0001757c82", 0x27, 0x4008800, &(0x7f0000000180)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x25}}, 0x10) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r3, &(0x7f0000000000)={0x2}) ioctl$KDADDIO(r0, 0x400455c8, 0x4) prlimit64(0x0, 0xe, &(0x7f0000000280), 0x0) (async) sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0xffffffffffff0162) (async) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) (async) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) (async) openat$btrfs_control(0xffffffffffffff9c, &(0x7f00000000c0), 0x202, 0x0) (async) syz_genetlink_get_family_id$devlink(&(0x7f0000000140), 0xffffffffffffffff) (async) sendmsg$DEVLINK_CMD_RELOAD(r1, &(0x7f0000000240)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x14, r2, 0x100, 0x70bd2a, 0x25dfdbfd}, 0x14}, 0x1, 0x0, 0x0, 0x4}, 0x20000004) (async) accept4$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @empty}, &(0x7f0000000080)=0x10, 0x80800) (async) sendto$inet(r3, &(0x7f0000000000)="667b84d9db7c2e5284dbd4a85a40d527d202045e6eb75abaaf474308707bd3d6985c0001757c82", 0x27, 0x4008800, &(0x7f0000000180)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x25}}, 0x10) (async) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r3, &(0x7f0000000000)={0x2}) (async) ioctl$KDADDIO(r0, 0x400455c8, 0x4) (async) 10:00:30 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) r1 = dup2(r0, r0) bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0x2, 0xe08ef0b008088a76}, 0x6) (async) fcntl$setpipe(r0, 0x407, 0x2) write(r1, &(0x7f0000000280)='#\x00\x00\x00', 0x4) 10:00:30 executing program 2: r0 = socket(0x2a, 0x800, 0x4) sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0}}, 0x0) getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) getsockopt$bt_l2cap_L2CAP_LM(r0, 0x6, 0x3, &(0x7f0000000080), &(0x7f00000000c0)) r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0x4, 0x1}, 0x6) bind$bt_hci(r1, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6) bind$bt_hci(r1, &(0x7f0000000180)={0x1f, 0x2, 0x2}, 0x6) r2 = dup2(r1, r1) r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6) bind$bt_hci(r3, &(0x7f00000001c0)={0x1f, 0x1}, 0x6) r4 = dup2(r3, r3) write(r4, &(0x7f0000000280)="23000000010007", 0x7) renameat(r2, &(0x7f0000000100)='./file0\x00', r4, &(0x7f0000000140)='./file0\x00') write(r2, &(0x7f0000000280)='#\x00\x00\x00', 0x4) [ 1453.034793] Bluetooth: hci7: Frame reassembly failed (-84) 10:00:31 executing program 2: r0 = socket(0x2a, 0x800, 0x4) sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0}}, 0x0) getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) getsockopt$bt_l2cap_L2CAP_LM(r0, 0x6, 0x3, &(0x7f0000000080), &(0x7f00000000c0)) r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0x4, 0x1}, 0x6) bind$bt_hci(r1, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6) bind$bt_hci(r1, &(0x7f0000000180)={0x1f, 0x2, 0x2}, 0x6) r2 = dup2(r1, r1) r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6) bind$bt_hci(r3, &(0x7f00000001c0)={0x1f, 0x1}, 0x6) r4 = dup2(r3, r3) write(r4, &(0x7f0000000280)="23000000010007", 0x7) renameat(r2, &(0x7f0000000100)='./file0\x00', r4, &(0x7f0000000140)='./file0\x00') write(r2, &(0x7f0000000280)='#\x00\x00\x00', 0x4) 10:00:31 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) r1 = dup2(r0, r0) bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0x2, 0xe08ef0b008088a76}, 0x6) fcntl$setpipe(r0, 0x407, 0x2) write(r1, &(0x7f0000000280)='#\x00\x00\x00', 0x4) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) (async) dup2(r0, r0) (async) bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0x2, 0xe08ef0b008088a76}, 0x6) (async) fcntl$setpipe(r0, 0x407, 0x2) (async) write(r1, &(0x7f0000000280)='#\x00\x00\x00', 0x4) (async) 10:00:31 executing program 2: r0 = socket(0x2a, 0x800, 0x4) sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0}}, 0x0) getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) getsockopt$bt_l2cap_L2CAP_LM(r0, 0x6, 0x3, &(0x7f0000000080), &(0x7f00000000c0)) r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0x4, 0x1}, 0x6) bind$bt_hci(r1, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6) bind$bt_hci(r1, &(0x7f0000000180)={0x1f, 0x2, 0x2}, 0x6) r2 = dup2(r1, r1) r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6) bind$bt_hci(r3, &(0x7f00000001c0)={0x1f, 0x1}, 0x6) r4 = dup2(r3, r3) write(r4, &(0x7f0000000280)="23000000010007", 0x7) renameat(r2, &(0x7f0000000100)='./file0\x00', r4, &(0x7f0000000140)='./file0\x00') write(r2, &(0x7f0000000280)='#\x00\x00\x00', 0x4) [ 1453.124327] Bluetooth: Unknown HCI packet type 5e [ 1453.129377] Bluetooth: Unknown HCI packet type 43 [ 1453.158039] Bluetooth: Unknown HCI packet type 5e [ 1453.186566] Bluetooth: Unknown HCI packet type 5e [ 1453.194699] Bluetooth: received HCILL_WAKE_UP_ACK in state 2 [ 1453.202133] Bluetooth: Unknown HCI packet type 50 [ 1453.218783] Bluetooth: Unknown HCI packet type 43 [ 1453.223722] Bluetooth: Unknown HCI packet type 5e 10:00:31 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000074, 0x25d) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe1}]}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) setsockopt$sock_int(r1, 0x1, 0x21, &(0x7f0000000600)=0xda9, 0x4) sendto$inet(r1, &(0x7f0000000640)="febc3b777d549ffacdd9ee6633af6e737f2e6d654105f04716908ec7af8775d530c2cc83e31b3f3c7f9e351ba553af429ff9367031b7ec0aed61ea15d08f299f9241acf82356d0859eb45aec582cd03d4cdbdcd6755c166133d9ba85529c0ed8913418402ba7d907115e75", 0x6b, 0x4000081, 0x0, 0x0) sendto$inet(r1, &(0x7f00000012c0)="e1158a927f1f6588b927481241ba7860f46ef65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a97425a3a07e758044ab0ea6f7ae55d88fecf9221a750fbf746bec66ba", 0xfe6a, 0xe, 0x0, 0xfffffffffffffe2b) socket$caif_stream(0x25, 0x1, 0x2) r2 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r2, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000074, 0x25d) bind$inet(r2, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe1}]}, 0x10) sendto$inet(r2, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) setsockopt$sock_int(r2, 0x1, 0x21, &(0x7f0000000600)=0xda9, 0x4) sendto$inet(r2, &(0x7f0000000640)="febc3b777d549ffacdd9ee6633af6e737f2e6d654105f04716908ec7af8775d530c2cc83e31b3f3c7f9e351ba553af429ff9367031b7ec0aed61ea15d08f299f9241acf82356d0859eb45aec582cd03d4cdbdcd6755c166133d9ba85529c0ed8913418402ba7d907115e75", 0x6b, 0x4000081, 0x0, 0x0) r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff) write(r3, &(0x7f0000000280)='#\x00\x00\x00', 0x4) [ 1453.239850] Bluetooth: Unknown HCI packet type 50 [ 1453.257392] Bluetooth: Unknown HCI packet type 5e [ 1453.270763] Bluetooth: Unknown HCI packet type 5e [ 1453.276832] Bluetooth: Unknown HCI packet type 43 [ 1453.283134] Bluetooth: Unknown HCI packet type 40 [ 1453.288036] Bluetooth: Unknown HCI packet type 5e [ 1453.294536] Bluetooth: Unknown HCI packet type 5e [ 1453.297437] Bluetooth: Unknown HCI packet type 40 [ 1453.299485] Bluetooth: Unknown HCI packet type 50 [ 1453.309649] Bluetooth: Unknown HCI packet type 5e [ 1453.315139] Bluetooth: Unknown HCI packet type 40 [ 1453.320220] Bluetooth: received HCILL_WAKE_UP_ACK in state 2 [ 1453.341413] Bluetooth: hci11: Frame reassembly failed (-84) [ 1454.849996] Bluetooth: hci6 command 0x1003 tx timeout [ 1454.856030] Bluetooth: hci6 sending frame failed (-49) [ 1455.090030] Bluetooth: hci7 command 0x1003 tx timeout [ 1455.095337] Bluetooth: hci7 sending frame failed (-49) [ 1455.170438] Bluetooth: hci8 command 0x1003 tx timeout [ 1455.175870] Bluetooth: hci8 sending frame failed (-49) [ 1455.249991] Bluetooth: hci9 command 0x1003 tx timeout [ 1455.255412] Bluetooth: Unknown HCI packet type 5e [ 1455.261189] Bluetooth: Unknown HCI packet type 41 [ 1455.266032] Bluetooth: Unknown HCI packet type 5e [ 1455.271530] Bluetooth: Unknown HCI packet type 41 [ 1455.276365] Bluetooth: Unknown HCI packet type 5e [ 1455.281808] Bluetooth: Unknown HCI packet type 50 [ 1455.286639] Bluetooth: Unknown HCI packet type 5e [ 1455.292286] Bluetooth: Unknown HCI packet type 40 [ 1455.330016] Bluetooth: hci10 command 0x1003 tx timeout [ 1455.335387] Bluetooth: hci10 sending frame failed (-49) [ 1455.409960] Bluetooth: hci11 command 0x1003 tx timeout [ 1455.415475] Bluetooth: hci11: Frame reassembly failed (-84) [ 1456.929884] Bluetooth: hci6 command 0x1001 tx timeout [ 1456.935186] Bluetooth: hci6 sending frame failed (-49) [ 1457.169877] Bluetooth: hci7 command 0x1001 tx timeout [ 1457.175182] Bluetooth: hci7 sending frame failed (-49) [ 1457.249956] Bluetooth: hci8 command 0x1001 tx timeout [ 1457.255227] Bluetooth: hci8 sending frame failed (-49) [ 1457.329846] Bluetooth: hci9 command 0x1001 tx timeout [ 1457.335212] Bluetooth: Unknown HCI packet type 5e [ 1457.340142] Bluetooth: Unknown HCI packet type 41 [ 1457.344973] Bluetooth: Unknown HCI packet type 09 [ 1457.350384] Bluetooth: Unknown HCI packet type 5e [ 1457.355229] Bluetooth: Unknown HCI packet type 50 [ 1457.360163] Bluetooth: Unknown HCI packet type 5e [ 1457.364996] Bluetooth: Unknown HCI packet type 40 [ 1457.409891] Bluetooth: hci10 command 0x1001 tx timeout [ 1457.415259] Bluetooth: hci10 sending frame failed (-49) [ 1457.489916] Bluetooth: hci11 command 0x1001 tx timeout [ 1457.495391] Bluetooth: hci11: Frame reassembly failed (-84) [ 1457.501157] Bluetooth: hci11: Frame reassembly failed (-84) [ 1459.009797] Bluetooth: hci6 command 0x1009 tx timeout [ 1459.249849] Bluetooth: hci7 command 0x1009 tx timeout [ 1459.330319] Bluetooth: hci8 command 0x1009 tx timeout [ 1459.409890] Bluetooth: hci9 command 0x1009 tx timeout [ 1459.489743] Bluetooth: hci10 command 0x1009 tx timeout [ 1459.569775] Bluetooth: hci11 command 0x1009 tx timeout 10:00:41 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000074, 0x25d) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe1}]}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) setsockopt$sock_int(r1, 0x1, 0x21, &(0x7f0000000600)=0xda9, 0x4) sendto$inet(r1, &(0x7f0000000640)="febc3b777d549ffacdd9ee6633af6e737f2e6d654105f04716908ec7af8775d530c2cc83e31b3f3c7f9e351ba553af429ff9367031b7ec0aed61ea15d08f299f9241acf82356d0859eb45aec582cd03d4cdbdcd6755c166133d9ba85529c0ed8913418402ba7d907115e75", 0x6b, 0x4000081, 0x0, 0x0) sendto$inet(r1, &(0x7f00000012c0)="e1158a927f1f6588b927481241ba7860f46ef65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a97425a3a07e758044ab0ea6f7ae55d88fecf9221a750fbf746bec66ba", 0xfe6a, 0xe, 0x0, 0xfffffffffffffe2b) socket$caif_stream(0x25, 0x1, 0x2) r2 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r2, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000074, 0x25d) bind$inet(r2, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe1}]}, 0x10) sendto$inet(r2, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) setsockopt$sock_int(r2, 0x1, 0x21, &(0x7f0000000600)=0xda9, 0x4) sendto$inet(r2, &(0x7f0000000640)="febc3b777d549ffacdd9ee6633af6e737f2e6d654105f04716908ec7af8775d530c2cc83e31b3f3c7f9e351ba553af429ff9367031b7ec0aed61ea15d08f299f9241acf82356d0859eb45aec582cd03d4cdbdcd6755c166133d9ba85529c0ed8913418402ba7d907115e75", 0x6b, 0x4000081, 0x0, 0x0) r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff) write(r3, &(0x7f0000000280)='#\x00\x00\x00', 0x4) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) (async) socket$inet(0x2, 0x4000000000000001, 0x0) (async) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000074, 0x25d) (async) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) (async) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe1}]}, 0x10) (async) sendto$inet(r1, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) (async) setsockopt$sock_int(r1, 0x1, 0x21, &(0x7f0000000600)=0xda9, 0x4) (async) sendto$inet(r1, &(0x7f0000000640)="febc3b777d549ffacdd9ee6633af6e737f2e6d654105f04716908ec7af8775d530c2cc83e31b3f3c7f9e351ba553af429ff9367031b7ec0aed61ea15d08f299f9241acf82356d0859eb45aec582cd03d4cdbdcd6755c166133d9ba85529c0ed8913418402ba7d907115e75", 0x6b, 0x4000081, 0x0, 0x0) (async) sendto$inet(r1, &(0x7f00000012c0)="e1158a927f1f6588b927481241ba7860f46ef65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a97425a3a07e758044ab0ea6f7ae55d88fecf9221a750fbf746bec66ba", 0xfe6a, 0xe, 0x0, 0xfffffffffffffe2b) (async) socket$caif_stream(0x25, 0x1, 0x2) (async) socket$inet(0x2, 0x4000000000000001, 0x0) (async) setsockopt$inet_tcp_int(r2, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000074, 0x25d) (async) bind$inet(r2, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) (async) setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe1}]}, 0x10) (async) sendto$inet(r2, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) (async) setsockopt$sock_int(r2, 0x1, 0x21, &(0x7f0000000600)=0xda9, 0x4) (async) sendto$inet(r2, &(0x7f0000000640)="febc3b777d549ffacdd9ee6633af6e737f2e6d654105f04716908ec7af8775d530c2cc83e31b3f3c7f9e351ba553af429ff9367031b7ec0aed61ea15d08f299f9241acf82356d0859eb45aec582cd03d4cdbdcd6755c166133d9ba85529c0ed8913418402ba7d907115e75", 0x6b, 0x4000081, 0x0, 0x0) (async) dup2(0xffffffffffffffff, 0xffffffffffffffff) (async) write(r3, &(0x7f0000000280)='#\x00\x00\x00', 0x4) (async) 10:00:41 executing program 2: r0 = socket(0x2a, 0x800, 0x4) sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0}}, 0x0) getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) getsockopt$bt_l2cap_L2CAP_LM(r0, 0x6, 0x3, &(0x7f0000000080), &(0x7f00000000c0)) r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0x4, 0x1}, 0x6) bind$bt_hci(r1, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6) bind$bt_hci(r1, &(0x7f0000000180)={0x1f, 0x2, 0x2}, 0x6) r2 = dup2(r1, r1) r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6) bind$bt_hci(r3, &(0x7f00000001c0)={0x1f, 0x1}, 0x6) r4 = dup2(r3, r3) write(r4, &(0x7f0000000280)="23000000010007", 0x7) renameat(r2, &(0x7f0000000100)='./file0\x00', r4, &(0x7f0000000140)='./file0\x00') write(r2, &(0x7f0000000280)="230000000100", 0x6) 10:00:41 executing program 0: prlimit64(0x0, 0x0, 0x0, 0x0) sched_setattr(0x0, 0x0, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x0) (fail_nth: 43) 10:00:41 executing program 3: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x0) (fail_nth: 53) [ 1463.475281] FAULT_INJECTION: forcing a failure. [ 1463.475281] name failslab, interval 1, probability 0, space 0, times 0 [ 1463.475334] FAULT_INJECTION: forcing a failure. [ 1463.475334] name failslab, interval 1, probability 0, space 0, times 0 [ 1463.486906] CPU: 0 PID: 20737 Comm: syz-executor.3 Not tainted 4.14.262-syzkaller #0 [ 1463.505752] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1463.515113] Call Trace: [ 1463.517705] dump_stack+0x1b2/0x281 [ 1463.521339] should_fail.cold+0x10a/0x149 [ 1463.525488] should_failslab+0xd6/0x130 [ 1463.529512] kmem_cache_alloc_trace+0x29a/0x3d0 [ 1463.534169] device_add+0xd72/0x15c0 [ 1463.537878] ? device_is_dependent+0x2a0/0x2a0 [ 1463.542446] rfkill_register+0x18e/0xab0 [ 1463.546494] hci_register_dev+0x359/0x8f0 [ 1463.550628] hci_uart_tty_ioctl+0x6d1/0xa60 [ 1463.554934] tty_ioctl+0x5af/0x1430 [ 1463.558545] ? hci_uart_tty_receive+0x4c0/0x4c0 [ 1463.563193] ? tty_fasync+0x2c0/0x2c0 [ 1463.566976] ? proc_fail_nth_write+0x7b/0x180 [ 1463.571453] ? trace_hardirqs_on+0x10/0x10 [ 1463.575672] ? fsnotify+0x974/0x11b0 [ 1463.579385] ? proc_tgid_io_accounting+0x7a0/0x7a0 [ 1463.584295] ? __handle_mm_fault+0x80f/0x4620 [ 1463.588773] ? SyS_write+0x1b7/0x210 [ 1463.592469] ? tty_fasync+0x2c0/0x2c0 [ 1463.596250] do_vfs_ioctl+0x75a/0xff0 [ 1463.600033] ? lock_acquire+0x170/0x3f0 [ 1463.603988] ? ioctl_preallocate+0x1a0/0x1a0 [ 1463.608383] ? __fget+0x2df/0x460 [ 1463.611821] ? do_vfs_ioctl+0xff0/0xff0 [ 1463.615779] ? security_file_ioctl+0x83/0xb0 [ 1463.620169] SyS_ioctl+0x7f/0xb0 [ 1463.623518] ? do_vfs_ioctl+0xff0/0xff0 [ 1463.627477] do_syscall_64+0x1d5/0x640 [ 1463.631353] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1463.636523] RIP: 0033:0x7fa331314fe9 [ 1463.640213] RSP: 002b:00007fa32fc8a168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1463.647903] RAX: ffffffffffffffda RBX: 00007fa331427f60 RCX: 00007fa331314fe9 [ 1463.655152] RDX: 0000000000000000 RSI: 00000000400455c8 RDI: 0000000000000003 [ 1463.662408] RBP: 00007fa32fc8a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1463.669658] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1463.676907] R13: 00007ffe09471b3f R14: 00007fa32fc8a300 R15: 0000000000022000 [ 1463.684619] CPU: 1 PID: 20733 Comm: syz-executor.0 Not tainted 4.14.262-syzkaller #0 [ 1463.692520] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1463.701872] Call Trace: [ 1463.704466] dump_stack+0x1b2/0x281 [ 1463.708098] should_fail.cold+0x10a/0x149 [ 1463.712253] should_failslab+0xd6/0x130 [ 1463.716229] kmem_cache_alloc_node_trace+0x25a/0x400 [ 1463.721340] __kmalloc_node_track_caller+0x38/0x70 10:00:41 executing program 4: prlimit64(0x0, 0x0, &(0x7f0000000280)={0x3, 0x8d}, 0x0) sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) openat$nvme_fabrics(0xffffffffffffff9c, &(0x7f0000000100), 0x982, 0x0) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000040)=0xf) write(0xffffffffffffffff, &(0x7f0000000200)="1ee4593ae55b", 0x6) ioctl$KDADDIO(r1, 0x400455c8, 0x4) ioctl$TIOCSETD(r1, 0x5412, &(0x7f0000000000)=0x33) openat$full(0xffffffffffffff9c, &(0x7f0000000080), 0x8102, 0x0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r2, 0x400455c8, 0x4) ioctl$TIOCSETD(r2, 0x5412, &(0x7f0000000000)=0x33) ioctl$TIOCSETD(r2, 0x5423, &(0x7f00000001c0)=0x16) sched_setattr(0xffffffffffffffff, &(0x7f00000000c0)={0x38, 0x6, 0x66, 0x0, 0x4, 0x89b8, 0x8, 0x1e, 0x3, 0x2644}, 0x0) ioctl$KDADDIO(r0, 0x400455c8, 0x0) sched_setattr(0xffffffffffffffff, &(0x7f0000000000)={0x38, 0x5, 0x1000002a, 0x90ca, 0x7, 0x40, 0x2, 0x101, 0x8, 0x8a5}, 0x0) prlimit64(0x0, 0x0, &(0x7f0000000280)={0x3, 0x8d}, 0x0) (async) sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0) (async) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) (async) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) (async) openat$nvme_fabrics(0xffffffffffffff9c, &(0x7f0000000100), 0x982, 0x0) (async) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) (async) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000040)=0xf) (async) write(0xffffffffffffffff, &(0x7f0000000200)="1ee4593ae55b", 0x6) (async) ioctl$KDADDIO(r1, 0x400455c8, 0x4) (async) ioctl$TIOCSETD(r1, 0x5412, &(0x7f0000000000)=0x33) (async) openat$full(0xffffffffffffff9c, &(0x7f0000000080), 0x8102, 0x0) (async) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) (async) ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000040)=0xf) (async) ioctl$KDADDIO(r2, 0x400455c8, 0x4) (async) ioctl$TIOCSETD(r2, 0x5412, &(0x7f0000000000)=0x33) (async) ioctl$TIOCSETD(r2, 0x5423, &(0x7f00000001c0)=0x16) (async) sched_setattr(0xffffffffffffffff, &(0x7f00000000c0)={0x38, 0x6, 0x66, 0x0, 0x4, 0x89b8, 0x8, 0x1e, 0x3, 0x2644}, 0x0) (async) ioctl$KDADDIO(r0, 0x400455c8, 0x0) (async) sched_setattr(0xffffffffffffffff, &(0x7f0000000000)={0x38, 0x5, 0x1000002a, 0x90ca, 0x7, 0x40, 0x2, 0x101, 0x8, 0x8a5}, 0x0) (async) 10:00:41 executing program 5: prlimit64(0x0, 0xe, &(0x7f0000000280), 0x0) pipe(&(0x7f0000000240)) sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0xffffffffffff0165) r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f00000003c0)={0x5, 0x80, 0x80, 0x7, 0x7, 0x6d, 0x0, 0x9, 0x10068, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x10001, 0x0, @perf_bp={&(0x7f0000000200), 0x6}, 0x8c0, 0x3, 0xb3, 0x9, 0x9, 0xffff, 0xaa, 0x0, 0x80000000, 0x0, 0xcf}, r0, 0x3, 0xffffffffffffffff, 0xa) setrlimit(0xe, &(0x7f0000000000)={0x2, 0x2}) timer_create(0x0, &(0x7f0000000300)={0x0, 0x28, 0x1, @thr={&(0x7f0000000080)="adc96c8ab953090fb1f4888684493759e093b97e379040e5b9af2ba8500e05f128df31456963a986d50eed458ebf22dcb975cc90e580ac6f955b5ec463c4fd77826715a4e7625140977619a5c62d5fc7863c82a65612c5bcc150fa9d668f948a480862a0cd173fefa92a10f3c6da7a19025478872f9f1f2b5c31bd0f92f35aa5c33525a1400f36f175ced7c2b68026959000ce6de0ae279bf2ef76b0b3e5266ea0982496d1e405592e80db7e9e2f3e3de01f0527a527a55b18eae693b0f70db371187c5de9e9eb98f6f7bd", &(0x7f0000000340)="9ac1cecaeea6433f941f027a4157d7b3c24b7f17a36c735eb906559c427ea47b1a2aca6718b2b5a73363e1fd2e3d7fb0e2e20f73d57a5ab3b55e7e9fa946fc4a53b1b2a26183dc3dcf7c7ae364a55ee1b35a45901c6695e19c8184f83bef9069152a79b8c6c68e6a06e7574977ccc5a7a9d63e898950eba1b06e3b4cd6d235"}}, &(0x7f00000001c0)) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000040)=0xf) 10:00:41 executing program 5: prlimit64(0x0, 0xe, &(0x7f0000000280), 0x0) pipe(&(0x7f0000000240)) sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0xffffffffffff0165) r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) (async) perf_event_open(&(0x7f00000003c0)={0x5, 0x80, 0x80, 0x7, 0x7, 0x6d, 0x0, 0x9, 0x10068, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x10001, 0x0, @perf_bp={&(0x7f0000000200), 0x6}, 0x8c0, 0x3, 0xb3, 0x9, 0x9, 0xffff, 0xaa, 0x0, 0x80000000, 0x0, 0xcf}, r0, 0x3, 0xffffffffffffffff, 0xa) (async) setrlimit(0xe, &(0x7f0000000000)={0x2, 0x2}) (async) timer_create(0x0, &(0x7f0000000300)={0x0, 0x28, 0x1, @thr={&(0x7f0000000080)="adc96c8ab953090fb1f4888684493759e093b97e379040e5b9af2ba8500e05f128df31456963a986d50eed458ebf22dcb975cc90e580ac6f955b5ec463c4fd77826715a4e7625140977619a5c62d5fc7863c82a65612c5bcc150fa9d668f948a480862a0cd173fefa92a10f3c6da7a19025478872f9f1f2b5c31bd0f92f35aa5c33525a1400f36f175ced7c2b68026959000ce6de0ae279bf2ef76b0b3e5266ea0982496d1e405592e80db7e9e2f3e3de01f0527a527a55b18eae693b0f70db371187c5de9e9eb98f6f7bd", &(0x7f0000000340)="9ac1cecaeea6433f941f027a4157d7b3c24b7f17a36c735eb906559c427ea47b1a2aca6718b2b5a73363e1fd2e3d7fb0e2e20f73d57a5ab3b55e7e9fa946fc4a53b1b2a26183dc3dcf7c7ae364a55ee1b35a45901c6695e19c8184f83bef9069152a79b8c6c68e6a06e7574977ccc5a7a9d63e898950eba1b06e3b4cd6d235"}}, &(0x7f00000001c0)) (async) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000040)=0xf) [ 1463.726270] __alloc_skb+0x96/0x510 [ 1463.729905] kobject_uevent_env+0x882/0xf30 [ 1463.734244] device_add+0xa47/0x15c0 [ 1463.737966] ? device_is_dependent+0x2a0/0x2a0 [ 1463.742543] ? start_creating+0x144/0x200 [ 1463.746716] hci_register_dev+0x2e2/0x8f0 [ 1463.750874] hci_uart_tty_ioctl+0x6d1/0xa60 [ 1463.755202] tty_ioctl+0x5af/0x1430 [ 1463.758830] ? hci_uart_tty_receive+0x4c0/0x4c0 [ 1463.763501] ? tty_fasync+0x2c0/0x2c0 [ 1463.767305] ? proc_fail_nth_write+0x7b/0x180 [ 1463.771804] ? trace_hardirqs_on+0x10/0x10 [ 1463.776046] ? fsnotify+0x974/0x11b0 [ 1463.779780] ? proc_tgid_io_accounting+0x7a0/0x7a0 [ 1463.784694] ? __handle_mm_fault+0x80f/0x4620 [ 1463.789172] ? SyS_write+0x1b7/0x210 [ 1463.792892] ? tty_fasync+0x2c0/0x2c0 [ 1463.796677] do_vfs_ioctl+0x75a/0xff0 [ 1463.800468] ? lock_acquire+0x170/0x3f0 [ 1463.804424] ? ioctl_preallocate+0x1a0/0x1a0 [ 1463.808814] ? __fget+0x2df/0x460 [ 1463.812250] ? do_vfs_ioctl+0xff0/0xff0 [ 1463.816212] ? security_file_ioctl+0x83/0xb0 [ 1463.820603] SyS_ioctl+0x7f/0xb0 [ 1463.823951] ? do_vfs_ioctl+0xff0/0xff0 [ 1463.827913] do_syscall_64+0x1d5/0x640 [ 1463.831789] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1463.836962] RIP: 0033:0x7fbb944a7fe9 [ 1463.840657] RSP: 002b:00007fbb92e1d168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1463.848350] RAX: ffffffffffffffda RBX: 00007fbb945baf60 RCX: 00007fbb944a7fe9 [ 1463.855603] RDX: 0000000000000000 RSI: 00000000400455c8 RDI: 0000000000000003 [ 1463.862861] RBP: 00007fbb92e1d1d0 R08: 0000000000000000 R09: 0000000000000000 10:00:41 executing program 5: prlimit64(0x0, 0xe, &(0x7f0000000280), 0x0) pipe(&(0x7f0000000240)) sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0xffffffffffff0165) r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f00000003c0)={0x5, 0x80, 0x80, 0x7, 0x7, 0x6d, 0x0, 0x9, 0x10068, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x10001, 0x0, @perf_bp={&(0x7f0000000200), 0x6}, 0x8c0, 0x3, 0xb3, 0x9, 0x9, 0xffff, 0xaa, 0x0, 0x80000000, 0x0, 0xcf}, r0, 0x3, 0xffffffffffffffff, 0xa) setrlimit(0xe, &(0x7f0000000000)={0x2, 0x2}) timer_create(0x0, &(0x7f0000000300)={0x0, 0x28, 0x1, @thr={&(0x7f0000000080)="adc96c8ab953090fb1f4888684493759e093b97e379040e5b9af2ba8500e05f128df31456963a986d50eed458ebf22dcb975cc90e580ac6f955b5ec463c4fd77826715a4e7625140977619a5c62d5fc7863c82a65612c5bcc150fa9d668f948a480862a0cd173fefa92a10f3c6da7a19025478872f9f1f2b5c31bd0f92f35aa5c33525a1400f36f175ced7c2b68026959000ce6de0ae279bf2ef76b0b3e5266ea0982496d1e405592e80db7e9e2f3e3de01f0527a527a55b18eae693b0f70db371187c5de9e9eb98f6f7bd", &(0x7f0000000340)="9ac1cecaeea6433f941f027a4157d7b3c24b7f17a36c735eb906559c427ea47b1a2aca6718b2b5a73363e1fd2e3d7fb0e2e20f73d57a5ab3b55e7e9fa946fc4a53b1b2a26183dc3dcf7c7ae364a55ee1b35a45901c6695e19c8184f83bef9069152a79b8c6c68e6a06e7574977ccc5a7a9d63e898950eba1b06e3b4cd6d235"}}, &(0x7f00000001c0)) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000040)=0xf) prlimit64(0x0, 0xe, &(0x7f0000000280), 0x0) (async) pipe(&(0x7f0000000240)) (async) sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0xffffffffffff0165) (async) getpid() (async) sched_setscheduler(r0, 0x5, &(0x7f0000000380)) (async) perf_event_open(&(0x7f00000003c0)={0x5, 0x80, 0x80, 0x7, 0x7, 0x6d, 0x0, 0x9, 0x10068, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x10001, 0x0, @perf_bp={&(0x7f0000000200), 0x6}, 0x8c0, 0x3, 0xb3, 0x9, 0x9, 0xffff, 0xaa, 0x0, 0x80000000, 0x0, 0xcf}, r0, 0x3, 0xffffffffffffffff, 0xa) (async) setrlimit(0xe, &(0x7f0000000000)={0x2, 0x2}) (async) timer_create(0x0, &(0x7f0000000300)={0x0, 0x28, 0x1, @thr={&(0x7f0000000080)="adc96c8ab953090fb1f4888684493759e093b97e379040e5b9af2ba8500e05f128df31456963a986d50eed458ebf22dcb975cc90e580ac6f955b5ec463c4fd77826715a4e7625140977619a5c62d5fc7863c82a65612c5bcc150fa9d668f948a480862a0cd173fefa92a10f3c6da7a19025478872f9f1f2b5c31bd0f92f35aa5c33525a1400f36f175ced7c2b68026959000ce6de0ae279bf2ef76b0b3e5266ea0982496d1e405592e80db7e9e2f3e3de01f0527a527a55b18eae693b0f70db371187c5de9e9eb98f6f7bd", &(0x7f0000000340)="9ac1cecaeea6433f941f027a4157d7b3c24b7f17a36c735eb906559c427ea47b1a2aca6718b2b5a73363e1fd2e3d7fb0e2e20f73d57a5ab3b55e7e9fa946fc4a53b1b2a26183dc3dcf7c7ae364a55ee1b35a45901c6695e19c8184f83bef9069152a79b8c6c68e6a06e7574977ccc5a7a9d63e898950eba1b06e3b4cd6d235"}}, &(0x7f00000001c0)) (async) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) (async) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000040)=0xf) (async) 10:00:41 executing program 2: r0 = socket(0x2a, 0x800, 0x4) sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0}}, 0x0) getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) getsockopt$bt_l2cap_L2CAP_LM(r0, 0x6, 0x3, &(0x7f0000000080), &(0x7f00000000c0)) r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0x4, 0x1}, 0x6) bind$bt_hci(r1, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6) bind$bt_hci(r1, &(0x7f0000000180)={0x1f, 0x2, 0x2}, 0x6) r2 = dup2(r1, r1) r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6) bind$bt_hci(r3, &(0x7f00000001c0)={0x1f, 0x1}, 0x6) r4 = dup2(r3, r3) write(r4, &(0x7f0000000280)="23000000010007", 0x7) renameat(r2, &(0x7f0000000100)='./file0\x00', r4, &(0x7f0000000140)='./file0\x00') write(r2, &(0x7f0000000280)="230000000100", 0x6) [ 1463.870118] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1463.877368] R13: 00007ffc96d7392f R14: 00007fbb92e1d300 R15: 0000000000022000 10:00:41 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) (async, rerun: 64) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) (rerun: 64) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000074, 0x25d) (async) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) (async, rerun: 32) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe1}]}, 0x10) (async, rerun: 32) sendto$inet(r1, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) (async) setsockopt$sock_int(r1, 0x1, 0x21, &(0x7f0000000600)=0xda9, 0x4) (async) sendto$inet(r1, &(0x7f0000000640)="febc3b777d549ffacdd9ee6633af6e737f2e6d654105f04716908ec7af8775d530c2cc83e31b3f3c7f9e351ba553af429ff9367031b7ec0aed61ea15d08f299f9241acf82356d0859eb45aec582cd03d4cdbdcd6755c166133d9ba85529c0ed8913418402ba7d907115e75", 0x6b, 0x4000081, 0x0, 0x0) sendto$inet(r1, &(0x7f00000012c0)="e1158a927f1f6588b927481241ba7860f46ef65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a97425a3a07e758044ab0ea6f7ae55d88fecf9221a750fbf746bec66ba", 0xfe6a, 0xe, 0x0, 0xfffffffffffffe2b) (async) socket$caif_stream(0x25, 0x1, 0x2) (async, rerun: 64) r2 = socket$inet(0x2, 0x4000000000000001, 0x0) (rerun: 64) setsockopt$inet_tcp_int(r2, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000074, 0x25d) bind$inet(r2, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) (async) setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe1}]}, 0x10) sendto$inet(r2, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) (async, rerun: 64) setsockopt$sock_int(r2, 0x1, 0x21, &(0x7f0000000600)=0xda9, 0x4) (async, rerun: 64) sendto$inet(r2, &(0x7f0000000640)="febc3b777d549ffacdd9ee6633af6e737f2e6d654105f04716908ec7af8775d530c2cc83e31b3f3c7f9e351ba553af429ff9367031b7ec0aed61ea15d08f299f9241acf82356d0859eb45aec582cd03d4cdbdcd6755c166133d9ba85529c0ed8913418402ba7d907115e75", 0x6b, 0x4000081, 0x0, 0x0) (async) r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff) write(r3, &(0x7f0000000280)='#\x00\x00\x00', 0x4) [ 1463.952017] Bluetooth: hci7: Frame reassembly failed (-84) [ 1463.963047] Bluetooth: Unknown HCI packet type 5e [ 1463.970741] Bluetooth: Unknown HCI packet type 5e [ 1463.976003] Bluetooth: Unknown HCI packet type 43 [ 1463.976046] Bluetooth: hci10: Frame reassembly failed (-84) 10:00:41 executing program 2: r0 = socket(0x2a, 0x800, 0x4) sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0}}, 0x0) getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) getsockopt$bt_l2cap_L2CAP_LM(r0, 0x6, 0x3, &(0x7f0000000080), &(0x7f00000000c0)) r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0x4, 0x1}, 0x6) bind$bt_hci(r1, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6) bind$bt_hci(r1, &(0x7f0000000180)={0x1f, 0x2, 0x2}, 0x6) r2 = dup2(r1, r1) r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6) bind$bt_hci(r3, &(0x7f00000001c0)={0x1f, 0x1}, 0x6) r4 = dup2(r3, r3) write(r4, &(0x7f0000000280)="23000000010007", 0x7) renameat(r2, &(0x7f0000000100)='./file0\x00', r4, &(0x7f0000000140)='./file0\x00') write(r2, &(0x7f0000000280)="230000000100", 0x6) [ 1464.000368] Bluetooth: Unknown HCI packet type 43 [ 1464.005642] Bluetooth: Unknown HCI packet type 5e [ 1464.031583] Bluetooth: Unknown HCI packet type 5e [ 1464.037696] Bluetooth: Unknown HCI packet type 50 10:00:41 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) bind$bt_sco(0xffffffffffffffff, &(0x7f0000000040), 0x8) r1 = dup2(r0, r0) write(r1, &(0x7f0000000280)='#\x00\x00\x00', 0x4) [ 1464.055914] Bluetooth: Unknown HCI packet type 50 [ 1464.063388] Bluetooth: Unknown HCI packet type 5e [ 1464.085771] Bluetooth: Unknown HCI packet type 5e [ 1464.092923] Bluetooth: Unknown HCI packet type 40 [ 1464.098059] Bluetooth: Unknown HCI packet type 40 [ 1464.108203] Bluetooth: Unknown HCI packet type 38 [ 1465.969529] Bluetooth: hci8 command 0x1003 tx timeout [ 1465.974785] Bluetooth: hci7 command 0x1003 tx timeout [ 1465.975871] Bluetooth: Unknown HCI packet type 5e [ 1465.984272] Bluetooth: hci6 command 0x1003 tx timeout [ 1465.987357] Bluetooth: hci9 command 0x1003 tx timeout [ 1465.990934] Bluetooth: hci7 sending frame failed (-49) [ 1465.995358] Bluetooth: hci6 sending frame failed (-49) [ 1466.005169] Bluetooth: Unknown HCI packet type 41 [ 1466.006012] Bluetooth: hci9 sending frame failed (-49) [ 1466.011876] Bluetooth: Unknown HCI packet type 5e [ 1466.021883] Bluetooth: Unknown HCI packet type 41 [ 1466.026805] Bluetooth: Unknown HCI packet type 5e [ 1466.031857] Bluetooth: Unknown HCI packet type 50 [ 1466.036687] Bluetooth: Unknown HCI packet type 5e [ 1466.041579] Bluetooth: Unknown HCI packet type 40 [ 1466.059386] Bluetooth: hci10 command 0x1003 tx timeout [ 1466.065191] Bluetooth: hci10: Frame reassembly failed (-84) [ 1468.049320] Bluetooth: hci9 command 0x1001 tx timeout [ 1468.049434] Bluetooth: hci7 command 0x1001 tx timeout [ 1468.054735] Bluetooth: hci9 sending frame failed (-49) [ 1468.065429] Bluetooth: hci6 command 0x1001 tx timeout [ 1468.070801] Bluetooth: hci7 sending frame failed (-49) [ 1468.076251] Bluetooth: hci8 command 0x1001 tx timeout [ 1468.076294] Bluetooth: hci6 sending frame failed (-49) [ 1468.082367] Bluetooth: Unknown HCI packet type 5e [ 1468.091859] Bluetooth: Unknown HCI packet type 41 [ 1468.096688] Bluetooth: Unknown HCI packet type 09 [ 1468.101585] Bluetooth: Unknown HCI packet type 5e [ 1468.106535] Bluetooth: Unknown HCI packet type 50 [ 1468.111602] Bluetooth: Unknown HCI packet type 5e [ 1468.116441] Bluetooth: Unknown HCI packet type 40 [ 1468.129290] Bluetooth: hci10 command 0x1001 tx timeout [ 1468.134778] Bluetooth: hci10: Frame reassembly failed (-84) [ 1470.129170] Bluetooth: hci8 command 0x1009 tx timeout [ 1470.129277] Bluetooth: hci6 command 0x1009 tx timeout [ 1470.134451] Bluetooth: hci7 command 0x1009 tx timeout [ 1470.145081] Bluetooth: hci9 command 0x1009 tx timeout [ 1470.209267] Bluetooth: hci10 command 0x1009 tx timeout 10:00:52 executing program 3: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x0) (fail_nth: 54) 10:00:52 executing program 2: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) r1 = dup2(r0, r0) bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0x2, 0xe08ef0b008088a76}, 0x6) fcntl$setpipe(r0, 0x407, 0x2) write(r1, &(0x7f0000000280)='#\x00\x00\x00', 0x4) 10:00:52 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) (async) bind$bt_sco(0xffffffffffffffff, &(0x7f0000000040), 0x8) (async) r1 = dup2(r0, r0) write(r1, &(0x7f0000000280)='#\x00\x00\x00', 0x4) 10:00:52 executing program 5: r0 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x2000}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001440)={0x0, 0x80, 0x2, 0xb1, 0x7, 0x6, 0x0, 0x6, 0x80200, 0xb, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x4, @perf_config_ext={0x8, 0xffffffff000000}, 0x334, 0xf0b375d, 0x2, 0x5, 0x35a6d2c1, 0x1000, 0x0, 0x0, 0x8, 0x0, 0x4}, 0xffffffffffffffff, 0xe, r1, 0x3) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f00000015c0)={0x0, ""/256, 0x0, 0x0, 0x0, 0x0, ""/16, ""/16, ""/16, 0x0, 0x0, 0x0, 0x0}) ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(0xffffffffffffffff, 0x50009418, &(0x7f0000000400)={{}, r3, 0x14, @inherit={0x88, &(0x7f0000001580)=ANY=[@ANYRES16=r4]}, @devid}) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r1, 0x84009422, &(0x7f0000001ec0)={0x0, 0x0, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @usage, 0x0}}) socketpair(0x1, 0x20000000000001, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_SET_FILTER(r6, 0x8914, &(0x7f0000000040)='lo\x00\x96o\xd6Q\xb9Y\xa9\xc8J,\x00\xd2\x97\x04\x03\xdc\r') ioctl$PERF_EVENT_IOC_SET_FILTER(r6, 0x8923, &(0x7f0000000680)='lo\x00\x96o8\x0fd\xa1\xe3\xd7]b}\x1f\xa1Y\xad4\x90\x9d`\xd2\x98\x00\x00\x00 \'Y\x17]\x15c\xcaR\xdd\x98OC\x89\x1b\xe7\x84\xe2\x05\x80w\xd2|D\x8dK\x14Bx\xcbuH\xc2\xeec\xbf<>Y\x1a\xfc\x1f9OB\x81\x89\x186\xc5q@n\xb4\xb6s\xb0\x00\x00\x00\x00\x00\b\x00\x00\xda\xef\xecE\xec\xd5I\xb2\x9b\xfe\x8d\x90?\x00\xe9\xe4~g:\xc1\xb2aj\x96\xbb\xa7\xe2\xc0\xdc\xf9Q\b\xeb\x16\x7fT\x11\xd3\r7\xe6\"f\xcf\x8e\xabd\x0ftp\x82\xae\xd2\x15\x8e+c\xf6\xbf\xe14>\xa6-\xa5c\xde\xd7\xab\xea\x1f\xf8s2\x9cVF\xd5\x18\xfe\x0e\x8f \x01\x00\x00y.\xfc*\x82\xa5\xa1p5\xc8{\xf7\xef\xab\xe8\x99\xebw#\x8at\x1c\x80\xfc\xb0\x95\xa2\xa7\xd7,Y]E8\x83X\xf5F\xdc\x88-\xf5\xb0\xb5^\xdb\x1a\xb6\xaa\x14\xe2\xb9\rh^J-\xd1\xbaUn\x04\'l\x1b\xe0o\xdb\xc8\x91%\x1c\xb5\xbf\xb6\x90\xb4\xc2\x7f]/\xb3\xe7\xc9\'\x94\xcfIo\xdf\x04\x95\xb5\x06\x84\x1fH>\xda\xc5\x04 \x94\x88\xeb\'\xd4;6\x7f\xd9\x99-\x1b|G\x8d\xd4\xb9%\xaaQ\xa0K\x10\x03\x93\xe1\xcc\xe7m\x80\'\xf0\xa5\xed(\r\xa8\x0f&\xb1\xf3\xff0\f\x82%_\x92\x8bD\xb9\xd9\xe7\xf2\xe4\xc1i#\xdc\x87A\xb9\xc7\r\x92\xfa\x11\x11\xb5\x1f\x03\x9d\xdd\x1bj\xdf\xacg\xe3\xa0S\xd3\x8a\xe1n\x97\xea\xf5\xa0\'\v\xe9\xa0\xf1 f\xaan\xcf\xb5i\xb6d\xbc\x92\v\xd58\x16\b\xb3_:\xa4!\ny\xc4&\nWMM\xa8\xc4\v\x9f\x01o\xf4\xab&\xb6\x17\x02P\xc3!N\xa1\x86\"\xd7\x04\xf1\xc0!\xed\xff\xee$\xc89\x8cB0\xd1dD\xe0IP\x88\xa2\xf2Y\x9af$$\xf1\x81\x96\xf7P\xac\xca\x80:!\xb4\x94#\xcb^\x9f\'\x03\xe3\x93\xb9\x82\xbf\xcf\xc4\xe3\xf7\x03Oh\xf2r\xca\x8ff\xbb/\x9f*\xaf\x1a \xa5\xa0?%M\xa5\x86\x98\xfa4\'1\xc7\f<\xcc@\xe8\x8a\xac.\xde\xe4\xc7\xf5\x9ck\xa40!\xe9\x14$\xb3\x05m\xb5m\xed\ft\x93\xd8\xa3\x80\'Y\xb9\x05\xbbt|\xbe\xbcz\n\xf3\xf5p\xf8\x9f~\x1b\xd0\v\x1cQ') sendmsg$NLBL_CIPSOV4_C_REMOVE(r6, &(0x7f0000001400)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000200)={&(0x7f0000001840)=ANY=[@ANYRES32=r5, @ANYRES32=r4, @ANYRESOCT, @ANYRES32=r2, @ANYRES32, @ANYRES64, @ANYRESHEX], 0x3}, 0x1, 0x0, 0x0, 0x4}, 0x40025) ioctl$BTRFS_IOC_TREE_SEARCH(0xffffffffffffffff, 0xd0009411, &(0x7f00000002c0)={{0x0, 0x613, 0xfff, 0xffffffffffffff88, 0xfffffffffffffff8, 0x5, 0xffff, 0xffffffff, 0x18, 0xfff, 0x1, 0xc9c1, 0xd7, 0x7, 0x1}}) ioctl$BTRFS_IOC_INO_LOOKUP_USER(r0, 0xd000943e, &(0x7f00000012c0)={r2, r7, "d5328f582a1d4d0455cb240fd6302cf17b9a52ae55d02c864cee24695decfca1426645914dec8f04ee7d0d2cefd359c9d0e835ca72e07291ad90ba91ab9fd5685addc4b4cb7354a73a20e4bc4f3d1aa09c740503ec99a1c4a4407a427944d1c88c9edfda17707a51138455dc20286d09330da84d6414e001c4da4c2009cdd164aee6ce4c16415d590e0265202544f784705e35cd5d7f130ff46075828b6dbff11844fd8e536e3edcc630b99966168a1acfb13cfee31cf8d83f086fc7bb6e2d6f7dcbc61899f3cf5cfa46bada024f3a9f40a324781233262bbf1021f38ed71bdfaef8a73145836cec6c36b56849094438c178a23079d1df7017607bbb5fb99591", "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"}) prlimit64(0x0, 0xe, &(0x7f0000000280), 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0xffffffffffff0162) r8 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r8, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r8, 0x400455c8, 0x4) [ 1474.344988] FAULT_INJECTION: forcing a failure. [ 1474.344988] name failslab, interval 1, probability 0, space 0, times 0 [ 1474.356648] CPU: 1 PID: 20833 Comm: syz-executor.3 Not tainted 4.14.262-syzkaller #0 [ 1474.364544] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1474.373897] Call Trace: [ 1474.376489] dump_stack+0x1b2/0x281 [ 1474.380128] should_fail.cold+0x10a/0x149 [ 1474.384284] should_failslab+0xd6/0x130 [ 1474.388264] kmem_cache_alloc+0x28e/0x3c0 [ 1474.392416] __kernfs_new_node+0x6f/0x470 [ 1474.396569] kernfs_create_dir_ns+0x8c/0x200 [ 1474.400981] sysfs_create_dir_ns+0xb7/0x1d0 [ 1474.405307] kobject_add_internal+0x28b/0x930 [ 1474.409812] kobject_add+0x11f/0x180 [ 1474.413529] ? kset_create_and_add+0x190/0x190 [ 1474.418113] ? device_add+0xd72/0x15c0 [ 1474.421998] ? __lockdep_init_map+0x100/0x560 [ 1474.426480] ? root_device_release+0x20/0x20 [ 1474.430890] device_add+0x33f/0x15c0 [ 1474.434590] ? device_is_dependent+0x2a0/0x2a0 [ 1474.439154] rfkill_register+0x18e/0xab0 [ 1474.443193] hci_register_dev+0x359/0x8f0 [ 1474.447337] hci_uart_tty_ioctl+0x6d1/0xa60 [ 1474.451654] tty_ioctl+0x5af/0x1430 [ 1474.455265] ? hci_uart_tty_receive+0x4c0/0x4c0 [ 1474.459911] ? tty_fasync+0x2c0/0x2c0 [ 1474.463691] ? proc_fail_nth_write+0x7b/0x180 [ 1474.468175] ? trace_hardirqs_on+0x10/0x10 [ 1474.472398] ? fsnotify+0x974/0x11b0 [ 1474.476090] ? proc_tgid_io_accounting+0x7a0/0x7a0 [ 1474.480993] ? __handle_mm_fault+0x80f/0x4620 [ 1474.485468] ? SyS_write+0x1b7/0x210 [ 1474.489164] ? tty_fasync+0x2c0/0x2c0 [ 1474.492943] do_vfs_ioctl+0x75a/0xff0 [ 1474.496731] ? lock_acquire+0x170/0x3f0 [ 1474.500692] ? ioctl_preallocate+0x1a0/0x1a0 [ 1474.505078] ? __fget+0x2df/0x460 [ 1474.508516] ? do_vfs_ioctl+0xff0/0xff0 [ 1474.512479] ? security_file_ioctl+0x83/0xb0 [ 1474.516866] SyS_ioctl+0x7f/0xb0 [ 1474.520210] ? do_vfs_ioctl+0xff0/0xff0 [ 1474.524173] do_syscall_64+0x1d5/0x640 [ 1474.528053] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1474.533237] RIP: 0033:0x7fa331314fe9 [ 1474.536926] RSP: 002b:00007fa32fc8a168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1474.544616] RAX: ffffffffffffffda RBX: 00007fa331427f60 RCX: 00007fa331314fe9 [ 1474.551867] RDX: 0000000000000000 RSI: 00000000400455c8 RDI: 0000000000000003 [ 1474.559113] RBP: 00007fa32fc8a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1474.566359] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1474.573616] R13: 00007ffe09471b3f R14: 00007fa32fc8a300 R15: 0000000000022000 [ 1474.581228] kobject_add_internal failed for rfkill423 (error: -12 parent: hci6) 10:00:52 executing program 0: prlimit64(0x0, 0x0, 0x0, 0x0) sched_setattr(0x0, 0x0, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x0) (fail_nth: 44) 10:00:52 executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000280), 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0xffffffffffff0162) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r1, 0x400455c8, 0x4) ioctl$TIOCSETD(r1, 0x5412, &(0x7f0000000000)=0x33) ioctl$KDADDIO(r1, 0x400455c8, 0x223) openat$incfs(0xffffffffffffff9c, &(0x7f0000000000)='.pending_reads\x00', 0x7a6f9b740f420bb3, 0x4f) 10:00:52 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) (async) bind$bt_sco(0xffffffffffffffff, &(0x7f0000000040), 0x8) r1 = dup2(r0, r0) write(r1, &(0x7f0000000280)='#\x00\x00\x00', 0x4) [ 1474.590962] Bluetooth: hci6: Frame reassembly failed (-84) 10:00:52 executing program 1: ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f0000000040)={{0x1, 0x1, 0x18, 0xffffffffffffffff}, './file0\x00'}) connect$l2tp(r0, &(0x7f0000000080)={0x2, 0x0, @multicast1}, 0x10) r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r1, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) r2 = dup2(r1, r1) write(r2, &(0x7f0000000280)='#\x00\x00\x00', 0x4) [ 1474.643783] FAULT_INJECTION: forcing a failure. [ 1474.643783] name failslab, interval 1, probability 0, space 0, times 0 [ 1474.703186] CPU: 0 PID: 20847 Comm: syz-executor.0 Not tainted 4.14.262-syzkaller #0 [ 1474.711106] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1474.720480] Call Trace: [ 1474.723070] dump_stack+0x1b2/0x281 [ 1474.726703] should_fail.cold+0x10a/0x149 [ 1474.730854] should_failslab+0xd6/0x130 [ 1474.734829] kmem_cache_alloc_node_trace+0x25a/0x400 [ 1474.739935] __kmalloc_node_track_caller+0x38/0x70 [ 1474.744863] __alloc_skb+0x96/0x510 [ 1474.748492] kobject_uevent_env+0x882/0xf30 [ 1474.752821] device_add+0xa47/0x15c0 [ 1474.756538] ? device_is_dependent+0x2a0/0x2a0 [ 1474.761110] ? start_creating+0x144/0x200 [ 1474.765261] hci_register_dev+0x2e2/0x8f0 [ 1474.769414] hci_uart_tty_ioctl+0x6d1/0xa60 [ 1474.773746] tty_ioctl+0x5af/0x1430 [ 1474.777372] ? hci_uart_tty_receive+0x4c0/0x4c0 [ 1474.782035] ? tty_fasync+0x2c0/0x2c0 [ 1474.785835] ? proc_fail_nth_write+0x7b/0x180 [ 1474.790330] ? trace_hardirqs_on+0x10/0x10 [ 1474.794572] ? fsnotify+0x974/0x11b0 [ 1474.798281] ? proc_tgid_io_accounting+0x7a0/0x7a0 [ 1474.803215] ? __handle_mm_fault+0x80f/0x4620 [ 1474.807722] ? SyS_write+0x1b7/0x210 [ 1474.811438] ? tty_fasync+0x2c0/0x2c0 [ 1474.815242] do_vfs_ioctl+0x75a/0xff0 [ 1474.819050] ? lock_acquire+0x170/0x3f0 [ 1474.823044] ? ioctl_preallocate+0x1a0/0x1a0 [ 1474.827452] ? __fget+0x2df/0x460 [ 1474.830941] ? do_vfs_ioctl+0xff0/0xff0 [ 1474.834914] ? security_file_ioctl+0x83/0xb0 [ 1474.839323] SyS_ioctl+0x7f/0xb0 [ 1474.842691] ? do_vfs_ioctl+0xff0/0xff0 [ 1474.846667] do_syscall_64+0x1d5/0x640 10:00:52 executing program 4: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) bind$inet(0xffffffffffffffff, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe1}]}, 0x10) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x21, &(0x7f0000000600)=0xda9, 0x4) sendto$inet(0xffffffffffffffff, &(0x7f0000000640)="febc3b777d549ffacdd9ee6633af6e737f2e6d654105f04716908ec7af8775d530c2cc83e31b3f3c7f9e351ba553af429ff9367031b7ec0aed61ea15d08f299f9241acf82356d0859eb45aec582cd03d4cdbdcd6755c166133d9ba85529c0ed8913418402ba7d907115e75", 0x6b, 0x4000081, 0x0, 0x0) sendto$inet(0xffffffffffffffff, &(0x7f00000012c0)="e1158a927f1f6588b927481241ba7860f46ef65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a97425a3a07e758044ab0ea6f7ae55d88fecf9221a750fbf746bec66ba", 0xfe6a, 0xe, 0x0, 0xfffffffffffffe2b) r1 = syz_open_procfs$userns(0xffffffffffffffff, &(0x7f00000053c0)) ioctl$DRM_IOCTL_SYNCOBJ_HANDLE_TO_FD_FD(0xffffffffffffffff, 0xc01064c1, &(0x7f0000005400)={0x0, 0x0, 0xffffffffffffffff}) r3 = accept4$netrom(0xffffffffffffffff, 0x0, &(0x7f0000005440), 0x80000) r4 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000005480), 0x24000, 0x0) r5 = openat$dsp(0xffffffffffffff9c, &(0x7f00000054c0), 0x335103, 0x0) r6 = socket$inet6_icmp(0xa, 0x2, 0x3a) r7 = accept4$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @empty}, &(0x7f0000000080)=0x10, 0x80800) sendto$inet(r7, &(0x7f0000000000)="667b84d9db7c2e5284dbd4a85a40d527d202045e6eb75abaaf474308707bd3d6985c0001757c82", 0x27, 0x4008800, &(0x7f0000000180)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x25}}, 0x10) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000005680)=[{{&(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000000400)=[{&(0x7f00000002c0)="79acd0506447ee086deea93d1d7cf3e238daac58fb168e1e2073091e9faa1b677ec536a94be43933cdfe29fded47655161c2bbe153b888962404a08cd939477808f8f522ed08c9b5a565ef42dee2f62ada576930551a877e678eebd9d18fb2fc2197c1c200cbe4e1f1db6e0fd7455ddc50f0ce070ea18c30a266353bec0612aa8bf6811597fbaa0dad93f4b26324732496371391535bd369232d1331504f501f25549413b36f43aa291abbc36743e4948bcb985dddcf7cb854e8fa7024f4495314bf33854246dc51ef586b81f1b01d1cc505655a4ed3713a10c9fd77af465a8826", 0xe1}, {&(0x7f0000000000)="fe7b37d499eedb9bb0be7caa6609391b177ca0e6a73a75d502b70378a79defd437", 0x21}, {&(0x7f0000000100)="da7cb9db350fd8419c581e56429065", 0xf}, {&(0x7f00000001c0)="28b3c2ce5de4258e07f12b7f0c13adfd5be41d729a1397ee12ccc10a1cc2c3f3ecb891c4dbb0ce7ff212561d97fecca6ccac57bc66cd3ad8c13f626207620d854ca05de3418e6110ec7c8978517acee96e25f106366851cb608581806c86aa4a1d85400bb28a28d302c8ca9a9e34fe6e78921d9a97762f382b4f9f3e", 0x7c}, {&(0x7f0000000240)="5ebe98d183bcce955e90d98206", 0xd}, {&(0x7f00000003c0)="0b8145ab408b6b19ed2ce1aaaeafff2462927a473f9065a01d1edcd021f07d601472aebf0d93dfc7d8e60bd727e804675cd11c28ffcae3", 0x37}], 0x6, &(0x7f00000014c0)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0xee01, @ANYRES32=0x0, @ANYBLOB="0000000028000000000000000100000001000000", @ANYRES32=r0, @ANYRES32=r0, @ANYRES32=r0, @ANYRES32=r0, @ANYRES32=r2, @ANYRES32, @ANYBLOB="18000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYBLOB="1c0000000000000001000000020000001898266d424b6bbdc42e1cbcfa6b283169cd64b01db651456098fafd0dcee514164d18c70801a6b81b33efabb213fbebe161ee54fffc4022737eb6bf7fdc8a96e13c3c43b035ab45fc2d5d3bb367412e9227c27e30dbff73b8c9d9def2d6a9d8469e509a3fa3af4def739b", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0xee01, @ANYRES32, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32, @ANYRES32=0x0, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000038000000000000000100000001000000", @ANYRES32=r0, @ANYRES32=r0, @ANYRES32=r0, @ANYRES32, @ANYRES32=r0, @ANYRES32=r0, @ANYRES32, @ANYRES32=r0, @ANYRES32=r0, @ANYRES32=r0], 0x138, 0x40}}, {{&(0x7f00000008c0)=@abs={0x1, 0x0, 0x4e23}, 0x6e, &(0x7f0000000a40)=[{&(0x7f0000000940)="98c6923efc40360beb7e42fa74834173feb84371f1b71a86f21da2d049032437c985bb794d3b988cd80cfc3dfff838b4252496c2a822", 0x36}, {&(0x7f0000000980)="24b09c8024a1255feec656481967af87f248e0a209f9be73f34e43fdfaffc92b7acc60d45888a06b119517dd0948deb6db6eb2a8ede578d9c2e37bb2cfcff9f8808d725c96df1cc74d6b1e6c9a16d26ff7cfcf", 0x53}, {&(0x7f0000000a00)="aabf895313acf3ea4a60a53d", 0xc}], 0x3, &(0x7f0000000a80)=[@rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}], 0x18, 0x2c000050}}, {{&(0x7f0000000ac0)=@abs={0x1, 0x0, 0x4e24}, 0x6e, &(0x7f0000000f40)=[{&(0x7f0000000b40)="211cef329a004f72d528e55b4a6463a3176ee6981dd1da2d914812bba8bbb1f03caf400991ec60245d58a51186a425cd44849745215b262bdb21ff1612d2f6ac386a03f147107bf6cc65ba4a2a09a6a461492ab0ac2ef17078446f84e6be2b5be92ed357a746806a5fa260257b29b267b0e738d0ae01d0fc3f335c50625ec24cc45b3c3f0db8e492d27647fc378fb5ad312fd358b09202fd36f23e896dadf49c573c9cf152e9d5c2e12399f9a605baf70a7eb194", 0xb4}, {&(0x7f0000000c00)="19", 0x1}, {&(0x7f0000000c40)="faa59ecb3cf2a51f4e1e7757cf62fca2803a96dc6ea37f3bdf4eb8356d0bb5ed69e9df057d8da3170b9e2d0915e9df9c1c38", 0x32}, {&(0x7f0000000c80)="8d66a55bfe823a00f534f4d0b2805c05a3263c91197a7b940f79ed0678ef03f54ba4b101dcb587aee18e95e3e8692ea8ce0c3b38a9d8d962f9ab00dbe575ee9cf3b9e479f8944f2ff9655c5115df286ffc079ec36f07d7c5d8dba6a11ee7e30ee2bdbd9103e23b6767ec346b4d04430f7e178ff118f087f20af58a302ff35e54b52923f1d9d8911aad5755e8fc6a24ce2446ce7774ed8bf6", 0x98}, {&(0x7f0000000d40)="cf8ab331ce13c67ad428cd08c0db6419db62aa89af02ca74d64582334fb6bf1e44078f9788bb854e7b291e69bb66c76c7bef1ab380afef68596b0e210359208b0a4a8770b6c4c8f8005e5a5c03ddebfc3623f4cff7401a04d638cc9c4f9eeadfcc73efff52ba3c381d726af0e5f11912747e7c2327a322a42bcf56d17179218a576567ab1337b99da5b13b776464374b773ee5f8b32d2954502907556ba06414", 0xa0}, {&(0x7f0000000e00)="688da851fa4338ff34e90631bfc924", 0xf}, {&(0x7f0000000e40)="d25bc44f52f0220ad81bea67a8029071b1ab7bbdf9f6a934ffebc93d73d49c052bd1f05892525510904c477ed0b0a85b7e65b0acc3f31e183a1db033ece1e49b04f532b5de3afdee735368dc8d21376953bb8befd29b186618cf4cb2a28160693916b7c1e4a4c4d52595af43e4094eeaf92d7a210437f2ac942544040233ea80b78fddf6c2a988c85ec6ece8a4a2816468e8bf165b3b0b6036b570ed690cd43412000806b943ed2e7925e733c5d8a100261372b4693ac9d241dd744d79678b568e572e8a06482dd2088b13b97a39732da654b7d0", 0xd4}], 0x7, &(0x7f0000001080)=[@cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff, 0xee01}}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0x0, 0xee00}}}, @cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff, 0x0, 0xee01}}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0xee01}}}, @cred={{0x1c}}], 0xa0, 0x20044004}}, {{&(0x7f0000001140)=@abs={0x0, 0x0, 0x4e23}, 0x6e, &(0x7f0000001440)=[{&(0x7f00000011c0)="b43d57a8ab98ee2500b19ab6d2bfb6f1ede246d9ffa758bdbaa12907d1e3238855346e9b7335e39b04d6f0f0", 0x2c}, {&(0x7f0000001200)="b4b864dde103ea5388f80a84c0d7e93c9201a40b1fd57b900f63d3a8b4b89b28a552f08dcb0b69d7c2bcf2eaaed040a265c5c5ba5b7ce84c0984a5e9ba097d8ab91925a832e4eeed859150a505a266df2140ee604b38beee7763f3ba630f1a97f77cb46debdcc5ee898a547714d0e23b8ec77ecab90bb6cc3fcf313015688ad5793c0456b77ca46f7b7e", 0x8a}, {&(0x7f00000012c0)="8ca15f8939a942e6ae36bb577a506a7741dc3ad10a6e5771e8cc8fa9", 0x1c}, {&(0x7f0000001300)="d8aec1aac50b9b28928c4193d271e9fc56a4a9f0b0fe551a51b9482f28714b6fe3b0de88034e78e23b7a7a2fe3f6da2905b3eea235398336368ebba51f36d1c86f0e", 0x42}, {&(0x7f0000001380)="c2b15beef3300fdd23f08ad4a84334b4edee8f4cb311b3f6e49551775e96d8d1d7f27e03a5815ecdfc5ab7569da2b53c42f844f8b546dc1c9dd547efbbe1ea49729c9b4cb2e073218a764ba0f2ab5b289dabf7d0c61f324d1263eda429582915aeb67f29d0723048abf574836de1a0b58697b7a8ec2473773c983efd47fac32f4fbfde4b69560dacbf", 0x89}], 0x5, &(0x7f0000003d00)=[@cred={{0x1c}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, r0, 0xffffffffffffffff]}}, @rights={{0x18, 0x1, 0x1, [r0, 0xffffffffffffffff]}}, @rights={{0x20, 0x1, 0x1, [r0, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0x0, 0xee00}}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r0, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0xe0, 0x20000000}}, {{0x0, 0x0, &(0x7f0000005280)=[{&(0x7f0000003e00)="0911407dc307702d7dd88d6ab24ad4b07ac4e5b537a76c6d7c55a53f5ecec4489b74ca17f6aeb69fb045b183a350c5f015181f3859d5dc542e67739b10a929f70aaa8db206208e3c8dcf4b25e4f2f10905df525811e70edcaf0517fcb51641867faf5cc5f3c6d877827845292da4079342a7f2117dd84dae37e1e22bc75e80216b710d49e6c1a0c5bc7c6374abcf42b524cec446650e10b1", 0x98}, {&(0x7f0000003ec0)="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", 0x1000}, {&(0x7f0000004ec0)="d069f9ea5744c2849468134159e8df18456497ef3c62028770c662e67c3298cbe753a0c5ea5c0141d2185fd9d4d548f18d92efbd346e76ad00a485056dd4016e12a96707bdf9a62de7b09e8dc96e9894a0f7266dd0e765d230386e450dec589db00e4ec74f8b4d7871af627655e40879da57b730e3c3431441b97753349c758e11f9d8b79ec88cabd426cd8dfd0c3bfff8ed76dd8f95afa89f516f8d3ab68967d04c054f85427ffcba942825149bb4", 0xaf}, {&(0x7f0000004f80)="c9", 0x1}, {&(0x7f0000004fc0)="03616e7b04e4dd8e21ed3d758629238e82abcec202b4c7c66ccaac37419e4f0c7135d5ef066c630d4a382a856cea1c94038f2efcaecca74550d8d86b7a6eaed976963d655f5b99b9b64f6b8867679158a2893a6f41c6fb7a9ab0d689257396a15570c5bbca5e56a0510ca0cd93b16a53a217b27c13de8543f9f6723aa20672808965eb", 0x83}, {&(0x7f0000005080)="f2d16e7783534847ec14895e8f0d9be3f8c0e35fd1ad2584efaa3ce9fe331a66e6a6b4d94868616bc82b141bf63d4f5a751fbbf98096dec2f95cf61cd38411b95589e7f8df22ec86e401352947e73ada527216861def30a0e51ef19c28e9ef98a0bacd1f49a2a823a3479f3d34a0bd1369108adc7816678a54b47303e460fc7cf8e5c00ffc909fb6d3d64ab6583e85b8edd33d98190905f69c67f1df9fffada49d0ca6ededdb4229cb9c5a4109a942c9e1904861336cbf698c9086b1d022", 0xbe}, {&(0x7f0000005140)="f1644536b94849d7cd250693327b1e", 0xf}, {&(0x7f0000005180)="82b1559f4aab046ae7a51fb1240ee2c6cc5adf7cdb060c8a389cb397c41c0c3d91f072365790465190af96549638b36df15484857bb1557a3d224c88f445d4b369bd742e2f454c8869edcf437f8fd16fb4c8ca987cc9b22fd1511274734ec6bffa3de0589ecdcbb284e15824cb8c0deba34c205cc91efb9ec834335ee68e9d7a758bcfdf20f45baf35cdcdeda8af54e1282f84f6ed998b4bd94dc776b907394f6e176f10780b0819d075a2e6caffc1ad3beac6", 0xb3}, {&(0x7f0000005240)="a12ce4b246d75260015f9a67b4c0837a16ea8b70d0", 0x15}], 0x9, &(0x7f0000005500)=[@cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff, 0xee00}}}, @rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, r0, r0, r0, r0, 0xffffffffffffffff, r0, 0xffffffffffffffff, r0]}}, @rights={{0x1c, 0x1, 0x1, [r0, r0, r0]}}, @cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff}}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r0, r0, r0]}}, @rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, r0, r0, r0, r1, 0xffffffffffffffff, r2, r0, r3]}}, @rights={{0x30, 0x1, 0x1, [r0, r4, 0xffffffffffffffff, r0, r5, r6, r7, r0]}}], 0x148, 0x8004}}], 0x5, 0x40081) ioctl$KDADDIO(r0, 0x400455c8, 0x0) 10:00:52 executing program 1: ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f0000000040)={{0x1, 0x1, 0x18, 0xffffffffffffffff}, './file0\x00'}) connect$l2tp(r0, &(0x7f0000000080)={0x2, 0x0, @multicast1}, 0x10) r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r1, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) r2 = dup2(r1, r1) write(r2, &(0x7f0000000280)='#\x00\x00\x00', 0x4) ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f0000000040)={{0x1, 0x1, 0x18}, './file0\x00'}) (async) connect$l2tp(r0, &(0x7f0000000080)={0x2, 0x0, @multicast1}, 0x10) (async) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async) bind$bt_hci(r1, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) (async) dup2(r1, r1) (async) write(r2, &(0x7f0000000280)='#\x00\x00\x00', 0x4) (async) [ 1474.850562] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1474.855751] RIP: 0033:0x7fbb944a7fe9 [ 1474.859458] RSP: 002b:00007fbb92e1d168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1474.867165] RAX: ffffffffffffffda RBX: 00007fbb945baf60 RCX: 00007fbb944a7fe9 [ 1474.874430] RDX: 0000000000000000 RSI: 00000000400455c8 RDI: 0000000000000003 [ 1474.881694] RBP: 00007fbb92e1d1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1474.888961] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1474.896228] R13: 00007ffc96d7392f R14: 00007fbb92e1d300 R15: 0000000000022000 10:00:52 executing program 1: ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f0000000040)={{0x1, 0x1, 0x18, 0xffffffffffffffff}, './file0\x00'}) connect$l2tp(r0, &(0x7f0000000080)={0x2, 0x0, @multicast1}, 0x10) (async) r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r1, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) (async, rerun: 32) r2 = dup2(r1, r1) (rerun: 32) write(r2, &(0x7f0000000280)='#\x00\x00\x00', 0x4) [ 1474.936623] Bluetooth: Unknown HCI packet type 5e [ 1474.943225] Bluetooth: Unknown HCI packet type 43 [ 1474.949721] Bluetooth: Unknown HCI packet type 5e [ 1474.952341] Bluetooth: hci7: Frame reassembly failed (-84) [ 1474.965095] Bluetooth: Unknown HCI packet type 50 [ 1474.978296] Bluetooth: Unknown HCI packet type 5e 10:00:52 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) r1 = dup2(r0, r0) write(r1, &(0x7f0000000280)='#\x00\x00\x00', 0x4) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r1) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000100)={&(0x7f00000002c0)=ANY=[@ANYBLOB="5c030000", @ANYRES16=r2, @ANYBLOB="04002dbd7000fddbdf253900000008000300", @ANYRES32=r3, @ANYBLOB="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"], 0x35c}, 0x1, 0x0, 0x0, 0x800}, 0x8) [ 1474.989243] Bluetooth: Unknown HCI packet type 40 [ 1476.608730] Bluetooth: hci6 command 0x1003 tx timeout [ 1476.614113] Bluetooth: hci6 sending frame failed (-49) [ 1476.928809] Bluetooth: hci8 command 0x1003 tx timeout [ 1476.934152] Bluetooth: hci8 sending frame failed (-49) [ 1477.008742] Bluetooth: hci9 command 0x1003 tx timeout [ 1477.008795] Bluetooth: hci7 command 0x1003 tx timeout [ 1477.015206] Bluetooth: hci9 sending frame failed (-49) [ 1477.025121] Bluetooth: hci10 command 0x1003 tx timeout [ 1477.025157] Bluetooth: hci7 sending frame failed (-49) [ 1477.031355] Bluetooth: hci10 sending frame failed (-49) [ 1478.688681] Bluetooth: hci6 command 0x1001 tx timeout [ 1478.693998] Bluetooth: hci6 sending frame failed (-49) [ 1479.008715] Bluetooth: hci8 command 0x1001 tx timeout [ 1479.013999] Bluetooth: hci8 sending frame failed (-49) [ 1479.088672] Bluetooth: hci7 command 0x1001 tx timeout [ 1479.093952] Bluetooth: hci9 command 0x1001 tx timeout [ 1479.094024] Bluetooth: hci7 sending frame failed (-49) [ 1479.104156] Bluetooth: hci9 sending frame failed (-49) [ 1479.105923] Bluetooth: hci10 command 0x1001 tx timeout [ 1479.115190] Bluetooth: hci10 sending frame failed (-49) [ 1480.768543] Bluetooth: hci6 command 0x1009 tx timeout [ 1481.088572] Bluetooth: hci8 command 0x1009 tx timeout [ 1481.168541] Bluetooth: hci10 command 0x1009 tx timeout [ 1481.168545] Bluetooth: hci7 command 0x1009 tx timeout [ 1481.179066] Bluetooth: hci9 command 0x1009 tx timeout 10:01:03 executing program 3: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x0) (fail_nth: 55) 10:01:03 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) r1 = dup2(r0, r0) write(r1, &(0x7f0000000280)='#\x00\x00\x00', 0x4) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r1) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000100)={&(0x7f00000002c0)=ANY=[@ANYBLOB="5c030000", @ANYRES16=r2, @ANYBLOB="04002dbd7000fddbdf253900000008000300", @ANYRES32=r3, @ANYBLOB="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"], 0x35c}, 0x1, 0x0, 0x0, 0x800}, 0x8) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) (async) dup2(r0, r0) (async) write(r1, &(0x7f0000000280)='#\x00\x00\x00', 0x4) (async) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r1) (async) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00'}) (async) sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000100)={&(0x7f00000002c0)=ANY=[@ANYBLOB="5c030000", @ANYRES16=r2, @ANYBLOB="04002dbd7000fddbdf253900000008000300", @ANYRES32=r3, @ANYBLOB="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"], 0x35c}, 0x1, 0x0, 0x0, 0x800}, 0x8) (async) 10:01:03 executing program 5: r0 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) (async) r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x2000}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001440)={0x0, 0x80, 0x2, 0xb1, 0x7, 0x6, 0x0, 0x6, 0x80200, 0xb, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x4, @perf_config_ext={0x8, 0xffffffff000000}, 0x334, 0xf0b375d, 0x2, 0x5, 0x35a6d2c1, 0x1000, 0x0, 0x0, 0x8, 0x0, 0x4}, 0xffffffffffffffff, 0xe, r1, 0x3) (async, rerun: 32) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f00000015c0)={0x0, ""/256, 0x0, 0x0, 0x0, 0x0, ""/16, ""/16, ""/16, 0x0, 0x0, 0x0, 0x0}) (rerun: 32) ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(0xffffffffffffffff, 0x50009418, &(0x7f0000000400)={{}, r3, 0x14, @inherit={0x88, &(0x7f0000001580)=ANY=[@ANYRES16=r4]}, @devid}) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r1, 0x84009422, &(0x7f0000001ec0)={0x0, 0x0, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @usage, 0x0}}) (async) socketpair(0x1, 0x20000000000001, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_SET_FILTER(r6, 0x8914, &(0x7f0000000040)='lo\x00\x96o\xd6Q\xb9Y\xa9\xc8J,\x00\xd2\x97\x04\x03\xdc\r') ioctl$PERF_EVENT_IOC_SET_FILTER(r6, 0x8923, &(0x7f0000000680)='lo\x00\x96o8\x0fd\xa1\xe3\xd7]b}\x1f\xa1Y\xad4\x90\x9d`\xd2\x98\x00\x00\x00 \'Y\x17]\x15c\xcaR\xdd\x98OC\x89\x1b\xe7\x84\xe2\x05\x80w\xd2|D\x8dK\x14Bx\xcbuH\xc2\xeec\xbf<>Y\x1a\xfc\x1f9OB\x81\x89\x186\xc5q@n\xb4\xb6s\xb0\x00\x00\x00\x00\x00\b\x00\x00\xda\xef\xecE\xec\xd5I\xb2\x9b\xfe\x8d\x90?\x00\xe9\xe4~g:\xc1\xb2aj\x96\xbb\xa7\xe2\xc0\xdc\xf9Q\b\xeb\x16\x7fT\x11\xd3\r7\xe6\"f\xcf\x8e\xabd\x0ftp\x82\xae\xd2\x15\x8e+c\xf6\xbf\xe14>\xa6-\xa5c\xde\xd7\xab\xea\x1f\xf8s2\x9cVF\xd5\x18\xfe\x0e\x8f \x01\x00\x00y.\xfc*\x82\xa5\xa1p5\xc8{\xf7\xef\xab\xe8\x99\xebw#\x8at\x1c\x80\xfc\xb0\x95\xa2\xa7\xd7,Y]E8\x83X\xf5F\xdc\x88-\xf5\xb0\xb5^\xdb\x1a\xb6\xaa\x14\xe2\xb9\rh^J-\xd1\xbaUn\x04\'l\x1b\xe0o\xdb\xc8\x91%\x1c\xb5\xbf\xb6\x90\xb4\xc2\x7f]/\xb3\xe7\xc9\'\x94\xcfIo\xdf\x04\x95\xb5\x06\x84\x1fH>\xda\xc5\x04 \x94\x88\xeb\'\xd4;6\x7f\xd9\x99-\x1b|G\x8d\xd4\xb9%\xaaQ\xa0K\x10\x03\x93\xe1\xcc\xe7m\x80\'\xf0\xa5\xed(\r\xa8\x0f&\xb1\xf3\xff0\f\x82%_\x92\x8bD\xb9\xd9\xe7\xf2\xe4\xc1i#\xdc\x87A\xb9\xc7\r\x92\xfa\x11\x11\xb5\x1f\x03\x9d\xdd\x1bj\xdf\xacg\xe3\xa0S\xd3\x8a\xe1n\x97\xea\xf5\xa0\'\v\xe9\xa0\xf1 f\xaan\xcf\xb5i\xb6d\xbc\x92\v\xd58\x16\b\xb3_:\xa4!\ny\xc4&\nWMM\xa8\xc4\v\x9f\x01o\xf4\xab&\xb6\x17\x02P\xc3!N\xa1\x86\"\xd7\x04\xf1\xc0!\xed\xff\xee$\xc89\x8cB0\xd1dD\xe0IP\x88\xa2\xf2Y\x9af$$\xf1\x81\x96\xf7P\xac\xca\x80:!\xb4\x94#\xcb^\x9f\'\x03\xe3\x93\xb9\x82\xbf\xcf\xc4\xe3\xf7\x03Oh\xf2r\xca\x8ff\xbb/\x9f*\xaf\x1a \xa5\xa0?%M\xa5\x86\x98\xfa4\'1\xc7\f<\xcc@\xe8\x8a\xac.\xde\xe4\xc7\xf5\x9ck\xa40!\xe9\x14$\xb3\x05m\xb5m\xed\ft\x93\xd8\xa3\x80\'Y\xb9\x05\xbbt|\xbe\xbcz\n\xf3\xf5p\xf8\x9f~\x1b\xd0\v\x1cQ') (async) sendmsg$NLBL_CIPSOV4_C_REMOVE(r6, &(0x7f0000001400)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000200)={&(0x7f0000001840)=ANY=[@ANYRES32=r5, @ANYRES32=r4, @ANYRESOCT, @ANYRES32=r2, @ANYRES32, @ANYRES64, @ANYRESHEX], 0x3}, 0x1, 0x0, 0x0, 0x4}, 0x40025) (async) ioctl$BTRFS_IOC_TREE_SEARCH(0xffffffffffffffff, 0xd0009411, &(0x7f00000002c0)={{0x0, 0x613, 0xfff, 0xffffffffffffff88, 0xfffffffffffffff8, 0x5, 0xffff, 0xffffffff, 0x18, 0xfff, 0x1, 0xc9c1, 0xd7, 0x7, 0x1}}) ioctl$BTRFS_IOC_INO_LOOKUP_USER(r0, 0xd000943e, &(0x7f00000012c0)={r2, r7, "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", "4fd36b1c21a2294cc16bb24865133786d6afdb19388a93032bafc2c3046b37abc58add05298c720c4526b8c44a56bf29b3abef58f895b851f581eacc06f60747909e34b46a6f63a83d786933bdb575cf3d05100b3dd8e2d7b65a78a4bf81e16369ee59deb76d93d47370b8c02cba7431e158709725dd311a2bf08c173e142285ec9eb1cfc8f558f407a31c3a21380c73a4792727842c9e7e5e5004e69a71553983c0849fe026e7e7b27f3400f1919b581110576750ad6a51ce27b3bd23b2f03f43a03466fe3df6ac3909a72bc16de47bfd1c1a0ef6637e38dc785094774454a8da232cc8bedb8b5d961c8f58466734ae8ef856bd527e6b134fa8f12e3a85d7e3311c51519ec5eeb943196142fb91e830dddb86261a31580a8b1bd31fd8c3ba8d6512146787e5e6a356eeccbb51f869a3c939f35aeab15d9741ce2bfa6b9ba2115f8d264a71753c05b671b489d8475e9ecd8da0b7e5abb4899a4fd21108f044cdfa5a52156008fcf2aee6876a1f5ad38fb8391bdf2ba691fc325f6d5a039200067fcee87585a3ea5e09fe4956e72749edf7cd11437d59b0eaa0a7788595fefcc13f18cecf62a4115bcd9c6ba4820e7759251d61494321a12960f750fd8c8f717670818aa87ad4024772f694bdf0305b3ea35781352bd88917b506db0bd9a73c31923f79731cf8c89f5e216fd505d67a220559373bbd1e510de903dc81718b64c301fc3632838337047a65330cfeebc1d5c74d142a90a735b674b247d1c0c75800cad0abe22060eb320ddb5673607ce7329f99393f269807da322e0aac69499f9ae94ca5e0c62066c6e14b1363bbe43dd38b306d9761d2f1f7646f0645a86f95ae7138a9c2590ff775f44d97372440761b7dd5748b9ff30b27a170aa8bd557069919953f446b9db2d722ea23b7b0c2bcb3b26e27e10b3ef4dfe0f3ca504cef6eda8b2c827bb2e001ee6209da363a0ace3ac74f230ba7457cc8b546402a256371e0477efc19b7d6f6149a19b77cb801c053cee119b085acef2d37ff0ed3d113b647dc5527492b84cd91bad241fc44e61be1aaba66fda0bb7727f0620709475a0ffee28af81862a406048d1d04cd130de375d3586387dfeed4052b2e2256beef2b0476fbb4126787536ec01cdd083fa443551ce4dea1459e99c7ab5d6fcdb8b524c155cc62f71bb1f59df7c18650139ef72d923f0af75e3134b56ed3794de992c86eefdd820c5d508b3410c6b202d6919f7389f75fc3f4b2198391c86d70fbdfcddc2d913cfb70869761166d2bfb833efbd0d20df02af5c934f3a64ee58f5352d41b41d9b999574743aa51947da297aa8d3c672ce36827676a9c3d341ae3267fd8c8951a648413a4372aaf3db06085f9f2291a625e27bf49d328740773ba0fb8073f21b7569f53700af82b8055f5fa1b01ae15ee99a4a3db6e6d383358d6fb40a75af97989c9a2b21645c35b078918beb4341b44d33c3904ce66fbde1b915c848353f75e00de5ce23547fcc0eb1387192dcf5cf831dfebf09e09749b28b7af7cd5d5949558fb9a0e3ef7e91a3375a332d7291b8c081f156cbfdfa1d342f8db7761f929c9718d7a9536ae1ba1df7839ab688fbc040713b3920600e7579872c92f91694434d97f24e0e5275ee73bcdece3116d7566d163937861c98f2019954523d9e41d77edb74a5c8f153eb9b1a0749125604baf701a6b483fa71a58da26122d59fe7511ef3d781fdc5eead56c3f239c9a559e09a504771fcbd89b59c886b88c930cbf59a7c9c47221f61398bf237dcb6bb9ae499862dd484febecf6d1a2e469f58dda976a4c85a5cad076136993e1ca7b6ea91d84310e1f7acc8b04862ded899ffbb3175e8b132f18687fb25bd3921dd75234100e868b4b106c460a93bd263e610a2483415c63b88259dcb5976c9dca5d808ffb93f9b611352e5af0247ad0b331bab313a46bc41b714cfca5a15505bfec35528d51517c4f9b61dc3df89e6765b0df8b70176e9a0700c61dc560d8170d85ad4e23d61f1ebda89085ceb5f38310a46639d75eec158915588a16712c333d506c23276f4ce97f12fee8b8079b333cff153dcebbce6bf77d4f6dcd5ab1b7b1a1e2f6d4d5e3ef92a26d265745671ef178c8e6db05168a0e81e246c7554cc5b45c651ab0839c93f966c744f827127652e6ad9267e2efaa20f3a17f6a98684d72a65cb9be0091b3ef42080491f69012b99210880ea198d5454929093c650b27e0b3b95e123e1ed4e7578c70f36d6a8b995df9098baf61f696443ced9cff8dd828ec76f8bd28e538d226ba8c348c92ad452557f919c536abcd56f88961793c3984e84cff8750de6f92826c2b1736fdda8812e494536bad33b1979721c85180b894340cd7bc50025f39117561457d0f54ede21a43a71e702e5cb591abb84459265a39c0f342f67359d468b72ccd0e4ca495367a3595b5e9e11f2d2d9fc83041469bcbbc1945e16e6071f864a7064024e0481be517cf54f9c3d4b901556225314a2f5fee2fb73e998eecd811035f5c9b6f9e987add0767cef9220fa581f6999ba39cb2325c02824d38e9c80ef95991ab96a6701b6da8fb78b1904e2cdd71d01a2dad0f311a2e1319b7a11ee482d2c21e98baec721305dc0390f5de6a242f17eb35f7520b42a2ed8daa46813132be3ee4f7cdb5c60e6309ad8a02a29ccdf6c76d5c28b3cf757e4ad355269ae2fd0f8e67c6d8809c645d12640e88fb021f86ebc81bb1db47f5a2d9f7f8431edda1b58677be199e59901918b4bbe192ed2af8b11bdab26e7215d7a0d581638b1081d032140c5715edd498adba8fca21655ccd23140c91cb890786e631397d810a6b986698a6f67b562c30b37b766137152a08de573165f66a09eeef72b76b653ed00a55a841ef9698c58da45422a4446227748c90d8c00abca14c53514e0b21f85d8891ccd8a3b1f00017d1ed44b53936db530a495c388966f0428ceb0a54fd748423d8ef0ca676f50d1f449d28388364abd71f88d2f51f072297a26ffcf6bd22634c418d3d1ba4e572249297ad9de7009bcb278b569d2a6f850ff4bd9dcc0aa72ec486da27ef393bdd161620199e4fa41e621bb5477992deaea37be74b65156bf58cf0766178aae4d2a504cf8d3c7f0b79a1435e9faa909717b8fe5186e19c1f22b78b5f60000a688bdb0d4ca3d85c1572fb0c6b99f4a4147524771c4d12364c7d92cbfd9d1e755fdc73331ae2d014a3d3bc191e2cda0352127c3313b587d6995aa7183344147f3a11285e1ecf6dfc10f614637c037bb08adbbb01fd298b5b703036c130260f3b4052573635707c38c1c08ec9d868a45fca35e186315f3c1ae13c1b78ea91781ea136443c4fc0c35553d6a955231e6b94a5ad4cb8d389004986c408728f266b6ffc0e8a669b920c9b3e19fce8e529ef4e00e7f571ca8175abe15a2c76be32c7b998188087a64debf9e818fedeb3883621536af030cec13783d276e180b47034eca6e38aa60bdc29d03a9b0d78256db483ec87c032ae160e6db1cab8863a2c55719ffa20668853287e6915ea24e88714cf7fe6d6ae62723dba5a250162d34419900972878885a5491456d3685be6af78666a02b56a2c5d00aeb6585934d738cb33936b2b30eef5477501920cc2f2e5b2869511b2fee0825a7d7de029296fd419698422887691c84bf1b83d534acdc2f19842c738886fb2f286a459272670cee3fa8cfbe95dfd93965144e91a73aa5088e2278f26b6f3ba2502265d2c529613b504593252a0db78ce6371fb51984b503128114962dbb5a7b304f8c7abc9c089dadf4e18b9e2b67fbaac87356475d3f6bb2ea9daa46c92fa4b607d0bf1edea59fe2c2e73ae8e5807459c2faa966952a98f3b0f3e86faa3029a4c3386dc9ab5411299f6111958e04cfe0f097df143dcd856c4f6afefde03555ed0ac2e9cc44bd8c150ad95fdf6c701c2e1d8bc40b7a94cd7f73facee6ed4eabab40ae3c3dfbd5e595d390f0785f768dd0c27579bb7d381c8624a4c6a7cb6d0916797b81e6b23f2ef1b12701effa1b8de6fef79ed95c264782ddea899a5c3a3ff986f4b0851e8ec375175b6fb536b40c7955a607245534ad2360d082efc12846930acec014db7becfc2f44fed448560b736f93ac1a95512c33fdf15344fc966d43f93a7bc82be5a8b727a687f984c31df74c48790833164e8a515309eea41f3999be8a2ad4f074b145c65ed17f32c564f9e372660150c56eea3d97b2c82185851cc60371d2590be198c4a99a5228caf9dd866306fc2c4a48f1281eb83e3d956f7df6936f3b075a491eedc7736952bee4e47e8ab0c504c82fa15ba9dc5cbb8ff859458ba3df427de387edbc953f94bfebbf450175be84d72e246e4f942b59c06d68fd6e0ddd6e428f3685c6bb2f2d0df4efb7c81dd06f337c26e01e81e8172df723895f0dbc0d9dcf582a065311f4a0cb8556bd8a6ee006052a2532b2127b06cee7dedb3944a7e1f7e65a139391df15afa6bc2b8aef4336a4564d3a74dcdc6e0de35162264317d6e7b4762688bc51814588c7ce7f28a44b0f3ce3ab3f1ef4b3eb884ceebae0152155f74a1fe8d9c7dd845de840315579f902e3beb8ba30bae525876fb6378f729c15a47d62b1b07fae7bbc2c7b2d06876c2e62bd5ac755ac940b4969f11f9304b9f84de2b3ace396294027e14ceacc6a631d33ac980e3c98f764ecb53da99f7aa4aae2988682c1ed2fd9bb43eee24909eb61947bc62c3f7fbe54bef7b2db210295f0bd858fe5222029a15df0cc823baae3bede9174b49b5482faffb29184629dfb4876f04fedfe68334c14bf5d5a7850db1d3342e8ed4060904c1c3382eb7634d5abe8bb25bb019908e7816d4896b68cc4781c9b20bb6efed83c19224e024d1e7228557d4f2a6ef86a550cdae04b72795f69c59f0fc0d4f6817acc7d78538db767c02688535065d2f12d312e44031024b244b6d7dd0fba020e709f1ca8650cd166f52228bd9d0296b658851b0bd0dce0aec01395c0a7be56ece264f6a83348fc3013560945545c18ba9b4781d30942b953445990eca25102dfc2fea21c11eb312bb8d3828e173101fdf1485f2b4f0a54e98ee88a4b5ea457723cafcec5b14b54eb74363e1628450a799beb120ebef76b5b9728dc4dbe12b78f9797e160078995f4029c9604ee174a4967698a6366893abd9c9410dcaca97e608c8190532cacf63452faffe82882004c5f911da941604d52fa0a285f4104d1f671d4ff6b25f4f91bfafde3564fe86cf3c7e3e1302e71709a9918740f37418cef8dee5be89c591038b783cbf221b585b216d189f7e74393bc81e5693a65db6c91e8fc1c6788aaf21ca8aeda7b6ededfb1b53cbaa797a84385bd326c9d8a7970a499a9e7415ee8a3d853464a1e8d094f9c65ba3365d0e783fb7d06f13"}) (async) prlimit64(0x0, 0xe, &(0x7f0000000280), 0x0) (async) sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0xffffffffffff0162) (async, rerun: 64) r8 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) (rerun: 64) ioctl$TIOCSETD(r8, 0x5423, &(0x7f0000000040)=0xf) (async) ioctl$KDADDIO(r8, 0x400455c8, 0x4) 10:01:03 executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000280), 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0xffffffffffff0162) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r1, 0x400455c8, 0x4) ioctl$TIOCSETD(r1, 0x5412, &(0x7f0000000000)=0x33) ioctl$KDADDIO(r1, 0x400455c8, 0x223) openat$incfs(0xffffffffffffff9c, &(0x7f0000000000)='.pending_reads\x00', 0x7a6f9b740f420bb3, 0x4f) 10:01:03 executing program 0: prlimit64(0x0, 0x0, 0x0, 0x0) sched_setattr(0x0, 0x0, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x0) (fail_nth: 45) 10:01:03 executing program 4: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0) (async) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) bind$inet(0xffffffffffffffff, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe1}]}, 0x10) (async) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) (async) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x21, &(0x7f0000000600)=0xda9, 0x4) (async) sendto$inet(0xffffffffffffffff, &(0x7f0000000640)="febc3b777d549ffacdd9ee6633af6e737f2e6d654105f04716908ec7af8775d530c2cc83e31b3f3c7f9e351ba553af429ff9367031b7ec0aed61ea15d08f299f9241acf82356d0859eb45aec582cd03d4cdbdcd6755c166133d9ba85529c0ed8913418402ba7d907115e75", 0x6b, 0x4000081, 0x0, 0x0) (async) sendto$inet(0xffffffffffffffff, &(0x7f00000012c0)="e1158a927f1f6588b927481241ba7860f46ef65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a97425a3a07e758044ab0ea6f7ae55d88fecf9221a750fbf746bec66ba", 0xfe6a, 0xe, 0x0, 0xfffffffffffffe2b) (async) r1 = syz_open_procfs$userns(0xffffffffffffffff, &(0x7f00000053c0)) (async) ioctl$DRM_IOCTL_SYNCOBJ_HANDLE_TO_FD_FD(0xffffffffffffffff, 0xc01064c1, &(0x7f0000005400)={0x0, 0x0, 0xffffffffffffffff}) (async) r3 = accept4$netrom(0xffffffffffffffff, 0x0, &(0x7f0000005440), 0x80000) (async) r4 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000005480), 0x24000, 0x0) (async) r5 = openat$dsp(0xffffffffffffff9c, &(0x7f00000054c0), 0x335103, 0x0) (async) r6 = socket$inet6_icmp(0xa, 0x2, 0x3a) (async) r7 = accept4$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @empty}, &(0x7f0000000080)=0x10, 0x80800) sendto$inet(r7, &(0x7f0000000000)="667b84d9db7c2e5284dbd4a85a40d527d202045e6eb75abaaf474308707bd3d6985c0001757c82", 0x27, 0x4008800, &(0x7f0000000180)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x25}}, 0x10) (async) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000005680)=[{{&(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000000400)=[{&(0x7f00000002c0)="79acd0506447ee086deea93d1d7cf3e238daac58fb168e1e2073091e9faa1b677ec536a94be43933cdfe29fded47655161c2bbe153b888962404a08cd939477808f8f522ed08c9b5a565ef42dee2f62ada576930551a877e678eebd9d18fb2fc2197c1c200cbe4e1f1db6e0fd7455ddc50f0ce070ea18c30a266353bec0612aa8bf6811597fbaa0dad93f4b26324732496371391535bd369232d1331504f501f25549413b36f43aa291abbc36743e4948bcb985dddcf7cb854e8fa7024f4495314bf33854246dc51ef586b81f1b01d1cc505655a4ed3713a10c9fd77af465a8826", 0xe1}, {&(0x7f0000000000)="fe7b37d499eedb9bb0be7caa6609391b177ca0e6a73a75d502b70378a79defd437", 0x21}, {&(0x7f0000000100)="da7cb9db350fd8419c581e56429065", 0xf}, {&(0x7f00000001c0)="28b3c2ce5de4258e07f12b7f0c13adfd5be41d729a1397ee12ccc10a1cc2c3f3ecb891c4dbb0ce7ff212561d97fecca6ccac57bc66cd3ad8c13f626207620d854ca05de3418e6110ec7c8978517acee96e25f106366851cb608581806c86aa4a1d85400bb28a28d302c8ca9a9e34fe6e78921d9a97762f382b4f9f3e", 0x7c}, {&(0x7f0000000240)="5ebe98d183bcce955e90d98206", 0xd}, {&(0x7f00000003c0)="0b8145ab408b6b19ed2ce1aaaeafff2462927a473f9065a01d1edcd021f07d601472aebf0d93dfc7d8e60bd727e804675cd11c28ffcae3", 0x37}], 0x6, &(0x7f00000014c0)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0xee01, @ANYRES32=0x0, @ANYBLOB="0000000028000000000000000100000001000000", @ANYRES32=r0, @ANYRES32=r0, @ANYRES32=r0, @ANYRES32=r0, @ANYRES32=r2, @ANYRES32, @ANYBLOB="18000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYBLOB="1c0000000000000001000000020000001898266d424b6bbdc42e1cbcfa6b283169cd64b01db651456098fafd0dcee514164d18c70801a6b81b33efabb213fbebe161ee54fffc4022737eb6bf7fdc8a96e13c3c43b035ab45fc2d5d3bb367412e9227c27e30dbff73b8c9d9def2d6a9d8469e509a3fa3af4def739b", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0xee01, @ANYRES32, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32, @ANYRES32=0x0, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000038000000000000000100000001000000", @ANYRES32=r0, @ANYRES32=r0, @ANYRES32=r0, @ANYRES32, @ANYRES32=r0, @ANYRES32=r0, @ANYRES32, @ANYRES32=r0, @ANYRES32=r0, @ANYRES32=r0], 0x138, 0x40}}, {{&(0x7f00000008c0)=@abs={0x1, 0x0, 0x4e23}, 0x6e, &(0x7f0000000a40)=[{&(0x7f0000000940)="98c6923efc40360beb7e42fa74834173feb84371f1b71a86f21da2d049032437c985bb794d3b988cd80cfc3dfff838b4252496c2a822", 0x36}, {&(0x7f0000000980)="24b09c8024a1255feec656481967af87f248e0a209f9be73f34e43fdfaffc92b7acc60d45888a06b119517dd0948deb6db6eb2a8ede578d9c2e37bb2cfcff9f8808d725c96df1cc74d6b1e6c9a16d26ff7cfcf", 0x53}, {&(0x7f0000000a00)="aabf895313acf3ea4a60a53d", 0xc}], 0x3, &(0x7f0000000a80)=[@rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}], 0x18, 0x2c000050}}, {{&(0x7f0000000ac0)=@abs={0x1, 0x0, 0x4e24}, 0x6e, &(0x7f0000000f40)=[{&(0x7f0000000b40)="211cef329a004f72d528e55b4a6463a3176ee6981dd1da2d914812bba8bbb1f03caf400991ec60245d58a51186a425cd44849745215b262bdb21ff1612d2f6ac386a03f147107bf6cc65ba4a2a09a6a461492ab0ac2ef17078446f84e6be2b5be92ed357a746806a5fa260257b29b267b0e738d0ae01d0fc3f335c50625ec24cc45b3c3f0db8e492d27647fc378fb5ad312fd358b09202fd36f23e896dadf49c573c9cf152e9d5c2e12399f9a605baf70a7eb194", 0xb4}, {&(0x7f0000000c00)="19", 0x1}, {&(0x7f0000000c40)="faa59ecb3cf2a51f4e1e7757cf62fca2803a96dc6ea37f3bdf4eb8356d0bb5ed69e9df057d8da3170b9e2d0915e9df9c1c38", 0x32}, {&(0x7f0000000c80)="8d66a55bfe823a00f534f4d0b2805c05a3263c91197a7b940f79ed0678ef03f54ba4b101dcb587aee18e95e3e8692ea8ce0c3b38a9d8d962f9ab00dbe575ee9cf3b9e479f8944f2ff9655c5115df286ffc079ec36f07d7c5d8dba6a11ee7e30ee2bdbd9103e23b6767ec346b4d04430f7e178ff118f087f20af58a302ff35e54b52923f1d9d8911aad5755e8fc6a24ce2446ce7774ed8bf6", 0x98}, {&(0x7f0000000d40)="cf8ab331ce13c67ad428cd08c0db6419db62aa89af02ca74d64582334fb6bf1e44078f9788bb854e7b291e69bb66c76c7bef1ab380afef68596b0e210359208b0a4a8770b6c4c8f8005e5a5c03ddebfc3623f4cff7401a04d638cc9c4f9eeadfcc73efff52ba3c381d726af0e5f11912747e7c2327a322a42bcf56d17179218a576567ab1337b99da5b13b776464374b773ee5f8b32d2954502907556ba06414", 0xa0}, {&(0x7f0000000e00)="688da851fa4338ff34e90631bfc924", 0xf}, {&(0x7f0000000e40)="d25bc44f52f0220ad81bea67a8029071b1ab7bbdf9f6a934ffebc93d73d49c052bd1f05892525510904c477ed0b0a85b7e65b0acc3f31e183a1db033ece1e49b04f532b5de3afdee735368dc8d21376953bb8befd29b186618cf4cb2a28160693916b7c1e4a4c4d52595af43e4094eeaf92d7a210437f2ac942544040233ea80b78fddf6c2a988c85ec6ece8a4a2816468e8bf165b3b0b6036b570ed690cd43412000806b943ed2e7925e733c5d8a100261372b4693ac9d241dd744d79678b568e572e8a06482dd2088b13b97a39732da654b7d0", 0xd4}], 0x7, &(0x7f0000001080)=[@cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff, 0xee01}}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0x0, 0xee00}}}, @cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff, 0x0, 0xee01}}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0xee01}}}, @cred={{0x1c}}], 0xa0, 0x20044004}}, {{&(0x7f0000001140)=@abs={0x0, 0x0, 0x4e23}, 0x6e, &(0x7f0000001440)=[{&(0x7f00000011c0)="b43d57a8ab98ee2500b19ab6d2bfb6f1ede246d9ffa758bdbaa12907d1e3238855346e9b7335e39b04d6f0f0", 0x2c}, {&(0x7f0000001200)="b4b864dde103ea5388f80a84c0d7e93c9201a40b1fd57b900f63d3a8b4b89b28a552f08dcb0b69d7c2bcf2eaaed040a265c5c5ba5b7ce84c0984a5e9ba097d8ab91925a832e4eeed859150a505a266df2140ee604b38beee7763f3ba630f1a97f77cb46debdcc5ee898a547714d0e23b8ec77ecab90bb6cc3fcf313015688ad5793c0456b77ca46f7b7e", 0x8a}, {&(0x7f00000012c0)="8ca15f8939a942e6ae36bb577a506a7741dc3ad10a6e5771e8cc8fa9", 0x1c}, {&(0x7f0000001300)="d8aec1aac50b9b28928c4193d271e9fc56a4a9f0b0fe551a51b9482f28714b6fe3b0de88034e78e23b7a7a2fe3f6da2905b3eea235398336368ebba51f36d1c86f0e", 0x42}, {&(0x7f0000001380)="c2b15beef3300fdd23f08ad4a84334b4edee8f4cb311b3f6e49551775e96d8d1d7f27e03a5815ecdfc5ab7569da2b53c42f844f8b546dc1c9dd547efbbe1ea49729c9b4cb2e073218a764ba0f2ab5b289dabf7d0c61f324d1263eda429582915aeb67f29d0723048abf574836de1a0b58697b7a8ec2473773c983efd47fac32f4fbfde4b69560dacbf", 0x89}], 0x5, &(0x7f0000003d00)=[@cred={{0x1c}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, r0, 0xffffffffffffffff]}}, @rights={{0x18, 0x1, 0x1, [r0, 0xffffffffffffffff]}}, @rights={{0x20, 0x1, 0x1, [r0, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0x0, 0xee00}}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r0, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0xe0, 0x20000000}}, {{0x0, 0x0, &(0x7f0000005280)=[{&(0x7f0000003e00)="0911407dc307702d7dd88d6ab24ad4b07ac4e5b537a76c6d7c55a53f5ecec4489b74ca17f6aeb69fb045b183a350c5f015181f3859d5dc542e67739b10a929f70aaa8db206208e3c8dcf4b25e4f2f10905df525811e70edcaf0517fcb51641867faf5cc5f3c6d877827845292da4079342a7f2117dd84dae37e1e22bc75e80216b710d49e6c1a0c5bc7c6374abcf42b524cec446650e10b1", 0x98}, {&(0x7f0000003ec0)="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", 0x1000}, {&(0x7f0000004ec0)="d069f9ea5744c2849468134159e8df18456497ef3c62028770c662e67c3298cbe753a0c5ea5c0141d2185fd9d4d548f18d92efbd346e76ad00a485056dd4016e12a96707bdf9a62de7b09e8dc96e9894a0f7266dd0e765d230386e450dec589db00e4ec74f8b4d7871af627655e40879da57b730e3c3431441b97753349c758e11f9d8b79ec88cabd426cd8dfd0c3bfff8ed76dd8f95afa89f516f8d3ab68967d04c054f85427ffcba942825149bb4", 0xaf}, {&(0x7f0000004f80)="c9", 0x1}, {&(0x7f0000004fc0)="03616e7b04e4dd8e21ed3d758629238e82abcec202b4c7c66ccaac37419e4f0c7135d5ef066c630d4a382a856cea1c94038f2efcaecca74550d8d86b7a6eaed976963d655f5b99b9b64f6b8867679158a2893a6f41c6fb7a9ab0d689257396a15570c5bbca5e56a0510ca0cd93b16a53a217b27c13de8543f9f6723aa20672808965eb", 0x83}, {&(0x7f0000005080)="f2d16e7783534847ec14895e8f0d9be3f8c0e35fd1ad2584efaa3ce9fe331a66e6a6b4d94868616bc82b141bf63d4f5a751fbbf98096dec2f95cf61cd38411b95589e7f8df22ec86e401352947e73ada527216861def30a0e51ef19c28e9ef98a0bacd1f49a2a823a3479f3d34a0bd1369108adc7816678a54b47303e460fc7cf8e5c00ffc909fb6d3d64ab6583e85b8edd33d98190905f69c67f1df9fffada49d0ca6ededdb4229cb9c5a4109a942c9e1904861336cbf698c9086b1d022", 0xbe}, {&(0x7f0000005140)="f1644536b94849d7cd250693327b1e", 0xf}, {&(0x7f0000005180)="82b1559f4aab046ae7a51fb1240ee2c6cc5adf7cdb060c8a389cb397c41c0c3d91f072365790465190af96549638b36df15484857bb1557a3d224c88f445d4b369bd742e2f454c8869edcf437f8fd16fb4c8ca987cc9b22fd1511274734ec6bffa3de0589ecdcbb284e15824cb8c0deba34c205cc91efb9ec834335ee68e9d7a758bcfdf20f45baf35cdcdeda8af54e1282f84f6ed998b4bd94dc776b907394f6e176f10780b0819d075a2e6caffc1ad3beac6", 0xb3}, {&(0x7f0000005240)="a12ce4b246d75260015f9a67b4c0837a16ea8b70d0", 0x15}], 0x9, &(0x7f0000005500)=[@cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff, 0xee00}}}, @rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, r0, r0, r0, r0, 0xffffffffffffffff, r0, 0xffffffffffffffff, r0]}}, @rights={{0x1c, 0x1, 0x1, [r0, r0, r0]}}, @cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff}}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r0, r0, r0]}}, @rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, r0, r0, r0, r1, 0xffffffffffffffff, r2, r0, r3]}}, @rights={{0x30, 0x1, 0x1, [r0, r4, 0xffffffffffffffff, r0, r5, r6, r7, r0]}}], 0x148, 0x8004}}], 0x5, 0x40081) ioctl$KDADDIO(r0, 0x400455c8, 0x0) 10:01:03 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) (async) r1 = dup2(r0, r0) write(r1, &(0x7f0000000280)='#\x00\x00\x00', 0x4) (async) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r1) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000100)={&(0x7f00000002c0)=ANY=[@ANYBLOB="5c030000", @ANYRES16=r2, @ANYBLOB="04002dbd7000fddbdf253900000008000300", @ANYRES32=r3, @ANYBLOB="94015a803400008014000300810004000600fffe0500200041c9030014000500018003000600c10ef7ff03000500e5000500040001000000a400028015000100481b0102024e181606020330043003601b00000005000600020000000500070000000000290002003a261e05152c33363f3b19080a181f37094d42313d17494718234531132b1620564227401000000005000600000000001400050001808100d4410800030006000101ff0f14000500000800000100ff070400030075000900190002001933234421500e384003104b01180d263c0a080c270000002000028014000300000100000500ff0704000000ff030100050007000200000028000080050004000200000014000500d2b10700ff0f001000ff0800ff000900050007000200000014000180050007000100000005000400020000005c000280240001003806040212000c0c1b09160c2403093609303636060b18092424050400000424050007000000000007000200351749000500040000000000140003000008000326f90800ff000800400004000500040001000000ac015a80a4000180080001001212002405000600010000002b000200012254411e3d51342f024d482c3c27094739554b090333130753274038182d41313248091b1946000500070002000000140003000200cc5706000100ffff090000200000270002004b2e164e1021451f101429391233093e2323010733122c3333343d282032151b4a56060015000100160b120336036016050b011b6048410c1600000005000700000000007c0000800500040002000000140003007f00ae004000c402feff0100c700040014000100060b00061b1bd12406361b480306161b050006000000000005000700010000000500070001000000140005000004ffffff7f01000080094e0004030014000500fcfff70801f8010008000400800001000500040000000000880003801500010005166f0b0c0918360112016c0b6c77600600000005000400000000000c0001000916120c090b18241400030000100180b10001000500600e1f0003001400050020002400ffffce06010108000101bdf414000500140783010500670b3b000900070000081400050099ff030009000001ff070200e0ff04000500060002000000"], 0x35c}, 0x1, 0x0, 0x0, 0x800}, 0x8) [ 1485.255150] FAULT_INJECTION: forcing a failure. [ 1485.255150] name failslab, interval 1, probability 0, space 0, times 0 [ 1485.281954] CPU: 0 PID: 20922 Comm: syz-executor.0 Not tainted 4.14.262-syzkaller #0 [ 1485.289905] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1485.299255] Call Trace: [ 1485.301843] dump_stack+0x1b2/0x281 [ 1485.305480] should_fail.cold+0x10a/0x149 [ 1485.309636] should_failslab+0xd6/0x130 [ 1485.313620] kmem_cache_alloc_node_trace+0x25a/0x400 [ 1485.318729] __kmalloc_node_track_caller+0x38/0x70 [ 1485.323656] __alloc_skb+0x96/0x510 [ 1485.327282] kobject_uevent_env+0x882/0xf30 [ 1485.331616] device_add+0xa47/0x15c0 [ 1485.335332] ? device_is_dependent+0x2a0/0x2a0 [ 1485.339928] ? start_creating+0x144/0x200 [ 1485.344082] hci_register_dev+0x2e2/0x8f0 [ 1485.348232] hci_uart_tty_ioctl+0x6d1/0xa60 [ 1485.352557] tty_ioctl+0x5af/0x1430 [ 1485.356182] ? hci_uart_tty_receive+0x4c0/0x4c0 [ 1485.360849] ? tty_fasync+0x2c0/0x2c0 [ 1485.364654] ? proc_fail_nth_write+0x7b/0x180 [ 1485.369150] ? trace_hardirqs_on+0x10/0x10 [ 1485.373394] ? fsnotify+0x974/0x11b0 [ 1485.377106] ? proc_tgid_io_accounting+0x7a0/0x7a0 [ 1485.382036] ? __handle_mm_fault+0x80f/0x4620 [ 1485.386533] ? SyS_write+0x1b7/0x210 [ 1485.390251] ? tty_fasync+0x2c0/0x2c0 [ 1485.394045] do_vfs_ioctl+0x75a/0xff0 [ 1485.397831] ? lock_acquire+0x170/0x3f0 [ 1485.401784] ? ioctl_preallocate+0x1a0/0x1a0 [ 1485.406171] ? __fget+0x2df/0x460 [ 1485.409609] ? do_vfs_ioctl+0xff0/0xff0 [ 1485.413569] ? security_file_ioctl+0x83/0xb0 [ 1485.417958] SyS_ioctl+0x7f/0xb0 [ 1485.421302] ? do_vfs_ioctl+0xff0/0xff0 [ 1485.425263] do_syscall_64+0x1d5/0x640 [ 1485.429141] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1485.434316] RIP: 0033:0x7fbb944a7fe9 [ 1485.438004] RSP: 002b:00007fbb92e1d168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1485.445690] RAX: ffffffffffffffda RBX: 00007fbb945baf60 RCX: 00007fbb944a7fe9 10:01:03 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffff, 0x2}, 0x6) r1 = dup2(r0, r0) write(r1, &(0x7f0000000280)='#\x00\x00\x00', 0x4) [ 1485.453003] RDX: 0000000000000000 RSI: 00000000400455c8 RDI: 0000000000000003 [ 1485.460253] RBP: 00007fbb92e1d1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1485.467500] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1485.474748] R13: 00007ffc96d7392f R14: 00007fbb92e1d300 R15: 0000000000022000 [ 1485.503777] FAULT_INJECTION: forcing a failure. [ 1485.503777] name failslab, interval 1, probability 0, space 0, times 0 [ 1485.515048] Bluetooth: received HCILL_WAKE_UP_ACK in state 2 [ 1485.521445] CPU: 0 PID: 20924 Comm: syz-executor.3 Not tainted 4.14.262-syzkaller #0 [ 1485.529325] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1485.538676] Call Trace: [ 1485.541263] dump_stack+0x1b2/0x281 [ 1485.544902] should_fail.cold+0x10a/0x149 [ 1485.549052] should_failslab+0xd6/0x130 [ 1485.553024] kmem_cache_alloc+0x28e/0x3c0 [ 1485.557179] __kernfs_new_node+0x6f/0x470 [ 1485.561332] kernfs_new_node+0x7b/0xe0 [ 1485.565218] __kernfs_create_file+0x3d/0x320 [ 1485.569625] sysfs_add_file_mode_ns+0x1e1/0x450 [ 1485.574296] device_create_file+0xc8/0x100 [ 1485.578531] ? acpi_platform_notify_remove+0x1f0/0x1f0 [ 1485.583807] device_add+0x37a/0x15c0 [ 1485.587521] ? device_is_dependent+0x2a0/0x2a0 [ 1485.592103] rfkill_register+0x18e/0xab0 [ 1485.596170] hci_register_dev+0x359/0x8f0 [ 1485.600323] hci_uart_tty_ioctl+0x6d1/0xa60 [ 1485.604646] tty_ioctl+0x5af/0x1430 [ 1485.608270] ? hci_uart_tty_receive+0x4c0/0x4c0 [ 1485.612938] ? tty_fasync+0x2c0/0x2c0 [ 1485.616735] ? proc_fail_nth_write+0x7b/0x180 [ 1485.621227] ? trace_hardirqs_on+0x10/0x10 [ 1485.625463] ? fsnotify+0x974/0x11b0 [ 1485.629178] ? proc_tgid_io_accounting+0x7a0/0x7a0 [ 1485.634102] ? __handle_mm_fault+0x80f/0x4620 [ 1485.638599] ? SyS_write+0x1b7/0x210 [ 1485.642308] ? tty_fasync+0x2c0/0x2c0 [ 1485.646105] do_vfs_ioctl+0x75a/0xff0 [ 1485.649907] ? lock_acquire+0x170/0x3f0 10:01:03 executing program 5: r0 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) (async, rerun: 64) r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x2000}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0) (rerun: 64) perf_event_open(&(0x7f0000001440)={0x0, 0x80, 0x2, 0xb1, 0x7, 0x6, 0x0, 0x6, 0x80200, 0xb, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x4, @perf_config_ext={0x8, 0xffffffff000000}, 0x334, 0xf0b375d, 0x2, 0x5, 0x35a6d2c1, 0x1000, 0x0, 0x0, 0x8, 0x0, 0x4}, 0xffffffffffffffff, 0xe, r1, 0x3) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f00000015c0)={0x0, ""/256, 0x0, 0x0, 0x0, 0x0, ""/16, ""/16, ""/16, 0x0, 0x0, 0x0, 0x0}) ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(0xffffffffffffffff, 0x50009418, &(0x7f0000000400)={{}, r3, 0x14, @inherit={0x88, &(0x7f0000001580)=ANY=[@ANYRES16=r4]}, @devid}) (async) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r1, 0x84009422, &(0x7f0000001ec0)={0x0, 0x0, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @usage, 0x0}}) (async, rerun: 64) socketpair(0x1, 0x20000000000001, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) (rerun: 64) ioctl$PERF_EVENT_IOC_SET_FILTER(r6, 0x8914, &(0x7f0000000040)='lo\x00\x96o\xd6Q\xb9Y\xa9\xc8J,\x00\xd2\x97\x04\x03\xdc\r') ioctl$PERF_EVENT_IOC_SET_FILTER(r6, 0x8923, &(0x7f0000000680)='lo\x00\x96o8\x0fd\xa1\xe3\xd7]b}\x1f\xa1Y\xad4\x90\x9d`\xd2\x98\x00\x00\x00 \'Y\x17]\x15c\xcaR\xdd\x98OC\x89\x1b\xe7\x84\xe2\x05\x80w\xd2|D\x8dK\x14Bx\xcbuH\xc2\xeec\xbf<>Y\x1a\xfc\x1f9OB\x81\x89\x186\xc5q@n\xb4\xb6s\xb0\x00\x00\x00\x00\x00\b\x00\x00\xda\xef\xecE\xec\xd5I\xb2\x9b\xfe\x8d\x90?\x00\xe9\xe4~g:\xc1\xb2aj\x96\xbb\xa7\xe2\xc0\xdc\xf9Q\b\xeb\x16\x7fT\x11\xd3\r7\xe6\"f\xcf\x8e\xabd\x0ftp\x82\xae\xd2\x15\x8e+c\xf6\xbf\xe14>\xa6-\xa5c\xde\xd7\xab\xea\x1f\xf8s2\x9cVF\xd5\x18\xfe\x0e\x8f \x01\x00\x00y.\xfc*\x82\xa5\xa1p5\xc8{\xf7\xef\xab\xe8\x99\xebw#\x8at\x1c\x80\xfc\xb0\x95\xa2\xa7\xd7,Y]E8\x83X\xf5F\xdc\x88-\xf5\xb0\xb5^\xdb\x1a\xb6\xaa\x14\xe2\xb9\rh^J-\xd1\xbaUn\x04\'l\x1b\xe0o\xdb\xc8\x91%\x1c\xb5\xbf\xb6\x90\xb4\xc2\x7f]/\xb3\xe7\xc9\'\x94\xcfIo\xdf\x04\x95\xb5\x06\x84\x1fH>\xda\xc5\x04 \x94\x88\xeb\'\xd4;6\x7f\xd9\x99-\x1b|G\x8d\xd4\xb9%\xaaQ\xa0K\x10\x03\x93\xe1\xcc\xe7m\x80\'\xf0\xa5\xed(\r\xa8\x0f&\xb1\xf3\xff0\f\x82%_\x92\x8bD\xb9\xd9\xe7\xf2\xe4\xc1i#\xdc\x87A\xb9\xc7\r\x92\xfa\x11\x11\xb5\x1f\x03\x9d\xdd\x1bj\xdf\xacg\xe3\xa0S\xd3\x8a\xe1n\x97\xea\xf5\xa0\'\v\xe9\xa0\xf1 f\xaan\xcf\xb5i\xb6d\xbc\x92\v\xd58\x16\b\xb3_:\xa4!\ny\xc4&\nWMM\xa8\xc4\v\x9f\x01o\xf4\xab&\xb6\x17\x02P\xc3!N\xa1\x86\"\xd7\x04\xf1\xc0!\xed\xff\xee$\xc89\x8cB0\xd1dD\xe0IP\x88\xa2\xf2Y\x9af$$\xf1\x81\x96\xf7P\xac\xca\x80:!\xb4\x94#\xcb^\x9f\'\x03\xe3\x93\xb9\x82\xbf\xcf\xc4\xe3\xf7\x03Oh\xf2r\xca\x8ff\xbb/\x9f*\xaf\x1a \xa5\xa0?%M\xa5\x86\x98\xfa4\'1\xc7\f<\xcc@\xe8\x8a\xac.\xde\xe4\xc7\xf5\x9ck\xa40!\xe9\x14$\xb3\x05m\xb5m\xed\ft\x93\xd8\xa3\x80\'Y\xb9\x05\xbbt|\xbe\xbcz\n\xf3\xf5p\xf8\x9f~\x1b\xd0\v\x1cQ') (async) sendmsg$NLBL_CIPSOV4_C_REMOVE(r6, &(0x7f0000001400)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000200)={&(0x7f0000001840)=ANY=[@ANYRES32=r5, @ANYRES32=r4, @ANYRESOCT, @ANYRES32=r2, @ANYRES32, @ANYRES64, @ANYRESHEX], 0x3}, 0x1, 0x0, 0x0, 0x4}, 0x40025) (async, rerun: 64) ioctl$BTRFS_IOC_TREE_SEARCH(0xffffffffffffffff, 0xd0009411, &(0x7f00000002c0)={{0x0, 0x613, 0xfff, 0xffffffffffffff88, 0xfffffffffffffff8, 0x5, 0xffff, 0xffffffff, 0x18, 0xfff, 0x1, 0xc9c1, 0xd7, 0x7, 0x1}}) (rerun: 64) ioctl$BTRFS_IOC_INO_LOOKUP_USER(r0, 0xd000943e, &(0x7f00000012c0)={r2, r7, "d5328f582a1d4d0455cb240fd6302cf17b9a52ae55d02c864cee24695decfca1426645914dec8f04ee7d0d2cefd359c9d0e835ca72e07291ad90ba91ab9fd5685addc4b4cb7354a73a20e4bc4f3d1aa09c740503ec99a1c4a4407a427944d1c88c9edfda17707a51138455dc20286d09330da84d6414e001c4da4c2009cdd164aee6ce4c16415d590e0265202544f784705e35cd5d7f130ff46075828b6dbff11844fd8e536e3edcc630b99966168a1acfb13cfee31cf8d83f086fc7bb6e2d6f7dcbc61899f3cf5cfa46bada024f3a9f40a324781233262bbf1021f38ed71bdfaef8a73145836cec6c36b56849094438c178a23079d1df7017607bbb5fb99591", "4fd36b1c21a2294cc16bb24865133786d6afdb19388a93032bafc2c3046b37abc58add05298c720c4526b8c44a56bf29b3abef58f895b851f581eacc06f60747909e34b46a6f63a83d786933bdb575cf3d05100b3dd8e2d7b65a78a4bf81e16369ee59deb76d93d47370b8c02cba7431e158709725dd311a2bf08c173e142285ec9eb1cfc8f558f407a31c3a21380c73a4792727842c9e7e5e5004e69a71553983c0849fe026e7e7b27f3400f1919b581110576750ad6a51ce27b3bd23b2f03f43a03466fe3df6ac3909a72bc16de47bfd1c1a0ef6637e38dc785094774454a8da232cc8bedb8b5d961c8f58466734ae8ef856bd527e6b134fa8f12e3a85d7e3311c51519ec5eeb943196142fb91e830dddb86261a31580a8b1bd31fd8c3ba8d6512146787e5e6a356eeccbb51f869a3c939f35aeab15d9741ce2bfa6b9ba2115f8d264a71753c05b671b489d8475e9ecd8da0b7e5abb4899a4fd21108f044cdfa5a52156008fcf2aee6876a1f5ad38fb8391bdf2ba691fc325f6d5a039200067fcee87585a3ea5e09fe4956e72749edf7cd11437d59b0eaa0a7788595fefcc13f18cecf62a4115bcd9c6ba4820e7759251d61494321a12960f750fd8c8f717670818aa87ad4024772f694bdf0305b3ea35781352bd88917b506db0bd9a73c31923f79731cf8c89f5e216fd505d67a220559373bbd1e510de903dc81718b64c301fc3632838337047a65330cfeebc1d5c74d142a90a735b674b247d1c0c75800cad0abe22060eb320ddb5673607ce7329f99393f269807da322e0aac69499f9ae94ca5e0c62066c6e14b1363bbe43dd38b306d9761d2f1f7646f0645a86f95ae7138a9c2590ff775f44d97372440761b7dd5748b9ff30b27a170aa8bd557069919953f446b9db2d722ea23b7b0c2bcb3b26e27e10b3ef4dfe0f3ca504cef6eda8b2c827bb2e001ee6209da363a0ace3ac74f230ba7457cc8b546402a256371e0477efc19b7d6f6149a19b77cb801c053cee119b085acef2d37ff0ed3d113b647dc5527492b84cd91bad241fc44e61be1aaba66fda0bb7727f0620709475a0ffee28af81862a406048d1d04cd130de375d3586387dfeed4052b2e2256beef2b0476fbb4126787536ec01cdd083fa443551ce4dea1459e99c7ab5d6fcdb8b524c155cc62f71bb1f59df7c18650139ef72d923f0af75e3134b56ed3794de992c86eefdd820c5d508b3410c6b202d6919f7389f75fc3f4b2198391c86d70fbdfcddc2d913cfb70869761166d2bfb833efbd0d20df02af5c934f3a64ee58f5352d41b41d9b999574743aa51947da297aa8d3c672ce36827676a9c3d341ae3267fd8c8951a648413a4372aaf3db06085f9f2291a625e27bf49d328740773ba0fb8073f21b7569f53700af82b8055f5fa1b01ae15ee99a4a3db6e6d383358d6fb40a75af97989c9a2b21645c35b078918beb4341b44d33c3904ce66fbde1b915c848353f75e00de5ce23547fcc0eb1387192dcf5cf831dfebf09e09749b28b7af7cd5d5949558fb9a0e3ef7e91a3375a332d7291b8c081f156cbfdfa1d342f8db7761f929c9718d7a9536ae1ba1df7839ab688fbc040713b3920600e7579872c92f91694434d97f24e0e5275ee73bcdece3116d7566d163937861c98f2019954523d9e41d77edb74a5c8f153eb9b1a0749125604baf701a6b483fa71a58da26122d59fe7511ef3d781fdc5eead56c3f239c9a559e09a504771fcbd89b59c886b88c930cbf59a7c9c47221f61398bf237dcb6bb9ae499862dd484febecf6d1a2e469f58dda976a4c85a5cad076136993e1ca7b6ea91d84310e1f7acc8b04862ded899ffbb3175e8b132f18687fb25bd3921dd75234100e868b4b106c460a93bd263e610a2483415c63b88259dcb5976c9dca5d808ffb93f9b611352e5af0247ad0b331bab313a46bc41b714cfca5a15505bfec35528d51517c4f9b61dc3df89e6765b0df8b70176e9a0700c61dc560d8170d85ad4e23d61f1ebda89085ceb5f38310a46639d75eec158915588a16712c333d506c23276f4ce97f12fee8b8079b333cff153dcebbce6bf77d4f6dcd5ab1b7b1a1e2f6d4d5e3ef92a26d265745671ef178c8e6db05168a0e81e246c7554cc5b45c651ab0839c93f966c744f827127652e6ad9267e2efaa20f3a17f6a98684d72a65cb9be0091b3ef42080491f69012b99210880ea198d5454929093c650b27e0b3b95e123e1ed4e7578c70f36d6a8b995df9098baf61f696443ced9cff8dd828ec76f8bd28e538d226ba8c348c92ad452557f919c536abcd56f88961793c3984e84cff8750de6f92826c2b1736fdda8812e494536bad33b1979721c85180b894340cd7bc50025f39117561457d0f54ede21a43a71e702e5cb591abb84459265a39c0f342f67359d468b72ccd0e4ca495367a3595b5e9e11f2d2d9fc83041469bcbbc1945e16e6071f864a7064024e0481be517cf54f9c3d4b901556225314a2f5fee2fb73e998eecd811035f5c9b6f9e987add0767cef9220fa581f6999ba39cb2325c02824d38e9c80ef95991ab96a6701b6da8fb78b1904e2cdd71d01a2dad0f311a2e1319b7a11ee482d2c21e98baec721305dc0390f5de6a242f17eb35f7520b42a2ed8daa46813132be3ee4f7cdb5c60e6309ad8a02a29ccdf6c76d5c28b3cf757e4ad355269ae2fd0f8e67c6d8809c645d12640e88fb021f86ebc81bb1db47f5a2d9f7f8431edda1b58677be199e59901918b4bbe192ed2af8b11bdab26e7215d7a0d581638b1081d032140c5715edd498adba8fca21655ccd23140c91cb890786e631397d810a6b986698a6f67b562c30b37b766137152a08de573165f66a09eeef72b76b653ed00a55a841ef9698c58da45422a4446227748c90d8c00abca14c53514e0b21f85d8891ccd8a3b1f00017d1ed44b53936db530a495c388966f0428ceb0a54fd748423d8ef0ca676f50d1f449d28388364abd71f88d2f51f072297a26ffcf6bd22634c418d3d1ba4e572249297ad9de7009bcb278b569d2a6f850ff4bd9dcc0aa72ec486da27ef393bdd161620199e4fa41e621bb5477992deaea37be74b65156bf58cf0766178aae4d2a504cf8d3c7f0b79a1435e9faa909717b8fe5186e19c1f22b78b5f60000a688bdb0d4ca3d85c1572fb0c6b99f4a4147524771c4d12364c7d92cbfd9d1e755fdc73331ae2d014a3d3bc191e2cda0352127c3313b587d6995aa7183344147f3a11285e1ecf6dfc10f614637c037bb08adbbb01fd298b5b703036c130260f3b4052573635707c38c1c08ec9d868a45fca35e186315f3c1ae13c1b78ea91781ea136443c4fc0c35553d6a955231e6b94a5ad4cb8d389004986c408728f266b6ffc0e8a669b920c9b3e19fce8e529ef4e00e7f571ca8175abe15a2c76be32c7b998188087a64debf9e818fedeb3883621536af030cec13783d276e180b47034eca6e38aa60bdc29d03a9b0d78256db483ec87c032ae160e6db1cab8863a2c55719ffa20668853287e6915ea24e88714cf7fe6d6ae62723dba5a250162d34419900972878885a5491456d3685be6af78666a02b56a2c5d00aeb6585934d738cb33936b2b30eef5477501920cc2f2e5b2869511b2fee0825a7d7de029296fd419698422887691c84bf1b83d534acdc2f19842c738886fb2f286a459272670cee3fa8cfbe95dfd93965144e91a73aa5088e2278f26b6f3ba2502265d2c529613b504593252a0db78ce6371fb51984b503128114962dbb5a7b304f8c7abc9c089dadf4e18b9e2b67fbaac87356475d3f6bb2ea9daa46c92fa4b607d0bf1edea59fe2c2e73ae8e5807459c2faa966952a98f3b0f3e86faa3029a4c3386dc9ab5411299f6111958e04cfe0f097df143dcd856c4f6afefde03555ed0ac2e9cc44bd8c150ad95fdf6c701c2e1d8bc40b7a94cd7f73facee6ed4eabab40ae3c3dfbd5e595d390f0785f768dd0c27579bb7d381c8624a4c6a7cb6d0916797b81e6b23f2ef1b12701effa1b8de6fef79ed95c264782ddea899a5c3a3ff986f4b0851e8ec375175b6fb536b40c7955a607245534ad2360d082efc12846930acec014db7becfc2f44fed448560b736f93ac1a95512c33fdf15344fc966d43f93a7bc82be5a8b727a687f984c31df74c48790833164e8a515309eea41f3999be8a2ad4f074b145c65ed17f32c564f9e372660150c56eea3d97b2c82185851cc60371d2590be198c4a99a5228caf9dd866306fc2c4a48f1281eb83e3d956f7df6936f3b075a491eedc7736952bee4e47e8ab0c504c82fa15ba9dc5cbb8ff859458ba3df427de387edbc953f94bfebbf450175be84d72e246e4f942b59c06d68fd6e0ddd6e428f3685c6bb2f2d0df4efb7c81dd06f337c26e01e81e8172df723895f0dbc0d9dcf582a065311f4a0cb8556bd8a6ee006052a2532b2127b06cee7dedb3944a7e1f7e65a139391df15afa6bc2b8aef4336a4564d3a74dcdc6e0de35162264317d6e7b4762688bc51814588c7ce7f28a44b0f3ce3ab3f1ef4b3eb884ceebae0152155f74a1fe8d9c7dd845de840315579f902e3beb8ba30bae525876fb6378f729c15a47d62b1b07fae7bbc2c7b2d06876c2e62bd5ac755ac940b4969f11f9304b9f84de2b3ace396294027e14ceacc6a631d33ac980e3c98f764ecb53da99f7aa4aae2988682c1ed2fd9bb43eee24909eb61947bc62c3f7fbe54bef7b2db210295f0bd858fe5222029a15df0cc823baae3bede9174b49b5482faffb29184629dfb4876f04fedfe68334c14bf5d5a7850db1d3342e8ed4060904c1c3382eb7634d5abe8bb25bb019908e7816d4896b68cc4781c9b20bb6efed83c19224e024d1e7228557d4f2a6ef86a550cdae04b72795f69c59f0fc0d4f6817acc7d78538db767c02688535065d2f12d312e44031024b244b6d7dd0fba020e709f1ca8650cd166f52228bd9d0296b658851b0bd0dce0aec01395c0a7be56ece264f6a83348fc3013560945545c18ba9b4781d30942b953445990eca25102dfc2fea21c11eb312bb8d3828e173101fdf1485f2b4f0a54e98ee88a4b5ea457723cafcec5b14b54eb74363e1628450a799beb120ebef76b5b9728dc4dbe12b78f9797e160078995f4029c9604ee174a4967698a6366893abd9c9410dcaca97e608c8190532cacf63452faffe82882004c5f911da941604d52fa0a285f4104d1f671d4ff6b25f4f91bfafde3564fe86cf3c7e3e1302e71709a9918740f37418cef8dee5be89c591038b783cbf221b585b216d189f7e74393bc81e5693a65db6c91e8fc1c6788aaf21ca8aeda7b6ededfb1b53cbaa797a84385bd326c9d8a7970a499a9e7415ee8a3d853464a1e8d094f9c65ba3365d0e783fb7d06f13"}) (async) prlimit64(0x0, 0xe, &(0x7f0000000280), 0x0) (async, rerun: 64) sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0xffffffffffff0162) (async, rerun: 64) r8 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r8, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r8, 0x400455c8, 0x4) 10:01:03 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffff, 0x2}, 0x6) r1 = dup2(r0, r0) write(r1, &(0x7f0000000280)='#\x00\x00\x00', 0x4) [ 1485.653886] ? ioctl_preallocate+0x1a0/0x1a0 [ 1485.658291] ? __fget+0x2df/0x460 [ 1485.661737] ? do_vfs_ioctl+0xff0/0xff0 [ 1485.665706] ? security_file_ioctl+0x83/0xb0 [ 1485.670116] SyS_ioctl+0x7f/0xb0 [ 1485.673480] ? do_vfs_ioctl+0xff0/0xff0 [ 1485.677452] do_syscall_64+0x1d5/0x640 [ 1485.681342] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1485.686527] RIP: 0033:0x7fa331314fe9 [ 1485.690230] RSP: 002b:00007fa32fc8a168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1485.697936] RAX: ffffffffffffffda RBX: 00007fa331427f60 RCX: 00007fa331314fe9 10:01:03 executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000280), 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0xffffffffffff0162) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r1, 0x400455c8, 0x4) ioctl$TIOCSETD(r1, 0x5412, &(0x7f0000000000)=0x33) ioctl$KDADDIO(r1, 0x400455c8, 0x223) openat$incfs(0xffffffffffffff9c, &(0x7f0000000000)='.pending_reads\x00', 0x7a6f9b740f420bb3, 0x4f) [ 1485.705202] RDX: 0000000000000000 RSI: 00000000400455c8 RDI: 0000000000000003 [ 1485.712468] RBP: 00007fa32fc8a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1485.719737] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1485.727006] R13: 00007ffe09471b3f R14: 00007fa32fc8a300 R15: 0000000000022000 10:01:03 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffff, 0x2}, 0x6) (async) r1 = dup2(r0, r0) write(r1, &(0x7f0000000280)='#\x00\x00\x00', 0x4) [ 1485.834786] Bluetooth: Unknown HCI packet type 5e [ 1485.841555] Bluetooth: Unknown HCI packet type 43 [ 1485.862197] Bluetooth: Unknown HCI packet type 5e [ 1485.880635] Bluetooth: Unknown HCI packet type 5e [ 1485.891114] Bluetooth: Unknown HCI packet type 43 [ 1485.899880] Bluetooth: Unknown HCI packet type 50 [ 1485.905608] Bluetooth: Unknown HCI packet type 5e [ 1485.905817] Bluetooth: Unknown HCI packet type 5e [ 1485.926850] Bluetooth: Unknown HCI packet type 50 [ 1485.932140] Bluetooth: Unknown HCI packet type 5e [ 1485.937137] Bluetooth: Unknown HCI packet type 40 [ 1485.937237] Bluetooth: Unknown HCI packet type 40 [ 1485.947868] Bluetooth: received HCILL_WAKE_UP_ACK in state 2 [ 1487.568126] Bluetooth: hci6 command 0x1003 tx timeout [ 1487.574061] Bluetooth: hci6 sending frame failed (-49) [ 1487.808224] Bluetooth: hci9 command 0x1003 tx timeout [ 1487.813461] Bluetooth: hci8 command 0x1003 tx timeout [ 1487.813514] Bluetooth: hci9 sending frame failed (-49) [ 1487.826172] Bluetooth: hci8 sending frame failed (-49) [ 1487.888163] Bluetooth: hci10 command 0x1003 tx timeout [ 1487.888182] Bluetooth: hci7 command 0x1003 tx timeout [ 1487.896411] Bluetooth: hci10 sending frame failed (-49) [ 1487.899058] Bluetooth: hci7 sending frame failed (-49) [ 1489.648103] Bluetooth: hci6 command 0x1001 tx timeout [ 1489.653474] Bluetooth: hci6 sending frame failed (-49) [ 1489.888192] Bluetooth: hci8 command 0x1001 tx timeout [ 1489.893417] Bluetooth: hci9 command 0x1001 tx timeout [ 1489.893497] Bluetooth: hci8 sending frame failed (-49) [ 1489.906001] Bluetooth: hci9 sending frame failed (-49) [ 1489.968072] Bluetooth: hci7 command 0x1001 tx timeout [ 1489.968089] Bluetooth: hci10 command 0x1001 tx timeout [ 1489.976261] Bluetooth: hci7 sending frame failed (-49) [ 1489.978898] Bluetooth: hci10 sending frame failed (-49) [ 1491.728039] Bluetooth: hci6 command 0x1009 tx timeout [ 1491.972553] Bluetooth: hci9 command 0x1009 tx timeout [ 1491.978122] Bluetooth: hci8 command 0x1009 tx timeout [ 1492.047967] Bluetooth: hci10 command 0x1009 tx timeout [ 1492.048002] Bluetooth: hci7 command 0x1009 tx timeout 10:01:13 executing program 3: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x0) (fail_nth: 56) 10:01:13 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) r1 = socket(0x10, 0x803, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f00000000c0)={@rand_addr=' \x01\x00', 0x800, 0x0, 0x1, 0x1}, 0x20) r2 = socket$inet6(0xa, 0x3, 0x6) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r2, 0x29, 0x20, &(0x7f0000000000)={@mcast1, 0x0, 0x0, 0x2, 0x1, 0x1f, 0x0, 0x400000000}, 0x20) r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000004c0)='net/ip_vs_stats\x00') ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(r3, 0xc0c89425, &(0x7f0000000780)={"02d47cbcc70d73f63265f0ace7539e4b", 0x0, 0x0, {0x4}, {0x0, 0x7}, 0x0, [0x1, 0x0, 0x3, 0x7, 0x1c6e98ca, 0x3, 0x400, 0x9, 0x8, 0x7, 0x8, 0xffffffffffffff52, 0x5a43, 0x2, 0x10001]}) ioctl$BTRFS_IOC_SNAP_CREATE_V2(r3, 0x50009417, &(0x7f0000001800)={{}, r4, 0x8, @inherit={0x58, &(0x7f0000000500)={0x1, 0x2, 0x20, 0x3, {0x4, 0x0, 0x1, 0x7, 0x7}, [0x1, 0x80000001]}}, @devid}) sendfile(r2, r3, &(0x7f0000000240)=0x208, 0x9) r5 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000001700), 0xffffffffffffffff) sendmsg$NLBL_UNLABEL_C_STATICADD(r3, &(0x7f00000017c0)={&(0x7f00000016c0)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000001780)={&(0x7f0000000cc0)=ANY=[@ANYRESDEC, @ANYRES16=r5, @ANYBLOB="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", @ANYRESOCT], 0x1c}, 0x1, 0x0, 0x0, 0x8}, 0x20008004) sendmsg$NLBL_UNLABEL_C_LIST(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000200)={&(0x7f0000000f00)=ANY=[@ANYRES32, @ANYRES16=r5, @ANYBLOB="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", @ANYRESHEX], 0x100}, 0x1, 0x0, 0x0, 0x8000}, 0x1) ioctl$BTRFS_IOC_TREE_SEARCH_V2(r0, 0xc0709411, &(0x7f0000000300)={{0x0, 0x73, 0x879, 0x2, 0x0, 0x9, 0x6, 0x1, 0x401, 0x0, 0x1, 0x8c, 0xffff, 0x5}, 0x20, [0x0, 0x0, 0x0, 0x0]}) sendmsg$BATADV_CMD_GET_MESH(r1, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0}}, 0x0) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0x2, 0x4}, 0x6) r6 = syz_open_dev$vcsa(&(0x7f0000000000), 0x3, 0x161020) sendmsg$NL80211_CMD_JOIN_IBSS(r6, &(0x7f0000000240)={&(0x7f0000000080), 0xc, &(0x7f00000000c0)={&(0x7f0000000140)={0xdc, 0x0, 0x800, 0x70bd2c, 0x25dfdbfb, {{}, {@void, @void}}, [@NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_HIDDEN_SSID={0x9, 0x7e, @random="688154bcda"}, @NL80211_ATTR_KEYS={0x4}, @NL80211_ATTR_IE={0x41, 0x2a, [@rann={0x7e, 0x15, {{0x1, 0x58}, 0x9, 0x1, @device_a, 0x7, 0x5e, 0xfffff800}}, @challenge={0x10, 0x1, 0x21}, @mesh_id={0x72, 0x6}, @ext_channel_switch={0x3c, 0x4, {0x1, 0x1, 0x7c, 0x9}}, @mic={0x8c, 0x10, {0x4a2, "4489a82a7f18", @short="edfc9a17fae84475"}}, @challenge={0x10, 0x1, 0x61}]}, @NL80211_ATTR_FREQ_FIXED={0x4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x3}, @NL80211_ATTR_HT_CAPABILITY={0x1e, 0x1f, {0x1000, 0x2, 0x4, 0x0, {0x1f, 0x7, 0x0, 0x1, 0x0, 0x1, 0x1, 0x2}, 0x800, 0x1, 0xd9}}, @NL80211_ATTR_HT_CAPABILITY_MASK={0x1e, 0x94, {0x10, 0x2, 0x2, 0x0, {0x7, 0x9, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1}, 0x6, 0xffffffff, 0x9}}, @NL80211_ATTR_HT_CAPABILITY_MASK={0x1e, 0x94, {0x20, 0x1, 0x6, 0x0, {0x4, 0xbd, 0x0, 0x4}, 0x800, 0x5, 0x7}}]}, 0xdc}, 0x1, 0x0, 0x0, 0x40080}, 0x4001) r7 = dup2(r0, r0) write(r7, &(0x7f0000000280)='#\x00\x00\x00', 0x4) 10:01:13 executing program 0: prlimit64(0x0, 0x0, 0x0, 0x0) sched_setattr(0x0, 0x0, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x0) (fail_nth: 46) 10:01:13 executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000280), 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0xffffffffffff0162) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r1, 0x400455c8, 0x4) ioctl$TIOCSETD(r1, 0x5412, &(0x7f0000000000)=0x33) ioctl$KDADDIO(r1, 0x400455c8, 0x223) 10:01:13 executing program 4: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0) (async) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) bind$inet(0xffffffffffffffff, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) (async) setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe1}]}, 0x10) (async) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) (async) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x21, &(0x7f0000000600)=0xda9, 0x4) (async) sendto$inet(0xffffffffffffffff, &(0x7f0000000640)="febc3b777d549ffacdd9ee6633af6e737f2e6d654105f04716908ec7af8775d530c2cc83e31b3f3c7f9e351ba553af429ff9367031b7ec0aed61ea15d08f299f9241acf82356d0859eb45aec582cd03d4cdbdcd6755c166133d9ba85529c0ed8913418402ba7d907115e75", 0x6b, 0x4000081, 0x0, 0x0) sendto$inet(0xffffffffffffffff, &(0x7f00000012c0)="e1158a927f1f6588b927481241ba7860f46ef65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a97425a3a07e758044ab0ea6f7ae55d88fecf9221a750fbf746bec66ba", 0xfe6a, 0xe, 0x0, 0xfffffffffffffe2b) (async) r1 = syz_open_procfs$userns(0xffffffffffffffff, &(0x7f00000053c0)) ioctl$DRM_IOCTL_SYNCOBJ_HANDLE_TO_FD_FD(0xffffffffffffffff, 0xc01064c1, &(0x7f0000005400)={0x0, 0x0, 0xffffffffffffffff}) r3 = accept4$netrom(0xffffffffffffffff, 0x0, &(0x7f0000005440), 0x80000) r4 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000005480), 0x24000, 0x0) (async) r5 = openat$dsp(0xffffffffffffff9c, &(0x7f00000054c0), 0x335103, 0x0) r6 = socket$inet6_icmp(0xa, 0x2, 0x3a) r7 = accept4$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @empty}, &(0x7f0000000080)=0x10, 0x80800) sendto$inet(r7, &(0x7f0000000000)="667b84d9db7c2e5284dbd4a85a40d527d202045e6eb75abaaf474308707bd3d6985c0001757c82", 0x27, 0x4008800, &(0x7f0000000180)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x25}}, 0x10) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000005680)=[{{&(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000000400)=[{&(0x7f00000002c0)="79acd0506447ee086deea93d1d7cf3e238daac58fb168e1e2073091e9faa1b677ec536a94be43933cdfe29fded47655161c2bbe153b888962404a08cd939477808f8f522ed08c9b5a565ef42dee2f62ada576930551a877e678eebd9d18fb2fc2197c1c200cbe4e1f1db6e0fd7455ddc50f0ce070ea18c30a266353bec0612aa8bf6811597fbaa0dad93f4b26324732496371391535bd369232d1331504f501f25549413b36f43aa291abbc36743e4948bcb985dddcf7cb854e8fa7024f4495314bf33854246dc51ef586b81f1b01d1cc505655a4ed3713a10c9fd77af465a8826", 0xe1}, {&(0x7f0000000000)="fe7b37d499eedb9bb0be7caa6609391b177ca0e6a73a75d502b70378a79defd437", 0x21}, {&(0x7f0000000100)="da7cb9db350fd8419c581e56429065", 0xf}, {&(0x7f00000001c0)="28b3c2ce5de4258e07f12b7f0c13adfd5be41d729a1397ee12ccc10a1cc2c3f3ecb891c4dbb0ce7ff212561d97fecca6ccac57bc66cd3ad8c13f626207620d854ca05de3418e6110ec7c8978517acee96e25f106366851cb608581806c86aa4a1d85400bb28a28d302c8ca9a9e34fe6e78921d9a97762f382b4f9f3e", 0x7c}, {&(0x7f0000000240)="5ebe98d183bcce955e90d98206", 0xd}, {&(0x7f00000003c0)="0b8145ab408b6b19ed2ce1aaaeafff2462927a473f9065a01d1edcd021f07d601472aebf0d93dfc7d8e60bd727e804675cd11c28ffcae3", 0x37}], 0x6, &(0x7f00000014c0)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0xee01, @ANYRES32=0x0, @ANYBLOB="0000000028000000000000000100000001000000", @ANYRES32=r0, @ANYRES32=r0, @ANYRES32=r0, @ANYRES32=r0, @ANYRES32=r2, @ANYRES32, @ANYBLOB="18000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYBLOB="1c0000000000000001000000020000001898266d424b6bbdc42e1cbcfa6b283169cd64b01db651456098fafd0dcee514164d18c70801a6b81b33efabb213fbebe161ee54fffc4022737eb6bf7fdc8a96e13c3c43b035ab45fc2d5d3bb367412e9227c27e30dbff73b8c9d9def2d6a9d8469e509a3fa3af4def739b", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0xee01, @ANYRES32, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32, @ANYRES32=0x0, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000038000000000000000100000001000000", @ANYRES32=r0, @ANYRES32=r0, @ANYRES32=r0, @ANYRES32, @ANYRES32=r0, @ANYRES32=r0, @ANYRES32, @ANYRES32=r0, @ANYRES32=r0, @ANYRES32=r0], 0x138, 0x40}}, {{&(0x7f00000008c0)=@abs={0x1, 0x0, 0x4e23}, 0x6e, &(0x7f0000000a40)=[{&(0x7f0000000940)="98c6923efc40360beb7e42fa74834173feb84371f1b71a86f21da2d049032437c985bb794d3b988cd80cfc3dfff838b4252496c2a822", 0x36}, {&(0x7f0000000980)="24b09c8024a1255feec656481967af87f248e0a209f9be73f34e43fdfaffc92b7acc60d45888a06b119517dd0948deb6db6eb2a8ede578d9c2e37bb2cfcff9f8808d725c96df1cc74d6b1e6c9a16d26ff7cfcf", 0x53}, {&(0x7f0000000a00)="aabf895313acf3ea4a60a53d", 0xc}], 0x3, &(0x7f0000000a80)=[@rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}], 0x18, 0x2c000050}}, {{&(0x7f0000000ac0)=@abs={0x1, 0x0, 0x4e24}, 0x6e, &(0x7f0000000f40)=[{&(0x7f0000000b40)="211cef329a004f72d528e55b4a6463a3176ee6981dd1da2d914812bba8bbb1f03caf400991ec60245d58a51186a425cd44849745215b262bdb21ff1612d2f6ac386a03f147107bf6cc65ba4a2a09a6a461492ab0ac2ef17078446f84e6be2b5be92ed357a746806a5fa260257b29b267b0e738d0ae01d0fc3f335c50625ec24cc45b3c3f0db8e492d27647fc378fb5ad312fd358b09202fd36f23e896dadf49c573c9cf152e9d5c2e12399f9a605baf70a7eb194", 0xb4}, {&(0x7f0000000c00)="19", 0x1}, {&(0x7f0000000c40)="faa59ecb3cf2a51f4e1e7757cf62fca2803a96dc6ea37f3bdf4eb8356d0bb5ed69e9df057d8da3170b9e2d0915e9df9c1c38", 0x32}, {&(0x7f0000000c80)="8d66a55bfe823a00f534f4d0b2805c05a3263c91197a7b940f79ed0678ef03f54ba4b101dcb587aee18e95e3e8692ea8ce0c3b38a9d8d962f9ab00dbe575ee9cf3b9e479f8944f2ff9655c5115df286ffc079ec36f07d7c5d8dba6a11ee7e30ee2bdbd9103e23b6767ec346b4d04430f7e178ff118f087f20af58a302ff35e54b52923f1d9d8911aad5755e8fc6a24ce2446ce7774ed8bf6", 0x98}, {&(0x7f0000000d40)="cf8ab331ce13c67ad428cd08c0db6419db62aa89af02ca74d64582334fb6bf1e44078f9788bb854e7b291e69bb66c76c7bef1ab380afef68596b0e210359208b0a4a8770b6c4c8f8005e5a5c03ddebfc3623f4cff7401a04d638cc9c4f9eeadfcc73efff52ba3c381d726af0e5f11912747e7c2327a322a42bcf56d17179218a576567ab1337b99da5b13b776464374b773ee5f8b32d2954502907556ba06414", 0xa0}, {&(0x7f0000000e00)="688da851fa4338ff34e90631bfc924", 0xf}, {&(0x7f0000000e40)="d25bc44f52f0220ad81bea67a8029071b1ab7bbdf9f6a934ffebc93d73d49c052bd1f05892525510904c477ed0b0a85b7e65b0acc3f31e183a1db033ece1e49b04f532b5de3afdee735368dc8d21376953bb8befd29b186618cf4cb2a28160693916b7c1e4a4c4d52595af43e4094eeaf92d7a210437f2ac942544040233ea80b78fddf6c2a988c85ec6ece8a4a2816468e8bf165b3b0b6036b570ed690cd43412000806b943ed2e7925e733c5d8a100261372b4693ac9d241dd744d79678b568e572e8a06482dd2088b13b97a39732da654b7d0", 0xd4}], 0x7, &(0x7f0000001080)=[@cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff, 0xee01}}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0x0, 0xee00}}}, @cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff, 0x0, 0xee01}}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0xee01}}}, @cred={{0x1c}}], 0xa0, 0x20044004}}, {{&(0x7f0000001140)=@abs={0x0, 0x0, 0x4e23}, 0x6e, &(0x7f0000001440)=[{&(0x7f00000011c0)="b43d57a8ab98ee2500b19ab6d2bfb6f1ede246d9ffa758bdbaa12907d1e3238855346e9b7335e39b04d6f0f0", 0x2c}, {&(0x7f0000001200)="b4b864dde103ea5388f80a84c0d7e93c9201a40b1fd57b900f63d3a8b4b89b28a552f08dcb0b69d7c2bcf2eaaed040a265c5c5ba5b7ce84c0984a5e9ba097d8ab91925a832e4eeed859150a505a266df2140ee604b38beee7763f3ba630f1a97f77cb46debdcc5ee898a547714d0e23b8ec77ecab90bb6cc3fcf313015688ad5793c0456b77ca46f7b7e", 0x8a}, {&(0x7f00000012c0)="8ca15f8939a942e6ae36bb577a506a7741dc3ad10a6e5771e8cc8fa9", 0x1c}, {&(0x7f0000001300)="d8aec1aac50b9b28928c4193d271e9fc56a4a9f0b0fe551a51b9482f28714b6fe3b0de88034e78e23b7a7a2fe3f6da2905b3eea235398336368ebba51f36d1c86f0e", 0x42}, {&(0x7f0000001380)="c2b15beef3300fdd23f08ad4a84334b4edee8f4cb311b3f6e49551775e96d8d1d7f27e03a5815ecdfc5ab7569da2b53c42f844f8b546dc1c9dd547efbbe1ea49729c9b4cb2e073218a764ba0f2ab5b289dabf7d0c61f324d1263eda429582915aeb67f29d0723048abf574836de1a0b58697b7a8ec2473773c983efd47fac32f4fbfde4b69560dacbf", 0x89}], 0x5, &(0x7f0000003d00)=[@cred={{0x1c}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, r0, 0xffffffffffffffff]}}, @rights={{0x18, 0x1, 0x1, [r0, 0xffffffffffffffff]}}, @rights={{0x20, 0x1, 0x1, [r0, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0x0, 0xee00}}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r0, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0xe0, 0x20000000}}, {{0x0, 0x0, &(0x7f0000005280)=[{&(0x7f0000003e00)="0911407dc307702d7dd88d6ab24ad4b07ac4e5b537a76c6d7c55a53f5ecec4489b74ca17f6aeb69fb045b183a350c5f015181f3859d5dc542e67739b10a929f70aaa8db206208e3c8dcf4b25e4f2f10905df525811e70edcaf0517fcb51641867faf5cc5f3c6d877827845292da4079342a7f2117dd84dae37e1e22bc75e80216b710d49e6c1a0c5bc7c6374abcf42b524cec446650e10b1", 0x98}, {&(0x7f0000003ec0)="4562b4deed6023a5442f6fe578174d1a705a282eafb5fa09518a3cb6324c5061755feba340f2a02031a94e62f7dbcf6214ae92408d586afe842ae0edf702e6555fe2c6c8ad65cc030d3355784b7fa5c321685076a9d5517d289891b6a9f40499c61c877440d5bda9585c4aebff41b9ce9a0ea26d0e202e4b70240ffff97b422c67edad2fb6fd7402686907df4cd07c4ef51d3b9fed8ba0e3a0ff3076f776d9cb4272a1aaad754f6a3ff7f4aa9a4a41e21f857d27e14bfd694bbbb9799a3f4743e2ec88a7d37590658d6684d0ade8ffd7a535ed44ec9f7c8c8559300b965aaca03abb94002a488290d0ba715ecb37ee633b49e5915eb88ed5e98694df12b93f9d5fb1e3648f2ddfd6071ebb6fb81d9827ac7f451777c911c930e34d4ca46903708f8bff25b109e441d7127e89beeebc0cc7f8f0811b0cfd3b804759ce531d2dd19cc9ae4968dcabf3de84a26121bca2caf3c3614d4f4fceaa3cf8046d2bd7c1a08d189c6d622ff2a5a510f52f83ad1dbda63a3cdb358340d21615a823f474c28da649df58b87160ba8a6d3d5637a348b4df0f9a4738631585658b06f20c1292283838e347dd4a241bc1277b1b8d3fa857f03a221a3c029a15f4a4afe34fd93099d833971531f38b7a2d522be6f672cdb1f62cc03921985a469d35d2f14c028d3f3674fa36df616a9383340fcfbcdb0b2f448b8084164368bbe9a696c68c33ab8973e473dd9b094541dc0a14d16de105648152a3ed6a6e7f37e7ee2d981fbe3495dcc2c1cb972725d7bdf6bbc5ce1cae2c9e3493926758fcf5beaf602cc19fd1e7d4257811ed8c19462142e81e8bd080a17d6c0b636e37a1f159ec94536d5c31e72ca8a14fad73f512daacdd7d8479f131fab6464b225c394330e1c6287bd40f921d91dd7dced5a3727c6478a0fec3d6d73c398a6cb1236fe4e46a5b35581ef8a896a5d847ac056722b8bb035171b1d6b39088ae8d1d2fc74db453de250f92d96f7378ae63eff9abf3713f90ae2509a7cba77ba0a5355f3ffc9f3d512461389f349fa45c7636959ac3afa4141fc2c951835d7214e7c280450a92b4ab064595a74da2e5352efa65aea7b3de503110cd15ca0ff00c5428987390fc9583af10b425e7500af97762fad40d9e6cbeda811f96dacaca07ad6a13b4ab30ed02521f7bbde9e73235bddbeae8ccb0300e2c64af020c30b9b6d7c97c6203ccb622fbd8ca6ee05360d09b914d0da80f145c4d710584de6771bf1918be3d25f627f881e688e981bcf9dbf754079e1056ae6b851638e0d78b0d13f889cb1124b9d533ccbd2c9573a1eb83f2495c164d6886cb7cf2fae8eb6cf7f227977bb0a41abd282f29325163cb2cf510bc0fd56c5da98361d22c4f7fa9b054e4e630ccc2091a638523e8974e1586d359179619c96add9389c8aaed7f4439eb94da4b1bff4fb697213154f189bc40b9f232e69c07320ecf3846eeed9788c5ff7131947ba24c62c2a00a4167edfea6063d48b413a0e3277c7a22de661b1410431b0fbd417142705e0bdc0e5fcc4fc500e60fd5a738e03fbcbe2e2aaa017468b64b0143a6d27347f69a5f0f3976f1a39752e00ebd3f0de1878fdcdd2fef32f74d3b0a1085f5963cad7b0ca59a61a0283c57413d96fa1bb2ecc69e95b487b64f8b435050fd5cc0b6db2c24e71fb4fc031e0185a3123366a2f4be9d3ece12dfad4ff12aea4d6f3afdda39d823e214930d46a09a8c8e8a50f83aada81b644c1a1178186df553054e24d2ff35e2bf6c11872d22ba89a2482682ba6149fabfd4889ff3847c877bfe34c513eba7c05283251c819899426ed3ba520809d2080782126acdd622f934505b1033dfca1f5e61103628ef6bdd88ece1dd11e7aab20d0f689f4c3c9c87b1b2dd344cddb3c11206c070877ab1a980f116579021d42e92bc3e64adc36754df3aec8b460254d5784de6aa97b1b1afeb59b1c378066874da4867fdf8bfeb539fb9d59191984402c57ffa2b6eb035df1e246255172e9ba280652ba8d6a76bf5e9c6e71d040c415c7f9cbaeb0d662e391dad8dcfe23fdb27f3506eb3dbe77ee8a6dee9889dcc890b1e2273b048e03f38925d84964b4b3e5d02498653275e5fd8b184b1487a2035929c2045f609cc1f0b06a9b4baa9e83716b94a792580b7edccad5c1d5a4f788edf6e60bf0b923ce093d5e485004105e68facbe7b1844181349e68891e382313b246cd3af087b8ae6f76691f9de72060c1a9f0711641b0f20379f9206446334d0410123953cf863d2b6501b8f70be1487a041563fab0562c5cca9cfa7ad78c275c6b84efdf856dfa9035c1248bcc48df1416d0012e61cc8452c5238bb73648248d062d8ef6d3a4074fef382e1510bb376ab1ed9903d467e6d77506094c060f33cfa6ed02b2c8fe57c122dc906a4dc3237ec5df40570370faad40b90f4836a414f159de5f30606bbf63b28b4c070187aaab8fb5019c1eb53f1c52d289a311257f1d9bea271c2ab689cf5d2cd369e0f19b6e91a5370d139591d1c68c75f8fe6ced057cbb64e9727065a00ff14ff1219ecb65cf24e0d0efcbc262e030fe15f391a29c8a440ccc2b8dfa5a1d43681cb912a4ca07086e52720e88039fcb4b6cbdea8e9cb86b18f3f86d598c37fc514c1a6ac2f901589c389c075eb4db485e0a25c65d5da246673c0439ea533a06422b0b64aca7d48cbb9cbce78d9dd53b7227c9b8fad4fa37d373bd688a5ce193416cd5b0e3555dfca783ba9d7c725b0d1b72d2fbe7488b1de4918b7f728ee6867b824e23522cfb7ad34d8eff63a5c4c1a554da63007af39449e9c21e9be952dbc546d8ad3b52a5d05e2ecc6f10f96f5fd4551085c7d6f37f57c887221320fe9907eb15fadf9723eea4b4869165e86bcbaea3aab51753586d43f7e3868923bcaf59641cfc2f6c4a73a69297fa5ef01dee89d9cdea2f7d57e65fe56ee3cf5b98b88a62dab77772b112a93f42117b75726857ffbecc6bde9c1b57ceef440f386e2b16e5fb416bfa21500d710f774a1461f9d206339358c9df0d59555c5a108c031398521a842f581999f7eb7d957e88bbc3148a4e2f26f3651f7d33456b5703f6f4d959583a8a94d57b5e1524af6bf4560207979012b5037787506709f7c8d184040427542b65fb6dff1894f7a7dc3d1be101530e658fbdb1eb4a58ab899fa966e95d71adb987175b04b2abb65671511cee930b9efd2a318034c721d2c3aef0218d64f51047f089b48c833c306e09883707d51dea59ca768426916da2de6298c4fc35ec66de23dd32a8b45768de23c9eccbf7900831fd794a99b4070e476e117b59f59b517895af3269827eaaadf0122e225b9b9859d5135ce83ed3f5cbd0c89245d248e14a2b0d83d3187b647115d5c4e4241552e846d8a596498ff165174a15a1eaf3950f0917eebfee39112eccf0cd01399be3bd10b9ac1656137967ff9bcc23efcd9cf2f93dfbd361ef41dd6ee6cf42519733d6c7330ffe7f46828e3b93f0b75e11f2631bb66c13bfec7e58ac9419d21e39edb1791831c53b2cdee1fb16436e1c0cc7bb1d643a6d780740391774e4d911172a989e715f2e78601430b362f45e4b68bc8252882e27b881cf4f460a0d4d0047e107908b97992e0ebbb2ece01ea28a23313c76c5f15764206d0684275a6a51105f675927717c827675f4c78695b212c03d3394935998c870661f30dd615faf1621294f892e9a2209a0cdcefeab360d619677f0f8f1f19cb5755ba44c9430f98cfe089d836ac7cafbf1ed94d2851e4841018244915c5c38d18a505525389f7bb8edc48c510e4ea55d2ce07a65a9477404436b3fd1dc5555a834e4dd61f424239e89f8d18549439241234115dd11e6385cd89fc0f8931d7f7ecddca29d9dd2bd91b54b2ceac3b5691c468ee4afb7b22438be1d0982a239b0a8b24d6ab6e957e86a2beeae7273b790cd62973d1e79be326951b53d63fcad43ad1f70250974fbe5db8b6185ca1f7e9eb2798820da1e1164546356f2fe8aa03e15b697e008d110058898b0ea38a14bb01faa0cbffb10b7dbfec9d68ea42c342838dcf755d47538bda1cd677514c820ca9b44151f625ad644cf6e11a2f415b1d65277aa5605f68043e7bb60fe752f936f3f93d7e47938ca2d505b21e5d02c1f2f33da25a7819e7cae50730f0b8f2b10533718f861d08f3e3add217373beca80cd4ffb2cf2a88804d30c6e187e8cca0b294b6415bd7fa7d67d04e8b506556851cf06b24926dab135fb9b352f78768edcad60d3d516b84f88c65290be631b9ab1fe8a4b037fa1b0e14e17f5ded6a5a9085d2a10b1e936eac915756d151c9a45d596d29ad18e0c60cb55763028e84d626bf3d63b4b1425b0c30de84e9717e1ddcf5b1d1b162c3aac2c4b4205ec6f24c3b5cd1d07b1ae3366ed1ccd43a61524961942f058c18194d421df06975857edd2a4a43c69805a4a22b0916a241fff934c70a289ea8a1f1cbf5b2e35c6fe9d3a9d43c09205549a64b870b385243226efdc93b3dc46280f4ed399da7cc7a449574cbe95953891ac4d33a13ceb9417925517e380c94659c5c3203e445bf6710ca248ec9a6e1dca1badee857679745f11708e56c09ea7185241b091536b1d8648612d235db0f4571babe909770d1d79b0c4c2b7ae27b1390a5f57bb31a4171d1f715a300f1b6ab56928e924f5917325b0a2fafea0821efe13ed6b0e67af7e3eaa65ede816ca23a0ae9ff299183e1601118b6ad1dab1a2dde8a1f86e54b3336b71eba746eb919bffc5d3fcd055096f1f6f016e745e8f6a6278978b5f5748bbf22888dc36d6b59795dffb53168b20cbd4cc548b2641b3ac9e99df36189c2cdba9ea0f11eb331c120b542d2e13bf818cb9fd17eadb697729f56d6b74be095c361e7ac82b9ca36dd906131ff6bf98a4535658658b64f7729c8e661175f1430a53092c6a75d28ed4de55cc20a964fda26da96512542f4f020863c0023e227d21da72d43103ed9654669b819b1bddf1ae8cf35674804c5727e6abe8ba289769fa0c2908ebe515eec7201309898d828863278acbd9f217800a386d6df12dcc3153b9e1b27aae244a1497cc6dcbb3d8134064849402c7bcfed9135a7b6fc5ee345d5d9e77a0680832be96b996282acec0e57196771c9d95c126a51ba186b53ae84ae835b51819bbae7f3143a95350a0d4b45dd88c7e6e7319719715a230c6a88ccb49a4122eb08efc7d0ec0c44a9243f0dab3f39bc7de7cf85e324e4600597965b57dfbeeb0dda7e86138d828d458817b4d025b3300e17e9d0c2f6a9af731c5c62ffcbb442b1a2fa160f2e6d898d2176b772a42ac68eb186c696eed727b8bc7aab4a10ad4026614b1546692c87872f1a7a1640152a0c4c7c9ec7c65da6524f65ac952d64a933325e19fc992e91c5b6582fe01ae7e20df75ef3520e5e629b7c1de8ed4242d14c69c759dc4540b4c869445b5a2cb6230d16eb2f12cea1e2e6d074320c6acf5b136157de3302ef664794ceb41d71e633a68062ff3e79108ede36c72d8029107d14c9cb12bdc1e449aabbacc6b7098d8b016ba3dbd6d45210461b84042e3083e7a66853d3d1245a594d9eed6a2cc6b3f7cf09b309f5ae762ccb8f707243635df331eba1e945e081232e0be72c4c4dd0d4d352c2742d3a16fb423afca273f2ae41f47c8242491ff55ee0dccf681f4c90fcf516be35e0f9cb61ea16e3437211451be442e348e64c31aa08f3b59276e9e22ceddcf9bdb59c40e4d268c4dedbfded97e3d782592e29f85d124bd9abe2fab4bd6082a987e2e2fb46f1dae6fd5f73e08f3f35e4", 0x1000}, {&(0x7f0000004ec0)="d069f9ea5744c2849468134159e8df18456497ef3c62028770c662e67c3298cbe753a0c5ea5c0141d2185fd9d4d548f18d92efbd346e76ad00a485056dd4016e12a96707bdf9a62de7b09e8dc96e9894a0f7266dd0e765d230386e450dec589db00e4ec74f8b4d7871af627655e40879da57b730e3c3431441b97753349c758e11f9d8b79ec88cabd426cd8dfd0c3bfff8ed76dd8f95afa89f516f8d3ab68967d04c054f85427ffcba942825149bb4", 0xaf}, {&(0x7f0000004f80)="c9", 0x1}, {&(0x7f0000004fc0)="03616e7b04e4dd8e21ed3d758629238e82abcec202b4c7c66ccaac37419e4f0c7135d5ef066c630d4a382a856cea1c94038f2efcaecca74550d8d86b7a6eaed976963d655f5b99b9b64f6b8867679158a2893a6f41c6fb7a9ab0d689257396a15570c5bbca5e56a0510ca0cd93b16a53a217b27c13de8543f9f6723aa20672808965eb", 0x83}, {&(0x7f0000005080)="f2d16e7783534847ec14895e8f0d9be3f8c0e35fd1ad2584efaa3ce9fe331a66e6a6b4d94868616bc82b141bf63d4f5a751fbbf98096dec2f95cf61cd38411b95589e7f8df22ec86e401352947e73ada527216861def30a0e51ef19c28e9ef98a0bacd1f49a2a823a3479f3d34a0bd1369108adc7816678a54b47303e460fc7cf8e5c00ffc909fb6d3d64ab6583e85b8edd33d98190905f69c67f1df9fffada49d0ca6ededdb4229cb9c5a4109a942c9e1904861336cbf698c9086b1d022", 0xbe}, {&(0x7f0000005140)="f1644536b94849d7cd250693327b1e", 0xf}, {&(0x7f0000005180)="82b1559f4aab046ae7a51fb1240ee2c6cc5adf7cdb060c8a389cb397c41c0c3d91f072365790465190af96549638b36df15484857bb1557a3d224c88f445d4b369bd742e2f454c8869edcf437f8fd16fb4c8ca987cc9b22fd1511274734ec6bffa3de0589ecdcbb284e15824cb8c0deba34c205cc91efb9ec834335ee68e9d7a758bcfdf20f45baf35cdcdeda8af54e1282f84f6ed998b4bd94dc776b907394f6e176f10780b0819d075a2e6caffc1ad3beac6", 0xb3}, {&(0x7f0000005240)="a12ce4b246d75260015f9a67b4c0837a16ea8b70d0", 0x15}], 0x9, &(0x7f0000005500)=[@cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff, 0xee00}}}, @rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, r0, r0, r0, r0, 0xffffffffffffffff, r0, 0xffffffffffffffff, r0]}}, @rights={{0x1c, 0x1, 0x1, [r0, r0, r0]}}, @cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff}}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r0, r0, r0]}}, @rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, r0, r0, r0, r1, 0xffffffffffffffff, r2, r0, r3]}}, @rights={{0x30, 0x1, 0x1, [r0, r4, 0xffffffffffffffff, r0, r5, r6, r7, r0]}}], 0x148, 0x8004}}], 0x5, 0x40081) (async) ioctl$KDADDIO(r0, 0x400455c8, 0x0) 10:01:14 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) r1 = socket(0x10, 0x803, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f00000000c0)={@rand_addr=' \x01\x00', 0x800, 0x0, 0x1, 0x1}, 0x20) r2 = socket$inet6(0xa, 0x3, 0x6) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r2, 0x29, 0x20, &(0x7f0000000000)={@mcast1, 0x0, 0x0, 0x2, 0x1, 0x1f, 0x0, 0x400000000}, 0x20) r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000004c0)='net/ip_vs_stats\x00') ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(r3, 0xc0c89425, &(0x7f0000000780)={"02d47cbcc70d73f63265f0ace7539e4b", 0x0, 0x0, {0x4}, {0x0, 0x7}, 0x0, [0x1, 0x0, 0x3, 0x7, 0x1c6e98ca, 0x3, 0x400, 0x9, 0x8, 0x7, 0x8, 0xffffffffffffff52, 0x5a43, 0x2, 0x10001]}) ioctl$BTRFS_IOC_SNAP_CREATE_V2(r3, 0x50009417, &(0x7f0000001800)={{}, r4, 0x8, @inherit={0x58, &(0x7f0000000500)={0x1, 0x2, 0x20, 0x3, {0x4, 0x0, 0x1, 0x7, 0x7}, [0x1, 0x80000001]}}, @devid}) sendfile(r2, r3, &(0x7f0000000240)=0x208, 0x9) r5 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000001700), 0xffffffffffffffff) sendmsg$NLBL_UNLABEL_C_STATICADD(r3, &(0x7f00000017c0)={&(0x7f00000016c0)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000001780)={&(0x7f0000000cc0)=ANY=[@ANYRESDEC, @ANYRES16=r5, @ANYBLOB="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", @ANYRESOCT], 0x1c}, 0x1, 0x0, 0x0, 0x8}, 0x20008004) sendmsg$NLBL_UNLABEL_C_LIST(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000200)={&(0x7f0000000f00)=ANY=[@ANYRES32, @ANYRES16=r5, @ANYBLOB="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", @ANYRESHEX], 0x100}, 0x1, 0x0, 0x0, 0x8000}, 0x1) ioctl$BTRFS_IOC_TREE_SEARCH_V2(r0, 0xc0709411, &(0x7f0000000300)={{0x0, 0x73, 0x879, 0x2, 0x0, 0x9, 0x6, 0x1, 0x401, 0x0, 0x1, 0x8c, 0xffff, 0x5}, 0x20, [0x0, 0x0, 0x0, 0x0]}) sendmsg$BATADV_CMD_GET_MESH(r1, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0}}, 0x0) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0x2, 0x4}, 0x6) r6 = syz_open_dev$vcsa(&(0x7f0000000000), 0x3, 0x161020) sendmsg$NL80211_CMD_JOIN_IBSS(r6, &(0x7f0000000240)={&(0x7f0000000080), 0xc, &(0x7f00000000c0)={&(0x7f0000000140)={0xdc, 0x0, 0x800, 0x70bd2c, 0x25dfdbfb, {{}, {@void, @void}}, [@NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_HIDDEN_SSID={0x9, 0x7e, @random="688154bcda"}, @NL80211_ATTR_KEYS={0x4}, @NL80211_ATTR_IE={0x41, 0x2a, [@rann={0x7e, 0x15, {{0x1, 0x58}, 0x9, 0x1, @device_a, 0x7, 0x5e, 0xfffff800}}, @challenge={0x10, 0x1, 0x21}, @mesh_id={0x72, 0x6}, @ext_channel_switch={0x3c, 0x4, {0x1, 0x1, 0x7c, 0x9}}, @mic={0x8c, 0x10, {0x4a2, "4489a82a7f18", @short="edfc9a17fae84475"}}, @challenge={0x10, 0x1, 0x61}]}, @NL80211_ATTR_FREQ_FIXED={0x4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x3}, @NL80211_ATTR_HT_CAPABILITY={0x1e, 0x1f, {0x1000, 0x2, 0x4, 0x0, {0x1f, 0x7, 0x0, 0x1, 0x0, 0x1, 0x1, 0x2}, 0x800, 0x1, 0xd9}}, @NL80211_ATTR_HT_CAPABILITY_MASK={0x1e, 0x94, {0x10, 0x2, 0x2, 0x0, {0x7, 0x9, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1}, 0x6, 0xffffffff, 0x9}}, @NL80211_ATTR_HT_CAPABILITY_MASK={0x1e, 0x94, {0x20, 0x1, 0x6, 0x0, {0x4, 0xbd, 0x0, 0x4}, 0x800, 0x5, 0x7}}]}, 0xdc}, 0x1, 0x0, 0x0, 0x40080}, 0x4001) r7 = dup2(r0, r0) write(r7, &(0x7f0000000280)='#\x00\x00\x00', 0x4) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async) socket(0x10, 0x803, 0x0) (async) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f00000000c0)={@rand_addr=' \x01\x00', 0x800, 0x0, 0x1, 0x1}, 0x20) (async) socket$inet6(0xa, 0x3, 0x6) (async) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r2, 0x29, 0x20, &(0x7f0000000000)={@mcast1, 0x0, 0x0, 0x2, 0x1, 0x1f, 0x0, 0x400000000}, 0x20) (async) syz_open_procfs(0xffffffffffffffff, &(0x7f00000004c0)='net/ip_vs_stats\x00') (async) ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(r3, 0xc0c89425, &(0x7f0000000780)={"02d47cbcc70d73f63265f0ace7539e4b", 0x0, 0x0, {0x4}, {0x0, 0x7}, 0x0, [0x1, 0x0, 0x3, 0x7, 0x1c6e98ca, 0x3, 0x400, 0x9, 0x8, 0x7, 0x8, 0xffffffffffffff52, 0x5a43, 0x2, 0x10001]}) (async) ioctl$BTRFS_IOC_SNAP_CREATE_V2(r3, 0x50009417, &(0x7f0000001800)={{}, r4, 0x8, @inherit={0x58, &(0x7f0000000500)={0x1, 0x2, 0x20, 0x3, {0x4, 0x0, 0x1, 0x7, 0x7}, [0x1, 0x80000001]}}, @devid}) (async) sendfile(r2, r3, &(0x7f0000000240)=0x208, 0x9) (async) syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000001700), 0xffffffffffffffff) (async) sendmsg$NLBL_UNLABEL_C_STATICADD(r3, &(0x7f00000017c0)={&(0x7f00000016c0)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000001780)={&(0x7f0000000cc0)=ANY=[@ANYRESDEC, @ANYRES16=r5, @ANYBLOB="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", @ANYRESOCT], 0x1c}, 0x1, 0x0, 0x0, 0x8}, 0x20008004) (async) sendmsg$NLBL_UNLABEL_C_LIST(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000200)={&(0x7f0000000f00)=ANY=[@ANYRES32, @ANYRES16=r5, @ANYBLOB="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", @ANYRESHEX], 0x100}, 0x1, 0x0, 0x0, 0x8000}, 0x1) (async) ioctl$BTRFS_IOC_TREE_SEARCH_V2(r0, 0xc0709411, &(0x7f0000000300)={{0x0, 0x73, 0x879, 0x2, 0x0, 0x9, 0x6, 0x1, 0x401, 0x0, 0x1, 0x8c, 0xffff, 0x5}, 0x20, [0x0, 0x0, 0x0, 0x0]}) (async) sendmsg$BATADV_CMD_GET_MESH(r1, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0}}, 0x0) (async) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) (async) bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0x2, 0x4}, 0x6) (async) syz_open_dev$vcsa(&(0x7f0000000000), 0x3, 0x161020) (async) sendmsg$NL80211_CMD_JOIN_IBSS(r6, &(0x7f0000000240)={&(0x7f0000000080), 0xc, &(0x7f00000000c0)={&(0x7f0000000140)={0xdc, 0x0, 0x800, 0x70bd2c, 0x25dfdbfb, {{}, {@void, @void}}, [@NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_HIDDEN_SSID={0x9, 0x7e, @random="688154bcda"}, @NL80211_ATTR_KEYS={0x4}, @NL80211_ATTR_IE={0x41, 0x2a, [@rann={0x7e, 0x15, {{0x1, 0x58}, 0x9, 0x1, @device_a, 0x7, 0x5e, 0xfffff800}}, @challenge={0x10, 0x1, 0x21}, @mesh_id={0x72, 0x6}, @ext_channel_switch={0x3c, 0x4, {0x1, 0x1, 0x7c, 0x9}}, @mic={0x8c, 0x10, {0x4a2, "4489a82a7f18", @short="edfc9a17fae84475"}}, @challenge={0x10, 0x1, 0x61}]}, @NL80211_ATTR_FREQ_FIXED={0x4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x3}, @NL80211_ATTR_HT_CAPABILITY={0x1e, 0x1f, {0x1000, 0x2, 0x4, 0x0, {0x1f, 0x7, 0x0, 0x1, 0x0, 0x1, 0x1, 0x2}, 0x800, 0x1, 0xd9}}, @NL80211_ATTR_HT_CAPABILITY_MASK={0x1e, 0x94, {0x10, 0x2, 0x2, 0x0, {0x7, 0x9, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1}, 0x6, 0xffffffff, 0x9}}, @NL80211_ATTR_HT_CAPABILITY_MASK={0x1e, 0x94, {0x20, 0x1, 0x6, 0x0, {0x4, 0xbd, 0x0, 0x4}, 0x800, 0x5, 0x7}}]}, 0xdc}, 0x1, 0x0, 0x0, 0x40080}, 0x4001) (async) dup2(r0, r0) (async) write(r7, &(0x7f0000000280)='#\x00\x00\x00', 0x4) (async) [ 1496.115954] FAULT_INJECTION: forcing a failure. [ 1496.115954] name failslab, interval 1, probability 0, space 0, times 0 [ 1496.148395] FAULT_INJECTION: forcing a failure. [ 1496.148395] name failslab, interval 1, probability 0, space 0, times 0 [ 1496.159933] CPU: 0 PID: 21011 Comm: syz-executor.3 Not tainted 4.14.262-syzkaller #0 [ 1496.167818] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1496.177167] Call Trace: [ 1496.179753] dump_stack+0x1b2/0x281 [ 1496.183818] should_fail.cold+0x10a/0x149 [ 1496.183832] should_failslab+0xd6/0x130 [ 1496.183845] kmem_cache_alloc+0x28e/0x3c0 [ 1496.183858] __kernfs_new_node+0x6f/0x470 [ 1496.183870] kernfs_new_node+0x7b/0xe0 [ 1496.183880] kernfs_create_link+0x27/0x160 [ 1496.208337] sysfs_do_create_link_sd+0x90/0x120 10:01:14 executing program 5: prlimit64(0x0, 0xe, &(0x7f0000000280), 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0xffffffffffff0162) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000074, 0x25d) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe1}]}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) setsockopt$sock_int(r1, 0x1, 0x21, &(0x7f0000000600)=0xda9, 0x4) sendto$inet(r1, &(0x7f0000000640)="febc3b777d549ffacdd9ee6633af6e737f2e6d654105f04716908ec7af8775d530c2cc83e31b3f3c7f9e351ba553af429ff9367031b7ec0aed61ea15d08f299f9241acf82356d0859eb45aec582cd03d4cdbdcd6755c166133d9ba85529c0ed8913418402ba7d907115e75", 0x6b, 0x4000081, 0x0, 0x0) sendto$inet(r1, &(0x7f00000012c0)="e1158a927f1f6588b927481241ba7860f46ef65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a97425a3a07e758044ab0ea6f7ae55d88fecf9221a750fbf746bec66ba", 0xfe6a, 0xe, 0x0, 0xfffffffffffffe2b) r2 = openat$pidfd(0xffffffffffffff9c, &(0x7f0000002d80), 0x10001, 0x0) r3 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r4 = socket$netlink(0x10, 0x3, 0x0) getsockopt$sock_cred(r4, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, 0x0}, &(0x7f0000cab000)=0xc) setresgid(r5, 0x0, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000002dc0)={{{@in6=@local, @in, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@remote}, 0x0, @in=@broadcast}}, &(0x7f0000002ec0)=0xe8) sendmmsg$unix(0xffffffffffffffff, &(0x7f00000034c0)=[{{&(0x7f0000000080)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000000100)=[{&(0x7f0000000000)="1539979dc7931544c07a788d4cc2c71fca327af349441871ebf362c9733f2e12de590252a939e89c9582bd07082ac269867d8dec11c27984054fb4", 0x3b}, {&(0x7f00000001c0)="a44063e108f8a0d71612e734472a171a6d0e8b7ea8c72a7f1a47b57f38a7575a2bc7cb901895861fdaf74c8f43d3bb660fd242d7bfa7cb9328255d1de4a64657e2c193f954d1b144bfee454134644a31e156f7a2943cf85da6db70bdad78acce4a61a6bdb3a8196fc82d3c5b1749a32b3c8481d9df2560af3739aca68e32286e3884f4411f55a519e274a2d456", 0x8d}, {&(0x7f00000002c0)="ce7d0b8c6327b6933d878bf263a53b3e042f2d9762825395f55888eaca06cdf639b60669e13cd02fa42bb353815015e24b878cad95766e551848f745d44d8e5645b1705ad3a667eda44241ef65994f6b76d9da586aa2d5bd543850ff79557e63e57caacce1a607947f5fc05f7fa9621ddf1021c9e16e4e9612211dc401d5602e0359fad56ecdd482028f0c61b35d2b90b4cc4eb54708", 0x96}, {&(0x7f0000000380)="bfde2c17dedec0edd7a095d1256050b7c10015a94906863573177286bd2953b42dea562fbe3a5d5bb8f1349cd9c5c292de5663902b17aa817216a680c9a1f7e47618eefbc17a94e5530a3845f39c8d8896261b40d6d368bd3f0ff9169e477b07935a19be2eb09da8744d1397b3fb03d0ab9231951c8a4e46ef4895790adea48039a2debe0d1eb5c23c8a01be2b5bfb2c00a223893e1bbc81763c3acd8324a0c49ef10ff6b8ae235b8b3e5c1ca8fcb3e6198c24c73919c03d86a61a416b43ce908db41ca453d16828ba19d1d22f6ec1dfb6b0a60f63c02a7c4d248a929566c47aac92a6f02e6626a8574504e3f2c50be4a37c4c22", 0xf4}, {&(0x7f0000000480)="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", 0x1000}, {&(0x7f0000001480)="526948b4195782eff7030ea2c9b5bb923e0a2a756081fb7a75566bed00edd2ff99cb0626a06f494db4442079baf2757099cea74660e38c0508ed382eb968dfc0be6164261ad0175aa3d02e1edf03d3b5137ddd6c96a22856b92e9377a0346c4ec78533b2d924c7b30592b2315bdcba996683ed5be79bc7edc4f7ecdeac8be1ccf6c62e6a6beefc1f0648b52b706128fdc2e846af59a378bd79aa5f69a6da08bb4732b4f4326aeb86f075b1c547b34116d09d5a5059d3872fea22626d3f05033e98642802359c5db36eda0a8d10491f9f69ec437bf96bbc1638269ed58fb069d5b3", 0xe1}, {&(0x7f0000001580)="36ed00403fddbbb325571310cb4bd8e5fe42fe4f0804d304a58870d33a13150cef51578d9786befe210aec9e1c123b9b2c4e4a7d0a70c13e6a55fff475afbb1a857d0555a30471ff27149d8d4692abfc7c6c2a20a433b4e8b4bdd7905ec1fe4e77b945d4f647a57a831e5f514b0539b58ec643eadd6001ca1f59e91f65f8bef6f694503c5e7f5e848606495544d55805996a194cc43f29e8dfb61c2e5f46578c2a3ee774041354fae0a27663773cebb12c2456c60f0867a81b2c695aa1552d7c4b37766bd2933c13e9632ab9d9b20c8d4dc24c1e0d25c22aa525fe73e860ec46fedf93b4e43f888a", 0xe8}], 0x7, &(0x7f0000002f00)=[@cred={{0x1c, 0x1, 0x2, {0x0, 0xee01}}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0xee00}}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0x0, 0xffffffffffffffff}}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0x0, 0xee01}}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, r0, 0xffffffffffffffff, r1, r2, r3]}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0xffffffffffffffff, r5}}}, @cred={{0x1c, 0x1, 0x2, {0x0, r6, 0xffffffffffffffff}}}], 0x108, 0x4000}}, {{0x0, 0x0, &(0x7f0000003440)=[{&(0x7f0000003040)="fc04a340dd66cd79075779dba756d00b4a4acf9d0a2ee9f34d2e0e0142df92c3732eec9a7932de09ee6781f22177d3ddcaf850d8d8af6ff423f7ad5c27e3fd2ebb22d50b9c5b4cd3583d866537b963efa37852c27df817c5f3407ffdf1b793fc2abe8d93dbabcd6bedce9eb7fab4223d79840598a7528dc6b4ed3e8f57f612367a4020ba4bd7aea646", 0x89}, {&(0x7f0000003100)="8d3dc322b09a8a7ef32c19d04603b3a4a9da77745c4a51c17802534efac8774abd93fd3a1f619972f5b08267a4fac45bcd57c00b305a50ef45fed1d621300481", 0x40}, {&(0x7f0000003140)="ecbf963fbb1c2b6585ccbc750ec1ceb194ae0d409c5e93f0fb416565a2b39bbd65a47445d145c91ac0d1d06aa780e301805f91f1ab9ba27b7d6aff7b3b8ba724e20a3e8a7de8cf66dd226cf0bd35c446b4bb64f03864e39ff017b95c5b88ac1f15ca7c993f79ad778b602c0aaf56ecb5c6b61bb960b28b5c9a94d322bd7e3d7c935b723001477ec1fd", 0x89}, {&(0x7f0000003200)="36e2c1a5979bddde432414c99db767af7712849a2e0ccc828037ea13723e77362ba632687565b4c5ae80b53a99ed235eadc018997b3e39ec69beb4f44f531c154e6313927311b03a5d607a07ef34e96827c83e53737a38eaae482ac5d57d208e24014ba6cc5e40d46c91dc9c1bfb1d6d6e18f01034da2b6c1f3090268cfa3885618bf76fb6", 0x85}, {&(0x7f00000032c0)="98580d8cd92c0bc6361a860caf9d96ff8d247f53e9fbe24234bdd900d0359c59af6b040d6cc8e762d565cb95d1d1050ca8f115cc70780721ce428074d29c7d98629f725b2cce44d5ec2235724553444afa3dad28ad48baf168019b0176bef44791a355a4aac65c0cd54798ee6759c59153b2b182373cd11ebc2981c67897ffb30e6715f7c854bd712c8cb3cdefe26b7be9710d0716cbc569f157a4480e5cf9", 0x9f}, {&(0x7f0000003380)="15f301d9c06957a37a10326eb68c9d5ef0a95d919a7f8591be46559d144589c50a884d8dd9814d07c60236eb6372b8567740fb30b3e659df5c3b7e3208cbc6591696b3a31bd888d923881f5064d87bbf1ea3500939adc4652b268a75fbe5b7f7de366cab2078139f4e191f50bce693c572ddd2dce0b0701091fb68f9ee57788f77ce4db1732c00c7ba132032ce0f4f60ed6bb2668d42302c25d7c52b22f451a6c2ebeda17d887056cb6d3368db38b48e04f7", 0xb2}], 0x6, 0x0, 0x0, 0x40000}}], 0x2, 0x20000000) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x4) [ 1496.213010] sysfs_create_link+0x5f/0xc0 [ 1496.217074] device_add+0x461/0x15c0 [ 1496.220789] ? device_is_dependent+0x2a0/0x2a0 [ 1496.225373] rfkill_register+0x18e/0xab0 [ 1496.229442] hci_register_dev+0x359/0x8f0 [ 1496.233601] hci_uart_tty_ioctl+0x6d1/0xa60 [ 1496.237929] tty_ioctl+0x5af/0x1430 [ 1496.241556] ? hci_uart_tty_receive+0x4c0/0x4c0 [ 1496.246223] ? tty_fasync+0x2c0/0x2c0 [ 1496.250028] ? proc_fail_nth_write+0x7b/0x180 [ 1496.254529] ? trace_hardirqs_on+0x10/0x10 [ 1496.258776] ? fsnotify+0x974/0x11b0 [ 1496.262492] ? proc_tgid_io_accounting+0x7a0/0x7a0 [ 1496.267425] ? __handle_mm_fault+0x80f/0x4620 [ 1496.271931] ? SyS_write+0x1b7/0x210 [ 1496.275659] ? tty_fasync+0x2c0/0x2c0 [ 1496.279475] do_vfs_ioctl+0x75a/0xff0 [ 1496.283291] ? lock_acquire+0x170/0x3f0 [ 1496.287277] ? ioctl_preallocate+0x1a0/0x1a0 [ 1496.291699] ? __fget+0x2df/0x460 [ 1496.295158] ? do_vfs_ioctl+0xff0/0xff0 [ 1496.299140] ? security_file_ioctl+0x83/0xb0 [ 1496.303563] SyS_ioctl+0x7f/0xb0 [ 1496.306936] ? do_vfs_ioctl+0xff0/0xff0 [ 1496.310934] do_syscall_64+0x1d5/0x640 [ 1496.314842] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1496.320043] RIP: 0033:0x7fa331314fe9 [ 1496.323751] RSP: 002b:00007fa32fc8a168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1496.331462] RAX: ffffffffffffffda RBX: 00007fa331427f60 RCX: 00007fa331314fe9 [ 1496.338727] RDX: 0000000000000000 RSI: 00000000400455c8 RDI: 0000000000000003 [ 1496.345998] RBP: 00007fa32fc8a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1496.353272] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1496.360542] R13: 00007ffe09471b3f R14: 00007fa32fc8a300 R15: 0000000000022000 [ 1496.378584] Bluetooth: Unknown HCI packet type 5e [ 1496.383503] Bluetooth: Unknown HCI packet type 43 [ 1496.397387] Bluetooth: Unknown HCI packet type 5e [ 1496.406763] CPU: 0 PID: 21004 Comm: syz-executor.0 Not tainted 4.14.262-syzkaller #0 [ 1496.414668] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1496.424026] Call Trace: [ 1496.426615] dump_stack+0x1b2/0x281 [ 1496.430242] should_fail.cold+0x10a/0x149 [ 1496.434377] should_failslab+0xd6/0x130 [ 1496.438338] kmem_cache_alloc_trace+0x29a/0x3d0 [ 1496.442996] ? kobj_ns_drop+0x80/0x80 [ 1496.446783] call_usermodehelper_setup+0x73/0x2e0 [ 1496.451611] kobject_uevent_env+0xc21/0xf30 [ 1496.455922] device_add+0xa47/0x15c0 [ 1496.459624] ? device_is_dependent+0x2a0/0x2a0 [ 1496.464189] ? start_creating+0x144/0x200 [ 1496.468321] hci_register_dev+0x2e2/0x8f0 [ 1496.472459] hci_uart_tty_ioctl+0x6d1/0xa60 [ 1496.476764] tty_ioctl+0x5af/0x1430 [ 1496.480370] ? hci_uart_tty_receive+0x4c0/0x4c0 [ 1496.485026] ? tty_fasync+0x2c0/0x2c0 [ 1496.488810] ? proc_fail_nth_write+0x7b/0x180 [ 1496.493289] ? trace_hardirqs_on+0x10/0x10 [ 1496.497509] ? fsnotify+0x974/0x11b0 [ 1496.501206] ? proc_tgid_io_accounting+0x7a0/0x7a0 [ 1496.506117] ? __handle_mm_fault+0x80f/0x4620 [ 1496.510594] ? SyS_write+0x1b7/0x210 [ 1496.514292] ? tty_fasync+0x2c0/0x2c0 [ 1496.518077] do_vfs_ioctl+0x75a/0xff0 [ 1496.521861] ? lock_acquire+0x170/0x3f0 [ 1496.525819] ? ioctl_preallocate+0x1a0/0x1a0 [ 1496.530212] ? __fget+0x2df/0x460 [ 1496.533644] ? do_vfs_ioctl+0xff0/0xff0 [ 1496.537602] ? security_file_ioctl+0x83/0xb0 [ 1496.541991] SyS_ioctl+0x7f/0xb0 [ 1496.545345] ? do_vfs_ioctl+0xff0/0xff0 [ 1496.549302] do_syscall_64+0x1d5/0x640 [ 1496.553177] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1496.558349] RIP: 0033:0x7fbb944a7fe9 10:01:14 executing program 3: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x0) (fail_nth: 57) 10:01:14 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async, rerun: 64) r1 = socket(0x10, 0x803, 0x0) (async, rerun: 64) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f00000000c0)={@rand_addr=' \x01\x00', 0x800, 0x0, 0x1, 0x1}, 0x20) (async) r2 = socket$inet6(0xa, 0x3, 0x6) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r2, 0x29, 0x20, &(0x7f0000000000)={@mcast1, 0x0, 0x0, 0x2, 0x1, 0x1f, 0x0, 0x400000000}, 0x20) r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000004c0)='net/ip_vs_stats\x00') ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(r3, 0xc0c89425, &(0x7f0000000780)={"02d47cbcc70d73f63265f0ace7539e4b", 0x0, 0x0, {0x4}, {0x0, 0x7}, 0x0, [0x1, 0x0, 0x3, 0x7, 0x1c6e98ca, 0x3, 0x400, 0x9, 0x8, 0x7, 0x8, 0xffffffffffffff52, 0x5a43, 0x2, 0x10001]}) ioctl$BTRFS_IOC_SNAP_CREATE_V2(r3, 0x50009417, &(0x7f0000001800)={{}, r4, 0x8, @inherit={0x58, &(0x7f0000000500)={0x1, 0x2, 0x20, 0x3, {0x4, 0x0, 0x1, 0x7, 0x7}, [0x1, 0x80000001]}}, @devid}) (async) sendfile(r2, r3, &(0x7f0000000240)=0x208, 0x9) (async) r5 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000001700), 0xffffffffffffffff) sendmsg$NLBL_UNLABEL_C_STATICADD(r3, &(0x7f00000017c0)={&(0x7f00000016c0)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000001780)={&(0x7f0000000cc0)=ANY=[@ANYRESDEC, @ANYRES16=r5, @ANYBLOB="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", @ANYRESOCT], 0x1c}, 0x1, 0x0, 0x0, 0x8}, 0x20008004) sendmsg$NLBL_UNLABEL_C_LIST(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000200)={&(0x7f0000000f00)=ANY=[@ANYRES32, @ANYRES16=r5, @ANYBLOB="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", @ANYRESHEX], 0x100}, 0x1, 0x0, 0x0, 0x8000}, 0x1) (async) ioctl$BTRFS_IOC_TREE_SEARCH_V2(r0, 0xc0709411, &(0x7f0000000300)={{0x0, 0x73, 0x879, 0x2, 0x0, 0x9, 0x6, 0x1, 0x401, 0x0, 0x1, 0x8c, 0xffff, 0x5}, 0x20, [0x0, 0x0, 0x0, 0x0]}) (async) sendmsg$BATADV_CMD_GET_MESH(r1, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0}}, 0x0) (async) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) (async) bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0x2, 0x4}, 0x6) (async, rerun: 64) r6 = syz_open_dev$vcsa(&(0x7f0000000000), 0x3, 0x161020) (rerun: 64) sendmsg$NL80211_CMD_JOIN_IBSS(r6, &(0x7f0000000240)={&(0x7f0000000080), 0xc, &(0x7f00000000c0)={&(0x7f0000000140)={0xdc, 0x0, 0x800, 0x70bd2c, 0x25dfdbfb, {{}, {@void, @void}}, [@NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_HIDDEN_SSID={0x9, 0x7e, @random="688154bcda"}, @NL80211_ATTR_KEYS={0x4}, @NL80211_ATTR_IE={0x41, 0x2a, [@rann={0x7e, 0x15, {{0x1, 0x58}, 0x9, 0x1, @device_a, 0x7, 0x5e, 0xfffff800}}, @challenge={0x10, 0x1, 0x21}, @mesh_id={0x72, 0x6}, @ext_channel_switch={0x3c, 0x4, {0x1, 0x1, 0x7c, 0x9}}, @mic={0x8c, 0x10, {0x4a2, "4489a82a7f18", @short="edfc9a17fae84475"}}, @challenge={0x10, 0x1, 0x61}]}, @NL80211_ATTR_FREQ_FIXED={0x4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x3}, @NL80211_ATTR_HT_CAPABILITY={0x1e, 0x1f, {0x1000, 0x2, 0x4, 0x0, {0x1f, 0x7, 0x0, 0x1, 0x0, 0x1, 0x1, 0x2}, 0x800, 0x1, 0xd9}}, @NL80211_ATTR_HT_CAPABILITY_MASK={0x1e, 0x94, {0x10, 0x2, 0x2, 0x0, {0x7, 0x9, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1}, 0x6, 0xffffffff, 0x9}}, @NL80211_ATTR_HT_CAPABILITY_MASK={0x1e, 0x94, {0x20, 0x1, 0x6, 0x0, {0x4, 0xbd, 0x0, 0x4}, 0x800, 0x5, 0x7}}]}, 0xdc}, 0x1, 0x0, 0x0, 0x40080}, 0x4001) r7 = dup2(r0, r0) write(r7, &(0x7f0000000280)='#\x00\x00\x00', 0x4) [ 1496.562043] RSP: 002b:00007fbb92e1d168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1496.569733] RAX: ffffffffffffffda RBX: 00007fbb945baf60 RCX: 00007fbb944a7fe9 [ 1496.576985] RDX: 0000000000000000 RSI: 00000000400455c8 RDI: 0000000000000003 [ 1496.584244] RBP: 00007fbb92e1d1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1496.591493] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1496.598744] R13: 00007ffc96d7392f R14: 00007fbb92e1d300 R15: 0000000000022000 [ 1496.632486] Bluetooth: Unknown HCI packet type 50 [ 1496.646427] Bluetooth: Unknown HCI packet type 5e [ 1496.660101] FAULT_INJECTION: forcing a failure. [ 1496.660101] name failslab, interval 1, probability 0, space 0, times 0 [ 1496.671395] CPU: 0 PID: 21066 Comm: syz-executor.3 Not tainted 4.14.262-syzkaller #0 [ 1496.671405] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1496.688642] Call Trace: [ 1496.688658] dump_stack+0x1b2/0x281 [ 1496.688672] should_fail.cold+0x10a/0x149 [ 1496.688685] should_failslab+0xd6/0x130 [ 1496.688697] kmem_cache_alloc+0x28e/0x3c0 [ 1496.688710] __kernfs_new_node+0x6f/0x470 [ 1496.688723] kernfs_new_node+0x7b/0xe0 [ 1496.688734] kernfs_create_link+0x27/0x160 [ 1496.688743] sysfs_do_create_link_sd+0x90/0x120 [ 1496.688754] sysfs_create_link+0x5f/0xc0 [ 1496.688766] device_add+0x4e4/0x15c0 [ 1496.688778] ? device_is_dependent+0x2a0/0x2a0 [ 1496.688796] rfkill_register+0x18e/0xab0 [ 1496.688811] hci_register_dev+0x359/0x8f0 [ 1496.688826] hci_uart_tty_ioctl+0x6d1/0xa60 [ 1496.688838] tty_ioctl+0x5af/0x1430 [ 1496.688847] ? hci_uart_tty_receive+0x4c0/0x4c0 [ 1496.688855] ? tty_fasync+0x2c0/0x2c0 [ 1496.688865] ? proc_fail_nth_write+0x7b/0x180 [ 1496.688877] ? trace_hardirqs_on+0x10/0x10 [ 1496.688890] ? fsnotify+0x974/0x11b0 [ 1496.688899] ? proc_tgid_io_accounting+0x7a0/0x7a0 [ 1496.688907] ? __handle_mm_fault+0x80f/0x4620 [ 1496.688917] ? SyS_write+0x1b7/0x210 [ 1496.688927] ? tty_fasync+0x2c0/0x2c0 [ 1496.688938] do_vfs_ioctl+0x75a/0xff0 [ 1496.688948] ? lock_acquire+0x170/0x3f0 [ 1496.688956] ? ioctl_preallocate+0x1a0/0x1a0 [ 1496.688969] ? __fget+0x2df/0x460 [ 1496.688980] ? do_vfs_ioctl+0xff0/0xff0 [ 1496.688991] ? security_file_ioctl+0x83/0xb0 [ 1496.689008] SyS_ioctl+0x7f/0xb0 [ 1496.689016] ? do_vfs_ioctl+0xff0/0xff0 [ 1496.689028] do_syscall_64+0x1d5/0x640 [ 1496.689042] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1496.689050] RIP: 0033:0x7fa331314fe9 [ 1496.689054] RSP: 002b:00007fa32fc8a168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1496.689064] RAX: ffffffffffffffda RBX: 00007fa331427f60 RCX: 00007fa331314fe9 [ 1496.689070] RDX: 0000000000000000 RSI: 00000000400455c8 RDI: 0000000000000003 [ 1496.689076] RBP: 00007fa32fc8a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1496.689081] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1496.689087] R13: 00007ffe09471b3f R14: 00007fa32fc8a300 R15: 0000000000022000 [ 1496.690411] Bluetooth: hci7: Frame reassembly failed (-84) [ 1496.706452] Bluetooth: Unknown HCI packet type 40 [ 1496.714955] Bluetooth: hci6: Frame reassembly failed (-84) [ 1496.714990] Bluetooth: hci6: Frame reassembly failed (-84) [ 1496.715029] Bluetooth: hci6: Frame reassembly failed (-84) [ 1496.715059] Bluetooth: hci6: Frame reassembly failed (-84) [ 1496.715090] Bluetooth: hci6: Frame reassembly failed (-84) [ 1496.715121] Bluetooth: hci6: Frame reassembly failed (-84) 10:01:14 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$F2FS_IOC_RESIZE_FS(r0, 0x4008f510, &(0x7f0000000040)=0x9) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) r1 = dup2(r0, r0) write(r1, &(0x7f0000000280)='#\x00\x00\x00', 0x4) 10:01:14 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$F2FS_IOC_RESIZE_FS(r0, 0x4008f510, &(0x7f0000000040)=0x9) (async) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) (async) r1 = dup2(r0, r0) write(r1, &(0x7f0000000280)='#\x00\x00\x00', 0x4) 10:01:14 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$F2FS_IOC_RESIZE_FS(r0, 0x4008f510, &(0x7f0000000040)=0x9) (async) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) (async) r1 = dup2(r0, r0) write(r1, &(0x7f0000000280)='#\x00\x00\x00', 0x4) [ 1496.807294] Bluetooth: Unknown HCI packet type 5e [ 1496.807300] Bluetooth: Unknown HCI packet type 43 [ 1496.807304] Bluetooth: Unknown HCI packet type 5e [ 1496.807308] Bluetooth: Unknown HCI packet type 50 [ 1496.807311] Bluetooth: Unknown HCI packet type 5e [ 1496.807315] Bluetooth: Unknown HCI packet type 40 10:01:14 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) r1 = dup2(r0, r0) r2 = bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000080)={r1, r1, 0x1}, 0x10) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0xc, 0x4010, r2, 0x5e443000) write(r1, &(0x7f0000000040)="231cc137", 0x4) 10:01:15 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) r1 = dup2(r0, r0) r2 = bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000080)={r1, r1, 0x1}, 0x10) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0xc, 0x4010, r2, 0x5e443000) write(r1, &(0x7f0000000040)="231cc137", 0x4) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) (async) dup2(r0, r0) (async) bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000080)={r1, r1, 0x1}, 0x10) (async) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0xc, 0x4010, r2, 0x5e443000) (async) write(r1, &(0x7f0000000040)="231cc137", 0x4) (async) [ 1498.447584] Bluetooth: hci9 command 0x1003 tx timeout [ 1498.452925] Bluetooth: hci9 sending frame failed (-49) [ 1498.458962] Bluetooth: hci8 command 0x1003 tx timeout [ 1498.464210] Bluetooth: hci8 sending frame failed (-49) [ 1498.767559] Bluetooth: hci6 command 0x1003 tx timeout [ 1498.773832] Bluetooth: hci6 sending frame failed (-49) [ 1498.779818] Bluetooth: hci7 command 0x1003 tx timeout [ 1498.785143] Bluetooth: hci7 sending frame failed (-49) [ 1498.857510] Bluetooth: hci10 command 0x1003 tx timeout [ 1498.863073] Bluetooth: hci10 sending frame failed (-49) [ 1500.527461] Bluetooth: hci9 command 0x1001 tx timeout [ 1500.527491] Bluetooth: hci8 command 0x1001 tx timeout [ 1500.533641] Bluetooth: hci9 sending frame failed (-49) [ 1500.543843] Bluetooth: hci8 sending frame failed (-49) [ 1500.847396] Bluetooth: hci7 command 0x1001 tx timeout [ 1500.847422] Bluetooth: hci6 command 0x1001 tx timeout [ 1500.852675] Bluetooth: hci7 sending frame failed (-49) [ 1500.857879] Bluetooth: hci6 sending frame failed (-49) [ 1500.927477] Bluetooth: hci10 command 0x1001 tx timeout [ 1500.932862] Bluetooth: hci10 sending frame failed (-49) [ 1502.607386] Bluetooth: hci8 command 0x1009 tx timeout [ 1502.612648] Bluetooth: hci9 command 0x1009 tx timeout [ 1502.927315] Bluetooth: hci7 command 0x1009 tx timeout [ 1502.927340] Bluetooth: hci6 command 0x1009 tx timeout [ 1503.017351] Bluetooth: hci10 command 0x1009 tx timeout 10:01:24 executing program 0: prlimit64(0x0, 0x0, 0x0, 0x0) sched_setattr(0x0, 0x0, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x0) (fail_nth: 47) 10:01:24 executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000280), 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0xffffffffffff0162) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r1, 0x400455c8, 0x4) ioctl$KDADDIO(r1, 0x400455c8, 0x223) 10:01:24 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) (async) r1 = dup2(r0, r0) r2 = bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000080)={r1, r1, 0x1}, 0x10) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0xc, 0x4010, r2, 0x5e443000) (async) write(r1, &(0x7f0000000040)="231cc137", 0x4) 10:01:24 executing program 4: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x8000400, 0x400004}, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x38, 0x2, 0x10, 0x8, 0xfffffffa, 0x9, 0xfffffffffffffbff, 0x6, 0x6, 0x5}, 0x0) r0 = gettid() sched_setattr(r0, &(0x7f0000000080)={0x38, 0x3, 0x10000034, 0x10001, 0x2, 0x7, 0x6, 0xfffffffffffffc00, 0x80000001, 0xffff8000}, 0x0) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r1, 0x400455c8, 0x0) r2 = bpf$ITER_CREATE(0x21, &(0x7f00000000c0), 0x8) ioctl$TIOCL_SETVESABLANK(r2, 0x541c, &(0x7f0000000100)) 10:01:24 executing program 5: prlimit64(0x0, 0xe, &(0x7f0000000280), 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0xffffffffffff0162) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000074, 0x25d) (async) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) (async) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe1}]}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) (async) setsockopt$sock_int(r1, 0x1, 0x21, &(0x7f0000000600)=0xda9, 0x4) sendto$inet(r1, &(0x7f0000000640)="febc3b777d549ffacdd9ee6633af6e737f2e6d654105f04716908ec7af8775d530c2cc83e31b3f3c7f9e351ba553af429ff9367031b7ec0aed61ea15d08f299f9241acf82356d0859eb45aec582cd03d4cdbdcd6755c166133d9ba85529c0ed8913418402ba7d907115e75", 0x6b, 0x4000081, 0x0, 0x0) (async) sendto$inet(r1, &(0x7f00000012c0)="e1158a927f1f6588b927481241ba7860f46ef65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a97425a3a07e758044ab0ea6f7ae55d88fecf9221a750fbf746bec66ba", 0xfe6a, 0xe, 0x0, 0xfffffffffffffe2b) r2 = openat$pidfd(0xffffffffffffff9c, &(0x7f0000002d80), 0x10001, 0x0) (async) r3 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) (async) r4 = socket$netlink(0x10, 0x3, 0x0) getsockopt$sock_cred(r4, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, 0x0}, &(0x7f0000cab000)=0xc) setresgid(r5, 0x0, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000002dc0)={{{@in6=@local, @in, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@remote}, 0x0, @in=@broadcast}}, &(0x7f0000002ec0)=0xe8) sendmmsg$unix(0xffffffffffffffff, &(0x7f00000034c0)=[{{&(0x7f0000000080)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000000100)=[{&(0x7f0000000000)="1539979dc7931544c07a788d4cc2c71fca327af349441871ebf362c9733f2e12de590252a939e89c9582bd07082ac269867d8dec11c27984054fb4", 0x3b}, {&(0x7f00000001c0)="a44063e108f8a0d71612e734472a171a6d0e8b7ea8c72a7f1a47b57f38a7575a2bc7cb901895861fdaf74c8f43d3bb660fd242d7bfa7cb9328255d1de4a64657e2c193f954d1b144bfee454134644a31e156f7a2943cf85da6db70bdad78acce4a61a6bdb3a8196fc82d3c5b1749a32b3c8481d9df2560af3739aca68e32286e3884f4411f55a519e274a2d456", 0x8d}, {&(0x7f00000002c0)="ce7d0b8c6327b6933d878bf263a53b3e042f2d9762825395f55888eaca06cdf639b60669e13cd02fa42bb353815015e24b878cad95766e551848f745d44d8e5645b1705ad3a667eda44241ef65994f6b76d9da586aa2d5bd543850ff79557e63e57caacce1a607947f5fc05f7fa9621ddf1021c9e16e4e9612211dc401d5602e0359fad56ecdd482028f0c61b35d2b90b4cc4eb54708", 0x96}, {&(0x7f0000000380)="bfde2c17dedec0edd7a095d1256050b7c10015a94906863573177286bd2953b42dea562fbe3a5d5bb8f1349cd9c5c292de5663902b17aa817216a680c9a1f7e47618eefbc17a94e5530a3845f39c8d8896261b40d6d368bd3f0ff9169e477b07935a19be2eb09da8744d1397b3fb03d0ab9231951c8a4e46ef4895790adea48039a2debe0d1eb5c23c8a01be2b5bfb2c00a223893e1bbc81763c3acd8324a0c49ef10ff6b8ae235b8b3e5c1ca8fcb3e6198c24c73919c03d86a61a416b43ce908db41ca453d16828ba19d1d22f6ec1dfb6b0a60f63c02a7c4d248a929566c47aac92a6f02e6626a8574504e3f2c50be4a37c4c22", 0xf4}, {&(0x7f0000000480)="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", 0x1000}, {&(0x7f0000001480)="526948b4195782eff7030ea2c9b5bb923e0a2a756081fb7a75566bed00edd2ff99cb0626a06f494db4442079baf2757099cea74660e38c0508ed382eb968dfc0be6164261ad0175aa3d02e1edf03d3b5137ddd6c96a22856b92e9377a0346c4ec78533b2d924c7b30592b2315bdcba996683ed5be79bc7edc4f7ecdeac8be1ccf6c62e6a6beefc1f0648b52b706128fdc2e846af59a378bd79aa5f69a6da08bb4732b4f4326aeb86f075b1c547b34116d09d5a5059d3872fea22626d3f05033e98642802359c5db36eda0a8d10491f9f69ec437bf96bbc1638269ed58fb069d5b3", 0xe1}, {&(0x7f0000001580)="36ed00403fddbbb325571310cb4bd8e5fe42fe4f0804d304a58870d33a13150cef51578d9786befe210aec9e1c123b9b2c4e4a7d0a70c13e6a55fff475afbb1a857d0555a30471ff27149d8d4692abfc7c6c2a20a433b4e8b4bdd7905ec1fe4e77b945d4f647a57a831e5f514b0539b58ec643eadd6001ca1f59e91f65f8bef6f694503c5e7f5e848606495544d55805996a194cc43f29e8dfb61c2e5f46578c2a3ee774041354fae0a27663773cebb12c2456c60f0867a81b2c695aa1552d7c4b37766bd2933c13e9632ab9d9b20c8d4dc24c1e0d25c22aa525fe73e860ec46fedf93b4e43f888a", 0xe8}], 0x7, &(0x7f0000002f00)=[@cred={{0x1c, 0x1, 0x2, {0x0, 0xee01}}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0xee00}}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0x0, 0xffffffffffffffff}}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0x0, 0xee01}}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, r0, 0xffffffffffffffff, r1, r2, r3]}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0xffffffffffffffff, r5}}}, @cred={{0x1c, 0x1, 0x2, {0x0, r6, 0xffffffffffffffff}}}], 0x108, 0x4000}}, {{0x0, 0x0, &(0x7f0000003440)=[{&(0x7f0000003040)="fc04a340dd66cd79075779dba756d00b4a4acf9d0a2ee9f34d2e0e0142df92c3732eec9a7932de09ee6781f22177d3ddcaf850d8d8af6ff423f7ad5c27e3fd2ebb22d50b9c5b4cd3583d866537b963efa37852c27df817c5f3407ffdf1b793fc2abe8d93dbabcd6bedce9eb7fab4223d79840598a7528dc6b4ed3e8f57f612367a4020ba4bd7aea646", 0x89}, {&(0x7f0000003100)="8d3dc322b09a8a7ef32c19d04603b3a4a9da77745c4a51c17802534efac8774abd93fd3a1f619972f5b08267a4fac45bcd57c00b305a50ef45fed1d621300481", 0x40}, {&(0x7f0000003140)="ecbf963fbb1c2b6585ccbc750ec1ceb194ae0d409c5e93f0fb416565a2b39bbd65a47445d145c91ac0d1d06aa780e301805f91f1ab9ba27b7d6aff7b3b8ba724e20a3e8a7de8cf66dd226cf0bd35c446b4bb64f03864e39ff017b95c5b88ac1f15ca7c993f79ad778b602c0aaf56ecb5c6b61bb960b28b5c9a94d322bd7e3d7c935b723001477ec1fd", 0x89}, {&(0x7f0000003200)="36e2c1a5979bddde432414c99db767af7712849a2e0ccc828037ea13723e77362ba632687565b4c5ae80b53a99ed235eadc018997b3e39ec69beb4f44f531c154e6313927311b03a5d607a07ef34e96827c83e53737a38eaae482ac5d57d208e24014ba6cc5e40d46c91dc9c1bfb1d6d6e18f01034da2b6c1f3090268cfa3885618bf76fb6", 0x85}, {&(0x7f00000032c0)="98580d8cd92c0bc6361a860caf9d96ff8d247f53e9fbe24234bdd900d0359c59af6b040d6cc8e762d565cb95d1d1050ca8f115cc70780721ce428074d29c7d98629f725b2cce44d5ec2235724553444afa3dad28ad48baf168019b0176bef44791a355a4aac65c0cd54798ee6759c59153b2b182373cd11ebc2981c67897ffb30e6715f7c854bd712c8cb3cdefe26b7be9710d0716cbc569f157a4480e5cf9", 0x9f}, {&(0x7f0000003380)="15f301d9c06957a37a10326eb68c9d5ef0a95d919a7f8591be46559d144589c50a884d8dd9814d07c60236eb6372b8567740fb30b3e659df5c3b7e3208cbc6591696b3a31bd888d923881f5064d87bbf1ea3500939adc4652b268a75fbe5b7f7de366cab2078139f4e191f50bce693c572ddd2dce0b0701091fb68f9ee57788f77ce4db1732c00c7ba132032ce0f4f60ed6bb2668d42302c25d7c52b22f451a6c2ebeda17d887056cb6d3368db38b48e04f7", 0xb2}], 0x6, 0x0, 0x0, 0x40000}}], 0x2, 0x20000000) (async) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x4) 10:01:24 executing program 3: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x0) (fail_nth: 58) 10:01:24 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) ioctl$sock_bt_hci(r0, 0x800448d5, &(0x7f0000000040)="592b3e8a0c05ed40a431875b199d2c352d00e6f1ebec2bf8fc1e8544b31463b9554f78d9b43a40281772a9b2fee7f0486282ae1b20213168b553bb789e5156c46b6274a26435c66af859fe23d9a573ac61fd885c5d7332f39ce7ff0ae17916856381bef7d2a4335fcd2c0f79739a09309fd49cf93d3dc222e986bda90318c9daab439625d9389365d04a669a6808b6b07aab7bea15714f8672c4005e1a97a94d65418c484449d79ed3732aa2afb87b417eee3537df") r1 = dup2(r0, r0) r2 = socket(0x10, 0x803, 0x0) sendmsg$BATADV_CMD_GET_MESH(r2, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0}}, 0x0) getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) bind$bt_hci(r2, &(0x7f0000000180)={0x1f, 0x4, 0x3}, 0x6) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000100)={'syz1', "3589cecdb4e2a9468f510d4d59a68d0a93c53b28c84a3e5bfd5072676e59bf1322a3e02966bfdf3cfe3718bec50a5fff708e2c5593a3c207ce602813142645239020dbf3ddf66062b56db6a383e92b5a614ac9981c977dd5bc88c918beeaad411371bce85ec6e7bce50a5d7cd17d27507e2051e6"}, 0x78) write(r1, &(0x7f0000000280)='#\x00\x00\x00', 0x4) [ 1506.982672] Bluetooth: hci6: Frame reassembly failed (-84) [ 1506.986485] Bluetooth: Unknown HCI packet type 5e [ 1506.992068] Bluetooth: hci6: Frame reassembly failed (-84) [ 1506.993424] Bluetooth: Unknown HCI packet type 43 [ 1507.024823] FAULT_INJECTION: forcing a failure. [ 1507.024823] name failslab, interval 1, probability 0, space 0, times 0 [ 1507.031988] Bluetooth: Unknown HCI packet type 5e [ 1507.036494] CPU: 0 PID: 21133 Comm: syz-executor.3 Not tainted 4.14.262-syzkaller #0 [ 1507.048773] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1507.058124] Call Trace: [ 1507.060715] dump_stack+0x1b2/0x281 [ 1507.062091] FAULT_INJECTION: forcing a failure. [ 1507.062091] name failslab, interval 1, probability 0, space 0, times 0 [ 1507.064348] should_fail.cold+0x10a/0x149 [ 1507.079669] should_failslab+0xd6/0x130 [ 1507.083647] __kmalloc_track_caller+0x2bc/0x400 [ 1507.084494] Bluetooth: Unknown HCI packet type 50 [ 1507.088310] ? kstrdup_const+0x35/0x60 [ 1507.088322] kstrdup+0x36/0x70 [ 1507.088330] kstrdup_const+0x35/0x60 [ 1507.088340] __kernfs_new_node+0x2e/0x470 [ 1507.088352] kernfs_new_node+0x7b/0xe0 [ 1507.088360] kernfs_create_link+0x27/0x160 [ 1507.088369] sysfs_do_create_link_sd+0x90/0x120 [ 1507.088379] sysfs_create_link+0x5f/0xc0 [ 1507.088389] device_add+0x749/0x15c0 [ 1507.088401] ? device_is_dependent+0x2a0/0x2a0 [ 1507.088413] rfkill_register+0x18e/0xab0 [ 1507.088429] hci_register_dev+0x359/0x8f0 [ 1507.106545] Bluetooth: Unknown HCI packet type 5e [ 1507.108152] hci_uart_tty_ioctl+0x6d1/0xa60 [ 1507.108166] tty_ioctl+0x5af/0x1430 [ 1507.108176] ? hci_uart_tty_receive+0x4c0/0x4c0 [ 1507.108184] ? tty_fasync+0x2c0/0x2c0 [ 1507.108194] ? proc_fail_nth_write+0x7b/0x180 [ 1507.108204] ? trace_hardirqs_on+0x10/0x10 [ 1507.108217] ? fsnotify+0x974/0x11b0 [ 1507.128149] Bluetooth: Unknown HCI packet type 40 [ 1507.128713] ? proc_tgid_io_accounting+0x7a0/0x7a0 [ 1507.184668] ? __handle_mm_fault+0x80f/0x4620 [ 1507.189152] ? SyS_write+0x1b7/0x210 [ 1507.192852] ? tty_fasync+0x2c0/0x2c0 [ 1507.196634] do_vfs_ioctl+0x75a/0xff0 [ 1507.200418] ? lock_acquire+0x170/0x3f0 [ 1507.204375] ? ioctl_preallocate+0x1a0/0x1a0 [ 1507.208766] ? __fget+0x2df/0x460 [ 1507.212202] ? do_vfs_ioctl+0xff0/0xff0 [ 1507.216159] ? security_file_ioctl+0x83/0xb0 [ 1507.220550] SyS_ioctl+0x7f/0xb0 [ 1507.223900] ? do_vfs_ioctl+0xff0/0xff0 [ 1507.227859] do_syscall_64+0x1d5/0x640 [ 1507.231738] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1507.236910] RIP: 0033:0x7fa331314fe9 [ 1507.240604] RSP: 002b:00007fa32fc8a168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1507.248300] RAX: ffffffffffffffda RBX: 00007fa331427f60 RCX: 00007fa331314fe9 [ 1507.255552] RDX: 0000000000000000 RSI: 00000000400455c8 RDI: 0000000000000003 [ 1507.262803] RBP: 00007fa32fc8a1d0 R08: 0000000000000000 R09: 0000000000000000 10:01:25 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) ioctl$sock_bt_hci(r0, 0x800448d5, &(0x7f0000000040)="592b3e8a0c05ed40a431875b199d2c352d00e6f1ebec2bf8fc1e8544b31463b9554f78d9b43a40281772a9b2fee7f0486282ae1b20213168b553bb789e5156c46b6274a26435c66af859fe23d9a573ac61fd885c5d7332f39ce7ff0ae17916856381bef7d2a4335fcd2c0f79739a09309fd49cf93d3dc222e986bda90318c9daab439625d9389365d04a669a6808b6b07aab7bea15714f8672c4005e1a97a94d65418c484449d79ed3732aa2afb87b417eee3537df") r1 = dup2(r0, r0) r2 = socket(0x10, 0x803, 0x0) sendmsg$BATADV_CMD_GET_MESH(r2, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0}}, 0x0) getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) bind$bt_hci(r2, &(0x7f0000000180)={0x1f, 0x4, 0x3}, 0x6) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000100)={'syz1', "3589cecdb4e2a9468f510d4d59a68d0a93c53b28c84a3e5bfd5072676e59bf1322a3e02966bfdf3cfe3718bec50a5fff708e2c5593a3c207ce602813142645239020dbf3ddf66062b56db6a383e92b5a614ac9981c977dd5bc88c918beeaad411371bce85ec6e7bce50a5d7cd17d27507e2051e6"}, 0x78) write(r1, &(0x7f0000000280)='#\x00\x00\x00', 0x4) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) (async) ioctl$sock_bt_hci(r0, 0x800448d5, &(0x7f0000000040)="592b3e8a0c05ed40a431875b199d2c352d00e6f1ebec2bf8fc1e8544b31463b9554f78d9b43a40281772a9b2fee7f0486282ae1b20213168b553bb789e5156c46b6274a26435c66af859fe23d9a573ac61fd885c5d7332f39ce7ff0ae17916856381bef7d2a4335fcd2c0f79739a09309fd49cf93d3dc222e986bda90318c9daab439625d9389365d04a669a6808b6b07aab7bea15714f8672c4005e1a97a94d65418c484449d79ed3732aa2afb87b417eee3537df") (async) dup2(r0, r0) (async) socket(0x10, 0x803, 0x0) (async) sendmsg$BATADV_CMD_GET_MESH(r2, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0}}, 0x0) (async) getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) (async) bind$bt_hci(r2, &(0x7f0000000180)={0x1f, 0x4, 0x3}, 0x6) (async) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000100)={'syz1', "3589cecdb4e2a9468f510d4d59a68d0a93c53b28c84a3e5bfd5072676e59bf1322a3e02966bfdf3cfe3718bec50a5fff708e2c5593a3c207ce602813142645239020dbf3ddf66062b56db6a383e92b5a614ac9981c977dd5bc88c918beeaad411371bce85ec6e7bce50a5d7cd17d27507e2051e6"}, 0x78) (async) write(r1, &(0x7f0000000280)='#\x00\x00\x00', 0x4) (async) [ 1507.270054] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1507.277318] R13: 00007ffe09471b3f R14: 00007fa32fc8a300 R15: 0000000000022000 [ 1507.286842] CPU: 1 PID: 21131 Comm: syz-executor.0 Not tainted 4.14.262-syzkaller #0 [ 1507.294738] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1507.304093] Call Trace: [ 1507.306686] dump_stack+0x1b2/0x281 [ 1507.310323] should_fail.cold+0x10a/0x149 [ 1507.314481] should_failslab+0xd6/0x130 [ 1507.318544] kmem_cache_alloc_trace+0x29a/0x3d0 [ 1507.323217] ? kobj_ns_drop+0x80/0x80 [ 1507.327021] call_usermodehelper_setup+0x73/0x2e0 [ 1507.331867] kobject_uevent_env+0xc21/0xf30 [ 1507.336199] device_add+0xa47/0x15c0 [ 1507.339921] ? device_is_dependent+0x2a0/0x2a0 [ 1507.344502] ? start_creating+0x144/0x200 [ 1507.348655] hci_register_dev+0x2e2/0x8f0 [ 1507.352812] hci_uart_tty_ioctl+0x6d1/0xa60 [ 1507.357133] tty_ioctl+0x5af/0x1430 [ 1507.360763] ? hci_uart_tty_receive+0x4c0/0x4c0 [ 1507.365436] ? tty_fasync+0x2c0/0x2c0 [ 1507.369245] ? proc_fail_nth_write+0x7b/0x180 [ 1507.373743] ? trace_hardirqs_on+0x10/0x10 [ 1507.377980] ? fsnotify+0x974/0x11b0 [ 1507.381689] ? proc_tgid_io_accounting+0x7a0/0x7a0 [ 1507.386615] ? __handle_mm_fault+0x80f/0x4620 [ 1507.391113] ? SyS_write+0x1b7/0x210 [ 1507.394832] ? tty_fasync+0x2c0/0x2c0 [ 1507.398634] do_vfs_ioctl+0x75a/0xff0 [ 1507.402433] ? lock_acquire+0x170/0x3f0 [ 1507.404727] Bluetooth: Unknown HCI packet type 5e [ 1507.406408] ? ioctl_preallocate+0x1a0/0x1a0 [ 1507.406423] ? __fget+0x2df/0x460 [ 1507.406434] ? do_vfs_ioctl+0xff0/0xff0 [ 1507.406445] ? security_file_ioctl+0x83/0xb0 [ 1507.406458] SyS_ioctl+0x7f/0xb0 [ 1507.411753] Bluetooth: Unknown HCI packet type 43 [ 1507.415679] ? do_vfs_ioctl+0xff0/0xff0 [ 1507.415691] do_syscall_64+0x1d5/0x640 [ 1507.415708] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1507.415716] RIP: 0033:0x7fbb944a7fe9 [ 1507.415721] RSP: 002b:00007fbb92e1d168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1507.415732] RAX: ffffffffffffffda RBX: 00007fbb945baf60 RCX: 00007fbb944a7fe9 [ 1507.415737] RDX: 0000000000000000 RSI: 00000000400455c8 RDI: 0000000000000003 10:01:25 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) ioctl$sock_bt_hci(r0, 0x800448d5, &(0x7f0000000040)="592b3e8a0c05ed40a431875b199d2c352d00e6f1ebec2bf8fc1e8544b31463b9554f78d9b43a40281772a9b2fee7f0486282ae1b20213168b553bb789e5156c46b6274a26435c66af859fe23d9a573ac61fd885c5d7332f39ce7ff0ae17916856381bef7d2a4335fcd2c0f79739a09309fd49cf93d3dc222e986bda90318c9daab439625d9389365d04a669a6808b6b07aab7bea15714f8672c4005e1a97a94d65418c484449d79ed3732aa2afb87b417eee3537df") (async) r1 = dup2(r0, r0) r2 = socket(0x10, 0x803, 0x0) sendmsg$BATADV_CMD_GET_MESH(r2, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0}}, 0x0) getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) bind$bt_hci(r2, &(0x7f0000000180)={0x1f, 0x4, 0x3}, 0x6) (async) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000100)={'syz1', "3589cecdb4e2a9468f510d4d59a68d0a93c53b28c84a3e5bfd5072676e59bf1322a3e02966bfdf3cfe3718bec50a5fff708e2c5593a3c207ce602813142645239020dbf3ddf66062b56db6a383e92b5a614ac9981c977dd5bc88c918beeaad411371bce85ec6e7bce50a5d7cd17d27507e2051e6"}, 0x78) (async, rerun: 64) write(r1, &(0x7f0000000280)='#\x00\x00\x00', 0x4) (rerun: 64) 10:01:25 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) r1 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x68782, 0x0) setsockopt$bt_BT_SNDMTU(r1, 0x112, 0xc, &(0x7f0000000080)=0x6, 0x2) r2 = dup2(r0, r0) write(r2, &(0x7f0000000280)='#\x00\x00\x00', 0x4) r3 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r3, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000074, 0x25d) bind$inet(r3, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe1}]}, 0x10) sendto$inet(r3, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) setsockopt$sock_int(r3, 0x1, 0x21, &(0x7f0000000600)=0xda9, 0x4) sendto$inet(r3, &(0x7f0000000640)="febc3b777d549ffacdd9ee6633af6e737f2e6d654105f04716908ec7af8775d530c2cc83e31b3f3c7f9e351ba553af429ff9367031b7ec0aed61ea15d08f299f9241acf82356d0859eb45aec582cd03d4cdbdcd6755c166133d9ba85529c0ed8913418402ba7d907115e75", 0x6b, 0x4000081, 0x0, 0x0) openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/crypto\x00', 0x0, 0x0) sendto$inet(r3, &(0x7f00000012c0)="e1158a927f1f6588b927481241ba7860f46ef65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a97425a3a07e758044ab0ea6f7ae55d88fecf9221a750fbf746bec66ba", 0xfe6a, 0xe, 0x0, 0xfffffffffffffe2b) ioctl$BTRFS_IOC_SUBVOL_SETFLAGS(r3, 0x4008941a, &(0x7f00000000c0)) [ 1507.415744] RBP: 00007fbb92e1d1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1507.433591] Bluetooth: Unknown HCI packet type 5e [ 1507.435686] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1507.435692] R13: 00007ffc96d7392f R14: 00007fbb92e1d300 R15: 0000000000022000 [ 1507.486151] Bluetooth: hci9: Frame reassembly failed (-84) [ 1507.507578] Bluetooth: Unknown HCI packet type 50 [ 1507.550890] Bluetooth: Unknown HCI packet type 5e [ 1507.564282] Bluetooth: Unknown HCI packet type 40 10:01:26 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) r1 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x68782, 0x0) setsockopt$bt_BT_SNDMTU(r1, 0x112, 0xc, &(0x7f0000000080)=0x6, 0x2) r2 = dup2(r0, r0) write(r2, &(0x7f0000000280)='#\x00\x00\x00', 0x4) r3 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r3, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000074, 0x25d) bind$inet(r3, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe1}]}, 0x10) sendto$inet(r3, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) setsockopt$sock_int(r3, 0x1, 0x21, &(0x7f0000000600)=0xda9, 0x4) sendto$inet(r3, &(0x7f0000000640)="febc3b777d549ffacdd9ee6633af6e737f2e6d654105f04716908ec7af8775d530c2cc83e31b3f3c7f9e351ba553af429ff9367031b7ec0aed61ea15d08f299f9241acf82356d0859eb45aec582cd03d4cdbdcd6755c166133d9ba85529c0ed8913418402ba7d907115e75", 0x6b, 0x4000081, 0x0, 0x0) openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/crypto\x00', 0x0, 0x0) sendto$inet(r3, &(0x7f00000012c0)="e1158a927f1f6588b927481241ba7860f46ef65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a97425a3a07e758044ab0ea6f7ae55d88fecf9221a750fbf746bec66ba", 0xfe6a, 0xe, 0x0, 0xfffffffffffffe2b) ioctl$BTRFS_IOC_SUBVOL_SETFLAGS(r3, 0x4008941a, &(0x7f00000000c0)) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) (async) openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x68782, 0x0) (async) setsockopt$bt_BT_SNDMTU(r1, 0x112, 0xc, &(0x7f0000000080)=0x6, 0x2) (async) dup2(r0, r0) (async) write(r2, &(0x7f0000000280)='#\x00\x00\x00', 0x4) (async) socket$inet(0x2, 0x4000000000000001, 0x0) (async) setsockopt$inet_tcp_int(r3, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000074, 0x25d) (async) bind$inet(r3, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) (async) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe1}]}, 0x10) (async) sendto$inet(r3, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) (async) setsockopt$sock_int(r3, 0x1, 0x21, &(0x7f0000000600)=0xda9, 0x4) (async) sendto$inet(r3, &(0x7f0000000640)="febc3b777d549ffacdd9ee6633af6e737f2e6d654105f04716908ec7af8775d530c2cc83e31b3f3c7f9e351ba553af429ff9367031b7ec0aed61ea15d08f299f9241acf82356d0859eb45aec582cd03d4cdbdcd6755c166133d9ba85529c0ed8913418402ba7d907115e75", 0x6b, 0x4000081, 0x0, 0x0) (async) openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/crypto\x00', 0x0, 0x0) (async) sendto$inet(r3, &(0x7f00000012c0)="e1158a927f1f6588b927481241ba7860f46ef65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a97425a3a07e758044ab0ea6f7ae55d88fecf9221a750fbf746bec66ba", 0xfe6a, 0xe, 0x0, 0xfffffffffffffe2b) (async) ioctl$BTRFS_IOC_SUBVOL_SETFLAGS(r3, 0x4008941a, &(0x7f00000000c0)) (async) 10:01:26 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) (async) r1 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x68782, 0x0) setsockopt$bt_BT_SNDMTU(r1, 0x112, 0xc, &(0x7f0000000080)=0x6, 0x2) (async) r2 = dup2(r0, r0) write(r2, &(0x7f0000000280)='#\x00\x00\x00', 0x4) r3 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r3, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000074, 0x25d) (async) bind$inet(r3, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe1}]}, 0x10) (async, rerun: 32) sendto$inet(r3, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) (rerun: 32) setsockopt$sock_int(r3, 0x1, 0x21, &(0x7f0000000600)=0xda9, 0x4) (async) sendto$inet(r3, &(0x7f0000000640)="febc3b777d549ffacdd9ee6633af6e737f2e6d654105f04716908ec7af8775d530c2cc83e31b3f3c7f9e351ba553af429ff9367031b7ec0aed61ea15d08f299f9241acf82356d0859eb45aec582cd03d4cdbdcd6755c166133d9ba85529c0ed8913418402ba7d907115e75", 0x6b, 0x4000081, 0x0, 0x0) (async) openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/crypto\x00', 0x0, 0x0) (async) sendto$inet(r3, &(0x7f00000012c0)="e1158a927f1f6588b927481241ba7860f46ef65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a97425a3a07e758044ab0ea6f7ae55d88fecf9221a750fbf746bec66ba", 0xfe6a, 0xe, 0x0, 0xfffffffffffffe2b) (async) ioctl$BTRFS_IOC_SUBVOL_SETFLAGS(r3, 0x4008941a, &(0x7f00000000c0)) [ 1509.006954] Bluetooth: hci7 command 0x1003 tx timeout [ 1509.012291] Bluetooth: hci6 command 0x1003 tx timeout [ 1509.012374] Bluetooth: hci7 sending frame failed (-49) [ 1509.017918] Bluetooth: hci6 sending frame failed (-49) [ 1509.329562] Bluetooth: hci10 command 0x1003 tx timeout [ 1509.334928] Bluetooth: hci8 command 0x1003 tx timeout [ 1509.334969] Bluetooth: hci10 sending frame failed (-49) [ 1509.341649] Bluetooth: hci8 sending frame failed (-49) [ 1509.486893] Bluetooth: hci9 command 0x1003 tx timeout [ 1509.492209] Bluetooth: hci9 sending frame failed (-49) [ 1511.086892] Bluetooth: hci7 command 0x1001 tx timeout [ 1511.086903] Bluetooth: hci6 command 0x1001 tx timeout [ 1511.092189] Bluetooth: hci7 sending frame failed (-49) [ 1511.101971] Bluetooth: hci6 sending frame failed (-49) [ 1511.406823] Bluetooth: hci10 command 0x1001 tx timeout [ 1511.406827] Bluetooth: hci8 command 0x1001 tx timeout [ 1511.406912] Bluetooth: hci8 sending frame failed (-49) [ 1511.414244] Bluetooth: hci10 sending frame failed (-49) [ 1511.566919] Bluetooth: hci9 command 0x1001 tx timeout [ 1511.572188] Bluetooth: hci9 sending frame failed (-49) [ 1513.166699] Bluetooth: hci6 command 0x1009 tx timeout [ 1513.166703] Bluetooth: hci7 command 0x1009 tx timeout [ 1513.486680] Bluetooth: hci8 command 0x1009 tx timeout [ 1513.491964] Bluetooth: hci10 command 0x1009 tx timeout [ 1513.646770] Bluetooth: hci9 command 0x1009 tx timeout 10:01:35 executing program 0: prlimit64(0x0, 0x0, 0x0, 0x0) sched_setattr(0x0, 0x0, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x0) (fail_nth: 48) 10:01:35 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) r1 = dup2(r0, r0) r2 = socket$nl_route(0x10, 0x3, 0x0) r3 = socket(0x10, 0x803, 0x0) sendmsg$BATADV_CMD_GET_MESH(r3, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0}}, 0x0) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x3}, [@IFLA_LINKINFO={0x20, 0x12, 0x0, 0x1, @sit={{0x8}, {0x14, 0x2, 0x0, 0x1, [@IFLA_IPTUN_LINK={0x8, 0x1, r4}, @IFLA_IPTUN_REMOTE={0x8, 0x3, @local}]}}}]}, 0x40}}, 0x0) r5 = getuid() setsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000400)={{{@in=@dev, @in6=@mcast2, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x20, 0x33, 0x0, r5}, {0x6, 0x8001, 0x3, 0x3, 0xffffffffffffff28, 0x9, 0x8001}, {0x0, 0x8b4, 0x8, 0x6}, 0x0, 0x6e6bb6, 0x0, 0x0, 0x2}, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, 0x4d4, 0xff}, 0x8, @in=@broadcast, 0x3500, 0x0, 0x3, 0x9, 0x9, 0x1f, 0xad000}}, 0xe8) setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000074, 0x25d) bind$inet(0xffffffffffffffff, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe1}]}, 0x10) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x21, &(0x7f0000000600)=0xda9, 0x4) sendto$inet(0xffffffffffffffff, &(0x7f0000000640)="febc3b777d549ffacdd9ee6633af6e737f2e6d654105f04716908ec7af8775d530c2cc83e31b3f3c7f9e351ba553af429ff9367031b7ec0aed61ea15d08f299f9241acf82356d0859eb45aec582cd03d4cdbdcd6755c166133d9ba85529c0ed8913418402ba7d907115e75", 0x6b, 0x4000081, 0x0, 0x0) sendto$inet(0xffffffffffffffff, &(0x7f00000012c0)="e1158a927f1f6588b927481241ba7860f46ef65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a97425a3a07e758044ab0ea6f7ae55d88fecf9221a750fbf746bec66ba", 0xfe6a, 0xe, 0x0, 0xfffffffffffffe2b) ioctl$sock_bt_cmtp_CMTPCONNADD(0xffffffffffffffff, 0x400443c8, &(0x7f0000000200)={0xffffffffffffffff, 0x80a}) sendmsg$nl_xfrm(r1, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000140)={&(0x7f0000000080)=@newpolicy={0xc0, 0x13, 0x200, 0x70bd28, 0x25dfdbfe, {{@in6=@private1, @in=@dev={0xac, 0x14, 0x14, 0x31}, 0x4e23, 0x3f, 0x4e23, 0x0, 0xa, 0x20, 0x0, 0x5e, r4, r5}, {0x80, 0x3ff, 0x60000000000000, 0x6, 0x9, 0x3, 0x41e7, 0x200}, {0x3, 0x6, 0x100000000, 0x401}, 0x4, 0x6e6bbd, 0x0, 0x1}, [@replay_thresh={0x8}]}, 0xc0}, 0x1, 0x0, 0x0, 0x30000080}, 0x4008041) write(r1, &(0x7f0000000280)='#\x00\x00\x00', 0x4) 10:01:35 executing program 4: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x8000400, 0x400004}, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x38, 0x2, 0x10, 0x8, 0xfffffffa, 0x9, 0xfffffffffffffbff, 0x6, 0x6, 0x5}, 0x0) r0 = gettid() sched_setattr(r0, &(0x7f0000000080)={0x38, 0x3, 0x10000034, 0x10001, 0x2, 0x7, 0x6, 0xfffffffffffffc00, 0x80000001, 0xffff8000}, 0x0) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r1, 0x400455c8, 0x0) r2 = bpf$ITER_CREATE(0x21, &(0x7f00000000c0), 0x8) ioctl$TIOCL_SETVESABLANK(r2, 0x541c, &(0x7f0000000100)) prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) (async) sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x8000400, 0x400004}, 0x0) (async) sched_setattr(0x0, &(0x7f0000000000)={0x38, 0x2, 0x10, 0x8, 0xfffffffa, 0x9, 0xfffffffffffffbff, 0x6, 0x6, 0x5}, 0x0) (async) gettid() (async) sched_setattr(r0, &(0x7f0000000080)={0x38, 0x3, 0x10000034, 0x10001, 0x2, 0x7, 0x6, 0xfffffffffffffc00, 0x80000001, 0xffff8000}, 0x0) (async) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) (async) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000040)=0xf) (async) ioctl$KDADDIO(r1, 0x400455c8, 0x0) (async) bpf$ITER_CREATE(0x21, &(0x7f00000000c0), 0x8) (async) ioctl$TIOCL_SETVESABLANK(r2, 0x541c, &(0x7f0000000100)) (async) 10:01:35 executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000280), 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0xffffffffffff0162) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r1, 0x400455c8, 0x223) 10:01:35 executing program 3: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x0) (fail_nth: 59) 10:01:35 executing program 5: prlimit64(0x0, 0xe, &(0x7f0000000280), 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0xffffffffffff0162) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000074, 0x25d) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe1}]}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) setsockopt$sock_int(r1, 0x1, 0x21, &(0x7f0000000600)=0xda9, 0x4) sendto$inet(r1, &(0x7f0000000640)="febc3b777d549ffacdd9ee6633af6e737f2e6d654105f04716908ec7af8775d530c2cc83e31b3f3c7f9e351ba553af429ff9367031b7ec0aed61ea15d08f299f9241acf82356d0859eb45aec582cd03d4cdbdcd6755c166133d9ba85529c0ed8913418402ba7d907115e75", 0x6b, 0x4000081, 0x0, 0x0) sendto$inet(r1, &(0x7f00000012c0)="e1158a927f1f6588b927481241ba7860f46ef65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a97425a3a07e758044ab0ea6f7ae55d88fecf9221a750fbf746bec66ba", 0xfe6a, 0xe, 0x0, 0xfffffffffffffe2b) r2 = openat$pidfd(0xffffffffffffff9c, &(0x7f0000002d80), 0x10001, 0x0) r3 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r4 = socket$netlink(0x10, 0x3, 0x0) getsockopt$sock_cred(r4, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, 0x0}, &(0x7f0000cab000)=0xc) setresgid(r5, 0x0, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000002dc0)={{{@in6=@local, @in, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@remote}, 0x0, @in=@broadcast}}, &(0x7f0000002ec0)=0xe8) sendmmsg$unix(0xffffffffffffffff, &(0x7f00000034c0)=[{{&(0x7f0000000080)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000000100)=[{&(0x7f0000000000)="1539979dc7931544c07a788d4cc2c71fca327af349441871ebf362c9733f2e12de590252a939e89c9582bd07082ac269867d8dec11c27984054fb4", 0x3b}, {&(0x7f00000001c0)="a44063e108f8a0d71612e734472a171a6d0e8b7ea8c72a7f1a47b57f38a7575a2bc7cb901895861fdaf74c8f43d3bb660fd242d7bfa7cb9328255d1de4a64657e2c193f954d1b144bfee454134644a31e156f7a2943cf85da6db70bdad78acce4a61a6bdb3a8196fc82d3c5b1749a32b3c8481d9df2560af3739aca68e32286e3884f4411f55a519e274a2d456", 0x8d}, {&(0x7f00000002c0)="ce7d0b8c6327b6933d878bf263a53b3e042f2d9762825395f55888eaca06cdf639b60669e13cd02fa42bb353815015e24b878cad95766e551848f745d44d8e5645b1705ad3a667eda44241ef65994f6b76d9da586aa2d5bd543850ff79557e63e57caacce1a607947f5fc05f7fa9621ddf1021c9e16e4e9612211dc401d5602e0359fad56ecdd482028f0c61b35d2b90b4cc4eb54708", 0x96}, {&(0x7f0000000380)="bfde2c17dedec0edd7a095d1256050b7c10015a94906863573177286bd2953b42dea562fbe3a5d5bb8f1349cd9c5c292de5663902b17aa817216a680c9a1f7e47618eefbc17a94e5530a3845f39c8d8896261b40d6d368bd3f0ff9169e477b07935a19be2eb09da8744d1397b3fb03d0ab9231951c8a4e46ef4895790adea48039a2debe0d1eb5c23c8a01be2b5bfb2c00a223893e1bbc81763c3acd8324a0c49ef10ff6b8ae235b8b3e5c1ca8fcb3e6198c24c73919c03d86a61a416b43ce908db41ca453d16828ba19d1d22f6ec1dfb6b0a60f63c02a7c4d248a929566c47aac92a6f02e6626a8574504e3f2c50be4a37c4c22", 0xf4}, {&(0x7f0000000480)="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", 0x1000}, {&(0x7f0000001480)="526948b4195782eff7030ea2c9b5bb923e0a2a756081fb7a75566bed00edd2ff99cb0626a06f494db4442079baf2757099cea74660e38c0508ed382eb968dfc0be6164261ad0175aa3d02e1edf03d3b5137ddd6c96a22856b92e9377a0346c4ec78533b2d924c7b30592b2315bdcba996683ed5be79bc7edc4f7ecdeac8be1ccf6c62e6a6beefc1f0648b52b706128fdc2e846af59a378bd79aa5f69a6da08bb4732b4f4326aeb86f075b1c547b34116d09d5a5059d3872fea22626d3f05033e98642802359c5db36eda0a8d10491f9f69ec437bf96bbc1638269ed58fb069d5b3", 0xe1}, {&(0x7f0000001580)="36ed00403fddbbb325571310cb4bd8e5fe42fe4f0804d304a58870d33a13150cef51578d9786befe210aec9e1c123b9b2c4e4a7d0a70c13e6a55fff475afbb1a857d0555a30471ff27149d8d4692abfc7c6c2a20a433b4e8b4bdd7905ec1fe4e77b945d4f647a57a831e5f514b0539b58ec643eadd6001ca1f59e91f65f8bef6f694503c5e7f5e848606495544d55805996a194cc43f29e8dfb61c2e5f46578c2a3ee774041354fae0a27663773cebb12c2456c60f0867a81b2c695aa1552d7c4b37766bd2933c13e9632ab9d9b20c8d4dc24c1e0d25c22aa525fe73e860ec46fedf93b4e43f888a", 0xe8}], 0x7, &(0x7f0000002f00)=[@cred={{0x1c, 0x1, 0x2, {0x0, 0xee01}}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0xee00}}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0x0, 0xffffffffffffffff}}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0x0, 0xee01}}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, r0, 0xffffffffffffffff, r1, r2, r3]}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0xffffffffffffffff, r5}}}, @cred={{0x1c, 0x1, 0x2, {0x0, r6, 0xffffffffffffffff}}}], 0x108, 0x4000}}, {{0x0, 0x0, &(0x7f0000003440)=[{&(0x7f0000003040)="fc04a340dd66cd79075779dba756d00b4a4acf9d0a2ee9f34d2e0e0142df92c3732eec9a7932de09ee6781f22177d3ddcaf850d8d8af6ff423f7ad5c27e3fd2ebb22d50b9c5b4cd3583d866537b963efa37852c27df817c5f3407ffdf1b793fc2abe8d93dbabcd6bedce9eb7fab4223d79840598a7528dc6b4ed3e8f57f612367a4020ba4bd7aea646", 0x89}, {&(0x7f0000003100)="8d3dc322b09a8a7ef32c19d04603b3a4a9da77745c4a51c17802534efac8774abd93fd3a1f619972f5b08267a4fac45bcd57c00b305a50ef45fed1d621300481", 0x40}, {&(0x7f0000003140)="ecbf963fbb1c2b6585ccbc750ec1ceb194ae0d409c5e93f0fb416565a2b39bbd65a47445d145c91ac0d1d06aa780e301805f91f1ab9ba27b7d6aff7b3b8ba724e20a3e8a7de8cf66dd226cf0bd35c446b4bb64f03864e39ff017b95c5b88ac1f15ca7c993f79ad778b602c0aaf56ecb5c6b61bb960b28b5c9a94d322bd7e3d7c935b723001477ec1fd", 0x89}, {&(0x7f0000003200)="36e2c1a5979bddde432414c99db767af7712849a2e0ccc828037ea13723e77362ba632687565b4c5ae80b53a99ed235eadc018997b3e39ec69beb4f44f531c154e6313927311b03a5d607a07ef34e96827c83e53737a38eaae482ac5d57d208e24014ba6cc5e40d46c91dc9c1bfb1d6d6e18f01034da2b6c1f3090268cfa3885618bf76fb6", 0x85}, {&(0x7f00000032c0)="98580d8cd92c0bc6361a860caf9d96ff8d247f53e9fbe24234bdd900d0359c59af6b040d6cc8e762d565cb95d1d1050ca8f115cc70780721ce428074d29c7d98629f725b2cce44d5ec2235724553444afa3dad28ad48baf168019b0176bef44791a355a4aac65c0cd54798ee6759c59153b2b182373cd11ebc2981c67897ffb30e6715f7c854bd712c8cb3cdefe26b7be9710d0716cbc569f157a4480e5cf9", 0x9f}, {&(0x7f0000003380)="15f301d9c06957a37a10326eb68c9d5ef0a95d919a7f8591be46559d144589c50a884d8dd9814d07c60236eb6372b8567740fb30b3e659df5c3b7e3208cbc6591696b3a31bd888d923881f5064d87bbf1ea3500939adc4652b268a75fbe5b7f7de366cab2078139f4e191f50bce693c572ddd2dce0b0701091fb68f9ee57788f77ce4db1732c00c7ba132032ce0f4f60ed6bb2668d42302c25d7c52b22f451a6c2ebeda17d887056cb6d3368db38b48e04f7", 0xb2}], 0x6, 0x0, 0x0, 0x40000}}], 0x2, 0x20000000) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x4) prlimit64(0x0, 0xe, &(0x7f0000000280), 0x0) (async) sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0xffffffffffff0162) (async) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) (async) socket$inet(0x2, 0x4000000000000001, 0x0) (async) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000074, 0x25d) (async) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) (async) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe1}]}, 0x10) (async) sendto$inet(r1, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) (async) setsockopt$sock_int(r1, 0x1, 0x21, &(0x7f0000000600)=0xda9, 0x4) (async) sendto$inet(r1, &(0x7f0000000640)="febc3b777d549ffacdd9ee6633af6e737f2e6d654105f04716908ec7af8775d530c2cc83e31b3f3c7f9e351ba553af429ff9367031b7ec0aed61ea15d08f299f9241acf82356d0859eb45aec582cd03d4cdbdcd6755c166133d9ba85529c0ed8913418402ba7d907115e75", 0x6b, 0x4000081, 0x0, 0x0) (async) sendto$inet(r1, &(0x7f00000012c0)="e1158a927f1f6588b927481241ba7860f46ef65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a97425a3a07e758044ab0ea6f7ae55d88fecf9221a750fbf746bec66ba", 0xfe6a, 0xe, 0x0, 0xfffffffffffffe2b) (async) openat$pidfd(0xffffffffffffff9c, &(0x7f0000002d80), 0x10001, 0x0) (async) syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) (async) socket$netlink(0x10, 0x3, 0x0) (async) getsockopt$sock_cred(r4, 0x1, 0x11, &(0x7f0000caaffb), &(0x7f0000cab000)=0xc) (async) setresgid(r5, 0x0, 0x0) (async) getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000002dc0)={{{@in6=@local}}, {{@in6=@remote}, 0x0, @in=@broadcast}}, &(0x7f0000002ec0)=0xe8) (async) sendmmsg$unix(0xffffffffffffffff, &(0x7f00000034c0)=[{{&(0x7f0000000080)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000000100)=[{&(0x7f0000000000)="1539979dc7931544c07a788d4cc2c71fca327af349441871ebf362c9733f2e12de590252a939e89c9582bd07082ac269867d8dec11c27984054fb4", 0x3b}, {&(0x7f00000001c0)="a44063e108f8a0d71612e734472a171a6d0e8b7ea8c72a7f1a47b57f38a7575a2bc7cb901895861fdaf74c8f43d3bb660fd242d7bfa7cb9328255d1de4a64657e2c193f954d1b144bfee454134644a31e156f7a2943cf85da6db70bdad78acce4a61a6bdb3a8196fc82d3c5b1749a32b3c8481d9df2560af3739aca68e32286e3884f4411f55a519e274a2d456", 0x8d}, {&(0x7f00000002c0)="ce7d0b8c6327b6933d878bf263a53b3e042f2d9762825395f55888eaca06cdf639b60669e13cd02fa42bb353815015e24b878cad95766e551848f745d44d8e5645b1705ad3a667eda44241ef65994f6b76d9da586aa2d5bd543850ff79557e63e57caacce1a607947f5fc05f7fa9621ddf1021c9e16e4e9612211dc401d5602e0359fad56ecdd482028f0c61b35d2b90b4cc4eb54708", 0x96}, {&(0x7f0000000380)="bfde2c17dedec0edd7a095d1256050b7c10015a94906863573177286bd2953b42dea562fbe3a5d5bb8f1349cd9c5c292de5663902b17aa817216a680c9a1f7e47618eefbc17a94e5530a3845f39c8d8896261b40d6d368bd3f0ff9169e477b07935a19be2eb09da8744d1397b3fb03d0ab9231951c8a4e46ef4895790adea48039a2debe0d1eb5c23c8a01be2b5bfb2c00a223893e1bbc81763c3acd8324a0c49ef10ff6b8ae235b8b3e5c1ca8fcb3e6198c24c73919c03d86a61a416b43ce908db41ca453d16828ba19d1d22f6ec1dfb6b0a60f63c02a7c4d248a929566c47aac92a6f02e6626a8574504e3f2c50be4a37c4c22", 0xf4}, {&(0x7f0000000480)="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", 0x1000}, {&(0x7f0000001480)="526948b4195782eff7030ea2c9b5bb923e0a2a756081fb7a75566bed00edd2ff99cb0626a06f494db4442079baf2757099cea74660e38c0508ed382eb968dfc0be6164261ad0175aa3d02e1edf03d3b5137ddd6c96a22856b92e9377a0346c4ec78533b2d924c7b30592b2315bdcba996683ed5be79bc7edc4f7ecdeac8be1ccf6c62e6a6beefc1f0648b52b706128fdc2e846af59a378bd79aa5f69a6da08bb4732b4f4326aeb86f075b1c547b34116d09d5a5059d3872fea22626d3f05033e98642802359c5db36eda0a8d10491f9f69ec437bf96bbc1638269ed58fb069d5b3", 0xe1}, {&(0x7f0000001580)="36ed00403fddbbb325571310cb4bd8e5fe42fe4f0804d304a58870d33a13150cef51578d9786befe210aec9e1c123b9b2c4e4a7d0a70c13e6a55fff475afbb1a857d0555a30471ff27149d8d4692abfc7c6c2a20a433b4e8b4bdd7905ec1fe4e77b945d4f647a57a831e5f514b0539b58ec643eadd6001ca1f59e91f65f8bef6f694503c5e7f5e848606495544d55805996a194cc43f29e8dfb61c2e5f46578c2a3ee774041354fae0a27663773cebb12c2456c60f0867a81b2c695aa1552d7c4b37766bd2933c13e9632ab9d9b20c8d4dc24c1e0d25c22aa525fe73e860ec46fedf93b4e43f888a", 0xe8}], 0x7, &(0x7f0000002f00)=[@cred={{0x1c, 0x1, 0x2, {0x0, 0xee01}}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0xee00}}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0x0, 0xffffffffffffffff}}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0x0, 0xee01}}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, r0, 0xffffffffffffffff, r1, r2, r3]}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0xffffffffffffffff, r5}}}, @cred={{0x1c, 0x1, 0x2, {0x0, r6, 0xffffffffffffffff}}}], 0x108, 0x4000}}, {{0x0, 0x0, &(0x7f0000003440)=[{&(0x7f0000003040)="fc04a340dd66cd79075779dba756d00b4a4acf9d0a2ee9f34d2e0e0142df92c3732eec9a7932de09ee6781f22177d3ddcaf850d8d8af6ff423f7ad5c27e3fd2ebb22d50b9c5b4cd3583d866537b963efa37852c27df817c5f3407ffdf1b793fc2abe8d93dbabcd6bedce9eb7fab4223d79840598a7528dc6b4ed3e8f57f612367a4020ba4bd7aea646", 0x89}, {&(0x7f0000003100)="8d3dc322b09a8a7ef32c19d04603b3a4a9da77745c4a51c17802534efac8774abd93fd3a1f619972f5b08267a4fac45bcd57c00b305a50ef45fed1d621300481", 0x40}, {&(0x7f0000003140)="ecbf963fbb1c2b6585ccbc750ec1ceb194ae0d409c5e93f0fb416565a2b39bbd65a47445d145c91ac0d1d06aa780e301805f91f1ab9ba27b7d6aff7b3b8ba724e20a3e8a7de8cf66dd226cf0bd35c446b4bb64f03864e39ff017b95c5b88ac1f15ca7c993f79ad778b602c0aaf56ecb5c6b61bb960b28b5c9a94d322bd7e3d7c935b723001477ec1fd", 0x89}, {&(0x7f0000003200)="36e2c1a5979bddde432414c99db767af7712849a2e0ccc828037ea13723e77362ba632687565b4c5ae80b53a99ed235eadc018997b3e39ec69beb4f44f531c154e6313927311b03a5d607a07ef34e96827c83e53737a38eaae482ac5d57d208e24014ba6cc5e40d46c91dc9c1bfb1d6d6e18f01034da2b6c1f3090268cfa3885618bf76fb6", 0x85}, {&(0x7f00000032c0)="98580d8cd92c0bc6361a860caf9d96ff8d247f53e9fbe24234bdd900d0359c59af6b040d6cc8e762d565cb95d1d1050ca8f115cc70780721ce428074d29c7d98629f725b2cce44d5ec2235724553444afa3dad28ad48baf168019b0176bef44791a355a4aac65c0cd54798ee6759c59153b2b182373cd11ebc2981c67897ffb30e6715f7c854bd712c8cb3cdefe26b7be9710d0716cbc569f157a4480e5cf9", 0x9f}, {&(0x7f0000003380)="15f301d9c06957a37a10326eb68c9d5ef0a95d919a7f8591be46559d144589c50a884d8dd9814d07c60236eb6372b8567740fb30b3e659df5c3b7e3208cbc6591696b3a31bd888d923881f5064d87bbf1ea3500939adc4652b268a75fbe5b7f7de366cab2078139f4e191f50bce693c572ddd2dce0b0701091fb68f9ee57788f77ce4db1732c00c7ba132032ce0f4f60ed6bb2668d42302c25d7c52b22f451a6c2ebeda17d887056cb6d3368db38b48e04f7", 0xb2}], 0x6, 0x0, 0x0, 0x40000}}], 0x2, 0x20000000) (async) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) (async) ioctl$KDADDIO(r0, 0x400455c8, 0x4) (async) [ 1517.848530] FAULT_INJECTION: forcing a failure. [ 1517.848530] name failslab, interval 1, probability 0, space 0, times 0 [ 1517.862495] CPU: 0 PID: 21219 Comm: syz-executor.0 Not tainted 4.14.262-syzkaller #0 [ 1517.870391] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1517.870540] FAULT_INJECTION: forcing a failure. [ 1517.870540] name failslab, interval 1, probability 0, space 0, times 0 [ 1517.879740] Call Trace: [ 1517.879758] dump_stack+0x1b2/0x281 [ 1517.879772] should_fail.cold+0x10a/0x149 [ 1517.879784] should_failslab+0xd6/0x130 [ 1517.879796] kmem_cache_alloc_node_trace+0x25a/0x400 [ 1517.879808] __kmalloc_node_track_caller+0x38/0x70 [ 1517.879818] ? led_trigger_unregister+0x2e0/0x2e0 [ 1517.879828] __devres_alloc_node+0x36/0x140 [ 1517.879839] devm_led_trigger_register+0x32/0xc0 [ 1517.879850] hci_leds_init+0xdf/0x1a0 [ 1517.879865] hci_register_dev+0x2fe/0x8f0 [ 1517.936982] hci_uart_tty_ioctl+0x6d1/0xa60 [ 1517.941290] tty_ioctl+0x5af/0x1430 [ 1517.944901] ? hci_uart_tty_receive+0x4c0/0x4c0 [ 1517.949554] ? tty_fasync+0x2c0/0x2c0 [ 1517.953338] ? proc_fail_nth_write+0x7b/0x180 [ 1517.957815] ? trace_hardirqs_on+0x10/0x10 [ 1517.962052] ? fsnotify+0x974/0x11b0 [ 1517.965753] ? proc_tgid_io_accounting+0x7a0/0x7a0 [ 1517.970662] ? __handle_mm_fault+0x80f/0x4620 [ 1517.975136] ? SyS_write+0x1b7/0x210 [ 1517.978832] ? tty_fasync+0x2c0/0x2c0 [ 1517.982619] do_vfs_ioctl+0x75a/0xff0 [ 1517.986405] ? lock_acquire+0x170/0x3f0 [ 1517.990359] ? ioctl_preallocate+0x1a0/0x1a0 [ 1517.994752] ? __fget+0x2df/0x460 [ 1517.998187] ? do_vfs_ioctl+0xff0/0xff0 [ 1518.002146] ? security_file_ioctl+0x83/0xb0 [ 1518.006538] SyS_ioctl+0x7f/0xb0 [ 1518.009889] ? do_vfs_ioctl+0xff0/0xff0 [ 1518.013873] do_syscall_64+0x1d5/0x640 [ 1518.017747] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1518.022917] RIP: 0033:0x7fbb944a7fe9 [ 1518.026609] RSP: 002b:00007fbb92e1d168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1518.034305] RAX: ffffffffffffffda RBX: 00007fbb945baf60 RCX: 00007fbb944a7fe9 [ 1518.041557] RDX: 0000000000000000 RSI: 00000000400455c8 RDI: 0000000000000003 [ 1518.048814] RBP: 00007fbb92e1d1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1518.056072] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1518.063328] R13: 00007ffc96d7392f R14: 00007fbb92e1d300 R15: 0000000000022000 [ 1518.070604] CPU: 1 PID: 21226 Comm: syz-executor.3 Not tainted 4.14.262-syzkaller #0 [ 1518.078502] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1518.087852] Call Trace: [ 1518.090447] dump_stack+0x1b2/0x281 [ 1518.094091] should_fail.cold+0x10a/0x149 10:01:36 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) (async) r1 = dup2(r0, r0) (async) r2 = socket$nl_route(0x10, 0x3, 0x0) (async) r3 = socket(0x10, 0x803, 0x0) sendmsg$BATADV_CMD_GET_MESH(r3, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0}}, 0x0) (async) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x3}, [@IFLA_LINKINFO={0x20, 0x12, 0x0, 0x1, @sit={{0x8}, {0x14, 0x2, 0x0, 0x1, [@IFLA_IPTUN_LINK={0x8, 0x1, r4}, @IFLA_IPTUN_REMOTE={0x8, 0x3, @local}]}}}]}, 0x40}}, 0x0) (async) r5 = getuid() setsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000400)={{{@in=@dev, @in6=@mcast2, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x20, 0x33, 0x0, r5}, {0x6, 0x8001, 0x3, 0x3, 0xffffffffffffff28, 0x9, 0x8001}, {0x0, 0x8b4, 0x8, 0x6}, 0x0, 0x6e6bb6, 0x0, 0x0, 0x2}, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, 0x4d4, 0xff}, 0x8, @in=@broadcast, 0x3500, 0x0, 0x3, 0x9, 0x9, 0x1f, 0xad000}}, 0xe8) setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000074, 0x25d) bind$inet(0xffffffffffffffff, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe1}]}, 0x10) (async) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x21, &(0x7f0000000600)=0xda9, 0x4) sendto$inet(0xffffffffffffffff, &(0x7f0000000640)="febc3b777d549ffacdd9ee6633af6e737f2e6d654105f04716908ec7af8775d530c2cc83e31b3f3c7f9e351ba553af429ff9367031b7ec0aed61ea15d08f299f9241acf82356d0859eb45aec582cd03d4cdbdcd6755c166133d9ba85529c0ed8913418402ba7d907115e75", 0x6b, 0x4000081, 0x0, 0x0) (async) sendto$inet(0xffffffffffffffff, &(0x7f00000012c0)="e1158a927f1f6588b927481241ba7860f46ef65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a97425a3a07e758044ab0ea6f7ae55d88fecf9221a750fbf746bec66ba", 0xfe6a, 0xe, 0x0, 0xfffffffffffffe2b) ioctl$sock_bt_cmtp_CMTPCONNADD(0xffffffffffffffff, 0x400443c8, &(0x7f0000000200)={0xffffffffffffffff, 0x80a}) (async) sendmsg$nl_xfrm(r1, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000140)={&(0x7f0000000080)=@newpolicy={0xc0, 0x13, 0x200, 0x70bd28, 0x25dfdbfe, {{@in6=@private1, @in=@dev={0xac, 0x14, 0x14, 0x31}, 0x4e23, 0x3f, 0x4e23, 0x0, 0xa, 0x20, 0x0, 0x5e, r4, r5}, {0x80, 0x3ff, 0x60000000000000, 0x6, 0x9, 0x3, 0x41e7, 0x200}, {0x3, 0x6, 0x100000000, 0x401}, 0x4, 0x6e6bbd, 0x0, 0x1}, [@replay_thresh={0x8}]}, 0xc0}, 0x1, 0x0, 0x0, 0x30000080}, 0x4008041) write(r1, &(0x7f0000000280)='#\x00\x00\x00', 0x4) [ 1518.098247] should_failslab+0xd6/0x130 [ 1518.102228] __kmalloc_track_caller+0x2bc/0x400 [ 1518.106898] ? kstrdup_const+0x35/0x60 [ 1518.110791] kstrdup+0x36/0x70 [ 1518.113992] kstrdup_const+0x35/0x60 [ 1518.117715] __kernfs_new_node+0x2e/0x470 [ 1518.121873] kernfs_new_node+0x7b/0xe0 [ 1518.125765] kernfs_create_link+0x27/0x160 [ 1518.130013] sysfs_do_create_link_sd+0x90/0x120 [ 1518.134691] sysfs_create_link+0x5f/0xc0 [ 1518.138746] device_add+0x749/0x15c0 [ 1518.142450] ? device_is_dependent+0x2a0/0x2a0 [ 1518.147029] rfkill_register+0x18e/0xab0 [ 1518.151088] hci_register_dev+0x359/0x8f0 [ 1518.155225] hci_uart_tty_ioctl+0x6d1/0xa60 [ 1518.159531] tty_ioctl+0x5af/0x1430 [ 1518.163140] ? hci_uart_tty_receive+0x4c0/0x4c0 [ 1518.167791] ? tty_fasync+0x2c0/0x2c0 [ 1518.171577] ? proc_fail_nth_write+0x7b/0x180 [ 1518.176058] ? trace_hardirqs_on+0x10/0x10 [ 1518.180279] ? fsnotify+0x974/0x11b0 [ 1518.183975] ? proc_tgid_io_accounting+0x7a0/0x7a0 [ 1518.188883] ? __handle_mm_fault+0x80f/0x4620 [ 1518.193361] ? SyS_write+0x1b7/0x210 [ 1518.197060] ? tty_fasync+0x2c0/0x2c0 [ 1518.200855] do_vfs_ioctl+0x75a/0xff0 [ 1518.204643] ? lock_acquire+0x170/0x3f0 [ 1518.208602] ? ioctl_preallocate+0x1a0/0x1a0 [ 1518.212996] ? __fget+0x2df/0x460 [ 1518.216432] ? do_vfs_ioctl+0xff0/0xff0 [ 1518.220396] ? security_file_ioctl+0x83/0xb0 [ 1518.224787] SyS_ioctl+0x7f/0xb0 [ 1518.228134] ? do_vfs_ioctl+0xff0/0xff0 [ 1518.232091] do_syscall_64+0x1d5/0x640 [ 1518.235966] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1518.241141] RIP: 0033:0x7fa331314fe9 10:01:36 executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000280), 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0xffffffffffff0162) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r1, 0x400455c8, 0x223) [ 1518.244837] RSP: 002b:00007fa32fc8a168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1518.252534] RAX: ffffffffffffffda RBX: 00007fa331427f60 RCX: 00007fa331314fe9 [ 1518.259788] RDX: 0000000000000000 RSI: 00000000400455c8 RDI: 0000000000000003 [ 1518.267040] RBP: 00007fa32fc8a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1518.274291] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1518.281549] R13: 00007ffe09471b3f R14: 00007fa32fc8a300 R15: 0000000000022000 [ 1518.290756] Bluetooth: hci8: Frame reassembly failed (-84) 10:01:36 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) (async) r1 = dup2(r0, r0) r2 = socket$nl_route(0x10, 0x3, 0x0) (async) r3 = socket(0x10, 0x803, 0x0) sendmsg$BATADV_CMD_GET_MESH(r3, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0}}, 0x0) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x3}, [@IFLA_LINKINFO={0x20, 0x12, 0x0, 0x1, @sit={{0x8}, {0x14, 0x2, 0x0, 0x1, [@IFLA_IPTUN_LINK={0x8, 0x1, r4}, @IFLA_IPTUN_REMOTE={0x8, 0x3, @local}]}}}]}, 0x40}}, 0x0) (async) r5 = getuid() setsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000400)={{{@in=@dev, @in6=@mcast2, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x20, 0x33, 0x0, r5}, {0x6, 0x8001, 0x3, 0x3, 0xffffffffffffff28, 0x9, 0x8001}, {0x0, 0x8b4, 0x8, 0x6}, 0x0, 0x6e6bb6, 0x0, 0x0, 0x2}, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, 0x4d4, 0xff}, 0x8, @in=@broadcast, 0x3500, 0x0, 0x3, 0x9, 0x9, 0x1f, 0xad000}}, 0xe8) setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000074, 0x25d) (async, rerun: 64) bind$inet(0xffffffffffffffff, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) (rerun: 64) setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe1}]}, 0x10) (async, rerun: 64) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) (async, rerun: 64) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x21, &(0x7f0000000600)=0xda9, 0x4) (async) sendto$inet(0xffffffffffffffff, &(0x7f0000000640)="febc3b777d549ffacdd9ee6633af6e737f2e6d654105f04716908ec7af8775d530c2cc83e31b3f3c7f9e351ba553af429ff9367031b7ec0aed61ea15d08f299f9241acf82356d0859eb45aec582cd03d4cdbdcd6755c166133d9ba85529c0ed8913418402ba7d907115e75", 0x6b, 0x4000081, 0x0, 0x0) sendto$inet(0xffffffffffffffff, &(0x7f00000012c0)="e1158a927f1f6588b927481241ba7860f46ef65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a97425a3a07e758044ab0ea6f7ae55d88fecf9221a750fbf746bec66ba", 0xfe6a, 0xe, 0x0, 0xfffffffffffffe2b) (async) ioctl$sock_bt_cmtp_CMTPCONNADD(0xffffffffffffffff, 0x400443c8, &(0x7f0000000200)={0xffffffffffffffff, 0x80a}) sendmsg$nl_xfrm(r1, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000140)={&(0x7f0000000080)=@newpolicy={0xc0, 0x13, 0x200, 0x70bd28, 0x25dfdbfe, {{@in6=@private1, @in=@dev={0xac, 0x14, 0x14, 0x31}, 0x4e23, 0x3f, 0x4e23, 0x0, 0xa, 0x20, 0x0, 0x5e, r4, r5}, {0x80, 0x3ff, 0x60000000000000, 0x6, 0x9, 0x3, 0x41e7, 0x200}, {0x3, 0x6, 0x100000000, 0x401}, 0x4, 0x6e6bbd, 0x0, 0x1}, [@replay_thresh={0x8}]}, 0xc0}, 0x1, 0x0, 0x0, 0x30000080}, 0x4008041) (async) write(r1, &(0x7f0000000280)='#\x00\x00\x00', 0x4) 10:01:36 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) r1 = dup2(r0, r0) r2 = syz_mount_image$romfs(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x3, 0x1, &(0x7f0000000100)=[{&(0x7f00000000c0)="e82acb9d7d284f30a037056d", 0xc, 0xf5}], 0x800, &(0x7f0000000140)={[{'T'}], [{@fsmagic={'fsmagic', 0x3d, 0x9}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}, {@pcr={'pcr', 0x3d, 0x11}}, {@context={'context', 0x3d, 'user_u'}}, {@fowner_lt={'fowner<', 0xee00}}]}) writev(r2, &(0x7f00000001c0)=[{&(0x7f00000002c0)="92c27981331e2c7240930f2392d5910421be142db40b8d928fa37ba47f37cbef1166c0089ec6c1f5c6f2c2fcb6e34644bf6fe464bc2d350bf117ea92f08ef7f6d5c18b18b26cc18d430fc21de1ca19245c01f23dbee365e6ef4b495809d4b84a1e7ffbfff2bc3207533417de97be4ccca1396b996ffe321174343e530dd954657b259d28494e6e19161760d49733a3fb80ce39603b9bc33cfe2ed80cf192f090ae88f0eb9fc55257cd8233a98a8bd94e8b06f36f325966730fa9d20d758abb131556fa0d6a6bece4459b53126b9708dd79430e8b", 0xd4}], 0x1) write(r1, &(0x7f0000000280)='#\x00\x00\x00', 0x4) 10:01:36 executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000280), 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0xffffffffffff0162) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r1, 0x400455c8, 0x223) 10:01:36 executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000280), 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0xffffffffffff0162) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$KDADDIO(r1, 0x400455c8, 0x4) ioctl$KDADDIO(r1, 0x400455c8, 0x223) [ 1518.399301] Bluetooth: hci6: Frame reassembly failed (-84) [ 1518.423502] MTD: Attempt to mount non-MTD device "/dev/loop1" [ 1518.431854] romfs: VFS: Can't find a romfs filesystem on dev loop1. [ 1518.495060] Bluetooth: Unknown HCI packet type 5e [ 1518.500293] Bluetooth: Unknown HCI packet type 43 [ 1518.517541] Bluetooth: Unknown HCI packet type 5e [ 1518.522477] Bluetooth: Unknown HCI packet type 50 [ 1518.528306] Bluetooth: Unknown HCI packet type 5e [ 1518.533229] Bluetooth: Unknown HCI packet type 40 [ 1520.366289] Bluetooth: hci8 command 0x1003 tx timeout [ 1520.371621] Bluetooth: hci8 sending frame failed (-49) [ 1520.376344] Bluetooth: hci7 command 0x1003 tx timeout [ 1520.382180] Bluetooth: hci7 sending frame failed (-49) [ 1520.446336] Bluetooth: hci6 command 0x1003 tx timeout [ 1520.451623] Bluetooth: hci6 sending frame failed (-49) [ 1520.526338] Bluetooth: hci9 command 0x1003 tx timeout [ 1520.531637] Bluetooth: hci9 sending frame failed (-49) [ 1522.446214] Bluetooth: hci7 command 0x1001 tx timeout [ 1522.451442] Bluetooth: hci8 command 0x1001 tx timeout [ 1522.451510] Bluetooth: hci7 sending frame failed (-49) [ 1522.460498] Bluetooth: hci8 sending frame failed (-49) [ 1522.526170] Bluetooth: hci6 command 0x1001 tx timeout [ 1522.531443] Bluetooth: hci6 sending frame failed (-49) [ 1522.606200] Bluetooth: hci9 command 0x1001 tx timeout [ 1522.611479] Bluetooth: hci9 sending frame failed (-49) [ 1524.526073] Bluetooth: hci8 command 0x1009 tx timeout [ 1524.526126] Bluetooth: hci7 command 0x1009 tx timeout [ 1524.606131] Bluetooth: hci6 command 0x1009 tx timeout [ 1524.696220] Bluetooth: hci9 command 0x1009 tx timeout 10:01:46 executing program 0: prlimit64(0x0, 0x0, 0x0, 0x0) sched_setattr(0x0, 0x0, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x0) (fail_nth: 49) 10:01:46 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) (async) r1 = dup2(r0, r0) (async, rerun: 32) r2 = syz_mount_image$romfs(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x3, 0x1, &(0x7f0000000100)=[{&(0x7f00000000c0)="e82acb9d7d284f30a037056d", 0xc, 0xf5}], 0x800, &(0x7f0000000140)={[{'T'}], [{@fsmagic={'fsmagic', 0x3d, 0x9}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}, {@pcr={'pcr', 0x3d, 0x11}}, {@context={'context', 0x3d, 'user_u'}}, {@fowner_lt={'fowner<', 0xee00}}]}) (rerun: 32) writev(r2, &(0x7f00000001c0)=[{&(0x7f00000002c0)="92c27981331e2c7240930f2392d5910421be142db40b8d928fa37ba47f37cbef1166c0089ec6c1f5c6f2c2fcb6e34644bf6fe464bc2d350bf117ea92f08ef7f6d5c18b18b26cc18d430fc21de1ca19245c01f23dbee365e6ef4b495809d4b84a1e7ffbfff2bc3207533417de97be4ccca1396b996ffe321174343e530dd954657b259d28494e6e19161760d49733a3fb80ce39603b9bc33cfe2ed80cf192f090ae88f0eb9fc55257cd8233a98a8bd94e8b06f36f325966730fa9d20d758abb131556fa0d6a6bece4459b53126b9708dd79430e8b", 0xd4}], 0x1) write(r1, &(0x7f0000000280)='#\x00\x00\x00', 0x4) 10:01:46 executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000280), 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0xffffffffffff0162) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$KDADDIO(r1, 0x400455c8, 0x4) ioctl$KDADDIO(r1, 0x400455c8, 0x223) 10:01:46 executing program 3: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x0) (fail_nth: 60) 10:01:46 executing program 4: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) (async) sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x8000400, 0x400004}, 0x0) (async) sched_setattr(0x0, &(0x7f0000000000)={0x38, 0x2, 0x10, 0x8, 0xfffffffa, 0x9, 0xfffffffffffffbff, 0x6, 0x6, 0x5}, 0x0) r0 = gettid() sched_setattr(r0, &(0x7f0000000080)={0x38, 0x3, 0x10000034, 0x10001, 0x2, 0x7, 0x6, 0xfffffffffffffc00, 0x80000001, 0xffff8000}, 0x0) (async) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000040)=0xf) (async) ioctl$KDADDIO(r1, 0x400455c8, 0x0) (async) r2 = bpf$ITER_CREATE(0x21, &(0x7f00000000c0), 0x8) ioctl$TIOCL_SETVESABLANK(r2, 0x541c, &(0x7f0000000100)) 10:01:46 executing program 5: r0 = socket$inet(0x2, 0x0, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000074, 0x25d) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$BATADV_CMD_GET_MESH(r2, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0}}, 0x0) getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x3}, [@IFLA_LINKINFO={0x20, 0x12, 0x0, 0x1, @sit={{0x8}, {0x14, 0x2, 0x0, 0x1, [@IFLA_IPTUN_LINK={0x8, 0x1, r3}, @IFLA_IPTUN_REMOTE={0x8, 0x3, @local}]}}}]}, 0x40}}, 0x0) setsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f00000002c0)={{{@in6=@empty, @in=@multicast2, 0x4e24, 0x4, 0x4e22, 0xf609, 0xa, 0xa0, 0x0, 0x3b, r3, 0xee01}, {0x68e, 0x101, 0x4, 0x8, 0x4, 0x7ff, 0x0, 0x6}, {0x85c, 0x6, 0x0, 0x3}, 0x6, 0x6e6bb4, 0x2, 0x0, 0x4, 0x2}, {{@in6=@local, 0x4d5, 0xe9482311e91241e4}, 0xa, @in=@multicast1, 0x3503, 0x0, 0x2, 0xfb, 0x7, 0x40, 0x800}}, 0xe8) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe1}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) setsockopt$sock_int(r0, 0x1, 0x21, &(0x7f0000000600)=0xda9, 0x4) sendto$inet(r0, &(0x7f0000000640)="febc3b777d549ffacdd9ee6633af6e737f2e6d654105f04716908ec7af8775d530c2cc83e31b3f3c7f9e351ba553af429ff9367031b7ec0aed61ea15d08f299f9241acf82356d0859eb45aec582cd03d4cdbdcd6755c166133d9ba85529c0ed8913418402ba7d907115e75", 0x6b, 0x4000081, 0x0, 0x0) sendto$inet(r0, &(0x7f00000012c0)="e1158a927f1f6588b927481241ba7860f46ef65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a97425a3a07e758044ab0ea6f7ae55d88fecf9221a750fbf746bec66ba", 0xfe6a, 0xe, 0x0, 0xfffffffffffffe2b) getsockopt$IP_VS_SO_GET_TIMEOUT(r0, 0x0, 0x486, &(0x7f0000000000), &(0x7f0000000080)=0xc) prlimit64(0x0, 0xe, &(0x7f0000000280), 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0xffffffffffff0162) r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r4, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r4, 0x400455c8, 0x4) 10:01:46 executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000280), 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0xffffffffffff0162) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$KDADDIO(r1, 0x400455c8, 0x4) ioctl$KDADDIO(r1, 0x400455c8, 0x223) [ 1528.745632] FAULT_INJECTION: forcing a failure. [ 1528.745632] name failslab, interval 1, probability 0, space 0, times 0 [ 1528.766659] MTD: Attempt to mount non-MTD device "/dev/loop1" [ 1528.788004] FAULT_INJECTION: forcing a failure. [ 1528.788004] name failslab, interval 1, probability 0, space 0, times 0 [ 1528.788237] Bluetooth: hci7: Frame reassembly failed (-84) [ 1528.799867] CPU: 1 PID: 21310 Comm: syz-executor.3 Not tainted 4.14.262-syzkaller #0 [ 1528.812936] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1528.820230] romfs: VFS: Can't find a romfs filesystem on dev loop1. [ 1528.822278] Call Trace: [ 1528.822300] dump_stack+0x1b2/0x281 [ 1528.822315] should_fail.cold+0x10a/0x149 [ 1528.822330] should_failslab+0xd6/0x130 [ 1528.822342] kmem_cache_alloc+0x28e/0x3c0 [ 1528.822354] __kernfs_new_node+0x6f/0x470 [ 1528.851303] kernfs_new_node+0x7b/0xe0 [ 1528.855199] kernfs_create_link+0x27/0x160 [ 1528.859448] sysfs_do_create_link_sd+0x90/0x120 [ 1528.864125] sysfs_create_link+0x5f/0xc0 [ 1528.868195] device_add+0x749/0x15c0 [ 1528.871911] ? device_is_dependent+0x2a0/0x2a0 [ 1528.876503] rfkill_register+0x18e/0xab0 [ 1528.880578] hci_register_dev+0x359/0x8f0 [ 1528.884739] hci_uart_tty_ioctl+0x6d1/0xa60 [ 1528.889066] tty_ioctl+0x5af/0x1430 [ 1528.892694] ? hci_uart_tty_receive+0x4c0/0x4c0 [ 1528.897365] ? tty_fasync+0x2c0/0x2c0 [ 1528.901172] ? proc_fail_nth_write+0x7b/0x180 [ 1528.905675] ? trace_hardirqs_on+0x10/0x10 [ 1528.909916] ? fsnotify+0x974/0x11b0 [ 1528.913634] ? proc_tgid_io_accounting+0x7a0/0x7a0 [ 1528.918563] ? __handle_mm_fault+0x80f/0x4620 [ 1528.923069] ? SyS_write+0x1b7/0x210 [ 1528.926788] ? tty_fasync+0x2c0/0x2c0 [ 1528.930590] do_vfs_ioctl+0x75a/0xff0 [ 1528.934396] ? lock_acquire+0x170/0x3f0 [ 1528.938370] ? ioctl_preallocate+0x1a0/0x1a0 [ 1528.942781] ? __fget+0x2df/0x460 [ 1528.946242] ? do_vfs_ioctl+0xff0/0xff0 [ 1528.950225] ? security_file_ioctl+0x83/0xb0 [ 1528.954636] SyS_ioctl+0x7f/0xb0 [ 1528.958007] ? do_vfs_ioctl+0xff0/0xff0 [ 1528.961986] do_syscall_64+0x1d5/0x640 [ 1528.965882] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1528.971066] RIP: 0033:0x7fa331314fe9 [ 1528.974773] RSP: 002b:00007fa32fc8a168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1528.982478] RAX: ffffffffffffffda RBX: 00007fa331427f60 RCX: 00007fa331314fe9 [ 1528.989739] RDX: 0000000000000000 RSI: 00000000400455c8 RDI: 0000000000000003 [ 1528.996994] RBP: 00007fa32fc8a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1529.004250] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1529.011542] R13: 00007ffe09471b3f R14: 00007fa32fc8a300 R15: 0000000000022000 [ 1529.018823] CPU: 0 PID: 21305 Comm: syz-executor.0 Not tainted 4.14.262-syzkaller #0 [ 1529.026716] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1529.036070] Call Trace: [ 1529.038666] dump_stack+0x1b2/0x281 [ 1529.042325] should_fail.cold+0x10a/0x149 [ 1529.046484] should_failslab+0xd6/0x130 [ 1529.050463] kmem_cache_alloc_node_trace+0x25a/0x400 [ 1529.055603] __kmalloc_node_track_caller+0x38/0x70 [ 1529.056882] Bluetooth: hci8: Frame reassembly failed (-84) [ 1529.060531] ? led_trigger_unregister+0x2e0/0x2e0 [ 1529.070971] __devres_alloc_node+0x36/0x140 [ 1529.075420] devm_led_trigger_register+0x32/0xc0 [ 1529.080183] hci_leds_init+0xdf/0x1a0 [ 1529.083987] hci_register_dev+0x2fe/0x8f0 [ 1529.088132] hci_uart_tty_ioctl+0x6d1/0xa60 [ 1529.092441] tty_ioctl+0x5af/0x1430 [ 1529.096047] ? hci_uart_tty_receive+0x4c0/0x4c0 [ 1529.100704] ? tty_fasync+0x2c0/0x2c0 [ 1529.104494] ? proc_fail_nth_write+0x7b/0x180 [ 1529.108977] ? trace_hardirqs_on+0x10/0x10 [ 1529.113199] ? fsnotify+0x974/0x11b0 [ 1529.116913] ? proc_tgid_io_accounting+0x7a0/0x7a0 [ 1529.121821] ? __handle_mm_fault+0x80f/0x4620 [ 1529.126304] ? SyS_write+0x1b7/0x210 [ 1529.129998] ? tty_fasync+0x2c0/0x2c0 [ 1529.133782] do_vfs_ioctl+0x75a/0xff0 [ 1529.137571] ? lock_acquire+0x170/0x3f0 [ 1529.141537] ? ioctl_preallocate+0x1a0/0x1a0 [ 1529.145929] ? __fget+0x2df/0x460 [ 1529.149366] ? do_vfs_ioctl+0xff0/0xff0 [ 1529.153322] ? security_file_ioctl+0x83/0xb0 [ 1529.157714] SyS_ioctl+0x7f/0xb0 [ 1529.161065] ? do_vfs_ioctl+0xff0/0xff0 [ 1529.165027] do_syscall_64+0x1d5/0x640 [ 1529.168897] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1529.174065] RIP: 0033:0x7fbb944a7fe9 [ 1529.177756] RSP: 002b:00007fbb92e1d168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1529.185443] RAX: ffffffffffffffda RBX: 00007fbb945baf60 RCX: 00007fbb944a7fe9 10:01:47 executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000280), 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0xffffffffffff0162) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(0xffffffffffffffff, 0x400455c8, 0x4) ioctl$KDADDIO(0xffffffffffffffff, 0x400455c8, 0x223) [ 1529.192691] RDX: 0000000000000000 RSI: 00000000400455c8 RDI: 0000000000000003 [ 1529.199944] RBP: 00007fbb92e1d1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1529.207191] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1529.214438] R13: 00007ffc96d7392f R14: 00007fbb92e1d300 R15: 0000000000022000 [ 1529.237362] Bluetooth: hci6: Frame reassembly failed (-84) 10:01:47 executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000280), 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0xffffffffffff0162) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(0xffffffffffffffff, 0x400455c8, 0x4) ioctl$KDADDIO(0xffffffffffffffff, 0x400455c8, 0x223) 10:01:47 executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000280), 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0xffffffffffff0162) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(0xffffffffffffffff, 0x400455c8, 0x4) ioctl$KDADDIO(0xffffffffffffffff, 0x400455c8, 0x223) [ 1529.262019] MTD: Attempt to mount non-MTD device "/dev/loop1" [ 1529.279297] romfs: VFS: Can't find a romfs filesystem on dev loop1. 10:01:47 executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000280), 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0xffffffffffff0162) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x4) ioctl$KDADDIO(r0, 0x400455c8, 0x223) [ 1529.321566] MTD: Attempt to mount non-MTD device "/dev/loop1" [ 1529.335712] romfs: VFS: Can't find a romfs filesystem on dev loop1. [ 1529.376126] Bluetooth: Unknown HCI packet type 5e [ 1529.392049] MTD: Attempt to mount non-MTD device "/dev/loop1" [ 1529.392982] Bluetooth: Unknown HCI packet type 43 [ 1529.400608] romfs: VFS: Can't find a romfs filesystem on dev loop1. [ 1529.403447] Bluetooth: Unknown HCI packet type 5e [ 1529.420873] Bluetooth: Unknown HCI packet type 50 [ 1529.426439] Bluetooth: Unknown HCI packet type 5e [ 1529.431332] Bluetooth: Unknown HCI packet type 40 [ 1529.449800] MTD: Attempt to mount non-MTD device "/dev/loop1" [ 1529.457478] romfs: VFS: Can't find a romfs filesystem on dev loop1. [ 1529.512687] MTD: Attempt to mount non-MTD device "/dev/loop1" [ 1529.519279] romfs: VFS: Can't find a romfs filesystem on dev loop1. [ 1529.552553] MTD: Attempt to mount non-MTD device "/dev/loop1" 10:01:47 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) (async) r1 = dup2(r0, r0) (async) r2 = syz_mount_image$romfs(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x3, 0x1, &(0x7f0000000100)=[{&(0x7f00000000c0)="e82acb9d7d284f30a037056d", 0xc, 0xf5}], 0x800, &(0x7f0000000140)={[{'T'}], [{@fsmagic={'fsmagic', 0x3d, 0x9}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}, {@pcr={'pcr', 0x3d, 0x11}}, {@context={'context', 0x3d, 'user_u'}}, {@fowner_lt={'fowner<', 0xee00}}]}) writev(r2, &(0x7f00000001c0)=[{&(0x7f00000002c0)="92c27981331e2c7240930f2392d5910421be142db40b8d928fa37ba47f37cbef1166c0089ec6c1f5c6f2c2fcb6e34644bf6fe464bc2d350bf117ea92f08ef7f6d5c18b18b26cc18d430fc21de1ca19245c01f23dbee365e6ef4b495809d4b84a1e7ffbfff2bc3207533417de97be4ccca1396b996ffe321174343e530dd954657b259d28494e6e19161760d49733a3fb80ce39603b9bc33cfe2ed80cf192f090ae88f0eb9fc55257cd8233a98a8bd94e8b06f36f325966730fa9d20d758abb131556fa0d6a6bece4459b53126b9708dd79430e8b", 0xd4}], 0x1) write(r1, &(0x7f0000000280)='#\x00\x00\x00', 0x4) [ 1529.560833] romfs: VFS: Can't find a romfs filesystem on dev loop1. [ 1529.648212] MTD: Attempt to mount non-MTD device "/dev/loop1" [ 1529.654652] romfs: VFS: Can't find a romfs filesystem on dev loop1. [ 1530.845754] Bluetooth: hci7 command 0x1003 tx timeout [ 1530.851106] Bluetooth: hci7 sending frame failed (-49) [ 1531.085712] Bluetooth: hci9 command 0x1003 tx timeout [ 1531.090956] Bluetooth: hci8 command 0x1003 tx timeout [ 1531.090996] Bluetooth: hci9 sending frame failed (-49) [ 1531.096568] Bluetooth: hci8 sending frame failed (-49) [ 1531.245688] Bluetooth: hci6 command 0x1003 tx timeout [ 1531.251051] Bluetooth: hci6 sending frame failed (-49) [ 1531.405715] Bluetooth: hci10 command 0x1003 tx timeout [ 1531.411171] Bluetooth: hci10 sending frame failed (-49) [ 1532.925724] Bluetooth: hci7 command 0x1001 tx timeout [ 1532.931034] Bluetooth: hci7 sending frame failed (-49) [ 1533.165664] Bluetooth: hci9 command 0x1001 tx timeout [ 1533.165667] Bluetooth: hci8 command 0x1001 tx timeout [ 1533.166965] Bluetooth: hci8 sending frame failed (-49) [ 1533.170956] Bluetooth: hci9 sending frame failed (-49) [ 1533.325690] Bluetooth: hci6 command 0x1001 tx timeout [ 1533.330979] Bluetooth: hci6 sending frame failed (-49) [ 1533.485649] Bluetooth: hci10 command 0x1001 tx timeout [ 1533.491023] Bluetooth: hci10 sending frame failed (-49) [ 1535.005614] Bluetooth: hci7 command 0x1009 tx timeout [ 1535.245555] Bluetooth: hci9 command 0x1009 tx timeout [ 1535.245583] Bluetooth: hci8 command 0x1009 tx timeout [ 1535.405535] Bluetooth: hci6 command 0x1009 tx timeout [ 1535.565535] Bluetooth: hci10 command 0x1009 tx timeout 10:01:57 executing program 0: prlimit64(0x0, 0x0, 0x0, 0x0) sched_setattr(0x0, 0x0, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x0) (fail_nth: 50) 10:01:57 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000000100), 0x80, 0x0, 0x0, 0x0, 0x42}}], 0x40000000000008c, 0x22, 0x0) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x317c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000000)=0x0) r2 = syz_open_procfs(r1, &(0x7f00000001c0)='cpuset\x00') preadv(r2, &(0x7f00000017c0), 0x332, 0x0, 0x0) r3 = dup2(r0, r0) write(r3, &(0x7f0000000280)='#\x00\x00\x00', 0x4) accept4(r0, &(0x7f0000000200)=@ieee802154={0x24, @long}, &(0x7f0000000180)=0x80, 0x0) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) r4 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r3, 0xc018937b, &(0x7f00000002c0)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0xee00, 0xee01}}, './file0\x00'}) bind$bt_hci(r5, &(0x7f0000000300)={0x1f, 0x2, 0x4}, 0x6) fadvise64(r4, 0x6, 0x6, 0x5) 10:01:57 executing program 4: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0) sched_setattr(0xffffffffffffffff, &(0x7f0000000000)={0x38, 0x3, 0x2, 0x7, 0x1000, 0x4, 0x5ea, 0xfffffffffffffffc, 0x7fffffff, 0x1000}, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) sched_setattr(0xffffffffffffffff, &(0x7f0000000080)={0x38, 0x2, 0x10, 0x1f, 0x400, 0x100000001, 0x5, 0x8dd1, 0x20, 0xff}, 0x0) r1 = socket(0x10, 0x803, 0x0) sendmsg$BATADV_CMD_GET_MESH(r1, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0}}, 0x0) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) connect$unix(r1, &(0x7f00000000c0)=@abs={0x0, 0x0, 0x4e23}, 0x6e) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x0) 10:01:57 executing program 5: r0 = socket$inet(0x2, 0x0, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000074, 0x25d) (async) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) (async) r1 = socket$nl_route(0x10, 0x3, 0x0) (async) r2 = socket(0x10, 0x803, 0x0) sendmsg$BATADV_CMD_GET_MESH(r2, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0}}, 0x0) getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x3}, [@IFLA_LINKINFO={0x20, 0x12, 0x0, 0x1, @sit={{0x8}, {0x14, 0x2, 0x0, 0x1, [@IFLA_IPTUN_LINK={0x8, 0x1, r3}, @IFLA_IPTUN_REMOTE={0x8, 0x3, @local}]}}}]}, 0x40}}, 0x0) (async) setsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f00000002c0)={{{@in6=@empty, @in=@multicast2, 0x4e24, 0x4, 0x4e22, 0xf609, 0xa, 0xa0, 0x0, 0x3b, r3, 0xee01}, {0x68e, 0x101, 0x4, 0x8, 0x4, 0x7ff, 0x0, 0x6}, {0x85c, 0x6, 0x0, 0x3}, 0x6, 0x6e6bb4, 0x2, 0x0, 0x4, 0x2}, {{@in6=@local, 0x4d5, 0xe9482311e91241e4}, 0xa, @in=@multicast1, 0x3503, 0x0, 0x2, 0xfb, 0x7, 0x40, 0x800}}, 0xe8) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe1}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) (async) setsockopt$sock_int(r0, 0x1, 0x21, &(0x7f0000000600)=0xda9, 0x4) (async) sendto$inet(r0, &(0x7f0000000640)="febc3b777d549ffacdd9ee6633af6e737f2e6d654105f04716908ec7af8775d530c2cc83e31b3f3c7f9e351ba553af429ff9367031b7ec0aed61ea15d08f299f9241acf82356d0859eb45aec582cd03d4cdbdcd6755c166133d9ba85529c0ed8913418402ba7d907115e75", 0x6b, 0x4000081, 0x0, 0x0) (async) sendto$inet(r0, &(0x7f00000012c0)="e1158a927f1f6588b927481241ba7860f46ef65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a97425a3a07e758044ab0ea6f7ae55d88fecf9221a750fbf746bec66ba", 0xfe6a, 0xe, 0x0, 0xfffffffffffffe2b) (async) getsockopt$IP_VS_SO_GET_TIMEOUT(r0, 0x0, 0x486, &(0x7f0000000000), &(0x7f0000000080)=0xc) prlimit64(0x0, 0xe, &(0x7f0000000280), 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0xffffffffffff0162) (async) r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r4, 0x5423, &(0x7f0000000040)=0xf) (async) ioctl$KDADDIO(r4, 0x400455c8, 0x4) 10:01:57 executing program 3: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x0) (fail_nth: 61) 10:01:57 executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000280), 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0xffffffffffff0162) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x4) ioctl$KDADDIO(r0, 0x400455c8, 0x223) [ 1539.620814] FAULT_INJECTION: forcing a failure. [ 1539.620814] name failslab, interval 1, probability 0, space 0, times 0 [ 1539.627146] FAULT_INJECTION: forcing a failure. [ 1539.627146] name failslab, interval 1, probability 0, space 0, times 0 [ 1539.632638] CPU: 1 PID: 21409 Comm: syz-executor.3 Not tainted 4.14.262-syzkaller #0 [ 1539.651123] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1539.660463] Call Trace: [ 1539.663043] dump_stack+0x1b2/0x281 [ 1539.666656] should_fail.cold+0x10a/0x149 [ 1539.670810] should_failslab+0xd6/0x130 [ 1539.674790] kmem_cache_alloc+0x28e/0x3c0 [ 1539.678929] __kernfs_new_node+0x6f/0x470 [ 1539.683061] kernfs_new_node+0x7b/0xe0 [ 1539.686943] __kernfs_create_file+0x3d/0x320 [ 1539.691340] sysfs_add_file_mode_ns+0x1e1/0x450 [ 1539.696003] internal_create_group+0x22b/0x710 [ 1539.700573] sysfs_create_groups+0x92/0x130 [ 1539.704887] device_add+0x7e5/0x15c0 [ 1539.708589] ? device_is_dependent+0x2a0/0x2a0 [ 1539.713177] rfkill_register+0x18e/0xab0 [ 1539.717228] hci_register_dev+0x359/0x8f0 [ 1539.721365] hci_uart_tty_ioctl+0x6d1/0xa60 [ 1539.725674] tty_ioctl+0x5af/0x1430 [ 1539.729285] ? hci_uart_tty_receive+0x4c0/0x4c0 [ 1539.733939] ? tty_fasync+0x2c0/0x2c0 [ 1539.737722] ? proc_fail_nth_write+0x7b/0x180 [ 1539.742201] ? trace_hardirqs_on+0x10/0x10 [ 1539.746424] ? fsnotify+0x974/0x11b0 [ 1539.750122] ? proc_tgid_io_accounting+0x7a0/0x7a0 [ 1539.755037] ? __handle_mm_fault+0x80f/0x4620 [ 1539.759517] ? SyS_write+0x1b7/0x210 [ 1539.763218] ? tty_fasync+0x2c0/0x2c0 [ 1539.767003] do_vfs_ioctl+0x75a/0xff0 [ 1539.770788] ? lock_acquire+0x170/0x3f0 [ 1539.774747] ? ioctl_preallocate+0x1a0/0x1a0 [ 1539.779142] ? __fget+0x2df/0x460 [ 1539.782578] ? do_vfs_ioctl+0xff0/0xff0 [ 1539.786541] ? security_file_ioctl+0x83/0xb0 [ 1539.790945] SyS_ioctl+0x7f/0xb0 [ 1539.794294] ? do_vfs_ioctl+0xff0/0xff0 [ 1539.798254] do_syscall_64+0x1d5/0x640 [ 1539.802132] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1539.807303] RIP: 0033:0x7fa331314fe9 [ 1539.811002] RSP: 002b:00007fa32fc8a168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1539.818692] RAX: ffffffffffffffda RBX: 00007fa331427f60 RCX: 00007fa331314fe9 [ 1539.825947] RDX: 0000000000000000 RSI: 00000000400455c8 RDI: 0000000000000003 [ 1539.833199] RBP: 00007fa32fc8a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1539.840450] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1539.847704] R13: 00007ffe09471b3f R14: 00007fa32fc8a300 R15: 0000000000022000 [ 1539.855014] CPU: 0 PID: 21416 Comm: syz-executor.0 Not tainted 4.14.262-syzkaller #0 [ 1539.856922] Bluetooth: hci6: Frame reassembly failed (-84) [ 1539.862905] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1539.862910] Call Trace: [ 1539.862926] dump_stack+0x1b2/0x281 [ 1539.862940] should_fail.cold+0x10a/0x149 [ 1539.862953] should_failslab+0xd6/0x130 [ 1539.892197] __kmalloc+0x2c1/0x400 [ 1539.895743] ? rfkill_alloc+0x98/0x2b0 [ 1539.899641] rfkill_alloc+0x98/0x2b0 [ 1539.903365] hci_register_dev+0x318/0x8f0 [ 1539.907526] hci_uart_tty_ioctl+0x6d1/0xa60 [ 1539.911854] tty_ioctl+0x5af/0x1430 [ 1539.915488] ? hci_uart_tty_receive+0x4c0/0x4c0 [ 1539.920160] ? tty_fasync+0x2c0/0x2c0 [ 1539.923966] ? proc_fail_nth_write+0x7b/0x180 [ 1539.928461] ? trace_hardirqs_on+0x10/0x10 [ 1539.932694] ? fsnotify+0x974/0x11b0 [ 1539.936392] ? proc_tgid_io_accounting+0x7a0/0x7a0 [ 1539.941300] ? __handle_mm_fault+0x80f/0x4620 [ 1539.945783] ? SyS_write+0x1b7/0x210 [ 1539.949523] ? tty_fasync+0x2c0/0x2c0 [ 1539.953417] do_vfs_ioctl+0x75a/0xff0 [ 1539.957209] ? lock_acquire+0x170/0x3f0 [ 1539.961172] ? ioctl_preallocate+0x1a0/0x1a0 [ 1539.965573] ? __fget+0x2df/0x460 [ 1539.969015] ? do_vfs_ioctl+0xff0/0xff0 [ 1539.972978] ? security_file_ioctl+0x83/0xb0 [ 1539.977373] SyS_ioctl+0x7f/0xb0 [ 1539.980720] ? do_vfs_ioctl+0xff0/0xff0 [ 1539.984678] do_syscall_64+0x1d5/0x640 [ 1539.988552] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1539.993725] RIP: 0033:0x7fbb944a7fe9 [ 1539.997416] RSP: 002b:00007fbb92e1d168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1540.005107] RAX: ffffffffffffffda RBX: 00007fbb945baf60 RCX: 00007fbb944a7fe9 [ 1540.012363] RDX: 0000000000000000 RSI: 00000000400455c8 RDI: 0000000000000003 10:01:57 executing program 5: r0 = socket$inet(0x2, 0x0, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000074, 0x25d) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) (async) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$BATADV_CMD_GET_MESH(r2, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0}}, 0x0) (async) getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x3}, [@IFLA_LINKINFO={0x20, 0x12, 0x0, 0x1, @sit={{0x8}, {0x14, 0x2, 0x0, 0x1, [@IFLA_IPTUN_LINK={0x8, 0x1, r3}, @IFLA_IPTUN_REMOTE={0x8, 0x3, @local}]}}}]}, 0x40}}, 0x0) (async) setsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f00000002c0)={{{@in6=@empty, @in=@multicast2, 0x4e24, 0x4, 0x4e22, 0xf609, 0xa, 0xa0, 0x0, 0x3b, r3, 0xee01}, {0x68e, 0x101, 0x4, 0x8, 0x4, 0x7ff, 0x0, 0x6}, {0x85c, 0x6, 0x0, 0x3}, 0x6, 0x6e6bb4, 0x2, 0x0, 0x4, 0x2}, {{@in6=@local, 0x4d5, 0xe9482311e91241e4}, 0xa, @in=@multicast1, 0x3503, 0x0, 0x2, 0xfb, 0x7, 0x40, 0x800}}, 0xe8) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe1}]}, 0x10) (async) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) (async) setsockopt$sock_int(r0, 0x1, 0x21, &(0x7f0000000600)=0xda9, 0x4) (async) sendto$inet(r0, &(0x7f0000000640)="febc3b777d549ffacdd9ee6633af6e737f2e6d654105f04716908ec7af8775d530c2cc83e31b3f3c7f9e351ba553af429ff9367031b7ec0aed61ea15d08f299f9241acf82356d0859eb45aec582cd03d4cdbdcd6755c166133d9ba85529c0ed8913418402ba7d907115e75", 0x6b, 0x4000081, 0x0, 0x0) (async) sendto$inet(r0, &(0x7f00000012c0)="e1158a927f1f6588b927481241ba7860f46ef65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a97425a3a07e758044ab0ea6f7ae55d88fecf9221a750fbf746bec66ba", 0xfe6a, 0xe, 0x0, 0xfffffffffffffe2b) getsockopt$IP_VS_SO_GET_TIMEOUT(r0, 0x0, 0x486, &(0x7f0000000000), &(0x7f0000000080)=0xc) (async, rerun: 64) prlimit64(0x0, 0xe, &(0x7f0000000280), 0x0) (async, rerun: 64) sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0xffffffffffff0162) (async) r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r4, 0x5423, &(0x7f0000000040)=0xf) (async) ioctl$KDADDIO(r4, 0x400455c8, 0x4) [ 1540.019626] RBP: 00007fbb92e1d1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1540.026889] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1540.034145] R13: 00007ffc96d7392f R14: 00007fbb92e1d300 R15: 0000000000022000 [ 1540.043371] Bluetooth: hci7: Frame reassembly failed (-84) 10:01:58 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000000100), 0x80, 0x0, 0x0, 0x0, 0x42}}], 0x40000000000008c, 0x22, 0x0) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x317c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000000)=0x0) r2 = syz_open_procfs(r1, &(0x7f00000001c0)='cpuset\x00') preadv(r2, &(0x7f00000017c0), 0x332, 0x0, 0x0) r3 = dup2(r0, r0) write(r3, &(0x7f0000000280)='#\x00\x00\x00', 0x4) accept4(r0, &(0x7f0000000200)=@ieee802154={0x24, @long}, &(0x7f0000000180)=0x80, 0x0) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) r4 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r3, 0xc018937b, &(0x7f00000002c0)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0xee00, 0xee01}}, './file0\x00'}) bind$bt_hci(r5, &(0x7f0000000300)={0x1f, 0x2, 0x4}, 0x6) fadvise64(r4, 0x6, 0x6, 0x5) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) (async) recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000000100), 0x80, 0x0, 0x0, 0x0, 0x42}}], 0x40000000000008c, 0x22, 0x0) (async) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x317c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3) (async) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000000)) (async) syz_open_procfs(r1, &(0x7f00000001c0)='cpuset\x00') (async) preadv(r2, &(0x7f00000017c0), 0x332, 0x0, 0x0) (async) dup2(r0, r0) (async) write(r3, &(0x7f0000000280)='#\x00\x00\x00', 0x4) (async) accept4(r0, &(0x7f0000000200)=@ieee802154={0x24, @long}, &(0x7f0000000180)=0x80, 0x0) (async) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async) openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0) (async) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r3, 0xc018937b, &(0x7f00000002c0)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0xee00, 0xee01}}, './file0\x00'}) (async) bind$bt_hci(r5, &(0x7f0000000300)={0x1f, 0x2, 0x4}, 0x6) (async) fadvise64(r4, 0x6, 0x6, 0x5) (async) [ 1540.158850] Bluetooth: hci8 sending frame failed (-49) 10:01:58 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000000100), 0x80, 0x0, 0x0, 0x0, 0x42}}], 0x40000000000008c, 0x22, 0x0) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x317c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000000)=0x0) r2 = syz_open_procfs(r1, &(0x7f00000001c0)='cpuset\x00') preadv(r2, &(0x7f00000017c0), 0x332, 0x0, 0x0) r3 = dup2(r0, r0) write(r3, &(0x7f0000000280)='#\x00\x00\x00', 0x4) accept4(r0, &(0x7f0000000200)=@ieee802154={0x24, @long}, &(0x7f0000000180)=0x80, 0x0) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) r4 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r3, 0xc018937b, &(0x7f00000002c0)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0xee00, 0xee01}}, './file0\x00'}) bind$bt_hci(r5, &(0x7f0000000300)={0x1f, 0x2, 0x4}, 0x6) fadvise64(r4, 0x6, 0x6, 0x5) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) (async) recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000000100), 0x80, 0x0, 0x0, 0x0, 0x42}}], 0x40000000000008c, 0x22, 0x0) (async) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x317c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3) (async) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000000)) (async) syz_open_procfs(r1, &(0x7f00000001c0)='cpuset\x00') (async) preadv(r2, &(0x7f00000017c0), 0x332, 0x0, 0x0) (async) dup2(r0, r0) (async) write(r3, &(0x7f0000000280)='#\x00\x00\x00', 0x4) (async) accept4(r0, &(0x7f0000000200)=@ieee802154={0x24, @long}, &(0x7f0000000180)=0x80, 0x0) (async) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async) openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0) (async) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r3, 0xc018937b, &(0x7f00000002c0)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0xee00, 0xee01}}, './file0\x00'}) (async) bind$bt_hci(r5, &(0x7f0000000300)={0x1f, 0x2, 0x4}, 0x6) (async) fadvise64(r4, 0x6, 0x6, 0x5) (async) 10:01:58 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0x4, 0x2}, 0xfffffffffffffeed) r1 = dup2(r0, r0) write(r1, &(0x7f0000000280)='#\x00\x00\x00', 0x4) 10:01:58 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0x4, 0x2}, 0xfffffffffffffeed) (async) r1 = dup2(r0, r0) write(r1, &(0x7f0000000280)='#\x00\x00\x00', 0x4) 10:01:58 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0x4, 0x2}, 0xfffffffffffffeed) (async) r1 = dup2(r0, r0) write(r1, &(0x7f0000000280)='#\x00\x00\x00', 0x4) [ 1541.885111] Bluetooth: hci6 command 0x1003 tx timeout [ 1541.890465] Bluetooth: hci6 sending frame failed (-49) [ 1542.045124] Bluetooth: hci7 command 0x1003 tx timeout [ 1542.050477] Bluetooth: hci7 sending frame failed (-49) [ 1542.125098] Bluetooth: hci10 command 0x1003 tx timeout [ 1542.130649] Bluetooth: hci9 command 0x1003 tx timeout [ 1542.130691] Bluetooth: hci10 sending frame failed (-49) [ 1542.140821] Bluetooth: hci9 sending frame failed (-49) [ 1542.205105] Bluetooth: hci8 command 0x1003 tx timeout [ 1542.210471] Bluetooth: hci8 sending frame failed (-49) [ 1543.965103] Bluetooth: hci6 command 0x1001 tx timeout [ 1543.970423] Bluetooth: hci6 sending frame failed (-49) [ 1544.125048] Bluetooth: hci7 command 0x1001 tx timeout [ 1544.130453] Bluetooth: hci7 sending frame failed (-49) [ 1544.205063] Bluetooth: hci10 command 0x1001 tx timeout [ 1544.210441] Bluetooth: hci10 sending frame failed (-49) [ 1544.215922] Bluetooth: hci9 command 0x1001 tx timeout [ 1544.221174] Bluetooth: hci9 sending frame failed (-49) [ 1544.295013] Bluetooth: hci8 command 0x1001 tx timeout [ 1544.300302] Bluetooth: hci8 sending frame failed (-49) [ 1546.045019] Bluetooth: hci6 command 0x1009 tx timeout [ 1546.205010] Bluetooth: hci7 command 0x1009 tx timeout [ 1546.284950] Bluetooth: hci10 command 0x1009 tx timeout [ 1546.284954] Bluetooth: hci9 command 0x1009 tx timeout [ 1546.365011] Bluetooth: hci8 command 0x1009 tx timeout 10:02:08 executing program 0: prlimit64(0x0, 0x0, 0x0, 0x0) sched_setattr(0x0, 0x0, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x0) (fail_nth: 51) 10:02:08 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) r1 = dup2(r0, r0) write(r1, &(0x7f0000000280)='#\x00\x00\x00', 0x4) r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r2, &(0x7f0000000240)={0x1f, 0x4, 0x2}, 0x6) ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r1, 0x89f1, &(0x7f0000000140)={'ip_vti0\x00', &(0x7f00000002c0)=ANY=[@ANYBLOB='ip_vti0\x00\x00\x00\x00\x00\x00\x00\x00\x00', @ANYRES32=0x0, @ANYBLOB="0080000800000009000000054c1200b00067000005299078ac1e0001ac1e00018811bf1e12a59aed8d1da20293d66011de831bcbe0000002e000000264010100ac1e00017f0000017f000001441c99e30a010101000000050a01010100010000ac1414aa00000004445460110a0101000000001dac141432000000627f00000100010001ffffffff0000000700000000000000dcac1414bb00000005ac1414aa00000007e0000001000100017f00000100000006ac1414aa0000008b2900530a5c47559b67ca5326156661bdf886eb4c259f8f20399b2e668cfb535c2dee5d1fb6cdd274874444655c1e8713"]}) ioctl$sock_ipv6_tunnel_SIOCGETPRL(r1, 0x89f4, &(0x7f0000000200)={'ip6tnl0\x00', &(0x7f0000000180)={'ip6_vti0\x00', r3, 0x2f, 0xff, 0x1, 0x80000000, 0x11, @private1, @private2, 0x7800, 0x1, 0x7}}) 10:02:08 executing program 4: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) (async) sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0) sched_setattr(0xffffffffffffffff, &(0x7f0000000000)={0x38, 0x3, 0x2, 0x7, 0x1000, 0x4, 0x5ea, 0xfffffffffffffffc, 0x7fffffff, 0x1000}, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) (async) sched_setattr(0xffffffffffffffff, &(0x7f0000000080)={0x38, 0x2, 0x10, 0x1f, 0x400, 0x100000001, 0x5, 0x8dd1, 0x20, 0xff}, 0x0) (async, rerun: 32) r1 = socket(0x10, 0x803, 0x0) (rerun: 32) sendmsg$BATADV_CMD_GET_MESH(r1, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0}}, 0x0) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) connect$unix(r1, &(0x7f00000000c0)=@abs={0x0, 0x0, 0x4e23}, 0x6e) (async) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) (async) ioctl$KDADDIO(r0, 0x400455c8, 0x0) 10:02:08 executing program 3: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x0) (fail_nth: 62) 10:02:08 executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000280), 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x4) ioctl$KDADDIO(r0, 0x400455c8, 0x223) 10:02:08 executing program 5: prlimit64(0x0, 0xe, &(0x7f0000000280), 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0xffffffffffff0162) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x1, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) r1 = fcntl$getown(r0, 0x9) prlimit64(r1, 0x0, &(0x7f0000000080)={0x5, 0x7}, &(0x7f00000000c0)) ioctl$TIOCL_GETKMSGREDIRECT(0xffffffffffffffff, 0x541c, &(0x7f0000000000)) ioctl$KDADDIO(r0, 0x400455c8, 0x4) [ 1550.511815] FAULT_INJECTION: forcing a failure. [ 1550.511815] name failslab, interval 1, probability 0, space 0, times 0 [ 1550.523340] CPU: 1 PID: 21513 Comm: syz-executor.3 Not tainted 4.14.262-syzkaller #0 [ 1550.531229] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1550.540686] Call Trace: [ 1550.543270] dump_stack+0x1b2/0x281 [ 1550.546885] should_fail.cold+0x10a/0x149 [ 1550.551018] should_failslab+0xd6/0x130 [ 1550.554978] kmem_cache_alloc+0x28e/0x3c0 [ 1550.559110] __kernfs_new_node+0x6f/0x470 [ 1550.563248] kernfs_new_node+0x7b/0xe0 [ 1550.567124] __kernfs_create_file+0x3d/0x320 [ 1550.571518] sysfs_add_file_mode_ns+0x1e1/0x450 [ 1550.576173] internal_create_group+0x22b/0x710 [ 1550.580742] sysfs_create_groups+0x92/0x130 [ 1550.585066] device_add+0x7e5/0x15c0 [ 1550.588772] ? device_is_dependent+0x2a0/0x2a0 [ 1550.593358] rfkill_register+0x18e/0xab0 [ 1550.597412] hci_register_dev+0x359/0x8f0 [ 1550.601547] hci_uart_tty_ioctl+0x6d1/0xa60 [ 1550.605853] tty_ioctl+0x5af/0x1430 [ 1550.609463] ? hci_uart_tty_receive+0x4c0/0x4c0 [ 1550.614112] ? tty_fasync+0x2c0/0x2c0 [ 1550.617900] ? proc_fail_nth_write+0x7b/0x180 [ 1550.622388] ? trace_hardirqs_on+0x10/0x10 [ 1550.626611] ? fsnotify+0x974/0x11b0 [ 1550.630309] ? proc_tgid_io_accounting+0x7a0/0x7a0 [ 1550.635221] ? __handle_mm_fault+0x80f/0x4620 [ 1550.639702] ? SyS_write+0x1b7/0x210 [ 1550.643402] ? tty_fasync+0x2c0/0x2c0 [ 1550.647186] do_vfs_ioctl+0x75a/0xff0 [ 1550.650971] ? lock_acquire+0x170/0x3f0 [ 1550.654927] ? ioctl_preallocate+0x1a0/0x1a0 [ 1550.659323] ? __fget+0x2df/0x460 [ 1550.662764] ? do_vfs_ioctl+0xff0/0xff0 [ 1550.666726] ? security_file_ioctl+0x83/0xb0 [ 1550.671115] SyS_ioctl+0x7f/0xb0 [ 1550.674467] ? do_vfs_ioctl+0xff0/0xff0 [ 1550.678427] do_syscall_64+0x1d5/0x640 [ 1550.682306] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1550.687481] RIP: 0033:0x7fa331314fe9 [ 1550.691174] RSP: 002b:00007fa32fc8a168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1550.698864] RAX: ffffffffffffffda RBX: 00007fa331427f60 RCX: 00007fa331314fe9 [ 1550.706121] RDX: 0000000000000000 RSI: 00000000400455c8 RDI: 0000000000000003 [ 1550.713377] RBP: 00007fa32fc8a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1550.720629] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1550.727879] R13: 00007ffe09471b3f R14: 00007fa32fc8a300 R15: 0000000000022000 10:02:08 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x4) ioctl$KDADDIO(r0, 0x400455c8, 0x223) 10:02:08 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) (async) r1 = dup2(r0, r0) write(r1, &(0x7f0000000280)='#\x00\x00\x00', 0x4) (async, rerun: 64) r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (rerun: 64) bind$bt_hci(r2, &(0x7f0000000240)={0x1f, 0x4, 0x2}, 0x6) ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r1, 0x89f1, &(0x7f0000000140)={'ip_vti0\x00', &(0x7f00000002c0)=ANY=[@ANYBLOB='ip_vti0\x00\x00\x00\x00\x00\x00\x00\x00\x00', @ANYRES32=0x0, @ANYBLOB="0080000800000009000000054c1200b00067000005299078ac1e0001ac1e00018811bf1e12a59aed8d1da20293d66011de831bcbe0000002e000000264010100ac1e00017f0000017f000001441c99e30a010101000000050a01010100010000ac1414aa00000004445460110a0101000000001dac141432000000627f00000100010001ffffffff0000000700000000000000dcac1414bb00000005ac1414aa00000007e0000001000100017f00000100000006ac1414aa0000008b2900530a5c47559b67ca5326156661bdf886eb4c259f8f20399b2e668cfb535c2dee5d1fb6cdd274874444655c1e8713"]}) ioctl$sock_ipv6_tunnel_SIOCGETPRL(r1, 0x89f4, &(0x7f0000000200)={'ip6tnl0\x00', &(0x7f0000000180)={'ip6_vti0\x00', r3, 0x2f, 0xff, 0x1, 0x80000000, 0x11, @private1, @private2, 0x7800, 0x1, 0x7}}) [ 1550.753102] FAULT_INJECTION: forcing a failure. [ 1550.753102] name failslab, interval 1, probability 0, space 0, times 0 [ 1550.799564] CPU: 0 PID: 21518 Comm: syz-executor.0 Not tainted 4.14.262-syzkaller #0 [ 1550.807483] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1550.816837] Call Trace: [ 1550.819427] dump_stack+0x1b2/0x281 [ 1550.823063] should_fail.cold+0x10a/0x149 [ 1550.827219] should_failslab+0xd6/0x130 [ 1550.831197] __kmalloc_track_caller+0x2bc/0x400 [ 1550.835863] ? kvasprintf_const+0x55/0x180 [ 1550.840106] kvasprintf+0xa8/0x100 [ 1550.843650] ? bust_spinlocks+0xc0/0xc0 [ 1550.847637] ? __mutex_lock+0x360/0x1310 [ 1550.851704] kvasprintf_const+0x55/0x180 [ 1550.855767] kobject_set_name_vargs+0x56/0x150 [ 1550.860358] dev_set_name+0xa4/0xc0 [ 1550.863984] ? device_initialize+0x430/0x430 [ 1550.868393] ? __lockdep_init_map+0x100/0x560 [ 1550.872890] rfkill_register+0xdb/0xab0 [ 1550.876875] hci_register_dev+0x359/0x8f0 [ 1550.881026] hci_uart_tty_ioctl+0x6d1/0xa60 [ 1550.885350] tty_ioctl+0x5af/0x1430 [ 1550.888981] ? hci_uart_tty_receive+0x4c0/0x4c0 [ 1550.893647] ? tty_fasync+0x2c0/0x2c0 10:02:08 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) (async) r1 = dup2(r0, r0) write(r1, &(0x7f0000000280)='#\x00\x00\x00', 0x4) (async) r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r2, &(0x7f0000000240)={0x1f, 0x4, 0x2}, 0x6) (async) ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r1, 0x89f1, &(0x7f0000000140)={'ip_vti0\x00', &(0x7f00000002c0)=ANY=[@ANYBLOB='ip_vti0\x00\x00\x00\x00\x00\x00\x00\x00\x00', @ANYRES32=0x0, @ANYBLOB="0080000800000009000000054c1200b00067000005299078ac1e0001ac1e00018811bf1e12a59aed8d1da20293d66011de831bcbe0000002e000000264010100ac1e00017f0000017f000001441c99e30a010101000000050a01010100010000ac1414aa00000004445460110a0101000000001dac141432000000627f00000100010001ffffffff0000000700000000000000dcac1414bb00000005ac1414aa00000007e0000001000100017f00000100000006ac1414aa0000008b2900530a5c47559b67ca5326156661bdf886eb4c259f8f20399b2e668cfb535c2dee5d1fb6cdd274874444655c1e8713"]}) ioctl$sock_ipv6_tunnel_SIOCGETPRL(r1, 0x89f4, &(0x7f0000000200)={'ip6tnl0\x00', &(0x7f0000000180)={'ip6_vti0\x00', r3, 0x2f, 0xff, 0x1, 0x80000000, 0x11, @private1, @private2, 0x7800, 0x1, 0x7}}) [ 1550.897444] ? proc_fail_nth_write+0x7b/0x180 [ 1550.901936] ? trace_hardirqs_on+0x10/0x10 [ 1550.906180] ? fsnotify+0x974/0x11b0 [ 1550.909892] ? proc_tgid_io_accounting+0x7a0/0x7a0 [ 1550.914817] ? __handle_mm_fault+0x80f/0x4620 [ 1550.919308] ? SyS_write+0x1b7/0x210 [ 1550.923030] ? tty_fasync+0x2c0/0x2c0 [ 1550.926831] do_vfs_ioctl+0x75a/0xff0 [ 1550.930634] ? lock_acquire+0x170/0x3f0 [ 1550.934608] ? ioctl_preallocate+0x1a0/0x1a0 [ 1550.939017] ? __fget+0x2df/0x460 [ 1550.942473] ? do_vfs_ioctl+0xff0/0xff0 10:02:08 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) write$binfmt_misc(r0, &(0x7f00000000c0)={'syz0', "63b19342a6a94350d2088eb9b7d20144bfe96cdec5af8f9373d064baf46630282c3fc4787e2ff7b5b9e376a0e56e96"}, 0x33) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) r1 = dup2(r0, r0) write(r1, &(0x7f0000000280)="0ad084df", 0x5d) bind(r1, &(0x7f0000000040)=@caif=@dgm={0x25, 0x200, 0x4}, 0x80) r2 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000100), 0x82, 0x0) r3 = syz_open_dev$tty1(0xc, 0x4, 0x2) fcntl$dupfd(r2, 0x406, r3) 10:02:08 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) write$binfmt_misc(r0, &(0x7f00000000c0)={'syz0', "63b19342a6a94350d2088eb9b7d20144bfe96cdec5af8f9373d064baf46630282c3fc4787e2ff7b5b9e376a0e56e96"}, 0x33) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) r1 = dup2(r0, r0) write(r1, &(0x7f0000000280)="0ad084df", 0x5d) bind(r1, &(0x7f0000000040)=@caif=@dgm={0x25, 0x200, 0x4}, 0x80) r2 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000100), 0x82, 0x0) r3 = syz_open_dev$tty1(0xc, 0x4, 0x2) fcntl$dupfd(r2, 0x406, r3) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async) write$binfmt_misc(r0, &(0x7f00000000c0)={'syz0', "63b19342a6a94350d2088eb9b7d20144bfe96cdec5af8f9373d064baf46630282c3fc4787e2ff7b5b9e376a0e56e96"}, 0x33) (async) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) (async) dup2(r0, r0) (async) write(r1, &(0x7f0000000280)="0ad084df", 0x5d) (async) bind(r1, &(0x7f0000000040)=@caif=@dgm={0x25, 0x200, 0x4}, 0x80) (async) openat$autofs(0xffffffffffffff9c, &(0x7f0000000100), 0x82, 0x0) (async) syz_open_dev$tty1(0xc, 0x4, 0x2) (async) fcntl$dupfd(r2, 0x406, r3) (async) [ 1550.946448] ? security_file_ioctl+0x83/0xb0 [ 1550.950857] SyS_ioctl+0x7f/0xb0 [ 1550.954225] ? do_vfs_ioctl+0xff0/0xff0 [ 1550.958201] do_syscall_64+0x1d5/0x640 [ 1550.962096] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1550.967282] RIP: 0033:0x7fbb944a7fe9 [ 1550.970988] RSP: 002b:00007fbb92e1d168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1550.978796] RAX: ffffffffffffffda RBX: 00007fbb945baf60 RCX: 00007fbb944a7fe9 [ 1550.986065] RDX: 0000000000000000 RSI: 00000000400455c8 RDI: 0000000000000003 [ 1550.993332] RBP: 00007fbb92e1d1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1551.000606] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1551.007870] R13: 00007ffc96d7392f R14: 00007fbb92e1d300 R15: 0000000000022000 10:02:08 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) write$binfmt_misc(r0, &(0x7f00000000c0)={'syz0', "63b19342a6a94350d2088eb9b7d20144bfe96cdec5af8f9373d064baf46630282c3fc4787e2ff7b5b9e376a0e56e96"}, 0x33) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) r1 = dup2(r0, r0) write(r1, &(0x7f0000000280)="0ad084df", 0x5d) bind(r1, &(0x7f0000000040)=@caif=@dgm={0x25, 0x200, 0x4}, 0x80) r2 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000100), 0x82, 0x0) r3 = syz_open_dev$tty1(0xc, 0x4, 0x2) fcntl$dupfd(r2, 0x406, r3) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async) write$binfmt_misc(r0, &(0x7f00000000c0)={'syz0', "63b19342a6a94350d2088eb9b7d20144bfe96cdec5af8f9373d064baf46630282c3fc4787e2ff7b5b9e376a0e56e96"}, 0x33) (async) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) (async) dup2(r0, r0) (async) write(r1, &(0x7f0000000280)="0ad084df", 0x5d) (async) bind(r1, &(0x7f0000000040)=@caif=@dgm={0x25, 0x200, 0x4}, 0x80) (async) openat$autofs(0xffffffffffffff9c, &(0x7f0000000100), 0x82, 0x0) (async) syz_open_dev$tty1(0xc, 0x4, 0x2) (async) fcntl$dupfd(r2, 0x406, r3) (async) [ 1551.064504] Bluetooth: hci8: Frame reassembly failed (-84) [ 1551.070867] Bluetooth: hci8: Frame reassembly failed (-84) [ 1552.764515] Bluetooth: hci6 command 0x1003 tx timeout [ 1552.764545] Bluetooth: hci7 command 0x1003 tx timeout [ 1552.771811] Bluetooth: hci6 sending frame failed (-49) [ 1552.780339] Bluetooth: hci7 sending frame failed (-49) [ 1553.094559] Bluetooth: hci8 command 0x1003 tx timeout [ 1553.099907] Bluetooth: hci10 command 0x1003 tx timeout [ 1553.099939] Bluetooth: hci8 sending frame failed (-49) [ 1553.105587] Bluetooth: hci10 sending frame failed (-49) [ 1553.116018] Bluetooth: hci9 command 0x1003 tx timeout [ 1553.121255] Bluetooth: hci9 sending frame failed (-49) [ 1554.844484] Bluetooth: hci6 command 0x1001 tx timeout [ 1554.844496] Bluetooth: hci7 command 0x1001 tx timeout [ 1554.849838] Bluetooth: hci6 sending frame failed (-49) [ 1554.859935] Bluetooth: hci7 sending frame failed (-49) [ 1555.164466] Bluetooth: hci9 command 0x1001 tx timeout [ 1555.164477] Bluetooth: hci8 command 0x1001 tx timeout [ 1555.169732] Bluetooth: hci10 command 0x1001 tx timeout [ 1555.174982] Bluetooth: hci9 sending frame failed (-49) [ 1555.180897] Bluetooth: hci10 sending frame failed (-49) [ 1555.191728] Bluetooth: hci8 sending frame failed (-49) [ 1556.924357] Bluetooth: hci6 command 0x1009 tx timeout [ 1556.924369] Bluetooth: hci7 command 0x1009 tx timeout [ 1557.244333] Bluetooth: hci9 command 0x1009 tx timeout [ 1557.244345] Bluetooth: hci8 command 0x1009 tx timeout [ 1557.255024] Bluetooth: hci10 command 0x1009 tx timeout 10:02:19 executing program 0: prlimit64(0x0, 0x0, 0x0, 0x0) sched_setattr(0x0, 0x0, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x0) (fail_nth: 52) 10:02:19 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) r1 = socket$l2tp(0x2, 0x2, 0x73) readv(r1, &(0x7f0000000500)=[{&(0x7f0000000040)=""/169, 0xa9}, {&(0x7f0000000100)=""/45, 0x2d}, {&(0x7f0000000140)=""/182, 0xb6}, {&(0x7f0000000200)=""/69, 0x45}, {&(0x7f00000002c0)=""/42, 0x2a}, {&(0x7f0000000300)=""/163, 0xa3}, {&(0x7f00000003c0)=""/111, 0x6f}, {&(0x7f0000000440)=""/162, 0xa2}], 0x8) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) syz_mount_image$reiserfs(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x4000000, 0x7, &(0x7f0000000200)=[{&(0x7f0000010000)="00400000ec1f00001320000012000000000000000020000000040000611cad49840300001e000000000000000010cc030200010052654973457232467300000003000000020001000200000000000000010000001231231212331233123112341341241273797a6b616c6c65720000000000000001001e003ac1655f004eed00", 0x80, 0x10000}, {&(0x7f0000010100)="000000000000000000000000010000000300"/32, 0x20, 0x100c0}, {&(0x7f0000010200)="ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0f00"/1056, 0x420, 0x11000}, {&(0x7f0000010700)="ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x800, 0x11800}, {&(0x7f0000010f00)="00000000000000000000000012000000000000000020000000040000611cad49840300001e00"/64, 0x40, 0x2012000}, {&(0x7f0000011000)="010002005c0f0000000000000000000000000000000000000100000002000000000000000000000000002c00d40f0100010000000200000001000000f401000002003000a40f00"/96, 0x60, 0x2013000}, {&(0x7f0000011100)="0000000001000000010000000200000028000400020000000000000001000000200004002e2e0000000000002e00000000000000ed4100000300000030000000000000005cf90100535f01003ac1655f3ac1655f3ac1655f0100000000000000", 0x60, 0x2013fa0}], 0x0, &(0x7f0000011200)) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000019c0)='net/sockstat6\x00') write$binfmt_script(r2, &(0x7f0000001a00)={'#! ', './file0', [{0x20, 'appraise_type=imasig'}, {}, {0x20, 'appraise_type=imasig'}, {0x20, ',k#'}], 0xa, "606b481841586e143f83aa907af655692dcc903f119054c5023c12b351cd2b9c5a29cb3e3b2856eb35ce9df6bd7dc4c01a4c61c8f905e9e5950b14fe6928"}, 0x78) r3 = dup2(r0, r0) syz_mount_image$msdos(&(0x7f00000005c0), &(0x7f0000000600)='./file0\x00', 0xffffffff7fffffff, 0x5, &(0x7f00000018c0)=[{&(0x7f0000000640)="891aa28c79a36347ff5e283bdd3017f18b55ac00ec5cd02bc8f4dc7f30db450286e279f89c4a657aa6f4e35e98d21fad80c3e9017e22301362b39400b0ddc99f6c3338144cbab9434b739cff6422e13bcb73736fc3b83afe3e183adddd3c8f3003945207b4bf2fa9079207fcf6d9a598f0d6cc0808898ec78889e6879db00501f2e061eb60c355e54b2106714e22b5ec", 0x90, 0x2}, {&(0x7f0000000700)="3d9e0d26f13e51d67b627b39c1237a2d40968d7b1e1347c9729595a44398204313ac255d983d4216cb2c1d8302944b20da7493250b2c0c69eb9b967d405964f180fc92bf2d487067b805fe2eccb119f63e341250a79b201254685caee810485e7bdbf90bd83ed6721988425a69240350bab71476e4b0b4568d17e1e737184543572c285f7b4539776c8cf21fff2602c331e8c07ac8cc567bd522bf7da85e2945b8d6d4e2407e4e9ff12208072e66db41b82739f944bf80beeb99571b69", 0xbd, 0x6}, {&(0x7f00000007c0)="4044d722288526c152e48f3c3de42bfc7e8e2a3f2884fc5d2c27a068bca1bb1ec21f5dc52861df8ed6a4ac7c3fb1a6414b159649f725dfb290f90f9d89985f557e58f5c4baeaca96f865efadcf08e93c8aa2d1937d24a5cb0cc9b233e41397d13b0880268e2225281713fdda3879dc4e8ad702ba94fb23d23de60aec05490abf686a861d", 0x84, 0xffffffffffffd08c}, {&(0x7f0000000880)="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", 0x1000, 0x2a}, {&(0x7f0000001880)="8d70fad81acc2db1db91500bb7554fb6b9839724f7ad560a9d9d7c9f4fa8fafffdc454074c90b94d962c2dab03829753daf6bfc042", 0x35, 0x40}], 0xa0000, &(0x7f0000001940)={[{@fat=@fmask={'fmask', 0x3d, 0x6}}], [{@appraise_type}, {@subj_role={'subj_role', 0x3d, 'reiserfs\x00'}}]}) write(r3, &(0x7f0000000280)='#\x00\x00\x00', 0x4) bind$bt_hci(r3, &(0x7f0000000580)={0x1f, 0x1, 0x1}, 0x6) 10:02:19 executing program 4: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0) (async) sched_setattr(0xffffffffffffffff, &(0x7f0000000000)={0x38, 0x3, 0x2, 0x7, 0x1000, 0x4, 0x5ea, 0xfffffffffffffffc, 0x7fffffff, 0x1000}, 0x0) (async) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) (async) sched_setattr(0xffffffffffffffff, &(0x7f0000000080)={0x38, 0x2, 0x10, 0x1f, 0x400, 0x100000001, 0x5, 0x8dd1, 0x20, 0xff}, 0x0) r1 = socket(0x10, 0x803, 0x0) sendmsg$BATADV_CMD_GET_MESH(r1, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0}}, 0x0) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) (async) connect$unix(r1, &(0x7f00000000c0)=@abs={0x0, 0x0, 0x4e23}, 0x6e) (async) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x0) 10:02:19 executing program 3: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x0) (fail_nth: 63) 10:02:19 executing program 5: prlimit64(0x0, 0xe, &(0x7f0000000280), 0x0) (async) sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0xffffffffffff0162) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x1, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) (async) r1 = fcntl$getown(r0, 0x9) prlimit64(r1, 0x0, &(0x7f0000000080)={0x5, 0x7}, &(0x7f00000000c0)) (async) ioctl$TIOCL_GETKMSGREDIRECT(0xffffffffffffffff, 0x541c, &(0x7f0000000000)) ioctl$KDADDIO(r0, 0x400455c8, 0x4) 10:02:19 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x4) ioctl$KDADDIO(r0, 0x400455c8, 0x223) 10:02:19 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x4) ioctl$KDADDIO(r0, 0x400455c8, 0x223) [ 1561.401137] Bluetooth: hci6 sending frame failed (-49) [ 1561.423088] FAULT_INJECTION: forcing a failure. [ 1561.423088] name failslab, interval 1, probability 0, space 0, times 0 [ 1561.434869] CPU: 1 PID: 21610 Comm: syz-executor.3 Not tainted 4.14.262-syzkaller #0 [ 1561.442750] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1561.452096] Call Trace: [ 1561.454678] dump_stack+0x1b2/0x281 [ 1561.458295] should_fail.cold+0x10a/0x149 [ 1561.462430] should_failslab+0xd6/0x130 [ 1561.466406] kmem_cache_alloc+0x28e/0x3c0 [ 1561.470546] __kernfs_new_node+0x6f/0x470 [ 1561.474678] kernfs_new_node+0x7b/0xe0 [ 1561.478549] __kernfs_create_file+0x3d/0x320 [ 1561.482944] sysfs_add_file_mode_ns+0x1e1/0x450 [ 1561.487598] internal_create_group+0x22b/0x710 [ 1561.492167] sysfs_create_groups+0x92/0x130 [ 1561.496476] device_add+0x7e5/0x15c0 [ 1561.500285] ? device_is_dependent+0x2a0/0x2a0 [ 1561.504980] rfkill_register+0x18e/0xab0 [ 1561.509035] hci_register_dev+0x359/0x8f0 [ 1561.513186] hci_uart_tty_ioctl+0x6d1/0xa60 [ 1561.517498] tty_ioctl+0x5af/0x1430 [ 1561.521111] ? hci_uart_tty_receive+0x4c0/0x4c0 [ 1561.525767] ? tty_fasync+0x2c0/0x2c0 [ 1561.529554] ? proc_fail_nth_write+0x7b/0x180 [ 1561.534037] ? trace_hardirqs_on+0x10/0x10 [ 1561.538259] ? fsnotify+0x974/0x11b0 [ 1561.541953] ? proc_tgid_io_accounting+0x7a0/0x7a0 [ 1561.546871] ? __handle_mm_fault+0x80f/0x4620 [ 1561.551347] ? SyS_write+0x1b7/0x210 [ 1561.555043] ? tty_fasync+0x2c0/0x2c0 [ 1561.558826] do_vfs_ioctl+0x75a/0xff0 [ 1561.562612] ? lock_acquire+0x170/0x3f0 [ 1561.566569] ? ioctl_preallocate+0x1a0/0x1a0 [ 1561.570972] ? __fget+0x2df/0x460 [ 1561.574408] ? do_vfs_ioctl+0xff0/0xff0 [ 1561.578365] ? security_file_ioctl+0x83/0xb0 [ 1561.582755] SyS_ioctl+0x7f/0xb0 [ 1561.586100] ? do_vfs_ioctl+0xff0/0xff0 [ 1561.590054] do_syscall_64+0x1d5/0x640 [ 1561.593926] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1561.599097] RIP: 0033:0x7fa331314fe9 [ 1561.602789] RSP: 002b:00007fa32fc8a168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1561.610480] RAX: ffffffffffffffda RBX: 00007fa331427f60 RCX: 00007fa331314fe9 [ 1561.617731] RDX: 0000000000000000 RSI: 00000000400455c8 RDI: 0000000000000003 [ 1561.624984] RBP: 00007fa32fc8a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1561.632235] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1561.639489] R13: 00007ffe09471b3f R14: 00007fa32fc8a300 R15: 0000000000022000 [ 1561.651721] FAULT_INJECTION: forcing a failure. [ 1561.651721] name failslab, interval 1, probability 0, space 0, times 0 [ 1561.663326] Bluetooth: hci9 sending frame failed (-49) [ 1561.678012] REISERFS (device loop1): found reiserfs format "3.6" with standard journal [ 1561.688744] CPU: 0 PID: 21608 Comm: syz-executor.0 Not tainted 4.14.262-syzkaller #0 [ 1561.696651] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1561.706007] Call Trace: [ 1561.708597] dump_stack+0x1b2/0x281 [ 1561.712230] should_fail.cold+0x10a/0x149 [ 1561.716386] should_failslab+0xd6/0x130 [ 1561.720371] __kmalloc_track_caller+0x2bc/0x400 [ 1561.725041] ? kvasprintf_const+0x55/0x180 [ 1561.729284] kvasprintf+0xa8/0x100 [ 1561.732828] ? bust_spinlocks+0xc0/0xc0 [ 1561.736810] ? __mutex_lock+0x360/0x1310 [ 1561.740876] kvasprintf_const+0x55/0x180 [ 1561.744944] kobject_set_name_vargs+0x56/0x150 [ 1561.749530] dev_set_name+0xa4/0xc0 [ 1561.753163] ? device_initialize+0x430/0x430 [ 1561.757584] rfkill_register+0xdb/0xab0 [ 1561.761563] hci_register_dev+0x359/0x8f0 [ 1561.765718] hci_uart_tty_ioctl+0x6d1/0xa60 [ 1561.770049] tty_ioctl+0x5af/0x1430 [ 1561.773681] ? hci_uart_tty_receive+0x4c0/0x4c0 [ 1561.778361] ? tty_fasync+0x2c0/0x2c0 [ 1561.782164] ? proc_fail_nth_write+0x7b/0x180 [ 1561.786662] ? trace_hardirqs_on+0x10/0x10 [ 1561.790906] ? fsnotify+0x974/0x11b0 [ 1561.794619] ? proc_tgid_io_accounting+0x7a0/0x7a0 [ 1561.799556] ? __handle_mm_fault+0x80f/0x4620 [ 1561.804054] ? SyS_write+0x1b7/0x210 [ 1561.807774] ? tty_fasync+0x2c0/0x2c0 [ 1561.811580] do_vfs_ioctl+0x75a/0xff0 [ 1561.815405] ? lock_acquire+0x170/0x3f0 [ 1561.819385] ? ioctl_preallocate+0x1a0/0x1a0 [ 1561.823804] ? __fget+0x2df/0x460 10:02:19 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x4) ioctl$KDADDIO(r0, 0x400455c8, 0x223) [ 1561.827266] ? do_vfs_ioctl+0xff0/0xff0 [ 1561.831246] ? security_file_ioctl+0x83/0xb0 [ 1561.832727] REISERFS (device loop1): using ordered data mode [ 1561.835653] SyS_ioctl+0x7f/0xb0 [ 1561.835661] ? do_vfs_ioctl+0xff0/0xff0 [ 1561.835674] do_syscall_64+0x1d5/0x640 [ 1561.835688] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1561.835696] RIP: 0033:0x7fbb944a7fe9 [ 1561.835700] RSP: 002b:00007fbb92e1d168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1561.835709] RAX: ffffffffffffffda RBX: 00007fbb945baf60 RCX: 00007fbb944a7fe9 10:02:19 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x4) ioctl$KDADDIO(r0, 0x400455c8, 0x223) 10:02:19 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x4) ioctl$KDADDIO(r0, 0x400455c8, 0x223) [ 1561.835714] RDX: 0000000000000000 RSI: 00000000400455c8 RDI: 0000000000000003 [ 1561.835718] RBP: 00007fbb92e1d1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1561.835723] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1561.835727] R13: 00007ffc96d7392f R14: 00007fbb92e1d300 R15: 0000000000022000 [ 1561.854592] Bluetooth: hci8: Frame reassembly failed (-84) [ 1561.859247] reiserfs: using flush barriers 10:02:19 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x4) ioctl$KDADDIO(r0, 0x400455c8, 0x223) 10:02:19 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, 0x0) ioctl$KDADDIO(r0, 0x400455c8, 0x4) ioctl$KDADDIO(r0, 0x400455c8, 0x223) [ 1561.930970] REISERFS (device loop1): journal params: device loop1, size 8192, journal first block 18, max trans len 1024, max batch 900, max commit age 30, max trans age 30 [ 1561.951206] REISERFS (device loop1): checking transaction log (loop1) [ 1562.634123] REISERFS (device loop1): Using r5 hash to sort names [ 1562.641012] REISERFS (device loop1): Created .reiserfs_priv - reserved for xattr storage. [ 1563.483932] Bluetooth: hci7 command 0x1003 tx timeout [ 1563.483968] Bluetooth: hci6 command 0x1003 tx timeout [ 1563.489279] Bluetooth: hci7 sending frame failed (-49) [ 1563.499067] Bluetooth: hci6 sending frame failed (-49) [ 1563.734076] Bluetooth: hci9 command 0x1003 tx timeout [ 1563.739564] Bluetooth: hci9 sending frame failed (-49) [ 1563.883960] Bluetooth: hci8 command 0x1003 tx timeout [ 1563.889326] Bluetooth: hci8 sending frame failed (-49) [ 1565.563915] Bluetooth: hci6 command 0x1001 tx timeout [ 1565.569231] Bluetooth: hci6 sending frame failed (-49) [ 1565.575430] Bluetooth: hci7 command 0x1001 tx timeout [ 1565.580700] Bluetooth: hci7 sending frame failed (-49) [ 1565.804351] Bluetooth: hci9 command 0x1001 tx timeout [ 1565.809636] Bluetooth: hci9 sending frame failed (-49) [ 1565.963938] Bluetooth: hci8 command 0x1001 tx timeout [ 1565.969217] Bluetooth: hci8 sending frame failed (-49) [ 1567.643751] Bluetooth: hci7 command 0x1009 tx timeout [ 1567.643755] Bluetooth: hci6 command 0x1009 tx timeout [ 1567.883861] Bluetooth: hci9 command 0x1009 tx timeout [ 1568.043768] Bluetooth: hci8 command 0x1009 tx timeout 10:02:30 executing program 0: prlimit64(0x0, 0x0, 0x0, 0x0) sched_setattr(0x0, 0x0, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x0) (fail_nth: 53) 10:02:30 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, 0x0) ioctl$KDADDIO(r0, 0x400455c8, 0x4) ioctl$KDADDIO(r0, 0x400455c8, 0x223) 10:02:30 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async) r1 = socket$l2tp(0x2, 0x2, 0x73) readv(r1, &(0x7f0000000500)=[{&(0x7f0000000040)=""/169, 0xa9}, {&(0x7f0000000100)=""/45, 0x2d}, {&(0x7f0000000140)=""/182, 0xb6}, {&(0x7f0000000200)=""/69, 0x45}, {&(0x7f00000002c0)=""/42, 0x2a}, {&(0x7f0000000300)=""/163, 0xa3}, {&(0x7f00000003c0)=""/111, 0x6f}, {&(0x7f0000000440)=""/162, 0xa2}], 0x8) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) syz_mount_image$reiserfs(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x4000000, 0x7, &(0x7f0000000200)=[{&(0x7f0000010000)="00400000ec1f00001320000012000000000000000020000000040000611cad49840300001e000000000000000010cc030200010052654973457232467300000003000000020001000200000000000000010000001231231212331233123112341341241273797a6b616c6c65720000000000000001001e003ac1655f004eed00", 0x80, 0x10000}, {&(0x7f0000010100)="000000000000000000000000010000000300"/32, 0x20, 0x100c0}, {&(0x7f0000010200)="ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0f00"/1056, 0x420, 0x11000}, {&(0x7f0000010700)="ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x800, 0x11800}, {&(0x7f0000010f00)="00000000000000000000000012000000000000000020000000040000611cad49840300001e00"/64, 0x40, 0x2012000}, {&(0x7f0000011000)="010002005c0f0000000000000000000000000000000000000100000002000000000000000000000000002c00d40f0100010000000200000001000000f401000002003000a40f00"/96, 0x60, 0x2013000}, {&(0x7f0000011100)="0000000001000000010000000200000028000400020000000000000001000000200004002e2e0000000000002e00000000000000ed4100000300000030000000000000005cf90100535f01003ac1655f3ac1655f3ac1655f0100000000000000", 0x60, 0x2013fa0}], 0x0, &(0x7f0000011200)) (async) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000019c0)='net/sockstat6\x00') write$binfmt_script(r2, &(0x7f0000001a00)={'#! ', './file0', [{0x20, 'appraise_type=imasig'}, {}, {0x20, 'appraise_type=imasig'}, {0x20, ',k#'}], 0xa, "606b481841586e143f83aa907af655692dcc903f119054c5023c12b351cd2b9c5a29cb3e3b2856eb35ce9df6bd7dc4c01a4c61c8f905e9e5950b14fe6928"}, 0x78) r3 = dup2(r0, r0) (async) syz_mount_image$msdos(&(0x7f00000005c0), &(0x7f0000000600)='./file0\x00', 0xffffffff7fffffff, 0x5, &(0x7f00000018c0)=[{&(0x7f0000000640)="891aa28c79a36347ff5e283bdd3017f18b55ac00ec5cd02bc8f4dc7f30db450286e279f89c4a657aa6f4e35e98d21fad80c3e9017e22301362b39400b0ddc99f6c3338144cbab9434b739cff6422e13bcb73736fc3b83afe3e183adddd3c8f3003945207b4bf2fa9079207fcf6d9a598f0d6cc0808898ec78889e6879db00501f2e061eb60c355e54b2106714e22b5ec", 0x90, 0x2}, {&(0x7f0000000700)="3d9e0d26f13e51d67b627b39c1237a2d40968d7b1e1347c9729595a44398204313ac255d983d4216cb2c1d8302944b20da7493250b2c0c69eb9b967d405964f180fc92bf2d487067b805fe2eccb119f63e341250a79b201254685caee810485e7bdbf90bd83ed6721988425a69240350bab71476e4b0b4568d17e1e737184543572c285f7b4539776c8cf21fff2602c331e8c07ac8cc567bd522bf7da85e2945b8d6d4e2407e4e9ff12208072e66db41b82739f944bf80beeb99571b69", 0xbd, 0x6}, {&(0x7f00000007c0)="4044d722288526c152e48f3c3de42bfc7e8e2a3f2884fc5d2c27a068bca1bb1ec21f5dc52861df8ed6a4ac7c3fb1a6414b159649f725dfb290f90f9d89985f557e58f5c4baeaca96f865efadcf08e93c8aa2d1937d24a5cb0cc9b233e41397d13b0880268e2225281713fdda3879dc4e8ad702ba94fb23d23de60aec05490abf686a861d", 0x84, 0xffffffffffffd08c}, {&(0x7f0000000880)="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", 0x1000, 0x2a}, {&(0x7f0000001880)="8d70fad81acc2db1db91500bb7554fb6b9839724f7ad560a9d9d7c9f4fa8fafffdc454074c90b94d962c2dab03829753daf6bfc042", 0x35, 0x40}], 0xa0000, &(0x7f0000001940)={[{@fat=@fmask={'fmask', 0x3d, 0x6}}], [{@appraise_type}, {@subj_role={'subj_role', 0x3d, 'reiserfs\x00'}}]}) write(r3, &(0x7f0000000280)='#\x00\x00\x00', 0x4) (async) bind$bt_hci(r3, &(0x7f0000000580)={0x1f, 0x1, 0x1}, 0x6) 10:02:30 executing program 5: prlimit64(0x0, 0xe, &(0x7f0000000280), 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0xffffffffffff0162) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x1, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) r1 = fcntl$getown(r0, 0x9) prlimit64(r1, 0x0, &(0x7f0000000080)={0x5, 0x7}, &(0x7f00000000c0)) ioctl$TIOCL_GETKMSGREDIRECT(0xffffffffffffffff, 0x541c, &(0x7f0000000000)) ioctl$KDADDIO(r0, 0x400455c8, 0x4) prlimit64(0x0, 0xe, &(0x7f0000000280), 0x0) (async) sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0xffffffffffff0162) (async) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x1, 0x0) (async) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) (async) fcntl$getown(r0, 0x9) (async) prlimit64(r1, 0x0, &(0x7f0000000080)={0x5, 0x7}, &(0x7f00000000c0)) (async) ioctl$TIOCL_GETKMSGREDIRECT(0xffffffffffffffff, 0x541c, &(0x7f0000000000)) (async) ioctl$KDADDIO(r0, 0x400455c8, 0x4) (async) 10:02:30 executing program 4: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x0) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000040)=0xf) sched_setattr(0xffffffffffffffff, &(0x7f00000000c0)={0x38, 0x6, 0x8, 0x4, 0x5, 0x9, 0x0, 0x7fff, 0xffff, 0x3efc}, 0x0) ioctl$KDADDIO(r2, 0x400455c8, 0x4) ioctl$TIOCSETD(r2, 0x5412, &(0x7f0000000000)=0x33) ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080)=0x4d) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r1, 0x400455c8, 0x4) ioctl$TIOCSETD(r1, 0x5412, &(0x7f0000000000)=0x33) ioctl$PIO_FONTX(r1, 0x4b6c, &(0x7f0000000000)={0xa, 0x4, &(0x7f00000002c0)="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"}) syz_open_dev$tty1(0xc, 0x4, 0x3) 10:02:30 executing program 3: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x0) (fail_nth: 64) 10:02:30 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, 0x0) ioctl$KDADDIO(r0, 0x400455c8, 0x4) ioctl$KDADDIO(r0, 0x400455c8, 0x223) [ 1572.263129] FAULT_INJECTION: forcing a failure. [ 1572.263129] name failslab, interval 1, probability 0, space 0, times 0 [ 1572.288586] CPU: 1 PID: 21672 Comm: syz-executor.0 Not tainted 4.14.262-syzkaller #0 [ 1572.296497] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1572.305848] Call Trace: [ 1572.308436] dump_stack+0x1b2/0x281 [ 1572.312070] should_fail.cold+0x10a/0x149 [ 1572.316228] should_failslab+0xd6/0x130 [ 1572.320205] __kmalloc_track_caller+0x2bc/0x400 [ 1572.324877] ? kstrdup_const+0x35/0x60 [ 1572.328764] ? do_vfs_ioctl+0x75a/0xff0 [ 1572.332738] kstrdup+0x36/0x70 [ 1572.335930] kstrdup_const+0x35/0x60 [ 1572.339648] __kernfs_new_node+0x2e/0x470 [ 1572.343798] kernfs_create_dir_ns+0x8c/0x200 [ 1572.348207] sysfs_create_dir_ns+0xb7/0x1d0 [ 1572.352534] kobject_add_internal+0x28b/0x930 [ 1572.357039] kobject_add+0x11f/0x180 10:02:30 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)) ioctl$KDADDIO(r0, 0x400455c8, 0x4) ioctl$KDADDIO(r0, 0x400455c8, 0x223) 10:02:30 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)) ioctl$KDADDIO(r0, 0x400455c8, 0x4) ioctl$KDADDIO(r0, 0x400455c8, 0x223) 10:02:30 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)) ioctl$KDADDIO(r0, 0x400455c8, 0x4) ioctl$KDADDIO(r0, 0x400455c8, 0x223) 10:02:30 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(0xffffffffffffffff, 0x400455c8, 0x4) ioctl$KDADDIO(r0, 0x400455c8, 0x223) 10:02:30 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(0xffffffffffffffff, 0x400455c8, 0x4) ioctl$KDADDIO(r0, 0x400455c8, 0x223) [ 1572.360755] ? kset_create_and_add+0x190/0x190 [ 1572.365338] ? device_add+0xd72/0x15c0 [ 1572.369222] ? __lockdep_init_map+0x100/0x560 [ 1572.373716] ? root_device_release+0x20/0x20 [ 1572.378129] device_add+0x33f/0x15c0 [ 1572.381854] ? device_is_dependent+0x2a0/0x2a0 [ 1572.386438] rfkill_register+0x18e/0xab0 [ 1572.390499] hci_register_dev+0x359/0x8f0 [ 1572.394650] hci_uart_tty_ioctl+0x6d1/0xa60 [ 1572.398972] tty_ioctl+0x5af/0x1430 [ 1572.402601] ? hci_uart_tty_receive+0x4c0/0x4c0 [ 1572.407270] ? tty_fasync+0x2c0/0x2c0 [ 1572.411070] ? proc_fail_nth_write+0x7b/0x180 [ 1572.415575] ? trace_hardirqs_on+0x10/0x10 [ 1572.419814] ? fsnotify+0x974/0x11b0 [ 1572.423525] ? proc_tgid_io_accounting+0x7a0/0x7a0 [ 1572.428450] ? SyS_write+0x1b7/0x210 [ 1572.432164] ? tty_fasync+0x2c0/0x2c0 [ 1572.435965] do_vfs_ioctl+0x75a/0xff0 [ 1572.439757] ? lock_acquire+0x170/0x3f0 [ 1572.443711] ? ioctl_preallocate+0x1a0/0x1a0 [ 1572.448106] ? __fget+0x2df/0x460 [ 1572.451543] ? do_vfs_ioctl+0xff0/0xff0 [ 1572.455498] ? security_file_ioctl+0x83/0xb0 [ 1572.459886] SyS_ioctl+0x7f/0xb0 [ 1572.463229] ? do_vfs_ioctl+0xff0/0xff0 [ 1572.467183] do_syscall_64+0x1d5/0x640 [ 1572.471052] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1572.476226] RIP: 0033:0x7fbb944a7fe9 [ 1572.479912] RSP: 002b:00007fbb92e1d168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1572.487606] RAX: ffffffffffffffda RBX: 00007fbb945baf60 RCX: 00007fbb944a7fe9 [ 1572.494862] RDX: 0000000000000000 RSI: 00000000400455c8 RDI: 0000000000000003 [ 1572.502108] RBP: 00007fbb92e1d1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1572.509354] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1572.516601] R13: 00007ffc96d7392f R14: 00007fbb92e1d300 R15: 0000000000022000 [ 1572.527435] kobject_add_internal failed for rfkill468 (error: -12 parent: hci6) [ 1572.540328] Bluetooth: hci8: Frame reassembly failed (-84) [ 1572.546347] FAULT_INJECTION: forcing a failure. [ 1572.546347] name failslab, interval 1, probability 0, space 0, times 0 [ 1572.557595] CPU: 0 PID: 21678 Comm: syz-executor.3 Not tainted 4.14.262-syzkaller #0 [ 1572.565466] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1572.574807] Call Trace: [ 1572.577381] dump_stack+0x1b2/0x281 [ 1572.580992] should_fail.cold+0x10a/0x149 [ 1572.585125] should_failslab+0xd6/0x130 [ 1572.589087] kmem_cache_alloc+0x28e/0x3c0 [ 1572.593219] __kernfs_new_node+0x6f/0x470 [ 1572.597351] kernfs_new_node+0x7b/0xe0 [ 1572.601223] __kernfs_create_file+0x3d/0x320 [ 1572.605617] sysfs_add_file_mode_ns+0x1e1/0x450 [ 1572.610291] internal_create_group+0x22b/0x710 [ 1572.614870] sysfs_create_groups+0x92/0x130 [ 1572.619194] device_add+0x7e5/0x15c0 [ 1572.622894] ? device_is_dependent+0x2a0/0x2a0 [ 1572.627460] rfkill_register+0x18e/0xab0 [ 1572.631508] hci_register_dev+0x359/0x8f0 [ 1572.635645] hci_uart_tty_ioctl+0x6d1/0xa60 [ 1572.639962] tty_ioctl+0x5af/0x1430 [ 1572.643573] ? hci_uart_tty_receive+0x4c0/0x4c0 [ 1572.648224] ? tty_fasync+0x2c0/0x2c0 [ 1572.652007] ? proc_fail_nth_write+0x7b/0x180 [ 1572.656486] ? trace_hardirqs_on+0x10/0x10 [ 1572.660708] ? fsnotify+0x974/0x11b0 [ 1572.664400] ? proc_tgid_io_accounting+0x7a0/0x7a0 [ 1572.669313] ? __handle_mm_fault+0x80f/0x4620 [ 1572.673792] ? SyS_write+0x1b7/0x210 [ 1572.677489] ? tty_fasync+0x2c0/0x2c0 [ 1572.681273] do_vfs_ioctl+0x75a/0xff0 [ 1572.685056] ? lock_acquire+0x170/0x3f0 [ 1572.689010] ? ioctl_preallocate+0x1a0/0x1a0 [ 1572.693403] ? __fget+0x2df/0x460 [ 1572.696838] ? do_vfs_ioctl+0xff0/0xff0 [ 1572.700798] ? security_file_ioctl+0x83/0xb0 [ 1572.705189] SyS_ioctl+0x7f/0xb0 [ 1572.708540] ? do_vfs_ioctl+0xff0/0xff0 [ 1572.712500] do_syscall_64+0x1d5/0x640 [ 1572.716376] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1572.721548] RIP: 0033:0x7fa331314fe9 [ 1572.725242] RSP: 002b:00007fa32fc8a168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1572.732929] RAX: ffffffffffffffda RBX: 00007fa331427f60 RCX: 00007fa331314fe9 [ 1572.740182] RDX: 0000000000000000 RSI: 00000000400455c8 RDI: 0000000000000003 [ 1572.747433] RBP: 00007fa32fc8a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1572.754769] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1572.762021] R13: 00007ffe09471b3f R14: 00007fa32fc8a300 R15: 0000000000022000 [ 1572.774441] Bluetooth: Unknown HCI packet type 5e [ 1572.780343] Bluetooth: Unknown HCI packet type 5e [ 1572.781327] REISERFS (device loop1): found reiserfs format "3.6" with standard journal [ 1572.786209] Bluetooth: Unknown HCI packet type 5e [ 1572.800531] Bluetooth: Unknown HCI packet type 43 [ 1572.806453] REISERFS (device loop1): using ordered data mode 10:02:30 executing program 0: prlimit64(0x0, 0x0, 0x0, 0x0) sched_setattr(0x0, 0x0, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x0) (fail_nth: 54) 10:02:30 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(0xffffffffffffffff, 0x400455c8, 0x4) ioctl$KDADDIO(r0, 0x400455c8, 0x223) [ 1572.807718] Bluetooth: Unknown HCI packet type 5e [ 1572.812354] Bluetooth: Unknown HCI packet type 43 [ 1572.822122] Bluetooth: Unknown HCI packet type 43 [ 1572.823089] Bluetooth: Unknown HCI packet type 50 [ 1572.832252] Bluetooth: Unknown HCI packet type 5e [ 1572.845246] Bluetooth: Unknown HCI packet type 40 [ 1572.860438] Bluetooth: Unknown HCI packet type 5e [ 1572.865502] Bluetooth: Unknown HCI packet type 5e [ 1572.870520] reiserfs: using flush barriers [ 1572.877739] FAULT_INJECTION: forcing a failure. [ 1572.877739] name failslab, interval 1, probability 0, space 0, times 0 [ 1572.882743] Bluetooth: Unknown HCI packet type 50 [ 1572.889654] CPU: 0 PID: 21727 Comm: syz-executor.0 Not tainted 4.14.262-syzkaller #0 [ 1572.899017] Bluetooth: Unknown HCI packet type 50 [ 1572.901909] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1572.901913] Call Trace: [ 1572.901929] dump_stack+0x1b2/0x281 [ 1572.901944] should_fail.cold+0x10a/0x149 [ 1572.901957] should_failslab+0xd6/0x130 [ 1572.901969] __kmalloc_track_caller+0x2bc/0x400 [ 1572.906977] REISERFS (device loop1): journal params: device loop1, size 8192, journal first block 18, max trans len 1024, max batch 900, max commit age 30, max trans age 30 [ 1572.916141] ? kstrdup_const+0x35/0x60 [ 1572.916150] ? do_vfs_ioctl+0x75a/0xff0 [ 1572.916160] kstrdup+0x36/0x70 [ 1572.916170] kstrdup_const+0x35/0x60 [ 1572.916182] __kernfs_new_node+0x2e/0x470 [ 1572.916195] kernfs_create_dir_ns+0x8c/0x200 [ 1572.916205] sysfs_create_dir_ns+0xb7/0x1d0 [ 1572.916215] kobject_add_internal+0x28b/0x930 [ 1572.916228] kobject_add+0x11f/0x180 [ 1572.916236] ? kset_create_and_add+0x190/0x190 [ 1572.916246] ? device_add+0xd72/0x15c0 [ 1572.916255] ? __lockdep_init_map+0x100/0x560 [ 1572.916265] ? root_device_release+0x20/0x20 [ 1572.916276] device_add+0x33f/0x15c0 [ 1572.916288] ? device_is_dependent+0x2a0/0x2a0 [ 1572.942013] Bluetooth: Unknown HCI packet type 5e [ 1572.950712] rfkill_register+0x18e/0xab0 [ 1572.950729] hci_register_dev+0x359/0x8f0 [ 1572.950743] hci_uart_tty_ioctl+0x6d1/0xa60 [ 1572.950755] tty_ioctl+0x5af/0x1430 [ 1572.950764] ? hci_uart_tty_receive+0x4c0/0x4c0 [ 1572.950771] ? tty_fasync+0x2c0/0x2c0 [ 1572.950780] ? proc_fail_nth_write+0x7b/0x180 [ 1572.950793] ? trace_hardirqs_on+0x10/0x10 [ 1572.950805] ? fsnotify+0x974/0x11b0 [ 1572.950813] ? proc_tgid_io_accounting+0x7a0/0x7a0 [ 1572.950821] ? __handle_mm_fault+0x80f/0x4620 [ 1572.950831] ? SyS_write+0x1b7/0x210 [ 1572.967087] REISERFS (device loop1): checking transaction log (loop1) [ 1572.969679] ? tty_fasync+0x2c0/0x2c0 [ 1572.969691] do_vfs_ioctl+0x75a/0xff0 [ 1572.969704] ? lock_acquire+0x170/0x3f0 [ 1572.969715] ? ioctl_preallocate+0x1a0/0x1a0 [ 1572.978117] Bluetooth: Unknown HCI packet type 5e [ 1572.978414] ? __fget+0x2df/0x460 [ 1572.999042] Bluetooth: Unknown HCI packet type 40 [ 1572.999497] ? do_vfs_ioctl+0xff0/0xff0 [ 1573.032148] Bluetooth: Unknown HCI packet type 40 [ 1573.033055] ? security_file_ioctl+0x83/0xb0 [ 1573.033068] SyS_ioctl+0x7f/0xb0 [ 1573.033076] ? do_vfs_ioctl+0xff0/0xff0 [ 1573.033087] do_syscall_64+0x1d5/0x640 [ 1573.033101] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1573.132081] RIP: 0033:0x7fbb944a7fe9 [ 1573.135791] RSP: 002b:00007fbb92e1d168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1573.143496] RAX: ffffffffffffffda RBX: 00007fbb945baf60 RCX: 00007fbb944a7fe9 [ 1573.150767] RDX: 0000000000000000 RSI: 00000000400455c8 RDI: 0000000000000003 [ 1573.158040] RBP: 00007fbb92e1d1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1573.165309] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1573.172577] R13: 00007ffc96d7392f R14: 00007fbb92e1d300 R15: 0000000000022000 [ 1573.191400] kobject_add_internal failed for rfkill474 (error: -12 parent: hci6) [ 1573.201644] Bluetooth: hci6: Frame reassembly failed (-84) 10:02:31 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) r1 = socket$l2tp(0x2, 0x2, 0x73) readv(r1, &(0x7f0000000500)=[{&(0x7f0000000040)=""/169, 0xa9}, {&(0x7f0000000100)=""/45, 0x2d}, {&(0x7f0000000140)=""/182, 0xb6}, {&(0x7f0000000200)=""/69, 0x45}, {&(0x7f00000002c0)=""/42, 0x2a}, {&(0x7f0000000300)=""/163, 0xa3}, {&(0x7f00000003c0)=""/111, 0x6f}, {&(0x7f0000000440)=""/162, 0xa2}], 0x8) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) syz_mount_image$reiserfs(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x4000000, 0x7, &(0x7f0000000200)=[{&(0x7f0000010000)="00400000ec1f00001320000012000000000000000020000000040000611cad49840300001e000000000000000010cc030200010052654973457232467300000003000000020001000200000000000000010000001231231212331233123112341341241273797a6b616c6c65720000000000000001001e003ac1655f004eed00", 0x80, 0x10000}, {&(0x7f0000010100)="000000000000000000000000010000000300"/32, 0x20, 0x100c0}, {&(0x7f0000010200)="ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0f00"/1056, 0x420, 0x11000}, {&(0x7f0000010700)="ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x800, 0x11800}, {&(0x7f0000010f00)="00000000000000000000000012000000000000000020000000040000611cad49840300001e00"/64, 0x40, 0x2012000}, {&(0x7f0000011000)="010002005c0f0000000000000000000000000000000000000100000002000000000000000000000000002c00d40f0100010000000200000001000000f401000002003000a40f00"/96, 0x60, 0x2013000}, {&(0x7f0000011100)="0000000001000000010000000200000028000400020000000000000001000000200004002e2e0000000000002e00000000000000ed4100000300000030000000000000005cf90100535f01003ac1655f3ac1655f3ac1655f0100000000000000", 0x60, 0x2013fa0}], 0x0, &(0x7f0000011200)) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000019c0)='net/sockstat6\x00') write$binfmt_script(r2, &(0x7f0000001a00)={'#! ', './file0', [{0x20, 'appraise_type=imasig'}, {}, {0x20, 'appraise_type=imasig'}, {0x20, ',k#'}], 0xa, "606b481841586e143f83aa907af655692dcc903f119054c5023c12b351cd2b9c5a29cb3e3b2856eb35ce9df6bd7dc4c01a4c61c8f905e9e5950b14fe6928"}, 0x78) r3 = dup2(r0, r0) syz_mount_image$msdos(&(0x7f00000005c0), &(0x7f0000000600)='./file0\x00', 0xffffffff7fffffff, 0x5, &(0x7f00000018c0)=[{&(0x7f0000000640)="891aa28c79a36347ff5e283bdd3017f18b55ac00ec5cd02bc8f4dc7f30db450286e279f89c4a657aa6f4e35e98d21fad80c3e9017e22301362b39400b0ddc99f6c3338144cbab9434b739cff6422e13bcb73736fc3b83afe3e183adddd3c8f3003945207b4bf2fa9079207fcf6d9a598f0d6cc0808898ec78889e6879db00501f2e061eb60c355e54b2106714e22b5ec", 0x90, 0x2}, {&(0x7f0000000700)="3d9e0d26f13e51d67b627b39c1237a2d40968d7b1e1347c9729595a44398204313ac255d983d4216cb2c1d8302944b20da7493250b2c0c69eb9b967d405964f180fc92bf2d487067b805fe2eccb119f63e341250a79b201254685caee810485e7bdbf90bd83ed6721988425a69240350bab71476e4b0b4568d17e1e737184543572c285f7b4539776c8cf21fff2602c331e8c07ac8cc567bd522bf7da85e2945b8d6d4e2407e4e9ff12208072e66db41b82739f944bf80beeb99571b69", 0xbd, 0x6}, {&(0x7f00000007c0)="4044d722288526c152e48f3c3de42bfc7e8e2a3f2884fc5d2c27a068bca1bb1ec21f5dc52861df8ed6a4ac7c3fb1a6414b159649f725dfb290f90f9d89985f557e58f5c4baeaca96f865efadcf08e93c8aa2d1937d24a5cb0cc9b233e41397d13b0880268e2225281713fdda3879dc4e8ad702ba94fb23d23de60aec05490abf686a861d", 0x84, 0xffffffffffffd08c}, {&(0x7f0000000880)="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", 0x1000, 0x2a}, {&(0x7f0000001880)="8d70fad81acc2db1db91500bb7554fb6b9839724f7ad560a9d9d7c9f4fa8fafffdc454074c90b94d962c2dab03829753daf6bfc042", 0x35, 0x40}], 0xa0000, &(0x7f0000001940)={[{@fat=@fmask={'fmask', 0x3d, 0x6}}], [{@appraise_type}, {@subj_role={'subj_role', 0x3d, 'reiserfs\x00'}}]}) write(r3, &(0x7f0000000280)='#\x00\x00\x00', 0x4) bind$bt_hci(r3, &(0x7f0000000580)={0x1f, 0x1, 0x1}, 0x6) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async) socket$l2tp(0x2, 0x2, 0x73) (async) readv(r1, &(0x7f0000000500)=[{&(0x7f0000000040)=""/169, 0xa9}, {&(0x7f0000000100)=""/45, 0x2d}, {&(0x7f0000000140)=""/182, 0xb6}, {&(0x7f0000000200)=""/69, 0x45}, {&(0x7f00000002c0)=""/42, 0x2a}, {&(0x7f0000000300)=""/163, 0xa3}, {&(0x7f00000003c0)=""/111, 0x6f}, {&(0x7f0000000440)=""/162, 0xa2}], 0x8) (async) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) (async) syz_mount_image$reiserfs(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x4000000, 0x7, &(0x7f0000000200)=[{&(0x7f0000010000)="00400000ec1f00001320000012000000000000000020000000040000611cad49840300001e000000000000000010cc030200010052654973457232467300000003000000020001000200000000000000010000001231231212331233123112341341241273797a6b616c6c65720000000000000001001e003ac1655f004eed00", 0x80, 0x10000}, {&(0x7f0000010100)="000000000000000000000000010000000300"/32, 0x20, 0x100c0}, {&(0x7f0000010200)="ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0f00"/1056, 0x420, 0x11000}, {&(0x7f0000010700)="ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x800, 0x11800}, {&(0x7f0000010f00)="00000000000000000000000012000000000000000020000000040000611cad49840300001e00"/64, 0x40, 0x2012000}, {&(0x7f0000011000)="010002005c0f0000000000000000000000000000000000000100000002000000000000000000000000002c00d40f0100010000000200000001000000f401000002003000a40f00"/96, 0x60, 0x2013000}, {&(0x7f0000011100)="0000000001000000010000000200000028000400020000000000000001000000200004002e2e0000000000002e00000000000000ed4100000300000030000000000000005cf90100535f01003ac1655f3ac1655f3ac1655f0100000000000000", 0x60, 0x2013fa0}], 0x0, &(0x7f0000011200)) (async) syz_open_procfs(0xffffffffffffffff, &(0x7f00000019c0)='net/sockstat6\x00') (async) write$binfmt_script(r2, &(0x7f0000001a00)={'#! ', './file0', [{0x20, 'appraise_type=imasig'}, {}, {0x20, 'appraise_type=imasig'}, {0x20, ',k#'}], 0xa, "606b481841586e143f83aa907af655692dcc903f119054c5023c12b351cd2b9c5a29cb3e3b2856eb35ce9df6bd7dc4c01a4c61c8f905e9e5950b14fe6928"}, 0x78) (async) dup2(r0, r0) (async) syz_mount_image$msdos(&(0x7f00000005c0), &(0x7f0000000600)='./file0\x00', 0xffffffff7fffffff, 0x5, &(0x7f00000018c0)=[{&(0x7f0000000640)="891aa28c79a36347ff5e283bdd3017f18b55ac00ec5cd02bc8f4dc7f30db450286e279f89c4a657aa6f4e35e98d21fad80c3e9017e22301362b39400b0ddc99f6c3338144cbab9434b739cff6422e13bcb73736fc3b83afe3e183adddd3c8f3003945207b4bf2fa9079207fcf6d9a598f0d6cc0808898ec78889e6879db00501f2e061eb60c355e54b2106714e22b5ec", 0x90, 0x2}, {&(0x7f0000000700)="3d9e0d26f13e51d67b627b39c1237a2d40968d7b1e1347c9729595a44398204313ac255d983d4216cb2c1d8302944b20da7493250b2c0c69eb9b967d405964f180fc92bf2d487067b805fe2eccb119f63e341250a79b201254685caee810485e7bdbf90bd83ed6721988425a69240350bab71476e4b0b4568d17e1e737184543572c285f7b4539776c8cf21fff2602c331e8c07ac8cc567bd522bf7da85e2945b8d6d4e2407e4e9ff12208072e66db41b82739f944bf80beeb99571b69", 0xbd, 0x6}, {&(0x7f00000007c0)="4044d722288526c152e48f3c3de42bfc7e8e2a3f2884fc5d2c27a068bca1bb1ec21f5dc52861df8ed6a4ac7c3fb1a6414b159649f725dfb290f90f9d89985f557e58f5c4baeaca96f865efadcf08e93c8aa2d1937d24a5cb0cc9b233e41397d13b0880268e2225281713fdda3879dc4e8ad702ba94fb23d23de60aec05490abf686a861d", 0x84, 0xffffffffffffd08c}, {&(0x7f0000000880)="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", 0x1000, 0x2a}, {&(0x7f0000001880)="8d70fad81acc2db1db91500bb7554fb6b9839724f7ad560a9d9d7c9f4fa8fafffdc454074c90b94d962c2dab03829753daf6bfc042", 0x35, 0x40}], 0xa0000, &(0x7f0000001940)={[{@fat=@fmask={'fmask', 0x3d, 0x6}}], [{@appraise_type}, {@subj_role={'subj_role', 0x3d, 'reiserfs\x00'}}]}) (async) write(r3, &(0x7f0000000280)='#\x00\x00\x00', 0x4) (async) bind$bt_hci(r3, &(0x7f0000000580)={0x1f, 0x1, 0x1}, 0x6) (async) [ 1573.780092] REISERFS (device loop1): Using r5 hash to sort names [ 1573.786553] REISERFS (device loop1): Created .reiserfs_priv - reserved for xattr storage. [ 1574.000257] REISERFS (device loop1): found reiserfs format "3.6" with standard journal [ 1574.008451] REISERFS (device loop1): using ordered data mode [ 1574.014550] reiserfs: using flush barriers [ 1574.019669] REISERFS (device loop1): journal params: device loop1, size 8192, journal first block 18, max trans len 1024, max batch 900, max commit age 30, max trans age 30 [ 1574.037165] REISERFS (device loop1): checking transaction log (loop1) [ 1574.603322] Bluetooth: hci8 command 0x1003 tx timeout [ 1574.608726] Bluetooth: hci8 sending frame failed (-49) [ 1574.665599] REISERFS (device loop1): Using r5 hash to sort names [ 1574.671894] REISERFS (device loop1): Created .reiserfs_priv - reserved for xattr storage. [ 1574.843385] Bluetooth: hci11 command 0x1003 tx timeout [ 1574.843389] Bluetooth: hci7 command 0x1003 tx timeout [ 1574.843464] Bluetooth: hci7 sending frame failed (-49) [ 1574.850490] Bluetooth: hci10 command 0x1003 tx timeout [ 1574.868582] Bluetooth: Unknown HCI packet type 5e [ 1574.874025] Bluetooth: Unknown HCI packet type 41 [ 1574.879173] Bluetooth: Unknown HCI packet type 5e [ 1574.885144] Bluetooth: Unknown HCI packet type 41 [ 1574.885274] Bluetooth: Unknown HCI packet type 5e [ 1574.890087] Bluetooth: Unknown HCI packet type 5e [ 1574.901657] Bluetooth: Unknown HCI packet type 50 [ 1574.904157] Bluetooth: Unknown HCI packet type 41 [ 1574.907476] Bluetooth: Unknown HCI packet type 5e [ 1574.916436] Bluetooth: Unknown HCI packet type 5e [ 1574.917130] Bluetooth: Unknown HCI packet type 40 [ 1574.921274] Bluetooth: Unknown HCI packet type 41 [ 1574.921278] Bluetooth: Unknown HCI packet type 5e [ 1574.921282] Bluetooth: Unknown HCI packet type 50 [ 1574.921285] Bluetooth: Unknown HCI packet type 5e [ 1574.921289] Bluetooth: Unknown HCI packet type 40 [ 1575.253339] Bluetooth: hci6 command 0x1003 tx timeout [ 1575.253418] Bluetooth: hci6 sending frame failed (-49) [ 1576.683264] Bluetooth: hci8 command 0x1001 tx timeout [ 1576.688553] Bluetooth: hci8 sending frame failed (-49) [ 1576.923321] Bluetooth: hci10 command 0x1001 tx timeout [ 1576.928657] Bluetooth: hci7 command 0x1001 tx timeout [ 1576.928808] Bluetooth: Unknown HCI packet type 5e [ 1576.938713] Bluetooth: hci11 command 0x1001 tx timeout [ 1576.938821] Bluetooth: hci7 sending frame failed (-49) [ 1576.945795] Bluetooth: Unknown HCI packet type 5e [ 1576.949468] Bluetooth: Unknown HCI packet type 41 [ 1576.958851] Bluetooth: Unknown HCI packet type 41 [ 1576.959142] Bluetooth: Unknown HCI packet type 09 [ 1576.964872] Bluetooth: Unknown HCI packet type 09 [ 1576.968896] Bluetooth: Unknown HCI packet type 5e [ 1576.978128] Bluetooth: Unknown HCI packet type 5e [ 1576.978572] Bluetooth: Unknown HCI packet type 50 [ 1576.984292] Bluetooth: Unknown HCI packet type 50 [ 1576.988337] Bluetooth: Unknown HCI packet type 5e [ 1576.997585] Bluetooth: Unknown HCI packet type 5e [ 1576.998023] Bluetooth: Unknown HCI packet type 40 [ 1577.002844] Bluetooth: Unknown HCI packet type 40 [ 1577.323186] Bluetooth: hci6 command 0x1001 tx timeout [ 1577.328470] Bluetooth: hci6 sending frame failed (-49) [ 1578.763224] Bluetooth: hci8 command 0x1009 tx timeout [ 1579.003232] Bluetooth: hci11 command 0x1009 tx timeout [ 1579.013255] Bluetooth: hci7 command 0x1009 tx timeout [ 1579.018489] Bluetooth: hci10 command 0x1009 tx timeout [ 1579.403149] Bluetooth: hci6 command 0x1009 tx timeout 10:02:40 executing program 5: prlimit64(0x0, 0xe, &(0x7f0000000280), 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0xffffffffffff0162) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$BINDER_FREEZE(0xffffffffffffffff, 0x400c620e, &(0x7f0000000000)={0xffffffffffffffff, 0x0, 0x80000001}) ioctl$KDADDIO(r0, 0x400455c8, 0x4) 10:02:41 executing program 4: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) (async) sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0) (async) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) (async) ioctl$KDADDIO(r0, 0x400455c8, 0x0) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) (async) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000040)=0xf) (async) sched_setattr(0xffffffffffffffff, &(0x7f00000000c0)={0x38, 0x6, 0x8, 0x4, 0x5, 0x9, 0x0, 0x7fff, 0xffff, 0x3efc}, 0x0) ioctl$KDADDIO(r2, 0x400455c8, 0x4) (async) ioctl$TIOCSETD(r2, 0x5412, &(0x7f0000000000)=0x33) (async) ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080)=0x4d) (async) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000040)=0xf) (async) ioctl$KDADDIO(r1, 0x400455c8, 0x4) (async) ioctl$TIOCSETD(r1, 0x5412, &(0x7f0000000000)=0x33) ioctl$PIO_FONTX(r1, 0x4b6c, &(0x7f0000000000)={0xa, 0x4, &(0x7f00000002c0)="821fa1b9c7099d5d4127edbb7a960ab6b353579d34be34b1b3ab71202783e9d8edda1a25ee577bc7c7878a41238e1b018491f8d8e3e7fc7d338b32661040af2f3171b060e59aaffe975f2dd2a2fd9d595a8cec085a721c65d4398d095fa4f53e0700f9126fcd3d6da5aaa2244794d0d4bae97a061599b114a06c5254375fcaaa5fe0dc49da696817d1cbb050bdc1beacc354cc3bdb15de01aa95218c528ce143b59ec2a7aaadb01feeb202aa1863ec4b5b45788f2a3f87aecb4aad3004e5c3b93d29e2620dd820baefd8aa4c44b28b35375f59f601d48ef543df7ac73bb21596747c94e151d8f02f2bb0b31438b0df443e3b56d6e7e274a5089505e334fc1a7dd1cf3c86b03f6ae054e3bee0129c11d076817591ef5e6a7728ab01a51cbb27044d3bfbe20ce6011645ebc0c63b9a88c86cda49d445aee10a69e174d9545bbb9c84ec5cf7db365b66251f29c67cbcfb8e38528ae0853ae782cf919d8210841bb9a99e8253e375e4aa3c7dc074da61f69293ef2adb5c90df11311a077cf58c1f2c3e7dd6afe8d74447c9ce0442e5dece903938b08946dee0b73e5ea71c85a9de3606240477847d8e869d61e516f754d3d6bef4f728b3646fcdfdbe1e7d854acf0ab7e98e9be15a1168b9f91deadf143b902dc86977348bd4e2a350beb1100143a3795ab8f948feaed1256187fb11a0765a4b8e31e24cdac364f81dc43a7b3e35034bf5cfe0434bf83997b8ef0c68b0ae37197b56fcbf810b38a9682025ad6d067287659ed6c615aeb42dc15ad4db054bd74e839e89e073b0483a86d683a1cb2c988ad57355a7e7b600f5fc3d067d0f8687492644180269f575667d5ea2fae8547dadd90b52ea229728a9bc4d17191a3bcf0d003cb71118269755ad9ee7f7c43ae36dad141933d757a699bc5b2a0a118da3be3655b996e55578d3fc351583950e0002ea989524f6dd78166b304a19220238b0612c5eeaa0e263c02a6a44baec92dad7b80767f5f0d215779fe36511561f89f331f0a335926eb1d50b4e554aaabe9b71091244e09ca3a6ad53a17b72cfad06f84695930f26ff586647eed987f2e42cf90d35dc8ffdf9b217fac8dd9e678a9148c484f91fcbfac48344e8f4f22c69eb61fcde63d5e03cfa1153b465d738a23ed2e05ba0ab550af294a7899686f19bbf54ea65ef62d1a2dcf9ee9a0e3381106ad3e0ac5b371c8cbe96fbdf7102978c585686adf4586d494958245e703e0bb8caff236bfab0549ac0d3ab616ad2401f880a08e3499e132f6c831574da81808da7beb6825ac714e2c1880d95af86c5ae128f1a2d31f0f24b7a98fdc2b1d27e2346528dcb1ed00b78ac0ab3ed41ce35dcabd732b510d4cf4b1fe1809f45a6b07e25ca029363f7d502032f7f1cd9f230825d07c9e1d97b7ada3880da4e3334183bf8d321935923c154e105557026255105b4"}) syz_open_dev$tty1(0xc, 0x4, 0x3) 10:02:41 executing program 3: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x0) (fail_nth: 65) 10:02:41 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x0) ioctl$KDADDIO(r0, 0x400455c8, 0x223) 10:02:41 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) ioctl$BTRFS_IOC_SCRUB(0xffffffffffffffff, 0xc400941b, &(0x7f0000001400)={0x0, 0xfffffffffffffbff, 0x4a}) r1 = dup2(r0, r0) write(r1, &(0x7f0000000280)='#\x00\x00\x00', 0x4) r2 = accept4$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @empty}, &(0x7f0000000080)=0x10, 0x80800) sendto$inet(r2, &(0x7f0000000000)="667b84d9db7c2e5284dbd4a85a40d527d202045e6eb75abaaf474308707bd3d6985c0001757c82", 0x27, 0x4008800, &(0x7f0000000180)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x25}}, 0x10) connect$netlink(r1, &(0x7f0000000240)=@unspec, 0xc) writev(r2, &(0x7f0000001380)=[{&(0x7f00000002c0)="8de5193e6212b6c8267da87de53a888904d33c0780e44ce15f4cff32626b0ad3ac20a39ac052a7605e89bcc3d4668b29ac61848d3a77219f831f2c854441ed45f87e9606a8df1137098295ccf760ac24c68d9e2ab9f5e0d392f6c58c4dce57d610b45dc4882d664732f8ed6981035365501597a45e99dbcbe2c935dd1a5ad50b9622ce9c48f602b4fa45c68965e03b5f970489464306568f36fb5a5d4c791a9162bc93f2baf92d6b8a879c7f75df1e1a9688dbe1b7429916e617757992bef1d43863166d79ca8296be73cd90622a92c8d397a67fa540ebded2da0495167f0e08bcd4e124de2cae46908f5931049315a1c00cfecca3a0ce347b4bc93e50523222ba6f93780fedc8c52287444f92e9e82c4ab8570ccf315e92cf3e70b51909bc7daed313f2d9d8467710b1a0bd2545cd8e6a5d08f56d00ca74eeb79205864848353f28c43164379a1e507319bc35ee9766d46f2488ef93fde0cde4fc2d58f7d7e03fc2b296d79d628cb727abb6a41c4c59e2caebeae388445381e5c0682faee88bbfb06f9b45d2a43a93771f9707ce6b5e3fee26ce761f53ab43713017c14767897f94a1ead2b8e4f46b9c6b0b2331bc583797f8f993ccf8da68258ca81832b537228c5063155c3b9a9c23d6216e40d4ccc71dc17eddefb7dad4761a32d50936a542a343fbebc2b3a8296db057f057dee7aba316d643911b443d2bb989cf4f83a0dfa4c63da0b19e00c6b65178308a05deb748356d24e3a6da92574cac05f11b3512b5ec7e06f4f7528d6d6f7b6abecddb583d4c132f28c19a8bdec03c28ccc5982d5c097d265be9e8ac3cabaf7fc5a25bd0c1f62bf4724a15de030ca4329c3c244bedae869aa55b245d7561e267e180dbb37cca337a247ec2d9b65a0d22aef0f9798664ab3c8ae9a2dc3ea994cebad794ec433ea9136672275ac0fd64d8f41464ddd5f5cfad88575c2ed83d27776d6b2d171dbf5bdfb38c77ea3028b9d97b08cc0d945b8026f9132ad2568f0dab6b98064dba30aefcf1271e64d100f17c434b6aee95b90a74e0a4b1209a0080121168cdaacbea86024251e9a384cafcd00ae940a43f95d1d070fda5cbdaaa2e68ee6a1a28bb867e7f39c885173c2fe336225e3d41cdb5af37a779654d5fe8aed698b9eeccb83491bff2d3c92c920285fa79c68ab03a622b3fdd6e512ae410c4cf3e6e86a42c29ac1ef48f6434767bfc01b1e75dcb63390619bc376d9c23529f8e1ac887dda3fa7db8f9382a63ce2b7bec235e2fafc76ea40bc19b8e737a748052f03d5a57827cd1ac07ffd85a6f442fdc17f017bdb075a2e0ae85c29b737c3352705ae8d4015ee462ab6925412a05951f4f4dabf0cab396f84140449f96e7ccd626d4ea96f87e3f096a4d941093bebebc93f658b6bc557580a12bba95836807c0e8a28b5915643029c78ce72251b1c1c7799ae7624bb5bd3fe736bc850f8fee2e8d6320d89c39299dc94b66cb5883c2611d268da6781e9bdabbd464a8ee5e9e240aee265a034b939eef824edc6791bdb80c3dfc910fb32053729afd37dde9f2ddd960722dc611a5bc5b21ac7de46ddf1453de4e2b6b69c95ebcf5561a85eeab8606909fa500d05ee9c097cac5e9cf5890a950db3cca220072af4bc597d2499539b9ffb76cfbdb9dcccc5b276c34b69d4d18886ab76000a22d95f0ac14051ec3f57f72c0d8b3dc69142bc363c5a718aecf8e95a6d58288f98abdcfc79aa20d6d77a02b0127bbfd2ebb760319faf9a3097bc6204d70fba4bbcaf20c2ad2b9278c799328e29cf46569dcf2c9867a93e741fcd44c7f614fe411b98124babf6079292e33a7b20421a69471cc5e20ecadc96869365970b4341d5f23b0f31ebc5a662f2dfa237347d7261b8d01d93836a9dfdae17074ddbc140dbf7443a0a2e8dce7a3ce21dae7c77b96b662a45c3e8102dabafdc61904b2c397e215ba01ed872712d6cd7f6e0709b1eae90327420c93496924cde544d26c5baf08056325e429ad97a5f04a971c93715ce1f2457977579957430f0044b0f2cf271a7b3b1e860b7cf986dbbb9e2d96e10d1e96bdfa25228f011f75dddd3d2411b9f5264c9860871847a6c99815734ad0ff41f2c2e83395c51ef991d5cfdac9965f09ef560477936e7af6f9b92177cfeccd51c3cacb679917e904a36aaae5931197461762b464f9f7c63ab156bc2081bf3447bd22a666e5c5f698787cde987db8b89ed6b110feb7d47aa08f3d20f069337326ca704504b17a1922c22452da2f9d4da7bcb9bc6fbc9fb19fc283fbcef320453787012ac3f39a9daf1d69093c327d39d59d9861e24e11f0084760e6f2a1ebec35ab6020cc460aea74f4f30c1480274cc4a4d78ceafaf2e78e2ebc0b9ed5b7ef4ef787b1014cba6b50b22d46292c4791b0548d43b054418c341d6f7271760375e4769de89c6a785c0ddab909c99800aa6cdb8b1414ab103b8826057c823ef46fa2b5be165d495670d7501973523d6cd071f13e887f05de5b58b3918c3cd6a4342cd64b7e71ab490bc70e8223d9d8cf8ffbe7b476df6cb7dade84162a8398707bab71dbc57a0c12a696c947fd92a30ab9be048ce94109f3326d39a37d06537ae77315daca0bf85addf666af8b91eb0def3e19d79b18bed80793b6ea07eece94062999853f3702a3e0ad740f035d1dd832feb8acbce9246dc4cce2c51c0e5ed912aaa1fcb94e8f17795a3ea0d19b26be4a0fe69f7edd27ac39186e186753eba743dac67e0fc294dacdc9ffa399c8b3e3776391982999de335e39718d150ea5c2fdf455b0cbc5b32efb89fb377425340ee58a9e778a6fc37d4f298c48c1127a83e9ad931d98a85e1534096d6ad8e8deeefc7506dba2400be0fc6122e73606c39a4ec3b76ab6e0195d226a58f7417e0cfdbfaf67f5d189eda5d0e783acafbabae5ee26b9e1d9996f6ed74fbb61544f945265a1f80a3b4c9253b9702edeba4763a24bac81ecbf7e0727edc442087e479db384d6ca1a525d797250d7af88275b7eb95fb208e43e352fa7ddabfd61d09aff66da1e8b4eea382fc9dd92043130841d511fef205f12a1ae1a063c48c15d99c61778e95bb2fa70220ab709985f913ace9ae515802ba3305840cffc3cc0f296f1394e009383edcb61457a904dfb728de9f81aff64bb5c1d347ce27ca37ac9478bde989b8cb69219d6a43742eae2291510214491ebbf44d17aaef1431d995d413ac6488e851f08939b45a363c57809aea0cd3cf4fcb7ddeffb7630ae8e6810624e554aa250fa1b0b21a6923fdacb69b88281e1364d50913b024ab2aba18c7548bb6551c9b2cdf584aaaaf6fe5537e4924304f51b5f0f6884a3032b0989a131f8b434143ceb0a6cc55d627fa055cf4554ecd1df5a21488bfda7853a5f59d361ff2b0db446677fc4abed098562c128e4680a7a124cfa51c8f64bd560a6d901c3d38ed610247c0aa01b94e1873fe0c6c7b114ad8b8dc325bdf3ca00011eb823f17d48bdd8ffec1c4361095fd386e743aec12bf862e886d2baf06f42f2ee9f50588f651bf6d3ab20a5808af848c541c08828219e883a97450522314ffe75e3bc7d4fd45b312a306a9c6b7eb4c6605b85ed49e87ea10e0c94e29c6e680fa2075f41bc911831ce8c2650bb2259b0a23ba376b6254c499f531cbfcf3a1c308d764ff09ec7680c7fadd8bf55b851743ff3629fefcba412e5e74a765499dfb363682d20c380407afbf7024f73659f644df1c0a8f59202f7cba7a1ea86227fcdd898974e5151ab81474ff3d279a2786cbd0b098d1ce519346d2740183319c45940c3157779ba701c0a56359e5a4a04458e8593482776da8392113c89a74282a6ca485e0d6464988455a7158337651bd8b0a6df7e6f36a770e1e32a517309e60ad0e7b7deae270617ee36700be9ba4dd4f61fcfd575e1840b1732bdc2549a903590869f5a4f3f9987e4ec92b6272de85896d574f64ceab970b156d49af4ac4db003204d1bde82367e3492fa6044e1e8f85c9d79ec2ab4ac17968ae844853805d6541c05eb0294bee7d656e6369573715f1a6f9f6500c00bf9f83ef1a93903aa9491d850a3dab614339705efde11993d4278dc71dbc190bd3476b2d4f14ae9964ef3b60223f74bdca548c6c3ac0c2cb4bfa8a3024fd0d232e1ce97e02ed4c355230d498052488137e2e63b1dc5c3dd10c2ae78a8a8bb7eb08c7c1abeba415e750dcf30b78cfc5b8a176e9c7e02e60ac222fb9a8db3f93644f2a69e33132abc9f7a328308dfa97deaedd760a8d63f7c8e49ccf9cb20e92839521140ff6756bf1af4adf8e3a3644cf1a88822d2d8573521cf16574e506efdca274a0aaa8581282e0711bac6f13e09c3b85dce9936a3547fd39847cf0f46d6e51f04064deacf86d4d698adf6085146ab7fc2b72f68ce7d80ca1714a42d0da01df87f1c5b0867e571e742d6ecef395cf1362963db5d27eeca0af016c6998b5857233f2ce78b4c79a9e049d81e2d6dd9c28cc19d039014a499388a972cb84943947cf9658692e7285c4236f794a11739deb28fa65736e72537951670e9701ded941cc930b1715fa291742bdb986b29fbf8ab837f6a321fe1c2c3ff90d9ac1eff5356be1086042466d79bbb93e8de04a5b78c429970acb6a2295d863b1124c4c2b158151879dbef03d5cf0de17045db594544a946de5ab15a05a87941410a193ecf83bac5ab7a1bd9dcec187564b2b5068120cf608de1eb9c00dfadf0383627e67aa49c88200d3f8a5e50bb50257e374dedd355751137a41d5acaf568826bead652c3b2807a84025fb31151b76ef46da62801e511d28336503e08bcb7cd38d9f3cca38cfefdd009759fce2b3e32a41bc2d68bb5398d2c6d3472057dc3c448e219f05816a9e188c81a7aed548f822f4d072a6ad2df9b1c05588877b1d65c95612232d6f0814f913991bac96e6713c32731202c22b90fc30b9de40a519cb759fce6306f5d5770b41bb52fb57901b3d0f7fba59b1d82bc9231d9257f3ebee3b9b13687862422c844700cc637a7078d5aa6fca5979333de3cb900c68347b58a2bc38be6c15f680020b82768d5d931cd3e66a3553e1f38c79185defcd786a5285ee9faf928be0273b89e8b173262b6d0e2b312d45205445e5f89cdd32a4986700ea7719fff1455dc67f6be1108c3d90be6b8db7fdae58559d1ba242fc9689f07ddf137ce720b8f9753ab64574fc383a90c429dab29712634a12489493715fa4d797b01e1db9102245cb2410b0bb273cc168f8e98b3104612b00649e59202f9bd90cf6a00aa862ee802027740cb4e9ec595f152595c39ccde777f049caae034019f1b7e54605809445b3cb47d2ee26fca2433be72f20c61e88559b5edba4ca6bafc138c779e01a315a4bb8d1b5c77d35ffaf28fe9162c7c59b06aa8a1dda79077ab473a196fc845a53edf4a75f25fe021b327bb366940c99a1f027aea6765b2deeb3db9f9144ea63cebf85c79b86b6f832c03a1863bc12faf2a5bc8e89e6e74db95a5656ae96a7f1f4e635f9de10cbacc4b68ecb54845f3af8ec1fc678b4904e32425885f399f90ff75ab9610473ecd52bde373579dd3997083f0ac430540fbb9d0f2bd4148b29133732c83d904873b7884c669d43750a339c87a0d0b007335dfb6ece1514b338aca150fb95a364a70ed2a37f76ce5bb59b11e524080fd821bd79f88bef5e55a379de7ed1ed2c7e812d91d62f20a0a99e536b190afbafbf2a7b8ad3e2417899cede9b0a0d4a3424acfd507043ef74a7e9cc01bfd4405cc32d368c01d2566da977c0d924224710f44bb549edd", 0x1000}, {&(0x7f0000000040)="28d808b1dbc454c68f173a1d9a582a94c1b17db6d5322f64691882d5e6e35517970b396dc41edcb8764e2835638b27ab5e8a741f3621ff90a5fbce", 0x3b}, {&(0x7f0000000080)="fdfe1d49bcd94e2ae3e59697e68fd74eae15b1461367b52ad140bc174249c77bc67f7166228453a86e97ec672c3bb7dd9b169f46510f0e08dfa6bb11de6ce3c60f468c10f1bc4000ae238b", 0x4b}, {&(0x7f0000000100)="f66668e98c2c0a30878b16cfda7e1c97926bbc37d08c5c85393f83c3d5514edf", 0x20}, {&(0x7f0000000140)="787553ac5d83aa9043802b281a3c34e7670b8ed9c2703656e7c2368c551e44cd9c0dbe42e8f29bba6d6ebebd483bd7d727cfae9df0f98567a53b075fa57204e87e78669ec2923d0f546bf86859127681a0a676f48d97decf5243465a701d32c8bf446d33456658f33635", 0x6a}, {&(0x7f00000001c0)="dc0d4a37f5a937d76cc2ec7c0a241595625e8156bbacaff5fbe07a548bd5481bc44ca15427b73bdfc7d7fea7201da716bcaabac643c2879b23c31c43c5b74b0e4b0db8efde4b6616e1a09236f39a028003c18f1426ad521ae1cd60d906709430dd3e185d464e71acd7f7a64d1a", 0x6d}, {&(0x7f0000000240)}, {&(0x7f00000012c0)="79c6ac5e541cdee1bbde5743b20cabafaedc3bbbcc2cef165fd3bda3411ff1a45bc7cf02071b4a86c291280e3152baa23d11e6d69d0ac6afd13f3afc1ad77e7c9af93e0106454a3add233bbb52bef37b1d3f4686bcf6fe9c2da24e74aa298d220bb29ac3adaa54bcb1162932969ddee9a3d72a84f103133b91704297f117085bdcd8435ee1ac69a5b8641c63bc62273c62a57a1fc4f42053e5deee077a91f396e624df5ad7ab0f05364bdf2b19d359a8", 0xb0}], 0x8) 10:02:41 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) (async, rerun: 64) ioctl$BTRFS_IOC_SCRUB(0xffffffffffffffff, 0xc400941b, &(0x7f0000001400)={0x0, 0xfffffffffffffbff, 0x4a}) (rerun: 64) r1 = dup2(r0, r0) write(r1, &(0x7f0000000280)='#\x00\x00\x00', 0x4) r2 = accept4$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @empty}, &(0x7f0000000080)=0x10, 0x80800) sendto$inet(r2, &(0x7f0000000000)="667b84d9db7c2e5284dbd4a85a40d527d202045e6eb75abaaf474308707bd3d6985c0001757c82", 0x27, 0x4008800, &(0x7f0000000180)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x25}}, 0x10) (async) connect$netlink(r1, &(0x7f0000000240)=@unspec, 0xc) (async, rerun: 64) writev(r2, &(0x7f0000001380)=[{&(0x7f00000002c0)="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", 0x1000}, {&(0x7f0000000040)="28d808b1dbc454c68f173a1d9a582a94c1b17db6d5322f64691882d5e6e35517970b396dc41edcb8764e2835638b27ab5e8a741f3621ff90a5fbce", 0x3b}, {&(0x7f0000000080)="fdfe1d49bcd94e2ae3e59697e68fd74eae15b1461367b52ad140bc174249c77bc67f7166228453a86e97ec672c3bb7dd9b169f46510f0e08dfa6bb11de6ce3c60f468c10f1bc4000ae238b", 0x4b}, {&(0x7f0000000100)="f66668e98c2c0a30878b16cfda7e1c97926bbc37d08c5c85393f83c3d5514edf", 0x20}, {&(0x7f0000000140)="787553ac5d83aa9043802b281a3c34e7670b8ed9c2703656e7c2368c551e44cd9c0dbe42e8f29bba6d6ebebd483bd7d727cfae9df0f98567a53b075fa57204e87e78669ec2923d0f546bf86859127681a0a676f48d97decf5243465a701d32c8bf446d33456658f33635", 0x6a}, {&(0x7f00000001c0)="dc0d4a37f5a937d76cc2ec7c0a241595625e8156bbacaff5fbe07a548bd5481bc44ca15427b73bdfc7d7fea7201da716bcaabac643c2879b23c31c43c5b74b0e4b0db8efde4b6616e1a09236f39a028003c18f1426ad521ae1cd60d906709430dd3e185d464e71acd7f7a64d1a", 0x6d}, {&(0x7f0000000240)}, {&(0x7f00000012c0)="79c6ac5e541cdee1bbde5743b20cabafaedc3bbbcc2cef165fd3bda3411ff1a45bc7cf02071b4a86c291280e3152baa23d11e6d69d0ac6afd13f3afc1ad77e7c9af93e0106454a3add233bbb52bef37b1d3f4686bcf6fe9c2da24e74aa298d220bb29ac3adaa54bcb1162932969ddee9a3d72a84f103133b91704297f117085bdcd8435ee1ac69a5b8641c63bc62273c62a57a1fc4f42053e5deee077a91f396e624df5ad7ab0f05364bdf2b19d359a8", 0xb0}], 0x8) (rerun: 64) [ 1583.194671] Bluetooth: hci8: Frame reassembly failed (-84) [ 1583.207113] Bluetooth: Unknown HCI packet type 5e [ 1583.212107] Bluetooth: Unknown HCI packet type 43 [ 1583.224442] FAULT_INJECTION: forcing a failure. [ 1583.224442] name failslab, interval 1, probability 0, space 0, times 0 [ 1583.235727] CPU: 1 PID: 21794 Comm: syz-executor.3 Not tainted 4.14.262-syzkaller #0 [ 1583.243607] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1583.252967] Call Trace: [ 1583.255559] dump_stack+0x1b2/0x281 [ 1583.259192] should_fail.cold+0x10a/0x149 [ 1583.263342] should_failslab+0xd6/0x130 [ 1583.267320] kmem_cache_alloc+0x28e/0x3c0 [ 1583.271472] __kernfs_new_node+0x6f/0x470 [ 1583.275630] kernfs_new_node+0x7b/0xe0 [ 1583.279517] __kernfs_create_file+0x3d/0x320 [ 1583.283928] sysfs_add_file_mode_ns+0x1e1/0x450 [ 1583.288597] internal_create_group+0x22b/0x710 10:02:41 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) ioctl$BTRFS_IOC_SCRUB(0xffffffffffffffff, 0xc400941b, &(0x7f0000001400)={0x0, 0xfffffffffffffbff, 0x4a}) r1 = dup2(r0, r0) write(r1, &(0x7f0000000280)='#\x00\x00\x00', 0x4) r2 = accept4$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @empty}, &(0x7f0000000080)=0x10, 0x80800) sendto$inet(r2, &(0x7f0000000000)="667b84d9db7c2e5284dbd4a85a40d527d202045e6eb75abaaf474308707bd3d6985c0001757c82", 0x27, 0x4008800, &(0x7f0000000180)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x25}}, 0x10) (async) connect$netlink(r1, &(0x7f0000000240)=@unspec, 0xc) (async) writev(r2, &(0x7f0000001380)=[{&(0x7f00000002c0)="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", 0x1000}, {&(0x7f0000000040)="28d808b1dbc454c68f173a1d9a582a94c1b17db6d5322f64691882d5e6e35517970b396dc41edcb8764e2835638b27ab5e8a741f3621ff90a5fbce", 0x3b}, {&(0x7f0000000080)="fdfe1d49bcd94e2ae3e59697e68fd74eae15b1461367b52ad140bc174249c77bc67f7166228453a86e97ec672c3bb7dd9b169f46510f0e08dfa6bb11de6ce3c60f468c10f1bc4000ae238b", 0x4b}, {&(0x7f0000000100)="f66668e98c2c0a30878b16cfda7e1c97926bbc37d08c5c85393f83c3d5514edf", 0x20}, {&(0x7f0000000140)="787553ac5d83aa9043802b281a3c34e7670b8ed9c2703656e7c2368c551e44cd9c0dbe42e8f29bba6d6ebebd483bd7d727cfae9df0f98567a53b075fa57204e87e78669ec2923d0f546bf86859127681a0a676f48d97decf5243465a701d32c8bf446d33456658f33635", 0x6a}, {&(0x7f00000001c0)="dc0d4a37f5a937d76cc2ec7c0a241595625e8156bbacaff5fbe07a548bd5481bc44ca15427b73bdfc7d7fea7201da716bcaabac643c2879b23c31c43c5b74b0e4b0db8efde4b6616e1a09236f39a028003c18f1426ad521ae1cd60d906709430dd3e185d464e71acd7f7a64d1a", 0x6d}, {&(0x7f0000000240)}, {&(0x7f00000012c0)="79c6ac5e541cdee1bbde5743b20cabafaedc3bbbcc2cef165fd3bda3411ff1a45bc7cf02071b4a86c291280e3152baa23d11e6d69d0ac6afd13f3afc1ad77e7c9af93e0106454a3add233bbb52bef37b1d3f4686bcf6fe9c2da24e74aa298d220bb29ac3adaa54bcb1162932969ddee9a3d72a84f103133b91704297f117085bdcd8435ee1ac69a5b8641c63bc62273c62a57a1fc4f42053e5deee077a91f396e624df5ad7ab0f05364bdf2b19d359a8", 0xb0}], 0x8) [ 1583.293186] sysfs_create_groups+0x92/0x130 [ 1583.297504] device_add+0x7e5/0x15c0 [ 1583.301220] ? device_is_dependent+0x2a0/0x2a0 [ 1583.305806] rfkill_register+0x18e/0xab0 [ 1583.309874] hci_register_dev+0x359/0x8f0 [ 1583.314029] hci_uart_tty_ioctl+0x6d1/0xa60 [ 1583.318353] tty_ioctl+0x5af/0x1430 [ 1583.321986] ? hci_uart_tty_receive+0x4c0/0x4c0 [ 1583.325051] Bluetooth: Unknown HCI packet type 5e [ 1583.326652] ? tty_fasync+0x2c0/0x2c0 [ 1583.326664] ? proc_fail_nth_write+0x7b/0x180 [ 1583.326677] ? trace_hardirqs_on+0x10/0x10 10:02:41 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) r1 = dup2(r0, r0) r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$VT_GETSTATE(r1, 0x5603, &(0x7f00000000c0)={0x0, 0x6, 0x3}) bind$bt_hci(r2, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6) r3 = dup2(r2, r2) write(r3, &(0x7f0000000280)="23000000010007", 0x7) ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r3, 0x402c5342, &(0x7f0000000040)={0x2, 0x5, 0x7, {0x8, 0x6}, 0x8}) write(r1, &(0x7f0000000280)='#\x00\x00\x00', 0x4) [ 1583.326692] ? fsnotify+0x974/0x11b0 [ 1583.326701] ? proc_tgid_io_accounting+0x7a0/0x7a0 [ 1583.326709] ? __handle_mm_fault+0x80f/0x4620 [ 1583.326719] ? SyS_write+0x1b7/0x210 [ 1583.342537] Bluetooth: Unknown HCI packet type 50 [ 1583.344031] ? tty_fasync+0x2c0/0x2c0 [ 1583.344044] do_vfs_ioctl+0x75a/0xff0 [ 1583.344057] ? lock_acquire+0x170/0x3f0 [ 1583.344067] ? ioctl_preallocate+0x1a0/0x1a0 [ 1583.344081] ? __fget+0x2df/0x460 [ 1583.344092] ? do_vfs_ioctl+0xff0/0xff0 [ 1583.344106] ? security_file_ioctl+0x83/0xb0 10:02:41 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) (async) r1 = dup2(r0, r0) (async) r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$VT_GETSTATE(r1, 0x5603, &(0x7f00000000c0)={0x0, 0x6, 0x3}) bind$bt_hci(r2, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6) (async) r3 = dup2(r2, r2) write(r3, &(0x7f0000000280)="23000000010007", 0x7) (async) ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r3, 0x402c5342, &(0x7f0000000040)={0x2, 0x5, 0x7, {0x8, 0x6}, 0x8}) (async) write(r1, &(0x7f0000000280)='#\x00\x00\x00', 0x4) [ 1583.351382] Bluetooth: Unknown HCI packet type 5e [ 1583.352720] SyS_ioctl+0x7f/0xb0 [ 1583.352729] ? do_vfs_ioctl+0xff0/0xff0 [ 1583.352741] do_syscall_64+0x1d5/0x640 [ 1583.352757] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1583.352766] RIP: 0033:0x7fa331314fe9 [ 1583.352775] RSP: 002b:00007fa32fc8a168 EFLAGS: 00000246 [ 1583.386185] Bluetooth: Unknown HCI packet type 40 [ 1583.389094] ORIG_RAX: 0000000000000010 [ 1583.389100] RAX: ffffffffffffffda RBX: 00007fa331427f60 RCX: 00007fa331314fe9 [ 1583.389105] RDX: 0000000000000000 RSI: 00000000400455c8 RDI: 0000000000000003 [ 1583.389110] RBP: 00007fa32fc8a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1583.389116] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1583.389122] R13: 00007ffe09471b3f R14: 00007fa32fc8a300 R15: 0000000000022000 [ 1583.406265] Bluetooth: hci10: Frame reassembly failed (-84) 10:02:41 executing program 0: prlimit64(0x0, 0x0, 0x0, 0x0) sched_setattr(0x0, 0x0, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x0) (fail_nth: 55) 10:02:41 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x0) ioctl$KDADDIO(r0, 0x400455c8, 0x223) 10:02:41 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) (async) r1 = dup2(r0, r0) (async) r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$VT_GETSTATE(r1, 0x5603, &(0x7f00000000c0)={0x0, 0x6, 0x3}) (async) bind$bt_hci(r2, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6) r3 = dup2(r2, r2) write(r3, &(0x7f0000000280)="23000000010007", 0x7) (async, rerun: 64) ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r3, 0x402c5342, &(0x7f0000000040)={0x2, 0x5, 0x7, {0x8, 0x6}, 0x8}) (async, rerun: 64) write(r1, &(0x7f0000000280)='#\x00\x00\x00', 0x4) [ 1583.765249] Bluetooth: hci6: Frame reassembly failed (-84) [ 1583.772611] FAULT_INJECTION: forcing a failure. [ 1583.772611] name failslab, interval 1, probability 0, space 0, times 0 [ 1583.790903] CPU: 0 PID: 21838 Comm: syz-executor.0 Not tainted 4.14.262-syzkaller #0 [ 1583.798814] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1583.808169] Call Trace: [ 1583.810762] dump_stack+0x1b2/0x281 [ 1583.814398] should_fail.cold+0x10a/0x149 [ 1583.818543] should_failslab+0xd6/0x130 [ 1583.822499] __kmalloc_track_caller+0x2bc/0x400 [ 1583.827151] ? kstrdup_const+0x35/0x60 [ 1583.831019] ? do_vfs_ioctl+0x75a/0xff0 [ 1583.834972] kstrdup+0x36/0x70 [ 1583.838150] kstrdup_const+0x35/0x60 [ 1583.841846] __kernfs_new_node+0x2e/0x470 [ 1583.845990] kernfs_create_dir_ns+0x8c/0x200 [ 1583.850385] sysfs_create_dir_ns+0xb7/0x1d0 [ 1583.854691] kobject_add_internal+0x28b/0x930 [ 1583.859170] kobject_add+0x11f/0x180 [ 1583.862869] ? kset_create_and_add+0x190/0x190 [ 1583.867440] ? device_add+0xd72/0x15c0 [ 1583.871313] ? __lockdep_init_map+0x100/0x560 [ 1583.875786] ? root_device_release+0x20/0x20 [ 1583.880174] device_add+0x33f/0x15c0 [ 1583.883879] ? device_is_dependent+0x2a0/0x2a0 [ 1583.888458] rfkill_register+0x18e/0xab0 [ 1583.892508] hci_register_dev+0x359/0x8f0 [ 1583.896652] hci_uart_tty_ioctl+0x6d1/0xa60 [ 1583.900958] tty_ioctl+0x5af/0x1430 [ 1583.904574] ? hci_uart_tty_receive+0x4c0/0x4c0 [ 1583.909229] ? tty_fasync+0x2c0/0x2c0 [ 1583.913018] ? proc_fail_nth_write+0x7b/0x180 [ 1583.917500] ? trace_hardirqs_on+0x10/0x10 [ 1583.921719] ? fsnotify+0x974/0x11b0 [ 1583.925427] ? proc_tgid_io_accounting+0x7a0/0x7a0 [ 1583.930344] ? __handle_mm_fault+0x80f/0x4620 [ 1583.934822] ? SyS_write+0x1b7/0x210 [ 1583.938516] ? tty_fasync+0x2c0/0x2c0 [ 1583.942293] do_vfs_ioctl+0x75a/0xff0 [ 1583.946085] ? lock_acquire+0x170/0x3f0 [ 1583.950048] ? ioctl_preallocate+0x1a0/0x1a0 [ 1583.954435] ? __fget+0x2df/0x460 [ 1583.957866] ? do_vfs_ioctl+0xff0/0xff0 [ 1583.961820] ? security_file_ioctl+0x83/0xb0 [ 1583.966228] SyS_ioctl+0x7f/0xb0 [ 1583.969581] ? do_vfs_ioctl+0xff0/0xff0 [ 1583.973532] do_syscall_64+0x1d5/0x640 [ 1583.977400] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1583.982577] RIP: 0033:0x7fbb944a7fe9 [ 1583.986275] RSP: 002b:00007fbb92e1d168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1583.993977] RAX: ffffffffffffffda RBX: 00007fbb945baf60 RCX: 00007fbb944a7fe9 [ 1584.001231] RDX: 0000000000000000 RSI: 00000000400455c8 RDI: 0000000000000003 [ 1584.008484] RBP: 00007fbb92e1d1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1584.015735] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1584.022988] R13: 00007ffc96d7392f R14: 00007fbb92e1d300 R15: 0000000000022000 [ 1584.032784] kobject_add_internal failed for rfkill480 (error: -12 parent: hci11) [ 1584.040811] Bluetooth: hci11: Frame reassembly failed (-84) [ 1585.162907] Bluetooth: hci7 command 0x1003 tx timeout [ 1585.168917] Bluetooth: hci7 sending frame failed (-49) [ 1585.242809] Bluetooth: hci8 command 0x1003 tx timeout [ 1585.242836] Bluetooth: hci9 command 0x1003 tx timeout [ 1585.248341] Bluetooth: hci8 sending frame failed (-49) [ 1585.259777] Bluetooth: Unknown HCI packet type 5e [ 1585.264850] Bluetooth: Unknown HCI packet type 41 [ 1585.269682] Bluetooth: Unknown HCI packet type 5e [ 1585.274765] Bluetooth: Unknown HCI packet type 41 [ 1585.279606] Bluetooth: Unknown HCI packet type 5e [ 1585.284509] Bluetooth: Unknown HCI packet type 50 [ 1585.289350] Bluetooth: Unknown HCI packet type 5e [ 1585.294283] Bluetooth: Unknown HCI packet type 40 [ 1585.482790] Bluetooth: hci10 command 0x1003 tx timeout [ 1585.488227] Bluetooth: hci10 sending frame failed (-49) [ 1585.802781] Bluetooth: hci6 command 0x1003 tx timeout [ 1585.808142] Bluetooth: hci6 sending frame failed (-49) [ 1586.042784] Bluetooth: hci11 command 0x1003 tx timeout [ 1586.048338] Bluetooth: hci11 sending frame failed (-49) [ 1587.242677] Bluetooth: hci7 command 0x1001 tx timeout [ 1587.248007] Bluetooth: hci7 sending frame failed (-49) [ 1587.322730] Bluetooth: hci9 command 0x1001 tx timeout [ 1587.327964] Bluetooth: hci8 command 0x1001 tx timeout [ 1587.328113] Bluetooth: Unknown HCI packet type 5e [ 1587.337713] Bluetooth: hci8 sending frame failed (-49) [ 1587.338301] Bluetooth: Unknown HCI packet type 41 [ 1587.348199] Bluetooth: Unknown HCI packet type 09 [ 1587.353085] Bluetooth: Unknown HCI packet type 5e [ 1587.357917] Bluetooth: Unknown HCI packet type 50 [ 1587.362807] Bluetooth: Unknown HCI packet type 5e [ 1587.367643] Bluetooth: Unknown HCI packet type 40 [ 1587.562668] Bluetooth: hci10 command 0x1001 tx timeout [ 1587.568089] Bluetooth: hci10 sending frame failed (-49) [ 1587.882678] Bluetooth: hci6 command 0x1001 tx timeout [ 1587.888001] Bluetooth: hci6 sending frame failed (-49) [ 1588.122656] Bluetooth: hci11 command 0x1001 tx timeout [ 1588.128695] Bluetooth: hci11 sending frame failed (-49) [ 1589.322558] Bluetooth: hci7 command 0x1009 tx timeout [ 1589.402639] Bluetooth: hci9 command 0x1009 tx timeout [ 1589.407589] Bluetooth: hci8 command 0x1009 tx timeout [ 1589.642564] Bluetooth: hci10 command 0x1009 tx timeout [ 1589.962607] Bluetooth: hci6 command 0x1009 tx timeout [ 1590.202567] Bluetooth: hci11 command 0x1009 tx timeout 10:02:51 executing program 5: prlimit64(0x0, 0xe, &(0x7f0000000280), 0x0) (async, rerun: 32) sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0xffffffffffff0162) (rerun: 32) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) (async) ioctl$BINDER_FREEZE(0xffffffffffffffff, 0x400c620e, &(0x7f0000000000)={0xffffffffffffffff, 0x0, 0x80000001}) ioctl$KDADDIO(r0, 0x400455c8, 0x4) 10:02:51 executing program 4: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) (async) sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x0) (async) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000040)=0xf) (async) sched_setattr(0xffffffffffffffff, &(0x7f00000000c0)={0x38, 0x6, 0x8, 0x4, 0x5, 0x9, 0x0, 0x7fff, 0xffff, 0x3efc}, 0x0) ioctl$KDADDIO(r2, 0x400455c8, 0x4) (async) ioctl$TIOCSETD(r2, 0x5412, &(0x7f0000000000)=0x33) ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080)=0x4d) (async) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000040)=0xf) (async) ioctl$KDADDIO(r1, 0x400455c8, 0x4) (async) ioctl$TIOCSETD(r1, 0x5412, &(0x7f0000000000)=0x33) ioctl$PIO_FONTX(r1, 0x4b6c, &(0x7f0000000000)={0xa, 0x4, &(0x7f00000002c0)="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"}) (async) syz_open_dev$tty1(0xc, 0x4, 0x3) [ 1593.420249] Bluetooth: hci8: Frame reassembly failed (-84) [ 1593.422084] Bluetooth: received HCILL_WAKE_UP_ACK in state 2 [ 1593.435315] Bluetooth: Unknown HCI packet type 5e [ 1593.440272] Bluetooth: Unknown HCI packet type 43 [ 1593.458207] Bluetooth: Unknown HCI packet type 5e [ 1593.458410] Bluetooth: Unknown HCI packet type 5e [ 1593.463914] Bluetooth: Unknown HCI packet type 43 [ 1593.478393] Bluetooth: Unknown HCI packet type 50 [ 1593.479386] Bluetooth: Unknown HCI packet type 5e [ 1593.484338] Bluetooth: Unknown HCI packet type 5e [ 1593.488476] Bluetooth: Unknown HCI packet type 50 [ 1593.497320] Bluetooth: Unknown HCI packet type 40 [ 1593.499046] Bluetooth: Unknown HCI packet type 5e [ 1593.503753] Bluetooth: Unknown HCI packet type 4d [ 1593.508540] Bluetooth: Unknown HCI packet type 40 10:02:51 executing program 3: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x0) (fail_nth: 66) 10:02:51 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) syz_open_dev$vbi(&(0x7f0000000040), 0x3, 0x2) r1 = dup2(r0, r0) write(r1, &(0x7f0000000280)='#\x00\x00\x00', 0x4) r2 = socket$netlink(0x10, 0x3, 0x8) recvmmsg(r2, &(0x7f0000003080)=[{{&(0x7f0000000080)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @link_local}, 0x80, &(0x7f0000000640)=[{&(0x7f0000000100)=""/58, 0x3a}, {&(0x7f0000000140)=""/162, 0xa2}, {&(0x7f0000000200)=""/50, 0x32}, {&(0x7f00000002c0)=""/81, 0x51}, {&(0x7f0000000340)=""/100, 0x64}, {&(0x7f00000003c0)=""/196, 0xc4}, {&(0x7f00000004c0)=""/148, 0x94}, {&(0x7f0000000580)=""/179, 0xb3}], 0x8, &(0x7f00000006c0)=""/191, 0xbf}, 0x2}, {{&(0x7f0000000780)=@ieee802154={0x24, @long}, 0x80, &(0x7f0000000840)=[{&(0x7f0000000240)=""/7, 0x7}, {&(0x7f0000000800)=""/25, 0x19}], 0x2}, 0x1f}, {{&(0x7f0000000880)=@isdn, 0x80, &(0x7f0000000e80)=[{&(0x7f0000000900)=""/73, 0x49}, {&(0x7f0000000980)=""/179, 0xb3}, {&(0x7f0000000a40)=""/234, 0xea}, {&(0x7f0000000b40)=""/207, 0xcf}, {&(0x7f0000000c40)=""/186, 0xba}, {&(0x7f0000000d00)=""/158, 0x9e}, {&(0x7f0000000dc0)=""/157, 0x9d}], 0x7}, 0x8}, {{&(0x7f0000000f00)=@tipc=@name, 0x80, &(0x7f0000001080)}, 0x1a6}, {{&(0x7f00000010c0)=@rc={0x1f, @none}, 0x80, &(0x7f0000001500)=[{&(0x7f0000001140)=""/206, 0xce}, {&(0x7f0000001240)=""/207, 0xcf}, {&(0x7f0000001340)=""/27, 0x1b}, {&(0x7f0000001380)=""/128, 0x80}, {&(0x7f0000001400)=""/64, 0x40}, {&(0x7f0000001440)=""/170, 0xaa}], 0x6, &(0x7f0000001580)=""/236, 0xec}, 0x4}, {{&(0x7f0000001680)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @multicast2}}}, 0x80, &(0x7f0000001740)=[{&(0x7f0000000f80)=""/59, 0x3b}], 0x1, &(0x7f0000001780)=""/31, 0x1f}, 0x3}, {{&(0x7f00000017c0)=@tipc, 0x80, &(0x7f0000002ec0)=[{&(0x7f0000001840)=""/4096, 0x1000}, {&(0x7f0000002840)=""/144, 0x90}, {&(0x7f0000002900)=""/172, 0xac}, {&(0x7f00000029c0)=""/23, 0x17}, {&(0x7f0000002a00)=""/132, 0x84}, {&(0x7f0000002ac0)=""/206, 0xce}, {&(0x7f0000002bc0)=""/218, 0xda}, {&(0x7f0000002cc0)=""/29, 0x1d}, {&(0x7f0000002d00)=""/170, 0xaa}, {&(0x7f0000002dc0)=""/237, 0xed}], 0xa, &(0x7f0000002f80)=""/202, 0xca}, 0x7}], 0x7, 0x1000, &(0x7f0000003240)={0x0, 0x3938700}) 10:02:51 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x0) ioctl$KDADDIO(0xffffffffffffffff, 0x400455c8, 0x223) [ 1593.997701] FAULT_INJECTION: forcing a failure. [ 1593.997701] name failslab, interval 1, probability 0, space 0, times 0 [ 1594.009012] CPU: 1 PID: 21889 Comm: syz-executor.3 Not tainted 4.14.262-syzkaller #0 [ 1594.016900] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1594.026257] Call Trace: [ 1594.028848] dump_stack+0x1b2/0x281 [ 1594.032476] should_fail.cold+0x10a/0x149 [ 1594.036618] should_failslab+0xd6/0x130 [ 1594.040573] kmem_cache_alloc+0x28e/0x3c0 [ 1594.044713] __kernfs_new_node+0x6f/0x470 [ 1594.048952] kernfs_new_node+0x7b/0xe0 [ 1594.052828] __kernfs_create_file+0x3d/0x320 [ 1594.057230] sysfs_add_file_mode_ns+0x1e1/0x450 [ 1594.061978] internal_create_group+0x22b/0x710 [ 1594.066547] sysfs_create_groups+0x92/0x130 [ 1594.070852] device_add+0x7e5/0x15c0 [ 1594.074550] ? device_is_dependent+0x2a0/0x2a0 [ 1594.079143] rfkill_register+0x18e/0xab0 [ 1594.083211] hci_register_dev+0x359/0x8f0 [ 1594.087357] hci_uart_tty_ioctl+0x6d1/0xa60 [ 1594.091666] tty_ioctl+0x5af/0x1430 [ 1594.095277] ? hci_uart_tty_receive+0x4c0/0x4c0 [ 1594.099925] ? tty_fasync+0x2c0/0x2c0 [ 1594.103729] ? proc_fail_nth_write+0x7b/0x180 [ 1594.108214] ? trace_hardirqs_on+0x10/0x10 [ 1594.112440] ? fsnotify+0x974/0x11b0 [ 1594.116139] ? proc_tgid_io_accounting+0x7a0/0x7a0 [ 1594.121050] ? __handle_mm_fault+0x80f/0x4620 [ 1594.125526] ? SyS_write+0x1b7/0x210 [ 1594.129226] ? tty_fasync+0x2c0/0x2c0 [ 1594.133020] do_vfs_ioctl+0x75a/0xff0 [ 1594.136814] ? lock_acquire+0x170/0x3f0 [ 1594.140768] ? ioctl_preallocate+0x1a0/0x1a0 [ 1594.145164] ? __fget+0x2df/0x460 [ 1594.148599] ? do_vfs_ioctl+0xff0/0xff0 [ 1594.152570] ? security_file_ioctl+0x83/0xb0 [ 1594.156973] SyS_ioctl+0x7f/0xb0 [ 1594.160335] ? do_vfs_ioctl+0xff0/0xff0 [ 1594.164309] do_syscall_64+0x1d5/0x640 [ 1594.168201] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1594.173381] RIP: 0033:0x7fa331314fe9 [ 1594.177085] RSP: 002b:00007fa32fc8a168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1594.184775] RAX: ffffffffffffffda RBX: 00007fa331427f60 RCX: 00007fa331314fe9 [ 1594.192033] RDX: 0000000000000000 RSI: 00000000400455c8 RDI: 0000000000000003 [ 1594.199315] RBP: 00007fa32fc8a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1594.206571] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1594.213831] R13: 00007ffe09471b3f R14: 00007fa32fc8a300 R15: 0000000000022000 10:02:52 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x0) ioctl$KDADDIO(0xffffffffffffffff, 0x400455c8, 0x223) 10:02:52 executing program 0: prlimit64(0x0, 0x0, 0x0, 0x0) sched_setattr(0x0, 0x0, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x0) (fail_nth: 56) [ 1594.621729] FAULT_INJECTION: forcing a failure. [ 1594.621729] name failslab, interval 1, probability 0, space 0, times 0 [ 1594.633240] CPU: 0 PID: 21909 Comm: syz-executor.0 Not tainted 4.14.262-syzkaller #0 [ 1594.641124] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1594.650465] Call Trace: [ 1594.653048] dump_stack+0x1b2/0x281 [ 1594.656666] should_fail.cold+0x10a/0x149 [ 1594.660801] should_failslab+0xd6/0x130 [ 1594.664762] kmem_cache_alloc+0x28e/0x3c0 [ 1594.668904] __kernfs_new_node+0x6f/0x470 [ 1594.673052] kernfs_new_node+0x7b/0xe0 [ 1594.676928] __kernfs_create_file+0x3d/0x320 [ 1594.681335] sysfs_add_file_mode_ns+0x1e1/0x450 [ 1594.685997] device_create_file+0xc8/0x100 [ 1594.690312] ? acpi_platform_notify_remove+0x1f0/0x1f0 [ 1594.695582] device_add+0x37a/0x15c0 [ 1594.699289] ? device_is_dependent+0x2a0/0x2a0 [ 1594.703865] rfkill_register+0x18e/0xab0 [ 1594.707926] hci_register_dev+0x359/0x8f0 [ 1594.712076] hci_uart_tty_ioctl+0x6d1/0xa60 [ 1594.716392] tty_ioctl+0x5af/0x1430 [ 1594.720006] ? hci_uart_tty_receive+0x4c0/0x4c0 [ 1594.724656] ? tty_fasync+0x2c0/0x2c0 [ 1594.728447] ? proc_fail_nth_write+0x7b/0x180 [ 1594.732940] ? trace_hardirqs_on+0x10/0x10 [ 1594.737177] ? fsnotify+0x974/0x11b0 [ 1594.740878] ? proc_tgid_io_accounting+0x7a0/0x7a0 [ 1594.745788] ? __handle_mm_fault+0x80f/0x4620 [ 1594.750268] ? SyS_write+0x1b7/0x210 [ 1594.753972] ? tty_fasync+0x2c0/0x2c0 [ 1594.757764] do_vfs_ioctl+0x75a/0xff0 [ 1594.761562] ? lock_acquire+0x170/0x3f0 [ 1594.765530] ? ioctl_preallocate+0x1a0/0x1a0 [ 1594.770051] ? __fget+0x2df/0x460 [ 1594.773494] ? do_vfs_ioctl+0xff0/0xff0 [ 1594.777458] ? security_file_ioctl+0x83/0xb0 [ 1594.781849] SyS_ioctl+0x7f/0xb0 [ 1594.785198] ? do_vfs_ioctl+0xff0/0xff0 [ 1594.789158] do_syscall_64+0x1d5/0x640 [ 1594.793047] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1594.798232] RIP: 0033:0x7fbb944a7fe9 [ 1594.801923] RSP: 002b:00007fbb92e1d168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1594.809613] RAX: ffffffffffffffda RBX: 00007fbb945baf60 RCX: 00007fbb944a7fe9 10:02:52 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) syz_open_dev$vbi(&(0x7f0000000040), 0x3, 0x2) r1 = dup2(r0, r0) write(r1, &(0x7f0000000280)='#\x00\x00\x00', 0x4) r2 = socket$netlink(0x10, 0x3, 0x8) recvmmsg(r2, &(0x7f0000003080)=[{{&(0x7f0000000080)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @link_local}, 0x80, &(0x7f0000000640)=[{&(0x7f0000000100)=""/58, 0x3a}, {&(0x7f0000000140)=""/162, 0xa2}, {&(0x7f0000000200)=""/50, 0x32}, {&(0x7f00000002c0)=""/81, 0x51}, {&(0x7f0000000340)=""/100, 0x64}, {&(0x7f00000003c0)=""/196, 0xc4}, {&(0x7f00000004c0)=""/148, 0x94}, {&(0x7f0000000580)=""/179, 0xb3}], 0x8, &(0x7f00000006c0)=""/191, 0xbf}, 0x2}, {{&(0x7f0000000780)=@ieee802154={0x24, @long}, 0x80, &(0x7f0000000840)=[{&(0x7f0000000240)=""/7, 0x7}, {&(0x7f0000000800)=""/25, 0x19}], 0x2}, 0x1f}, {{&(0x7f0000000880)=@isdn, 0x80, &(0x7f0000000e80)=[{&(0x7f0000000900)=""/73, 0x49}, {&(0x7f0000000980)=""/179, 0xb3}, {&(0x7f0000000a40)=""/234, 0xea}, {&(0x7f0000000b40)=""/207, 0xcf}, {&(0x7f0000000c40)=""/186, 0xba}, {&(0x7f0000000d00)=""/158, 0x9e}, {&(0x7f0000000dc0)=""/157, 0x9d}], 0x7}, 0x8}, {{&(0x7f0000000f00)=@tipc=@name, 0x80, &(0x7f0000001080)}, 0x1a6}, {{&(0x7f00000010c0)=@rc={0x1f, @none}, 0x80, &(0x7f0000001500)=[{&(0x7f0000001140)=""/206, 0xce}, {&(0x7f0000001240)=""/207, 0xcf}, {&(0x7f0000001340)=""/27, 0x1b}, {&(0x7f0000001380)=""/128, 0x80}, {&(0x7f0000001400)=""/64, 0x40}, {&(0x7f0000001440)=""/170, 0xaa}], 0x6, &(0x7f0000001580)=""/236, 0xec}, 0x4}, {{&(0x7f0000001680)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @multicast2}}}, 0x80, &(0x7f0000001740)=[{&(0x7f0000000f80)=""/59, 0x3b}], 0x1, &(0x7f0000001780)=""/31, 0x1f}, 0x3}, {{&(0x7f00000017c0)=@tipc, 0x80, &(0x7f0000002ec0)=[{&(0x7f0000001840)=""/4096, 0x1000}, {&(0x7f0000002840)=""/144, 0x90}, {&(0x7f0000002900)=""/172, 0xac}, {&(0x7f00000029c0)=""/23, 0x17}, {&(0x7f0000002a00)=""/132, 0x84}, {&(0x7f0000002ac0)=""/206, 0xce}, {&(0x7f0000002bc0)=""/218, 0xda}, {&(0x7f0000002cc0)=""/29, 0x1d}, {&(0x7f0000002d00)=""/170, 0xaa}, {&(0x7f0000002dc0)=""/237, 0xed}], 0xa, &(0x7f0000002f80)=""/202, 0xca}, 0x7}], 0x7, 0x1000, &(0x7f0000003240)={0x0, 0x3938700}) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) (async) syz_open_dev$vbi(&(0x7f0000000040), 0x3, 0x2) (async) dup2(r0, r0) (async) write(r1, &(0x7f0000000280)='#\x00\x00\x00', 0x4) (async) socket$netlink(0x10, 0x3, 0x8) (async) recvmmsg(r2, &(0x7f0000003080)=[{{&(0x7f0000000080)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @link_local}, 0x80, &(0x7f0000000640)=[{&(0x7f0000000100)=""/58, 0x3a}, {&(0x7f0000000140)=""/162, 0xa2}, {&(0x7f0000000200)=""/50, 0x32}, {&(0x7f00000002c0)=""/81, 0x51}, {&(0x7f0000000340)=""/100, 0x64}, {&(0x7f00000003c0)=""/196, 0xc4}, {&(0x7f00000004c0)=""/148, 0x94}, {&(0x7f0000000580)=""/179, 0xb3}], 0x8, &(0x7f00000006c0)=""/191, 0xbf}, 0x2}, {{&(0x7f0000000780)=@ieee802154={0x24, @long}, 0x80, &(0x7f0000000840)=[{&(0x7f0000000240)=""/7, 0x7}, {&(0x7f0000000800)=""/25, 0x19}], 0x2}, 0x1f}, {{&(0x7f0000000880)=@isdn, 0x80, &(0x7f0000000e80)=[{&(0x7f0000000900)=""/73, 0x49}, {&(0x7f0000000980)=""/179, 0xb3}, {&(0x7f0000000a40)=""/234, 0xea}, {&(0x7f0000000b40)=""/207, 0xcf}, {&(0x7f0000000c40)=""/186, 0xba}, {&(0x7f0000000d00)=""/158, 0x9e}, {&(0x7f0000000dc0)=""/157, 0x9d}], 0x7}, 0x8}, {{&(0x7f0000000f00)=@tipc=@name, 0x80, &(0x7f0000001080)}, 0x1a6}, {{&(0x7f00000010c0)=@rc={0x1f, @none}, 0x80, &(0x7f0000001500)=[{&(0x7f0000001140)=""/206, 0xce}, {&(0x7f0000001240)=""/207, 0xcf}, {&(0x7f0000001340)=""/27, 0x1b}, {&(0x7f0000001380)=""/128, 0x80}, {&(0x7f0000001400)=""/64, 0x40}, {&(0x7f0000001440)=""/170, 0xaa}], 0x6, &(0x7f0000001580)=""/236, 0xec}, 0x4}, {{&(0x7f0000001680)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @multicast2}}}, 0x80, &(0x7f0000001740)=[{&(0x7f0000000f80)=""/59, 0x3b}], 0x1, &(0x7f0000001780)=""/31, 0x1f}, 0x3}, {{&(0x7f00000017c0)=@tipc, 0x80, &(0x7f0000002ec0)=[{&(0x7f0000001840)=""/4096, 0x1000}, {&(0x7f0000002840)=""/144, 0x90}, {&(0x7f0000002900)=""/172, 0xac}, {&(0x7f00000029c0)=""/23, 0x17}, {&(0x7f0000002a00)=""/132, 0x84}, {&(0x7f0000002ac0)=""/206, 0xce}, {&(0x7f0000002bc0)=""/218, 0xda}, {&(0x7f0000002cc0)=""/29, 0x1d}, {&(0x7f0000002d00)=""/170, 0xaa}, {&(0x7f0000002dc0)=""/237, 0xed}], 0xa, &(0x7f0000002f80)=""/202, 0xca}, 0x7}], 0x7, 0x1000, &(0x7f0000003240)={0x0, 0x3938700}) (async) [ 1594.816860] RDX: 0000000000000000 RSI: 00000000400455c8 RDI: 0000000000000003 [ 1594.824115] RBP: 00007fbb92e1d1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1594.831383] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1594.838655] R13: 00007ffc96d7392f R14: 00007fbb92e1d300 R15: 0000000000022000 [ 1594.848379] Bluetooth: hci11: Frame reassembly failed (-84) [ 1595.412210] Bluetooth: hci7 command 0x1003 tx timeout [ 1595.417602] Bluetooth: hci7 sending frame failed (-49) [ 1595.482245] Bluetooth: hci12 command 0x1003 tx timeout [ 1595.487776] Bluetooth: hci9 command 0x1003 tx timeout [ 1595.487954] Bluetooth: Unknown HCI packet type 5e [ 1595.493142] Bluetooth: hci8 command 0x1003 tx timeout [ 1595.502494] Bluetooth: Unknown HCI packet type 5e [ 1595.503372] Bluetooth: hci8 sending frame failed (-49) [ 1595.507978] Bluetooth: Unknown HCI packet type 41 [ 1595.507983] Bluetooth: Unknown HCI packet type 5e [ 1595.507987] Bluetooth: Unknown HCI packet type 41 [ 1595.507991] Bluetooth: Unknown HCI packet type 5e [ 1595.507995] Bluetooth: Unknown HCI packet type 50 [ 1595.508001] Bluetooth: Unknown HCI packet type 5e [ 1595.519926] Bluetooth: Unknown HCI packet type 41 [ 1595.523037] Bluetooth: Unknown HCI packet type 40 [ 1595.552516] Bluetooth: Unknown HCI packet type 5e [ 1595.557344] Bluetooth: Unknown HCI packet type 41 [ 1595.562227] Bluetooth: Unknown HCI packet type 5e [ 1595.567072] Bluetooth: Unknown HCI packet type 50 [ 1595.571901] Bluetooth: Unknown HCI packet type 5e [ 1595.576913] Bluetooth: Unknown HCI packet type 40 10:02:53 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) (async) syz_open_dev$vbi(&(0x7f0000000040), 0x3, 0x2) (async, rerun: 64) r1 = dup2(r0, r0) (rerun: 64) write(r1, &(0x7f0000000280)='#\x00\x00\x00', 0x4) r2 = socket$netlink(0x10, 0x3, 0x8) recvmmsg(r2, &(0x7f0000003080)=[{{&(0x7f0000000080)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @link_local}, 0x80, &(0x7f0000000640)=[{&(0x7f0000000100)=""/58, 0x3a}, {&(0x7f0000000140)=""/162, 0xa2}, {&(0x7f0000000200)=""/50, 0x32}, {&(0x7f00000002c0)=""/81, 0x51}, {&(0x7f0000000340)=""/100, 0x64}, {&(0x7f00000003c0)=""/196, 0xc4}, {&(0x7f00000004c0)=""/148, 0x94}, {&(0x7f0000000580)=""/179, 0xb3}], 0x8, &(0x7f00000006c0)=""/191, 0xbf}, 0x2}, {{&(0x7f0000000780)=@ieee802154={0x24, @long}, 0x80, &(0x7f0000000840)=[{&(0x7f0000000240)=""/7, 0x7}, {&(0x7f0000000800)=""/25, 0x19}], 0x2}, 0x1f}, {{&(0x7f0000000880)=@isdn, 0x80, &(0x7f0000000e80)=[{&(0x7f0000000900)=""/73, 0x49}, {&(0x7f0000000980)=""/179, 0xb3}, {&(0x7f0000000a40)=""/234, 0xea}, {&(0x7f0000000b40)=""/207, 0xcf}, {&(0x7f0000000c40)=""/186, 0xba}, {&(0x7f0000000d00)=""/158, 0x9e}, {&(0x7f0000000dc0)=""/157, 0x9d}], 0x7}, 0x8}, {{&(0x7f0000000f00)=@tipc=@name, 0x80, &(0x7f0000001080)}, 0x1a6}, {{&(0x7f00000010c0)=@rc={0x1f, @none}, 0x80, &(0x7f0000001500)=[{&(0x7f0000001140)=""/206, 0xce}, {&(0x7f0000001240)=""/207, 0xcf}, {&(0x7f0000001340)=""/27, 0x1b}, {&(0x7f0000001380)=""/128, 0x80}, {&(0x7f0000001400)=""/64, 0x40}, {&(0x7f0000001440)=""/170, 0xaa}], 0x6, &(0x7f0000001580)=""/236, 0xec}, 0x4}, {{&(0x7f0000001680)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @multicast2}}}, 0x80, &(0x7f0000001740)=[{&(0x7f0000000f80)=""/59, 0x3b}], 0x1, &(0x7f0000001780)=""/31, 0x1f}, 0x3}, {{&(0x7f00000017c0)=@tipc, 0x80, &(0x7f0000002ec0)=[{&(0x7f0000001840)=""/4096, 0x1000}, {&(0x7f0000002840)=""/144, 0x90}, {&(0x7f0000002900)=""/172, 0xac}, {&(0x7f00000029c0)=""/23, 0x17}, {&(0x7f0000002a00)=""/132, 0x84}, {&(0x7f0000002ac0)=""/206, 0xce}, {&(0x7f0000002bc0)=""/218, 0xda}, {&(0x7f0000002cc0)=""/29, 0x1d}, {&(0x7f0000002d00)=""/170, 0xaa}, {&(0x7f0000002dc0)=""/237, 0xed}], 0xa, &(0x7f0000002f80)=""/202, 0xca}, 0x7}], 0x7, 0x1000, &(0x7f0000003240)={0x0, 0x3938700}) [ 1596.282301] Bluetooth: hci6 command 0x1003 tx timeout [ 1596.287842] Bluetooth: hci6 sending frame failed (-49) [ 1596.362246] Bluetooth: hci10 command 0x1003 tx timeout [ 1596.367728] Bluetooth: hci10 sending frame failed (-49) 10:02:54 executing program 1: syz_mount_image$btrfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x5, 0x8, &(0x7f0000000580)=[{&(0x7f0000000100)="48b2ce52c48694040fa4cc61283a2f488ef2d3381444bb6d62915e40ce36055df6c7c3895f8d07c6b9be68cb1d7e8bbaa3fc08c2d63496889f83c2d5dd7f4f536ba35eb99c15", 0x46, 0x80}, {&(0x7f0000000180)="3191ac4ab0ebb0c4a6daeebc1ac5fae8060922230b78120477f86a64137dc04d46334e38043dd546b643150644fdc6dbe15c245deeeb5337d01ed406f4f0f9d347d9efccbb0cbebc349e8d086caed6b41597ca608fe5a76bcf464ae37fc097fe6eb4cf09c47c8af5eb9b5040c52df92da4ff43911faa956e84b4d81b0a2b26b3dc07c41d56a1af04", 0x88, 0x1}, {&(0x7f00000002c0)="5f280915f5c38df0ce8fd8bbb4919ec9e264031b83e9374d18b13bb082f4f923cda73202e82f89120b75db3d26a1be2eb4f906260793ed3024929b88058bba2f23316141f1adfad2e37850219c22bc56904e54337bae7549879996cfe32381b31c5d46402ed5b16e26eb08f56ed10567223a0ea21d8db8f5338c221671415fb4dadcf35f6cff7f1223dffbc16e141105c822b0fba24cf7f0c3d904ab8501928aa7666a", 0xa3, 0x186c9f1d}, {&(0x7f0000000240)="c5cb2a89528463e7707b52607c16b21e5ef57d16cba83d48950012da19563876219c141bef6259304fefe1fbb678cb9c80e10c", 0x33, 0x6}, {&(0x7f0000000380)="a4f701d0a0027d778257d10e79a24c7236612bcf6ed5106aacfe0a29117983af8e08debcc0677d34c9335fb6ca275ee6950e2f21d9203d02031acac254911743f7af054f31321a66b9c4cbeddc1837de751b0c803c0dc3f16c159d67ec15541ec0b6ddc8a2150fa24df649c9178ca6b5e0338d68404f47b2", 0x78}, {&(0x7f0000000400)="eca4517976cbd35df79313c911aa2e1c6227cfd74500d6c908ae6aecddf4e2134c", 0x21, 0x1}, {&(0x7f0000000440)="8ffd68cfc69881433b7f857159013c4a1763bfe9738401daffb67c986d77a27f1d444b62722ab5a692e4564fb24e8cb3151f962cb13e00fcb45c4a1ad4af4eebe6260ec2165828f959a7ecc8d570fd710aa21d3d126ed1425367da661b8b495dce283f6fde84d2a0112fe80c08159dc95859df7b2efc64f584435535", 0x7c, 0x7}, {&(0x7f00000004c0)="edd6e51d3740e32d95e6286e3d324a61fdbf46afcfcab6db5812a099b83c71b7ead387d01b0d2f93ff45155f2b470ab9075d0d87ada56229f4278b673477ce73dabbbe8dc5588ea980e9d577b96ecb570b3f8ca47c7544b8ef42f9df1929169e7b2f82cc88399edf01fc6ac4f72b9fc515b240334127d7030cfee7be057d01b491f470e21338", 0x86}], 0x1103000, &(0x7f0000000640)={[{@ref_verify}, {@notreelog}, {@compress_force_algo={'compress-force', 0x3d, 'lzo'}}, {@notreelog}, {@compress_algo={'compress', 0x3d, 'no'}}, {@nossd}], [{@subj_user}]}) r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) recvmmsg(r0, &(0x7f00000061c0)=[{{&(0x7f0000002800)=@ethernet={0x0, @link_local}, 0x80, &(0x7f0000002940)=[{&(0x7f0000002880)=""/192, 0xc0}], 0x1, &(0x7f0000002980)=""/6, 0x6}, 0x80}, {{0x0, 0x0, &(0x7f0000002a00)=[{&(0x7f00000029c0)=""/46, 0x2e}], 0x1, &(0x7f0000002a40)=""/133, 0x85}, 0x93}, {{&(0x7f0000002b00)=@pptp={0x18, 0x2, {0x0, @local}}, 0x80, &(0x7f0000003c00), 0x0, &(0x7f0000003c40)=""/95, 0x5f}, 0x7fffffff}, {{&(0x7f0000003cc0)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @remote}}}, 0x80, &(0x7f0000003dc0)=[{&(0x7f0000003d40)=""/127, 0x7f}], 0x1, &(0x7f0000006440)=""/4107, 0x100b}, 0x5a5}, {{&(0x7f0000004e00)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @mcast2}}}, 0x80, &(0x7f0000005140)=[{&(0x7f0000004e80)=""/10, 0xa}, {&(0x7f0000006340)=""/215, 0xd7}, {&(0x7f0000004fc0)=""/84, 0x54}, {&(0x7f0000005040)=""/22, 0x16}, {&(0x7f0000005080)=""/167, 0xa7}], 0x5, &(0x7f00000051c0)=""/4096, 0x1000}, 0xffffff28}], 0x5, 0x0, &(0x7f0000006300)={0x77359400}) r1 = dup2(r0, r0) r2 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000002b80), 0x4001, 0x0) bind$bt_hci(r2, &(0x7f0000002bc0)={0x1f, 0x4, 0x3}, 0x6) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r0, 0x84009422, &(0x7f00000006c0)={0x0, 0x0, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @struct}}) write(r1, &(0x7f0000000280)='#\x00\x00\x00', 0x4) r3 = syz_mount_image$btrfs(&(0x7f0000001b40), &(0x7f0000001b80)='./file0\x00', 0x4, 0x7, &(0x7f0000002240)=[{&(0x7f0000001bc0)="e2ab63df156ddf48e4bf6be75022544cfa7d2f2a1f7a1d4a1bfd83cd5d4a0b514d39c357f0959fb1c66c5424ae217bc45c16387f9d5248c00430639f4892d6ad9edbc7800059fae4078ef962fc9bd2e175d89deb34413c54616d66405052ab82a22a0dd667eb8a118374dac86337e11d44e061cfc19a107fe8a42f332f842ab0ef6bb3f2ca7812b743e384490caab071939e1c7e0ac501d3eebc5d6d4b89d516950a28c14d1a49345a4238e75ec3712e3b115087a043e6efb312c31650eef1e9af459b36bf643e4c9c55334c944e5ba23f3c0a2d2d5142ef72706dd925919eff2e93e007b05914baa2abfcaf73349966f916c79c", 0xf4, 0x5}, {&(0x7f0000001cc0)="8e9c3b18509705d103f61314ac2cd2af48efef888a0e5da1df12213c92ff941b353c087a5abc94875318d4c536e4d2f3cbce54ae6f8a4c322933e8068b2c88df6d0befa303ccf5bd513d6378a91138793d12ea2f8c190ac4e5f6dd3d393cc0bdc1ca7f846862af83086c822081f6538faf8e85f6e4a0ea538537b540eddc867b611b7352d42eb4e8a0dca73f12e7ea44925bcc356af7c9c07a781e75e1380b0fb040217ee56d59da0bd01d907c6ea633e504f7a06da149b465ca908ded498432c777ec87ccb640d353287d85cfb50f2ddb471990afc5f7dc6a018c154fa9531a0b99cc5d56d1317b0f408a21843ea6e70bee315f5ed854559a0480c8", 0xfc, 0x100000001}, {&(0x7f0000001dc0)="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", 0xfe, 0x5}, {&(0x7f0000001ec0)="70e439db0ac231173bdf354b0f6e741b2e7d1d501089e59257e7cde7fc3e13e8b3ec7360e735447ea55fde047bc0f086eddac4b5d129ccb03bc838305e74d09d037347d7b963948ef10e350197ca254de5fc65bcdb4b0da641395961bb3b7c1e3b5295406c6aba1563432e90db3891d8325202d2c091c05a4de8907136951ee0e7d2ebed82f0f8907f2e694f5c7bda210dd22b73a835206e418c7fe29c5eca00909d", 0xa2, 0x6}, {&(0x7f0000001f80)="45c19995841bf65dc0f8b29662c4985cd22b0789fa070661fa9e69a67550715e840b876b3ab5cffee85531c9f088437303ddfb695f1d1626de15a3ba4d13437b997e3c62ffc523313b73f19a0804e4a3a0e73af1cc554d5b0c5ea090e8841591f668817269b33b006c007126248ff4f88f276702015042c844ab02ed051fb6c1d970787cacf41b7de93f01c30a3b504f1871bd35d5ac3bffc677fc49f37811d89e6d279709b3c96ba1843cd12073db0295010c53ee13b4bb7a81fa2b8a1db5048a79f1fc3d", 0xc5, 0x7}, {&(0x7f0000002080)="973956c1be512883e45334d428ad74b3bec64c3bea924fb4233a233f7e6e1ce053d29dad6d5f87af6bd7c827720d47e79d85c0db1eaf52b0b58db6a3088124ddf8518b1d436c4b8d74857e3b272200baaf3c86d57872e9a5092087d50488b03c87ab3a014b1964ddb6133290b823d0d1de0af1bddf50e2ad65770d6f500f7bc21331d5461ae5a2e94d94778f3ea69899f575a30c9027c17e927425e469a331dd9d73977b9b227e024dede164dbf0481473ee36775ea12458d0308752af2ceb112becee5e69c8d17974df64b770faa30ffb98fd9b150b24d1b9a824e87c10daf1db2c9f", 0xe3, 0x7fffffff}, {&(0x7f0000002180)="55394fda604794528a16e2cb4d1cc2622fe23998d10ab46faf0deb5861ed3b51cc3d16ba60cbcc7ed5671e302cfea543bbc103722985e793fc77b3cb8012980bc043f2b6f39ab7662b9f7b95894735fd150d6e7303c3e893671c5808b36cf10ad5df5a16654a630ba181879bdc69ad16566d7a24d27b41fde02360025bdb9f3f68bdd7749ebf77a3cb807982b43a32ee539d8a4e4479142b5fff6ccfc54ac4410e00ed", 0xa3, 0x8}], 0xa1000, &(0x7f0000002300)=ANY=[@ANYBLOB="6e6f6175746f6c2c636f6d70726573733d6e6f2c6e6f61636c2c6d61636b3d5e5841595f52c541442c61756469742c7500"/58, @ANYRESDEC=0xee00, @ANYBLOB=',permit_directio,smackfsdef=btrfs\x00,appraise,\x00']) ioctl$INCFS_IOC_CREATE_FILE(r3, 0xc058671e, &(0x7f0000002780)={{'\x00', 0x1}, {0x7}, 0x140, 0x0, 0x0, &(0x7f0000002380)='./file0\x00', &(0x7f00000023c0)='./file0\x00', &(0x7f0000002400)="3bfd46159d0ff57ff4dbb16ad95f413060eb3b159d4559a3c23ac10184d7894a1a3e49cd4e6c042a738e3b85d72a6b31887e63d40ee156ceb67c187d6a071ccdeed8db6501abe043823900bb1dfef96b9ae4da628ac6627762c82e87140d9269c1a188e8785beab9908f699e8de09e97f2954905f1507b341bdf3eae9fa124caf3a90a7f309e813f03e22ee298c77ce77373152696ffdfbdd6d9b8c7705c25102a0829ee8c02596061e572ecc93aef4a0e511d85520168498f25cb69130cd86407d769f3bdeca4b2f750f0086b82908572c861376b006f7f0f8f4594838eef300f648360fd6f9375021d02001cf6ba11f95de90205c55d96bcac88e2d73486494f9ad251c9efca423d8a7de2b2bb0c0dc8fd7bd889c2f35e2325b84fdd70dbdd53deee88027eaa35940b4e35efbb4ee7eb3e9619fed5beb4565f9f6772c688d4f95af7d8b47299c7c9598c141668a332d912aa940e26935d545c2adbe7bc687b253e186c802e1b9bc63d28761c6698a94b8ceea5aada8acdf228617453fd8fab824af73740421cb8", 0x188, 0x0, &(0x7f0000002c40)=ANY=[@ANYBLOB="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"], 0x192}) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) r4 = syz_open_dev$vcsn(&(0x7f0000000ac0), 0x5, 0x8000) fcntl$getflags(r4, 0xb) getsockopt$IP_VS_SO_GET_DESTS(r4, 0x0, 0x484, &(0x7f0000000b00)=""/4096, &(0x7f0000001b00)=0x1000) open(&(0x7f0000002c00)='./file0\x00', 0x400, 0x0) 10:02:54 executing program 1: syz_mount_image$btrfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x5, 0x8, &(0x7f0000000580)=[{&(0x7f0000000100)="48b2ce52c48694040fa4cc61283a2f488ef2d3381444bb6d62915e40ce36055df6c7c3895f8d07c6b9be68cb1d7e8bbaa3fc08c2d63496889f83c2d5dd7f4f536ba35eb99c15", 0x46, 0x80}, {&(0x7f0000000180)="3191ac4ab0ebb0c4a6daeebc1ac5fae8060922230b78120477f86a64137dc04d46334e38043dd546b643150644fdc6dbe15c245deeeb5337d01ed406f4f0f9d347d9efccbb0cbebc349e8d086caed6b41597ca608fe5a76bcf464ae37fc097fe6eb4cf09c47c8af5eb9b5040c52df92da4ff43911faa956e84b4d81b0a2b26b3dc07c41d56a1af04", 0x88, 0x1}, {&(0x7f00000002c0)="5f280915f5c38df0ce8fd8bbb4919ec9e264031b83e9374d18b13bb082f4f923cda73202e82f89120b75db3d26a1be2eb4f906260793ed3024929b88058bba2f23316141f1adfad2e37850219c22bc56904e54337bae7549879996cfe32381b31c5d46402ed5b16e26eb08f56ed10567223a0ea21d8db8f5338c221671415fb4dadcf35f6cff7f1223dffbc16e141105c822b0fba24cf7f0c3d904ab8501928aa7666a", 0xa3, 0x186c9f1d}, {&(0x7f0000000240)="c5cb2a89528463e7707b52607c16b21e5ef57d16cba83d48950012da19563876219c141bef6259304fefe1fbb678cb9c80e10c", 0x33, 0x6}, {&(0x7f0000000380)="a4f701d0a0027d778257d10e79a24c7236612bcf6ed5106aacfe0a29117983af8e08debcc0677d34c9335fb6ca275ee6950e2f21d9203d02031acac254911743f7af054f31321a66b9c4cbeddc1837de751b0c803c0dc3f16c159d67ec15541ec0b6ddc8a2150fa24df649c9178ca6b5e0338d68404f47b2", 0x78}, {&(0x7f0000000400)="eca4517976cbd35df79313c911aa2e1c6227cfd74500d6c908ae6aecddf4e2134c", 0x21, 0x1}, {&(0x7f0000000440)="8ffd68cfc69881433b7f857159013c4a1763bfe9738401daffb67c986d77a27f1d444b62722ab5a692e4564fb24e8cb3151f962cb13e00fcb45c4a1ad4af4eebe6260ec2165828f959a7ecc8d570fd710aa21d3d126ed1425367da661b8b495dce283f6fde84d2a0112fe80c08159dc95859df7b2efc64f584435535", 0x7c, 0x7}, {&(0x7f00000004c0)="edd6e51d3740e32d95e6286e3d324a61fdbf46afcfcab6db5812a099b83c71b7ead387d01b0d2f93ff45155f2b470ab9075d0d87ada56229f4278b673477ce73dabbbe8dc5588ea980e9d577b96ecb570b3f8ca47c7544b8ef42f9df1929169e7b2f82cc88399edf01fc6ac4f72b9fc515b240334127d7030cfee7be057d01b491f470e21338", 0x86}], 0x1103000, &(0x7f0000000640)={[{@ref_verify}, {@notreelog}, {@compress_force_algo={'compress-force', 0x3d, 'lzo'}}, {@notreelog}, {@compress_algo={'compress', 0x3d, 'no'}}, {@nossd}], [{@subj_user}]}) r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) recvmmsg(r0, &(0x7f00000061c0)=[{{&(0x7f0000002800)=@ethernet={0x0, @link_local}, 0x80, &(0x7f0000002940)=[{&(0x7f0000002880)=""/192, 0xc0}], 0x1, &(0x7f0000002980)=""/6, 0x6}, 0x80}, {{0x0, 0x0, &(0x7f0000002a00)=[{&(0x7f00000029c0)=""/46, 0x2e}], 0x1, &(0x7f0000002a40)=""/133, 0x85}, 0x93}, {{&(0x7f0000002b00)=@pptp={0x18, 0x2, {0x0, @local}}, 0x80, &(0x7f0000003c00), 0x0, &(0x7f0000003c40)=""/95, 0x5f}, 0x7fffffff}, {{&(0x7f0000003cc0)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @remote}}}, 0x80, &(0x7f0000003dc0)=[{&(0x7f0000003d40)=""/127, 0x7f}], 0x1, &(0x7f0000006440)=""/4107, 0x100b}, 0x5a5}, {{&(0x7f0000004e00)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @mcast2}}}, 0x80, &(0x7f0000005140)=[{&(0x7f0000004e80)=""/10, 0xa}, {&(0x7f0000006340)=""/215, 0xd7}, {&(0x7f0000004fc0)=""/84, 0x54}, {&(0x7f0000005040)=""/22, 0x16}, {&(0x7f0000005080)=""/167, 0xa7}], 0x5, &(0x7f00000051c0)=""/4096, 0x1000}, 0xffffff28}], 0x5, 0x0, &(0x7f0000006300)={0x77359400}) r1 = dup2(r0, r0) r2 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000002b80), 0x4001, 0x0) bind$bt_hci(r2, &(0x7f0000002bc0)={0x1f, 0x4, 0x3}, 0x6) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r0, 0x84009422, &(0x7f00000006c0)={0x0, 0x0, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @struct}}) write(r1, &(0x7f0000000280)='#\x00\x00\x00', 0x4) r3 = syz_mount_image$btrfs(&(0x7f0000001b40), &(0x7f0000001b80)='./file0\x00', 0x4, 0x7, &(0x7f0000002240)=[{&(0x7f0000001bc0)="e2ab63df156ddf48e4bf6be75022544cfa7d2f2a1f7a1d4a1bfd83cd5d4a0b514d39c357f0959fb1c66c5424ae217bc45c16387f9d5248c00430639f4892d6ad9edbc7800059fae4078ef962fc9bd2e175d89deb34413c54616d66405052ab82a22a0dd667eb8a118374dac86337e11d44e061cfc19a107fe8a42f332f842ab0ef6bb3f2ca7812b743e384490caab071939e1c7e0ac501d3eebc5d6d4b89d516950a28c14d1a49345a4238e75ec3712e3b115087a043e6efb312c31650eef1e9af459b36bf643e4c9c55334c944e5ba23f3c0a2d2d5142ef72706dd925919eff2e93e007b05914baa2abfcaf73349966f916c79c", 0xf4, 0x5}, {&(0x7f0000001cc0)="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", 0xfc, 0x100000001}, {&(0x7f0000001dc0)="1dec7bea962d9cfdc5ce4169f6e338b7a2dc284ead27c39101f8ea57033cc43fb5c2599b97d54261bbf38ba92a3802cb93c9eca95f8d340e67e41abd75cf088102886bab97ec3915721118a5fd41102435aa1a453e819440970acd7453a606ccdbeff91f31c53fc1fda52411e015167901978dcefd26b69e1d04c4b0d9badfd22fa8f7dae925e87bad4100359cdcdfd0690dae523ae99dac6f768732d669086b113277ca1a745d2503da9b07ab8321975783588e1c48257efde2aff68591879acb7b78b0a0f0dc1402c711e769a89530682d85016d64a76529fee93eb206f808fc62b7c2557cb9d0f9d4f260c5bb0b5ffc724f3b40101379dee2acf171e0", 0xfe, 0x5}, {&(0x7f0000001ec0)="70e439db0ac231173bdf354b0f6e741b2e7d1d501089e59257e7cde7fc3e13e8b3ec7360e735447ea55fde047bc0f086eddac4b5d129ccb03bc838305e74d09d037347d7b963948ef10e350197ca254de5fc65bcdb4b0da641395961bb3b7c1e3b5295406c6aba1563432e90db3891d8325202d2c091c05a4de8907136951ee0e7d2ebed82f0f8907f2e694f5c7bda210dd22b73a835206e418c7fe29c5eca00909d", 0xa2, 0x6}, {&(0x7f0000001f80)="45c19995841bf65dc0f8b29662c4985cd22b0789fa070661fa9e69a67550715e840b876b3ab5cffee85531c9f088437303ddfb695f1d1626de15a3ba4d13437b997e3c62ffc523313b73f19a0804e4a3a0e73af1cc554d5b0c5ea090e8841591f668817269b33b006c007126248ff4f88f276702015042c844ab02ed051fb6c1d970787cacf41b7de93f01c30a3b504f1871bd35d5ac3bffc677fc49f37811d89e6d279709b3c96ba1843cd12073db0295010c53ee13b4bb7a81fa2b8a1db5048a79f1fc3d", 0xc5, 0x7}, {&(0x7f0000002080)="973956c1be512883e45334d428ad74b3bec64c3bea924fb4233a233f7e6e1ce053d29dad6d5f87af6bd7c827720d47e79d85c0db1eaf52b0b58db6a3088124ddf8518b1d436c4b8d74857e3b272200baaf3c86d57872e9a5092087d50488b03c87ab3a014b1964ddb6133290b823d0d1de0af1bddf50e2ad65770d6f500f7bc21331d5461ae5a2e94d94778f3ea69899f575a30c9027c17e927425e469a331dd9d73977b9b227e024dede164dbf0481473ee36775ea12458d0308752af2ceb112becee5e69c8d17974df64b770faa30ffb98fd9b150b24d1b9a824e87c10daf1db2c9f", 0xe3, 0x7fffffff}, {&(0x7f0000002180)="55394fda604794528a16e2cb4d1cc2622fe23998d10ab46faf0deb5861ed3b51cc3d16ba60cbcc7ed5671e302cfea543bbc103722985e793fc77b3cb8012980bc043f2b6f39ab7662b9f7b95894735fd150d6e7303c3e893671c5808b36cf10ad5df5a16654a630ba181879bdc69ad16566d7a24d27b41fde02360025bdb9f3f68bdd7749ebf77a3cb807982b43a32ee539d8a4e4479142b5fff6ccfc54ac4410e00ed", 0xa3, 0x8}], 0xa1000, &(0x7f0000002300)=ANY=[@ANYBLOB="6e6f6175746f6c2c636f6d70726573733d6e6f2c6e6f61636c2c6d61636b3d5e5841595f52c541442c61756469742c7500"/58, @ANYRESDEC=0xee00, @ANYBLOB=',permit_directio,smackfsdef=btrfs\x00,appraise,\x00']) ioctl$INCFS_IOC_CREATE_FILE(r3, 0xc058671e, &(0x7f0000002780)={{'\x00', 0x1}, {0x7}, 0x140, 0x0, 0x0, &(0x7f0000002380)='./file0\x00', &(0x7f00000023c0)='./file0\x00', &(0x7f0000002400)="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", 0x188, 0x0, &(0x7f0000002c40)=ANY=[@ANYBLOB="02000000e1000000000000000c770000008be823d5092573594243750bb4ca2bc3f39a3ff327bfa1bf22af8ccd527ed787c58cbf927124891766cfd4e835d55ca20ca317048a775dd648a4a68b15cc1eae59eba2b4d2a0d443112c1b236c496863b3e675233dd7aa682c57832d040c265970aa9218be93ebc231ff51617b154855b97ec92234c6465d000000842d6d099ef7cf1225cdd240ba54c41b7895b9799cc0bbebc9f648f4710549d16630fd0c3dc267db84fdc82b8bbf5df666b51d54312065c92388cd4e064483ef792605fea7a13080bcfd8e6f12b8088babb596a4159309df2f1f2747a3a5000000883805c6033b29edc8676053b5b2dad2ded6883ead4da5b1b3e8955a3c11af05fe5b2dae389ebe2e1829e61f05199611d3356453ab1197eb6564c389d7b405b7dc7c433129b2c3975ed875a27eed211821eade14e1601140496615a80acc0e42a7f53873761673f394a2ec1cf5daf292f227e2542ab6f1e9a102f522e470221447f35bfebb33c650d626fb9cb93cb6673f060f4a9d6032378478d381a4c0ec4b2416723d2be8f7c4440b44a52ed7531bf9fea712875811357c0f25c6d20c7634090e65639fc4d047789e616164717033d78fd6e88d5ee02ca4d768055d5e0edcdb8eb0d1a6f49d9c0958c6f1b15d4f34b175e4cb82a0a5b02948425119e8c25f6d090aa7d5013f104dedcf09ab24f773dbcea233091b0d6bc824a069b65369c9f9aafe9266dbf18b3e6f8173169153751c0679ef4ece64b026bfceb59d95bfdc8263f83bc22ea74f250190d08c803d098fc2668dfd1c93f8e49f56fc9ba2d09c"], 0x192}) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) r4 = syz_open_dev$vcsn(&(0x7f0000000ac0), 0x5, 0x8000) fcntl$getflags(r4, 0xb) getsockopt$IP_VS_SO_GET_DESTS(r4, 0x0, 0x484, &(0x7f0000000b00)=""/4096, &(0x7f0000001b00)=0x1000) open(&(0x7f0000002c00)='./file0\x00', 0x400, 0x0) syz_mount_image$btrfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x5, 0x8, &(0x7f0000000580)=[{&(0x7f0000000100)="48b2ce52c48694040fa4cc61283a2f488ef2d3381444bb6d62915e40ce36055df6c7c3895f8d07c6b9be68cb1d7e8bbaa3fc08c2d63496889f83c2d5dd7f4f536ba35eb99c15", 0x46, 0x80}, {&(0x7f0000000180)="3191ac4ab0ebb0c4a6daeebc1ac5fae8060922230b78120477f86a64137dc04d46334e38043dd546b643150644fdc6dbe15c245deeeb5337d01ed406f4f0f9d347d9efccbb0cbebc349e8d086caed6b41597ca608fe5a76bcf464ae37fc097fe6eb4cf09c47c8af5eb9b5040c52df92da4ff43911faa956e84b4d81b0a2b26b3dc07c41d56a1af04", 0x88, 0x1}, {&(0x7f00000002c0)="5f280915f5c38df0ce8fd8bbb4919ec9e264031b83e9374d18b13bb082f4f923cda73202e82f89120b75db3d26a1be2eb4f906260793ed3024929b88058bba2f23316141f1adfad2e37850219c22bc56904e54337bae7549879996cfe32381b31c5d46402ed5b16e26eb08f56ed10567223a0ea21d8db8f5338c221671415fb4dadcf35f6cff7f1223dffbc16e141105c822b0fba24cf7f0c3d904ab8501928aa7666a", 0xa3, 0x186c9f1d}, {&(0x7f0000000240)="c5cb2a89528463e7707b52607c16b21e5ef57d16cba83d48950012da19563876219c141bef6259304fefe1fbb678cb9c80e10c", 0x33, 0x6}, {&(0x7f0000000380)="a4f701d0a0027d778257d10e79a24c7236612bcf6ed5106aacfe0a29117983af8e08debcc0677d34c9335fb6ca275ee6950e2f21d9203d02031acac254911743f7af054f31321a66b9c4cbeddc1837de751b0c803c0dc3f16c159d67ec15541ec0b6ddc8a2150fa24df649c9178ca6b5e0338d68404f47b2", 0x78}, {&(0x7f0000000400)="eca4517976cbd35df79313c911aa2e1c6227cfd74500d6c908ae6aecddf4e2134c", 0x21, 0x1}, {&(0x7f0000000440)="8ffd68cfc69881433b7f857159013c4a1763bfe9738401daffb67c986d77a27f1d444b62722ab5a692e4564fb24e8cb3151f962cb13e00fcb45c4a1ad4af4eebe6260ec2165828f959a7ecc8d570fd710aa21d3d126ed1425367da661b8b495dce283f6fde84d2a0112fe80c08159dc95859df7b2efc64f584435535", 0x7c, 0x7}, {&(0x7f00000004c0)="edd6e51d3740e32d95e6286e3d324a61fdbf46afcfcab6db5812a099b83c71b7ead387d01b0d2f93ff45155f2b470ab9075d0d87ada56229f4278b673477ce73dabbbe8dc5588ea980e9d577b96ecb570b3f8ca47c7544b8ef42f9df1929169e7b2f82cc88399edf01fc6ac4f72b9fc515b240334127d7030cfee7be057d01b491f470e21338", 0x86}], 0x1103000, &(0x7f0000000640)={[{@ref_verify}, {@notreelog}, {@compress_force_algo={'compress-force', 0x3d, 'lzo'}}, {@notreelog}, {@compress_algo={'compress', 0x3d, 'no'}}, {@nossd}], [{@subj_user}]}) (async) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) (async) recvmmsg(r0, &(0x7f00000061c0)=[{{&(0x7f0000002800)=@ethernet={0x0, @link_local}, 0x80, &(0x7f0000002940)=[{&(0x7f0000002880)=""/192, 0xc0}], 0x1, &(0x7f0000002980)=""/6, 0x6}, 0x80}, {{0x0, 0x0, &(0x7f0000002a00)=[{&(0x7f00000029c0)=""/46, 0x2e}], 0x1, &(0x7f0000002a40)=""/133, 0x85}, 0x93}, {{&(0x7f0000002b00)=@pptp={0x18, 0x2, {0x0, @local}}, 0x80, &(0x7f0000003c00), 0x0, &(0x7f0000003c40)=""/95, 0x5f}, 0x7fffffff}, {{&(0x7f0000003cc0)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @remote}}}, 0x80, &(0x7f0000003dc0)=[{&(0x7f0000003d40)=""/127, 0x7f}], 0x1, &(0x7f0000006440)=""/4107, 0x100b}, 0x5a5}, {{&(0x7f0000004e00)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @mcast2}}}, 0x80, &(0x7f0000005140)=[{&(0x7f0000004e80)=""/10, 0xa}, {&(0x7f0000006340)=""/215, 0xd7}, {&(0x7f0000004fc0)=""/84, 0x54}, {&(0x7f0000005040)=""/22, 0x16}, {&(0x7f0000005080)=""/167, 0xa7}], 0x5, &(0x7f00000051c0)=""/4096, 0x1000}, 0xffffff28}], 0x5, 0x0, &(0x7f0000006300)={0x77359400}) (async) dup2(r0, r0) (async) openat$cachefiles(0xffffffffffffff9c, &(0x7f0000002b80), 0x4001, 0x0) (async) bind$bt_hci(r2, &(0x7f0000002bc0)={0x1f, 0x4, 0x3}, 0x6) (async) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r0, 0x84009422, &(0x7f00000006c0)={0x0, 0x0, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @struct}}) (async) write(r1, &(0x7f0000000280)='#\x00\x00\x00', 0x4) (async) syz_mount_image$btrfs(&(0x7f0000001b40), &(0x7f0000001b80)='./file0\x00', 0x4, 0x7, &(0x7f0000002240)=[{&(0x7f0000001bc0)="e2ab63df156ddf48e4bf6be75022544cfa7d2f2a1f7a1d4a1bfd83cd5d4a0b514d39c357f0959fb1c66c5424ae217bc45c16387f9d5248c00430639f4892d6ad9edbc7800059fae4078ef962fc9bd2e175d89deb34413c54616d66405052ab82a22a0dd667eb8a118374dac86337e11d44e061cfc19a107fe8a42f332f842ab0ef6bb3f2ca7812b743e384490caab071939e1c7e0ac501d3eebc5d6d4b89d516950a28c14d1a49345a4238e75ec3712e3b115087a043e6efb312c31650eef1e9af459b36bf643e4c9c55334c944e5ba23f3c0a2d2d5142ef72706dd925919eff2e93e007b05914baa2abfcaf73349966f916c79c", 0xf4, 0x5}, {&(0x7f0000001cc0)="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", 0xfc, 0x100000001}, {&(0x7f0000001dc0)="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", 0xfe, 0x5}, {&(0x7f0000001ec0)="70e439db0ac231173bdf354b0f6e741b2e7d1d501089e59257e7cde7fc3e13e8b3ec7360e735447ea55fde047bc0f086eddac4b5d129ccb03bc838305e74d09d037347d7b963948ef10e350197ca254de5fc65bcdb4b0da641395961bb3b7c1e3b5295406c6aba1563432e90db3891d8325202d2c091c05a4de8907136951ee0e7d2ebed82f0f8907f2e694f5c7bda210dd22b73a835206e418c7fe29c5eca00909d", 0xa2, 0x6}, {&(0x7f0000001f80)="45c19995841bf65dc0f8b29662c4985cd22b0789fa070661fa9e69a67550715e840b876b3ab5cffee85531c9f088437303ddfb695f1d1626de15a3ba4d13437b997e3c62ffc523313b73f19a0804e4a3a0e73af1cc554d5b0c5ea090e8841591f668817269b33b006c007126248ff4f88f276702015042c844ab02ed051fb6c1d970787cacf41b7de93f01c30a3b504f1871bd35d5ac3bffc677fc49f37811d89e6d279709b3c96ba1843cd12073db0295010c53ee13b4bb7a81fa2b8a1db5048a79f1fc3d", 0xc5, 0x7}, {&(0x7f0000002080)="973956c1be512883e45334d428ad74b3bec64c3bea924fb4233a233f7e6e1ce053d29dad6d5f87af6bd7c827720d47e79d85c0db1eaf52b0b58db6a3088124ddf8518b1d436c4b8d74857e3b272200baaf3c86d57872e9a5092087d50488b03c87ab3a014b1964ddb6133290b823d0d1de0af1bddf50e2ad65770d6f500f7bc21331d5461ae5a2e94d94778f3ea69899f575a30c9027c17e927425e469a331dd9d73977b9b227e024dede164dbf0481473ee36775ea12458d0308752af2ceb112becee5e69c8d17974df64b770faa30ffb98fd9b150b24d1b9a824e87c10daf1db2c9f", 0xe3, 0x7fffffff}, {&(0x7f0000002180)="55394fda604794528a16e2cb4d1cc2622fe23998d10ab46faf0deb5861ed3b51cc3d16ba60cbcc7ed5671e302cfea543bbc103722985e793fc77b3cb8012980bc043f2b6f39ab7662b9f7b95894735fd150d6e7303c3e893671c5808b36cf10ad5df5a16654a630ba181879bdc69ad16566d7a24d27b41fde02360025bdb9f3f68bdd7749ebf77a3cb807982b43a32ee539d8a4e4479142b5fff6ccfc54ac4410e00ed", 0xa3, 0x8}], 0xa1000, &(0x7f0000002300)=ANY=[@ANYBLOB="6e6f6175746f6c2c636f6d70726573733d6e6f2c6e6f61636c2c6d61636b3d5e5841595f52c541442c61756469742c7500"/58, @ANYRESDEC=0xee00, @ANYBLOB=',permit_directio,smackfsdef=btrfs\x00,appraise,\x00']) (async) ioctl$INCFS_IOC_CREATE_FILE(r3, 0xc058671e, &(0x7f0000002780)={{'\x00', 0x1}, {0x7}, 0x140, 0x0, 0x0, &(0x7f0000002380)='./file0\x00', &(0x7f00000023c0)='./file0\x00', &(0x7f0000002400)="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", 0x188, 0x0, &(0x7f0000002c40)=ANY=[@ANYBLOB="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"], 0x192}) (async) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async) bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) (async) syz_open_dev$vcsn(&(0x7f0000000ac0), 0x5, 0x8000) (async) fcntl$getflags(r4, 0xb) (async) getsockopt$IP_VS_SO_GET_DESTS(r4, 0x0, 0x484, &(0x7f0000000b00)=""/4096, &(0x7f0000001b00)=0x1000) (async) open(&(0x7f0000002c00)='./file0\x00', 0x400, 0x0) (async) 10:02:54 executing program 1: syz_mount_image$btrfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x5, 0x8, &(0x7f0000000580)=[{&(0x7f0000000100)="48b2ce52c48694040fa4cc61283a2f488ef2d3381444bb6d62915e40ce36055df6c7c3895f8d07c6b9be68cb1d7e8bbaa3fc08c2d63496889f83c2d5dd7f4f536ba35eb99c15", 0x46, 0x80}, {&(0x7f0000000180)="3191ac4ab0ebb0c4a6daeebc1ac5fae8060922230b78120477f86a64137dc04d46334e38043dd546b643150644fdc6dbe15c245deeeb5337d01ed406f4f0f9d347d9efccbb0cbebc349e8d086caed6b41597ca608fe5a76bcf464ae37fc097fe6eb4cf09c47c8af5eb9b5040c52df92da4ff43911faa956e84b4d81b0a2b26b3dc07c41d56a1af04", 0x88, 0x1}, {&(0x7f00000002c0)="5f280915f5c38df0ce8fd8bbb4919ec9e264031b83e9374d18b13bb082f4f923cda73202e82f89120b75db3d26a1be2eb4f906260793ed3024929b88058bba2f23316141f1adfad2e37850219c22bc56904e54337bae7549879996cfe32381b31c5d46402ed5b16e26eb08f56ed10567223a0ea21d8db8f5338c221671415fb4dadcf35f6cff7f1223dffbc16e141105c822b0fba24cf7f0c3d904ab8501928aa7666a", 0xa3, 0x186c9f1d}, {&(0x7f0000000240)="c5cb2a89528463e7707b52607c16b21e5ef57d16cba83d48950012da19563876219c141bef6259304fefe1fbb678cb9c80e10c", 0x33, 0x6}, {&(0x7f0000000380)="a4f701d0a0027d778257d10e79a24c7236612bcf6ed5106aacfe0a29117983af8e08debcc0677d34c9335fb6ca275ee6950e2f21d9203d02031acac254911743f7af054f31321a66b9c4cbeddc1837de751b0c803c0dc3f16c159d67ec15541ec0b6ddc8a2150fa24df649c9178ca6b5e0338d68404f47b2", 0x78}, {&(0x7f0000000400)="eca4517976cbd35df79313c911aa2e1c6227cfd74500d6c908ae6aecddf4e2134c", 0x21, 0x1}, {&(0x7f0000000440)="8ffd68cfc69881433b7f857159013c4a1763bfe9738401daffb67c986d77a27f1d444b62722ab5a692e4564fb24e8cb3151f962cb13e00fcb45c4a1ad4af4eebe6260ec2165828f959a7ecc8d570fd710aa21d3d126ed1425367da661b8b495dce283f6fde84d2a0112fe80c08159dc95859df7b2efc64f584435535", 0x7c, 0x7}, {&(0x7f00000004c0)="edd6e51d3740e32d95e6286e3d324a61fdbf46afcfcab6db5812a099b83c71b7ead387d01b0d2f93ff45155f2b470ab9075d0d87ada56229f4278b673477ce73dabbbe8dc5588ea980e9d577b96ecb570b3f8ca47c7544b8ef42f9df1929169e7b2f82cc88399edf01fc6ac4f72b9fc515b240334127d7030cfee7be057d01b491f470e21338", 0x86}], 0x1103000, &(0x7f0000000640)={[{@ref_verify}, {@notreelog}, {@compress_force_algo={'compress-force', 0x3d, 'lzo'}}, {@notreelog}, {@compress_algo={'compress', 0x3d, 'no'}}, {@nossd}], [{@subj_user}]}) (async, rerun: 32) r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (rerun: 32) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) recvmmsg(r0, &(0x7f00000061c0)=[{{&(0x7f0000002800)=@ethernet={0x0, @link_local}, 0x80, &(0x7f0000002940)=[{&(0x7f0000002880)=""/192, 0xc0}], 0x1, &(0x7f0000002980)=""/6, 0x6}, 0x80}, {{0x0, 0x0, &(0x7f0000002a00)=[{&(0x7f00000029c0)=""/46, 0x2e}], 0x1, &(0x7f0000002a40)=""/133, 0x85}, 0x93}, {{&(0x7f0000002b00)=@pptp={0x18, 0x2, {0x0, @local}}, 0x80, &(0x7f0000003c00), 0x0, &(0x7f0000003c40)=""/95, 0x5f}, 0x7fffffff}, {{&(0x7f0000003cc0)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @remote}}}, 0x80, &(0x7f0000003dc0)=[{&(0x7f0000003d40)=""/127, 0x7f}], 0x1, &(0x7f0000006440)=""/4107, 0x100b}, 0x5a5}, {{&(0x7f0000004e00)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @mcast2}}}, 0x80, &(0x7f0000005140)=[{&(0x7f0000004e80)=""/10, 0xa}, {&(0x7f0000006340)=""/215, 0xd7}, {&(0x7f0000004fc0)=""/84, 0x54}, {&(0x7f0000005040)=""/22, 0x16}, {&(0x7f0000005080)=""/167, 0xa7}], 0x5, &(0x7f00000051c0)=""/4096, 0x1000}, 0xffffff28}], 0x5, 0x0, &(0x7f0000006300)={0x77359400}) r1 = dup2(r0, r0) r2 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000002b80), 0x4001, 0x0) bind$bt_hci(r2, &(0x7f0000002bc0)={0x1f, 0x4, 0x3}, 0x6) (async) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r0, 0x84009422, &(0x7f00000006c0)={0x0, 0x0, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @struct}}) (async) write(r1, &(0x7f0000000280)='#\x00\x00\x00', 0x4) (async) r3 = syz_mount_image$btrfs(&(0x7f0000001b40), &(0x7f0000001b80)='./file0\x00', 0x4, 0x7, &(0x7f0000002240)=[{&(0x7f0000001bc0)="e2ab63df156ddf48e4bf6be75022544cfa7d2f2a1f7a1d4a1bfd83cd5d4a0b514d39c357f0959fb1c66c5424ae217bc45c16387f9d5248c00430639f4892d6ad9edbc7800059fae4078ef962fc9bd2e175d89deb34413c54616d66405052ab82a22a0dd667eb8a118374dac86337e11d44e061cfc19a107fe8a42f332f842ab0ef6bb3f2ca7812b743e384490caab071939e1c7e0ac501d3eebc5d6d4b89d516950a28c14d1a49345a4238e75ec3712e3b115087a043e6efb312c31650eef1e9af459b36bf643e4c9c55334c944e5ba23f3c0a2d2d5142ef72706dd925919eff2e93e007b05914baa2abfcaf73349966f916c79c", 0xf4, 0x5}, {&(0x7f0000001cc0)="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", 0xfc, 0x100000001}, {&(0x7f0000001dc0)="1dec7bea962d9cfdc5ce4169f6e338b7a2dc284ead27c39101f8ea57033cc43fb5c2599b97d54261bbf38ba92a3802cb93c9eca95f8d340e67e41abd75cf088102886bab97ec3915721118a5fd41102435aa1a453e819440970acd7453a606ccdbeff91f31c53fc1fda52411e015167901978dcefd26b69e1d04c4b0d9badfd22fa8f7dae925e87bad4100359cdcdfd0690dae523ae99dac6f768732d669086b113277ca1a745d2503da9b07ab8321975783588e1c48257efde2aff68591879acb7b78b0a0f0dc1402c711e769a89530682d85016d64a76529fee93eb206f808fc62b7c2557cb9d0f9d4f260c5bb0b5ffc724f3b40101379dee2acf171e0", 0xfe, 0x5}, {&(0x7f0000001ec0)="70e439db0ac231173bdf354b0f6e741b2e7d1d501089e59257e7cde7fc3e13e8b3ec7360e735447ea55fde047bc0f086eddac4b5d129ccb03bc838305e74d09d037347d7b963948ef10e350197ca254de5fc65bcdb4b0da641395961bb3b7c1e3b5295406c6aba1563432e90db3891d8325202d2c091c05a4de8907136951ee0e7d2ebed82f0f8907f2e694f5c7bda210dd22b73a835206e418c7fe29c5eca00909d", 0xa2, 0x6}, {&(0x7f0000001f80)="45c19995841bf65dc0f8b29662c4985cd22b0789fa070661fa9e69a67550715e840b876b3ab5cffee85531c9f088437303ddfb695f1d1626de15a3ba4d13437b997e3c62ffc523313b73f19a0804e4a3a0e73af1cc554d5b0c5ea090e8841591f668817269b33b006c007126248ff4f88f276702015042c844ab02ed051fb6c1d970787cacf41b7de93f01c30a3b504f1871bd35d5ac3bffc677fc49f37811d89e6d279709b3c96ba1843cd12073db0295010c53ee13b4bb7a81fa2b8a1db5048a79f1fc3d", 0xc5, 0x7}, {&(0x7f0000002080)="973956c1be512883e45334d428ad74b3bec64c3bea924fb4233a233f7e6e1ce053d29dad6d5f87af6bd7c827720d47e79d85c0db1eaf52b0b58db6a3088124ddf8518b1d436c4b8d74857e3b272200baaf3c86d57872e9a5092087d50488b03c87ab3a014b1964ddb6133290b823d0d1de0af1bddf50e2ad65770d6f500f7bc21331d5461ae5a2e94d94778f3ea69899f575a30c9027c17e927425e469a331dd9d73977b9b227e024dede164dbf0481473ee36775ea12458d0308752af2ceb112becee5e69c8d17974df64b770faa30ffb98fd9b150b24d1b9a824e87c10daf1db2c9f", 0xe3, 0x7fffffff}, {&(0x7f0000002180)="55394fda604794528a16e2cb4d1cc2622fe23998d10ab46faf0deb5861ed3b51cc3d16ba60cbcc7ed5671e302cfea543bbc103722985e793fc77b3cb8012980bc043f2b6f39ab7662b9f7b95894735fd150d6e7303c3e893671c5808b36cf10ad5df5a16654a630ba181879bdc69ad16566d7a24d27b41fde02360025bdb9f3f68bdd7749ebf77a3cb807982b43a32ee539d8a4e4479142b5fff6ccfc54ac4410e00ed", 0xa3, 0x8}], 0xa1000, &(0x7f0000002300)=ANY=[@ANYBLOB="6e6f6175746f6c2c636f6d70726573733d6e6f2c6e6f61636c2c6d61636b3d5e5841595f52c541442c61756469742c7500"/58, @ANYRESDEC=0xee00, @ANYBLOB=',permit_directio,smackfsdef=btrfs\x00,appraise,\x00']) ioctl$INCFS_IOC_CREATE_FILE(r3, 0xc058671e, &(0x7f0000002780)={{'\x00', 0x1}, {0x7}, 0x140, 0x0, 0x0, &(0x7f0000002380)='./file0\x00', &(0x7f00000023c0)='./file0\x00', &(0x7f0000002400)="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", 0x188, 0x0, &(0x7f0000002c40)=ANY=[@ANYBLOB="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"], 0x192}) (async, rerun: 64) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async, rerun: 64) bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) (async) r4 = syz_open_dev$vcsn(&(0x7f0000000ac0), 0x5, 0x8000) fcntl$getflags(r4, 0xb) (async, rerun: 64) getsockopt$IP_VS_SO_GET_DESTS(r4, 0x0, 0x484, &(0x7f0000000b00)=""/4096, &(0x7f0000001b00)=0x1000) (rerun: 64) open(&(0x7f0000002c00)='./file0\x00', 0x400, 0x0) [ 1596.903889] print_req_error: 4 callbacks suppressed [ 1596.903895] print_req_error: I/O error, dev loop1, sector 0 [ 1596.932175] Bluetooth: hci11 command 0x1003 tx timeout [ 1596.937673] Bluetooth: hci11 sending frame failed (-49) [ 1597.482107] Bluetooth: hci7 command 0x1001 tx timeout [ 1597.487388] Bluetooth: hci7 sending frame failed (-49) [ 1597.562133] Bluetooth: hci8 command 0x1001 tx timeout [ 1597.562137] Bluetooth: hci9 command 0x1001 tx timeout [ 1597.562230] Bluetooth: hci12 command 0x1001 tx timeout [ 1597.567465] Bluetooth: hci8 sending frame failed (-49) [ 1597.572966] Bluetooth: Unknown HCI packet type 5e [ 1597.581007] Bluetooth: Unknown HCI packet type 5e [ 1597.587079] Bluetooth: Unknown HCI packet type 41 [ 1597.588253] Bluetooth: Unknown HCI packet type 41 [ 1597.593314] Bluetooth: Unknown HCI packet type 09 [ 1597.599395] Bluetooth: Unknown HCI packet type 09 [ 1597.603105] Bluetooth: Unknown HCI packet type 5e [ 1597.611962] Bluetooth: Unknown HCI packet type 5e [ 1597.612797] Bluetooth: Unknown HCI packet type 50 [ 1597.618400] Bluetooth: Unknown HCI packet type 50 [ 1597.622804] Bluetooth: Unknown HCI packet type 5e [ 1597.631518] Bluetooth: Unknown HCI packet type 5e [ 1597.632387] Bluetooth: Unknown HCI packet type 40 [ 1597.637861] Bluetooth: Unknown HCI packet type 40 [ 1598.362181] Bluetooth: hci6 command 0x1001 tx timeout [ 1598.367483] Bluetooth: hci6 sending frame failed (-49) [ 1598.442221] Bluetooth: hci10 command 0x1001 tx timeout [ 1598.448425] Bluetooth: hci10 sending frame failed (-49) [ 1599.002109] Bluetooth: hci11 command 0x1001 tx timeout [ 1599.007525] Bluetooth: hci11 sending frame failed (-49) [ 1599.562119] Bluetooth: hci7 command 0x1009 tx timeout [ 1599.642059] Bluetooth: hci12 command 0x1009 tx timeout [ 1599.642063] Bluetooth: hci9 command 0x1009 tx timeout [ 1599.652894] Bluetooth: hci8 command 0x1009 tx timeout [ 1600.442046] Bluetooth: hci6 command 0x1009 tx timeout [ 1600.522041] Bluetooth: hci10 command 0x1009 tx timeout [ 1601.082009] Bluetooth: hci11 command 0x1009 tx timeout 10:03:01 executing program 5: prlimit64(0x0, 0xe, &(0x7f0000000280), 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0xffffffffffff0162) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$BINDER_FREEZE(0xffffffffffffffff, 0x400c620e, &(0x7f0000000000)={0xffffffffffffffff, 0x0, 0x80000001}) ioctl$KDADDIO(r0, 0x400455c8, 0x4) prlimit64(0x0, 0xe, &(0x7f0000000280), 0x0) (async) sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0xffffffffffff0162) (async) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) (async) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) (async) ioctl$BINDER_FREEZE(0xffffffffffffffff, 0x400c620e, &(0x7f0000000000)={0xffffffffffffffff, 0x0, 0x80000001}) (async) ioctl$KDADDIO(r0, 0x400455c8, 0x4) (async) 10:03:01 executing program 4: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) setrlimit(0xb, &(0x7f0000000000)={0x44, 0x3ff}) stat(&(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)) fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000080)={0x0, 0x0}) prlimit64(r0, 0xe, &(0x7f00000000c0)={0xff, 0x6}, 0x0) sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$BTRFS_IOC_RM_DEV(r1, 0x5000940b, &(0x7f00000002c0)={{r1}, "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"}) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r1, 0x400455c8, 0x0) [ 1603.607645] Bluetooth: Unknown HCI packet type 5e [ 1603.622089] Bluetooth: Unknown HCI packet type 43 [ 1603.626954] Bluetooth: Unknown HCI packet type 5e [ 1603.639299] Bluetooth: Unknown HCI packet type 50 [ 1603.648106] Bluetooth: Unknown HCI packet type 5e [ 1603.659136] Bluetooth: Unknown HCI packet type 40 [ 1603.677479] Bluetooth: hci8: Frame reassembly failed (-84) 10:03:02 executing program 3: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x0) (fail_nth: 67) 10:03:02 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) r1 = dup2(r0, r0) write(r1, &(0x7f0000000280)='#\x00\x00\x00', 0x4) r2 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r2, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000074, 0x25d) bind$inet(r2, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe1}]}, 0x10) sendto$inet(r2, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) setsockopt$sock_int(r2, 0x1, 0x21, &(0x7f0000000600)=0xda9, 0x4) sendto$inet(r2, &(0x7f0000000640)="febc3b777d549ffacdd9ee6633af6e737f2e6d654105f04716908ec7af8775d530c2cc83e31b3f3c7f9e351ba553af429ff9367031b7ec0aed61ea15d08f299f9241acf82356d0859eb45aec582cd03d4cdbdcd6755c166133d9ba85529c0ed8913418402ba7d907115e75", 0x6b, 0x4000081, 0x0, 0x0) sendto$inet(r2, &(0x7f00000012c0)="e1158a927f1f6588b927481241ba7860f46ef65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a97425a3a07e758044ab0ea6f7ae55d88fecf9221a750fbf746bec66ba", 0xfe6a, 0xe, 0x0, 0xfffffffffffffe2b) write(r2, &(0x7f00000000c0)="70acbb30f1222e31e3c906a46419fd847bc0fd37d160e6154e996f550398fe512f3791fc8243754c2dfdb5404e9baab2f5ff360256fd3c4e2557ee9a2e4741212c3e77d556046907f594c65118af6685297d47347f91ed9ee1953a4b545b6590e121fe0df029200afc09ed6cd0df7b0cc9e5ec365cffb925206068698b132103fb624be177abf1e380717c05", 0x8c) write$snddsp(r1, &(0x7f0000000040)="fd9e3df349cae0421b12fe663393e1944fafb34d0fa6e19aee28c18c7e559261b899117c731dc3f5e0b5c3dab5315ddaec1511b4707f49536c74bd857bedb322990500b964ff9e175e391c558866d33d9b82d18478b8648fd64a09ae", 0x5c) 10:03:02 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x0) ioctl$KDADDIO(0xffffffffffffffff, 0x400455c8, 0x223) [ 1604.890989] FAULT_INJECTION: forcing a failure. [ 1604.890989] name failslab, interval 1, probability 0, space 0, times 0 [ 1604.902920] CPU: 0 PID: 22043 Comm: syz-executor.3 Not tainted 4.14.262-syzkaller #0 [ 1604.910793] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1604.920132] Call Trace: [ 1604.922709] dump_stack+0x1b2/0x281 [ 1604.926317] should_fail.cold+0x10a/0x149 [ 1604.930448] should_failslab+0xd6/0x130 [ 1604.934404] kmem_cache_alloc+0x40/0x3c0 [ 1604.938446] radix_tree_node_alloc.constprop.0+0x1b0/0x2f0 [ 1604.944182] idr_get_free_cmn+0x595/0x8d0 [ 1604.948327] idr_alloc_cmn+0xe8/0x1e0 [ 1604.952107] ? __fprop_inc_percpu_max+0x1d0/0x1d0 [ 1604.956931] ? kernfs_add_one+0x4c/0x3a0 [ 1604.960973] ? fs_reclaim_release+0xd0/0x110 [ 1604.965372] idr_alloc_cyclic+0xc2/0x1d0 [ 1604.969416] ? idr_alloc_cmn+0x1e0/0x1e0 [ 1604.973457] ? __radix_tree_preload+0x1c3/0x250 [ 1604.978106] __kernfs_new_node+0xaf/0x470 [ 1604.982241] kernfs_new_node+0x7b/0xe0 [ 1604.986111] __kernfs_create_file+0x3d/0x320 [ 1604.990502] sysfs_add_file_mode_ns+0x1e1/0x450 [ 1604.995151] internal_create_group+0x22b/0x710 [ 1604.999801] sysfs_create_groups+0x92/0x130 [ 1605.004103] device_add+0x7e5/0x15c0 [ 1605.007797] ? device_is_dependent+0x2a0/0x2a0 [ 1605.012383] rfkill_register+0x18e/0xab0 [ 1605.016465] hci_register_dev+0x359/0x8f0 [ 1605.020598] hci_uart_tty_ioctl+0x6d1/0xa60 [ 1605.024922] tty_ioctl+0x5af/0x1430 [ 1605.028535] ? hci_uart_tty_receive+0x4c0/0x4c0 [ 1605.033185] ? tty_fasync+0x2c0/0x2c0 [ 1605.036988] ? proc_fail_nth_write+0x7b/0x180 [ 1605.041491] ? trace_hardirqs_on+0x10/0x10 [ 1605.045710] ? fsnotify+0x974/0x11b0 [ 1605.049403] ? proc_tgid_io_accounting+0x7a0/0x7a0 [ 1605.054311] ? __handle_mm_fault+0x80f/0x4620 [ 1605.058785] ? SyS_write+0x1b7/0x210 [ 1605.062481] ? tty_fasync+0x2c0/0x2c0 [ 1605.066265] do_vfs_ioctl+0x75a/0xff0 [ 1605.070044] ? lock_acquire+0x170/0x3f0 [ 1605.073993] ? ioctl_preallocate+0x1a0/0x1a0 [ 1605.078384] ? __fget+0x2df/0x460 [ 1605.081833] ? do_vfs_ioctl+0xff0/0xff0 [ 1605.085923] ? security_file_ioctl+0x83/0xb0 [ 1605.090314] SyS_ioctl+0x7f/0xb0 [ 1605.093664] ? do_vfs_ioctl+0xff0/0xff0 [ 1605.097616] do_syscall_64+0x1d5/0x640 [ 1605.101505] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1605.106677] RIP: 0033:0x7fa331314fe9 [ 1605.110375] RSP: 002b:00007fa32fc8a168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1605.118067] RAX: ffffffffffffffda RBX: 00007fa331427f60 RCX: 00007fa331314fe9 [ 1605.125314] RDX: 0000000000000000 RSI: 00000000400455c8 RDI: 0000000000000003 [ 1605.132559] RBP: 00007fa32fc8a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1605.139809] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1605.147056] R13: 00007ffe09471b3f R14: 00007fa32fc8a300 R15: 0000000000022000 [ 1605.172030] Bluetooth: hci6: Frame reassembly failed (-84) [ 1605.182754] Bluetooth: hci9: Frame reassembly failed (-84) 10:03:03 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) r1 = dup2(r0, r0) write(r1, &(0x7f0000000280)='#\x00\x00\x00', 0x4) r2 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r2, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000074, 0x25d) bind$inet(r2, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe1}]}, 0x10) sendto$inet(r2, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) setsockopt$sock_int(r2, 0x1, 0x21, &(0x7f0000000600)=0xda9, 0x4) sendto$inet(r2, &(0x7f0000000640)="febc3b777d549ffacdd9ee6633af6e737f2e6d654105f04716908ec7af8775d530c2cc83e31b3f3c7f9e351ba553af429ff9367031b7ec0aed61ea15d08f299f9241acf82356d0859eb45aec582cd03d4cdbdcd6755c166133d9ba85529c0ed8913418402ba7d907115e75", 0x6b, 0x4000081, 0x0, 0x0) sendto$inet(r2, &(0x7f00000012c0)="e1158a927f1f6588b927481241ba7860f46ef65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a97425a3a07e758044ab0ea6f7ae55d88fecf9221a750fbf746bec66ba", 0xfe6a, 0xe, 0x0, 0xfffffffffffffe2b) write(r2, &(0x7f00000000c0)="70acbb30f1222e31e3c906a46419fd847bc0fd37d160e6154e996f550398fe512f3791fc8243754c2dfdb5404e9baab2f5ff360256fd3c4e2557ee9a2e4741212c3e77d556046907f594c65118af6685297d47347f91ed9ee1953a4b545b6590e121fe0df029200afc09ed6cd0df7b0cc9e5ec365cffb925206068698b132103fb624be177abf1e380717c05", 0x8c) write$snddsp(r1, &(0x7f0000000040)="fd9e3df349cae0421b12fe663393e1944fafb34d0fa6e19aee28c18c7e559261b899117c731dc3f5e0b5c3dab5315ddaec1511b4707f49536c74bd857bedb322990500b964ff9e175e391c558866d33d9b82d18478b8648fd64a09ae", 0x5c) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) (async) dup2(r0, r0) (async) write(r1, &(0x7f0000000280)='#\x00\x00\x00', 0x4) (async) socket$inet(0x2, 0x4000000000000001, 0x0) (async) setsockopt$inet_tcp_int(r2, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000074, 0x25d) (async) bind$inet(r2, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) (async) setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe1}]}, 0x10) (async) sendto$inet(r2, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) (async) setsockopt$sock_int(r2, 0x1, 0x21, &(0x7f0000000600)=0xda9, 0x4) (async) sendto$inet(r2, &(0x7f0000000640)="febc3b777d549ffacdd9ee6633af6e737f2e6d654105f04716908ec7af8775d530c2cc83e31b3f3c7f9e351ba553af429ff9367031b7ec0aed61ea15d08f299f9241acf82356d0859eb45aec582cd03d4cdbdcd6755c166133d9ba85529c0ed8913418402ba7d907115e75", 0x6b, 0x4000081, 0x0, 0x0) (async) sendto$inet(r2, &(0x7f00000012c0)="e1158a927f1f6588b927481241ba7860f46ef65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a97425a3a07e758044ab0ea6f7ae55d88fecf9221a750fbf746bec66ba", 0xfe6a, 0xe, 0x0, 0xfffffffffffffe2b) (async) write(r2, &(0x7f00000000c0)="70acbb30f1222e31e3c906a46419fd847bc0fd37d160e6154e996f550398fe512f3791fc8243754c2dfdb5404e9baab2f5ff360256fd3c4e2557ee9a2e4741212c3e77d556046907f594c65118af6685297d47347f91ed9ee1953a4b545b6590e121fe0df029200afc09ed6cd0df7b0cc9e5ec365cffb925206068698b132103fb624be177abf1e380717c05", 0x8c) (async) write$snddsp(r1, &(0x7f0000000040)="fd9e3df349cae0421b12fe663393e1944fafb34d0fa6e19aee28c18c7e559261b899117c731dc3f5e0b5c3dab5315ddaec1511b4707f49536c74bd857bedb322990500b964ff9e175e391c558866d33d9b82d18478b8648fd64a09ae", 0x5c) (async) 10:03:03 executing program 0: prlimit64(0x0, 0x0, 0x0, 0x0) sched_setattr(0x0, 0x0, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x0) (fail_nth: 57) 10:03:03 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) (async) r1 = dup2(r0, r0) write(r1, &(0x7f0000000280)='#\x00\x00\x00', 0x4) (async) r2 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r2, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000074, 0x25d) (async) bind$inet(r2, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe1}]}, 0x10) (async) sendto$inet(r2, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) (async) setsockopt$sock_int(r2, 0x1, 0x21, &(0x7f0000000600)=0xda9, 0x4) (async) sendto$inet(r2, &(0x7f0000000640)="febc3b777d549ffacdd9ee6633af6e737f2e6d654105f04716908ec7af8775d530c2cc83e31b3f3c7f9e351ba553af429ff9367031b7ec0aed61ea15d08f299f9241acf82356d0859eb45aec582cd03d4cdbdcd6755c166133d9ba85529c0ed8913418402ba7d907115e75", 0x6b, 0x4000081, 0x0, 0x0) sendto$inet(r2, &(0x7f00000012c0)="e1158a927f1f6588b927481241ba7860f46ef65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a97425a3a07e758044ab0ea6f7ae55d88fecf9221a750fbf746bec66ba", 0xfe6a, 0xe, 0x0, 0xfffffffffffffe2b) (async) write(r2, &(0x7f00000000c0)="70acbb30f1222e31e3c906a46419fd847bc0fd37d160e6154e996f550398fe512f3791fc8243754c2dfdb5404e9baab2f5ff360256fd3c4e2557ee9a2e4741212c3e77d556046907f594c65118af6685297d47347f91ed9ee1953a4b545b6590e121fe0df029200afc09ed6cd0df7b0cc9e5ec365cffb925206068698b132103fb624be177abf1e380717c05", 0x8c) write$snddsp(r1, &(0x7f0000000040)="fd9e3df349cae0421b12fe663393e1944fafb34d0fa6e19aee28c18c7e559261b899117c731dc3f5e0b5c3dab5315ddaec1511b4707f49536c74bd857bedb322990500b964ff9e175e391c558866d33d9b82d18478b8648fd64a09ae", 0x5c) [ 1605.503740] FAULT_INJECTION: forcing a failure. [ 1605.503740] name failslab, interval 1, probability 0, space 0, times 0 [ 1605.525446] CPU: 1 PID: 22069 Comm: syz-executor.0 Not tainted 4.14.262-syzkaller #0 [ 1605.533365] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1605.542710] Call Trace: [ 1605.545304] dump_stack+0x1b2/0x281 [ 1605.548916] should_fail.cold+0x10a/0x149 [ 1605.553163] should_failslab+0xd6/0x130 [ 1605.557251] kmem_cache_alloc+0x28e/0x3c0 [ 1605.561388] __kernfs_new_node+0x6f/0x470 [ 1605.565518] kernfs_create_dir_ns+0x8c/0x200 [ 1605.569909] sysfs_create_dir_ns+0xb7/0x1d0 [ 1605.574212] kobject_add_internal+0x28b/0x930 [ 1605.578692] kobject_add+0x11f/0x180 [ 1605.582385] ? kset_create_and_add+0x190/0x190 [ 1605.586946] ? device_add+0xd72/0x15c0 [ 1605.590812] ? __lockdep_init_map+0x100/0x560 [ 1605.595289] ? root_device_release+0x20/0x20 [ 1605.599693] device_add+0x33f/0x15c0 [ 1605.603390] ? device_is_dependent+0x2a0/0x2a0 [ 1605.607955] rfkill_register+0x18e/0xab0 [ 1605.611999] hci_register_dev+0x359/0x8f0 [ 1605.616137] hci_uart_tty_ioctl+0x6d1/0xa60 [ 1605.620446] tty_ioctl+0x5af/0x1430 [ 1605.624053] ? hci_uart_tty_receive+0x4c0/0x4c0 [ 1605.628700] ? tty_fasync+0x2c0/0x2c0 [ 1605.632488] ? proc_fail_nth_write+0x7b/0x180 [ 1605.636963] ? trace_hardirqs_on+0x10/0x10 [ 1605.641177] ? fsnotify+0x974/0x11b0 [ 1605.644870] ? proc_tgid_io_accounting+0x7a0/0x7a0 [ 1605.649779] ? __handle_mm_fault+0x80f/0x4620 [ 1605.654256] ? SyS_write+0x1b7/0x210 [ 1605.657950] ? tty_fasync+0x2c0/0x2c0 [ 1605.661736] do_vfs_ioctl+0x75a/0xff0 [ 1605.665518] ? lock_acquire+0x170/0x3f0 [ 1605.669505] ? ioctl_preallocate+0x1a0/0x1a0 [ 1605.673910] ? __fget+0x2df/0x460 [ 1605.677346] ? do_vfs_ioctl+0xff0/0xff0 [ 1605.681310] ? security_file_ioctl+0x83/0xb0 [ 1605.685699] SyS_ioctl+0x7f/0xb0 [ 1605.689042] ? do_vfs_ioctl+0xff0/0xff0 [ 1605.692997] do_syscall_64+0x1d5/0x640 [ 1605.696883] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1605.702059] RIP: 0033:0x7fbb944a7fe9 [ 1605.705745] RSP: 002b:00007fbb92e1d168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1605.713431] RAX: ffffffffffffffda RBX: 00007fbb945baf60 RCX: 00007fbb944a7fe9 [ 1605.720681] RDX: 0000000000000000 RSI: 00000000400455c8 RDI: 0000000000000003 [ 1605.727932] RBP: 00007fbb92e1d1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1605.735299] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1605.742562] R13: 00007ffc96d7392f R14: 00007fbb92e1d300 R15: 0000000000022000 [ 1605.761754] Bluetooth: hci7 command 0x1003 tx timeout [ 1605.762084] Bluetooth: hci8 command 0x1003 tx timeout [ 1605.767032] Bluetooth: hci7 sending frame failed (-49) [ 1605.772464] Bluetooth: hci8 sending frame failed (-49) [ 1605.778147] kobject_add_internal failed for rfkill493 (error: -12 parent: hci10) [ 1605.794775] Bluetooth: hci10: Frame reassembly failed (-84) 10:03:04 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) r1 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet(r1, &(0x7f0000000040)={0x2, 0x4e23, @multicast2}, 0x10) r2 = dup2(r0, r0) write(r2, &(0x7f0000000280)='#\x00\x00\x00', 0x4) 10:03:04 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) r1 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet(r1, &(0x7f0000000040)={0x2, 0x4e23, @multicast2}, 0x10) r2 = dup2(r0, r0) write(r2, &(0x7f0000000280)='#\x00\x00\x00', 0x4) 10:03:04 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) (async) r1 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet(r1, &(0x7f0000000040)={0x2, 0x4e23, @multicast2}, 0x10) (async) r2 = dup2(r0, r0) write(r2, &(0x7f0000000280)='#\x00\x00\x00', 0x4) 10:03:04 executing program 1: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) sched_setattr(r0, &(0x7f0000000080)={0x38, 0x3, 0xc, 0x1, 0x81, 0x2, 0x2, 0x1, 0xf0, 0x8}, 0x0) r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r1, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) syz_open_dev$vbi(&(0x7f0000000040), 0x0, 0x2) r2 = dup2(r1, r1) openat$cgroup_freezer_state(0xffffffffffffffff, &(0x7f00000000c0), 0x2, 0x0) r3 = accept4$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @empty}, &(0x7f0000000080)=0x10, 0x0) sendto$inet(r3, &(0x7f0000000000)="667b84d9db7c2e5284dbd4a85a40d527d202045e6eb75abaaf474308707bd3d6985c0001757c82", 0x27, 0x4008800, &(0x7f0000000180)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x25}}, 0x10) openat$urandom(0xffffffffffffff9c, &(0x7f0000000100), 0x1, 0x0) syz_open_dev$evdev(&(0x7f0000000140), 0xb20000, 0x0) write(r2, &(0x7f0000000bc0)="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"/1109, 0x455) [ 1607.241688] Bluetooth: hci9 command 0x1003 tx timeout [ 1607.241692] Bluetooth: hci6 command 0x1003 tx timeout [ 1607.243453] Bluetooth: hci6 sending frame failed (-49) [ 1607.247105] Bluetooth: hci9 sending frame failed (-49) [ 1607.801616] Bluetooth: hci8 command 0x1001 tx timeout [ 1607.806912] Bluetooth: hci8 sending frame failed (-49) [ 1607.811627] Bluetooth: hci10 command 0x1003 tx timeout [ 1607.817501] Bluetooth: hci7 command 0x1001 tx timeout [ 1607.817522] Bluetooth: hci10 sending frame failed (-49) [ 1607.823155] Bluetooth: hci7 sending frame failed (-49) [ 1609.321577] Bluetooth: hci9 command 0x1001 tx timeout [ 1609.321590] Bluetooth: hci6 command 0x1001 tx timeout [ 1609.326903] Bluetooth: hci9 sending frame failed (-49) [ 1609.337331] Bluetooth: hci6 sending frame failed (-49) [ 1609.881519] Bluetooth: hci10 command 0x1001 tx timeout [ 1609.881579] Bluetooth: hci7 command 0x1009 tx timeout [ 1609.886875] Bluetooth: hci8 command 0x1009 tx timeout [ 1609.892136] Bluetooth: hci10 sending frame failed (-49) [ 1611.401501] Bluetooth: hci9 command 0x1009 tx timeout [ 1611.401504] Bluetooth: hci6 command 0x1009 tx timeout [ 1611.961472] Bluetooth: hci10 command 0x1009 tx timeout 10:03:11 executing program 5: prlimit64(0x0, 0x1, &(0x7f0000000000)={0x0, 0xcbcf}, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0xffffffefffff0162) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x4) 10:03:11 executing program 1: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) sched_setattr(r0, &(0x7f0000000080)={0x38, 0x3, 0xc, 0x1, 0x81, 0x2, 0x2, 0x1, 0xf0, 0x8}, 0x0) r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r1, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) syz_open_dev$vbi(&(0x7f0000000040), 0x0, 0x2) r2 = dup2(r1, r1) openat$cgroup_freezer_state(0xffffffffffffffff, &(0x7f00000000c0), 0x2, 0x0) r3 = accept4$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @empty}, &(0x7f0000000080)=0x10, 0x0) sendto$inet(r3, &(0x7f0000000000)="667b84d9db7c2e5284dbd4a85a40d527d202045e6eb75abaaf474308707bd3d6985c0001757c82", 0x27, 0x4008800, &(0x7f0000000180)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x25}}, 0x10) openat$urandom(0xffffffffffffff9c, &(0x7f0000000100), 0x1, 0x0) syz_open_dev$evdev(&(0x7f0000000140), 0xb20000, 0x0) write(r2, &(0x7f0000000bc0)="23b950213bb617000000917bb900568c3004f797d0521ed57eca72ce7744b8502b33f3b573cbfc12c566073d36357bb1f9914f00c9eca8c45e4f06c7c91cddf1015f740d148b3c0ea7ec53325f72d87a9af9e4f9e3ac00000000000000006adae5cee44a7630ac139bb91d4654beb62bd02d9810a054c5cc980089992bd0ef99aae1857f77d25373f7d040a8f34c4cff001445e9157477ce3e8d09ebb94e82b69c01c7773eeca0b71b625ac0026b77d2875302da1848935431468a4a096048aaaaf03c4dedc268cc03e3e2a8a27bdf5192d0725d04157143f673de5fb02b83c8817820528fa5d820ddd2029902efceaeca6c671bf1dd395ed2dfb269b3031c1da7cc944d8c3050cf51d494a7233ae5c65bacab910760cb698a8a33b43663f5250004000000000000625f673511125b9791cd84a4ea762de8c76ed27d8ed5ae35a170919023f1b969cedb70d79e489fc2c6faab1905231f34f6e706c4eb7d33f79e387da7a7e634806b186eb279b68642decb74af9ec10088e44b968b4f109c7b5cd0b0ae4b74d3e82cbcb16c8b39889f9d95c61b1f1080c3f7a9782a89c2ae776deefdc264b7735957d7041933d2363923c5d74c099f4783b9709aee5f6490ddf78d29bc428d74885d9dbe10d25360c5cdc059c57025c60470fb0c7e323ec44e0cb068aba3cf1b2487d26eef5d6f5a4477b9b3fa007eef525f7efeefdbc540c0257e4590c6c45c92f9f05e48b6ad28cef9c9f9f76b0fd564f24eb42a26d2bc04822970fd4b432bca706856f5e0ba255af35bc7754d797e0f66c575e015f83b01240ece60fa945ec9380db2f7551d2f414793228502cc5684123fecdd97311f1050adc635f135b2519d0ceca66382cf5fd7b98d25488e2d455c362d99e0a308df015c9fce1f818c62c156ce2cbf69eea39c6312e4e5a7aaa8979ba21d205f80ccf0a8721b64cef2d6b54529d815adaf9877173b0ea6b8b887a24736d8f047d8262cec4b4eac04c8b08f031282c8c9c7dbe6f720749c25a76c18f835582fa0a826ca3555594096d9041ee519b3bb98a928946623c1903dc6e3e101f9e4061e63549449902cd111b249e8bb109c6920030ff9f5db773a8ce4a243400226bda9ec05e2b7f36f299a191915aa702c4eaf51e7aec444bd0ff29b17fbfcd9df6877aa48d2df88aeaa3e857c9445d329a0a390bec2d02368888b75786a5bea8db02dba9fcc2ae96013d2f9350a2719a8937ce157e002d8bdb2b223835e4fc924c97df582921f9ea529ebb32f73a367fb788cb44bbd266a1092809324d1b5a1e2d7d0a51af91230fe40b62ee765833538a6a79ccfe76089001000000000000000384bce2bdea259be0a1faf5c0122f1c25572a33a27e8bd53ea3fa200dd0ded7f29fcad007e05d4c81fd5fdd206e9a11e66acc7f859850acd6e819ade1053df5eaeebf400e293cd2e185923179b190abf15a46415aa683df0be3d4f80cb8c500f9d5bb029664b3701471247fd644d4a46c7f6cda5354b9d0600000093fd6101482cb9542c697586b33ec43100"/1109, 0x455) getpid() (async) sched_setscheduler(r0, 0x5, &(0x7f0000000380)) (async) sched_setattr(r0, &(0x7f0000000080)={0x38, 0x3, 0xc, 0x1, 0x81, 0x2, 0x2, 0x1, 0xf0, 0x8}, 0x0) (async) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async) bind$bt_hci(r1, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) (async) syz_open_dev$vbi(&(0x7f0000000040), 0x0, 0x2) (async) dup2(r1, r1) (async) openat$cgroup_freezer_state(0xffffffffffffffff, &(0x7f00000000c0), 0x2, 0x0) (async) accept4$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @empty}, &(0x7f0000000080)=0x10, 0x0) (async) sendto$inet(r3, &(0x7f0000000000)="667b84d9db7c2e5284dbd4a85a40d527d202045e6eb75abaaf474308707bd3d6985c0001757c82", 0x27, 0x4008800, &(0x7f0000000180)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x25}}, 0x10) (async) openat$urandom(0xffffffffffffff9c, &(0x7f0000000100), 0x1, 0x0) (async) syz_open_dev$evdev(&(0x7f0000000140), 0xb20000, 0x0) (async) write(r2, &(0x7f0000000bc0)="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"/1109, 0x455) (async) [ 1613.860618] Bluetooth: Unknown HCI packet type 5e [ 1613.866163] Bluetooth: Unknown HCI packet type 43 [ 1613.875625] Bluetooth: Unknown HCI packet type 5e [ 1613.891368] Bluetooth: Unknown HCI packet type 50 [ 1613.897392] Bluetooth: Unknown HCI packet type 5e [ 1613.904516] Bluetooth: Unknown HCI packet type 40 10:03:13 executing program 3: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x0) (fail_nth: 68) 10:03:13 executing program 4: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) setrlimit(0xb, &(0x7f0000000000)={0x44, 0x3ff}) (async) stat(&(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)) (async) fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000080)={0x0, 0x0}) prlimit64(r0, 0xe, &(0x7f00000000c0)={0xff, 0x6}, 0x0) (async) sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$BTRFS_IOC_RM_DEV(r1, 0x5000940b, &(0x7f00000002c0)={{r1}, "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"}) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000040)=0xf) (async) ioctl$KDADDIO(r1, 0x400455c8, 0x0) 10:03:13 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x0) ioctl$KDADDIO(r0, 0x400455c8, 0x0) 10:03:13 executing program 1: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) (async) sched_setattr(r0, &(0x7f0000000080)={0x38, 0x3, 0xc, 0x1, 0x81, 0x2, 0x2, 0x1, 0xf0, 0x8}, 0x0) (async) r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r1, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) syz_open_dev$vbi(&(0x7f0000000040), 0x0, 0x2) (async) r2 = dup2(r1, r1) (async) openat$cgroup_freezer_state(0xffffffffffffffff, &(0x7f00000000c0), 0x2, 0x0) (async) r3 = accept4$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @empty}, &(0x7f0000000080)=0x10, 0x0) sendto$inet(r3, &(0x7f0000000000)="667b84d9db7c2e5284dbd4a85a40d527d202045e6eb75abaaf474308707bd3d6985c0001757c82", 0x27, 0x4008800, &(0x7f0000000180)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x25}}, 0x10) openat$urandom(0xffffffffffffff9c, &(0x7f0000000100), 0x1, 0x0) (async) syz_open_dev$evdev(&(0x7f0000000140), 0xb20000, 0x0) write(r2, &(0x7f0000000bc0)="23b950213bb617000000917bb900568c3004f797d0521ed57eca72ce7744b8502b33f3b573cbfc12c566073d36357bb1f9914f00c9eca8c45e4f06c7c91cddf1015f740d148b3c0ea7ec53325f72d87a9af9e4f9e3ac00000000000000006adae5cee44a7630ac139bb91d4654beb62bd02d9810a054c5cc980089992bd0ef99aae1857f77d25373f7d040a8f34c4cff001445e9157477ce3e8d09ebb94e82b69c01c7773eeca0b71b625ac0026b77d2875302da1848935431468a4a096048aaaaf03c4dedc268cc03e3e2a8a27bdf5192d0725d04157143f673de5fb02b83c8817820528fa5d820ddd2029902efceaeca6c671bf1dd395ed2dfb269b3031c1da7cc944d8c3050cf51d494a7233ae5c65bacab910760cb698a8a33b43663f5250004000000000000625f673511125b9791cd84a4ea762de8c76ed27d8ed5ae35a170919023f1b969cedb70d79e489fc2c6faab1905231f34f6e706c4eb7d33f79e387da7a7e634806b186eb279b68642decb74af9ec10088e44b968b4f109c7b5cd0b0ae4b74d3e82cbcb16c8b39889f9d95c61b1f1080c3f7a9782a89c2ae776deefdc264b7735957d7041933d2363923c5d74c099f4783b9709aee5f6490ddf78d29bc428d74885d9dbe10d25360c5cdc059c57025c60470fb0c7e323ec44e0cb068aba3cf1b2487d26eef5d6f5a4477b9b3fa007eef525f7efeefdbc540c0257e4590c6c45c92f9f05e48b6ad28cef9c9f9f76b0fd564f24eb42a26d2bc04822970fd4b432bca706856f5e0ba255af35bc7754d797e0f66c575e015f83b01240ece60fa945ec9380db2f7551d2f414793228502cc5684123fecdd97311f1050adc635f135b2519d0ceca66382cf5fd7b98d25488e2d455c362d99e0a308df015c9fce1f818c62c156ce2cbf69eea39c6312e4e5a7aaa8979ba21d205f80ccf0a8721b64cef2d6b54529d815adaf9877173b0ea6b8b887a24736d8f047d8262cec4b4eac04c8b08f031282c8c9c7dbe6f720749c25a76c18f835582fa0a826ca3555594096d9041ee519b3bb98a928946623c1903dc6e3e101f9e4061e63549449902cd111b249e8bb109c6920030ff9f5db773a8ce4a243400226bda9ec05e2b7f36f299a191915aa702c4eaf51e7aec444bd0ff29b17fbfcd9df6877aa48d2df88aeaa3e857c9445d329a0a390bec2d02368888b75786a5bea8db02dba9fcc2ae96013d2f9350a2719a8937ce157e002d8bdb2b223835e4fc924c97df582921f9ea529ebb32f73a367fb788cb44bbd266a1092809324d1b5a1e2d7d0a51af91230fe40b62ee765833538a6a79ccfe76089001000000000000000384bce2bdea259be0a1faf5c0122f1c25572a33a27e8bd53ea3fa200dd0ded7f29fcad007e05d4c81fd5fdd206e9a11e66acc7f859850acd6e819ade1053df5eaeebf400e293cd2e185923179b190abf15a46415aa683df0be3d4f80cb8c500f9d5bb029664b3701471247fd644d4a46c7f6cda5354b9d0600000093fd6101482cb9542c697586b33ec43100"/1109, 0x455) [ 1615.752677] FAULT_INJECTION: forcing a failure. [ 1615.752677] name failslab, interval 1, probability 0, space 0, times 0 [ 1615.763978] CPU: 1 PID: 22124 Comm: syz-executor.3 Not tainted 4.14.262-syzkaller #0 [ 1615.771868] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1615.781218] Call Trace: [ 1615.783813] dump_stack+0x1b2/0x281 [ 1615.787445] should_fail.cold+0x10a/0x149 [ 1615.791597] should_failslab+0xd6/0x130 [ 1615.795582] kmem_cache_alloc+0x28e/0x3c0 [ 1615.799733] __kernfs_new_node+0x6f/0x470 [ 1615.803891] kernfs_new_node+0x7b/0xe0 [ 1615.807779] __kernfs_create_file+0x3d/0x320 [ 1615.812186] sysfs_add_file_mode_ns+0x1e1/0x450 [ 1615.816856] sysfs_merge_group+0xdc/0x200 [ 1615.821010] dpm_sysfs_add+0x122/0x1c0 [ 1615.824901] device_add+0x977/0x15c0 [ 1615.828624] ? device_is_dependent+0x2a0/0x2a0 [ 1615.833211] rfkill_register+0x18e/0xab0 [ 1615.837279] hci_register_dev+0x359/0x8f0 [ 1615.841437] hci_uart_tty_ioctl+0x6d1/0xa60 [ 1615.845763] tty_ioctl+0x5af/0x1430 [ 1615.849395] ? hci_uart_tty_receive+0x4c0/0x4c0 [ 1615.854070] ? tty_fasync+0x2c0/0x2c0 [ 1615.857991] ? proc_fail_nth_write+0x7b/0x180 [ 1615.862523] ? trace_hardirqs_on+0x10/0x10 [ 1615.866804] ? fsnotify+0x974/0x11b0 [ 1615.870528] ? proc_tgid_io_accounting+0x7a0/0x7a0 [ 1615.875461] ? __handle_mm_fault+0x80f/0x4620 [ 1615.879965] ? SyS_write+0x1b7/0x210 [ 1615.883682] ? tty_fasync+0x2c0/0x2c0 [ 1615.887473] do_vfs_ioctl+0x75a/0xff0 [ 1615.891277] ? lock_acquire+0x170/0x3f0 [ 1615.895245] ? ioctl_preallocate+0x1a0/0x1a0 [ 1615.899748] ? __fget+0x2df/0x460 [ 1615.903182] ? do_vfs_ioctl+0xff0/0xff0 [ 1615.907148] ? security_file_ioctl+0x83/0xb0 [ 1615.911546] SyS_ioctl+0x7f/0xb0 [ 1615.914894] ? do_vfs_ioctl+0xff0/0xff0 [ 1615.918862] do_syscall_64+0x1d5/0x640 [ 1615.922749] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1615.927927] RIP: 0033:0x7fa331314fe9 [ 1615.931620] RSP: 002b:00007fa32fc8a168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1615.939305] RAX: ffffffffffffffda RBX: 00007fa331427f60 RCX: 00007fa331314fe9 [ 1615.946561] RDX: 0000000000000000 RSI: 00000000400455c8 RDI: 0000000000000003 [ 1615.953819] RBP: 00007fa32fc8a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1615.961085] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1615.968354] R13: 00007ffe09471b3f R14: 00007fa32fc8a300 R15: 0000000000022000 [ 1615.977161] Bluetooth: hci7 command 0x1003 tx timeout [ 1615.989630] Bluetooth: hci7 sending frame failed (-49) [ 1615.995784] Bluetooth: hci8: Frame reassembly failed (-84) 10:03:14 executing program 0: prlimit64(0x0, 0x0, 0x0, 0x0) sched_setattr(0x0, 0x0, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x0) (fail_nth: 58) 10:03:14 executing program 4: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) setrlimit(0xb, &(0x7f0000000000)={0x44, 0x3ff}) stat(&(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)) fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000080)={0x0, 0x0}) prlimit64(r0, 0xe, &(0x7f00000000c0)={0xff, 0x6}, 0x0) sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$BTRFS_IOC_RM_DEV(r1, 0x5000940b, &(0x7f00000002c0)={{r1}, "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"}) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r1, 0x400455c8, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) (async) setrlimit(0xb, &(0x7f0000000000)={0x44, 0x3ff}) (async) stat(&(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)) (async) fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000080)) (async) prlimit64(r0, 0xe, &(0x7f00000000c0)={0xff, 0x6}, 0x0) (async) sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0) (async) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) (async) ioctl$BTRFS_IOC_RM_DEV(r1, 0x5000940b, &(0x7f00000002c0)={{r1}, "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"}) (async) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000040)=0xf) (async) ioctl$KDADDIO(r1, 0x400455c8, 0x0) (async) 10:03:14 executing program 1: syz_mount_image$reiserfs(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x9, 0x0, &(0x7f00000000c0), 0x1c2088, &(0x7f0000000100)=ANY=[@ANYBLOB="626c6f636b2d616c6c6f6361746f723d6e6f74657374342c6572726f72733d726f2d72656d6f756e742c626172726965723d6e6f6e652c757365725f78617474722c6f626a5f747970653d25245d2b2c28e83a2c6f626a5f757365723d2924242c646f6e745f686173682c61756469742c7001003d30303030303000000000000000003030303030322c726f6f74636f6e746578743d757365725f752c00"]) r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) r1 = dup2(r0, r0) write(r1, &(0x7f0000000280)='#\x00\x00\x00', 0x4) [ 1616.386991] Bluetooth: hci9: Frame reassembly failed (-84) [ 1616.412696] FAULT_INJECTION: forcing a failure. [ 1616.412696] name failslab, interval 1, probability 0, space 0, times 0 [ 1616.426088] CPU: 1 PID: 22154 Comm: syz-executor.0 Not tainted 4.14.262-syzkaller #0 [ 1616.433988] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1616.443343] Call Trace: [ 1616.445934] dump_stack+0x1b2/0x281 [ 1616.449569] should_fail.cold+0x10a/0x149 [ 1616.453733] should_failslab+0xd6/0x130 [ 1616.457717] kmem_cache_alloc+0x28e/0x3c0 [ 1616.461865] __kernfs_new_node+0x6f/0x470 [ 1616.466009] kernfs_new_node+0x7b/0xe0 [ 1616.469887] kernfs_create_link+0x27/0x160 [ 1616.474107] sysfs_do_create_link_sd+0x90/0x120 [ 1616.478757] sysfs_create_link+0x5f/0xc0 [ 1616.482809] device_add+0x461/0x15c0 [ 1616.486512] ? device_is_dependent+0x2a0/0x2a0 [ 1616.491093] rfkill_register+0x18e/0xab0 [ 1616.495158] hci_register_dev+0x359/0x8f0 [ 1616.499296] hci_uart_tty_ioctl+0x6d1/0xa60 [ 1616.503628] tty_ioctl+0x5af/0x1430 [ 1616.507370] ? hci_uart_tty_receive+0x4c0/0x4c0 [ 1616.512096] ? tty_fasync+0x2c0/0x2c0 [ 1616.515902] ? proc_fail_nth_write+0x7b/0x180 [ 1616.520385] ? trace_hardirqs_on+0x10/0x10 [ 1616.524625] ? fsnotify+0x974/0x11b0 [ 1616.528332] ? proc_tgid_io_accounting+0x7a0/0x7a0 [ 1616.533259] ? __handle_mm_fault+0x80f/0x4620 [ 1616.537746] ? SyS_write+0x1b7/0x210 [ 1616.541469] ? tty_fasync+0x2c0/0x2c0 [ 1616.545263] do_vfs_ioctl+0x75a/0xff0 [ 1616.549065] ? lock_acquire+0x170/0x3f0 [ 1616.553026] ? ioctl_preallocate+0x1a0/0x1a0 [ 1616.557420] ? __fget+0x2df/0x460 [ 1616.560855] ? do_vfs_ioctl+0xff0/0xff0 [ 1616.564819] ? security_file_ioctl+0x83/0xb0 [ 1616.569213] SyS_ioctl+0x7f/0xb0 [ 1616.572559] ? do_vfs_ioctl+0xff0/0xff0 [ 1616.576524] do_syscall_64+0x1d5/0x640 [ 1616.580412] entry_SYSCALL_64_after_hwframe+0x46/0xbb 10:03:14 executing program 1: syz_mount_image$reiserfs(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x9, 0x0, &(0x7f00000000c0), 0x1c2088, &(0x7f0000000100)=ANY=[@ANYBLOB="626c6f636b2d616c6c6f6361746f723d6e6f74657374342c6572726f72733d726f2d72656d6f756e742c626172726965723d6e6f6e652c757365725f78617474722c6f626a5f747970653d25245d2b2c28e83a2c6f626a5f757365723d2924242c646f6e745f686173682c61756469742c7001003d30303030303000000000000000003030303030322c726f6f74636f6e746578743d757365725f752c00"]) r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) r1 = dup2(r0, r0) write(r1, &(0x7f0000000280)='#\x00\x00\x00', 0x4) syz_mount_image$reiserfs(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x9, 0x0, &(0x7f00000000c0), 0x1c2088, &(0x7f0000000100)=ANY=[@ANYBLOB="626c6f636b2d616c6c6f6361746f723d6e6f74657374342c6572726f72733d726f2d72656d6f756e742c626172726965723d6e6f6e652c757365725f78617474722c6f626a5f747970653d25245d2b2c28e83a2c6f626a5f757365723d2924242c646f6e745f686173682c61756469742c7001003d30303030303000000000000000003030303030322c726f6f74636f6e746578743d757365725f752c00"]) (async) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) (async) dup2(r0, r0) (async) write(r1, &(0x7f0000000280)='#\x00\x00\x00', 0x4) (async) [ 1616.585586] RIP: 0033:0x7fbb944a7fe9 [ 1616.589292] RSP: 002b:00007fbb92e1d168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1616.596982] RAX: ffffffffffffffda RBX: 00007fbb945baf60 RCX: 00007fbb944a7fe9 [ 1616.604239] RDX: 0000000000000000 RSI: 00000000400455c8 RDI: 0000000000000003 [ 1616.611505] RBP: 00007fbb92e1d1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1616.618757] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1616.626013] R13: 00007ffc96d7392f R14: 00007fbb92e1d300 R15: 0000000000022000 10:03:14 executing program 1: syz_mount_image$reiserfs(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x9, 0x0, &(0x7f00000000c0), 0x1c2088, &(0x7f0000000100)=ANY=[@ANYBLOB="626c6f636b2d616c6c6f6361746f723d6e6f74657374342c6572726f72733d726f2d72656d6f756e742c626172726965723d6e6f6e652c757365725f78617474722c6f626a5f747970653d25245d2b2c28e83a2c6f626a5f757365723d2924242c646f6e745f686173682c61756469742c7001003d30303030303000000000000000003030303030322c726f6f74636f6e746578743d757365725f752c00"]) (async) r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) (async, rerun: 32) r1 = dup2(r0, r0) (rerun: 32) write(r1, &(0x7f0000000280)='#\x00\x00\x00', 0x4) 10:03:14 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0x0, 0x4}, 0x6) r1 = dup2(r0, r0) read$FUSE(r1, &(0x7f00000002c0)={0x2020, 0x0, 0x0}, 0x2020) write$FUSE_LK(r1, &(0x7f0000000080)={0x28, 0xfffffffffffffff5, r2, {{0x1, 0x3b, 0x3}}}, 0x28) write(r1, &(0x7f0000000280)='#\x00\x00\x00', 0x4) [ 1618.041111] Bluetooth: hci7 command 0x1001 tx timeout [ 1618.046421] Bluetooth: hci8 command 0x1003 tx timeout [ 1618.047454] Bluetooth: hci7 sending frame failed (-49) [ 1618.052016] Bluetooth: hci6 command 0x1003 tx timeout [ 1618.056978] Bluetooth: hci8 sending frame failed (-49) [ 1618.066073] Bluetooth: hci6 sending frame failed (-49) [ 1618.441011] Bluetooth: hci9 command 0x1003 tx timeout [ 1618.446320] Bluetooth: hci9 sending frame failed (-49) [ 1618.691022] Bluetooth: hci10 command 0x1003 tx timeout [ 1618.696417] Bluetooth: hci10 sending frame failed (-49) [ 1620.120986] Bluetooth: hci6 command 0x1001 tx timeout [ 1620.121005] Bluetooth: hci8 command 0x1001 tx timeout [ 1620.126309] Bluetooth: hci6 sending frame failed (-49) [ 1620.135698] Bluetooth: hci8 sending frame failed (-49) [ 1620.142381] Bluetooth: hci7 command 0x1009 tx timeout [ 1620.520960] Bluetooth: hci9 command 0x1001 tx timeout [ 1620.526265] Bluetooth: hci9 sending frame failed (-49) [ 1620.761044] Bluetooth: hci10 command 0x1001 tx timeout [ 1620.766406] Bluetooth: hci10 sending frame failed (-49) [ 1622.200867] Bluetooth: hci8 command 0x1009 tx timeout [ 1622.200890] Bluetooth: hci6 command 0x1009 tx timeout [ 1622.600845] Bluetooth: hci9 command 0x1009 tx timeout [ 1622.840901] Bluetooth: hci10 command 0x1009 tx timeout 10:03:21 executing program 5: prlimit64(0x0, 0x1, &(0x7f0000000000)={0x0, 0xcbcf}, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0xffffffefffff0162) (async) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x4) 10:03:21 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) (async) bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0x0, 0x4}, 0x6) (async) r1 = dup2(r0, r0) read$FUSE(r1, &(0x7f00000002c0)={0x2020, 0x0, 0x0}, 0x2020) write$FUSE_LK(r1, &(0x7f0000000080)={0x28, 0xfffffffffffffff5, r2, {{0x1, 0x3b, 0x3}}}, 0x28) (async) write(r1, &(0x7f0000000280)='#\x00\x00\x00', 0x4) [ 1626.131046] Bluetooth: hci7 command 0x1003 tx timeout [ 1626.136348] Bluetooth: hci7 sending frame failed (-49) 10:03:24 executing program 3: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x0) (fail_nth: 69) 10:03:24 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0x0, 0x4}, 0x6) r1 = dup2(r0, r0) read$FUSE(r1, &(0x7f00000002c0)={0x2020, 0x0, 0x0}, 0x2020) write$FUSE_LK(r1, &(0x7f0000000080)={0x28, 0xfffffffffffffff5, r2, {{0x1, 0x3b, 0x3}}}, 0x28) write(r1, &(0x7f0000000280)='#\x00\x00\x00', 0x4) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) (async) bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0x0, 0x4}, 0x6) (async) dup2(r0, r0) (async) read$FUSE(r1, &(0x7f00000002c0)={0x2020}, 0x2020) (async) write$FUSE_LK(r1, &(0x7f0000000080)={0x28, 0xfffffffffffffff5, r2, {{0x1, 0x3b, 0x3}}}, 0x28) (async) write(r1, &(0x7f0000000280)='#\x00\x00\x00', 0x4) (async) 10:03:24 executing program 4: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000000000)=0x0) sched_setattr(r0, &(0x7f0000000080)={0x38, 0x3, 0x0, 0x7, 0x7, 0xffff, 0x400, 0x6, 0x1, 0x81}, 0x0) sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r1, 0x400455c8, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000100)={&(0x7f00000001c0)=@getqdisc={0x4c, 0x26, 0x20, 0x70bd2d, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, {0x5, 0x3}, {0xa, 0x4}, {0xc, 0x8}}, [{0x4}, {0x4}, {0x4}, {0x4}, {0x4}, {0x4}, {0x4}, {0x4}, {0x4}, {0x4}]}, 0x4c}, 0x1, 0x0, 0x0, 0x8004}, 0x0) 10:03:24 executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000280), 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0xffffffffffff0162) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$KDADDIO(r1, 0x400455c8, 0x4) ioctl$KDADDIO(r1, 0x400455c8, 0x223) [ 1626.648653] FAULT_INJECTION: forcing a failure. [ 1626.648653] name failslab, interval 1, probability 0, space 0, times 0 [ 1626.660715] CPU: 1 PID: 22237 Comm: syz-executor.3 Not tainted 4.14.262-syzkaller #0 [ 1626.668603] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1626.677965] Call Trace: [ 1626.680571] dump_stack+0x1b2/0x281 [ 1626.684211] should_fail.cold+0x10a/0x149 [ 1626.688368] should_failslab+0xd6/0x130 [ 1626.692350] kmem_cache_alloc+0x28e/0x3c0 [ 1626.696499] __kernfs_new_node+0x6f/0x470 [ 1626.700655] kernfs_new_node+0x7b/0xe0 [ 1626.704545] __kernfs_create_file+0x3d/0x320 [ 1626.708960] sysfs_add_file_mode_ns+0x1e1/0x450 [ 1626.713634] sysfs_merge_group+0xdc/0x200 [ 1626.717784] dpm_sysfs_add+0x122/0x1c0 [ 1626.721670] device_add+0x977/0x15c0 [ 1626.725390] ? device_is_dependent+0x2a0/0x2a0 [ 1626.729979] rfkill_register+0x18e/0xab0 [ 1626.734049] hci_register_dev+0x359/0x8f0 [ 1626.738202] hci_uart_tty_ioctl+0x6d1/0xa60 [ 1626.742519] tty_ioctl+0x5af/0x1430 [ 1626.746127] ? hci_uart_tty_receive+0x4c0/0x4c0 [ 1626.750780] ? tty_fasync+0x2c0/0x2c0 [ 1626.754567] ? proc_fail_nth_write+0x7b/0x180 [ 1626.759047] ? trace_hardirqs_on+0x10/0x10 [ 1626.763267] ? fsnotify+0x974/0x11b0 [ 1626.766963] ? proc_tgid_io_accounting+0x7a0/0x7a0 [ 1626.771871] ? __handle_mm_fault+0x80f/0x4620 [ 1626.776349] ? SyS_write+0x1b7/0x210 [ 1626.780045] ? tty_fasync+0x2c0/0x2c0 [ 1626.783825] do_vfs_ioctl+0x75a/0xff0 [ 1626.787610] ? lock_acquire+0x170/0x3f0 [ 1626.791562] ? ioctl_preallocate+0x1a0/0x1a0 [ 1626.795952] ? __fget+0x2df/0x460 [ 1626.799383] ? do_vfs_ioctl+0xff0/0xff0 [ 1626.803337] ? security_file_ioctl+0x83/0xb0 [ 1626.807726] SyS_ioctl+0x7f/0xb0 [ 1626.811072] ? do_vfs_ioctl+0xff0/0xff0 [ 1626.815037] do_syscall_64+0x1d5/0x640 [ 1626.818913] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1626.824085] RIP: 0033:0x7fa331314fe9 [ 1626.827775] RSP: 002b:00007fa32fc8a168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1626.835477] RAX: ffffffffffffffda RBX: 00007fa331427f60 RCX: 00007fa331314fe9 [ 1626.842728] RDX: 0000000000000000 RSI: 00000000400455c8 RDI: 0000000000000003 [ 1626.849978] RBP: 00007fa32fc8a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1626.857230] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1626.864478] R13: 00007ffe09471b3f R14: 00007fa32fc8a300 R15: 0000000000022000 [ 1626.892302] Bluetooth: hci8: Frame reassembly failed (-84) 10:03:25 executing program 0: prlimit64(0x0, 0x0, 0x0, 0x0) sched_setattr(0x0, 0x0, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x0) (fail_nth: 59) 10:03:25 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) r1 = dup2(r0, r0) bind$bt_hci(r1, &(0x7f0000000080)={0x1f, 0x2, 0x2}, 0x6) write(r1, &(0x7f0000000280)='#\x00\x00\x00', 0x4) 10:03:25 executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000280), 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0xffffffffffff0162) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x10000, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1000) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r1, 0x400455c8, 0x4) ioctl$TIOCSETD(r1, 0x5412, &(0x7f0000000000)=0x33) r2 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCGETS2(r2, 0x802c542a, &(0x7f0000000080)) 10:03:25 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) (async, rerun: 32) r1 = dup2(r0, r0) (rerun: 32) bind$bt_hci(r1, &(0x7f0000000080)={0x1f, 0x2, 0x2}, 0x6) (async) write(r1, &(0x7f0000000280)='#\x00\x00\x00', 0x4) 10:03:25 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) r1 = dup2(r0, r0) bind$bt_hci(r1, &(0x7f0000000080)={0x1f, 0x2, 0x2}, 0x6) write(r1, &(0x7f0000000280)='#\x00\x00\x00', 0x4) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) (async) dup2(r0, r0) (async) bind$bt_hci(r1, &(0x7f0000000080)={0x1f, 0x2, 0x2}, 0x6) (async) write(r1, &(0x7f0000000280)='#\x00\x00\x00', 0x4) (async) [ 1627.265245] FAULT_INJECTION: forcing a failure. [ 1627.265245] name failslab, interval 1, probability 0, space 0, times 0 [ 1627.297248] CPU: 1 PID: 22255 Comm: syz-executor.0 Not tainted 4.14.262-syzkaller #0 [ 1627.305155] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1627.314610] Call Trace: [ 1627.317216] dump_stack+0x1b2/0x281 [ 1627.320853] should_fail.cold+0x10a/0x149 [ 1627.325006] should_failslab+0xd6/0x130 [ 1627.328993] kmem_cache_alloc+0x28e/0x3c0 [ 1627.333152] __kernfs_new_node+0x6f/0x470 [ 1627.337317] kernfs_new_node+0x7b/0xe0 [ 1627.341210] __kernfs_create_file+0x3d/0x320 [ 1627.345625] sysfs_add_file_mode_ns+0x1e1/0x450 [ 1627.350312] internal_create_group+0x22b/0x710 [ 1627.354902] sysfs_create_groups+0x92/0x130 [ 1627.359227] device_add+0x7e5/0x15c0 [ 1627.362949] ? device_is_dependent+0x2a0/0x2a0 [ 1627.367563] rfkill_register+0x18e/0xab0 [ 1627.371661] hci_register_dev+0x359/0x8f0 [ 1627.375831] hci_uart_tty_ioctl+0x6d1/0xa60 [ 1627.380157] tty_ioctl+0x5af/0x1430 [ 1627.383791] ? hci_uart_tty_receive+0x4c0/0x4c0 [ 1627.388466] ? tty_fasync+0x2c0/0x2c0 [ 1627.392280] ? proc_fail_nth_write+0x7b/0x180 [ 1627.396780] ? trace_hardirqs_on+0x10/0x10 [ 1627.401021] ? fsnotify+0x974/0x11b0 [ 1627.404733] ? proc_tgid_io_accounting+0x7a0/0x7a0 [ 1627.409661] ? __handle_mm_fault+0x80f/0x4620 10:03:25 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) r1 = dup2(r0, r0) r2 = socket(0x10, 0x803, 0x0) sendmsg$BATADV_CMD_GET_MESH(r2, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0}}, 0x0) getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) bind$bt_hci(r2, &(0x7f0000000040)={0x1f, 0x0, 0x1}, 0x6) write(r1, &(0x7f0000000280)='#\x00\x00\x00', 0x4) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$NL80211_CMD_SET_REG(r3, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000080)={0x2c, r4, 0x1, 0x0, 0x0, {}, [@NL80211_ATTR_REG_RULES={0x8, 0x22, 0x0, 0x1, [{0x4}]}, @NL80211_ATTR_DFS_REGION={0x5}, @NL80211_ATTR_REG_ALPHA2={0x7, 0x21, 'bb\x00'}]}, 0x2c}}, 0x0) sendmsg$NL80211_CMD_STOP_P2P_DEVICE(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x20, r4, 0x20, 0x70bd27, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x5, 0x2d}}}}, ["", "", "", "", "", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x90}, 0x4800) [ 1627.414163] ? SyS_write+0x1b7/0x210 [ 1627.417888] ? tty_fasync+0x2c0/0x2c0 [ 1627.421712] do_vfs_ioctl+0x75a/0xff0 [ 1627.425522] ? lock_acquire+0x170/0x3f0 [ 1627.429502] ? ioctl_preallocate+0x1a0/0x1a0 [ 1627.433912] ? __fget+0x2df/0x460 [ 1627.437368] ? do_vfs_ioctl+0xff0/0xff0 [ 1627.441344] ? security_file_ioctl+0x83/0xb0 [ 1627.445756] SyS_ioctl+0x7f/0xb0 [ 1627.449122] ? do_vfs_ioctl+0xff0/0xff0 [ 1627.453097] do_syscall_64+0x1d5/0x640 [ 1627.456991] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1627.462178] RIP: 0033:0x7fbb944a7fe9 [ 1627.465884] RSP: 002b:00007fbb92e1d168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1627.473597] RAX: ffffffffffffffda RBX: 00007fbb945baf60 RCX: 00007fbb944a7fe9 [ 1627.480865] RDX: 0000000000000000 RSI: 00000000400455c8 RDI: 0000000000000003 [ 1627.488130] RBP: 00007fbb92e1d1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1627.495381] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1627.502636] R13: 00007ffc96d7392f R14: 00007fbb92e1d300 R15: 0000000000022000 [ 1627.527600] Bluetooth: Unknown HCI packet type 5e [ 1627.532561] Bluetooth: Unknown HCI packet type 43 [ 1627.537400] Bluetooth: Unknown HCI packet type 5e [ 1627.547978] Bluetooth: Unknown HCI packet type 50 [ 1627.553244] Bluetooth: Unknown HCI packet type 5e [ 1627.558137] Bluetooth: Unknown HCI packet type 40 [ 1628.201029] Bluetooth: hci7 command 0x1001 tx timeout [ 1628.206318] Bluetooth: hci7 sending frame failed (-49) [ 1628.920452] Bluetooth: hci6 command 0x1003 tx timeout [ 1628.920482] Bluetooth: hci8 command 0x1003 tx timeout [ 1628.926686] Bluetooth: hci6 sending frame failed (-49) [ 1628.937876] Bluetooth: hci8 sending frame failed (-49) [ 1629.560449] Bluetooth: hci9 command 0x1003 tx timeout [ 1629.565839] Bluetooth: hci9 sending frame failed (-49) [ 1629.572266] Bluetooth: hci10 command 0x1003 tx timeout [ 1629.577617] Bluetooth: hci10 sending frame failed (-49) [ 1630.280526] Bluetooth: hci7 command 0x1009 tx timeout [ 1631.000409] Bluetooth: hci8 command 0x1001 tx timeout [ 1631.005647] Bluetooth: hci6 command 0x1001 tx timeout [ 1631.005712] Bluetooth: hci8 sending frame failed (-49) [ 1631.015852] Bluetooth: hci6 sending frame failed (-49) [ 1631.640417] Bluetooth: hci10 command 0x1001 tx timeout [ 1631.645742] Bluetooth: hci9 command 0x1001 tx timeout [ 1631.645799] Bluetooth: hci10 sending frame failed (-49) [ 1631.651302] Bluetooth: hci9 sending frame failed (-49) [ 1633.080253] Bluetooth: hci6 command 0x1009 tx timeout [ 1633.080299] Bluetooth: hci8 command 0x1009 tx timeout [ 1633.720190] Bluetooth: hci9 command 0x1009 tx timeout [ 1633.720220] Bluetooth: hci10 command 0x1009 tx timeout 10:03:32 executing program 5: prlimit64(0x0, 0x1, &(0x7f0000000000)={0x0, 0xcbcf}, 0x0) (async) sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0xffffffefffff0162) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) (async) ioctl$KDADDIO(r0, 0x400455c8, 0x4) 10:03:32 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) (async) r1 = dup2(r0, r0) (async) r2 = socket(0x10, 0x803, 0x0) sendmsg$BATADV_CMD_GET_MESH(r2, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0}}, 0x0) (async, rerun: 32) getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) (async, rerun: 32) bind$bt_hci(r2, &(0x7f0000000040)={0x1f, 0x0, 0x1}, 0x6) (async) write(r1, &(0x7f0000000280)='#\x00\x00\x00', 0x4) r3 = socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 32) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) (rerun: 32) sendmsg$NL80211_CMD_SET_REG(r3, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000080)={0x2c, r4, 0x1, 0x0, 0x0, {}, [@NL80211_ATTR_REG_RULES={0x8, 0x22, 0x0, 0x1, [{0x4}]}, @NL80211_ATTR_DFS_REGION={0x5}, @NL80211_ATTR_REG_ALPHA2={0x7, 0x21, 'bb\x00'}]}, 0x2c}}, 0x0) (async) sendmsg$NL80211_CMD_STOP_P2P_DEVICE(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x20, r4, 0x20, 0x70bd27, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x5, 0x2d}}}}, ["", "", "", "", "", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x90}, 0x4800) [ 1634.339773] Bluetooth: Unknown HCI packet type 5e [ 1634.346371] Bluetooth: Unknown HCI packet type 43 [ 1634.355447] Bluetooth: Unknown HCI packet type 5e [ 1634.367588] Bluetooth: Unknown HCI packet type 50 [ 1634.373629] Bluetooth: Unknown HCI packet type 5e [ 1634.378542] Bluetooth: Unknown HCI packet type 40 [ 1636.360094] Bluetooth: hci7 command 0x1003 tx timeout [ 1636.365375] Bluetooth: hci7 sending frame failed (-49) 10:03:35 executing program 3: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x0) (fail_nth: 70) 10:03:35 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) r1 = dup2(r0, r0) r2 = socket(0x10, 0x803, 0x0) sendmsg$BATADV_CMD_GET_MESH(r2, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0}}, 0x0) getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) (async) bind$bt_hci(r2, &(0x7f0000000040)={0x1f, 0x0, 0x1}, 0x6) (async) write(r1, &(0x7f0000000280)='#\x00\x00\x00', 0x4) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$NL80211_CMD_SET_REG(r3, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000080)={0x2c, r4, 0x1, 0x0, 0x0, {}, [@NL80211_ATTR_REG_RULES={0x8, 0x22, 0x0, 0x1, [{0x4}]}, @NL80211_ATTR_DFS_REGION={0x5}, @NL80211_ATTR_REG_ALPHA2={0x7, 0x21, 'bb\x00'}]}, 0x2c}}, 0x0) sendmsg$NL80211_CMD_STOP_P2P_DEVICE(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x20, r4, 0x20, 0x70bd27, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x5, 0x2d}}}}, ["", "", "", "", "", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x90}, 0x4800) 10:03:35 executing program 4: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) (async) ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000000000)=0x0) sched_setattr(r0, &(0x7f0000000080)={0x38, 0x3, 0x0, 0x7, 0x7, 0xffff, 0x400, 0x6, 0x1, 0x81}, 0x0) sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0) (async) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r1, 0x400455c8, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000100)={&(0x7f00000001c0)=@getqdisc={0x4c, 0x26, 0x20, 0x70bd2d, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, {0x5, 0x3}, {0xa, 0x4}, {0xc, 0x8}}, [{0x4}, {0x4}, {0x4}, {0x4}, {0x4}, {0x4}, {0x4}, {0x4}, {0x4}, {0x4}]}, 0x4c}, 0x1, 0x0, 0x0, 0x8004}, 0x0) [ 1637.521141] FAULT_INJECTION: forcing a failure. [ 1637.521141] name failslab, interval 1, probability 0, space 0, times 0 [ 1637.532430] CPU: 0 PID: 22314 Comm: syz-executor.3 Not tainted 4.14.262-syzkaller #0 [ 1637.540312] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1637.549666] Call Trace: [ 1637.552256] dump_stack+0x1b2/0x281 [ 1637.555884] should_fail.cold+0x10a/0x149 [ 1637.560034] should_failslab+0xd6/0x130 [ 1637.564011] kmem_cache_alloc+0x28e/0x3c0 [ 1637.568165] __kernfs_new_node+0x6f/0x470 [ 1637.572316] kernfs_new_node+0x7b/0xe0 [ 1637.576206] __kernfs_create_file+0x3d/0x320 [ 1637.580621] sysfs_add_file_mode_ns+0x1e1/0x450 [ 1637.585301] sysfs_merge_group+0xdc/0x200 [ 1637.589469] dpm_sysfs_add+0x122/0x1c0 [ 1637.593367] device_add+0x977/0x15c0 [ 1637.597089] ? device_is_dependent+0x2a0/0x2a0 [ 1637.601683] rfkill_register+0x18e/0xab0 [ 1637.605750] hci_register_dev+0x359/0x8f0 [ 1637.609905] hci_uart_tty_ioctl+0x6d1/0xa60 [ 1637.614230] tty_ioctl+0x5af/0x1430 10:03:35 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) r1 = dup2(r0, r0) r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r2, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6) r3 = dup2(r2, r2) write(r3, &(0x7f0000000280)="23000000010007", 0x7) ioctl$VIDIOC_S_STD(r3, 0x40085618, &(0x7f0000000040)=0x7) write(r1, &(0x7f0000000280)='#\x00\x00\x00', 0x4) [ 1637.617859] ? hci_uart_tty_receive+0x4c0/0x4c0 [ 1637.622531] ? tty_fasync+0x2c0/0x2c0 [ 1637.626333] ? proc_fail_nth_write+0x7b/0x180 [ 1637.630837] ? trace_hardirqs_on+0x10/0x10 [ 1637.635085] ? fsnotify+0x974/0x11b0 [ 1637.638801] ? proc_tgid_io_accounting+0x7a0/0x7a0 [ 1637.643737] ? __handle_mm_fault+0x80f/0x4620 [ 1637.648236] ? SyS_write+0x1b7/0x210 [ 1637.651955] ? tty_fasync+0x2c0/0x2c0 [ 1637.655763] do_vfs_ioctl+0x75a/0xff0 [ 1637.659568] ? lock_acquire+0x170/0x3f0 [ 1637.663548] ? ioctl_preallocate+0x1a0/0x1a0 [ 1637.667951] ? __fget+0x2df/0x460 [ 1637.671404] ? do_vfs_ioctl+0xff0/0xff0 [ 1637.675381] ? security_file_ioctl+0x83/0xb0 [ 1637.679872] SyS_ioctl+0x7f/0xb0 [ 1637.683232] ? do_vfs_ioctl+0xff0/0xff0 [ 1637.687184] do_syscall_64+0x1d5/0x640 [ 1637.691065] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1637.696243] RIP: 0033:0x7fa331314fe9 [ 1637.699931] RSP: 002b:00007fa32fc8a168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1637.707614] RAX: ffffffffffffffda RBX: 00007fa331427f60 RCX: 00007fa331314fe9 [ 1637.714859] RDX: 0000000000000000 RSI: 00000000400455c8 RDI: 0000000000000003 [ 1637.722110] RBP: 00007fa32fc8a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1637.729366] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1637.736612] R13: 00007ffe09471b3f R14: 00007fa32fc8a300 R15: 0000000000022000 10:03:36 executing program 0: prlimit64(0x0, 0x0, 0x0, 0x0) sched_setattr(0x0, 0x0, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x0) (fail_nth: 60) 10:03:36 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) (async) r1 = dup2(r0, r0) (async) r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async) bind$bt_hci(r2, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6) (async) r3 = dup2(r2, r2) write(r3, &(0x7f0000000280)="23000000010007", 0x7) (async) ioctl$VIDIOC_S_STD(r3, 0x40085618, &(0x7f0000000040)=0x7) (async) write(r1, &(0x7f0000000280)='#\x00\x00\x00', 0x4) 10:03:36 executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0) r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) prlimit64(r0, 0xe, &(0x7f0000000080)={0xffff, 0x9}, &(0x7f00000000c0)) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) r2 = getpid() sched_setscheduler(r2, 0x5, &(0x7f0000000380)) sched_setattr(r2, &(0x7f0000000000)={0x38, 0x5, 0x62, 0x7, 0x6, 0x800, 0x8, 0x20, 0x3, 0xc8}, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r1, 0x400455c8, 0x0) 10:03:36 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) (async) r1 = dup2(r0, r0) r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async) bind$bt_hci(r2, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6) r3 = dup2(r2, r2) write(r3, &(0x7f0000000280)="23000000010007", 0x7) (async) ioctl$VIDIOC_S_STD(r3, 0x40085618, &(0x7f0000000040)=0x7) (async) write(r1, &(0x7f0000000280)='#\x00\x00\x00', 0x4) 10:03:36 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) r1 = dup2(r0, r0) write(r1, &(0x7f0000000280)='#\x00\x00\x00', 0x4) bind$bt_hci(r0, &(0x7f00000003c0)={0x1f, 0x4, 0x4}, 0x6) r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r2, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6) r3 = dup2(r2, r2) write(r3, &(0x7f0000000280)="23000000010007", 0x7) ioctl$MEDIA_IOC_REQUEST_ALLOC(r1, 0x80047c05, &(0x7f0000000580)=0xffffffffffffffff) io_submit(0x0, 0x2, &(0x7f0000000700)=[&(0x7f0000000540)={0x0, 0x0, 0x0, 0x1, 0x400, r1, &(0x7f0000000440)="72665fb20e1d0d6a4fc979a04bbbf550b02ec3c662695c91ef48fcfc59d2d907a71fa72923abca1fcefcda44050fd112577e20aba90c1dfbb6b9502910253e58c0d895e52bc3276839afa6bd71b87d23c8f9fb71c7f464e5f94d1188bf81e900bcb9fccee0772aa6e812cf48c2c1b7a4cd4cd1e5c2161a04c54dcc71354d98475ec6fd4e5aac4c942eb3a98789972924e8467d698d52ad2ace75438bced81d8e356126e18b401240a6d201a6d7dd5b623fad007e1b36e761b137bdf58283b7d0e4298187aab8330e9ef7a8bc904e59027a3abfa7988dc65f2f1f9ba0ad0d073f934028d3c5efedfaef472647700e01b8", 0xf0, 0x80, 0x0, 0x1, r3}, &(0x7f00000006c0)={0x0, 0x0, 0x0, 0x1, 0x9, r4, &(0x7f00000005c0)="bbb285ec213c734f7145a7274c099378dbdd3a6a61e5d7273145508e07bf3f1a72fce6bdd72708af48ad000ab06893c0d27337da5791b2fbd01cc88816ebb5812e820c2616394fa1442da80fcdd847be652973d978366f6011d2daa6c46f18b8ca577b8830bf4ecda35503bcdbb0bbfbce1f6cc885996def763b118b7bdcc47f1baf72bec1c2ba9798c9f9d116f30db98f61c11ffaa97e8e19f4edd875266b49f23bf42c833ab5cd30757bc7db800064b2e423c08ddd73af4ce6eb4b562a4fd95ad1c5bf5a4ed55a0c0e76c6da3d", 0xce, 0xfffffffffffffffc, 0x0, 0x1, r1}]) r5 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000040), 0x82, 0x0) getsockopt$inet_tcp_TCP_ZEROCOPY_RECEIVE(r5, 0x6, 0x23, &(0x7f0000000200)={&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, &(0x7f0000000080)=""/181, 0xb5, 0x1, &(0x7f0000000140)=""/160, 0xa0}, &(0x7f0000000240)=0x40) r6 = accept4$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @empty}, &(0x7f0000000080)=0x10, 0x80800) sendto$inet(r6, &(0x7f0000000000)="667b84d9db7c2e5284dbd4a85a40d527d202045e6eb75abaaf474308707bd3d6985c0001757c82", 0x27, 0x4008800, &(0x7f0000000180)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x25}}, 0x10) setsockopt$inet_tcp_buf(r6, 0x6, 0xb, &(0x7f00000002c0)="5e3f4e9daf5ed75cdeab123c437301ca716702361373af1d89dc62f9ad022c3937d3195371542701ae04c8133fac1353dc1a56e84564196f3baf5d9358e1b7058f26022a37495198ec651ef1d210ac6358126b8df7c5750205c7b51c95ba314b8b02fb0179ef121bb55bbccc7c9d1a907cedf64ae8a57e1124ccd0594727510123889ecb490e5ca8b1e85c0f7b85fd1b62314fe6735708fb060eb622b990dbb304980f6681bd24756f9e982e9216013d74d7b3ab508d968827c9c06c077aca9da72bcb6cdcb1ab22e0301cd172f7ad9579", 0xd1) r7 = dup2(r6, r0) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r7, 0x6, 0x1d, &(0x7f0000000400)={0x3, 0x9, 0x3e27, 0xd1b6, 0x3ff}, 0x14) [ 1638.156228] FAULT_INJECTION: forcing a failure. [ 1638.156228] name failslab, interval 1, probability 0, space 0, times 0 10:03:36 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) r1 = dup2(r0, r0) write(r1, &(0x7f0000000280)='#\x00\x00\x00', 0x4) bind$bt_hci(r0, &(0x7f00000003c0)={0x1f, 0x4, 0x4}, 0x6) r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r2, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6) r3 = dup2(r2, r2) write(r3, &(0x7f0000000280)="23000000010007", 0x7) ioctl$MEDIA_IOC_REQUEST_ALLOC(r1, 0x80047c05, &(0x7f0000000580)=0xffffffffffffffff) io_submit(0x0, 0x2, &(0x7f0000000700)=[&(0x7f0000000540)={0x0, 0x0, 0x0, 0x1, 0x400, r1, &(0x7f0000000440)="72665fb20e1d0d6a4fc979a04bbbf550b02ec3c662695c91ef48fcfc59d2d907a71fa72923abca1fcefcda44050fd112577e20aba90c1dfbb6b9502910253e58c0d895e52bc3276839afa6bd71b87d23c8f9fb71c7f464e5f94d1188bf81e900bcb9fccee0772aa6e812cf48c2c1b7a4cd4cd1e5c2161a04c54dcc71354d98475ec6fd4e5aac4c942eb3a98789972924e8467d698d52ad2ace75438bced81d8e356126e18b401240a6d201a6d7dd5b623fad007e1b36e761b137bdf58283b7d0e4298187aab8330e9ef7a8bc904e59027a3abfa7988dc65f2f1f9ba0ad0d073f934028d3c5efedfaef472647700e01b8", 0xf0, 0x80, 0x0, 0x1, r3}, &(0x7f00000006c0)={0x0, 0x0, 0x0, 0x1, 0x9, r4, &(0x7f00000005c0)="bbb285ec213c734f7145a7274c099378dbdd3a6a61e5d7273145508e07bf3f1a72fce6bdd72708af48ad000ab06893c0d27337da5791b2fbd01cc88816ebb5812e820c2616394fa1442da80fcdd847be652973d978366f6011d2daa6c46f18b8ca577b8830bf4ecda35503bcdbb0bbfbce1f6cc885996def763b118b7bdcc47f1baf72bec1c2ba9798c9f9d116f30db98f61c11ffaa97e8e19f4edd875266b49f23bf42c833ab5cd30757bc7db800064b2e423c08ddd73af4ce6eb4b562a4fd95ad1c5bf5a4ed55a0c0e76c6da3d", 0xce, 0xfffffffffffffffc, 0x0, 0x1, r1}]) r5 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000040), 0x82, 0x0) getsockopt$inet_tcp_TCP_ZEROCOPY_RECEIVE(r5, 0x6, 0x23, &(0x7f0000000200)={&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, &(0x7f0000000080)=""/181, 0xb5, 0x1, &(0x7f0000000140)=""/160, 0xa0}, &(0x7f0000000240)=0x40) r6 = accept4$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @empty}, &(0x7f0000000080)=0x10, 0x80800) sendto$inet(r6, &(0x7f0000000000)="667b84d9db7c2e5284dbd4a85a40d527d202045e6eb75abaaf474308707bd3d6985c0001757c82", 0x27, 0x4008800, &(0x7f0000000180)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x25}}, 0x10) setsockopt$inet_tcp_buf(r6, 0x6, 0xb, &(0x7f00000002c0)="5e3f4e9daf5ed75cdeab123c437301ca716702361373af1d89dc62f9ad022c3937d3195371542701ae04c8133fac1353dc1a56e84564196f3baf5d9358e1b7058f26022a37495198ec651ef1d210ac6358126b8df7c5750205c7b51c95ba314b8b02fb0179ef121bb55bbccc7c9d1a907cedf64ae8a57e1124ccd0594727510123889ecb490e5ca8b1e85c0f7b85fd1b62314fe6735708fb060eb622b990dbb304980f6681bd24756f9e982e9216013d74d7b3ab508d968827c9c06c077aca9da72bcb6cdcb1ab22e0301cd172f7ad9579", 0xd1) r7 = dup2(r6, r0) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r7, 0x6, 0x1d, &(0x7f0000000400)={0x3, 0x9, 0x3e27, 0xd1b6, 0x3ff}, 0x14) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) (async) dup2(r0, r0) (async) write(r1, &(0x7f0000000280)='#\x00\x00\x00', 0x4) (async) bind$bt_hci(r0, &(0x7f00000003c0)={0x1f, 0x4, 0x4}, 0x6) (async) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async) bind$bt_hci(r2, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6) (async) dup2(r2, r2) (async) write(r3, &(0x7f0000000280)="23000000010007", 0x7) (async) ioctl$MEDIA_IOC_REQUEST_ALLOC(r1, 0x80047c05, &(0x7f0000000580)) (async) io_submit(0x0, 0x2, &(0x7f0000000700)=[&(0x7f0000000540)={0x0, 0x0, 0x0, 0x1, 0x400, r1, &(0x7f0000000440)="72665fb20e1d0d6a4fc979a04bbbf550b02ec3c662695c91ef48fcfc59d2d907a71fa72923abca1fcefcda44050fd112577e20aba90c1dfbb6b9502910253e58c0d895e52bc3276839afa6bd71b87d23c8f9fb71c7f464e5f94d1188bf81e900bcb9fccee0772aa6e812cf48c2c1b7a4cd4cd1e5c2161a04c54dcc71354d98475ec6fd4e5aac4c942eb3a98789972924e8467d698d52ad2ace75438bced81d8e356126e18b401240a6d201a6d7dd5b623fad007e1b36e761b137bdf58283b7d0e4298187aab8330e9ef7a8bc904e59027a3abfa7988dc65f2f1f9ba0ad0d073f934028d3c5efedfaef472647700e01b8", 0xf0, 0x80, 0x0, 0x1, r3}, &(0x7f00000006c0)={0x0, 0x0, 0x0, 0x1, 0x9, r4, &(0x7f00000005c0)="bbb285ec213c734f7145a7274c099378dbdd3a6a61e5d7273145508e07bf3f1a72fce6bdd72708af48ad000ab06893c0d27337da5791b2fbd01cc88816ebb5812e820c2616394fa1442da80fcdd847be652973d978366f6011d2daa6c46f18b8ca577b8830bf4ecda35503bcdbb0bbfbce1f6cc885996def763b118b7bdcc47f1baf72bec1c2ba9798c9f9d116f30db98f61c11ffaa97e8e19f4edd875266b49f23bf42c833ab5cd30757bc7db800064b2e423c08ddd73af4ce6eb4b562a4fd95ad1c5bf5a4ed55a0c0e76c6da3d", 0xce, 0xfffffffffffffffc, 0x0, 0x1, r1}]) (async) openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000040), 0x82, 0x0) (async) getsockopt$inet_tcp_TCP_ZEROCOPY_RECEIVE(r5, 0x6, 0x23, &(0x7f0000000200)={&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, &(0x7f0000000080)=""/181, 0xb5, 0x1, &(0x7f0000000140)=""/160, 0xa0}, &(0x7f0000000240)=0x40) (async) accept4$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @empty}, &(0x7f0000000080)=0x10, 0x80800) (async) sendto$inet(r6, &(0x7f0000000000)="667b84d9db7c2e5284dbd4a85a40d527d202045e6eb75abaaf474308707bd3d6985c0001757c82", 0x27, 0x4008800, &(0x7f0000000180)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x25}}, 0x10) (async) setsockopt$inet_tcp_buf(r6, 0x6, 0xb, &(0x7f00000002c0)="5e3f4e9daf5ed75cdeab123c437301ca716702361373af1d89dc62f9ad022c3937d3195371542701ae04c8133fac1353dc1a56e84564196f3baf5d9358e1b7058f26022a37495198ec651ef1d210ac6358126b8df7c5750205c7b51c95ba314b8b02fb0179ef121bb55bbccc7c9d1a907cedf64ae8a57e1124ccd0594727510123889ecb490e5ca8b1e85c0f7b85fd1b62314fe6735708fb060eb622b990dbb304980f6681bd24756f9e982e9216013d74d7b3ab508d968827c9c06c077aca9da72bcb6cdcb1ab22e0301cd172f7ad9579", 0xd1) (async) dup2(r6, r0) (async) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r7, 0x6, 0x1d, &(0x7f0000000400)={0x3, 0x9, 0x3e27, 0xd1b6, 0x3ff}, 0x14) (async) [ 1638.209656] CPU: 1 PID: 22338 Comm: syz-executor.0 Not tainted 4.14.262-syzkaller #0 [ 1638.217574] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1638.226945] Call Trace: [ 1638.229542] dump_stack+0x1b2/0x281 [ 1638.233182] should_fail.cold+0x10a/0x149 [ 1638.237360] should_failslab+0xd6/0x130 [ 1638.241354] __kmalloc_track_caller+0x2bc/0x400 [ 1638.246026] ? kstrdup_const+0x35/0x60 [ 1638.249923] kstrdup+0x36/0x70 [ 1638.253115] kstrdup_const+0x35/0x60 [ 1638.256829] __kernfs_new_node+0x2e/0x470 [ 1638.260982] kernfs_new_node+0x7b/0xe0 [ 1638.264865] kernfs_create_link+0x27/0x160 [ 1638.269088] sysfs_do_create_link_sd+0x90/0x120 [ 1638.273745] sysfs_create_link+0x5f/0xc0 [ 1638.277793] device_add+0x749/0x15c0 [ 1638.281500] ? device_is_dependent+0x2a0/0x2a0 [ 1638.286068] rfkill_register+0x18e/0xab0 [ 1638.290121] hci_register_dev+0x359/0x8f0 [ 1638.294272] hci_uart_tty_ioctl+0x6d1/0xa60 [ 1638.298586] tty_ioctl+0x5af/0x1430 [ 1638.302309] ? hci_uart_tty_receive+0x4c0/0x4c0 [ 1638.306972] ? tty_fasync+0x2c0/0x2c0 [ 1638.310775] ? proc_fail_nth_write+0x7b/0x180 [ 1638.315280] ? trace_hardirqs_on+0x10/0x10 [ 1638.319507] ? fsnotify+0x974/0x11b0 [ 1638.323209] ? proc_tgid_io_accounting+0x7a0/0x7a0 [ 1638.328128] ? __handle_mm_fault+0x80f/0x4620 [ 1638.332611] ? SyS_write+0x1b7/0x210 [ 1638.336313] ? tty_fasync+0x2c0/0x2c0 [ 1638.340104] do_vfs_ioctl+0x75a/0xff0 [ 1638.343918] ? lock_acquire+0x170/0x3f0 [ 1638.347889] ? ioctl_preallocate+0x1a0/0x1a0 [ 1638.352282] ? __fget+0x2df/0x460 [ 1638.355771] ? do_vfs_ioctl+0xff0/0xff0 [ 1638.359734] ? security_file_ioctl+0x83/0xb0 [ 1638.364137] SyS_ioctl+0x7f/0xb0 [ 1638.367491] ? do_vfs_ioctl+0xff0/0xff0 [ 1638.371451] do_syscall_64+0x1d5/0x640 [ 1638.375328] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1638.380586] RIP: 0033:0x7fbb944a7fe9 [ 1638.384286] RSP: 002b:00007fbb92e1d168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1638.391986] RAX: ffffffffffffffda RBX: 00007fbb945baf60 RCX: 00007fbb944a7fe9 [ 1638.399431] RDX: 0000000000000000 RSI: 00000000400455c8 RDI: 0000000000000003 [ 1638.406698] RBP: 00007fbb92e1d1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1638.413968] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1638.421237] R13: 00007ffc96d7392f R14: 00007fbb92e1d300 R15: 0000000000022000 [ 1638.444185] Bluetooth: hci7 command 0x1001 tx timeout [ 1638.449556] Bluetooth: hci7 sending frame failed (-49) [ 1638.463630] Bluetooth: hci9: Frame reassembly failed (-84) [ 1638.465847] Bluetooth: hci10: Frame reassembly failed (-84) [ 1639.559929] Bluetooth: hci6 command 0x1003 tx timeout [ 1639.565259] Bluetooth: hci6 sending frame failed (-49) [ 1639.799904] Bluetooth: hci8 command 0x1003 tx timeout [ 1639.805230] Bluetooth: hci8 sending frame failed (-49) [ 1640.519907] Bluetooth: hci10 command 0x1003 tx timeout [ 1640.519911] Bluetooth: hci7 command 0x1009 tx timeout [ 1640.530521] Bluetooth: hci9 command 0x1003 tx timeout [ 1640.530562] Bluetooth: hci10 sending frame failed (-49) [ 1640.541332] Bluetooth: hci9 sending frame failed (-49) [ 1641.639884] Bluetooth: hci6 command 0x1001 tx timeout [ 1641.645200] Bluetooth: hci6 sending frame failed (-49) [ 1641.879830] Bluetooth: hci8 command 0x1001 tx timeout [ 1641.885166] Bluetooth: hci8 sending frame failed (-49) [ 1642.599840] Bluetooth: hci9 command 0x1001 tx timeout [ 1642.599855] Bluetooth: hci10 command 0x1001 tx timeout [ 1642.605173] Bluetooth: hci9 sending frame failed (-49) [ 1642.611566] Bluetooth: hci10 sending frame failed (-49) [ 1643.719790] Bluetooth: hci6 command 0x1009 tx timeout [ 1643.959753] Bluetooth: hci8 command 0x1009 tx timeout 10:03:42 executing program 5: prlimit64(0x0, 0xe, &(0x7f0000000280), 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0xffffffffffff0162) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000074, 0x25d) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe1}]}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) setsockopt$sock_int(r1, 0x1, 0x21, &(0x7f0000000600)=0xda9, 0x4) sendto$inet(r1, &(0x7f0000000640)="febc3b777d549ffacdd9ee6633af6e737f2e6d654105f04716908ec7af8775d530c2cc83e31b3f3c7f9e351ba553af429ff9367031b7ec0aed61ea15d08f299f9241acf82356d0859eb45aec582cd03d4cdbdcd6755c166133d9ba85529c0ed8913418402ba7d907115e75", 0x6b, 0x4000081, 0x0, 0x0) sendto$inet(r1, &(0x7f00000012c0)="e1158a927f1f6588b927481241ba7860f46ef65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a97425a3a07e758044ab0ea6f7ae55d88fecf9221a750fbf746bec66ba", 0xfe6a, 0xe, 0x0, 0xfffffffffffffe2b) fcntl$setpipe(r1, 0x407, 0x7fffffff) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x4) 10:03:42 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) r1 = dup2(r0, r0) write(r1, &(0x7f0000000280)='#\x00\x00\x00', 0x4) bind$bt_hci(r0, &(0x7f00000003c0)={0x1f, 0x4, 0x4}, 0x6) r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r2, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6) r3 = dup2(r2, r2) write(r3, &(0x7f0000000280)="23000000010007", 0x7) ioctl$MEDIA_IOC_REQUEST_ALLOC(r1, 0x80047c05, &(0x7f0000000580)=0xffffffffffffffff) io_submit(0x0, 0x2, &(0x7f0000000700)=[&(0x7f0000000540)={0x0, 0x0, 0x0, 0x1, 0x400, r1, &(0x7f0000000440)="72665fb20e1d0d6a4fc979a04bbbf550b02ec3c662695c91ef48fcfc59d2d907a71fa72923abca1fcefcda44050fd112577e20aba90c1dfbb6b9502910253e58c0d895e52bc3276839afa6bd71b87d23c8f9fb71c7f464e5f94d1188bf81e900bcb9fccee0772aa6e812cf48c2c1b7a4cd4cd1e5c2161a04c54dcc71354d98475ec6fd4e5aac4c942eb3a98789972924e8467d698d52ad2ace75438bced81d8e356126e18b401240a6d201a6d7dd5b623fad007e1b36e761b137bdf58283b7d0e4298187aab8330e9ef7a8bc904e59027a3abfa7988dc65f2f1f9ba0ad0d073f934028d3c5efedfaef472647700e01b8", 0xf0, 0x80, 0x0, 0x1, r3}, &(0x7f00000006c0)={0x0, 0x0, 0x0, 0x1, 0x9, r4, &(0x7f00000005c0)="bbb285ec213c734f7145a7274c099378dbdd3a6a61e5d7273145508e07bf3f1a72fce6bdd72708af48ad000ab06893c0d27337da5791b2fbd01cc88816ebb5812e820c2616394fa1442da80fcdd847be652973d978366f6011d2daa6c46f18b8ca577b8830bf4ecda35503bcdbb0bbfbce1f6cc885996def763b118b7bdcc47f1baf72bec1c2ba9798c9f9d116f30db98f61c11ffaa97e8e19f4edd875266b49f23bf42c833ab5cd30757bc7db800064b2e423c08ddd73af4ce6eb4b562a4fd95ad1c5bf5a4ed55a0c0e76c6da3d", 0xce, 0xfffffffffffffffc, 0x0, 0x1, r1}]) r5 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000040), 0x82, 0x0) getsockopt$inet_tcp_TCP_ZEROCOPY_RECEIVE(r5, 0x6, 0x23, &(0x7f0000000200)={&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, &(0x7f0000000080)=""/181, 0xb5, 0x1, &(0x7f0000000140)=""/160, 0xa0}, &(0x7f0000000240)=0x40) r6 = accept4$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @empty}, &(0x7f0000000080)=0x10, 0x80800) sendto$inet(r6, &(0x7f0000000000)="667b84d9db7c2e5284dbd4a85a40d527d202045e6eb75abaaf474308707bd3d6985c0001757c82", 0x27, 0x4008800, &(0x7f0000000180)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x25}}, 0x10) setsockopt$inet_tcp_buf(r6, 0x6, 0xb, &(0x7f00000002c0)="5e3f4e9daf5ed75cdeab123c437301ca716702361373af1d89dc62f9ad022c3937d3195371542701ae04c8133fac1353dc1a56e84564196f3baf5d9358e1b7058f26022a37495198ec651ef1d210ac6358126b8df7c5750205c7b51c95ba314b8b02fb0179ef121bb55bbccc7c9d1a907cedf64ae8a57e1124ccd0594727510123889ecb490e5ca8b1e85c0f7b85fd1b62314fe6735708fb060eb622b990dbb304980f6681bd24756f9e982e9216013d74d7b3ab508d968827c9c06c077aca9da72bcb6cdcb1ab22e0301cd172f7ad9579", 0xd1) r7 = dup2(r6, r0) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r7, 0x6, 0x1d, &(0x7f0000000400)={0x3, 0x9, 0x3e27, 0xd1b6, 0x3ff}, 0x14) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) (async) dup2(r0, r0) (async) write(r1, &(0x7f0000000280)='#\x00\x00\x00', 0x4) (async) bind$bt_hci(r0, &(0x7f00000003c0)={0x1f, 0x4, 0x4}, 0x6) (async) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async) bind$bt_hci(r2, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6) (async) dup2(r2, r2) (async) write(r3, &(0x7f0000000280)="23000000010007", 0x7) (async) ioctl$MEDIA_IOC_REQUEST_ALLOC(r1, 0x80047c05, &(0x7f0000000580)) (async) io_submit(0x0, 0x2, &(0x7f0000000700)=[&(0x7f0000000540)={0x0, 0x0, 0x0, 0x1, 0x400, r1, &(0x7f0000000440)="72665fb20e1d0d6a4fc979a04bbbf550b02ec3c662695c91ef48fcfc59d2d907a71fa72923abca1fcefcda44050fd112577e20aba90c1dfbb6b9502910253e58c0d895e52bc3276839afa6bd71b87d23c8f9fb71c7f464e5f94d1188bf81e900bcb9fccee0772aa6e812cf48c2c1b7a4cd4cd1e5c2161a04c54dcc71354d98475ec6fd4e5aac4c942eb3a98789972924e8467d698d52ad2ace75438bced81d8e356126e18b401240a6d201a6d7dd5b623fad007e1b36e761b137bdf58283b7d0e4298187aab8330e9ef7a8bc904e59027a3abfa7988dc65f2f1f9ba0ad0d073f934028d3c5efedfaef472647700e01b8", 0xf0, 0x80, 0x0, 0x1, r3}, &(0x7f00000006c0)={0x0, 0x0, 0x0, 0x1, 0x9, r4, &(0x7f00000005c0)="bbb285ec213c734f7145a7274c099378dbdd3a6a61e5d7273145508e07bf3f1a72fce6bdd72708af48ad000ab06893c0d27337da5791b2fbd01cc88816ebb5812e820c2616394fa1442da80fcdd847be652973d978366f6011d2daa6c46f18b8ca577b8830bf4ecda35503bcdbb0bbfbce1f6cc885996def763b118b7bdcc47f1baf72bec1c2ba9798c9f9d116f30db98f61c11ffaa97e8e19f4edd875266b49f23bf42c833ab5cd30757bc7db800064b2e423c08ddd73af4ce6eb4b562a4fd95ad1c5bf5a4ed55a0c0e76c6da3d", 0xce, 0xfffffffffffffffc, 0x0, 0x1, r1}]) (async) openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000040), 0x82, 0x0) (async) getsockopt$inet_tcp_TCP_ZEROCOPY_RECEIVE(r5, 0x6, 0x23, &(0x7f0000000200)={&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, &(0x7f0000000080)=""/181, 0xb5, 0x1, &(0x7f0000000140)=""/160, 0xa0}, &(0x7f0000000240)=0x40) (async) accept4$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @empty}, &(0x7f0000000080)=0x10, 0x80800) (async) sendto$inet(r6, &(0x7f0000000000)="667b84d9db7c2e5284dbd4a85a40d527d202045e6eb75abaaf474308707bd3d6985c0001757c82", 0x27, 0x4008800, &(0x7f0000000180)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x25}}, 0x10) (async) setsockopt$inet_tcp_buf(r6, 0x6, 0xb, &(0x7f00000002c0)="5e3f4e9daf5ed75cdeab123c437301ca716702361373af1d89dc62f9ad022c3937d3195371542701ae04c8133fac1353dc1a56e84564196f3baf5d9358e1b7058f26022a37495198ec651ef1d210ac6358126b8df7c5750205c7b51c95ba314b8b02fb0179ef121bb55bbccc7c9d1a907cedf64ae8a57e1124ccd0594727510123889ecb490e5ca8b1e85c0f7b85fd1b62314fe6735708fb060eb622b990dbb304980f6681bd24756f9e982e9216013d74d7b3ab508d968827c9c06c077aca9da72bcb6cdcb1ab22e0301cd172f7ad9579", 0xd1) (async) dup2(r6, r0) (async) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r7, 0x6, 0x1d, &(0x7f0000000400)={0x3, 0x9, 0x3e27, 0xd1b6, 0x3ff}, 0x14) (async) [ 1644.679703] Bluetooth: hci9 command 0x1009 tx timeout [ 1644.685457] Bluetooth: hci10 command 0x1009 tx timeout [ 1644.692327] Bluetooth: Unknown HCI packet type 5e [ 1644.697185] Bluetooth: Unknown HCI packet type 43 [ 1644.703681] Bluetooth: Unknown HCI packet type 5e [ 1644.712381] Bluetooth: Unknown HCI packet type 50 [ 1644.717303] Bluetooth: Unknown HCI packet type 5e [ 1644.724004] Bluetooth: Unknown HCI packet type 40 [ 1646.759605] Bluetooth: hci7 command 0x1003 tx timeout [ 1646.764901] Bluetooth: hci7 sending frame failed (-49) 10:03:46 executing program 3: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x0) (fail_nth: 71) 10:03:46 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) r1 = dup2(r0, r0) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) write(r1, &(0x7f0000000280)='#\x00\x00\x00', 0x4) 10:03:46 executing program 4: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) (async) ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000000000)=0x0) sched_setattr(r0, &(0x7f0000000080)={0x38, 0x3, 0x0, 0x7, 0x7, 0xffff, 0x400, 0x6, 0x1, 0x81}, 0x0) (async, rerun: 64) sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0) (rerun: 64) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r1, 0x400455c8, 0x0) (async) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000100)={&(0x7f00000001c0)=@getqdisc={0x4c, 0x26, 0x20, 0x70bd2d, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, {0x5, 0x3}, {0xa, 0x4}, {0xc, 0x8}}, [{0x4}, {0x4}, {0x4}, {0x4}, {0x4}, {0x4}, {0x4}, {0x4}, {0x4}, {0x4}]}, 0x4c}, 0x1, 0x0, 0x0, 0x8004}, 0x0) 10:03:46 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) r1 = dup2(r0, r0) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) write(r1, &(0x7f0000000280)='#\x00\x00\x00', 0x4) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) (async) dup2(r0, r0) (async) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async) write(r1, &(0x7f0000000280)='#\x00\x00\x00', 0x4) (async) [ 1648.407396] FAULT_INJECTION: forcing a failure. [ 1648.407396] name failslab, interval 1, probability 0, space 0, times 0 [ 1648.418712] CPU: 1 PID: 22434 Comm: syz-executor.3 Not tainted 4.14.262-syzkaller #0 [ 1648.426601] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1648.435958] Call Trace: [ 1648.438560] dump_stack+0x1b2/0x281 [ 1648.442195] should_fail.cold+0x10a/0x149 [ 1648.446353] should_failslab+0xd6/0x130 [ 1648.450340] kmem_cache_alloc+0x28e/0x3c0 [ 1648.454497] __kernfs_new_node+0x6f/0x470 [ 1648.458656] kernfs_new_node+0x7b/0xe0 [ 1648.462549] __kernfs_create_file+0x3d/0x320 [ 1648.466961] sysfs_add_file_mode_ns+0x1e1/0x450 [ 1648.471648] sysfs_merge_group+0xdc/0x200 [ 1648.475810] dpm_sysfs_add+0x122/0x1c0 [ 1648.479721] device_add+0x977/0x15c0 [ 1648.483450] ? device_is_dependent+0x2a0/0x2a0 [ 1648.488049] rfkill_register+0x18e/0xab0 [ 1648.492127] hci_register_dev+0x359/0x8f0 [ 1648.496382] hci_uart_tty_ioctl+0x6d1/0xa60 [ 1648.501039] tty_ioctl+0x5af/0x1430 [ 1648.504674] ? hci_uart_tty_receive+0x4c0/0x4c0 [ 1648.509358] ? tty_fasync+0x2c0/0x2c0 [ 1648.513263] ? proc_fail_nth_write+0x7b/0x180 [ 1648.517743] ? trace_hardirqs_on+0x10/0x10 [ 1648.521969] ? fsnotify+0x974/0x11b0 [ 1648.525668] ? proc_tgid_io_accounting+0x7a0/0x7a0 [ 1648.530580] ? __handle_mm_fault+0x80f/0x4620 [ 1648.535062] ? SyS_write+0x1b7/0x210 [ 1648.538763] ? tty_fasync+0x2c0/0x2c0 [ 1648.542560] do_vfs_ioctl+0x75a/0xff0 [ 1648.546352] ? lock_acquire+0x170/0x3f0 [ 1648.550323] ? ioctl_preallocate+0x1a0/0x1a0 [ 1648.554723] ? __fget+0x2df/0x460 [ 1648.558164] ? do_vfs_ioctl+0xff0/0xff0 [ 1648.562128] ? security_file_ioctl+0x83/0xb0 [ 1648.566535] SyS_ioctl+0x7f/0xb0 [ 1648.569895] ? do_vfs_ioctl+0xff0/0xff0 [ 1648.573864] do_syscall_64+0x1d5/0x640 [ 1648.577740] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1648.582922] RIP: 0033:0x7fa331314fe9 [ 1648.586621] RSP: 002b:00007fa32fc8a168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1648.594307] RAX: ffffffffffffffda RBX: 00007fa331427f60 RCX: 00007fa331314fe9 [ 1648.601559] RDX: 0000000000000000 RSI: 00000000400455c8 RDI: 0000000000000003 [ 1648.608808] RBP: 00007fa32fc8a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1648.616056] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1648.623383] R13: 00007ffe09471b3f R14: 00007fa32fc8a300 R15: 0000000000022000 [ 1648.640232] Bluetooth: hci8: Frame reassembly failed (-84) [ 1648.839491] Bluetooth: hci7 command 0x1001 tx timeout [ 1648.844798] Bluetooth: hci7 sending frame failed (-49) 10:03:46 executing program 0: prlimit64(0x0, 0x0, 0x0, 0x0) sched_setattr(0x0, 0x0, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x0) (fail_nth: 61) 10:03:46 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) (async, rerun: 32) r1 = dup2(r0, r0) (rerun: 32) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async) write(r1, &(0x7f0000000280)='#\x00\x00\x00', 0x4) [ 1649.027918] FAULT_INJECTION: forcing a failure. [ 1649.027918] name failslab, interval 1, probability 0, space 0, times 0 [ 1649.055944] CPU: 1 PID: 22458 Comm: syz-executor.0 Not tainted 4.14.262-syzkaller #0 [ 1649.063859] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1649.073218] Call Trace: [ 1649.075818] dump_stack+0x1b2/0x281 [ 1649.079559] should_fail.cold+0x10a/0x149 [ 1649.083722] should_failslab+0xd6/0x130 [ 1649.087724] kmem_cache_alloc+0x28e/0x3c0 [ 1649.091884] __kernfs_new_node+0x6f/0x470 [ 1649.096052] kernfs_new_node+0x7b/0xe0 [ 1649.099950] __kernfs_create_file+0x3d/0x320 [ 1649.104372] sysfs_add_file_mode_ns+0x1e1/0x450 [ 1649.109059] internal_create_group+0x22b/0x710 [ 1649.113658] sysfs_create_groups+0x92/0x130 [ 1649.117991] device_add+0x7e5/0x15c0 [ 1649.121722] ? device_is_dependent+0x2a0/0x2a0 [ 1649.126322] rfkill_register+0x18e/0xab0 [ 1649.130404] hci_register_dev+0x359/0x8f0 [ 1649.134583] hci_uart_tty_ioctl+0x6d1/0xa60 [ 1649.138917] tty_ioctl+0x5af/0x1430 [ 1649.142553] ? hci_uart_tty_receive+0x4c0/0x4c0 [ 1649.147234] ? tty_fasync+0x2c0/0x2c0 [ 1649.151058] ? proc_fail_nth_write+0x7b/0x180 [ 1649.155570] ? trace_hardirqs_on+0x10/0x10 [ 1649.159823] ? fsnotify+0x974/0x11b0 [ 1649.163547] ? proc_tgid_io_accounting+0x7a0/0x7a0 [ 1649.168488] ? __handle_mm_fault+0x80f/0x4620 [ 1649.172998] ? SyS_write+0x1b7/0x210 [ 1649.176724] ? tty_fasync+0x2c0/0x2c0 [ 1649.180533] do_vfs_ioctl+0x75a/0xff0 [ 1649.184369] ? lock_acquire+0x170/0x3f0 [ 1649.188353] ? ioctl_preallocate+0x1a0/0x1a0 [ 1649.192776] ? __fget+0x2df/0x460 [ 1649.196245] ? do_vfs_ioctl+0xff0/0xff0 [ 1649.200232] ? security_file_ioctl+0x83/0xb0 [ 1649.204649] SyS_ioctl+0x7f/0xb0 [ 1649.208022] ? do_vfs_ioctl+0xff0/0xff0 [ 1649.212008] do_syscall_64+0x1d5/0x640 [ 1649.215913] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1649.221108] RIP: 0033:0x7fbb944a7fe9 [ 1649.224826] RSP: 002b:00007fbb92e1d168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1649.232549] RAX: ffffffffffffffda RBX: 00007fbb945baf60 RCX: 00007fbb944a7fe9 [ 1649.240113] RDX: 0000000000000000 RSI: 00000000400455c8 RDI: 0000000000000003 [ 1649.247425] RBP: 00007fbb92e1d1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1649.254702] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1649.261983] R13: 00007ffc96d7392f R14: 00007fbb92e1d300 R15: 0000000000022000 10:03:47 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x0) ioctl$KDADDIO(r0, 0x400455c8, 0x0) (fail_nth: 1) [ 1649.304775] Bluetooth: hci9: Frame reassembly failed (-84) [ 1649.337606] Bluetooth: hci10: Frame reassembly failed (-84) [ 1649.348745] Bluetooth: hci10: Frame reassembly failed (-84) [ 1650.439322] Bluetooth: hci6 command 0x1003 tx timeout [ 1650.444618] Bluetooth: hci6 sending frame failed (-49) [ 1650.679285] Bluetooth: hci8 command 0x1003 tx timeout [ 1650.684584] Bluetooth: hci8 sending frame failed (-49) 10:03:48 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) r1 = dup2(r0, r0) write(r1, &(0x7f0000000280)='#\x00\x00\x00', 0x4) ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(0xffffffffffffffff, 0xc0c89425, &(0x7f0000000780)={"02d47cbcc70d73f63265f0ace7539e4b", 0x0, 0x0, {0x4}, {0x0, 0x7}, 0x0, [0x1, 0x0, 0x3, 0x7, 0x1c6e98ca, 0x3, 0x400, 0x9, 0x8, 0x7, 0x8, 0xffffffffffffff52, 0x5a43, 0x2, 0x10001]}) ioctl$BTRFS_IOC_SNAP_CREATE_V2(0xffffffffffffffff, 0x50009417, &(0x7f0000001800)={{}, r2, 0x8, @inherit={0x58, &(0x7f0000000500)={0x1, 0x2, 0x20, 0x3, {0x4, 0x0, 0x1, 0x7, 0x7}, [0x1, 0x80000001]}}, @devid}) sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000240)=0x208, 0x9) r3 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000001700), 0xffffffffffffffff) sendmsg$NLBL_UNLABEL_C_STATICADD(0xffffffffffffffff, &(0x7f00000017c0)={&(0x7f00000016c0)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000001780)={&(0x7f0000000cc0)=ANY=[@ANYRESDEC, @ANYRES16=r3, @ANYBLOB="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", @ANYRESOCT], 0x1c}, 0x1, 0x0, 0x0, 0x8}, 0x20008004) sendmsg$NLBL_UNLABEL_C_LIST(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000200)={&(0x7f0000000f00)=ANY=[@ANYRES32, @ANYRES16=r3, @ANYBLOB="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", @ANYRESHEX], 0x100}, 0x1, 0x0, 0x0, 0x8000}, 0x1) r4 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x2000}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001440)={0x0, 0x80, 0x2, 0xb1, 0x7, 0x6, 0x0, 0x6, 0x80200, 0xb, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x4, @perf_config_ext={0x8, 0xffffffff000000}, 0x334, 0xf0b375d, 0x2, 0x5, 0x35a6d2c1, 0x1000, 0x0, 0x0, 0x8, 0x0, 0x4}, 0xffffffffffffffff, 0xe, r4, 0x3) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f00000015c0)={0x0, ""/256, 0x0, 0x0, 0x0, 0x0, ""/16, ""/16, ""/16, 0x0, 0x0, 0x0, 0x0}) ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(0xffffffffffffffff, 0x50009418, &(0x7f0000000400)={{}, r6, 0x14, @inherit={0x88, &(0x7f0000001580)=ANY=[@ANYRES16=r7]}, @devid}) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r4, 0x84009422, &(0x7f0000001ec0)={0x0, 0x0, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @usage, 0x0}}) socketpair(0x1, 0x20000000000001, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_SET_FILTER(r9, 0x8914, &(0x7f0000000040)='lo\x00\x96o\xd6Q\xb9Y\xa9\xc8J,\x00\xd2\x97\x04\x03\xdc\r') ioctl$PERF_EVENT_IOC_SET_FILTER(r9, 0x8923, &(0x7f0000000680)='lo\x00\x96o8\x0fd\xa1\xe3\xd7]b}\x1f\xa1Y\xad4\x90\x9d`\xd2\x98\x00\x00\x00 \'Y\x17]\x15c\xcaR\xdd\x98OC\x89\x1b\xe7\x84\xe2\x05\x80w\xd2|D\x8dK\x14Bx\xcbuH\xc2\xeec\xbf<>Y\x1a\xfc\x1f9OB\x81\x89\x186\xc5q@n\xb4\xb6s\xb0\x00\x00\x00\x00\x00\b\x00\x00\xda\xef\xecE\xec\xd5I\xb2\x9b\xfe\x8d\x90?\x00\xe9\xe4~g:\xc1\xb2aj\x96\xbb\xa7\xe2\xc0\xdc\xf9Q\b\xeb\x16\x7fT\x11\xd3\r7\xe6\"f\xcf\x8e\xabd\x0ftp\x82\xae\xd2\x15\x8e+c\xf6\xbf\xe14>\xa6-\xa5c\xde\xd7\xab\xea\x1f\xf8s2\x9cVF\xd5\x18\xfe\x0e\x8f \x01\x00\x00y.\xfc*\x82\xa5\xa1p5\xc8{\xf7\xef\xab\xe8\x99\xebw#\x8at\x1c\x80\xfc\xb0\x95\xa2\xa7\xd7,Y]E8\x83X\xf5F\xdc\x88-\xf5\xb0\xb5^\xdb\x1a\xb6\xaa\x14\xe2\xb9\rh^J-\xd1\xbaUn\x04\'l\x1b\xe0o\xdb\xc8\x91%\x1c\xb5\xbf\xb6\x90\xb4\xc2\x7f]/\xb3\xe7\xc9\'\x94\xcfIo\xdf\x04\x95\xb5\x06\x84\x1fH>\xda\xc5\x04 \x94\x88\xeb\'\xd4;6\x7f\xd9\x99-\x1b|G\x8d\xd4\xb9%\xaaQ\xa0K\x10\x03\x93\xe1\xcc\xe7m\x80\'\xf0\xa5\xed(\r\xa8\x0f&\xb1\xf3\xff0\f\x82%_\x92\x8bD\xb9\xd9\xe7\xf2\xe4\xc1i#\xdc\x87A\xb9\xc7\r\x92\xfa\x11\x11\xb5\x1f\x03\x9d\xdd\x1bj\xdf\xacg\xe3\xa0S\xd3\x8a\xe1n\x97\xea\xf5\xa0\'\v\xe9\xa0\xf1 f\xaan\xcf\xb5i\xb6d\xbc\x92\v\xd58\x16\b\xb3_:\xa4!\ny\xc4&\nWMM\xa8\xc4\v\x9f\x01o\xf4\xab&\xb6\x17\x02P\xc3!N\xa1\x86\"\xd7\x04\xf1\xc0!\xed\xff\xee$\xc89\x8cB0\xd1dD\xe0IP\x88\xa2\xf2Y\x9af$$\xf1\x81\x96\xf7P\xac\xca\x80:!\xb4\x94#\xcb^\x9f\'\x03\xe3\x93\xb9\x82\xbf\xcf\xc4\xe3\xf7\x03Oh\xf2r\xca\x8ff\xbb/\x9f*\xaf\x1a \xa5\xa0?%M\xa5\x86\x98\xfa4\'1\xc7\f<\xcc@\xe8\x8a\xac.\xde\xe4\xc7\xf5\x9ck\xa40!\xe9\x14$\xb3\x05m\xb5m\xed\ft\x93\xd8\xa3\x80\'Y\xb9\x05\xbbt|\xbe\xbcz\n\xf3\xf5p\xf8\x9f~\x1b\xd0\v\x1cQ') sendmsg$NLBL_CIPSOV4_C_REMOVE(r9, &(0x7f0000001400)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000200)={&(0x7f0000001840)=ANY=[@ANYRES32=r8, @ANYRES32=r7, @ANYRESOCT, @ANYRES32=r5, @ANYRES32, @ANYRES64, @ANYRESHEX], 0x3}, 0x1, 0x0, 0x0, 0x4}, 0x40025) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r1, 0xd000943d, &(0x7f000005c5c0)={0x1, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r5}], 0xfa, "4cd8cfe39cadf3"}) 10:03:48 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) (async) r1 = dup2(r0, r0) write(r1, &(0x7f0000000280)='#\x00\x00\x00', 0x4) ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(0xffffffffffffffff, 0xc0c89425, &(0x7f0000000780)={"02d47cbcc70d73f63265f0ace7539e4b", 0x0, 0x0, {0x4}, {0x0, 0x7}, 0x0, [0x1, 0x0, 0x3, 0x7, 0x1c6e98ca, 0x3, 0x400, 0x9, 0x8, 0x7, 0x8, 0xffffffffffffff52, 0x5a43, 0x2, 0x10001]}) ioctl$BTRFS_IOC_SNAP_CREATE_V2(0xffffffffffffffff, 0x50009417, &(0x7f0000001800)={{}, r2, 0x8, @inherit={0x58, &(0x7f0000000500)={0x1, 0x2, 0x20, 0x3, {0x4, 0x0, 0x1, 0x7, 0x7}, [0x1, 0x80000001]}}, @devid}) (async) sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000240)=0x208, 0x9) (async) r3 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000001700), 0xffffffffffffffff) sendmsg$NLBL_UNLABEL_C_STATICADD(0xffffffffffffffff, &(0x7f00000017c0)={&(0x7f00000016c0)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000001780)={&(0x7f0000000cc0)=ANY=[@ANYRESDEC, @ANYRES16=r3, @ANYBLOB="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", @ANYRESOCT], 0x1c}, 0x1, 0x0, 0x0, 0x8}, 0x20008004) sendmsg$NLBL_UNLABEL_C_LIST(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000200)={&(0x7f0000000f00)=ANY=[@ANYRES32, @ANYRES16=r3, @ANYBLOB="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", @ANYRESHEX], 0x100}, 0x1, 0x0, 0x0, 0x8000}, 0x1) (async) r4 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x2000}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001440)={0x0, 0x80, 0x2, 0xb1, 0x7, 0x6, 0x0, 0x6, 0x80200, 0xb, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x4, @perf_config_ext={0x8, 0xffffffff000000}, 0x334, 0xf0b375d, 0x2, 0x5, 0x35a6d2c1, 0x1000, 0x0, 0x0, 0x8, 0x0, 0x4}, 0xffffffffffffffff, 0xe, r4, 0x3) (async) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f00000015c0)={0x0, ""/256, 0x0, 0x0, 0x0, 0x0, ""/16, ""/16, ""/16, 0x0, 0x0, 0x0, 0x0}) ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(0xffffffffffffffff, 0x50009418, &(0x7f0000000400)={{}, r6, 0x14, @inherit={0x88, &(0x7f0000001580)=ANY=[@ANYRES16=r7]}, @devid}) (async) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r4, 0x84009422, &(0x7f0000001ec0)={0x0, 0x0, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @usage, 0x0}}) socketpair(0x1, 0x20000000000001, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_SET_FILTER(r9, 0x8914, &(0x7f0000000040)='lo\x00\x96o\xd6Q\xb9Y\xa9\xc8J,\x00\xd2\x97\x04\x03\xdc\r') (async) ioctl$PERF_EVENT_IOC_SET_FILTER(r9, 0x8923, &(0x7f0000000680)='lo\x00\x96o8\x0fd\xa1\xe3\xd7]b}\x1f\xa1Y\xad4\x90\x9d`\xd2\x98\x00\x00\x00 \'Y\x17]\x15c\xcaR\xdd\x98OC\x89\x1b\xe7\x84\xe2\x05\x80w\xd2|D\x8dK\x14Bx\xcbuH\xc2\xeec\xbf<>Y\x1a\xfc\x1f9OB\x81\x89\x186\xc5q@n\xb4\xb6s\xb0\x00\x00\x00\x00\x00\b\x00\x00\xda\xef\xecE\xec\xd5I\xb2\x9b\xfe\x8d\x90?\x00\xe9\xe4~g:\xc1\xb2aj\x96\xbb\xa7\xe2\xc0\xdc\xf9Q\b\xeb\x16\x7fT\x11\xd3\r7\xe6\"f\xcf\x8e\xabd\x0ftp\x82\xae\xd2\x15\x8e+c\xf6\xbf\xe14>\xa6-\xa5c\xde\xd7\xab\xea\x1f\xf8s2\x9cVF\xd5\x18\xfe\x0e\x8f \x01\x00\x00y.\xfc*\x82\xa5\xa1p5\xc8{\xf7\xef\xab\xe8\x99\xebw#\x8at\x1c\x80\xfc\xb0\x95\xa2\xa7\xd7,Y]E8\x83X\xf5F\xdc\x88-\xf5\xb0\xb5^\xdb\x1a\xb6\xaa\x14\xe2\xb9\rh^J-\xd1\xbaUn\x04\'l\x1b\xe0o\xdb\xc8\x91%\x1c\xb5\xbf\xb6\x90\xb4\xc2\x7f]/\xb3\xe7\xc9\'\x94\xcfIo\xdf\x04\x95\xb5\x06\x84\x1fH>\xda\xc5\x04 \x94\x88\xeb\'\xd4;6\x7f\xd9\x99-\x1b|G\x8d\xd4\xb9%\xaaQ\xa0K\x10\x03\x93\xe1\xcc\xe7m\x80\'\xf0\xa5\xed(\r\xa8\x0f&\xb1\xf3\xff0\f\x82%_\x92\x8bD\xb9\xd9\xe7\xf2\xe4\xc1i#\xdc\x87A\xb9\xc7\r\x92\xfa\x11\x11\xb5\x1f\x03\x9d\xdd\x1bj\xdf\xacg\xe3\xa0S\xd3\x8a\xe1n\x97\xea\xf5\xa0\'\v\xe9\xa0\xf1 f\xaan\xcf\xb5i\xb6d\xbc\x92\v\xd58\x16\b\xb3_:\xa4!\ny\xc4&\nWMM\xa8\xc4\v\x9f\x01o\xf4\xab&\xb6\x17\x02P\xc3!N\xa1\x86\"\xd7\x04\xf1\xc0!\xed\xff\xee$\xc89\x8cB0\xd1dD\xe0IP\x88\xa2\xf2Y\x9af$$\xf1\x81\x96\xf7P\xac\xca\x80:!\xb4\x94#\xcb^\x9f\'\x03\xe3\x93\xb9\x82\xbf\xcf\xc4\xe3\xf7\x03Oh\xf2r\xca\x8ff\xbb/\x9f*\xaf\x1a \xa5\xa0?%M\xa5\x86\x98\xfa4\'1\xc7\f<\xcc@\xe8\x8a\xac.\xde\xe4\xc7\xf5\x9ck\xa40!\xe9\x14$\xb3\x05m\xb5m\xed\ft\x93\xd8\xa3\x80\'Y\xb9\x05\xbbt|\xbe\xbcz\n\xf3\xf5p\xf8\x9f~\x1b\xd0\v\x1cQ') sendmsg$NLBL_CIPSOV4_C_REMOVE(r9, &(0x7f0000001400)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000200)={&(0x7f0000001840)=ANY=[@ANYRES32=r8, @ANYRES32=r7, @ANYRESOCT, @ANYRES32=r5, @ANYRES32, @ANYRES64, @ANYRESHEX], 0x3}, 0x1, 0x0, 0x0, 0x4}, 0x40025) (async) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r1, 0xd000943d, &(0x7f000005c5c0)={0x1, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r5}], 0xfa, "4cd8cfe39cadf3"}) [ 1650.907172] device lo entered promiscuous mode [ 1650.919470] Bluetooth: hci7 command 0x1009 tx timeout [ 1650.926431] Y­4`Ò˜: renamed from lo 10:03:48 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) r1 = dup2(r0, r0) write(r1, &(0x7f0000000280)='#\x00\x00\x00', 0x4) ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(0xffffffffffffffff, 0xc0c89425, &(0x7f0000000780)={"02d47cbcc70d73f63265f0ace7539e4b", 0x0, 0x0, {0x4}, {0x0, 0x7}, 0x0, [0x1, 0x0, 0x3, 0x7, 0x1c6e98ca, 0x3, 0x400, 0x9, 0x8, 0x7, 0x8, 0xffffffffffffff52, 0x5a43, 0x2, 0x10001]}) ioctl$BTRFS_IOC_SNAP_CREATE_V2(0xffffffffffffffff, 0x50009417, &(0x7f0000001800)={{}, r2, 0x8, @inherit={0x58, &(0x7f0000000500)={0x1, 0x2, 0x20, 0x3, {0x4, 0x0, 0x1, 0x7, 0x7}, [0x1, 0x80000001]}}, @devid}) sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000240)=0x208, 0x9) r3 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000001700), 0xffffffffffffffff) sendmsg$NLBL_UNLABEL_C_STATICADD(0xffffffffffffffff, &(0x7f00000017c0)={&(0x7f00000016c0)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000001780)={&(0x7f0000000cc0)=ANY=[@ANYRESDEC, @ANYRES16=r3, @ANYBLOB="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", @ANYRESOCT], 0x1c}, 0x1, 0x0, 0x0, 0x8}, 0x20008004) sendmsg$NLBL_UNLABEL_C_LIST(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000200)={&(0x7f0000000f00)=ANY=[@ANYRES32, @ANYRES16=r3, @ANYBLOB="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", @ANYRESHEX], 0x100}, 0x1, 0x0, 0x0, 0x8000}, 0x1) r4 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x2000}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001440)={0x0, 0x80, 0x2, 0xb1, 0x7, 0x6, 0x0, 0x6, 0x80200, 0xb, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x4, @perf_config_ext={0x8, 0xffffffff000000}, 0x334, 0xf0b375d, 0x2, 0x5, 0x35a6d2c1, 0x1000, 0x0, 0x0, 0x8, 0x0, 0x4}, 0xffffffffffffffff, 0xe, r4, 0x3) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f00000015c0)={0x0, ""/256, 0x0, 0x0, 0x0, 0x0, ""/16, ""/16, ""/16, 0x0, 0x0, 0x0, 0x0}) ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(0xffffffffffffffff, 0x50009418, &(0x7f0000000400)={{}, r6, 0x14, @inherit={0x88, &(0x7f0000001580)=ANY=[@ANYRES16=r7]}, @devid}) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r4, 0x84009422, &(0x7f0000001ec0)={0x0, 0x0, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @usage, 0x0}}) socketpair(0x1, 0x20000000000001, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_SET_FILTER(r9, 0x8914, &(0x7f0000000040)='lo\x00\x96o\xd6Q\xb9Y\xa9\xc8J,\x00\xd2\x97\x04\x03\xdc\r') ioctl$PERF_EVENT_IOC_SET_FILTER(r9, 0x8923, &(0x7f0000000680)='lo\x00\x96o8\x0fd\xa1\xe3\xd7]b}\x1f\xa1Y\xad4\x90\x9d`\xd2\x98\x00\x00\x00 \'Y\x17]\x15c\xcaR\xdd\x98OC\x89\x1b\xe7\x84\xe2\x05\x80w\xd2|D\x8dK\x14Bx\xcbuH\xc2\xeec\xbf<>Y\x1a\xfc\x1f9OB\x81\x89\x186\xc5q@n\xb4\xb6s\xb0\x00\x00\x00\x00\x00\b\x00\x00\xda\xef\xecE\xec\xd5I\xb2\x9b\xfe\x8d\x90?\x00\xe9\xe4~g:\xc1\xb2aj\x96\xbb\xa7\xe2\xc0\xdc\xf9Q\b\xeb\x16\x7fT\x11\xd3\r7\xe6\"f\xcf\x8e\xabd\x0ftp\x82\xae\xd2\x15\x8e+c\xf6\xbf\xe14>\xa6-\xa5c\xde\xd7\xab\xea\x1f\xf8s2\x9cVF\xd5\x18\xfe\x0e\x8f \x01\x00\x00y.\xfc*\x82\xa5\xa1p5\xc8{\xf7\xef\xab\xe8\x99\xebw#\x8at\x1c\x80\xfc\xb0\x95\xa2\xa7\xd7,Y]E8\x83X\xf5F\xdc\x88-\xf5\xb0\xb5^\xdb\x1a\xb6\xaa\x14\xe2\xb9\rh^J-\xd1\xbaUn\x04\'l\x1b\xe0o\xdb\xc8\x91%\x1c\xb5\xbf\xb6\x90\xb4\xc2\x7f]/\xb3\xe7\xc9\'\x94\xcfIo\xdf\x04\x95\xb5\x06\x84\x1fH>\xda\xc5\x04 \x94\x88\xeb\'\xd4;6\x7f\xd9\x99-\x1b|G\x8d\xd4\xb9%\xaaQ\xa0K\x10\x03\x93\xe1\xcc\xe7m\x80\'\xf0\xa5\xed(\r\xa8\x0f&\xb1\xf3\xff0\f\x82%_\x92\x8bD\xb9\xd9\xe7\xf2\xe4\xc1i#\xdc\x87A\xb9\xc7\r\x92\xfa\x11\x11\xb5\x1f\x03\x9d\xdd\x1bj\xdf\xacg\xe3\xa0S\xd3\x8a\xe1n\x97\xea\xf5\xa0\'\v\xe9\xa0\xf1 f\xaan\xcf\xb5i\xb6d\xbc\x92\v\xd58\x16\b\xb3_:\xa4!\ny\xc4&\nWMM\xa8\xc4\v\x9f\x01o\xf4\xab&\xb6\x17\x02P\xc3!N\xa1\x86\"\xd7\x04\xf1\xc0!\xed\xff\xee$\xc89\x8cB0\xd1dD\xe0IP\x88\xa2\xf2Y\x9af$$\xf1\x81\x96\xf7P\xac\xca\x80:!\xb4\x94#\xcb^\x9f\'\x03\xe3\x93\xb9\x82\xbf\xcf\xc4\xe3\xf7\x03Oh\xf2r\xca\x8ff\xbb/\x9f*\xaf\x1a \xa5\xa0?%M\xa5\x86\x98\xfa4\'1\xc7\f<\xcc@\xe8\x8a\xac.\xde\xe4\xc7\xf5\x9ck\xa40!\xe9\x14$\xb3\x05m\xb5m\xed\ft\x93\xd8\xa3\x80\'Y\xb9\x05\xbbt|\xbe\xbcz\n\xf3\xf5p\xf8\x9f~\x1b\xd0\v\x1cQ') sendmsg$NLBL_CIPSOV4_C_REMOVE(r9, &(0x7f0000001400)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000200)={&(0x7f0000001840)=ANY=[@ANYRES32=r8, @ANYRES32=r7, @ANYRESOCT, @ANYRES32=r5, @ANYRES32, @ANYRES64, @ANYRESHEX], 0x3}, 0x1, 0x0, 0x0, 0x4}, 0x40025) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r1, 0xd000943d, &(0x7f000005c5c0)={0x1, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r5}], 0xfa, "4cd8cfe39cadf3"}) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) (async) dup2(r0, r0) (async) write(r1, &(0x7f0000000280)='#\x00\x00\x00', 0x4) (async) ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(0xffffffffffffffff, 0xc0c89425, &(0x7f0000000780)={"02d47cbcc70d73f63265f0ace7539e4b", 0x0, 0x0, {0x4}, {0x0, 0x7}, 0x0, [0x1, 0x0, 0x3, 0x7, 0x1c6e98ca, 0x3, 0x400, 0x9, 0x8, 0x7, 0x8, 0xffffffffffffff52, 0x5a43, 0x2, 0x10001]}) (async) ioctl$BTRFS_IOC_SNAP_CREATE_V2(0xffffffffffffffff, 0x50009417, &(0x7f0000001800)={{}, r2, 0x8, @inherit={0x58, &(0x7f0000000500)={0x1, 0x2, 0x20, 0x3, {0x4, 0x0, 0x1, 0x7, 0x7}, [0x1, 0x80000001]}}, @devid}) (async) sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000240)=0x208, 0x9) (async) syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000001700), 0xffffffffffffffff) (async) sendmsg$NLBL_UNLABEL_C_STATICADD(0xffffffffffffffff, &(0x7f00000017c0)={&(0x7f00000016c0)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000001780)={&(0x7f0000000cc0)=ANY=[@ANYRESDEC, @ANYRES16=r3, @ANYBLOB="00022dbd7000fedbdf250300000008000400e0000002c4bd4572333c6ec1b1fd5b8b01f7dfe7e3996772fc12b05b245ee1735be6071e583078abc90d94248538991e5fcf2dc96a8ed8defc60b1c608a1b8eecc0a2fc4dc983e0d29b79f0878db3b8c92ae16b7e3db182d2fcdd95c9d3422c0bb84dac0de0b39d3e19fbcfded53530b06b41c68baa2cc58db4e2166ce7a610000ffedff581bd7ba9d2c6aafce42270343107f695871e73e8bd41867ef145a9223bdb122aa29464c36aca08d609c170b21843de1ec2611cdb8f19b7f05e8296b2947cfac6543c3319cae2f62a524d8665397a63bb405c0a3eed31cc7b54e64e076b025cce944a1616177bc9d1b0bf31380fd81f762a446c31f9aaa1622b12fafd1a2c4f9779b44301d3de5fcd3eacec73ed41f6c882834e8a6ce1e036126446de3b839b2e3fb6707cf33604273b2d44b03360e9f209d2f005c9cca77f60d26d55ff7dd4f365ea86dc72279c9e9218ab09869cdbb2e5cb0a9c7f9e3cd20544feb15def710480227f6fb37dfd4186b4657d49c0d35ec2d5cc24b69568678fe1f70d361b8808000001a99c50f0eaab79651dbf4ba0752fc2bc0965af6cff165b328cce8d77eaabb3a684405a71ebcac32621549c7e82ad79230aea5d8e8834c83677b599f6c57254357bd75e0288d93179e64ad5730aaf3dc018fd3146d62bda8b5f9084399d02728577bc042cb59403b", @ANYRESOCT], 0x1c}, 0x1, 0x0, 0x0, 0x8}, 0x20008004) (async) sendmsg$NLBL_UNLABEL_C_LIST(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000200)={&(0x7f0000000f00)=ANY=[@ANYRES32, @ANYRES16=r3, @ANYBLOB="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", @ANYRESHEX], 0x100}, 0x1, 0x0, 0x0, 0x8000}, 0x1) (async) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x2000}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0) (async) perf_event_open(&(0x7f0000001440)={0x0, 0x80, 0x2, 0xb1, 0x7, 0x6, 0x0, 0x6, 0x80200, 0xb, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x4, @perf_config_ext={0x8, 0xffffffff000000}, 0x334, 0xf0b375d, 0x2, 0x5, 0x35a6d2c1, 0x1000, 0x0, 0x0, 0x8, 0x0, 0x4}, 0xffffffffffffffff, 0xe, r4, 0x3) (async) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f00000015c0)) (async) ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(0xffffffffffffffff, 0x50009418, &(0x7f0000000400)={{}, r6, 0x14, @inherit={0x88, &(0x7f0000001580)=ANY=[@ANYRES16=r7]}, @devid}) (async) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r4, 0x84009422, &(0x7f0000001ec0)={0x0, 0x0, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}}) (async) socketpair(0x1, 0x20000000000001, 0x0, &(0x7f0000000100)) (async) ioctl$PERF_EVENT_IOC_SET_FILTER(r9, 0x8914, &(0x7f0000000040)='lo\x00\x96o\xd6Q\xb9Y\xa9\xc8J,\x00\xd2\x97\x04\x03\xdc\r') (async) ioctl$PERF_EVENT_IOC_SET_FILTER(r9, 0x8923, &(0x7f0000000680)='lo\x00\x96o8\x0fd\xa1\xe3\xd7]b}\x1f\xa1Y\xad4\x90\x9d`\xd2\x98\x00\x00\x00 \'Y\x17]\x15c\xcaR\xdd\x98OC\x89\x1b\xe7\x84\xe2\x05\x80w\xd2|D\x8dK\x14Bx\xcbuH\xc2\xeec\xbf<>Y\x1a\xfc\x1f9OB\x81\x89\x186\xc5q@n\xb4\xb6s\xb0\x00\x00\x00\x00\x00\b\x00\x00\xda\xef\xecE\xec\xd5I\xb2\x9b\xfe\x8d\x90?\x00\xe9\xe4~g:\xc1\xb2aj\x96\xbb\xa7\xe2\xc0\xdc\xf9Q\b\xeb\x16\x7fT\x11\xd3\r7\xe6\"f\xcf\x8e\xabd\x0ftp\x82\xae\xd2\x15\x8e+c\xf6\xbf\xe14>\xa6-\xa5c\xde\xd7\xab\xea\x1f\xf8s2\x9cVF\xd5\x18\xfe\x0e\x8f \x01\x00\x00y.\xfc*\x82\xa5\xa1p5\xc8{\xf7\xef\xab\xe8\x99\xebw#\x8at\x1c\x80\xfc\xb0\x95\xa2\xa7\xd7,Y]E8\x83X\xf5F\xdc\x88-\xf5\xb0\xb5^\xdb\x1a\xb6\xaa\x14\xe2\xb9\rh^J-\xd1\xbaUn\x04\'l\x1b\xe0o\xdb\xc8\x91%\x1c\xb5\xbf\xb6\x90\xb4\xc2\x7f]/\xb3\xe7\xc9\'\x94\xcfIo\xdf\x04\x95\xb5\x06\x84\x1fH>\xda\xc5\x04 \x94\x88\xeb\'\xd4;6\x7f\xd9\x99-\x1b|G\x8d\xd4\xb9%\xaaQ\xa0K\x10\x03\x93\xe1\xcc\xe7m\x80\'\xf0\xa5\xed(\r\xa8\x0f&\xb1\xf3\xff0\f\x82%_\x92\x8bD\xb9\xd9\xe7\xf2\xe4\xc1i#\xdc\x87A\xb9\xc7\r\x92\xfa\x11\x11\xb5\x1f\x03\x9d\xdd\x1bj\xdf\xacg\xe3\xa0S\xd3\x8a\xe1n\x97\xea\xf5\xa0\'\v\xe9\xa0\xf1 f\xaan\xcf\xb5i\xb6d\xbc\x92\v\xd58\x16\b\xb3_:\xa4!\ny\xc4&\nWMM\xa8\xc4\v\x9f\x01o\xf4\xab&\xb6\x17\x02P\xc3!N\xa1\x86\"\xd7\x04\xf1\xc0!\xed\xff\xee$\xc89\x8cB0\xd1dD\xe0IP\x88\xa2\xf2Y\x9af$$\xf1\x81\x96\xf7P\xac\xca\x80:!\xb4\x94#\xcb^\x9f\'\x03\xe3\x93\xb9\x82\xbf\xcf\xc4\xe3\xf7\x03Oh\xf2r\xca\x8ff\xbb/\x9f*\xaf\x1a \xa5\xa0?%M\xa5\x86\x98\xfa4\'1\xc7\f<\xcc@\xe8\x8a\xac.\xde\xe4\xc7\xf5\x9ck\xa40!\xe9\x14$\xb3\x05m\xb5m\xed\ft\x93\xd8\xa3\x80\'Y\xb9\x05\xbbt|\xbe\xbcz\n\xf3\xf5p\xf8\x9f~\x1b\xd0\v\x1cQ') (async) sendmsg$NLBL_CIPSOV4_C_REMOVE(r9, &(0x7f0000001400)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000200)={&(0x7f0000001840)=ANY=[@ANYRES32=r8, @ANYRES32=r7, @ANYRESOCT, @ANYRES32=r5, @ANYRES32, @ANYRES64, @ANYRESHEX], 0x3}, 0x1, 0x0, 0x0, 0x4}, 0x40025) (async) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r1, 0xd000943d, &(0x7f000005c5c0)={0x1, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r5}], 0xfa, "4cd8cfe39cadf3"}) (async) [ 1651.319230] Bluetooth: hci9 command 0x1003 tx timeout [ 1651.324568] Bluetooth: hci9 sending frame failed (-49) [ 1651.399271] Bluetooth: hci10 command 0x1003 tx timeout [ 1651.404696] Bluetooth: hci10 sending frame failed (-49) [ 1652.519266] Bluetooth: hci6 command 0x1001 tx timeout [ 1652.524703] Bluetooth: hci6 sending frame failed (-49) [ 1652.759214] Bluetooth: hci8 command 0x1001 tx timeout [ 1652.766078] Bluetooth: hci8 sending frame failed (-49) [ 1653.399193] Bluetooth: hci9 command 0x1001 tx timeout [ 1653.404889] Bluetooth: hci9 sending frame failed (-49) [ 1653.489194] Bluetooth: hci10 command 0x1001 tx timeout [ 1653.494563] Bluetooth: hci10 sending frame failed (-49) [ 1654.599109] Bluetooth: hci6 command 0x1009 tx timeout 10:03:52 executing program 5: prlimit64(0x0, 0xe, &(0x7f0000000280), 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0xffffffffffff0162) (async) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000074, 0x25d) (async) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe1}]}, 0x10) (async) sendto$inet(r1, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) (async) setsockopt$sock_int(r1, 0x1, 0x21, &(0x7f0000000600)=0xda9, 0x4) (async) sendto$inet(r1, &(0x7f0000000640)="febc3b777d549ffacdd9ee6633af6e737f2e6d654105f04716908ec7af8775d530c2cc83e31b3f3c7f9e351ba553af429ff9367031b7ec0aed61ea15d08f299f9241acf82356d0859eb45aec582cd03d4cdbdcd6755c166133d9ba85529c0ed8913418402ba7d907115e75", 0x6b, 0x4000081, 0x0, 0x0) (async) sendto$inet(r1, &(0x7f00000012c0)="e1158a927f1f6588b927481241ba7860f46ef65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a97425a3a07e758044ab0ea6f7ae55d88fecf9221a750fbf746bec66ba", 0xfe6a, 0xe, 0x0, 0xfffffffffffffe2b) (async) fcntl$setpipe(r1, 0x407, 0x7fffffff) (async) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) (async) ioctl$KDADDIO(r0, 0x400455c8, 0x4) 10:03:52 executing program 1: fchdir(0xffffffffffffffff) r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) mkdir(&(0x7f0000000100)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='ramfs\x00', 0x50, 0x0) creat(&(0x7f0000000180)='./file0/bus\x00', 0x6857b21ff1155d10) r1 = accept4$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @empty}, &(0x7f0000000080)=0x10, 0x80800) sendto$inet(r1, &(0x7f0000000000)="667b84d9db7c2e5284dbd4a85a40d527d202045e6eb75abaaf474308707bd3d6985c0001757c82", 0x27, 0x4008800, &(0x7f0000000180)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x25}}, 0x10) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x3000008, 0x40010, r1, 0x67631000) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) open(&(0x7f0000000000)='./file0/bus\x00', 0x20200, 0x0) r2 = dup2(r0, r0) write(r2, &(0x7f0000000280)='#\x00\x00\x00', 0x4) [ 1654.813067] audit: type=1804 audit(1642241032.709:210): pid=22518 uid=0 auid=4294967295 ses=4294967295 op="invalid_pcr" cause="open_writers" comm="syz-executor.1" name="/root/syzkaller-testdir081684894/syzkaller.gQCFju/396/file0/bus" dev="ramfs" ino=68952 res=1 [ 1654.842048] Bluetooth: hci8 command 0x1009 tx timeout [ 1655.479109] Bluetooth: hci9 command 0x1009 tx timeout [ 1655.559090] Bluetooth: hci10 command 0x1009 tx timeout 10:03:57 executing program 3: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x0) (fail_nth: 72) 10:03:57 executing program 5: prlimit64(0x0, 0xe, &(0x7f0000000280), 0x0) (async, rerun: 64) sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0xffffffffffff0162) (async, rerun: 64) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) (async) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000074, 0x25d) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) (async) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe1}]}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) (async) setsockopt$sock_int(r1, 0x1, 0x21, &(0x7f0000000600)=0xda9, 0x4) (async) sendto$inet(r1, &(0x7f0000000640)="febc3b777d549ffacdd9ee6633af6e737f2e6d654105f04716908ec7af8775d530c2cc83e31b3f3c7f9e351ba553af429ff9367031b7ec0aed61ea15d08f299f9241acf82356d0859eb45aec582cd03d4cdbdcd6755c166133d9ba85529c0ed8913418402ba7d907115e75", 0x6b, 0x4000081, 0x0, 0x0) sendto$inet(r1, &(0x7f00000012c0)="e1158a927f1f6588b927481241ba7860f46ef65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a97425a3a07e758044ab0ea6f7ae55d88fecf9221a750fbf746bec66ba", 0xfe6a, 0xe, 0x0, 0xfffffffffffffe2b) (async) fcntl$setpipe(r1, 0x407, 0x7fffffff) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) (async, rerun: 32) ioctl$KDADDIO(r0, 0x400455c8, 0x4) (rerun: 32) 10:03:57 executing program 1: fchdir(0xffffffffffffffff) r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) mkdir(&(0x7f0000000100)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='ramfs\x00', 0x50, 0x0) creat(&(0x7f0000000180)='./file0/bus\x00', 0x6857b21ff1155d10) r1 = accept4$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @empty}, &(0x7f0000000080)=0x10, 0x80800) sendto$inet(r1, &(0x7f0000000000)="667b84d9db7c2e5284dbd4a85a40d527d202045e6eb75abaaf474308707bd3d6985c0001757c82", 0x27, 0x4008800, &(0x7f0000000180)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x25}}, 0x10) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x3000008, 0x40010, r1, 0x67631000) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) open(&(0x7f0000000000)='./file0/bus\x00', 0x20200, 0x0) r2 = dup2(r0, r0) write(r2, &(0x7f0000000280)='#\x00\x00\x00', 0x4) fchdir(0xffffffffffffffff) (async) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) (async) mkdir(&(0x7f0000000100)='./file0\x00', 0x0) (async) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='ramfs\x00', 0x50, 0x0) (async) creat(&(0x7f0000000180)='./file0/bus\x00', 0x6857b21ff1155d10) (async) accept4$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @empty}, &(0x7f0000000080)=0x10, 0x80800) (async) sendto$inet(r1, &(0x7f0000000000)="667b84d9db7c2e5284dbd4a85a40d527d202045e6eb75abaaf474308707bd3d6985c0001757c82", 0x27, 0x4008800, &(0x7f0000000180)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x25}}, 0x10) (async) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x3000008, 0x40010, r1, 0x67631000) (async) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async) open(&(0x7f0000000000)='./file0/bus\x00', 0x20200, 0x0) (async) dup2(r0, r0) (async) write(r2, &(0x7f0000000280)='#\x00\x00\x00', 0x4) (async) 10:03:57 executing program 4: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) open(&(0x7f0000000000)='./file0\x00', 0x40000, 0x4f) ioctl$KDADDIO(r0, 0x400455c8, 0x0) [ 1659.269620] audit: type=1804 audit(1642241037.170:211): pid=22541 uid=0 auid=4294967295 ses=4294967295 op="invalid_pcr" cause="open_writers" comm="syz-executor.1" name="/root/syzkaller-testdir081684894/syzkaller.gQCFju/397/file0/bus" dev="ramfs" ino=68989 res=1 [ 1659.322989] FAULT_INJECTION: forcing a failure. [ 1659.322989] name failslab, interval 1, probability 0, space 0, times 0 [ 1659.334398] CPU: 1 PID: 22548 Comm: syz-executor.3 Not tainted 4.14.262-syzkaller #0 [ 1659.342288] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1659.351640] Call Trace: [ 1659.354213] dump_stack+0x1b2/0x281 [ 1659.357825] should_fail.cold+0x10a/0x149 [ 1659.361962] should_failslab+0xd6/0x130 [ 1659.365917] kmem_cache_alloc+0x28e/0x3c0 [ 1659.370046] __kernfs_new_node+0x6f/0x470 [ 1659.374182] kernfs_new_node+0x7b/0xe0 [ 1659.378143] __kernfs_create_file+0x3d/0x320 [ 1659.382535] sysfs_add_file_mode_ns+0x1e1/0x450 [ 1659.387188] sysfs_merge_group+0xdc/0x200 [ 1659.391316] dpm_sysfs_add+0x122/0x1c0 [ 1659.395181] device_add+0x977/0x15c0 [ 1659.398873] ? device_is_dependent+0x2a0/0x2a0 [ 1659.403440] rfkill_register+0x18e/0xab0 [ 1659.407488] hci_register_dev+0x359/0x8f0 [ 1659.411623] hci_uart_tty_ioctl+0x6d1/0xa60 [ 1659.415926] tty_ioctl+0x5af/0x1430 [ 1659.419541] ? hci_uart_tty_receive+0x4c0/0x4c0 [ 1659.424197] ? tty_fasync+0x2c0/0x2c0 [ 1659.427979] ? proc_fail_nth_write+0x7b/0x180 [ 1659.432474] ? trace_hardirqs_on+0x10/0x10 [ 1659.436691] ? fsnotify+0x974/0x11b0 [ 1659.440383] ? proc_tgid_io_accounting+0x7a0/0x7a0 [ 1659.445289] ? __handle_mm_fault+0x80f/0x4620 [ 1659.449768] ? SyS_write+0x1b7/0x210 [ 1659.453464] ? tty_fasync+0x2c0/0x2c0 [ 1659.457350] do_vfs_ioctl+0x75a/0xff0 [ 1659.461132] ? lock_acquire+0x170/0x3f0 [ 1659.465082] ? ioctl_preallocate+0x1a0/0x1a0 [ 1659.469472] ? __fget+0x2df/0x460 [ 1659.472909] ? do_vfs_ioctl+0xff0/0xff0 [ 1659.476868] ? security_file_ioctl+0x83/0xb0 [ 1659.481257] SyS_ioctl+0x7f/0xb0 [ 1659.484602] ? do_vfs_ioctl+0xff0/0xff0 [ 1659.488556] do_syscall_64+0x1d5/0x640 [ 1659.492431] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1659.497619] RIP: 0033:0x7fa331314fe9 [ 1659.501305] RSP: 002b:00007fa32fc8a168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1659.508994] RAX: ffffffffffffffda RBX: 00007fa331427f60 RCX: 00007fa331314fe9 [ 1659.516243] RDX: 0000000000000000 RSI: 00000000400455c8 RDI: 0000000000000003 [ 1659.523490] RBP: 00007fa32fc8a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1659.530744] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1659.538002] R13: 00007ffe09471b3f R14: 00007fa32fc8a300 R15: 0000000000022000 [ 1659.550553] Bluetooth: hci7: Frame reassembly failed (-84) 10:03:57 executing program 0: prlimit64(0x0, 0x0, 0x0, 0x0) sched_setattr(0x0, 0x0, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x0) (fail_nth: 62) 10:03:57 executing program 1: fchdir(0xffffffffffffffff) r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) (async) mkdir(&(0x7f0000000100)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='ramfs\x00', 0x50, 0x0) (async, rerun: 32) creat(&(0x7f0000000180)='./file0/bus\x00', 0x6857b21ff1155d10) (async, rerun: 32) r1 = accept4$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @empty}, &(0x7f0000000080)=0x10, 0x80800) sendto$inet(r1, &(0x7f0000000000)="667b84d9db7c2e5284dbd4a85a40d527d202045e6eb75abaaf474308707bd3d6985c0001757c82", 0x27, 0x4008800, &(0x7f0000000180)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x25}}, 0x10) (async) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x3000008, 0x40010, r1, 0x67631000) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) open(&(0x7f0000000000)='./file0/bus\x00', 0x20200, 0x0) (async, rerun: 32) r2 = dup2(r0, r0) (rerun: 32) write(r2, &(0x7f0000000280)='#\x00\x00\x00', 0x4) 10:03:57 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x0) openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r2, 0x400455c8, 0x4) ioctl$TIOCSETD(r2, 0x5412, &(0x7f0000000000)=0x33) ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000080)=0x12) ioctl$KDADDIO(r1, 0x400455c8, 0x4) ioctl$TIOCSETD(r1, 0x5412, &(0x7f0000000000)=0x33) r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r3, 0x400455c8, 0x4) ioctl$TIOCSETD(r3, 0x5412, &(0x7f0000000000)=0x33) ioctl$KDADDIO(r1, 0x400455c8, 0x3) [ 1659.916643] audit: type=1804 audit(1642241037.810:212): pid=22578 uid=0 auid=4294967295 ses=4294967295 op="invalid_pcr" cause="open_writers" comm="syz-executor.1" name="/root/syzkaller-testdir081684894/syzkaller.gQCFju/398/file0/bus" dev="sda1" ino=14248 res=1 [ 1659.947747] Bluetooth: hci8: Frame reassembly failed (-84) [ 1659.966224] Bluetooth: Unknown HCI packet type 5e [ 1659.975997] FAULT_INJECTION: forcing a failure. [ 1659.975997] name failslab, interval 1, probability 0, space 0, times 0 [ 1659.993863] Bluetooth: Unknown HCI packet type 43 [ 1660.000746] CPU: 0 PID: 22579 Comm: syz-executor.0 Not tainted 4.14.262-syzkaller #0 10:03:57 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) r1 = dup2(r0, r0) r2 = socket(0x10, 0x803, 0x0) sendmsg$BATADV_CMD_GET_MESH(r2, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0}}, 0x0) getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) bind$bt_hci(r2, &(0x7f0000000040)={0x1f, 0xffffffffffffffff}, 0x6) write(r1, &(0x7f0000000280)='#\x00\x00\x00', 0x4) r4 = socket$nl_route(0x10, 0x3, 0x0) r5 = socket(0x10, 0x803, 0x0) sendmsg$BATADV_CMD_GET_MESH(r5, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0}}, 0x0) getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x3}, [@IFLA_LINKINFO={0x20, 0x12, 0x0, 0x1, @sit={{0x8}, {0x14, 0x2, 0x0, 0x1, [@IFLA_IPTUN_LINK={0x8, 0x1, r6}, @IFLA_IPTUN_REMOTE={0x8, 0x3, @local}]}}}]}, 0x40}}, 0x0) r7 = socket$nl_route(0x10, 0x3, 0x0) r8 = socket(0x10, 0x803, 0x0) sendmsg$BATADV_CMD_GET_MESH(r8, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0}}, 0x0) getsockname$packet(r8, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(r7, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x3}, [@IFLA_LINKINFO={0x20, 0x12, 0x0, 0x1, @sit={{0x8}, {0x14, 0x2, 0x0, 0x1, [@IFLA_IPTUN_LINK={0x8, 0x1, r9}, @IFLA_IPTUN_REMOTE={0x8, 0x3, @local}]}}}]}, 0x40}}, 0x0) ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(r2, 0x89f0, &(0x7f0000000a80)={'syztnl0\x00', &(0x7f0000000a00)={'ip6gre0\x00', r3, 0x2f, 0xbb, 0x8, 0x81, 0x1e, @private2, @mcast1, 0x20, 0x10, 0x0, 0x1}}) sendmsg$TEAM_CMD_NOOP(r2, &(0x7f00000013c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000001380)={&(0x7f0000000ac0)=ANY=[@ANYBLOB="b8080000", @ANYRES16=0x0, @ANYBLOB="00012cbd7000fbdbdf250000000008000100", @ANYRES32=r3, @ANYBLOB="6802028040000100240001007072696f72697479000000000000000000000000000000000000000000000000050003000e00000008000400ff0f000008000600", @ANYRES32=0x0, @ANYBLOB="3c00010024000100757365725f6c696e6b75705f656e61626c65640000000000000000000000000005000300060000000400040008000600", @ANYRES32=0x0, @ANYBLOB="40000100240001006c625f74785f686173685f746f5f706f72745f6d617070696e67000000000000050003000300000008000400", @ANYRES32=r3, @ANYBLOB="08000700000000003800010024000100616374697665706f727400000000000000000000000000000000000000000000050003000300000008000400", @ANYRES32=0x0, @ANYBLOB="40000100240001007072696f72697479000000000000000000000000000000000000000000000000050003000e000000080004000101000008000600", @ANYRES32=0x0, @ANYBLOB="38000100240001006e6f746966795f70656572735f696e74657276616c000000000000000000000005000300030000000800040009000000400001002400010071756575655f69640000000000000000000000000000000000000000000000000500030003000000080004000400000008000600", @ANYRES32=r3, @ANYBLOB="40000100240001006c625f706f72745f737461747300000000000000000000000000000000000000050003000b000000080004000500000008000600", @ANYRES32=0x0, @ANYBLOB="3c00010024000100757365725f6c696e6b75705f656e61626c65640000000000000000000000000005000300060000000400040008000600", @ANYRES32=0x0, @ANYBLOB="3c00010024000100656e61626c65640000000000000000000000000000000000000000000000000005000300060000000400040008000600", @ANYRES32=0x0, @ANYBLOB="08000100", @ANYRES32=0x0, @ANYBLOB="4400028040000100240001006c625f686173685f737461747300000000000000000000000000000000000000050003000b00000008000400ff000000080007000000000008000100", @ANYRES32=r3, @ANYBLOB="e801028040000100240001006c625f74785f686173685f746f5f706f72745f6d617070696e67000000000000050003000300000008000400", @ANYRES32=0x0, @ANYBLOB="080007000000000040000100240001007072696f72697479000000000000000000000000000000000000000000000000050003000e000000080004000700000008000600", @ANYRES32=0x0, @ANYBLOB="3c000100240001006c625f74785f6d6574686f640000000000000000000000000000000000000000050003000500000009000400686173680000000034000100240001006270665f686173685f66756e6300000000000000000000000000000000000000050003000b0000000400040038000100240001006d636173745f72656a6f696e5f636f756e7400000000000000000000000000000500030003000000080004000200000040000100240001006c625f74785f686173685f746f5f706f72745f6d617070696e67000000000000050003000300000008000400", @ANYRES32=r6, @ANYBLOB="08000700000000003c000100240001006c625f74785f6d6574686f640000000000000000000000000000000000000000050003000500000009000400686173680000000040000100240001006c625f686173685f737461747300000000000000000000000000000000000000050003000b0000000800040008000000080007000000000008000100", @ANYRES32=r3, @ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB="b40002803c00010024000100757365725f6c696e6b757000000000000000000000000000000000000000000005000300060000000400040008000600", @ANYRES32=0x0, @ANYBLOB="3c00010024000100757365725f6c696e6b75705f656e6e976c65640000000000000000000000000005000300060000000400040008000600", @ANYRES32=0x0, @ANYBLOB="38000100240001006e6f746966795f70656572735f636f756e740000000000000000000000000000050003000300000008000400ff03000008000100", @ANYRES32=r6, @ANYBLOB="d001028038000100240001006d636173745f72656a6f696e5f696e74657276616c00000000000000000000000500030003000000080004000800000040000100240001006c625f706f72745f737461747300000000000000000000000000000000000000050003000b000000080004000100000008000600", @ANYRES32=r9, @ANYBLOB="3c00010024000100757365725f6c696e6b75705f656e61626c65640000000000000000000000000005000300060000000400040008000600", @ANYRES32=r10, @ANYBLOB="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"], 0x8b8}, 0x1, 0x0, 0x0, 0x48045}, 0x8040) [ 1660.008654] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1660.018007] Call Trace: [ 1660.020600] dump_stack+0x1b2/0x281 [ 1660.024233] should_fail.cold+0x10a/0x149 [ 1660.028390] should_failslab+0xd6/0x130 [ 1660.032371] kmem_cache_alloc+0x28e/0x3c0 [ 1660.033937] Bluetooth: Unknown HCI packet type 5e [ 1660.036527] __kernfs_new_node+0x6f/0x470 [ 1660.036542] kernfs_new_node+0x7b/0xe0 [ 1660.036553] __kernfs_create_file+0x3d/0x320 [ 1660.051645] Bluetooth: Unknown HCI packet type 50 [ 1660.053787] sysfs_add_file_mode_ns+0x1e1/0x450 [ 1660.053803] internal_create_group+0x22b/0x710 [ 1660.053818] sysfs_create_groups+0x92/0x130 [ 1660.053830] device_add+0x7e5/0x15c0 [ 1660.058969] Bluetooth: Unknown HCI packet type 5e [ 1660.063312] ? device_is_dependent+0x2a0/0x2a0 [ 1660.063327] rfkill_register+0x18e/0xab0 [ 1660.063342] hci_register_dev+0x359/0x8f0 [ 1660.063357] hci_uart_tty_ioctl+0x6d1/0xa60 [ 1660.072241] Bluetooth: Unknown HCI packet type 40 [ 1660.075923] tty_ioctl+0x5af/0x1430 [ 1660.075935] ? hci_uart_tty_receive+0x4c0/0x4c0 [ 1660.075944] ? tty_fasync+0x2c0/0x2c0 [ 1660.075956] ? proc_fail_nth_write+0x7b/0x180 [ 1660.075966] ? trace_hardirqs_on+0x10/0x10 [ 1660.075978] ? fsnotify+0x974/0x11b0 [ 1660.091063] Bluetooth: received HCILL_WAKE_UP_ACK in state 2 [ 1660.093563] ? proc_tgid_io_accounting+0x7a0/0x7a0 [ 1660.137847] ? __handle_mm_fault+0x80f/0x4620 [ 1660.142350] ? SyS_write+0x1b7/0x210 [ 1660.146084] ? tty_fasync+0x2c0/0x2c0 [ 1660.149892] do_vfs_ioctl+0x75a/0xff0 [ 1660.153698] ? lock_acquire+0x170/0x3f0 [ 1660.157673] ? ioctl_preallocate+0x1a0/0x1a0 [ 1660.162081] ? __fget+0x2df/0x460 [ 1660.165543] ? do_vfs_ioctl+0xff0/0xff0 [ 1660.169529] ? security_file_ioctl+0x83/0xb0 [ 1660.173944] SyS_ioctl+0x7f/0xb0 [ 1660.177311] ? do_vfs_ioctl+0xff0/0xff0 [ 1660.181288] do_syscall_64+0x1d5/0x640 [ 1660.185178] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1660.190365] RIP: 0033:0x7fbb944a7fe9 [ 1660.194070] RSP: 002b:00007fbb92e1d168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1660.201775] RAX: ffffffffffffffda RBX: 00007fbb945baf60 RCX: 00007fbb944a7fe9 [ 1660.209046] RDX: 0000000000000000 RSI: 00000000400455c8 RDI: 0000000000000003 10:03:58 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) (async, rerun: 64) r1 = dup2(r0, r0) (async, rerun: 64) r2 = socket(0x10, 0x803, 0x0) sendmsg$BATADV_CMD_GET_MESH(r2, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0}}, 0x0) (async, rerun: 32) getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) (rerun: 32) bind$bt_hci(r2, &(0x7f0000000040)={0x1f, 0xffffffffffffffff}, 0x6) write(r1, &(0x7f0000000280)='#\x00\x00\x00', 0x4) (async, rerun: 64) r4 = socket$nl_route(0x10, 0x3, 0x0) (async, rerun: 64) r5 = socket(0x10, 0x803, 0x0) sendmsg$BATADV_CMD_GET_MESH(r5, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0}}, 0x0) getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x3}, [@IFLA_LINKINFO={0x20, 0x12, 0x0, 0x1, @sit={{0x8}, {0x14, 0x2, 0x0, 0x1, [@IFLA_IPTUN_LINK={0x8, 0x1, r6}, @IFLA_IPTUN_REMOTE={0x8, 0x3, @local}]}}}]}, 0x40}}, 0x0) (async) r7 = socket$nl_route(0x10, 0x3, 0x0) (async) r8 = socket(0x10, 0x803, 0x0) sendmsg$BATADV_CMD_GET_MESH(r8, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0}}, 0x0) (async, rerun: 64) getsockname$packet(r8, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) (rerun: 64) sendmsg$nl_route(r7, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x3}, [@IFLA_LINKINFO={0x20, 0x12, 0x0, 0x1, @sit={{0x8}, {0x14, 0x2, 0x0, 0x1, [@IFLA_IPTUN_LINK={0x8, 0x1, r9}, @IFLA_IPTUN_REMOTE={0x8, 0x3, @local}]}}}]}, 0x40}}, 0x0) (async) ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(r2, 0x89f0, &(0x7f0000000a80)={'syztnl0\x00', &(0x7f0000000a00)={'ip6gre0\x00', r3, 0x2f, 0xbb, 0x8, 0x81, 0x1e, @private2, @mcast1, 0x20, 0x10, 0x0, 0x1}}) sendmsg$TEAM_CMD_NOOP(r2, &(0x7f00000013c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000001380)={&(0x7f0000000ac0)=ANY=[@ANYBLOB="b8080000", @ANYRES16=0x0, @ANYBLOB="00012cbd7000fbdbdf250000000008000100", @ANYRES32=r3, @ANYBLOB="6802028040000100240001007072696f72697479000000000000000000000000000000000000000000000000050003000e00000008000400ff0f000008000600", @ANYRES32=0x0, @ANYBLOB="3c00010024000100757365725f6c696e6b75705f656e61626c65640000000000000000000000000005000300060000000400040008000600", @ANYRES32=0x0, @ANYBLOB="40000100240001006c625f74785f686173685f746f5f706f72745f6d617070696e67000000000000050003000300000008000400", @ANYRES32=r3, @ANYBLOB="08000700000000003800010024000100616374697665706f727400000000000000000000000000000000000000000000050003000300000008000400", @ANYRES32=0x0, @ANYBLOB="40000100240001007072696f72697479000000000000000000000000000000000000000000000000050003000e000000080004000101000008000600", @ANYRES32=0x0, @ANYBLOB="38000100240001006e6f746966795f70656572735f696e74657276616c000000000000000000000005000300030000000800040009000000400001002400010071756575655f69640000000000000000000000000000000000000000000000000500030003000000080004000400000008000600", @ANYRES32=r3, @ANYBLOB="40000100240001006c625f706f72745f737461747300000000000000000000000000000000000000050003000b000000080004000500000008000600", @ANYRES32=0x0, @ANYBLOB="3c00010024000100757365725f6c696e6b75705f656e61626c65640000000000000000000000000005000300060000000400040008000600", @ANYRES32=0x0, @ANYBLOB="3c00010024000100656e61626c65640000000000000000000000000000000000000000000000000005000300060000000400040008000600", @ANYRES32=0x0, @ANYBLOB="08000100", @ANYRES32=0x0, @ANYBLOB="4400028040000100240001006c625f686173685f737461747300000000000000000000000000000000000000050003000b00000008000400ff000000080007000000000008000100", @ANYRES32=r3, @ANYBLOB="e801028040000100240001006c625f74785f686173685f746f5f706f72745f6d617070696e67000000000000050003000300000008000400", @ANYRES32=0x0, @ANYBLOB="080007000000000040000100240001007072696f72697479000000000000000000000000000000000000000000000000050003000e000000080004000700000008000600", @ANYRES32=0x0, @ANYBLOB="3c000100240001006c625f74785f6d6574686f640000000000000000000000000000000000000000050003000500000009000400686173680000000034000100240001006270665f686173685f66756e6300000000000000000000000000000000000000050003000b0000000400040038000100240001006d636173745f72656a6f696e5f636f756e7400000000000000000000000000000500030003000000080004000200000040000100240001006c625f74785f686173685f746f5f706f72745f6d617070696e67000000000000050003000300000008000400", @ANYRES32=r6, @ANYBLOB="08000700000000003c000100240001006c625f74785f6d6574686f640000000000000000000000000000000000000000050003000500000009000400686173680000000040000100240001006c625f686173685f737461747300000000000000000000000000000000000000050003000b0000000800040008000000080007000000000008000100", @ANYRES32=r3, @ANYBLOB="5c01028038000100240001006e6f746966795f70656572735f636f756e7400000000000000000000000000000500030003000000080004000200000038000100240001006e6f746966795f70656572735f636f756e7400000000000000000000000000000500030003000000080004000000000040000100240001006c625f686173685f737461747300000000000000000000000000000000000000050003000b0000000800040000000100080007000000000038000100240001006e6f746966795f70656572735f636f756e7400000000000000000000000000000500030003000000080004000100000038000100240001006e6f746966795f70656572735f636f756e7400000000000000000000000000000500030003000000080004000900000038000100240001006e6f746966795f70656572735f636f756e7400000000000000000000000000000500030003000000080004000500000008000100", @ANYRES32=0x0, @ANYBLOB="b40002803c00010024000100757365725f6c696e6b757000000000000000000000000000000000000000000005000300060000000400040008000600", @ANYRES32=0x0, @ANYBLOB="3c00010024000100757365725f6c696e6b75705f656e6e976c65640000000000000000000000000005000300060000000400040008000600", @ANYRES32=0x0, @ANYBLOB="38000100240001006e6f746966795f70656572735f636f756e740000000000000000000000000000050003000300000008000400ff03000008000100", @ANYRES32=r6, @ANYBLOB="d001028038000100240001006d636173745f72656a6f696e5f696e74657276616c00000000000000000000000500030003000000080004000800000040000100240001006c625f706f72745f737461747300000000000000000000000000000000000000050003000b000000080004000100000008000600", @ANYRES32=r9, @ANYBLOB="3c00010024000100757365725f6c696e6b75705f656e61626c65640000000000000000000000000005000300060000000400040008000600", @ANYRES32=r10, @ANYBLOB="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"], 0x8b8}, 0x1, 0x0, 0x0, 0x48045}, 0x8040) 10:03:58 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) r1 = dup2(r0, r0) r2 = socket(0x10, 0x803, 0x0) sendmsg$BATADV_CMD_GET_MESH(r2, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0}}, 0x0) getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) (async) bind$bt_hci(r2, &(0x7f0000000040)={0x1f, 0xffffffffffffffff}, 0x6) (async) write(r1, &(0x7f0000000280)='#\x00\x00\x00', 0x4) (async) r4 = socket$nl_route(0x10, 0x3, 0x0) (async) r5 = socket(0x10, 0x803, 0x0) sendmsg$BATADV_CMD_GET_MESH(r5, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0}}, 0x0) (async) getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x3}, [@IFLA_LINKINFO={0x20, 0x12, 0x0, 0x1, @sit={{0x8}, {0x14, 0x2, 0x0, 0x1, [@IFLA_IPTUN_LINK={0x8, 0x1, r6}, @IFLA_IPTUN_REMOTE={0x8, 0x3, @local}]}}}]}, 0x40}}, 0x0) (async) r7 = socket$nl_route(0x10, 0x3, 0x0) (async) r8 = socket(0x10, 0x803, 0x0) sendmsg$BATADV_CMD_GET_MESH(r8, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0}}, 0x0) (async) getsockname$packet(r8, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(r7, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x3}, [@IFLA_LINKINFO={0x20, 0x12, 0x0, 0x1, @sit={{0x8}, {0x14, 0x2, 0x0, 0x1, [@IFLA_IPTUN_LINK={0x8, 0x1, r9}, @IFLA_IPTUN_REMOTE={0x8, 0x3, @local}]}}}]}, 0x40}}, 0x0) (async) ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(r2, 0x89f0, &(0x7f0000000a80)={'syztnl0\x00', &(0x7f0000000a00)={'ip6gre0\x00', r3, 0x2f, 0xbb, 0x8, 0x81, 0x1e, @private2, @mcast1, 0x20, 0x10, 0x0, 0x1}}) sendmsg$TEAM_CMD_NOOP(r2, &(0x7f00000013c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000001380)={&(0x7f0000000ac0)=ANY=[@ANYBLOB="b8080000", @ANYRES16=0x0, @ANYBLOB="00012cbd7000fbdbdf250000000008000100", @ANYRES32=r3, @ANYBLOB="6802028040000100240001007072696f72697479000000000000000000000000000000000000000000000000050003000e00000008000400ff0f000008000600", @ANYRES32=0x0, @ANYBLOB="3c00010024000100757365725f6c696e6b75705f656e61626c65640000000000000000000000000005000300060000000400040008000600", @ANYRES32=0x0, @ANYBLOB="40000100240001006c625f74785f686173685f746f5f706f72745f6d617070696e67000000000000050003000300000008000400", @ANYRES32=r3, @ANYBLOB="08000700000000003800010024000100616374697665706f727400000000000000000000000000000000000000000000050003000300000008000400", @ANYRES32=0x0, @ANYBLOB="40000100240001007072696f72697479000000000000000000000000000000000000000000000000050003000e000000080004000101000008000600", @ANYRES32=0x0, @ANYBLOB="38000100240001006e6f746966795f70656572735f696e74657276616c000000000000000000000005000300030000000800040009000000400001002400010071756575655f69640000000000000000000000000000000000000000000000000500030003000000080004000400000008000600", @ANYRES32=r3, @ANYBLOB="40000100240001006c625f706f72745f737461747300000000000000000000000000000000000000050003000b000000080004000500000008000600", @ANYRES32=0x0, @ANYBLOB="3c00010024000100757365725f6c696e6b75705f656e61626c65640000000000000000000000000005000300060000000400040008000600", @ANYRES32=0x0, @ANYBLOB="3c00010024000100656e61626c65640000000000000000000000000000000000000000000000000005000300060000000400040008000600", @ANYRES32=0x0, @ANYBLOB="08000100", @ANYRES32=0x0, @ANYBLOB="4400028040000100240001006c625f686173685f737461747300000000000000000000000000000000000000050003000b00000008000400ff000000080007000000000008000100", @ANYRES32=r3, @ANYBLOB="e801028040000100240001006c625f74785f686173685f746f5f706f72745f6d617070696e67000000000000050003000300000008000400", @ANYRES32=0x0, @ANYBLOB="080007000000000040000100240001007072696f72697479000000000000000000000000000000000000000000000000050003000e000000080004000700000008000600", @ANYRES32=0x0, @ANYBLOB="3c000100240001006c625f74785f6d6574686f640000000000000000000000000000000000000000050003000500000009000400686173680000000034000100240001006270665f686173685f66756e6300000000000000000000000000000000000000050003000b0000000400040038000100240001006d636173745f72656a6f696e5f636f756e7400000000000000000000000000000500030003000000080004000200000040000100240001006c625f74785f686173685f746f5f706f72745f6d617070696e67000000000000050003000300000008000400", @ANYRES32=r6, @ANYBLOB="08000700000000003c000100240001006c625f74785f6d6574686f640000000000000000000000000000000000000000050003000500000009000400686173680000000040000100240001006c625f686173685f737461747300000000000000000000000000000000000000050003000b0000000800040008000000080007000000000008000100", @ANYRES32=r3, @ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB="b40002803c00010024000100757365725f6c696e6b757000000000000000000000000000000000000000000005000300060000000400040008000600", @ANYRES32=0x0, @ANYBLOB="3c00010024000100757365725f6c696e6b75705f656e6e976c65640000000000000000000000000005000300060000000400040008000600", @ANYRES32=0x0, @ANYBLOB="38000100240001006e6f746966795f70656572735f636f756e740000000000000000000000000000050003000300000008000400ff03000008000100", @ANYRES32=r6, @ANYBLOB="d001028038000100240001006d636173745f72656a6f696e5f696e74657276616c00000000000000000000000500030003000000080004000800000040000100240001006c625f706f72745f737461747300000000000000000000000000000000000000050003000b000000080004000100000008000600", @ANYRES32=r9, @ANYBLOB="3c00010024000100757365725f6c696e6b75705f656e61626c65640000000000000000000000000005000300060000000400040008000600", @ANYRES32=r10, @ANYBLOB="4c000100240001006c625f74785f6d6574686f640000000000000000000000000000000000000000050003000500000019000400686173685f746f5f706f72745f6d617070696e670000000040000100240001006c625f686173685f737461747300000000000000000000000000000000000000050003000b0000000800040001800000080007000000000040000100240001006c625f686173685f737461747300000000000000000000000000000000000000050003000b000000080004000300000008000700000000004c000100240001006c625f74785f6d6574686f640000000000000000000000000000000000000000050003000500000019000400686173685f746f5f706f72745f6d617070696e6700000000"], 0x8b8}, 0x1, 0x0, 0x0, 0x48045}, 0x8040) 10:03:58 executing program 5: syz_open_dev$evdev(&(0x7f0000000240), 0x1, 0x80) r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000, 0x0, @perf_config_ext={0x0, 0x3}, 0x0, 0x0, 0x0, 0x0, 0xff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) timer_create(0x0, 0x0, 0x0) timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0) write$binfmt_script(0xffffffffffffffff, 0x0, 0x0) timer_create(0x0, &(0x7f0000000000)={0x0, 0x14, 0x0, @thr={&(0x7f0000000280)="69a895bc245902ef5ed95c5e33e0dde5ba91330a659b0830f052e947ee471d76bf80f2d39163ee20f7ad071399ffcac41ba2d698", 0x0}}, &(0x7f00000001c0)=0x0) timer_settime(r1, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0) openat(0xffffffffffffffff, 0x0, 0x0, 0x0) timer_gettime(0x0, 0x0) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) unlinkat(0xffffffffffffff9c, 0x0, 0x0) perf_event_open(&(0x7f00000002c0)={0x2, 0x80, 0x5, 0x7, 0x0, 0x29, 0x0, 0x8, 0x80409, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clock_gettime(0x0, 0x0) pipe(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r3, &(0x7f0000000080)={0xa, 0x8000002, 0x0, @loopback}, 0x1c) sendto$inet6(r3, 0x0, 0x0, 0x20058041, &(0x7f0000000040)={0xa, 0x2}, 0x1c) splice(r3, 0x0, r2, 0x0, 0x1000000000000003, 0x0) ioctl$EXT4_IOC_ALLOC_DA_BLKS(r0, 0x660c) [ 1660.216320] RBP: 00007fbb92e1d1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1660.223589] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1660.230984] R13: 00007ffc96d7392f R14: 00007fbb92e1d300 R15: 0000000000022000 [ 1660.241089] audit: type=1804 audit(1642241037.840:213): pid=22578 uid=0 auid=4294967295 ses=4294967295 op="invalid_pcr" cause="open_writers" comm="syz-executor.1" name="/root/syzkaller-testdir081684894/syzkaller.gQCFju/398/file0/bus" dev="sda1" ino=14248 res=1 [ 1660.315248] audit: type=1804 audit(1642241037.840:214): pid=22578 uid=0 auid=4294967295 ses=4294967295 op="invalid_pcr" cause="open_writers" comm="syz-executor.1" name="/root/syzkaller-testdir081684894/syzkaller.gQCFju/398/file0/bus" dev="sda1" ino=14248 res=1 [ 1660.353455] audit: type=1804 audit(1642241037.840:215): pid=22578 uid=0 auid=4294967295 ses=4294967295 op="invalid_pcr" cause="open_writers" comm="syz-executor.1" name="/root/syzkaller-testdir081684894/syzkaller.gQCFju/398/file0/bus" dev="sda1" ino=14248 res=1 [ 1660.382185] audit: type=1804 audit(1642241037.840:216): pid=22578 uid=0 auid=4294967295 ses=4294967295 op="invalid_pcr" cause="open_writers" comm="syz-executor.1" name="/root/syzkaller-testdir081684894/syzkaller.gQCFju/398/file0/bus" dev="sda1" ino=14248 res=1 10:03:58 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) r1 = dup2(r0, r0) sendto$inet(0xffffffffffffffff, &(0x7f00000012c0)="e1158a927f1f6588b927481241ba7860f46ef65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a97425a3a07e758044ab0ea6f7ae55d88fecf9221a750fbf746bec66ba", 0xfe6a, 0xe, 0x0, 0xfffffffffffffe2b) r2 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r2, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000074, 0x25d) bind$inet(r2, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe1}]}, 0x10) sendto$inet(r2, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) setsockopt$sock_int(r2, 0x1, 0x21, &(0x7f0000000600)=0xda9, 0x4) sendto$inet(r2, &(0x7f0000000640)="febc3b777d549ffacdd9ee6633af6e737f2e6d654105f04716908ec7af8775d530c2cc83e31b3f3c7f9e351ba553af429ff9367031b7ec0aed61ea15d08f299f9241acf82356d0859eb45aec582cd03d4cdbdcd6755c166133d9ba85529c0ed8913418402ba7d907115e75", 0x6b, 0x4000081, 0x0, 0x0) sendto$inet(r2, &(0x7f00000012c0)="e1158a927f1f6588b927481241ba7860f46ef65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a97425a3a07e758044ab0ea6f7ae55d88fecf9221a750fbf746bec66ba", 0xfe6a, 0xe, 0x0, 0xfffffffffffffe2b) r3 = accept4$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @empty}, &(0x7f0000000080)=0x10, 0x80800) sendto$inet(r3, &(0x7f0000000000)="667b84d9db7c2e5284dbd4a85a40d527d202045e6eb75abaaf474308707bd3d6985c0001757c82", 0x27, 0x4008800, &(0x7f0000000180)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x25}}, 0x10) r4 = accept4$inet(r1, &(0x7f0000000040)={0x2, 0x0, @empty}, &(0x7f0000000080)=0x10, 0x800) sendto$inet(r4, &(0x7f0000000000)="667b84d9db7c2e5284dbd4a85a40d527d202045e6eb75abaaf474308707bd3d6985c0001757c82", 0x27, 0x4008800, &(0x7f0000000180)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x25}}, 0x10) r5 = accept4$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @empty}, &(0x7f0000000080)=0x10, 0x80800) sendto$inet(0xffffffffffffffff, &(0x7f0000000000)="667b84d9db7c2e5284dbd4a85a40d527d202045e6eb75abaaf474308707bd3d6985c0001757c82", 0x27, 0x4008800, &(0x7f0000000180)={0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0x5a}}, 0x10) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000005780)=[{{&(0x7f00000001c0)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000000100), 0x0, &(0x7f0000000240)=[@cred={{0x1c, 0x1, 0x2, {0x0, 0xee01, 0xee01}}}], 0x20, 0x80}}, {{&(0x7f00000002c0)=@abs={0x0, 0x0, 0x4e21}, 0x6e, &(0x7f0000000340)=[{&(0x7f0000000440)="2ae70d991fc61a98edea0b6a339104a34d730e4325cbf8ff81a19c5a1899701ec58c69139aff691415207e79c3bb3fbf73a6bbcd24e82ae7e1c3884d41afda4a9a481e098f3702ce6ad60056ecbc645c51945bb488e3f7c7e9f7637c4af95125de", 0x61}, {&(0x7f00000004c0)="8514771304585ce1887762c51488b1dddb89f53804e8feaa673dbcae862cc1768b89500b1cee9f26a6c2bb27d47f70aef6122e334672c2a27b6a3766ced266b574338f884b2a7b16318912c41fe1a42a3e35", 0x52}, {&(0x7f00000006c0)="98c435ff07d88483ace6e1b07d352556d99fa7bb970f63d64ccad56e023f227034ca16b556227adad3552275bbaf5dd6742db67b95d81dd7c6b0c4aceb77a29b342186d5fbfe2b0947ff81ea87fe92479e66e3533c5fa025dbe796d459a51f3960cb1b52dd83f53ca90e3d10db48f0389ea574d53f144baca3e0a353fd631a2eb31bf4e54a02f79a473677b34b35098d7b27c5ad830bd93b3071aec00aa596d58168a9b61b2ed0e2b746eb5f811fa35bc5dabbc411395e8eeb46c8be524b0b4e53998fabf5831dbae01e1c80", 0xcc}, {&(0x7f0000001340)="44bf4f1435dd7b60777c1601078126a926734fe2887f8b84ca2080cc2cf1a47775b5690adabec62ad2db8ed0aa8e09e1d9dc8c609f8dace6c61cf5d305ec09ab1ab595d1e79f0fccc2edcc21560de0555cde6a0028ad9abff0a9f6edd8ad28de7a6c1e2e51aefdc42a2fde9fb54a0a628e1ba835d96cb3a36f7b589755024fff4644eaeffb35e2e3fe597e9ff20eabe37d1db681c8b982ff7b3ab91f763e199adc37f7dada4660ac19e2a0ede8fd66e7dd4c9b6e5c10cbf7f528ecb52e84e9c5f7bda012aa018124c6c133a85870bc5be07a7e1ef7b7e536c149c99175daa29380e0ec9c3abbbe7b44f0fa6bb65780a045f71ff3553430ffeaf7ffe1c72866612bcdcd5c4bebb4f7c375ae4305aac6039dcc0d91c40f2816a99686a6390a50918026c93b9fecdcdd1926d408af23b88e6fd831b4032be3a57a022d13e422a10d3936be15d70153c06e78fad05cfa250d941860fd0ea44e96f9846357aba719fc44fc0511c3e4d56e3f6157edff07e06f503c0f99988914cc9691e453d245d2568c0a32dabeec30d38414a697cc51ab1c980b79eaf7d4ba658fe53b2f1d273402bd1cc47118d71c594b45102822b66089cea74dad31fcc03b806f0515a8975a3c5c0a031704342da2bea6ed98a0a62785fa1943750ea82d8b6bc6431e2f570203f9465ed15b57580a11a9df9eeb1afadbf34cfc3e7abeb0fa24522d0b47fe47b93eea6cf4336980dca2cb9a52df2a42951446c1b2a74de24e3ffaec618e3ab3547fc492ba15cfe963461b4446b0dfa02512e9cf8056cdbdbf945f11348acfc714534a94f5c63d8a7290c1cbec65302def61d3c56a0a5b1f0da18d947aaf7ed469cde42d96da8904c51210866bd8d2503f7093df8d904e68a08ec02e84dea47f5625ba47e9575fb4e7a724618fe1db27ac33196ad1676bd2f7f07ae7ac83d5fdc5d22edc618a06a17d535b07913cfd7d91e0271ded1eb2970d024132e9d64b95daf6ecd59f5b2ec0eb6a5e0ebb5fb3fae9580440dd83b7d89d1e163d439bf0a66dc9e5083fabf08b2ce5ea66352cdb3b7f21b0c7268ade56d345cbc956dc04b4d612eb26d785da6acaddc5401508aee62505da59c804fe6176058e80c9d7c8f03a52b5596cb42972a90f72a244d14b9694cefde38971fa06aaac10acb92152722106fe850a3b144802af8fcbc88b0b6f0d0c723de92af63c756990a39214cc9159bd2e301055be53e3824fd0992576827136da75f1a602a0ad5b98b7bf752863d16639cf7e7a6d2b81c762c8dda89632ee2f566f4a153b042fe9d53746b282e960e2f12f41d3ba2b406fea4a44a7a8e391de332bea05d89c9a01b6b2b23856fac28de638e0d1f420d66e5a2f32f0b6bbe51705866d2970fb577d4fb1e100320a86f38adeffc9b48b5db2c5ad0a94460c3e7843cfff1365561a122019835d61def89ce521e0fea737a11955f4eb0c3c8e837d609857d34615ea3ae2dbe9ad62ea423008f25dfd32a11f1cf2272170fe4deb53962a6714e1b5dd6f5390d29cd44f90db2dce3ee1ca0417538caf97d31b2e666d023dffc8ec0f6d55dd9a12c7d3c4aef778677053abd3de4104e282bd5762a69f7ee1d75e370d92dd6fb05fd4d8cb0136c8948ac18f66e7c8a0df679f164e75ba36b9254b382cc0e1d89653ac6faa8638c34c3588a0ad95f1b5c19d76df724b34a85b399df3c8ccce0465fac27b12b1760bc905740a9eafab87228b8589966a566d74c92e3a94af969dde0dd76f0de0a05eefddccdd57a27bdedf93bd27de3da05d5c466a9bab7bd79a7131df910cdf6c55a55906b5e3a97619b25681daf2be20b9d33f9395b53ae34b3eca37a21784705300f38694328049489d3b9da74b434770e57615d6cfbf365935c212166c17d05bd5d657a00d9ac8d688bdadd7547040a353591c379d49e31ce28c9c88f1415194d9c2da33b7ec3395f2a2c0adf9c98951416c6fb421d96dc2ceba4bae92b45bf9ea9501d0e01d057fb482ab6b6d9aff19520685c73a12f7755a00ba123754733f40f53a943adc4fada1225e1c7db7f876ad772cc41517259448d66a08382f7964b9b1f8f1d64b1c9e9e8a7145ed488bebfd6f0814b8f948624797b4e85afca425ebef375abc5c125f7a86a4095e3c370fa90519d10c4178b3259115a688c12fcf9f300196db1b6622de18dac323ea129740aa31a250e46029ccebac7c9d80a5599aa534b36c2495127e2f81f3872f8af6c0296481ebafd0fb2a9d6da72e3fcd2670ae2aa0338184e363ca091e54e55ba05be93cadbb20bbe15ae51e8bcff1566183510154d9b69fd708efc92a0c6fa2e9ebad09ef1ef1ce0e7fa005abef29d27bae3f9e10d33dcc94e33eb89999e54a8661ff76b6ae507096515057fafb48c7ce5833d18adf8e9fa70d2d1be978a557b03e09e149028fb9e9bf68f622cb742f60e60022ffa2561c0817052dccaed8ae5b3b17e80683b3bacdfe73623c4723112076bfff6efb819a27cae6ae025d15325d4b3727641a9d34a9b227f64f8f9600834431a5c766fdf639519b7188f2bc698b093d23c963a920cb1ca194ec7499f6db9db5b5d051fb6c82b4517442e6f3ed1923c8dfc96202c17320559f8ed3288e7ad48d07bb24678eaf8ee7c54ce5cf9c2a6cda4ad61b0a1cf615435b15fdc13b00f9619e1f5731396d38dbc0114af0ab29a116e6b78fbd02dea14091e0af7cc2a2dd72413b70683a6c491c4851ee379ab8f1c4156ed009970257f55425b16a41205db8a084517726f853ff27ab6b3cec1a27756b6ed4c2ab8133aab60d2aca393173183d98353525ac8c8015efec54c671cd56b444d91018eac262b4bf810ad299f03de8c92389336e4fa9ded0d7463d6327fc873a81f3f7f42785f8e557d154735386cc62406a4ad5cb11447306880cadfb71f6bbde8c923e10bba3a9b86b20223c022ef9147f48be558de681350085f44ba5c96dc9995eb31a683acf3f8b19d9085a239b2575623cfac45ffdca0b38387fee5e14fd9c1bb340a48e4d0d149e3c5a6d7025f1812cfa0eef077f0010587bab2b04ee04b75a0658e4585d91f04945cfd5ca53db24d0800d223319103a7382cc42f42deb40636409b7c47790bc5d0a671c6449f055edfbcc6014a90b0c0a9d0999665ba50d5880dd728bf79cc19d706c29c94425739ab471fcd5c27ccdb424de7d085b8a0443a44c912c0519bfcf75b16c668881a5a5fc297bfc4da5cc91339867f39719941f85bea6a4da189e149597f88666c8209b0422436e718aaf82937d35cfcef2f9530a3ec1340fe836e9f3ae1e709911fb94a9443e87528266c75c3a2408b2adce4c4732b8ca2da54621fcb34b14c5ee64c1289ac86b98e571e9641130be3e395a1e1564f114ef94cb8f7d6a25b5c512f3d66c4eb12d8009779fa8797d37d3cf124d499ba3dc7b18f6ecf63060fb55e970390f58cd273f507f096c0eae9f2d559c98f0d6adb007429fb44810d3fd189579f0f24cce03a9462de7c9e5b1f280540c4b033f2875126a460d04fea7b9bd8dde7a915b9e83d6e747eb3f8753e0590228513bf403dd843f3e6f929720b879c3c4708dc095e21b3cb378c139c6da379219a7fcf27ea1adb7e7ecefec38ec440e3f8d7384e6520f1604b93c0a03675a2974a2ceaed850993bc4e0f6acbace050317a5e08b53b12063aea7b64a636249a92ae6570cf8fe095d55ffb79923ee2c3be03d9cf01088a173e2aa49f83a8595b9e558e9ad92aec36939e53cebdd92fea88430e926a8651a77a1788aee60e09451a432e728f25be5ec2a9adbaaa7774c5318d1a2d78224117c9eea379bfacec5ef47245378929d66ca6a5912c6314ac4a2b8d993b535ab7b127ad734366fe7fbb5b02c3097da1c11bee569413755d7e40281075af246a77522c3c1b82f0295bd75e8e4d376b4fb15c6318cbb1551a6bb7dd2a85f5e281dedbeb2c13cd48b4ea4ba27287a45850c73d899bedfdd9d0fcb8c8014735d0627acb9c284f5885394915167bf6be610deefd1b4752665d4488dcec42813ca849bcd66f0e9be73b515580a47bbf272b858cae033235822b0ebe3ee4e270fd20846a3d5ef88981f8dba07c05b65fc4394eaa140887841427ea14db554ea7a2c1b043972eccd6271bbab84f8fc8f6eab5ab74d50619526a85ff9f28fe54e7725b045de4bb386d500b259241a9f5f035ba1afca579e9a9e82b0c0bd2ab170be1ce42a82d8b3cf6a42856f841fc0cd3d84c9243f46a1f8415aeb34f9ee8c1d7be2c45b25895d8de2bf6e29a7f64fcaa2fecec2c06c0eb9f1192b587f2eaef83da19df34c95cf9d9a69b47ffc5816c27e0d0e305f8d73fad10fd2a4e31daa197449492e53a0bf62a391cf1d64d8d883549bd21991f2c7c6839d42112170ccf81b096ae6c636bdf3fc79462d4ab51fff1d17a708da0bd68280df2c2ed91c7ad47c8755d3957e58f45d1ffde87efd964b198d73b5fe8bc1de75d10cd2c9474dcfeae395a400a5f9c48345aad8cbc1582399537db440fd52e2791c3fc0ae9b9edc1bc15c7b1bfcf817df890aa9a21d753d5b6f24b9a2334b6b20f8eedf9504583c5013e34323ad01e792d907457aa2829a1d51caa794bcbdefba47d48417084faaf4e5eae49ce1bf2ce6a13a7f859e2174456e3da9474f2439378936ba7cc0c7f2a12522e03f5e574655ece7f148c7520270cf3f04bdb6eee164ccb47922b531a978b4b88a42da64a83141f7cd5a944adab04f655aec3809019af969b320e5df33769a43483b55b47ff68633ff860a55a06ed00480acf7c378094e2001ab1c5e7f5d453495c78dcc12560b2ed0e80045f51a0194c8ab2e3c38d2fa2fc875ff1209a81fb4206fc00fb767c8659d243007b8b5fac18476b51b2029578d37a78fea6ced1dee4a1b30e611552f3297cbf657904ed31a275c4f2051399075ee98f144840f63b6c78e91bce48aadb3f69ff06a547fe5fe8483ab25432a107a55fbce8dfdc7395503198189206175f2597c1498bd564f9d3734fd76e6d5459b2d0e6bec9899f5b31cf5fbd6f93aeae35bd51c20ca4d43d4ed37ddf8f5c905aca41bf937111e54fac2dc70855924e93b3898e3826f2e41d8f8d1e4d2a6021c75f1bce6b2c6bd75aa8ae44ac6ebc0082311aa6faf8231455d03b54a0ea59921deb22e340292420cc350157c955ee2becd1c5ac1dfdc8c6c7593223b889e2229b012ee9319ba3e6330e7686b91dfcaa21893a14d8366a57b39461237869254a9d9870ef02923c120e088bb33a817996f84d7ecc68f07839526c955f1b266f1825d0bb446cbd418a3a7afa5b4447e703678f4ec2e3d5d128319b4534f7031b5967f7c3dedbf5537158aff2a7d6fa888d4e9461753f2275044ee96006b63033ca036a1f41af0b37fb2cab9342d155570dfee3d4a84a84708bdaf564f4166f6f129c9785f2d5870de3087f89a39c58bcfd14b26479e945563e8fb8f7e9a603fa0f86e5341e88d7754182675d99110b8483d9cfb8fdd5af834fa1ef2da0884fd75f7c3a0d1716151a754259c620c916392801327798036726281108006045dfa2a9637f0d18c6a589144f7b86d87e3b9df19f60aa6386eca09a3bd1d20716c2bd9335538788080f901e8c4759cc6b77c1887a85f92639198f3c6a08d807facb265ba7130f44b46ec4cb72bed56220309721f52460bfa3be5d6ac6b52dee1ed1678a0ffedf3fe37e67dc7a489746207d7f91b34a3ad44a6754ff99900b4459d9900160b91d501c0df443f8f0ac6e67db9326f3801984cab3f879ada2609557e", 0x1000}], 0x4, &(0x7f0000000900)=[@rights={{0x18, 0x1, 0x1, [r5, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x78, 0x20002000}}, {{&(0x7f0000000980)=@abs={0x1, 0x0, 0x4e24}, 0x6e, &(0x7f0000000d00)=[{&(0x7f0000000a00)="4f01ab88754e54ae5f7254852c881f3cdde072a781c7541cbe99f901b1861b2f5c8aa435fd16d372394b00961a0bc8411aa3980c014395e8fe032308394fe0c8139317f21199e358c20a27c5d24824a84822050cf3e041385465b11be46860c82b7f12f4ef4d96b96a14aa8f3daf771e9206c07057ff0a5eebf7fa25a7344dadabc09b9627610569c2d64f5138cd329db5da86", 0x93}, {&(0x7f0000000ac0)="896a9c995c54d1f333dad4c485cac71110ad4c9501bdf60ba937732be1e485a0b485b6a6f7f51122f70ceacd0fef5aa6c75029ccd923b7e0d23acb876291a46d14a2d06a6713b5afd81f1d7c", 0x4c}, {&(0x7f0000000b40)="f5642dc5dfa41bcb628af82eb9d497dd39", 0x11}, {&(0x7f0000000b80)="29b4ee3dd662aa5e6dac90ccbaa828c2a3018d8a28168bd78ef4c502cfc3e4e6d1bb821341a52906385c544499060c0903da55cc044349b161ee70caeb35f3f4483743507d909fd057f1faec080ea65de0780cb1ad2a0e2b37d7a39e5f84b8806cef6a6331446b99b8d114468630fa1e5fbfccc76ad92afef5acd3e62c0e11aeece9237fae241562d3c08915d18ed3ce639902b6941df5ec", 0x98}, {&(0x7f0000000c40)="213aafe80d78000e2af46e647f7362ec45433a91174e994c1b1240cc094a8e7bb2a4eeacd04dd99b57128efba823eb0c3f035561ff0178da21b0a5f80565a2c3597fa3a0a4eb3b1c8f12bbdddcef", 0x4e}, {&(0x7f0000000cc0)="13eb5282abc1bbd45ea17aa160effa655832c1418e9da8abee6cb39b8c3f22414157325b00b924e0426d205e6049b09990cb101d6688", 0x36}, {&(0x7f0000002340)="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", 0x1000}], 0x7, 0x0, 0x0, 0x44}}, {{&(0x7f0000000d80)=@abs={0x1, 0x0, 0x4e22}, 0x6e, &(0x7f0000001040)=[{&(0x7f0000000e00)="05e7520f9406868bb9b76319fe5ac8d31c08c46d5a66d04f1e5f28dd835cb4c786b8b7fedfc6e27787f70f16182e4dbd6bc32f247e3e848c1b5b11c65930abbd03788efe6d101bd7bb386ecf899bb6295f5d18bd0a6f1af0f6697d1f8691e55b88e1a9944bc435c992efcdef4c105da00e66a20c347c8188e6c1899e9b8c8cd9ed0cb1ad779b30fef8942b20b31a74c714df61376aa23e7229afc0a5486e1475c5bc7ede8f5d915cea377afef3f318a70496d0042e06292b718b2aa4d4c255379860aa3e76b4b16340b364ffae087b355104575c0cb3c544bd62271a8b296a14235e", 0xe2}, {&(0x7f0000000f00)="850623db4f9a148d4553a6d83f877ae6948e0c8616f507a28b35b9aed8d26c1e", 0x20}, {&(0x7f0000000f40)="d190265af4363d1754ebb2149fb6", 0xe}, {&(0x7f0000003340)="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", 0x1000}, {&(0x7f0000004340)="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", 0x1000}, {&(0x7f0000000f80)="11c48b94c9d069f1c63e563903af6cbf617fea3c2639062b87663a6cafaec64298565394b582145e5cd8d3f521b5c78989ef084e47f1ef13d5a01acb35d7291c11ee7c49e5335cccf47008faa47370f4d10028cf44f8a3a7b78b88cd03453d430d3a1d59c4393030cfc73bf44e41473cd1e94c1f260ee7df646ec2c5098c97f6ba7e42da9e03c266e285380cd9246329971403b9af89b1e7282a454bbb1e", 0x9e}], 0x6, 0x0, 0x0, 0x1}}, {{&(0x7f00000010c0)=@file={0x0, './file1\x00'}, 0x6e, &(0x7f0000005580)=[{&(0x7f0000001140)="b0511ee66fc89f9d5460c0e15d6eb56eb9c67fc3ca1fb778f8218edb2132280973ac896200e0e8cd2ac81555661947dbdbc3da9539168d118c6039a35a900803f59e2f87b1786da01ee84be1afc38fae2ff484988d9a9055ffc2ec7f6bf1beaaf89a6c9a8e909706426e42debcc9e6c34956fc9480ee8a3c0ab47de3c60c2b60ecd7c869f8310a952b2e687305d70f6479f25d8453098d76c74f1b8c955d334b833a759762b7d5e343aff134a5826cb0c52b12dd859b739021641b1981a17f34855f0a949a52b0fd025eb3927ad728bab54d9db27a15e5b367c90be8055b", 0xde}, {&(0x7f0000005340)="156366f0f3ebcd5328f04c2aa98a74a229164e8f42aeb3612c224392db4a8ab038761dcf3ad70ed5e2d873a70e1c8614182761a27bd3c2fda6693cdfb9793425985f6ee84e06be0a19037bff51ba09dd4cf69125c04084426b26dca92dfb13c2f4802fb6367a30c25d15660b0440f263d997cbfd0682c4d7d836b4ee25bb23bfc42986ca525bb157eec2d06d7a0a30951a17a92e8a257357f17d4520d928fce37d28d06d37c33dfc9f2e0892509c007120034a5fe2b69c3a345b15b2418045a72fdab6d6d1f354aae2ed2d5021f2fd1bec2b3bd6b9f1d893af6f53b38fbf92eacb569a44bf", 0xe5}, {&(0x7f0000001240)="e8a7b46fd53634b79abe666d6d47d2b2cae83d8282266faca461735395e11b8a91e61dd681a4123e42e258d7f9ee9041c31cc24d5278cf6d46d0cdd9180fb2", 0x3f}, {&(0x7f0000005440)="257daf350ec3e16845e50a2f264f1d1ea95cf32d4294fcf78cd06540dc4f959d24bb22931838e7fe41f4215be0e36e429a90020a69928e331fbb6b0cfba258352e9c95acf06b50dd20e8faca0de06da7d58574e2f04481bf06949ca3d62598ba9422a49474ea3f87f4a582cb54d2e6c9", 0x70}, {&(0x7f00000054c0)="847edc1f7d188a1757503b6c47e35e67b504c0be1261e7fa48509d364389989a54929fa1a8b5c3cd83d48585160bd841f0b03a2bc867516727f2179761581e0fccea978886bacc6ebf3347d58e2b1c9a5208e9e660d789cffc12d7bccb6ec09b36220c7f03b798780372001b3eed1491e79f620929b57ce00ba96aa61d7b7a09cd284cb3da450faddc313f33f7c144b9033efa8023", 0x95}], 0x5, &(0x7f0000005700)=[@rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, r0, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0x48, 0x80}}], 0x5, 0x20004880) write(r1, &(0x7f0000000280)='#\x00\x00\x00', 0x4) [ 1660.406216] audit: type=1804 audit(1642241037.840:217): pid=22578 uid=0 auid=4294967295 ses=4294967295 op="invalid_pcr" cause="open_writers" comm="syz-executor.1" name="/root/syzkaller-testdir081684894/syzkaller.gQCFju/398/file0/bus" dev="sda1" ino=14248 res=1 [ 1660.433913] audit: type=1804 audit(1642241037.840:218): pid=22578 uid=0 auid=4294967295 ses=4294967295 op="invalid_pcr" cause="open_writers" comm="syz-executor.1" name="/root/syzkaller-testdir081684894/syzkaller.gQCFju/398/file0/bus" dev="sda1" ino=14248 res=1 [ 1660.458596] audit: type=1804 audit(1642241037.850:219): pid=22578 uid=0 auid=4294967295 ses=4294967295 op="invalid_pcr" cause="open_writers" comm="syz-executor.1" name="/root/syzkaller-testdir081684894/syzkaller.gQCFju/398/file0/bus" dev="sda1" ino=14248 res=1 [ 1660.483290] audit: type=1804 audit(1642241037.850:220): pid=22578 uid=0 auid=4294967295 ses=4294967295 op="invalid_pcr" cause="open_writers" comm="syz-executor.1" name="/root/syzkaller-testdir081684894/syzkaller.gQCFju/398/file0/bus" dev="sda1" ino=14248 res=1 [ 1660.507609] Bluetooth: Unknown HCI packet type 5e [ 1660.512779] Bluetooth: Unknown HCI packet type 43 [ 1660.518272] Bluetooth: hci10: Frame reassembly failed (-84) [ 1660.528196] Bluetooth: Unknown HCI packet type 5e [ 1660.533470] Bluetooth: Unknown HCI packet type 50 [ 1660.536049] audit: type=1804 audit(1642241037.850:221): pid=22578 uid=0 auid=4294967295 ses=4294967295 op="invalid_pcr" cause="open_writers" comm="syz-executor.1" name="/root/syzkaller-testdir081684894/syzkaller.gQCFju/398/file0/bus" dev="sda1" ino=14248 res=1 [ 1660.541844] Bluetooth: Unknown HCI packet type 5e [ 1660.567248] Bluetooth: Unknown HCI packet type 40 [ 1661.319084] Bluetooth: hci6 command 0x1003 tx timeout [ 1661.324458] Bluetooth: hci6 sending frame failed (-49) [ 1661.559166] Bluetooth: hci7 command 0x1003 tx timeout [ 1661.564527] Bluetooth: hci7 sending frame failed (-49) [ 1661.958742] Bluetooth: hci8 command 0x1003 tx timeout [ 1661.964138] Bluetooth: hci8 sending frame failed (-49) [ 1662.038693] Bluetooth: hci9 command 0x1003 tx timeout [ 1662.044099] Bluetooth: Unknown HCI packet type 5e [ 1662.049030] Bluetooth: Unknown HCI packet type 41 [ 1662.053890] Bluetooth: Unknown HCI packet type 5e [ 1662.058926] Bluetooth: Unknown HCI packet type 41 [ 1662.063780] Bluetooth: Unknown HCI packet type 5e [ 1662.068673] Bluetooth: Unknown HCI packet type 50 [ 1662.073534] Bluetooth: Unknown HCI packet type 5e [ 1662.078367] Bluetooth: Unknown HCI packet type 40 [ 1662.518660] Bluetooth: hci10 command 0x1003 tx timeout [ 1662.524025] Bluetooth: hci11 command 0x1003 tx timeout [ 1662.524063] Bluetooth: hci10 sending frame failed (-49) [ 1662.534347] Bluetooth: Unknown HCI packet type 5e [ 1662.539611] Bluetooth: Unknown HCI packet type 41 [ 1662.544457] Bluetooth: Unknown HCI packet type 5e [ 1662.549399] Bluetooth: Unknown HCI packet type 41 [ 1662.554253] Bluetooth: Unknown HCI packet type 5e [ 1662.559143] Bluetooth: Unknown HCI packet type 50 [ 1662.563995] Bluetooth: Unknown HCI packet type 5e [ 1662.568957] Bluetooth: Unknown HCI packet type 40 [ 1663.398830] Bluetooth: hci6 command 0x1001 tx timeout [ 1663.404167] Bluetooth: hci6 sending frame failed (-49) [ 1663.638720] Bluetooth: hci7 command 0x1001 tx timeout [ 1663.644027] Bluetooth: hci7 sending frame failed (-49) [ 1664.038601] Bluetooth: hci8 command 0x1001 tx timeout [ 1664.043879] Bluetooth: hci8 sending frame failed (-49) [ 1664.128657] Bluetooth: hci9 command 0x1001 tx timeout [ 1664.134102] Bluetooth: Unknown HCI packet type 5e [ 1664.139614] Bluetooth: Unknown HCI packet type 41 [ 1664.144452] Bluetooth: Unknown HCI packet type 09 [ 1664.150101] Bluetooth: Unknown HCI packet type 5e [ 1664.154939] Bluetooth: Unknown HCI packet type 50 [ 1664.160341] Bluetooth: Unknown HCI packet type 5e [ 1664.165169] Bluetooth: Unknown HCI packet type 40 [ 1664.598565] Bluetooth: hci10 command 0x1001 tx timeout [ 1664.598583] Bluetooth: hci11 command 0x1001 tx timeout [ 1664.603945] Bluetooth: hci10 sending frame failed (-49) [ 1664.614155] Bluetooth: Unknown HCI packet type 5e [ 1664.619422] Bluetooth: Unknown HCI packet type 41 [ 1664.624251] Bluetooth: Unknown HCI packet type 09 [ 1664.629187] Bluetooth: Unknown HCI packet type 5e [ 1664.634026] Bluetooth: Unknown HCI packet type 50 [ 1664.638932] Bluetooth: Unknown HCI packet type 5e [ 1664.643757] Bluetooth: Unknown HCI packet type 40 [ 1665.478624] Bluetooth: hci6 command 0x1009 tx timeout [ 1665.719047] Bluetooth: hci7 command 0x1009 tx timeout [ 1666.118461] Bluetooth: hci8 command 0x1009 tx timeout [ 1666.198520] Bluetooth: hci9 command 0x1009 tx timeout [ 1666.678467] Bluetooth: hci10 command 0x1009 tx timeout [ 1666.678471] Bluetooth: hci11 command 0x1009 tx timeout 10:04:08 executing program 3: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x0) (fail_nth: 73) 10:04:08 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) (async) r1 = dup2(r0, r0) sendto$inet(0xffffffffffffffff, &(0x7f00000012c0)="e1158a927f1f6588b927481241ba7860f46ef65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a97425a3a07e758044ab0ea6f7ae55d88fecf9221a750fbf746bec66ba", 0xfe6a, 0xe, 0x0, 0xfffffffffffffe2b) r2 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r2, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000074, 0x25d) (async) bind$inet(r2, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) (async) setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe1}]}, 0x10) (async) sendto$inet(r2, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) setsockopt$sock_int(r2, 0x1, 0x21, &(0x7f0000000600)=0xda9, 0x4) (async) sendto$inet(r2, &(0x7f0000000640)="febc3b777d549ffacdd9ee6633af6e737f2e6d654105f04716908ec7af8775d530c2cc83e31b3f3c7f9e351ba553af429ff9367031b7ec0aed61ea15d08f299f9241acf82356d0859eb45aec582cd03d4cdbdcd6755c166133d9ba85529c0ed8913418402ba7d907115e75", 0x6b, 0x4000081, 0x0, 0x0) sendto$inet(r2, &(0x7f00000012c0)="e1158a927f1f6588b927481241ba7860f46ef65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a97425a3a07e758044ab0ea6f7ae55d88fecf9221a750fbf746bec66ba", 0xfe6a, 0xe, 0x0, 0xfffffffffffffe2b) r3 = accept4$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @empty}, &(0x7f0000000080)=0x10, 0x80800) sendto$inet(r3, &(0x7f0000000000)="667b84d9db7c2e5284dbd4a85a40d527d202045e6eb75abaaf474308707bd3d6985c0001757c82", 0x27, 0x4008800, &(0x7f0000000180)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x25}}, 0x10) r4 = accept4$inet(r1, &(0x7f0000000040)={0x2, 0x0, @empty}, &(0x7f0000000080)=0x10, 0x800) sendto$inet(r4, &(0x7f0000000000)="667b84d9db7c2e5284dbd4a85a40d527d202045e6eb75abaaf474308707bd3d6985c0001757c82", 0x27, 0x4008800, &(0x7f0000000180)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x25}}, 0x10) (async) r5 = accept4$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @empty}, &(0x7f0000000080)=0x10, 0x80800) sendto$inet(0xffffffffffffffff, &(0x7f0000000000)="667b84d9db7c2e5284dbd4a85a40d527d202045e6eb75abaaf474308707bd3d6985c0001757c82", 0x27, 0x4008800, &(0x7f0000000180)={0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0x5a}}, 0x10) (async) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000005780)=[{{&(0x7f00000001c0)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000000100), 0x0, &(0x7f0000000240)=[@cred={{0x1c, 0x1, 0x2, {0x0, 0xee01, 0xee01}}}], 0x20, 0x80}}, {{&(0x7f00000002c0)=@abs={0x0, 0x0, 0x4e21}, 0x6e, &(0x7f0000000340)=[{&(0x7f0000000440)="2ae70d991fc61a98edea0b6a339104a34d730e4325cbf8ff81a19c5a1899701ec58c69139aff691415207e79c3bb3fbf73a6bbcd24e82ae7e1c3884d41afda4a9a481e098f3702ce6ad60056ecbc645c51945bb488e3f7c7e9f7637c4af95125de", 0x61}, {&(0x7f00000004c0)="8514771304585ce1887762c51488b1dddb89f53804e8feaa673dbcae862cc1768b89500b1cee9f26a6c2bb27d47f70aef6122e334672c2a27b6a3766ced266b574338f884b2a7b16318912c41fe1a42a3e35", 0x52}, {&(0x7f00000006c0)="98c435ff07d88483ace6e1b07d352556d99fa7bb970f63d64ccad56e023f227034ca16b556227adad3552275bbaf5dd6742db67b95d81dd7c6b0c4aceb77a29b342186d5fbfe2b0947ff81ea87fe92479e66e3533c5fa025dbe796d459a51f3960cb1b52dd83f53ca90e3d10db48f0389ea574d53f144baca3e0a353fd631a2eb31bf4e54a02f79a473677b34b35098d7b27c5ad830bd93b3071aec00aa596d58168a9b61b2ed0e2b746eb5f811fa35bc5dabbc411395e8eeb46c8be524b0b4e53998fabf5831dbae01e1c80", 0xcc}, {&(0x7f0000001340)="44bf4f1435dd7b60777c1601078126a926734fe2887f8b84ca2080cc2cf1a47775b5690adabec62ad2db8ed0aa8e09e1d9dc8c609f8dace6c61cf5d305ec09ab1ab595d1e79f0fccc2edcc21560de0555cde6a0028ad9abff0a9f6edd8ad28de7a6c1e2e51aefdc42a2fde9fb54a0a628e1ba835d96cb3a36f7b589755024fff4644eaeffb35e2e3fe597e9ff20eabe37d1db681c8b982ff7b3ab91f763e199adc37f7dada4660ac19e2a0ede8fd66e7dd4c9b6e5c10cbf7f528ecb52e84e9c5f7bda012aa018124c6c133a85870bc5be07a7e1ef7b7e536c149c99175daa29380e0ec9c3abbbe7b44f0fa6bb65780a045f71ff3553430ffeaf7ffe1c72866612bcdcd5c4bebb4f7c375ae4305aac6039dcc0d91c40f2816a99686a6390a50918026c93b9fecdcdd1926d408af23b88e6fd831b4032be3a57a022d13e422a10d3936be15d70153c06e78fad05cfa250d941860fd0ea44e96f9846357aba719fc44fc0511c3e4d56e3f6157edff07e06f503c0f99988914cc9691e453d245d2568c0a32dabeec30d38414a697cc51ab1c980b79eaf7d4ba658fe53b2f1d273402bd1cc47118d71c594b45102822b66089cea74dad31fcc03b806f0515a8975a3c5c0a031704342da2bea6ed98a0a62785fa1943750ea82d8b6bc6431e2f570203f9465ed15b57580a11a9df9eeb1afadbf34cfc3e7abeb0fa24522d0b47fe47b93eea6cf4336980dca2cb9a52df2a42951446c1b2a74de24e3ffaec618e3ab3547fc492ba15cfe963461b4446b0dfa02512e9cf8056cdbdbf945f11348acfc714534a94f5c63d8a7290c1cbec65302def61d3c56a0a5b1f0da18d947aaf7ed469cde42d96da8904c51210866bd8d2503f7093df8d904e68a08ec02e84dea47f5625ba47e9575fb4e7a724618fe1db27ac33196ad1676bd2f7f07ae7ac83d5fdc5d22edc618a06a17d535b07913cfd7d91e0271ded1eb2970d024132e9d64b95daf6ecd59f5b2ec0eb6a5e0ebb5fb3fae9580440dd83b7d89d1e163d439bf0a66dc9e5083fabf08b2ce5ea66352cdb3b7f21b0c7268ade56d345cbc956dc04b4d612eb26d785da6acaddc5401508aee62505da59c804fe6176058e80c9d7c8f03a52b5596cb42972a90f72a244d14b9694cefde38971fa06aaac10acb92152722106fe850a3b144802af8fcbc88b0b6f0d0c723de92af63c756990a39214cc9159bd2e301055be53e3824fd0992576827136da75f1a602a0ad5b98b7bf752863d16639cf7e7a6d2b81c762c8dda89632ee2f566f4a153b042fe9d53746b282e960e2f12f41d3ba2b406fea4a44a7a8e391de332bea05d89c9a01b6b2b23856fac28de638e0d1f420d66e5a2f32f0b6bbe51705866d2970fb577d4fb1e100320a86f38adeffc9b48b5db2c5ad0a94460c3e7843cfff1365561a122019835d61def89ce521e0fea737a11955f4eb0c3c8e837d609857d34615ea3ae2dbe9ad62ea423008f25dfd32a11f1cf2272170fe4deb53962a6714e1b5dd6f5390d29cd44f90db2dce3ee1ca0417538caf97d31b2e666d023dffc8ec0f6d55dd9a12c7d3c4aef778677053abd3de4104e282bd5762a69f7ee1d75e370d92dd6fb05fd4d8cb0136c8948ac18f66e7c8a0df679f164e75ba36b9254b382cc0e1d89653ac6faa8638c34c3588a0ad95f1b5c19d76df724b34a85b399df3c8ccce0465fac27b12b1760bc905740a9eafab87228b8589966a566d74c92e3a94af969dde0dd76f0de0a05eefddccdd57a27bdedf93bd27de3da05d5c466a9bab7bd79a7131df910cdf6c55a55906b5e3a97619b25681daf2be20b9d33f9395b53ae34b3eca37a21784705300f38694328049489d3b9da74b434770e57615d6cfbf365935c212166c17d05bd5d657a00d9ac8d688bdadd7547040a353591c379d49e31ce28c9c88f1415194d9c2da33b7ec3395f2a2c0adf9c98951416c6fb421d96dc2ceba4bae92b45bf9ea9501d0e01d057fb482ab6b6d9aff19520685c73a12f7755a00ba123754733f40f53a943adc4fada1225e1c7db7f876ad772cc41517259448d66a08382f7964b9b1f8f1d64b1c9e9e8a7145ed488bebfd6f0814b8f948624797b4e85afca425ebef375abc5c125f7a86a4095e3c370fa90519d10c4178b3259115a688c12fcf9f300196db1b6622de18dac323ea129740aa31a250e46029ccebac7c9d80a5599aa534b36c2495127e2f81f3872f8af6c0296481ebafd0fb2a9d6da72e3fcd2670ae2aa0338184e363ca091e54e55ba05be93cadbb20bbe15ae51e8bcff1566183510154d9b69fd708efc92a0c6fa2e9ebad09ef1ef1ce0e7fa005abef29d27bae3f9e10d33dcc94e33eb89999e54a8661ff76b6ae507096515057fafb48c7ce5833d18adf8e9fa70d2d1be978a557b03e09e149028fb9e9bf68f622cb742f60e60022ffa2561c0817052dccaed8ae5b3b17e80683b3bacdfe73623c4723112076bfff6efb819a27cae6ae025d15325d4b3727641a9d34a9b227f64f8f9600834431a5c766fdf639519b7188f2bc698b093d23c963a920cb1ca194ec7499f6db9db5b5d051fb6c82b4517442e6f3ed1923c8dfc96202c17320559f8ed3288e7ad48d07bb24678eaf8ee7c54ce5cf9c2a6cda4ad61b0a1cf615435b15fdc13b00f9619e1f5731396d38dbc0114af0ab29a116e6b78fbd02dea14091e0af7cc2a2dd72413b70683a6c491c4851ee379ab8f1c4156ed009970257f55425b16a41205db8a084517726f853ff27ab6b3cec1a27756b6ed4c2ab8133aab60d2aca393173183d98353525ac8c8015efec54c671cd56b444d91018eac262b4bf810ad299f03de8c92389336e4fa9ded0d7463d6327fc873a81f3f7f42785f8e557d154735386cc62406a4ad5cb11447306880cadfb71f6bbde8c923e10bba3a9b86b20223c022ef9147f48be558de681350085f44ba5c96dc9995eb31a683acf3f8b19d9085a239b2575623cfac45ffdca0b38387fee5e14fd9c1bb340a48e4d0d149e3c5a6d7025f1812cfa0eef077f0010587bab2b04ee04b75a0658e4585d91f04945cfd5ca53db24d0800d223319103a7382cc42f42deb40636409b7c47790bc5d0a671c6449f055edfbcc6014a90b0c0a9d0999665ba50d5880dd728bf79cc19d706c29c94425739ab471fcd5c27ccdb424de7d085b8a0443a44c912c0519bfcf75b16c668881a5a5fc297bfc4da5cc91339867f39719941f85bea6a4da189e149597f88666c8209b0422436e718aaf82937d35cfcef2f9530a3ec1340fe836e9f3ae1e709911fb94a9443e87528266c75c3a2408b2adce4c4732b8ca2da54621fcb34b14c5ee64c1289ac86b98e571e9641130be3e395a1e1564f114ef94cb8f7d6a25b5c512f3d66c4eb12d8009779fa8797d37d3cf124d499ba3dc7b18f6ecf63060fb55e970390f58cd273f507f096c0eae9f2d559c98f0d6adb007429fb44810d3fd189579f0f24cce03a9462de7c9e5b1f280540c4b033f2875126a460d04fea7b9bd8dde7a915b9e83d6e747eb3f8753e0590228513bf403dd843f3e6f929720b879c3c4708dc095e21b3cb378c139c6da379219a7fcf27ea1adb7e7ecefec38ec440e3f8d7384e6520f1604b93c0a03675a2974a2ceaed850993bc4e0f6acbace050317a5e08b53b12063aea7b64a636249a92ae6570cf8fe095d55ffb79923ee2c3be03d9cf01088a173e2aa49f83a8595b9e558e9ad92aec36939e53cebdd92fea88430e926a8651a77a1788aee60e09451a432e728f25be5ec2a9adbaaa7774c5318d1a2d78224117c9eea379bfacec5ef47245378929d66ca6a5912c6314ac4a2b8d993b535ab7b127ad734366fe7fbb5b02c3097da1c11bee569413755d7e40281075af246a77522c3c1b82f0295bd75e8e4d376b4fb15c6318cbb1551a6bb7dd2a85f5e281dedbeb2c13cd48b4ea4ba27287a45850c73d899bedfdd9d0fcb8c8014735d0627acb9c284f5885394915167bf6be610deefd1b4752665d4488dcec42813ca849bcd66f0e9be73b515580a47bbf272b858cae033235822b0ebe3ee4e270fd20846a3d5ef88981f8dba07c05b65fc4394eaa140887841427ea14db554ea7a2c1b043972eccd6271bbab84f8fc8f6eab5ab74d50619526a85ff9f28fe54e7725b045de4bb386d500b259241a9f5f035ba1afca579e9a9e82b0c0bd2ab170be1ce42a82d8b3cf6a42856f841fc0cd3d84c9243f46a1f8415aeb34f9ee8c1d7be2c45b25895d8de2bf6e29a7f64fcaa2fecec2c06c0eb9f1192b587f2eaef83da19df34c95cf9d9a69b47ffc5816c27e0d0e305f8d73fad10fd2a4e31daa197449492e53a0bf62a391cf1d64d8d883549bd21991f2c7c6839d42112170ccf81b096ae6c636bdf3fc79462d4ab51fff1d17a708da0bd68280df2c2ed91c7ad47c8755d3957e58f45d1ffde87efd964b198d73b5fe8bc1de75d10cd2c9474dcfeae395a400a5f9c48345aad8cbc1582399537db440fd52e2791c3fc0ae9b9edc1bc15c7b1bfcf817df890aa9a21d753d5b6f24b9a2334b6b20f8eedf9504583c5013e34323ad01e792d907457aa2829a1d51caa794bcbdefba47d48417084faaf4e5eae49ce1bf2ce6a13a7f859e2174456e3da9474f2439378936ba7cc0c7f2a12522e03f5e574655ece7f148c7520270cf3f04bdb6eee164ccb47922b531a978b4b88a42da64a83141f7cd5a944adab04f655aec3809019af969b320e5df33769a43483b55b47ff68633ff860a55a06ed00480acf7c378094e2001ab1c5e7f5d453495c78dcc12560b2ed0e80045f51a0194c8ab2e3c38d2fa2fc875ff1209a81fb4206fc00fb767c8659d243007b8b5fac18476b51b2029578d37a78fea6ced1dee4a1b30e611552f3297cbf657904ed31a275c4f2051399075ee98f144840f63b6c78e91bce48aadb3f69ff06a547fe5fe8483ab25432a107a55fbce8dfdc7395503198189206175f2597c1498bd564f9d3734fd76e6d5459b2d0e6bec9899f5b31cf5fbd6f93aeae35bd51c20ca4d43d4ed37ddf8f5c905aca41bf937111e54fac2dc70855924e93b3898e3826f2e41d8f8d1e4d2a6021c75f1bce6b2c6bd75aa8ae44ac6ebc0082311aa6faf8231455d03b54a0ea59921deb22e340292420cc350157c955ee2becd1c5ac1dfdc8c6c7593223b889e2229b012ee9319ba3e6330e7686b91dfcaa21893a14d8366a57b39461237869254a9d9870ef02923c120e088bb33a817996f84d7ecc68f07839526c955f1b266f1825d0bb446cbd418a3a7afa5b4447e703678f4ec2e3d5d128319b4534f7031b5967f7c3dedbf5537158aff2a7d6fa888d4e9461753f2275044ee96006b63033ca036a1f41af0b37fb2cab9342d155570dfee3d4a84a84708bdaf564f4166f6f129c9785f2d5870de3087f89a39c58bcfd14b26479e945563e8fb8f7e9a603fa0f86e5341e88d7754182675d99110b8483d9cfb8fdd5af834fa1ef2da0884fd75f7c3a0d1716151a754259c620c916392801327798036726281108006045dfa2a9637f0d18c6a589144f7b86d87e3b9df19f60aa6386eca09a3bd1d20716c2bd9335538788080f901e8c4759cc6b77c1887a85f92639198f3c6a08d807facb265ba7130f44b46ec4cb72bed56220309721f52460bfa3be5d6ac6b52dee1ed1678a0ffedf3fe37e67dc7a489746207d7f91b34a3ad44a6754ff99900b4459d9900160b91d501c0df443f8f0ac6e67db9326f3801984cab3f879ada2609557e", 0x1000}], 0x4, &(0x7f0000000900)=[@rights={{0x18, 0x1, 0x1, [r5, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x78, 0x20002000}}, {{&(0x7f0000000980)=@abs={0x1, 0x0, 0x4e24}, 0x6e, &(0x7f0000000d00)=[{&(0x7f0000000a00)="4f01ab88754e54ae5f7254852c881f3cdde072a781c7541cbe99f901b1861b2f5c8aa435fd16d372394b00961a0bc8411aa3980c014395e8fe032308394fe0c8139317f21199e358c20a27c5d24824a84822050cf3e041385465b11be46860c82b7f12f4ef4d96b96a14aa8f3daf771e9206c07057ff0a5eebf7fa25a7344dadabc09b9627610569c2d64f5138cd329db5da86", 0x93}, {&(0x7f0000000ac0)="896a9c995c54d1f333dad4c485cac71110ad4c9501bdf60ba937732be1e485a0b485b6a6f7f51122f70ceacd0fef5aa6c75029ccd923b7e0d23acb876291a46d14a2d06a6713b5afd81f1d7c", 0x4c}, {&(0x7f0000000b40)="f5642dc5dfa41bcb628af82eb9d497dd39", 0x11}, {&(0x7f0000000b80)="29b4ee3dd662aa5e6dac90ccbaa828c2a3018d8a28168bd78ef4c502cfc3e4e6d1bb821341a52906385c544499060c0903da55cc044349b161ee70caeb35f3f4483743507d909fd057f1faec080ea65de0780cb1ad2a0e2b37d7a39e5f84b8806cef6a6331446b99b8d114468630fa1e5fbfccc76ad92afef5acd3e62c0e11aeece9237fae241562d3c08915d18ed3ce639902b6941df5ec", 0x98}, {&(0x7f0000000c40)="213aafe80d78000e2af46e647f7362ec45433a91174e994c1b1240cc094a8e7bb2a4eeacd04dd99b57128efba823eb0c3f035561ff0178da21b0a5f80565a2c3597fa3a0a4eb3b1c8f12bbdddcef", 0x4e}, {&(0x7f0000000cc0)="13eb5282abc1bbd45ea17aa160effa655832c1418e9da8abee6cb39b8c3f22414157325b00b924e0426d205e6049b09990cb101d6688", 0x36}, {&(0x7f0000002340)="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", 0x1000}], 0x7, 0x0, 0x0, 0x44}}, {{&(0x7f0000000d80)=@abs={0x1, 0x0, 0x4e22}, 0x6e, &(0x7f0000001040)=[{&(0x7f0000000e00)="05e7520f9406868bb9b76319fe5ac8d31c08c46d5a66d04f1e5f28dd835cb4c786b8b7fedfc6e27787f70f16182e4dbd6bc32f247e3e848c1b5b11c65930abbd03788efe6d101bd7bb386ecf899bb6295f5d18bd0a6f1af0f6697d1f8691e55b88e1a9944bc435c992efcdef4c105da00e66a20c347c8188e6c1899e9b8c8cd9ed0cb1ad779b30fef8942b20b31a74c714df61376aa23e7229afc0a5486e1475c5bc7ede8f5d915cea377afef3f318a70496d0042e06292b718b2aa4d4c255379860aa3e76b4b16340b364ffae087b355104575c0cb3c544bd62271a8b296a14235e", 0xe2}, {&(0x7f0000000f00)="850623db4f9a148d4553a6d83f877ae6948e0c8616f507a28b35b9aed8d26c1e", 0x20}, {&(0x7f0000000f40)="d190265af4363d1754ebb2149fb6", 0xe}, {&(0x7f0000003340)="e4d453a11d2d682ec668c2888604c1396b497446649ff09ae1bbecdf97517498b6e2c95d5d5de7c9038d92b1e3eb91fad3ded32f2e2c3b5b0658a4b4af914b202a4e5d1eed9a27d48ec3b54e89ca553fdfa26bd0d193eabe8df0fd35528c124ecf81d517da0a56a183e67cd6ef53927cb9d57723a720bad7eb677295f34b717c009fc9d53f1e2f4da3560162e8a272a0ccdcb4e81dab307adcbfe2f210cea1cffd83008f95535b0df5ce668a9d868c606d2c9ffb403dc2e3b81df9ee0df2ef1583a948633d438be695c1e30f28a113ed552601ec7f2852824c5436e3acbcbea54d787cbd684c6dd6990dcd76525bc81f80f3bdcd533f3efbc2655b65f247f8802555fd703faafe01b1eff38d8149534bc4ddc40986e0d28cc8bdd42526d1a7e79d727d1745706f5c05dc2cbf48802e14199c8e65cda70904f9613ec96b50d1732fd3b41ee0113222ad15ecab3a3b4a0284444cb7e6c0b63098fc1e1c1ed9e9b567bc26c8849919a2768cd0c418ca130a5de59a0465977519d0a765bb5a7c6fed8d7f2fa8cf64243365e9d582b0cb07aaeacf28658b697e8d656161707cd998dc1deb6345ce78341123710ba628da61909dedcf11ed3562c2b00203e30b266d4de90cc72c881a2bcf946595951e0ceb8440a35c62d804586a47cd2b864e9bcbc3adfb6e7001f5ee0e002ae3947509a6f6204b6b6fd60f5003a69d3cd49f7ecc544925c87f228bd79ea600dc10175688abe4240405ec74fb03580efca753c507b573de68ee739a03312e17dd592b49adf682b1ffc36beb49aee37fc3c14e55064409203e199b8756e2d7667f874a7a21629a89c8eb5bf7651dd5c2b5a3e4ae752ed7d7e569e54fee7d995b84a520df1354ffdb038b687433fb5e626b67168c62c9ed2742f7614d6178a7635849a7ec7742cc60af5ed40bc02a8b0a9e8413fbec32f847ee1500b33d0c511bafeb3bd218777e89bb35d9b836c20120a65d323b2830127205aa1b43d6e5a82cd8f2369da2262361306f4c42f1163607fb89e19088eb230a789c810851fcc1482f1428c13b979f62e38b1b316fcbcee31df46316d8a47921db00c3311d45d20d28da5b2bde3a80e92108bde56e8fbca0eeea03066b0b542d884149775b90c43c1d244866b25cdc74cbe816c51c4f8565fa8a15eaeffa6eff6f680fd8c1e2bcb0f6151c16748737c7ee9259d982184732cc72ce42fa46b897fa079559f8170dc84f36ed37f9390c9ce06b4ab7dbb73a6d80ab76c7c7b0c67cf348fbd7d039d78b21b4e744a17b667c8c109f6b525bd9e62cc399785fa616807f8f6f072d6e3f78b6d8c05efe707644ffd5d6b7e3d6096f37cdc424878034a55240cff35bac4ed1e5be2846468616ac766b41905ca78d0ee8336ea58b30a65309ffd3707656000b89ab54e83a72ba4c700305ff95b65d22b9aceec19d598303a8b2045042923cd98945cfc4a775924932c83626f3cd48d5f03300c879c8474815a923e8b403f551350df6ee8bacaeb1906045a1e2a25df0c26cbf142960574ae4ccde05d41c7a69f97093bce00f46da6f45775fdc6880f9849694e96bbdac0046101d307828192442e3c856eddf6bbc9de67c905c51250970a2fbf4ec6d18758a54064ee80ace18c6acf423bd4a62c63f5e344485b3b89a4c6f09ee88ab9ca4952897f54d29c2586d763ebadbfa30de6bda87d5240330f41c9a86358dd5485caee525c4357c318d1458add879865b3730bab503eeba0fba39fb4b8a1033ad58a4d8b8a308030ae6578f1fe5e8579155b1de0b949a02619e909da7411a32baa96270b7420ce6d20c0df47e07381be33f38816b3a1344b3e337bc80f7f5b9e897f34d0c0c0b9cfa20c726d1a2ef9d2977b762ec14ffeb0af0da169d7ed9afb7274d1168979da3eb8c04eb2dfbabc9c23bd600fe4ed0a2ff975e5c866c605a3021db337795a5ae75a8d3dfc27224eca7ce0904f58cc034c8080e45ea3462420cf4fee65ed720218e432eb909ae51c9e1e45ea119229e6e6fc9a2dc96e41e2c49d22e4f36f6274264aeb068867d75c0728a37ee02190e955b8ecb3bb8380193912be6003480ec31cc802b09d1806f997129c8f89d017c70e9b2398a2074883f034e802b91863cc645316f203fec0676af396843440afee1ea36aaf1087f8cfed810e521e63902da7a177751fba5b29176ba7e38289a19165509dad21905876dc1357f0774c7e7621698a25f02c67d0b665f0235de68b399abe35435cc5dd395f033778bd2626bfff6949c2fffd7f194fc272b5211fd4efac6a438f2acca552ecc6aeeda5141e10c7c89dd2d212ee1f2a362ea11596b63ed8466dcd3a83c3b6b34bd772cecaa90b586fe15053475e111f39d544488407a7e1151afedcd320fa813c6b03da6ed3f18d86939359877f36406b817a6ae135ea83be8454451f13b22c0b99a541f7a4228b99e719492a6186d502f12639191d2123b3c2327febeed870ffb7dce46860b4a88b05f2eaedebeeb0543adb570173af46091a1780ec897a21b4562ff399134c13a57ace8abe379bcdd44eb6df60a3c33cf96b1fe86887bfaed24a0a3fd5d174ba4696188aa928ce3a5f1ef340b6381f61c4f94edea13fa2b640b38bad8e66cbe7f0273741ab4b464eba212821f6d64cc9e873243701909ac3e5e98e2951ee32007d498b7fae5e6386d05ec5915648594f0b3465e2416e7ca8a97b0f61e65075d0e4b8dae7697d964e3eb1f6441eb969ba66014b3830e24983840aebddb26e4650b163cdde978fbd1e4eac6af8b768f3eb036c5c0a2f9d22486e2eb8f3b53c2d4500ec807b776dde3f0c9bd90e1dfaf0b30c8e45bc9f4e925614e15703ab1b3605569f52cd54f87cf6c6e9d96f0e4f47b142a8cf612cd0a08bd3392e4ab97599ea311fa27f68488092d523464194827904f06936520ad770be8c34520ede23c08b4faa0827ef622ec24b61c3da479cd00fdddf481fc33d18f32261d80bb4729c6288c70d4d9f18aaa65cc4f7cc5d7c857f429f37cf3a7b38d74d1c3f8bb2248dfe416d82ee922ab8067bc97c07dae343929e2a7b1bc8152a76ded0d6120fcc69c2d92134825a2224e2a8ccc8e5fd2feb2416280590b492cca985a76f2c6aceb8c2f428f138b75a220c06393c0ba2921aa094308e9a73ea7c83cd2c418f06c830bc88e63e6ee84ec758771f345fa9e40463a2de17043f2e111a068f6aa3b7195350946cd18d1aa05dcc2b6929eb0b530c4b10557c25fe4f89a961dab43842ffdcce44d60256d053111c0d4d940f70a409487e9554c1932a749c3c8a753de5c70e12fc09a250c391ac73afa26d6b1c0f57845d7219e406c7e32e8a28463c3b0c456b15d0ba360bb1ed7d2dfdb8d97f53c8a58c9047f9c7194a5f0c7cc880efa9803aea1119f5f6d6390d1603eb903f855177695145fb6651d98a40760941e94fad8a38b6a52434964f8985d2218c4a2f3e3ebc27ffe5c20cd865a6247a575cc907db5b4d69b0ec0ae186caadd955f2b798a146286002d9522e17f584628df9e4a287fa2fb03ce8e7715cd292cda7c760173bf0eec88fdd64e760c376812aa01fc4e92c8db57071d57c4fdbfcc3796d10c3b961efa5126f6433e1d71736dc4941a3bdaeee2413b5bb6dc855dcc37ba136eae02a90d021e3f2ab8f3ac641594badf91a250f00cc2f7159812805989338e67a1a9131c631af65e7b15506a618864204ae13a03f7edc83ceaa086397548b72bd8803d531d706ac3db0b65c38625f193e09b52f0fb03247bc1f8242be6d1358ae8094206324cd7794c5316802c9c3f000a1116189355d952424ec144050eec95f8b6980d678515d8961eb6dddd5fee691c6f5c9659efe6ca3253a9df0d7d3d2384a7a930ca42c14d23e92fa398b8a80b5da0ec907023d815899d1619c3d713d8740b2654b8842135e402db8a4dd643122f05d357112b1f247903d9c6c7e4a9b43eb11321e6a134e7ef1f73b293e3825e3c7e263285c6c91703a2b1312e97e53f247fe3d78a7fe223f3af4975bda33d1f363c6690fb860bb5b129e7f15eb4d50119be84c034fea309b500082b94fac8c371e7762ced0d20d32132a8ee1a16b829d24f39fd63dbe563d2074cc9bda545841025e162c123a27c84b0e4a6bb9165851ac9f19f0a2daa6d3e89a0780a424116baa9a368136b669fb3467aec31ec91b846e133b55900d30b3ae4d32507b5d2424655c13c6d22a4ecab75f94475d29c79c1e574db32ca848bbafa2032ed071640d225b8499038a6511e8327e8a6910dbf81f3b54b47d54171ba90feab3757d1ec7bff75789801e919ce4124f34fefca26fef185d1b332f8a67edb4b7f3b9474276af388ae2fa74f4d539afc0912bf5d0c729e0526601ae9aa965ce8d910cde10ebec77ae6a618f7f8f11cdc23f233a5b1df4428ee8dd2d582c2e891f99c60b12393e29adcc85155680675cd40c16606045a8fe2c853e4515ff092a515b3af31f304c0327a39be92c2e830d38383d113f387ba33e481014d5a703114fa3a7570f6286ab9fe6101424380bfe329ab98a9e2c0cec5068209cae2b504b0db74960cdb9981e52aa2213dbdacc11d486dbfe1abc383a9dfacd8e680f71139806966657c1414d670df57464584df2506032392fe4a142ceb9568b1f2a435035484e69218d1980c48a0202783c07cd503b924edcaa2140ddcfeadda7f37841f02533e59e7965a88dec199fc2bf928bb58fc79b7f9ce132353f1f0f47236823d95c1bacabbad5f2f764a392f7248ac75acb124a55519e51b326bc74ddbfacca729fa3546d5b6b29c3a19adf74e859cae59de4514efd5a603807dfd3845877927602443c5438380c2678f1dfb5401a1c3d3ad99ef5572e797bcfa1be1857232a59026c1f14a30ee4a2f6b8cb6fe84572272ae0f778ab5ac2bedfd050af84389ea7723745c1aca37fab314a3dceb145df3cbf12cc0de2bd27e480688840fc4f88adaedb344f1d0a4e66a024f546b30dcb7f411cfec804506b3e09d8ac584cf24572f48453a4da7ed7c4056fc0765391f213540159ed8f9044d6549732c626894a1ddb98c66331f64507bffa29a85f531c895d4efb71acc0b35bba94525b7251a5aa86013ba891f875db48b984113f55e6be326cf794bae62aa764b8cabea034758ad04831121558e5eb43354e11c1d1fc0f719c55b45c73c844f6c1254762ad01beaed536c7fe25d553227cd4b8bdf83833920815038e288a7228278c891b1ea7bd4a18ea7ad1decce3ed5f113d3a24e5597c4cc72d08f58ddd801400e79e71651bed25f330a6c4f88f43e536e106d11c9abde2a78b6aaacff4e976502cd7dba73a67b2220c49f5e4db706984a6c40987b0eab01a6ccab0489676b50aac49c45d6f26981c614ebfe0415e1dfcd4644b24d03c7f228fa1b6df4ff4921dfbc69eafa96cc4cf13759de2eef878631d92386dd0e9d9a372ab7c843fc53e62292962eb132fc3a6bcc2fa27b1512ef8ba9964b205eccf311049e4b72f21c3d8be648f9b2efc9b8e74ae3bbab4b97730f6b66d84a11d1f14db335636b5c610dd419a03d21143572acf2a04f1a45e9693e4e9ee6291763a54c3a9306b147231c40820e1d1844f3ea3cfd9711fef15bb1ea113e26962df947e4c193381e390622cd0ea04a7850cc0ba129832b93f786f88f941596702f04e74e09b16fd006f27798f58a9572edefa36dfc366c148e6c92ba036f418e203f6a7892ac371b47d3e81ebd9ee529a2cf9c4bd7baf633f4f4224f2e1cbfb88501e10b7bc017ec021aebd810cf", 0x1000}, {&(0x7f0000004340)="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", 0x1000}, {&(0x7f0000000f80)="11c48b94c9d069f1c63e563903af6cbf617fea3c2639062b87663a6cafaec64298565394b582145e5cd8d3f521b5c78989ef084e47f1ef13d5a01acb35d7291c11ee7c49e5335cccf47008faa47370f4d10028cf44f8a3a7b78b88cd03453d430d3a1d59c4393030cfc73bf44e41473cd1e94c1f260ee7df646ec2c5098c97f6ba7e42da9e03c266e285380cd9246329971403b9af89b1e7282a454bbb1e", 0x9e}], 0x6, 0x0, 0x0, 0x1}}, {{&(0x7f00000010c0)=@file={0x0, './file1\x00'}, 0x6e, &(0x7f0000005580)=[{&(0x7f0000001140)="b0511ee66fc89f9d5460c0e15d6eb56eb9c67fc3ca1fb778f8218edb2132280973ac896200e0e8cd2ac81555661947dbdbc3da9539168d118c6039a35a900803f59e2f87b1786da01ee84be1afc38fae2ff484988d9a9055ffc2ec7f6bf1beaaf89a6c9a8e909706426e42debcc9e6c34956fc9480ee8a3c0ab47de3c60c2b60ecd7c869f8310a952b2e687305d70f6479f25d8453098d76c74f1b8c955d334b833a759762b7d5e343aff134a5826cb0c52b12dd859b739021641b1981a17f34855f0a949a52b0fd025eb3927ad728bab54d9db27a15e5b367c90be8055b", 0xde}, {&(0x7f0000005340)="156366f0f3ebcd5328f04c2aa98a74a229164e8f42aeb3612c224392db4a8ab038761dcf3ad70ed5e2d873a70e1c8614182761a27bd3c2fda6693cdfb9793425985f6ee84e06be0a19037bff51ba09dd4cf69125c04084426b26dca92dfb13c2f4802fb6367a30c25d15660b0440f263d997cbfd0682c4d7d836b4ee25bb23bfc42986ca525bb157eec2d06d7a0a30951a17a92e8a257357f17d4520d928fce37d28d06d37c33dfc9f2e0892509c007120034a5fe2b69c3a345b15b2418045a72fdab6d6d1f354aae2ed2d5021f2fd1bec2b3bd6b9f1d893af6f53b38fbf92eacb569a44bf", 0xe5}, {&(0x7f0000001240)="e8a7b46fd53634b79abe666d6d47d2b2cae83d8282266faca461735395e11b8a91e61dd681a4123e42e258d7f9ee9041c31cc24d5278cf6d46d0cdd9180fb2", 0x3f}, {&(0x7f0000005440)="257daf350ec3e16845e50a2f264f1d1ea95cf32d4294fcf78cd06540dc4f959d24bb22931838e7fe41f4215be0e36e429a90020a69928e331fbb6b0cfba258352e9c95acf06b50dd20e8faca0de06da7d58574e2f04481bf06949ca3d62598ba9422a49474ea3f87f4a582cb54d2e6c9", 0x70}, {&(0x7f00000054c0)="847edc1f7d188a1757503b6c47e35e67b504c0be1261e7fa48509d364389989a54929fa1a8b5c3cd83d48585160bd841f0b03a2bc867516727f2179761581e0fccea978886bacc6ebf3347d58e2b1c9a5208e9e660d789cffc12d7bccb6ec09b36220c7f03b798780372001b3eed1491e79f620929b57ce00ba96aa61d7b7a09cd284cb3da450faddc313f33f7c144b9033efa8023", 0x95}], 0x5, &(0x7f0000005700)=[@rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, r0, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0x48, 0x80}}], 0x5, 0x20004880) (async) write(r1, &(0x7f0000000280)='#\x00\x00\x00', 0x4) 10:04:08 executing program 5: syz_open_dev$evdev(&(0x7f0000000240), 0x1, 0x80) r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000, 0x0, @perf_config_ext={0x0, 0x3}, 0x0, 0x0, 0x0, 0x0, 0xff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) timer_create(0x0, 0x0, 0x0) timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0) write$binfmt_script(0xffffffffffffffff, 0x0, 0x0) timer_create(0x0, &(0x7f0000000000)={0x0, 0x14, 0x0, @thr={&(0x7f0000000280)="69a895bc245902ef5ed95c5e33e0dde5ba91330a659b0830f052e947ee471d76bf80f2d39163ee20f7ad071399ffcac41ba2d698", 0x0}}, &(0x7f00000001c0)=0x0) timer_settime(r1, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0) openat(0xffffffffffffffff, 0x0, 0x0, 0x0) timer_gettime(0x0, 0x0) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) unlinkat(0xffffffffffffff9c, 0x0, 0x0) perf_event_open(&(0x7f00000002c0)={0x2, 0x80, 0x5, 0x7, 0x0, 0x29, 0x0, 0x8, 0x80409, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clock_gettime(0x0, 0x0) pipe(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r3, &(0x7f0000000080)={0xa, 0x8000002, 0x0, @loopback}, 0x1c) sendto$inet6(r3, 0x0, 0x0, 0x20058041, &(0x7f0000000040)={0xa, 0x2}, 0x1c) splice(r3, 0x0, r2, 0x0, 0x1000000000000003, 0x0) ioctl$EXT4_IOC_ALLOC_DA_BLKS(r0, 0x660c) syz_open_dev$evdev(&(0x7f0000000240), 0x1, 0x80) (async) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000, 0x0, @perf_config_ext={0x0, 0x3}, 0x0, 0x0, 0x0, 0x0, 0xff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) (async) timer_create(0x0, 0x0, 0x0) (async) timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0) (async) write$binfmt_script(0xffffffffffffffff, 0x0, 0x0) (async) timer_create(0x0, &(0x7f0000000000)={0x0, 0x14, 0x0, @thr={&(0x7f0000000280)="69a895bc245902ef5ed95c5e33e0dde5ba91330a659b0830f052e947ee471d76bf80f2d39163ee20f7ad071399ffcac41ba2d698", 0x0}}, &(0x7f00000001c0)) (async) timer_settime(r1, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0) (async) openat(0xffffffffffffffff, 0x0, 0x0, 0x0) (async) timer_gettime(0x0, 0x0) (async) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async) unlinkat(0xffffffffffffff9c, 0x0, 0x0) (async) perf_event_open(&(0x7f00000002c0)={0x2, 0x80, 0x5, 0x7, 0x0, 0x29, 0x0, 0x8, 0x80409, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async) clock_gettime(0x0, 0x0) (async) pipe(&(0x7f0000000240)) (async) socket$inet6_tcp(0xa, 0x1, 0x0) (async) bind$inet6(r3, &(0x7f0000000080)={0xa, 0x8000002, 0x0, @loopback}, 0x1c) (async) sendto$inet6(r3, 0x0, 0x0, 0x20058041, &(0x7f0000000040)={0xa, 0x2}, 0x1c) (async) splice(r3, 0x0, r2, 0x0, 0x1000000000000003, 0x0) (async) ioctl$EXT4_IOC_ALLOC_DA_BLKS(r0, 0x660c) (async) 10:04:08 executing program 4: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) (async, rerun: 64) sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0) (rerun: 64) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) (async, rerun: 32) open(&(0x7f0000000000)='./file0\x00', 0x40000, 0x4f) (rerun: 32) ioctl$KDADDIO(r0, 0x400455c8, 0x0) [ 1670.167595] FAULT_INJECTION: forcing a failure. [ 1670.167595] name failslab, interval 1, probability 0, space 0, times 0 [ 1670.178966] CPU: 1 PID: 22660 Comm: syz-executor.3 Not tainted 4.14.262-syzkaller #0 [ 1670.186849] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1670.196199] Call Trace: [ 1670.198788] dump_stack+0x1b2/0x281 [ 1670.202417] should_fail.cold+0x10a/0x149 [ 1670.206567] should_failslab+0xd6/0x130 [ 1670.210545] kmem_cache_alloc_trace+0x29a/0x3d0 [ 1670.215217] ? dev_uevent_filter+0xd0/0xd0 [ 1670.219446] kobject_uevent_env+0x20c/0xf30 [ 1670.223754] ? wait_for_completion_io+0x10/0x10 [ 1670.228407] device_add+0xa47/0x15c0 [ 1670.232100] ? device_is_dependent+0x2a0/0x2a0 [ 1670.236688] rfkill_register+0x18e/0xab0 [ 1670.240742] hci_register_dev+0x359/0x8f0 [ 1670.244876] hci_uart_tty_ioctl+0x6d1/0xa60 [ 1670.249180] tty_ioctl+0x5af/0x1430 [ 1670.252800] ? hci_uart_tty_receive+0x4c0/0x4c0 [ 1670.257459] ? tty_fasync+0x2c0/0x2c0 [ 1670.261245] ? proc_fail_nth_write+0x7b/0x180 [ 1670.265725] ? trace_hardirqs_on+0x10/0x10 [ 1670.269941] ? fsnotify+0x974/0x11b0 [ 1670.273656] ? proc_tgid_io_accounting+0x7a0/0x7a0 [ 1670.278582] ? __handle_mm_fault+0x80f/0x4620 [ 1670.283065] ? SyS_write+0x1b7/0x210 [ 1670.286781] ? tty_fasync+0x2c0/0x2c0 [ 1670.290572] do_vfs_ioctl+0x75a/0xff0 [ 1670.294356] ? lock_acquire+0x170/0x3f0 [ 1670.298309] ? ioctl_preallocate+0x1a0/0x1a0 [ 1670.302701] ? __fget+0x2df/0x460 [ 1670.306131] ? do_vfs_ioctl+0xff0/0xff0 [ 1670.310084] ? security_file_ioctl+0x83/0xb0 [ 1670.314471] SyS_ioctl+0x7f/0xb0 [ 1670.317816] ? do_vfs_ioctl+0xff0/0xff0 [ 1670.321773] do_syscall_64+0x1d5/0x640 [ 1670.325644] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1670.330813] RIP: 0033:0x7fa331314fe9 [ 1670.334501] RSP: 002b:00007fa32fc8a168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1670.342190] RAX: ffffffffffffffda RBX: 00007fa331427f60 RCX: 00007fa331314fe9 [ 1670.349443] RDX: 0000000000000000 RSI: 00000000400455c8 RDI: 0000000000000003 [ 1670.356694] RBP: 00007fa32fc8a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1670.364065] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1670.371316] R13: 00007ffe09471b3f R14: 00007fa32fc8a300 R15: 0000000000022000 10:04:08 executing program 0: prlimit64(0x0, 0x0, 0x0, 0x0) sched_setattr(0x0, 0x0, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x0) (fail_nth: 63) 10:04:08 executing program 4: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) (async) sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0) (async) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) (async) open(&(0x7f0000000000)='./file0\x00', 0x40000, 0x4f) (async) ioctl$KDADDIO(r0, 0x400455c8, 0x0) 10:04:08 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) (async) ioctl$KDADDIO(r0, 0x400455c8, 0x0) (async) openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) (async) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000040)=0xf) (async, rerun: 32) ioctl$KDADDIO(r2, 0x400455c8, 0x4) (async, rerun: 32) ioctl$TIOCSETD(r2, 0x5412, &(0x7f0000000000)=0x33) (async) ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000080)=0x12) ioctl$KDADDIO(r1, 0x400455c8, 0x4) (async, rerun: 64) ioctl$TIOCSETD(r1, 0x5412, &(0x7f0000000000)=0x33) (async, rerun: 64) r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r3, 0x400455c8, 0x4) ioctl$TIOCSETD(r3, 0x5412, &(0x7f0000000000)=0x33) ioctl$KDADDIO(r1, 0x400455c8, 0x3) 10:04:08 executing program 3: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x0) (fail_nth: 74) [ 1670.792357] FAULT_INJECTION: forcing a failure. [ 1670.792357] name failslab, interval 1, probability 0, space 0, times 0 [ 1670.813496] CPU: 1 PID: 22703 Comm: syz-executor.0 Not tainted 4.14.262-syzkaller #0 [ 1670.821452] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1670.830806] Call Trace: [ 1670.833402] dump_stack+0x1b2/0x281 [ 1670.837036] should_fail.cold+0x10a/0x149 [ 1670.841186] should_failslab+0xd6/0x130 [ 1670.845165] kmem_cache_alloc+0x28e/0x3c0 [ 1670.849319] __kernfs_new_node+0x6f/0x470 [ 1670.853489] kernfs_new_node+0x7b/0xe0 [ 1670.857377] __kernfs_create_file+0x3d/0x320 [ 1670.861789] sysfs_add_file_mode_ns+0x1e1/0x450 [ 1670.866464] internal_create_group+0x22b/0x710 [ 1670.871050] sysfs_create_groups+0x92/0x130 [ 1670.875375] device_add+0x7e5/0x15c0 [ 1670.879090] ? device_is_dependent+0x2a0/0x2a0 [ 1670.883681] rfkill_register+0x18e/0xab0 [ 1670.887750] hci_register_dev+0x359/0x8f0 [ 1670.890208] FAULT_INJECTION: forcing a failure. [ 1670.890208] name failslab, interval 1, probability 0, space 0, times 0 [ 1670.891897] hci_uart_tty_ioctl+0x6d1/0xa60 [ 1670.907370] tty_ioctl+0x5af/0x1430 [ 1670.910983] ? hci_uart_tty_receive+0x4c0/0x4c0 [ 1670.915652] ? tty_fasync+0x2c0/0x2c0 [ 1670.919439] ? proc_fail_nth_write+0x7b/0x180 [ 1670.923915] ? trace_hardirqs_on+0x10/0x10 [ 1670.928138] ? fsnotify+0x974/0x11b0 [ 1670.931846] ? proc_tgid_io_accounting+0x7a0/0x7a0 [ 1670.936767] ? __handle_mm_fault+0x80f/0x4620 [ 1670.941245] ? SyS_write+0x1b7/0x210 [ 1670.944942] ? tty_fasync+0x2c0/0x2c0 [ 1670.948731] do_vfs_ioctl+0x75a/0xff0 [ 1670.952516] ? lock_acquire+0x170/0x3f0 [ 1670.956473] ? ioctl_preallocate+0x1a0/0x1a0 [ 1670.960869] ? __fget+0x2df/0x460 [ 1670.964309] ? do_vfs_ioctl+0xff0/0xff0 [ 1670.968269] ? security_file_ioctl+0x83/0xb0 [ 1670.972659] SyS_ioctl+0x7f/0xb0 [ 1670.976011] ? do_vfs_ioctl+0xff0/0xff0 [ 1670.979971] do_syscall_64+0x1d5/0x640 [ 1670.983847] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1670.989018] RIP: 0033:0x7fbb944a7fe9 [ 1670.992711] RSP: 002b:00007fbb92e1d168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1671.000401] RAX: ffffffffffffffda RBX: 00007fbb945baf60 RCX: 00007fbb944a7fe9 [ 1671.007650] RDX: 0000000000000000 RSI: 00000000400455c8 RDI: 0000000000000003 [ 1671.014900] RBP: 00007fbb92e1d1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1671.022152] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1671.029401] R13: 00007ffc96d7392f R14: 00007fbb92e1d300 R15: 0000000000022000 [ 1671.036665] CPU: 0 PID: 22724 Comm: syz-executor.3 Not tainted 4.14.262-syzkaller #0 [ 1671.044565] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1671.053917] Call Trace: [ 1671.056504] dump_stack+0x1b2/0x281 [ 1671.060133] should_fail.cold+0x10a/0x149 [ 1671.064280] ? vsnprintf+0x260/0x1340 [ 1671.068078] should_failslab+0xd6/0x130 [ 1671.072040] kmem_cache_alloc+0x40/0x3c0 [ 1671.076088] __debug_object_init+0x578/0x7a0 [ 1671.080482] ? debug_object_destroy+0x240/0x240 [ 1671.085134] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 1671.090134] __init_work+0x3f/0x50 [ 1671.093701] ? kobj_ns_drop+0x80/0x80 [ 1671.097483] call_usermodehelper_setup+0x93/0x2e0 [ 1671.102309] kobject_uevent_env+0xc21/0xf30 [ 1671.106624] device_add+0xa47/0x15c0 [ 1671.110322] ? device_is_dependent+0x2a0/0x2a0 [ 1671.114919] hci_register_dev+0x2e2/0x8f0 [ 1671.119054] hci_uart_tty_ioctl+0x6d1/0xa60 [ 1671.123361] tty_ioctl+0x5af/0x1430 [ 1671.126972] ? hci_uart_tty_receive+0x4c0/0x4c0 [ 1671.131623] ? tty_fasync+0x2c0/0x2c0 [ 1671.135409] ? proc_fail_nth_write+0x7b/0x180 [ 1671.139888] ? trace_hardirqs_on+0x10/0x10 [ 1671.144128] ? fsnotify+0x974/0x11b0 [ 1671.147850] ? proc_tgid_io_accounting+0x7a0/0x7a0 [ 1671.152791] ? __handle_mm_fault+0x80f/0x4620 [ 1671.157275] ? SyS_write+0x1b7/0x210 [ 1671.160973] ? tty_fasync+0x2c0/0x2c0 [ 1671.164759] do_vfs_ioctl+0x75a/0xff0 [ 1671.168550] ? lock_acquire+0x170/0x3f0 [ 1671.172508] ? ioctl_preallocate+0x1a0/0x1a0 [ 1671.176903] ? __fget+0x2df/0x460 [ 1671.180338] ? do_vfs_ioctl+0xff0/0xff0 [ 1671.184295] ? security_file_ioctl+0x83/0xb0 [ 1671.188715] SyS_ioctl+0x7f/0xb0 [ 1671.192063] ? do_vfs_ioctl+0xff0/0xff0 [ 1671.196024] do_syscall_64+0x1d5/0x640 [ 1671.199916] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1671.205104] RIP: 0033:0x7fa331314fe9 [ 1671.208798] RSP: 002b:00007fa32fc8a168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1671.216490] RAX: ffffffffffffffda RBX: 00007fa331427f60 RCX: 00007fa331314fe9 [ 1671.223741] RDX: 0000000000000000 RSI: 00000000400455c8 RDI: 0000000000000003 [ 1671.230992] RBP: 00007fa32fc8a1d0 R08: 0000000000000000 R09: 0000000000000000 10:04:09 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) (async) r1 = dup2(r0, r0) sendto$inet(0xffffffffffffffff, &(0x7f00000012c0)="e1158a927f1f6588b927481241ba7860f46ef65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a97425a3a07e758044ab0ea6f7ae55d88fecf9221a750fbf746bec66ba", 0xfe6a, 0xe, 0x0, 0xfffffffffffffe2b) (async) r2 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r2, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000074, 0x25d) bind$inet(r2, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe1}]}, 0x10) sendto$inet(r2, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) (async) setsockopt$sock_int(r2, 0x1, 0x21, &(0x7f0000000600)=0xda9, 0x4) (async, rerun: 32) sendto$inet(r2, &(0x7f0000000640)="febc3b777d549ffacdd9ee6633af6e737f2e6d654105f04716908ec7af8775d530c2cc83e31b3f3c7f9e351ba553af429ff9367031b7ec0aed61ea15d08f299f9241acf82356d0859eb45aec582cd03d4cdbdcd6755c166133d9ba85529c0ed8913418402ba7d907115e75", 0x6b, 0x4000081, 0x0, 0x0) (async, rerun: 32) sendto$inet(r2, &(0x7f00000012c0)="e1158a927f1f6588b927481241ba7860f46ef65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a97425a3a07e758044ab0ea6f7ae55d88fecf9221a750fbf746bec66ba", 0xfe6a, 0xe, 0x0, 0xfffffffffffffe2b) (async) r3 = accept4$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @empty}, &(0x7f0000000080)=0x10, 0x80800) sendto$inet(r3, &(0x7f0000000000)="667b84d9db7c2e5284dbd4a85a40d527d202045e6eb75abaaf474308707bd3d6985c0001757c82", 0x27, 0x4008800, &(0x7f0000000180)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x25}}, 0x10) (async, rerun: 32) r4 = accept4$inet(r1, &(0x7f0000000040)={0x2, 0x0, @empty}, &(0x7f0000000080)=0x10, 0x800) (rerun: 32) sendto$inet(r4, &(0x7f0000000000)="667b84d9db7c2e5284dbd4a85a40d527d202045e6eb75abaaf474308707bd3d6985c0001757c82", 0x27, 0x4008800, &(0x7f0000000180)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x25}}, 0x10) (async) r5 = accept4$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @empty}, &(0x7f0000000080)=0x10, 0x80800) (async) sendto$inet(0xffffffffffffffff, &(0x7f0000000000)="667b84d9db7c2e5284dbd4a85a40d527d202045e6eb75abaaf474308707bd3d6985c0001757c82", 0x27, 0x4008800, &(0x7f0000000180)={0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0x5a}}, 0x10) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000005780)=[{{&(0x7f00000001c0)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000000100), 0x0, &(0x7f0000000240)=[@cred={{0x1c, 0x1, 0x2, {0x0, 0xee01, 0xee01}}}], 0x20, 0x80}}, {{&(0x7f00000002c0)=@abs={0x0, 0x0, 0x4e21}, 0x6e, &(0x7f0000000340)=[{&(0x7f0000000440)="2ae70d991fc61a98edea0b6a339104a34d730e4325cbf8ff81a19c5a1899701ec58c69139aff691415207e79c3bb3fbf73a6bbcd24e82ae7e1c3884d41afda4a9a481e098f3702ce6ad60056ecbc645c51945bb488e3f7c7e9f7637c4af95125de", 0x61}, {&(0x7f00000004c0)="8514771304585ce1887762c51488b1dddb89f53804e8feaa673dbcae862cc1768b89500b1cee9f26a6c2bb27d47f70aef6122e334672c2a27b6a3766ced266b574338f884b2a7b16318912c41fe1a42a3e35", 0x52}, {&(0x7f00000006c0)="98c435ff07d88483ace6e1b07d352556d99fa7bb970f63d64ccad56e023f227034ca16b556227adad3552275bbaf5dd6742db67b95d81dd7c6b0c4aceb77a29b342186d5fbfe2b0947ff81ea87fe92479e66e3533c5fa025dbe796d459a51f3960cb1b52dd83f53ca90e3d10db48f0389ea574d53f144baca3e0a353fd631a2eb31bf4e54a02f79a473677b34b35098d7b27c5ad830bd93b3071aec00aa596d58168a9b61b2ed0e2b746eb5f811fa35bc5dabbc411395e8eeb46c8be524b0b4e53998fabf5831dbae01e1c80", 0xcc}, {&(0x7f0000001340)="44bf4f1435dd7b60777c1601078126a926734fe2887f8b84ca2080cc2cf1a47775b5690adabec62ad2db8ed0aa8e09e1d9dc8c609f8dace6c61cf5d305ec09ab1ab595d1e79f0fccc2edcc21560de0555cde6a0028ad9abff0a9f6edd8ad28de7a6c1e2e51aefdc42a2fde9fb54a0a628e1ba835d96cb3a36f7b589755024fff4644eaeffb35e2e3fe597e9ff20eabe37d1db681c8b982ff7b3ab91f763e199adc37f7dada4660ac19e2a0ede8fd66e7dd4c9b6e5c10cbf7f528ecb52e84e9c5f7bda012aa018124c6c133a85870bc5be07a7e1ef7b7e536c149c99175daa29380e0ec9c3abbbe7b44f0fa6bb65780a045f71ff3553430ffeaf7ffe1c72866612bcdcd5c4bebb4f7c375ae4305aac6039dcc0d91c40f2816a99686a6390a50918026c93b9fecdcdd1926d408af23b88e6fd831b4032be3a57a022d13e422a10d3936be15d70153c06e78fad05cfa250d941860fd0ea44e96f9846357aba719fc44fc0511c3e4d56e3f6157edff07e06f503c0f99988914cc9691e453d245d2568c0a32dabeec30d38414a697cc51ab1c980b79eaf7d4ba658fe53b2f1d273402bd1cc47118d71c594b45102822b66089cea74dad31fcc03b806f0515a8975a3c5c0a031704342da2bea6ed98a0a62785fa1943750ea82d8b6bc6431e2f570203f9465ed15b57580a11a9df9eeb1afadbf34cfc3e7abeb0fa24522d0b47fe47b93eea6cf4336980dca2cb9a52df2a42951446c1b2a74de24e3ffaec618e3ab3547fc492ba15cfe963461b4446b0dfa02512e9cf8056cdbdbf945f11348acfc714534a94f5c63d8a7290c1cbec65302def61d3c56a0a5b1f0da18d947aaf7ed469cde42d96da8904c51210866bd8d2503f7093df8d904e68a08ec02e84dea47f5625ba47e9575fb4e7a724618fe1db27ac33196ad1676bd2f7f07ae7ac83d5fdc5d22edc618a06a17d535b07913cfd7d91e0271ded1eb2970d024132e9d64b95daf6ecd59f5b2ec0eb6a5e0ebb5fb3fae9580440dd83b7d89d1e163d439bf0a66dc9e5083fabf08b2ce5ea66352cdb3b7f21b0c7268ade56d345cbc956dc04b4d612eb26d785da6acaddc5401508aee62505da59c804fe6176058e80c9d7c8f03a52b5596cb42972a90f72a244d14b9694cefde38971fa06aaac10acb92152722106fe850a3b144802af8fcbc88b0b6f0d0c723de92af63c756990a39214cc9159bd2e301055be53e3824fd0992576827136da75f1a602a0ad5b98b7bf752863d16639cf7e7a6d2b81c762c8dda89632ee2f566f4a153b042fe9d53746b282e960e2f12f41d3ba2b406fea4a44a7a8e391de332bea05d89c9a01b6b2b23856fac28de638e0d1f420d66e5a2f32f0b6bbe51705866d2970fb577d4fb1e100320a86f38adeffc9b48b5db2c5ad0a94460c3e7843cfff1365561a122019835d61def89ce521e0fea737a11955f4eb0c3c8e837d609857d34615ea3ae2dbe9ad62ea423008f25dfd32a11f1cf2272170fe4deb53962a6714e1b5dd6f5390d29cd44f90db2dce3ee1ca0417538caf97d31b2e666d023dffc8ec0f6d55dd9a12c7d3c4aef778677053abd3de4104e282bd5762a69f7ee1d75e370d92dd6fb05fd4d8cb0136c8948ac18f66e7c8a0df679f164e75ba36b9254b382cc0e1d89653ac6faa8638c34c3588a0ad95f1b5c19d76df724b34a85b399df3c8ccce0465fac27b12b1760bc905740a9eafab87228b8589966a566d74c92e3a94af969dde0dd76f0de0a05eefddccdd57a27bdedf93bd27de3da05d5c466a9bab7bd79a7131df910cdf6c55a55906b5e3a97619b25681daf2be20b9d33f9395b53ae34b3eca37a21784705300f38694328049489d3b9da74b434770e57615d6cfbf365935c212166c17d05bd5d657a00d9ac8d688bdadd7547040a353591c379d49e31ce28c9c88f1415194d9c2da33b7ec3395f2a2c0adf9c98951416c6fb421d96dc2ceba4bae92b45bf9ea9501d0e01d057fb482ab6b6d9aff19520685c73a12f7755a00ba123754733f40f53a943adc4fada1225e1c7db7f876ad772cc41517259448d66a08382f7964b9b1f8f1d64b1c9e9e8a7145ed488bebfd6f0814b8f948624797b4e85afca425ebef375abc5c125f7a86a4095e3c370fa90519d10c4178b3259115a688c12fcf9f300196db1b6622de18dac323ea129740aa31a250e46029ccebac7c9d80a5599aa534b36c2495127e2f81f3872f8af6c0296481ebafd0fb2a9d6da72e3fcd2670ae2aa0338184e363ca091e54e55ba05be93cadbb20bbe15ae51e8bcff1566183510154d9b69fd708efc92a0c6fa2e9ebad09ef1ef1ce0e7fa005abef29d27bae3f9e10d33dcc94e33eb89999e54a8661ff76b6ae507096515057fafb48c7ce5833d18adf8e9fa70d2d1be978a557b03e09e149028fb9e9bf68f622cb742f60e60022ffa2561c0817052dccaed8ae5b3b17e80683b3bacdfe73623c4723112076bfff6efb819a27cae6ae025d15325d4b3727641a9d34a9b227f64f8f9600834431a5c766fdf639519b7188f2bc698b093d23c963a920cb1ca194ec7499f6db9db5b5d051fb6c82b4517442e6f3ed1923c8dfc96202c17320559f8ed3288e7ad48d07bb24678eaf8ee7c54ce5cf9c2a6cda4ad61b0a1cf615435b15fdc13b00f9619e1f5731396d38dbc0114af0ab29a116e6b78fbd02dea14091e0af7cc2a2dd72413b70683a6c491c4851ee379ab8f1c4156ed009970257f55425b16a41205db8a084517726f853ff27ab6b3cec1a27756b6ed4c2ab8133aab60d2aca393173183d98353525ac8c8015efec54c671cd56b444d91018eac262b4bf810ad299f03de8c92389336e4fa9ded0d7463d6327fc873a81f3f7f42785f8e557d154735386cc62406a4ad5cb11447306880cadfb71f6bbde8c923e10bba3a9b86b20223c022ef9147f48be558de681350085f44ba5c96dc9995eb31a683acf3f8b19d9085a239b2575623cfac45ffdca0b38387fee5e14fd9c1bb340a48e4d0d149e3c5a6d7025f1812cfa0eef077f0010587bab2b04ee04b75a0658e4585d91f04945cfd5ca53db24d0800d223319103a7382cc42f42deb40636409b7c47790bc5d0a671c6449f055edfbcc6014a90b0c0a9d0999665ba50d5880dd728bf79cc19d706c29c94425739ab471fcd5c27ccdb424de7d085b8a0443a44c912c0519bfcf75b16c668881a5a5fc297bfc4da5cc91339867f39719941f85bea6a4da189e149597f88666c8209b0422436e718aaf82937d35cfcef2f9530a3ec1340fe836e9f3ae1e709911fb94a9443e87528266c75c3a2408b2adce4c4732b8ca2da54621fcb34b14c5ee64c1289ac86b98e571e9641130be3e395a1e1564f114ef94cb8f7d6a25b5c512f3d66c4eb12d8009779fa8797d37d3cf124d499ba3dc7b18f6ecf63060fb55e970390f58cd273f507f096c0eae9f2d559c98f0d6adb007429fb44810d3fd189579f0f24cce03a9462de7c9e5b1f280540c4b033f2875126a460d04fea7b9bd8dde7a915b9e83d6e747eb3f8753e0590228513bf403dd843f3e6f929720b879c3c4708dc095e21b3cb378c139c6da379219a7fcf27ea1adb7e7ecefec38ec440e3f8d7384e6520f1604b93c0a03675a2974a2ceaed850993bc4e0f6acbace050317a5e08b53b12063aea7b64a636249a92ae6570cf8fe095d55ffb79923ee2c3be03d9cf01088a173e2aa49f83a8595b9e558e9ad92aec36939e53cebdd92fea88430e926a8651a77a1788aee60e09451a432e728f25be5ec2a9adbaaa7774c5318d1a2d78224117c9eea379bfacec5ef47245378929d66ca6a5912c6314ac4a2b8d993b535ab7b127ad734366fe7fbb5b02c3097da1c11bee569413755d7e40281075af246a77522c3c1b82f0295bd75e8e4d376b4fb15c6318cbb1551a6bb7dd2a85f5e281dedbeb2c13cd48b4ea4ba27287a45850c73d899bedfdd9d0fcb8c8014735d0627acb9c284f5885394915167bf6be610deefd1b4752665d4488dcec42813ca849bcd66f0e9be73b515580a47bbf272b858cae033235822b0ebe3ee4e270fd20846a3d5ef88981f8dba07c05b65fc4394eaa140887841427ea14db554ea7a2c1b043972eccd6271bbab84f8fc8f6eab5ab74d50619526a85ff9f28fe54e7725b045de4bb386d500b259241a9f5f035ba1afca579e9a9e82b0c0bd2ab170be1ce42a82d8b3cf6a42856f841fc0cd3d84c9243f46a1f8415aeb34f9ee8c1d7be2c45b25895d8de2bf6e29a7f64fcaa2fecec2c06c0eb9f1192b587f2eaef83da19df34c95cf9d9a69b47ffc5816c27e0d0e305f8d73fad10fd2a4e31daa197449492e53a0bf62a391cf1d64d8d883549bd21991f2c7c6839d42112170ccf81b096ae6c636bdf3fc79462d4ab51fff1d17a708da0bd68280df2c2ed91c7ad47c8755d3957e58f45d1ffde87efd964b198d73b5fe8bc1de75d10cd2c9474dcfeae395a400a5f9c48345aad8cbc1582399537db440fd52e2791c3fc0ae9b9edc1bc15c7b1bfcf817df890aa9a21d753d5b6f24b9a2334b6b20f8eedf9504583c5013e34323ad01e792d907457aa2829a1d51caa794bcbdefba47d48417084faaf4e5eae49ce1bf2ce6a13a7f859e2174456e3da9474f2439378936ba7cc0c7f2a12522e03f5e574655ece7f148c7520270cf3f04bdb6eee164ccb47922b531a978b4b88a42da64a83141f7cd5a944adab04f655aec3809019af969b320e5df33769a43483b55b47ff68633ff860a55a06ed00480acf7c378094e2001ab1c5e7f5d453495c78dcc12560b2ed0e80045f51a0194c8ab2e3c38d2fa2fc875ff1209a81fb4206fc00fb767c8659d243007b8b5fac18476b51b2029578d37a78fea6ced1dee4a1b30e611552f3297cbf657904ed31a275c4f2051399075ee98f144840f63b6c78e91bce48aadb3f69ff06a547fe5fe8483ab25432a107a55fbce8dfdc7395503198189206175f2597c1498bd564f9d3734fd76e6d5459b2d0e6bec9899f5b31cf5fbd6f93aeae35bd51c20ca4d43d4ed37ddf8f5c905aca41bf937111e54fac2dc70855924e93b3898e3826f2e41d8f8d1e4d2a6021c75f1bce6b2c6bd75aa8ae44ac6ebc0082311aa6faf8231455d03b54a0ea59921deb22e340292420cc350157c955ee2becd1c5ac1dfdc8c6c7593223b889e2229b012ee9319ba3e6330e7686b91dfcaa21893a14d8366a57b39461237869254a9d9870ef02923c120e088bb33a817996f84d7ecc68f07839526c955f1b266f1825d0bb446cbd418a3a7afa5b4447e703678f4ec2e3d5d128319b4534f7031b5967f7c3dedbf5537158aff2a7d6fa888d4e9461753f2275044ee96006b63033ca036a1f41af0b37fb2cab9342d155570dfee3d4a84a84708bdaf564f4166f6f129c9785f2d5870de3087f89a39c58bcfd14b26479e945563e8fb8f7e9a603fa0f86e5341e88d7754182675d99110b8483d9cfb8fdd5af834fa1ef2da0884fd75f7c3a0d1716151a754259c620c916392801327798036726281108006045dfa2a9637f0d18c6a589144f7b86d87e3b9df19f60aa6386eca09a3bd1d20716c2bd9335538788080f901e8c4759cc6b77c1887a85f92639198f3c6a08d807facb265ba7130f44b46ec4cb72bed56220309721f52460bfa3be5d6ac6b52dee1ed1678a0ffedf3fe37e67dc7a489746207d7f91b34a3ad44a6754ff99900b4459d9900160b91d501c0df443f8f0ac6e67db9326f3801984cab3f879ada2609557e", 0x1000}], 0x4, &(0x7f0000000900)=[@rights={{0x18, 0x1, 0x1, [r5, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x78, 0x20002000}}, {{&(0x7f0000000980)=@abs={0x1, 0x0, 0x4e24}, 0x6e, &(0x7f0000000d00)=[{&(0x7f0000000a00)="4f01ab88754e54ae5f7254852c881f3cdde072a781c7541cbe99f901b1861b2f5c8aa435fd16d372394b00961a0bc8411aa3980c014395e8fe032308394fe0c8139317f21199e358c20a27c5d24824a84822050cf3e041385465b11be46860c82b7f12f4ef4d96b96a14aa8f3daf771e9206c07057ff0a5eebf7fa25a7344dadabc09b9627610569c2d64f5138cd329db5da86", 0x93}, {&(0x7f0000000ac0)="896a9c995c54d1f333dad4c485cac71110ad4c9501bdf60ba937732be1e485a0b485b6a6f7f51122f70ceacd0fef5aa6c75029ccd923b7e0d23acb876291a46d14a2d06a6713b5afd81f1d7c", 0x4c}, {&(0x7f0000000b40)="f5642dc5dfa41bcb628af82eb9d497dd39", 0x11}, {&(0x7f0000000b80)="29b4ee3dd662aa5e6dac90ccbaa828c2a3018d8a28168bd78ef4c502cfc3e4e6d1bb821341a52906385c544499060c0903da55cc044349b161ee70caeb35f3f4483743507d909fd057f1faec080ea65de0780cb1ad2a0e2b37d7a39e5f84b8806cef6a6331446b99b8d114468630fa1e5fbfccc76ad92afef5acd3e62c0e11aeece9237fae241562d3c08915d18ed3ce639902b6941df5ec", 0x98}, {&(0x7f0000000c40)="213aafe80d78000e2af46e647f7362ec45433a91174e994c1b1240cc094a8e7bb2a4eeacd04dd99b57128efba823eb0c3f035561ff0178da21b0a5f80565a2c3597fa3a0a4eb3b1c8f12bbdddcef", 0x4e}, {&(0x7f0000000cc0)="13eb5282abc1bbd45ea17aa160effa655832c1418e9da8abee6cb39b8c3f22414157325b00b924e0426d205e6049b09990cb101d6688", 0x36}, {&(0x7f0000002340)="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", 0x1000}], 0x7, 0x0, 0x0, 0x44}}, {{&(0x7f0000000d80)=@abs={0x1, 0x0, 0x4e22}, 0x6e, &(0x7f0000001040)=[{&(0x7f0000000e00)="05e7520f9406868bb9b76319fe5ac8d31c08c46d5a66d04f1e5f28dd835cb4c786b8b7fedfc6e27787f70f16182e4dbd6bc32f247e3e848c1b5b11c65930abbd03788efe6d101bd7bb386ecf899bb6295f5d18bd0a6f1af0f6697d1f8691e55b88e1a9944bc435c992efcdef4c105da00e66a20c347c8188e6c1899e9b8c8cd9ed0cb1ad779b30fef8942b20b31a74c714df61376aa23e7229afc0a5486e1475c5bc7ede8f5d915cea377afef3f318a70496d0042e06292b718b2aa4d4c255379860aa3e76b4b16340b364ffae087b355104575c0cb3c544bd62271a8b296a14235e", 0xe2}, {&(0x7f0000000f00)="850623db4f9a148d4553a6d83f877ae6948e0c8616f507a28b35b9aed8d26c1e", 0x20}, {&(0x7f0000000f40)="d190265af4363d1754ebb2149fb6", 0xe}, {&(0x7f0000003340)="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", 0x1000}, {&(0x7f0000004340)="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", 0x1000}, {&(0x7f0000000f80)="11c48b94c9d069f1c63e563903af6cbf617fea3c2639062b87663a6cafaec64298565394b582145e5cd8d3f521b5c78989ef084e47f1ef13d5a01acb35d7291c11ee7c49e5335cccf47008faa47370f4d10028cf44f8a3a7b78b88cd03453d430d3a1d59c4393030cfc73bf44e41473cd1e94c1f260ee7df646ec2c5098c97f6ba7e42da9e03c266e285380cd9246329971403b9af89b1e7282a454bbb1e", 0x9e}], 0x6, 0x0, 0x0, 0x1}}, {{&(0x7f00000010c0)=@file={0x0, './file1\x00'}, 0x6e, &(0x7f0000005580)=[{&(0x7f0000001140)="b0511ee66fc89f9d5460c0e15d6eb56eb9c67fc3ca1fb778f8218edb2132280973ac896200e0e8cd2ac81555661947dbdbc3da9539168d118c6039a35a900803f59e2f87b1786da01ee84be1afc38fae2ff484988d9a9055ffc2ec7f6bf1beaaf89a6c9a8e909706426e42debcc9e6c34956fc9480ee8a3c0ab47de3c60c2b60ecd7c869f8310a952b2e687305d70f6479f25d8453098d76c74f1b8c955d334b833a759762b7d5e343aff134a5826cb0c52b12dd859b739021641b1981a17f34855f0a949a52b0fd025eb3927ad728bab54d9db27a15e5b367c90be8055b", 0xde}, {&(0x7f0000005340)="156366f0f3ebcd5328f04c2aa98a74a229164e8f42aeb3612c224392db4a8ab038761dcf3ad70ed5e2d873a70e1c8614182761a27bd3c2fda6693cdfb9793425985f6ee84e06be0a19037bff51ba09dd4cf69125c04084426b26dca92dfb13c2f4802fb6367a30c25d15660b0440f263d997cbfd0682c4d7d836b4ee25bb23bfc42986ca525bb157eec2d06d7a0a30951a17a92e8a257357f17d4520d928fce37d28d06d37c33dfc9f2e0892509c007120034a5fe2b69c3a345b15b2418045a72fdab6d6d1f354aae2ed2d5021f2fd1bec2b3bd6b9f1d893af6f53b38fbf92eacb569a44bf", 0xe5}, {&(0x7f0000001240)="e8a7b46fd53634b79abe666d6d47d2b2cae83d8282266faca461735395e11b8a91e61dd681a4123e42e258d7f9ee9041c31cc24d5278cf6d46d0cdd9180fb2", 0x3f}, {&(0x7f0000005440)="257daf350ec3e16845e50a2f264f1d1ea95cf32d4294fcf78cd06540dc4f959d24bb22931838e7fe41f4215be0e36e429a90020a69928e331fbb6b0cfba258352e9c95acf06b50dd20e8faca0de06da7d58574e2f04481bf06949ca3d62598ba9422a49474ea3f87f4a582cb54d2e6c9", 0x70}, {&(0x7f00000054c0)="847edc1f7d188a1757503b6c47e35e67b504c0be1261e7fa48509d364389989a54929fa1a8b5c3cd83d48585160bd841f0b03a2bc867516727f2179761581e0fccea978886bacc6ebf3347d58e2b1c9a5208e9e660d789cffc12d7bccb6ec09b36220c7f03b798780372001b3eed1491e79f620929b57ce00ba96aa61d7b7a09cd284cb3da450faddc313f33f7c144b9033efa8023", 0x95}], 0x5, &(0x7f0000005700)=[@rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, r0, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0x48, 0x80}}], 0x5, 0x20004880) (async) write(r1, &(0x7f0000000280)='#\x00\x00\x00', 0x4) [ 1671.238243] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1671.245494] R13: 00007ffe09471b3f R14: 00007fa32fc8a300 R15: 0000000000022000 [ 1671.265380] Bluetooth: hci8: Frame reassembly failed (-84) [ 1671.282461] Bluetooth: Unknown HCI packet type 5e [ 1671.282522] Bluetooth: Unknown HCI packet type 5e 10:04:09 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) r1 = dup2(r0, r0) r2 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r2, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000074, 0x25d) bind$inet(r2, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe1}]}, 0x10) sendto$inet(r2, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) setsockopt$sock_int(r2, 0x1, 0x21, &(0x7f0000000600)=0xda9, 0x4) sendto$inet(r2, &(0x7f0000000640)="febc3b777d549ffacdd9ee6633af6e737f2e6d654105f04716908ec7af8775d530c2cc83e31b3f3c7f9e351ba553af429ff9367031b7ec0aed61ea15d08f299f9241acf82356d0859eb45aec582cd03d4cdbdcd6755c166133d9ba85529c0ed8913418402ba7d907115e75", 0x6b, 0x4000081, 0x0, 0x0) sendto$inet(r2, &(0x7f00000012c0)="e1158a927f1f6588b927481241ba7860f46ef65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a97425a3a07e758044ab0ea6f7ae55d88fecf9221a750fbf746bec66ba", 0xfe6a, 0xe, 0x0, 0xfffffffffffffe2b) setsockopt(r2, 0x2, 0x100, &(0x7f0000000040)="a978662e135f85d34f8e8a79aa0da8d6a74113d545b423eb5b92f2cbd52678d9ae2a5633c90ec4b11828c033518866c95700ed1f8ee5eec0613cd8d3447be9818591b6dbf9d9bc6386a2186eeeb226eefa4bb886125314abe911a8c8e3c50cddb090696d16b54a42b9107a26a1332c1745d4a7634e8f81300147440f79eba23fbddd588d8fa18a5000", 0x89) write(r1, &(0x7f0000000280)='#\x00\x00\x00', 0x4) [ 1671.287324] Bluetooth: Unknown HCI packet type 43 [ 1671.287329] Bluetooth: Unknown HCI packet type 5e [ 1671.287333] Bluetooth: Unknown HCI packet type 50 [ 1671.287337] Bluetooth: Unknown HCI packet type 5e [ 1671.287341] Bluetooth: Unknown HCI packet type 40 [ 1671.364960] Bluetooth: Unknown HCI packet type 43 [ 1671.375281] Bluetooth: Unknown HCI packet type 5e [ 1671.380367] Bluetooth: Unknown HCI packet type 50 [ 1671.385215] Bluetooth: Unknown HCI packet type 5e [ 1671.390656] Bluetooth: Unknown HCI packet type 40 10:04:10 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) (async) r1 = dup2(r0, r0) (async) r2 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r2, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000074, 0x25d) (async) bind$inet(r2, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) (async) setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe1}]}, 0x10) (async) sendto$inet(r2, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) setsockopt$sock_int(r2, 0x1, 0x21, &(0x7f0000000600)=0xda9, 0x4) sendto$inet(r2, &(0x7f0000000640)="febc3b777d549ffacdd9ee6633af6e737f2e6d654105f04716908ec7af8775d530c2cc83e31b3f3c7f9e351ba553af429ff9367031b7ec0aed61ea15d08f299f9241acf82356d0859eb45aec582cd03d4cdbdcd6755c166133d9ba85529c0ed8913418402ba7d907115e75", 0x6b, 0x4000081, 0x0, 0x0) (async) sendto$inet(r2, &(0x7f00000012c0)="e1158a927f1f6588b927481241ba7860f46ef65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a97425a3a07e758044ab0ea6f7ae55d88fecf9221a750fbf746bec66ba", 0xfe6a, 0xe, 0x0, 0xfffffffffffffe2b) (async) setsockopt(r2, 0x2, 0x100, &(0x7f0000000040)="a978662e135f85d34f8e8a79aa0da8d6a74113d545b423eb5b92f2cbd52678d9ae2a5633c90ec4b11828c033518866c95700ed1f8ee5eec0613cd8d3447be9818591b6dbf9d9bc6386a2186eeeb226eefa4bb886125314abe911a8c8e3c50cddb090696d16b54a42b9107a26a1332c1745d4a7634e8f81300147440f79eba23fbddd588d8fa18a5000", 0x89) write(r1, &(0x7f0000000280)='#\x00\x00\x00', 0x4) 10:04:10 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) (async) r1 = dup2(r0, r0) (async) r2 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r2, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000074, 0x25d) bind$inet(r2, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) (async) setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe1}]}, 0x10) (async) sendto$inet(r2, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) setsockopt$sock_int(r2, 0x1, 0x21, &(0x7f0000000600)=0xda9, 0x4) (async) sendto$inet(r2, &(0x7f0000000640)="febc3b777d549ffacdd9ee6633af6e737f2e6d654105f04716908ec7af8775d530c2cc83e31b3f3c7f9e351ba553af429ff9367031b7ec0aed61ea15d08f299f9241acf82356d0859eb45aec582cd03d4cdbdcd6755c166133d9ba85529c0ed8913418402ba7d907115e75", 0x6b, 0x4000081, 0x0, 0x0) sendto$inet(r2, &(0x7f00000012c0)="e1158a927f1f6588b927481241ba7860f46ef65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a97425a3a07e758044ab0ea6f7ae55d88fecf9221a750fbf746bec66ba", 0xfe6a, 0xe, 0x0, 0xfffffffffffffe2b) setsockopt(r2, 0x2, 0x100, &(0x7f0000000040)="a978662e135f85d34f8e8a79aa0da8d6a74113d545b423eb5b92f2cbd52678d9ae2a5633c90ec4b11828c033518866c95700ed1f8ee5eec0613cd8d3447be9818591b6dbf9d9bc6386a2186eeeb226eefa4bb886125314abe911a8c8e3c50cddb090696d16b54a42b9107a26a1332c1745d4a7634e8f81300147440f79eba23fbddd588d8fa18a5000", 0x89) write(r1, &(0x7f0000000280)='#\x00\x00\x00', 0x4) 10:04:11 executing program 5: syz_open_dev$evdev(&(0x7f0000000240), 0x1, 0x80) (async) r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000, 0x0, @perf_config_ext={0x0, 0x3}, 0x0, 0x0, 0x0, 0x0, 0xff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) (async) timer_create(0x0, 0x0, 0x0) (async) timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0) (async) write$binfmt_script(0xffffffffffffffff, 0x0, 0x0) (async) timer_create(0x0, &(0x7f0000000000)={0x0, 0x14, 0x0, @thr={&(0x7f0000000280)="69a895bc245902ef5ed95c5e33e0dde5ba91330a659b0830f052e947ee471d76bf80f2d39163ee20f7ad071399ffcac41ba2d698", 0x0}}, &(0x7f00000001c0)=0x0) timer_settime(r1, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0) openat(0xffffffffffffffff, 0x0, 0x0, 0x0) (async) timer_gettime(0x0, 0x0) (async) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) unlinkat(0xffffffffffffff9c, 0x0, 0x0) (async) perf_event_open(&(0x7f00000002c0)={0x2, 0x80, 0x5, 0x7, 0x0, 0x29, 0x0, 0x8, 0x80409, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clock_gettime(0x0, 0x0) (async) pipe(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) (async) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r3, &(0x7f0000000080)={0xa, 0x8000002, 0x0, @loopback}, 0x1c) sendto$inet6(r3, 0x0, 0x0, 0x20058041, &(0x7f0000000040)={0xa, 0x2}, 0x1c) (async) splice(r3, 0x0, r2, 0x0, 0x1000000000000003, 0x0) ioctl$EXT4_IOC_ALLOC_DA_BLKS(r0, 0x660c) 10:04:11 executing program 5: prlimit64(0x0, 0xe, &(0x7f0000000280), 0x0) r0 = getpid() sched_setaffinity(r0, 0x63, &(0x7f0000000040)=0x5) perf_event_open(&(0x7f0000000080)={0x5, 0x80, 0x1, 0x81, 0x5, 0x35, 0x0, 0xb9, 0x0, 0x3, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x100, 0x1, @perf_config_ext={0x9, 0x8}, 0x8000, 0xf5d, 0xffffdcc4, 0x8, 0x8e5d, 0x8, 0xfff8, 0x0, 0xae58, 0x0, 0x81}, r0, 0x3, 0xffffffffffffffff, 0x2def26e40ce8a1a4) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000040)=0xf) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r2, 0x400455c8, 0x4) ioctl$TIOCSETD(r2, 0x5412, &(0x7f0000000000)=0x33) ioctl$KDADDIO(r1, 0x400455c8, 0x8) [ 1673.177921] Bluetooth: Unknown HCI packet type 5e [ 1673.183196] Bluetooth: Unknown HCI packet type 43 [ 1673.191551] Bluetooth: Unknown HCI packet type 5e [ 1673.203075] Bluetooth: Unknown HCI packet type 50 [ 1673.208129] Bluetooth: Unknown HCI packet type 5e [ 1673.213036] Bluetooth: Unknown HCI packet type 40 [ 1673.217915] Bluetooth: received HCILL_WAKE_UP_ACK in state 2 [ 1673.232833] ------------[ cut here ]------------ [ 1673.237887] WARNING: CPU: 1 PID: 19393 at drivers/tty/tty_ioctl.c:318 tty_set_termios+0x708/0x810 [ 1673.246888] Kernel panic - not syncing: panic_on_warn set ... [ 1673.246888] [ 1673.254234] CPU: 1 PID: 19393 Comm: kworker/u5:2 Not tainted 4.14.262-syzkaller #0 [ 1673.261915] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1673.271254] Workqueue: hci13 hci_power_on [ 1673.275380] Call Trace: [ 1673.277947] dump_stack+0x1b2/0x281 [ 1673.281553] panic+0x1f9/0x42d [ 1673.284723] ? add_taint.cold+0x16/0x16 [ 1673.288679] ? tty_set_termios+0x708/0x810 [ 1673.292892] ? tty_set_termios+0x708/0x810 [ 1673.297103] __warn.cold+0x20/0x44 [ 1673.300622] ? ist_end_non_atomic+0x10/0x10 [ 1673.304920] ? tty_set_termios+0x708/0x810 [ 1673.309133] report_bug+0x208/0x250 [ 1673.312738] do_error_trap+0x195/0x2d0 [ 1673.316604] ? math_error+0x2d0/0x2d0 [ 1673.320387] ? kasan_slab_free+0x12d/0x1a0 [ 1673.324601] ? kasan_slab_free+0xc3/0x1a0 [ 1673.328730] ? kmem_cache_free+0x7c/0x2b0 [ 1673.332853] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1673.337673] invalid_op+0x1b/0x40 [ 1673.341106] RIP: 0010:tty_set_termios+0x708/0x810 [ 1673.345990] RSP: 0018:ffff88804f7a7b20 EFLAGS: 00010297 [ 1673.351330] RAX: ffff8880981d0000 RBX: ffff88804f7a7c28 RCX: dffffc0000000000 [ 1673.358577] RDX: 0000000000000000 RSI: ffff88804f7a7c28 RDI: ffff8880b08de838 [ 1673.365825] RBP: ffff8880b08de800 R08: ffffffff8ae13c88 R09: 0000000000000000 [ 1673.373072] R10: 0000000000000000 R11: 0000000000000000 R12: ffff8880b029f400 [ 1673.380319] R13: ffff8880a8cc6840 R14: 000000000001c200 R15: ffff88804e4e9bd8 [ 1673.387587] ? debug_check_no_obj_freed+0x2c0/0x680 [ 1673.392585] ? tty_wait_until_sent+0x470/0x470 [ 1673.397149] ? lock_downgrade+0x740/0x740 [ 1673.401278] ? tty_termios_encode_baud_rate+0x2f9/0x410 [ 1673.406632] hci_uart_set_baudrate+0x13d/0x270 [ 1673.411191] ? hci_uart_set_speeds+0x90/0x90 [ 1673.415580] ? hci_sock_dev_event+0x7e/0x510 [ 1673.419972] hci_uart_setup+0x8c/0x410 [ 1673.423838] ? hci_uart_set_baudrate+0x270/0x270 [ 1673.428573] hci_dev_do_open+0x34c/0xe30 [ 1673.432617] ? lock_acquire+0x170/0x3f0 [ 1673.436570] hci_power_on+0x97/0x3b0 [ 1673.440268] process_one_work+0x793/0x14a0 [ 1673.444485] ? work_busy+0x320/0x320 [ 1673.448194] ? worker_thread+0x158/0xff0 [ 1673.452236] ? _raw_spin_unlock_irq+0x24/0x80 [ 1673.456711] worker_thread+0x5cc/0xff0 [ 1673.460580] ? rescuer_thread+0xc80/0xc80 [ 1673.464708] kthread+0x30d/0x420 [ 1673.468053] ? kthread_create_on_node+0xd0/0xd0 [ 1673.472701] ret_from_fork+0x24/0x30 [ 1673.476750] Kernel Offset: disabled [ 1673.480463] Rebooting in 86400 seconds..