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", 0x1000, 0x10, &(0x7f0000000100)=@abs={0x1, 0x0, 0x4e21}, 0x6e) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r1, 0x2000) getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER_VALUE(r0, 0x84, 0x7c, &(0x7f0000000180)={0x0, 0x7, 0x3}, &(0x7f00000001c0)=0x8) openat$selinux_avc_hash_stats(0xffffffffffffff9c, &(0x7f0000000240)='/selinux/avc/hash_stats\x00', 0x0, 0x0) getsockopt$inet_sctp6_SCTP_LOCAL_AUTH_CHUNKS(r0, 0x84, 0x1b, &(0x7f00000002c0)=ANY=[@ANYRES32=r2, @ANYBLOB="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"], &(0x7f0000000200)=0xff) 08:37:06 executing program 3: r0 = socket(0x2, 0x1, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) setsockopt$EBT_SO_SET_ENTRIES(r0, 0xa00000000000000, 0x80, &(0x7f00000000c0)=@broute={'broute\x00\x00\x00\x00`\x00', 0x20, 0x1, 0x9c0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000e00], 0x0, 0x0, &(0x7f0000000e00)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff010000000b00000000000000000062726964676530000000000000000000766c616e300000000000000000000000736974300000000000000000000000007465716c3000000000000000000000000000000000000000000000000180c20000000000000000000000b8080000b808000030090000616d6f6e6700000000000000000000000000000000000000000000000000000018040000000000000c00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000027327243426c7d2d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000a600a9e85725d89818472e65aba21d9bbc1b20e8331c6fd24a5aceaeefe102e42a013ac2c00eeb782c34eab997013e0506220c21a44cc58ff5bc83d5e4066c770000000000000000000000000000000000000000000000000000000000000000000000000000000001000000fcffffff00000000"]}, 0xa38) [ 506.912303] FAULT_INJECTION: forcing a failure. [ 506.912303] name failslab, interval 1, probability 0, space 0, times 0 [ 506.939244] CPU: 0 PID: 15596 Comm: syz-executor.5 Not tainted 4.19.64 #38 [ 506.946341] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 506.946354] Call Trace: [ 506.958324] dump_stack+0x172/0x1f0 08:37:06 executing program 1: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) ioctl$sock_inet_SIOCSIFDSTADDR(r0, 0x8918, &(0x7f00000000c0)={'erspan0\x00', {0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0xd}}}) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r0, 0x0) [ 506.961971] should_fail.cold+0xa/0x1b [ 506.965876] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 506.970997] ? lock_downgrade+0x810/0x810 [ 506.975175] __should_failslab+0x121/0x190 [ 506.979428] should_failslab+0x9/0x14 [ 506.983244] kmem_cache_alloc+0x2ae/0x700 [ 506.987410] ? pmd_alloc+0x180/0x180 [ 506.991139] vm_area_dup+0x21/0x170 [ 506.994776] copy_process.part.0+0x3407/0x7a30 [ 506.999398] ? __cleanup_sighand+0x70/0x70 [ 507.003648] ? lock_downgrade+0x810/0x810 [ 507.007831] ? kasan_check_write+0x14/0x20 08:37:06 executing program 0: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000002c0)='s\x00\x00\x00\x00\x00\x00\x00\x00', 0xfffffffffffffffd, 0x0) r0 = openat$snapshot(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/snapshot\x00', 0x400800, 0x0) ioctl$KVM_SET_SREGS(r0, 0x4138ae84, &(0x7f0000000100)={{0x7000, 0x3000, 0xe, 0x6, 0x40, 0x1, 0x2, 0x7, 0x1ff, 0x0, 0x8, 0x2}, {0x5000, 0x1, 0x8, 0xfff, 0x39, 0xcc5, 0x5, 0x1ff, 0x0, 0xffffffff7fffffff, 0x2, 0xfffffffffffff800}, {0x2000, 0x116000, 0x20000000000000d, 0xff, 0x8, 0x7, 0x0, 0xeee9, 0x67, 0x4, 0xfffffffffffffffa, 0xffffffffffff0001}, {0xf000, 0x0, 0xf, 0xfffffffffffffffb, 0x5, 0x10001, 0x2, 0xfff, 0x80, 0x7fffffff, 0x9, 0x9}, {0x3000, 0xf000, 0xa, 0x80000000, 0x4, 0x1, 0x0, 0x0, 0x80, 0x10000, 0x1ff, 0x3ff}, {0x3000, 0x10000, 0xf, 0x200, 0x7, 0x2, 0x10001, 0x9, 0x1, 0xdf1b, 0x10000, 0x5f}, {0xf000, 0xd000, 0x0, 0xfffffffeffffffff, 0x2, 0x81, 0x8000, 0x2, 0xffff, 0x8, 0x9, 0x7}, {0x2000, 0x4, 0xc, 0xde6, 0x0, 0x8, 0x5, 0x100, 0x1, 0x7, 0xffffffffffffff7f, 0x100000001}, {0x100000, 0x6000}, {0x5000, 0x3000}, 0x40006, 0x0, 0x5000, 0x4001, 0x4, 0x1, 0xf000, [0x0, 0x3, 0x6, 0x3ff]}) chdir(&(0x7f0000000080)='./file0\x00') r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r1, 0x0) r2 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r2, 0x1000008912, &(0x7f0000000000)="11dca50d5e0bcfe47bf070") mremap(&(0x7f0000ffd000/0x3000)=nil, 0x2000, 0x1002, 0x3, &(0x7f0000ffa000/0x1000)=nil) [ 507.012085] ? __mutex_unlock_slowpath+0xf8/0x6b0 [ 507.016947] _do_fork+0x257/0xfd0 [ 507.020413] ? fork_idle+0x1d0/0x1d0 [ 507.020429] ? fput+0x128/0x1a0 [ 507.020444] ? ksys_write+0x1f1/0x2d0 [ 507.020465] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 507.035990] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 507.040755] ? do_syscall_64+0x26/0x620 [ 507.044770] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 507.050146] ? do_syscall_64+0x26/0x620 [ 507.054137] __x64_sys_clone+0xbf/0x150 [ 507.058131] do_syscall_64+0xfd/0x620 [ 507.061949] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 507.067147] RIP: 0033:0x459829 [ 507.070351] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 507.088155] ebt_among: dst integrity fail: 3cd [ 507.089279] RSP: 002b:00007f6d2179ec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 507.089296] RAX: ffffffffffffffda RBX: 00007f6d2179ec90 RCX: 0000000000459829 08:37:06 executing program 5 (fault-call:6 fault-nth:34): mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x1000000000) mremap(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0x0, 0x0, 0x0) [ 507.089305] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 507.089320] RBP: 000000000075bfc8 R08: 0000000000000000 R09: 0000000000000000 [ 507.089330] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f6d2179f6d4 [ 507.089338] R13: 00000000004bfce6 R14: 00000000004d1998 R15: 0000000000000004 [ 507.123879] x86/PAT: syz-executor.5:15596 freeing invalid memtype [mem 0x1000000000-0x1000000fff] [ 507.149371] x86/PAT: syz-executor.5:15596 freeing invalid memtype [mem 0x1000002000-0x1000002fff] 08:37:06 executing program 3: r0 = socket(0x2, 0x1, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) setsockopt$EBT_SO_SET_ENTRIES(r0, 0xa00000000000000, 0x80, &(0x7f00000000c0)=@broute={'broute\x00\x00\x00\x00h\x00', 0x20, 0x1, 0x9c0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000e00], 0x0, 0x0, &(0x7f0000000e00)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff010000000b00000000000000000062726964676530000000000000000000766c616e300000000000000000000000736974300000000000000000000000007465716c3000000000000000000000000000000000000000000000000180c20000000000000000000000b8080000b808000030090000616d6f6e6700000000000000000000000000000000000000000000000000000018040000000000000c00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000027327243426c7d2d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000a600a9e85725d89818472e65aba21d9bbc1b20e8331c6fd24a5aceaeefe102e42a013ac2c00eeb782c34eab997013e0506220c21a44cc58ff5bc83d5e4066c770000000000000000000000000000000000000000000000000000000000000000000000000000000001000000fcffffff00000000"]}, 0xa38) 08:37:06 executing program 2: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') syz_open_dev$sg(&(0x7f00000000c0)='/dev/sg#\x00', 0x8, 0x48000) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) madvise(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xb) 08:37:06 executing program 1: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r0, 0x0) [ 507.270460] x86/PAT: syz-executor.5:15829 freeing invalid memtype [mem 0x1000001000-0x1000001fff] 08:37:06 executing program 4: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r0, 0x200000000002002) 08:37:06 executing program 0: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000100)='./file0\x00') openat$zero(0xffffffffffffff9c, &(0x7f0000000080)='/dev/zero\x00', 0x801, 0x0) openat$proc_capi20ncci(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/capi/capi20ncci\x00', 0x400, 0x0) r0 = openat$null(0xffffffffffffff9c, &(0x7f0000000140)='/dev/null\x00', 0x80000, 0x0) r1 = openat$cgroup_ro(r0, &(0x7f0000000180)='cgroup.controllers\x00', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x1000000, 0x12, r1, 0x0) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r1, 0x0) r2 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r2, 0x1000008912, &(0x7f0000000000)="11dca50d5e0bcfe47bf070") mremap(&(0x7f0000ffd000/0x3000)=nil, 0x2000, 0x1002, 0x3, &(0x7f0000ffa000/0x1000)=nil) [ 507.320519] FAULT_INJECTION: forcing a failure. [ 507.320519] name failslab, interval 1, probability 0, space 0, times 0 [ 507.355391] ebt_among: dst integrity fail: 3cd [ 507.382833] CPU: 0 PID: 15829 Comm: syz-executor.5 Not tainted 4.19.64 #38 [ 507.389899] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 507.399256] Call Trace: [ 507.401866] dump_stack+0x172/0x1f0 [ 507.405518] should_fail.cold+0xa/0x1b [ 507.409429] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 507.414547] ? lock_downgrade+0x810/0x810 [ 507.418716] __should_failslab+0x121/0x190 [ 507.422965] should_failslab+0x9/0x14 [ 507.426776] kmem_cache_alloc+0x2ae/0x700 08:37:06 executing program 2: mkdir(&(0x7f0000000040)='./file0\x00', 0x6) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='coda\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0xa, 0x12, r0, 0x0) madvise(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xb) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r0, 0x4010ae68, &(0x7f00000000c0)={0x105ffc, 0x1002}) [ 507.430933] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 507.435963] ? __vm_enough_memory+0x324/0x5a0 [ 507.440485] vm_area_dup+0x21/0x170 [ 507.444129] copy_process.part.0+0x3407/0x7a30 [ 507.448755] ? __cleanup_sighand+0x70/0x70 [ 507.453516] ? lock_downgrade+0x810/0x810 [ 507.457690] ? kasan_check_write+0x14/0x20 [ 507.461940] ? __mutex_unlock_slowpath+0xf8/0x6b0 [ 507.466797] _do_fork+0x257/0xfd0 [ 507.470270] ? fork_idle+0x1d0/0x1d0 [ 507.473995] ? fput+0x128/0x1a0 [ 507.477286] ? ksys_write+0x1f1/0x2d0 08:37:06 executing program 3: r0 = socket(0x2, 0x1, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) setsockopt$EBT_SO_SET_ENTRIES(r0, 0xa00000000000000, 0x80, &(0x7f00000000c0)=@broute={'broute\x00\x00\x00\x00l\x00', 0x20, 0x1, 0x9c0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000e00], 0x0, 0x0, &(0x7f0000000e00)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff010000000b00000000000000000062726964676530000000000000000000766c616e300000000000000000000000736974300000000000000000000000007465716c3000000000000000000000000000000000000000000000000180c20000000000000000000000b8080000b808000030090000616d6f6e6700000000000000000000000000000000000000000000000000000018040000000000000c00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000027327243426c7d2d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000a600a9e85725d89818472e65aba21d9bbc1b20e8331c6fd24a5aceaeefe102e42a013ac2c00eeb782c34eab997013e0506220c21a44cc58ff5bc83d5e4066c770000000000000000000000000000000000000000000000000000000000000000000000000000000001000000fcffffff00000000"]}, 0xa38) [ 507.481115] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 507.485890] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 507.490660] ? do_syscall_64+0x26/0x620 [ 507.494645] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 507.500013] ? do_syscall_64+0x26/0x620 [ 507.500033] __x64_sys_clone+0xbf/0x150 [ 507.500052] do_syscall_64+0xfd/0x620 [ 507.500071] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 507.500083] RIP: 0033:0x459829 [ 507.500098] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 507.500106] RSP: 002b:00007f6d217bfc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 507.539115] RAX: ffffffffffffffda RBX: 00007f6d217bfc90 RCX: 0000000000459829 [ 507.539125] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 507.539134] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 507.539143] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f6d217c06d4 08:37:06 executing program 4: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) setxattr$trusted_overlay_nlink(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='trusted.overlay.nlink\x00', &(0x7f0000000140)={'L+', 0x7}, 0x28, 0x3) socket$packet(0x11, 0x3, 0x300) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r0, 0x2000) [ 507.539151] R13: 00000000004bfce6 R14: 00000000004d1998 R15: 0000000000000004 08:37:07 executing program 0: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') munlock(&(0x7f0000ffd000/0x1000)=nil, 0x1000) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r0, 0x0) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@sack_perm, @timestamp, @mss={0x2, 0x2}, @window={0x3, 0xcf16, 0x3}, @timestamp, @sack_perm, @window={0x3, 0x80, 0x4}, @window={0x3, 0x9b2}, @timestamp, @timestamp], 0xa) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f0000000000)="11dca50d5e0bcfe47bf070") mremap(&(0x7f0000ffd000/0x3000)=nil, 0x2000, 0x1002, 0x3, &(0x7f0000ffa000/0x1000)=nil) 08:37:07 executing program 1: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r0, 0x0) ioctl$DRM_IOCTL_MODE_SETCRTC(r0, 0xc06864a2, &(0x7f0000000100)={&(0x7f00000000c0)=[0xa560, 0x40, 0xfffffffffffffffe, 0x7, 0x56a, 0x7, 0xb8, 0x400, 0x4], 0x9, 0x9, 0x3ff, 0x8001, 0x5, 0x8, {0x5, 0x3, 0x3, 0x949, 0x3, 0x10001, 0xfffffffffffff82b, 0x0, 0x8, 0x8001, 0x0, 0x8, 0x80, 0x6, "36f95361ee482c2601680b4ae25b3f0fc75d0794567b0c208cd4b7aa96a89ae2"}}) [ 507.648287] x86/PAT: syz-executor.5:15829 freeing invalid memtype [mem 0x1000000000-0x1000000fff] [ 507.658822] ebt_among: dst integrity fail: 3cd [ 507.680051] x86/PAT: syz-executor.5:15829 freeing invalid memtype [mem 0x1000002000-0x1000002fff] 08:37:07 executing program 3: r0 = socket(0x2, 0x1, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) setsockopt$EBT_SO_SET_ENTRIES(r0, 0xa00000000000000, 0x80, &(0x7f00000000c0)=@broute={'broute\x00\x00\x00\x00t\x00', 0x20, 0x1, 0x9c0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000e00], 0x0, 0x0, &(0x7f0000000e00)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff010000000b00000000000000000062726964676530000000000000000000766c616e300000000000000000000000736974300000000000000000000000007465716c3000000000000000000000000000000000000000000000000180c20000000000000000000000b8080000b808000030090000616d6f6e6700000000000000000000000000000000000000000000000000000018040000000000000c00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000027327243426c7d2d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000a600a9e85725d89818472e65aba21d9bbc1b20e8331c6fd24a5aceaeefe102e42a013ac2c00eeb782c34eab997013e0506220c21a44cc58ff5bc83d5e4066c770000000000000000000000000000000000000000000000000000000000000000000000000000000001000000fcffffff00000000"]}, 0xa38) 08:37:07 executing program 5 (fault-call:6 fault-nth:35): mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x1000000000) mremap(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0x0, 0x0, 0x0) 08:37:07 executing program 2: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) madvise(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xb) statx(r0, &(0x7f00000000c0)='./file0\x00', 0x4400, 0x100, &(0x7f0000000100)) 08:37:07 executing program 4: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x4000, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r0, 0x2000) [ 507.824201] x86/PAT: syz-executor.5:16136 freeing invalid memtype [mem 0x1000001000-0x1000001fff] [ 507.841505] ebt_among: dst integrity fail: 3cd [ 507.869269] FAULT_INJECTION: forcing a failure. [ 507.869269] name failslab, interval 1, probability 0, space 0, times 0 [ 507.908247] CPU: 0 PID: 16136 Comm: syz-executor.5 Not tainted 4.19.64 #38 08:37:07 executing program 3: r0 = socket(0x2, 0x1, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) setsockopt$EBT_SO_SET_ENTRIES(r0, 0xa00000000000000, 0x80, &(0x7f00000000c0)=@broute={'broute\x00\x00\x00\x00z\x00', 0x20, 0x1, 0x9c0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000e00], 0x0, 0x0, &(0x7f0000000e00)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff010000000b00000000000000000062726964676530000000000000000000766c616e300000000000000000000000736974300000000000000000000000007465716c3000000000000000000000000000000000000000000000000180c20000000000000000000000b8080000b808000030090000616d6f6e6700000000000000000000000000000000000000000000000000000018040000000000000c00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000027327243426c7d2d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000a600a9e85725d89818472e65aba21d9bbc1b20e8331c6fd24a5aceaeefe102e42a013ac2c00eeb782c34eab997013e0506220c21a44cc58ff5bc83d5e4066c770000000000000000000000000000000000000000000000000000000000000000000000000000000001000000fcffffff00000000"]}, 0xa38) 08:37:07 executing program 1: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = socket$inet_sctp(0x2, 0x6, 0x84) getsockopt$inet_sctp_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f0000000180), &(0x7f00000001c0)=0x4) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r1, 0x0) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r1, 0x84, 0xa, &(0x7f0000000240)={0x101, 0x9, 0x201, 0xffffffff, 0x740, 0x7, 0x6, 0x9, 0x0}, &(0x7f0000000100)=0x20) ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TIMER(r1, 0x40605346, &(0x7f00000002c0)={0x200, 0x2, {0x3, 0x1, 0x101, 0x3, 0x3}}) setsockopt$inet_sctp6_SCTP_DELAYED_SACK(r1, 0x84, 0x10, &(0x7f0000000140)=@assoc_value={r2, 0x1f}, 0x8) [ 507.915323] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 507.924684] Call Trace: [ 507.927297] dump_stack+0x172/0x1f0 [ 507.930955] should_fail.cold+0xa/0x1b [ 507.934858] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 507.939977] ? find_held_lock+0x35/0x130 [ 507.944056] ? percpu_ref_put_many+0x94/0x190 [ 507.948657] __should_failslab+0x121/0x190 [ 507.952902] should_failslab+0x9/0x14 [ 507.956712] kmem_cache_alloc+0x47/0x700 [ 507.960790] ? __lock_is_held+0xb6/0x140 [ 507.964871] anon_vma_clone+0xde/0x480 08:37:07 executing program 3: r0 = socket(0x2, 0x1, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) setsockopt$EBT_SO_SET_ENTRIES(r0, 0xa00000000000000, 0x80, &(0x7f00000000c0)=@broute={'broute\x00\n\xaa\xaa\xa9\x00', 0x20, 0x1, 0x9c0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000e00], 0x0, 0x0, &(0x7f0000000e00)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff010000000b00000000000000000062726964676530000000000000000000766c616e300000000000000000000000736974300000000000000000000000007465716c3000000000000000000000000000000000000000000000000180c20000000000000000000000b8080000b808000030090000616d6f6e6700000000000000000000000000000000000000000000000000000018040000000000000c00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000027327243426c7d2d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000a600a9e85725d89818472e65aba21d9bbc1b20e8331c6fd24a5aceaeefe102e42a013ac2c00eeb782c34eab997013e0506220c21a44cc58ff5bc83d5e4066c770000000000000000000000000000000000000000000000000000000000000000000000000000000001000000fcffffff00000000"]}, 0xa38) [ 507.968778] anon_vma_fork+0x8f/0x4a0 [ 507.972596] ? dup_userfaultfd+0x15e/0x6c0 [ 507.976854] ? memcpy+0x46/0x50 [ 507.980153] copy_process.part.0+0x34e5/0x7a30 [ 507.984774] ? __cleanup_sighand+0x70/0x70 [ 507.989023] ? lock_downgrade+0x810/0x810 [ 507.992148] ebt_among: dst integrity fail: 3cd [ 507.993192] ? kasan_check_write+0x14/0x20 [ 507.993211] ? __mutex_unlock_slowpath+0xf8/0x6b0 [ 507.993231] _do_fork+0x257/0xfd0 [ 508.010407] ? fork_idle+0x1d0/0x1d0 [ 508.014134] ? fput+0x128/0x1a0 08:37:07 executing program 2: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) ioctl$TIOCLINUX4(r0, 0x541c, &(0x7f0000000100)) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) readlink(&(0x7f0000000380)='./file0\x00', &(0x7f0000000500)=""/48, 0x30) getsockopt$inet_sctp_SCTP_ENABLE_STREAM_RESET(r0, 0x84, 0x76, &(0x7f0000000140)={0x0, 0x1}, &(0x7f0000000180)=0x8) getsockopt$inet_sctp_SCTP_ASSOCINFO(r0, 0x84, 0x1, &(0x7f00000001c0)={0x0, 0xfffffffeffffffff, 0x7, 0x8, 0x7, 0x101}, &(0x7f0000000200)=0x14) setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000540)=0x1, 0x4) setsockopt$CAIFSO_REQ_PARAM(r0, 0x116, 0x80, &(0x7f0000000580)="802817ef1b837a0117ca1ff7aa1605270369ad4046e8cfbe3e3ee19bfaf1828fd810a96d245eb5ca36cbda0d19eb87beff36fd30b7f0d6d75e0fae4fea222cb912a49bef781b535cca2ac865e9d35385bc059659dee3d36bdbe696d9f4df5a98d18204dfbe6e159f6716751e71996360911997dda740676f6aaa717d3e4c2e776966d25da272418c174b3b9e7b470b2d3f5a1f2ee8a2a35aa800b4c231d0e5749e3d61b6f6ec03a9a1806505ae", 0xad) getsockopt$inet_sctp_SCTP_STATUS(r0, 0x84, 0xe, &(0x7f00000002c0)={r1, 0x7, 0x3, 0x6776a57f, 0x81, 0xfffffffffffff800, 0x1c93, 0x2, {r2, @in6={{0xa, 0x4e21, 0x8, @ipv4={[], [], @local}, 0x2}}, 0x2, 0xc37f, 0x3ff, 0x9, 0xbca8}}, &(0x7f0000000240)=0xb0) ioctl$DRM_IOCTL_ADD_CTX(r0, 0xc0086420, &(0x7f00000000c0)) madvise(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xb) [ 508.017426] ? ksys_write+0x1f1/0x2d0 [ 508.021243] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 508.026013] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 508.030782] ? do_syscall_64+0x26/0x620 [ 508.034774] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 508.040147] ? do_syscall_64+0x26/0x620 [ 508.044136] __x64_sys_clone+0xbf/0x150 [ 508.048136] do_syscall_64+0xfd/0x620 [ 508.051948] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 508.057145] RIP: 0033:0x459829 08:37:07 executing program 0: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) r0 = syz_open_dev$sndpcmp(&(0x7f00000000c0)='/dev/snd/pcmC#D#p\x00', 0x6, 0x501001) ioctl$TCSETA(r0, 0x5406, &(0x7f0000000100)={0xb0ca, 0x100000001, 0x9, 0x7, 0x6, 0x100, 0x10000, 0x6, 0x7, 0xa37b}) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r1, 0x0) r2 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r0, 0x84, 0x73, &(0x7f0000000140)={0x0, 0x6, 0x10, 0x7f, 0x8}, &(0x7f0000000180)=0x18) getsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r1, 0x84, 0x72, &(0x7f00000001c0)={r3, 0x9}, &(0x7f0000000200)=0xc) ioctl(r2, 0x1000008912, &(0x7f0000000000)="11dca50d5e0bcfe47bf070") mremap(&(0x7f0000ffd000/0x3000)=nil, 0x2000, 0x1002, 0x3, &(0x7f0000ffa000/0x1000)=nil) [ 508.060351] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 508.064557] ebt_among: dst integrity fail: 3cd [ 508.079252] RSP: 002b:00007f6d217bfc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 508.079269] RAX: ffffffffffffffda RBX: 00007f6d217bfc90 RCX: 0000000000459829 [ 508.079278] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 508.079287] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 08:37:07 executing program 3: r0 = socket(0x2, 0x1, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) setsockopt$EBT_SO_SET_ENTRIES(r0, 0xa00000000000000, 0x80, &(0x7f00000000c0)=@broute={'broute\x00\a\xff\xff\xfe\x00', 0x20, 0x1, 0x9c0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000e00], 0x0, 0x0, &(0x7f0000000e00)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff010000000b00000000000000000062726964676530000000000000000000766c616e300000000000000000000000736974300000000000000000000000007465716c3000000000000000000000000000000000000000000000000180c20000000000000000000000b8080000b808000030090000616d6f6e6700000000000000000000000000000000000000000000000000000018040000000000000c00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000027327243426c7d2d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000a600a9e85725d89818472e65aba21d9bbc1b20e8331c6fd24a5aceaeefe102e42a013ac2c00eeb782c34eab997013e0506220c21a44cc58ff5bc83d5e4066c770000000000000000000000000000000000000000000000000000000000000000000000000000000001000000fcffffff00000000"]}, 0xa38) [ 508.079296] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f6d217c06d4 [ 508.079304] R13: 00000000004bfce6 R14: 00000000004d1998 R15: 0000000000000004 08:37:07 executing program 4: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) remap_file_pages(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x9, 0x42033) socket$inet6_sctp(0xa, 0x1, 0x84) chdir(&(0x7f0000000080)='./file0\x00') mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, 0xffffffffffffffff, 0x2000) 08:37:07 executing program 2: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) madvise(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xb) [ 508.164852] x86/PAT: syz-executor.5:16347 freeing invalid memtype [mem 0x1000000000-0x1000000fff] 08:37:07 executing program 5 (fault-call:6 fault-nth:36): mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x1000000000) mremap(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0x0, 0x0, 0x0) [ 508.237008] x86/PAT: syz-executor.5:16347 freeing invalid memtype [mem 0x1000002000-0x1000002fff] [ 508.266887] ebt_among: dst integrity fail: 3cd 08:37:07 executing program 4: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) pkey_alloc(0x0, 0x1) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r0, 0x2000) getpeername$unix(r0, &(0x7f0000000100)=@abs, &(0x7f0000000180)=0x6e) getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(r0, 0x84, 0x74, &(0x7f0000000500)=""/4096, &(0x7f00000000c0)=0x1000) 08:37:07 executing program 3: r0 = socket(0x2, 0x1, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) setsockopt$EBT_SO_SET_ENTRIES(r0, 0xa00000000000000, 0x80, &(0x7f00000000c0)=@broute={'broute\x00\x7f\xff\xff\xff\x00', 0x20, 0x1, 0x9c0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000e00], 0x0, 0x0, &(0x7f0000000e00)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff010000000b00000000000000000062726964676530000000000000000000766c616e300000000000000000000000736974300000000000000000000000007465716c3000000000000000000000000000000000000000000000000180c20000000000000000000000b8080000b808000030090000616d6f6e6700000000000000000000000000000000000000000000000000000018040000000000000c00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000027327243426c7d2d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000a600a9e85725d89818472e65aba21d9bbc1b20e8331c6fd24a5aceaeefe102e42a013ac2c00eeb782c34eab997013e0506220c21a44cc58ff5bc83d5e4066c770000000000000000000000000000000000000000000000000000000000000000000000000000000001000000fcffffff00000000"]}, 0xa38) 08:37:07 executing program 0: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) r0 = openat$selinux_status(0xffffffffffffff9c, &(0x7f00000000c0)='/selinux/status\x00', 0x0, 0x0) ioctl$PPPIOCSFLAGS1(r0, 0x40047459, &(0x7f0000000100)=0x10000) chdir(&(0x7f0000000180)='./file0\x00') mmap$binder(&(0x7f0000ff4000/0xb000)=nil, 0xb000, 0x1, 0x11, r0, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r1, 0x0) r2 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r2, 0x1000008912, &(0x7f0000000000)="11dca50d5e0bcfe47bf070") mremap(&(0x7f0000ffd000/0x3000)=nil, 0x2000, 0x1002, 0x3, &(0x7f0000ffa000/0x1000)=nil) 08:37:07 executing program 1: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='memory.stat\x00', 0x0, 0x0) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000fbe000)={0x2, &(0x7f0000000000)=[{0x28, 0x0, 0x0, 0xfffff034}, {0x80000006}]}, 0x10) syz_emit_ethernet(0xe, &(0x7f0000000240)={@broadcast, @empty=[0x0, 0x0, 0x14], [], {@ipv4={0x800, {{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x0, 0x0, @rand_addr, @multicast1}, @dccp={{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "d70502", 0x0, "f53475"}}}}}}, 0x0) setsockopt$inet6_MRT6_ADD_MIF(r0, 0x29, 0xca, &(0x7f00000001c0)={0x0, 0x1, 0x4, 0x5, 0x1428f70a}, 0xc) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0x0) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r2, 0x0) [ 508.490756] ebt_among: dst integrity fail: 3cd [ 508.499602] x86/PAT: syz-executor.5:16578 freeing invalid memtype [mem 0x1000001000-0x1000001fff] [ 508.517135] FAULT_INJECTION: forcing a failure. [ 508.517135] name failslab, interval 1, probability 0, space 0, times 0 08:37:07 executing program 2: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) r0 = openat$selinux_avc_cache_threshold(0xffffffffffffff9c, &(0x7f00000000c0)='/selinux/avc/cache_threshold\x00', 0x2, 0x0) ioctl$SNDRV_TIMER_IOCTL_STATUS(r0, 0x80605414, &(0x7f0000000200)=""/121) unlinkat(r0, &(0x7f0000000140)='./file1\x00', 0x0) chdir(&(0x7f0000000080)='./file0\x00') ioctl$VIDIOC_ENUM_FREQ_BANDS(r0, 0xc0405665, &(0x7f0000000100)={0xffffffffffffffc0, 0x2, 0x5, 0x20, 0x20000000000, 0x7f, 0x2}) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0) madvise(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xb) openat$ion(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ion\x00', 0x200000, 0x0) 08:37:07 executing program 3: r0 = socket(0x2, 0x1, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) setsockopt$EBT_SO_SET_ENTRIES(r0, 0xa00000000000000, 0x80, &(0x7f00000000c0)=@broute={'broute\x00\x00\x00\x00\x00\'\x00', 0x20, 0x1, 0x9c0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000e00], 0x0, 0x0, &(0x7f0000000e00)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff010000000b00000000000000000062726964676530000000000000000000766c616e300000000000000000000000736974300000000000000000000000007465716c3000000000000000000000000000000000000000000000000180c20000000000000000000000b8080000b808000030090000616d6f6e6700000000000000000000000000000000000000000000000000000018040000000000000c00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000027327243426c7d2d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000a600a9e85725d89818472e65aba21d9bbc1b20e8331c6fd24a5aceaeefe102e42a013ac2c00eeb782c34eab997013e0506220c21a44cc58ff5bc83d5e4066c770000000000000000000000000000000000000000000000000000000000000000000000000000000001000000fcffffff00000000"]}, 0xa38) [ 508.518678] audit: type=1400 audit(1564994227.837:110): avc: denied { map } for pid=16583 comm="syz-executor.0" path="/selinux/status" dev="selinuxfs" ino=19 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:security_t:s0 tclass=file permissive=1 [ 508.541184] CPU: 0 PID: 16578 Comm: syz-executor.5 Not tainted 4.19.64 #38 [ 508.560507] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 508.569865] Call Trace: [ 508.572469] dump_stack+0x172/0x1f0 [ 508.576113] should_fail.cold+0xa/0x1b [ 508.580022] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 508.585157] ? __lock_is_held+0xb6/0x140 [ 508.589233] ? __lock_is_held+0xb6/0x140 [ 508.593322] __should_failslab+0x121/0x190 [ 508.597573] should_failslab+0x9/0x14 [ 508.601390] kmem_cache_alloc+0x47/0x700 [ 508.605464] ? anon_vma_chain_link+0x154/0x1c0 [ 508.610106] anon_vma_clone+0xde/0x480 [ 508.614003] anon_vma_fork+0x8f/0x4a0 [ 508.617805] ? dup_userfaultfd+0x15e/0x6c0 [ 508.622039] ? memcpy+0x46/0x50 [ 508.625327] copy_process.part.0+0x34e5/0x7a30 [ 508.629948] ? __cleanup_sighand+0x70/0x70 [ 508.634178] ? lock_downgrade+0x810/0x810 [ 508.638334] ? kasan_check_write+0x14/0x20 [ 508.642568] ? __mutex_unlock_slowpath+0xf8/0x6b0 [ 508.647412] _do_fork+0x257/0xfd0 [ 508.650868] ? fork_idle+0x1d0/0x1d0 [ 508.654582] ? fput+0x128/0x1a0 [ 508.657860] ? ksys_write+0x1f1/0x2d0 [ 508.661666] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 508.666423] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 508.671179] ? do_syscall_64+0x26/0x620 [ 508.675152] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 508.680512] ? do_syscall_64+0x26/0x620 [ 508.684500] __x64_sys_clone+0xbf/0x150 [ 508.688486] do_syscall_64+0xfd/0x620 [ 508.692324] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 508.697521] RIP: 0033:0x459829 [ 508.700712] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 508.719607] RSP: 002b:00007f6d217bfc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 508.727324] RAX: ffffffffffffffda RBX: 00007f6d217bfc90 RCX: 0000000000459829 [ 508.734590] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 508.741855] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 508.749123] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f6d217c06d4 [ 508.756402] R13: 00000000004bfce6 R14: 00000000004d1998 R15: 0000000000000004 [ 508.778233] ebt_among: dst integrity fail: 3cd 08:37:08 executing program 3: r0 = socket(0x2, 0x1, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) setsockopt$EBT_SO_SET_ENTRIES(r0, 0xa00000000000000, 0x80, &(0x7f00000000c0)=@broute={'broute\x00\x00\x00\x00\x00\x00\x00\x00\x01\x00', 0x20, 0x1, 0x9c0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000e00], 0x0, 0x0, &(0x7f0000000e00)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff010000000b00000000000000000062726964676530000000000000000000766c616e300000000000000000000000736974300000000000000000000000007465716c3000000000000000000000000000000000000000000000000180c20000000000000000000000b8080000b808000030090000616d6f6e6700000000000000000000000000000000000000000000000000000018040000000000000c00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000027327243426c7d2d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000a600a9e85725d89818472e65aba21d9bbc1b20e8331c6fd24a5aceaeefe102e42a013ac2c00eeb782c34eab997013e0506220c21a44cc58ff5bc83d5e4066c770000000000000000000000000000000000000000000000000000000000000000000000000000000001000000fcffffff00000000"]}, 0xa38) 08:37:08 executing program 0: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') pipe(&(0x7f00000000c0)={0xffffffffffffffff}) r1 = socket$inet6_udp(0xa, 0x2, 0x0) epoll_ctl$EPOLL_CTL_MOD(r0, 0x3, r1, &(0x7f0000000100)={0xc}) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0x0) msgget(0x3, 0x100) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r2, 0x0) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="11dca50d5e0bcfe47bf070") mremap(&(0x7f0000ffd000/0x3000)=nil, 0x2000, 0x1002, 0x3, &(0x7f0000ffa000/0x1000)=nil) [ 508.856213] x86/PAT: syz-executor.5:16694 freeing invalid memtype [mem 0x1000000000-0x1000000fff] 08:37:08 executing program 2: mkdir(&(0x7f0000000040)='./file0\x00', 0x1) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) r1 = ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82) ioctl$LOOP_CTL_ADD(r0, 0x4c80, r1) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x1000000, 0x12, r0, 0x0) madvise(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xb) ioctl$EVIOCGID(r0, 0x80084502, &(0x7f00000000c0)=""/124) 08:37:08 executing program 4: r0 = openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000100)='/selinux/policy\x00', 0x0, 0x0) symlinkat(&(0x7f00000000c0)='./file1\x00', r0, &(0x7f0000000140)='./file0\x00') mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r1, 0x2000) [ 508.927294] x86/PAT: syz-executor.5:16694 freeing invalid memtype [mem 0x1000002000-0x1000002fff] 08:37:08 executing program 5 (fault-call:6 fault-nth:37): mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x1000000000) mremap(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0x0, 0x0, 0x0) 08:37:08 executing program 1: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f00000000c0)='/selinux/commit_pending_bools\x00', 0x1, 0x0) syz_open_dev$amidi(&(0x7f0000000240)='/dev/amidi#\x00', 0x3, 0x400000) r0 = syz_open_dev$mouse(&(0x7f00000002c0)='/dev/input/mouse#\x00', 0x100000001, 0x101000) r1 = openat$cgroup_ro(r0, &(0x7f0000000100)='cpu.stat\x00', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r1, 0x0) 08:37:08 executing program 3: r0 = socket(0x2, 0x1, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) setsockopt$EBT_SO_SET_ENTRIES(r0, 0xa00000000000000, 0x80, &(0x7f00000000c0)=@broute={'broute\x00\x00\x00\x00\x00\x00\x00\x00\x02\x00', 0x20, 0x1, 0x9c0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000e00], 0x0, 0x0, &(0x7f0000000e00)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff010000000b00000000000000000062726964676530000000000000000000766c616e300000000000000000000000736974300000000000000000000000007465716c3000000000000000000000000000000000000000000000000180c20000000000000000000000b8080000b808000030090000616d6f6e6700000000000000000000000000000000000000000000000000000018040000000000000c00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000027327243426c7d2d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000a600a9e85725d89818472e65aba21d9bbc1b20e8331c6fd24a5aceaeefe102e42a013ac2c00eeb782c34eab997013e0506220c21a44cc58ff5bc83d5e4066c770000000000000000000000000000000000000000000000000000000000000000000000000000000001000000fcffffff00000000"]}, 0xa38) 08:37:08 executing program 0: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) r0 = openat$audio(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/audio\x00', 0x2080, 0x0) r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000540)='TIPCv2\x00') sendmsg$TIPC_NL_BEARER_DISABLE(r0, &(0x7f0000000200)={&(0x7f0000000100), 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x34, r1, 0x404, 0x70bd27, 0x25dfdbfe, {}, [@TIPC_NLA_NODE={0x20, 0x6, [@TIPC_NLA_NODE_ADDR={0x8, 0x1, 0xfffffffffffffffa}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_UP={0x4}]}]}, 0x34}, 0x1, 0x0, 0x0, 0x4000000}, 0x4014) chdir(&(0x7f0000000080)='./file0\x00') sendmsg$inet6(r0, &(0x7f0000000380)={&(0x7f0000000240)={0xa, 0x4e24, 0xa2e, @local, 0x1}, 0x1c, &(0x7f0000000340)=[{&(0x7f00000002c0)="559f93b2e89391910e846d4effbbabc2f6569a73b44b47051b1233ee6cd2c4e34386420ad4ba4ec2366b48c3034c8c5889b04c553c494e099fee3bcc68a1d1f1f5d2388934d18a33bd1abcebb8c74fac3009b6a551eef6f07c6a1f09dd4fa4fbb9d2495de0e05c3d540698ddd91cdd5849c0c1", 0x73}, {&(0x7f0000000580)="c5a87e68270af409b2b4fc70a5534ef341eb3a51edf782fd82e0a6897a3f405c1907e81636502220ee5d90e483a414f4ca9782ab2b49d038ac54bf51153607dad8e63625b443e3f9c0193cc77b0b7864e45cd84cce81e3358eb1055dbbe45ea8522bd65d25dfa00cf741e9d35e0dcb43c1787e48c3e29be75552e62e29b2c9d8df4fa4fdfbb62be71bd17a7087f4e2048622126d9313a3dbfc2b4c1f436285c8582b30559e3c62ebe67e", 0xaa}], 0x2, &(0x7f0000000640)=[@hopopts={{0x60, 0x29, 0x36, {0x0, 0x8, [], [@calipso={0x7, 0x20, {0x6, 0x6, 0x8, 0x1, [0x7fff, 0x2, 0x7]}}, @padn={0x1, 0x1, [0x0]}, @jumbo={0xc2, 0x4, 0x6}, @hao={0xc9, 0x10, @empty}, @jumbo={0xc2, 0x4, 0x4}, @ra={0x5, 0x2, 0x4}]}}}, @hopopts_2292={{0x158, 0x29, 0x36, {0x2e, 0x27, [], [@jumbo={0xc2, 0x4, 0x3}, @calipso={0x7, 0x20, {0x8, 0x6, 0xa70c, 0x9, [0x5, 0x2, 0x10001]}}, @calipso={0x7, 0x20, {0x8, 0x6, 0xff, 0x20, [0x200, 0x7, 0x2]}}, @enc_lim={0x4, 0x1, 0x1}, @enc_lim={0x4, 0x1, 0x6}, @generic={0x9, 0xcf, "e23845b14b1a4dcc22c1183f5a5716f17832edc0113d71ad20c849f255fedd101eb2a58486035cb6860779576e8fe914659b7c070260642ffdeb716b5d7a50f2bba1bfdaaf3317afb56351063d42614737a247362e9bea6381c0ae9a2fcc705fc9e4001e94bb047d62ab41e435a3efffba6455c8c69d79a54f6aceabeafaf87dfc9942e673b005279588bc99a4c8ee293e4a3aa2b7b32b034b41131ae598e9fd6c7b23d5ba3fb117a3d56c6776d357d1099aba4b900fc0c37487aaa7d1c6b0846065e68b285bf6eea2744d01621e72"}, @jumbo={0xc2, 0x4, 0x101}, @generic={0x2, 0x15, "ddbc5f1c649d56fc173b657e3c3c60f469b7dddea9"}]}}}, @tclass={{0x14, 0x29, 0x43, 0x3}}], 0x1d0}, 0x24004040) openat$capi20(0xffffffffffffff9c, &(0x7f0000000500)='/dev/capi20\x00', 0x84000, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0x0) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r2, 0x0) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="110104000000000000f070") mremap(&(0x7f0000ffd000/0x3000)=nil, 0x2000, 0x1002, 0x3, &(0x7f0000ffa000/0x1000)=nil) flistxattr(r2, &(0x7f0000000140)=""/64, 0x40) 08:37:08 executing program 4: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/self/net/pfkey\x00', 0x14000, 0x0) sendmsg$tipc(r0, &(0x7f00000005c0)={&(0x7f0000000180)=@id={0x1e, 0x3, 0x0, {0x4e24, 0x1}}, 0x10, &(0x7f0000000540)=[{&(0x7f00000002c0)="60cc35646d947042f8c92ed3cf9dbe5a551ab938b65dd98012dcfb108116fd7faaf108f6d7ff34a993e8dd823cd3b0eff23f9df52bc7e9f3bff4f03bc9596b701d80e0c02ade2a97e925a4c1aa7379c24f06627518e33a5e368027251a170573adb2568ffd37153fbb0f3cc7b97fb77fc0f6084f31c256a62454a964637a0725284f079c2135168551e1aaac05a53c5fa41a7822bf0fffcc72bc6b69da65a1038c084363a448875d5f96d4889d6e345167525f08a8d2b66e566643046353cff846437a79d152742e83d6ea8b70118b0708356ea374e0327d75744045149fca2ee19cf0cc97ec1d6ad5", 0xe9}, {&(0x7f00000001c0)="a2aebd6cdd42b3f76e6642deb42d05d072bc4e9ef9d86c7c5ecac51e49ca6895b6040a727a8b520593bfc36bb6e9d5708618de15f03f51d685501b172ba18c6a2bcbc3bb97bf5ddf37593c55a6446b0bbd5a4c4a395c6f987dd20733d3d1bf7bac3e59dd3422d1172f3a82bc8525c32f8883c2ce132219934e16efdb874916c31dff5b1804161abeb57c7f4256ef90b32a6a03f95eb1f3474cdb6b627b86f2b51991b7a1c3563fd8b23d7c", 0xab}, {&(0x7f0000000500)="927384a3", 0x4}], 0x3, &(0x7f0000000580)="89308911eec59230ca7eed8f5309902f3963a5f412ea762a2801629cb579ef5e3016a72fc790e284d2167a5c96b13086919a0876f652efce9ae33c0e", 0x3c, 0x40010}, 0xc040) clock_getres(0x7, &(0x7f0000000100)) ioctl$KVM_SMI(r0, 0xaeb7) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) syz_open_dev$evdev(&(0x7f0000000140)='/dev/input/event#\x00', 0x81, 0x10000) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r1, 0x2000) [ 509.170521] x86/PAT: syz-executor.5:16915 freeing invalid memtype [mem 0x1000001000-0x1000001fff] [ 509.202868] FAULT_INJECTION: forcing a failure. [ 509.202868] name failslab, interval 1, probability 0, space 0, times 0 08:37:08 executing program 2: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000140)='/dev/dlm-control\x00', 0x280, 0x0) lsetxattr$security_selinux(&(0x7f0000000540)='./file0\x00', &(0x7f0000000580)='security.selinux\x00', &(0x7f00000005c0)='system_u:object_r:utempter_exec_t:s0\x00', 0x25, 0x1) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000500)={r0, 0xc0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000180)=0x10000, 0x0, 0x0, 0x0, &(0x7f00000001c0)={0xa, 0x3}, 0x0, 0x0, &(0x7f0000000200)={0x5, 0x9, 0x7, 0x7}, &(0x7f0000000240)=0x8, 0x0, 0x0, 0x0, 0x0, &(0x7f00000002c0)=0x3}}, 0x10) chdir(&(0x7f0000000080)='./file0\x00') r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0) ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r1, 0x40045532, &(0x7f0000000100)=0x2) madvise(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xb) ioctl$PPPIOCNEWUNIT(r1, 0xc004743e, &(0x7f00000000c0)=0x1) [ 509.231110] CPU: 0 PID: 16915 Comm: syz-executor.5 Not tainted 4.19.64 #38 [ 509.238149] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 509.247512] Call Trace: [ 509.250124] dump_stack+0x172/0x1f0 [ 509.253769] should_fail.cold+0xa/0x1b [ 509.257669] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 509.262788] ? __anon_vma_interval_tree_augment_rotate+0x1ac/0x220 [ 509.269146] __should_failslab+0x121/0x190 [ 509.273397] should_failslab+0x9/0x14 [ 509.277213] kmem_cache_alloc+0x47/0x700 08:37:08 executing program 1: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) syz_mount_image$f2fs(&(0x7f00000003c0)='f2fs\x00', &(0x7f0000000400)='./file0\x00', 0xbb, 0x3, &(0x7f0000002500)=[{&(0x7f0000000440)="24abfd667b3458118ca53edd465f2068b3be200e4ac3d944b7f52c928ba153b3edb5bce28ea81bfefe8a28836bd3a4a185488cb4ea8f7f4fbcddd06a15e2bd2768381a91075a79badcfd3107f80baa7e430a63bbb68ba88946bcc85f6eb2e5e4c93902f4d17ec924d320fd9874eac86824ee369082c0ab0279b4df26e3fb018ce2b7cd3de9700841cdc7fc1096fdc7f7f5106bde857c63c20c89a67ead330fcfd4e1a93af68d1a0f238cffc27df3ef39f5e37831bb977e17e55f9a65100690a1", 0xc0, 0x1}, {&(0x7f0000000500)="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", 0x1000}, {&(0x7f0000001500)="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", 0x1000, 0x2}], 0x98008, &(0x7f0000002580)={[{@whint_mode_fs='whint_mode=fs-based'}], [{@subj_type={'subj_type', 0x3d, 'keyring\'system'}}, {@fsname={'fsname', 0x3d, 'nbd\x00'}}, {@audit='audit'}]}) mount(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f00000001c0)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = openat$selinux_policy(0xffffffffffffff9c, &(0x7f00000000c0)='/selinux/policy\x00', 0x0, 0x0) getsockopt$bt_BT_CHANNEL_POLICY(r0, 0x112, 0xa, &(0x7f0000000100)=0x5, &(0x7f0000000140)=0x4) r1 = openat$cgroup_ro(r0, &(0x7f0000000000)='pids.events\x00', 0x275a, 0x0) ioctl$SIOCAX25NOUID(r1, 0x89e3, &(0x7f0000000180)) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000280)='nbd\x00') sendmsg$NBD_CMD_CONNECT(r0, &(0x7f0000000380)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x48040}, 0xc, &(0x7f0000000340)={&(0x7f00000002c0)={0x58, r2, 0xb04, 0x70bd2a, 0x25dfdbff, {}, [@NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_DEAD_CONN_TIMEOUT={0xc, 0x8, 0x6}, @NBD_ATTR_BLOCK_SIZE_BYTES={0xc, 0x3, 0x4ef7}, @NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x80000000}, @NBD_ATTR_INDEX={0x8, 0x1, 0x0}]}, 0x58}, 0x1, 0x0, 0x0, 0x8044}, 0x80) mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r1, 0x0) 08:37:08 executing program 0: mount(0x0, &(0x7f0000000000)='.\x00', &(0x7f0000000100)='devtmpfs\x00', 0x2000000000000, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) ioctl$VIDIOC_REQBUFS(r0, 0xc0145608, &(0x7f0000000340)={0x7, 0xb, 0x3}) setsockopt$inet_sctp6_SCTP_FRAGMENT_INTERLEAVE(r0, 0x84, 0x12, &(0x7f00000000c0)=0x1ff, 0x4) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) ioctl$UFFDIO_ZEROPAGE(r0, 0xc020aa04, &(0x7f0000000040)={{&(0x7f0000ffd000/0x2000)=nil, 0x2000}, 0x1}) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r0, 0x0) r1 = geteuid() stat(&(0x7f0000000200)='./file0\x00', &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0}) mount$9p_virtio(&(0x7f0000000140)='\x00', &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)='9p\x00', 0xc4012, &(0x7f00000002c0)={'trans=virtio,', {[{@loose='loose'}, {@cache_loose='cache=loose'}, {@dfltuid={'dfltuid', 0x3d, r1}}], [{@euid_eq={'euid', 0x3d, r2}}]}}) r3 = socket$inet_udplite(0x2, 0x2, 0x88) mknod(&(0x7f0000000380)='./file0\x00', 0x8100, 0xba2a) ioctl(r3, 0x1000008912, &(0x7f0000000000)="11dca50d5e0bcfe47bf070") mremap(&(0x7f0000ffd000/0x3000)=nil, 0x2000, 0x1002, 0x3, &(0x7f0000ffa000/0x1000)=nil) 08:37:08 executing program 3: r0 = socket(0x2, 0x1, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) setsockopt$EBT_SO_SET_ENTRIES(r0, 0xa00000000000000, 0x80, &(0x7f00000000c0)=@broute={'broute\x00\x00\x00\x00\x00\x00\x00\x00\x03\x00', 0x20, 0x1, 0x9c0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000e00], 0x0, 0x0, &(0x7f0000000e00)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff010000000b00000000000000000062726964676530000000000000000000766c616e300000000000000000000000736974300000000000000000000000007465716c3000000000000000000000000000000000000000000000000180c20000000000000000000000b8080000b808000030090000616d6f6e6700000000000000000000000000000000000000000000000000000018040000000000000c00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000027327243426c7d2d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000a600a9e85725d89818472e65aba21d9bbc1b20e8331c6fd24a5aceaeefe102e42a013ac2c00eeb782c34eab997013e0506220c21a44cc58ff5bc83d5e4066c770000000000000000000000000000000000000000000000000000000000000000000000000000000001000000fcffffff00000000"]}, 0xa38) [ 509.281287] ? anon_vma_chain_link+0x154/0x1c0 [ 509.285893] anon_vma_clone+0xde/0x480 [ 509.289806] anon_vma_fork+0x8f/0x4a0 [ 509.293619] ? dup_userfaultfd+0x15e/0x6c0 [ 509.297862] ? memcpy+0x46/0x50 [ 509.301154] copy_process.part.0+0x34e5/0x7a30 [ 509.305772] ? __cleanup_sighand+0x70/0x70 [ 509.310039] ? lock_downgrade+0x810/0x810 [ 509.314227] ? kasan_check_write+0x14/0x20 [ 509.318476] ? __mutex_unlock_slowpath+0xf8/0x6b0 [ 509.323342] _do_fork+0x257/0xfd0 [ 509.326810] ? fork_idle+0x1d0/0x1d0 08:37:08 executing program 3: r0 = socket(0x2, 0x1, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) setsockopt$EBT_SO_SET_ENTRIES(r0, 0xa00000000000000, 0x80, &(0x7f00000000c0)=@broute={'broute\x00\x00\x00\x00\x00\x00\x00\x00\x04\x00', 0x20, 0x1, 0x9c0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000e00], 0x0, 0x0, &(0x7f0000000e00)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff010000000b00000000000000000062726964676530000000000000000000766c616e300000000000000000000000736974300000000000000000000000007465716c3000000000000000000000000000000000000000000000000180c20000000000000000000000b8080000b808000030090000616d6f6e6700000000000000000000000000000000000000000000000000000018040000000000000c00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000027327243426c7d2d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000a600a9e85725d89818472e65aba21d9bbc1b20e8331c6fd24a5aceaeefe102e42a013ac2c00eeb782c34eab997013e0506220c21a44cc58ff5bc83d5e4066c770000000000000000000000000000000000000000000000000000000000000000000000000000000001000000fcffffff00000000"]}, 0xa38) [ 509.330537] ? fput+0x128/0x1a0 [ 509.333853] ? ksys_write+0x1f1/0x2d0 [ 509.337688] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 509.342459] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 509.347231] ? do_syscall_64+0x26/0x620 [ 509.351245] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 509.356616] ? do_syscall_64+0x26/0x620 [ 509.360603] __x64_sys_clone+0xbf/0x150 [ 509.364593] do_syscall_64+0xfd/0x620 [ 509.368431] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 509.368444] RIP: 0033:0x459829 [ 509.368460] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 509.368474] RSP: 002b:00007f6d217bfc78 EFLAGS: 00000246 [ 509.395738] ORIG_RAX: 0000000000000038 [ 509.395749] RAX: ffffffffffffffda RBX: 00007f6d217bfc90 RCX: 0000000000459829 [ 509.395757] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 509.395766] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 08:37:08 executing program 3: r0 = socket(0x2, 0x1, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) setsockopt$EBT_SO_SET_ENTRIES(r0, 0xa00000000000000, 0x80, &(0x7f00000000c0)=@broute={'broute\x00\x00\x00\x00\x00\x00\x00\x00\x05\x00', 0x20, 0x1, 0x9c0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000e00], 0x0, 0x0, &(0x7f0000000e00)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff010000000b00000000000000000062726964676530000000000000000000766c616e300000000000000000000000736974300000000000000000000000007465716c3000000000000000000000000000000000000000000000000180c20000000000000000000000b8080000b808000030090000616d6f6e6700000000000000000000000000000000000000000000000000000018040000000000000c00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000027327243426c7d2d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000a600a9e85725d89818472e65aba21d9bbc1b20e8331c6fd24a5aceaeefe102e42a013ac2c00eeb782c34eab997013e0506220c21a44cc58ff5bc83d5e4066c770000000000000000000000000000000000000000000000000000000000000000000000000000000001000000fcffffff00000000"]}, 0xa38) [ 509.395774] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f6d217c06d4 [ 509.395783] R13: 00000000004bfce6 R14: 00000000004d1998 R15: 0000000000000004 [ 509.463024] x86/PAT: syz-executor.5:17037 freeing invalid memtype [mem 0x1000000000-0x1000000fff] 08:37:08 executing program 5 (fault-call:6 fault-nth:38): mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x1000000000) mremap(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0x0, 0x0, 0x0) 08:37:08 executing program 4: r0 = openat(0xffffffffffffffff, &(0x7f00000000c0)='./file0\x00', 0x200000, 0x4) setsockopt$inet_sctp_SCTP_NODELAY(r0, 0x84, 0x3, &(0x7f0000000100)=0xfffffffffffffff7, 0x4) mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x4000, 0x0) chdir(&(0x7f0000000080)='./file0\x00') read$FUSE(r0, &(0x7f0000000500), 0x1000) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r1, 0x2000) [ 509.521557] audit: type=1400 audit(1564994228.847:111): avc: denied { associate } for pid=17043 comm="syz-executor.2" name="/" dev="devtmpfs" ino=3 scontext=system_u:object_r:utempter_exec_t:s0 tcontext=system_u:object_r:device_t:s0 tclass=filesystem permissive=1 [ 509.533224] x86/PAT: syz-executor.5:17037 freeing invalid memtype [mem 0x1000002000-0x1000002fff] 08:37:09 executing program 2: mkdir(&(0x7f00000001c0)='./file0\x00', 0x10c) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000500)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) ioctl$SIOCRSGCAUSE(r0, 0x89e0, &(0x7f0000000040)) ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r0, 0xc0145401, &(0x7f00000000c0)={0xffffffffffffffff, 0x3, 0x10001, 0x0, 0xffff}) madvise(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xb) 08:37:09 executing program 3: r0 = socket(0x2, 0x1, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) setsockopt$EBT_SO_SET_ENTRIES(r0, 0xa00000000000000, 0x80, &(0x7f00000000c0)=@broute={'broute\x00\x00\x00\x00\x00\x00\x00\x00\x06\x00', 0x20, 0x1, 0x9c0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000e00], 0x0, 0x0, &(0x7f0000000e00)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff010000000b00000000000000000062726964676530000000000000000000766c616e300000000000000000000000736974300000000000000000000000007465716c3000000000000000000000000000000000000000000000000180c20000000000000000000000b8080000b808000030090000616d6f6e6700000000000000000000000000000000000000000000000000000018040000000000000c00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000027327243426c7d2d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000a600a9e85725d89818472e65aba21d9bbc1b20e8331c6fd24a5aceaeefe102e42a013ac2c00eeb782c34eab997013e0506220c21a44cc58ff5bc83d5e4066c770000000000000000000000000000000000000000000000000000000000000000000000000000000001000000fcffffff00000000"]}, 0xa38) 08:37:09 executing program 1: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') syz_open_dev$radio(&(0x7f00000000c0)='/dev/radio#\x00', 0x2, 0x2) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup.net/syz1\x00', 0x200002, 0x0) r0 = openat$cgroup(0xffffffffffffffff, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0) r1 = openat$cgroup_ro(r0, &(0x7f00000003c0)='cpuacct.usage_all\x00', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x1e, r1, 0x0) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r1, 0x0) [ 509.723348] x86/PAT: syz-executor.5:17262 freeing invalid memtype [mem 0x1000001000-0x1000001fff] 08:37:09 executing program 0: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r0, 0x0) getsockopt$EBT_SO_GET_INFO(r0, 0x0, 0x80, &(0x7f0000000100)={'nat\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02\x00\xf8\xff'}, &(0x7f0000000180)=0x78) r1 = socket$inet_udplite(0x2, 0x2, 0x88) open_by_handle_at(r0, &(0x7f0000001580)=ANY=[@ANYBLOB="08100000070000002bdb3a3e55ce5f12204291f5c0f7b83c27c842d62fabf5e85b3ce60e63e8f60ee3603ee7fd9213edcdb7bc16c15e829220f973cf6129a4592a805006cbeb69cef7a086b92f6b62f2ff0f3608ac1b79c51ff13d19237eafd522a1705c2e9e202720ba181924f8b4022d8746d4de230a937a6b1d68c88bd47ccbe93b91b7f0a5cf7fdd9a3a855d80d1befd17d4b52cf25bb6531f8b96cd0292a7008e2656c7207713bb1f0c589909bbbc5fcaf0b0c5c3dee01572748cb80250bd2c56f8d36d49e8f010f8a4f37e149f87a5a74e72db3ee7e75827ff94272145a9620ab1b1273a960ec17d4fbef1c35c2aa04ce204e237f647827e40e1225a257e13d7839de1a1af6a1d3f89ae97b70a46aa9a414f7e056e68e627cb4e1591d499cae962bb707b19a20e546a312599975da93e482cd5255612b360964965f4489340add2f37ebd9ff7bd4f6fe79c8e229667e1447083c84777e2e0539a107c70677a66ae7b9690a54b6ceeddb01ecef62dcce1df29a4fb4411f2dda3801c9ecbe5afdb4ed9fbe27a73d462d283b8b17e0c39877cdbf7b9f13f1f7aa1be0b9adee140b6ae9f5f1defd6872049afe58fc27417160e779bb096dee1c4caf5380578c135e6d809cc0d413b37a08c9be8bca299f9e5698d843a81fda392f96d3d35975feecbea2c68f614ff718d90d129e3b069723e80df6d9836db6ae6fea9c449d121dd0eb05eab2005328d734cdfb020d8e1471bd46dbbedb1897a55b820eb731ccd5f7986807c0107cda1ddd548445325336181182056e5fab07e1c3f05f9c77e499be53256e4d26d329ce057ed23a3f4063146a57d356cb708c62c350f4e0ccc5561e30878d551f323b1213621fa229db2f96f26a634d2b86d8d431e89a5072a3213da44c81fb2dea44fd9da36930a6c83a2c59dac5b8e0273e7a3c4fc2712dcff5d40536744c5b091c5d8a90d20fd99ed184862ca19243de014a044c85ebab163e57345ac98c3d150f7fae8c3a93b32000809c5fc135f88ac58a068187064888cd48b9d5a3253b95f98de1757ee0ef39476c381171fc3ac681efd235ed4bb8bb0f798954800e4acf1fa773e98b27f0530ebcebf75228a001ba5010005e101dd043840ee41b7a3ddc2811e4837348afbc175adeb62bf63e95ff4a171fd698afc873d1332405becf3bb2dcddb31c956f21e967de9148dda1af0b1dcc27a48492208ddb5e38616e4d7d4484fdaccc7585277efa333867e44bada4a7d704bb3cebc689c5c2b97224e75c7c1f87543223d64d3705b0719ed76c59104e622402adc9dad3075b81b69fb85c0c3568b608b4aa843e0a2b0d6308c3c93721973b98a90641454c7c4f95bbe70a9cff151629655e77e44c59ce9a8dcd4c32d9a7a05617521e1db56e2c1de8dd35c0f2b2321caee71c214516695132393d9d9399c23f1ccef344a2562e1350e99348867ac08ed9630a2c6051031f896c38db6c56c769d2b413b17c3d78b8263c538bb319de8c2849ad7eaa2cd737b38a181557b8c856ccbeaea8d5fda5358d4625bec85739ae01af36ec6bef3a0d891c85da22c779f7b9a77d02d46dc9535930da764febc739a202b6a23b2239e73c86e51290070c540e325b1f07624af8886115cb71fc5b49ed8011deab57c817c1cfff3e301fe6e0ba18700b8a3b2ebec5ba961725cd446e41ee2cff3d6eaee8821044becf966d96c58a00926e81b862824afeeb5a83b6edc27435e837b6df9cc142cfeeced7bf769c087fb59898ebc9c8681249c08d00e0fcef8c3a779023e4fe101baffd3274b33a6eece0267b8ab5ac4b459b28247bc208aba077cadef7c0672efadd5cc2f0bc39ffa16150cb2a9f4c9e7ba879e8816b2d02c4a44dcbfeaeb0a101dd8244a0d4d4a106f6388fc00c63597395f6cd27b945f6061ad0f77f916053c805810e447566ccaea075b06f3848483c3d5e0c4291f81ca639eecbbfe1f36aeb2a964049e74782463ab12f3da42518aef707238a4503ba59a5fdbd8e31272e506fd291c2f3e9b603f301df5d86e6fd82cc1bf33c7c5fdbf1d7da2b840c5064c5b3e35d71c900726c084d65d01d35ff54c9bc7c62d31bfcf90ac5a6f99cae2fefa6b25f3ee3d9890dfbaaf128f4841dbeef662319d34ce94f85760a37c326118850abf49fbebac7b293860946c39d5a2c5118b33b295dbe9ce71b33ee83796572672263cd14d859f0ecf41a74b3b761cbf9f262ec660aa1e3fdbb1f65a86c98c155502a4ea8cd3b108a0269e9e78be672049fb4514fcbf0c25c0c91d1024590f7173fb8fc3478493ab8610f0ad08b039c5e80418d1dd860e91f0188dfe8a471239884257625561bce12675783e61e46e6ae4474dc6220e500e0579856f13e4d3df6afcf8a4703b2632fa3a2f31b875cdd28b70c3fd49320a26fd23bdce6a36cc7a58385fae613dcded645937edd3d3aeb059fba8723cbb724972a875d1c942b11f4d0b8d06105771c006d00af81fdb3fb51930d992c63fb57a9437308eac4735bfeff5d13d3fbcce4d9b094c90d7dcc38be2de052e191c8d3d208fbe7764a00b36e410b78c39660ce7840ccfae9419f990e322893c3a735f677509ac1a1d9887e8a577c8696e92e107ed281e2611b3b884965981a365ed807a7966f3714779bbeb8d0f8d787577d4d9b3c1f3bab8b04e018c1059768df61ff75e0e91180fdb70d89c239da2c181c7720299d81059093281ab00bee66063497202468f2f559a10337eb397027a4ba5aa1d324c3d778c04d09cd34172334636f4f525e26fb71969131c118203174152edf9a25b1d627e2f2ca06cd91f575723828558155e991dea611f1e5c6682b7225431219185b0de42b5f2d19bdfb41c6b05e13cde365f182d277ee6978a109ffd8473f67f23bc963bfeda4cef53491297243702c0b9fb9636408e00455d25227c838abc5785a49560dac6916a272504490be1f032c29cd2b189709ed29bcc83b43b566b6bdeb852661be0fcd86ce6a1f4f98df8e76821fc6034aecfb9150f9ec3233f8af12724dc54a4b9ffc2cb61ac0e2b0026e7308c0635ed105b5200c1c86d3cb6fe34c0df6f868e1778d594fd474b5487589c7dfae5dce48a4b275c85d922b0924c41d54351591d583e7db4129ea5b41b902edc00bf10977b23e4321f3bf670bade2afb4195a077a50d2a0f01a289652782e4b37fb8dfec0dc7e1525eb93b91ed6a9f6224bb2c3b702497e1d5959bf5339c1e8929201968e8ed0bcb106c9238d86dada233a84a384e7b0a54587ad6caffcc2eded11ed309eb3ea527411de545d591fd692b3751a98a01a8ba2eef642da3d7c8e48bb5edd29acc62742045e089c1fb200b556311670405d6032978cae9fb46613c1bf70e35687c0624fcbd7db7856fd6ed973bcbdca2aef308329ddce4b2fe0156c82f1339b5718bfc326e949238cfd47b498697181099978d732130e2456318525866572c06e0e24426de4f387ca67fad31b369733d0bee8c4a05539b1786bd894efe3ce72ce6b7f22be67758750f4be78c4ec19ca8d49971283f33547e4bf739d7b26d3d9b42afeb91c9148cff00923dbdb13a8bedccad42b5a72c3ed87c99f4fd35efaaef0727112d7a40b9287fd996162df0b63c2a5f3f114761885ebbdd65bc9cbc674ad17f2296ab68cf6c5be9915c014a7475c55dfd7f659f6b9eeaef9686169870c7e6672b725143964f355c78c2ce6adfa336ab16918b4ac2c59f318024828a904d9c8fe6a226fc3ee07a691ed256f6e88158d04f3793e2b5b94629d184cd7c59dde80b192aae2066a00983a6eb290ad9cb1f99b0017c7976836a91704dfb1007b7e2346310275c864eb041d1a4bf823829df4cc8e51ad8dc31640ea1aa91e71843f621fe2b0d29932609aee165a3a3f6e6efb1189f3912777f5c40d8edc13bd1f8fad45b3a967be952b30cd6a95d4185b671d7ac33dc1d9ce59b7d8d239a95c4d61528331cd857be8a1a52dd46575248e86cbb39b0d22f5c4a575cd95626c56cd9205c7f7a08b71b6688b71ffa5d14617474e081c420109051510e69493ced583b5717bbb7baf78cd53d4d1352b35208955ec83dc10e4777336dbf8698dc3753cdaf02bc8224c42330734264296fbbd90b58f1e76078f0fc0a0f583a3ca65fe2272680126c1cd9b746b6af5409d576075b86a23a088fdbc43d68ee0f5bd9fba4a52d94b9f5e1053a71a376e6d35f62140d8de55edbda1157ccafec5dc9b3f4ebb52f03488662d25d4c0852a5dd756e8ac637fe539b07f1db92285f761179dd586872ebe48734cc4b4653d8895e84da4b6a9088487c6a78c04d6b06653d018a476598b5fd8b82159a426449ae418d0ed3cfc5a1733970746f4448a3a1dc833f7f2e9f5fe71f272ba46c963fe82817c36e40739285beae5c36675ec28ed1689ab0a42460724ad8ad0f90e48fcb1a83c7db24e99acd63e3f9cf096f324b49415d410fbc70f5b801c770f60d04d5b38992737d2cee1303e4ac23de0dd8fe01e5d605aa8b7a8892c9485d57f4a0b53c871ad5a88524ff770c8777a2354d366ba2463eedc3b1148b4c262bf99ae0b1ddc6b89fdb5143264540a3cbdaa2239b695eefb0b19c738785d818f1d135cdbfb4c09c7543857f3adc68178ca375d9d67359cf4b72d2502901bc6e92e515cf4ba01b52a8780122ec6001aa4fb5d7c326856f8c912d9ff39870d9f0c6718f3dab24c03ab327b1619a18635f46ff5106f34028a551c9f0c4cd8162039a78f2290944807a266ee0b8ff21329eaa01ac6e2caa64e9bc6915cecc1b3a98afea73356cec13ed50217bd1934f687592ab0e72b266b0479ef04d1cb6a6baa283e95b4d78a29c8a45aecbf620c8e75d11c753e75afc79f56c94daac691bba0013ab952dd35b15474b7a8b0c3ea8a3599aaf655deaf22adf562cc041dcba6e995db4ef499fe9bdaadc9cb5017223d3c35a98b820798d141a854edd0dc64b0963d33e1c064c0a2438fb08a284d4ff76d423012a700a6614a3c39cc497ec57b5205e4253cae3acea602ad1150d59b9dd81abfad4252b249bc0f8d50dbb18ce653c1bf32cbe9785e784991e12fecf738131bd765dec075e19abefe32afae7fdebc1ab4e51f6e368aeb36c89c8445fd4723e96c3d8693b8221d8e2985ac43f33ee7de5fed936cdb184af544cf15e4b3694fae51bf0d8736e765b52e9d6795c166502b7f7f4bdb4407483176492c155261a2ae6cb8cfd29fce21bb9e50db21647f38cc9a8063b0f72c0e735df26606a1778f067716e24ff3bf6c6ec6fdafd561755b2e97f3f31776dba05043fc68ea4bfb33da2cde73a93e146feba990dabb974ea43ba679d8dd302208898b23cf110aaf72c42e1161b0832e12ae286832a179d48d32c17a1dfad9181e94b49c1c40ff8de2cc3948f8a3585f3284eee832999a5e0087a46db8502f1dd3a9b4918340059713116bd17c728f675973536929a83a88c7302f2441da1c7fb8fef756265d6501577652028286a3c38fa253ed9f1451c420524ab92230957d4c951e4bb462541dd3d33bdc200bb3c3e16ddf3408ace25275b6b74589bfd33a82982044a7192c075ab0108fde7fddce5c64d07285f42b82ab5a2d9f59541a976088a999d0dd348e69e8d761633e5735b7c504baef37ca4af27dbdaa7db10122847e768406d4dbe8ce85ef8f1f29828b558f6525b7c345f623726fe1a60dd2f6b8cac858f2d73a1d1fc0b0d4ef88a4cf78c1c725ea50ccbaa0ad8d80eea771e7a2ca46d92c1d3baf6e28392748bd1d771d7160b8a9d7e7d913ce1b39deefff8d0bd48a517cc9f5f9fd4158b7df9315f7b5986a2c0d834f0f210fd5056e4d2c9615ffa16df970cadff326e7d8220fa53ffe050ac8f514f154b8834b4f6c0787a433117638259a0e45edd40c1c6cb9d67ace3e56a23b0c841a9fa2a109f9543cb"], 0x280) ioctl$DRM_IOCTL_ADD_CTX(r0, 0xc0086420, &(0x7f00000000c0)) ioctl(r1, 0x1000008912, &(0x7f0000000000)="11dca50d5e0bcfe47bf070") ioctl$DRM_IOCTL_AGP_ALLOC(r0, 0xc0206434, &(0x7f00000001c0)={0x3, 0x0, 0x10001, 0x4e9}) ioctl$DRM_IOCTL_SG_ALLOC(r0, 0xc0106438, &(0x7f0000000200)={0x5, r2}) mremap(&(0x7f0000ffd000/0x3000)=nil, 0x2000, 0x1002, 0x3, &(0x7f0000ffa000/0x1000)=nil) 08:37:09 executing program 4: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) r0 = syz_open_dev$usbmon(&(0x7f00000000c0)='/dev/usbmon#\x00', 0x94, 0x0) r1 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000100)='/proc/self/net/pfkey\x00', 0x105400, 0x0) fanotify_mark(r0, 0x4, 0x31, r1, &(0x7f0000000140)='./file0\x00') chdir(&(0x7f0000000080)='./file0\x00') r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r2, 0x2000) [ 509.795445] FAULT_INJECTION: forcing a failure. [ 509.795445] name failslab, interval 1, probability 0, space 0, times 0 [ 509.849754] CPU: 1 PID: 17269 Comm: syz-executor.5 Not tainted 4.19.64 #38 [ 509.856815] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 509.866180] Call Trace: [ 509.868794] dump_stack+0x172/0x1f0 [ 509.872470] should_fail.cold+0xa/0x1b [ 509.876383] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 509.881501] ? lock_downgrade+0x810/0x810 [ 509.885722] __should_failslab+0x121/0x190 [ 509.890017] should_failslab+0x9/0x14 [ 509.893860] kmem_cache_alloc+0x2ae/0x700 [ 509.898012] ? anon_vma_clone+0x320/0x480 [ 509.902188] anon_vma_fork+0xfc/0x4a0 [ 509.906031] ? dup_userfaultfd+0x15e/0x6c0 [ 509.910271] ? memcpy+0x46/0x50 [ 509.910293] copy_process.part.0+0x34e5/0x7a30 [ 509.910335] ? __cleanup_sighand+0x70/0x70 [ 509.918199] ? lock_downgrade+0x810/0x810 [ 509.926587] ? kasan_check_write+0x14/0x20 [ 509.930899] ? __mutex_unlock_slowpath+0xf8/0x6b0 [ 509.935756] _do_fork+0x257/0xfd0 [ 509.939229] ? fork_idle+0x1d0/0x1d0 [ 509.942959] ? fput+0x128/0x1a0 [ 509.946272] ? ksys_write+0x1f1/0x2d0 [ 509.950099] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 509.954875] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 509.959649] ? do_syscall_64+0x26/0x620 [ 509.963636] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 509.969012] ? do_syscall_64+0x26/0x620 [ 509.973007] __x64_sys_clone+0xbf/0x150 [ 509.976994] do_syscall_64+0xfd/0x620 [ 509.980831] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 509.986042] RIP: 0033:0x459829 08:37:09 executing program 3: r0 = socket(0x2, 0x1, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) setsockopt$EBT_SO_SET_ENTRIES(r0, 0xa00000000000000, 0x80, &(0x7f00000000c0)=@broute={'broute\x00\x00\x00\x00\x00\x00\x00\x00\a\x00', 0x20, 0x1, 0x9c0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000e00], 0x0, 0x0, &(0x7f0000000e00)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff010000000b00000000000000000062726964676530000000000000000000766c616e300000000000000000000000736974300000000000000000000000007465716c3000000000000000000000000000000000000000000000000180c20000000000000000000000b8080000b808000030090000616d6f6e6700000000000000000000000000000000000000000000000000000018040000000000000c00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000027327243426c7d2d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000a600a9e85725d89818472e65aba21d9bbc1b20e8331c6fd24a5aceaeefe102e42a013ac2c00eeb782c34eab997013e0506220c21a44cc58ff5bc83d5e4066c770000000000000000000000000000000000000000000000000000000000000000000000000000000001000000fcffffff00000000"]}, 0xa38) 08:37:09 executing program 3: r0 = socket(0x2, 0x1, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) setsockopt$EBT_SO_SET_ENTRIES(r0, 0xa00000000000000, 0x80, &(0x7f00000000c0)=@broute={'broute\x00\x00\x00\x00\x00\x00\x00\x00\n\x00', 0x20, 0x1, 0x9c0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000e00], 0x0, 0x0, &(0x7f0000000e00)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff010000000b00000000000000000062726964676530000000000000000000766c616e300000000000000000000000736974300000000000000000000000007465716c3000000000000000000000000000000000000000000000000180c20000000000000000000000b8080000b808000030090000616d6f6e6700000000000000000000000000000000000000000000000000000018040000000000000c00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000027327243426c7d2d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000a600a9e85725d89818472e65aba21d9bbc1b20e8331c6fd24a5aceaeefe102e42a013ac2c00eeb782c34eab997013e0506220c21a44cc58ff5bc83d5e4066c770000000000000000000000000000000000000000000000000000000000000000000000000000000001000000fcffffff00000000"]}, 0xa38) [ 509.989241] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 509.989251] RSP: 002b:00007f6d2179ec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 509.989273] RAX: ffffffffffffffda RBX: 00007f6d2179ec90 RCX: 0000000000459829 [ 510.023165] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 510.030440] RBP: 000000000075bfc8 R08: 0000000000000000 R09: 0000000000000000 [ 510.030450] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f6d2179f6d4 08:37:09 executing program 2: r0 = openat$selinux_checkreqprot(0xffffffffffffff9c, &(0x7f00000000c0)='/selinux/checkreqprot\x00', 0x400, 0x0) ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r0, 0xc0305302, &(0x7f0000000180)={0x3, 0x66d76559, 0x5ed, 0xab, 0xffffffff7fffffff, 0x6}) mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) socket$inet_icmp_raw(0x2, 0x3, 0x1) chdir(&(0x7f0000000080)='./file0\x00') syz_open_dev$swradio(&(0x7f00000001c0)='/dev/swradio#\x00', 0x1, 0x2) openat$zero(0xffffffffffffff9c, &(0x7f0000000100)='/dev/zero\x00', 0x2002, 0x0) r1 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000140)='/dev/dlm-control\x00', 0x8100, 0x0) r2 = openat$cgroup_ro(r1, &(0x7f0000000500)='cpuacct.usage_percpu_user\x00', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0x0) madvise(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xb) 08:37:09 executing program 3: r0 = socket(0x2, 0x1, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) setsockopt$EBT_SO_SET_ENTRIES(r0, 0xa00000000000000, 0x80, &(0x7f00000000c0)=@broute={'broute\x00\x00\x00\x00\x00\x00\x00\x00\f\x00', 0x20, 0x1, 0x9c0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000e00], 0x0, 0x0, &(0x7f0000000e00)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff010000000b00000000000000000062726964676530000000000000000000766c616e300000000000000000000000736974300000000000000000000000007465716c3000000000000000000000000000000000000000000000000180c20000000000000000000000b8080000b808000030090000616d6f6e6700000000000000000000000000000000000000000000000000000018040000000000000c00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000027327243426c7d2d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000a600a9e85725d89818472e65aba21d9bbc1b20e8331c6fd24a5aceaeefe102e42a013ac2c00eeb782c34eab997013e0506220c21a44cc58ff5bc83d5e4066c770000000000000000000000000000000000000000000000000000000000000000000000000000000001000000fcffffff00000000"]}, 0xa38) [ 510.030459] R13: 00000000004bfce6 R14: 00000000004d1998 R15: 0000000000000004 [ 510.051260] x86/PAT: syz-executor.5:17269 freeing invalid memtype [mem 0x1000000000-0x1000000fff] [ 510.063520] x86/PAT: syz-executor.5:17269 freeing invalid memtype [mem 0x1000002000-0x1000002fff] 08:37:09 executing program 5 (fault-call:6 fault-nth:39): mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x1000000000) mremap(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0x0, 0x0, 0x0) 08:37:09 executing program 4: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') futex(&(0x7f00000000c0), 0x8b, 0x1, &(0x7f0000000100)={0x0, 0x989680}, &(0x7f0000000140)=0x1, 0x1) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r0, 0x2000) 08:37:09 executing program 1: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000280)='reiserfs\x00', 0x1, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r0, 0x0) 08:37:09 executing program 2: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) ioctl$SIOCRSGCAUSE(r0, 0x89e0, &(0x7f00000000c0)) madvise(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xb) lsetxattr$security_evm(&(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='security.evm\x00', &(0x7f0000000180)=@v2={0xd28b2829203fdad7, 0x0, 0x0, 0x9, 0xe7, "0680bd5bb706857d921b0b513ef2fe5ba6d2301cbd7fee4fd93b86b81dd37a8911b251f5df62f1c2022f06be7c0d6409d9903b925a9821f55c0f47a3f3ddcf2b1593e53c331b8977950ad26d9bab5cd5e14ab0f1a7f30963f43d15644480eefa51258c8fd90f4f39d6f5502179b3547cce8058a73d3e7a704c415913cd03231854868ede1a4fdfc27252e475111ae2b938464615da4c8ed0c11ea2b0f8690c8ebc57b0599dba9d391912991a83596d5e79d30aedb277dd1011286c42e1ae0285286ffb81a47fcdcad516f0cc86a7bf84e33c508f0d56c674635ac01a018fbf1348f372df014204"}, 0xf1, 0x0) [ 510.241696] x86/PAT: syz-executor.5:17454 freeing invalid memtype [mem 0x1000001000-0x1000001fff] [ 510.281948] FAULT_INJECTION: forcing a failure. [ 510.281948] name failslab, interval 1, probability 0, space 0, times 0 [ 510.294436] CPU: 1 PID: 17454 Comm: syz-executor.5 Not tainted 4.19.64 #38 [ 510.301471] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 510.310842] Call Trace: [ 510.313458] dump_stack+0x172/0x1f0 [ 510.317109] should_fail.cold+0xa/0x1b [ 510.321044] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 510.326163] ? lock_downgrade+0x810/0x810 [ 510.330325] __should_failslab+0x121/0x190 [ 510.334563] should_failslab+0x9/0x14 [ 510.338360] kmem_cache_alloc+0x2ae/0x700 [ 510.342507] ? anon_vma_clone+0x320/0x480 [ 510.346673] anon_vma_fork+0x1ea/0x4a0 [ 510.350598] ? dup_userfaultfd+0x15e/0x6c0 [ 510.354839] copy_process.part.0+0x34e5/0x7a30 [ 510.359447] ? __cleanup_sighand+0x70/0x70 [ 510.363684] ? lock_downgrade+0x810/0x810 [ 510.367857] ? kasan_check_write+0x14/0x20 [ 510.372098] ? __mutex_unlock_slowpath+0xf8/0x6b0 [ 510.376946] _do_fork+0x257/0xfd0 [ 510.380403] ? fork_idle+0x1d0/0x1d0 [ 510.384114] ? fput+0x128/0x1a0 [ 510.387395] ? ksys_write+0x1f1/0x2d0 [ 510.391209] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 510.395975] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 510.400733] ? do_syscall_64+0x26/0x620 [ 510.404707] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 510.410081] ? do_syscall_64+0x26/0x620 [ 510.414081] __x64_sys_clone+0xbf/0x150 [ 510.418056] do_syscall_64+0xfd/0x620 [ 510.421864] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 510.427051] RIP: 0033:0x459829 [ 510.430246] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 510.449147] RSP: 002b:00007f6d217bfc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 510.457378] RAX: ffffffffffffffda RBX: 00007f6d217bfc90 RCX: 0000000000459829 [ 510.464642] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 510.471907] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 08:37:09 executing program 3: r0 = socket(0x2, 0x1, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) setsockopt$EBT_SO_SET_ENTRIES(r0, 0xa00000000000000, 0x80, &(0x7f00000000c0)=@broute={'broute\x00\x00\x00\x00\x00\x00\x00\x04\x18\x00', 0x20, 0x1, 0x9c0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000e00], 0x0, 0x0, &(0x7f0000000e00)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff010000000b00000000000000000062726964676530000000000000000000766c616e300000000000000000000000736974300000000000000000000000007465716c3000000000000000000000000000000000000000000000000180c20000000000000000000000b8080000b808000030090000616d6f6e6700000000000000000000000000000000000000000000000000000018040000000000000c00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000027327243426c7d2d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000a600a9e85725d89818472e65aba21d9bbc1b20e8331c6fd24a5aceaeefe102e42a013ac2c00eeb782c34eab997013e0506220c21a44cc58ff5bc83d5e4066c770000000000000000000000000000000000000000000000000000000000000000000000000000000001000000fcffffff00000000"]}, 0xa38) [ 510.479185] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f6d217c06d4 [ 510.486451] R13: 00000000004bfce6 R14: 00000000004d1998 R15: 0000000000000004 08:37:09 executing program 0: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f00000000c0)={'irlan0\x00', &(0x7f0000000500)=@ethtool_per_queue_op={0x4b, 0x7f, [0x40, 0x100, 0x8, 0x75, 0x2ee, 0xffffffff, 0x101, 0x400, 0x7fffffff, 0x6, 0x6fdbe707, 0x7fff, 0x7ff, 0x7, 0x7, 0x51, 0x2, 0x7f, 0x1a1, 0x57, 0x200, 0x78, 0x8, 0x8, 0x0, 0x4, 0xfffffffffffffffd, 0x7, 0x6, 0x0, 0x756, 0xffffffffffffff7f, 0x9, 0x9, 0x0, 0xffffffffffffffc1, 0x1ff, 0x0, 0x6, 0x1ff, 0xffffffffffffff00, 0x6886, 0x0, 0x7, 0x1, 0x5, 0x7fff, 0x6, 0xffffffffffffff7f, 0x0, 0x1, 0x4, 0x3, 0x5, 0x4, 0x7, 0x2, 0x0, 0x4, 0xfffffffffffffffc, 0xa1, 0x3f, 0x3dd, 0x3, 0x9, 0x4, 0x6, 0x7, 0x5, 0x7, 0x637, 0xa19, 0xfffffffffffffffe, 0x9, 0x4, 0x8, 0x3f, 0xddf, 0x0, 0x7, 0x5f, 0x8, 0xfffffffffffffffc, 0x3f, 0x1, 0xc000000000000, 0x1, 0x2, 0x5, 0x1, 0x2, 0x7, 0xc8, 0x1850, 0x2de9, 0x800, 0x8, 0x1, 0x81, 0x2, 0x8000, 0x3, 0x1f, 0x4, 0x4, 0xb65, 0x200, 0x7fffffff, 0x2ad, 0x0, 0x1, 0x3, 0x4, 0x8, 0x81, 0x2, 0x3, 0x7, 0xfffffffffffffffe, 0x1, 0x8, 0x80, 0x10000, 0x9, 0x80, 0x48b1, 0x2, 0xffff, 0x80, 0x1, 0x7, 0xffff, 0x3, 0x4023, 0x147a, 0x101, 0x9, 0x5, 0x10001, 0x59ac40d9, 0x101, 0x7, 0x7, 0x6, 0x1, 0x5, 0x5, 0x0, 0x6da2, 0x20, 0x7fff, 0x800, 0x1000, 0x100, 0x0, 0x6, 0x1000, 0x1, 0x5, 0x81, 0x3b9, 0x7, 0x3, 0x9, 0x8, 0xffffffffffffff01, 0xfffffffffffffffd, 0x81, 0x3e3, 0x3ff, 0xc600000000000000, 0x10000, 0x8, 0x8, 0x9, 0x22, 0x7, 0x4, 0x0, 0x4, 0xab7, 0x8001, 0x7, 0x135, 0x2, 0x8, 0x6, 0x9, 0x0, 0x10001, 0x9, 0x100000001, 0x4, 0xec5c, 0x8001, 0x2, 0x7fff, 0x3, 0xffff, 0xfffffffffffffbff, 0xffffffff, 0x6e4, 0x400, 0x7ff, 0x60, 0x7f, 0x3, 0xc5a, 0x4, 0x200, 0x7fff, 0xe234, 0x3f, 0x1, 0x7f, 0x6, 0x80000000, 0x8000, 0x7d6446da, 0x2, 0xffffffc000000000, 0x401, 0x7f, 0x0, 0x0, 0x400, 0x8, 0x401, 0x191801ef, 0x8, 0x4d, 0xe8, 0x7fffffff, 0x80, 0x0, 0xe45, 0x1, 0x100, 0x9, 0x2, 0x1, 0x6, 0x0, 0x2, 0x7f, 0x7, 0x26, 0xf0, 0x8d1, 0xff, 0x80000001, 0x231, 0x8, 0x6, 0x3, 0x5, 0xfffffffffffffff9, 0xf, 0xa6d, 0x6, 0x7, 0x9, 0x1, 0x1, 0x4, 0x1, 0x10000, 0x0, 0x6, 0x6, 0x4, 0xe7, 0x80000001, 0x9, 0x5, 0x200, 0x87, 0x2, 0x0, 0x8, 0x4, 0x2, 0x80, 0x81, 0x6, 0x2b54, 0x2, 0x7ff, 0x4489, 0x8001, 0x4, 0x7, 0x8, 0x101, 0x3, 0x3, 0x6, 0x6, 0x3ff, 0xffffffff00000001, 0x1, 0x8, 0x9, 0x6, 0xfff, 0x4, 0x7fff, 0x2, 0xf514, 0x6, 0x6, 0x5, 0x9, 0xffff, 0x8ac, 0xffff, 0x80000000, 0x9, 0x9, 0x1, 0x0, 0x3, 0x9, 0x4e30000000000000, 0x3, 0x2, 0x1, 0xea, 0x0, 0x3e3, 0x0, 0x0, 0xd8, 0x9, 0x8, 0xb66, 0x5b04, 0x3, 0x2000000000, 0x2, 0xf093, 0x7f, 0x4, 0x80000000, 0x6a0, 0x1, 0xbbc7, 0x7f0, 0xffffffffffffff81, 0x20, 0x2db, 0x1, 0x6, 0xfffffffe00000000, 0xfffffffffffff000, 0x7fff, 0x0, 0xa9c4, 0x7, 0x4, 0x1, 0x2, 0x3, 0x6, 0x6, 0x40, 0x81, 0xc0f, 0xfffffffffffffffc, 0x80, 0x10001, 0x10000, 0xfffffffffffff579, 0x6b2, 0x5, 0x1, 0x400, 0x1f, 0x8001, 0x80000001, 0x7f, 0xffffffffcdc6d22c, 0x4, 0x0, 0xb5e, 0x187c, 0x3, 0x3, 0x2, 0x9, 0x6, 0x5edb, 0x8, 0x0, 0x0, 0x4, 0x7fff, 0x1, 0x9, 0x8, 0x6bfe, 0x401, 0xffff, 0x8000, 0x1, 0x2b, 0x100, 0x9, 0x1ff, 0x0, 0x4, 0x0, 0xfffffffffffffffd, 0x92, 0x0, 0xd7, 0x7fff, 0x2, 0xff, 0x101, 0x3, 0x9, 0x5, 0x6, 0x4, 0x8, 0x8, 0x2, 0x27, 0x0, 0xf6f, 0x20, 0x9, 0x1b5b345c, 0x7f, 0x84, 0x6, 0x7, 0x7, 0x948b, 0x8, 0x6, 0x800, 0x6, 0x4, 0xfffffffffffffff8, 0x18d, 0x20, 0x1, 0x1, 0x8, 0x80000001, 0x10001, 0x8000, 0x4, 0xf9, 0x1, 0x7ff, 0x2, 0x7, 0x2, 0x1ff, 0x3, 0x7b71, 0x3f, 0x8, 0x2, 0x400, 0x81f0, 0x93, 0xabd4, 0x400, 0x5, 0x3, 0x0, 0x20, 0x8, 0xfffffffffffffff8, 0x6, 0xffff, 0x200, 0x8, 0x4, 0x80, 0x8001, 0x51, 0x80, 0x2, 0x8, 0x5, 0xfff, 0x2, 0x1f, 0x6, 0x8, 0x5, 0x7f, 0x400, 0x5, 0x7, 0x9, 0x7, 0x100, 0x1, 0x8, 0x1ff, 0x9, 0x7, 0x0, 0x10001, 0x5, 0xda5, 0x6, 0x4, 0xfffffffffffff800, 0x6, 0xfffffffffffffffe, 0x2, 0xec6f, 0x66e, 0x9114, 0x3ff, 0x0, 0x100, 0x4, 0x80000000, 0x7, 0xd15, 0xde0b, 0xffff, 0x1000, 0x9, 0x100000001, 0x10001, 0x6, 0x5, 0xffffffffffffff7c, 0x1000, 0xdc6, 0x4, 0x4, 0xf1d, 0x6, 0x1, 0x1, 0xc7, 0x2, 0x4, 0x4e41f766, 0x100000001, 0x405, 0x9a78, 0x80000001, 0x3, 0x400, 0x4f, 0x9, 0xe53e, 0x7f, 0x2, 0x5, 0x0, 0xfffffffffffffffe, 0x1, 0x4, 0xaf, 0x4, 0x7ff, 0xffffffffffffff2d, 0x1ff, 0x3, 0x2, 0x3dfe400000, 0xcc, 0x9, 0x0, 0x6, 0x5, 0x8, 0x0, 0xd8, 0xffff, 0x5, 0x8, 0x9, 0xffffffffda3e1a03, 0x100000001, 0x101, 0x80000001, 0x1, 0x90, 0x100000001, 0x2, 0x7, 0x7, 0x8, 0x1, 0xc6d, 0x10001, 0xec3, 0x5, 0x0, 0xd1, 0x3, 0x6, 0xffffffffffffffbf, 0x100000000, 0xfffffffffffffffb, 0x7fff, 0xf3c, 0xffff, 0x41d8, 0xfffffffffffffffd, 0xb05e, 0x64e, 0x0, 0x4, 0x0, 0x97, 0xfff, 0x80000000, 0x9, 0x9, 0xea7, 0xfff, 0x2, 0x9, 0x1ff4, 0x81, 0x4, 0x6, 0x44ef2ac5, 0x6, 0x100, 0x1, 0x20, 0x7, 0x4, 0x8, 0x9, 0x9e, 0x1, 0x3, 0x8, 0x6, 0x6, 0x7fffffff, 0x7, 0xff, 0x6, 0x1, 0xfff, 0x2, 0x1, 0xbc9, 0x9, 0x7ff, 0x4, 0x7828, 0x3, 0x1ff, 0x3ff, 0x6909, 0x81, 0x5, 0x800, 0xffffffffffffffe6, 0x7ff, 0x3, 0x5, 0x3, 0x22ea, 0x52d, 0x3, 0x400, 0x6a, 0x1f, 0xfffffffffffffffa, 0x4, 0x1, 0xfffffffffffffff7, 0xed3, 0x9, 0x101, 0x1f, 0x9, 0x81, 0x6, 0x3, 0x5, 0x8, 0x2, 0x7, 0xc2, 0x2, 0x7, 0x1f, 0x401, 0x7, 0xb44, 0x7, 0x80, 0x1, 0x6, 0x5, 0x9, 0xffffffff, 0x0, 0x1, 0x348f, 0x5, 0xffffffff, 0x276c69fd, 0x4, 0xfffffffffffffff7, 0x3, 0x80000000, 0x1000, 0xdd6, 0xff, 0x7b, 0x0, 0x101, 0x8001, 0x2, 0xffffffff, 0x2, 0x1, 0xffff, 0x1, 0x674de591, 0x1, 0x65, 0x6, 0x5, 0x800, 0x9, 0xf1bc, 0x7560, 0xa572, 0x3, 0x1, 0x0, 0xb74, 0x4, 0x8000, 0x0, 0x3a2877b2, 0x0, 0xffff, 0x7a, 0x6, 0x80, 0x0, 0x1f, 0x80000001, 0x8, 0xffffffffffffffff, 0xff, 0x80000001, 0x80000000, 0xf, 0x4ff, 0x10000, 0x6, 0x7, 0x80000001, 0x401, 0x8, 0x100, 0xfffffffffffffffe, 0xd484, 0x101, 0xbdd, 0x5, 0x93, 0x5, 0x7ff, 0x5665, 0x0, 0x8, 0x7583, 0x40, 0x1000, 0xe1, 0x1ff, 0x10000, 0x14d1, 0xffc, 0x101, 0x7, 0x1, 0x8, 0x70, 0x5000, 0x4, 0x3, 0x100, 0x2, 0x4, 0x1, 0x2, 0x10000, 0x81, 0x200000002000, 0xd25, 0x9490f9c, 0x6, 0x7fffffff, 0x8, 0x915, 0x2, 0x4, 0x7fff, 0x6, 0x4, 0x8000, 0x1, 0x3, 0x7, 0x1, 0x5, 0x1ff, 0x2, 0x2, 0x2, 0x20, 0x3, 0x3, 0x1, 0x100000000, 0xff, 0x100000000, 0x9, 0x8000, 0x5, 0x4, 0x53f, 0xfffffffffffff000, 0x0, 0x1, 0x1, 0xffffffff, 0x6, 0x10000, 0x10000, 0x0, 0xd49, 0x10001, 0x8, 0x3ff, 0x1, 0x9, 0x8, 0x8, 0xff, 0x62, 0xfff, 0x4, 0x0, 0x7, 0xfffffffffffffff9, 0x0, 0x1ff, 0x8, 0x100000000, 0x7fff, 0xd2f7, 0x5, 0xffffffffffffff20, 0x1, 0x0, 0x0, 0x1, 0x800, 0x2, 0xe4, 0x200, 0x8, 0x1, 0x100, 0x5, 0xe22, 0xfff, 0x1, 0xfffffffffffffffd, 0xffff, 0x9, 0x1000, 0xff, 0x4, 0x5, 0x5, 0xffffffff, 0xa20e, 0x4, 0xffffffffffffff7f, 0x7fffffff, 0x1, 0xb871, 0x7, 0x7, 0x5, 0x5, 0x8, 0x800, 0x80, 0xffffffff80000000, 0x8000, 0x10000, 0x7, 0x2, 0x648b, 0x5, 0x61b571bf, 0x8, 0x3ff, 0x7fffffff, 0x1, 0x4, 0x8a91, 0x3, 0x1, 0x625, 0x2846e1ed, 0x4589ac46, 0x1, 0x8001, 0x8, 0xffff, 0x60000000000000, 0x4, 0x7, 0x8e6f, 0x59c, 0xff, 0x2, 0xfffffffffffffffc, 0x9, 0x8, 0x20, 0x7, 0x100000001, 0x80, 0x1200, 0x4, 0x5, 0x5, 0x5, 0x2, 0x631, 0xff, 0x834, 0x7fff, 0xfffffffffffffffe, 0x701, 0x0, 0x1, 0x10000, 0x2, 0x0, 0x400, 0x1, 0x7, 0x4, 0x3fff800, 0x8, 0x4, 0x0, 0x228beae, 0x0, 0x401, 0x10001, 0x7fff, 0x4, 0x800, 0x6ffd, 0x2, 0x6db, 0x7, 0x7ff, 0x8, 0x3, 0x1, 0x744f, 0x80000001, 0x6, 0xdf, 0x1, 0x6, 0x0, 0x1f, 0x7302f56a, 0x4217fe26, 0x3, 0x10000, 0x4, 0x5, 0x0, 0x7, 0x7fffffff, 0xfff, 0xaab0, 0x87, 0x3ff, 0x401, 0x0, 0x0, 0x5, 0x0, 0x81, 0x5, 0x81000, 0x6, 0x7, 0x4, 0x3, 0x10000, 0x1f00000000000, 0x6, 0x6, 0x1, 0x1, 0x7, 0x5, 0x6, 0x0, 0xfb53, 0xffff, 0x7ff, 0x1, 0x1, 0x2, 0x7fffffff, 0x7, 0x4, 0x1, 0x2, 0x9, 0x64, 0x1ff, 0x3ff, 0x5, 0x7f, 0x80000000, 0x10001, 0x81, 0x5, 0xfe, 0x4, 0x9, 0x9, 0x8000, 0x4, 0x8001, 0x400, 0x3f, 0x5, 0x9, 0x611c, 0x9, 0x1, 0x8000, 0x0, 0x5, 0x3ff, 0x14a, 0x2, 0x0, 0x2, 0x10001, 0xfffffffffffffffc, 0x3, 0xe2, 0x5, 0x9, 0xff, 0x3, 0x5, 0x3, 0x8, 0x7f, 0x2eec000000000000, 0x3, 0xb456, 0x3, 0x0, 0x7, 0x1, 0x80, 0x5c6, 0x59fe, 0x8, 0xb4f, 0x3, 0x185, 0x1, 0x6, 0x244000000000, 0x100000001, 0x80, 0x7, 0x9da, 0x6, 0x6f1b6d0f, 0x5, 0x100000001, 0x2, 0x8000, 0x0, 0x1, 0x9, 0x9c66, 0x8f, 0x3, 0x9, 0xfb, 0xffffffffffffff83, 0x6, 0xffffffffffff7fff, 0x61, 0xa85, 0x0, 0x200, 0x6, 0x9, 0x47, 0x3dd, 0x2, 0x3, 0x3, 0x1, 0x623, 0x1ff, 0x8, 0x9, 0x40, 0x0, 0x24, 0x5, 0x0, 0x6, 0xd317, 0x7, 0x9, 0x3, 0x0, 0xffffffff, 0x3, 0x3, 0xfffffffffffff000, 0x6, 0xecf, 0x9, 0x3, 0x0, 0x400, 0x1, 0x0, 0xfff, 0xe9, 0x8, 0x4, 0x7, 0x8, 0xcc6, 0x0, 0xc624, 0x786, 0xffffffff, 0x6, 0x3, 0x1, 0xffffffff, 0x5, 0x1000, 0x22f6, 0x3d8, 0xd0, 0x100000000, 0x9, 0x2, 0x2, 0xb39c, 0x51, 0xfff, 0x5, 0x3, 0x100000001, 0x2, 0x3, 0x2, 0x8a, 0x902e, 0x100, 0x3, 0x10001, 0x7, 0x0, 0x1200000000000, 0x8, 0x7, 0x7, 0x7, 0x9, 0x1, 0xfffffffffffff5d6, 0x7, 0x5, 0x2, 0x1, 0x9, 0x2, 0x6f65, 0xb7, 0x1, 0x100000000, 0x6, 0x7, 0x505, 0x0, 0xec7, 0x86a0, 0x8001, 0xffffffff, 0xb1b, 0x9, 0x9, 0x5, 0x0, 0x1000, 0x537, 0x6, 0x9, 0x7, 0x4800000, 0x1, 0x8, 0x80000000, 0x2, 0x40, 0x80000001, 0xfff, 0x0, 0x3, 0x2, 0x4, 0x0, 0x0, 0x401, 0x9, 0x29f, 0x7, 0x80, 0x40, 0x2, 0x4, 0x20, 0x8f88, 0x52a6, 0x7, 0x144e, 0xef2, 0x5438, 0x9, 0x0, 0x10001, 0x8, 0x77, 0xffffffff, 0x8, 0x6, 0xfffffffffffffffb, 0x7, 0xffffffff, 0x0, 0x800000000000000, 0x8, 0xffffffffffffff50, 0x7fff, 0x0, 0x6d, 0x2, 0x9, 0x1f, 0x3, 0x8, 0x29, 0x24, 0x9f6, 0x6, 0xb2f, 0x5, 0x9, 0x9, 0xffffffffffffff00, 0x7e, 0x401, 0x800, 0x6, 0x3, 0x3, 0x3, 0x100, 0xffffffffffffff7f, 0x10001, 0x3ff, 0x2, 0xfd, 0x26, 0x8, 0x7, 0xff800, 0x8dd, 0x0, 0xd19, 0xffffffffaecfe2f6, 0x9, 0x5, 0x4, 0x72a, 0x0, 0x6, 0x100000000, 0x8, 0x3, 0xffffffff80000000, 0x6, 0x8, 0x3, 0x21, 0x3, 0xfffffffffffffffa, 0x29, 0x23f5ca1, 0x6, 0x20, 0x3, 0x400, 0x3f, 0x9, 0x0, 0xfffffffffffffffd, 0x27, 0x3ff, 0xd3a, 0x1, 0x3, 0x2, 0x8, 0x9, 0x8, 0x3, 0x4b, 0x7, 0x9, 0x10000, 0x6, 0x7d68eef4, 0x10001, 0x1, 0x401, 0x3, 0x9, 0x4b60, 0x1, 0x6, 0x3, 0x8, 0xf272, 0x5, 0x8, 0x2, 0x80, 0x7fff, 0x4, 0x1a, 0x7ff, 0x400, 0x9, 0x20, 0x5, 0x22da, 0x101, 0x8, 0x9, 0x3, 0x7, 0x2354f4a8, 0xa9, 0x1f, 0x79d0, 0x2, 0x3, 0x286, 0x3ff, 0x1, 0x8, 0x8, 0x70000000000000, 0x7, 0xb65, 0x4, 0xffffffffffffffff, 0x0, 0x8, 0x5, 0x200, 0x9, 0x6, 0x1, 0x8, 0x8000, 0x4, 0x0, 0x8, 0x800, 0xfffffffffffffffe, 0x3, 0x29b017ca, 0xae9d, 0x51cb, 0x9, 0x0, 0x800, 0x1a7f80000, 0x8001, 0x5, 0x101, 0x7fff, 0x1f7, 0x6, 0xfffffffffffffe0e, 0x5, 0x2, 0xd7b3, 0x5, 0x616386da, 0x0, 0x5, 0x1, 0x2, 0x81, 0x6, 0xff, 0x7ff, 0x3, 0x7, 0x0, 0x10000, 0x1d, 0x5, 0x0, 0x3, 0x8, 0xffffffffffffffff, 0xfb, 0x401, 0x0, 0x200, 0xdc, 0xffffffff00000000, 0x0, 0x3ff, 0x3fb, 0xfff, 0xfffffffffffffeff, 0x1, 0x0, 0xdc7d, 0xeb7e, 0x80000000, 0xfffffffffffffa83, 0x58c3, 0x8000, 0x4, 0x4, 0x5, 0x1, 0x2, 0x3f4e7b58, 0x1, 0x4, 0x8, 0x3, 0x200, 0x1000, 0x1, 0x2, 0x8, 0x3f, 0x2, 0x401, 0x5, 0x7ff, 0x7, 0xfffffffffffffc10, 0x8001, 0x6, 0x80000000, 0x3, 0x8000, 0x3ff, 0x76, 0xff, 0x3, 0x6, 0x1, 0x68, 0x5, 0x5c, 0x4, 0x5, 0x5, 0xffffffff, 0x9, 0x7ff, 0xdfbb, 0x9, 0x10000, 0x9, 0x101, 0x100000001, 0xf4, 0x500000, 0x1, 0x9, 0xffffffff80000000, 0x15, 0x5525, 0x10000, 0x9, 0x1, 0x6, 0x2, 0x80, 0x29, 0x40, 0x8, 0x7, 0x400, 0x400, 0x398656d, 0x6, 0x3, 0x9, 0x8, 0x200, 0x1, 0x0, 0x9, 0x0, 0x5, 0x800, 0x3, 0x3, 0x6, 0x3, 0x7fff, 0x0, 0x7, 0x7ff, 0x4, 0x4, 0xc0000000000, 0xb019, 0x100000001, 0x8, 0x7, 0x100000000, 0x3, 0x0, 0x6, 0x5b, 0x8, 0x81, 0x2, 0xa93, 0xcb, 0x2, 0x8de, 0x1, 0x1000, 0xfffffffffffffff8, 0x4, 0x400000, 0x82e, 0x6, 0x5, 0x3, 0xe7d, 0x3, 0x7, 0x2, 0x2a3f, 0x190, 0x1000, 0x4, 0x3e, 0x40, 0xc7, 0x8, 0x8001, 0x6, 0x1ff, 0x8, 0x1, 0x4, 0x0, 0x2, 0x2, 0x1, 0x0, 0xb2, 0x8, 0x80, 0x4, 0x2, 0x8, 0x1, 0x6, 0x0, 0xec2f, 0x0, 0xe21, 0x0, 0x9f4, 0x7, 0x3, 0x7fffffff, 0x100000001, 0x40, 0x0, 0x4, 0x6, 0x2e35f10, 0x4, 0x258a8dc3, 0x7, 0xffffffffffffffff, 0x4, 0x5, 0x8, 0x7ff, 0x6, 0x6, 0x3, 0x6, 0x5, 0x2, 0x400, 0x1f, 0x1, 0x5, 0x2, 0x8000, 0x7, 0x5, 0x5, 0x0, 0x0, 0x200, 0x7, 0x7, 0x0, 0x0, 0x9, 0x2, 0xffffffff, 0x10000, 0xffffffffffffff81, 0x9, 0x5ded, 0x7fffffff, 0x80000001, 0x4, 0x3, 0x80, 0xffffffffffffffff, 0xc8f, 0x4, 0x9c7, 0x3, 0x4, 0x3, 0x4, 0x80, 0x101, 0x4, 0x20, 0x5, 0x5, 0x1, 0x400, 0x10000, 0x6, 0xc75, 0x1, 0x10000, 0x1, 0xffffffffffe7c9a3, 0x1f0, 0x2, 0x9, 0x2, 0x5, 0x5, 0x100000001, 0x7, 0x64, 0x5, 0xd691, 0x1ff, 0x0, 0xde78, 0x200, 0x8000, 0x7fff, 0x0, 0x80, 0x0, 0x40, 0x4, 0x10000, 0x7, 0x0, 0x1, 0x5, 0x3, 0x80, 0x3, 0x1000, 0x9, 0x7, 0x7, 0x9, 0x5, 0x7fff, 0x7, 0x7fff, 0x0, 0x7, 0x10001, 0x2, 0x8000000, 0x6, 0x81, 0x0, 0x8, 0x3, 0x80, 0x0, 0xff, 0xfffffffeffffffff, 0xef, 0x7ff, 0x100, 0x1, 0x6, 0x9, 0x100, 0x1, 0x101, 0xc8ea, 0x4, 0x3, 0x7fff, 0x7, 0x6, 0x0, 0x7fff, 0x8, 0x3, 0x3f, 0x6, 0x800, 0x80000001, 0x6, 0x401, 0x8, 0xfff, 0x2, 0x800, 0x20, 0x1, 0x100, 0x9e, 0x200, 0x80000001, 0x9, 0x80000001, 0x0, 0xffff, 0x8, 0x3, 0x4, 0x6, 0x166e, 0x0, 0x4, 0x7fff, 0xffffffffffffffd9, 0x5, 0x3ff, 0x7, 0xe6e, 0x10001, 0x6, 0x2640, 0x2, 0x80000000, 0xaed, 0x0, 0xd1, 0xffffffffffff2411, 0x7, 0x5d, 0x1, 0x8000, 0x5, 0x6, 0x6, 0xfffffffffffffffc, 0x7ff, 0x0, 0x6, 0x100, 0xffffffffffff7fff, 0x8480000000000000, 0x4f, 0x1, 0x0, 0x2, 0x8, 0x400, 0x3, 0xfffffffffffffffb, 0x40, 0x800, 0x8, 0x51, 0xd55, 0x6, 0x400, 0xfff, 0x1, 0x0, 0x1, 0x0, 0x26, 0x5, 0x1dc, 0x6, 0xffffffffffff0000, 0x3, 0x3, 0x40, 0x2d4, 0x0, 0x0, 0x5, 0x75f107b, 0x3, 0x8, 0x5, 0x4, 0x1, 0x6, 0x0, 0x0, 0x7fffffff, 0x2, 0x1, 0x56e, 0x6, 0xb63, 0x6, 0x1010, 0x100, 0x6, 0xfffffffffffffffe, 0x100000001, 0x5, 0x7fff, 0xffff, 0xb74d, 0x10000, 0x401, 0x2e, 0x7fff, 0x5, 0x40, 0x81, 0xd300000000000, 0x6, 0x20, 0x1, 0x44, 0x7, 0x9, 0x3, 0x7fff, 0x100000000, 0x0, 0x7, 0x6, 0x1, 0x5, 0x81, 0x20, 0x100000000, 0x8, 0x8, 0x3ff, 0xfffffffffffffffd, 0x0, 0x82e, 0x3, 0x1, 0x80, 0xd233, 0x8f44, 0x9, 0xfff, 0x200, 0x5, 0xfd2, 0xa53, 0x10001, 0x216f, 0xffffffffffff0001, 0xfb, 0x5, 0x8, 0x6, 0xff, 0x3, 0xf21, 0x5, 0xfffffffffffffffd, 0x0, 0x4, 0x2, 0x2, 0x80, 0x270a, 0x2, 0x4, 0x76, 0x115f, 0x7, 0x1f, 0x8, 0x200, 0x6, 0x3f, 0x0, 0xd20a, 0x81, 0x5, 0x8, 0x1, 0x0, 0x4, 0x5, 0xfffffffffffffffd, 0x1, 0x0, 0x9, 0xafab, 0x398, 0xfffffffffffffff9, 0x7, 0x3, 0x8, 0x80000000, 0xf40c, 0x312e30a3, 0x0, 0x2f7, 0x9, 0x40, 0x5, 0x200, 0x1, 0x3f, 0x9, 0x8, 0x10000, 0x20, 0xab, 0x80000000, 0xeb, 0xade4, 0x5, 0xa, 0x9, 0x7, 0xffff, 0xef3, 0x0, 0x4, 0x7, 0x4, 0xfff, 0x3f, 0x4, 0x7, 0x9, 0x48, 0xfffffffffffffffa, 0x7ff, 0x7, 0x100000000, 0x3f, 0xfb96, 0x9, 0x81, 0x2, 0x2, 0x7, 0x9, 0x3, 0x2, 0x6, 0x7, 0xed3, 0x7ff, 0x1, 0x5, 0x3, 0x1, 0xc581, 0x3, 0x83, 0x0, 0x7, 0x8, 0x5, 0x7, 0xc, 0x9, 0x40, 0xfad, 0x5, 0x7fffffff, 0x6, 0x1, 0x80, 0x4, 0x7069, 0x68e0, 0x549, 0x8, 0x0, 0x5, 0x6, 0x97ec, 0x100000000, 0x47b, 0x800, 0xe6, 0x3e, 0x6, 0xfffffffffffffff7, 0x9, 0x2, 0x0, 0x2, 0x1, 0x0, 0xac, 0x4, 0x5, 0x7b54, 0x8, 0x8000, 0x400, 0xffffffff7fffffff, 0x5, 0x3, 0x10000, 0x10001, 0x3, 0xffff, 0xffffffff, 0x100, 0x7f, 0x101, 0x2e, 0x0, 0x9, 0x0, 0x5, 0x63, 0x29b, 0x2, 0x80000001, 0x0, 0x80, 0x2, 0x1, 0x4, 0x1, 0x7, 0x5, 0xe593, 0x1, 0x100, 0x100, 0x7, 0xdd4, 0xfffffffffffffd41, 0x0, 0x1ff, 0xfff, 0xffffffffeb81f348, 0x6, 0x7, 0x6, 0x2, 0x8, 0x2, 0x1ff, 0x9, 0x2, 0x3, 0x1000000, 0x6, 0x92de, 0x1a5, 0xebbc, 0xa9, 0x6, 0x8, 0x521, 0xfffffffffffffffb, 0x2a, 0x2c000, 0x1, 0x1, 0x1, 0x7, 0x7fff, 0x100000000, 0x40e, 0x2, 0x8001, 0xfffffffffffffffe, 0x1000, 0x3, 0x5, 0x3, 0x3, 0x348, 0x8, 0x1, 0xb116, 0x4, 0x0, 0xfffffffffffffffd, 0x7fffffff, 0x9, 0x494, 0x5, 0x400, 0x401, 0x1, 0x0, 0x7, 0x3, 0xfffffffffffffffe, 0x59a5, 0x768, 0x2, 0x0, 0x0, 0x4, 0x1, 0x8, 0x4, 0x2, 0x9, 0x8, 0xffffffffffffce8e, 0x5da9, 0x1, 0x5, 0x0, 0x35ce, 0xf2c0, 0x5, 0x5, 0xb24, 0x100, 0x100, 0x9, 0x1, 0x9, 0x3, 0x1, 0xffff, 0x8, 0x3, 0x1, 0x598, 0x3, 0x5327, 0x1, 0x3ff, 0x9, 0x3, 0x85, 0x90, 0xb6c, 0x40, 0x7, 0x10, 0x7, 0x9, 0x5, 0x40, 0x4, 0x100000001, 0x100, 0x3bf, 0x8, 0xe1a2, 0x0, 0x10000, 0x0, 0x68f, 0x5, 0x8, 0x1, 0xfffffffffffffffe, 0x0, 0x2, 0x1ff, 0x1, 0x7ff, 0x9, 0xfffffffffffff1a1, 0x0, 0x10000, 0x4, 0x7, 0x0, 0xffff, 0x4, 0x5, 0xffffffffffffffe0, 0x6, 0x1, 0x81, 0x5, 0x1000, 0x1ad7, 0x3, 0x4, 0x3ff, 0x0, 0x100000000, 0x2, 0x2e30, 0x3, 0x6, 0x0, 0x361, 0x7, 0x3392, 0x5, 0x57b7, 0x400, 0x3, 0x0, 0x0, 0x116, 0x3, 0x9, 0x9, 0xffff, 0xd9e, 0x10000, 0x1, 0x0, 0x0, 0x7fffffff, 0x6, 0x8, 0x3, 0x93f, 0x7fff, 0x6, 0x6, 0x81, 0x5, 0x9, 0x1, 0x4, 0x0, 0x0, 0x7ec0, 0x1, 0x9, 0x2, 0x0, 0x80, 0xffffffff, 0x2, 0x5, 0xe3, 0x0, 0x9, 0x2, 0x5, 0x4, 0x6, 0x5, 0x1bc, 0x4, 0x8001, 0x200, 0x5, 0x2, 0x100000001, 0x3, 0x10001, 0x3, 0x5, 0x7fff, 0x5, 0x6, 0x3, 0x9, 0x5, 0xfffffffffffffffc, 0x8, 0xf63, 0xffffffffffffff7e, 0x0, 0x80, 0x4, 0x8, 0x1, 0x8, 0x7, 0xf4d8, 0x400, 0xffffffffffffff41, 0x80, 0x7, 0x5, 0xfffffffffffffffb, 0xfffffffffffeffff, 0xd, 0x20, 0x8, 0x9, 0x2, 0x6, 0x8, 0x400, 0x140000, 0x7ff, 0x92e8, 0x0, 0x6, 0x7, 0x8, 0xffffffff, 0xfff, 0x3ff, 0x2, 0x53, 0x3, 0xffffffffffffffc1, 0x8, 0x30, 0x1000, 0xd855, 0x6, 0x1f, 0x80, 0x4, 0x2, 0x8, 0xffffffff, 0x4, 0x6, 0x80000000, 0x0, 0xf9f6, 0xa7, 0x7ff, 0xa5, 0x0, 0x10000, 0xffffffff, 0x8, 0xfffffffffffffffe, 0x5, 0xffffffffffffffff, 0xfffffffffffffff9, 0x7, 0xffffffff, 0x9, 0xa, 0xe404, 0x2, 0x4e, 0x1, 0x4, 0xfff, 0x3, 0xffffffff, 0x6, 0xfffffffffffffff8, 0x1ff, 0x4, 0x0, 0x7f, 0x1, 0x9264, 0x1, 0x8, 0x0, 0x4b03, 0x200, 0x0, 0x5, 0x4, 0x3, 0x100000001, 0x80, 0x6, 0xfff, 0xffffffffffffffb4, 0x8, 0x3, 0x2, 0x5, 0x2, 0x3, 0x5, 0x4, 0x3, 0x0, 0x7, 0x7fffffff, 0x5, 0xe3f, 0x1, 0x2, 0x6, 0x10001, 0x800, 0x400, 0x6, 0x9, 0xfffffffffffffffa, 0x9, 0x4, 0x3, 0x7, 0x6a1, 0x400, 0x0, 0x9, 0x477, 0x80000000, 0x8, 0x0, 0xce, 0x9, 0x101, 0x2, 0x2b, 0x5, 0x100000000, 0x7, 0x10001, 0x1ff, 0x4, 0x4, 0x4, 0x6, 0xc7f, 0x360, 0x10001, 0x86, 0x7ff, 0x3, 0x5, 0x6, 0x10001, 0x8, 0x375bbdc0, 0x329a, 0x0, 0x6, 0x7eb, 0x5, 0x6, 0x101, 0x4, 0xaa7, 0x8, 0x1, 0x6, 0xe7d, 0x344, 0x0, 0x1f, 0x81, 0x1a8, 0x88, 0xfff, 0xfffffffffffff58c, 0x9, 0x2, 0x3ff, 0x6, 0xff, 0x8, 0x2, 0x4, 0x4f1, 0xfffffffffffff87e, 0x3, 0x6, 0xfffffffffffff825, 0x7, 0x4, 0x1ff, 0x2, 0x6, 0x2, 0x6, 0x1f, 0x8, 0x6, 0x25cae543, 0xffffffff, 0x5, 0xffff, 0xff, 0x401, 0x3, 0x80, 0x5, 0x7, 0x3da, 0x8, 0xd92, 0x80000001, 0x7, 0x0, 0x81b, 0x76, 0x4, 0x8, 0x37, 0x2, 0x1f, 0x750, 0x400, 0xb38c, 0x9, 0x6, 0x200, 0x2, 0x5, 0x3, 0xffffffff, 0x5, 0x7f, 0x7, 0x4, 0x449, 0x8, 0xffffffffffffffb3, 0xffff, 0x0, 0x100000001, 0x1000, 0x2, 0x9, 0x6, 0x7, 0x2, 0x6, 0x5, 0x3, 0x100000001, 0x3, 0x5c9, 0x7ff, 0x7, 0x0, 0x4, 0x200, 0x8, 0x122b, 0x7, 0x80000001, 0x3, 0x4, 0x0, 0x3, 0x1, 0x0, 0xffffffffffff3db9, 0x8, 0x40, 0xfffffffffffeffff, 0xb7, 0x1df8, 0x1, 0x100000000, 0x0, 0x4, 0x2, 0xb20e, 0x5, 0x4, 0x1b0, 0x4, 0x7, 0x10000, 0x6, 0xe83c, 0x7, 0x7, 0x7, 0x10001, 0x9, 0x1c, 0x100000001, 0x1, 0xc289, 0x8001, 0x6, 0x9, 0x200, 0x101, 0xfffffffffffffffd, 0x7, 0x4, 0x6, 0x9, 0x8, 0x1, 0x80000001, 0x7, 0x4, 0x9, 0x1200000000000, 0x9, 0x7, 0x1ff, 0xa435, 0x3, 0xff, 0x5, 0xe4, 0x4, 0x8, 0x8, 0x2, 0x36c, 0x2, 0x8e33, 0x3ff, 0x2, 0x4809, 0x401, 0x5, 0xfff, 0x9, 0x8, 0x1, 0x7fff, 0x3, 0x2, 0x40, 0x4bc9, 0x7fff, 0x9, 0x6, 0x0, 0xfff, 0xfffffffffffffffa, 0x1f, 0x8, 0xfff, 0x8, 0x40, 0x4, 0x5, 0x570e, 0x4, 0x3, 0xc89c, 0x20, 0x7, 0xae3, 0x8000, 0x1000, 0xaeb4, 0x2, 0x4, 0x5804, 0x4, 0x5, 0x1, 0x3, 0x187, 0xffffffff, 0x8001, 0x9, 0x40, 0xffff, 0x0, 0x800, 0x17c, 0x9, 0x399401ed, 0x100000001, 0x6e7, 0x2, 0x92d, 0x800, 0x1, 0x8001, 0x9, 0x6, 0x4, 0x7, 0x5, 0x8000, 0x101, 0x0, 0xa319, 0x2, 0x9, 0x401, 0x7, 0x1d, 0x7, 0x9a, 0x6, 0x0, 0xe00000000, 0x6, 0x1, 0x71, 0x5, 0x10001, 0x6, 0x7, 0x7, 0x3, 0x2, 0x8, 0x1, 0x2, 0x400, 0x8, 0x8, 0xffffffffffffffff, 0x5, 0x0, 0x7ff, 0x8, 0x7fffffff, 0x2, 0x90, 0x3, 0x9, 0x6, 0x401, 0x8, 0xfffffffffffffffa, 0xffffffffffffc9f7, 0x7f, 0x8, 0x2, 0x0, 0x81, 0x22d, 0x8, 0x100000000, 0x8, 0x101, 0x2, 0x7f, 0xb2, 0x18a, 0x1, 0x5, 0x8, 0x200, 0xfffffffffffff38b, 0x9fd, 0x4, 0x7ff, 0x6, 0xffffffffffffff8a, 0x6, 0xf81c, 0x7, 0x8, 0x9, 0x0, 0x8, 0xfffffffffffffffe, 0x1, 0x20, 0x8, 0x80000001, 0x62a, 0xffffffff, 0x5, 0x4, 0xfe1, 0x4, 0x6, 0x101, 0x2, 0x80000001, 0x0, 0xcc, 0x4, 0x1f, 0x4, 0x1, 0x1, 0xe7c, 0xfff, 0xce90, 0x6, 0xa0, 0x8, 0x7, 0x1000, 0x9, 0xe0b, 0x7f, 0x9, 0x101, 0x10000, 0x101, 0xff, 0xa61, 0x0, 0x9, 0x0, 0xffffffff, 0x1, 0x3, 0x0, 0xff, 0xffffffffffff05d1, 0x6, 0xfffffffffffffff9, 0x8, 0x0, 0x1f, 0x0, 0x80000001, 0x8, 0x6, 0xe02, 0x7, 0x0, 0x9c, 0x9, 0x2, 0x5, 0x6ae17464, 0x5a4f, 0x8fc, 0x7f, 0x4, 0x2, 0x85, 0x2, 0x6c, 0x5, 0x2, 0x0, 0x4, 0x100000001, 0x285, 0xffffffff00000000, 0x3490, 0x2, 0x1, 0x0, 0x9, 0x5, 0x6, 0x5, 0x8000, 0x726, 0x1000, 0x7ff, 0x10001, 0xfffffffffffffffa, 0x6, 0x3, 0x83, 0xfffffffffffffff8, 0x8, 0x51ae, 0x100000000, 0x9, 0x0, 0x6, 0x0, 0x10001, 0x1000, 0x3, 0x53, 0x0, 0x4, 0x1, 0x2, 0xfffffffffffffeff, 0x80000001, 0x8, 0x4, 0x6, 0x2, 0x6, 0x2, 0x3e, 0x8, 0x2, 0x1, 0x5, 0x101, 0x8, 0x3, 0x2, 0x3, 0x10000, 0x4, 0x3f, 0x5, 0x4, 0x326, 0x9, 0x7f, 0x0, 0x80000000, 0x1, 0x21, 0x800, 0x2, 0x81, 0x5, 0x4, 0x9, 0x4, 0x10000, 0x20, 0xff, 0x40, 0x5, 0x8, 0x0, 0x100, 0x8, 0x1, 0x7, 0x7fff, 0xfffffffffffffffa, 0x5, 0x0, 0x9, 0x4, 0x6, 0x1f, 0xa0, 0x1, 0x7ff, 0x45, 0x8, 0x3, 0x3, 0x3f, 0x4, 0x3227, 0x2, 0x564, 0x200, 0x7, 0x9, 0x9, 0x101, 0x2, 0xbc, 0x1, 0x9, 0x76, 0x7fffffff, 0x100000001, 0x101, 0x84, 0x3, 0x4, 0xc1, 0x3ff, 0x1f, 0x0, 0x8, 0x71, 0x401, 0x2, 0x8, 0x1, 0x0, 0x8, 0x80000000, 0x7, 0x3f1b, 0x2, 0x444e, 0x400, 0x404, 0x8, 0x50, 0x8, 0x9, 0x0, 0x8, 0xffff, 0x800000, 0xfffffffffffffff9, 0x0, 0x2, 0x0, 0xffffffffffffffad, 0xfffffffffffff001, 0x7, 0x80000001, 0x6, 0xffffffffffffff01, 0x9b, 0x0, 0xd9, 0x7fffffff, 0x5, 0xdc21, 0xfff, 0x9, 0x9, 0x8, 0x3, 0x8000, 0x5, 0x80, 0x3, 0x1, 0x5, 0x80000001, 0x7fff, 0x71eb, 0x68b, 0x8000, 0x1, 0x10001, 0x1, 0x1000000000000, 0x200, 0x904, 0xae, 0x1ff, 0x1, 0x9, 0x7, 0x3, 0x5, 0x9, 0xfffffffffffffffb, 0x10000, 0x100000000, 0x40, 0x8000, 0x1000, 0x200, 0x7fffffff, 0x200000000000, 0x5, 0x3fcd, 0x2, 0x5, 0x0, 0x1cff, 0x8, 0xa91d, 0x8, 0x428, 0x8000, 0x5, 0x2, 0x5, 0x7fff, 0x62a, 0x80000000, 0x80, 0x9, 0x5, 0x4, 0x3ff, 0x1000, 0x5, 0x5, 0x3, 0x6, 0x0, 0x17, 0x2, 0x3, 0x8, 0x2, 0x5, 0x7, 0x7, 0x80000000, 0x0, 0x8000, 0x3, 0x3, 0x8, 0x7, 0x0, 0xfd31, 0xfffffffffffffffb, 0x3bb065ed, 0x8, 0x1ff, 0x2, 0x1, 0x1ff, 0xfbdf, 0x3f, 0x7, 0x10001, 0x4, 0xcb39, 0x80000000, 0x8, 0x3, 0xdc8, 0x7fffffff, 0x5, 0x40, 0x3, 0x7c, 0xc67d, 0xffffffffffffff81, 0x80000001, 0x3, 0x5, 0xd, 0x6, 0x1ff, 0x4, 0x5, 0x9, 0x8, 0x1000, 0xb7b, 0x9, 0x40, 0x3, 0x5, 0x80000000, 0x1f, 0x3, 0x6, 0x5178, 0x9, 0xfff, 0xeb, 0x3f, 0xffffffff80000001, 0x200000000000000, 0x1, 0x0, 0xab90, 0x7, 0x10001, 0x7fff, 0x3, 0x9, 0x1, 0x100000000, 0x2, 0x8, 0xe7fa, 0x2, 0xffffffffffffffe1, 0xfffffffffffffbff, 0x6, 0x4, 0x0, 0x8, 0x0, 0x400, 0x1, 0x5, 0x737, 0x7, 0x10000, 0xff, 0x3, 0x6, 0xff, 0x10001, 0x100, 0x10000, 0x9, 0x3ff, 0x4, 0x10000, 0x3, 0x1, 0x8, 0x5, 0x7, 0x3, 0x5, 0x0, 0x4, 0x7, 0x4, 0x80, 0x6, 0xff, 0x9, 0x400, 0x0, 0xfffffffffffffff7, 0x9, 0x100, 0x8, 0x5, 0xac1, 0xfffffffffffffff9, 0x5, 0x7f, 0x2791, 0xfffffffffffff550, 0xffffffffffffff7f, 0x2, 0xccb8, 0x7fff, 0x100000001, 0x2, 0x7, 0x9, 0x5, 0x471, 0xbe2, 0x2, 0x3, 0x9, 0x800, 0x3, 0x8000, 0x4, 0x0, 0x0, 0x1, 0xb7, 0x8, 0xfffffffffffffbff, 0x7fffffff, 0x101, 0x7fffffff, 0x91, 0x800, 0x800, 0x2, 0x5, 0x9, 0x3, 0x9, 0xdb, 0x8936, 0x1f800000, 0x401, 0x8, 0x3f, 0x2, 0xfffffffffffffff8, 0x1, 0x0, 0x800, 0x1, 0x81, 0x4, 0x6, 0x7f, 0x3, 0x40000, 0x4, 0x6, 0x9, 0x5, 0xae0, 0x5, 0x93be, 0x2, 0x4, 0x3f, 0x8, 0x1, 0x4, 0x100, 0x2, 0xfffffffffffffff9, 0x10000, 0xe, 0xe62, 0x0, 0xe6f5, 0x1, 0x10001, 0x0, 0x3b, 0xc00000000000, 0x7ff, 0x7, 0xfffffffffffffe00, 0x2, 0xfffffffffffff159, 0x3f, 0xfffffffffffff801, 0x1, 0x6, 0x2b, 0x235f, 0x8, 0x7, 0xfff, 0x7ff, 0x5, 0x4, 0x413b, 0x8, 0x3, 0x1, 0xfffffffffffffffe, 0x4, 0x1, 0x7545, 0x800000, 0x4, 0x6e6b, 0x4, 0x1000000000000, 0x38000000000000, 0x7ff, 0x40, 0xfffffffffffffffd, 0x2, 0x8, 0x4, 0x4, 0x1, 0x7ff, 0x1f, 0x82, 0x4, 0x10000, 0x7, 0x1, 0x3f, 0x3, 0x1ff, 0x3, 0x7fff, 0x0, 0x7, 0x4, 0x8, 0x8, 0x72, 0x101, 0x5, 0x1, 0x5, 0x6, 0xb106, 0x4, 0x1, 0x9, 0x7, 0x4, 0x7, 0x1000, 0x2, 0x20, 0x0, 0x7fffffff, 0x1f, 0x0, 0x1, 0x3, 0x101, 0x6, 0x3bd, 0x6, 0x7ff, 0x6, 0x7ff, 0xc99c, 0x9c, 0x8, 0x800, 0x100, 0xfffffffffffffff9, 0x1ec, 0x8000, 0x400, 0x3, 0xc3e, 0x2, 0x1, 0x2, 0xfffffffffffff800, 0xffffffff, 0xffffffffffffff80, 0x6, 0xfff, 0x800, 0x33, 0x80000001, 0x9, 0x9, 0x10001, 0x5, 0x0, 0x3, 0x10001, 0x0, 0xfffffffffffffffa, 0x3, 0x7, 0x9, 0x3, 0x100000001, 0x3ff, 0x6, 0x6, 0x6, 0x60000, 0x7, 0x80000001, 0x10000, 0xac, 0x7, 0xe192, 0x7, 0x2, 0x6, 0xbde, 0xf4f6, 0x8, 0x9, 0x7, 0xeb8e, 0x4, 0x2, 0x4, 0x1, 0xbb7, 0x400, 0x6, 0xffffffff, 0x40, 0x6, 0x8, 0xff, 0x3f, 0x2, 0x3, 0x9, 0x3f, 0x1, 0x8, 0x2, 0x2, 0x0, 0x7f, 0x1, 0x0, 0xffffffff, 0x2f1, 0x0, 0x9, 0x1, 0x4, 0x80000000, 0x59b, 0x1000, 0x200, 0x611, 0xfffffffffffffff7, 0x3, 0x100000001, 0x7fffffff, 0x40, 0x7, 0xfffffffffffff800, 0x3, 0x2, 0x0, 0x9, 0x5, 0x3, 0x4, 0x9, 0xab, 0x7, 0x400, 0x8, 0x2, 0x6, 0x6, 0x4, 0xffffffffffffffff, 0x6, 0x8000, 0xe61, 0x8000, 0x1, 0x7, 0x22a, 0x9, 0x0, 0x4, 0x1ff, 0x56b996a4, 0x5, 0x0, 0x8, 0x8000, 0x3, 0x8000, 0x100, 0x5, 0x9, 0x10000, 0x1, 0x0, 0x9, 0xfff, 0x1ff, 0xffff, 0x1dfa, 0x7, 0x401, 0x8, 0x859, 0x8, 0x4, 0x9, 0x7, 0x2, 0x7, 0x81, 0x81, 0x100000000, 0x4e, 0x6, 0x50, 0x2, 0x6fb, 0x100, 0xffffffff80000001, 0x2, 0x2, 0x0, 0x2, 0x3, 0x8000, 0x0, 0x1, 0x0, 0xe9, 0x10000, 0x7, 0x0, 0x4, 0x24d2, 0x7, 0x2, 0xfffffffffffffffc, 0x10000000000000, 0x81, 0x4, 0xa5, 0x8, 0x4, 0xc60c, 0xfffffffffffffffd, 0x9, 0x2, 0x9, 0x82, 0x1, 0x1, 0x5c, 0xab2, 0x1, 0x10001, 0x981, 0x2, 0x7ff, 0x0, 0x5, 0x9, 0x11b, 0x80000000, 0x9, 0x81, 0x80, 0xfff, 0x8000, 0x7f, 0x80, 0x8, 0xf2e, 0x8, 0x3d, 0x3, 0x3, 0x80000000, 0xffffffffffffa024, 0x4, 0x2, 0x4, 0x8, 0xb6, 0x8, 0x40, 0x679, 0x80000000, 0xffffffffffff3518, 0x100000000, 0x6, 0x2, 0x0, 0x8, 0x400, 0x8, 0x1ff, 0x7, 0x6, 0x8, 0x1, 0x81, 0x9, 0x200, 0x6, 0x7, 0x7f, 0x2, 0x0, 0xfdb, 0x400, 0x80, 0x9, 0x1, 0x0, 0x1, 0x1cf, 0x1000, 0x40, 0x10001, 0x2, 0x8, 0x7, 0xffffffffffffffc1, 0x2400000000, 0x90, 0x1f, 0xfffffffffffffffa, 0x8, 0xfff, 0xa661, 0x7, 0x9, 0x7f, 0x0, 0x80, 0x6b3, 0xfffffffffffffffb, 0xfffffffffffffff7, 0x4, 0x7, 0x0, 0x4234, 0x3a8, 0x28, 0x8, 0xffffffff00000001, 0x0, 0x200, 0x4, 0x8, 0x6, 0xf4, 0x20, 0x1714810, 0x3, 0x3, 0x1a, 0x4, 0x3ff, 0x6, 0xffffffff, 0x10001, 0x0, 0x1000, 0x26, 0x400000000, 0x10001, 0x3f, 0x6, 0x5, 0x6, 0x6, 0x8001, 0x1, 0x1, 0x31, 0x0, 0x8, 0x8, 0x5, 0x10000, 0x2, 0xeb, 0x3, 0x7fff, 0x0, 0x7, 0x3ff, 0x74c0, 0x7fff, 0x800, 0x7f, 0x200, 0x1ff, 0xa, 0x8001, 0x3ff, 0x7fffffff, 0x15eb, 0x7, 0x8001, 0x8, 0x1, 0xa955, 0x7ff, 0x2, 0x5, 0x800, 0x5, 0x3, 0x27, 0x3f, 0x4, 0x0, 0x5, 0x5, 0x1000, 0x1ff, 0x2, 0x1ff, 0x6587000, 0x66c, 0x0, 0x0, 0x6, 0x26, 0x0, 0x8, 0x5, 0xfffffffffffffffd, 0x6, 0x401, 0x7ff, 0x0, 0x3, 0x3, 0x5, 0x2, 0x4, 0x9, 0x2dca, 0xc00, 0x1, 0x2, 0x956, 0x7, 0x401, 0x10000, 0x800, 0x4, 0xdc, 0x80, 0x7, 0xb5, 0x9, 0x100000000, 0x0, 0x7fff, 0x1, 0x51c, 0x7ff, 0x8, 0x8001, 0x1, 0x2, 0xd4, 0x6668, 0x5, 0x80, 0x2, 0x5, 0x200, 0x6, 0x3f, 0x8, 0x401, 0x100, 0x2a1b, 0x80000001, 0x35a, 0x83a4, 0x7, 0x5, 0x5, 0xfffffffeffffffff, 0x0, 0x9, 0x7, 0x3, 0x0, 0x8001, 0x40, 0x1, 0xfff, 0x6, 0x0, 0x1ff, 0x7ff, 0xff, 0x800, 0x7, 0x0, 0xaf, 0x1, 0x99f, 0x9, 0x4, 0xffffffff, 0x2, 0x40, 0xffffffff7fffffff, 0x1000, 0x7fffffff, 0xe469, 0xb5, 0x6, 0x161, 0x0, 0x8, 0x6, 0x800, 0x0, 0x80000000000000, 0x0, 0x200, 0x4, 0xfffffffffffffffc, 0x5, 0x200, 0x4, 0x7, 0x6, 0x0, 0xf7, 0x4, 0x7ff, 0x1ff, 0xfff, 0x0, 0x50b, 0x319, 0x1, 0x3, 0x4, 0x1, 0x100000000, 0x7, 0x3, 0x2, 0x8, 0xffff, 0x7, 0x3, 0x2, 0x1, 0x55c5, 0x80000000, 0xfffffffffffffcf7, 0x10001, 0x23, 0x6, 0x20, 0x100, 0x25ac, 0x1ff, 0x8, 0x7fffffff, 0x7fff, 0x2, 0x2, 0x3ff, 0x1e46, 0x80, 0x800, 0x5, 0xf5, 0xd0e, 0x5, 0x1fffffffe000000, 0x60000000000, 0x200, 0x4, 0x13bedfc5, 0x1, 0x24, 0x1f, 0x8, 0x0, 0x8100000, 0x7fff, 0x8, 0x5856, 0xd572, 0x8, 0xffffffff, 0x0, 0x7f, 0x2, 0x100000000, 0x7, 0x9, 0xfffffffffffffff7, 0x4, 0x6, 0x340, 0x3, 0xffffffffffffff80, 0xe96, 0xc2, 0x2, 0x101, 0x7, 0x80000001, 0x0, 0x2, 0x6, 0x4, 0x2, 0x1, 0x8000, 0x0, 0x9, 0x6, 0x7f, 0x1, 0xffffffff, 0x6, 0x2, 0x5, 0x40, 0x1, 0x89, 0xb21, 0x8, 0xcbe2, 0xff, 0x8, 0xd8, 0x2c0, 0x0, 0x20, 0x5, 0x0, 0x7, 0x7, 0x7, 0x556e, 0x6dd2fd84, 0x0, 0x50, 0x401, 0x5, 0x0, 0x0, 0x1, 0x4, 0x20, 0x1000, 0x8, 0x800, 0x3, 0xe5, 0x4, 0x0, 0x0, 0x4, 0x200, 0x3, 0x9, 0x1f, 0x9, 0x5, 0x1000, 0xf0, 0x7, 0x3ff, 0x3, 0x5, 0x2, 0x0, 0x7f, 0x9, 0x58c, 0x7, 0x2, 0x0, 0x800, 0x1, 0x7, 0x20, 0x7, 0x401, 0x8, 0x1f9, 0x1ff, 0x8, 0x65d, 0xd85c, 0x80000001, 0x5, 0xfffffffffffff6d0, 0x101, 0x10001, 0x0, 0x0, 0xb6, 0x5, 0x7f, 0x2, 0x5, 0x5, 0x3, 0x9, 0x2, 0x6, 0xd72, 0x2, 0x10000, 0xffff, 0x29fa81a0, 0x8, 0x69, 0x7fffffff, 0x401, 0xfffffffffffffffc, 0x10001, 0xff, 0x2, 0x7], "28962c36467973df89cb9ba33f24b1fe5f21d69c351b92938b5bc849e22289551dcd6206991e4a3e25beeeb399229baaa113eedfebf866196af50e1e15c7aa0ea6cee69fa551e347b3566c7212f54650f381447a965e83fc88c27d817062ea48b09343106e36e85049055b1f36517dbc05d99fc1f36e9e85e7a3f31f744cdcabcec99a5d582693094c3dc04ea0385af2447e464e2fc838dfa6d612fc23128420f5b5076b61d14339ec8706069f351d8828e7f72a6bf767567fe0d807e1c26941da2d0e6f741a9cbde795dac616a271528237888bb80e6cbf56c01e9da7f3ac7a6d61d46ec4c02c46766e694195c3cb9223b6f2c57055ed864e"}}) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r1, 0x0) r2 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r2, 0x1000008912, &(0x7f0000000000)="11dca50d5e0bcfe47bf070") mremap(&(0x7f0000ffd000/0x3000)=nil, 0x2000, 0x1002, 0x3, &(0x7f0000ffa000/0x1000)=nil) 08:37:09 executing program 4: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000280)='fuseblk\x00', 0x80000, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r0, 0x2000) r1 = shmat(0xffffffffffffffff, &(0x7f0000ffb000/0x2000)=nil, 0xefd4ed65871ed649) getsockopt$TIPC_NODE_RECVQ_DEPTH(r0, 0x10f, 0x83, &(0x7f0000000000), &(0x7f0000000100)=0x4) shmdt(r1) 08:37:09 executing program 3: r0 = socket(0x2, 0x1, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) setsockopt$EBT_SO_SET_ENTRIES(r0, 0xa00000000000000, 0x80, &(0x7f00000000c0)=@broute={'broute\x00\x00\x00\x00\x00\x00\x00\x00 \x00', 0x20, 0x1, 0x9c0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000e00], 0x0, 0x0, &(0x7f0000000e00)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff010000000b00000000000000000062726964676530000000000000000000766c616e300000000000000000000000736974300000000000000000000000007465716c3000000000000000000000000000000000000000000000000180c20000000000000000000000b8080000b808000030090000616d6f6e6700000000000000000000000000000000000000000000000000000018040000000000000c00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000027327243426c7d2d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000a600a9e85725d89818472e65aba21d9bbc1b20e8331c6fd24a5aceaeefe102e42a013ac2c00eeb782c34eab997013e0506220c21a44cc58ff5bc83d5e4066c770000000000000000000000000000000000000000000000000000000000000000000000000000000001000000fcffffff00000000"]}, 0xa38) [ 510.621278] x86/PAT: syz-executor.5:17454 freeing invalid memtype [mem 0x1000000000-0x1000000fff] 08:37:10 executing program 2: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mincore(&(0x7f0000ffa000/0x4000)=nil, 0x4000, &(0x7f00000000c0)=""/81) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) madvise(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xb) 08:37:10 executing program 1: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) r0 = syz_open_dev$audion(&(0x7f00000000c0)='/dev/audio#\x00', 0x5, 0x410880) getresgid(&(0x7f00000001c0), &(0x7f0000000200)=0x0, &(0x7f0000000240)) setgid(r1) ioctl$VIDIOC_S_MODULATOR(r0, 0x40445637, &(0x7f0000000100)={0xa0, "0d07a46beda667aa77f8a9bf5483664e9fb5ae14caffca1bdfd947e08444cc49", 0x1000, 0x7, 0x3fa5, 0x18, 0x7}) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000180)='devt\x0e\xce\\_\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0x0) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r2, 0x0) [ 510.680794] x86/PAT: syz-executor.5:17454 freeing invalid memtype [mem 0x1000002000-0x1000002fff] 08:37:10 executing program 5 (fault-call:6 fault-nth:40): mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x1000000000) mremap(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0x0, 0x0, 0x0) 08:37:10 executing program 3: r0 = socket(0x2, 0x1, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) setsockopt$EBT_SO_SET_ENTRIES(r0, 0xa00000000000000, 0x80, &(0x7f00000000c0)=@broute={'broute\x00\x00\x00\x00\x00\x00\x00\x00?\x00', 0x20, 0x1, 0x9c0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000e00], 0x0, 0x0, &(0x7f0000000e00)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff010000000b00000000000000000062726964676530000000000000000000766c616e300000000000000000000000736974300000000000000000000000007465716c3000000000000000000000000000000000000000000000000180c20000000000000000000000b8080000b808000030090000616d6f6e6700000000000000000000000000000000000000000000000000000018040000000000000c00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000027327243426c7d2d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000a600a9e85725d89818472e65aba21d9bbc1b20e8331c6fd24a5aceaeefe102e42a013ac2c00eeb782c34eab997013e0506220c21a44cc58ff5bc83d5e4066c770000000000000000000000000000000000000000000000000000000000000000000000000000000001000000fcffffff00000000"]}, 0xa38) 08:37:10 executing program 0: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r0, 0x0) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f0000000000)="11dca50d5e0bcfe47bf070") getsockopt$inet_sctp6_SCTP_PR_STREAM_STATUS(r0, 0x84, 0x74, &(0x7f00000000c0)=""/5, &(0x7f0000000100)=0x5) mremap(&(0x7f0000ffd000/0x3000)=nil, 0x2000, 0x1002, 0x3, &(0x7f0000ffa000/0x1000)=nil) 08:37:10 executing program 2: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) socket$can_raw(0x1d, 0x3, 0x1) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) madvise(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xb) 08:37:10 executing program 4: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = openat$selinux_mls(0xffffffffffffff9c, &(0x7f00000000c0)='/selinux/mls\x00', 0x0, 0x0) r1 = openat$cgroup_ro(r0, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r1, 0x2000) [ 510.951840] x86/PAT: syz-executor.5:17770 freeing invalid memtype [mem 0x1000001000-0x1000001fff] [ 511.020942] FAULT_INJECTION: forcing a failure. [ 511.020942] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 511.046354] CPU: 1 PID: 17770 Comm: syz-executor.5 Not tainted 4.19.64 #38 [ 511.053391] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 511.062800] Call Trace: [ 511.065435] dump_stack+0x172/0x1f0 08:37:10 executing program 3: r0 = socket(0x2, 0x1, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) setsockopt$EBT_SO_SET_ENTRIES(r0, 0xa00000000000000, 0x80, &(0x7f00000000c0)=@broute={'broute\x00\x00\x00\x00\x00\x00\x00\x00@\x00', 0x20, 0x1, 0x9c0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000e00], 0x0, 0x0, &(0x7f0000000e00)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff010000000b00000000000000000062726964676530000000000000000000766c616e300000000000000000000000736974300000000000000000000000007465716c3000000000000000000000000000000000000000000000000180c20000000000000000000000b8080000b808000030090000616d6f6e6700000000000000000000000000000000000000000000000000000018040000000000000c00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000027327243426c7d2d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000a600a9e85725d89818472e65aba21d9bbc1b20e8331c6fd24a5aceaeefe102e42a013ac2c00eeb782c34eab997013e0506220c21a44cc58ff5bc83d5e4066c770000000000000000000000000000000000000000000000000000000000000000000000000000000001000000fcffffff00000000"]}, 0xa38) 08:37:10 executing program 1: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000000c0)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r0, 0x0) 08:37:10 executing program 0: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r0, 0x0) fstat(r0, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0}) ioctl$SIOCNRDECOBS(r0, 0x89e2) ioctl$TUNSETOWNER(r0, 0x400454cc, r1) r2 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r2, 0x1000008912, &(0x7f0000000000)="11dca50d5e0bcfe47bf070") mremap(&(0x7f0000ffd000/0x3000)=nil, 0x2000, 0x1002, 0x3, &(0x7f0000ffa000/0x1000)=nil) [ 511.069090] should_fail.cold+0xa/0x1b [ 511.072996] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 511.078199] ? __might_sleep+0x95/0x190 [ 511.082189] __alloc_pages_nodemask+0x1ee/0x750 [ 511.086867] ? save_stack+0xa9/0xd0 [ 511.090511] ? __alloc_pages_slowpath+0x2870/0x2870 [ 511.095533] ? copy_process.part.0+0x34e5/0x7a30 [ 511.100308] ? mark_held_locks+0x100/0x100 [ 511.104557] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 511.110118] alloc_pages_current+0x107/0x210 [ 511.114544] pte_alloc_one+0x1b/0x1a0 08:37:10 executing program 3: r0 = socket(0x2, 0x1, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) setsockopt$EBT_SO_SET_ENTRIES(r0, 0xa00000000000000, 0x80, &(0x7f00000000c0)=@broute={'broute\x00\x00\x00\x00\x00\x00\x00\x00H\x00', 0x20, 0x1, 0x9c0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000e00], 0x0, 0x0, &(0x7f0000000e00)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff010000000b00000000000000000062726964676530000000000000000000766c616e300000000000000000000000736974300000000000000000000000007465716c3000000000000000000000000000000000000000000000000180c20000000000000000000000b8080000b808000030090000616d6f6e6700000000000000000000000000000000000000000000000000000018040000000000000c00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000027327243426c7d2d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000a600a9e85725d89818472e65aba21d9bbc1b20e8331c6fd24a5aceaeefe102e42a013ac2c00eeb782c34eab997013e0506220c21a44cc58ff5bc83d5e4066c770000000000000000000000000000000000000000000000000000000000000000000000000000000001000000fcffffff00000000"]}, 0xa38) 08:37:10 executing program 2: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) r0 = syz_open_dev$sndpcmc(&(0x7f00000000c0)='/dev/snd/pcmC#D#c\x00', 0xffffffffffffffe0, 0x408000) getsockopt$inet_sctp6_SCTP_CONTEXT(0xffffffffffffffff, 0x84, 0x11, &(0x7f0000000100)={0x0, 0xaeb}, &(0x7f0000000140)=0x8) setsockopt$inet_sctp_SCTP_RESET_ASSOC(r0, 0x84, 0x78, &(0x7f0000000180)=r1, 0xfffffccc) write$P9_RXATTRWALK(r0, &(0x7f00000001c0)={0xf, 0x1f, 0x1, 0x8000}, 0xf) chdir(&(0x7f0000000080)='./file0\x00') r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0x0) madvise(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xb) [ 511.118351] __pte_alloc+0x2a/0x360 [ 511.121996] copy_page_range+0x151f/0x1f90 [ 511.126273] ? anon_vma_fork+0x371/0x4a0 [ 511.130353] ? find_held_lock+0x35/0x130 [ 511.134432] ? anon_vma_fork+0x371/0x4a0 [ 511.138509] ? vma_compute_subtree_gap+0x158/0x230 [ 511.143488] ? vma_gap_callbacks_rotate+0x62/0x80 [ 511.148351] ? pmd_alloc+0x180/0x180 [ 511.152414] ? __vma_link_rb+0x279/0x370 [ 511.156581] copy_process.part.0+0x543d/0x7a30 [ 511.161209] ? __cleanup_sighand+0x70/0x70 [ 511.165462] ? lock_downgrade+0x810/0x810 [ 511.169635] ? kasan_check_write+0x14/0x20 [ 511.173877] ? __mutex_unlock_slowpath+0xf8/0x6b0 [ 511.178745] _do_fork+0x257/0xfd0 [ 511.182214] ? fork_idle+0x1d0/0x1d0 [ 511.185944] ? fput+0x128/0x1a0 [ 511.189237] ? ksys_write+0x1f1/0x2d0 [ 511.193059] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 511.197833] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 511.202604] ? do_syscall_64+0x26/0x620 [ 511.206609] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 511.212026] ? do_syscall_64+0x26/0x620 [ 511.216052] __x64_sys_clone+0xbf/0x150 08:37:10 executing program 3: r0 = socket(0x2, 0x1, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) setsockopt$EBT_SO_SET_ENTRIES(r0, 0xa00000000000000, 0x80, &(0x7f00000000c0)=@broute={'broute\x00\x00\x00\x00\x00\x00\x00\x00L\x00', 0x20, 0x1, 0x9c0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000e00], 0x0, 0x0, &(0x7f0000000e00)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff010000000b00000000000000000062726964676530000000000000000000766c616e300000000000000000000000736974300000000000000000000000007465716c3000000000000000000000000000000000000000000000000180c20000000000000000000000b8080000b808000030090000616d6f6e6700000000000000000000000000000000000000000000000000000018040000000000000c00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000027327243426c7d2d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000a600a9e85725d89818472e65aba21d9bbc1b20e8331c6fd24a5aceaeefe102e42a013ac2c00eeb782c34eab997013e0506220c21a44cc58ff5bc83d5e4066c770000000000000000000000000000000000000000000000000000000000000000000000000000000001000000fcffffff00000000"]}, 0xa38) [ 511.220041] do_syscall_64+0xfd/0x620 [ 511.223856] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 511.229067] RIP: 0033:0x459829 [ 511.232285] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 511.251189] RSP: 002b:00007f6d217bfc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 511.258909] RAX: ffffffffffffffda RBX: 00007f6d217bfc90 RCX: 0000000000459829 08:37:10 executing program 2: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) prctl$PR_SET_SECUREBITS(0x1c, 0x2) mount(0x0, &(0x7f0000000640)='./file0\x00', &(0x7f0000000600)='devtms\x00\x00\x00', 0x3, 0x0) chdir(&(0x7f00000000c0)='./file0\x00') r0 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000180)='/dev/dlm_plock\x00', 0x10000, 0x0) getsockopt$inet6_int(r0, 0x29, 0x12, &(0x7f00000001c0), &(0x7f0000000200)=0x4) statx(r0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x7ff, &(0x7f0000000500)) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) setsockopt$inet_udp_encap(r1, 0x11, 0x64, &(0x7f0000000240)=0x3, 0x4) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r1, 0x0, 0x80, &(0x7f0000000100)=@nat={'nat\x00', 0x19, 0x4, 0x4c0, [0x20000500, 0x0, 0x0, 0x200006ae, 0x2000081a], 0x0, &(0x7f0000000080), &(0x7f0000000a80)=ANY=[@ANYBLOB="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"]}, 0x5c2) madvise(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0xb) [ 511.266186] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 511.273462] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 511.280739] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f6d217c06d4 [ 511.288014] R13: 00000000004bfce6 R14: 00000000004d1998 R15: 0000000000000004 [ 511.312084] x86/PAT: syz-executor.5:17770 freeing invalid memtype [mem 0x1000000000-0x1000000fff] [ 511.373688] x86/PAT: syz-executor.5:17770 freeing invalid memtype [mem 0x1000002000-0x1000002fff] 08:37:10 executing program 5 (fault-call:6 fault-nth:41): mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x1000000000) mremap(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0x0, 0x0, 0x0) 08:37:10 executing program 3: r0 = socket(0x2, 0x1, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) setsockopt$EBT_SO_SET_ENTRIES(r0, 0xa00000000000000, 0x80, &(0x7f00000000c0)=@broute={'broute\x00\x00\x00\x00\x00\x00\x00\x00`\x00', 0x20, 0x1, 0x9c0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000e00], 0x0, 0x0, &(0x7f0000000e00)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff010000000b00000000000000000062726964676530000000000000000000766c616e300000000000000000000000736974300000000000000000000000007465716c3000000000000000000000000000000000000000000000000180c20000000000000000000000b8080000b808000030090000616d6f6e6700000000000000000000000000000000000000000000000000000018040000000000000c00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000027327243426c7d2d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000a600a9e85725d89818472e65aba21d9bbc1b20e8331c6fd24a5aceaeefe102e42a013ac2c00eeb782c34eab997013e0506220c21a44cc58ff5bc83d5e4066c770000000000000000000000000000000000000000000000000000000000000000000000000000000001000000fcffffff00000000"]}, 0xa38) 08:37:10 executing program 4: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') io_setup(0x40, &(0x7f00000000c0)=0x0) r1 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000100)='/dev/uinput\x00', 0x802, 0x0) r2 = openat$null(0xffffffffffffff9c, &(0x7f0000000140)='/dev/null\x00', 0x40000, 0x0) io_cancel(r0, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x1, 0x2, r1, &(0x7f00000001c0)="9f5aeab61a3a22c9ee7463cce49bdda48e681a09944da3617ae332d0dbdaeb3a32c793c9d377ad46075dc4fca26c2ba12285ba7afd26517677530e640db22040028c27621f8ea6bc49b0d970a344fc6e1afd6e0c32645b247fabac5cce573aa3df210c3fc1a243ed85639ed616c567ec444bfb3fcc58963f3027d4259351a79424f01769a2fd17e76ffb686235f7f3bb46a3399a5a8b98c74fbfa9cd7a89fb1801", 0xa1, 0x7, 0x0, 0x3, r2}, &(0x7f0000000300)) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r3, 0x2000) ioctl$SG_GET_NUM_WAITING(r3, 0x227d, &(0x7f0000000180)) 08:37:10 executing program 1: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000002c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) getresuid(&(0x7f0000000100), &(0x7f0000000140)=0x0, &(0x7f0000000180)) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f00000001c0)={0x0, 0x0, 0x0}, &(0x7f0000000200)=0xc) fchownat(r0, &(0x7f00000000c0)='./file0\x00', r1, r2, 0x900) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) 08:37:10 executing program 3: r0 = socket(0x2, 0x1, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) setsockopt$EBT_SO_SET_ENTRIES(r0, 0xa00000000000000, 0x80, &(0x7f00000000c0)=@broute={'broute\x00\x00\x00\x00\x00\x00\x00\x00h\x00', 0x20, 0x1, 0x9c0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000e00], 0x0, 0x0, &(0x7f0000000e00)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff010000000b00000000000000000062726964676530000000000000000000766c616e300000000000000000000000736974300000000000000000000000007465716c3000000000000000000000000000000000000000000000000180c20000000000000000000000b8080000b808000030090000616d6f6e6700000000000000000000000000000000000000000000000000000018040000000000000c00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000027327243426c7d2d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000a600a9e85725d89818472e65aba21d9bbc1b20e8331c6fd24a5aceaeefe102e42a013ac2c00eeb782c34eab997013e0506220c21a44cc58ff5bc83d5e4066c770000000000000000000000000000000000000000000000000000000000000000000000000000000001000000fcffffff00000000"]}, 0xa38) 08:37:10 executing program 2: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, &(0x7f00000000c0)={'broute\x00'}, &(0x7f0000000140)=0x78) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) madvise(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xb) 08:37:10 executing program 0: mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='devtmpfs\x00\x93\x11\xf2\xc2\b\xc5!\xb2D\x00\x00\x00', 0xfffffffffffffbff, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) ioctl$VIDIOC_DV_TIMINGS_CAP(r0, 0xc0905664, &(0x7f00000000c0)={0x0, 0x0, [], @raw_data=[0x3, 0x0, 0x1, 0x0, 0x1, 0x10001, 0x1, 0xcd9, 0x6, 0x800, 0x9, 0x2, 0x7fff, 0x3f, 0x100000000, 0x5, 0x18, 0x1, 0x3, 0x80000001, 0x1, 0x7fff, 0x9, 0x7, 0x7f, 0x3, 0x8, 0x0, 0x88c0, 0xe388, 0x593, 0x3b1b]}) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r0, 0x0) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f0000000000)="11dca50d5e0bcfe47bf070") mremap(&(0x7f0000ffd000/0x3000)=nil, 0x2000, 0x1002, 0x3, &(0x7f0000ffa000/0x1000)=nil) ioctl$VIDIOC_G_ENC_INDEX(r0, 0x8818564c, &(0x7f0000001580)) 08:37:10 executing program 4: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000100)="2e0000003100818be45ae087185082cf0324b0eb20000000040000dd1efa21d9151cd8f286f9075b3b0016914879", 0x2e}], 0x1}, 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r1, 0x2000) 08:37:11 executing program 1: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) timerfd_create(0xf, 0x80800) r0 = syz_open_dev$radio(&(0x7f0000000180)='/dev/radio#\x00', 0x3, 0x2) ioctl$sock_bt_hidp_HIDPGETCONNLIST(r0, 0x800448d2, &(0x7f00000001c0)={0x2, &(0x7f0000000500)=[{}, {}]}) chdir(&(0x7f0000000080)='./file0\x00') r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r1, 0x0) [ 511.734834] FAULT_INJECTION: forcing a failure. [ 511.734834] name failslab, interval 1, probability 0, space 0, times 0 [ 511.766886] CPU: 1 PID: 18314 Comm: syz-executor.5 Not tainted 4.19.64 #38 [ 511.773926] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 511.783278] Call Trace: [ 511.783305] dump_stack+0x172/0x1f0 [ 511.783335] should_fail.cold+0xa/0x1b [ 511.793412] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 511.798526] ? lock_downgrade+0x810/0x810 [ 511.802694] __should_failslab+0x121/0x190 [ 511.806939] should_failslab+0x9/0x14 [ 511.810747] kmem_cache_alloc+0x2ae/0x700 [ 511.814921] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 511.820485] ptlock_alloc+0x20/0x70 [ 511.824120] pte_alloc_one+0x6d/0x1a0 [ 511.827938] __pte_alloc+0x2a/0x360 [ 511.831573] copy_page_range+0x151f/0x1f90 [ 511.835823] ? anon_vma_fork+0x371/0x4a0 [ 511.839922] ? find_held_lock+0x35/0x130 [ 511.843991] ? anon_vma_fork+0x371/0x4a0 [ 511.848071] ? vma_compute_subtree_gap+0x158/0x230 [ 511.853020] ? vma_gap_callbacks_rotate+0x62/0x80 [ 511.857870] ? pmd_alloc+0x180/0x180 [ 511.861591] ? __vma_link_rb+0x279/0x370 [ 511.865662] copy_process.part.0+0x543d/0x7a30 [ 511.870273] ? __cleanup_sighand+0x70/0x70 [ 511.874508] ? lock_downgrade+0x810/0x810 [ 511.878699] ? kasan_check_write+0x14/0x20 [ 511.882942] ? __mutex_unlock_slowpath+0xf8/0x6b0 [ 511.887794] _do_fork+0x257/0xfd0 [ 511.891261] ? fork_idle+0x1d0/0x1d0 [ 511.895014] ? fput+0x128/0x1a0 [ 511.898299] ? ksys_write+0x1f1/0x2d0 [ 511.902121] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 511.906882] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 511.911656] ? do_syscall_64+0x26/0x620 [ 511.915642] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 511.921013] ? do_syscall_64+0x26/0x620 [ 511.924995] __x64_sys_clone+0xbf/0x150 [ 511.928979] do_syscall_64+0xfd/0x620 [ 511.932793] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 511.937988] RIP: 0033:0x459829 [ 511.941187] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 511.960090] RSP: 002b:00007f6d2175cc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 511.967805] RAX: ffffffffffffffda RBX: 00007f6d2175cc90 RCX: 0000000000459829 [ 511.975091] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 08:37:11 executing program 3: r0 = socket(0x2, 0x1, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) setsockopt$EBT_SO_SET_ENTRIES(r0, 0xa00000000000000, 0x80, &(0x7f00000000c0)=@broute={'broute\x00\x00\x00\x00\x00\x00\x00\x00l\x00', 0x20, 0x1, 0x9c0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000e00], 0x0, 0x0, &(0x7f0000000e00)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff010000000b00000000000000000062726964676530000000000000000000766c616e300000000000000000000000736974300000000000000000000000007465716c3000000000000000000000000000000000000000000000000180c20000000000000000000000b8080000b808000030090000616d6f6e6700000000000000000000000000000000000000000000000000000018040000000000000c00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000027327243426c7d2d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000a600a9e85725d89818472e65aba21d9bbc1b20e8331c6fd24a5aceaeefe102e42a013ac2c00eeb782c34eab997013e0506220c21a44cc58ff5bc83d5e4066c770000000000000000000000000000000000000000000000000000000000000000000000000000000001000000fcffffff00000000"]}, 0xa38) 08:37:11 executing program 2: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = semget(0x2, 0x1, 0x10) semop(r0, &(0x7f00000000c0)=[{0x1, 0x1, 0x1800}, {0x6, 0x9}, {0x7, 0x5, 0x1000}, {0xffffffffffffffff, 0x3, 0x1800}, {0x4, 0xff, 0x1000}, {0x0, 0x2, 0x800}, {0x7, 0x7ff, 0x800}, {0x4, 0x87b4}, {0x4, 0x40}], 0x9) mmap(&(0x7f0000ff9000/0x7000)=nil, 0x7000, 0x2000000, 0x10, 0xffffffffffffffff, 0x0) madvise(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xb) ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(0xffffffffffffffff, 0xc0045516, &(0x7f0000000100)=0xffffffffffffffff) [ 511.982370] RBP: 000000000075c118 R08: 0000000000000000 R09: 0000000000000000 [ 511.989646] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f6d2175d6d4 [ 511.996917] R13: 00000000004bfce6 R14: 00000000004d1998 R15: 0000000000000004 08:37:11 executing program 0: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r0, 0x0) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f0000000000)="11dca50d5e0bcfe47bf070") mremap(&(0x7f0000ffd000/0x3000)=nil, 0x2000, 0x1002, 0x3, &(0x7f0000ffa000/0x1000)=nil) ioctl$EVIOCSFF(r0, 0x40304580, &(0x7f00000000c0)={0x57, 0x7, 0xfff000000, {0x2, 0x6}, {0x9, 0xc}, @rumble={0x7, 0xffffffffffffff80}}) 08:37:11 executing program 5 (fault-call:6 fault-nth:42): mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x1000000000) mremap(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0x0, 0x0, 0x0) [ 512.114119] ebt_among_mt_check: 17 callbacks suppressed [ 512.114126] ebt_among: dst integrity fail: 3cd 08:37:11 executing program 4: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap$binder(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0x11, r0, 0x2000) 08:37:11 executing program 2: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0xfffffffffffffffd, 0x1e, r1, 0x0) tee(r0, r1, 0x6, 0x2) openat$apparmor_thread_current(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/thread-self/attr/current\x00', 0x2, 0x0) madvise(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x200000000000006) [ 512.200172] x86/PAT: syz-executor.5:18494 freeing invalid memtype [mem 0x1000001000-0x1000001fff] 08:37:11 executing program 3: r0 = socket(0x2, 0x1, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) setsockopt$EBT_SO_SET_ENTRIES(r0, 0xa00000000000000, 0x80, &(0x7f00000000c0)=@broute={'broute\x00\x00\x00\x00\x00\x00\x00\x00t\x00', 0x20, 0x1, 0x9c0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000e00], 0x0, 0x0, &(0x7f0000000e00)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff010000000b00000000000000000062726964676530000000000000000000766c616e300000000000000000000000736974300000000000000000000000007465716c3000000000000000000000000000000000000000000000000180c20000000000000000000000b8080000b808000030090000616d6f6e6700000000000000000000000000000000000000000000000000000018040000000000000c00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000027327243426c7d2d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000a600a9e85725d89818472e65aba21d9bbc1b20e8331c6fd24a5aceaeefe102e42a013ac2c00eeb782c34eab997013e0506220c21a44cc58ff5bc83d5e4066c770000000000000000000000000000000000000000000000000000000000000000000000000000000001000000fcffffff00000000"]}, 0xa38) 08:37:11 executing program 1: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) ioctl$SG_GET_REQUEST_TABLE(r0, 0x2286, &(0x7f00000000c0)) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r0, 0x0) [ 512.247692] FAULT_INJECTION: forcing a failure. [ 512.247692] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 512.356860] ebt_among: dst integrity fail: 3cd [ 512.362007] CPU: 0 PID: 18494 Comm: syz-executor.5 Not tainted 4.19.64 #38 [ 512.369029] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 512.378386] Call Trace: [ 512.380994] dump_stack+0x172/0x1f0 [ 512.384664] should_fail.cold+0xa/0x1b [ 512.388572] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 512.393699] ? __might_sleep+0x95/0x190 [ 512.397682] __alloc_pages_nodemask+0x1ee/0x750 [ 512.402370] ? __lock_is_held+0xb6/0x140 08:37:11 executing program 4: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') mount(&(0x7f00000000c0)=@nbd={'/dev/nbd', 0x0}, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='cifs\x00', 0x80802, &(0x7f0000000180)='nodev##cgroupvboxnet1mime_typeeth1usernodev(}vmnet0posix_acl_access\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) openat$cgroup_ro(r0, &(0x7f0000000200)='memory.stat\x00', 0x0, 0x0) mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r0, 0x40000000000000) 08:37:11 executing program 0: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r0, 0x0) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f00000000c0)="11dca50d5e0bcfe47bf070") mremap(&(0x7f0000ffd000/0x3000)=nil, 0x2000, 0x1002, 0x3, &(0x7f0000ffa000/0x1000)=nil) [ 512.406456] ? __alloc_pages_slowpath+0x2870/0x2870 [ 512.411493] ? find_held_lock+0x35/0x130 [ 512.415574] ? find_held_lock+0x35/0x130 [ 512.419656] ? copy_page_range+0x124f/0x1f90 [ 512.424078] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 512.429629] alloc_pages_current+0x107/0x210 [ 512.434080] pte_alloc_one+0x1b/0x1a0 [ 512.437902] __pte_alloc+0x2a/0x360 [ 512.441545] copy_page_range+0x151f/0x1f90 [ 512.445790] ? anon_vma_fork+0x371/0x4a0 [ 512.449886] ? pmd_alloc+0x180/0x180 08:37:11 executing program 1: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) r0 = creat(&(0x7f0000000380)='./file0\x00', 0x40) r1 = syz_genetlink_get_family_id$ipvs(&(0x7f0000001b00)='IPVS\x00') sendmsg$IPVS_CMD_NEW_DAEMON(r0, &(0x7f0000001a80)={&(0x7f0000001980)={0x10, 0x0, 0x0, 0x4000100}, 0xc, &(0x7f0000001a40)={&(0x7f0000001a00)={0x1c, r1, 0x100, 0x70bd29, 0x25dfdbfc, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0xfff}]}, 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x0) setsockopt$TIPC_CONN_TIMEOUT(r0, 0x10f, 0x82, &(0x7f00000019c0)=0x8, 0x4) chdir(&(0x7f0000000080)='./file0\x00') r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0x0) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r2, 0x0) vmsplice(r2, &(0x7f00000018c0)=[{&(0x7f00000000c0)="46391e2ff4b077fd302b88c320d10eb2f258b66e0a0b8c6f8b2bb9fb41a03a5522515c714a3c8c3e2ea4129a4ce24ebb2498e2fbd3e2b0d609426d9592fb27f8a5f9564c10bd0475e6159167c7eacf140167c338324405ac1dacae10", 0x5c}, {&(0x7f0000000140)="32cbd44b72800d345cc6e597f7ab250cbe010e47cea7e4ddda863cafd45c515e68b64d37e256dd72d579342202c28bf27e2625f7a867fc80682a77b5c2c4379837aa692562cd701981765d514b5c21472f8ea365c9e30fa1e875325c5040ff78ba74afe0727fab706030f6088046bf6856a4d559e12c647fc8b4fd67f2f3dca0bf446ea720442725f7940c55daffdfe8b5d5d188cd6a755d0ae72caa59609449c39c47c6f39c4919b81e4d2cdbbe34da05f6d3a3f67549140335a565b7d107de97f23300d1709b01e33818eed951b2db949508bc74", 0xd5}, {&(0x7f00000002c0)="92ef8e4f349cfaf47eeb28174cbfeac43bb81c02dd8872e51521893730656d55a351f62a902ceb445d12544a49dddbe812b3c1179cb780674d2a7594a0f5e65cd41174f962f77540ec9849efcc12742dc31e5618dd4767a4e116449d39431c0873e9254af151e9bcf58e5ae92a908b376fd7f0520aff57e4709a3954235cd3e2686ca5669acc529a5f8ccaf4e09653622d81813ae8352b5d573b5d9e8efbbfe05332c8f7999d34e8b6ac8ebc2359d103c8181637272c50", 0xb7}, {&(0x7f0000000500)="a58695336d2111736bcbc45d039f6ce7cd3f9cd3f01e055851852e1e56bbb08db6f4961b4e74de74daa63f9b71004e2d53ffe2aace7b47242592a55f517cfd56599487dec2a2df639c7637d47a3f79655bab06b346e6650f82f7aa032c56d5dd4c3fe8a6925b5c80ee83c336f3cf2b4f40b92be1dd6a85cedaba4a613a9d37b5c9c25455", 0x84}, {&(0x7f00000005c0)="3d6dbc593cf1d68a9e87e6dedd82258a79230e4645463165847a44c2aec24a36068bebabd86e5f49da6d91adf74791ef887b8d12dc21febe5c52921b6f9538541b85016bc7d589b045e5abd430902fa84e049c11bfd8109b6ed4989cc4732de86931559639939314a57340f46b6e955a8754cb", 0x73}, {&(0x7f0000000640)="b30edba337231fd93a2d3fcdd9fc5fc5888a19a90754054def986fc5b728e6a4322d0f4d9723ab74d99438b4a2c62d9711305f6e2874418cafa5d47c5aecff03c7a52386342b46299730448b1785810010c06bfe7ad9ae04ba37ebb8777517bc2f144aed29167b1050ce92badb573e4ceff21ca43fdb32c04b79aaacc942f710f9c5fef2362e75f6e1a02b33928c52", 0x8f}, {&(0x7f0000000700)="6ab59a33f0574e838b2b460e0b18866b925bfc99e694141419c857ab4039c41d8e9cc604ac72fd02530969741dbd8480d2119df61a4ceae3e6b30bbafd207e1112a79b70f657a8ec153322b8ec2f22b425d986a1bb8c65401d48679487ffc5a8e45da0aa10f2374b3f820f9dfddd75a95842ac831174e17e80d2461da3e0854168c4cec7af5649111d91d8d854443623", 0x90}, {&(0x7f00000007c0)="6328e7b65c3dd65f837a8004bff7042e2d760ea15b15729cd7f18bef4d8dfdfc243322dfe16ecb15f721e7b97433e0a98efc4af2af467cb344d662b09565f293ad46d0152da3b77dd579b62816e28a89fc079915a91f17e8faaefafc7ca9113a5b2aa79ebf5351ec65b4f85f2618fed5e1fdf13d05c5bed9f1ddce3c29e9ff3d79f69336b22002631b884b91ebc73e61afdfccf9239610725bd7960fa169cd856d9607cf7ef1d7cd9f68ece9d3c18c3d7ed385d2b9bea0fe6df49b5834dad5fcf1db42cbe659d28c5eaac2b9c0", 0xcd}, {&(0x7f00000008c0)="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", 0x1000}, {&(0x7f0000000240)="db9c04a42ac2e00157d0fc7aead94a7c49ed1d848beb8c27", 0x18}], 0xa, 0x1) [ 512.454126] ? __vma_link_rb+0x279/0x370 [ 512.458234] copy_process.part.0+0x543d/0x7a30 [ 512.462856] ? __cleanup_sighand+0x70/0x70 [ 512.467099] ? lock_downgrade+0x810/0x810 [ 512.471268] ? kasan_check_write+0x14/0x20 [ 512.476119] ? __mutex_unlock_slowpath+0xf8/0x6b0 [ 512.480990] _do_fork+0x257/0xfd0 [ 512.484452] ? fork_idle+0x1d0/0x1d0 [ 512.488175] ? fput+0x128/0x1a0 [ 512.491472] ? ksys_write+0x1f1/0x2d0 [ 512.495294] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 512.500062] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 512.500078] ? do_syscall_64+0x26/0x620 [ 512.500093] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 512.500107] ? do_syscall_64+0x26/0x620 [ 512.500125] __x64_sys_clone+0xbf/0x150 [ 512.500145] do_syscall_64+0xfd/0x620 [ 512.500165] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 512.500177] RIP: 0033:0x459829 [ 512.500192] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 08:37:11 executing program 3: r0 = socket(0x2, 0x1, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) setsockopt$EBT_SO_SET_ENTRIES(r0, 0xa00000000000000, 0x80, &(0x7f00000000c0)=@broute={'broute\x00\x00\x00\x00\x00\x00\x00\x00z\x00', 0x20, 0x1, 0x9c0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000e00], 0x0, 0x0, &(0x7f0000000e00)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff010000000b00000000000000000062726964676530000000000000000000766c616e300000000000000000000000736974300000000000000000000000007465716c3000000000000000000000000000000000000000000000000180c20000000000000000000000b8080000b808000030090000616d6f6e6700000000000000000000000000000000000000000000000000000018040000000000000c00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000027327243426c7d2d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000a600a9e85725d89818472e65aba21d9bbc1b20e8331c6fd24a5aceaeefe102e42a013ac2c00eeb782c34eab997013e0506220c21a44cc58ff5bc83d5e4066c770000000000000000000000000000000000000000000000000000000000000000000000000000000001000000fcffffff00000000"]}, 0xa38) 08:37:11 executing program 2: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) r0 = syz_open_dev$midi(&(0x7f00000000c0)='/dev/midi#\x00', 0xfbfe9bc, 0x20000) ioctl$DRM_IOCTL_ADD_MAP(r0, 0xc0286415, &(0x7f0000000100)={&(0x7f0000ffa000/0x4000)=nil, 0xf01d, 0x7, 0x4, &(0x7f0000ffd000/0x1000)=nil, 0x7}) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0) madvise(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xb) [ 512.500206] RSP: 002b:00007f6d217bfc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 512.561026] RAX: ffffffffffffffda RBX: 00007f6d217bfc90 RCX: 0000000000459829 [ 512.568300] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 512.575635] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 512.582927] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f6d217c06d4 [ 512.590201] R13: 00000000004bfce6 R14: 00000000004d1998 R15: 0000000000000004 [ 512.650652] x86/PAT: syz-executor.5:18494 freeing invalid memtype [mem 0x1000000000-0x1000000fff] [ 512.675708] ebt_among: dst integrity fail: 3cd [ 512.696328] x86/PAT: syz-executor.5:18494 freeing invalid memtype [mem 0x1000002000-0x1000002fff] 08:37:12 executing program 1: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x0, 0x110, r0, 0xfffffffffffffffc) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r0, 0x0) 08:37:12 executing program 3: r0 = socket(0x2, 0x1, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) setsockopt$EBT_SO_SET_ENTRIES(r0, 0xa00000000000000, 0x80, &(0x7f00000000c0)=@broute={'broute\x00\x00\x00\x00\x00\n\xaa\xaa\xa9\x00', 0x20, 0x1, 0x9c0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000e00], 0x0, 0x0, &(0x7f0000000e00)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff010000000b00000000000000000062726964676530000000000000000000766c616e300000000000000000000000736974300000000000000000000000007465716c3000000000000000000000000000000000000000000000000180c20000000000000000000000b8080000b808000030090000616d6f6e6700000000000000000000000000000000000000000000000000000018040000000000000c00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000027327243426c7d2d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000a600a9e85725d89818472e65aba21d9bbc1b20e8331c6fd24a5aceaeefe102e42a013ac2c00eeb782c34eab997013e0506220c21a44cc58ff5bc83d5e4066c770000000000000000000000000000000000000000000000000000000000000000000000000000000001000000fcffffff00000000"]}, 0xa38) 08:37:12 executing program 5 (fault-call:6 fault-nth:43): mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x1000000000) mremap(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0x0, 0x0, 0x0) 08:37:12 executing program 2: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0x10, &(0x7f00000000c0)={{{@in=@remote, @in=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@loopback}, 0x0, @in=@multicast1}}, &(0x7f00000001c0)=0xe8) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000200)={0x0, 0x0, 0x0}, &(0x7f0000000240)=0xc) r3 = geteuid() write$P9_RSTATu(r0, &(0x7f00000002c0)={0x65, 0x7d, 0x2, {{0x0, 0x47, 0xaca, 0x5, {0x2, 0x0, 0x1}, 0x20000000, 0x3, 0xf4c, 0x3f, 0x9, 'devtmpfs\x00', 0x9, 'devtmpfs\x00', 0x2, ')!'}, 0x9, 'devtmpfs\x00', r1, r2, r3}}, 0x65) madvise(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xb) 08:37:12 executing program 4: r0 = syz_open_dev$admmidi(&(0x7f00000000c0)='/dev/admmidi#\x00', 0x21, 0x10000) write$P9_RWSTAT(r0, &(0x7f0000000100)={0x7, 0x7f, 0x2}, 0x7) mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r1, 0x2000) [ 512.807077] ebt_among: dst integrity fail: 3cd [ 512.903629] x86/PAT: syz-executor.5:18983 freeing invalid memtype [mem 0x1000001000-0x1000001fff] 08:37:12 executing program 0: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='cgroup2\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r0, 0x0) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f0000000000)="11dca50d5e0bcfe47bf070") setxattr$trusted_overlay_nlink(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='trusted.overlay.nlink\x00', &(0x7f0000000140)={'U+', 0x8}, 0x28, 0x1) bind$bt_sco(r0, &(0x7f0000000180)={0x1f, {0x0, 0x8, 0x1cde, 0x3, 0x100000001, 0x5}}, 0x8) mremap(&(0x7f0000ffd000/0x3000)=nil, 0x2000, 0x1002, 0x3, &(0x7f0000ffa000/0x1000)=nil) recvfrom$llc(r0, &(0x7f0000000300)=""/150, 0x96, 0x10140, 0x0, 0x0) select(0x40, &(0x7f00000001c0)={0xfffffffffffffc01, 0x38000000, 0xffffffff, 0x9, 0xffffffffffff8000, 0x3f, 0xd1, 0x6}, &(0x7f0000000200)={0x70, 0xed3, 0x1, 0x94, 0x5, 0x9, 0x1, 0x8}, &(0x7f0000000240)={0x8001, 0x9, 0x80, 0x4, 0x6, 0x2, 0x3, 0x6}, &(0x7f00000002c0)={0x0, 0x7530}) 08:37:12 executing program 3: r0 = socket(0x2, 0x1, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) setsockopt$EBT_SO_SET_ENTRIES(r0, 0xa00000000000000, 0x80, &(0x7f00000000c0)=@broute={'broute\x00\x00\x00\x00\x00\a\xff\xff\xfe\x00', 0x20, 0x1, 0x9c0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000e00], 0x0, 0x0, &(0x7f0000000e00)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff010000000b00000000000000000062726964676530000000000000000000766c616e300000000000000000000000736974300000000000000000000000007465716c3000000000000000000000000000000000000000000000000180c20000000000000000000000b8080000b808000030090000616d6f6e6700000000000000000000000000000000000000000000000000000018040000000000000c00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000027327243426c7d2d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000a600a9e85725d89818472e65aba21d9bbc1b20e8331c6fd24a5aceaeefe102e42a013ac2c00eeb782c34eab997013e0506220c21a44cc58ff5bc83d5e4066c770000000000000000000000000000000000000000000000000000000000000000000000000000000001000000fcffffff00000000"]}, 0xa38) 08:37:12 executing program 2: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) getsockopt$inet6_mtu(r0, 0x29, 0x17, &(0x7f00000000c0), &(0x7f0000000100)=0x4) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) madvise(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xb) syz_genetlink_get_family_id$net_dm(&(0x7f0000000140)='NET_DM\x00') [ 512.949095] FAULT_INJECTION: forcing a failure. [ 512.949095] name failslab, interval 1, probability 0, space 0, times 0 [ 512.998391] CPU: 0 PID: 18983 Comm: syz-executor.5 Not tainted 4.19.64 #38 [ 513.005436] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 513.014908] Call Trace: [ 513.017515] dump_stack+0x172/0x1f0 [ 513.021169] should_fail.cold+0xa/0x1b [ 513.025080] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 513.030200] ? lock_downgrade+0x810/0x810 [ 513.034370] __should_failslab+0x121/0x190 [ 513.038639] should_failslab+0x9/0x14 [ 513.042452] kmem_cache_alloc+0x2ae/0x700 [ 513.046613] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 513.052203] ptlock_alloc+0x20/0x70 [ 513.055841] pte_alloc_one+0x6d/0x1a0 [ 513.059655] __pte_alloc+0x2a/0x360 [ 513.063296] copy_page_range+0x151f/0x1f90 [ 513.067532] ? anon_vma_fork+0x371/0x4a0 [ 513.071623] ? pmd_alloc+0x180/0x180 [ 513.075352] ? __vma_link_rb+0x279/0x370 [ 513.079416] copy_process.part.0+0x543d/0x7a30 [ 513.084062] ? __cleanup_sighand+0x70/0x70 [ 513.088324] ? lock_downgrade+0x810/0x810 [ 513.092492] ? kasan_check_write+0x14/0x20 [ 513.096749] ? __mutex_unlock_slowpath+0xf8/0x6b0 [ 513.099332] ebt_among: dst integrity fail: 3cd [ 513.101614] _do_fork+0x257/0xfd0 [ 513.101635] ? fork_idle+0x1d0/0x1d0 [ 513.101650] ? fput+0x128/0x1a0 [ 513.101667] ? ksys_write+0x1f1/0x2d0 [ 513.101689] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 513.101705] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 513.101725] ? do_syscall_64+0x26/0x620 [ 513.133992] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 513.139367] ? do_syscall_64+0x26/0x620 [ 513.143374] __x64_sys_clone+0xbf/0x150 [ 513.147363] do_syscall_64+0xfd/0x620 [ 513.151192] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 513.156387] RIP: 0033:0x459829 [ 513.159610] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 513.178511] RSP: 002b:00007f6d217bfc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 513.178528] RAX: ffffffffffffffda RBX: 00007f6d217bfc90 RCX: 0000000000459829 08:37:12 executing program 3: r0 = socket(0x2, 0x1, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) setsockopt$EBT_SO_SET_ENTRIES(r0, 0xa00000000000000, 0x80, &(0x7f00000000c0)=@broute={'broute\x00\x00\x00\x00\x00\x7f\xff\xff\xff\x00', 0x20, 0x1, 0x9c0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000e00], 0x0, 0x0, &(0x7f0000000e00)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff010000000b00000000000000000062726964676530000000000000000000766c616e300000000000000000000000736974300000000000000000000000007465716c3000000000000000000000000000000000000000000000000180c20000000000000000000000b8080000b808000030090000616d6f6e6700000000000000000000000000000000000000000000000000000018040000000000000c00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000027327243426c7d2d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000a600a9e85725d89818472e65aba21d9bbc1b20e8331c6fd24a5aceaeefe102e42a013ac2c00eeb782c34eab997013e0506220c21a44cc58ff5bc83d5e4066c770000000000000000000000000000000000000000000000000000000000000000000000000000000001000000fcffffff00000000"]}, 0xa38) 08:37:12 executing program 4: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = accept4$inet(0xffffffffffffffff, 0x0, &(0x7f00000000c0), 0x80000) recvfrom$inet(r0, &(0x7f0000000100)=""/246, 0xf6, 0x10060, 0x0, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap$binder(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x11, r1, 0x0) 08:37:12 executing program 0: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r0, 0x0) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f0000000000)="11dca50d5e0bcfe47bf070") write$P9_RUNLINKAT(r0, &(0x7f00000000c0)={0x7, 0x4d, 0x1}, 0x7) mremap(&(0x7f0000ffd000/0x3000)=nil, 0x2000, 0x1002, 0x3, &(0x7f0000ffa000/0x1000)=nil) [ 513.178536] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 513.178550] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 513.200809] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f6d217c06d4 [ 513.200819] R13: 00000000004bfce6 R14: 00000000004d1998 R15: 0000000000000004 08:37:12 executing program 1: mkdir(&(0x7f00000001c0)='./file0\x00', 0x4) r0 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/btrfs-control\x00', 0x204000, 0x0) write$UHID_GET_REPORT_REPLY(r0, &(0x7f0000000100)={0xa, 0xa, 0x9, 0x9}, 0xa) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') arch_prctl$ARCH_MAP_VDSO_X32(0x2001, 0x1) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r1, 0x0) ioctl$VFIO_SET_IOMMU(r1, 0x3b66, 0x0) [ 513.276988] x86/PAT: syz-executor.5:18983 freeing invalid memtype [mem 0x1000000000-0x1000000fff] [ 513.313214] ebt_among: dst integrity fail: 3cd [ 513.333004] x86/PAT: syz-executor.5:18983 freeing invalid memtype [mem 0x1000002000-0x1000002fff] 08:37:12 executing program 3: r0 = socket(0x2, 0x1, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) setsockopt$EBT_SO_SET_ENTRIES(r0, 0xa00000000000000, 0x80, &(0x7f00000000c0)=@broute={'broute\x00\x00\x00\x00\x00\xff\xff\xff\xff\x00', 0x20, 0x1, 0x9c0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000e00], 0x0, 0x0, &(0x7f0000000e00)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff010000000b00000000000000000062726964676530000000000000000000766c616e300000000000000000000000736974300000000000000000000000007465716c3000000000000000000000000000000000000000000000000180c20000000000000000000000b8080000b808000030090000616d6f6e6700000000000000000000000000000000000000000000000000000018040000000000000c00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000027327243426c7d2d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000a600a9e85725d89818472e65aba21d9bbc1b20e8331c6fd24a5aceaeefe102e42a013ac2c00eeb782c34eab997013e0506220c21a44cc58ff5bc83d5e4066c770000000000000000000000000000000000000000000000000000000000000000000000000000000001000000fcffffff00000000"]}, 0xa38) 08:37:12 executing program 4: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) setxattr$security_smack_transmute(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='security.SMACK64TRANSMUTE\x00', &(0x7f0000000140)='TRUE', 0x4, 0x2) getresgid(&(0x7f0000000880)=0x0, &(0x7f00000008c0), &(0x7f0000000300)) getsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0x10, &(0x7f0000000500)={{{@in6, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@empty}, 0x0, @in6=@local}}, &(0x7f0000000340)=0xe8) mount$9p_xen(&(0x7f0000000180)='cgroup-!:/selfvmnet1wlan0\x00', &(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='9p\x00', 0x800, &(0x7f0000000600)={'trans=xen,', {[{@uname={'uname', 0x3d, 'mem\x00\x00\x00\x00\x00\x00\a\x13'}}, {@nodevmap='nodevmap'}, {@dfltuid={'dfltuid', 0x3d, 0xee00}}, {@msize={'msize', 0x3d, 0x10001}}, {@aname={'aname', 0x3d, 'security.SMACK64TRANSMUTE\x00'}}, {@dfltgid={'dfltgid', 0x3d, r1}}], [{@mask={'mask', 0x3d, 'MAY_WRITE'}}, {@smackfsdef={'smackfsdef', 0x3d, 'devtmpfs\x00'}}, {@fsname={'fsname', 0x3d, ']wlan0)'}}, {@uid_gt={'uid>', r2}}, {@defcontext={'defcontext', 0x3d, 'system_u'}}, {@pcr={'pcr', 0x3d, 0xd}}, {@context={'context', 0x3d, 'sysadm_u'}}, {@permit_directio='permit_directio'}]}}) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r0, 0x2000) 08:37:12 executing program 5 (fault-call:6 fault-nth:44): mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x1000000000) mremap(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0x0, 0x0, 0x0) 08:37:12 executing program 2: r0 = syz_open_dev$dspn(&(0x7f00000000c0)='/dev/dsp#\x00', 0x9, 0x2000) ioctl$TIOCSTI(r0, 0x5412, 0x7ff) ioctl$BLKPG(r0, 0x1269, &(0x7f00000001c0)={0x2, 0x7ff, 0x64, &(0x7f0000000140)="c848e3f7a116b7d5aaacbe6e829773a95bb125acc1ccb3f9ea392ee4231ad0bb9d63ab5f3939c4d2e4d94b860542ab2fbc2a3bcac16fa3ed869073756a4f8f20eaeef37960a227e5fac11e471c907239e91650a37a5db9d09500e0daecc8b1b372cc618c"}) mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000100)='mqueue\x00', 0x0, 0x0) name_to_handle_at(r0, &(0x7f00000003c0)='./file0\x00', &(0x7f0000000400)={0xcd, 0x84, "2f246a02999a30e6f46b039e301b9454f98c0cb42b2f2d4221fcfb98cf98dc8899488caef25ba9182c0364f91f6b2b9abb9494f16324935d72aeff11dff16ec661d71f1b63d606a3712b244a5c926f8ed35f7794cae05a33071f4a66b64c5b42b466a98710330f69943f281b27754b986861a32df0af29baf2caef5c7334c7368db8b0fd537159d1aa33f1b6edbc96e5723d6898eec6d175ce3f8446b8787d3abe4ff87c2ac190346af69ca2fa3ff6439c91a1981a62d31609f9ae9946995b72bcae9189ff"}, &(0x7f0000000500), 0x400) chdir(&(0x7f0000000080)='./file0\x00') ioctl$VT_GETSTATE(r0, 0x5603, &(0x7f0000000200)={0x0, 0x7fff, 0x1}) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r0, 0x10e, 0x4, &(0x7f0000000380)=0x10001, 0x4) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0) madvise(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xb) [ 513.505240] ebt_among: dst integrity fail: 3cd 08:37:12 executing program 0: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) lgetxattr(&(0x7f0000000100)='./file0\x00', &(0x7f0000000140)=@known='system.posix_acl_default\x00', &(0x7f0000000500)=""/4096, 0x1000) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(r0, 0x40106614, &(0x7f00000000c0)={0x0, @aes256}) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f0000000000)="11dca50d5e0bcfe47bf070") mremap(&(0x7f0000ffd000/0x3000)=nil, 0x2000, 0x1002, 0x3, &(0x7f0000ffa000/0x1000)=nil) [ 513.526857] 9pnet: Could not find request transport: xen [ 513.541188] x86/PAT: syz-executor.5:19409 freeing invalid memtype [mem 0x1000001000-0x1000001fff] [ 513.563860] 9pnet: Could not find request transport: xen [ 513.571664] FAULT_INJECTION: forcing a failure. [ 513.571664] name failslab, interval 1, probability 0, space 0, times 0 [ 513.609737] CPU: 1 PID: 19409 Comm: syz-executor.5 Not tainted 4.19.64 #38 [ 513.616773] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 08:37:12 executing program 4: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = socket$inet6_sctp(0xa, 0x1, 0x84) getsockname(r0, &(0x7f00000000c0)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @multicast1}}}, &(0x7f0000000140)=0x80) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(r0, 0x84, 0x6c, &(0x7f0000000180)={0x0, 0x20, "5a901adce8d4810e5a485ffa98f7f51ecae5694e86d9758fdcc766080d982fd5"}, &(0x7f00000001c0)=0x28) getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(r1, 0x84, 0x73, &(0x7f0000000200)={r2, 0x9, 0x10, 0x5}, &(0x7f0000000240)=0x18) r3 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/qat_adf_ctl\x00', 0x20000, 0x0) ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r3, 0xc01064b5, &(0x7f0000000340)={&(0x7f0000000300)=[0x0, 0x0, 0x0, 0x0, 0x0], 0x5}) r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r4, 0x2000) [ 513.626142] Call Trace: [ 513.628756] dump_stack+0x172/0x1f0 [ 513.632407] should_fail.cold+0xa/0x1b [ 513.636313] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 513.641434] ? lock_downgrade+0x810/0x810 [ 513.645605] __should_failslab+0x121/0x190 [ 513.649884] should_failslab+0x9/0x14 [ 513.653700] kmem_cache_alloc+0x2ae/0x700 [ 513.657860] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 513.662887] ? __vm_enough_memory+0x324/0x5a0 [ 513.667405] vm_area_dup+0x21/0x170 [ 513.671052] copy_process.part.0+0x3407/0x7a30 08:37:13 executing program 1: mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f0000000040)={0x0, 0x80000, r0}) ioctl$DRM_IOCTL_GEM_FLINK(r0, 0xc008640a, &(0x7f00000000c0)={0x0, 0x0}) ioctl$DRM_IOCTL_GEM_FLINK(r0, 0xc008640a, &(0x7f0000000100)={r1, r2}) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r0, 0x0) 08:37:13 executing program 0: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) r0 = syz_open_dev$audion(&(0x7f00000000c0)='/dev/audio#\x00', 0x826, 0x400000) getsockopt$inet_sctp6_SCTP_DISABLE_FRAGMENTS(r0, 0x84, 0x8, &(0x7f0000000100), &(0x7f0000000140)=0x4) chdir(&(0x7f0000000080)='./file0\x00') r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r1, 0x0) r2 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r2, 0x1000008912, &(0x7f0000000000)="11dca50d5e0bcfe47bf070") mremap(&(0x7f0000ffd000/0x3000)=nil, 0x2000, 0x1002, 0x3, &(0x7f0000ffa000/0x1000)=nil) [ 513.675678] ? __cleanup_sighand+0x70/0x70 [ 513.679948] ? lock_downgrade+0x810/0x810 [ 513.684140] ? kasan_check_write+0x14/0x20 [ 513.688392] ? __mutex_unlock_slowpath+0xf8/0x6b0 [ 513.693252] _do_fork+0x257/0xfd0 [ 513.696724] ? fork_idle+0x1d0/0x1d0 [ 513.700456] ? fput+0x128/0x1a0 [ 513.703761] ? ksys_write+0x1f1/0x2d0 [ 513.707573] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 513.712355] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 513.717124] ? do_syscall_64+0x26/0x620 [ 513.721121] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 513.726487] ? do_syscall_64+0x26/0x620 [ 513.730462] __x64_sys_clone+0xbf/0x150 [ 513.734425] do_syscall_64+0xfd/0x620 [ 513.738226] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 513.743411] RIP: 0033:0x459829 [ 513.746595] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 513.765492] RSP: 002b:00007f6d217bfc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 08:37:13 executing program 2: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) ioctl$SNDRV_TIMER_IOCTL_STATUS(r0, 0x80605414, &(0x7f00000000c0)=""/245) madvise(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xb) 08:37:13 executing program 3: r0 = socket(0x2, 0x1, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) setsockopt$EBT_SO_SET_ENTRIES(r0, 0xa00000000000000, 0x80, &(0x7f00000000c0)=@broute={'broute\x00\x00\x02\x00', 0x20, 0x1, 0x9c0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000e00], 0x0, 0x0, &(0x7f0000000e00)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff010000000b00000000000000000062726964676530000000000000000000766c616e300000000000000000000000736974300000000000000000000000007465716c3000000000000000000000000000000000000000000000000180c20000000000000000000000b8080000b808000030090000616d6f6e6700000000000000000000000000000000000000000000000000000018040000000000000c00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000027327243426c7d2d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000a600a9e85725d89818472e65aba21d9bbc1b20e8331c6fd24a5aceaeefe102e42a013ac2c00eeb782c34eab997013e0506220c21a44cc58ff5bc83d5e4066c770000000000000000000000000000000000000000000000000000000000000000000000000000000001000000fcffffff00000000"]}, 0xa38) [ 513.773205] RAX: ffffffffffffffda RBX: 00007f6d217bfc90 RCX: 0000000000459829 [ 513.780468] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 513.787727] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 513.794994] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f6d217c06d4 [ 513.802292] R13: 00000000004bfce6 R14: 00000000004d1998 R15: 0000000000000004 [ 513.829470] x86/PAT: syz-executor.5:19409 freeing invalid memtype [mem 0x1000000000-0x1000000fff] [ 513.837754] ebt_among: dst integrity fail: 3cd [ 513.891900] QAT: Invalid ioctl [ 513.913679] x86/PAT: syz-executor.5:19409 freeing invalid memtype [mem 0x1000002000-0x1000002fff] [ 513.931925] QAT: Invalid ioctl 08:37:13 executing program 3: r0 = socket(0x2, 0x1, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) setsockopt$EBT_SO_SET_ENTRIES(r0, 0xa00000000000000, 0x80, &(0x7f00000000c0)=@broute={'broute\x00\x00\x03\x00', 0x20, 0x1, 0x9c0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000e00], 0x0, 0x0, &(0x7f0000000e00)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff010000000b00000000000000000062726964676530000000000000000000766c616e300000000000000000000000736974300000000000000000000000007465716c3000000000000000000000000000000000000000000000000180c20000000000000000000000b8080000b808000030090000616d6f6e6700000000000000000000000000000000000000000000000000000018040000000000000c00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000027327243426c7d2d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000a600a9e85725d89818472e65aba21d9bbc1b20e8331c6fd24a5aceaeefe102e42a013ac2c00eeb782c34eab997013e0506220c21a44cc58ff5bc83d5e4066c770000000000000000000000000000000000000000000000000000000000000000000000000000000001000000fcffffff00000000"]}, 0xa38) 08:37:13 executing program 4: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) r0 = syz_open_dev$media(&(0x7f00000000c0)='/dev/media#\x00', 0x7, 0x80) ioctl$VIDIOC_EXPBUF(r0, 0xc0405610, &(0x7f0000000100)={0x6, 0x8000, 0x23, 0x80800, r0}) chdir(&(0x7f0000000080)='./file0\x00') r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r1, 0x2000) write$P9_RLOCK(r0, &(0x7f0000000140)={0x8, 0x35, 0x1, 0x3}, 0x8) 08:37:13 executing program 2: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/sequencer2\x00', 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x8000, 0x3) acct(0x0) chroot(&(0x7f0000000200)='./file0\x00') syz_open_dev$dmmidi(&(0x7f00000002c0)='/dev/dmmidi#\x00', 0x7, 0xf4872ad332ebf88) openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f00000001c0)='/selinux/commit_pending_bools\x00', 0x1, 0x0) open(&(0x7f0000000100)='./file0\x00', 0xa00, 0x45) r1 = openat$cgroup_ro(r0, &(0x7f0000000340)='cpuacct.usage_perUVY}', 0x275a, 0x0) mmap(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0x0, 0x12, r1, 0x0) madvise(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0xb) [ 514.068328] ebt_among: dst integrity fail: 3cd 08:37:13 executing program 1: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xfffffffffffffffc, 0x110, r0, 0x8000000003) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r0, 0x0) 08:37:13 executing program 5 (fault-call:6 fault-nth:45): mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x1000000000) mremap(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0x0, 0x0, 0x0) 08:37:13 executing program 0: pipe2(&(0x7f0000000140)={0xffffffffffffffff}, 0x800) r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x1, 0x0) lstat(&(0x7f0000000340)='./file0\x00', &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0}) mount$9p_fd(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='9p\x00', 0x80000, &(0x7f00000002c0)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_loose='cache=loose'}], [{@pcr={'pcr', 0x3d, 0x7}}, {@fowner_eq={'fowner', 0x3d, r2}}]}}) mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r3, 0x0) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r3, 0x0) r4 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r4, 0x1000008912, &(0x7f0000000000)="11dca50d5e0bcfe47bf070") mremap(&(0x7f0000ffd000/0x3000)=nil, 0x2000, 0x1002, 0x3, &(0x7f0000ffa000/0x1000)=nil) 08:37:13 executing program 3: r0 = socket(0x2, 0x1, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) setsockopt$EBT_SO_SET_ENTRIES(r0, 0xa00000000000000, 0x80, &(0x7f00000000c0)=@broute={'broute\x00\x00\x04\x00', 0x20, 0x1, 0x9c0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000e00], 0x0, 0x0, &(0x7f0000000e00)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff010000000b00000000000000000062726964676530000000000000000000766c616e300000000000000000000000736974300000000000000000000000007465716c3000000000000000000000000000000000000000000000000180c20000000000000000000000b8080000b808000030090000616d6f6e6700000000000000000000000000000000000000000000000000000018040000000000000c00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000027327243426c7d2d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000a600a9e85725d89818472e65aba21d9bbc1b20e8331c6fd24a5aceaeefe102e42a013ac2c00eeb782c34eab997013e0506220c21a44cc58ff5bc83d5e4066c770000000000000000000000000000000000000000000000000000000000000000000000000000000001000000fcffffff00000000"]}, 0xa38) 08:37:13 executing program 4: mkdir(&(0x7f00000000c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) ioctl$PERF_EVENT_IOC_QUERY_BPF(r0, 0xc008240a, &(0x7f00000005c0)=ANY=[@ANYBLOB="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"]) lsetxattr$security_smack_entry(&(0x7f0000000040)='./file0\x00', &(0x7f0000000100)='security.SMACK64IPIN\x00', &(0x7f0000000140)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x102, 0x2) setxattr$trusted_overlay_opaque(&(0x7f0000000500)='./file0\x00', &(0x7f0000000540)='trusted.overlay.opaque\x00', &(0x7f0000000580)='y\x00', 0x2, 0x1) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r0, 0x2000) 08:37:13 executing program 2: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) getsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0x10, &(0x7f0000000140)={{{@in6=@remote, @in6=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@local}, 0x0, @in6=@local}}, &(0x7f0000000240)=0xe8) getsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f00000002c0)={{{@in6=@dev, @in6=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@loopback}, 0x0, @in6=@initdev}}, &(0x7f0000000500)=0xe8) r3 = getuid() getsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000540)={{{@in, @in6=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@multicast1}, 0x0, @in6=@mcast2}}, &(0x7f0000000640)=0xe8) fstat(r0, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) r6 = getgid() r7 = getegid() getresgid(&(0x7f0000000700), &(0x7f0000000740), &(0x7f0000000780)=0x0) getgroups(0x1, &(0x7f00000007c0)=[0x0]) r10 = getegid() setxattr$system_posix_acl(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='system.posix_acl_access\x00', &(0x7f0000000800)=ANY=[@ANYBLOB="02000000010005000000000002000200", @ANYRES32=r1, @ANYBLOB="0efffef6", @ANYRES32=r2, @ANYBLOB="02000000", @ANYRES32=r3, @ANYBLOB="02000400", @ANYRES32=r4, @ANYBLOB="040005000000ddf708000300", @ANYRES32=r5, @ANYBLOB='\b\x00\a\x00', @ANYRES32=r6, @ANYBLOB='\b\x00\a\x00', @ANYRES32=r7, @ANYBLOB="08000600", @ANYRES32=r8, @ANYBLOB="08000200", @ANYRES32=r9, @ANYBLOB="08000400", @ANYRES32=r10, @ANYBLOB="10000200000000002000020000000000"], 0x74, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) madvise(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xb) [ 514.259989] ebt_among: dst integrity fail: 3cd [ 514.297973] x86/PAT: syz-executor.5:19793 freeing invalid memtype [mem 0x1000001000-0x1000001fff] 08:37:13 executing program 3: r0 = socket(0x2, 0x1, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) setsockopt$EBT_SO_SET_ENTRIES(r0, 0xa00000000000000, 0x80, &(0x7f00000000c0)=@broute={'broute\x00\x00\x05\x00', 0x20, 0x1, 0x9c0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000e00], 0x0, 0x0, &(0x7f0000000e00)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff010000000b00000000000000000062726964676530000000000000000000766c616e300000000000000000000000736974300000000000000000000000007465716c3000000000000000000000000000000000000000000000000180c20000000000000000000000b8080000b808000030090000616d6f6e6700000000000000000000000000000000000000000000000000000018040000000000000c00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000027327243426c7d2d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000a600a9e85725d89818472e65aba21d9bbc1b20e8331c6fd24a5aceaeefe102e42a013ac2c00eeb782c34eab997013e0506220c21a44cc58ff5bc83d5e4066c770000000000000000000000000000000000000000000000000000000000000000000000000000000001000000fcffffff00000000"]}, 0xa38) [ 514.347299] FAULT_INJECTION: forcing a failure. [ 514.347299] name failslab, interval 1, probability 0, space 0, times 0 [ 514.387420] CPU: 0 PID: 19793 Comm: syz-executor.5 Not tainted 4.19.64 #38 08:37:13 executing program 1: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) mmap$binder(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x1, 0x11, r0, 0x0) [ 514.394466] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 514.403819] Call Trace: [ 514.403848] dump_stack+0x172/0x1f0 [ 514.403873] should_fail.cold+0xa/0x1b [ 514.403897] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 514.419096] ? lock_downgrade+0x810/0x810 [ 514.423269] __should_failslab+0x121/0x190 [ 514.427523] should_failslab+0x9/0x14 [ 514.431346] kmem_cache_alloc+0x2ae/0x700 [ 514.435537] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 514.441111] ptlock_alloc+0x20/0x70 [ 514.444774] pte_alloc_one+0x6d/0x1a0 08:37:13 executing program 3: r0 = socket(0x2, 0x1, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) setsockopt$EBT_SO_SET_ENTRIES(r0, 0xa00000000000000, 0x80, &(0x7f00000000c0)=@broute={'broute\x00\x00\x06\x00', 0x20, 0x1, 0x9c0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000e00], 0x0, 0x0, &(0x7f0000000e00)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff010000000b00000000000000000062726964676530000000000000000000766c616e300000000000000000000000736974300000000000000000000000007465716c3000000000000000000000000000000000000000000000000180c20000000000000000000000b8080000b808000030090000616d6f6e6700000000000000000000000000000000000000000000000000000018040000000000000c00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000027327243426c7d2d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000a600a9e85725d89818472e65aba21d9bbc1b20e8331c6fd24a5aceaeefe102e42a013ac2c00eeb782c34eab997013e0506220c21a44cc58ff5bc83d5e4066c770000000000000000000000000000000000000000000000000000000000000000000000000000000001000000fcffffff00000000"]}, 0xa38) 08:37:13 executing program 2: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = dup(0xffffffffffffffff) ioctl$KVM_PPC_ALLOCATE_HTAB(r0, 0xc004aea7, &(0x7f0000000140)=0x4) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0) madvise(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xb) [ 514.448586] __pte_alloc+0x2a/0x360 [ 514.452737] copy_page_range+0x151f/0x1f90 [ 514.456982] ? anon_vma_fork+0x371/0x4a0 [ 514.461080] ? pmd_alloc+0x180/0x180 [ 514.464805] ? __vma_link_rb+0x279/0x370 [ 514.468887] copy_process.part.0+0x543d/0x7a30 [ 514.473510] ? __cleanup_sighand+0x70/0x70 [ 514.477761] ? lock_downgrade+0x810/0x810 [ 514.481927] ? kasan_check_write+0x14/0x20 [ 514.486174] ? __mutex_unlock_slowpath+0xf8/0x6b0 [ 514.491060] _do_fork+0x257/0xfd0 [ 514.494534] ? fork_idle+0x1d0/0x1d0 08:37:13 executing program 3: r0 = socket(0x2, 0x1, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) setsockopt$EBT_SO_SET_ENTRIES(r0, 0xa00000000000000, 0x80, &(0x7f00000000c0)=@broute={'broute\x00\x00\a\x00', 0x20, 0x1, 0x9c0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000e00], 0x0, 0x0, &(0x7f0000000e00)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff010000000b00000000000000000062726964676530000000000000000000766c616e300000000000000000000000736974300000000000000000000000007465716c3000000000000000000000000000000000000000000000000180c20000000000000000000000b8080000b808000030090000616d6f6e6700000000000000000000000000000000000000000000000000000018040000000000000c00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000027327243426c7d2d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000a600a9e85725d89818472e65aba21d9bbc1b20e8331c6fd24a5aceaeefe102e42a013ac2c00eeb782c34eab997013e0506220c21a44cc58ff5bc83d5e4066c770000000000000000000000000000000000000000000000000000000000000000000000000000000001000000fcffffff00000000"]}, 0xa38) [ 514.498255] ? fput+0x128/0x1a0 [ 514.501545] ? ksys_write+0x1f1/0x2d0 [ 514.505390] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 514.510166] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 514.514946] ? do_syscall_64+0x26/0x620 [ 514.518951] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 514.524365] ? do_syscall_64+0x26/0x620 [ 514.528413] __x64_sys_clone+0xbf/0x150 [ 514.532402] do_syscall_64+0xfd/0x620 [ 514.536229] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 514.541428] RIP: 0033:0x459829 [ 514.541445] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 514.541453] RSP: 002b:00007f6d217bfc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 514.541469] RAX: ffffffffffffffda RBX: 00007f6d217bfc90 RCX: 0000000000459829 [ 514.541477] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 514.541491] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 08:37:13 executing program 4: r0 = openat$proc_capi20(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/capi/capi20\x00', 0x2400, 0x0) ioctl$VIDIOC_S_TUNER(r0, 0x4054561e, &(0x7f00000001c0)={0x20, "089545ef71c82c2ccff9dda42b4d0117da8b94aee640275ced90fe7b2a7d6a76", 0x2, 0x80, 0xff, 0xffffffff00000000, 0x8, 0x3, 0x9, 0x9}) r1 = syz_open_dev$usb(&(0x7f0000000140)='/dev/bus/usb/00#/00#\x00', 0x0, 0x4142) splice(r0, &(0x7f0000000100), r1, &(0x7f0000000180), 0x4, 0x5) mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r2 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x0, 0x0) ioctl(r2, 0xffffffffffffffb1, &(0x7f00000000c0)) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r3, 0x2000) 08:37:13 executing program 0: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) setsockopt$inet6_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f00000000c0)={0x20, 0x5, 0xd6c3, 0x40, 0x1}, 0x14) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r0, 0x0) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f0000000000)="11dca50d5e0bcfe47bf070") mremap(&(0x7f0000ffd000/0x3000)=nil, 0x2000, 0x1002, 0x3, &(0x7f0000ffa000/0x1000)=nil) [ 514.563575] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f6d217c06d4 [ 514.563584] R13: 00000000004bfce6 R14: 00000000004d1998 R15: 0000000000000004 [ 514.589247] x86/PAT: syz-executor.5:19793 freeing invalid memtype [mem 0x1000000000-0x1000000fff] [ 514.638412] x86/PAT: syz-executor.5:19793 freeing invalid memtype [mem 0x1000002000-0x1000002fff] 08:37:14 executing program 5 (fault-call:6 fault-nth:46): mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x1000000000) mremap(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0x0, 0x0, 0x0) 08:37:14 executing program 3: r0 = socket(0x2, 0x1, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) setsockopt$EBT_SO_SET_ENTRIES(r0, 0xa00000000000000, 0x80, &(0x7f00000000c0)=@broute={'broute\x00\x00\n\x00', 0x20, 0x1, 0x9c0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000e00], 0x0, 0x0, &(0x7f0000000e00)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff010000000b00000000000000000062726964676530000000000000000000766c616e300000000000000000000000736974300000000000000000000000007465716c3000000000000000000000000000000000000000000000000180c20000000000000000000000b8080000b808000030090000616d6f6e6700000000000000000000000000000000000000000000000000000018040000000000000c00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000027327243426c7d2d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000a600a9e85725d89818472e65aba21d9bbc1b20e8331c6fd24a5aceaeefe102e42a013ac2c00eeb782c34eab997013e0506220c21a44cc58ff5bc83d5e4066c770000000000000000000000000000000000000000000000000000000000000000000000000000000001000000fcffffff00000000"]}, 0xa38) 08:37:14 executing program 2: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x13, r0, 0x0) madvise(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0xb) 08:37:14 executing program 3: r0 = socket(0x2, 0x1, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) setsockopt$EBT_SO_SET_ENTRIES(r0, 0xa00000000000000, 0x80, &(0x7f00000000c0)=@broute={'broute\x00\x00\f\x00', 0x20, 0x1, 0x9c0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000e00], 0x0, 0x0, &(0x7f0000000e00)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff010000000b00000000000000000062726964676530000000000000000000766c616e300000000000000000000000736974300000000000000000000000007465716c3000000000000000000000000000000000000000000000000180c20000000000000000000000b8080000b808000030090000616d6f6e6700000000000000000000000000000000000000000000000000000018040000000000000c00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000027327243426c7d2d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000a600a9e85725d89818472e65aba21d9bbc1b20e8331c6fd24a5aceaeefe102e42a013ac2c00eeb782c34eab997013e0506220c21a44cc58ff5bc83d5e4066c770000000000000000000000000000000000000000000000000000000000000000000000000000000001000000fcffffff00000000"]}, 0xa38) 08:37:14 executing program 1: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r0, 0x0) ioctl$VIDIOC_DV_TIMINGS_CAP(r0, 0xc0905664, &(0x7f00000000c0)={0x0, 0x0, [], @raw_data=[0x8, 0x3, 0x7e2, 0x5b5a, 0x3, 0x2, 0x0, 0x6, 0x10000, 0x5, 0xfffffffffffffffd, 0x8, 0xf9b2, 0x9, 0x8, 0x8, 0x62c4, 0x7, 0x1, 0x31, 0x6, 0x4, 0x5, 0x0, 0x6, 0x2, 0x80000001, 0x5, 0x2, 0x4, 0x0, 0x3]}) 08:37:14 executing program 4: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f0000000800)={{{@in=@remote, @in=@multicast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@ipv4={[], [], @empty}}, 0x0, @in=@initdev}}, &(0x7f0000000900)=0xe8) lsetxattr$security_capability(&(0x7f0000000780)='./file0\x00', &(0x7f00000007c0)='security.capability\x00', &(0x7f0000000940)=@v3={0x3000000, [{0x10001, 0x1}, {0x8}], r0}, 0x18, 0x1) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f00000005c0)={{{@in6=@initdev, @in6=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@remote}, 0x0, @in=@local}}, &(0x7f0000000380)=0xe8) syz_mount_image$msdos(&(0x7f00000000c0)='msdos\x00', &(0x7f0000000100)='./file0\x00', 0x86b, 0x3, &(0x7f0000000200)=[{&(0x7f0000000140)="af6ce7b1c71ad04fc6b25326bc9075683fe5e6693f6cfc6fdf1e8cfc53d73597da94e9112c82616b22dcff0a8efa837fd0ce099680e15a655a752cb14d099f021f7f1c78ed20cc0c1a3a43cff66b17398d1a30dbea7fb90d2a763f1aa54a79bf424fbfeb03df2d6a54616f1dfb6cb4d2a2e8707126a8f39317e724483c244ad3acba68fbc43aacc891bf2b807d64219bb807e35ce5b124aee0a99afbbb43c094b8590d4cf8f0d4224929f9e2780b7673a4151de7", 0xb4, 0xfffffffffffffffe}, {&(0x7f00000002c0)="a5fa3d2bcf2dacb8cb90d12732f77bebf76c7e14a3b6ef7a736286cbf41ee53e2db722457d30ca030cadf64143e571d2fe232f0008d1b7acc569cfaf8c8b21bc3da01084cd5585905ec2bf8be5d976c3bb4819f789f44812ef3791a9abc59181aa86d3b8f51380f10ebe46b17622c52aa1c9280da51af4b6c90db6ce93bc990b89d6d424b0813be85b2cbeed0c76101d", 0x90, 0x8783}, {&(0x7f0000000500)="3efce0bec631af1e92e8f1cc292ef8d918729bc635d3d07d40d1d88f23ea8df65f98e62414f07a7d9ace48d4147cf4ef7c009c1bc2675e0bb5a7df3838a34545935ffbd1e15b0aec943b5c11b27f49e8f3400862730448b78682628ba062dda2e72193725f58ee7664b159fa51d9fa747a128ce6145025a950a4099a77412bb0ba41ef023594df720c22109eef28d3188eeadcdb3873a33d9aa0bd292e7d1e3a4422b015881dd3f538964d", 0xab, 0x7}], 0x801020, &(0x7f00000006c0)={[{@dots='dots'}, {@nodots='nodots'}, {@nodots='nodots'}, {@nodots='nodots'}, {@nodots='nodots'}, {@nodots='nodots'}, {@fat=@time_offset={'time_offset', 0x3d, 0x22c}}, {@dots='dots'}], [{@func={'func', 0x3d, 'MMAP_CHECK'}}, {@fowner_lt={'fowner<', r1}}, {@fsuuid={'fsuuid', 0x3d, {[0x61, 0x0, 0x7f, 0x77, 0x77, 0x30, 0x30, 0x61], 0x2d, [0x67, 0x77, 0x77, 0x39], 0x2d, [0x77, 0x7f, 0x65, 0x77], 0x2d, [0x76, 0x62, 0x33, 0x66], 0x2d, [0x32, 0x0, 0x77, 0x0, 0x74, 0x7f, 0x0, 0x65]}}}]}) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r2, 0x2000) [ 514.872532] x86/PAT: syz-executor.5:20157 freeing invalid memtype [mem 0x1000001000-0x1000001fff] [ 514.936318] FAULT_INJECTION: forcing a failure. [ 514.936318] name failslab, interval 1, probability 0, space 0, times 0 [ 514.973341] CPU: 0 PID: 20204 Comm: syz-executor.5 Not tainted 4.19.64 #38 08:37:14 executing program 2: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = syz_open_dev$amidi(&(0x7f0000000340)='/dev/amidi#\x00', 0x3, 0x0) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000380)=0x554f) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='mem\x00\x00\x00\x00\x00\x00\a\x13\x00\x00\x00\x00\x00\x00', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0) madvise(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xb) ioctl$RTC_WKALM_SET(r1, 0x4028700f, &(0x7f00000001c0)={0x1, 0x0, {0x1, 0x27, 0x8, 0xb, 0x4, 0x1f, 0x5, 0x1}}) ioctl$TIOCSSERIAL(r1, 0x541f, &(0x7f00000003c0)={0x7f, 0x200000000008, 0x200, 0xd99, 0x3, 0x7, 0x1, 0x0, 0x2e, 0xfffffffffffff001, 0x81, 0x0, 0x30b, 0x30000000, &(0x7f00000002c0)=""/77, 0x4100000001, 0xdafd, 0xfffffffffffffffe}) openat$pfkey(0xffffffffffffff9c, &(0x7f0000000200)='/proc/self/net/pfkey\x00', 0x80, 0x0) [ 514.980379] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 514.989738] Call Trace: [ 514.992348] dump_stack+0x172/0x1f0 [ 514.995995] should_fail.cold+0xa/0x1b [ 514.999915] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 515.005030] ? __lock_is_held+0xb6/0x140 [ 515.009101] ? __lock_is_held+0xb6/0x140 [ 515.013182] __should_failslab+0x121/0x190 [ 515.017429] should_failslab+0x9/0x14 [ 515.021236] kmem_cache_alloc+0x47/0x700 [ 515.025328] ? anon_vma_chain_link+0x154/0x1c0 [ 515.029924] anon_vma_clone+0xde/0x480 [ 515.033838] anon_vma_fork+0x8f/0x4a0 [ 515.037643] ? dup_userfaultfd+0x15e/0x6c0 [ 515.041873] ? memcpy+0x46/0x50 [ 515.045163] copy_process.part.0+0x34e5/0x7a30 [ 515.049769] ? __cleanup_sighand+0x70/0x70 [ 515.053999] ? lock_downgrade+0x810/0x810 [ 515.058131] ? kasan_check_write+0x14/0x20 [ 515.062362] ? __mutex_unlock_slowpath+0xf8/0x6b0 [ 515.067205] _do_fork+0x257/0xfd0 [ 515.070646] ? fork_idle+0x1d0/0x1d0 [ 515.074345] ? fput+0x128/0x1a0 [ 515.077608] ? ksys_write+0x1f1/0x2d0 [ 515.081414] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 515.086179] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 515.090928] ? do_syscall_64+0x26/0x620 [ 515.094882] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 515.100237] ? do_syscall_64+0x26/0x620 [ 515.104220] __x64_sys_clone+0xbf/0x150 [ 515.108230] do_syscall_64+0xfd/0x620 [ 515.112022] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 515.117196] RIP: 0033:0x459829 08:37:14 executing program 0: mkdir(&(0x7f0000000180)='./file0\x00', 0x1) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r0, 0x0) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f0000000000)="11dca50d5e0bcfe47bf070") mremap(&(0x7f0000ffd000/0x3000)=nil, 0x2000, 0x1002, 0x3, &(0x7f0000ffa000/0x1000)=nil) ioctl$VIDIOC_S_DV_TIMINGS(r0, 0xc0845657, &(0x7f00000000c0)={0x0, @bt={0xffffffffffffff7f, 0x9, 0x0, 0x3, 0x5, 0x50dc, 0xfffffffffffffff8, 0x4, 0x7fffffff, 0x5, 0x3, 0x3, 0x6, 0x80000001, 0x10, 0x8}}) socket$l2tp(0x18, 0x1, 0x1) 08:37:14 executing program 3: r0 = socket(0x2, 0x1, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) setsockopt$EBT_SO_SET_ENTRIES(r0, 0xa00000000000000, 0x80, &(0x7f00000000c0)=@broute={'broute\x00\x00\'\x00', 0x20, 0x1, 0x9c0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000e00], 0x0, 0x0, &(0x7f0000000e00)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff010000000b00000000000000000062726964676530000000000000000000766c616e300000000000000000000000736974300000000000000000000000007465716c3000000000000000000000000000000000000000000000000180c20000000000000000000000b8080000b808000030090000616d6f6e6700000000000000000000000000000000000000000000000000000018040000000000000c00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000027327243426c7d2d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000a600a9e85725d89818472e65aba21d9bbc1b20e8331c6fd24a5aceaeefe102e42a013ac2c00eeb782c34eab997013e0506220c21a44cc58ff5bc83d5e4066c770000000000000000000000000000000000000000000000000000000000000000000000000000000001000000fcffffff00000000"]}, 0xa38) [ 515.120387] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 515.139286] RSP: 002b:00007f6d2179ec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 515.147025] RAX: ffffffffffffffda RBX: 00007f6d2179ec90 RCX: 0000000000459829 [ 515.154335] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 515.161608] RBP: 000000000075bfc8 R08: 0000000000000000 R09: 0000000000000000 [ 515.168872] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f6d2179f6d4 [ 515.176133] R13: 00000000004bfce6 R14: 00000000004d1998 R15: 0000000000000004 08:37:14 executing program 3: r0 = socket(0x2, 0x1, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) setsockopt$EBT_SO_SET_ENTRIES(r0, 0xa00000000000000, 0x80, &(0x7f00000000c0)=@broute={'broute\x00\x00H\x00', 0x20, 0x1, 0x9c0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000e00], 0x0, 0x0, &(0x7f0000000e00)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff010000000b00000000000000000062726964676530000000000000000000766c616e300000000000000000000000736974300000000000000000000000007465716c3000000000000000000000000000000000000000000000000180c20000000000000000000000b8080000b808000030090000616d6f6e6700000000000000000000000000000000000000000000000000000018040000000000000c00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000027327243426c7d2d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000a600a9e85725d89818472e65aba21d9bbc1b20e8331c6fd24a5aceaeefe102e42a013ac2c00eeb782c34eab997013e0506220c21a44cc58ff5bc83d5e4066c770000000000000000000000000000000000000000000000000000000000000000000000000000000001000000fcffffff00000000"]}, 0xa38) 08:37:14 executing program 1: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000000140)={{{@in6=@empty, @in=@broadcast, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@mcast2}, 0x0, @in=@empty}}, &(0x7f0000000240)=0xe8) getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f00000002c0)={{{@in=@remote, @in6=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@local}, 0x0, @in=@multicast1}}, &(0x7f0000000500)=0xe8) mount$overlay(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='overlay\x00', 0xa0000, &(0x7f0000000700)=ANY=[@ANYBLOB="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", @ANYRESDEC=r0, @ANYBLOB=',dont_appraise,fscontext=user_u,smackfshat=,euid>', @ANYRESDEC=r1, @ANYBLOB="2c646f6e745f672c9a96dca24ca9e629c6e10561"]) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0x0) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r2, 0x8000000000040000) ioctl$DRM_IOCTL_AGP_ENABLE(r2, 0x40086432, &(0x7f0000000540)) ioctl$sock_bt_cmtp_CMTPGETCONNINFO(r2, 0x800443d3, &(0x7f0000000580)={{0x1, 0x8, 0x8, 0x3f, 0x24}, 0x1, 0x4, 0x2057}) [ 515.322791] x86/PAT: syz-executor.5:20321 freeing invalid memtype [mem 0x1000000000-0x1000000fff] 08:37:14 executing program 5 (fault-call:6 fault-nth:47): mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x1000000000) mremap(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0x0, 0x0, 0x0) [ 515.397413] x86/PAT: syz-executor.5:20321 freeing invalid memtype [mem 0x1000002000-0x1000002fff] 08:37:14 executing program 2: mkdir(&(0x7f00000000c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) madvise(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xb) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f0000000040)={0x9, 0x4, 0x4, 0x9, 0x5, 0x8000, 0x7fff, 0xe01, 0x0}, &(0x7f0000000100)=0x20) setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000140)={r1, 0x80000000}, 0xc) 08:37:14 executing program 0: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r0, 0x0) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f0000000000)="11dca50d5e0bcfe47bf070") mremap(&(0x7f0000ffd000/0x3000)=nil, 0x2000, 0x1002, 0x3, &(0x7f0000ffa000/0x1000)=nil) 08:37:14 executing program 4: r0 = syz_open_dev$midi(&(0x7f0000000180)='/dev/midi#\x00', 0x6, 0x100) setsockopt$inet6_MCAST_MSFILTER(r0, 0x29, 0x30, &(0x7f0000000500)={0x401, {{0xa, 0x4e20, 0xe00000000000, @mcast2, 0x1}}, 0x0, 0x9, [{{0xa, 0x4e20, 0x3, @ipv4={[], [], @dev={0xac, 0x14, 0x14, 0xa}}, 0x1}}, {{0xa, 0x4e21, 0x7c03, @ipv4={[], [], @loopback}, 0x10000}}, {{0xa, 0x4e21, 0x1, @dev={0xfe, 0x80, [], 0x26}, 0x1000}}, {{0xa, 0x4e22, 0x3, @initdev={0xfe, 0x88, [], 0x0, 0x0}, 0x2}}, {{0xa, 0x4e20, 0x100000001, @rand_addr="ba587e4e6cffc1386217e17beb7c0af8", 0x8000}}, {{0xa, 0x4e20, 0x0, @loopback, 0x3f}}, {{0xa, 0x4e20, 0x101, @mcast1, 0x1ff}}, {{0xa, 0x4e21, 0x2, @initdev={0xfe, 0x88, [], 0x0, 0x0}, 0x4}}, {{0xa, 0x4e24, 0x8000, @dev={0xfe, 0x80, [], 0x26}, 0x7}}]}, 0x510) clock_gettime(0x0, &(0x7f0000000200)={0x0, 0x0}) setsockopt$SO_VM_SOCKETS_CONNECT_TIMEOUT(r0, 0x28, 0x6, &(0x7f0000000240)={r1, r2/1000+30000}, 0x10) mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cpuacc\x9c\xeeA%\xd5\xaa\xfbv\x9eu.us\x00\x00\xc0<\xde\x801', 0x275a, 0x0) ppoll(&(0x7f00000000c0)=[{r3, 0x104}, {r3, 0x8}, {r3, 0x400}, {r3, 0x10}, {r3, 0xa494}, {r3, 0xa}, {r3, 0x200}, {r3, 0x106}], 0x8, &(0x7f0000000100)={0x77359400}, &(0x7f0000000140)={0x7}, 0x8) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r3, 0x2000) 08:37:14 executing program 3: r0 = socket(0x2, 0x1, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) setsockopt$EBT_SO_SET_ENTRIES(r0, 0xa00000000000000, 0x80, &(0x7f00000000c0)=@broute={'broute\x00\x00L\x00', 0x20, 0x1, 0x9c0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000e00], 0x0, 0x0, &(0x7f0000000e00)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff010000000b00000000000000000062726964676530000000000000000000766c616e300000000000000000000000736974300000000000000000000000007465716c3000000000000000000000000000000000000000000000000180c20000000000000000000000b8080000b808000030090000616d6f6e6700000000000000000000000000000000000000000000000000000018040000000000000c00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000027327243426c7d2d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000a600a9e85725d89818472e65aba21d9bbc1b20e8331c6fd24a5aceaeefe102e42a013ac2c00eeb782c34eab997013e0506220c21a44cc58ff5bc83d5e4066c770000000000000000000000000000000000000000000000000000000000000000000000000000000001000000fcffffff00000000"]}, 0xa38) [ 515.621214] x86/PAT: syz-executor.5:20509 freeing invalid memtype [mem 0x1000001000-0x1000001fff] [ 515.636283] audit: type=1400 audit(1564994234.957:112): avc: denied { associate } for pid=20510 comm="syz-executor.4" name=6370756163639CEE4125D5AAFB769E752E7573 scontext=unconfined_u:object_r:utempter_exec_t:s0 tcontext=system_u:object_r:device_t:s0 tclass=filesystem permissive=1 08:37:15 executing program 2: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) r0 = syz_open_dev$radio(&(0x7f00000000c0)='/dev/radio#\x00', 0x3, 0x2) bind$unix(r0, &(0x7f0000000180)=@file={0x1, './file0\x00'}, 0x15d) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) syz_genetlink_get_family_id$ipvs(&(0x7f0000000100)='IPVS\x00') chdir(&(0x7f0000000080)='./file0\x00') r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0) fchmodat(r1, &(0x7f0000000140)='./file0\x00', 0x10) madvise(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xb) socket$nl_xfrm(0x10, 0x3, 0x6) [ 515.713039] FAULT_INJECTION: forcing a failure. [ 515.713039] name failslab, interval 1, probability 0, space 0, times 0 [ 515.729090] CPU: 1 PID: 20604 Comm: syz-executor.5 Not tainted 4.19.64 #38 [ 515.736147] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 515.745293] audit: type=1400 audit(1564994234.997:113): avc: denied { map } for pid=20510 comm="syz-executor.4" path=2F726F6F742F73797A6B616C6C65722D746573746469723733313534323733392F73797A6B616C6C65722E44524D5153432F3636342F66696C65302F6370756163639CEE4125D5AAFB769E752E7573 dev="devtmpfs" ino=108048 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:utempter_exec_t:s0 tclass=file permissive=1 [ 515.745596] Call Trace: [ 515.745625] dump_stack+0x172/0x1f0 [ 515.745649] should_fail.cold+0xa/0x1b [ 515.794006] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 515.799123] ? __lock_is_held+0xb6/0x140 [ 515.803204] __should_failslab+0x121/0x190 [ 515.807447] should_failslab+0x9/0x14 08:37:15 executing program 4: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = syz_open_dev$vcsa(&(0x7f00000000c0)='/dev/vcsa#\x00', 0x2, 0x4000) getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000100)={0x0, 0x0, 0x6, [0x5, 0x8, 0x7fff, 0x40, 0x7, 0x10000]}, &(0x7f0000000140)=0x14) setsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f0000000180)={0xfeb, 0xffff, 0x200, 0x100000000, 0x4, 0x8, 0x1, 0x1, r1}, 0x20) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r2, 0x2000) 08:37:15 executing program 3: r0 = socket(0x2, 0x1, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) setsockopt$EBT_SO_SET_ENTRIES(r0, 0xa00000000000000, 0x80, &(0x7f00000000c0)=@broute={'broute\x00\x00`\x00', 0x20, 0x1, 0x9c0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000e00], 0x0, 0x0, &(0x7f0000000e00)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff010000000b00000000000000000062726964676530000000000000000000766c616e300000000000000000000000736974300000000000000000000000007465716c3000000000000000000000000000000000000000000000000180c20000000000000000000000b8080000b808000030090000616d6f6e6700000000000000000000000000000000000000000000000000000018040000000000000c00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000027327243426c7d2d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000a600a9e85725d89818472e65aba21d9bbc1b20e8331c6fd24a5aceaeefe102e42a013ac2c00eeb782c34eab997013e0506220c21a44cc58ff5bc83d5e4066c770000000000000000000000000000000000000000000000000000000000000000000000000000000001000000fcffffff00000000"]}, 0xa38) 08:37:15 executing program 0: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) openat$full(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/full\x00', 0x2, 0x0) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r0, 0xfffffffffffffffd) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f0000000000)="11dca50d5e0bcfe47bf070") mremap(&(0x7f0000ffd000/0x3000)=nil, 0x2000, 0x1002, 0x3, &(0x7f0000ffa000/0x1000)=nil) [ 515.807463] kmem_cache_alloc+0x47/0x700 [ 515.807481] ? anon_vma_chain_link+0x154/0x1c0 [ 515.807505] anon_vma_clone+0xde/0x480 [ 515.815360] anon_vma_fork+0x8f/0x4a0 [ 515.815376] ? dup_userfaultfd+0x15e/0x6c0 [ 515.815389] ? memcpy+0x46/0x50 [ 515.815409] copy_process.part.0+0x34e5/0x7a30 [ 515.839754] ? __cleanup_sighand+0x70/0x70 [ 515.844016] ? lock_downgrade+0x810/0x810 [ 515.848193] ? kasan_check_write+0x14/0x20 [ 515.852443] ? __mutex_unlock_slowpath+0xf8/0x6b0 [ 515.857302] _do_fork+0x257/0xfd0 08:37:15 executing program 3: r0 = socket(0x2, 0x1, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) setsockopt$EBT_SO_SET_ENTRIES(r0, 0xa00000000000000, 0x80, &(0x7f00000000c0)=@broute={'broute\x00\x00h\x00', 0x20, 0x1, 0x9c0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000e00], 0x0, 0x0, &(0x7f0000000e00)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff010000000b00000000000000000062726964676530000000000000000000766c616e300000000000000000000000736974300000000000000000000000007465716c3000000000000000000000000000000000000000000000000180c20000000000000000000000b8080000b808000030090000616d6f6e6700000000000000000000000000000000000000000000000000000018040000000000000c00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000027327243426c7d2d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000a600a9e85725d89818472e65aba21d9bbc1b20e8331c6fd24a5aceaeefe102e42a013ac2c00eeb782c34eab997013e0506220c21a44cc58ff5bc83d5e4066c770000000000000000000000000000000000000000000000000000000000000000000000000000000001000000fcffffff00000000"]}, 0xa38) 08:37:15 executing program 3: r0 = socket(0x2, 0x1, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) setsockopt$EBT_SO_SET_ENTRIES(r0, 0xa00000000000000, 0x80, &(0x7f00000000c0)=@broute={'broute\x00\x00l\x00', 0x20, 0x1, 0x9c0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000e00], 0x0, 0x0, &(0x7f0000000e00)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff010000000b00000000000000000062726964676530000000000000000000766c616e300000000000000000000000736974300000000000000000000000007465716c3000000000000000000000000000000000000000000000000180c20000000000000000000000b8080000b808000030090000616d6f6e6700000000000000000000000000000000000000000000000000000018040000000000000c00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000027327243426c7d2d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000a600a9e85725d89818472e65aba21d9bbc1b20e8331c6fd24a5aceaeefe102e42a013ac2c00eeb782c34eab997013e0506220c21a44cc58ff5bc83d5e4066c770000000000000000000000000000000000000000000000000000000000000000000000000000000001000000fcffffff00000000"]}, 0xa38) [ 515.860774] ? fork_idle+0x1d0/0x1d0 [ 515.864508] ? fput+0x128/0x1a0 [ 515.867803] ? ksys_write+0x1f1/0x2d0 [ 515.871641] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 515.876408] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 515.881190] ? do_syscall_64+0x26/0x620 [ 515.885180] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 515.890559] ? do_syscall_64+0x26/0x620 [ 515.894553] __x64_sys_clone+0xbf/0x150 [ 515.898545] do_syscall_64+0xfd/0x620 [ 515.902362] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 515.907559] RIP: 0033:0x459829 [ 515.910765] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 515.929673] RSP: 002b:00007f6d2179ec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 515.937394] RAX: ffffffffffffffda RBX: 00007f6d2179ec90 RCX: 0000000000459829 [ 515.944670] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 515.951941] RBP: 000000000075bfc8 R08: 0000000000000000 R09: 0000000000000000 08:37:15 executing program 1: mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) r0 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x80, 0x0) setsockopt$RXRPC_MIN_SECURITY_LEVEL(r0, 0x110, 0x4, &(0x7f0000000240)=0x1, 0x4) chdir(&(0x7f0000000080)='./file0\x00') r1 = openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/autofs\x00', 0x181000, 0x0) ioctl$SG_GET_REQUEST_TABLE(r1, 0x2286, &(0x7f00000003c0)) getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(0xffffffffffffffff, 0x84, 0x66, &(0x7f0000000040)={0x0, 0x1}, &(0x7f00000000c0)=0x8) getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000200)=ANY=[@ANYRES32=r2, @ANYBLOB="06972ea700052a7e00000000000100f1c3"], &(0x7f0000000140)=0x12) r3 = syz_open_dev$usbmon(&(0x7f0000000180)='/dev/usbmon#\x00', 0x2, 0x501c00) ioctl$EVIOCGMTSLOTS(r3, 0x8040450a, &(0x7f00000002c0)=""/244) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, 0xffffffffffffffff, 0x0) [ 515.959223] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f6d2179f6d4 [ 515.966477] R13: 00000000004bfce6 R14: 00000000004d1998 R15: 0000000000000004 [ 516.001622] x86/PAT: syz-executor.5:20712 freeing invalid memtype [mem 0x1000000000-0x1000000fff] 08:37:15 executing program 5 (fault-call:6 fault-nth:48): mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x1000000000) mremap(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0x0, 0x0, 0x0) 08:37:15 executing program 3: r0 = socket(0x2, 0x1, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) setsockopt$EBT_SO_SET_ENTRIES(r0, 0xa00000000000000, 0x80, &(0x7f00000000c0)=@broute={'broute\x00\x00t\x00', 0x20, 0x1, 0x9c0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000e00], 0x0, 0x0, &(0x7f0000000e00)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff010000000b00000000000000000062726964676530000000000000000000766c616e300000000000000000000000736974300000000000000000000000007465716c3000000000000000000000000000000000000000000000000180c20000000000000000000000b8080000b808000030090000616d6f6e6700000000000000000000000000000000000000000000000000000018040000000000000c00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000027327243426c7d2d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000a600a9e85725d89818472e65aba21d9bbc1b20e8331c6fd24a5aceaeefe102e42a013ac2c00eeb782c34eab997013e0506220c21a44cc58ff5bc83d5e4066c770000000000000000000000000000000000000000000000000000000000000000000000000000000001000000fcffffff00000000"]}, 0xa38) 08:37:15 executing program 2: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) r0 = openat$selinux_mls(0xffffffffffffff9c, &(0x7f0000000180)='/selinux/mls\x00', 0x0, 0x0) fstat(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0}) getresgid(&(0x7f0000000240), &(0x7f00000002c0)=0x0, &(0x7f0000000300)) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f0000000600)={{{@in6=@dev, @in=@dev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@mcast2}, 0x0, @in=@dev}}, &(0x7f0000000380)=0xe8) mount$fuse(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='fuse\x00', 0x920006, &(0x7f0000000700)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xa000}, 0x2c, {'user_id', 0x3d, r1}, 0x2c, {'group_id', 0x3d, r2}, 0x2c, {[{@blksize={'blksize', 0x3d, 0x1800}}, {@default_permissions='default_permissions'}], [{@uid_lt={'uid<'}}, {@uid_eq={'uid', 0x3d, r3}}, {@fsname={'fsname', 0x3d, 'self%vboxnet0'}}, {@hash='hash'}, {@rootcontext={'rootcontext', 0x3d, 'unconfined_u'}}, {@pcr={'pcr', 0x3d, 0x9}}, {@dont_hash='dont_hash'}]}}) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) r5 = inotify_add_watch(r4, &(0x7f00000000c0)='./file0\x00', 0x7d8fc6912e9d47b2) getsockopt$inet_sctp6_SCTP_NODELAY(r0, 0x84, 0x3, &(0x7f0000000340), &(0x7f0000000580)=0x4) inotify_rm_watch(r4, r5) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r4, 0x0) r6 = ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, r6) flistxattr(r4, &(0x7f0000000500)=""/78, 0x4e) close(r4) madvise(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x1c) syz_mount_image$bfs(&(0x7f0000000840)='bfs\x00', &(0x7f0000000880)='./file0\x00', 0x401, 0x7, &(0x7f0000000cc0)=[{&(0x7f00000008c0)="dbfaa139dbc72bc033ff5cbde78ed004a7a0f77e03170bab57788de1c2bf2bbfa0ee4ccaa3a341d3256896aafd46fe932cf6b20edf0e3b4ccdd4176f7b95b7564c804e4fb4cf58865de4351cc33a9b3f1211c9586bd9ae3bbd", 0x59}, {&(0x7f0000000940)="5ba3253b927fc1b8279c7e6182434b5c96bc962a6d0c60b1a850d572489a2876781b3c4abe99533ac24975c4d568fb9b192a41c525b40db61ee343580cf6735e32d9490ad63887c62c2cbe9530b7283bd91c78b9f2a14ac086e64e7b474f46a847df577a17f92eee874db3fef1f4c6ae736057a09af0cf8b50e4f86e5e26996c91a84099519b079fd683a8248f06b5b7efeaa2d2cc189da2710085f21a272a4cf2129205bb6f60205c4a7dc8998f03c008c1444a8b4f2bf496bdc35922e8e65268d0ec88a2489b24bddfca542811afbcd69197b700c8abfda4", 0xd9, 0x909}, {&(0x7f0000000a40), 0x0, 0x81}, {&(0x7f0000000a80)="f86f493ce7662b5d765e1597854495f0fd091570b4dfdddd2044e484a5f9b41821da1e1aa4a1dbb670f99a14b578e84b27fd9a0d33576241de825f3c5608c59252", 0x41, 0x6}, {&(0x7f0000000b00)="259bf322e8514d4a734409fd2911d92e43a467c368651d5e727e74709b2f536a722aed071122a3628f56a462a90dc2ff1f1aa1d535b7367053f462fd38d5edd5955c3cb523130eb792bda24f5e1775a6800c099172fd9f2d6278f11e7a486003137817660be9622b8e2b5bf1f9c384d5d90dc40b25c0e5e01db9b2493881dc", 0x7f, 0x8001}, {&(0x7f0000000b80)="4fb9df86c2dffc46f8bbf6532fe08e77e58e7b3d40e33d6dd001d94df9269aed8b7ecf81483e382c1fadd0b215f1fe7e3ed991b3737764e2c282221b30a6f064c618c92436899f0625a11e4997e1027c7ecd0ebd10ab5de0f42bf03cfc33da77d74d9abe08f06b7e5ab2cdbf7c4c23e6922590c704e666414f1acf2c116d7740270ae03a92d762564e7d2151061d6e11840e831b0ff369", 0x97, 0x101}, {&(0x7f0000000c40)="a95957cf13c06ae5e934e315a3908325a5dbb23b1e3f372f0c7fcb49260a2a7f0b7c6bda19751fab6ee897feff98d8e4208d58bb7a9fdd9a5a8ec22774b556ac23d6d624f8c352373b9a3f4493c97f92e2b766350e727c767723cd4bf1743c2c2f6361f9288ffbf3615b6524507d3aa18c166753e619", 0x76, 0x200}], 0x0, 0x0) ioctl$TUNSETVNETLE(r4, 0x400454dc, &(0x7f00000005c0)=0x1) [ 516.099416] x86/PAT: syz-executor.5:20712 freeing invalid memtype [mem 0x1000002000-0x1000002fff] 08:37:15 executing program 3: r0 = socket(0x2, 0x1, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) setsockopt$EBT_SO_SET_ENTRIES(r0, 0xa00000000000000, 0x80, &(0x7f00000000c0)=@broute={'broute\x00\x00z\x00', 0x20, 0x1, 0x9c0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000e00], 0x0, 0x0, &(0x7f0000000e00)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff010000000b00000000000000000062726964676530000000000000000000766c616e300000000000000000000000736974300000000000000000000000007465716c3000000000000000000000000000000000000000000000000180c20000000000000000000000b8080000b808000030090000616d6f6e6700000000000000000000000000000000000000000000000000000018040000000000000c00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000027327243426c7d2d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000a600a9e85725d89818472e65aba21d9bbc1b20e8331c6fd24a5aceaeefe102e42a013ac2c00eeb782c34eab997013e0506220c21a44cc58ff5bc83d5e4066c770000000000000000000000000000000000000000000000000000000000000000000000000000000001000000fcffffff00000000"]}, 0xa38) 08:37:15 executing program 4: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) r0 = openat$autofs(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/autofs\x00', 0x202000, 0x0) r1 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000140)='IPVS\x00') sendmsg$IPVS_CMD_GET_SERVICE(r0, &(0x7f0000000200)={&(0x7f0000000100), 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x40, r1, 0x219, 0x70bd2b, 0x25dfdbfd, {}, [@IPVS_CMD_ATTR_DEST={0x14, 0x2, [@IPVS_DEST_ATTR_ACTIVE_CONNS={0x8, 0x7, 0xb8}, @IPVS_DEST_ATTR_ACTIVE_CONNS={0x8, 0x7, 0x1}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x1}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x5}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x7fff}]}, 0x40}, 0x1, 0x0, 0x0, 0x1}, 0x8000) chdir(&(0x7f0000000080)='./file0\x00') r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r2, 0x0) [ 516.235453] x86/PAT: syz-executor.5:20805 freeing invalid memtype [mem 0x1000001000-0x1000001fff] 08:37:15 executing program 0: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r0, 0x0) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f0000000000)="11dca50d5e0bcfe47bf070") mremap(&(0x7f0000ffd000/0x3000)=nil, 0x2000, 0x1002, 0x3, &(0x7f0000ffa000/0x1000)=nil) 08:37:15 executing program 1: mkdir(&(0x7f0000000080)='./file0\x00', 0x88) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000000c0)='./file0\x00') r0 = syz_open_dev$audion(&(0x7f0000000040)='/dev/audio#\x00', 0xb3, 0x240) getsockopt$inet_sctp6_SCTP_DISABLE_FRAGMENTS(r0, 0x84, 0x8, &(0x7f0000000100), &(0x7f0000000140)=0x4) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r1, 0x0) [ 516.312063] FAULT_INJECTION: forcing a failure. [ 516.312063] name failslab, interval 1, probability 0, space 0, times 0 [ 516.407533] CPU: 0 PID: 20943 Comm: syz-executor.5 Not tainted 4.19.64 #38 [ 516.414583] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 516.423935] Call Trace: [ 516.423963] dump_stack+0x172/0x1f0 [ 516.423987] should_fail.cold+0xa/0x1b [ 516.424010] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 516.424026] ? lock_downgrade+0x810/0x810 [ 516.424057] __should_failslab+0x121/0x190 [ 516.447609] should_failslab+0x9/0x14 [ 516.451420] kmem_cache_alloc+0x2ae/0x700 [ 516.455973] ? anon_vma_clone+0x320/0x480 [ 516.460153] anon_vma_fork+0xfc/0x4a0 [ 516.463979] ? dup_userfaultfd+0x15e/0x6c0 [ 516.472818] ? memcpy+0x46/0x50 [ 516.476113] copy_process.part.0+0x34e5/0x7a30 [ 516.480747] ? __cleanup_sighand+0x70/0x70 [ 516.484988] ? lock_downgrade+0x810/0x810 [ 516.489182] ? kasan_check_write+0x14/0x20 [ 516.493431] ? __mutex_unlock_slowpath+0xf8/0x6b0 [ 516.498291] _do_fork+0x257/0xfd0 [ 516.501774] ? fork_idle+0x1d0/0x1d0 08:37:15 executing program 3: r0 = socket(0x2, 0x1, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) setsockopt$EBT_SO_SET_ENTRIES(r0, 0xa00000000000000, 0x80, &(0x7f00000000c0)=@broute={'broute\x00\x00\x00\x03\x00', 0x20, 0x1, 0x9c0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000e00], 0x0, 0x0, &(0x7f0000000e00)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff010000000b00000000000000000062726964676530000000000000000000766c616e300000000000000000000000736974300000000000000000000000007465716c3000000000000000000000000000000000000000000000000180c20000000000000000000000b8080000b808000030090000616d6f6e6700000000000000000000000000000000000000000000000000000018040000000000000c00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000027327243426c7d2d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000a600a9e85725d89818472e65aba21d9bbc1b20e8331c6fd24a5aceaeefe102e42a013ac2c00eeb782c34eab997013e0506220c21a44cc58ff5bc83d5e4066c770000000000000000000000000000000000000000000000000000000000000000000000000000000001000000fcffffff00000000"]}, 0xa38) 08:37:15 executing program 2: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000200)='bdev\x00\x9cAd\xd2', 0x40443, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ff8000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) madvise(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xb) 08:37:15 executing program 4: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) mount(&(0x7f00000000c0)=@md0='/dev/md0\x00', &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='sysv\x00', 0x800, &(0x7f0000000180)='-md5sum)eth1}\x00') chdir(&(0x7f0000000080)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r0, 0x2000) [ 516.505496] ? fput+0x128/0x1a0 [ 516.508815] ? ksys_write+0x1f1/0x2d0 [ 516.512639] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 516.517411] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 516.522186] ? do_syscall_64+0x26/0x620 [ 516.526168] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 516.531543] ? do_syscall_64+0x26/0x620 [ 516.535538] __x64_sys_clone+0xbf/0x150 [ 516.539537] do_syscall_64+0xfd/0x620 [ 516.543357] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 516.548577] RIP: 0033:0x459829 08:37:15 executing program 3: r0 = socket(0x2, 0x1, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) setsockopt$EBT_SO_SET_ENTRIES(r0, 0xa00000000000000, 0x80, &(0x7f00000000c0)=@broute={'broute\x00\x00\x18\x04\x00', 0x20, 0x1, 0x9c0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000e00], 0x0, 0x0, &(0x7f0000000e00)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff010000000b00000000000000000062726964676530000000000000000000766c616e300000000000000000000000736974300000000000000000000000007465716c3000000000000000000000000000000000000000000000000180c20000000000000000000000b8080000b808000030090000616d6f6e6700000000000000000000000000000000000000000000000000000018040000000000000c00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000027327243426c7d2d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000a600a9e85725d89818472e65aba21d9bbc1b20e8331c6fd24a5aceaeefe102e42a013ac2c00eeb782c34eab997013e0506220c21a44cc58ff5bc83d5e4066c770000000000000000000000000000000000000000000000000000000000000000000000000000000001000000fcffffff00000000"]}, 0xa38) [ 516.551787] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 516.570704] RSP: 002b:00007f6d2179ec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 516.578425] RAX: ffffffffffffffda RBX: 00007f6d2179ec90 RCX: 0000000000459829 [ 516.585698] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 516.592991] RBP: 000000000075bfc8 R08: 0000000000000000 R09: 0000000000000000 [ 516.600264] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f6d2179f6d4 08:37:15 executing program 0: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) setxattr$security_smack_entry(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='security.SMACK64IPIN\x00', &(0x7f0000000140)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x102, 0x1) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r0, 0x0) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f0000000000)="11dca50d5e0bcfe47bf070") mremap(&(0x7f0000ffd000/0x3000)=nil, 0x2000, 0x1002, 0x3, &(0x7f0000ffa000/0x1000)=nil) [ 516.607561] R13: 00000000004bfce6 R14: 00000000004d1998 R15: 0000000000000004 [ 516.704666] x86/PAT: syz-executor.5:20943 freeing invalid memtype [mem 0x1000000000-0x1000000fff] [ 516.750289] x86/PAT: syz-executor.5:20943 freeing invalid memtype [mem 0x1000002000-0x1000002fff] 08:37:16 executing program 5 (fault-call:6 fault-nth:49): mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x1000000000) mremap(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0x0, 0x0, 0x0) 08:37:16 executing program 1: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000300)='/proc/self/net/pfkey\x00', 0x40000, 0x0) getsockopt$inet_sctp6_SCTP_STATUS(0xffffffffffffffff, 0x84, 0xe, &(0x7f0000000500)={0x0, 0x3, 0xb53, 0xc121, 0x5, 0x6, 0x0, 0x46, {0x0, @in={{0x2, 0x4e21, @rand_addr=0x4}}, 0x5, 0x3, 0x290000000000, 0xa3, 0x1}}, &(0x7f0000000340)=0xb0) getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(r0, 0x84, 0x73, &(0x7f0000000380)={r1, 0xfffffffffffffffc, 0x30, 0x9, 0x5}, &(0x7f00000005c0)=0x18) chdir(&(0x7f0000000080)='./file0\x00') r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) lsetxattr$security_smack_transmute(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='security.SMACK64TRANSMUTE\x00', &(0x7f0000000140)='TRUE', 0x4, 0x3) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0xfffffffffffffffc) r3 = getuid() r4 = getuid() stat(&(0x7f0000000680)='./file0\x00', &(0x7f00000006c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) getgroups(0x9, &(0x7f0000000740)=[0xee00, 0x0, 0xffffffffffffffff, 0xee01, 0x0, 0x0, 0xee00, 0xee00, 0xee01]) setsockopt$IPT_SO_SET_REPLACE(r2, 0x0, 0x40, &(0x7f0000000780)=@nat={'nat\x00', 0x1b, 0x5, 0x5d8, 0x3f8, 0x0, 0x2c8, 0x3f8, 0x1d0, 0x540, 0x540, 0x540, 0x540, 0x540, 0x5, &(0x7f0000000600), {[{{@ip={@remote, @empty, 0xffffffff, 0x0, 'bridge_slave_1\x00', 'tunl0\x00', {}, {0xff}, 0x7f, 0x1, 0x60}, 0x0, 0x198, 0x1d0, 0x0, {}, [@common=@unspec=@conntrack1={0xc0, 'conntrack\x00', 0x1, {{@ipv6=@loopback, [0xffffff00, 0x0, 0xff000000, 0xff000000], @ipv6=@mcast2, [0xffffffff, 0xff, 0xffffff00, 0xffffff00], @ipv6=@initdev={0xfe, 0x88, [], 0x0, 0x0}, [0x0, 0xffffffff, 0xffffff00, 0xffffffff], @ipv6=@empty, [0xff0000ff, 0xffffffff, 0xffffffff, 0xffffffff], 0x7f, 0x2000000020000, 0x3a, 0x4e21, 0x4e23, 0x4e24, 0x4e23, 0x20, 0x2228}, 0x180, 0x800}}, @common=@set={0x40, 'set\x00', 0x0, {{0x100000001, [0xb4a, 0xfffffffffffffff8, 0x10001, 0x5, 0x6c, 0x9], 0x0, 0x6}}}]}, @MASQUERADE={0x38, 'MASQUERADE\x00', 0x0, {0x1, {0x8, @local, @empty, @port=0x4e22, @port=0x4e23}}}}, {{@uncond, 0x0, 0xc0, 0xf8, 0x0, {}, [@common=@ttl={0x28, 'ttl\x00', 0x0, {0x3}}]}, @SNAT0={0x38, 'SNAT\x00', 0x0, {0x1, {0x10, @dev={0xac, 0x14, 0x14, 0x19}, @initdev={0xac, 0x1e, 0x0, 0x0}, @port=0x4e21, @icmp_id=0x68}}}}, {{@ip={@empty, @initdev={0xac, 0x1e, 0x0, 0x0}, 0xffffff00, 0xff000000, 'team0\x00', 'sit0\x00', {}, {0xff}, 0x73, 0x3, 0x40}, 0x0, 0xf8, 0x130, 0x0, {}, [@common=@unspec=@owner={0x38, 'owner\x00', 0x0, {r3, r4, r5, r6, 0x5, 0x1}}, @common=@icmp={0x28, 'icmp\x00', 0x0, {0x13, 0x80000000, 0x7fffffff, 0x1}}]}, @NETMAP={0x38, 'NETMAP\x00', 0x0, {0x1, {0x1f, @multicast2, @multicast1, @icmp_id=0x67, @icmp_id=0x66}}}}, {{@uncond, 0x0, 0x110, 0x148, 0x0, {}, [@common=@icmp={0x28, 'icmp\x00', 0x0, {0xf}}, @common=@osf={0x50, 'osf\x00', 0x0, {'syz1\x00', 0x0, 0x2, 0x0, 0x1}}]}, @MASQUERADE={0x38, 'MASQUERADE\x00', 0x0, {0x1, {0x6, @local, @local, @port=0x4e24, @port=0x4e20}}}}], {{[], 0x0, 0x70, 0x98}, {0x28}}}}, 0x638) mmap$binder(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x11, r2, 0x0) getsockname(r2, &(0x7f0000000180)=@in6={0xa, 0x0, 0x0, @ipv4={[], [], @initdev}}, &(0x7f0000000200)=0x80) getsockopt$inet_sctp6_SCTP_RECVNXTINFO(r2, 0x84, 0x21, &(0x7f0000000240), &(0x7f00000002c0)=0x4) 08:37:16 executing program 2: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000240)='./file0\x00', &(0x7f00000003c0)='devtmpfs\x008Q\xc8s\xfcq\xeev\xdb\xdf\x83H\x98\x8e\x8c\xdc\xab#@\xe9\xe6\x92\x80\x80\x16\xb2k\xbb\"Q\xeb\x9d}\b\xf9\x8d\xf4\xec\xba\xf4DL\xe3K()\x8b\x82\xcdT\xcd!?\xc2Q+\x8d\x92\x14\xc8*\x98FrSK-\xc5a)\xa2Pf6+\x0e\xe8\x87\x19\x0fB\xd0q\x9c\x91\x18\xf8\x02\x02(\xe5\x8f!\x91a\xb7\xce\x15', 0xfffffffffffffffc, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x4, 0x12, r0, 0x0) madvise(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xb) 08:37:16 executing program 3: r0 = socket(0x2, 0x1, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) setsockopt$EBT_SO_SET_ENTRIES(r0, 0xa00000000000000, 0x80, &(0x7f00000000c0)=@broute={'broute\x00\x00\x00\x05\x00', 0x20, 0x1, 0x9c0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000e00], 0x0, 0x0, &(0x7f0000000e00)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff010000000b00000000000000000062726964676530000000000000000000766c616e300000000000000000000000736974300000000000000000000000007465716c3000000000000000000000000000000000000000000000000180c20000000000000000000000b8080000b808000030090000616d6f6e6700000000000000000000000000000000000000000000000000000018040000000000000c00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000027327243426c7d2d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000a600a9e85725d89818472e65aba21d9bbc1b20e8331c6fd24a5aceaeefe102e42a013ac2c00eeb782c34eab997013e0506220c21a44cc58ff5bc83d5e4066c770000000000000000000000000000000000000000000000000000000000000000000000000000000001000000fcffffff00000000"]}, 0xa38) 08:37:16 executing program 4: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f00000002c0)='$\xa7\xd2\xa2\xc6D\x98\xdb_\x05\x8a\x06C\xf8mdevtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r0, 0x2000) 08:37:16 executing program 3: r0 = socket(0x2, 0x1, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) setsockopt$EBT_SO_SET_ENTRIES(r0, 0xa00000000000000, 0x80, &(0x7f00000000c0)=@broute={'broute\x00\x00\x00\x06\x00', 0x20, 0x1, 0x9c0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000e00], 0x0, 0x0, &(0x7f0000000e00)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff010000000b00000000000000000062726964676530000000000000000000766c616e300000000000000000000000736974300000000000000000000000007465716c3000000000000000000000000000000000000000000000000180c20000000000000000000000b8080000b808000030090000616d6f6e6700000000000000000000000000000000000000000000000000000018040000000000000c00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000027327243426c7d2d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000a600a9e85725d89818472e65aba21d9bbc1b20e8331c6fd24a5aceaeefe102e42a013ac2c00eeb782c34eab997013e0506220c21a44cc58ff5bc83d5e4066c770000000000000000000000000000000000000000000000000000000000000000000000000000000001000000fcffffff00000000"]}, 0xa38) 08:37:16 executing program 2: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') openat$misdntimer(0xffffffffffffff9c, &(0x7f0000000180)='/dev/mISDNtimer\x00', 0x400, 0x0) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) getsockopt$bt_BT_DEFER_SETUP(r0, 0x112, 0x7, &(0x7f0000000100)=0x1, &(0x7f0000000140)=0x4) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) getsockopt$bt_l2cap_L2CAP_CONNINFO(r0, 0x6, 0x2, &(0x7f00000001c0), &(0x7f0000000200)=0x6) ioctl$TCSETX(r0, 0x5433, &(0x7f00000000c0)={0x101, 0x7, [0x3, 0x80000001, 0x8001, 0x9, 0x8], 0xb17}) madvise(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xb) 08:37:16 executing program 0: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$VIDIOC_S_JPEGCOMP(0xffffffffffffffff, 0x408c563e, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$nl_xfrm(0xffffffffffffffff, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f00000004c0)='gretap0\x00', 0x10) connect$inet(r0, &(0x7f0000000100)={0x2, 0x0, @rand_addr=0x7fffffff}, 0x10) sendmmsg(r0, &(0x7f0000007fc0), 0x400000000000030, 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r1, 0x0) r2 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$KVM_ENABLE_CAP_CPU(r1, 0x4068aea3, &(0x7f00000000c0)={0x7b, 0x0, [0x2, 0x8, 0x80000001, 0x8]}) ioctl(r2, 0x1000008912, &(0x7f0000000000)="11dca50d5e0bcfe47bf070") mremap(&(0x7f0000ffd000/0x3000)=nil, 0x2000, 0x1002, 0x3, &(0x7f0000ffa000/0x1000)=nil) mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='overlay\x00', 0x90040, &(0x7f00000001c0)=ANY=[@ANYBLOB="776f726b6469723d2e2f66696c65302c72656469726563745f6469723d2e2f66696c65302c78696e6f3d6f66662c6c6f77388f7ea4442a69f866696c65302c6d6561737572652c6f626a5f747970653d2c636f6e746578743d756e636f6e66696e65645f752c66736d616769633d3078303030303030303030303030303034302c00"]) 08:37:16 executing program 4: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) r0 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/autofs\x00', 0x400000, 0x0) ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r0, 0xc0305302, &(0x7f00000000c0)={0xfffffffffffffff7, 0x2, 0x7fffffff, 0x200000000000, 0x8, 0x1}) chdir(&(0x7f00000001c0)='./file0\x00') r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r1, 0x2000) [ 517.025836] x86/PAT: syz-executor.5:21294 freeing invalid memtype [mem 0x1000001000-0x1000001fff] 08:37:16 executing program 1: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) ioctl$VIDIOC_ENUMSTD(r0, 0xc0485619, &(0x7f00000000c0)={0x3, 0x2, "41d8a07a099bd1d3660e2ca165f0b434990e42054152e7f6", {0x9, 0x7}, 0x1}) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r0, 0x0) 08:37:16 executing program 3: r0 = socket(0x2, 0x1, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) setsockopt$EBT_SO_SET_ENTRIES(r0, 0xa00000000000000, 0x80, &(0x7f00000000c0)=@broute={'broute\x00\x00\x00\a\x00', 0x20, 0x1, 0x9c0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000e00], 0x0, 0x0, &(0x7f0000000e00)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff010000000b00000000000000000062726964676530000000000000000000766c616e300000000000000000000000736974300000000000000000000000007465716c3000000000000000000000000000000000000000000000000180c20000000000000000000000b8080000b808000030090000616d6f6e6700000000000000000000000000000000000000000000000000000018040000000000000c00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000027327243426c7d2d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000a600a9e85725d89818472e65aba21d9bbc1b20e8331c6fd24a5aceaeefe102e42a013ac2c00eeb782c34eab997013e0506220c21a44cc58ff5bc83d5e4066c770000000000000000000000000000000000000000000000000000000000000000000000000000000001000000fcffffff00000000"]}, 0xa38) [ 517.106454] FAULT_INJECTION: forcing a failure. [ 517.106454] name failslab, interval 1, probability 0, space 0, times 0 [ 517.189730] CPU: 0 PID: 21327 Comm: syz-executor.5 Not tainted 4.19.64 #38 [ 517.196802] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 517.206165] Call Trace: [ 517.208779] dump_stack+0x172/0x1f0 [ 517.212429] should_fail.cold+0xa/0x1b [ 517.216368] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 517.221483] ? lock_downgrade+0x810/0x810 [ 517.225655] __should_failslab+0x121/0x190 [ 517.229915] should_failslab+0x9/0x14 [ 517.233758] kmem_cache_alloc+0x2ae/0x700 [ 517.237916] ? anon_vma_clone+0x320/0x480 [ 517.242089] anon_vma_fork+0x1ea/0x4a0 [ 517.245984] ? dup_userfaultfd+0x15e/0x6c0 [ 517.250235] copy_process.part.0+0x34e5/0x7a30 [ 517.254863] ? __cleanup_sighand+0x70/0x70 [ 517.259109] ? lock_downgrade+0x810/0x810 [ 517.263279] ? kasan_check_write+0x14/0x20 [ 517.267537] ? __mutex_unlock_slowpath+0xf8/0x6b0 [ 517.272398] _do_fork+0x257/0xfd0 [ 517.275871] ? fork_idle+0x1d0/0x1d0 [ 517.279596] ? fput+0x128/0x1a0 [ 517.282925] ? ksys_write+0x1f1/0x2d0 08:37:16 executing program 2: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) madvise(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xb) ioctl$VIDIOC_EXPBUF(r0, 0xc0405610, &(0x7f00000000c0)={0xa, 0x7fffffff, 0x426, 0x80000, r0}) [ 517.286739] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 517.291504] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 517.296276] ? do_syscall_64+0x26/0x620 [ 517.300273] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 517.305658] ? do_syscall_64+0x26/0x620 [ 517.309647] __x64_sys_clone+0xbf/0x150 [ 517.313647] do_syscall_64+0xfd/0x620 [ 517.317467] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 517.322667] RIP: 0033:0x459829 [ 517.325871] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 517.344783] RSP: 002b:00007f6d2179ec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 517.352505] RAX: ffffffffffffffda RBX: 00007f6d2179ec90 RCX: 0000000000459829 [ 517.359782] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 517.367056] RBP: 000000000075bfc8 R08: 0000000000000000 R09: 0000000000000000 [ 517.374338] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f6d2179f6d4 [ 517.381620] R13: 00000000004bfce6 R14: 00000000004d1998 R15: 0000000000000004 [ 517.397850] ebt_among_mt_check: 18 callbacks suppressed [ 517.397858] ebt_among: dst integrity fail: 3cd 08:37:16 executing program 5 (fault-call:6 fault-nth:50): mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x1000000000) mremap(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0x0, 0x0, 0x0) 08:37:16 executing program 3: r0 = socket(0x2, 0x1, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) setsockopt$EBT_SO_SET_ENTRIES(r0, 0xa00000000000000, 0x80, &(0x7f00000000c0)=@broute={'broute\x00\x00\x00\n\x00', 0x20, 0x1, 0x9c0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000e00], 0x0, 0x0, &(0x7f0000000e00)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff010000000b00000000000000000062726964676530000000000000000000766c616e300000000000000000000000736974300000000000000000000000007465716c3000000000000000000000000000000000000000000000000180c20000000000000000000000b8080000b808000030090000616d6f6e6700000000000000000000000000000000000000000000000000000018040000000000000c00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000027327243426c7d2d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000a600a9e85725d89818472e65aba21d9bbc1b20e8331c6fd24a5aceaeefe102e42a013ac2c00eeb782c34eab997013e0506220c21a44cc58ff5bc83d5e4066c770000000000000000000000000000000000000000000000000000000000000000000000000000000001000000fcffffff00000000"]}, 0xa38) 08:37:16 executing program 1: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = syz_open_dev$media(&(0x7f00000001c0)='/dev/media#\x00', 0x0, 0x2) mknodat(r0, &(0x7f0000000200)='./file0\x00', 0x8441, 0x19) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) ioctl$VIDIOC_TRY_FMT(r1, 0xc0d05640, &(0x7f00000000c0)={0xa, @sliced={0x1, [0x6, 0x1, 0x9, 0x6ec3, 0x1, 0x0, 0x8, 0xfffffffffffffffa, 0x3, 0x1, 0x2, 0x8001, 0x100, 0x4, 0x5, 0x7, 0x3, 0x1, 0x3, 0x1000, 0x1000, 0xed7, 0xca8, 0xe35, 0x6, 0x2, 0x1000, 0x6, 0x401, 0x8000, 0x7, 0x100000000, 0x9, 0x5e51f9a6, 0x1ff, 0xc040000000000000, 0x7, 0x10000, 0x4, 0x5, 0xc3, 0x2, 0x7fffffff, 0x9, 0x0, 0x1, 0x5, 0x4], 0xffffffff}}) mmap(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1, 0x12, r1, 0x0) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r1, 0x0) 08:37:16 executing program 4: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000001c0)='./file1\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r0, 0x2000) mount(&(0x7f00000000c0)=@sr0='/dev/sr0\x00', &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='udf\x00', 0x800, &(0x7f0000000180)='devtmpfs\x00') 08:37:16 executing program 2: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/cachefiles\x00', 0x20000, 0x0) r1 = openat$cgroup_ro(r0, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0) madvise(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xb) [ 517.578299] x86/PAT: syz-executor.5:21327 freeing invalid memtype [mem 0x1000000000-0x1000000fff] [ 517.599866] x86/PAT: syz-executor.5:21327 freeing invalid memtype [mem 0x1000002000-0x1000002fff] [ 517.754594] ebt_among: dst integrity fail: 3cd 08:37:17 executing program 0: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) fgetxattr(r0, &(0x7f0000000500)=ANY=[@ANYBLOB="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"], &(0x7f00000002c0)=""/247, 0xf7) getsockopt$inet_mreqn(r0, 0x0, 0x24, &(0x7f0000000100)={@local, @empty, 0x0}, &(0x7f0000000140)=0xc) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000180)={@loopback, @loopback, @mcast1, 0x6, 0x5, 0x0, 0x500, 0x100000000, 0x80000, r1}) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) write$P9_RCREATE(r0, &(0x7f00000000c0)={0x385, 0x73, 0x2, {{0x0, 0x4}, 0x5}}, 0xffffffa5) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r0, 0x0) r2 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r2, 0x1000008912, &(0x7f0000000000)="11dca50d5e0bcfe47bf070") mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x7, &(0x7f0000ffc000/0x1000)=nil) unshare(0x40040000) ioctl$PIO_CMAP(r0, 0x4b71, &(0x7f0000000200)={0xb270, 0x5, 0x7eb0, 0x6, 0x4, 0x4}) 08:37:17 executing program 2: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) stat(&(0x7f0000000100)='./file0\x00', &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0}) quotactl(0x2, &(0x7f00000000c0)='./file0\x00', r1, &(0x7f00000001c0)="a408be2281685932be3117f9443e45e0e95cd0ea9bc2374f7aff7d1b5c611e0d2ca8f00c8d6c7b0feec1d379e79c0f211043545ab8eae06548f71b8f6669ce6e9b8479873bb39639a87dbf2b4763d17519c5b08fbc8640a1ff67370de055b9ea3ec4ab643351daef0096ce04fc1477eaf4b8d2d4aa2737b5327af8942c93dcede381709fadee89e2d85a72dca2b3afeb1fe1a953b717743dc18d13846a59") madvise(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xb) 08:37:17 executing program 4: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffffff, 0x89e2, &(0x7f00000000c0)={0xffffffffffffffff}) setsockopt$inet_tcp_TLS_TX(r0, 0x6, 0x1, &(0x7f0000000100)=@gcm_256={{0x307}, "3d1dbe2abea9a2f3", "3484a847f52f759023beac1d67ab21d9859b30901287b84564ca737e1c42b594", "717342d1", "28bfa169135e15cb"}, 0x38) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) ioctl$CAPI_NCCI_GETUNIT(r1, 0x80044327, &(0x7f0000000140)=0xffffffffffff8001) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r1, 0x2000) 08:37:17 executing program 3: r0 = socket(0x2, 0x1, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) setsockopt$EBT_SO_SET_ENTRIES(r0, 0xa00000000000000, 0x80, &(0x7f00000000c0)=@broute={'broute\x00\x00\x00\f\x00', 0x20, 0x1, 0x9c0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000e00], 0x0, 0x0, &(0x7f0000000e00)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff010000000b00000000000000000062726964676530000000000000000000766c616e300000000000000000000000736974300000000000000000000000007465716c3000000000000000000000000000000000000000000000000180c20000000000000000000000b8080000b808000030090000616d6f6e6700000000000000000000000000000000000000000000000000000018040000000000000c00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000027327243426c7d2d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000a600a9e85725d89818472e65aba21d9bbc1b20e8331c6fd24a5aceaeefe102e42a013ac2c00eeb782c34eab997013e0506220c21a44cc58ff5bc83d5e4066c770000000000000000000000000000000000000000000000000000000000000000000000000000000001000000fcffffff00000000"]}, 0xa38) 08:37:17 executing program 1: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = syz_open_dev$vcsa(&(0x7f00000000c0)='/dev/vcsa#\x00', 0x7, 0x80042) r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) ioctl$sock_bt_bnep_BNEPCONNADD(r0, 0x400442c8, &(0x7f0000000140)={r1, 0x8, 0x3f6, "06633a46e5cfc879b6b989b00dd8e5cbcb9a1b2655cd1200a8967b85f0c54bca8580c6458ac17fffca083a42f981f8f042162e96a4277b446af035de9b44addf2bf7d1896c181c1e017476304747e361f1a4baf5d64a5d72f9b1ddae52a23e06e2f42201fbaf2ada11900722022faa5e4416c4afe14acbe48bbed2cc210914c7d1aecc110dbd6d29d2"}) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0x0) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r2, 0x0) ioctl$DRM_IOCTL_MODESET_CTL(r2, 0x40086408, &(0x7f0000000200)={0x73, 0xd15c}) [ 517.862262] x86/PAT: syz-executor.5:21699 freeing invalid memtype [mem 0x1000001000-0x1000001fff] [ 517.897515] FAULT_INJECTION: forcing a failure. [ 517.897515] name fail_page_alloc, interval 1, probability 0, space 0, times 0 08:37:17 executing program 4: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') openat$audio(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/audio\x00', 0x80000, 0x0) r0 = syz_open_dev$radio(&(0x7f0000000100)='/dev/radio#\x00', 0x1, 0x2) r1 = openat$cgroup_ro(r0, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r1, 0x2000) 08:37:17 executing program 2: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000140)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) unlink(&(0x7f00000000c0)='./file0/file0\x00') madvise(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xb) [ 518.013644] CPU: 0 PID: 21699 Comm: syz-executor.5 Not tainted 4.19.64 #38 [ 518.020733] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 518.030090] Call Trace: [ 518.032718] dump_stack+0x172/0x1f0 [ 518.036402] should_fail.cold+0xa/0x1b [ 518.040334] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 518.045473] ? __might_sleep+0x95/0x190 [ 518.049462] __alloc_pages_nodemask+0x1ee/0x750 [ 518.054144] ? save_stack+0xa9/0xd0 [ 518.057789] ? __alloc_pages_slowpath+0x2870/0x2870 [ 518.062819] ? copy_process.part.0+0x34e5/0x7a30 [ 518.067596] ? mark_held_locks+0x100/0x100 [ 518.071896] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 518.077452] alloc_pages_current+0x107/0x210 [ 518.081879] pte_alloc_one+0x1b/0x1a0 [ 518.085695] __pte_alloc+0x2a/0x360 [ 518.089374] copy_page_range+0x151f/0x1f90 [ 518.093613] ? anon_vma_fork+0x371/0x4a0 [ 518.097711] ? find_held_lock+0x35/0x130 [ 518.097759] ebt_among: dst integrity fail: 3cd [ 518.101791] ? anon_vma_fork+0x371/0x4a0 [ 518.101811] ? lock_downgrade+0x810/0x810 [ 518.101832] ? pmd_alloc+0x180/0x180 [ 518.101849] ? __vma_link_rb+0x279/0x370 [ 518.101867] copy_process.part.0+0x543d/0x7a30 [ 518.101902] ? __cleanup_sighand+0x70/0x70 [ 518.131209] ? lock_downgrade+0x810/0x810 [ 518.135383] ? kasan_check_write+0x14/0x20 [ 518.139634] ? __mutex_unlock_slowpath+0xf8/0x6b0 [ 518.144490] _do_fork+0x257/0xfd0 [ 518.147954] ? fork_idle+0x1d0/0x1d0 [ 518.151679] ? fput+0x128/0x1a0 [ 518.154970] ? ksys_write+0x1f1/0x2d0 [ 518.158790] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 518.163551] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 518.168327] ? do_syscall_64+0x26/0x620 [ 518.172325] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 518.177702] ? do_syscall_64+0x26/0x620 [ 518.181693] __x64_sys_clone+0xbf/0x150 [ 518.185673] do_syscall_64+0xfd/0x620 [ 518.189497] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 518.194695] RIP: 0033:0x459829 [ 518.197894] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 518.216792] RSP: 002b:00007f6d217bfc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 518.216809] RAX: ffffffffffffffda RBX: 00007f6d217bfc90 RCX: 0000000000459829 [ 518.216817] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 518.216825] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 518.216834] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f6d217c06d4 [ 518.216843] R13: 00000000004bfce6 R14: 00000000004d1998 R15: 0000000000000004 08:37:17 executing program 5 (fault-call:6 fault-nth:51): mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x1000000000) mremap(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0x0, 0x0, 0x0) 08:37:17 executing program 1: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) r1 = request_key(&(0x7f00000000c0)='.dead\x00', &(0x7f0000000100)={'syz', 0x0}, &(0x7f0000000140)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0xffffffffffffffff) r2 = add_key(&(0x7f0000000300)='cifs.spnego\x00', &(0x7f0000000340)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffe) keyctl$instantiate(0xc, r1, &(0x7f00000002c0)=@encrypted_update={'update ', 'ecryptfs', 0x20, 'user:', 'devtmpfs\x00'}, 0x1f, r2) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r0, 0x0) 08:37:17 executing program 0: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r0, 0x0) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f0000000000)="11dca50d5e0bcfe47bf070") mremap(&(0x7f0000ffd000/0x3000)=nil, 0x2000, 0x1002, 0x3, &(0x7f0000ffa000/0x1000)=nil) ioctl$SNDRV_SEQ_IOCTL_DELETE_QUEUE(r0, 0x408c5333, &(0x7f00000000c0)={0x4, 0x7f, 0x8, 'queue0\x00', 0xed6}) 08:37:17 executing program 3: r0 = socket(0x2, 0x1, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) setsockopt$EBT_SO_SET_ENTRIES(r0, 0xa00000000000000, 0x80, &(0x7f00000000c0)=@broute={'broute\x00\x00\x04\x18\x00', 0x20, 0x1, 0x9c0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000e00], 0x0, 0x0, &(0x7f0000000e00)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff010000000b00000000000000000062726964676530000000000000000000766c616e300000000000000000000000736974300000000000000000000000007465716c3000000000000000000000000000000000000000000000000180c20000000000000000000000b8080000b808000030090000616d6f6e6700000000000000000000000000000000000000000000000000000018040000000000000c00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000027327243426c7d2d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000a600a9e85725d89818472e65aba21d9bbc1b20e8331c6fd24a5aceaeefe102e42a013ac2c00eeb782c34eab997013e0506220c21a44cc58ff5bc83d5e4066c770000000000000000000000000000000000000000000000000000000000000000000000000000000001000000fcffffff00000000"]}, 0xa38) [ 518.231594] x86/PAT: syz-executor.5:21699 freeing invalid memtype [mem 0x1000000000-0x1000000fff] [ 518.270695] x86/PAT: syz-executor.5:21699 freeing invalid memtype [mem 0x1000002000-0x1000002fff] [ 518.319888] ebt_among: dst integrity fail: 3cd 08:37:17 executing program 3: r0 = socket(0x2, 0x1, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) setsockopt$EBT_SO_SET_ENTRIES(r0, 0xa00000000000000, 0x80, &(0x7f00000000c0)=@broute={'broute\x00\x00\x00 \x00', 0x20, 0x1, 0x9c0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000e00], 0x0, 0x0, &(0x7f0000000e00)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff010000000b00000000000000000062726964676530000000000000000000766c616e300000000000000000000000736974300000000000000000000000007465716c3000000000000000000000000000000000000000000000000180c20000000000000000000000b8080000b808000030090000616d6f6e6700000000000000000000000000000000000000000000000000000018040000000000000c00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000027327243426c7d2d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000a600a9e85725d89818472e65aba21d9bbc1b20e8331c6fd24a5aceaeefe102e42a013ac2c00eeb782c34eab997013e0506220c21a44cc58ff5bc83d5e4066c770000000000000000000000000000000000000000000000000000000000000000000000000000000001000000fcffffff00000000"]}, 0xa38) [ 518.484539] x86/PAT: syz-executor.5:22020 freeing invalid memtype [mem 0x1000001000-0x1000001fff] 08:37:17 executing program 4: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='cgroup.stat\x00', 0x275a, 0x0) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r0, 0x2000) fstat(r0, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0}) mount$9p_tcp(&(0x7f0000000100)='127.0.0.1\x00', &(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='9p\x00', 0x2000, &(0x7f00000002c0)={'trans=tcp,', {'port', 0x3d, 0x4e22}, 0x2c, {[{@access_user='access=user'}, {@cache_fscache='cache=fscache'}, {@version_u='version=9p2000.u'}, {@noextend='noextend'}], [{@fscontext={'fscontext', 0x3d, 'unconfined_u'}}, {@measure='measure'}, {@fowner_lt={'fowner<', r1}}, {@smackfshat={'smackfshat', 0x3d, 'cgroup.stat\x00'}}, {@hash='hash'}, {@func={'func', 0x3d, 'CREDS_CHECK'}}, {@dont_hash='dont_hash'}]}}) [ 518.525398] ebt_among: dst integrity fail: 3cd [ 518.528096] FAULT_INJECTION: forcing a failure. [ 518.528096] name failslab, interval 1, probability 0, space 0, times 0 08:37:17 executing program 2: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000002c0)='d^vt}pfs\x00SP\xb4?9\xdc6\xd9\xb0\xd3\xdd\x01\'\xc5\xa8\xd8\x10I\xac\xaa+x\x01\xd9\xe4@\x86E\xbf#\xc2\x88\xa5\x06E*\xdcZ\x87\x95~\xd9H\xa9\x9a\x11\x9aB\xdd\xcc\xd2\xbd\x95\x80\x10\xd3\x81U\xb8\xd0\x90\xb1\xe9\xd7~\xb3\n\xaa\xa9\xf5\xe9\x9a\x81X5\x043\b6\x83g\xec\\\x05\\l~\xe5:\xb743j6\xdd\xe0\x91\xf6`\x83c\xae\x11\xcf\xad\a\xe1fm\xdf\xe8\xcd\x98\xca\b\xa0(\xad7\xa9\xcc\xc8\x10\x13\x9b\xf8O\x06\xe2X\xe2\xcf\xce\xe6<\xc6\xcd \xefT\x90\xe6l\x15\x85L\xd6\x1f\xc1', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) madvise(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xb) prctl$PR_SET_ENDIAN(0x14, 0x1) [ 518.586103] CPU: 0 PID: 22020 Comm: syz-executor.5 Not tainted 4.19.64 #38 [ 518.593181] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 518.602534] Call Trace: [ 518.605165] dump_stack+0x172/0x1f0 [ 518.608813] should_fail.cold+0xa/0x1b [ 518.612714] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 518.617825] ? lock_downgrade+0x810/0x810 [ 518.621994] __should_failslab+0x121/0x190 [ 518.622014] should_failslab+0x9/0x14 [ 518.622028] kmem_cache_alloc+0x2ae/0x700 08:37:18 executing program 0: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) r0 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000100)='/dev/qat_adf_ctl\x00', 0x1, 0x0) ioctl$KVM_TRANSLATE(r0, 0xc018ae85, &(0x7f0000000140)={0x4, 0x5000, 0x7ff, 0x7, 0x6}) ioctl$KDSETLED(r0, 0x4b32, 0xfff) chdir(&(0x7f0000000080)='./file0\x00') r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) ioctl$UI_SET_PROPBIT(r1, 0x4004556e, 0x13) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x10010, r1, 0x0) arch_prctl$ARCH_GET_GS(0x1004, &(0x7f00000001c0)) openat$misdntimer(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/mISDNtimer\x00', 0x10002, 0x0) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r1, 0x0) r2 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r2, 0x100000890e, &(0x7f0000000000)="11dca50d5e0bcfe47bf070") mremap(&(0x7f0000ffd000/0x3000)=nil, 0x2000, 0x1002, 0x3, &(0x7f0000ffa000/0x1000)=nil) ioctl$KVM_TRANSLATE(r0, 0xc018ae85, &(0x7f0000000180)={0x3000, 0x5000, 0x100, 0x9, 0x4}) [ 518.622047] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 518.622069] ptlock_alloc+0x20/0x70 [ 518.639772] pte_alloc_one+0x6d/0x1a0 [ 518.639790] __pte_alloc+0x2a/0x360 [ 518.639820] copy_page_range+0x151f/0x1f90 [ 518.639845] ? anon_vma_fork+0x371/0x4a0 [ 518.639863] ? find_held_lock+0x35/0x130 [ 518.639878] ? anon_vma_fork+0x371/0x4a0 [ 518.639900] ? lock_downgrade+0x810/0x810 [ 518.639923] ? pmd_alloc+0x180/0x180 [ 518.639942] ? __vma_link_rb+0x279/0x370 [ 518.679272] copy_process.part.0+0x543d/0x7a30 08:37:18 executing program 1: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) connect$ax25(r0, &(0x7f0000000340)={{0x3, @default, 0x2}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @bcast, @null, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @null, @null]}, 0x48) ioctl$VIDIOC_QUERYCAP(r0, 0x80685600, &(0x7f0000000500)) delete_module(&(0x7f00000000c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0xa00) openat$selinux_user(0xffffffffffffff9c, &(0x7f0000000200)='/selinux/user\x00', 0x2, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r0, 0x0) [ 518.683896] ? __cleanup_sighand+0x70/0x70 [ 518.688154] ? lock_downgrade+0x810/0x810 [ 518.692323] ? kasan_check_write+0x14/0x20 [ 518.696569] ? __mutex_unlock_slowpath+0xf8/0x6b0 [ 518.701436] _do_fork+0x257/0xfd0 [ 518.704928] ? fork_idle+0x1d0/0x1d0 [ 518.708653] ? fput+0x128/0x1a0 [ 518.711942] ? ksys_write+0x1f1/0x2d0 [ 518.715758] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 518.720523] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 518.725304] ? do_syscall_64+0x26/0x620 [ 518.729293] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 518.734679] ? do_syscall_64+0x26/0x620 [ 518.738665] __x64_sys_clone+0xbf/0x150 [ 518.742655] do_syscall_64+0xfd/0x620 [ 518.746475] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 518.751679] RIP: 0033:0x459829 [ 518.754875] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 518.773777] RSP: 002b:00007f6d217bfc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 518.781494] RAX: ffffffffffffffda RBX: 00007f6d217bfc90 RCX: 0000000000459829 [ 518.788766] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 518.796049] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 518.803334] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f6d217c06d4 [ 518.810608] R13: 00000000004bfce6 R14: 00000000004d1998 R15: 0000000000000004 08:37:18 executing program 3: r0 = socket(0x2, 0x1, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) setsockopt$EBT_SO_SET_ENTRIES(r0, 0xa00000000000000, 0x80, &(0x7f00000000c0)=@broute={'broute\x00\x00\x00?\x00', 0x20, 0x1, 0x9c0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000e00], 0x0, 0x0, &(0x7f0000000e00)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff010000000b00000000000000000062726964676530000000000000000000766c616e300000000000000000000000736974300000000000000000000000007465716c3000000000000000000000000000000000000000000000000180c20000000000000000000000b8080000b808000030090000616d6f6e6700000000000000000000000000000000000000000000000000000018040000000000000c00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000027327243426c7d2d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000a600a9e85725d89818472e65aba21d9bbc1b20e8331c6fd24a5aceaeefe102e42a013ac2c00eeb782c34eab997013e0506220c21a44cc58ff5bc83d5e4066c770000000000000000000000000000000000000000000000000000000000000000000000000000000001000000fcffffff00000000"]}, 0xa38) 08:37:18 executing program 2: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) r0 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x8, 0x800) ioctl$GIO_UNIMAP(r0, 0x4b66, &(0x7f0000000140)={0x1, &(0x7f00000000c0)=[{}]}) chdir(&(0x7f0000000100)='./file0\x00') r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0) madvise(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xb) 08:37:18 executing program 4: mkdir(&(0x7f0000000040)='./file0\x00', 0x3) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f00000000c0)='./cgroup.cpu/syz1\x00', 0x200002, 0x0) chdir(&(0x7f00000002c0)='./file0\x00') write$P9_RREADLINK(r0, &(0x7f0000000180)={0x10, 0x17, 0x2, {0x7, './file0'}}, 0x10) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000140)=0x0) r2 = creat(&(0x7f0000000080)='./file0\x00', 0x8) write$P9_RXATTRCREATE(r2, &(0x7f0000000100)={0x7, 0x21, 0x1}, 0x7) r3 = getpgid(r1) syz_open_procfs(r3, &(0x7f0000000240)='cmdline\x00') r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r4, 0x2000) [ 519.038538] ebt_among: dst integrity fail: 3cd [ 519.213723] x86/PAT: syz-executor.5:22020 freeing invalid memtype [mem 0x1000000000-0x1000000fff] [ 519.268852] x86/PAT: syz-executor.5:22020 freeing invalid memtype [mem 0x1000002000-0x1000002fff] 08:37:18 executing program 5 (fault-call:6 fault-nth:52): mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x1000000000) mremap(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0x0, 0x0, 0x0) 08:37:18 executing program 3: r0 = socket(0x2, 0x1, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) setsockopt$EBT_SO_SET_ENTRIES(r0, 0xa00000000000000, 0x80, &(0x7f00000000c0)=@broute={'broute\x00\x00\x00@\x00', 0x20, 0x1, 0x9c0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000e00], 0x0, 0x0, &(0x7f0000000e00)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff010000000b00000000000000000062726964676530000000000000000000766c616e300000000000000000000000736974300000000000000000000000007465716c3000000000000000000000000000000000000000000000000180c20000000000000000000000b8080000b808000030090000616d6f6e6700000000000000000000000000000000000000000000000000000018040000000000000c00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000027327243426c7d2d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000a600a9e85725d89818472e65aba21d9bbc1b20e8331c6fd24a5aceaeefe102e42a013ac2c00eeb782c34eab997013e0506220c21a44cc58ff5bc83d5e4066c770000000000000000000000000000000000000000000000000000000000000000000000000000000001000000fcffffff00000000"]}, 0xa38) 08:37:18 executing program 1: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) r0 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000240)='/dev/vsock\x00', 0x200, 0x0) ioctl$CAPI_MANUFACTURER_CMD(r0, 0xc0104320, &(0x7f0000000400)={0x5, &(0x7f0000000380)="cadaf1103c8209b9a9ecb69e55d2f9aa1359108a4e23b2fb11dd67b33231141c5baf7f288a24e7843bddb36f6c603d763b279e3355abdb937eac2361a45a43ee7f7c8cc2dafe09fc933576c2ceb28a475a1dc65855a8e35a48c829ad3e"}) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) ioctl$sock_SIOCBRDELBR(r1, 0x89a1, &(0x7f0000000200)='irlan0\x00') openat$vsock(0xffffffffffffff9c, &(0x7f0000000440)='/dev/vsock\x00', 0x100, 0x0) write$binfmt_misc(r1, &(0x7f00000002c0)={'syz0', "8adf093dc231fc5f4f92ec525b3ad19b0ce7d94d415ee2f9e602bfe9ca0ff0490edbc1fd2789d249cc3dad81b8c0b2e332198862ad4c161b0349a17859d6a1667487b2f5f7f3f832df0aa16d11fab74411da2115c09cc966e81bd5c24185b05786c3c99e6906635bc79428cf8c77f414cc3d8d7b7582f3879a312b668a2f6ad52f84c075002f1796fe1d35fb6fee823fe005"}, 0x96) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r1, 0x0) 08:37:18 executing program 2: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000240)='ntfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcs\x00', 0x400, 0x0) r1 = openat$cgroup_ro(r0, &(0x7f0000000100)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0) ioctl$FS_IOC_RESVSP(r1, 0x40305828, &(0x7f0000000280)={0x0, 0x0, 0x8, 0x2}) madvise(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xb) 08:37:18 executing program 4: r0 = accept4$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @multicast2}, &(0x7f0000000180)=0x10, 0x800) vmsplice(r0, &(0x7f0000000240)=[{&(0x7f00000001c0)="176f101caa8cdd3fdfb8984206d8730f971d86a8047c60ae4f270541387cf683fee2ea54b6b2b4d1adfba04ee21a64e51311f3a4ee89b98b0a26ff459b9425a2337835ef8f2059074334c55dd5521c6ae777827c8fa6a6bd2f18e6c8b0", 0x5d}, {&(0x7f00000002c0)="8c7c46298d3865e30bbb7bd1f7c71abb3346eb33f54fd061493b7a5d50214034930017cb4570cac8f7e408ffd11ff959187827f55e96a771c7c34b265a98b3b3c7264e90831906f0b880d2b0d8b7e2d81ebf6993d220ccb1b965ab8c912cac6dbb0fd5163ebbf4d965789ec118288658c6b2c2ceb67fe02ac8d034ee13b6e74d3d2b69af76f676d6073a41edcb05ff5d07020586eb63ec3a5c43316d704c5ab8ffdda821f99d0eeee2368cb0", 0xac}, {&(0x7f0000000500)="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", 0x1000}, {&(0x7f0000001500)="5a59eee57dc3c2ddef071f4acf33993374f333e118e0b3d23eb3db4c1bf3ddba3a429b40d25448a14359b807e3cc327230756a487e190869e19ef8c5d131750f5ec01967b4bc451d28f3bb06eeadffe50d9dc85ad7b654528e424277ba042ee81550a2affdff84e925e5585fb64c0f43e6d701861375495186af1be92e3d803e82f161d6684e7913227e92d1e33e4dd9e10904f9cab28a9014d0b4428baa49ce1e1f7ddfe544216e604b8bb3c9aceaa84fc44eaa24e797103cedbb7fa13e", 0xbe}], 0x4, 0x1) mkdir(&(0x7f0000000040)='./file0\x00', 0x0) r1 = openat$vcs(0xffffffffffffff9c, &(0x7f0000001640)='/dev/vcs\x00', 0x101800, 0x0) ioctl$RTC_WKALM_SET(r1, 0x4028700f, &(0x7f0000000100)={0x0, 0x1, {0x38, 0x0, 0x16, 0x1b, 0x7, 0xffff, 0x4, 0xb5, 0xffffffffffffffff}}) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') ioctl$UFFDIO_UNREGISTER(r1, 0x8010aa01, &(0x7f00000000c0)={&(0x7f0000ffc000/0x4000)=nil, 0x4000}) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r2, 0x2000) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f00000016c0)={'ip6_vti0\x00', 0x0}) r4 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000001700)='/dev/hwrng\x00', 0x8000, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000001740)={0xd, 0xfffffffffffffff7, 0x1bc, 0xffffffff, 0x141, r2, 0x6dee, [], r3, r4, 0x0, 0x4}, 0x3c) ioctl$VIDIOC_G_CROP(r1, 0xc014563b, &(0x7f0000000380)={0x4, {0x4, 0x80, 0x7, 0x3}}) msync(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x6) 08:37:18 executing program 0: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000240)='/dev/dlm-control\x00', 0x0, 0x0) setsockopt$packet_rx_ring(r0, 0x107, 0x5, &(0x7f00000002c0)=@req={0x0, 0x2, 0xb5, 0xffff}, 0x10) ftruncate(r0, 0x2c) chdir(&(0x7f0000000080)='./file0\x00') r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r1, 0x0) r2 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r2, 0x1000008912, &(0x7f0000000000)="11dca50d5e0bcfe47bf070") r3 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000100)='IPVS\x00') sendmsg$IPVS_CMD_DEL_SERVICE(r0, &(0x7f0000000200)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x40104000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)={0x74, r3, 0x200, 0x70bd26, 0x25dfdbfc, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x200}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x5}, @IPVS_CMD_ATTR_SERVICE={0x1c, 0x1, [@IPVS_SVC_ATTR_PROTOCOL={0x8, 0x2, 0x3a}, @IPVS_SVC_ATTR_AF={0x8}, @IPVS_SVC_ATTR_NETMASK={0x8, 0x9, 0x3e}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x7}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x332}, @IPVS_CMD_ATTR_SERVICE={0x24, 0x1, [@IPVS_SVC_ATTR_PROTOCOL={0x8, 0x2, 0x6b}, @IPVS_SVC_ATTR_NETMASK={0x8, 0x9, 0x7e}, @IPVS_SVC_ATTR_SCHED_NAME={0x8, 0x6, 'nq\x00'}, @IPVS_SVC_ATTR_NETMASK={0x8, 0x9, 0x43}]}]}, 0x74}, 0x1, 0x0, 0x0, 0x40045}, 0x800) mremap(&(0x7f0000ffd000/0x3000)=nil, 0x2000, 0x1002, 0x3, &(0x7f0000ffa000/0x1000)=nil) [ 519.410451] ebt_among: dst integrity fail: 3cd [ 519.440105] Unknown ioctl -1072676064 08:37:18 executing program 2: r0 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f00000000c0)=0x0) mq_notify(r0, &(0x7f0000000100)={0x0, 0x1e, 0x2, @tid=r1}) mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0x0) madvise(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xb) 08:37:18 executing program 3: r0 = socket(0x2, 0x1, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) setsockopt$EBT_SO_SET_ENTRIES(r0, 0xa00000000000000, 0x80, &(0x7f00000000c0)=@broute={'broute\x00\x00\x00H\x00', 0x20, 0x1, 0x9c0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000e00], 0x0, 0x0, &(0x7f0000000e00)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff010000000b00000000000000000062726964676530000000000000000000766c616e300000000000000000000000736974300000000000000000000000007465716c3000000000000000000000000000000000000000000000000180c20000000000000000000000b8080000b808000030090000616d6f6e6700000000000000000000000000000000000000000000000000000018040000000000000c00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000027327243426c7d2d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000a600a9e85725d89818472e65aba21d9bbc1b20e8331c6fd24a5aceaeefe102e42a013ac2c00eeb782c34eab997013e0506220c21a44cc58ff5bc83d5e4066c770000000000000000000000000000000000000000000000000000000000000000000000000000000001000000fcffffff00000000"]}, 0xa38) 08:37:18 executing program 4: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) getresuid(&(0x7f0000000200)=0x0, &(0x7f0000000240), &(0x7f00000002c0)) epoll_create1(0x80000) openat$autofs(0xffffffffffffff9c, &(0x7f0000001680)='/dev/autofs\x00', 0x200000, 0x0) openat$dsp(0xffffffffffffff9c, &(0x7f00000016c0)='/dev/dsp\x00', 0x200000, 0x0) syz_open_dev$video(&(0x7f0000001700)='/dev/video#\x00', 0x0, 0x2) syz_open_dev$admmidi(&(0x7f0000001740)='/dev/admmidi#\x00', 0x8, 0x10000) socket$alg(0x26, 0x5, 0x0) r1 = syz_open_dev$sndctrl(&(0x7f0000001780)='/dev/snd/controlC#\x00', 0x56f, 0x105000) fstat(r1, &(0x7f0000001600)={0x0, 0x0, 0x0, 0x0, 0x0}) syz_mount_image$jfs(&(0x7f00000000c0)='jfs\x00', &(0x7f0000000100)='./file0\x00', 0x8, 0x2, &(0x7f00000001c0)=[{&(0x7f0000000500)="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", 0x1000, 0x9}, {&(0x7f0000000140)="19ab2a9284c126583696fe61df0c6927ed517c7dedcdd5357b8a059d0ab0a68a07a0c8cbd3cbf4071b3564d4a6b70fdb4478e70fc0b7880aeff7589e69bb0826f3cbf7acae7b0f70eb4c1b280d0efebd3fc8e5ec63e03c3dae7c98e5d89a8f49ae9c6200a09ed8d87edc131dc483", 0x6e, 0x7f}], 0x8000, &(0x7f0000001500)={[{@noquota='noquota'}], [{@smackfstransmute={'smackfstransmute', 0x3d, 'devtmpfs\x00'}}, {@uid_eq={'uid', 0x3d, r0}}, {@fowner_gt={'fowner>', r2}}, {@measure='measure'}, {@defcontext={'defcontext', 0x3d, 'staff_u'}}]}) setxattr$trusted_overlay_opaque(&(0x7f0000000380)='./file0\x00', &(0x7f0000001580)='trusted.overlay.opaque\x00', &(0x7f00000015c0)='y\x00', 0x2, 0x2) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r3, 0x2000) 08:37:18 executing program 0: r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000340)='/dev/vcs\x00', 0x200000, 0x0) bind$bt_sco(r0, &(0x7f0000000380)={0x1f, {0x401, 0xffffffff, 0x3, 0xa7, 0x100000001, 0x3}}, 0x8) mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) write$P9_RMKDIR(r0, &(0x7f0000000500)={0x14, 0x49, 0x2, {0x32, 0x1, 0x4}}, 0x14) chdir(&(0x7f00000000c0)='./file0\x00') r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0) mq_notify(r1, &(0x7f0000000080)={0x0, 0x40, 0x0, @thr={&(0x7f0000000100)="fd1267bd22f3e675a21aace9f278447544fc5f703737da63cc56eea58cb39a6d905545baadc0639fc35a10685df6d4c7a6493594b37f44109e751d695f8c32f5cb76b49a53d947fc48", &(0x7f0000000180)="23828aafc526fc36115c0d3beea1c59e8b778795e016aa6174f3156e42dd3414a30c89024e619b51a0c6bfed58dcacab360a3f10342220bbda2d6a46304a218b8c8d2d5d14f9e30acc82a7878b4d72ed103ddfccf05e545f5221ff1787c560a42a7e46d503ae89742971c80669fde2ea2e78909e5bae793c55539fab87a2fb430a11524e294949c186cfb121ea173b7de78727f1c540d1095478cc5829d9a6927261f885d568357319fea4f634922d5a56896da699d119badf23dc3e1cd361f60d9f9b4219b1fe1db64961e58a5fd1103cf1921bde8d7e707ae207f121a846551e3818602912ae3727a8c3c957769a199aa673660947719cf4b0"}}) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r1, 0x0) accept4$packet(r1, &(0x7f00000002c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000300)=0x14, 0x800) r2 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r2, 0x1000008912, &(0x7f0000000000)="11dca50d5e0bcfe47bf070") mremap(&(0x7f0000ffd000/0x3000)=nil, 0x2000, 0x1002, 0x3, &(0x7f0000ffa000/0x1000)=nil) [ 519.641610] ebt_among: dst integrity fail: 3cd 08:37:19 executing program 1: mkdir(&(0x7f0000000140)='./file0\x00', 0x86) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dsp\x00', 0x610041, 0x0) ioctl$RTC_UIE_OFF(r0, 0x7004) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r1, 0x0) 08:37:19 executing program 3: r0 = socket(0x2, 0x1, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) setsockopt$EBT_SO_SET_ENTRIES(r0, 0xa00000000000000, 0x80, &(0x7f00000000c0)=@broute={'broute\x00\x00\x00L\x00', 0x20, 0x1, 0x9c0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000e00], 0x0, 0x0, &(0x7f0000000e00)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff010000000b00000000000000000062726964676530000000000000000000766c616e300000000000000000000000736974300000000000000000000000007465716c3000000000000000000000000000000000000000000000000180c20000000000000000000000b8080000b808000030090000616d6f6e6700000000000000000000000000000000000000000000000000000018040000000000000c00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000027327243426c7d2d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000a600a9e85725d89818472e65aba21d9bbc1b20e8331c6fd24a5aceaeefe102e42a013ac2c00eeb782c34eab997013e0506220c21a44cc58ff5bc83d5e4066c770000000000000000000000000000000000000000000000000000000000000000000000000000000001000000fcffffff00000000"]}, 0xa38) [ 519.715235] FAULT_INJECTION: forcing a failure. [ 519.715235] name failslab, interval 1, probability 0, space 0, times 0 [ 519.777460] jfs: Unrecognized mount option "smackfstransmute=devtmpfs" or missing value [ 519.790322] CPU: 0 PID: 22692 Comm: syz-executor.5 Not tainted 4.19.64 #38 [ 519.797362] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 519.806718] Call Trace: [ 519.809361] dump_stack+0x172/0x1f0 [ 519.813015] should_fail.cold+0xa/0x1b [ 519.816931] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 519.822043] ? lock_downgrade+0x810/0x810 [ 519.826214] __should_failslab+0x121/0x190 [ 519.830465] should_failslab+0x9/0x14 [ 519.834280] kmem_cache_alloc+0x2ae/0x700 [ 519.838443] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 519.843487] ? __vm_enough_memory+0x324/0x5a0 [ 519.848002] vm_area_dup+0x21/0x170 [ 519.851643] copy_process.part.0+0x3407/0x7a30 [ 519.856263] ? __cleanup_sighand+0x70/0x70 [ 519.860508] ? lock_downgrade+0x810/0x810 [ 519.864682] ? kasan_check_write+0x14/0x20 [ 519.868938] ? __mutex_unlock_slowpath+0xf8/0x6b0 [ 519.873797] _do_fork+0x257/0xfd0 [ 519.877270] ? fork_idle+0x1d0/0x1d0 [ 519.881001] ? fput+0x128/0x1a0 [ 519.884292] ? ksys_write+0x1f1/0x2d0 [ 519.888122] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 519.892892] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 519.897657] ? do_syscall_64+0x26/0x620 [ 519.901646] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 519.907038] ? do_syscall_64+0x26/0x620 [ 519.911056] __x64_sys_clone+0xbf/0x150 [ 519.915044] do_syscall_64+0xfd/0x620 [ 519.918868] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 519.924061] RIP: 0033:0x459829 [ 519.927260] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 519.946184] RSP: 002b:00007f6d2177dc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 519.953898] RAX: ffffffffffffffda RBX: 00007f6d2177dc90 RCX: 0000000000459829 [ 519.961167] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 519.968435] RBP: 000000000075c070 R08: 0000000000000000 R09: 0000000000000000 [ 519.975707] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f6d2177e6d4 [ 519.982991] R13: 00000000004bfce6 R14: 00000000004d1998 R15: 0000000000000004 08:37:19 executing program 5 (fault-call:6 fault-nth:53): mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x1000000000) mremap(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0x0, 0x0, 0x0) 08:37:19 executing program 2: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) madvise(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xb) 08:37:19 executing program 1: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x1, 0x12, r0, 0x0) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r0, 0x0) [ 520.032960] jfs: Unrecognized mount option "smackfstransmute=devtmpfs" or missing value [ 520.107091] ebt_among: dst integrity fail: 3cd 08:37:19 executing program 0: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r0, 0x0) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f0000000000)="11dca50d5e0bcfe47bf070") mremap(&(0x7f0000ffd000/0x3000)=nil, 0x2000, 0x1002, 0x3, &(0x7f0000ffa000/0x1000)=nil) 08:37:19 executing program 4: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) setsockopt$SO_RDS_TRANSPORT(r0, 0x114, 0x8, &(0x7f0000000140), 0x4) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r0, 0x2000) ioctl$SNDRV_TIMER_IOCTL_INFO(r0, 0x80e85411, &(0x7f00000000c0)=""/107) 08:37:19 executing program 2: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) r0 = fcntl$dupfd(0xffffffffffffffff, 0x406, 0xffffffffffffffff) ioctl$VIDIOC_G_FMT(r0, 0xc0d05604, &(0x7f00000002c0)={0x6, @raw_data="307927e0c6137e6624271378b465711248fae11b431091b755b125f0858ac0da73a841dd0eb02809cd0825a65d1a741bcfeb1ad5db8b90c384a2bc537338bb1c22b3d35bec4d2595a9f6ecc468a76987f380c78899cb35b9807306cb9bc886ade692a54cd7fd1b88622752e1ec905a7b1e3ac8b131d9b2867cfa2dc201cb4b851d4c1e9ed4096af9feade2381bdc97a73545651fcfedfde3cd26f963c9b2b31f835079efd2d0d3e0cc59316ab62940f622a34743267fbd08b1220b8e5e9e4228bf423df8dff24a5f"}) stat(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)) chdir(&(0x7f0000000080)='./file0\x00') r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000180)='/dev/zero\x00', 0x28040, 0x0) madvise(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xb) 08:37:19 executing program 3: r0 = socket(0x2, 0x1, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) setsockopt$EBT_SO_SET_ENTRIES(r0, 0xa00000000000000, 0x80, &(0x7f00000000c0)=@broute={'broute\x00\x00\x00`\x00', 0x20, 0x1, 0x9c0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000e00], 0x0, 0x0, &(0x7f0000000e00)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff010000000b00000000000000000062726964676530000000000000000000766c616e300000000000000000000000736974300000000000000000000000007465716c3000000000000000000000000000000000000000000000000180c20000000000000000000000b8080000b808000030090000616d6f6e6700000000000000000000000000000000000000000000000000000018040000000000000c00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000027327243426c7d2d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000a600a9e85725d89818472e65aba21d9bbc1b20e8331c6fd24a5aceaeefe102e42a013ac2c00eeb782c34eab997013e0506220c21a44cc58ff5bc83d5e4066c770000000000000000000000000000000000000000000000000000000000000000000000000000000001000000fcffffff00000000"]}, 0xa38) [ 520.158491] x86/PAT: syz-executor.5:22909 freeing invalid memtype [mem 0x1000001000-0x1000001fff] [ 520.212866] FAULT_INJECTION: forcing a failure. [ 520.212866] name failslab, interval 1, probability 0, space 0, times 0 [ 520.226318] CPU: 1 PID: 22951 Comm: syz-executor.5 Not tainted 4.19.64 #38 [ 520.233353] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 520.242719] Call Trace: [ 520.245336] dump_stack+0x172/0x1f0 [ 520.248991] should_fail.cold+0xa/0x1b [ 520.252894] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 520.258000] ? find_held_lock+0x35/0x130 [ 520.262076] ? percpu_ref_put_many+0x94/0x190 [ 520.266580] __should_failslab+0x121/0x190 [ 520.270831] should_failslab+0x9/0x14 [ 520.274619] kmem_cache_alloc+0x47/0x700 [ 520.278669] ? __lock_is_held+0xb6/0x140 [ 520.282736] anon_vma_clone+0xde/0x480 [ 520.286628] anon_vma_fork+0x8f/0x4a0 [ 520.290417] ? dup_userfaultfd+0x15e/0x6c0 [ 520.294643] ? memcpy+0x46/0x50 [ 520.297949] copy_process.part.0+0x34e5/0x7a30 [ 520.302545] ? __cleanup_sighand+0x70/0x70 [ 520.306765] ? lock_downgrade+0x810/0x810 [ 520.310922] ? kasan_check_write+0x14/0x20 [ 520.315145] ? __mutex_unlock_slowpath+0xf8/0x6b0 [ 520.319975] _do_fork+0x257/0xfd0 [ 520.323415] ? fork_idle+0x1d0/0x1d0 [ 520.327116] ? fput+0x128/0x1a0 [ 520.330467] ? ksys_write+0x1f1/0x2d0 [ 520.334259] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 520.339021] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 520.343782] ? do_syscall_64+0x26/0x620 [ 520.347746] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 520.353092] ? do_syscall_64+0x26/0x620 [ 520.357061] __x64_sys_clone+0xbf/0x150 [ 520.361023] do_syscall_64+0xfd/0x620 [ 520.364867] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 520.370044] RIP: 0033:0x459829 [ 520.373222] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 520.392106] RSP: 002b:00007f6d2179ec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 520.399812] RAX: ffffffffffffffda RBX: 00007f6d2179ec90 RCX: 0000000000459829 08:37:19 executing program 1: mkdir(&(0x7f00000000c0)='./file0\x00', 0x100fe) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, 0xffffffffffffffff, 0x0) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, 0xffffffffffffffff, 0x0) [ 520.407071] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 520.414343] RBP: 000000000075bfc8 R08: 0000000000000000 R09: 0000000000000000 [ 520.421624] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f6d2179f6d4 [ 520.428908] R13: 00000000004bfce6 R14: 00000000004d1998 R15: 0000000000000004 [ 520.522820] ebt_among: dst integrity fail: 3cd 08:37:19 executing program 5 (fault-call:6 fault-nth:54): mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x1000000000) mremap(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0x0, 0x0, 0x0) 08:37:19 executing program 2: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) setsockopt$bt_rfcomm_RFCOMM_LM(r0, 0x12, 0x3, &(0x7f00000000c0)=0x1, 0x4) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) ioctl$CAPI_INSTALLED(r0, 0x80024322) madvise(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xb) 08:37:19 executing program 4: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r0, 0x2000) ioctl$TIOCGPTPEER(r0, 0x5441, 0x6) [ 520.573883] x86/PAT: syz-executor.5:23033 freeing invalid memtype [mem 0x1000000000-0x1000000fff] 08:37:20 executing program 3: r0 = socket(0x2, 0x1, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) setsockopt$EBT_SO_SET_ENTRIES(r0, 0xa00000000000000, 0x80, &(0x7f00000000c0)=@broute={'broute\x00\x00\x00h\x00', 0x20, 0x1, 0x9c0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000e00], 0x0, 0x0, &(0x7f0000000e00)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff010000000b00000000000000000062726964676530000000000000000000766c616e300000000000000000000000736974300000000000000000000000007465716c3000000000000000000000000000000000000000000000000180c20000000000000000000000b8080000b808000030090000616d6f6e6700000000000000000000000000000000000000000000000000000018040000000000000c00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000027327243426c7d2d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000a600a9e85725d89818472e65aba21d9bbc1b20e8331c6fd24a5aceaeefe102e42a013ac2c00eeb782c34eab997013e0506220c21a44cc58ff5bc83d5e4066c770000000000000000000000000000000000000000000000000000000000000000000000000000000001000000fcffffff00000000"]}, 0xa38) [ 520.639800] x86/PAT: syz-executor.5:23033 freeing invalid memtype [mem 0x1000002000-0x1000002fff] 08:37:20 executing program 0: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r0, 0x0) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f00000000c0)="11dca50d5e0bcfe42a0e70") mremap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1000, 0x400000000000, &(0x7f0000ffa000/0x1000)=nil) 08:37:20 executing program 1: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) mkdir(&(0x7f0000000080)='./file0\x00', 0x123) chdir(&(0x7f00000000c0)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r0, 0x0) 08:37:20 executing program 2: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) accept4(0xffffffffffffffff, &(0x7f0000000200)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @dev}}}, &(0x7f00000002c0)=0x80, 0x800) setsockopt$inet_tcp_TLS_TX(r0, 0x6, 0x1, &(0x7f0000000300)=@gcm_128={{0x307}, "a34f0845c16ea415", "d6e7ccead0bbb5c2592d0e6241c0f564", "31bf49d8", "85c063cbe99b69ae"}, 0x28) chdir(&(0x7f0000000080)='./file0\x00') r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) r2 = syz_genetlink_get_family_id$tipc(&(0x7f0000000100)='TIPC\x00') sendmsg$TIPC_CMD_GET_NODES(r1, &(0x7f00000001c0)={&(0x7f00000000c0), 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x1c, r2, 0x420, 0x70bd28, 0x25dfdbfe, {}, ["", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x20000000}, 0x40) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0) madvise(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xb) 08:37:20 executing program 4: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) r0 = openat$selinux_checkreqprot(0xffffffffffffff9c, &(0x7f0000000140)='/selinux/checkreqprot\x00', 0x40040, 0x0) write$P9_RSTATFS(r0, &(0x7f0000000180)={0x43, 0x9, 0x1, {0x3, 0x5, 0xfda3, 0xff, 0x9e33, 0x1ff, 0x3, 0x1, 0x9}}, 0x43) r1 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/btrfs-control\x00', 0x200800, 0x0) ioctl$VIDIOC_SUBDEV_G_SELECTION(r1, 0xc040563d, &(0x7f0000000100)={0x1, 0x0, 0x102, 0x3, {0x20, 0x9c22, 0x7, 0x6}}) chdir(&(0x7f0000000080)='./file0\x00') r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000640)='mem\x00\x00\x00\x00\x00\x00\a\x13\xe2x4\xe4L\x92.\xb7\xc4\xf8', 0x275a, 0x0) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r2, 0x2000) [ 520.822241] FAULT_INJECTION: forcing a failure. [ 520.822241] name failslab, interval 1, probability 0, space 0, times 0 [ 520.880440] CPU: 1 PID: 23259 Comm: syz-executor.5 Not tainted 4.19.64 #38 [ 520.887483] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 520.896843] Call Trace: [ 520.899476] dump_stack+0x172/0x1f0 [ 520.903125] should_fail.cold+0xa/0x1b [ 520.907028] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 520.912160] ? lock_downgrade+0x810/0x810 [ 520.916337] __should_failslab+0x121/0x190 [ 520.920594] should_failslab+0x9/0x14 [ 520.924411] kmem_cache_alloc+0x2ae/0x700 [ 520.928576] ? anon_vma_clone+0x320/0x480 [ 520.932754] anon_vma_fork+0xfc/0x4a0 [ 520.936569] ? dup_userfaultfd+0x15e/0x6c0 [ 520.940821] ? memcpy+0x46/0x50 [ 520.944113] copy_process.part.0+0x34e5/0x7a30 [ 520.948725] ? __cleanup_sighand+0x70/0x70 [ 520.952983] ? lock_downgrade+0x810/0x810 [ 520.957163] ? kasan_check_write+0x14/0x20 [ 520.961401] ? __mutex_unlock_slowpath+0xf8/0x6b0 [ 520.966249] _do_fork+0x257/0xfd0 [ 520.969728] ? fork_idle+0x1d0/0x1d0 [ 520.973439] ? fput+0x128/0x1a0 [ 520.976722] ? ksys_write+0x1f1/0x2d0 [ 520.980614] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 520.985373] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 520.990128] ? do_syscall_64+0x26/0x620 [ 520.994100] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 520.999464] ? do_syscall_64+0x26/0x620 [ 521.003442] __x64_sys_clone+0xbf/0x150 [ 521.007420] do_syscall_64+0xfd/0x620 [ 521.011238] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 521.016427] RIP: 0033:0x459829 [ 521.019617] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 521.038516] RSP: 002b:00007f6d217bfc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 521.046229] RAX: ffffffffffffffda RBX: 00007f6d217bfc90 RCX: 0000000000459829 [ 521.053495] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 521.060765] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 521.068030] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f6d217c06d4 08:37:20 executing program 3: r0 = socket(0x2, 0x1, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) setsockopt$EBT_SO_SET_ENTRIES(r0, 0xa00000000000000, 0x80, &(0x7f00000000c0)=@broute={'broute\x00\x00\x00l\x00', 0x20, 0x1, 0x9c0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000e00], 0x0, 0x0, &(0x7f0000000e00)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff010000000b00000000000000000062726964676530000000000000000000766c616e300000000000000000000000736974300000000000000000000000007465716c3000000000000000000000000000000000000000000000000180c20000000000000000000000b8080000b808000030090000616d6f6e6700000000000000000000000000000000000000000000000000000018040000000000000c00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000027327243426c7d2d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000a600a9e85725d89818472e65aba21d9bbc1b20e8331c6fd24a5aceaeefe102e42a013ac2c00eeb782c34eab997013e0506220c21a44cc58ff5bc83d5e4066c770000000000000000000000000000000000000000000000000000000000000000000000000000000001000000fcffffff00000000"]}, 0xa38) [ 521.075309] R13: 00000000004bfce6 R14: 00000000004d1998 R15: 0000000000000004 08:37:20 executing program 4: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r0, 0x0) 08:37:20 executing program 1: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') msync(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x5) r0 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ubi_ctrl\x00', 0x200000, 0x0) ioctl$TIOCOUTQ(r0, 0x5411, &(0x7f0000000100)) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000002c0)={'veth1_to_hsr\x00', 0x0}) recvfrom$packet(r0, &(0x7f0000000140)=""/117, 0x75, 0x42, &(0x7f0000000300)={0x11, 0x15, r1, 0x1, 0x100, 0x6, @remote}, 0x14) ioctl$KDSETLED(r0, 0x4b32, 0x5) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r3 = dup2(r2, r2) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0xfffffffffffffde3) write$UHID_DESTROY(0xffffffffffffffff, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text64={0x40, &(0x7f0000000140)="8f298891d4c7442400d9000000c744240200000080ff2c2464460f2207b9fe0800000f32b9800000c00f3235010000000f30470f01f80f001ca3440fc75d0ad9f7260f08", 0x44}], 0xaaaaaaaaaaaaa0f, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_API_VERSION(r2, 0xae00, 0x0) ioctl$KVM_RUN(r5, 0xae80, 0x0) getsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0x10, &(0x7f00000017c0)={{{@in=@loopback, @in=@empty, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@broadcast}, 0x0, @in6=@mcast2}}, &(0x7f00000018c0)=0xe8) quotactl(0x81, &(0x7f0000001780)='./file0\x00', r6, &(0x7f0000001b00)="eeab53814797f3e55bed4094746224d90f6209dd98ee83ebe5b4c65f4e4653d1ef7137b961e5e22524a5b2d660fa75a3f4ec8ad8cc6ebf6759cc51cf2f99bc5e6ea19d22bcbd7c89d7f19d9aff9597469e29618ebf6b75861ec47ac9fd07241e8c387361668e6204f35ae0169f5665b2e18b489046748c2e53b20ca3877a34fe") r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) r8 = syz_genetlink_get_family_id$tipc(&(0x7f0000000200)='TIPC\x00') sendmsg$TIPC_CMD_GET_MEDIA_NAMES(r7, &(0x7f0000000380)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000340)={&(0x7f0000000240)={0x1c, r8, 0x2, 0x70bd2c, 0x25dfdbfd, {}, [""]}, 0x1c}, 0x1, 0x0, 0x0, 0x20000800}, 0x4008011) ioctl$FS_IOC_FIEMAP(r0, 0xc020660b, &(0x7f0000001940)=ANY=[@ANYBLOB="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"]) mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x12, r7, 0x0) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r7, 0x0) renameat(r0, &(0x7f00000015c0)='./file0\x00', r0, &(0x7f0000001600)='./file0\x00') recvfrom$packet(r0, &(0x7f0000000500)=""/4096, 0x1000, 0x100, &(0x7f0000001500)={0x11, 0xff, r1, 0x1, 0x7, 0x6, @broadcast}, 0x14) getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(r0, 0x84, 0x6d, &(0x7f0000001640)={0x0, 0x84, "845d004091490ec23f50ca048f2c78b537d2c8fdef3f42fdbd16159728d0276073845da487345a38194a831b6490fc018d6a3dbe458360ef746e094bdbba61816b5c39bb9ff0e5fc52ee9f7cb0280446754dab7b5468717e175f641c46d2006a7118209458611b3aad87130bc9963f9f16f469730f55ded222836f6e9c5beee30fb46793"}, &(0x7f0000001700)=0x8c) 08:37:20 executing program 3: r0 = socket(0x2, 0x1, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) setsockopt$EBT_SO_SET_ENTRIES(r0, 0xa00000000000000, 0x80, &(0x7f00000000c0)=@broute={'broute\x00\x00\x00t\x00', 0x20, 0x1, 0x9c0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000e00], 0x0, 0x0, &(0x7f0000000e00)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff010000000b00000000000000000062726964676530000000000000000000766c616e300000000000000000000000736974300000000000000000000000007465716c3000000000000000000000000000000000000000000000000180c20000000000000000000000b8080000b808000030090000616d6f6e6700000000000000000000000000000000000000000000000000000018040000000000000c00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000027327243426c7d2d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000a600a9e85725d89818472e65aba21d9bbc1b20e8331c6fd24a5aceaeefe102e42a013ac2c00eeb782c34eab997013e0506220c21a44cc58ff5bc83d5e4066c770000000000000000000000000000000000000000000000000000000000000000000000000000000001000000fcffffff00000000"]}, 0xa38) 08:37:20 executing program 2: mkdir(&(0x7f0000000100)='./file0\x00', 0x20022) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) madvise(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xb) 08:37:20 executing program 5 (fault-call:6 fault-nth:55): mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x1000000000) mremap(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0x0, 0x0, 0x0) 08:37:20 executing program 0: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) r0 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/dlm_plock\x00', 0x4000, 0x0) getpeername$packet(0xffffffffffffffff, &(0x7f0000001a80)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000001ac0)=0x14) r2 = syz_genetlink_get_family_id$team(&(0x7f0000001b80)='team\x00') sendmsg$TEAM_CMD_OPTIONS_GET(r0, &(0x7f0000002000)={&(0x7f0000001b40)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000001fc0)={&(0x7f0000001bc0)=ANY=[@ANYBLOB="e0030000", @ANYRES16=r2, @ANYBLOB="14002abd7000fcdbdf250200000008000100", @ANYRES32=r1, @ANYBLOB="c000020040000100240001006c625f706f72745f737461747300000000000000000000000000000000000000080003000b000000080004004a05000008000600", @ANYRES32=r1, @ANYBLOB="3c00010024000100757365725f6c696e6b75705f656e61626c65640000000000000000000000000008000300060000000400040008000600", @ANYRES32=r1, @ANYBLOB="40000100240001007072696f726974790000000000000000000000080003000e000000080004420000000008c3169a4a1035fb43afd2f03990000600", @ANYRES32=r1, @ANYBLOB="08000100", @ANYRES32=r1, @ANYBLOB="3c02020040000100240001006c625f74785f686173685f746f5f706f72745f6d617070696e67000000000000080003000300000008000400", @ANYRES32=r1, @ANYBLOB="080007000000000054000100240001006270665f686173685f66756e6300000000000000000000000000000000000000080003000b0000002400040007007c01ffff0000ff0f080107000000c9009e01060000000000081a000000003c00010024000100757365725f6c696e6b75705f656e61626c65640000000000000000000000000008000300060000000400040008000600", @ANYRES32=r1, @ANYBLOB="38000100240001006d636173745f72656a6f696e5f636f756e7400000000000000000000000000000800030003000000080004000000c20b40000100240001006c625f706f72745f737461747300000000000000000000000000000000000000080003000b000000080004000100000008000600", @ANYRES32=r1, @ANYBLOB="3c000100240001006c625f74785f6d6574686f64000000000000000000000000000000000000000008000300050000000c00040068617368000000003c00010024000100656e61626c65640000000000000000000000000000000000000000000000000008000300060000000400040008000600", @ANYRES32=r1, @ANYBLOB="38000100240001006d636173745f72656a6f696e5f636f756e740000000000000000000000000000080003000300000008000400ffffffff400001002400010071756575655f69640000000000000000000000000000000000000000000000000800030003000000080004000300000008000600", @ANYRES32=r1, @ANYBLOB="08000100", @ANYRES32=r1, @ANYBLOB="b8000200400001002400010071756575655f69640000000000000000000000000000000000000000000000000800030003000000080004006872000008000600", @ANYRES32=r1, @ANYBLOB="3c00010024000100757365725f6c696e6b75705f656e61626c65640000000000000000000000000008000300060000000400040008000600", @ANYRES32=r1, @ANYBLOB="38000100240001006c625f73746174735f726566726573685f696e74657276616c0000000000000008000300030000000800040002000000"], 0x3e0}}, 0x0) connect$packet(r0, &(0x7f0000001b00)={0x11, 0xf6, r1, 0x1, 0x9}, 0x14) chdir(&(0x7f0000000080)='./file0\x00') r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r3, 0x0) sendmmsg$sock(r3, &(0x7f00000019c0)=[{{&(0x7f00000000c0)=@ax25={{0x3, @null, 0x7}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @bcast, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}]}, 0x80, &(0x7f0000000600)=[{&(0x7f0000000140)="0a5aac7fc5b81369bd84170e0c3a1dcd2f8acb7d672296afcd8234169cec27664727f7e52f1c62c77f7f9abbcdc097cb0c543a334e42a4887c0b5cbe757c", 0x3e}, {&(0x7f0000000180)="d44a0561be71244129a1a025aa5a62acc2", 0x11}, {&(0x7f00000001c0)="06fbe771ef45dd5ebf7969dc5fa601b100424367022564c1d1a05750d306ea585d98fd3d53434b4d8acd73213ecc6067b462d52ccd1f0cdf73d898daf0", 0x3d}, {&(0x7f00000002c0)="5621a706f3ce7af65b6f60021f6e5e87e4ee0efc9236fa4723fea6701a9d26cae932cf2a0bbee3a382c2aefdbbaf228761ae7bb772dfb8665018fb3dc0238cfcc6581a7aef8b57060b775089add68b23ad814bebd90fd145ceac8894fa673fb89ace8ef6883cf78c6db89e748e58e09ea3e658272e1ee90c1beb20905983f5c9873ee21adf6f2f498a22a4f5204f0c4e71770e7c25ab0ebd2f5f895ecc", 0x9d}, {&(0x7f0000000200)="a235616c75b42ce827162138b2ee0b4c0922c865ba27301f6b89ab", 0x1b}, {&(0x7f0000000500)="fc037e75ba8526b3017136e74bf4c8a0f10ead81deee6210ee24b3ddb2813d89b8b0e927eb06315a9bffda6b46cbb6dc4e5bf552487610644d323f7559c11437cdb0980f17d4b146e074c9db25b86eceae724decad208d63e867ac9d6176ae8bb4f30ae9516f05429e3ca89e0a07103d670a48e17574003bde518a710bafe76ec93183457f51438e586d7b9f594fc561429c47be0ffa5321473bef8601dfd08a59043d94a53f08ec1d2ddfb4c4d65829fed0c006ecf4fd7f1383312a631a73f4fdb4ebf112079572e3767b2b4f2f23723f81605aa6e225738e965c33038a22ef9d3b785d3996880ad590c67d84ec", 0xee}], 0x6, &(0x7f0000000240)=[@timestamping={{0x14, 0x1, 0x25, 0x80000001}}], 0x18}}, {{&(0x7f0000000680)=@pptp={0x18, 0x2, {0x2, @remote}}, 0x80, &(0x7f00000018c0)=[{&(0x7f0000000700)="112faa930659d3b3b417e8333f9d34c03c8f0416d5c0450814a55d4e602379addb4b1925da7922b8d413b1a66aa1ec275c96a6779b05e92a91007ece54d2ced9c93f50862e0c19988c21bc514075516b8bce2b88e81dff0cb56d345d9c656bc1a7e01579c11caf3cb5354d515394690370ddffeedd0efa95c5a2461ec9b74c88681ffd93497c48d67e9458714c714f6ecc451379496873ff98beeec502c8cd17a3ab5089214d2e113df24b9037750234402c8624de737ef3e8028f30f8b2e0239646df271ec9957c5f6366a884e64ed8338e77681052b06f05da7bd4956e7d79990dadbcb160ad134abdc34912a55a50a43c4e117f532eb4bed3c7c741715eaca36fad7e95754a76f983a9b9d47d97d81cfd503bed8a4e9c3af3f90312afcc7e4a5f34f93725cd947a8cb3da740c3236dc3bd478f2d7d93e5b0a741d1c1ecdd44f72b7df2a89103634b3c8e3887c03ee4552ebfddb1c081d1701dc4277f477c3a2721a1f50890f0eb9364b22c0ad538f75859297b64ad56026dd205382ae3069dedc24caa5ba5c558b17ebbc2e2e047fc8de78bea78049f86f8eab2c239252c438a76bcce81817e54c846b0f5266b034c4400dc637ac02211b2643bb957a143fdcdf368e351bda893cc9780431349132ad08528f0f8d93c6ffa4e2b8ec133fbb54d3e7c62d72944cb7c4e97528b6b5b869200f8c8d3bb9b250de620251ffc2872f59002569a852ff75c4c0bcc5c185e2ddced2c7f18a73ff61ea95b04f47600d53474c7f5f5fc9d0fd9499dc28863d62db7e63bf1b26c2080cd8c549627fe1c2fd5abfc167eefbde772bc2a9843b5584e35979d54902dfac87c5592790547c141defe6f156aed0bd34ff341cdfacb4b353a689f0e0969223b31785ac463a5a2fdb8faa6d10d903aa73d7848bf56fd68cff8553bfcf8fe5ee560ae5408ffd07cebe1965a6cbc119d51a2cdfeba275fedd93632f54e9e825cc5280e20774be275815dabacee3e7e9b85769779750ff7e841cdccd149c30b19f2c83e842bc7ebcfa51ab9b9b0b5764125b57162f2a3c820b01684d312ea1712d0aa689ec3df6ce5864b9a930dabb4df7a49c6f9a78543303b4b67ede99e89c3b0205f5b86fa5e41b29bdf6f1918706d262c8921a979d20949bcab05dd10fcfcfaa78692f4aa5ffd76f883b141fc83a0dc5d021d8efbdcf86fe4c6b3e1595a2b9b23ef3041ae3e7f8f491d70f4a9478d82f317e2da5272c98126d2bd37ba54a0bb02e0347cbab2bff13879fc015ad2a0cb067f1f9b87870376ab0079c44e9175eb4e8f5a0aac34425ffb7647e49e0c519a11eed6ebc92ec4d20a91740c3d3de30d6f66e57e01938a04fad8380ddf8f6df029ea3a3b5c84e9ddea8727019b8470f9577bdfa4680685d6040a673cef9863cb718401770c1fd85d8c96a421c5450d3a006843ac17c00bab36d34354a4586bdb276b5dc52ee2b93997180e0dddddd681ee85804158c930fe2ea44b3f97472d8057b0926ed00d791237b4c057f244e067745817f2dd65975678390decf665b879494ed92e6005e69f77e14c84fd97b8bec28d272d7b245ffdffe71d5e76895187d72fab8c59fc5c5c6c759c999be93dac2c4e2cd75063580df5fed8a33457548a04a0a2bcd090e067d7646bbe7d8b637e575b154799a3a6e912a716f8b3fc88e8a779279dcff48287f798cae80288c4ddefb467ec238a7093c079b6dee939013300b124d0494cd8b46d89e63166f1ca9f6874ae9dd0ff7292d8815824a1c62bbe71903b2691d0d67e2b4007602b4e7dc469c58cf14788fbc9f3d703503352a6aff80f226afbf59941de2c11d1d6f11d93e957e2a9a7a46406d533f63c7c69534d19680a8039411afecb0ffe1e3ab139e5cedbdc5a4aafa293dbf17585de337a95d8d74abbbafe15addb4b5bf7f4093662d1d812b88b558c222a0afef849cd11f275bc34ac70ab5f9b65ddd0bbd83a3971e722b695ea9bbef82bcb8ea50a090f6a255df796b959ad04a8fbcbf99031520c0097a54d1cde07e8fb88a668421e67b07064da011492039bafc6987052df97acd7d7bad5cc4f83cb95789d742f801bb7f5d29eba6efd0ba7767da1712399e41413353def92f94e013e699b311417ccc11e78103624e4762da35255a6c627a17a4dcbaad75ae420d1f47324a57c8cd89fa340b146200c5af66b67d3309e26601616ed8d23fe85fa942a1629e16144f1478e13833f2e91825e9dfc4591c0fd62aac8f90c7296cf171f09324cedb69e8cab69c042e86a12fd3f2a70133adadb7d8b0e2c73627bc6a94c812eaff0405fe45dce3fad419b448f233a3818ccc6105ef088060d8d75a1a98e4fb11d77f305ca8122799186a363bdf6acfc2380f9fa6073b24d40c4fc40b0153db6d8b25f48aa9b4ae9c60553036d7fda481da40ffacd2a4da792452574800382cd150ef9a4676ecc836414d2289bf0312202295d6d3c380612b9ef1db6fb01965f10e5c88813e8b4c5f21e7073611565aa1808cc7786141c23bfa9d9dbcd88c4ca4b09a34f1058f375696adbdd6c187abf6b373e316ac8541b3cd4c0a0a02b701236cc699f6970c74bcdc670d73a682e004790e32be459bc3cb1643ea1245aeff620e767ecbbe44b041fae437d4d426f1092682c3452f670f6c19a7165ecf1062dd0569d718b759a20877f580518777892f086f16df3cda5b0d954f60f5b645730749536196d7858929646ce80a0649e3dcf48293ceb896d0ed3dc2655f789e82271f1b46480495b0cf90bc311fe8b6099aedccb95bb7c735d92416adf25978ac930576111fd42e6725402f0850fe5e15388fd4933264e9183294ea08110b7bbcfd71c326cc761860db97348cacb940d5248b1171a8424805a131eec785c5cae1c025a1724280688f624d43bed677d5f5d3aade93afbf820be4b35aa5fa8f18108238ac749f950aae2c5abd1dc5826a911836a565db37ca6053b60cfced878d1b9415ba8bfecf2d1dc62d648a4ced7ad359cf71f195709afe5db7a82645f31c593b61ef504d40637223cf1a6cc5c4858e95e6e7d0d87a253175485f55299328da28451cbe2a571e138eff7e6785de9609cd23592a8c4366165053d05e5afb996db2b85e6a5e85559afe74dff238521f9fb5d5cdd31ef8e65de7f64d26c6e7faa0089ff2cbff389ac10af3d85fa026fcfa395f677c0127548f40fc9b49a134fa6fecb7bf303c448c82309cca25e77cdb3ef40c10692d089aed6c2b5b3f8e0095ae61497f9b1b5df0e466f661259f82694cbb00244e45e75be2b3b5a48cbe0ea4a745c344250a9b87b84c31d5e364fea23933180e7f3720f7364d1e362ccddee75ca075be27a366842a813abd430e44e12f9b20dc33ec4091691763ca2163d8391f84f30462f624a7f1950a747fe8cc9e120cae4405fcd281174070d9246f7dc5a9fa5c80dd67e5efe20edd56d3fcac742d543778da04c61ae929d1e991ad33ddf91843a224e8d0f3a811348aa53380eca394347ba499c594c1b4a58a3dc148b4fda51face68a789befd4dc779eae3e702aa978b6d107da93a8565954ce16e59a04438cc1fe5487b07ef3ace5a550eb18d7646e4a8ee9d21479c0f301299d86fe035e1053596dc3b9697e295c7a284409309b2e03db53e293ca097ca4547e182ffc5132124422744e8122e3bdf58b1d23dc3719577789f4b4ba4d363ae6efe0ba9faaf63edbf55080d2cd82aae2e60db40be7b1e76769ec6c255b70024308d825a1553d921fb455cff4b65b22a19939cd0dc96386b32278308ba4efb06f0f01dc214bb822e49b0780ae71fd8d9fa7d90edee0a0c15b15314542981bd9435a89c708430ec276aa31e3e0178e5c367e280736c88934379483cf505fba5bcf984fd927048484c8e4fd38b890ce12500247d74ae38def8461b0a910383332a132d7199970c537e12825ed21a8d5c0d9acacee67279cb64d41ba9d01d1c40b3fa0e959ca8fc3d9a8143e6d13eea0e53a7bbd25b3d82be472515320a060cc50236123e512d08df90213eea49dbde2dc447b7b12685cb9ae136b77038e7ebe2c5e29858c1094f64a93bb1576e556175c2162cb1eaeacbb5f6ce38f3eedfd28c138e37bbb1655674d02c45ad1d21bbc95a2c67225e0a27a8bd7070f3783a95be8e1af3de013d10e88914fa9317cbd79d3146db13b10395a385a04923dcecda8295a7d8e36af539fc865c2995cc77d565ee7873bb963282042afb63b9afb44e2afbf0eb8478c2accec2a5c3b74645bd439449c3762e6d64989819a661478286af382cdc7f0d1a6636b566a5093b8ee8e062f4da6056dd0e8a03ba7430f17f392666e0d8aa506abc9c19e1d3463af355c693fbf8d8dedff0a67726ea80022b979dda78330bacbd384126eeaed43f57dd76bff61d24e8e8b865f01dca696fbf612b0f229157f56f41db7039a1cf5f73b63637c4a425df17fdf853466d08f37d85841f9a860ce7cbfff14cd2f9df9bd175aa3ea7decab56445842a0e55724da4fbf1113bbf66f7612b4beae4b55915a66665073fed21a172d2885128503637fb3f760c3f52751e60678352dab85640a50778b0f67329a1d613b0631522ebeb737809a67c0addd0ea1ba40f604862f5157668348f8dbc511efb1800ea38cc718540c4348467958ad9ff92d24881b158676b5099a5bdca6d17268be8088b0932bd3c7d261b915ae487c925f4a6c8b2326a54fc8e49615c16e90df015521ed85c269912b028f99b4917184d34c70a76091f0cbc9dfee5a7b9d58c309731f93fe7b28af799dd67b6bbf54c2678826c9c83ed0b7eb5d9e177da6f3ab6af8be381dc7bc47a20466a30cecb558879973d3e47ed7be93bdb7cd14a6a8a3716621503d5989677e040e63ff7ce43e5a558e89f4e2bd2b038c8ece5ecb30c1c729254fe40f1893c579f98be2af0e77bc4127fce8ba960f19c28e14d6fda266e419bdea73623212b06e8b2248ef84ae3dca8c2300da74cd2360dae58d80882d9247063c09d9ac3f473286d9ef97207842cfb8d50984912721b0fa81899207d75332b7c6e9e22f9f108729928bfa703ace801ae577118132ae599d7278d768be41168607876709540fd69ddea1eb3b7c0a5e919651e196a2d5c739f1808adbfb066eb3841f89fce44d97a7df2c2201c31a73c4b34bec0a2fdec644dbe83ca8f5fd0fcb36e1bbd03625f9e7441e2870b44a882d21e7532326866291f3900cf71ccbf64273f59df7b56516ee7299e82bbb125b546445ba31f466dfd75cf28a02433f36fc2584ebf46e1d2da20d2453e9e7c462461a461f727c100fbc567c618e94ac2212b733c013d809c1235c9196fdb63313b6b7a78abdd6fc2e5b37798d48c74e2322b1fe509985e0de57495ca03546dbde9c9796703ffcb34505a1f11cc0a58ac8d31c54bc7bf1ea16d84c68900a3c05ffb81cd0395abaaf77b9c4afec35766c20afd99caf911b996e077b801991a8b5469cb658dfce8c9d08b263f0919cbb8badeb58aea5edd9eb1b40919f208408208e89c80b953f067ea9734eb09e8ac044a22358de1fb3dc9197dbf22464ce073f6a9bee5d860b981bbb0ea8b3af08710a6c75b2e350e44f2815fc46840290cb693b9da305e669c09554706910f1ab342f32ef52e06e6aaa923d5b421b464c6acb6600c46455a2e0cbbc4420b418fe54e0829a64e20366158176b2c84331ba162d1ff6f6350b7fa796c08f380239396e1d5464f31031f13bda0a915ab35dcba21cddac1694bb7b9d126fadb5158c62fc70002d80a7af030576add0e8", 0x1000}, {&(0x7f0000001700)="7ce7b1c4bbd7ebcb95b4792aae4a0af6ee56c3e92b7e034b0a283b9a02b4349b7341f843b0b3107cb47c745494fb094624efbb82a58f041e15be24e1a1fa1009df8b4483f4dd40cd0e89e69dca24a6f8d73bd75573aa3a354f8ea83bff4820d858415f879b69605162362e0a54c98c23101dc671225666da1a6fb89ab094ee2b12cf9b02c79379f3b91661067dd160fd96391dbf", 0x94}, {&(0x7f0000000380)="cab6", 0x2}, {&(0x7f00000017c0)="9c8b11b5c5a8f3e53b3eea9d4971d619437fc33b4a7a979ce17f348bc7dab300634824cc49dc0da381b70529ec78136a43d43a", 0x33}, {&(0x7f0000001800)="6f93ec942dc0e4bd84332820", 0xc}, {&(0x7f0000001840)="c971b8a9ae4225581bb16783e5b5a00ad919033102892998cab47dd209ff73275fb71b74a01a2b131532034d4ade94409ff969f87cebc3d556d7d5bb4447c12a020c7a91b53bd948398472", 0x4b}], 0x6, &(0x7f0000001940)=[@mark={{0x14, 0x1, 0x24, 0x10000}}, @mark={{0x14, 0x1, 0x24, 0x8}}, @mark={{0x14, 0x1, 0x24, 0x6}}, @timestamping={{0x14, 0x1, 0x25, 0x4}}], 0x60}}], 0x2, 0x44810) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r3, 0x0) r4 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r4, 0x1000008912, &(0x7f0000000000)="11dca50d5e0bcfe47bf070") mremap(&(0x7f0000ffd000/0x3000)=nil, 0x2000, 0x1002, 0x3, &(0x7f0000ffa000/0x1000)=nil) 08:37:20 executing program 3: r0 = socket(0x2, 0x1, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) setsockopt$EBT_SO_SET_ENTRIES(r0, 0xa00000000000000, 0x80, &(0x7f00000000c0)=@broute={'broute\x00\x00\x00z\x00', 0x20, 0x1, 0x9c0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000e00], 0x0, 0x0, &(0x7f0000000e00)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff010000000b00000000000000000062726964676530000000000000000000766c616e300000000000000000000000736974300000000000000000000000007465716c3000000000000000000000000000000000000000000000000180c20000000000000000000000b8080000b808000030090000616d6f6e6700000000000000000000000000000000000000000000000000000018040000000000000c00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000027327243426c7d2d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000a600a9e85725d89818472e65aba21d9bbc1b20e8331c6fd24a5aceaeefe102e42a013ac2c00eeb782c34eab997013e0506220c21a44cc58ff5bc83d5e4066c770000000000000000000000000000000000000000000000000000000000000000000000000000000001000000fcffffff00000000"]}, 0xa38) 08:37:20 executing program 2: r0 = openat$selinux_mls(0xffffffffffffff9c, &(0x7f0000000280)='/selinux/mls\x00', 0x0, 0x0) ioctl$UI_SET_ABSBIT(r0, 0x40045567, 0x7) mkdir(&(0x7f0000000040)='./file0\x00', 0x0) r1 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vga_arbiter\x00', 0x1, 0x0) fsetxattr$security_smack_transmute(r1, &(0x7f0000000100)='security.SMACK64TRANSMUTE\x00', &(0x7f0000000140)='TRUE', 0x4, 0x1) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000180)='devtmpfs\x00\xfd?\x12e\xf4\xe9\xe0(\xe0;V6\xe7\xba\xc3P\t\xf3]\x9dS\x87\x1f\xa2\xa7\xfd\x18\xcf\x01\x00\x00\x80\x00\x00\x00\x00\xa0\xbd{>\xec\xef\xfcNC\x93\xc7\xc2+\"\xf3y\x94i\xd2\xb3D\x19`b7\xee\xf5\"aT\xc9X\x04wiqKL\x049\xacq\xa5FT\x1c\x14\x06\xe6<\xd4\xc7\xfb\xc5\x9d[\xff#\x8e\xb6\x01[\xcb)\xe8\xd8\n\xd7.\x1a\t&\x05\x89\xe3\xf5\xb0\xc4q)a\xaf\x1a\x99\xa6\x19\x9d\x13\x8d\x94\xf5\xfc2\xe3\xe1e\n_\xd5\xc7.C\xa9\xbe)8*H\"', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mkdir(&(0x7f0000000240)='./file0\x00', 0x80) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0x0) madvise(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xb) 08:37:20 executing program 3: r0 = socket(0x2, 0x1, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) setsockopt$EBT_SO_SET_ENTRIES(r0, 0xa00000000000000, 0x80, &(0x7f00000000c0)=@broute={'broute\x00\x00\x00\x00\x00\x01\x00', 0x20, 0x1, 0x9c0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000e00], 0x0, 0x0, &(0x7f0000000e00)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff010000000b00000000000000000062726964676530000000000000000000766c616e300000000000000000000000736974300000000000000000000000007465716c3000000000000000000000000000000000000000000000000180c20000000000000000000000b8080000b808000030090000616d6f6e6700000000000000000000000000000000000000000000000000000018040000000000000c00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000027327243426c7d2d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000a600a9e85725d89818472e65aba21d9bbc1b20e8331c6fd24a5aceaeefe102e42a013ac2c00eeb782c34eab997013e0506220c21a44cc58ff5bc83d5e4066c770000000000000000000000000000000000000000000000000000000000000000000000000000000001000000fcffffff00000000"]}, 0xa38) 08:37:20 executing program 4: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') arch_prctl$ARCH_SET_CPUID(0x1012, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/self/net/pfkey\x00', 0x2a0001, 0x0) ioctl$GIO_SCRNMAP(r0, 0x4b40, &(0x7f0000000100)=""/215) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r1, 0x2000) 08:37:20 executing program 1: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) lremovexattr(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)=@random={'trusted.', '@vmnet0system/\x00'}) r1 = getpgid(0x0) prctl$PR_SET_PTRACER(0x59616d61, r1) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r0, 0x0) [ 521.510488] x86/PAT: syz-executor.5:23599 freeing invalid memtype [mem 0x1000001000-0x1000001fff] [ 521.525671] FAULT_INJECTION: forcing a failure. [ 521.525671] name failslab, interval 1, probability 0, space 0, times 0 08:37:20 executing program 0: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) linkat(r0, &(0x7f0000000180)='./file0\x00', r0, &(0x7f00000001c0)='./file0\x00', 0x1400) mount(&(0x7f00000000c0)=@sr0='/dev/sr0\x00', &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='ceph\x00', 0x202000, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f0000000000)="11dca50d5e0bcfe47bf070") mremap(&(0x7f0000ffd000/0x3000)=nil, 0x2000, 0x1002, 0x3, &(0x7f0000ffa000/0x1000)=nil) [ 521.615673] CPU: 0 PID: 23599 Comm: syz-executor.5 Not tainted 4.19.64 #38 [ 521.622723] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 521.632079] Call Trace: [ 521.634708] dump_stack+0x172/0x1f0 [ 521.638362] should_fail.cold+0xa/0x1b [ 521.642272] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 521.647389] ? lock_downgrade+0x810/0x810 [ 521.651552] __should_failslab+0x121/0x190 [ 521.655802] should_failslab+0x9/0x14 [ 521.659616] kmem_cache_alloc+0x2ae/0x700 [ 521.663774] ? anon_vma_clone+0x320/0x480 [ 521.667946] anon_vma_fork+0x1ea/0x4a0 [ 521.671862] ? dup_userfaultfd+0x15e/0x6c0 [ 521.676112] copy_process.part.0+0x34e5/0x7a30 [ 521.680726] ? __cleanup_sighand+0x70/0x70 [ 521.684975] ? lock_downgrade+0x810/0x810 [ 521.689170] ? kasan_check_write+0x14/0x20 [ 521.693423] ? __mutex_unlock_slowpath+0xf8/0x6b0 [ 521.698281] _do_fork+0x257/0xfd0 [ 521.701756] ? fork_idle+0x1d0/0x1d0 [ 521.705484] ? fput+0x128/0x1a0 [ 521.708777] ? ksys_write+0x1f1/0x2d0 [ 521.712599] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 521.717365] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 521.722136] ? do_syscall_64+0x26/0x620 [ 521.726124] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 521.731519] ? do_syscall_64+0x26/0x620 [ 521.735516] __x64_sys_clone+0xbf/0x150 [ 521.739524] do_syscall_64+0xfd/0x620 [ 521.743350] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 521.748549] RIP: 0033:0x459829 08:37:21 executing program 2: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) getsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000180), &(0x7f00000001c0)=0x10) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) madvise(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0x11) ioctl$sock_inet_SIOCRTMSG(r0, 0x890d, &(0x7f0000000100)={0x0, {0x2, 0x4e23, @remote}, {0x2, 0x4e23, @remote}, {0x2, 0x4e20, @loopback}, 0x18, 0x0, 0x0, 0x0, 0x3, &(0x7f00000000c0)='vcan0\x00', 0x3, 0x2, 0x3}) 08:37:21 executing program 1: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) r0 = dup(0xffffffffffffffff) ioctl$KVM_ASSIGN_SET_MSIX_ENTRY(r0, 0x4010ae74, &(0x7f00000000c0)={0x800, 0x0, 0x10000}) chdir(&(0x7f0000000080)='./file0\x00') r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r1, 0x0) [ 521.751750] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 521.770658] RSP: 002b:00007f6d217bfc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 521.778379] RAX: ffffffffffffffda RBX: 00007f6d217bfc90 RCX: 0000000000459829 [ 521.785650] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 521.792925] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 521.800197] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f6d217c06d4 [ 521.807562] R13: 00000000004bfce6 R14: 00000000004d1998 R15: 0000000000000004 08:37:21 executing program 3: r0 = socket(0x2, 0x1, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) setsockopt$EBT_SO_SET_ENTRIES(r0, 0xa00000000000000, 0x80, &(0x7f00000000c0)=@broute={'broute\x00\x00\x00\x00\x00\x02\x00', 0x20, 0x1, 0x9c0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000e00], 0x0, 0x0, &(0x7f0000000e00)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff010000000b00000000000000000062726964676530000000000000000000766c616e300000000000000000000000736974300000000000000000000000007465716c3000000000000000000000000000000000000000000000000180c20000000000000000000000b8080000b808000030090000616d6f6e6700000000000000000000000000000000000000000000000000000018040000000000000c00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000027327243426c7d2d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000a600a9e85725d89818472e65aba21d9bbc1b20e8331c6fd24a5aceaeefe102e42a013ac2c00eeb782c34eab997013e0506220c21a44cc58ff5bc83d5e4066c770000000000000000000000000000000000000000000000000000000000000000000000000000000001000000fcffffff00000000"]}, 0xa38) [ 521.876261] x86/PAT: syz-executor.5:23599 freeing invalid memtype [mem 0x1000000000-0x1000000fff] [ 521.932729] x86/PAT: syz-executor.5:23599 freeing invalid memtype [mem 0x1000002000-0x1000002fff] 08:37:21 executing program 5 (fault-call:6 fault-nth:56): mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x1000000000) mremap(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0x0, 0x0, 0x0) 08:37:21 executing program 4: r0 = openat$snapshot(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/snapshot\x00', 0x101000, 0x0) setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000500)=@mangle={'mangle\x00', 0x1f, 0x6, 0x590, 0x0, 0x3b0, 0x2f0, 0x230, 0x230, 0x4f8, 0x4f8, 0x4f8, 0x4f8, 0x4f8, 0x6, &(0x7f0000000100), {[{{@ip={@loopback, @rand_addr=0x5, 0xffffffff, 0xffffffff, 'netdevsim0\x00', 'vlan0\x00', {0xff}, {0xff}, 0x1d, 0x2, 0x11}, 0x0, 0xe8, 0x148, 0x0, {}, [@inet=@rpfilter={0x28, 'rpfilter\x00', 0x0, {0x4}}, @common=@inet=@ecn={0x28, 'ecn\x00', 0x0, {0x30, 0x11, 0x1, 0xfffffffffffffffc}}]}, @common=@SET={0x60, 'SET\x00', 0x0, {{0x9, [0x7, 0x7f, 0x2, 0x0, 0x400, 0x1], 0x3, 0xd18}, {0x9, [0x9eb4, 0x7, 0x633, 0xffffffffffff6b50, 0xe9, 0x200], 0x1, 0x9ea}}}}, {{@uncond, 0x0, 0xc0, 0xe8, 0x0, {}, [@inet=@rpfilter={0x28, 'rpfilter\x00', 0x0, {0x2}}]}, @unspec=@CHECKSUM={0x28, 'CHECKSUM\x00'}}, {{@ip={@loopback, @rand_addr=0x8, 0xff, 0xffffff00, 'ip6gretap0\x00', 'veth1_to_bridge\x00', {}, {0xff}, 0xff, 0x2, 0x8}, 0x0, 0x98, 0xc0}, @TTL={0x28, 'TTL\x00', 0x0, {0x3, 0xfffffffffffffffc}}}, {{@ip={@initdev={0xac, 0x1e, 0x0, 0x0}, @loopback, 0xffffffff, 0xffffffff, 'rose0\x00', 'lapb0\x00', {}, {}, 0x7f, 0x1, 0x16}, 0x0, 0x98, 0xc0}, @TTL={0x28, 'TTL\x00', 0x0, {0x2, 0xfffffffffffeffff}}}, {{@uncond, 0x0, 0xe8, 0x148, 0x0, {}, [@inet=@rpfilter={0x28, 'rpfilter\x00', 0x0, {0x8}}, @inet=@rpfilter={0x28, 'rpfilter\x00', 0x0, {0x2}}]}, @common=@CLUSTERIP={0x60, 'CLUSTERIP\x00', 0x0, {0x0, @broadcast, 0x90f, 0x2, [0x23, 0x38, 0x3d, 0x21, 0x1, 0x23, 0x2f, 0x1, 0x5, 0x9, 0x22, 0x18, 0x7, 0x12, 0x9, 0x30], 0x2, 0x4, 0x8}}}], {{[], 0x0, 0x70, 0x98}, {0x28}}}}, 0x5f0) mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r1, 0x2000) removexattr(&(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)=@known='system.posix_acl_access\x00') 08:37:21 executing program 2: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) madvise(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xb) setsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, &(0x7f00000000c0)={0x40, 0x3, 0x3}, 0x10) 08:37:21 executing program 3: r0 = socket(0x2, 0x1, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) setsockopt$EBT_SO_SET_ENTRIES(r0, 0xa00000000000000, 0x80, &(0x7f00000000c0)=@broute={'broute\x00\x00\x00\x00\x00\x03\x00', 0x20, 0x1, 0x9c0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000e00], 0x0, 0x0, &(0x7f0000000e00)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff010000000b00000000000000000062726964676530000000000000000000766c616e300000000000000000000000736974300000000000000000000000007465716c3000000000000000000000000000000000000000000000000180c20000000000000000000000b8080000b808000030090000616d6f6e6700000000000000000000000000000000000000000000000000000018040000000000000c00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000027327243426c7d2d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000a600a9e85725d89818472e65aba21d9bbc1b20e8331c6fd24a5aceaeefe102e42a013ac2c00eeb782c34eab997013e0506220c21a44cc58ff5bc83d5e4066c770000000000000000000000000000000000000000000000000000000000000000000000000000000001000000fcffffff00000000"]}, 0xa38) 08:37:21 executing program 1: mkdir(&(0x7f0000000140)='./file0\x00', 0x100) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r0, 0x0) 08:37:21 executing program 0: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) openat$random(0xffffffffffffff9c, &(0x7f0000000100)='/dev/urandom\x00', 0x20000, 0x0) ioctl$DRM_IOCTL_VERSION(r0, 0xc0406400, &(0x7f0000000500)={0x88, 0x7ff, 0x7, 0xe0, &(0x7f0000000140)=""/224, 0xc9, &(0x7f00000002c0)=""/201, 0x6, &(0x7f0000000240)=""/6}) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r0, 0x0) ioctl$KVM_SET_IDENTITY_MAP_ADDR(r0, 0x4008ae48, &(0x7f00000000c0)=0x10f002) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f0000000000)="11dca50d5e0bcfe47bf070") mremap(&(0x7f0000ffd000/0x3000)=nil, 0x2000, 0x1002, 0x3, &(0x7f0000ffa000/0x1000)=nil) 08:37:21 executing program 2: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) madvise(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xb) 08:37:21 executing program 4: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r0, 0x2000) r1 = syz_genetlink_get_family_id$tipc(&(0x7f0000000100)='TIPC\x00') sendmsg$TIPC_CMD_GET_MAX_PORTS(r0, &(0x7f00000001c0)={&(0x7f00000000c0), 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x1c, r1, 0x101, 0x70bd25, 0x25dfdbfe, {}, ["", "", "", "", "", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x10}, 0x20000000) 08:37:21 executing program 3: r0 = socket(0x2, 0x1, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) setsockopt$EBT_SO_SET_ENTRIES(r0, 0xa00000000000000, 0x80, &(0x7f00000000c0)=@broute={'broute\x00\x00\x00\x00\x00\x04\x00', 0x20, 0x1, 0x9c0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000e00], 0x0, 0x0, &(0x7f0000000e00)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff010000000b00000000000000000062726964676530000000000000000000766c616e300000000000000000000000736974300000000000000000000000007465716c3000000000000000000000000000000000000000000000000180c20000000000000000000000b8080000b808000030090000616d6f6e6700000000000000000000000000000000000000000000000000000018040000000000000c00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000027327243426c7d2d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000a600a9e85725d89818472e65aba21d9bbc1b20e8331c6fd24a5aceaeefe102e42a013ac2c00eeb782c34eab997013e0506220c21a44cc58ff5bc83d5e4066c770000000000000000000000000000000000000000000000000000000000000000000000000000000001000000fcffffff00000000"]}, 0xa38) [ 522.208067] x86/PAT: syz-executor.5:24063 freeing invalid memtype [mem 0x1000001000-0x1000001fff] [ 522.232370] FAULT_INJECTION: forcing a failure. [ 522.232370] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 522.292929] CPU: 0 PID: 24063 Comm: syz-executor.5 Not tainted 4.19.64 #38 [ 522.300003] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 522.309357] Call Trace: [ 522.311954] dump_stack+0x172/0x1f0 [ 522.315591] should_fail.cold+0xa/0x1b [ 522.319746] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 522.324862] ? __might_sleep+0x95/0x190 [ 522.328867] __alloc_pages_nodemask+0x1ee/0x750 [ 522.333546] ? __alloc_pages_slowpath+0x2870/0x2870 [ 522.338579] ? save_stack+0x45/0xd0 [ 522.342239] ? kasan_kmalloc+0xce/0xf0 [ 522.346125] ? kasan_slab_alloc+0xf/0x20 [ 522.350201] ? __lock_acquire+0x6ee/0x49c0 [ 522.354437] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 522.360007] alloc_pages_current+0x107/0x210 [ 522.364425] pte_alloc_one+0x1b/0x1a0 [ 522.368227] copy_huge_pmd+0x7d/0x670 [ 522.372033] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 522.377568] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 522.383109] copy_page_range+0x7a1/0x1f90 [ 522.387256] ? anon_vma_fork+0x371/0x4a0 [ 522.391329] ? find_held_lock+0x35/0x130 [ 522.395392] ? anon_vma_fork+0x371/0x4a0 [ 522.399459] ? vma_compute_subtree_gap+0x158/0x230 [ 522.404397] ? vma_gap_callbacks_rotate+0x62/0x80 [ 522.409264] ? pmd_alloc+0x180/0x180 [ 522.412988] ? __vma_link_rb+0x279/0x370 [ 522.417051] copy_process.part.0+0x543d/0x7a30 [ 522.421660] ? __cleanup_sighand+0x70/0x70 [ 522.425906] ? lock_downgrade+0x810/0x810 [ 522.430061] ? kasan_check_write+0x14/0x20 [ 522.434298] ? __mutex_unlock_slowpath+0xf8/0x6b0 [ 522.439168] _do_fork+0x257/0xfd0 [ 522.442629] ? fork_idle+0x1d0/0x1d0 [ 522.446339] ? fput+0x128/0x1a0 [ 522.449642] ? ksys_write+0x1f1/0x2d0 [ 522.453948] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 522.458722] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 522.463478] ? do_syscall_64+0x26/0x620 [ 522.467479] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 522.472840] ? do_syscall_64+0x26/0x620 [ 522.476815] __x64_sys_clone+0xbf/0x150 [ 522.480807] do_syscall_64+0xfd/0x620 [ 522.484647] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 522.489844] RIP: 0033:0x459829 [ 522.493040] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 522.511940] RSP: 002b:00007f6d217bfc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 522.519649] RAX: ffffffffffffffda RBX: 00007f6d217bfc90 RCX: 0000000000459829 [ 522.526917] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 522.534185] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 522.541453] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f6d217c06d4 [ 522.548727] R13: 00000000004bfce6 R14: 00000000004d1998 R15: 0000000000000004 08:37:21 executing program 1: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) r0 = syz_open_dev$cec(&(0x7f0000000100)='/dev/cec#\x00', 0x1, 0x2) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(0xffffffffffffffff, 0x84, 0xa, &(0x7f0000000140)={0x9, 0x3, 0x8003, 0x7a, 0xffffffffffffffff, 0x0, 0xf93c, 0x5d3454a0, 0x0}, &(0x7f0000000180)=0x20) r2 = syz_genetlink_get_family_id$tipc2(&(0x7f00000002c0)='TIPCv2\x00') sendmsg$TIPC_NL_PEER_REMOVE(r0, &(0x7f0000000340)={&(0x7f0000000240), 0xc, &(0x7f0000000300)={&(0x7f0000000500)={0x260, r2, 0x8, 0x70bd2a, 0x25dfdbfc, {}, [@TIPC_NLA_MEDIA={0x98, 0x5, [@TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_PROP={0x1c, 0x2, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x5}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x13}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1e}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_PROP={0x24, 0x2, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1e}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x40}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7f08}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xb}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_PROP={0x2c, 0x2, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x79c}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x80}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x101}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x13}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xff}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}]}, @TIPC_NLA_BEARER={0x11c, 0x1, [@TIPC_NLA_BEARER_PROP={0x34, 0x2, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x9}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x9}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x9a6d}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x80000000}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x101}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x14}]}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x9}, @TIPC_NLA_BEARER_PROP={0x3c, 0x2, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x9}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xd}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x210a}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1a}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x12}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x5}]}, @TIPC_NLA_BEARER_NAME={0xc, 0x1, @l2={'ib', 0x3a, 'nr0\x00'}}, @TIPC_NLA_BEARER_PROP={0x1c, 0x2, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x7}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x101}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6}]}, @TIPC_NLA_BEARER_NAME={0x18, 0x1, @l2={'ib', 0x3a, 'bridge_slave_1\x00'}}, @TIPC_NLA_BEARER_UDP_OPTS={0x2c, 0x4, {{0x14, 0x1, @in={0x2, 0x4e24, @broadcast}}, {0x14, 0x2, @in={0x2, 0x4e20, @initdev={0xac, 0x1e, 0x0, 0x0}}}}}, @TIPC_NLA_BEARER_PROP={0x34, 0x2, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x2}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x8}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x8}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x2dbbc127}, @TIPC_NLA_PROP_WIN={0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8}]}]}, @TIPC_NLA_LINK={0x5c, 0x4, [@TIPC_NLA_LINK_NAME={0x14, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_PROP={0x24, 0x7, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x3}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x12}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1e}]}, @TIPC_NLA_LINK_NAME={0xc, 0x1, 'syz0\x00'}, @TIPC_NLA_LINK_NAME={0x14, 0x1, 'broadcast-link\x00'}]}, @TIPC_NLA_MEDIA={0x10, 0x5, [@TIPC_NLA_MEDIA_PROP={0x4}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'ib\x00'}]}, @TIPC_NLA_MON={0x14, 0x9, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x4}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x1ff}]}, @TIPC_NLA_MEDIA={0x18, 0x5, [@TIPC_NLA_MEDIA_PROP={0x14, 0x2, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1f}]}]}]}, 0x260}, 0x1, 0x0, 0x0, 0x10}, 0x4000010) getsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={r1, 0x3ff, 0x30}, &(0x7f0000000200)=0xc) chdir(&(0x7f0000000080)='./file0\x00') r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) ioctl$DRM_IOCTL_GET_MAGIC(r3, 0x80046402, &(0x7f00000000c0)=0x5) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r3, 0x0) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r3, 0x0) 08:37:21 executing program 2: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) openat$selinux_relabel(0xffffffffffffff9c, &(0x7f00000000c0)='/selinux/relabel\x00', 0x2, 0x0) madvise(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xb) [ 522.598725] ebt_among_mt_check: 7 callbacks suppressed [ 522.598732] ebt_among: dst integrity fail: 3cd 08:37:22 executing program 0: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r0, 0x0) r1 = socket$inet_udplite(0x2, 0x2, 0x88) r2 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000100)='IPVS\x00') sendmsg$IPVS_CMD_NEW_DAEMON(r0, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x40021040}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x14, r2, 0xf00, 0x70bd28, 0x25dfdbfc}, 0x14}}, 0x4048880) ioctl(r1, 0x1000008912, &(0x7f0000000000)="11dca50d5e0bcfe47bf070") mremap(&(0x7f0000ffd000/0x3000)=nil, 0x2000, 0x1002, 0x3, &(0x7f0000ffa000/0x1000)=nil) [ 522.651910] x86/PAT: syz-executor.5:24063 freeing invalid memtype [mem 0x1000000000-0x1000000fff] [ 522.665173] x86/PAT: syz-executor.5:24063 freeing invalid memtype [mem 0x1000002000-0x1000002fff] 08:37:22 executing program 5 (fault-call:6 fault-nth:57): mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x1000000000) mremap(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0x0, 0x0, 0x0) 08:37:22 executing program 3: r0 = socket(0x2, 0x1, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) setsockopt$EBT_SO_SET_ENTRIES(r0, 0xa00000000000000, 0x80, &(0x7f00000000c0)=@broute={'broute\x00\x00\x00\x00\x00\x05\x00', 0x20, 0x1, 0x9c0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000e00], 0x0, 0x0, &(0x7f0000000e00)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff010000000b00000000000000000062726964676530000000000000000000766c616e300000000000000000000000736974300000000000000000000000007465716c3000000000000000000000000000000000000000000000000180c20000000000000000000000b8080000b808000030090000616d6f6e6700000000000000000000000000000000000000000000000000000018040000000000000c00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000027327243426c7d2d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000a600a9e85725d89818472e65aba21d9bbc1b20e8331c6fd24a5aceaeefe102e42a013ac2c00eeb782c34eab997013e0506220c21a44cc58ff5bc83d5e4066c770000000000000000000000000000000000000000000000000000000000000000000000000000000001000000fcffffff00000000"]}, 0xa38) 08:37:22 executing program 2: mkdir(&(0x7f0000000040)='./file0\x00', 0xfffffffffffffffc) rt_sigreturn() mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000100)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) ioctl$KVM_RUN(r0, 0xae80, 0x0) chroot(&(0x7f00000000c0)='./file0\x00') getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000180)={0x0, 0x0}, &(0x7f00000001c0)=0xc) mount$bpf(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000140)='bpf\x00', 0x20402, &(0x7f00000002c0)={[{@mode={'mode', 0x3d, 0x3f}}], [{@subj_user={'subj_user', 0x3d, 'devtmpfs\x00'}}, {@defcontext={'defcontext', 0x3d, 'staff_u'}}, {@dont_measure='dont_measure'}, {@fowner_eq={'fowner', 0x3d, r1}}, {@audit='audit'}, {@defcontext={'defcontext', 0x3d, 'unconfined_u'}}, {@obj_user={'obj_user'}}]}) madvise(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x2) [ 522.826479] ebt_among: dst integrity fail: 3cd [ 522.866297] x86/PAT: syz-executor.5:24341 freeing invalid memtype [mem 0x1000001000-0x1000001fff] [ 522.886945] FAULT_INJECTION: forcing a failure. [ 522.886945] name failslab, interval 1, probability 0, space 0, times 0 [ 522.899368] CPU: 0 PID: 24341 Comm: syz-executor.5 Not tainted 4.19.64 #38 [ 522.906400] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 08:37:22 executing program 1: r0 = openat$selinux_status(0xffffffffffffff9c, &(0x7f0000000680)='/selinux/status\x00', 0x0, 0x0) getsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f00000006c0)={{{@in=@dev, @in6=@initdev}}, {{@in6=@mcast1}, 0x0, @in=@dev}}, &(0x7f00000007c0)=0xe8) mkdir(&(0x7f0000000040)='./file0\x00', 0x0) r1 = syz_open_dev$mouse(&(0x7f0000000240)='/dev/input/mouse#\x00', 0x7, 0x400) getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000000280)={{{@in=@broadcast, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@remote}, 0x0, @in=@broadcast}}, &(0x7f0000000380)=0xe8) stat(&(0x7f0000000500)='./file0\x00', &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) lstat(&(0x7f00000005c0)='./file0\x00', &(0x7f0000000600)={0x0, 0x0, 0x0, 0x0, 0x0}) mount$fuseblk(&(0x7f0000000140)='/dev/loop0\x00', &(0x7f0000000180)='./file0\x00', &(0x7f0000000200)='fuseblk\x00', 0x400, &(0x7f0000000d80)=ANY=[@ANYBLOB="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"/273, @ANYRESHEX=r1, @ANYBLOB=',rootmode=00000000000000000140000,user_id=', @ANYRESDEC=r2, @ANYBLOB="00002d54e425e08e527f", @ANYRESDEC=r3, @ANYBLOB="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", @ANYRESDEC=r4, @ANYBLOB=',hash,\x00']) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000001c0)='L\xb8\xf7\xfd\xba\x8bH\x05\xdd\x01\x00\x00\x83qV\x89\xa0\xf3\xcc\x97\xda\xa7', 0x3, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r5, 0x0) ioctl$SIOCGSTAMPNS(r5, 0x8907, &(0x7f0000000800)) mmap$binder(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x1, 0x11, r5, 0x0) getsockopt$inet_sctp_SCTP_DISABLE_FRAGMENTS(r5, 0x84, 0x8, &(0x7f00000000c0), &(0x7f0000000100)=0x4) 08:37:22 executing program 3: r0 = socket(0x2, 0x1, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) setsockopt$EBT_SO_SET_ENTRIES(r0, 0xa00000000000000, 0x80, &(0x7f00000000c0)=@broute={'broute\x00\x00\x00\x00\x00\x06\x00', 0x20, 0x1, 0x9c0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000e00], 0x0, 0x0, &(0x7f0000000e00)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff010000000b00000000000000000062726964676530000000000000000000766c616e300000000000000000000000736974300000000000000000000000007465716c3000000000000000000000000000000000000000000000000180c20000000000000000000000b8080000b808000030090000616d6f6e6700000000000000000000000000000000000000000000000000000018040000000000000c00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000027327243426c7d2d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000a600a9e85725d89818472e65aba21d9bbc1b20e8331c6fd24a5aceaeefe102e42a013ac2c00eeb782c34eab997013e0506220c21a44cc58ff5bc83d5e4066c770000000000000000000000000000000000000000000000000000000000000000000000000000000001000000fcffffff00000000"]}, 0xa38) [ 522.915754] Call Trace: [ 522.918363] dump_stack+0x172/0x1f0 [ 522.922013] should_fail.cold+0xa/0x1b [ 522.925916] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 522.931038] ? lock_downgrade+0x810/0x810 [ 522.935220] __should_failslab+0x121/0x190 [ 522.939491] should_failslab+0x9/0x14 [ 522.943302] kmem_cache_alloc+0x2ae/0x700 [ 522.947478] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 522.953093] ptlock_alloc+0x20/0x70 [ 522.953114] pte_alloc_one+0x6d/0x1a0 [ 522.953136] copy_huge_pmd+0x7d/0x670 [ 522.960573] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 522.960587] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 522.960604] copy_page_range+0x7a1/0x1f90 [ 522.960616] ? anon_vma_fork+0x371/0x4a0 [ 522.960633] ? find_held_lock+0x35/0x130 [ 522.960645] ? anon_vma_fork+0x371/0x4a0 [ 522.960666] ? vma_compute_subtree_gap+0x158/0x230 [ 522.960685] ? vma_gap_callbacks_rotate+0x62/0x80 [ 522.960704] ? pmd_alloc+0x180/0x180 [ 522.987483] ebt_among: dst integrity fail: 3cd [ 522.987812] ? __vma_link_rb+0x279/0x370 08:37:22 executing program 3: r0 = socket(0x2, 0x1, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) setsockopt$EBT_SO_SET_ENTRIES(r0, 0xa00000000000000, 0x80, &(0x7f00000000c0)=@broute={'broute\x00\x00\x00\x00\x00\a\x00', 0x20, 0x1, 0x9c0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000e00], 0x0, 0x0, &(0x7f0000000e00)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff010000000b00000000000000000062726964676530000000000000000000766c616e300000000000000000000000736974300000000000000000000000007465716c3000000000000000000000000000000000000000000000000180c20000000000000000000000b8080000b808000030090000616d6f6e6700000000000000000000000000000000000000000000000000000018040000000000000c00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000027327243426c7d2d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000a600a9e85725d89818472e65aba21d9bbc1b20e8331c6fd24a5aceaeefe102e42a013ac2c00eeb782c34eab997013e0506220c21a44cc58ff5bc83d5e4066c770000000000000000000000000000000000000000000000000000000000000000000000000000000001000000fcffffff00000000"]}, 0xa38) [ 522.987836] copy_process.part.0+0x543d/0x7a30 [ 522.987874] ? __cleanup_sighand+0x70/0x70 [ 523.022783] ? lock_downgrade+0x810/0x810 [ 523.026960] ? kasan_check_write+0x14/0x20 [ 523.031211] ? __mutex_unlock_slowpath+0xf8/0x6b0 [ 523.036089] _do_fork+0x257/0xfd0 [ 523.039560] ? fork_idle+0x1d0/0x1d0 [ 523.043290] ? fput+0x128/0x1a0 [ 523.046589] ? ksys_write+0x1f1/0x2d0 [ 523.050413] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 523.051431] ebt_among: dst integrity fail: 3cd [ 523.055177] ? trace_hardirqs_on_thunk+0x1a/0x1c 08:37:22 executing program 3: r0 = socket(0x2, 0x1, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) setsockopt$EBT_SO_SET_ENTRIES(r0, 0xa00000000000000, 0x80, &(0x7f00000000c0)=@broute={'broute\x00\x00\xfe\xff\xff\a\x00', 0x20, 0x1, 0x9c0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000e00], 0x0, 0x0, &(0x7f0000000e00)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff010000000b00000000000000000062726964676530000000000000000000766c616e300000000000000000000000736974300000000000000000000000007465716c3000000000000000000000000000000000000000000000000180c20000000000000000000000b8080000b808000030090000616d6f6e6700000000000000000000000000000000000000000000000000000018040000000000000c00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000027327243426c7d2d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000a600a9e85725d89818472e65aba21d9bbc1b20e8331c6fd24a5aceaeefe102e42a013ac2c00eeb782c34eab997013e0506220c21a44cc58ff5bc83d5e4066c770000000000000000000000000000000000000000000000000000000000000000000000000000000001000000fcffffff00000000"]}, 0xa38) [ 523.055194] ? do_syscall_64+0x26/0x620 [ 523.055209] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 523.055230] ? do_syscall_64+0x26/0x620 [ 523.078323] __x64_sys_clone+0xbf/0x150 [ 523.082321] do_syscall_64+0xfd/0x620 [ 523.086138] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 523.091341] RIP: 0033:0x459829 [ 523.094543] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 08:37:22 executing program 4: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) r0 = openat$null(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/null\x00', 0x440000, 0x0) fcntl$F_GET_FILE_RW_HINT(r0, 0x40d, &(0x7f0000000100)) getsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000140)={0x0, 0x2, 0x30}, &(0x7f0000000180)=0xc) setsockopt$inet_sctp_SCTP_AUTH_KEY(r0, 0x84, 0x17, &(0x7f00000002c0)={r1, 0x8001, 0xd2, "6d70cc15bfa9cb5542ab85cb32543b184df7b20e63df6c5dafac49deac3505c53ab8fd51e68734ad9bab57354de19553704649fa12b9d4605eb25346808fe9713066a26ba89ae6bbbdd16bce330f80671daf2a9afbeecc22fc671004f5099e8699c7687b3738159a07432320f4fa95f7b7ead1dc8e5f947a657129934e5fbbdea01c98c7e151eb8938940292998c600546533fdbcc6c399d762b49f6e06dbb2bca5a443cddcea362d354aa3114804121ca3eeadb7819bf158286b5f3f88f7b375b143854e7575627ef89a072530c4f852768"}, 0xda) chdir(&(0x7f0000000080)='./file0\x00') r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r2, 0x2000) [ 523.113456] RSP: 002b:00007f6d217bfc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 523.121179] RAX: ffffffffffffffda RBX: 00007f6d217bfc90 RCX: 0000000000459829 [ 523.128452] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 523.135733] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 523.143013] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f6d217c06d4 [ 523.144728] ebt_among: dst integrity fail: 3cd [ 523.150568] R13: 00000000004bfce6 R14: 00000000004d1998 R15: 0000000000000004 [ 523.178796] x86/PAT: syz-executor.5:24341 freeing invalid memtype [mem 0x1000000000-0x1000000fff] 08:37:22 executing program 2: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000300)={0x0, 0xffffffffffffffff, 0x0, 0x1, &(0x7f00000002c0)='\x00', 0xffffffffffffffff}, 0x30) fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000340)={0x0, 0x0}) r3 = socket$inet(0x2, 0x80a, 0x1) r4 = syz_open_dev$radio(&(0x7f0000000380)='/dev/radio#\x00', 0x3, 0x2) r5 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000500)=0xffffffffffffffff, 0x4) kcmp$KCMP_EPOLL_TFD(r0, r2, 0x7, r3, &(0x7f0000000540)={r4, r5, 0x8}) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) write$RDMA_USER_CM_CMD_GET_EVENT(r6, &(0x7f0000000240)={0xc, 0x8, 0xfa00, {&(0x7f00000000c0)}}, 0x10) read(r1, &(0x7f0000000580)=""/119, 0x77) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r6, 0x0) madvise(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xb) [ 523.229676] x86/PAT: syz-executor.5:24341 freeing invalid memtype [mem 0x1000002000-0x1000002fff] 08:37:22 executing program 5 (fault-call:6 fault-nth:58): mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x1000000000) mremap(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0x0, 0x0, 0x0) 08:37:22 executing program 0: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r0, 0x0) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$VIDIOC_G_FBUF(r0, 0x8030560a, &(0x7f00000001c0)={0xd1, 0x0, &(0x7f0000000100)="afa097253906760fefffa3b5a3bef03a0151bbc85e7ba8d9214df62420676786d553a52bc3a7ae8e81b8622001bb4bbbaba4e614121d51069027c8f8d863274ef449e442ab58ec62c2118231b08a0624e769baf02c040a856eec8d068221d54e6e57f3f61c1ae3513587864aac458c5582bb19197ecd0d27fb680f483813d027c6baa096085a3d19f6fc7ed5530f31fb21301c69c4327bfc9a26046986933c1bb544a0b8b1a6caf9fbea2af36c884e6791b6", {0x9, 0x3, 0x47425247, 0x3, 0x3, 0x5, 0x9, 0x67}}) ioctl$VT_RESIZEX(r0, 0x560a, &(0x7f00000000c0)={0xc6b, 0xffffffffffffa44e, 0x2ed3, 0x7, 0x1, 0xfffffffffffffffe}) ioctl(r1, 0x1000008912, &(0x7f0000000000)="11dca50d5e0bcfe47bf070") mremap(&(0x7f0000ffd000/0x3000)=nil, 0x2000, 0x1002, 0x3, &(0x7f0000ffa000/0x1000)=nil) 08:37:22 executing program 3: r0 = socket(0x2, 0x1, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) setsockopt$EBT_SO_SET_ENTRIES(r0, 0xa00000000000000, 0x80, &(0x7f00000000c0)=@broute={'broute\x00\x00\x00\x00\x00\n\x00', 0x20, 0x1, 0x9c0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000e00], 0x0, 0x0, &(0x7f0000000e00)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff010000000b00000000000000000062726964676530000000000000000000766c616e300000000000000000000000736974300000000000000000000000007465716c3000000000000000000000000000000000000000000000000180c20000000000000000000000b8080000b808000030090000616d6f6e6700000000000000000000000000000000000000000000000000000018040000000000000c00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000027327243426c7d2d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000a600a9e85725d89818472e65aba21d9bbc1b20e8331c6fd24a5aceaeefe102e42a013ac2c00eeb782c34eab997013e0506220c21a44cc58ff5bc83d5e4066c770000000000000000000000000000000000000000000000000000000000000000000000000000000001000000fcffffff00000000"]}, 0xa38) 08:37:22 executing program 4: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap$binder(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1, 0x11, r0, 0x0) [ 523.388057] ebt_among: dst integrity fail: 3cd [ 523.405853] syz-executor.2 uses obsolete (PF_INET,SOCK_PACKET) [ 523.427392] x86/PAT: syz-executor.5:24554 freeing invalid memtype [mem 0x1000001000-0x1000001fff] 08:37:22 executing program 3: r0 = socket(0x2, 0x1, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) setsockopt$EBT_SO_SET_ENTRIES(r0, 0xa00000000000000, 0x80, &(0x7f00000000c0)=@broute={'broute\x00\x00\xa9\xaa\xaa\n\x00', 0x20, 0x1, 0x9c0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000e00], 0x0, 0x0, &(0x7f0000000e00)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff010000000b00000000000000000062726964676530000000000000000000766c616e300000000000000000000000736974300000000000000000000000007465716c3000000000000000000000000000000000000000000000000180c20000000000000000000000b8080000b808000030090000616d6f6e6700000000000000000000000000000000000000000000000000000018040000000000000c00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000027327243426c7d2d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000a600a9e85725d89818472e65aba21d9bbc1b20e8331c6fd24a5aceaeefe102e42a013ac2c00eeb782c34eab997013e0506220c21a44cc58ff5bc83d5e4066c770000000000000000000000000000000000000000000000000000000000000000000000000000000001000000fcffffff00000000"]}, 0xa38) [ 523.457267] FAULT_INJECTION: forcing a failure. [ 523.457267] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 523.512811] CPU: 0 PID: 24554 Comm: syz-executor.5 Not tainted 4.19.64 #38 [ 523.519880] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 523.529240] Call Trace: [ 523.531853] dump_stack+0x172/0x1f0 [ 523.535512] should_fail.cold+0xa/0x1b [ 523.539418] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 523.544543] ? __might_sleep+0x95/0x190 [ 523.548535] __alloc_pages_nodemask+0x1ee/0x750 [ 523.553216] ? copy_huge_pmd+0x449/0x670 [ 523.557300] ? __alloc_pages_slowpath+0x2870/0x2870 [ 523.562887] ? lock_downgrade+0x810/0x810 [ 523.567046] ? pmd_pfn+0x12e/0x1d0 [ 523.570601] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 523.576155] alloc_pages_current+0x107/0x210 [ 523.576161] ebt_among: dst integrity fail: 3cd [ 523.585649] pte_alloc_one+0x1b/0x1a0 [ 523.589461] __pte_alloc+0x2a/0x360 [ 523.593105] copy_page_range+0x151f/0x1f90 [ 523.597344] ? anon_vma_fork+0x371/0x4a0 [ 523.601422] ? find_held_lock+0x35/0x130 [ 523.605493] ? anon_vma_fork+0x371/0x4a0 [ 523.609580] ? vma_compute_subtree_gap+0x158/0x230 [ 523.614526] ? vma_gap_callbacks_rotate+0x62/0x80 [ 523.619381] ? pmd_alloc+0x180/0x180 [ 523.623106] ? __vma_link_rb+0x279/0x370 [ 523.623127] copy_process.part.0+0x543d/0x7a30 [ 523.623171] ? __cleanup_sighand+0x70/0x70 [ 523.623184] ? lock_downgrade+0x810/0x810 [ 523.623207] ? kasan_check_write+0x14/0x20 [ 523.636078] ? __mutex_unlock_slowpath+0xf8/0x6b0 [ 523.636100] _do_fork+0x257/0xfd0 [ 523.636120] ? fork_idle+0x1d0/0x1d0 [ 523.636139] ? fput+0x128/0x1a0 [ 523.644517] ? ksys_write+0x1f1/0x2d0 [ 523.644540] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 523.644563] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 523.656549] ? do_syscall_64+0x26/0x620 [ 523.656564] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 523.656583] ? do_syscall_64+0x26/0x620 [ 523.663651] __x64_sys_clone+0xbf/0x150 [ 523.663672] do_syscall_64+0xfd/0x620 [ 523.663693] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 523.699415] RIP: 0033:0x459829 08:37:23 executing program 3: r0 = socket(0x2, 0x1, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) setsockopt$EBT_SO_SET_ENTRIES(r0, 0xa00000000000000, 0x80, &(0x7f00000000c0)=@broute={'broute\x00\x00\x00\x00\x00\f\x00', 0x20, 0x1, 0x9c0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000e00], 0x0, 0x0, &(0x7f0000000e00)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff010000000b00000000000000000062726964676530000000000000000000766c616e300000000000000000000000736974300000000000000000000000007465716c3000000000000000000000000000000000000000000000000180c20000000000000000000000b8080000b808000030090000616d6f6e6700000000000000000000000000000000000000000000000000000018040000000000000c00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000027327243426c7d2d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000a600a9e85725d89818472e65aba21d9bbc1b20e8331c6fd24a5aceaeefe102e42a013ac2c00eeb782c34eab997013e0506220c21a44cc58ff5bc83d5e4066c770000000000000000000000000000000000000000000000000000000000000000000000000000000001000000fcffffff00000000"]}, 0xa38) 08:37:23 executing program 1: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) mmap$binder(&(0x7f0000ffa000/0x1000)=nil, 0x1000, 0x1, 0x11, r0, 0x0) 08:37:23 executing program 2: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) madvise(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xb) ioctl$PPPIOCSMRU(r0, 0x40047452, &(0x7f00000000c0)=0x80000000) setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000100)=0x2, 0x4) [ 523.702622] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 523.721534] RSP: 002b:00007f6d217bfc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 523.729263] RAX: ffffffffffffffda RBX: 00007f6d217bfc90 RCX: 0000000000459829 [ 523.736539] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 523.743820] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 523.751096] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f6d217c06d4 [ 523.758370] R13: 00000000004bfce6 R14: 00000000004d1998 R15: 0000000000000004 08:37:23 executing program 4: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/sequencer2\x00', 0xc282, 0x0) r1 = openat$cgroup_ro(r0, &(0x7f0000000100)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) r1 = openat$userio(0xffffffffffffff9c, &(0x7f0000000140)='/dev/userio\x00', 0x200000, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0xffffffffffffffff, 0x13, r1, 0x0) getsockopt$inet6_int(r0, 0x29, 0x46, &(0x7f00000000c0), &(0x7f0000000100)=0x4) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000500)={r0, 0xc0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000180)=0x3ff, 0x0, 0x0, 0x0, &(0x7f00000001c0)={0x5, 0x2}, 0x0, 0x0, &(0x7f0000000200)={0x5, 0x1, 0x5, 0x7fff}, &(0x7f0000000240)=0x6, 0x0, 0x0, 0x0, 0x0, &(0x7f00000002c0)=0xffffffff80000001}}, 0x10) bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000540)=r2, 0x4) getsockopt$inet_sctp6_SCTP_DELAYED_SACK(r0, 0x84, 0x10, &(0x7f0000000580)=@sack_info={0x0, 0xfffffffffffffbd4, 0x5}, &(0x7f0000000600)=0xc) getsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(r0, 0x84, 0x75, &(0x7f0000000640)={r3, 0xffff}, &(0x7f0000000680)=0x8) r4 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r4, 0x1000008912, &(0x7f0000000000)="11dca50d5e0bcfe47bf070") ioctl$TCSETXW(r0, 0x5435, &(0x7f0000000040)={0xfe4e, 0x5b, [0xa48, 0xc0f9, 0x8, 0x2, 0x9], 0x4}) mremap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x3000, 0x3, &(0x7f0000ffa000/0x3000)=nil) 08:37:23 executing program 3: r0 = socket(0x2, 0x1, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) setsockopt$EBT_SO_SET_ENTRIES(r0, 0xa00000000000000, 0x80, &(0x7f00000000c0)=@broute={'broute\x00\x00\x00\x00\x04\x18\x00', 0x20, 0x1, 0x9c0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000e00], 0x0, 0x0, &(0x7f0000000e00)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff010000000b00000000000000000062726964676530000000000000000000766c616e300000000000000000000000736974300000000000000000000000007465716c3000000000000000000000000000000000000000000000000180c20000000000000000000000b8080000b808000030090000616d6f6e6700000000000000000000000000000000000000000000000000000018040000000000000c00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000027327243426c7d2d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000a600a9e85725d89818472e65aba21d9bbc1b20e8331c6fd24a5aceaeefe102e42a013ac2c00eeb782c34eab997013e0506220c21a44cc58ff5bc83d5e4066c770000000000000000000000000000000000000000000000000000000000000000000000000000000001000000fcffffff00000000"]}, 0xa38) 08:37:23 executing program 2: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0, 0x80) ioctl$IMGETDEVINFO(r0, 0x80044944, &(0x7f0000000100)={0x10001}) chdir(&(0x7f0000000080)='./file0\x00') r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0) madvise(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xb) [ 523.928688] x86/PAT: syz-executor.5:24554 freeing invalid memtype [mem 0x1000000000-0x1000000fff] [ 523.988323] ebt_among: dst integrity fail: 3cd [ 523.990475] x86/PAT: syz-executor.5:24554 freeing invalid memtype [mem 0x1000002000-0x1000002fff] 08:37:23 executing program 5 (fault-call:6 fault-nth:59): mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x1000000000) mremap(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0x0, 0x0, 0x0) 08:37:23 executing program 4: r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f00000000c0)='cpu.stat\x00', 0x0, 0x0) ioctl$TUNSETCARRIER(r0, 0x400454e2, &(0x7f0000000100)) mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) ioctl$SG_NEXT_CMD_LEN(r0, 0x2283, &(0x7f0000000140)=0xce) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r1, 0x2000) 08:37:23 executing program 1: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) r0 = syz_open_dev$vcsa(&(0x7f00000000c0)='/dev/vcsa#\x00', 0x9, 0x2) getsockopt$inet_sctp6_SCTP_PR_SUPPORTED(0xffffffffffffffff, 0x84, 0x71, &(0x7f0000000100)={0x0, 0x100000000}, &(0x7f0000000140)=0x8) getsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r0, 0x84, 0x76, &(0x7f0000000180)={r1, 0x4}, &(0x7f00000001c0)=0x8) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') read$eventfd(r0, &(0x7f0000000540), 0x8) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x2000)=nil, 0x2000, 0xa, 0x12, r2, 0x0) ioctl$VT_GETMODE(r2, 0x5601, &(0x7f0000000240)) syz_open_dev$dmmidi(&(0x7f0000000500)='/dev/dmmidi#\x00', 0x10001, 0x0) mmap$binder(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1, 0x11, r0, 0x0) getsockopt$inet_sctp_SCTP_GET_ASSOC_STATS(r0, 0x84, 0x70, &(0x7f00000002c0)={r1, @in={{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0xb}}}, [0x0, 0x8, 0x5, 0xdfd, 0x101, 0x81, 0x0, 0xffff, 0x6, 0x100, 0x3, 0x2, 0x9, 0x7, 0x80000001]}, &(0x7f0000000200)=0x100) 08:37:23 executing program 3: r0 = socket(0x2, 0x1, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) setsockopt$EBT_SO_SET_ENTRIES(r0, 0xa00000000000000, 0x80, &(0x7f00000000c0)=@broute={'broute\x00\x00\x00\x00\x00 \x00', 0x20, 0x1, 0x9c0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000e00], 0x0, 0x0, &(0x7f0000000e00)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff010000000b00000000000000000062726964676530000000000000000000766c616e300000000000000000000000736974300000000000000000000000007465716c3000000000000000000000000000000000000000000000000180c20000000000000000000000b8080000b808000030090000616d6f6e6700000000000000000000000000000000000000000000000000000018040000000000000c00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000027327243426c7d2d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000a600a9e85725d89818472e65aba21d9bbc1b20e8331c6fd24a5aceaeefe102e42a013ac2c00eeb782c34eab997013e0506220c21a44cc58ff5bc83d5e4066c770000000000000000000000000000000000000000000000000000000000000000000000000000000001000000fcffffff00000000"]}, 0xa38) 08:37:23 executing program 0: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r0, 0x0) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x100000890f, &(0x7f0000000000)="11dca50d5e0bcfe47bf070") mremap(&(0x7f0000ffd000/0x3000)=nil, 0x2000, 0x1002, 0x3, &(0x7f0000ffa000/0x1000)=nil) ioctl$KVM_SET_SIGNAL_MASK(r0, 0x4004ae8b, &(0x7f00000000c0)={0x4f, "8330657ab11b6f651662062bb7b4f5433b1ae04eb2e71a38379441f373e63db3fdf3c7eb926e7f48a35cdbb5d1d79e83472469b823550495b69f16fbbaf6736724214b2abaef854eae9cc8eaf852c8"}) [ 524.132905] ebt_among: dst integrity fail: 3cd 08:37:23 executing program 2: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = accept4$x25(0xffffffffffffffff, &(0x7f00000000c0), &(0x7f0000000100)=0x12, 0x800) ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000000140)=0x0) fcntl$lock(r0, 0x27, &(0x7f0000000180)={0x1, 0x7, 0x5, 0x8, r1}) openat$cgroup_ro(0xffffffffffffffff, &(0x7f00000001c0)='cpuacct.usage_user\x00', 0x0, 0x0) openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000200)='/dev/qat_adf_ctl\x00', 0x10000, 0x0) r2 = openat$selinux_enforce(0xffffffffffffff9c, &(0x7f0000000240)='/selinux/enforce\x00', 0x14000, 0x0) write$eventfd(r2, &(0x7f00000002c0)=0x42b2, 0x8) r3 = openat$cgroup_ro(r2, &(0x7f0000000300)='pids.events\x00', 0x275a, 0x0) ioctl$KDDELIO(r3, 0x4b35, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r3, 0x0) madvise(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xb) prctl$PR_GET_KEEPCAPS(0x7) 08:37:23 executing program 1: umount2(&(0x7f00000000c0)='./file0\x00', 0xe) mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r0, 0x0) 08:37:23 executing program 3: r0 = socket(0x2, 0x1, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) setsockopt$EBT_SO_SET_ENTRIES(r0, 0xa00000000000000, 0x80, &(0x7f00000000c0)=@broute={'broute\x00\x00\x00\x00\x00\'\x00', 0x20, 0x1, 0x9c0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000e00], 0x0, 0x0, &(0x7f0000000e00)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff010000000b00000000000000000062726964676530000000000000000000766c616e300000000000000000000000736974300000000000000000000000007465716c3000000000000000000000000000000000000000000000000180c20000000000000000000000b8080000b808000030090000616d6f6e6700000000000000000000000000000000000000000000000000000018040000000000000c00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000027327243426c7d2d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000a600a9e85725d89818472e65aba21d9bbc1b20e8331c6fd24a5aceaeefe102e42a013ac2c00eeb782c34eab997013e0506220c21a44cc58ff5bc83d5e4066c770000000000000000000000000000000000000000000000000000000000000000000000000000000001000000fcffffff00000000"]}, 0xa38) 08:37:23 executing program 4: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcs\x00', 0x200, 0x0) getsockopt$bt_BT_RCVMTU(r0, 0x112, 0xd, &(0x7f0000000100)=0x7, &(0x7f0000000140)=0x2) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f00000002c0)={0x0}, &(0x7f0000000300)=0xc) ioprio_set$pid(0x1, r2, 0x8) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000180)={0x0}, &(0x7f00000001c0)=0xc) ptrace$getregs(0xe, r3, 0x891e, &(0x7f0000000200)=""/118) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r1, 0x2000) ioctl$CAPI_NCCI_OPENCOUNT(r0, 0x80044326, &(0x7f0000000340)=0x5) [ 524.250761] x86/PAT: syz-executor.5:25121 freeing invalid memtype [mem 0x1000001000-0x1000001fff] [ 524.306990] FAULT_INJECTION: forcing a failure. [ 524.306990] name failslab, interval 1, probability 0, space 0, times 0 [ 524.409828] CPU: 1 PID: 25121 Comm: syz-executor.5 Not tainted 4.19.64 #38 [ 524.416885] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 524.426252] Call Trace: [ 524.428862] dump_stack+0x172/0x1f0 [ 524.432505] should_fail.cold+0xa/0x1b [ 524.436407] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 524.441523] ? lock_downgrade+0x810/0x810 [ 524.445716] __should_failslab+0x121/0x190 [ 524.449977] should_failslab+0x9/0x14 [ 524.454274] kmem_cache_alloc+0x2ae/0x700 [ 524.458428] ? pmd_pfn+0x12e/0x1d0 [ 524.461981] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 524.467544] ptlock_alloc+0x20/0x70 [ 524.471190] pte_alloc_one+0x6d/0x1a0 [ 524.475006] __pte_alloc+0x2a/0x360 [ 524.478656] copy_page_range+0x151f/0x1f90 [ 524.482904] ? anon_vma_fork+0x371/0x4a0 [ 524.486987] ? find_held_lock+0x35/0x130 [ 524.491060] ? anon_vma_fork+0x371/0x4a0 [ 524.495158] ? vma_compute_subtree_gap+0x158/0x230 [ 524.500105] ? vma_gap_callbacks_rotate+0x62/0x80 [ 524.504967] ? pmd_alloc+0x180/0x180 08:37:23 executing program 0: r0 = openat$selinux_validatetrans(0xffffffffffffff9c, &(0x7f00000001c0)='/selinux/validatetrans\x00', 0x1, 0x0) r1 = syz_open_dev$sndmidi(&(0x7f0000000200)='/dev/snd/midiC#D#\x00', 0x8, 0x2000) ioctl$FICLONE(r0, 0x40049409, r1) mkdir(&(0x7f0000000080)='./file0\x00', 0x10) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000000c0)='./file0\x00') r2 = openat(0xffffffffffffffff, &(0x7f0000000240)='./file0\x00', 0x40000, 0x21) write$selinux_access(r2, &(0x7f00000002c0)={'system_u:object_r:xconsole_device_t:s0', 0x20, '/usr/lib/telepathy/mission-control-5', 0x20, 0x1ff}, 0x61) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) setsockopt$inet_mreq(r3, 0x0, 0x23, &(0x7f0000000040)={@multicast2, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x8) r4 = openat$selinux_status(0xffffffffffffff9c, &(0x7f0000000340)='/selinux/status\x00', 0x0, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r3, 0x0) ioctl$KDGKBDIACR(r3, 0x4b4a, &(0x7f0000000100)=""/163) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r3, 0x0) r5 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r5, 0x1000008912, &(0x7f0000000000)="11dca50d5e0bcfe47bf070") mremap(&(0x7f0000ffd000/0x3000)=nil, 0x2000, 0x1002, 0x3, &(0x7f0000ffa000/0x1000)=nil) r6 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000500)='IPVS\x00') sendmsg$IPVS_CMD_SET_INFO(r4, &(0x7f0000000680)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000640)={&(0x7f0000000540)={0xcc, r6, 0x110, 0x70bd26, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_DAEMON={0x4c, 0x3, [@IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'tunl0\x00'}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @initdev={0xfe, 0x88, [], 0x1, 0x0}}, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x8, 0x4, 0x8}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x8, 0x7, 0x4e22}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x3}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x8, 0x8, 0x6}]}, @IPVS_CMD_ATTR_DEST={0x60, 0x2, [@IPVS_DEST_ATTR_FWD_METHOD={0x8}, @IPVS_DEST_ATTR_PORT={0x8, 0x2, 0x4e20}, @IPVS_DEST_ATTR_WEIGHT={0x8, 0x4, 0xffff}, @IPVS_DEST_ATTR_TUN_PORT={0x8, 0xe, 0x4e24}, @IPVS_DEST_ATTR_WEIGHT={0x8, 0x4, 0x6}, @IPVS_DEST_ATTR_L_THRESH={0x8, 0x6, 0x3}, @IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv4=@multicast1}, @IPVS_DEST_ATTR_ACTIVE_CONNS={0x8, 0x7, 0x9}, @IPVS_DEST_ATTR_WEIGHT={0x8, 0x4, 0x1}, @IPVS_DEST_ATTR_INACT_CONNS={0x8, 0x8, 0xa8}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x2}, @IPVS_CMD_ATTR_DEST={0x4}]}, 0xcc}, 0x1, 0x0, 0x0, 0x20000800}, 0x20040010) 08:37:23 executing program 3: r0 = socket(0x2, 0x1, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) setsockopt$EBT_SO_SET_ENTRIES(r0, 0xa00000000000000, 0x80, &(0x7f00000000c0)=@broute={'broute\x00\x00\x00\x00\x00?\x00', 0x20, 0x1, 0x9c0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000e00], 0x0, 0x0, &(0x7f0000000e00)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff010000000b00000000000000000062726964676530000000000000000000766c616e300000000000000000000000736974300000000000000000000000007465716c3000000000000000000000000000000000000000000000000180c20000000000000000000000b8080000b808000030090000616d6f6e6700000000000000000000000000000000000000000000000000000018040000000000000c00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000027327243426c7d2d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000a600a9e85725d89818472e65aba21d9bbc1b20e8331c6fd24a5aceaeefe102e42a013ac2c00eeb782c34eab997013e0506220c21a44cc58ff5bc83d5e4066c770000000000000000000000000000000000000000000000000000000000000000000000000000000001000000fcffffff00000000"]}, 0xa38) 08:37:23 executing program 3: r0 = socket(0x2, 0x1, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) setsockopt$EBT_SO_SET_ENTRIES(r0, 0xa00000000000000, 0x80, &(0x7f00000000c0)=@broute={'broute\x00\x00\x00\x00\x00@\x00', 0x20, 0x1, 0x9c0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000e00], 0x0, 0x0, &(0x7f0000000e00)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff010000000b00000000000000000062726964676530000000000000000000766c616e300000000000000000000000736974300000000000000000000000007465716c3000000000000000000000000000000000000000000000000180c20000000000000000000000b8080000b808000030090000616d6f6e6700000000000000000000000000000000000000000000000000000018040000000000000c00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000027327243426c7d2d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000a600a9e85725d89818472e65aba21d9bbc1b20e8331c6fd24a5aceaeefe102e42a013ac2c00eeb782c34eab997013e0506220c21a44cc58ff5bc83d5e4066c770000000000000000000000000000000000000000000000000000000000000000000000000000000001000000fcffffff00000000"]}, 0xa38) [ 524.508699] ? __vma_link_rb+0x279/0x370 [ 524.512780] copy_process.part.0+0x543d/0x7a30 [ 524.517407] ? __cleanup_sighand+0x70/0x70 [ 524.521668] ? lock_downgrade+0x810/0x810 [ 524.525843] ? kasan_check_write+0x14/0x20 [ 524.530105] ? __mutex_unlock_slowpath+0xf8/0x6b0 [ 524.534969] _do_fork+0x257/0xfd0 [ 524.538448] ? fork_idle+0x1d0/0x1d0 [ 524.542178] ? fput+0x128/0x1a0 [ 524.545475] ? ksys_write+0x1f1/0x2d0 [ 524.549295] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 524.554058] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 524.558834] ? do_syscall_64+0x26/0x620 [ 524.562927] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 524.568303] ? do_syscall_64+0x26/0x620 [ 524.572296] __x64_sys_clone+0xbf/0x150 [ 524.576287] do_syscall_64+0xfd/0x620 [ 524.580122] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 524.585316] RIP: 0033:0x459829 [ 524.588520] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 524.607413] RSP: 002b:00007f6d217bfc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 524.615134] RAX: ffffffffffffffda RBX: 00007f6d217bfc90 RCX: 0000000000459829 [ 524.622391] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 524.629650] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 524.636904] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f6d217c06d4 [ 524.644159] R13: 00000000004bfce6 R14: 00000000004d1998 R15: 0000000000000004 08:37:24 executing program 5 (fault-call:6 fault-nth:60): mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x1000000000) mremap(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0x0, 0x0, 0x0) 08:37:24 executing program 3: r0 = socket(0x2, 0x1, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) setsockopt$EBT_SO_SET_ENTRIES(r0, 0xa00000000000000, 0x80, &(0x7f00000000c0)=@broute={'broute\x00\x00\x00\x00\x00H\x00', 0x20, 0x1, 0x9c0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000e00], 0x0, 0x0, &(0x7f0000000e00)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff010000000b00000000000000000062726964676530000000000000000000766c616e300000000000000000000000736974300000000000000000000000007465716c3000000000000000000000000000000000000000000000000180c20000000000000000000000b8080000b808000030090000616d6f6e6700000000000000000000000000000000000000000000000000000018040000000000000c00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000027327243426c7d2d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000a600a9e85725d89818472e65aba21d9bbc1b20e8331c6fd24a5aceaeefe102e42a013ac2c00eeb782c34eab997013e0506220c21a44cc58ff5bc83d5e4066c770000000000000000000000000000000000000000000000000000000000000000000000000000000001000000fcffffff00000000"]}, 0xa38) 08:37:24 executing program 1: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000180)='./file0\x00', 0xffffffffffffffff, 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = openat$proc_capi20(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/capi/capi20\x00', 0x0, 0x0) ioctl$SIOCRSSL2CALL(r0, 0x89e2, &(0x7f0000000100)=@rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r1, 0x0) 08:37:24 executing program 2: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) ioctl$VIDIOC_ENUMAUDOUT(r0, 0xc0345642, &(0x7f0000000100)={0xfffffffffffffffc, "eb4b037603fcac3a975d922c5cf4382195bb43f47485d2ab95de1d74370313f3", 0x3, 0x1}) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) ioctl$KVM_PPC_GET_SMMU_INFO(r0, 0x8250aea6, &(0x7f00000000c0)=""/62) openat$sequencer(0xffffffffffffff9c, &(0x7f0000000140)='/dev/sequencer\x00', 0x0, 0x0) madvise(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xb) 08:37:24 executing program 4: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) umount2(&(0x7f00000000c0)='./file0\x00', 0xd) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap$binder(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x1, 0x11, r0, 0x0) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r0, 0x2000) [ 524.662716] x86/PAT: syz-executor.5:25121 freeing invalid memtype [mem 0x1000000000-0x1000000fff] [ 524.671878] x86/PAT: syz-executor.5:25121 freeing invalid memtype [mem 0x1000002000-0x1000002fff] 08:37:24 executing program 4: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_PREFER_SUBDEVICE(r0, 0x40045542, &(0x7f00000000c0)=0xfff) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r0, 0x2000) 08:37:24 executing program 3: r0 = socket(0x2, 0x1, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) setsockopt$EBT_SO_SET_ENTRIES(r0, 0xa00000000000000, 0x80, &(0x7f00000000c0)=@broute={'broute\x00\x00\x00\x00\x00L\x00', 0x20, 0x1, 0x9c0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000e00], 0x0, 0x0, &(0x7f0000000e00)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff010000000b00000000000000000062726964676530000000000000000000766c616e300000000000000000000000736974300000000000000000000000007465716c3000000000000000000000000000000000000000000000000180c20000000000000000000000b8080000b808000030090000616d6f6e6700000000000000000000000000000000000000000000000000000018040000000000000c00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000027327243426c7d2d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000a600a9e85725d89818472e65aba21d9bbc1b20e8331c6fd24a5aceaeefe102e42a013ac2c00eeb782c34eab997013e0506220c21a44cc58ff5bc83d5e4066c770000000000000000000000000000000000000000000000000000000000000000000000000000000001000000fcffffff00000000"]}, 0xa38) 08:37:24 executing program 2: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/vs/schedule_icmp\x00', 0x2, 0x0) r1 = openat$cgroup_ro(r0, &(0x7f0000000100)='rdma.current\x00', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0) madvise(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xb) [ 524.866933] x86/PAT: syz-executor.5:25391 freeing invalid memtype [mem 0x1000001000-0x1000001fff] [ 524.917960] FAULT_INJECTION: forcing a failure. [ 524.917960] name failslab, interval 1, probability 0, space 0, times 0 08:37:24 executing program 1: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) r0 = accept4$inet(0xffffffffffffffff, 0x0, &(0x7f0000000600), 0x800) getsockopt$ARPT_SO_GET_ENTRIES(r0, 0x0, 0x61, &(0x7f0000000640)={'filter\x00', 0xaf, "66700c86f7695fca534625cd7195af4e956e83239a589d30d300a8b6e27e614fb59188adee07d421e7fc12582fa90d26f704cec54f660808447bfc7700fc4c9b2b8a23da7978132982d3d6036b0a2fcb0cbf5bfdb0465cd3583c1e501134598d1ae4fe3cf8c648c2c9e2e06ae352d626982fd1d56a0f9f535095ac9b051af144bf56272ae974cc3d8bbc4806ee1bcb5a6a8ba6f6fc244ad0cf16dfe6239abe98594b264c75135df40d344619c082ff"}, &(0x7f0000000740)=0xd3) chdir(&(0x7f00000000c0)='./file0\x00') r1 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000380)='/dev/btrfs-control\x00', 0x4800, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) ioctl$EXT4_IOC_SWAP_BOOT(r2, 0x6611) recvfrom$x25(r2, &(0x7f0000001900)=""/13, 0xd, 0x10000, &(0x7f0000001940)={0x9, @remote={[], 0x3}}, 0x12) write$selinux_context(r1, &(0x7f00000019c0)='system_u:object_r:smartcard_device_t:s0\x00', 0x28) openat$selinux_status(0xffffffffffffff9c, &(0x7f0000001980)='/selinux/status\x00', 0x0, 0x0) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r2, 0x0) ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f0000000340)={0x6c, 0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="11634840030000000000000000000000000000000000000010000000000000000000000060000000000000001800000000000000", @ANYPTR=&(0x7f0000000200)=ANY=[@ANYBLOB="852a646600000000", @ANYRES32=r2, @ANYBLOB="0000000000000000000000008561646600000000090000000000000002000000000000002700000000000000852a747001000000", @ANYPTR=&(0x7f0000000100)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000015000000000000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002800"/196], @ANYBLOB="c40000000000000000100000000000668c00000000000000"], @ANYPTR=&(0x7f0000000080)=ANY=[@ANYBLOB="000000000000000018000000000000003800000000000000"], @ANYBLOB="0004000000000000046304400000000006630440010000000e630c4000"/40], 0x93, 0x0, &(0x7f0000000500)="48b90d22c91cc4e0fc878bbc1b7ea03ae89b8ce02a10e8a5a8c7b58884861ea6155cf78b7b3b10aff7f4b49953437723cdae104f8658e6771cb5c74c86bd5f932bf23f02f4669fe4b7aea67aeb00b99a067d586f5f7f1770cc903927a48264940f2241477ed28e5668b1d6ccb03f5068914ebd3540d4571cfd41ad4500bf59ff02206aa036e0e90cdd63804da8bf3534b33c4d"}) r3 = accept(r2, 0x0, &(0x7f00000005c0)) vmsplice(r3, &(0x7f00000018c0)=[{&(0x7f0000000780)="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", 0x1000}, {&(0x7f0000001780)="7e1fad4c655a46e44608f10ea9f312952751d64cc7278668e3c0f18500bdddcb6dfe9b09217684ef672e678e0ad3896a411dd4de144011fe02582bf46869456f06d382d6f49f4f6ef76503dd510b51d1ab1a50b091b9ef831ed1e28ff57636c031816276a646dddfe79bc2a01bafc4", 0x6f}, {&(0x7f0000001800)="c8aafd6b138494636da698afa831585ecce0924e962bb967dc452e9c97e33b4178b5e3f90f191636d3e65f14c7de87f0d2e9abc3d51091fd587c83d4d2fda6937f78d15942705f092b9e15c7195061cbb95e91c7714098367a8b44253e0e0f6d7ecd54cdd2d04943ec0c818b407a5d1368cd99d69e5d96bba50508b5405ca3d714e3ba999c25499c5ff66178", 0x8c}], 0x3, 0x1) 08:37:24 executing program 0: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) openat$selinux_avc_cache_stats(0xffffffffffffff9c, &(0x7f00000000c0)='/selinux/avc/cache_stats\x00', 0x0, 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r0, 0x0) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f0000000000)="11dca50d5e0bcfe47bf070") mremap(&(0x7f0000ffd000/0x3000)=nil, 0x2000, 0x1002, 0x3, &(0x7f0000ffa000/0x1000)=nil) 08:37:24 executing program 3: r0 = socket(0x2, 0x1, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) setsockopt$EBT_SO_SET_ENTRIES(r0, 0xa00000000000000, 0x80, &(0x7f00000000c0)=@broute={'broute\x00\x00\x00\x00\x00`\x00', 0x20, 0x1, 0x9c0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000e00], 0x0, 0x0, &(0x7f0000000e00)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff010000000b00000000000000000062726964676530000000000000000000766c616e300000000000000000000000736974300000000000000000000000007465716c3000000000000000000000000000000000000000000000000180c20000000000000000000000b8080000b808000030090000616d6f6e6700000000000000000000000000000000000000000000000000000018040000000000000c00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000027327243426c7d2d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000a600a9e85725d89818472e65aba21d9bbc1b20e8331c6fd24a5aceaeefe102e42a013ac2c00eeb782c34eab997013e0506220c21a44cc58ff5bc83d5e4066c770000000000000000000000000000000000000000000000000000000000000000000000000000000001000000fcffffff00000000"]}, 0xa38) [ 525.046755] CPU: 1 PID: 25525 Comm: syz-executor.5 Not tainted 4.19.64 #38 [ 525.053847] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 525.063223] Call Trace: [ 525.065845] dump_stack+0x172/0x1f0 [ 525.069505] should_fail.cold+0xa/0x1b [ 525.073422] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 525.078539] ? lock_downgrade+0x810/0x810 [ 525.082709] __should_failslab+0x121/0x190 [ 525.086962] should_failslab+0x9/0x14 [ 525.090777] kmem_cache_alloc+0x2ae/0x700 [ 525.094946] ? pmd_alloc+0x180/0x180 [ 525.098676] vm_area_dup+0x21/0x170 [ 525.102310] copy_process.part.0+0x3407/0x7a30 [ 525.102353] ? __cleanup_sighand+0x70/0x70 [ 525.102366] ? lock_downgrade+0x810/0x810 [ 525.102397] ? kasan_check_write+0x14/0x20 [ 525.119627] ? __mutex_unlock_slowpath+0xf8/0x6b0 [ 525.124494] _do_fork+0x257/0xfd0 [ 525.127971] ? fork_idle+0x1d0/0x1d0 [ 525.131696] ? fput+0x128/0x1a0 [ 525.134986] ? ksys_write+0x1f1/0x2d0 [ 525.138816] ? trace_hardirqs_on_thunk+0x1a/0x1c 08:37:24 executing program 1: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000880)='devtmpfs\x00\nG\n\x9c\x1ck\xdbe\x17B\x9f\x02\xfb\x90o;\x98\xda}\xfb:y\x15\x14!\x83\xb9\xdf\xe8(\xeef\xc0\xccd\x8c\xc7s\xf5\xef\xaez\xc7\xb1*\xbfK_O\x0f_\xfc\xfb\xea;\xb8\x9fn\x7f\xc3\x0f\xe7\x8bW\x06tI\x91\xd7\xb4E}\'\xcb\xb9\x05\xa0\x88=\x8d\x05\"\x1d\xe0b\xa3\xba\x02n\x0f\xb6fQ\x9c\x1993\n\xc0O\x18\xfc3\xdd\xce\x88\x9dl\xc3\x84\xe0j\x11\'\x8f\xa5\f \xb0#\xc6\x1c\x81\xd1)@3!\xff\xd9\xab\xc9\xe9\xdc\xe5\x1d\x93\xdc\x03-~\x1de\xab\xf6.>P\xe2[Q\xf459n*\xaa\xb0\xe0', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x8000000016, r0, 0x0) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r0, 0x0) openat$selinux_access(0xffffffffffffff9c, &(0x7f0000000140)='/selinux/access\x00', 0x2, 0x0) syz_mount_image$ntfs(&(0x7f00000000c0)='ntfs\x00', &(0x7f0000000100)='./file0\x00', 0x5, 0x6, &(0x7f0000000640)=[{&(0x7f0000000140), 0x0, 0xee77}, {&(0x7f0000000180)="cc9ab49f733ba6267fd496795e9357e61f4616df6de7aba3ae4c52c07c8dd04351013f882ce5b3ea2f67e2a4e65869ff77ccdbab1c37a5d099082baff335321024c648e72a985b3d3b6a95b415c66246208af022c60888020c9243c6504b81", 0x5f, 0x9}, {&(0x7f00000002c0)="538b7863429cb9f8d40899d463b09c714e023435bfc581e5b7d6320b7defca360bc0debfe93863fee907f2f57a2bf4ba1a781f1242b4b9fa169f8f7788128ee4be62fae8320f91347c85c83839dd3ff968f8955bd8ca8a9c0d8f3863319e0bf2758cfff1a9c3896161849fc16efbe614f6320b42f04d08f8c4a392d579068f2057460fb8b03efac2a8408a59954ecdf1dc4c0b88766db5c57de3ef2bea8db7048d93eeb3cdac6f2621c0ab93c23a0857fb97ab80927344cc92f2f040bc9aced5151232b81fdb2abdaba4226542", 0xcd, 0xffffffffffffe191}, {&(0x7f0000000200)="ebd66c6b2b1a139da8adeb147c809f5083c0b67f386b49693dcd30e0cb744647c5bcc6d0cd02ada34aa22842", 0x2c}, {&(0x7f0000000500)="8f4e30c1321112ebcd1157a1e82c22f9dc56d92a4863d156a9bd27308b15048c08e06cdfa73ed3b116ebefbcf09db94f3b86b772f5a2e615b25f8d961761d0ca83edeee90110af4b5ff30036e45900ab1dd830e283d98016d899098c5c8d31", 0x5f, 0x4}, {&(0x7f0000000580)="7ce93ee674ca5239970c597ccf9c3813f730a9abd0d8864d6e162cd8bdb73c7031da6a058fce3a6c51dd4b4ce8ccf3ee7b047aad55a2f17ed56f2d2d037d66f2ddf03a9499729cc469040501ae48e390c690d9c931af66638206385ffd6700e4cb5ad9919fe69dd232e7ce7ddd546eb0dd1785498ff27b1d3f29b0bcf4a78347c5", 0x81, 0x6}], 0x100008, &(0x7f0000000700)=ANY=[@ANYBLOB="64697361626c655f7370617273653d7965732c6572726f72733d72656d6f756e742d726f2c6d66745f7a6f6e655f6d756c7469706c6965723d3078303030303030303030303030303030322c6673636f6e746578743d73797361646d5f752c736d61636b6673726f6f743d252c736d61636b66736465663d6d656d0000000000003c738c27297455199a2953a762ced8de95f6c35c6ec1a2296fee97dfe9f3fd4ae860376959867ed8ec79c0302e90fcaca0b81d1a7fecea0a70b4d56cb5c3c7772516617e5d5004c720f7928b8f9d265cf9a396473cd480162f81e7288bde3907afbcb00d7d4e65fa58b08abd1dfcd49195000b1461305fd91fc7b5c3465316037ebb632aa3ab6006f0bcac4a59e7b28c77a4552ea4e2751d216a564c7d234f09b2600ee9c62af7f855688e01f162f53b8a179a0f710191705352822d480a1f50b62ac9fd89b57f876d22aaceed07f2fd3c10b8cffa63cc0fd2ddcd2338228bf2cc410bdff58da52d02aa7cddd0617ac82c29ed6689783e07132c00"]) [ 525.143586] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 525.148357] ? do_syscall_64+0x26/0x620 [ 525.152361] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 525.157740] ? do_syscall_64+0x26/0x620 [ 525.161738] __x64_sys_clone+0xbf/0x150 [ 525.165737] do_syscall_64+0xfd/0x620 [ 525.169555] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 525.174754] RIP: 0033:0x459829 [ 525.177957] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 525.196866] RSP: 002b:00007f6d2179ec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 525.204581] RAX: ffffffffffffffda RBX: 00007f6d2179ec90 RCX: 0000000000459829 [ 525.204590] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 525.204598] RBP: 000000000075bfc8 R08: 0000000000000000 R09: 0000000000000000 [ 525.204607] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f6d2179f6d4 [ 525.204616] R13: 00000000004bfce6 R14: 00000000004d1998 R15: 0000000000000004 08:37:24 executing program 5 (fault-call:6 fault-nth:61): mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x1000000000) mremap(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil) clone(0x0, 0x0, 0x0, 0x0, 0x0) 08:37:24 executing program 3: r0 = socket(0x2, 0x1, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) setsockopt$EBT_SO_SET_ENTRIES(r0, 0xa00000000000000, 0x80, &(0x7f00000000c0)=@broute={'broute\x00\x00\x00\x00\x00h\x00', 0x20, 0x1, 0x9c0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000e00], 0x0, 0x0, &(0x7f0000000e00)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff010000000b00000000000000000062726964676530000000000000000000766c616e300000000000000000000000736974300000000000000000000000007465716c3000000000000000000000000000000000000000000000000180c20000000000000000000000b8080000b808000030090000616d6f6e6700000000000000000000000000000000000000000000000000000018040000000000000c00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000027327243426c7d2d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000a600a9e85725d89818472e65aba21d9bbc1b20e8331c6fd24a5aceaeefe102e42a013ac2c00eeb782c34eab997013e0506220c21a44cc58ff5bc83d5e4066c770000000000000000000000000000000000000000000000000000000000000000000000000000000001000000fcffffff00000000"]}, 0xa38) 08:37:24 executing program 4: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) r1 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000100)='IPVS\x00') sendmsg$IPVS_CMD_SET_SERVICE(r0, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x20000800}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x24, r1, 0x4, 0x70bd2d, 0x25dfdbfe, {}, [@IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0xffff}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x8}]}, 0x24}, 0x1, 0x0, 0x0, 0x4004000}, 0x20008000) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r0, 0x2000) 08:37:24 executing program 2: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) madvise(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xb) ioctl$KVM_GET_API_VERSION(r0, 0xae00, 0x0) [ 525.220058] x86/PAT: syz-executor.5:25525 freeing invalid memtype [mem 0x1000000000-0x1000000fff] [ 525.253273] x86/PAT: syz-executor.5:25525 freeing invalid memtype [mem 0x1000002000-0x1000002fff] 08:37:24 executing program 2: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000000c0)='./file0\x00') r0 = dup2(0xffffffffffffffff, 0xffffffffffffffff) openat$full(0xffffffffffffff9c, &(0x7f0000000200)='/dev/full\x00', 0x8080, 0x0) ioctl$TIOCLINUX6(r0, 0x541c, &(0x7f00000001c0)={0x6, 0x2}) openat$selinux_enforce(0xffffffffffffff9c, &(0x7f0000000100)='/selinux/enforce\x00', 0x301, 0x0) r1 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000140)='/dev/mixer\x00', 0x20000, 0x0) r2 = openat$cgroup_ro(r1, &(0x7f0000000180)='cpuacct.usage_percpu_sys\x00', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0x0) madvise(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x9) 08:37:24 executing program 3: r0 = socket(0x2, 0x1, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) setsockopt$EBT_SO_SET_ENTRIES(r0, 0xa00000000000000, 0x80, &(0x7f00000000c0)=@broute={'broute\x00\x00\x00\x00\x00l\x00', 0x20, 0x1, 0x9c0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000e00], 0x0, 0x0, &(0x7f0000000e00)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff010000000b00000000000000000062726964676530000000000000000000766c616e300000000000000000000000736974300000000000000000000000007465716c3000000000000000000000000000000000000000000000000180c20000000000000000000000b8080000b808000030090000616d6f6e6700000000000000000000000000000000000000000000000000000018040000000000000c00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000027327243426c7d2d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000a600a9e85725d89818472e65aba21d9bbc1b20e8331c6fd24a5aceaeefe102e42a013ac2c00eeb782c34eab997013e0506220c21a44cc58ff5bc83d5e4066c770000000000000000000000000000000000000000000000000000000000000000000000000000000001000000fcffffff00000000"]}, 0xa38) 08:37:24 executing program 4: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) r1 = openat$cgroup_ro(r0, &(0x7f00000000c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mq_unlink(&(0x7f00000002c0)='mem\x00\x00\x00\x00\x00\x00\a\x13') mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r1, 0x2000) [ 525.470045] x86/PAT: syz-executor.5:25733 freeing invalid memtype [mem 0x1000001000-0x1000001fff] [ 525.482055] FAULT_INJECTION: forcing a failure. [ 525.482055] name failslab, interval 1, probability 0, space 0, times 0 [ 525.554014] CPU: 1 PID: 25733 Comm: syz-executor.5 Not tainted 4.19.64 #38 [ 525.561529] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 525.570897] Call Trace: [ 525.573517] dump_stack+0x172/0x1f0 [ 525.577178] should_fail.cold+0xa/0x1b [ 525.581093] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 525.586207] ? lock_downgrade+0x810/0x810 [ 525.590399] __should_failslab+0x121/0x190 [ 525.594651] should_failslab+0x9/0x14 [ 525.598461] kmem_cache_alloc_trace+0x2cc/0x760 08:37:24 executing program 1: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000140)='/dev/cachefiles\x00', 0x2000c0, 0x0) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, &(0x7f0000000180)={0x0, 0x80000}) ioctl$DRM_IOCTL_GEM_CLOSE(r0, 0x40086409, &(0x7f00000001c0)={r1}) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0x0) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r2, 0x0) ioctl$DRM_IOCTL_SET_CLIENT_CAP(r2, 0x4010640d, &(0x7f00000000c0)={0xe574, 0x80000000}) ioctl$int_out(r2, 0x5460, &(0x7f0000000100)) [ 525.603145] ? __init_cache_modes+0x260/0x260 [ 525.607659] ? follow_phys+0x276/0x360 [ 525.611562] reserve_memtype+0x1e1/0x880 [ 525.615642] ? pat_init+0x4b0/0x4b0 [ 525.619280] ? __init_cache_modes+0x260/0x260 [ 525.623797] ? do_raw_spin_unlock+0x57/0x270 [ 525.628224] reserve_pfn_range+0x1b3/0x500 [ 525.632464] ? arch_io_reserve_memtype_wc+0xa0/0xa0 [ 525.637497] ? save_stack+0x45/0xd0 [ 525.641149] ? kasan_slab_alloc+0xf/0x20 [ 525.645225] ? kmem_cache_alloc+0x12e/0x700 [ 525.649558] ? vm_area_dup+0x21/0x170 08:37:25 executing program 4: r0 = open(&(0x7f00000001c0)='./file0\x00', 0x109800, 0x10) ioctl$VIDIOC_SUBDEV_G_CROP(r0, 0xc038563b, &(0x7f0000000240)={0x1, 0x0, {0x9581, 0x1, 0x6, 0x6}}) mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) symlink(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='./file0\x00') mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r1, 0x2000) lookup_dcookie(0xfffffffffffffffd, &(0x7f0000000140)=""/14, 0xe) syz_open_dev$usb(&(0x7f0000000180)='/dev/bus/usb/00#/00#\x00', 0x7, 0x200000) openat$rtc(0xffffffffffffff9c, &(0x7f0000000200)='/dev/rtc0\x00', 0x20800, 0x0) [ 525.653377] ? copy_process.part.0+0x3407/0x7a30 [ 525.658145] ? _do_fork+0x257/0xfd0 [ 525.661786] ? __x64_sys_clone+0xbf/0x150 [ 525.665953] track_pfn_copy+0x196/0x1e0 [ 525.669937] ? reserve_pfn_range+0x500/0x500 [ 525.674361] ? get_mem_cgroup_from_mm+0x139/0x320 [ 525.679228] copy_page_range+0x15f6/0x1f90 [ 525.683482] ? copy_process.part.0+0x30f9/0x7a30 [ 525.688259] ? find_held_lock+0x35/0x130 [ 525.692321] ? vma_compute_subtree_gap+0x158/0x230 [ 525.697238] ? vma_gap_callbacks_rotate+0x62/0x80 [ 525.702068] ? pmd_alloc+0x180/0x180 [ 525.705765] ? __vma_link_rb+0x279/0x370 [ 525.709817] copy_process.part.0+0x543d/0x7a30 [ 525.714397] ? __cleanup_sighand+0x70/0x70 [ 525.718613] ? lock_downgrade+0x810/0x810 [ 525.722760] ? kasan_check_write+0x14/0x20 [ 525.726979] ? __mutex_unlock_slowpath+0xf8/0x6b0 [ 525.731815] _do_fork+0x257/0xfd0 [ 525.735259] ? fork_idle+0x1d0/0x1d0 [ 525.738954] ? fput+0x128/0x1a0 [ 525.742218] ? ksys_write+0x1f1/0x2d0 [ 525.746010] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 525.750752] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 525.755492] ? do_syscall_64+0x26/0x620 [ 525.759457] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 525.764811] ? do_syscall_64+0x26/0x620 [ 525.768773] __x64_sys_clone+0xbf/0x150 [ 525.772735] do_syscall_64+0xfd/0x620 [ 525.776523] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 525.781697] RIP: 0033:0x459829 [ 525.784873] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 525.803764] RSP: 002b:00007f6d217bfc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 525.811476] RAX: ffffffffffffffda RBX: 00007f6d217bfc90 RCX: 0000000000459829 [ 525.818729] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 525.825984] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 525.833241] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f6d217c06d4 [ 525.840496] R13: 00000000004bfce6 R14: 00000000004d1998 R15: 0000000000000004 08:37:25 executing program 0: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = syz_open_dev$amidi(&(0x7f00000000c0)='/dev/amidi#\x00', 0xb7e, 0x600000) r1 = openat$cgroup_ro(r0, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r1, 0x0) r2 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r2, 0x1000008912, &(0x7f0000000000)="11dca50d5e0bcfe47bf070") mremap(&(0x7f0000ffd000/0x3000)=nil, 0x2000, 0x1002, 0x3, &(0x7f0000ffa000/0x1000)=nil) 08:37:25 executing program 3: r0 = socket(0x2, 0x1, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) setsockopt$EBT_SO_SET_ENTRIES(r0, 0xa00000000000000, 0x80, &(0x7f00000000c0)=@broute={'broute\x00\x00\x00\x00\x00t\x00', 0x20, 0x1, 0x9c0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000e00], 0x0, 0x0, &(0x7f0000000e00)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff010000000b00000000000000000062726964676530000000000000000000766c616e300000000000000000000000736974300000000000000000000000007465716c3000000000000000000000000000000000000000000000000180c20000000000000000000000b8080000b808000030090000616d6f6e6700000000000000000000000000000000000000000000000000000018040000000000000c00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000027327243426c7d2d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000a600a9e85725d89818472e65aba21d9bbc1b20e8331c6fd24a5aceaeefe102e42a013ac2c00eeb782c34eab997013e0506220c21a44cc58ff5bc83d5e4066c770000000000000000000000000000000000000000000000000000000000000000000000000000000001000000fcffffff00000000"]}, 0xa38) 08:37:25 executing program 2: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='mem\x00\x00\x00\x00\x00\x00\a\x13', 0x275a, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) madvise(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xb) [ 525.852196] WARNING: CPU: 0 PID: 25733 at arch/x86/mm/pat.c:1064 untrack_pfn+0x25c/0x2a0 [ 525.860446] Kernel panic - not syncing: panic_on_warn set ... [ 525.860446] [ 525.867829] CPU: 0 PID: 25733 Comm: syz-executor.5 Not tainted 4.19.64 #38 [ 525.874845] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 525.884291] Call Trace: [ 525.886902] dump_stack+0x172/0x1f0 [ 525.890548] panic+0x263/0x507 [ 525.893754] ? __warn_printk+0xf3/0xf3 [ 525.897657] ? untrack_pfn+0x25c/0x2a0 [ 525.901555] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 525.907108] ? __warn.cold+0x5/0x4a [ 525.910058] kobject: 'loop3' (000000001fd22a2a): kobject_uevent_env [ 525.910749] ? untrack_pfn+0x25c/0x2a0 [ 525.917176] kobject: 'loop3' (000000001fd22a2a): fill_kobj_path: path = '/devices/virtual/block/loop3' [ 525.921030] __warn.cold+0x20/0x4a [ 525.921048] ? untrack_pfn+0x25c/0x2a0 [ 525.921067] report_bug+0x263/0x2b0 [ 525.921086] do_error_trap+0x204/0x360 [ 525.921104] ? math_error+0x340/0x340 [ 525.921122] ? kasan_check_read+0x11/0x20 [ 525.921138] ? do_raw_spin_unlock+0x57/0x270 [ 525.921156] ? error_entry+0x76/0xd0 [ 525.961546] ? trace_hardirqs_off_caller+0x65/0x220 [ 525.966588] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 525.971457] do_invalid_op+0x1b/0x20 [ 525.975191] invalid_op+0x14/0x20 [ 525.978649] RIP: 0010:untrack_pfn+0x25c/0x2a0 [ 525.983132] Code: 00 00 00 00 48 8b 45 d0 65 48 33 04 25 28 00 00 00 75 28 48 81 c4 88 00 00 00 5b 41 5c 41 5d 41 5e 41 5f 5d c3 e8 b4 9b 3a 00 <0f> 0b eb b3 48 89 df e8 b8 2e 71 00 e9 b0 fe ff ff e8 5e 20 0e 00 [ 526.002018] RSP: 0000:ffff8880500c78a0 EFLAGS: 00010246 [ 526.007374] RAX: 0000000000040000 RBX: ffff8880aa377840 RCX: ffffc90013800000 [ 526.014632] RDX: 0000000000040000 RSI: ffffffff8130a9bc RDI: 0000000000000005 [ 526.021905] RBP: ffff8880500c7950 R08: ffff88808d19a340 R09: ffffed10140165a3 [ 526.029161] R10: ffffed10140165a2 R11: ffff8880a00b2d13 R12: 1ffff1100a018f15 [ 526.036419] R13: 00000000ffffffea R14: 0000000000000000 R15: ffff8880500c7928 [ 526.043712] ? untrack_pfn+0x25c/0x2a0 [ 526.047600] ? track_pfn_insert+0x180/0x180 [ 526.051920] ? vm_normal_page_pmd+0x400/0x400 [ 526.056432] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 526.061799] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 526.067331] ? uprobe_munmap+0xad/0x2b0 [ 526.071316] unmap_single_vma+0x1c2/0x300 [ 526.075478] unmap_vmas+0xae/0x180 [ 526.079026] exit_mmap+0x2c2/0x530 [ 526.082555] ? __ia32_sys_munmap+0x80/0x80 [ 526.086805] ? __khugepaged_exit+0x2da/0x400 [ 526.091225] ? rcu_read_lock_sched_held+0x110/0x130 [ 526.096247] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 526.101771] ? __khugepaged_exit+0xcf/0x400 [ 526.106087] mmput+0x15f/0x4c0 [ 526.109279] copy_process.part.0+0x5aaf/0x7a30 [ 526.113887] ? __cleanup_sighand+0x70/0x70 [ 526.118111] ? lock_downgrade+0x810/0x810 [ 526.122252] ? kasan_check_write+0x14/0x20 [ 526.126476] ? __mutex_unlock_slowpath+0xf8/0x6b0 [ 526.131328] _do_fork+0x257/0xfd0 [ 526.134783] ? fork_idle+0x1d0/0x1d0 [ 526.138496] ? fput+0x128/0x1a0 [ 526.141782] ? ksys_write+0x1f1/0x2d0 [ 526.145575] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 526.150343] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 526.155101] ? do_syscall_64+0x26/0x620 [ 526.159064] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 526.164424] ? do_syscall_64+0x26/0x620 [ 526.168398] __x64_sys_clone+0xbf/0x150 [ 526.172377] do_syscall_64+0xfd/0x620 [ 526.176181] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 526.181363] RIP: 0033:0x459829 [ 526.184562] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 526.203465] RSP: 002b:00007f6d217bfc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 526.211165] RAX: ffffffffffffffda RBX: 00007f6d217bfc90 RCX: 0000000000459829 [ 526.218428] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 526.225681] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 526.232946] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f6d217c06d4 [ 526.240222] R13: 00000000004bfce6 R14: 00000000004d1998 R15: 0000000000000004 [ 526.248515] Kernel Offset: disabled [ 526.252173] Rebooting in 86400 seconds..