0x1e8/0x640 [ 162.515824] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 162.520681] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 162.525870] RIP: 0033:0x45a087 [ 162.529055] RSP: 002b:00007f8cf79a0a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 162.536759] RAX: ffffffffffffffda RBX: 0000000020000068 RCX: 000000000045a087 [ 162.544041] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 162.551323] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 162.558689] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 162.565968] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 [ 162.573266] CPU: 1 PID: 10622 Comm: syz-executor.1 Not tainted 4.14.151 #0 [ 162.580397] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 162.589759] Call Trace: [ 162.592366] dump_stack+0x138/0x197 [ 162.596023] should_fail.cold+0x10f/0x159 [ 162.600195] should_failslab+0xdb/0x130 [ 162.600210] kmem_cache_alloc+0x2d7/0x780 [ 162.600223] ? wait_for_completion+0x420/0x420 [ 162.600241] __kernfs_new_node+0x70/0x420 [ 162.600255] kernfs_new_node+0x80/0xf0 [ 162.600267] __kernfs_create_file+0x46/0x323 [ 162.608373] sysfs_add_file_mode_ns+0x1e4/0x450 [ 162.608391] internal_create_group+0x232/0x7b0 [ 162.608411] sysfs_create_group+0x20/0x30 [ 162.608422] lo_ioctl+0x1176/0x1ce0 [ 162.608436] ? loop_probe+0x160/0x160 [ 162.646160] blkdev_ioctl+0x96b/0x1860 [ 162.652042] ? blkpg_ioctl+0x980/0x980 [ 162.655923] ? __might_sleep+0x93/0xb0 [ 162.659804] ? __fget+0x210/0x370 [ 162.663246] block_ioctl+0xde/0x120 [ 162.666858] ? blkdev_fallocate+0x3b0/0x3b0 [ 162.671180] do_vfs_ioctl+0x7ae/0x1060 [ 162.675056] ? selinux_file_mprotect+0x5d0/0x5d0 [ 162.679798] ? lock_downgrade+0x740/0x740 [ 162.684121] ? ioctl_preallocate+0x1c0/0x1c0 [ 162.688519] ? __fget+0x237/0x370 [ 162.691974] ? security_file_ioctl+0x89/0xb0 [ 162.696372] SyS_ioctl+0x8f/0xc0 [ 162.699724] ? do_vfs_ioctl+0x1060/0x1060 [ 162.704122] do_syscall_64+0x1e8/0x640 [ 162.707996] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 162.712830] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 162.718004] RIP: 0033:0x45a087 [ 162.721179] RSP: 002b:00007fe432840a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 162.729220] RAX: ffffffffffffffda RBX: 0000000020000068 RCX: 000000000045a087 [ 162.736652] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 07:05:57 executing program 0: r0 = syz_open_dev$loop(&(0x7f0000000040)='/dev/loop#\x00', 0x0, 0x0) ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f00000001c0)={[], 0xff81, 0x800000, 0x6}) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) r2 = fcntl$dupfd(r1, 0x0, r1) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) ioctl$EXT4_IOC_ALLOC_DA_BLKS(r3, 0x660c) setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, &(0x7f0000000380)="0c4f4d16cf2f3a2dd8a5046790a60c91e487dc9ca281434dbc169c6555a654da5e42c953490634b417ec9535653162fc5730d4c8dab3e136550ed7d31fa8d7094afd6e5154349155e6ef7e5fb08d79c283188a3f28548ab4366e6863ba5561aedbd1ee3f9a2c5646e4a9c2806b231528bca7ee2134e39966c40bcb1371a7e7691672a8dc9bda07175f11a9160cba3f0ddb78db3b2e184e1e9aa371691df9f49a5e3343bce4e4b8a2c80831b63d95ed57cf89982b317abf1cf8a71078d00dd5fa9151c142fa4bb765d503150f5f6f34284c7480a5091e9b246e", 0xd9) fsetxattr$trusted_overlay_nlink(r3, &(0x7f0000000240)='trusted.overlay.nlink\x00', &(0x7f0000000300)={'U+', 0x7}, 0x28, 0x3) setsockopt$inet_sctp_SCTP_INITMSG(r3, 0x84, 0x2, &(0x7f0000000000)={0x66c, 0x1, 0xd83, 0x3f}, 0x8) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) [ 162.743930] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 162.751194] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 162.759407] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 07:05:57 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48}], 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000006c0)='Net/3\x97OOT\x15\x00\xb6\xcf@e\xd3r\x82\x9fc') ioctl$VIDIOC_PREPARE_BUF(r0, 0xc058565d, &(0x7f00000005c0)={0x0, 0xb, 0x4, 0x0, {0x0, 0x7530}, {0x0, 0x2, 0x81, 0x10, 0x24, 0x6, "cf676f53"}, 0x80, 0x5, @offset=0x9, 0x4}) socket$inet6_sctp(0xa, 0x1, 0x84) 07:05:57 executing program 5: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, 0x0) r1 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) ioctl$VIDIOC_QUERYCAP(r1, 0x80685600, &(0x7f0000000040)) syz_open_dev$mouse(&(0x7f0000000340)='/dev/input/mouse#\x00', 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f0000000140)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3235004000000f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4d}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f00000000c0)) 07:05:57 executing program 4: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f4248526653", 0x46, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, &(0x7f00000005c0)={0x0, 0xb, 0x4, 0x0, {0x0, 0x7530}, {0x0, 0x2, 0x81, 0x10, 0x24, 0x6, "cf676f53"}, 0x80, 0x5, @offset=0x9, 0x4}) mq_timedsend(0xffffffffffffffff, &(0x7f0000000480)="c1cc3d2c05c16add6c964974e00652617b35c74bd5a620d3170df3c2f134d5beb838b0f00c6ca198401126d02772777a96ead8602a94c5450ea4e5c8b02fc6e876ee2383fc4faa682ed6a91a53a08a1fdd9839c170a6f81ede814c769cf15c688c8514b5f4f1dc0a50019813ce4459df629cd480519073a5f929cd5e59d0058ea64475a46e924294d5ef1b4b158e59d9c923a0", 0x93, 0x4, &(0x7f0000000540)={0x0, 0x989680}) socket$inet6_sctp(0xa, 0x1, 0x84) 07:05:57 executing program 2 (fault-call:0 fault-nth:18): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 07:05:58 executing program 1 (fault-call:0 fault-nth:19): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) 07:05:58 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48}], 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000006c0)='Net/3\x97OOT\x15\x00\xb6\xcf@e\xd3r\x82\x9fc') ioctl$VIDIOC_PREPARE_BUF(r0, 0xc058565d, &(0x7f00000005c0)={0x0, 0xb, 0x4, 0x0, {0x0, 0x7530}, {0x0, 0x2, 0x81, 0x10, 0x24, 0x6, "cf676f53"}, 0x80, 0x5, @offset=0x9, 0x4}) socket$inet6_sctp(0xa, 0x1, 0x84) [ 162.944083] FAULT_INJECTION: forcing a failure. [ 162.944083] name failslab, interval 1, probability 0, space 0, times 0 [ 162.946358] FAULT_INJECTION: forcing a failure. [ 162.946358] name failslab, interval 1, probability 0, space 0, times 0 [ 162.976025] CPU: 1 PID: 10665 Comm: syz-executor.1 Not tainted 4.14.151 #0 [ 162.983583] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 163.003521] Call Trace: [ 163.006131] dump_stack+0x138/0x197 [ 163.009768] should_fail.cold+0x10f/0x159 [ 163.013914] should_failslab+0xdb/0x130 [ 163.017888] kmem_cache_alloc+0x2d7/0x780 [ 163.022055] ? wait_for_completion+0x420/0x420 [ 163.026677] __kernfs_new_node+0x70/0x420 [ 163.030833] kernfs_new_node+0x80/0xf0 [ 163.034740] __kernfs_create_file+0x46/0x323 [ 163.039393] sysfs_add_file_mode_ns+0x1e4/0x450 [ 163.044057] internal_create_group+0x232/0x7b0 [ 163.048729] sysfs_create_group+0x20/0x30 [ 163.052859] lo_ioctl+0x1176/0x1ce0 [ 163.056472] ? loop_probe+0x160/0x160 [ 163.060260] blkdev_ioctl+0x96b/0x1860 [ 163.064218] ? blkpg_ioctl+0x980/0x980 [ 163.068157] ? __might_sleep+0x93/0xb0 [ 163.072042] ? __fget+0x210/0x370 [ 163.075567] block_ioctl+0xde/0x120 [ 163.079610] ? blkdev_fallocate+0x3b0/0x3b0 [ 163.084041] do_vfs_ioctl+0x7ae/0x1060 [ 163.087934] ? selinux_file_mprotect+0x5d0/0x5d0 [ 163.092677] ? lock_downgrade+0x740/0x740 [ 163.096830] ? ioctl_preallocate+0x1c0/0x1c0 [ 163.101262] ? __fget+0x237/0x370 [ 163.104720] ? security_file_ioctl+0x89/0xb0 [ 163.109239] SyS_ioctl+0x8f/0xc0 [ 163.112961] ? do_vfs_ioctl+0x1060/0x1060 [ 163.117912] do_syscall_64+0x1e8/0x640 [ 163.121799] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 163.126634] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 163.135200] RIP: 0033:0x45a087 [ 163.138384] RSP: 002b:00007fe432840a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 163.146165] RAX: ffffffffffffffda RBX: 0000000020000068 RCX: 000000000045a087 [ 163.153473] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 163.160832] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 163.169325] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 163.176589] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 [ 163.188112] CPU: 0 PID: 10659 Comm: syz-executor.2 Not tainted 4.14.151 #0 [ 163.195879] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 163.206040] Call Trace: [ 163.208643] dump_stack+0x138/0x197 [ 163.212266] should_fail.cold+0x10f/0x159 [ 163.216410] should_failslab+0xdb/0x130 [ 163.220655] kmem_cache_alloc+0x2d7/0x780 [ 163.224807] ? wait_for_completion+0x420/0x420 [ 163.229397] __kernfs_new_node+0x70/0x420 [ 163.233534] kernfs_new_node+0x80/0xf0 [ 163.238064] __kernfs_create_file+0x46/0x323 [ 163.242471] sysfs_add_file_mode_ns+0x1e4/0x450 [ 163.247869] internal_create_group+0x232/0x7b0 [ 163.252453] sysfs_create_group+0x20/0x30 [ 163.257111] lo_ioctl+0x1176/0x1ce0 [ 163.261165] ? loop_probe+0x160/0x160 [ 163.264950] blkdev_ioctl+0x96b/0x1860 [ 163.268853] ? blkpg_ioctl+0x980/0x980 [ 163.272916] ? __might_sleep+0x93/0xb0 [ 163.277357] ? __fget+0x210/0x370 [ 163.280809] block_ioctl+0xde/0x120 [ 163.285218] ? blkdev_fallocate+0x3b0/0x3b0 [ 163.289527] do_vfs_ioctl+0x7ae/0x1060 [ 163.295142] ? selinux_file_mprotect+0x5d0/0x5d0 [ 163.300923] ? lock_downgrade+0x740/0x740 [ 163.305489] ? ioctl_preallocate+0x1c0/0x1c0 [ 163.310018] ? __fget+0x237/0x370 [ 163.313478] ? security_file_ioctl+0x89/0xb0 [ 163.317884] SyS_ioctl+0x8f/0xc0 [ 163.321239] ? do_vfs_ioctl+0x1060/0x1060 [ 163.325809] do_syscall_64+0x1e8/0x640 [ 163.329765] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 163.334868] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 163.340827] RIP: 0033:0x45a087 [ 163.344349] RSP: 002b:00007f8cf79a0a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 163.352043] RAX: ffffffffffffffda RBX: 0000000020000068 RCX: 000000000045a087 [ 163.360686] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 163.368486] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 163.375837] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 163.383458] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 07:05:58 executing program 4: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f", 0x47, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, &(0x7f00000005c0)={0x0, 0xb, 0x4, 0x0, {0x0, 0x7530}, {0x0, 0x2, 0x81, 0x10, 0x24, 0x6, "cf676f53"}, 0x80, 0x5, @offset=0x9, 0x4}) mq_timedsend(0xffffffffffffffff, &(0x7f0000000480)="c1cc3d2c05c16add6c964974e00652617b35c74bd5a620d3170df3c2f134d5beb838b0f00c6ca198401126d02772777a96ead8602a94c5450ea4e5c8b02fc6e876ee2383fc4faa682ed6a91a53a08a1fdd9839c170a6f81ede814c769cf15c688c8514b5f4f1dc0a50019813ce4459df629cd480519073a5f929cd5e59d0058ea64475a46e924294d5ef1b4b158e59d9c923a0", 0x93, 0x4, &(0x7f0000000540)={0x0, 0x989680}) socket$inet6_sctp(0xa, 0x1, 0x84) 07:05:58 executing program 5: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, 0x0) r1 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) ioctl$VIDIOC_QUERYCAP(r1, 0x80685600, &(0x7f0000000040)) syz_open_dev$mouse(&(0x7f0000000340)='/dev/input/mouse#\x00', 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f0000000140)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3235004000000f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4d}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f00000000c0)) 07:05:58 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48}], 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000006c0)='Net/3\x97OOT\x15\x00\xb6\xcf@e\xd3r\x82\x9fc') ioctl$VIDIOC_PREPARE_BUF(r0, 0xc058565d, &(0x7f00000005c0)={0x0, 0xb, 0x4, 0x0, {0x0, 0x7530}, {0x0, 0x2, 0x81, 0x10, 0x24, 0x6, "cf676f53"}, 0x80, 0x5, @offset=0x9, 0x4}) socket$inet6_sctp(0xa, 0x1, 0x84) 07:05:58 executing program 2 (fault-call:0 fault-nth:19): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 07:05:58 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = syz_open_procfs(0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(r0, 0xc058565d, &(0x7f00000005c0)={0x0, 0xb, 0x4, 0x0, {0x0, 0x7530}, {0x0, 0x2, 0x81, 0x10, 0x24, 0x6, "cf676f53"}, 0x80, 0x5, @offset=0x9, 0x4}) socket$inet6_sctp(0xa, 0x1, 0x84) 07:05:58 executing program 5: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, 0x0) r1 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) ioctl$VIDIOC_QUERYCAP(r1, 0x80685600, &(0x7f0000000040)) syz_open_dev$mouse(&(0x7f0000000340)='/dev/input/mouse#\x00', 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f0000000140)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3235004000000f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4d}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f00000000c0)) 07:05:58 executing program 1 (fault-call:0 fault-nth:20): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) 07:05:58 executing program 4: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f", 0x47, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, &(0x7f00000005c0)={0x0, 0xb, 0x4, 0x0, {0x0, 0x7530}, {0x0, 0x2, 0x81, 0x10, 0x24, 0x6, "cf676f53"}, 0x80, 0x5, @offset=0x9, 0x4}) mq_timedsend(0xffffffffffffffff, &(0x7f0000000480)="c1cc3d2c05c16add6c964974e00652617b35c74bd5a620d3170df3c2f134d5beb838b0f00c6ca198401126d02772777a96ead8602a94c5450ea4e5c8b02fc6e876ee2383fc4faa682ed6a91a53a08a1fdd9839c170a6f81ede814c769cf15c688c8514b5f4f1dc0a50019813ce4459df629cd480519073a5f929cd5e59d0058ea64475a46e924294d5ef1b4b158e59d9c923a0", 0x93, 0x4, &(0x7f0000000540)={0x0, 0x989680}) socket$inet6_sctp(0xa, 0x1, 0x84) 07:05:58 executing program 0: syz_open_dev$loop(&(0x7f0000000040)='/dev/loop#\x00', 0x0, 0x0) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000100)='/dev/loop-control\x00', 0x5bcfe147ebc9df4a, 0x0) r1 = memfd_create(&(0x7f0000000140)='lotrusted\x1a\x00', 0x0) r2 = syz_open_dev$sndseq(0x0, 0x0, 0x1) r3 = dup2(r2, r1) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r3, 0xc08c5332, &(0x7f0000000280)={0x0, 0x0, 0x0, 'queue1\x00\x00\x00\x00\x00\x00\x00\x001;\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\xcc\xbf}\xdd\x00'}) r4 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82) ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, r4) ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, r4) ioctl$LOOP_CTL_ADD(r0, 0x4c80, r4) r5 = syz_open_procfs(0x0, &(0x7f00000006c0)='Net/3\x97OOT\x15\x00\xb6\xcf@e\xd3r\x82\x9fc') ioctl$VIDIOC_PREPARE_BUF(r5, 0xc058565d, &(0x7f00000005c0)={0x0, 0xb, 0x4, 0x0, {0x0, 0x7530}, {0x0, 0x2, 0x81, 0x10, 0x24, 0x6, "cf676f53"}, 0x80, 0x5, @offset=0x9, 0x4}) ioctl$RTC_WKALM_RD(r3, 0x80287010, &(0x7f0000000180)) mq_timedsend(r5, &(0x7f0000000480)="c1cc3d2c05c16add6c964974e00652617b35c74bd5a620d3170df3c2f134d5beb838b0f00c6ca198401126d02772777a96ead8602a94c5450ea4e5c8b02fc6e876ee2383fc4faa682ed6a91a53a08a1fdd9839c170a6f81ede814c769cf15c688c8514b5f4f1dc0a50019813ce4459df629cd480519073a5f929cd5e59d0058ea64475a46e924294d5ef1b4b158e59d9c923a0", 0x93, 0x4, &(0x7f0000000540)={0x0, 0x989680}) r6 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x6100c0, 0x0) ioctl$BLKTRACESETUP(r6, 0xc0481273, &(0x7f0000000080)={[], 0xff7d, 0x800000, 0x6}) r7 = socket$inet6_tcp(0xa, 0x1, 0x0) r8 = fcntl$dupfd(r7, 0x406, r7) ioctl$PERF_EVENT_IOC_ENABLE(r8, 0x8912, 0x400200) [ 163.669113] FAULT_INJECTION: forcing a failure. [ 163.669113] name failslab, interval 1, probability 0, space 0, times 0 [ 163.725912] CPU: 0 PID: 10695 Comm: syz-executor.2 Not tainted 4.14.151 #0 [ 163.733005] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 163.742461] Call Trace: [ 163.745095] dump_stack+0x138/0x197 [ 163.748757] should_fail.cold+0x10f/0x159 [ 163.752921] should_failslab+0xdb/0x130 [ 163.757017] kmem_cache_alloc+0x2d7/0x780 [ 163.761265] ? wait_for_completion+0x420/0x420 [ 163.765862] __kernfs_new_node+0x70/0x420 [ 163.770472] kernfs_new_node+0x80/0xf0 [ 163.770486] __kernfs_create_file+0x46/0x323 [ 163.770500] sysfs_add_file_mode_ns+0x1e4/0x450 [ 163.770515] internal_create_group+0x232/0x7b0 [ 163.770529] sysfs_create_group+0x20/0x30 [ 163.770539] lo_ioctl+0x1176/0x1ce0 [ 163.770551] ? loop_probe+0x160/0x160 [ 163.770562] blkdev_ioctl+0x96b/0x1860 [ 163.770570] ? blkpg_ioctl+0x980/0x980 [ 163.770587] ? __might_sleep+0x93/0xb0 [ 163.770595] ? __fget+0x210/0x370 [ 163.770605] block_ioctl+0xde/0x120 [ 163.770617] ? blkdev_fallocate+0x3b0/0x3b0 [ 163.775804] FAULT_INJECTION: forcing a failure. [ 163.775804] name failslab, interval 1, probability 0, space 0, times 0 [ 163.779162] do_vfs_ioctl+0x7ae/0x1060 [ 163.779178] ? selinux_file_mprotect+0x5d0/0x5d0 [ 163.779190] ? lock_downgrade+0x740/0x740 [ 163.779201] ? ioctl_preallocate+0x1c0/0x1c0 [ 163.779213] ? __fget+0x237/0x370 [ 163.779228] ? security_file_ioctl+0x89/0xb0 [ 163.887246] SyS_ioctl+0x8f/0xc0 [ 163.890627] ? do_vfs_ioctl+0x1060/0x1060 [ 163.894772] do_syscall_64+0x1e8/0x640 [ 163.898655] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 163.903501] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 163.908683] RIP: 0033:0x45a087 [ 163.908690] RSP: 002b:00007f8cf79a0a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 163.908702] RAX: ffffffffffffffda RBX: 0000000020000068 RCX: 000000000045a087 07:05:59 executing program 0: r0 = syz_open_dev$loop(&(0x7f0000000040)='/dev/loop#\x00', 0x0, 0x0) ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f00000001c0)={[], 0xff81, 0x800000, 0x6}) connect$bt_l2cap(0xffffffffffffffff, &(0x7f00000000c0)={0x1f, 0x7ff, {0x0, 0xd, 0x2, 0x25, 0x4, 0x4}, 0x1, 0xff}, 0xe) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) r2 = syz_open_dev$vcsa(&(0x7f0000000000)='/dev/vcsa#\x00', 0x91c, 0x2fe908c98445ac0a) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) ioctl$EXT4_IOC_ALLOC_DA_BLKS(r3, 0x660c) setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, &(0x7f0000000380)="0c4f4d16cf2f3a2dd8a5046790a60c91e487dc9ca281434dbc169c6555a654da5e42c953490634b417ec9535653162fc5730d4c8dab3e136550ed7d31fa8d7094afd6e5154349155e6ef7e5fb08d79c283188a3f28548ab4366e6863ba5561aedbd1ee3f9a2c5646e4a9c2806b231528bca7ee2134e39966c40bcb1371a7e7691672a8dc9bda07175f11a9160cba3f0ddb78db3b2e184e1e9aa371691df9f49a5e3343bce4e4b8a2c80831b63d95ed57cf89982b317abf1cf8a71078d00dd5fa9151c142fa4bb765d503150f5f6f34284c7480a5091e9b246e", 0xd9) fsetxattr$trusted_overlay_nlink(r3, &(0x7f0000000240)='trusted.overlay.nlink\x00', &(0x7f0000000300)={'U+', 0x7}, 0x28, 0x3) ioctl$BINDER_SET_CONTEXT_MGR(r3, 0x40046207, 0x0) r4 = fcntl$dupfd(r1, 0x0, r2) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r5, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$sock_inet6_tcp_SIOCOUTQ(r5, 0x5411, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) [ 163.908708] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 163.908713] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 163.908719] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 163.908725] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 [ 163.988080] CPU: 1 PID: 10714 Comm: syz-executor.1 Not tainted 4.14.151 #0 [ 163.995170] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 164.004532] Call Trace: [ 164.007135] dump_stack+0x138/0x197 [ 164.010780] should_fail.cold+0x10f/0x159 [ 164.014946] should_failslab+0xdb/0x130 [ 164.018943] kmem_cache_alloc_trace+0x2e9/0x790 [ 164.023634] ? kernfs_put+0x35e/0x490 [ 164.027452] ? sysfs_add_file_mode_ns+0x1e4/0x450 [ 164.032479] ? devm_device_remove_groups+0x50/0x50 [ 164.037582] kobject_uevent_env+0x378/0xc23 [ 164.037594] ? internal_create_group+0x49a/0x7b0 [ 164.037613] kobject_uevent+0x20/0x26 [ 164.037624] lo_ioctl+0x11e7/0x1ce0 [ 164.037638] ? loop_probe+0x160/0x160 [ 164.058002] blkdev_ioctl+0x96b/0x1860 [ 164.061888] ? blkpg_ioctl+0x980/0x980 [ 164.065779] ? __might_sleep+0x93/0xb0 [ 164.069661] ? __fget+0x210/0x370 [ 164.073105] block_ioctl+0xde/0x120 [ 164.076719] ? blkdev_fallocate+0x3b0/0x3b0 [ 164.081037] do_vfs_ioctl+0x7ae/0x1060 [ 164.084917] ? selinux_file_mprotect+0x5d0/0x5d0 [ 164.089659] ? lock_downgrade+0x740/0x740 [ 164.093796] ? ioctl_preallocate+0x1c0/0x1c0 [ 164.098380] ? __fget+0x237/0x370 [ 164.101973] ? security_file_ioctl+0x89/0xb0 [ 164.106378] SyS_ioctl+0x8f/0xc0 [ 164.109730] ? do_vfs_ioctl+0x1060/0x1060 [ 164.114147] do_syscall_64+0x1e8/0x640 [ 164.118032] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 164.123697] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 164.128889] RIP: 0033:0x45a087 [ 164.133035] RSP: 002b:00007fe432840a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 164.156713] RAX: ffffffffffffffda RBX: 0000000020000068 RCX: 000000000045a087 [ 164.163970] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 164.171242] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 164.178497] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 07:05:59 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = syz_open_procfs(0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(r0, 0xc058565d, &(0x7f00000005c0)={0x0, 0xb, 0x4, 0x0, {0x0, 0x7530}, {0x0, 0x2, 0x81, 0x10, 0x24, 0x6, "cf676f53"}, 0x80, 0x5, @offset=0x9, 0x4}) socket$inet6_sctp(0xa, 0x1, 0x84) [ 164.185766] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 07:05:59 executing program 4: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f", 0x47, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, &(0x7f00000005c0)={0x0, 0xb, 0x4, 0x0, {0x0, 0x7530}, {0x0, 0x2, 0x81, 0x10, 0x24, 0x6, "cf676f53"}, 0x80, 0x5, @offset=0x9, 0x4}) mq_timedsend(0xffffffffffffffff, &(0x7f0000000480)="c1cc3d2c05c16add6c964974e00652617b35c74bd5a620d3170df3c2f134d5beb838b0f00c6ca198401126d02772777a96ead8602a94c5450ea4e5c8b02fc6e876ee2383fc4faa682ed6a91a53a08a1fdd9839c170a6f81ede814c769cf15c688c8514b5f4f1dc0a50019813ce4459df629cd480519073a5f929cd5e59d0058ea64475a46e924294d5ef1b4b158e59d9c923a0", 0x93, 0x4, &(0x7f0000000540)={0x0, 0x989680}) socket$inet6_sctp(0xa, 0x1, 0x84) 07:05:59 executing program 2 (fault-call:0 fault-nth:20): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 07:05:59 executing program 5: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, 0x0) r1 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) ioctl$VIDIOC_QUERYCAP(r1, 0x80685600, &(0x7f0000000040)) syz_open_dev$mouse(&(0x7f0000000340)='/dev/input/mouse#\x00', 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f0000000140)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3235004000000f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4d}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f00000000c0)) 07:05:59 executing program 1 (fault-call:0 fault-nth:21): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) 07:05:59 executing program 4: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, &(0x7f00000005c0)={0x0, 0xb, 0x4, 0x0, {0x0, 0x7530}, {0x0, 0x2, 0x81, 0x10, 0x24, 0x6, "cf676f53"}, 0x80, 0x5, @offset=0x9, 0x4}) mq_timedsend(0xffffffffffffffff, &(0x7f0000000480)="c1cc3d2c05c16add6c964974e00652617b35c74bd5a620d3170df3c2f134d5beb838b0f00c6ca198401126d02772777a96ead8602a94c5450ea4e5c8b02fc6e876ee2383fc4faa682ed6a91a53a08a1fdd9839c170a6f81ede814c769cf15c688c8514b5f4f1dc0a50019813ce4459df629cd480519073a5f929cd5e59d0058ea64475a46e924294d5ef1b4b158e59d9c923a0", 0x93, 0x4, &(0x7f0000000540)={0x0, 0x989680}) socket$inet6_sctp(0xa, 0x1, 0x84) [ 164.337693] FAULT_INJECTION: forcing a failure. [ 164.337693] name failslab, interval 1, probability 0, space 0, times 0 [ 164.377781] FAULT_INJECTION: forcing a failure. 07:05:59 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) syz_open_procfs(0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, &(0x7f00000005c0)={0x0, 0xb, 0x4, 0x0, {0x0, 0x7530}, {0x0, 0x2, 0x81, 0x10, 0x24, 0x6, "cf676f53"}, 0x80, 0x5, @offset=0x9, 0x4}) socket$inet6_sctp(0xa, 0x1, 0x84) [ 164.377781] name failslab, interval 1, probability 0, space 0, times 0 [ 164.382306] CPU: 0 PID: 10745 Comm: syz-executor.2 Not tainted 4.14.151 #0 [ 164.396053] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 164.405860] Call Trace: [ 164.408465] dump_stack+0x138/0x197 [ 164.412112] should_fail.cold+0x10f/0x159 [ 164.416277] should_failslab+0xdb/0x130 [ 164.420266] kmem_cache_alloc_trace+0x2e9/0x790 [ 164.424950] ? kernfs_put+0x35e/0x490 [ 164.428757] ? sysfs_add_file_mode_ns+0x1e4/0x450 [ 164.433866] ? devm_device_remove_groups+0x50/0x50 [ 164.433881] kobject_uevent_env+0x378/0xc23 [ 164.433893] ? internal_create_group+0x49a/0x7b0 [ 164.433911] kobject_uevent+0x20/0x26 [ 164.433922] lo_ioctl+0x11e7/0x1ce0 [ 164.433932] ? loop_probe+0x160/0x160 [ 164.433943] blkdev_ioctl+0x96b/0x1860 [ 164.433950] ? blkpg_ioctl+0x980/0x980 [ 164.433965] ? __might_sleep+0x93/0xb0 [ 164.433973] ? __fget+0x210/0x370 [ 164.433986] block_ioctl+0xde/0x120 [ 164.433994] ? blkdev_fallocate+0x3b0/0x3b0 [ 164.434003] do_vfs_ioctl+0x7ae/0x1060 [ 164.434017] ? selinux_file_mprotect+0x5d0/0x5d0 [ 164.497568] ? lock_downgrade+0x740/0x740 [ 164.501864] ? ioctl_preallocate+0x1c0/0x1c0 [ 164.506260] ? __fget+0x237/0x370 [ 164.510137] ? security_file_ioctl+0x89/0xb0 [ 164.514534] SyS_ioctl+0x8f/0xc0 [ 164.517887] ? do_vfs_ioctl+0x1060/0x1060 [ 164.522020] do_syscall_64+0x1e8/0x640 [ 164.525889] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 164.530728] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 164.535902] RIP: 0033:0x45a087 [ 164.539090] RSP: 002b:00007f8cf79a0a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 164.546782] RAX: ffffffffffffffda RBX: 0000000020000068 RCX: 000000000045a087 [ 164.554071] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 164.561334] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 164.568592] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 164.575848] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 [ 164.583955] CPU: 1 PID: 10752 Comm: syz-executor.1 Not tainted 4.14.151 #0 [ 164.590988] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 164.601567] Call Trace: [ 164.612774] dump_stack+0x138/0x197 [ 164.616420] should_fail.cold+0x10f/0x159 [ 164.620587] should_failslab+0xdb/0x130 [ 164.624548] __kmalloc+0x2f0/0x7a0 [ 164.628076] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 164.633524] ? kobject_uevent_env+0x378/0xc23 [ 164.638003] ? rcu_read_lock_sched_held+0x110/0x130 [ 164.643004] ? kobject_get_path+0xbb/0x1a0 [ 164.647222] kobject_get_path+0xbb/0x1a0 [ 164.651441] ? devm_device_remove_groups+0x50/0x50 [ 164.656364] kobject_uevent_env+0x39c/0xc23 [ 164.660670] ? internal_create_group+0x49a/0x7b0 [ 164.665414] kobject_uevent+0x20/0x26 [ 164.669218] lo_ioctl+0x11e7/0x1ce0 [ 164.672831] ? loop_probe+0x160/0x160 [ 164.676619] blkdev_ioctl+0x96b/0x1860 [ 164.680489] ? blkpg_ioctl+0x980/0x980 [ 164.684387] ? __might_sleep+0x93/0xb0 [ 164.688271] ? __fget+0x210/0x370 [ 164.691716] block_ioctl+0xde/0x120 [ 164.695326] ? blkdev_fallocate+0x3b0/0x3b0 [ 164.699630] do_vfs_ioctl+0x7ae/0x1060 [ 164.703501] ? selinux_file_mprotect+0x5d0/0x5d0 [ 164.708239] ? lock_downgrade+0x740/0x740 [ 164.712384] ? ioctl_preallocate+0x1c0/0x1c0 [ 164.716780] ? __fget+0x237/0x370 [ 164.720219] ? security_file_ioctl+0x89/0xb0 [ 164.724610] SyS_ioctl+0x8f/0xc0 [ 164.727967] ? do_vfs_ioctl+0x1060/0x1060 [ 164.732100] do_syscall_64+0x1e8/0x640 [ 164.735970] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 164.740799] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 164.745973] RIP: 0033:0x45a087 [ 164.749148] RSP: 002b:00007fe432840a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 164.756840] RAX: ffffffffffffffda RBX: 0000000020000068 RCX: 000000000045a087 [ 164.764092] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 164.771345] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 164.778605] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 07:05:59 executing program 0: r0 = syz_open_dev$loop(&(0x7f0000000040)='/dev/loop#\x00', 0x0, 0x0) openat$ion(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ion\x00', 0x280, 0x0) ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f00000001c0)={[], 0xff81, 0x800000, 0x6}) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) r2 = fcntl$dupfd(r1, 0x0, r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) [ 164.785857] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 07:05:59 executing program 5: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, 0x0) r1 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) ioctl$VIDIOC_QUERYCAP(r1, 0x80685600, &(0x7f0000000040)) syz_open_dev$mouse(&(0x7f0000000340)='/dev/input/mouse#\x00', 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f0000000140)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3235004000000f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4d}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f00000000c0)) 07:05:59 executing program 4: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, &(0x7f00000005c0)={0x0, 0xb, 0x4, 0x0, {0x0, 0x7530}, {0x0, 0x2, 0x81, 0x10, 0x24, 0x6, "cf676f53"}, 0x80, 0x5, @offset=0x9, 0x4}) mq_timedsend(0xffffffffffffffff, &(0x7f0000000480)="c1cc3d2c05c16add6c964974e00652617b35c74bd5a620d3170df3c2f134d5beb838b0f00c6ca198401126d02772777a96ead8602a94c5450ea4e5c8b02fc6e876ee2383fc4faa682ed6a91a53a08a1fdd9839c170a6f81ede814c769cf15c688c8514b5f4f1dc0a50019813ce4459df629cd480519073a5f929cd5e59d0058ea64475a46e924294d5ef1b4b158e59d9c923a0", 0x93, 0x4, &(0x7f0000000540)={0x0, 0x989680}) socket$inet6_sctp(0xa, 0x1, 0x84) 07:06:00 executing program 0: r0 = syz_open_dev$loop(&(0x7f0000000040)='/dev/loop#\x00', 0x0, 0x0) ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f00000001c0)={[], 0xff81, 0x800000, 0x6}) r1 = syz_open_procfs(0x0, &(0x7f00000006c0)='Net/3\x97OOT\x15\x00\xb6\xcf@e\xd3r\x82\x9fc') ioctl$VIDIOC_PREPARE_BUF(r1, 0xc058565d, &(0x7f00000005c0)={0x0, 0xb, 0x4, 0x0, {0x0, 0x7530}, {0x0, 0x2, 0x81, 0x10, 0x24, 0x6, "cf676f53"}, 0x80, 0x5, @offset=0x9, 0x4}) mq_timedsend(r1, &(0x7f0000000480)="c1cc3d2c05c16add6c964974e00652617b35c74bd5a620d3170df3c2f134d5beb838b0f00c6ca198401126d02772777a96ead8602a94c5450ea4e5c8b02fc6e876ee2383fc4faa682ed6a91a53a08a1fdd9839c170a6f81ede814c769cf15c688c8514b5f4f1dc0a50019813ce4459df629cd480519073a5f929cd5e59d0058ea64475a46e924294d5ef1b4b158e59d9c923a0", 0x93, 0x4, &(0x7f0000000540)={0x0, 0x989680}) ioctl$LOOP_SET_STATUS64(r1, 0x4c04, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x4, 0x12, 0x8, "9dd19be9af491f0212cc57da07e45c1e4096abb0cf005c7e6071aaf47551302a2eb390ea835c67b4c731f9eb0800a0f0f32629232bb2709892801aefbb7e30f9", "abcb9c69f0d944d5b0dbc99572c12eeee273596b933ab7585f67b3f4488d03e77bcbc19479a6d010e5dd961a61f6d1292f1bbac359770357fd8aafa535f92d6d", "3acccb28c9de218f76049ba0d325723823548340ed99fd8fc7eaf20f49eeee65", [0x0, 0xb06]}) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) r3 = fcntl$dupfd(r2, 0x0, r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) 07:06:00 executing program 2 (fault-call:0 fault-nth:21): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 07:06:00 executing program 1 (fault-call:0 fault-nth:22): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) 07:06:00 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) syz_open_procfs(0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, &(0x7f00000005c0)={0x0, 0xb, 0x4, 0x0, {0x0, 0x7530}, {0x0, 0x2, 0x81, 0x10, 0x24, 0x6, "cf676f53"}, 0x80, 0x5, @offset=0x9, 0x4}) socket$inet6_sctp(0xa, 0x1, 0x84) 07:06:00 executing program 4: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, &(0x7f00000005c0)={0x0, 0xb, 0x4, 0x0, {0x0, 0x7530}, {0x0, 0x2, 0x81, 0x10, 0x24, 0x6, "cf676f53"}, 0x80, 0x5, @offset=0x9, 0x4}) mq_timedsend(0xffffffffffffffff, &(0x7f0000000480)="c1cc3d2c05c16add6c964974e00652617b35c74bd5a620d3170df3c2f134d5beb838b0f00c6ca198401126d02772777a96ead8602a94c5450ea4e5c8b02fc6e876ee2383fc4faa682ed6a91a53a08a1fdd9839c170a6f81ede814c769cf15c688c8514b5f4f1dc0a50019813ce4459df629cd480519073a5f929cd5e59d0058ea64475a46e924294d5ef1b4b158e59d9c923a0", 0x93, 0x4, &(0x7f0000000540)={0x0, 0x989680}) socket$inet6_sctp(0xa, 0x1, 0x84) 07:06:00 executing program 0: r0 = syz_open_dev$loop(&(0x7f0000000040)='/dev/loop#\x00', 0x0, 0x0) ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f00000001c0)={[], 0xff81, 0x800000, 0x6}) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) r2 = fcntl$dupfd(r0, 0x0, r1) r3 = socket$inet6_sctp(0xa, 0x1, 0x84) socket$inet6_sctp(0xa, 0x10000000005, 0x84) r4 = open(&(0x7f0000000140)='./file0\x00', 0x2, 0x60) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r4, 0x84, 0x1d, &(0x7f000095dff8), &(0x7f0000000100)=0x4) getsockopt$inet_sctp6_SCTP_ASSOCINFO(r3, 0x84, 0x1, &(0x7f0000000000), &(0x7f0000000040)=0x14) getsockopt$inet_sctp6_SCTP_RTOINFO(r2, 0x84, 0x0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x6}, &(0x7f00000000c0)=0x10) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) syz_open_dev$ndb(&(0x7f0000000000)='/dev/nbd#\x00', 0x0, 0x210882) [ 165.013262] FAULT_INJECTION: forcing a failure. [ 165.013262] name failslab, interval 1, probability 0, space 0, times 0 [ 165.056381] CPU: 0 PID: 10790 Comm: syz-executor.2 Not tainted 4.14.151 #0 [ 165.064587] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 165.064594] Call Trace: [ 165.064613] dump_stack+0x138/0x197 [ 165.064633] should_fail.cold+0x10f/0x159 [ 165.064651] should_failslab+0xdb/0x130 [ 165.076604] kmem_cache_alloc_trace+0x2e9/0x790 [ 165.076618] ? kernfs_put+0x35e/0x490 [ 165.076628] ? sysfs_add_file_mode_ns+0x1e4/0x450 [ 165.076641] ? devm_device_remove_groups+0x50/0x50 [ 165.076654] kobject_uevent_env+0x378/0xc23 [ 165.076664] ? internal_create_group+0x49a/0x7b0 [ 165.084445] kobject_uevent+0x20/0x26 [ 165.084457] lo_ioctl+0x11e7/0x1ce0 [ 165.084471] ? loop_probe+0x160/0x160 [ 165.084483] blkdev_ioctl+0x96b/0x1860 [ 165.084492] ? blkpg_ioctl+0x980/0x980 [ 165.088693] FAULT_INJECTION: forcing a failure. [ 165.088693] name failslab, interval 1, probability 0, space 0, times 0 [ 165.095945] ? __might_sleep+0x93/0xb0 [ 165.095956] ? __fget+0x210/0x370 [ 165.095970] block_ioctl+0xde/0x120 [ 165.095981] ? blkdev_fallocate+0x3b0/0x3b0 [ 165.095990] do_vfs_ioctl+0x7ae/0x1060 [ 165.096000] ? selinux_file_mprotect+0x5d0/0x5d0 [ 165.096009] ? lock_downgrade+0x740/0x740 [ 165.096019] ? ioctl_preallocate+0x1c0/0x1c0 [ 165.096030] ? __fget+0x237/0x370 [ 165.096044] ? security_file_ioctl+0x89/0xb0 [ 165.096055] SyS_ioctl+0x8f/0xc0 [ 165.096062] ? do_vfs_ioctl+0x1060/0x1060 [ 165.096074] do_syscall_64+0x1e8/0x640 [ 165.096082] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 165.096102] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 165.096110] RIP: 0033:0x45a087 [ 165.096115] RSP: 002b:00007f8cf79a0a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 165.225703] RAX: ffffffffffffffda RBX: 0000000020000068 RCX: 000000000045a087 [ 165.232965] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 165.240261] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 165.247522] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 165.254802] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 [ 165.271998] CPU: 1 PID: 10794 Comm: syz-executor.1 Not tainted 4.14.151 #0 [ 165.279113] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 165.288472] Call Trace: [ 165.291077] dump_stack+0x138/0x197 [ 165.294711] should_fail.cold+0x10f/0x159 [ 165.298872] should_failslab+0xdb/0x130 [ 165.302842] kmem_cache_alloc_node+0x287/0x780 [ 165.307419] __alloc_skb+0x9c/0x500 [ 165.311030] ? skb_scrub_packet+0x4b0/0x4b0 [ 165.315335] ? netlink_has_listeners+0x20a/0x330 [ 165.320080] kobject_uevent_env+0x781/0xc23 [ 165.324385] ? internal_create_group+0x49a/0x7b0 [ 165.329129] kobject_uevent+0x20/0x26 [ 165.332935] lo_ioctl+0x11e7/0x1ce0 [ 165.336559] ? loop_probe+0x160/0x160 [ 165.340354] blkdev_ioctl+0x96b/0x1860 [ 165.344225] ? blkpg_ioctl+0x980/0x980 [ 165.348100] ? __might_sleep+0x93/0xb0 [ 165.351978] ? __fget+0x210/0x370 [ 165.355415] block_ioctl+0xde/0x120 [ 165.359031] ? blkdev_fallocate+0x3b0/0x3b0 [ 165.363334] do_vfs_ioctl+0x7ae/0x1060 [ 165.367213] ? selinux_file_mprotect+0x5d0/0x5d0 [ 165.371953] ? lock_downgrade+0x740/0x740 [ 165.376109] ? ioctl_preallocate+0x1c0/0x1c0 [ 165.380497] ? __fget+0x237/0x370 [ 165.383935] ? security_file_ioctl+0x89/0xb0 [ 165.388326] SyS_ioctl+0x8f/0xc0 [ 165.391688] ? do_vfs_ioctl+0x1060/0x1060 [ 165.395827] do_syscall_64+0x1e8/0x640 [ 165.399695] ? trace_hardirqs_off_thunk+0x1a/0x1c 07:06:00 executing program 5: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, 0x0) r1 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) ioctl$VIDIOC_QUERYCAP(r1, 0x80685600, &(0x7f0000000040)) syz_open_dev$mouse(&(0x7f0000000340)='/dev/input/mouse#\x00', 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f0000000140)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3235004000000f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4d}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f00000000c0)) 07:06:00 executing program 0: r0 = syz_open_dev$loop(&(0x7f0000000040)='/dev/loop#\x00', 0x0, 0x0) ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f00000001c0)={[], 0xff81, 0x800000, 0x6}) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) r2 = memfd_create(&(0x7f0000000000)='/dev/loop#\x00', 0x4) fgetxattr(r2, &(0x7f0000000080)=@known='security.apparmor\x00', &(0x7f00000000c0)=""/86, 0x56) r3 = fcntl$dupfd(r1, 0x0, r1) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) [ 165.404524] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 165.409696] RIP: 0033:0x45a087 [ 165.412879] RSP: 002b:00007fe432840a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 165.420659] RAX: ffffffffffffffda RBX: 0000000020000068 RCX: 000000000045a087 [ 165.427921] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 165.435173] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 165.442426] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 165.449679] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 07:06:00 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) syz_open_procfs(0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) socket$inet6_sctp(0xa, 0x1, 0x84) 07:06:00 executing program 4: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) mq_timedsend(0xffffffffffffffff, &(0x7f0000000480)="c1cc3d2c05c16add6c964974e00652617b35c74bd5a620d3170df3c2f134d5beb838b0f00c6ca198401126d02772777a96ead8602a94c5450ea4e5c8b02fc6e876ee2383fc4faa682ed6a91a53a08a1fdd9839c170a6f81ede814c769cf15c688c8514b5f4f1dc0a50019813ce4459df629cd480519073a5f929cd5e59d0058ea64475a46e924294d5ef1b4b158e59d9c923a0", 0x93, 0x4, &(0x7f0000000540)={0x0, 0x989680}) socket$inet6_sctp(0xa, 0x1, 0x84) 07:06:00 executing program 0: r0 = syz_open_dev$loop(&(0x7f0000000040)='/dev/loop#\x00', 0x0, 0x0) ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f00000001c0)={[], 0xff81, 0x800000, 0x6}) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) r2 = fcntl$dupfd(r1, 0x0, r1) r3 = syz_open_procfs(0x0, &(0x7f0000000880)='oom_score\x00') preadv(r3, &(0x7f00000017c0), 0x199, 0x0) ioctl$UI_BEGIN_FF_UPLOAD(r3, 0xc06855c8, &(0x7f0000000640)={0x10, 0xd17, {0x52, 0x2db, 0x7f, {0x200}, {0x40, 0x4}, @const={0x7ff, {0x8, 0xba, 0x1, 0x9150}}}, {0xa5e136065a937c32, 0x5, 0xfff, {0x4, 0x3}, {0x7, 0x1}, @ramp={0x800, 0x80, {0x100, 0x4c2, 0x800, 0x3}}}}) r4 = openat$selinux_mls(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/mls\x00', 0x0, 0x0) r5 = syz_open_procfs(0x0, &(0x7f00000006c0)='Net/3\x97OOT\x15\x00\xb6\xcf@e\xd3r\x82\x9fc') ioctl$VIDIOC_PREPARE_BUF(r5, 0xc058565d, &(0x7f00000005c0)={0x0, 0xb, 0x4, 0x0, {0x0, 0x7530}, {0x0, 0x2, 0x81, 0x10, 0x24, 0x6, "cf676f53"}, 0x80, 0x5, @offset=0x9, 0x4}) mq_timedsend(r5, &(0x7f0000000480)="c1cc3d2c05c16add6c964974e00652617b35c74bd5a620d3170df3c2f134d5beb838b0f00c6ca198401126d02772777a96ead8602a94c5450ea4e5c8b02fc6e876ee2383fc4faa682ed6a91a53a08a1fdd9839c170a6f81ede814c769cf15c688c8514b5f4f1dc0a50019813ce4459df629cd480519073a5f929cd5e59d0058ea64475a46e924294d5ef1b4b158e59d9c923a0", 0x93, 0x4, &(0x7f0000000540)={0x0, 0x989680}) poll(&(0x7f0000000080)=[{r2, 0x4015}, {0xffffffffffffffff, 0x1}, {r3, 0x28a}, {r4, 0x80}, {r5, 0x2221a5a3645e0921}], 0x5, 0x5) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) 07:06:00 executing program 2 (fault-call:0 fault-nth:22): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 07:06:00 executing program 1 (fault-call:0 fault-nth:23): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) 07:06:00 executing program 5: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, 0x0) r1 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) ioctl$VIDIOC_QUERYCAP(r1, 0x80685600, &(0x7f0000000040)) syz_open_dev$mouse(&(0x7f0000000340)='/dev/input/mouse#\x00', 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f0000000140)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3235004000000f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4d}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f00000000c0)) 07:06:00 executing program 4: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x4, &(0x7f0000000540)={0x0, 0x989680}) socket$inet6_sctp(0xa, 0x1, 0x84) [ 165.694003] FAULT_INJECTION: forcing a failure. [ 165.694003] name failslab, interval 1, probability 0, space 0, times 0 [ 165.728614] CPU: 1 PID: 10839 Comm: syz-executor.1 Not tainted 4.14.151 #0 [ 165.735675] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 165.745037] Call Trace: [ 165.747624] dump_stack+0x138/0x197 [ 165.751267] should_fail.cold+0x10f/0x159 [ 165.751283] should_failslab+0xdb/0x130 [ 165.759386] kmem_cache_alloc_node+0x287/0x780 [ 165.763979] __alloc_skb+0x9c/0x500 [ 165.767611] ? skb_scrub_packet+0x4b0/0x4b0 [ 165.771918] ? netlink_has_listeners+0x20a/0x330 [ 165.776675] kobject_uevent_env+0x781/0xc23 [ 165.780995] kobject_uevent+0x20/0x26 [ 165.784779] lo_ioctl+0x11e7/0x1ce0 [ 165.788388] ? loop_probe+0x160/0x160 [ 165.792171] blkdev_ioctl+0x96b/0x1860 [ 165.796037] ? blkpg_ioctl+0x980/0x980 [ 165.799914] ? __might_sleep+0x93/0xb0 [ 165.803872] ? __fget+0x210/0x370 [ 165.807313] block_ioctl+0xde/0x120 [ 165.810932] ? blkdev_fallocate+0x3b0/0x3b0 [ 165.815233] do_vfs_ioctl+0x7ae/0x1060 [ 165.819113] ? selinux_file_mprotect+0x5d0/0x5d0 [ 165.823852] ? lock_downgrade+0x740/0x740 [ 165.827982] ? ioctl_preallocate+0x1c0/0x1c0 [ 165.832376] ? __fget+0x237/0x370 [ 165.835814] ? security_file_ioctl+0x89/0xb0 [ 165.840208] SyS_ioctl+0x8f/0xc0 [ 165.843570] ? do_vfs_ioctl+0x1060/0x1060 [ 165.847703] do_syscall_64+0x1e8/0x640 [ 165.851575] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 165.856409] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 165.861584] RIP: 0033:0x45a087 [ 165.864754] RSP: 002b:00007fe432840a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 165.872443] RAX: ffffffffffffffda RBX: 0000000020000068 RCX: 000000000045a087 [ 165.879705] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 165.887063] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a 07:06:01 executing program 0: r0 = syz_open_dev$loop(&(0x7f0000000040)='/dev/loop#\x00', 0x0, 0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)=0x8000) ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f00000001c0)={[], 0xff81, 0x800000, 0x6}) syz_open_dev$swradio(&(0x7f0000000000)='/dev/swradio#\x00', 0x1, 0x2) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) r2 = fcntl$dupfd(r1, 0x0, r1) r3 = socket$inet6(0xa, 0x2, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r4, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$UI_SET_SWBIT(r4, 0x4004556d, 0x9) recvmmsg(r3, &(0x7f00000036c0)=[{{&(0x7f0000000240)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @initdev}}}, 0x80, &(0x7f0000003600)=[{&(0x7f00000002c0)=""/4096, 0x1000}, {&(0x7f0000000180)=""/4, 0x4}, {&(0x7f00000012c0)=""/4096, 0x1000}, {&(0x7f00000022c0)=""/18, 0x12}, {&(0x7f0000002300)=""/238, 0xee}, {&(0x7f0000002400)=""/60, 0x3c}, {&(0x7f0000002440)=""/203, 0xcb}, {&(0x7f0000002540)=""/77, 0x4d}, {&(0x7f00000025c0)=""/42, 0x2a}, {&(0x7f0000002600)=""/4096, 0x1000}], 0xa}, 0xf5}], 0x1, 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r5, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) r6 = getpid() sched_setattr(r6, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0) ptrace$setregs(0xd, r6, 0xffffffff, &(0x7f0000000140)="8231ffd682e8069b5b2e44bcbad9582c40") pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r7, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) fcntl$dupfd(r3, 0x0, r7) r8 = openat$selinux_enforce(0xffffffffffffff9c, &(0x7f0000000080)='/selinux/enforce\x00', 0x40, 0x0) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r8, 0xc0045520, &(0x7f00000000c0)=0xf8ba) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) [ 165.894324] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 165.901575] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 [ 165.918972] FAULT_INJECTION: forcing a failure. [ 165.918972] name failslab, interval 1, probability 0, space 0, times 0 07:06:01 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) syz_open_procfs(0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) [ 165.945259] CPU: 1 PID: 10841 Comm: syz-executor.2 Not tainted 4.14.151 #0 [ 165.952318] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 165.961678] Call Trace: [ 165.964304] dump_stack+0x138/0x197 [ 165.967947] should_fail.cold+0x10f/0x159 [ 165.972100] should_failslab+0xdb/0x130 [ 165.976130] kmem_cache_alloc_node+0x287/0x780 [ 165.980745] __alloc_skb+0x9c/0x500 [ 165.984365] ? skb_scrub_packet+0x4b0/0x4b0 [ 165.988693] ? netlink_has_listeners+0x20a/0x330 [ 165.993464] kobject_uevent_env+0x781/0xc23 [ 165.997916] ? internal_create_group+0x49a/0x7b0 [ 166.002677] kobject_uevent+0x20/0x26 [ 166.006500] lo_ioctl+0x11e7/0x1ce0 [ 166.010141] ? loop_probe+0x160/0x160 [ 166.013952] blkdev_ioctl+0x96b/0x1860 [ 166.017857] ? blkpg_ioctl+0x980/0x980 [ 166.021769] ? __might_sleep+0x93/0xb0 [ 166.025699] ? __fget+0x210/0x370 [ 166.029171] block_ioctl+0xde/0x120 [ 166.032795] ? blkdev_fallocate+0x3b0/0x3b0 [ 166.037331] do_vfs_ioctl+0x7ae/0x1060 [ 166.041222] ? selinux_file_mprotect+0x5d0/0x5d0 [ 166.045966] ? lock_downgrade+0x740/0x740 [ 166.050269] ? ioctl_preallocate+0x1c0/0x1c0 [ 166.054688] ? __fget+0x237/0x370 [ 166.058145] ? security_file_ioctl+0x89/0xb0 [ 166.062551] SyS_ioctl+0x8f/0xc0 [ 166.065902] ? do_vfs_ioctl+0x1060/0x1060 [ 166.070044] do_syscall_64+0x1e8/0x640 [ 166.074013] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 166.078847] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 166.084127] RIP: 0033:0x45a087 [ 166.087392] RSP: 002b:00007f8cf79a0a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 166.095103] RAX: ffffffffffffffda RBX: 0000000020000068 RCX: 000000000045a087 [ 166.102378] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 166.109633] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 166.116988] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 166.124504] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 07:06:01 executing program 5: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, 0x0) r1 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) ioctl$VIDIOC_QUERYCAP(r1, 0x80685600, &(0x7f0000000040)) syz_open_dev$mouse(&(0x7f0000000340)='/dev/input/mouse#\x00', 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f0000000140)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3235004000000f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4d}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f00000000c0)) 07:06:01 executing program 1 (fault-call:0 fault-nth:24): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) 07:06:01 executing program 2 (fault-call:0 fault-nth:23): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 07:06:01 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) syz_open_procfs(0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) 07:06:01 executing program 4: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x4, &(0x7f0000000540)={0x0, 0x989680}) socket$inet6_sctp(0xa, 0x1, 0x84) [ 166.335266] FAULT_INJECTION: forcing a failure. [ 166.335266] name failslab, interval 1, probability 0, space 0, times 0 [ 166.354524] CPU: 0 PID: 10888 Comm: syz-executor.1 Not tainted 4.14.151 #0 [ 166.361603] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 166.361607] Call Trace: [ 166.361626] dump_stack+0x138/0x197 [ 166.361645] should_fail.cold+0x10f/0x159 [ 166.361659] should_failslab+0xdb/0x130 [ 166.361671] kmem_cache_alloc_node_trace+0x280/0x770 [ 166.361683] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 166.361698] __kmalloc_node_track_caller+0x3d/0x80 [ 166.361710] __kmalloc_reserve.isra.0+0x40/0xe0 [ 166.361721] __alloc_skb+0xcf/0x500 [ 166.361730] ? skb_scrub_packet+0x4b0/0x4b0 [ 166.361741] ? netlink_has_listeners+0x20a/0x330 [ 166.361754] kobject_uevent_env+0x781/0xc23 [ 166.361763] ? internal_create_group+0x49a/0x7b0 [ 166.361779] kobject_uevent+0x20/0x26 [ 166.361789] lo_ioctl+0x11e7/0x1ce0 [ 166.361802] ? loop_probe+0x160/0x160 [ 166.361811] blkdev_ioctl+0x96b/0x1860 [ 166.361821] ? blkpg_ioctl+0x980/0x980 [ 166.377392] ? __might_sleep+0x93/0xb0 [ 166.377404] ? __fget+0x210/0x370 [ 166.385608] block_ioctl+0xde/0x120 [ 166.385619] ? blkdev_fallocate+0x3b0/0x3b0 [ 166.465776] do_vfs_ioctl+0x7ae/0x1060 [ 166.469649] ? selinux_file_mprotect+0x5d0/0x5d0 [ 166.474394] ? lock_downgrade+0x740/0x740 [ 166.478543] ? ioctl_preallocate+0x1c0/0x1c0 [ 166.483058] ? __fget+0x237/0x370 [ 166.486504] ? security_file_ioctl+0x89/0xb0 [ 166.490905] SyS_ioctl+0x8f/0xc0 [ 166.494271] ? do_vfs_ioctl+0x1060/0x1060 [ 166.498416] do_syscall_64+0x1e8/0x640 [ 166.502290] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 166.507126] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 166.512304] RIP: 0033:0x45a087 [ 166.515482] RSP: 002b:00007fe432840a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 166.523171] RAX: ffffffffffffffda RBX: 0000000020000068 RCX: 000000000045a087 [ 166.530446] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 166.537717] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 166.545060] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 166.552335] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 [ 166.565851] FAULT_INJECTION: forcing a failure. [ 166.565851] name failslab, interval 1, probability 0, space 0, times 0 [ 166.589857] CPU: 1 PID: 10889 Comm: syz-executor.2 Not tainted 4.14.151 #0 [ 166.596915] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 166.606320] Call Trace: [ 166.608893] dump_stack+0x138/0x197 [ 166.612624] should_fail.cold+0x10f/0x159 [ 166.616789] should_failslab+0xdb/0x130 [ 166.620779] kmem_cache_alloc_node_trace+0x280/0x770 [ 166.625893] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 166.631361] __kmalloc_node_track_caller+0x3d/0x80 [ 166.636288] __kmalloc_reserve.isra.0+0x40/0xe0 [ 166.640937] __alloc_skb+0xcf/0x500 [ 166.644553] ? skb_scrub_packet+0x4b0/0x4b0 [ 166.648870] ? netlink_has_listeners+0x20a/0x330 [ 166.653697] kobject_uevent_env+0x781/0xc23 [ 166.658041] ? internal_create_group+0x49a/0x7b0 [ 166.662785] kobject_uevent+0x20/0x26 [ 166.666570] lo_ioctl+0x11e7/0x1ce0 [ 166.670189] ? loop_probe+0x160/0x160 [ 166.673982] blkdev_ioctl+0x96b/0x1860 [ 166.677857] ? blkpg_ioctl+0x980/0x980 [ 166.681728] ? __might_sleep+0x93/0xb0 [ 166.685594] ? __fget+0x210/0x370 [ 166.689035] block_ioctl+0xde/0x120 [ 166.692643] ? blkdev_fallocate+0x3b0/0x3b0 [ 166.696945] do_vfs_ioctl+0x7ae/0x1060 [ 166.700815] ? selinux_file_mprotect+0x5d0/0x5d0 [ 166.705550] ? lock_downgrade+0x740/0x740 [ 166.709692] ? ioctl_preallocate+0x1c0/0x1c0 [ 166.714103] ? __fget+0x237/0x370 [ 166.717555] ? security_file_ioctl+0x89/0xb0 [ 166.721965] SyS_ioctl+0x8f/0xc0 [ 166.725344] ? do_vfs_ioctl+0x1060/0x1060 [ 166.729582] do_syscall_64+0x1e8/0x640 [ 166.733462] ? trace_hardirqs_off_thunk+0x1a/0x1c 07:06:01 executing program 0: r0 = syz_open_dev$loop(&(0x7f0000000040)='\xff\xfb\xf1\xff/loop#\x00', 0x3, 0xde902) ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f00000001c0)={[], 0xff81, 0x800000, 0x6}) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) r2 = fcntl$dupfd(r1, 0x0, r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) ioctl$TIOCGETD(r2, 0x5424, &(0x7f0000000300)) ioctl$sock_inet_SIOCGIFBRDADDR(r2, 0x8919, &(0x7f0000000080)={'ipddp0\x00', {0x2, 0x4e23, @loopback}}) recvfrom$inet(0xffffffffffffffff, &(0x7f00000000c0)=""/233, 0xe9, 0xc0000002, &(0x7f0000000240)={0x2, 0x4e21, @rand_addr=0x5}, 0x10) [ 166.738293] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 166.743483] RIP: 0033:0x45a087 [ 166.746679] RSP: 002b:00007f8cf79a0a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 166.754387] RAX: ffffffffffffffda RBX: 0000000020000068 RCX: 000000000045a087 [ 166.754393] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 166.754399] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 166.754404] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 166.754412] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 07:06:01 executing program 5: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, 0x0) r1 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) ioctl$VIDIOC_QUERYCAP(r1, 0x80685600, &(0x7f0000000040)) syz_open_dev$mouse(&(0x7f0000000340)='/dev/input/mouse#\x00', 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f0000000140)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3235004000000f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4d}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f00000000c0)) 07:06:01 executing program 0: r0 = syz_open_dev$loop(&(0x7f0000000040)='/dev/loop#\x00', 0x0, 0x0) r1 = getpid() sched_setattr(r1, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0) ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f00000001c0)={[], 0xff81, 0x800000, 0x8, 0x0, 0x5, r1}) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) r3 = fcntl$dupfd(r2, 0x0, r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) 07:06:01 executing program 0: r0 = syz_open_dev$loop(&(0x7f0000000340)='/dev/loop#\x00', 0x6, 0x80c00) ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f00000001c0)={[], 0xff81, 0x800000, 0x6}) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) r2 = syz_open_dev$vivid(&(0x7f0000000000)='/dev/video#\x00', 0x1, 0x2) ioctl$VIDIOC_DBG_G_CHIP_INFO(r2, 0xc0c85666, &(0x7f0000000080)={{0x3, @name="daf1ca9d8153a8dec15e16735e3d71fcb500964d0601b8ba09eff993591144f9"}, "723af9a83c1c5e6b76ebfd96d0eacd54d78dc284223579ec31a4328c498967a2", 0x1}) getpeername(r1, &(0x7f0000000280)=@generic, &(0x7f0000000300)=0x80) r3 = syz_open_procfs(0x0, &(0x7f00000006c0)='Net/3\x97OOT\x15\x00\xb6\xcf@e\xd3r\x82\x9fc') ioctl$VIDIOC_PREPARE_BUF(r3, 0xc058565d, &(0x7f00000005c0)={0x0, 0xb, 0x4, 0x0, {0x0, 0x7530}, {0x0, 0x2, 0x81, 0x10, 0x24, 0x6, "cf676f53"}, 0x80, 0x5, @offset=0x9, 0x4}) mq_timedsend(r3, &(0x7f0000000480)="c1cc3d2c05c16add6c964974e00652617b35c74bd5a620d3170df3c2f134d5beb838b0f00c6ca198401126d02772777a96ead8602a94c5450ea4e5c8b02fc6e876ee2383fc4faa682ed6a91a53a08a1fdd9839c170a6f81ede814c769cf15c688c8514b5f4f1dc0a50019813ce4459df629cd480519073a5f929cd5e59d0058ea64475a46e924294d5ef1b4b158e59d9c923a0", 0x93, 0x4, &(0x7f0000000540)={0x0, 0x989680}) getpeername$netrom(r3, &(0x7f0000000380)={{0x3, @rose}, [@bcast, @null, @remote, @remote, @default, @null, @rose]}, &(0x7f0000000040)=0x48) setsockopt$l2tp_PPPOL2TP_SO_DEBUG(0xffffffffffffffff, 0x111, 0x1, 0x5a216270, 0x4) r4 = openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000180)='/selinux/policy\x00', 0x0, 0x0) ioctl$KVM_TRANSLATE(r4, 0xc018ae85, &(0x7f0000000240)={0x2000, 0x6000, 0x7f, 0xd9, 0x2}) mlockall(0x4) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r5, 0x407, 0x0) write(r5, &(0x7f0000000340), 0x41395527) ioctl$EXT4_IOC_ALLOC_DA_BLKS(r5, 0x660c) setsockopt$ALG_SET_KEY(r5, 0x117, 0x1, &(0x7f0000000380)="0c4f4d16cf2f3a2dd8a5046790a60c91e487dc9ca281434dbc169c6555a654da5e42c953490634b417ec9535653162fc5730d4c8dab3e136550ed7d31fa8d7094afd6e5154349155e6ef7e5fb08d79c283188a3f28548ab4366e6863ba5561aedbd1ee3f9a2c5646e4a9c2806b231528bca7ee2134e39966c40bcb1371a7e7691672a8dc9bda07175f11a9160cba3f0ddb78db3b2e184e1e9aa371691df9f49a5e3343bce4e4b8a2c80831b63d95ed57cf89982b317abf1cf8a71078d00dd5fa9151c142fa4bb765d503150f5f6f34284c7480a5091e9b246e", 0xd9) fsetxattr$trusted_overlay_nlink(r5, &(0x7f0000000240)='trusted.overlay.nlink\x00', &(0x7f0000000300)={'U+', 0x7}, 0x28, 0x3) ioctl$sock_bt_bnep_BNEPCONNDEL(r5, 0x400442c9, &(0x7f0000000400)={0x8001, @random="b13f5d05a6b8"}) 07:06:02 executing program 4: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x4, &(0x7f0000000540)={0x0, 0x989680}) socket$inet6_sctp(0xa, 0x1, 0x84) 07:06:02 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) syz_open_procfs(0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) 07:06:02 executing program 2 (fault-call:0 fault-nth:24): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 07:06:02 executing program 1 (fault-call:0 fault-nth:25): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) 07:06:02 executing program 5: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(0xffffffffffffffff, 0x8934, 0x0) r0 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) ioctl$VIDIOC_QUERYCAP(r0, 0x80685600, &(0x7f0000000040)) syz_open_dev$mouse(&(0x7f0000000340)='/dev/input/mouse#\x00', 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f0000000140)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3235004000000f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4d}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f00000000c0)) [ 167.030878] FAULT_INJECTION: forcing a failure. [ 167.030878] name failslab, interval 1, probability 0, space 0, times 0 [ 167.085349] CPU: 1 PID: 10932 Comm: syz-executor.1 Not tainted 4.14.151 #0 [ 167.092424] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 167.101791] Call Trace: [ 167.104478] dump_stack+0x138/0x197 [ 167.108098] should_fail.cold+0x10f/0x159 [ 167.112252] should_failslab+0xdb/0x130 [ 167.116245] kmem_cache_alloc_node_trace+0x280/0x770 [ 167.121341] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 167.126780] __kmalloc_node_track_caller+0x3d/0x80 [ 167.131712] __kmalloc_reserve.isra.0+0x40/0xe0 [ 167.136393] __alloc_skb+0xcf/0x500 [ 167.140010] ? skb_scrub_packet+0x4b0/0x4b0 [ 167.144323] ? netlink_has_listeners+0x20a/0x330 [ 167.149063] ? kobject_uevent_env+0x6e5/0xc23 [ 167.153540] kobject_uevent_env+0x781/0xc23 [ 167.157849] kobject_uevent+0x20/0x26 [ 167.161647] lo_ioctl+0x11e7/0x1ce0 [ 167.165262] ? loop_probe+0x160/0x160 [ 167.169141] blkdev_ioctl+0x96b/0x1860 [ 167.173011] ? blkpg_ioctl+0x980/0x980 [ 167.176884] ? __might_sleep+0x93/0xb0 [ 167.180751] ? __fget+0x210/0x370 [ 167.184207] block_ioctl+0xde/0x120 [ 167.187834] ? blkdev_fallocate+0x3b0/0x3b0 [ 167.192147] do_vfs_ioctl+0x7ae/0x1060 [ 167.196029] ? selinux_file_mprotect+0x5d0/0x5d0 [ 167.200783] ? lock_downgrade+0x740/0x740 [ 167.204916] ? ioctl_preallocate+0x1c0/0x1c0 [ 167.209309] ? __fget+0x237/0x370 [ 167.212755] ? security_file_ioctl+0x89/0xb0 [ 167.217146] SyS_ioctl+0x8f/0xc0 [ 167.220588] ? do_vfs_ioctl+0x1060/0x1060 [ 167.224726] do_syscall_64+0x1e8/0x640 [ 167.228603] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 167.233444] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 167.238626] RIP: 0033:0x45a087 [ 167.241799] RSP: 002b:00007fe432840a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 167.271292] RAX: ffffffffffffffda RBX: 0000000020000068 RCX: 000000000045a087 [ 167.278747] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 167.286004] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 167.293273] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 167.300523] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 [ 167.330877] FAULT_INJECTION: forcing a failure. [ 167.330877] name failslab, interval 1, probability 0, space 0, times 0 [ 167.371513] CPU: 0 PID: 10927 Comm: syz-executor.2 Not tainted 4.14.151 #0 [ 167.378593] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 167.387951] Call Trace: [ 167.390536] dump_stack+0x138/0x197 [ 167.394176] should_fail.cold+0x10f/0x159 [ 167.398338] should_failslab+0xdb/0x130 [ 167.402331] kmem_cache_alloc_node_trace+0x280/0x770 [ 167.407453] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 167.412909] __kmalloc_node_track_caller+0x3d/0x80 [ 167.417839] __kmalloc_reserve.isra.0+0x40/0xe0 [ 167.422499] __alloc_skb+0xcf/0x500 [ 167.426127] ? skb_scrub_packet+0x4b0/0x4b0 [ 167.430431] ? netlink_has_listeners+0x20a/0x330 [ 167.435171] kobject_uevent_env+0x781/0xc23 [ 167.439489] kobject_uevent+0x20/0x26 [ 167.443276] lo_ioctl+0x11e7/0x1ce0 [ 167.446919] ? loop_probe+0x160/0x160 [ 167.450706] blkdev_ioctl+0x96b/0x1860 [ 167.454574] ? blkpg_ioctl+0x980/0x980 [ 167.458458] ? __might_sleep+0x93/0xb0 [ 167.462343] ? __fget+0x210/0x370 [ 167.465783] block_ioctl+0xde/0x120 [ 167.469391] ? blkdev_fallocate+0x3b0/0x3b0 [ 167.473695] do_vfs_ioctl+0x7ae/0x1060 [ 167.477564] ? selinux_file_mprotect+0x5d0/0x5d0 [ 167.482303] ? lock_downgrade+0x740/0x740 [ 167.486432] ? ioctl_preallocate+0x1c0/0x1c0 [ 167.490823] ? __fget+0x237/0x370 [ 167.494262] ? security_file_ioctl+0x89/0xb0 [ 167.498665] SyS_ioctl+0x8f/0xc0 [ 167.502021] ? do_vfs_ioctl+0x1060/0x1060 [ 167.506242] do_syscall_64+0x1e8/0x640 [ 167.510116] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 167.514955] entry_SYSCALL_64_after_hwframe+0x42/0xb7 07:06:02 executing program 4: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x0, 0x989680}) socket$inet6_sctp(0xa, 0x1, 0x84) [ 167.520131] RIP: 0033:0x45a087 [ 167.523305] RSP: 002b:00007f8cf79a0a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 167.531000] RAX: ffffffffffffffda RBX: 0000000020000068 RCX: 000000000045a087 [ 167.538254] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 167.545509] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 167.552761] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 167.560014] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 07:06:02 executing program 5: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(0xffffffffffffffff, 0x8934, 0x0) r0 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) ioctl$VIDIOC_QUERYCAP(r0, 0x80685600, &(0x7f0000000040)) syz_open_dev$mouse(&(0x7f0000000340)='/dev/input/mouse#\x00', 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f0000000140)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3235004000000f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4d}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f00000000c0)) 07:06:02 executing program 4: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x0, 0x989680}) socket$inet6_sctp(0xa, 0x1, 0x84) 07:06:02 executing program 1 (fault-call:0 fault-nth:26): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) 07:06:02 executing program 2 (fault-call:0 fault-nth:25): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 07:06:02 executing program 0: r0 = syz_open_dev$loop(&(0x7f0000000040)='/dev/loop#\x00', 0x0, 0x0) ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f00000001c0)={[], 0xff81, 0x800000, 0x6}) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) r2 = fcntl$dupfd(r1, 0x0, r1) r3 = syz_open_dev$sndpcmc(&(0x7f0000000000)='/dev/snd/pcmC#D#c\x00', 0x80, 0x10800) clock_gettime(0x0, &(0x7f0000000080)={0x0, 0x0}) clock_gettime(0x0, &(0x7f00000000c0)={0x0, 0x0}) write$evdev(r3, &(0x7f0000000100)=[{{}, 0x1, 0x1, 0x3}, {{}, 0x16, 0x8001}, {{}, 0x3e, 0xff, 0x6}, {{r4, r5/1000+30000}, 0x5, 0xd5, 0x5}, {{0x77359400}, 0x5, 0x2, 0x8}, {{r6, r7/1000+30000}, 0x5, 0x3f, 0x747}], 0x90) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) write$UHID_DESTROY(r2, &(0x7f0000000240), 0x4) 07:06:02 executing program 5: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(0xffffffffffffffff, 0x8934, 0x0) r0 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) ioctl$VIDIOC_QUERYCAP(r0, 0x80685600, &(0x7f0000000040)) syz_open_dev$mouse(&(0x7f0000000340)='/dev/input/mouse#\x00', 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f0000000140)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3235004000000f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4d}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f00000000c0)) [ 167.810692] FAULT_INJECTION: forcing a failure. [ 167.810692] name failslab, interval 1, probability 0, space 0, times 0 07:06:02 executing program 0: r0 = syz_open_dev$loop(&(0x7f0000000040)='/dev/loop#\x00', 0x0, 0x0) ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000080)={[], 0xff84, 0x1, 0x2}) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) r2 = fcntl$dupfd(r1, 0x0, r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) 07:06:03 executing program 0: r0 = syz_open_dev$loop(&(0x7f0000000040)='/dev/loop#\x00', 0x0, 0x0) ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f00000001c0)={[], 0xff81, 0x800000, 0x6}) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) r2 = fcntl$dupfd(r1, 0x0, r1) ioctl$VHOST_SET_MEM_TABLE(r2, 0x4008af03, &(0x7f0000000000)) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) [ 167.858399] CPU: 1 PID: 10970 Comm: syz-executor.1 Not tainted 4.14.151 #0 [ 167.865490] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 167.874860] Call Trace: [ 167.877511] dump_stack+0x138/0x197 [ 167.881161] should_fail.cold+0x10f/0x159 [ 167.885325] should_failslab+0xdb/0x130 [ 167.889314] kmem_cache_alloc_node_trace+0x280/0x770 [ 167.894432] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 167.899923] __kmalloc_node_track_caller+0x3d/0x80 [ 167.904873] __kmalloc_reserve.isra.0+0x40/0xe0 [ 167.909560] __alloc_skb+0xcf/0x500 [ 167.913209] ? skb_scrub_packet+0x4b0/0x4b0 [ 167.917547] ? netlink_has_listeners+0x20a/0x330 [ 167.922318] kobject_uevent_env+0x781/0xc23 [ 167.926645] kobject_uevent+0x20/0x26 [ 167.930431] lo_ioctl+0x11e7/0x1ce0 [ 167.934042] ? loop_probe+0x160/0x160 [ 167.937823] blkdev_ioctl+0x96b/0x1860 [ 167.941718] ? blkpg_ioctl+0x980/0x980 [ 167.945594] ? __might_sleep+0x93/0xb0 [ 167.949615] ? __fget+0x210/0x370 [ 167.953066] block_ioctl+0xde/0x120 [ 167.956692] ? blkdev_fallocate+0x3b0/0x3b0 [ 167.961002] do_vfs_ioctl+0x7ae/0x1060 [ 167.964872] ? selinux_file_mprotect+0x5d0/0x5d0 [ 167.969610] ? lock_downgrade+0x740/0x740 [ 167.973743] ? ioctl_preallocate+0x1c0/0x1c0 [ 167.978132] ? __fget+0x237/0x370 [ 167.981576] ? security_file_ioctl+0x89/0xb0 [ 167.985966] SyS_ioctl+0x8f/0xc0 [ 167.989311] ? do_vfs_ioctl+0x1060/0x1060 [ 167.993446] do_syscall_64+0x1e8/0x640 [ 167.997326] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 168.002166] entry_SYSCALL_64_after_hwframe+0x42/0xb7 07:06:03 executing program 3: r0 = syz_open_dev$loop(&(0x7f0000000040)='/dev/loop#\x00', 0x0, 0x0) ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f00000001c0)={[], 0xff81, 0x800000, 0x6}) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) r2 = fcntl$dupfd(r1, 0x0, r1) r3 = syz_open_dev$sndpcmc(&(0x7f0000000000)='/dev/snd/pcmC#D#c\x00', 0x80, 0x10800) clock_gettime(0x0, &(0x7f0000000080)={0x0, 0x0}) clock_gettime(0x0, &(0x7f00000000c0)={0x0, 0x0}) write$evdev(r3, &(0x7f0000000100)=[{{}, 0x1, 0x1, 0x3}, {{}, 0x16, 0x8001}, {{}, 0x3e, 0xff, 0x6}, {{r4, r5/1000+30000}, 0x5, 0xd5, 0x5}, {{0x77359400}, 0x5, 0x2, 0x8}, {{r6, r7/1000+30000}, 0x5, 0x3f, 0x747}], 0x90) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) write$UHID_DESTROY(r2, &(0x7f0000000240), 0x4) [ 168.007340] RIP: 0033:0x45a087 [ 168.010523] RSP: 002b:00007fe432840a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 168.018227] RAX: ffffffffffffffda RBX: 0000000020000068 RCX: 000000000045a087 [ 168.025486] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 168.032755] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 168.040009] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 168.047265] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 07:06:03 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f00000006c0)='Net/3\x97OOT\x15\x00\xb6\xcf@e\xd3r\x82\x9fc') ioctl$VIDIOC_PREPARE_BUF(r0, 0xc058565d, &(0x7f00000005c0)={0x0, 0xb, 0x4, 0x0, {0x0, 0x7530}, {0x0, 0x2, 0x81, 0x10, 0x24, 0x6, "cf676f53"}, 0x80, 0x5, @offset=0x9, 0x4}) mq_timedsend(r0, &(0x7f0000000480)="c1cc3d2c05c16add6c964974e00652617b35c74bd5a620d3170df3c2f134d5beb838b0f00c6ca198401126d02772777a96ead8602a94c5450ea4e5c8b02fc6e876ee2383fc4faa682ed6a91a53a08a1fdd9839c170a6f81ede814c769cf15c688c8514b5f4f1dc0a50019813ce4459df629cd480519073a5f929cd5e59d0058ea64475a46e924294d5ef1b4b158e59d9c923a0", 0x93, 0x4, &(0x7f0000000540)={0x0, 0x989680}) ioctl$SNDRV_CTL_IOCTL_PCM_NEXT_DEVICE(r0, 0x80045530, &(0x7f0000000080)=""/86) r1 = syz_open_dev$loop(&(0x7f0000000040)='/dev/loop#\x00', 0x0, 0x0) r2 = accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x80800) setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r2, 0x84, 0x13, &(0x7f0000000100)=0x73, 0x4) r3 = socket$inet6_sctp(0xa, 0x1, 0x84) r4 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r4, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [0x0]}, &(0x7f000095dffc)=0x8) getsockopt$inet_sctp6_SCTP_ASSOCINFO(r3, 0x84, 0x1, &(0x7f0000000000)={r5}, &(0x7f0000000040)=0x14) getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(0xffffffffffffffff, 0x84, 0x6, &(0x7f0000000100)={r5, @in6={{0xa, 0x4e24, 0x0, @initdev={0xfe, 0x88, [], 0x0, 0x0}, 0x101}}}, &(0x7f0000000000)=0x84) getsockopt$inet_sctp6_SCTP_RTOINFO(r2, 0x84, 0x0, &(0x7f0000000240)={r6, 0x8, 0x1, 0xe716}, &(0x7f0000000280)=0x10) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f00000001c0)={[], 0xff81, 0x800000, 0x6}) r7 = socket$inet6_tcp(0xa, 0x1, 0x0) r8 = fcntl$dupfd(r7, 0x0, r7) ioctl$PERF_EVENT_IOC_ENABLE(r8, 0x8912, 0x400200) 07:06:03 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) syz_open_procfs(0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) [ 168.071953] FAULT_INJECTION: forcing a failure. [ 168.071953] name failslab, interval 1, probability 0, space 0, times 0 [ 168.124868] CPU: 1 PID: 10978 Comm: syz-executor.2 Not tainted 4.14.151 #0 [ 168.131926] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 168.131933] Call Trace: [ 168.131948] dump_stack+0x138/0x197 [ 168.131966] should_fail.cold+0x10f/0x159 [ 168.131982] should_failslab+0xdb/0x130 [ 168.131996] kmem_cache_alloc_node_trace+0x280/0x770 [ 168.132010] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 168.132024] __kmalloc_node_track_caller+0x3d/0x80 [ 168.143981] __kmalloc_reserve.isra.0+0x40/0xe0 [ 168.143994] __alloc_skb+0xcf/0x500 [ 168.144004] ? skb_scrub_packet+0x4b0/0x4b0 [ 168.144014] ? netlink_has_listeners+0x20a/0x330 [ 168.144029] kobject_uevent_env+0x781/0xc23 [ 168.192994] kobject_uevent+0x20/0x26 [ 168.196781] lo_ioctl+0x11e7/0x1ce0 [ 168.200429] ? loop_probe+0x160/0x160 [ 168.204214] blkdev_ioctl+0x96b/0x1860 [ 168.208082] ? blkpg_ioctl+0x980/0x980 [ 168.211955] ? __might_sleep+0x93/0xb0 [ 168.215864] ? __fget+0x210/0x370 [ 168.219299] block_ioctl+0xde/0x120 [ 168.223070] ? blkdev_fallocate+0x3b0/0x3b0 [ 168.227393] do_vfs_ioctl+0x7ae/0x1060 [ 168.231293] ? selinux_file_mprotect+0x5d0/0x5d0 [ 168.236034] ? lock_downgrade+0x740/0x740 [ 168.240166] ? ioctl_preallocate+0x1c0/0x1c0 [ 168.244693] ? __fget+0x237/0x370 [ 168.248199] ? security_file_ioctl+0x89/0xb0 [ 168.252722] SyS_ioctl+0x8f/0xc0 [ 168.256095] ? do_vfs_ioctl+0x1060/0x1060 [ 168.260231] do_syscall_64+0x1e8/0x640 [ 168.268196] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 168.273112] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 168.278359] RIP: 0033:0x45a087 [ 168.281639] RSP: 002b:00007f8cf79a0a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 168.289374] RAX: ffffffffffffffda RBX: 0000000020000068 RCX: 000000000045a087 [ 168.296632] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 168.303885] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 168.311138] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 168.318391] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 07:06:03 executing program 5: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, 0x0) r1 = syz_open_dev$radio(0x0, 0x0, 0x2) ioctl$VIDIOC_QUERYCAP(r1, 0x80685600, &(0x7f0000000040)) syz_open_dev$mouse(&(0x7f0000000340)='/dev/input/mouse#\x00', 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f0000000140)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3235004000000f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4d}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f00000000c0)) 07:06:03 executing program 0: r0 = syz_open_dev$loop(&(0x7f0000000040)='/dev/loop#\x00', 0x0, 0x0) ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f00000001c0)={[], 0xff81, 0x800000, 0x6}) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) r2 = fcntl$dupfd(r1, 0x0, r1) ioctl$PIO_FONTX(r2, 0x4b6c, &(0x7f0000000080)="a39dfdf770823a0c84254028947851790db9b8d090aee01b0eeee31d4be71dbd521aa5cde2862873d606f7cfd784fa8e158e3c7e6503dc2c3a72f4f9b3ac6f4f5b5852206cb95923aff8787a8957cb73071719569de0d54687875df67176719f574f87e931c90e4c3120c7f148ee7b690f0b136a45f10abd1d3abf6cb3197eca26a2edab7ac5b3e02b900cc3c32fb48f6e081452471dfe33e56cf39df3002842ef1a1f69ca7e0d0ac29c0e739189f7d7df6bf7a011") ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) ioctl$EXT4_IOC_ALLOC_DA_BLKS(r3, 0x660c) setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, &(0x7f0000000380)="0c4f4d16cf2f3a2dd8a5046790a60c91e487dc9ca281434dbc169c6555a654da5e42c953490634b417ec9535653162fc5730d4c8dab3e136550ed7d31fa8d7094afd6e5154349155e6ef7e5fb08d79c283188a3f28548ab4366e6863ba5561aedbd1ee3f9a2c5646e4a9c2806b231528bca7ee2134e39966c40bcb1371a7e7691672a8dc9bda07175f11a9160cba3f0ddb78db3b2e184e1e9aa371691df9f49a5e3343bce4e4b8a2c80831b63d95ed57cf89982b317abf1cf8a71078d00dd5fa9151c142fa4bb765d503150f5f6f34284c7480a5091e9b246e", 0xd9) fsetxattr$trusted_overlay_nlink(r3, &(0x7f0000000240)='trusted.overlay.nlink\x00', &(0x7f0000000300)={'U+', 0x7}, 0x28, 0x3) r4 = socket$inet6_sctp(0xa, 0x1, 0x84) r5 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r5, 0x84, 0x1d, &(0x7f0000000480)=ANY=[@ANYBLOB="01030000d3f50f69c954b88adf80cbb7026ffc1ef5443d65442debc626a929746b8eaeeb5f70280aeb30eec57c286a40cd6075a645b83ac01e9771eabfdb951aadcd4c1760aac8fdd8a8d1f5450ae800044d58f9f2fbca06871df650482b2f44ff5e5e2e4a31dc38b7728d66d696f9d26ef154361b345d183dd0726f90afcf0921a123473319d53acbcfad6add1107593c42638eb08a798feeb55788d8077337790b", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) getsockopt$inet_sctp6_SCTP_ASSOCINFO(r4, 0x84, 0x1, &(0x7f0000000000)={r6}, &(0x7f0000000040)=0x14) getsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX3(r3, 0x84, 0x6f, &(0x7f0000000140)={r6, 0x3c, &(0x7f0000000000)=[@in={0x2, 0x4e23, @initdev={0xac, 0x1e, 0x1, 0x0}}, @in6={0xa, 0x4e21, 0x8001, @initdev={0xfe, 0x88, [], 0x89, 0x0}, 0x87}, @in={0x2, 0x4e21, @multicast2}]}, &(0x7f0000000180)=0x10) 07:06:03 executing program 4: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$inet6_sctp(0xa, 0x1, 0x84) 07:06:03 executing program 1 (fault-call:0 fault-nth:27): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) 07:06:03 executing program 2 (fault-call:0 fault-nth:26): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 07:06:03 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) syz_open_procfs(0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) 07:06:03 executing program 5: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, 0x0) r1 = syz_open_dev$radio(0x0, 0x0, 0x2) ioctl$VIDIOC_QUERYCAP(r1, 0x80685600, &(0x7f0000000040)) syz_open_dev$mouse(&(0x7f0000000340)='/dev/input/mouse#\x00', 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f0000000140)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3235004000000f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4d}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f00000000c0)) [ 168.477278] FAULT_INJECTION: forcing a failure. [ 168.477278] name failslab, interval 1, probability 0, space 0, times 0 [ 168.525077] CPU: 1 PID: 11020 Comm: syz-executor.1 Not tainted 4.14.151 #0 [ 168.532139] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 168.541499] Call Trace: [ 168.544096] dump_stack+0x138/0x197 [ 168.544117] should_fail.cold+0x10f/0x159 [ 168.544131] should_failslab+0xdb/0x130 [ 168.551981] kmem_cache_alloc_node_trace+0x280/0x770 [ 168.551997] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 168.552009] __kmalloc_node_track_caller+0x3d/0x80 [ 168.552024] __kmalloc_reserve.isra.0+0x40/0xe0 [ 168.552033] __alloc_skb+0xcf/0x500 [ 168.552041] ? skb_scrub_packet+0x4b0/0x4b0 [ 168.552051] ? netlink_has_listeners+0x20a/0x330 [ 168.552066] kobject_uevent_env+0x781/0xc23 [ 168.561132] kobject_uevent+0x20/0x26 [ 168.561143] lo_ioctl+0x11e7/0x1ce0 [ 168.561155] ? loop_probe+0x160/0x160 [ 168.561170] blkdev_ioctl+0x96b/0x1860 [ 168.571562] ? blkpg_ioctl+0x980/0x980 [ 168.571583] ? __might_sleep+0x93/0xb0 [ 168.571593] ? __fget+0x210/0x370 [ 168.571606] block_ioctl+0xde/0x120 [ 168.571615] ? blkdev_fallocate+0x3b0/0x3b0 [ 168.571624] do_vfs_ioctl+0x7ae/0x1060 [ 168.571639] ? selinux_file_mprotect+0x5d0/0x5d0 [ 168.636011] ? lock_downgrade+0x740/0x740 [ 168.640149] ? ioctl_preallocate+0x1c0/0x1c0 [ 168.644563] ? __fget+0x237/0x370 [ 168.648018] ? security_file_ioctl+0x89/0xb0 [ 168.652428] SyS_ioctl+0x8f/0xc0 [ 168.655794] ? do_vfs_ioctl+0x1060/0x1060 [ 168.659936] do_syscall_64+0x1e8/0x640 [ 168.663805] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 168.668633] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 168.673806] RIP: 0033:0x45a087 [ 168.676987] RSP: 002b:00007fe432840a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 168.684736] RAX: ffffffffffffffda RBX: 0000000020000068 RCX: 000000000045a087 [ 168.692018] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 168.699291] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 168.706552] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 168.713825] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 [ 168.724482] FAULT_INJECTION: forcing a failure. [ 168.724482] name failslab, interval 1, probability 0, space 0, times 0 [ 168.765757] CPU: 0 PID: 11033 Comm: syz-executor.2 Not tainted 4.14.151 #0 [ 168.772826] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 168.782189] Call Trace: [ 168.784790] dump_stack+0x138/0x197 [ 168.788421] should_fail.cold+0x10f/0x159 [ 168.792607] should_failslab+0xdb/0x130 [ 168.796598] kmem_cache_alloc_node+0x287/0x780 [ 168.801166] __alloc_skb+0x9c/0x500 [ 168.804776] ? skb_scrub_packet+0x4b0/0x4b0 [ 168.809084] ? netlink_has_listeners+0x20a/0x330 [ 168.813826] kobject_uevent_env+0x781/0xc23 [ 168.818133] kobject_uevent+0x20/0x26 [ 168.821917] lo_ioctl+0x11e7/0x1ce0 [ 168.825530] ? loop_probe+0x160/0x160 [ 168.829327] blkdev_ioctl+0x96b/0x1860 [ 168.833295] ? blkpg_ioctl+0x980/0x980 [ 168.837173] ? __might_sleep+0x93/0xb0 [ 168.841224] ? __fget+0x210/0x370 [ 168.844777] block_ioctl+0xde/0x120 [ 168.848658] ? blkdev_fallocate+0x3b0/0x3b0 [ 168.853092] do_vfs_ioctl+0x7ae/0x1060 [ 168.857008] ? selinux_file_mprotect+0x5d0/0x5d0 [ 168.861986] ? lock_downgrade+0x740/0x740 [ 168.866134] ? ioctl_preallocate+0x1c0/0x1c0 [ 168.870547] ? __fget+0x237/0x370 [ 168.874007] ? security_file_ioctl+0x89/0xb0 [ 168.878399] SyS_ioctl+0x8f/0xc0 [ 168.881750] ? do_vfs_ioctl+0x1060/0x1060 [ 168.885879] do_syscall_64+0x1e8/0x640 [ 168.889749] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 168.894579] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 168.899760] RIP: 0033:0x45a087 [ 168.903081] RSP: 002b:00007f8cf79a0a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 168.910798] RAX: ffffffffffffffda RBX: 0000000020000068 RCX: 000000000045a087 [ 168.918067] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 168.925320] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 168.932572] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 168.939913] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 07:06:04 executing program 1 (fault-call:0 fault-nth:28): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) 07:06:04 executing program 5: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, 0x0) r1 = syz_open_dev$radio(0x0, 0x0, 0x2) ioctl$VIDIOC_QUERYCAP(r1, 0x80685600, &(0x7f0000000040)) syz_open_dev$mouse(&(0x7f0000000340)='/dev/input/mouse#\x00', 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f0000000140)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3235004000000f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4d}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f00000000c0)) [ 169.011878] FAULT_INJECTION: forcing a failure. [ 169.011878] name failslab, interval 1, probability 0, space 0, times 0 [ 169.031479] CPU: 1 PID: 11049 Comm: syz-executor.1 Not tainted 4.14.151 #0 [ 169.038639] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 169.038644] Call Trace: [ 169.038666] dump_stack+0x138/0x197 [ 169.038684] should_fail.cold+0x10f/0x159 [ 169.038700] should_failslab+0xdb/0x130 [ 169.038715] kmem_cache_alloc_node_trace+0x280/0x770 [ 169.038725] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 169.038739] __kmalloc_node_track_caller+0x3d/0x80 [ 169.077897] __kmalloc_reserve.isra.0+0x40/0xe0 [ 169.082561] __alloc_skb+0xcf/0x500 [ 169.086180] ? skb_scrub_packet+0x4b0/0x4b0 [ 169.090491] ? netlink_has_listeners+0x20a/0x330 [ 169.095231] kobject_uevent_env+0x781/0xc23 [ 169.099553] kobject_uevent+0x20/0x26 [ 169.103336] lo_ioctl+0x11e7/0x1ce0 [ 169.107081] ? loop_probe+0x160/0x160 [ 169.110925] blkdev_ioctl+0x96b/0x1860 [ 169.114831] ? blkpg_ioctl+0x980/0x980 [ 169.118718] ? __might_sleep+0x93/0xb0 [ 169.122680] ? __fget+0x210/0x370 [ 169.126122] block_ioctl+0xde/0x120 [ 169.129745] ? blkdev_fallocate+0x3b0/0x3b0 [ 169.134053] do_vfs_ioctl+0x7ae/0x1060 [ 169.137958] ? selinux_file_mprotect+0x5d0/0x5d0 [ 169.142705] ? lock_downgrade+0x740/0x740 [ 169.146862] ? ioctl_preallocate+0x1c0/0x1c0 [ 169.151283] ? __fget+0x237/0x370 [ 169.154737] ? security_file_ioctl+0x89/0xb0 [ 169.159127] SyS_ioctl+0x8f/0xc0 [ 169.162479] ? do_vfs_ioctl+0x1060/0x1060 [ 169.166613] do_syscall_64+0x1e8/0x640 [ 169.170484] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 169.175323] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 169.180492] RIP: 0033:0x45a087 [ 169.183663] RSP: 002b:00007fe432840a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 169.191363] RAX: ffffffffffffffda RBX: 0000000020000068 RCX: 000000000045a087 [ 169.198625] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 07:06:04 executing program 0: r0 = syz_open_dev$loop(&(0x7f0000000040)='/dev/loop#\x00', 0x0, 0x101080) ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f00000001c0)={[], 0xff81, 0x800000, 0x6}) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) socket$isdn_base(0x22, 0x3, 0x0) r2 = fcntl$dupfd(r1, 0x0, r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) [ 169.205875] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 169.213302] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 169.220566] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 07:06:04 executing program 2 (fault-call:0 fault-nth:27): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 07:06:04 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) syz_open_procfs(0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) 07:06:04 executing program 4: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$inet6_sctp(0xa, 0x1, 0x84) 07:06:04 executing program 1 (fault-call:0 fault-nth:29): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) 07:06:04 executing program 0: r0 = syz_open_dev$loop(&(0x7f0000000040)='/dev/loop#\x00', 0x0, 0x0) ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f00000001c0)={[], 0xff81, 0x800000, 0x6}) r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000080)='TIPCv2\x00') sendmsg$TIPC_NL_PEER_REMOVE(r0, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="040200005ad7b4160edf51e52afad6723dbae0dc18c47de7a560bbcda463c0cae1949394a24f4fd0145dd9d80cb5f253d25c55080e0e580948d2e4431be0dac1b3697612c40c3324def8883778361189adda7e281b1d0700000000005ee9f8dd3dad747b16cfee91d1349d7c58f4b70b071771003030f5a600590d85700a6bc53492405d118f706fef6246d9ebdbaa294e24cdaebe9b1b5d50f6d0371404579beb737473c3c709e3c0c492923d550a579ee36bd467944b92fd0dc22fc92134646fd25043807271623c1babec0000000000", @ANYRES16=r1, @ANYBLOB="00042bbd7000ffdbdf251400000044010100240002000800010004000000080002000100000008000100090000000800020005000000080003000900000008000300eb0a00001400010069623a7465616d5f736c6176655f300038000400200001000a004e2100000000f460a304844886a21708a0b4556c74ce070000001400020002004e22ac14142600000000000000000800030007000000100001007564703a73797a310000000038000400200001000a004e230000003ffe880000000000000000000000000001001000001400020002004e23e000000200000000000000002c0004001400010002004e23e000000100000000000000001400020002004e22e0000002000000000000000044000400200001000a004e2400000613fe8000000000000000000000000000bb40000000200002000a004e2000000005fe880000000000000000000000000101ff070000ac0004003c000700080003000400000008000300090000000800030000020000080002000800000008000400dc040000080002000200000008000300ddffffff1400010062726f6164636173742d6c696e6b00000c00010073797a30000000004c00070008000300030000000800020002000000080002000100000008000400e002000008000100200000000800040009000000080001001000000008000300ff0f00000800020094240000"], 0x204}, 0x1, 0x0, 0x0, 0xc00}, 0x40) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) r3 = fcntl$dupfd(r2, 0x0, r2) getsockopt$ARPT_SO_GET_ENTRIES(0xffffffffffffffff, 0x0, 0x61, &(0x7f0000000840)={'filter\x00', 0x1000, "db7fc329a9e1df72ca589e72e96cc3ad4929bcb786c021a2e1109e2cec9c2bb3bd02014310fa43206a67842d48c49c15a098a24a3ce3af8361d01bc496b62f3d7948dc3566036efb0dcc1a6be633e97b7508d6ebe1e7ad3d107ce1a24bae587fd7d21f4d9599f9afb619d2bdbf5932f454010bf4094811dd628dfddbb76f380244990792e60a63b90fbfd0e96428e5630ef1f05e6429f4f357aacaeaeddeef6f77e9a64f85e04c89d683c0e5031ad7066136ff463909e06c4e110c6d0d3c3dbf281afe2a443828a10e6337feabcd158c78647322698c8f136d455fb2049ff465634e42a1603b493b1df549bbc8d831e10148a36c3e8dcfff63b18647ed3d2f1fbcffdd5f51f4253d56ad93489048b6659410cdb5a96026c8f0a898974f639888a7e0d693a60484d142d588c9676502a9a5f3cfe66f2898272d1b47f7b76be5699b0a80f9dd73fb08b0d8899bd0d1e6374e5a9b61350dd8616866550199860e712be7ee31c296fdbc1d62610c9d21209639b7ae381212809f1071e7762080231489e795ae445819293a3b650a91aac30a5e99a215a03f14ab8bf403ecca3fe998cd8504b56a984ed2ecdfe14220fe679d4af611c26c28942297b14d073ad3d861654a2edc83e67d5b831d009e3e42dab9171cd10a315c526ad23f59defe05da9bfd82d03957fbccec25fcb5cfa166e5cd503ff96cef8408f8fab811a60bbea968f5069f3e58b10243c22bba6a07b2cfc25d120935fd3560f9a4eaf825469d0ae52eb54432257cb16a49631afbd36a0e85d513f27efaf335c89abeafe9ff76c58161af387732601dc8a3bbb8290ea58e88d800f5825e2dc53adb6484e3728316c1b7128344421580a3b906d83e6e5c34589ae79e75f1e438deccbb8e4ea8c8d4dd983afbbf325633eb06959f2f3abd95c4ac2b32d191f3db7afa55fffbc0c1e73c523bce09180f3a2178a65fe91fb3ba5ea1a371e59c18d55e4fcd812cf1787e3f6f6a43a75b66d84a3c696e0d616dc72d62703f382594c3dfe880f9b70e76441e531eaeb8159515612aa228be06e468e98dede134634bee2396f0e7a3ad91d65db7f78e7e4c3b0edf7cba9d14c1e2c50a9ff54cd948381e5054cf98c8a64471f7dd5b3c4d6d25d76e5ddbe8a4f35c2a8349a2d8adbfb4901fafa9151e9ac7cf72d317b552b9442e52bee37977c13057c7ca051b7604025f80792a03a6673ec54b88b65f4676836a1be86fac142b28e8aad285c72da569de704c529e28a107e5db39707b457a76b57ab35485f6b3aa7179d167216be8ca7d60074d8d579b1f2731cf2c250f458dfc8b5284f0d0cca7f93697ee9c0416f170a288cda8f8702e24e64690d4347b99d4f3c1b1d91e4e110eb8f71ea256b9dc06e8bc23df8f8d84815114f81e83913fbefe1b4e8a8b62d180a2b7f6344ef72941a1552d8ef2fdef7d356f91a34cccb11eda03773308a2152e2053c8b9fba7e05da691cac1d8e79a442a55cdd1d0c0c593a16e546dd70a81fe8914ae666ea9c08fa9aeb6bae7aacef727061adb2fa98ba0b61c6578b785809520b1cc83a4d7c23c280acf8a85366a994dcd6a437328064522ac34940a583701225d91eb5c7bd67d0f05e195f3b2360e176017b7edaa57d427d3664e7192af8cbaef2bef7538af3f5039633d856c792cd3290adf54cb0592211cbf779cfd29a80032c4af843c0bc8d7efd7676353e369b0481a32de1997942aa9610c1755a586bfcde506c618b478a0ae4fff82e623efa7f3f2ded4acecc80c7e5b531a4d23492d7c46cab0776db9b8531b494b4c490ed3de86ff4d5d324bba47b417aea6b84e1fd9e0773f64a2106da885a4248020559e8b976f15627f2b9a0f00d72245afc7a79b9506f76584a57c22680c7b4d4e9f51a7c2677c04bf21ba4bd774c0cc13b78414e74e3e7b98af37a6030826485bdd4c17404bd0e0e6a2b8e3a8e34c68fb75384219438cab46579af145fc3b4eca2fde7e9adf59825345dbebed85884fdcb958b938c576a13a7683d1e985e939622260d2a47ea8ba6702fd34b3daffb5c440f6d94580e3562b860c4c1f65dedac27530b6920b2508a726b0479ceb928c3c8d3b351048d848f807e07c4789ad1e3a80c02f492b803cce2e2bf53446b22c589dc10e155ec69f2a4dcf5a0bb2ee397455195aa255103d73f90c3c44ec16f2457fa5c17a8a163eced4d388f0ad88dcca9e95b0ae14f3d93995d11e82a3f3368fd84cbc2ded29f26868e7bdef9065a7c600dba0b91997362382c1caacf36e4ccef15747dc105fa5466077e7daca72b049492616b7331bf09973b2afd90baa3b767c3014d13bf2b03e8c3382a481cae6ad25cb0614ea04523fe7c5ef5f1c06bc4d53438de509891912fcf491a5d530564604bf7295676e0242f192e949a00a69cf83d42d5649566af6900dccbf38106a4f120e601db9a8ea9b4d3240e02abe15dbe5d2c1a1ee87fc85b62c91dc909ec99a53ee53edfdf22f1c20da47cbb91b5dabf570eb1fbf63307c1e688e33b9b22b592cc7cbed6929cc324b6a8fd1a7af18e27487dd0a26921b064ae9e4a4a840f95bf6c7c0f459a4add3f87d349407022d63896c7ab6752da751da44201e058a162536cb3e9b029916ba75e643100add89f1f47c216a699004f0dcd6dd14f83fb85aa1cfdd47296e91f000a82cff88702aff6922078df798be00071b3754fe8ccb911407c784e69d72dcd89c345ac7c679ae54c0600c0c4f88f7bc0a2dfcda6a545c9efb05f4610e483bcc47cb0665a1430eca18a7c0d4e206b17a9796f26fe966461b9a147926293d0caf73b6af0ba00ce0875428a4a965ee41353f783c1c798845ba646da1fb71da4161a11a1765df7b83f20d2618639f2da5a0f1c3ccb4f37e7f0cc7146ac779cb3379531b69326f776c4f060c4cd1bf55523e978af5b082728d132b19e92f2e3a41b69285cf36347c87972cd808cca19db4b375c5bd41263dad23b9b6a637b2fbd67dcf7866d032e3b4e745e09d62a1c3648acff2f6ff4451de0a4f1f777ba703fdfd191bc92aeb8537ff634a685d683c65c48898da87643bc99519d11c81d0d153d1269edb47341ca3ddd134b4aed806dac4958cc4bf6f8d798af57a79a442720bb986b7216a273846b3e6d716530654a9b2b421967916ea8c35e1d0dbdcc47c79642971a29cab5fe277306b506bd767ca403218377af24e31ab8d6912a8fba4d607259e9543d9c6dc884749762a1483d636f346ef48bb267f4364a28e8766e21e38893a64d71dc20153391e5dc131705b404612537a9dbe897ab023c5f4bb5aa3857f78b4b3c65e585fd4cc08702cb4f06e486e166e00cecf75ea19d5fbfcbebd8ffa407ed99ed1321d0fd87509682e1a3e0c023219fb8b107bb33349c72ed30fce1aa199a61726c666e859450a96ad4ee6e1bdc30924477cffbf57a30d0b3b35e3f81c9fdcb4c8c53510cf46492922ac98f245a3665e5a536f1c6c374ec4937bc007a696a1496182f6ac60e409a8334fe2969aaf612382da15912d0184e5f75551dfb3aa07a31654af3c6fc8739ac484959c7d702e673c74e93eb552eeddb33f66748ce0fef3a1a2f20c9a756131f360e0352179ff973564d78d3baa85724f4f1e02f9ac908bcaf198ea2576718d185cb6cf7baa4d3d64de9c68b24586fe3e1fcff7f51ef4867d46dea254cc2ae3fd90e2febc952e3c0b18bccd76c77a4a6d15928860d3f5e983c0dc9c027d7529a25eae52c7f471571eddfa327a9fefd59ba76d597535a19167db1687ff04091c8112a6590f521c19a439f180d1897444d864e06cb1f4f785abdea8d7c82445aac0efaaa9b55ec61962eb7eebb607f844009f7b115915d54a12429950b9cfd811281e4bb3fea6daf3286bd11523db8c0ca63068fd5fc59be75b813d5ffa8b6ac14bbbddeab93a0e426dab6d8058f09945ee95ab3477c5a44b0b1a461ef3632bf4b877d5f2384c4f8b6d2b986d853eb8d33dace797578ba038dee94bafa38fb1d91c0203409873c37b18ffd268c5013bee077c8628711856ac1fdb0e08b81e1ceec87e51e72e701042b829d448b4fdc8cfba05b58193ff6ef419945f0544a0dcfd20a408d977a88f1c68c6257f2a89e35747dae7e9b79f123459721719903bd15f30dced7fadf0d35f1ae28b394df4c064bf07921f0dc3187a71040ebe8941b5283546ad4e831ff4c65520c9c1adc42003674fe9eb278ffd974c80fa5761bf6f265f3fac7e437211615a8df5cc9a80fdac20f738ed4ca5bd00b98e542b5b2e723a5b8d1225c169e9e2635a4194030796a5f62fb3fa8a96efd708a2bb3dc7a21abbf18688f0d7de23ff9e7b36b3554127be70787f7c88da95b00d63d7f8518fe7eb221f438247b8af2212f37a79b12874a92e6ee1b7ea9f17d9cfc83c4131399cff729d190498a08093210919c45aa6fcd02d2ff2dec82c63b1e5ab356ebd152fbb309b3bd6fa9397a359f1229bb0c9132b4d3fa602850834590d00b04af69c17fcb4feaa639404dd7612f6daca5e173a0f7e00d3e39da17651a6f984e00678d7bef4a2054eb43cff24932dd28486038c233ec7cf0d227908788732bdcc3f22edc26116a2b1e099e71b7547b275f750940bcecc9821b4e404793c7115f4d1a39c7fbfc750473f69be623aab0f26b5d0724a9e3bfac31ab8ef94c10b320ab948b15794a1d8695950b051c2878e7144bfe61a5b6d98e105ad28354237ccef822e5350dcbb2c7d2262cebd1cdf79fbd3dd9c8e1c8b1da347e29f0aa44f5374041be9c0640c589bf1f9e284843d499532ca7e8a951ed191c93deb8cad68270d27859bb44803212a2b17b8d0dd7d18bbad76e96d68173392629acb758da4a1c52a62a22f2e517f3e7549834c58e069764c318a1f783b261b7beab1fd5121fe92e87b05038dd0e70254aee42f7a7a4138ddce4792c4aa23994e233018b8f23316246201acc746a046b5b195703eacb1e756227a359d48ff5951f2cd408d8c6043b0c9afc5e7bc4c461288441f5bc7ab62e992075c8651e75e0a58e42f67486999676af8a8914c8a7de30f7f44b58acddfced94b18a67e8dfff956e8fcd1bddeef31b3e6465907ecdb54170e83c33704667080da744714a97923e063874c710bd5294517f71b2eb1de0c31c50265e6e4567b9bc1e0ef1807e331e0d0eb263f7a10374d866f111d0ea96fec3c8a07e41b7d4f4f440b2dc77faa05c0c8c634b4756a4b94610c8cab9a7b4a11bddd69081d52ee9f0bd19e0f0869de8c22531495219aafe831fdbc923fbebbfb7ed2066be55938e44b333280aeb02fb760cadab0e9ff4e0d89772dff811d2ce5c7890ada8ee4df388e4eec6d48264eea0ba371eff6a8846d1e2e3347ab935d2e69e0376757be5aead82ec5bba0eae889d9ea18dfa7b1dac051fcfe8c9f9c9a0a7d775d3acdef9cf48d366f6059acf6eb87067672560c02bc9bac2e48306d99e0715d438432d63fc5bfb412f229a0c058904bf5d82cd50a0dff993c975ce8e2e1439d335c97c0a59c90b63315f1cb97fbc5860e97f09d9e2df25682c7826034e1319272b5b1becf1e68e2dda9fe145798227ec2d3d49eaba29f21c75945a10cd37ee5a5adaf4947e7237d97a94ee15dea1c622dbc7c216ed85f70def6abf962c110a7905d2a54652e72c71b8e2308fba7872b3a2d780ddfd498943654abd9c7e7883d47f26c9675387af18f6192e4b8f75b542daba0b9468267bca06bacbe6fd2366383da6643da0e8d97695a62277e0e2bba0135fa3f3a5fee66feadbef499ccb854655a1885"}, &(0x7f0000000140)=0x1024) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) [ 169.379351] FAULT_INJECTION: forcing a failure. [ 169.379351] name failslab, interval 1, probability 0, space 0, times 0 [ 169.395269] CPU: 1 PID: 11074 Comm: syz-executor.2 Not tainted 4.14.151 #0 [ 169.402318] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 169.411682] Call Trace: [ 169.414273] dump_stack+0x138/0x197 [ 169.417895] should_fail.cold+0x10f/0x159 [ 169.422048] should_failslab+0xdb/0x130 [ 169.426024] kmem_cache_alloc_node_trace+0x280/0x770 [ 169.431124] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 169.436575] __kmalloc_node_track_caller+0x3d/0x80 [ 169.441494] __kmalloc_reserve.isra.0+0x40/0xe0 [ 169.446161] __alloc_skb+0xcf/0x500 [ 169.449771] ? skb_scrub_packet+0x4b0/0x4b0 [ 169.454074] ? netlink_has_listeners+0x20a/0x330 [ 169.458824] kobject_uevent_env+0x781/0xc23 [ 169.463134] kobject_uevent+0x20/0x26 [ 169.466956] lo_ioctl+0x11e7/0x1ce0 [ 169.470568] ? loop_probe+0x160/0x160 [ 169.474371] blkdev_ioctl+0x96b/0x1860 [ 169.478244] ? blkpg_ioctl+0x980/0x980 [ 169.482124] ? __might_sleep+0x93/0xb0 [ 169.485993] ? __fget+0x210/0x370 [ 169.489454] block_ioctl+0xde/0x120 [ 169.497095] ? blkdev_fallocate+0x3b0/0x3b0 [ 169.515652] do_vfs_ioctl+0x7ae/0x1060 [ 169.519524] ? selinux_file_mprotect+0x5d0/0x5d0 [ 169.524274] ? lock_downgrade+0x740/0x740 [ 169.528627] ? ioctl_preallocate+0x1c0/0x1c0 [ 169.533021] ? __fget+0x237/0x370 [ 169.536477] ? security_file_ioctl+0x89/0xb0 [ 169.541049] SyS_ioctl+0x8f/0xc0 [ 169.544397] ? do_vfs_ioctl+0x1060/0x1060 [ 169.548534] do_syscall_64+0x1e8/0x640 [ 169.552505] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 169.557337] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 169.562520] RIP: 0033:0x45a087 [ 169.565697] RSP: 002b:00007f8cf79a0a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 07:06:04 executing program 5: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, 0x0) syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) ioctl$VIDIOC_QUERYCAP(0xffffffffffffffff, 0x80685600, &(0x7f0000000040)) syz_open_dev$mouse(&(0x7f0000000340)='/dev/input/mouse#\x00', 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f0000000140)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3235004000000f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4d}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f00000000c0)) [ 169.573405] RAX: ffffffffffffffda RBX: 0000000020000068 RCX: 000000000045a087 [ 169.580662] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 169.587918] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 169.595174] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 169.602427] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 07:06:04 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) syz_open_procfs(0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) 07:06:04 executing program 0: syz_open_dev$loop(&(0x7f0000000040)='/dev/loop#\x00', 0x0, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0) r1 = syz_open_procfs(0x0, &(0x7f00000006c0)='Net/3\x97OOT\x15\x00\xb6\xcf@e\xd3r\x82\x9fc') ioctl$VIDIOC_PREPARE_BUF(r1, 0xc058565d, &(0x7f00000005c0)={0x0, 0xb, 0x4, 0x0, {0x0, 0x7530}, {0x0, 0x2, 0x81, 0x10, 0x24, 0x6, "cf676f53"}, 0x80, 0x5, @offset=0x9, 0x4}) mq_timedsend(r1, &(0x7f0000000480)="c1cc3d2c05c16add6c964974e00652617b35c74bd5a620d3170df3c2f134d5beb838b0f00c6ca198401126d02772777a96ead8602a94c5450ea4e5c8b02fc6e876ee2383fc4faa682ed6a91a53a08a1fdd9839c170a6f81ede814c769cf15c688c8514b5f4f1dc0a50019813ce4459df629cd480519073a5f929cd5e59d0058ea64475a46e924294d5ef1b4b158e59d9c923a0", 0x93, 0x4, &(0x7f0000000540)={0x0, 0x989680}) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f00000001c0)={[], 0xff80, 0x800000, 0xb, 0xffffffff7ffffffe, 0xfffffffffdfffff6, r0}) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) r3 = fcntl$dupfd(r2, 0x0, r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) [ 169.663932] FAULT_INJECTION: forcing a failure. [ 169.663932] name failslab, interval 1, probability 0, space 0, times 0 [ 169.714142] CPU: 0 PID: 11082 Comm: syz-executor.1 Not tainted 4.14.151 #0 [ 169.721693] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 169.731668] Call Trace: [ 169.734361] dump_stack+0x138/0x197 [ 169.738006] should_fail.cold+0x10f/0x159 [ 169.742173] should_failslab+0xdb/0x130 [ 169.746150] kmem_cache_alloc_node_trace+0x280/0x770 [ 169.751267] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 169.756706] __kmalloc_node_track_caller+0x3d/0x80 [ 169.761624] __kmalloc_reserve.isra.0+0x40/0xe0 [ 169.766279] __alloc_skb+0xcf/0x500 [ 169.769887] ? skb_scrub_packet+0x4b0/0x4b0 [ 169.774198] ? netlink_has_listeners+0x20a/0x330 [ 169.778944] kobject_uevent_env+0x781/0xc23 [ 169.783256] kobject_uevent+0x20/0x26 [ 169.787042] lo_ioctl+0x11e7/0x1ce0 [ 169.790670] ? loop_probe+0x160/0x160 [ 169.794454] blkdev_ioctl+0x96b/0x1860 [ 169.798738] ? blkpg_ioctl+0x980/0x980 [ 169.802802] ? __might_sleep+0x93/0xb0 [ 169.806685] ? __fget+0x210/0x370 [ 169.810125] block_ioctl+0xde/0x120 [ 169.813837] ? blkdev_fallocate+0x3b0/0x3b0 [ 169.818229] do_vfs_ioctl+0x7ae/0x1060 [ 169.822103] ? selinux_file_mprotect+0x5d0/0x5d0 [ 169.826845] ? lock_downgrade+0x740/0x740 [ 169.830979] ? ioctl_preallocate+0x1c0/0x1c0 [ 169.835371] ? __fget+0x237/0x370 [ 169.838813] ? security_file_ioctl+0x89/0xb0 [ 169.843206] SyS_ioctl+0x8f/0xc0 [ 169.846553] ? do_vfs_ioctl+0x1060/0x1060 [ 169.850702] do_syscall_64+0x1e8/0x640 [ 169.854660] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 169.859839] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 169.866535] RIP: 0033:0x45a087 [ 169.870489] RSP: 002b:00007fe432840a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 169.879237] RAX: ffffffffffffffda RBX: 0000000020000068 RCX: 000000000045a087 [ 169.886492] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 169.894278] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 169.901546] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 07:06:05 executing program 0: r0 = syz_open_dev$loop(&(0x7f0000000040)='/dev/loop#\x00', 0x0, 0x0) ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f00000001c0)={[], 0xff81, 0x800000, 0x6}) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) r2 = syz_open_procfs(0x0, &(0x7f00000006c0)='Net/3\x97OOT\x15\x00\xb6\xcf@e\xd3r\x82\x9fc') r3 = syz_open_dev$mouse(&(0x7f0000000140)='/dev/input/mouse#\x00', 0x6, 0x511000) ioctl$KVM_SET_BOOT_CPU_ID(r3, 0xae78, &(0x7f0000000180)) mq_timedsend(r2, &(0x7f0000000480)="c1cc3d2c05c16add6c964974e00652617b35c74bd5a620d3170df3c2f134d5beb838b0f00c6ca198401126d02772777a96ead8602a94c5450ea4e5c8b02fc6e876ee2383fc4faa682ed6a91a53a08a1fdd9839c170a6f81ede814c769cf15c688c8514b5f4f1dc0a50019813ce4459df629cd480519073a5f929cd5e59d0058ea64475a46e924294d5ef1b4b158e59d9c923a0", 0x93, 0x4, &(0x7f0000000540)={0x0, 0x989680}) ioctl$PPPIOCATTCHAN(r2, 0x40047438, &(0x7f0000000000)=0x2) socket$isdn_base(0x22, 0x3, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(r1, 0x40106614, &(0x7f0000000080)) r4 = accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x80800) setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r4, 0x84, 0x13, &(0x7f0000000100)=0x73, 0x4) fcntl$dupfd(0xffffffffffffffff, 0x0, r1) pipe(&(0x7f00000000c0)={0xffffffffffffffff}) r6 = openat$audio(0xffffffffffffff9c, &(0x7f0000000240)='/dev/audio\x00', 0x100, 0x0) ioctl$SNDRV_CTL_IOCTL_PVERSION(r6, 0x80045500, &(0x7f0000000280)) vmsplice(r5, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) [ 169.908811] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 07:06:05 executing program 4: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$inet6_sctp(0xa, 0x1, 0x84) 07:06:05 executing program 2 (fault-call:0 fault-nth:28): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 07:06:05 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) syz_open_procfs(0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) [ 170.041184] FAULT_INJECTION: forcing a failure. [ 170.041184] name failslab, interval 1, probability 0, space 0, times 0 [ 170.058144] CPU: 1 PID: 11113 Comm: syz-executor.2 Not tainted 4.14.151 #0 [ 170.065228] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 170.074768] Call Trace: [ 170.077476] dump_stack+0x138/0x197 [ 170.081121] should_fail.cold+0x10f/0x159 [ 170.085346] should_failslab+0xdb/0x130 07:06:05 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) syz_open_procfs(0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) [ 170.085362] kmem_cache_alloc_node+0x287/0x780 [ 170.085380] __alloc_skb+0x9c/0x500 [ 170.095772] ? skb_scrub_packet+0x4b0/0x4b0 [ 170.095787] ? netlink_has_listeners+0x20a/0x330 [ 170.095804] kobject_uevent_env+0x781/0xc23 [ 170.095821] kobject_uevent+0x20/0x26 [ 170.095834] lo_ioctl+0x11e7/0x1ce0 [ 170.103792] ? loop_probe+0x160/0x160 [ 170.103805] blkdev_ioctl+0x96b/0x1860 [ 170.103813] ? blkpg_ioctl+0x980/0x980 [ 170.103828] ? __might_sleep+0x93/0xb0 [ 170.103837] ? __fget+0x210/0x370 07:06:05 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) syz_open_procfs(0x0, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) [ 170.103851] block_ioctl+0xde/0x120 [ 170.143131] ? blkdev_fallocate+0x3b0/0x3b0 [ 170.147658] do_vfs_ioctl+0x7ae/0x1060 [ 170.151564] ? selinux_file_mprotect+0x5d0/0x5d0 [ 170.156601] ? lock_downgrade+0x740/0x740 [ 170.160909] ? ioctl_preallocate+0x1c0/0x1c0 [ 170.165397] ? __fget+0x237/0x370 [ 170.168842] ? security_file_ioctl+0x89/0xb0 [ 170.173238] SyS_ioctl+0x8f/0xc0 [ 170.176697] ? do_vfs_ioctl+0x1060/0x1060 [ 170.180837] do_syscall_64+0x1e8/0x640 [ 170.184722] ? trace_hardirqs_off_thunk+0x1a/0x1c 07:06:05 executing program 5: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, 0x0) syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) ioctl$VIDIOC_QUERYCAP(0xffffffffffffffff, 0x80685600, &(0x7f0000000040)) syz_open_dev$mouse(&(0x7f0000000340)='/dev/input/mouse#\x00', 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f0000000140)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3235004000000f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4d}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f00000000c0)) [ 170.189569] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 170.194751] RIP: 0033:0x45a087 [ 170.197936] RSP: 002b:00007f8cf79a0a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 170.205711] RAX: ffffffffffffffda RBX: 0000000020000068 RCX: 000000000045a087 [ 170.212976] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 170.220253] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 170.227525] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 170.234785] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 07:06:05 executing program 1 (fault-call:0 fault-nth:30): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) 07:06:05 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) syz_open_procfs(0x0, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) [ 170.364393] FAULT_INJECTION: forcing a failure. [ 170.364393] name failslab, interval 1, probability 0, space 0, times 0 [ 170.377530] CPU: 0 PID: 11139 Comm: syz-executor.1 Not tainted 4.14.151 #0 [ 170.384588] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 170.384595] Call Trace: [ 170.384615] dump_stack+0x138/0x197 [ 170.384639] should_fail.cold+0x10f/0x159 [ 170.384656] should_failslab+0xdb/0x130 [ 170.404421] kmem_cache_alloc_node+0x287/0x780 [ 170.404443] __alloc_skb+0x9c/0x500 [ 170.416621] ? skb_scrub_packet+0x4b0/0x4b0 [ 170.420973] ? netlink_has_listeners+0x20a/0x330 [ 170.425754] kobject_uevent_env+0x781/0xc23 [ 170.430096] kobject_uevent+0x20/0x26 [ 170.433913] lo_ioctl+0x11e7/0x1ce0 [ 170.437560] ? loop_probe+0x160/0x160 [ 170.441377] blkdev_ioctl+0x96b/0x1860 [ 170.445278] ? blkpg_ioctl+0x980/0x980 [ 170.449189] ? __might_sleep+0x93/0xb0 [ 170.453091] ? __fget+0x210/0x370 [ 170.456595] block_ioctl+0xde/0x120 [ 170.460236] ? blkdev_fallocate+0x3b0/0x3b0 [ 170.464557] do_vfs_ioctl+0x7ae/0x1060 [ 170.468430] ? selinux_file_mprotect+0x5d0/0x5d0 [ 170.473259] ? lock_downgrade+0x740/0x740 [ 170.483842] ? ioctl_preallocate+0x1c0/0x1c0 [ 170.488239] ? __fget+0x237/0x370 [ 170.491741] ? security_file_ioctl+0x89/0xb0 [ 170.496151] SyS_ioctl+0x8f/0xc0 [ 170.499513] ? do_vfs_ioctl+0x1060/0x1060 [ 170.503662] do_syscall_64+0x1e8/0x640 [ 170.507535] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 170.513523] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 170.518702] RIP: 0033:0x45a087 [ 170.521881] RSP: 002b:00007fe432840a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 170.529952] RAX: ffffffffffffffda RBX: 0000000020000068 RCX: 000000000045a087 [ 170.537210] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 170.544466] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 170.551731] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 07:06:05 executing program 2 (fault-call:0 fault-nth:29): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 170.559053] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 07:06:05 executing program 4: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x0, 0x989680}) socket$inet6_sctp(0xa, 0x0, 0x84) [ 170.607855] FAULT_INJECTION: forcing a failure. [ 170.607855] name failslab, interval 1, probability 0, space 0, times 0 [ 170.651933] CPU: 0 PID: 11151 Comm: syz-executor.2 Not tainted 4.14.151 #0 [ 170.659006] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 170.668376] Call Trace: [ 170.670998] dump_stack+0x138/0x197 [ 170.674656] should_fail.cold+0x10f/0x159 [ 170.678944] should_failslab+0xdb/0x130 [ 170.682943] kmem_cache_alloc_node_trace+0x280/0x770 [ 170.688065] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 170.693560] __kmalloc_node_track_caller+0x3d/0x80 [ 170.698863] __kmalloc_reserve.isra.0+0x40/0xe0 [ 170.703584] __alloc_skb+0xcf/0x500 [ 170.703597] ? skb_scrub_packet+0x4b0/0x4b0 [ 170.703611] ? netlink_has_listeners+0x20a/0x330 [ 170.703630] kobject_uevent_env+0x781/0xc23 [ 170.711604] kobject_uevent+0x20/0x26 [ 170.711617] lo_ioctl+0x11e7/0x1ce0 [ 170.711630] ? loop_probe+0x160/0x160 [ 170.711642] blkdev_ioctl+0x96b/0x1860 [ 170.711651] ? blkpg_ioctl+0x980/0x980 [ 170.711667] ? __might_sleep+0x93/0xb0 [ 170.711676] ? __fget+0x210/0x370 [ 170.711689] block_ioctl+0xde/0x120 07:06:05 executing program 5: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, 0x0) syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) ioctl$VIDIOC_QUERYCAP(0xffffffffffffffff, 0x80685600, &(0x7f0000000040)) syz_open_dev$mouse(&(0x7f0000000340)='/dev/input/mouse#\x00', 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f0000000140)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3235004000000f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4d}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f00000000c0)) [ 170.711700] ? blkdev_fallocate+0x3b0/0x3b0 [ 170.711710] do_vfs_ioctl+0x7ae/0x1060 [ 170.711721] ? selinux_file_mprotect+0x5d0/0x5d0 [ 170.711732] ? lock_downgrade+0x740/0x740 [ 170.711743] ? ioctl_preallocate+0x1c0/0x1c0 [ 170.711753] ? __fget+0x237/0x370 [ 170.711768] ? security_file_ioctl+0x89/0xb0 [ 170.711780] SyS_ioctl+0x8f/0xc0 [ 170.711788] ? do_vfs_ioctl+0x1060/0x1060 [ 170.711800] do_syscall_64+0x1e8/0x640 [ 170.711809] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 170.711826] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 170.711835] RIP: 0033:0x45a087 [ 170.711841] RSP: 002b:00007f8cf79a0a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 170.711853] RAX: ffffffffffffffda RBX: 0000000020000068 RCX: 000000000045a087 [ 170.711860] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 170.711866] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 170.711872] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 07:06:06 executing program 0: r0 = syz_open_dev$loop(&(0x7f0000000040)='/dev/loop#\x00', 0x0, 0x0) ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f00000001c0)={[], 0xff81, 0x800000, 0x5}) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) r2 = fcntl$dupfd(r1, 0x0, r1) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) ioctl$EXT4_IOC_ALLOC_DA_BLKS(r3, 0x660c) syz_init_net_socket$x25(0x9, 0x5, 0x0) setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, &(0x7f0000000380)="0c4f4d16cf2f3a2dd8a5046790a60c91e487dc9ca281434dbc169c6555a654da5e42c953490634b417ec9535653162fc5730d4c8dab3e136550ed7d31fa8d7094afd6e5154349155e6ef7e5fb08d79c283188a3f28548ab4366e6863ba5561aedbd1ee3f9a2c5646e4a9c2806b231528bca7ee2134e39966c40bcb1371a7e7691672a8dc9bda07175f11a9160cba3f0ddb78db3b2e184e1e9aa371691df9f49a5e3343bce4e4b8a2c80831b63d95ed57cf89982b317abf1cf8a71078d00dd5fa9151c142fa4bb765d503150f5f6f34284c7480a5091e9b246e", 0xd9) fsetxattr$trusted_overlay_nlink(r3, &(0x7f0000000240)='trusted.overlay.nlink\x00', &(0x7f0000000300)={'U+', 0x7}, 0x28, 0x3) write$P9_RUNLINKAT(r3, &(0x7f0000000000)={0x7, 0x4d, 0x1}, 0x7) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) [ 170.711877] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 07:06:06 executing program 1 (fault-call:0 fault-nth:31): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) 07:06:06 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) syz_open_procfs(0x0, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) 07:06:06 executing program 5: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, 0x0) r1 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) ioctl$VIDIOC_QUERYCAP(r1, 0x80685600, 0x0) syz_open_dev$mouse(&(0x7f0000000340)='/dev/input/mouse#\x00', 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f0000000140)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3235004000000f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4d}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f00000000c0)) 07:06:06 executing program 2 (fault-call:0 fault-nth:30): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 171.036773] FAULT_INJECTION: forcing a failure. [ 171.036773] name failslab, interval 1, probability 0, space 0, times 0 [ 171.072863] CPU: 1 PID: 11183 Comm: syz-executor.2 Not tainted 4.14.151 #0 [ 171.079942] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 171.089313] Call Trace: [ 171.091925] dump_stack+0x138/0x197 [ 171.095582] should_fail.cold+0x10f/0x159 [ 171.099758] should_failslab+0xdb/0x130 [ 171.103760] kmem_cache_alloc_node_trace+0x280/0x770 [ 171.108886] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 171.114536] __kmalloc_node_track_caller+0x3d/0x80 [ 171.119965] __kmalloc_reserve.isra.0+0x40/0xe0 [ 171.124657] __alloc_skb+0xcf/0x500 [ 171.128300] ? skb_scrub_packet+0x4b0/0x4b0 07:06:06 executing program 4: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x0, 0x989680}) socket$inet6_sctp(0xa, 0x0, 0x84) [ 171.132631] ? netlink_has_listeners+0x20a/0x330 [ 171.132649] kobject_uevent_env+0x781/0xc23 [ 171.132665] kobject_uevent+0x20/0x26 [ 171.132676] lo_ioctl+0x11e7/0x1ce0 [ 171.132688] ? loop_probe+0x160/0x160 [ 171.132700] blkdev_ioctl+0x96b/0x1860 [ 171.142199] ? blkpg_ioctl+0x980/0x980 [ 171.142217] ? __might_sleep+0x93/0xb0 [ 171.142227] ? __fget+0x210/0x370 [ 171.142239] block_ioctl+0xde/0x120 [ 171.142248] ? blkdev_fallocate+0x3b0/0x3b0 [ 171.142257] do_vfs_ioctl+0x7ae/0x1060 [ 171.142268] ? selinux_file_mprotect+0x5d0/0x5d0 [ 171.142281] ? lock_downgrade+0x740/0x740 [ 171.189769] ? ioctl_preallocate+0x1c0/0x1c0 [ 171.194180] ? __fget+0x237/0x370 [ 171.197648] ? security_file_ioctl+0x89/0xb0 [ 171.202072] SyS_ioctl+0x8f/0xc0 [ 171.205436] ? do_vfs_ioctl+0x1060/0x1060 [ 171.209588] do_syscall_64+0x1e8/0x640 [ 171.213567] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 171.218650] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 171.223830] RIP: 0033:0x45a087 [ 171.227006] RSP: 002b:00007f8cf79a0a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 171.235505] RAX: ffffffffffffffda RBX: 0000000020000068 RCX: 000000000045a087 [ 171.244031] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 171.251305] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 171.258562] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 171.269096] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 [ 171.277869] FAULT_INJECTION: forcing a failure. [ 171.277869] name failslab, interval 1, probability 0, space 0, times 0 [ 171.295320] CPU: 1 PID: 11181 Comm: syz-executor.1 Not tainted 4.14.151 #0 [ 171.302563] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 171.312279] Call Trace: [ 171.315404] dump_stack+0x138/0x197 [ 171.319043] should_fail.cold+0x10f/0x159 [ 171.323182] should_failslab+0xdb/0x130 [ 171.327183] kmem_cache_alloc_node_trace+0x280/0x770 [ 171.332287] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 171.337743] __kmalloc_node_track_caller+0x3d/0x80 [ 171.342828] __kmalloc_reserve.isra.0+0x40/0xe0 [ 171.347516] __alloc_skb+0xcf/0x500 [ 171.351131] ? skb_scrub_packet+0x4b0/0x4b0 [ 171.355437] ? netlink_has_listeners+0x20a/0x330 [ 171.360354] kobject_uevent_env+0x781/0xc23 [ 171.364678] kobject_uevent+0x20/0x26 [ 171.368472] lo_ioctl+0x11e7/0x1ce0 [ 171.372082] ? loop_probe+0x160/0x160 [ 171.375866] blkdev_ioctl+0x96b/0x1860 [ 171.379734] ? blkpg_ioctl+0x980/0x980 [ 171.383794] ? __might_sleep+0x93/0xb0 [ 171.387724] ? __fget+0x210/0x370 [ 171.391216] block_ioctl+0xde/0x120 [ 171.394840] ? blkdev_fallocate+0x3b0/0x3b0 [ 171.399183] do_vfs_ioctl+0x7ae/0x1060 [ 171.403058] ? selinux_file_mprotect+0x5d0/0x5d0 [ 171.407935] ? lock_downgrade+0x740/0x740 [ 171.412158] ? ioctl_preallocate+0x1c0/0x1c0 [ 171.416761] ? __fget+0x237/0x370 [ 171.420203] ? security_file_ioctl+0x89/0xb0 [ 171.424595] SyS_ioctl+0x8f/0xc0 [ 171.427941] ? do_vfs_ioctl+0x1060/0x1060 [ 171.432082] do_syscall_64+0x1e8/0x640 [ 171.437539] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 171.442379] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 171.447565] RIP: 0033:0x45a087 [ 171.450752] RSP: 002b:00007fe432840a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 171.458464] RAX: ffffffffffffffda RBX: 0000000020000068 RCX: 000000000045a087 [ 171.465726] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 171.473411] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 171.480665] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 07:06:06 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) [ 171.487932] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 07:06:06 executing program 5: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, 0x0) r1 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) ioctl$VIDIOC_QUERYCAP(r1, 0x80685600, 0x0) syz_open_dev$mouse(&(0x7f0000000340)='/dev/input/mouse#\x00', 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f0000000140)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3235004000000f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4d}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f00000000c0)) 07:06:06 executing program 2 (fault-call:0 fault-nth:31): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 07:06:06 executing program 4: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, 0x0) syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) ioctl$VIDIOC_QUERYCAP(0xffffffffffffffff, 0x80685600, &(0x7f0000000040)) syz_open_dev$mouse(&(0x7f0000000340)='/dev/input/mouse#\x00', 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f0000000140)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3235004000000f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4d}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f00000000c0)) [ 171.632010] FAULT_INJECTION: forcing a failure. [ 171.632010] name failslab, interval 1, probability 0, space 0, times 0 [ 171.658348] CPU: 1 PID: 11221 Comm: syz-executor.2 Not tainted 4.14.151 #0 [ 171.665418] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 171.665431] Call Trace: [ 171.665456] dump_stack+0x138/0x197 07:06:06 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) [ 171.665475] should_fail.cold+0x10f/0x159 [ 171.665492] should_failslab+0xdb/0x130 [ 171.665505] kmem_cache_alloc_node+0x287/0x780 [ 171.665522] __alloc_skb+0x9c/0x500 [ 171.665532] ? skb_scrub_packet+0x4b0/0x4b0 [ 171.665542] ? netlink_has_listeners+0x20a/0x330 [ 171.665554] kobject_uevent_env+0x781/0xc23 [ 171.665570] kobject_uevent+0x20/0x26 [ 171.665580] lo_ioctl+0x11e7/0x1ce0 [ 171.665592] ? loop_probe+0x160/0x160 [ 171.723440] blkdev_ioctl+0x96b/0x1860 [ 171.727319] ? blkpg_ioctl+0x980/0x980 [ 171.731204] ? __might_sleep+0x93/0xb0 [ 171.735085] ? __fget+0x210/0x370 [ 171.738522] block_ioctl+0xde/0x120 [ 171.742912] ? blkdev_fallocate+0x3b0/0x3b0 [ 171.747228] do_vfs_ioctl+0x7ae/0x1060 [ 171.751248] ? selinux_file_mprotect+0x5d0/0x5d0 [ 171.756063] ? lock_downgrade+0x740/0x740 [ 171.760211] ? ioctl_preallocate+0x1c0/0x1c0 [ 171.764956] ? __fget+0x237/0x370 [ 171.768408] ? security_file_ioctl+0x89/0xb0 [ 171.772816] SyS_ioctl+0x8f/0xc0 [ 171.776170] ? do_vfs_ioctl+0x1060/0x1060 [ 171.780311] do_syscall_64+0x1e8/0x640 [ 171.784191] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 171.789059] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 171.794605] RIP: 0033:0x45a087 [ 171.797790] RSP: 002b:00007f8cf79a0a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 171.805583] RAX: ffffffffffffffda RBX: 0000000020000068 RCX: 000000000045a087 [ 171.812867] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 171.820141] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 171.828116] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 171.835379] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 07:06:07 executing program 1: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000080)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) r0 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/autofs\x00', 0x242100, 0x0) r1 = socket$inet6_sctp(0xa, 0x1, 0x84) r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [0x0]}, &(0x7f000095dffc)=0x8) getsockopt$inet_sctp6_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f0000000000)={r3}, &(0x7f0000000040)=0x14) setsockopt$inet_sctp6_SCTP_RESET_STREAMS(r0, 0x84, 0x77, &(0x7f0000000180)={r3, 0x7, 0x1, [0xff]}, 0xa) 07:06:07 executing program 0: r0 = syz_open_dev$loop(&(0x7f0000000040)='/dev/loop#\x00', 0x0, 0x0) ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f00000001c0)={[], 0xff81, 0x800000, 0x6}) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) r2 = fcntl$dupfd(r1, 0x0, r1) r3 = syz_open_dev$mice(&(0x7f0000000000)='/dev/input/mice\x00', 0x0, 0x100) r4 = socket$netlink(0x10, 0x3, 0x0) r5 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000140)='/dev/sequencer2\x00', 0x40000, 0x0) ioctl$SIOCAX25ADDFWD(r5, 0x89ea, &(0x7f0000000240)={@rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @null}) r6 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r6, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r6, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0xa) sendmsg$nl_route(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)=@newlink={0x20, 0x11, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, r7}}, 0x20}}, 0x0) setsockopt$packet_drop_memb(r3, 0x107, 0x2, &(0x7f0000000080)={r7, 0x1, 0x6, @remote}, 0x10) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) 07:06:07 executing program 4: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x0, 0x989680}) socket$inet6_sctp(0xa, 0x1, 0x84) 07:06:07 executing program 5: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, 0x0) r1 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) ioctl$VIDIOC_QUERYCAP(r1, 0x80685600, 0x0) syz_open_dev$mouse(&(0x7f0000000340)='/dev/input/mouse#\x00', 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f0000000140)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3235004000000f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4d}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f00000000c0)) 07:06:07 executing program 2 (fault-call:0 fault-nth:32): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 07:06:07 executing program 0: r0 = syz_open_dev$loop(&(0x7f0000000040)='/dev/loop#\x00', 0x0, 0x0) ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f00000001c0)={[], 0xff81, 0x800000, 0x6}) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) pipe2(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}, 0x4800) sendmsg$can_raw(r2, &(0x7f0000000240)={&(0x7f00000000c0), 0x10, &(0x7f0000000180)={&(0x7f0000000100)=@canfd={{0x2, 0x1, 0x1}, 0x17, 0x2, 0x0, 0x0, "f52cbe305674ff6f46aa69b5f5634ca85280913574cbe0c12a15e6a91b6ce3cff6ab8ec56b54b71303a1d8accd976c70388a2c269a8642afc92142578d8d624c"}, 0x48}, 0x1, 0x0, 0x0, 0x10}, 0xccc44b469fea7892) r3 = fcntl$dupfd(r1, 0x0, r1) openat$smack_task_current(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/attr/current\x00', 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = getpid() sched_setattr(r4, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0) prctl$PR_SET_PTRACER(0x59616d61, r4) [ 172.079947] FAULT_INJECTION: forcing a failure. [ 172.079947] name failslab, interval 1, probability 0, space 0, times 0 [ 172.117485] CPU: 1 PID: 11257 Comm: syz-executor.2 Not tainted 4.14.151 #0 07:06:07 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) 07:06:07 executing program 0: unshare(0x32010800) r0 = syz_open_dev$loop(&(0x7f0000000040)='/dev/loop#\x00', 0x0, 0x0) prctl$PR_GET_ENDIAN(0x13, &(0x7f0000000100)) ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f00000001c0)={[], 0xff81, 0x800000, 0x6}) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) r2 = fcntl$dupfd(r1, 0x0, r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) fallocate(0xffffffffffffffff, 0xbd38ba72fd5b0e3f, 0x7, 0x3) getsockopt$ARPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000080)={'filter\x00'}, &(0x7f0000000000)=0x44) [ 172.124555] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 172.133923] Call Trace: [ 172.136524] dump_stack+0x138/0x197 [ 172.140172] should_fail.cold+0x10f/0x159 [ 172.144340] should_failslab+0xdb/0x130 [ 172.148339] kmem_cache_alloc_node_trace+0x280/0x770 [ 172.153461] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 172.158935] __kmalloc_node_track_caller+0x3d/0x80 [ 172.163892] __kmalloc_reserve.isra.0+0x40/0xe0 [ 172.163904] __alloc_skb+0xcf/0x500 [ 172.163914] ? skb_scrub_packet+0x4b0/0x4b0 07:06:07 executing program 0: r0 = syz_open_dev$loop(&(0x7f0000000040)='/dev/loop#\x00', 0x0, 0x0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1, &(0x7f0000000000)='\x00', 0xffffffffffffffff}, 0x30) ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f00000001c0)={[], 0xff81, 0x800000, 0x6, 0x0, 0x0, r1}) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) r3 = fcntl$dupfd(r2, 0x0, r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) [ 172.163927] ? netlink_has_listeners+0x20a/0x330 [ 172.163940] kobject_uevent_env+0x781/0xc23 [ 172.163957] kobject_uevent+0x20/0x26 [ 172.163967] lo_ioctl+0x11e7/0x1ce0 [ 172.163979] ? loop_probe+0x160/0x160 [ 172.163992] blkdev_ioctl+0x96b/0x1860 [ 172.181516] ? blkpg_ioctl+0x980/0x980 [ 172.181535] ? __might_sleep+0x93/0xb0 [ 172.181545] ? __fget+0x210/0x370 [ 172.181565] block_ioctl+0xde/0x120 [ 172.181590] ? blkdev_fallocate+0x3b0/0x3b0 [ 172.220267] do_vfs_ioctl+0x7ae/0x1060 [ 172.224190] ? selinux_file_mprotect+0x5d0/0x5d0 07:06:07 executing program 0: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, 0x0) r1 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) ioctl$VIDIOC_QUERYCAP(r1, 0x80685600, 0x0) syz_open_dev$mouse(&(0x7f0000000340)='/dev/input/mouse#\x00', 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f0000000140)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3235004000000f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4d}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f00000000c0)) [ 172.228963] ? lock_downgrade+0x740/0x740 [ 172.233125] ? ioctl_preallocate+0x1c0/0x1c0 [ 172.237545] ? __fget+0x237/0x370 [ 172.241030] ? security_file_ioctl+0x89/0xb0 [ 172.245455] SyS_ioctl+0x8f/0xc0 [ 172.248829] ? do_vfs_ioctl+0x1060/0x1060 [ 172.252988] do_syscall_64+0x1e8/0x640 [ 172.256980] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 172.261990] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 172.267186] RIP: 0033:0x45a087 [ 172.270390] RSP: 002b:00007f8cf79a0a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 07:06:07 executing program 5: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, 0x0) r1 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) ioctl$VIDIOC_QUERYCAP(r1, 0x80685600, &(0x7f0000000040)) syz_open_dev$mouse(0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f0000000140)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3235004000000f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4d}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f00000000c0)) [ 172.278354] RAX: ffffffffffffffda RBX: 0000000020000068 RCX: 000000000045a087 [ 172.285607] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 172.292906] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 172.300171] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 172.307442] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 07:06:07 executing program 0: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(0xffffffffffffffff, 0x8934, 0x0) r0 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) ioctl$VIDIOC_QUERYCAP(r0, 0x80685600, &(0x7f0000000040)) syz_open_dev$mouse(&(0x7f0000000340)='/dev/input/mouse#\x00', 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f0000000140)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3235004000000f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4d}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f00000000c0)) 07:06:07 executing program 1: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = openat$selinux_mls(0xffffffffffffff9c, &(0x7f0000000080)='/selinux/mls\x00', 0x0, 0x0) sendmsg$kcm(r0, &(0x7f0000000280)={&(0x7f0000000140)=@generic={0x9, "242319ba69b8391357bd2f42b92450b15bb265568939b96ac66edaebdf54c1b84730c097cde8b91f5bbbfe4f0a769b1e11893d4fa2e9cbd999c0596d2942b0bdfc53dafafe8ad247b59bddd554e77fe224a7d9196611c173efc2cfe19f26edb8a85ebec00e7d1c999817d818c43e190a2bfa51f164ed622e9c6657afe5f7"}, 0x80, &(0x7f00000000c0)=[{&(0x7f00000001c0)="36b74df69b5f29bd63c62e64e81c303558e92c864a4fb33adb6bfd7495163e48bdd861aacca172acccab71757113a8bb9acb578100fec60a1b008828102027b588e16e91954cf228c066796527641d839263f889b6c98474fa12a768c7ee620e16cd86d2ef7ba1b68c6db566b98776d8110e21600f15fc3fbdae5d5ab797a3e65f8b4d47", 0x84}], 0x1, &(0x7f0000000340)=[{0x1010, 0x10a, 0x10f5, "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"}, {0x98, 0x10b, 0x80, "f2cb861ed619c461dac3448f7336a28cb3620989c7beb51e20eabf809f8e1a29502b15285777f34449673a9c4972342a28a16f93bb1e5fc9ca380687e999f6701a6b065a0778ce55a9e2d1ae923c9fd5ca0326bec39f6ff2d6be628aea13d615636fdc35cefec67b72d08e4811d1c0f0cc1840fe7a6b3463248c6319a430aed27e4e8ee0fd"}, {0x28, 0x115, 0x7f, "28e61223dc6738ed71109eb12d0f0264ccf3ec521f7f"}, {0x1010, 0x0, 0x0, "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"}, {0xd0, 0xff, 0x8, "ae7ef702bb8f7ab43cd070bc09ff623a883aba3f4346d5d4c05c84b095b7ea8df714c5a3154c9ffb6cae5378dea66f56a8a74d2867cbb7d79325d0f688160f977f16e837a2b27a98a46551f87197bcd7dca38daa115a63cefedaca18b051ca8cca7017d10d41f90a4e8bb3979e5141499a0f22b17e14134114abc2e766f02e6ba488ad354616f00c92585cacbb270beccfe59f474bd9b6ee56c79031b241260c00932708853274bc4d4fee67a5c97c3edd270970912c9d051a056733b9"}, {0xe8, 0x10a, 0x10001, "f3d078aa78a8a7d328e19d2e3d6ec1dc2f4ebcd51c08b68180d530456095dab0946eee19270a4f8d8cb98f524c2410ba85891dcde3f97ae34a61de09fa64185bbebf8c426dfc89f6ccfed0636349d62e82e0112fa259cc7b1344b07603c5887f06c4ab73b5e5f95ecf8894a771c83908486ef9b70c883fd89025286333c30a949db5f06d04212257e7a2daa67cfb91125324923f56e95b34d7ddc0696d37246b10eb5179165e2fe403480611c5bea21cbd72e9b2d240bf52226292abd2a028340b48e9880831b32cb6529b4c7b1d339dfc2917d31c"}], 0x2298}, 0x4) socket$inet6_sctp(0xa, 0x0, 0x84) 07:06:07 executing program 4: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x4, &(0x7f0000000540)={0x0, 0x989680}) socket$inet6_sctp(0xa, 0x1, 0x84) 07:06:07 executing program 2 (fault-call:0 fault-nth:33): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 07:06:07 executing program 5: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, 0x0) r1 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) ioctl$VIDIOC_QUERYCAP(r1, 0x80685600, &(0x7f0000000040)) syz_open_dev$mouse(0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f0000000140)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3235004000000f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4d}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f00000000c0)) 07:06:07 executing program 3: syz_mount_image$btrfs(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) [ 172.548670] FAULT_INJECTION: forcing a failure. [ 172.548670] name failslab, interval 1, probability 0, space 0, times 0 [ 172.590321] CPU: 1 PID: 11306 Comm: syz-executor.2 Not tainted 4.14.151 #0 [ 172.597387] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 172.606746] Call Trace: [ 172.609340] dump_stack+0x138/0x197 [ 172.612969] should_fail.cold+0x10f/0x159 [ 172.617126] should_failslab+0xdb/0x130 [ 172.621114] kmem_cache_alloc_node+0x287/0x780 [ 172.625716] __alloc_skb+0x9c/0x500 [ 172.629343] ? skb_scrub_packet+0x4b0/0x4b0 [ 172.633670] ? netlink_has_listeners+0x20a/0x330 [ 172.638413] kobject_uevent_env+0x781/0xc23 [ 172.642723] kobject_uevent+0x20/0x26 [ 172.646519] lo_ioctl+0x11e7/0x1ce0 [ 172.650144] ? loop_probe+0x160/0x160 [ 172.653933] blkdev_ioctl+0x96b/0x1860 [ 172.657805] ? blkpg_ioctl+0x980/0x980 [ 172.661677] ? __might_sleep+0x93/0xb0 [ 172.665546] ? __fget+0x210/0x370 [ 172.668981] block_ioctl+0xde/0x120 [ 172.672594] ? blkdev_fallocate+0x3b0/0x3b0 [ 172.676903] do_vfs_ioctl+0x7ae/0x1060 [ 172.680775] ? selinux_file_mprotect+0x5d0/0x5d0 [ 172.685510] ? lock_downgrade+0x740/0x740 [ 172.689641] ? ioctl_preallocate+0x1c0/0x1c0 [ 172.694037] ? __fget+0x237/0x370 [ 172.697559] ? security_file_ioctl+0x89/0xb0 [ 172.701968] SyS_ioctl+0x8f/0xc0 [ 172.705313] ? do_vfs_ioctl+0x1060/0x1060 [ 172.709441] do_syscall_64+0x1e8/0x640 [ 172.713322] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 172.718160] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 172.723329] RIP: 0033:0x45a087 [ 172.726529] RSP: 002b:00007f8cf79a0a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 07:06:07 executing program 5: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, 0x0) r1 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) ioctl$VIDIOC_QUERYCAP(r1, 0x80685600, &(0x7f0000000040)) syz_open_dev$mouse(0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f0000000140)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3235004000000f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4d}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f00000000c0)) [ 172.734220] RAX: ffffffffffffffda RBX: 0000000020000068 RCX: 000000000045a087 [ 172.741475] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 172.748732] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 172.755992] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 172.763242] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 07:06:07 executing program 0: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) 07:06:07 executing program 3: syz_mount_image$btrfs(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) 07:06:07 executing program 4: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, 0x0) r1 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) ioctl$VIDIOC_QUERYCAP(r1, 0x80685600, &(0x7f0000000040)) syz_open_dev$mouse(0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f0000000140)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3235004000000f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4d}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f00000000c0)) 07:06:08 executing program 2 (fault-call:0 fault-nth:34): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 07:06:08 executing program 5: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, 0x0) r1 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) ioctl$VIDIOC_QUERYCAP(r1, 0x80685600, &(0x7f0000000040)) syz_open_dev$mouse(0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f00000000c0)) 07:06:08 executing program 1: syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x28e, &(0x7f0000000040), 0x10a2040, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) 07:06:08 executing program 4: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = openat$selinux_mls(0xffffffffffffff9c, &(0x7f0000000080)='/selinux/mls\x00', 0x0, 0x0) sendmsg$kcm(r0, &(0x7f0000000280)={&(0x7f0000000140)=@generic={0x9, "242319ba69b8391357bd2f42b92450b15bb265568939b96ac66edaebdf54c1b84730c097cde8b91f5bbbfe4f0a769b1e11893d4fa2e9cbd999c0596d2942b0bdfc53dafafe8ad247b59bddd554e77fe224a7d9196611c173efc2cfe19f26edb8a85ebec00e7d1c999817d818c43e190a2bfa51f164ed622e9c6657afe5f7"}, 0x80, &(0x7f00000000c0)=[{&(0x7f00000001c0)="36b74df69b5f29bd63c62e64e81c303558e92c864a4fb33adb6bfd7495163e48bdd861aacca172acccab71757113a8bb9acb578100fec60a1b008828102027b588e16e91954cf228c066796527641d839263f889b6c98474fa12a768c7ee620e16cd86d2ef7ba1b68c6db566b98776d8110e21600f15fc3fbdae5d5ab797a3e65f8b4d47", 0x84}], 0x1, &(0x7f0000000340)=[{0x1010, 0x10a, 0x10f5, "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"}, {0x98, 0x10b, 0x80, "f2cb861ed619c461dac3448f7336a28cb3620989c7beb51e20eabf809f8e1a29502b15285777f34449673a9c4972342a28a16f93bb1e5fc9ca380687e999f6701a6b065a0778ce55a9e2d1ae923c9fd5ca0326bec39f6ff2d6be628aea13d615636fdc35cefec67b72d08e4811d1c0f0cc1840fe7a6b3463248c6319a430aed27e4e8ee0fd"}, {0x28, 0x115, 0x7f, "28e61223dc6738ed71109eb12d0f0264ccf3ec521f7f"}, {0x1010, 0x0, 0x0, "582cd4a77bfb21e7a22077bdcf1be5cd226c1e7d88c8a26b6dee3afd53e0b6fc2b6aeff65958b1930217ec54e346b8f21e46db658d87ecf91aa5fc75a4c6d9cd184001763e9217838fca04b3cc010114c29024abc5b21d160eeef124d8f10aadd2786a5b2c3aeb0eb416c1e377772301f294545254c8cc382d4547b6303cff99f9c839ff8999204b562fbdcc6689c28df77e13ec231335c60a95bac3a2d7f7d2c0ba83575b50919b11cf6cabd28d1b78165a6442f44272d5fa9c2949f84303c5eaaa87d7e59fef7e72158f2ba3454e26b0ef42718fe9281eba2f75258b52f0759bd038db2272b16c4e83bc4cf8e05175699ef386175551a9551fa97917d823dbf97c227162df84847dbb36076b2b1940bf17c292275835ed1b0453c1c11b7e293a0ef5caf57a20f08268108ae616ea1cd540c1daf24a3be810f5eda0ce47b5a06429fed8b64cc13c16be8a3f059e4a4737e36a29a8b72370aec7cb6f695a94afadca97fae545f1e2f67ba9136aa3f8747f7b7dd630638d4e8907029a18f78002c35ae92bcc906f90701281ac80852496c64e6e609b74cb4202beb5d30ea3432d0f81785966dcbeef1f2bd0513628cac258df909c1bbc2b55dfa142a24d5e417d82a02223f712635c957b3cb86322932eda1302ffca29e957b90f5e0260ce6def9643ab60d058b4612542190e1cfb6c5b7bf6d8b0aa781c943efc16f9ebceaa559b276192f5092b0f0cdf09bd502d3b92b82f4a2038dd525412c5cc07c75cf83281bd912dc68a7dc25134a98470939accb71a0bdc7a83b16821201db8d83d2d1203e7649d412b38acf9afa71aafd1ab8293507c1e57c865f18c0835bded4fa1a3730b8be624c99ec69025849a8b4e28b71bcc471fc387b15ed03178fdf4209f24df6f71d62ee2f69065765ce6e1d1e99f499ec077b2b88a8a356c8726725a533cd6c8c5adf3b2f85a0d077182d40fb806be342c3d0b83f3cddd1050a94340d59d3bc23abdd706cbdf6ba184b91a71603311d7f276ecc44a90a2dc326cf463bb8df714128b98eb743f8776dcc48b225c656ea930ce73051fbef7df05bbe613ce2d16ff4e33013c142d63aaa7e9870747c1af006956d568de26ac3628010054f2263d40062fc0275cc569a2f1704d1682a821c32e2117efa837f2c65a34d66008369deff62e4f2bf0ffecdd6d16982ab396b0f66d7bf293d58dcba329bef3d3aca5feb5c1defedc4ce3acc30fa1e8079061ba369db23f5ab7bacbe4e745b50a7763c511973c9ae37834c7e0bb5e14de3d7564a04964216aca078653162b2d97714ec8487776c374f4a049c0ab8cc5bca18b1f41f16d651622a622d977dadc69be66d0552f1183fc65ea498724ba4c3cb55518b9996b20645455e76e3c9db09a74238efb02be075b54bba22488b2f218f982dc6675adff632e77fd3d4aea68cf506be6e60296ab32f53eeac7313ce4b0d6260ca69b6af02c91f4cfa54df547c885c961d123616839c473a1e9ee8c249483cd393f3fd159a97f15d4c8a4523eba0618eccc23ff79cb50cd790bd4773042bc842d75a0a1a76bc02efc03d759e5427f4ebd128962841ea3e26dd56079ec2e6665d449d6f9bc50305fa978cbd7fde139111f4c64643dbc1d08ef746857d950d72f7dd1ee11c04c4b9954e598949b41f1405cc83e8b905916c4b62d6ec6fcd819049e4566ce3e296581a97e7e99dc67601596ab27163703ddb2cca77302290520da321775f299355b351cc18418dbec6094c48a8fc74d17f5bacb44541e6e9a39bdc24e72b57691e68a272a4bfa0c4655cf4aa1136860f7be3b7e6fbf1ff920d50ea013240e199f00d34e3a70747db94d12e947647271bc0cfd95545f6767a8fc97a153480f25b3c96750d356e2efdf217ae14bcbd7bccde9078cb08d30759a2074c21c9b9705998947ad7fc7bb8afe70d2837ba9a2ddbb9923d8a4ec5e602c042f4f27695fca63444f1895d760cede55a3a5db78962118159a029ae918ed808a5bd44d6d7b53e5f30fcf4aa93fb8e286741f74ff3d3db04c3877c1fc30bf4ed8a237ca44311e66e7e267e0ec6199a97d18ba602464aa8b0c1144b82066a06cc81b4b345d6671eebea897b3ed290da168e6ecca540fd512692216d81f99f71961c5350eefb031181f7b0de16f82b5dfe8020539c436296b322f4ad3b610b7aed175113c0e787f829ee015f64a9b89b886a563cf25a80a7f8a495a73f5bdb0320f66cb82b384d7c511f36bd1f10f02dbcb8a93a4124f6b796e6c8cd88649fbe861fde056f9cb3bea44e744d79bf6ffc506075bc5b347c9fad7740edebbab6c60247c791ee599ce6faf68c926993426e6f666017388d1988fd7e6390622fbf451ab8ee3e4acd140a12eea63a6ec28d2f3997627f84de746a4b36c1aa4c1d9827566b3eac015a6a9fdde483b4e1ae1733f9d95b5c12dc84fc14855b7c75ad88fff0e52619059e0b5dbebb58a0f8f1d48d97de768af999a238ef6ad1c000bc679e4d0e6b7dadb145b21acbe08af6dbbdae859be8e73997f0a48dcd5a97ba76c5acfe487476c08035f8fecdbaec86c927818c368203852457c5c356a8788f873a1a993b9bdd9c1bfdd65b5a70adf8cd0a911c6d3f05a4a009ccd80dc37c0ef5faa3c998ed8055988e052039696d7d3938f50b8ac9ff4be59c3f926c35603f69516d5d4a71b7fd3cce6cace26ae7e523865ba720ec4dd915655da6c44bc288e01dc227d97b94983ad8562f727ba8fe911da16cb8ddaafbc699f29a8bb9bf1d761c3f3685b93c38f5280d0eb60ece15f4bd7f248e92f9462f3624221b7ec28ac7b0d786fedbd1e21f82c941160ea8e2828b7e5a3b32dda277bf9ca76ed5074277d9dd2355235d52aed80169dc6f7c63fc4a90059f05ab71819c5a759248004e02c0ab28b9188d2a5b8e5f22a43b695dc4116d8e89fe76bd0b38e6ca13093ce2f0cff40330f9d7e9fc3333a04cd1d74b2061409907f8312e897d24788cb7f2a7883ea0bd6fbe1df0b7c18bb498ebda742a53e933e9fc79d3c83f412814e694de88b4161c6c9e8ad6c3edc61da3bb9a09f7f4d9d7b38764028dd4c71132899a43b036a74203e907762691c66ced816ae3890dda8ad103bcc99ee27f4cf840040d9e5f93c14ace3d37af754e411ec9236e7d727c9fac321460a594d5744f93fa78ccbacfc6fc108142d316211abeadd865cd36104de706045efb988047a4b670d891d7963738798daac671c28b5d9943c9cfa7037485c4a82bc71913483b76ab89fc2390fb344b0705ec217a4f095729ae6546ba8484052b59bf5792e47e20b106e6c40252b4930414c858e7a212c4023ec77e67c289bbe3618c2522ae721cd293b2ceae5ef47595f2744b87e05917bece6536c43c9656f7b5f15c4f491f20965149d75231b860ccfa09c13e0ed3017d6e060a305cae6013bf3e99a11cb61c4b2144029e05638113800054301181e082575e51431471098da77ff369d430698060de2cd77368616955579402a8a665cd4d36836b1e8b3a1a22d3df17aa867f089cbfdacfb711543f412f0231b7df37892e0f1851f0a339f9a6b830ccf5668126c8739f6df9b98bae3f3751c7f2b34db511e643345f04e3654444c91c5e350ca6b9e5fedd993db1fd9d53d417c946f99c90476b482f9e2d81363c005385bdcbd1f16f4ccda95055e73aec88a8b8e327133382551e4d9592457bc4650056771a067a08a4a1bcf5e71e92499d9eff0dfe70dede42c43d54aff7279ecec11a285965b19f005f7d5523715334507ef384787e6a62a765dc202f2dd832f08b41181fe46e2dfa1d7146764a1ff27239fdfe9d676b8294ab95fda4bf9cfd24ccccd974981a95ff0eb2d29f0a45690ba7f2b01aedbac4c760c17fe235318498cc279f4b3445f15cafc7bd1610ee0099eccb661088f09199a2734e7566bd25e6137441797b4954b66a55d9aab020388eadaa76d164afc64e1a3efd76454d11a69eb042c75b43618a048f2d422b14b9830a2b17686b242c629e79db422293222958576d4172594b072244301f70644c6d2b02339631af378f8aa4bf54b4e2d36cc04d6f63ffb50b188c56b7134d0bfd96e05defbae3c6111c1927819e12e5ab5cd5da65b9887cf27f4e08786ba5d349090dca715207caf84994e372708d30bac734ed24357f553e750a1a7f2443e6212a92ae051a4eabec95cca73d39e7d6451520bc1ac1211a3a30e3901b939723e8851515e48842fd515a3ba509da44fb91b854c723466c379216f919223cdc4ef2b2a7af390ca94a5031a94e37c0c55f77b1b6a2d7a141cd033f9f16045205671156079564c3c0d9aaa7cadb6f67523013a252de14073242dcadc1729066cb9ce1245f3516001491c6cca89fc937650ee3d13d90aa1ff52b0efc29afde1a8341a563d1379ef66f7171ad07c58e39b63895095291936a5eb53e957944306d83ec34ab6f839b1475d5f84f67914a2c5781d519e5256a9664d9c4fea546e98f3b66b9b3262cc40249dfd84a9edc360991e1d39c9ecb9653536717c5f2e54959bb69b953801804376901ba5cb29fbcb4a0185b317119c80b9447408e52b28e4bcc2163e4043eba9b900f6cfe6e483002bb25e2a99f4d7f4a49d20da0d780c88b2d794c10bbd94f91b0deeef7f3294850051f4f8e03cfbf1d7ad7347da2ffb481e0b7c1a1bfa5304f1cd451aec59cbab3ff029bde22d119fcee66c8b95aad7a79accb4bcba502e901c1f70a4d6f3154d5984035ad5bee805a5615ee768455a5da157598d09c93b1231086b4b17f682534d7a937c8d812a10a4fb427ebf2d1703e59feb742b3c963080a24f358d466ba75aaa582c35ba24ae657d7500cce84d365311104ef450c8dd5ca913c537870890c226d90021a936e465b94e70a9edefba66dde4f0eaed251c7f28ae6926ab249fe3c9ec67990ef8bf3ec741a36b379a2f9c0adaf3b9f60c4abd1a55369b5d4409131778e49be79e83308927eab06e6a3d5d6043ef064109f7715422b92944a0155cbd84080fdd00ecef6ef43e912625d8c363639e23c08ea0dc9577cf114e0299c5825cce26dca7651594705453ee13051d7d787a0f407696cea3fb0f45e6477bf654e839082c8595539541df356916e31149b02dd5c84fb3994b64797b4cc266b398d275f737444f2f023b653c773ca2aabe90f4f6e3ce671e3ea6bf2c76248d27e6da10a10d7d0a54ae6c2c4db74dd76128bd9e20871b26f782ea408ac87cc386414f2327fef2c72f0c98d6603468b1c5dc7c16139a999cdb7dd31eed01d08b1eef2e79190423cb07d31206fe6ab1fddda613a25fd2c03f1d9d4b381d7fd960a7b95c79450fa073985a69408b0af637c07fb3ab466827c2202e0ed1d873ce045c7b9a0cdbbfa63f2ee2d082e77dda3bcbf752bc0a9020767c0a13c0678cf26fd949167aafbf4147e5519e5cfa3933be5cdcc09c12118661650c645738d7ef3fb77ca8126ee6351a33ee7e0988526ffa538b15f3f69c26a0a24184c112caee163406429069d1ba26600d923fa87794e0722fb3ed704b3b351c751c28be08237b92d37c732108839d4d8aca3c69031dbf59dba29561d09d992ac452431f6304a75c6483935d088dc08756695385e4261d1be0cf59ed621124d09a57b0cce288b62b59590a983eab3d981dfb934c0405b62b09635ab6af34a46e57089f4d69110ba736d3495d848126bd939e18216ab62c72b80750ca0eecfc1dab20a1c7939ab85e9980d4547c4c8d7b6e9eb7bec72e34e1406b84fa01dc2667dd4bf72d0c1cbe"}, {0xd0, 0xff, 0x8, "ae7ef702bb8f7ab43cd070bc09ff623a883aba3f4346d5d4c05c84b095b7ea8df714c5a3154c9ffb6cae5378dea66f56a8a74d2867cbb7d79325d0f688160f977f16e837a2b27a98a46551f87197bcd7dca38daa115a63cefedaca18b051ca8cca7017d10d41f90a4e8bb3979e5141499a0f22b17e14134114abc2e766f02e6ba488ad354616f00c92585cacbb270beccfe59f474bd9b6ee56c79031b241260c00932708853274bc4d4fee67a5c97c3edd270970912c9d051a056733b9"}, {0xe8, 0x10a, 0x10001, "f3d078aa78a8a7d328e19d2e3d6ec1dc2f4ebcd51c08b68180d530456095dab0946eee19270a4f8d8cb98f524c2410ba85891dcde3f97ae34a61de09fa64185bbebf8c426dfc89f6ccfed0636349d62e82e0112fa259cc7b1344b07603c5887f06c4ab73b5e5f95ecf8894a771c83908486ef9b70c883fd89025286333c30a949db5f06d04212257e7a2daa67cfb91125324923f56e95b34d7ddc0696d37246b10eb5179165e2fe403480611c5bea21cbd72e9b2d240bf52226292abd2a028340b48e9880831b32cb6529b4c7b1d339dfc2917d31c"}], 0x2298}, 0x4) socket$inet6_sctp(0xa, 0x0, 0x84) [ 173.021678] FAULT_INJECTION: forcing a failure. [ 173.021678] name failslab, interval 1, probability 0, space 0, times 0 [ 173.062191] CPU: 1 PID: 11348 Comm: syz-executor.2 Not tainted 4.14.151 #0 [ 173.069252] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 173.078635] Call Trace: [ 173.078658] dump_stack+0x138/0x197 [ 173.078677] should_fail.cold+0x10f/0x159 [ 173.078692] should_failslab+0xdb/0x130 [ 173.084884] kmem_cache_alloc_node+0x287/0x780 [ 173.084903] __alloc_skb+0x9c/0x500 [ 173.084914] ? skb_scrub_packet+0x4b0/0x4b0 [ 173.105642] ? netlink_has_listeners+0x20a/0x330 [ 173.110404] kobject_uevent_env+0x781/0xc23 [ 173.114713] kobject_uevent+0x20/0x26 [ 173.118496] lo_ioctl+0x11e7/0x1ce0 [ 173.122106] ? loop_probe+0x160/0x160 [ 173.125889] blkdev_ioctl+0x96b/0x1860 [ 173.129765] ? blkpg_ioctl+0x980/0x980 [ 173.133654] ? __might_sleep+0x93/0xb0 [ 173.137531] ? __fget+0x210/0x370 [ 173.140975] block_ioctl+0xde/0x120 [ 173.144592] ? blkdev_fallocate+0x3b0/0x3b0 [ 173.148906] do_vfs_ioctl+0x7ae/0x1060 [ 173.152792] ? selinux_file_mprotect+0x5d0/0x5d0 [ 173.157549] ? lock_downgrade+0x740/0x740 [ 173.161713] ? ioctl_preallocate+0x1c0/0x1c0 [ 173.166103] ? __fget+0x237/0x370 [ 173.169626] ? security_file_ioctl+0x89/0xb0 [ 173.174018] SyS_ioctl+0x8f/0xc0 [ 173.177366] ? do_vfs_ioctl+0x1060/0x1060 [ 173.181510] do_syscall_64+0x1e8/0x640 [ 173.185399] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 173.190230] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 173.195530] RIP: 0033:0x45a087 [ 173.198704] RSP: 002b:00007f8cf79a0a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 07:06:08 executing program 5: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, 0x0) r1 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) ioctl$VIDIOC_QUERYCAP(r1, 0x80685600, &(0x7f0000000040)) syz_open_dev$mouse(0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f00000000c0)) 07:06:08 executing program 0: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, 0x0) r1 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) ioctl$VIDIOC_QUERYCAP(r1, 0x80685600, &(0x7f0000000040)) syz_open_dev$mouse(0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f00000000c0)) [ 173.206412] RAX: ffffffffffffffda RBX: 0000000020000068 RCX: 000000000045a087 [ 173.213665] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 173.220920] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 173.228186] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 173.235566] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 07:06:08 executing program 3: syz_mount_image$btrfs(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) 07:06:08 executing program 5: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, 0x0) r1 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) ioctl$VIDIOC_QUERYCAP(r1, 0x80685600, &(0x7f0000000040)) syz_open_dev$mouse(0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f00000000c0)) 07:06:08 executing program 0: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, 0x0) r1 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) ioctl$VIDIOC_QUERYCAP(r1, 0x80685600, &(0x7f0000000040)) syz_open_dev$mouse(0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f0000000140)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3235004000000f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4d}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f00000000c0)) 07:06:08 executing program 4: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x4, &(0x7f0000000540)={0x0, 0x989680}) socket$inet6_sctp(0xa, 0x1, 0x84) 07:06:08 executing program 2 (fault-call:0 fault-nth:35): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 07:06:08 executing program 0: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, 0x0) r1 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) ioctl$VIDIOC_QUERYCAP(r1, 0x80685600, &(0x7f0000000040)) syz_open_dev$mouse(&(0x7f0000000340)='/dev/input/mouse#\x00', 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f0000000140)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3235004000000f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4d}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f00000000c0)) 07:06:08 executing program 5: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, 0x0) r1 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) ioctl$VIDIOC_QUERYCAP(r1, 0x80685600, &(0x7f0000000040)) syz_open_dev$mouse(0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f00000000c0)) 07:06:08 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', 0x0, 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) [ 173.583088] FAULT_INJECTION: forcing a failure. [ 173.583088] name failslab, interval 1, probability 0, space 0, times 0 07:06:08 executing program 4: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, 0x0) r1 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) ioctl$VIDIOC_QUERYCAP(r1, 0x80685600, &(0x7f0000000040)) syz_open_dev$mouse(&(0x7f0000000340)='/dev/input/mouse#\x00', 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f0000000140)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3235004000000f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4d}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f00000000c0)) 07:06:08 executing program 1: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) r0 = shmget$private(0x0, 0x4000, 0x0, &(0x7f0000ffa000/0x4000)=nil) shmctl$SHM_LOCK(r0, 0xb) shmctl$IPC_RMID(r0, 0x0) r1 = syz_open_dev$media(&(0x7f0000000080)='/dev/media#\x00', 0x4, 0x60840) ioctl$NBD_SET_SIZE_BLOCKS(r1, 0xab07, 0x4) [ 173.634968] CPU: 0 PID: 11415 Comm: syz-executor.2 Not tainted 4.14.151 #0 [ 173.642037] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 173.651494] Call Trace: [ 173.654093] dump_stack+0x138/0x197 [ 173.657739] should_fail.cold+0x10f/0x159 [ 173.661899] should_failslab+0xdb/0x130 [ 173.665887] kmem_cache_alloc_node_trace+0x280/0x770 [ 173.671008] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 173.676475] __kmalloc_node_track_caller+0x3d/0x80 [ 173.681421] __kmalloc_reserve.isra.0+0x40/0xe0 [ 173.686132] __alloc_skb+0xcf/0x500 [ 173.689794] ? skb_scrub_packet+0x4b0/0x4b0 [ 173.694105] ? netlink_has_listeners+0x20a/0x330 [ 173.698902] kobject_uevent_env+0x781/0xc23 [ 173.703224] kobject_uevent+0x20/0x26 [ 173.707008] lo_ioctl+0x11e7/0x1ce0 [ 173.710629] ? loop_probe+0x160/0x160 [ 173.714436] blkdev_ioctl+0x96b/0x1860 [ 173.718348] ? blkpg_ioctl+0x980/0x980 [ 173.722250] ? __might_sleep+0x93/0xb0 [ 173.726261] ? __fget+0x210/0x370 [ 173.729729] block_ioctl+0xde/0x120 [ 173.733362] ? blkdev_fallocate+0x3b0/0x3b0 [ 173.737691] do_vfs_ioctl+0x7ae/0x1060 [ 173.741588] ? selinux_file_mprotect+0x5d0/0x5d0 [ 173.746356] ? lock_downgrade+0x740/0x740 [ 173.750519] ? ioctl_preallocate+0x1c0/0x1c0 [ 173.754953] ? __fget+0x237/0x370 [ 173.758414] ? security_file_ioctl+0x89/0xb0 [ 173.762813] SyS_ioctl+0x8f/0xc0 [ 173.766176] ? do_vfs_ioctl+0x1060/0x1060 [ 173.770318] do_syscall_64+0x1e8/0x640 [ 173.774202] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 173.779029] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 173.784303] RIP: 0033:0x45a087 [ 173.787523] RSP: 002b:00007f8cf79a0a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 173.795214] RAX: ffffffffffffffda RBX: 0000000020000068 RCX: 000000000045a087 [ 173.802482] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 173.809750] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 173.817015] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 173.824285] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 07:06:08 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', 0x0, 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) 07:06:08 executing program 5: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, 0x0) r1 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) ioctl$VIDIOC_QUERYCAP(r1, 0x80685600, &(0x7f0000000040)) syz_open_dev$mouse(0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f00000000c0)) 07:06:09 executing program 0: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, 0x0) r1 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) ioctl$VIDIOC_QUERYCAP(r1, 0x80685600, &(0x7f0000000040)) syz_open_dev$mouse(&(0x7f0000000340)='/dev/input/mouse#\x00', 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f0000000140)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3235004000000f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4d}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f00000000c0)) 07:06:09 executing program 2 (fault-call:0 fault-nth:36): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 07:06:09 executing program 5: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, 0x0) r1 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) ioctl$VIDIOC_QUERYCAP(r1, 0x80685600, &(0x7f0000000040)) syz_open_dev$mouse(0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f00000000c0)) 07:06:09 executing program 4: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, 0x0) r1 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) ioctl$VIDIOC_QUERYCAP(r1, 0x80685600, &(0x7f0000000040)) syz_open_dev$mouse(0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f00000000c0)) 07:06:09 executing program 1: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x0, 0x0) keyctl$KEYCTL_CAPABILITIES(0x1f, &(0x7f0000000340)=""/4096, 0x1000) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$PERF_EVENT_IOC_RESET(r0, 0x2403, 0x8000) r1 = syz_open_procfs(0x0, &(0x7f00000006c0)='Net/3\x97OOT\x15\x00\xb6\xcf@e\xd3r\x82\x9fc') ioctl$VIDIOC_PREPARE_BUF(r1, 0xc058565d, &(0x7f00000005c0)={0x0, 0xb, 0x4, 0x0, {0x0, 0x7530}, {0x0, 0x2, 0x81, 0x10, 0x24, 0x6, "cf676f53"}, 0x80, 0x5, @offset=0x9, 0x4}) mq_timedsend(r1, &(0x7f0000000480)="c1cc3d2c05c16add6c964974e00652617b35c74bd5a620d3170df3c2f134d5beb838b0f00c6ca198401126d02772777a96ead8602a94c5450ea4e5c8b02fc6e876ee2383fc4faa682ed6a91a53a08a1fdd9839c170a6f81ede814c769cf15c688c8514b5f4f1dc0a50019813ce4459df629cd480519073a5f929cd5e59d0058ea64475a46e924294d5ef1b4b158e59d9c923a0", 0x93, 0x4, &(0x7f0000000540)={0x0, 0x989680}) setsockopt$inet_udp_int(r1, 0x11, 0x9d9d2483dae8f8ff, &(0x7f00000000c0)=0x3, 0x4) [ 174.017191] FAULT_INJECTION: forcing a failure. [ 174.017191] name failslab, interval 1, probability 0, space 0, times 0 [ 174.080787] CPU: 0 PID: 11458 Comm: syz-executor.2 Not tainted 4.14.151 #0 [ 174.087857] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 174.097212] Call Trace: [ 174.099815] dump_stack+0x138/0x197 [ 174.103484] should_fail.cold+0x10f/0x159 [ 174.107645] should_failslab+0xdb/0x130 [ 174.111629] kmem_cache_alloc_node_trace+0x280/0x770 [ 174.116725] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 174.122160] __kmalloc_node_track_caller+0x3d/0x80 [ 174.127078] __kmalloc_reserve.isra.0+0x40/0xe0 [ 174.131747] __alloc_skb+0xcf/0x500 [ 174.135355] ? skb_scrub_packet+0x4b0/0x4b0 [ 174.139671] ? netlink_has_listeners+0x20a/0x330 [ 174.144427] kobject_uevent_env+0x781/0xc23 [ 174.148736] kobject_uevent+0x20/0x26 [ 174.152532] lo_ioctl+0x11e7/0x1ce0 [ 174.156327] ? loop_probe+0x160/0x160 [ 174.160250] blkdev_ioctl+0x96b/0x1860 [ 174.164147] ? blkpg_ioctl+0x980/0x980 [ 174.168043] ? __might_sleep+0x93/0xb0 [ 174.171916] ? __fget+0x210/0x370 [ 174.175364] block_ioctl+0xde/0x120 [ 174.178993] ? blkdev_fallocate+0x3b0/0x3b0 [ 174.183297] do_vfs_ioctl+0x7ae/0x1060 [ 174.187168] ? selinux_file_mprotect+0x5d0/0x5d0 [ 174.191918] ? lock_downgrade+0x740/0x740 [ 174.196063] ? ioctl_preallocate+0x1c0/0x1c0 [ 174.200519] ? __fget+0x237/0x370 [ 174.203984] ? security_file_ioctl+0x89/0xb0 [ 174.208394] SyS_ioctl+0x8f/0xc0 [ 174.211769] ? do_vfs_ioctl+0x1060/0x1060 [ 174.215902] do_syscall_64+0x1e8/0x640 [ 174.219782] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 174.224610] entry_SYSCALL_64_after_hwframe+0x42/0xb7 07:06:09 executing program 0: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x0, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, 0x0) r1 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) ioctl$VIDIOC_QUERYCAP(r1, 0x80685600, &(0x7f0000000040)) syz_open_dev$mouse(&(0x7f0000000340)='/dev/input/mouse#\x00', 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f0000000140)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3235004000000f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4d}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f00000000c0)) 07:06:09 executing program 4: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, 0x0) r1 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) ioctl$VIDIOC_QUERYCAP(r1, 0x80685600, &(0x7f0000000040)) syz_open_dev$mouse(&(0x7f0000000340)='/dev/input/mouse#\x00', 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f0000000140)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3235004000000f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4d}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f00000000c0)) [ 174.229870] RIP: 0033:0x45a087 [ 174.233049] RSP: 002b:00007f8cf79a0a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 174.240738] RAX: ffffffffffffffda RBX: 0000000020000068 RCX: 000000000045a087 [ 174.248007] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 174.255257] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 174.262605] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 174.269863] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 07:06:09 executing program 5: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, 0x0) r1 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) ioctl$VIDIOC_QUERYCAP(r1, 0x80685600, &(0x7f0000000040)) syz_open_dev$mouse(0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, 0x0) 07:06:09 executing program 2 (fault-call:0 fault-nth:37): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 07:06:09 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', 0x0, 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) [ 174.515164] FAULT_INJECTION: forcing a failure. [ 174.515164] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 174.527020] CPU: 1 PID: 11494 Comm: syz-executor.2 Not tainted 4.14.151 #0 [ 174.534045] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 174.543410] Call Trace: [ 174.546019] dump_stack+0x138/0x197 [ 174.549672] should_fail.cold+0x10f/0x159 [ 174.553845] __alloc_pages_nodemask+0x1d6/0x7a0 [ 174.558623] ? fs_reclaim_acquire+0x20/0x20 [ 174.562965] ? __alloc_pages_slowpath+0x2930/0x2930 [ 174.568084] cache_grow_begin+0x80/0x400 [ 174.572150] kmem_cache_alloc+0x6a6/0x780 [ 174.576295] ? selinux_file_mprotect+0x5d0/0x5d0 [ 174.581637] ? lock_downgrade+0x740/0x740 [ 174.585792] getname_flags+0xcb/0x580 [ 174.589622] SyS_mkdir+0x7e/0x200 [ 174.593072] ? SyS_mkdirat+0x210/0x210 [ 174.596945] ? do_syscall_64+0x53/0x640 [ 174.600904] ? SyS_mkdirat+0x210/0x210 [ 174.604774] do_syscall_64+0x1e8/0x640 [ 174.608732] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 174.613562] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 174.618751] RIP: 0033:0x459637 [ 174.621931] RSP: 002b:00007f8cf79a0a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 174.629632] RAX: ffffffffffffffda RBX: 0000000020000068 RCX: 0000000000459637 [ 174.636972] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 0000000020000100 [ 174.644222] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 174.651485] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 174.658738] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 07:06:09 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) 07:06:09 executing program 5: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, 0x0) r1 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) ioctl$VIDIOC_QUERYCAP(r1, 0x80685600, &(0x7f0000000040)) syz_open_dev$mouse(0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, 0x0) 07:06:09 executing program 4: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, 0x0) r1 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) ioctl$VIDIOC_QUERYCAP(r1, 0x80685600, &(0x7f0000000040)) syz_open_dev$mouse(0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f00000000c0)) 07:06:09 executing program 5: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, 0x0) r1 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) ioctl$VIDIOC_QUERYCAP(r1, 0x80685600, &(0x7f0000000040)) syz_open_dev$mouse(0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, 0x0) 07:06:09 executing program 0: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, 0x0) r1 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) ioctl$VIDIOC_QUERYCAP(r1, 0x80685600, &(0x7f0000000040)) syz_open_dev$mouse(&(0x7f0000000340)='/dev/input/mouse#\x00', 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f0000000140)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3235004000000f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4d}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f00000000c0)) 07:06:09 executing program 4: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2", 0x24, 0x10000}], 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000006c0)='Net/3\x97OOT\x15\x00\xb6\xcf@e\xd3r\x82\x9fc') ioctl$VIDIOC_PREPARE_BUF(r0, 0xc058565d, &(0x7f00000005c0)={0x0, 0xb, 0x4, 0x0, {0x0, 0x7530}, {0x0, 0x2, 0x81, 0x10, 0x24, 0x6, "cf676f53"}, 0x80, 0x5, @offset=0x9, 0x4}) socket$inet6_sctp(0xa, 0x1, 0x84) 07:06:10 executing program 1: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000006c0)='Net/3\x97OOT\x15\x00\xb6\xcf@e\xd3r\x82\x9fc') ioctl$VIDIOC_PREPARE_BUF(r0, 0xc058565d, &(0x7f00000005c0)={0x0, 0xb, 0x4, 0x0, {0x0, 0x7530}, {0x0, 0x2, 0x81, 0x10, 0x24, 0x6, "cf676f53"}, 0x80, 0x5, @offset=0x9, 0x4}) mq_timedsend(r0, &(0x7f0000000480)="c1cc3d2c05c16add6c964974e00652617b35c74bd5a620d3170df3c2f134d5beb838b0f00c6ca198401126d02772777a96ead8602a94c5450ea4e5c8b02fc6e876ee2383fc4faa682ed6a91a53a08a1fdd9839c170a6f81ede814c769cf15c688c8514b5f4f1dc0a50019813ce4459df629cd480519073a5f929cd5e59d0058ea64475a46e924294d5ef1b4b158e59d9c923a0", 0x93, 0x4, &(0x7f0000000540)={0x0, 0x989680}) ioctl$SNDRV_CTL_IOCTL_PVERSION(r0, 0x80045500, &(0x7f0000000080)) socket$inet6_sctp(0xa, 0x0, 0x84) 07:06:10 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) 07:06:10 executing program 2 (fault-call:0 fault-nth:38): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 07:06:10 executing program 5: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, 0x0) r1 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) ioctl$VIDIOC_QUERYCAP(r1, 0x80685600, &(0x7f0000000040)) syz_open_dev$mouse(&(0x7f0000000340)='/dev/input/mouse#\x00', 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f0000000140)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3235004000000f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4d}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f00000000c0)) 07:06:10 executing program 4 (fault-call:6 fault-nth:0): sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, 0x0) r1 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) ioctl$VIDIOC_QUERYCAP(r1, 0x80685600, &(0x7f0000000040)) syz_open_dev$mouse(0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f00000000c0)) 07:06:10 executing program 0 (fault-call:0 fault-nth:0): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x0, 0x989680}) socket$inet6_sctp(0xa, 0x0, 0x84) [ 175.408274] FAULT_INJECTION: forcing a failure. [ 175.408274] name failslab, interval 1, probability 0, space 0, times 0 [ 175.435850] CPU: 0 PID: 11557 Comm: syz-executor.0 Not tainted 4.14.151 #0 [ 175.442916] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 175.452288] Call Trace: [ 175.452305] dump_stack+0x138/0x197 [ 175.452323] should_fail.cold+0x10f/0x159 [ 175.452340] should_failslab+0xdb/0x130 [ 175.452354] __kmalloc+0x2f0/0x7a0 [ 175.452363] ? __sb_end_write+0xc1/0x100 [ 175.452373] ? strnlen_user+0x12f/0x1a0 [ 175.452381] ? SyS_memfd_create+0xba/0x3a0 [ 175.452393] SyS_memfd_create+0xba/0x3a0 [ 175.458629] ? shmem_fcntl+0x130/0x130 [ 175.458642] ? do_syscall_64+0x53/0x640 [ 175.458654] ? shmem_fcntl+0x130/0x130 [ 175.472250] FAULT_INJECTION: forcing a failure. [ 175.472250] name failslab, interval 1, probability 0, space 0, times 0 [ 175.474331] do_syscall_64+0x1e8/0x640 [ 175.474342] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 175.474361] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 175.474369] RIP: 0033:0x45a219 [ 175.474373] RSP: 002b:00007f46eab45a88 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 175.474388] RAX: ffffffffffffffda RBX: 0000000020000040 RCX: 000000000045a219 [ 175.474393] RDX: 0000000020000068 RSI: 0000000000000000 RDI: 00000000004bf2b7 [ 175.549059] RBP: 000000000075bf20 R08: fe03f80fe03f80ff R09: 00000000fbad8001 [ 175.556323] R10: 0000000000010000 R11: 0000000000000246 R12: 00007f46eab466d4 [ 175.563588] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 [ 175.570878] CPU: 1 PID: 11560 Comm: syz-executor.2 Not tainted 4.14.151 #0 [ 175.577905] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 175.577913] Call Trace: [ 175.589846] dump_stack+0x138/0x197 [ 175.593746] should_fail.cold+0x10f/0x159 [ 175.593763] should_failslab+0xdb/0x130 [ 175.601970] kmem_cache_alloc+0x2d7/0x780 [ 175.606128] ? __d_lookup+0x3a2/0x670 [ 175.609940] ? mark_held_locks+0xb1/0x100 [ 175.614104] ? d_lookup+0xe5/0x240 [ 175.617660] __d_alloc+0x2d/0x9f0 [ 175.621130] d_alloc+0x4d/0x270 [ 175.624528] __lookup_hash+0x58/0x180 [ 175.628358] filename_create+0x16c/0x430 [ 175.632406] ? kern_path_mountpoint+0x40/0x40 [ 175.636890] SyS_mkdir+0x92/0x200 [ 175.640325] ? SyS_mkdirat+0x210/0x210 [ 175.644200] ? do_syscall_64+0x53/0x640 [ 175.648156] ? SyS_mkdirat+0x210/0x210 [ 175.652027] do_syscall_64+0x1e8/0x640 [ 175.655982] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 175.660810] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 175.665981] RIP: 0033:0x459637 [ 175.669152] RSP: 002b:00007f8cf79a0a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 175.676846] RAX: ffffffffffffffda RBX: 0000000020000068 RCX: 0000000000459637 [ 175.684110] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 0000000020000100 [ 175.691364] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 175.698628] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 07:06:10 executing program 4: pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) getsockopt$CAN_RAW_LOOPBACK(r0, 0x65, 0x3, &(0x7f0000000100), &(0x7f0000000140)=0x4) sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x4040, 0x0) r2 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r2, 0x8934, 0x0) r3 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) ioctl$VIDIOC_QUERYCAP(r3, 0x80685600, &(0x7f0000000040)) syz_open_dev$mouse(0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) r4 = syz_open_procfs(0x0, &(0x7f00000006c0)='Net/3\x97OOT\x15\x00\xb6\xcf@e\xd3r\x82\x9fc') lseek(r1, 0xdb, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r5, 0x407, 0x0) write(r5, &(0x7f0000000340), 0x41395527) ioctl$EXT4_IOC_ALLOC_DA_BLKS(r5, 0x660c) setsockopt$ALG_SET_KEY(r5, 0x117, 0x1, &(0x7f0000000380)="0c4f4d16cf2f3a2dd8a5046790a60c91e487dc9ca281434dbc169c6555a654da5e42c953490634b417ec9535653162fc5730d4c8dab3e136550ed7d31fa8d7094afd6e5154349155e6ef7e5fb08d79c283188a3f28548ab4366e6863ba5561aedbd1ee3f9a2c5646e4a9c2806b231528bca7ee2134e39966c40bcb1371a7e7691672a8dc9bda07175f11a9160cba3f0ddb78db3b2e184e1e9aa371691df9f49a5e3343bce4e4b8a2c80831b63d95ed57cf89982b317abf1cf8a71078d00dd5fa9151c142fa4bb765d503150f5f6f34284c7480a5091e9b246e", 0xd9) fsetxattr$trusted_overlay_nlink(r5, &(0x7f0000000240)='trusted.overlay.nlink\x00', &(0x7f0000000300)={'U+', 0x7}, 0x28, 0x3) r6 = getpid() sched_setattr(r6, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0) ioctl$SNDRV_CTL_IOCTL_ELEM_INFO(r5, 0xc1105511, &(0x7f0000000240)={{0x0, 0x2, 0x1, 0x1, 'syz1\x00', 0x8}, 0x6, 0x40, 0x0, r6, 0x3, 0x42, 'syz0\x00', &(0x7f0000000180)=['/dev/radio#\x00', '/dev/radio#\x00', '\x00'], 0x19, [], [0x4, 0x7f, 0x1, 0x7ff]}) ioctl$VIDIOC_PREPARE_BUF(r4, 0xc058565d, &(0x7f00000005c0)={0x0, 0xb, 0x4, 0x0, {0x0, 0x7530}, {0x0, 0x2, 0x81, 0x10, 0x24, 0x6, "cf676f53"}, 0x80, 0x5, @offset=0x9, 0x4}) mq_timedsend(r4, &(0x7f0000000480)="c1cc3d2c05c16add6c964974e00652617b35c74bd5a620d3170df3c2f134d5beb838b0f00c6ca198401126d02772777a96ead8602a94c5450ea4e5c8b02fc6e876ee2383fc4faa682ed6a91a53a08a1fdd9839c170a6f81ede814c769cf15c688c8514b5f4f1dc0a50019813ce4459df629cd480519073a5f929cd5e59d0058ea64475a46e924294d5ef1b4b158e59d9c923a0", 0x93, 0x4, &(0x7f0000000540)={0x0, 0x989680}) ioctl$KVM_CREATE_PIT2(r4, 0x4040ae77, &(0x7f00000000c0)) [ 175.705890] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 07:06:10 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) 07:06:10 executing program 2 (fault-call:0 fault-nth:39): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 07:06:10 executing program 0 (fault-call:0 fault-nth:1): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x0, 0x989680}) socket$inet6_sctp(0xa, 0x0, 0x84) 07:06:10 executing program 5 (fault-call:0 fault-nth:0): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) syz_open_procfs(0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) socket$inet6_sctp(0xa, 0x1, 0x84) [ 175.863304] FAULT_INJECTION: forcing a failure. [ 175.863304] name failslab, interval 1, probability 0, space 0, times 0 [ 175.903177] FAULT_INJECTION: forcing a failure. [ 175.903177] name failslab, interval 1, probability 0, space 0, times 0 [ 175.939549] FAULT_INJECTION: forcing a failure. [ 175.939549] name failslab, interval 1, probability 0, space 0, times 0 [ 175.947227] CPU: 0 PID: 11594 Comm: syz-executor.0 Not tainted 4.14.151 #0 [ 175.957850] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 175.967566] Call Trace: [ 175.970196] dump_stack+0x138/0x197 [ 175.974022] should_fail.cold+0x10f/0x159 [ 175.978342] should_failslab+0xdb/0x130 [ 175.982344] kmem_cache_alloc+0x2d7/0x780 [ 175.986515] ? __alloc_fd+0x1d4/0x4a0 [ 175.990350] __d_alloc+0x2d/0x9f0 [ 175.993833] ? lock_downgrade+0x740/0x740 [ 175.998011] d_alloc_pseudo+0x1e/0x30 [ 176.001855] __shmem_file_setup.part.0+0xd8/0x400 [ 176.006842] ? __alloc_fd+0x1d4/0x4a0 [ 176.011890] ? shmem_fill_super+0x8c0/0x8c0 [ 176.016737] SyS_memfd_create+0x1f9/0x3a0 [ 176.020930] ? shmem_fcntl+0x130/0x130 [ 176.024849] ? do_syscall_64+0x53/0x640 [ 176.028854] ? shmem_fcntl+0x130/0x130 [ 176.032878] do_syscall_64+0x1e8/0x640 [ 176.036782] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 176.041657] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 176.046876] RIP: 0033:0x45a219 [ 176.050083] RSP: 002b:00007f46eab45a88 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 176.057813] RAX: ffffffffffffffda RBX: 0000000020000040 RCX: 000000000045a219 [ 176.065723] RDX: 0000000020000068 RSI: 0000000000000000 RDI: 00000000004bf2b7 [ 176.073284] RBP: 000000000075bf20 R08: fe03f80fe03f80ff R09: 00000000fbad8001 [ 176.080578] R10: 0000000000010000 R11: 0000000000000246 R12: 00007f46eab466d4 [ 176.087919] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 [ 176.098633] CPU: 1 PID: 11603 Comm: syz-executor.5 Not tainted 4.14.151 #0 [ 176.105697] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 176.115143] Call Trace: [ 176.117745] dump_stack+0x138/0x197 [ 176.121910] should_fail.cold+0x10f/0x159 [ 176.127455] should_failslab+0xdb/0x130 [ 176.132341] __kmalloc+0x2f0/0x7a0 [ 176.135881] ? __sb_end_write+0xc1/0x100 [ 176.140258] ? strnlen_user+0x12f/0x1a0 [ 176.144241] ? SyS_memfd_create+0xba/0x3a0 [ 176.148512] SyS_memfd_create+0xba/0x3a0 [ 176.152706] ? shmem_fcntl+0x130/0x130 [ 176.158795] ? do_syscall_64+0x53/0x640 [ 176.162949] ? shmem_fcntl+0x130/0x130 [ 176.168538] do_syscall_64+0x1e8/0x640 [ 176.173730] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 176.178579] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 176.183768] RIP: 0033:0x45a219 [ 176.186959] RSP: 002b:00007f6768d5fa88 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 176.194931] RAX: ffffffffffffffda RBX: 0000000020000040 RCX: 000000000045a219 [ 176.202288] RDX: 0000000020000068 RSI: 0000000000000000 RDI: 00000000004bf2b7 [ 176.209593] RBP: 000000000075bf20 R08: fe03f80fe03f80ff R09: 00000000fbad8001 [ 176.216864] R10: 0000000000010000 R11: 0000000000000246 R12: 00007f6768d606d4 [ 176.224230] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 [ 176.231522] CPU: 0 PID: 11591 Comm: syz-executor.2 Not tainted 4.14.151 #0 [ 176.238626] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 176.248342] Call Trace: [ 176.251045] dump_stack+0x138/0x197 [ 176.254698] should_fail.cold+0x10f/0x159 [ 176.258874] should_failslab+0xdb/0x130 [ 176.262871] kmem_cache_alloc+0x2d7/0x780 [ 176.267043] ? __debug_object_init+0x171/0x8e0 [ 176.271652] ? ext4_alloc_inode+0x1d/0x610 [ 176.276100] selinux_inode_alloc_security+0xb6/0x2a0 [ 176.281256] security_inode_alloc+0x94/0xd0 07:06:11 executing program 1: r0 = syz_open_procfs(0x0, &(0x7f00000006c0)='Net/3\x97OOT\x15\x00\xb6\xcf@e\xd3r\x82\x9fc') ioctl$VIDIOC_PREPARE_BUF(r0, 0xc058565d, &(0x7f00000005c0)={0x0, 0xb, 0x4, 0x0, {0x0, 0x7530}, {0x0, 0x2, 0x81, 0x10, 0x24, 0x6, "cf676f53"}, 0x80, 0x5, @offset=0x9, 0x4}) mq_timedsend(r0, &(0x7f0000000480)="c1cc3d2c05c16add6c964974e00652617b35c74bd5a620d3170df3c2f134d5beb838b0f00c6ca198401126d02772777a96ead8602a94c5450ea4e5c8b02fc6e876ee2383fc4faa682ed6a91a53a08a1fdd9839c170a6f81ede814c769cf15c688c8514b5f4f1dc0a50019813ce4459df629cd480519073a5f929cd5e59d0058ea64475a46e924294d5ef1b4b158e59d9c923a0", 0x93, 0x4, &(0x7f0000000540)={0x0, 0x989680}) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r4, 0x407, 0x0) write(r4, &(0x7f0000000340), 0x41395527) ioctl$EXT4_IOC_ALLOC_DA_BLKS(r4, 0x660c) setsockopt$ALG_SET_KEY(r4, 0x117, 0x1, &(0x7f0000000380)="0c4f4d16cf2f3a2dd8a5046790a60c91e487dc9ca281434dbc169c6555a654da5e42c953490634b417ec9535653162fc5730d4c8dab3e136550ed7d31fa8d7094afd6e5154349155e6ef7e5fb08d79c283188a3f28548ab4366e6863ba5561aedbd1ee3f9a2c5646e4a9c2806b231528bca7ee2134e39966c40bcb1371a7e7691672a8dc9bda07175f11a9160cba3f0ddb78db3b2e184e1e9aa371691df9f49a5e3343bce4e4b8a2c80831b63d95ed57cf89982b317abf1cf8a71078d00dd5fa9151c142fa4bb765d503150f5f6f34284c7480a5091e9b246e", 0xd9) fsetxattr$trusted_overlay_nlink(r4, &(0x7f0000000240)='trusted.overlay.nlink\x00', &(0x7f0000000300)={'U+', 0x7}, 0x28, 0x3) openat$selinux_checkreqprot(0xffffffffffffff9c, &(0x7f00000001c0)='/selinux/checkreqprot\x00', 0x8540, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r5, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f0000000700)={{{@in6=@initdev, @in=@empty, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in=@loopback}}, &(0x7f0000000280)=0xe8) getsockopt$inet_IP_IPSEC_POLICY(r3, 0x0, 0x10, &(0x7f0000000800)={{{@in6=@loopback, @in6=@mcast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@multicast2}, 0x0, @in=@broadcast}}, &(0x7f0000000340)=0xe8) stat(&(0x7f0000000580)='./file0\x00', &(0x7f0000000640)={0x0, 0x0, 0x0, 0x0, 0x0}) r9 = socket$inet_icmp_raw(0x2, 0x3, 0x1) getsockopt$sock_cred(r9, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xc) setresuid(0x0, r10, 0x0) stat(&(0x7f0000000900)='.\x00', &(0x7f0000000940)={0x0, 0x0, 0x0, 0x0, 0x0}) r12 = socket$inet_icmp_raw(0x2, 0x3, 0x1) getsockopt$sock_cred(r12, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xc) setresuid(0x0, r13, 0x0) getsockopt$inet_IP_XFRM_POLICY(r1, 0x0, 0x11, &(0x7f00000009c0)={{{@in=@multicast2, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@dev}, 0x0, @in6=@initdev}}, &(0x7f0000000ac0)=0xe8) r15 = accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x80800) setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r15, 0x84, 0x13, &(0x7f0000000100)=0x73, 0x4) fstat(r15, &(0x7f0000000b00)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) r17 = socket(0x10, 0x2, 0x0) getsockopt$sock_cred(r17, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, 0x0}, &(0x7f0000cab000)=0xc) syz_mount_image$hfsplus(&(0x7f00000000c0)='hfsplus\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000280)={[{@gid={'gid', 0x3d, r18}}]}) r19 = getegid() r20 = socket(0x10, 0x2, 0x0) getsockopt$sock_cred(r20, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, 0x0}, &(0x7f0000cab000)=0xc) syz_mount_image$hfsplus(&(0x7f00000000c0)='hfsplus\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB, @ANYRESHEX=r21, @ANYBLOB=',\x00']) r22 = socket(0x10, 0x2, 0x0) getsockopt$sock_cred(r22, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, 0x0}, &(0x7f0000cab000)=0xc) syz_mount_image$hfsplus(&(0x7f00000000c0)='hfsplus\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000280)={[{@gid={'gid', 0x3d, r23}}]}) r24 = socket(0x10, 0x2, 0x0) getsockopt$sock_cred(r24, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, 0x0}, &(0x7f0000cab000)=0xc) syz_mount_image$hfsplus(&(0x7f00000000c0)='hfsplus\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000280)={[{@gid={'gid', 0x3d, r25}}]}) r26 = socket(0x10, 0x2, 0x0) getsockopt$sock_cred(r26, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, 0x0}, &(0x7f0000cab000)=0xc) syz_mount_image$hfsplus(&(0x7f00000000c0)='hfsplus\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000280)={[{@gid={'gid', 0x3d, r27}}]}) r28 = socket(0x10, 0x2, 0x0) getsockopt$sock_cred(r28, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, 0x0}, &(0x7f0000cab000)=0xc) syz_mount_image$hfsplus(&(0x7f00000000c0)='hfsplus\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000280)={[{@gid={'gid', 0x3d, r29}}]}) fsetxattr$system_posix_acl(r5, &(0x7f00000000c0)='system.posix_acl_default\x00', &(0x7f0000000b80)={{}, {0x1, 0x3}, [{0x2, 0x5, r6}, {0x2, 0x0, r7}, {0x2, 0x2, r8}, {0x2, 0x4, r10}, {0x2, 0x1, r11}, {0x2, 0x2, r13}, {0x2, 0x1, r14}], {0x4, 0x4}, [{0x8, 0x7de2c8a721f56a0, 0xee01}, {0x8, 0x4, r16}, {0x8, 0xa, r18}, {0x8, 0x3, r19}, {0x8, 0x2, 0xee00}, {0x8, 0x0, r21}, {0x8, 0x0, r23}, {0x8, 0x1, r25}, {0x8, 0x0, r27}, {0x8, 0x86b7d4c3a2867b22, r29}], {0x10, 0x2}, {0x20, 0x1}}, 0xac, 0x2) r30 = syz_open_dev$cec(&(0x7f0000000200)='/dev/cec#\x00', 0x2, 0x2) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r31, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) setsockopt$netlink_NETLINK_DROP_MEMBERSHIP(r31, 0x10e, 0x2, &(0x7f0000000080)=0x8, 0x4) ioctl$KVM_GET_PIT2(r30, 0x8070ae9f, &(0x7f0000000140)) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) [ 176.288738] inode_init_always+0x552/0xaf0 [ 176.293677] alloc_inode+0x81/0x180 [ 176.297486] new_inode_pseudo+0x19/0xf0 [ 176.301487] new_inode+0x1f/0x40 [ 176.304873] __ext4_new_inode+0x32c/0x4860 [ 176.309148] ? avc_has_perm+0x2df/0x4b0 [ 176.313155] ? ext4_free_inode+0x1210/0x1210 [ 176.317599] ? dquot_get_next_dqblk+0x160/0x160 [ 176.323272] ext4_mkdir+0x331/0xc20 [ 176.328881] ? ext4_init_dot_dotdot+0x4c0/0x4c0 07:06:11 executing program 0 (fault-call:0 fault-nth:2): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x0, 0x989680}) socket$inet6_sctp(0xa, 0x0, 0x84) 07:06:11 executing program 5 (fault-call:0 fault-nth:1): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) syz_open_procfs(0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) socket$inet6_sctp(0xa, 0x1, 0x84) 07:06:11 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000040), 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) [ 176.335756] ? security_inode_mkdir+0xd0/0x110 [ 176.342622] vfs_mkdir+0x3ca/0x610 [ 176.346181] SyS_mkdir+0x1b7/0x200 [ 176.349741] ? SyS_mkdirat+0x210/0x210 [ 176.353644] ? do_syscall_64+0x53/0x640 [ 176.357634] ? SyS_mkdirat+0x210/0x210 [ 176.361705] do_syscall_64+0x1e8/0x640 [ 176.365614] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 176.370481] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 176.370488] RIP: 0033:0x459637 [ 176.370493] RSP: 002b:00007f8cf79a0a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 176.370503] RAX: ffffffffffffffda RBX: 0000000020000068 RCX: 0000000000459637 [ 176.370508] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 0000000020000100 [ 176.370513] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 176.370518] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 176.370523] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 [ 176.399591] FAULT_INJECTION: forcing a failure. [ 176.399591] name failslab, interval 1, probability 0, space 0, times 0 [ 176.425989] FAULT_INJECTION: forcing a failure. [ 176.425989] name failslab, interval 1, probability 0, space 0, times 0 [ 176.439733] CPU: 1 PID: 11620 Comm: syz-executor.0 Not tainted 4.14.151 #0 [ 176.466419] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 176.475987] Call Trace: [ 176.478574] dump_stack+0x138/0x197 [ 176.482317] should_fail.cold+0x10f/0x159 [ 176.494565] should_failslab+0xdb/0x130 [ 176.498533] kmem_cache_alloc+0x2d7/0x780 [ 176.502689] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 176.508147] ? rcu_read_lock_sched_held+0x110/0x130 [ 176.517969] ? shmem_destroy_callback+0xa0/0xa0 [ 176.522731] shmem_alloc_inode+0x1c/0x50 [ 176.526905] alloc_inode+0x64/0x180 [ 176.530526] new_inode_pseudo+0x19/0xf0 [ 176.534607] new_inode+0x1f/0x40 [ 176.538137] shmem_get_inode+0x75/0x750 [ 176.543759] __shmem_file_setup.part.0+0x111/0x400 [ 176.548767] ? __alloc_fd+0x1d4/0x4a0 [ 176.552559] ? shmem_fill_super+0x8c0/0x8c0 [ 176.556880] SyS_memfd_create+0x1f9/0x3a0 [ 176.561293] ? shmem_fcntl+0x130/0x130 [ 176.565402] ? do_syscall_64+0x53/0x640 [ 176.571587] ? shmem_fcntl+0x130/0x130 [ 176.575844] do_syscall_64+0x1e8/0x640 [ 176.579756] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 176.584594] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 176.589773] RIP: 0033:0x45a219 [ 176.592957] RSP: 002b:00007f46eab45a88 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 176.600929] RAX: ffffffffffffffda RBX: 0000000020000040 RCX: 000000000045a219 [ 176.608286] RDX: 0000000020000068 RSI: 0000000000000000 RDI: 00000000004bf2b7 [ 176.615545] RBP: 000000000075bf20 R08: fe03f80fe03f80ff R09: 00000000fbad8001 [ 176.622801] R10: 0000000000010000 R11: 0000000000000246 R12: 00007f46eab466d4 [ 176.630061] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 [ 176.649537] CPU: 1 PID: 11617 Comm: syz-executor.5 Not tainted 4.14.151 #0 [ 176.656608] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 176.665973] Call Trace: [ 176.668577] dump_stack+0x138/0x197 [ 176.672228] should_fail.cold+0x10f/0x159 [ 176.676398] should_failslab+0xdb/0x130 [ 176.680374] kmem_cache_alloc+0x2d7/0x780 [ 176.680386] ? __alloc_fd+0x1d4/0x4a0 [ 176.680402] __d_alloc+0x2d/0x9f0 [ 176.680413] ? lock_downgrade+0x740/0x740 [ 176.680424] d_alloc_pseudo+0x1e/0x30 07:06:11 executing program 0 (fault-call:0 fault-nth:3): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x0, 0x989680}) socket$inet6_sctp(0xa, 0x0, 0x84) [ 176.680437] __shmem_file_setup.part.0+0xd8/0x400 [ 176.688380] ? __alloc_fd+0x1d4/0x4a0 [ 176.688394] ? shmem_fill_super+0x8c0/0x8c0 [ 176.688411] SyS_memfd_create+0x1f9/0x3a0 [ 176.688420] ? shmem_fcntl+0x130/0x130 [ 176.696010] ? do_syscall_64+0x53/0x640 [ 176.696024] ? shmem_fcntl+0x130/0x130 [ 176.696037] do_syscall_64+0x1e8/0x640 [ 176.696045] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 176.696060] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 176.704687] RIP: 0033:0x45a219 [ 176.704692] RSP: 002b:00007f6768d5fa88 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 176.704703] RAX: ffffffffffffffda RBX: 0000000020000040 RCX: 000000000045a219 [ 176.704710] RDX: 0000000020000068 RSI: 0000000000000000 RDI: 00000000004bf2b7 [ 176.704716] RBP: 000000000075bf20 R08: fe03f80fe03f80ff R09: 00000000fbad8001 [ 176.704722] R10: 0000000000010000 R11: 0000000000000246 R12: 00007f6768d606d4 [ 176.704727] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 [ 176.726898] FAULT_INJECTION: forcing a failure. [ 176.726898] name failslab, interval 1, probability 0, space 0, times 0 [ 176.733255] CPU: 1 PID: 11634 Comm: syz-executor.0 Not tainted 4.14.151 #0 [ 176.743184] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 176.743188] Call Trace: [ 176.743206] dump_stack+0x138/0x197 [ 176.743222] should_fail.cold+0x10f/0x159 [ 176.743241] should_failslab+0xdb/0x130 [ 176.743252] kmem_cache_alloc+0x2d7/0x780 [ 176.743264] ? shmem_alloc_inode+0x1c/0x50 [ 176.754202] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 176.754219] selinux_inode_alloc_security+0xb6/0x2a0 [ 176.754236] security_inode_alloc+0x94/0xd0 [ 176.754246] inode_init_always+0x552/0xaf0 [ 176.754256] alloc_inode+0x81/0x180 [ 176.802322] new_inode_pseudo+0x19/0xf0 [ 176.818716] new_inode+0x1f/0x40 [ 176.818729] shmem_get_inode+0x75/0x750 [ 176.818741] __shmem_file_setup.part.0+0x111/0x400 [ 176.818749] ? __alloc_fd+0x1d4/0x4a0 [ 176.818759] ? shmem_fill_super+0x8c0/0x8c0 [ 176.818777] SyS_memfd_create+0x1f9/0x3a0 [ 176.818788] ? shmem_fcntl+0x130/0x130 07:06:12 executing program 0 (fault-call:0 fault-nth:4): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x0, 0x989680}) socket$inet6_sctp(0xa, 0x0, 0x84) 07:06:12 executing program 2: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x400000000000249, 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r1, 0x407, 0x0) write(r1, &(0x7f0000000340), 0x41395527) ioctl$EXT4_IOC_ALLOC_DA_BLKS(r1, 0x660c) setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000380)="0c4f4d16cf2f3a2dd8a5046790a60c91e487dc9ca281434dbc169c6555a654da5e42c953490634b417ec9535653162fc5730d4c8dab3e136550ed7d31fa8d7094afd6e5154349155e6ef7e5fb08d79c283188a3f28548ab4366e6863ba5561aedbd1ee3f9a2c5646e4a9c2806b231528bca7ee2134e39966c40bcb1371a7e7691672a8dc9bda07175f11a9160cba3f0ddb78db3b2e184e1e9aa371691df9f49a5e3343bce4e4b8a2c80831b63d95ed57cf89982b317abf1cf8a71078d00dd5fa9151c142fa4bb765d503150f5f6f34284c7480a5091e9b246e", 0xd9) fsetxattr$trusted_overlay_nlink(r1, &(0x7f0000000240)='trusted.overlay.nlink\x00', &(0x7f0000000300)={'U+', 0x7}, 0x28, 0x3) ioctl$TIOCSERGETLSR(r1, 0x5459, &(0x7f00000000c0)) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) fcntl$dupfd(r0, 0x0, r2) write$FUSE_NOTIFY_POLL(0xffffffffffffffff, &(0x7f0000000080)={0x18, 0x1, 0x0, {0x8}}, 0x18) ioctl$sock_inet_sctp_SIOCINQ(0xffffffffffffffff, 0x541b, &(0x7f0000000140)) 07:06:12 executing program 4: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x724ada238c8310ae, 0x0) r0 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, 0x0) r1 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) ioctl$VIDIOC_QUERYCAP(r1, 0x80685600, &(0x7f0000000040)) syz_open_dev$mouse(0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, 0x0, 0xfffffffffffffea6}], 0x0, 0xe1f82c808f01c816, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) r2 = syz_open_procfs(0x0, &(0x7f0000000880)='oom_score\x00') preadv(r2, &(0x7f00000017c0), 0x199, 0x0) ioctl$UI_BEGIN_FF_UPLOAD(r2, 0xc06855c8, &(0x7f0000000640)={0x10, 0xd17, {0x52, 0x2db, 0x7f, {0x200}, {0x40, 0x4}, @const={0x7ff, {0x8, 0xba, 0x1, 0x9150}}}, {0xa5e136065a937c32, 0x5, 0xfff, {0x4, 0x3}, {0x7, 0x1}, @ramp={0x800, 0x80, {0x100, 0x4c2, 0x800, 0x3}}}}) r3 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000180)='/dev/dlm-control\x00', 0x0, 0x0) ioctl$VIDIOC_DBG_S_REGISTER(r3, 0x4038564f, &(0x7f00000001c0)={{0x1, @addr=0x2}, 0x8, 0x20b1}) lremovexattr(&(0x7f0000000200)='./file0\x00', &(0x7f0000000240)=@known='com.apple.system.Security\x00') ioctl$VIDIOC_G_MODULATOR(r2, 0xc0445636, &(0x7f0000000100)={0x2, "db55f99064a4f49d472897f0aa66c0c30045e9dbf0efbbb27ca8242c4d5cb0de", 0x200, 0x1, 0x6, 0x42482ad5d984aacd, 0x93c069a2079cb7a2}) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f00000000c0)) [ 176.818797] ? do_syscall_64+0x53/0x640 [ 176.818808] ? shmem_fcntl+0x130/0x130 [ 176.827508] hfsplus: gid requires an argument [ 176.829216] do_syscall_64+0x1e8/0x640 [ 176.829233] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 176.829248] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 176.829260] RIP: 0033:0x45a219 [ 176.840358] hfsplus: unable to parse mount options [ 176.841613] RSP: 002b:00007f46eab45a88 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 176.841626] RAX: ffffffffffffffda RBX: 0000000020000040 RCX: 000000000045a219 07:06:12 executing program 5 (fault-call:0 fault-nth:2): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) syz_open_procfs(0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) socket$inet6_sctp(0xa, 0x1, 0x84) [ 176.841633] RDX: 0000000020000068 RSI: 0000000000000000 RDI: 00000000004bf2b7 [ 176.841639] RBP: 000000000075bf20 R08: fe03f80fe03f80ff R09: 00000000fbad8001 [ 176.841645] R10: 0000000000010000 R11: 0000000000000246 R12: 00007f46eab466d4 [ 176.841650] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 [ 176.991720] FAULT_INJECTION: forcing a failure. 07:06:12 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000040), 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) [ 176.991720] name failslab, interval 1, probability 0, space 0, times 0 [ 177.043081] FAULT_INJECTION: forcing a failure. [ 177.043081] name failslab, interval 1, probability 0, space 0, times 0 [ 177.064767] CPU: 1 PID: 11649 Comm: syz-executor.0 Not tainted 4.14.151 #0 [ 177.072615] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 177.072620] Call Trace: [ 177.072640] dump_stack+0x138/0x197 [ 177.072658] should_fail.cold+0x10f/0x159 [ 177.072673] should_failslab+0xdb/0x130 [ 177.096570] kmem_cache_alloc+0x2d7/0x780 [ 177.100750] ? lock_downgrade+0x740/0x740 [ 177.104922] get_empty_filp+0x8c/0x3f0 [ 177.108879] alloc_file+0x23/0x440 [ 177.108895] __shmem_file_setup.part.0+0x1b1/0x400 [ 177.108913] ? __alloc_fd+0x1d4/0x4a0 [ 177.108925] ? shmem_fill_super+0x8c0/0x8c0 [ 177.117616] SyS_memfd_create+0x1f9/0x3a0 [ 177.117628] ? shmem_fcntl+0x130/0x130 [ 177.117639] ? do_syscall_64+0x53/0x640 [ 177.117650] ? shmem_fcntl+0x130/0x130 [ 177.117660] do_syscall_64+0x1e8/0x640 [ 177.117671] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 177.133897] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 177.133908] RIP: 0033:0x45a219 [ 177.133913] RSP: 002b:00007f46eab45a88 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 177.166988] RAX: ffffffffffffffda RBX: 0000000020000040 RCX: 000000000045a219 [ 177.174269] RDX: 0000000020000068 RSI: 0000000000000000 RDI: 00000000004bf2b7 [ 177.181620] RBP: 000000000075bf20 R08: fe03f80fe03f80ff R09: 00000000fbad8001 07:06:12 executing program 1: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0) readahead(r0, 0x4, 0x100000000) socket$inet6_sctp(0xa, 0x0, 0x84) [ 177.188894] R10: 0000000000010000 R11: 0000000000000246 R12: 00007f46eab466d4 [ 177.196164] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 [ 177.203528] CPU: 0 PID: 11657 Comm: syz-executor.5 Not tainted 4.14.151 #0 [ 177.210561] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 177.219947] Call Trace: [ 177.222560] dump_stack+0x138/0x197 [ 177.226325] should_fail.cold+0x10f/0x159 [ 177.230485] should_failslab+0xdb/0x130 [ 177.230499] kmem_cache_alloc+0x2d7/0x780 [ 177.230509] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 177.230520] ? rcu_read_lock_sched_held+0x110/0x130 [ 177.230530] ? shmem_destroy_callback+0xa0/0xa0 [ 177.230539] shmem_alloc_inode+0x1c/0x50 [ 177.230551] alloc_inode+0x64/0x180 [ 177.238760] new_inode_pseudo+0x19/0xf0 [ 177.238771] new_inode+0x1f/0x40 [ 177.238781] shmem_get_inode+0x75/0x750 [ 177.238794] __shmem_file_setup.part.0+0x111/0x400 [ 177.238804] ? __alloc_fd+0x1d4/0x4a0 [ 177.282615] ? shmem_fill_super+0x8c0/0x8c0 [ 177.286958] SyS_memfd_create+0x1f9/0x3a0 [ 177.286971] ? shmem_fcntl+0x130/0x130 [ 177.286981] ? do_syscall_64+0x53/0x640 [ 177.286991] ? shmem_fcntl+0x130/0x130 [ 177.295025] do_syscall_64+0x1e8/0x640 [ 177.295037] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 177.295054] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 177.295066] RIP: 0033:0x45a219 [ 177.320228] RSP: 002b:00007f6768d5fa88 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 177.327935] RAX: ffffffffffffffda RBX: 0000000020000040 RCX: 000000000045a219 [ 177.335194] RDX: 0000000020000068 RSI: 0000000000000000 RDI: 00000000004bf2b7 [ 177.342455] RBP: 000000000075bf20 R08: fe03f80fe03f80ff R09: 00000000fbad8001 [ 177.349719] R10: 0000000000010000 R11: 0000000000000246 R12: 00007f6768d606d4 [ 177.357009] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 07:06:12 executing program 4: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, 0x0) syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) r1 = syz_open_procfs(0x0, &(0x7f0000000880)='oom_score\x00') preadv(r1, &(0x7f00000017c0), 0x199, 0x0) ioctl$UI_BEGIN_FF_UPLOAD(r1, 0xc06855c8, &(0x7f0000000640)={0x10, 0xd17, {0x52, 0x2db, 0x7f, {0x200}, {0x40, 0x4}, @const={0x7ff, {0x8, 0xba, 0x1, 0x9150}}}, {0xa5e136065a937c32, 0x5, 0xfff, {0x4, 0x3}, {0x7, 0x1}, @ramp={0x800, 0x80, {0x100, 0x4c2, 0x800, 0x3}}}}) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) ioctl$EXT4_IOC_ALLOC_DA_BLKS(r2, 0x660c) setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f0000000380)="0c4f4d16cf2f3a2dd8a5046790a60c91e487dc9ca281434dbc169c6555a654da5e42c953490634b417ec9535653162fc5730d4c8dab3e136550ed7d31fa8d7094afd6e5154349155e6ef7e5fb08d79c283188a3f28548ab4366e6863ba5561aedbd1ee3f9a2c5646e4a9c2806b231528bca7ee2134e39966c40bcb1371a7e7691672a8dc9bda07175f11a9160cba3f0ddb78db3b2e184e1e9aa371691df9f49a5e3343bce4e4b8a2c80831b63d95ed57cf89982b317abf1cf8a71078d00dd5fa9151c142fa4bb765d503150f5f6f34284c7480a5091e9b246e", 0xd9) fsetxattr$trusted_overlay_nlink(r2, &(0x7f0000000240)='trusted.overlay.nlink\x00', &(0x7f0000000300)={'U+', 0x7}, 0x28, 0x3) syz_open_dev$adsp(&(0x7f0000000100)='/dev/adsp#\x00', 0xffffffffffffff25, 0x80) r3 = syz_open_procfs(0x0, &(0x7f00000006c0)='Net/3\x97OOT\x15\x00\xb6\xcf@e\xd3r\x82\x9fc') ioctl$VIDIOC_PREPARE_BUF(r3, 0xc058565d, &(0x7f00000005c0)={0x0, 0xb, 0x4, 0x0, {0x0, 0x7530}, {0x0, 0x2, 0x81, 0x10, 0x24, 0x6, "cf676f53"}, 0x80, 0x5, @offset=0x9, 0x4}) mq_timedsend(r3, &(0x7f0000000480)="c1cc3d2c05c16add6c964974e00652617b35c74bd5a620d3170df3c2f134d5beb838b0f00c6ca198401126d02772777a96ead8602a94c5450ea4e5c8b02fc6e876ee2383fc4faa682ed6a91a53a08a1fdd9839c170a6f81ede814c769cf15c688c8514b5f4f1dc0a50019813ce4459df629cd480519073a5f929cd5e59d0058ea64475a46e924294d5ef1b4b158e59d9c923a0", 0x93, 0x4, &(0x7f0000000540)={0x0, 0x989680}) r4 = syz_open_procfs(0x0, &(0x7f00000006c0)='Net/3\x97OOT\x15\x00\xb6\xcf@e\xd3r\x82\x9fc') ioctl$VIDIOC_PREPARE_BUF(r4, 0xc058565d, &(0x7f00000005c0)={0x0, 0xb, 0x4, 0x0, {0x0, 0x7530}, {0x0, 0x2, 0x81, 0x10, 0x24, 0x6, "cf676f53"}, 0x80, 0x5, @offset=0x9, 0x4}) mq_timedsend(r4, &(0x7f0000000480)="c1cc3d2c05c16add6c964974e00652617b35c74bd5a620d3170df3c2f134d5beb838b0f00c6ca198401126d02772777a96ead8602a94c5450ea4e5c8b02fc6e876ee2383fc4faa682ed6a91a53a08a1fdd9839c170a6f81ede814c769cf15c688c8514b5f4f1dc0a50019813ce4459df629cd480519073a5f929cd5e59d0058ea64475a46e924294d5ef1b4b158e59d9c923a0", 0x93, 0x4, &(0x7f0000000540)={0x0, 0x989680}) r5 = syz_open_procfs(0x0, &(0x7f00000006c0)='Net/3\x97OOT\x15\x00\xb6\xcf@e\xd3r\x82\x9fc') ioctl$VIDIOC_PREPARE_BUF(r5, 0xc058565d, &(0x7f00000005c0)={0x0, 0xb, 0x4, 0x0, {0x0, 0x7530}, {0x0, 0x2, 0x81, 0x10, 0x24, 0x6, "cf676f53"}, 0x80, 0x5, @offset=0x9, 0x4}) mq_timedsend(r5, &(0x7f0000000480)="c1cc3d2c05c16add6c964974e00652617b35c74bd5a620d3170df3c2f134d5beb838b0f00c6ca198401126d02772777a96ead8602a94c5450ea4e5c8b02fc6e876ee2383fc4faa682ed6a91a53a08a1fdd9839c170a6f81ede814c769cf15c688c8514b5f4f1dc0a50019813ce4459df629cd480519073a5f929cd5e59d0058ea64475a46e924294d5ef1b4b158e59d9c923a0", 0x93, 0x4, &(0x7f0000000540)={0x0, 0x989680}) ioctl$VIDIOC_QUERYCAP(r5, 0x80685600, &(0x7f0000000040)) syz_open_dev$mouse(0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f00000000c0)) 07:06:12 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000040), 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) 07:06:12 executing program 0 (fault-call:0 fault-nth:5): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x0, 0x989680}) socket$inet6_sctp(0xa, 0x0, 0x84) 07:06:12 executing program 5 (fault-call:0 fault-nth:3): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) syz_open_procfs(0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) socket$inet6_sctp(0xa, 0x1, 0x84) [ 177.496606] FAULT_INJECTION: forcing a failure. [ 177.496606] name failslab, interval 1, probability 0, space 0, times 0 [ 177.516580] FAULT_INJECTION: forcing a failure. [ 177.516580] name failslab, interval 1, probability 0, space 0, times 0 [ 177.533618] CPU: 0 PID: 11696 Comm: syz-executor.0 Not tainted 4.14.151 #0 [ 177.540696] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 177.550209] Call Trace: [ 177.552817] dump_stack+0x138/0x197 [ 177.556465] should_fail.cold+0x10f/0x159 [ 177.556483] should_failslab+0xdb/0x130 [ 177.556498] kmem_cache_alloc+0x2d7/0x780 [ 177.556509] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 177.556522] ? check_preemption_disabled+0x3c/0x250 [ 177.564780] selinux_file_alloc_security+0xb4/0x190 [ 177.564794] security_file_alloc+0x6d/0xa0 [ 177.564810] get_empty_filp+0x162/0x3f0 [ 177.564823] alloc_file+0x23/0x440 [ 177.596183] __shmem_file_setup.part.0+0x1b1/0x400 [ 177.601135] ? __alloc_fd+0x1d4/0x4a0 [ 177.605109] ? shmem_fill_super+0x8c0/0x8c0 [ 177.609460] SyS_memfd_create+0x1f9/0x3a0 [ 177.613625] ? shmem_fcntl+0x130/0x130 [ 177.617531] ? do_syscall_64+0x53/0x640 [ 177.621526] ? shmem_fcntl+0x130/0x130 [ 177.625435] do_syscall_64+0x1e8/0x640 [ 177.629337] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 177.634203] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 177.639402] RIP: 0033:0x45a219 [ 177.642601] RSP: 002b:00007f46eab45a88 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 177.650326] RAX: ffffffffffffffda RBX: 0000000020000040 RCX: 000000000045a219 [ 177.657597] RDX: 0000000020000068 RSI: 0000000000000000 RDI: 00000000004bf2b7 [ 177.664865] RBP: 000000000075bf20 R08: fe03f80fe03f80ff R09: 00000000fbad8001 [ 177.672196] R10: 0000000000010000 R11: 0000000000000246 R12: 00007f46eab466d4 [ 177.679554] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 [ 177.687049] CPU: 1 PID: 11697 Comm: syz-executor.5 Not tainted 4.14.151 #0 [ 177.694074] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 177.703608] Call Trace: [ 177.706218] dump_stack+0x138/0x197 [ 177.709836] should_fail.cold+0x10f/0x159 [ 177.713985] should_failslab+0xdb/0x130 [ 177.717949] kmem_cache_alloc+0x2d7/0x780 [ 177.722086] ? shmem_alloc_inode+0x1c/0x50 [ 177.726310] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 177.731750] selinux_inode_alloc_security+0xb6/0x2a0 [ 177.736840] security_inode_alloc+0x94/0xd0 [ 177.741150] inode_init_always+0x552/0xaf0 [ 177.745374] alloc_inode+0x81/0x180 [ 177.748987] new_inode_pseudo+0x19/0xf0 [ 177.752977] new_inode+0x1f/0x40 [ 177.756329] shmem_get_inode+0x75/0x750 [ 177.760324] __shmem_file_setup.part.0+0x111/0x400 [ 177.765248] ? __alloc_fd+0x1d4/0x4a0 [ 177.769042] ? shmem_fill_super+0x8c0/0x8c0 [ 177.773461] SyS_memfd_create+0x1f9/0x3a0 [ 177.777626] ? shmem_fcntl+0x130/0x130 [ 177.781527] ? do_syscall_64+0x53/0x640 [ 177.785489] ? shmem_fcntl+0x130/0x130 [ 177.789364] do_syscall_64+0x1e8/0x640 [ 177.793237] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 177.798073] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 177.803535] RIP: 0033:0x45a219 [ 177.807091] RSP: 002b:00007f6768d5fa88 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 177.815272] RAX: ffffffffffffffda RBX: 0000000020000040 RCX: 000000000045a219 [ 177.822534] RDX: 0000000020000068 RSI: 0000000000000000 RDI: 00000000004bf2b7 [ 177.829879] RBP: 000000000075bf20 R08: fe03f80fe03f80ff R09: 00000000fbad8001 [ 177.837255] R10: 0000000000010000 R11: 0000000000000246 R12: 00007f6768d606d4 07:06:12 executing program 0 (fault-call:0 fault-nth:6): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x0, 0x989680}) socket$inet6_sctp(0xa, 0x0, 0x84) [ 177.844517] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 07:06:13 executing program 1: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) r0 = accept(0xffffffffffffffff, &(0x7f0000000080)=@pppoe={0x18, 0x0, {0x0, @random}}, &(0x7f0000000140)=0x80) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, &(0x7f0000000180)={0x9, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, &(0x7f00000001c0)=0x28) 07:06:13 executing program 5 (fault-call:0 fault-nth:4): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) syz_open_procfs(0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) socket$inet6_sctp(0xa, 0x1, 0x84) [ 177.953749] FAULT_INJECTION: forcing a failure. [ 177.953749] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 177.959441] FAULT_INJECTION: forcing a failure. [ 177.959441] name failslab, interval 1, probability 0, space 0, times 0 [ 177.980322] CPU: 1 PID: 11724 Comm: syz-executor.0 Not tainted 4.14.151 #0 [ 177.987446] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 177.996887] Call Trace: [ 177.996910] dump_stack+0x138/0x197 [ 178.003174] should_fail.cold+0x10f/0x159 [ 178.003186] ? __might_sleep+0x93/0xb0 [ 178.003199] __alloc_pages_nodemask+0x1d6/0x7a0 [ 178.003211] ? __alloc_pages_slowpath+0x2930/0x2930 [ 178.003222] ? lock_downgrade+0x740/0x740 [ 178.003239] alloc_pages_vma+0xc9/0x4c0 [ 178.003251] shmem_alloc_page+0xf6/0x1a0 [ 178.033520] ? shmem_swapin+0x1a0/0x1a0 [ 178.037768] ? cred_has_capability+0x142/0x290 [ 178.042538] ? check_preemption_disabled+0x3c/0x250 [ 178.047666] ? __this_cpu_preempt_check+0x1d/0x30 [ 178.052517] ? percpu_counter_add_batch+0x112/0x160 [ 178.057646] ? __vm_enough_memory+0x26a/0x490 [ 178.062176] shmem_alloc_and_acct_page+0x12a/0x680 [ 178.067493] shmem_getpage_gfp+0x3e7/0x25d0 [ 178.071858] ? shmem_add_to_page_cache+0x860/0x860 [ 178.076918] ? iov_iter_fault_in_readable+0x1da/0x3c0 [ 178.082929] shmem_write_begin+0xfd/0x1b0 [ 178.087445] ? trace_hardirqs_on_caller+0x400/0x590 [ 178.092987] generic_perform_write+0x1f8/0x480 [ 178.097783] ? page_endio+0x530/0x530 [ 178.101756] ? current_time+0xb0/0xb0 [ 178.106177] ? generic_file_write_iter+0x9a/0x660 [ 178.111117] __generic_file_write_iter+0x239/0x5b0 [ 178.116128] generic_file_write_iter+0x303/0x660 [ 178.121519] __vfs_write+0x4a7/0x6b0 [ 178.126154] ? selinux_file_open+0x420/0x420 [ 178.131044] ? kernel_read+0x120/0x120 [ 178.136104] ? check_preemption_disabled+0x3c/0x250 [ 178.141663] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 178.147653] ? rcu_sync_lockdep_assert+0x6d/0xb0 [ 178.152876] ? __sb_start_write+0x153/0x2f0 [ 178.157201] vfs_write+0x198/0x500 [ 178.160744] SyS_pwrite64+0x115/0x140 [ 178.166386] ? SyS_pread64+0x140/0x140 [ 178.170491] ? do_syscall_64+0x53/0x640 [ 178.174569] ? SyS_pread64+0x140/0x140 [ 178.178481] do_syscall_64+0x1e8/0x640 [ 178.182395] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 178.187427] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 178.192734] RIP: 0033:0x414017 [ 178.195931] RSP: 002b:00007f46eab45a80 EFLAGS: 00000293 ORIG_RAX: 0000000000000012 [ 178.203998] RAX: ffffffffffffffda RBX: 0000000020000050 RCX: 0000000000414017 [ 178.211368] RDX: 0000000000000048 RSI: 00000000200002c0 RDI: 0000000000000004 [ 178.218755] RBP: 0000000000000000 R08: fe03f80fe03f80ff R09: 00000000fbad8001 [ 178.226240] R10: 0000000000010000 R11: 0000000000000293 R12: 0000000000000004 [ 178.234506] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 [ 178.241881] CPU: 0 PID: 11728 Comm: syz-executor.5 Not tainted 4.14.151 #0 [ 178.249698] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 178.249707] Call Trace: [ 178.262058] dump_stack+0x138/0x197 [ 178.265710] should_fail.cold+0x10f/0x159 [ 178.269970] should_failslab+0xdb/0x130 [ 178.274326] kmem_cache_alloc+0x2d7/0x780 [ 178.278519] ? lock_downgrade+0x740/0x740 [ 178.278542] get_empty_filp+0x8c/0x3f0 [ 178.287094] alloc_file+0x23/0x440 [ 178.290746] __shmem_file_setup.part.0+0x1b1/0x400 [ 178.295788] ? __alloc_fd+0x1d4/0x4a0 [ 178.299739] ? shmem_fill_super+0x8c0/0x8c0 [ 178.304096] SyS_memfd_create+0x1f9/0x3a0 [ 178.308274] ? shmem_fcntl+0x130/0x130 [ 178.312176] ? do_syscall_64+0x53/0x640 [ 178.316155] ? shmem_fcntl+0x130/0x130 [ 178.316167] do_syscall_64+0x1e8/0x640 [ 178.316177] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 178.316193] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 178.316202] RIP: 0033:0x45a219 [ 178.337371] RSP: 002b:00007f6768d5fa88 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 178.345111] RAX: ffffffffffffffda RBX: 0000000020000040 RCX: 000000000045a219 07:06:13 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) 07:06:13 executing program 2: r0 = openat$selinux_status(0xffffffffffffff9c, &(0x7f0000000080)='/selinux/status\x00', 0x0, 0x0) sendmsg$NET_DM_CMD_STOP(r0, &(0x7f0000000280)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x1100}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x14, 0x0, 0x0, 0x70bd29, 0x25dfdbbc, {}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x10}, 0x80) ioctl$FS_IOC_GET_ENCRYPTION_POLICY_EX(r0, 0xc0096616, &(0x7f00000000c0)={0x9, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}) r1 = syz_open_procfs(0x0, &(0x7f00000006c0)='Net/3\x97OOT\x15\x00\xb6\xcf@e\xd3r\x82\x9fc') ioctl$VIDIOC_PREPARE_BUF(r1, 0xc058565d, &(0x7f00000005c0)={0x0, 0xb, 0x4, 0x0, {0x0, 0x7530}, {0x0, 0x2, 0x81, 0x10, 0x24, 0x6, "cf676f53"}, 0x80, 0x5, @offset=0x9, 0x4}) mq_timedsend(r1, &(0x7f0000000480)="c1cc3d2c05c16add6c964974e00652617b35c74bd5a620d3170df3c2f134d5beb838b0f00c6ca198401126d02772777a96ead8602a94c5450ea4e5c8b02fc6e876ee2383fc4faa682ed6a91a53a08a1fdd9839c170a6f81ede814c769cf15c688c8514b5f4f1dc0a50019813ce4459df629cd480519073a5f929cd5e59d0058ea64475a46e924294d5ef1b4b158e59d9c923a0", 0x93, 0x4, &(0x7f0000000540)={0x0, 0x989680}) ioctl$sock_netrom_SIOCDELRT(r1, 0x890c, &(0x7f0000000140)={0x0, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @rose={'rose', 0x0}, 0x81, 'syz0\x00', @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, 0xb14, 0x1, [@rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @default, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @null, @bcast]}) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 07:06:13 executing program 5 (fault-call:0 fault-nth:5): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) syz_open_procfs(0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) socket$inet6_sctp(0xa, 0x1, 0x84) [ 178.352565] RDX: 0000000020000068 RSI: 0000000000000000 RDI: 00000000004bf2b7 [ 178.359859] RBP: 000000000075bf20 R08: fe03f80fe03f80ff R09: 00000000fbad8001 [ 178.367152] R10: 0000000000010000 R11: 0000000000000246 R12: 00007f6768d606d4 [ 178.374440] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 07:06:13 executing program 4: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, 0x0) syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) openat$full(0xffffffffffffff9c, &(0x7f0000000100)='/dev/full\x00', 0x201001, 0x0) r1 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000140)='/proc/sys/net/ipv4/vs/nat_icmp_send\x00', 0x2, 0x0) ioctl$VIDIOC_QUERYCAP(r1, 0x80685600, &(0x7f0000000040)) syz_open_dev$mouse(0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f00000000c0)) 07:06:13 executing program 0 (fault-call:0 fault-nth:7): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x0, 0x989680}) socket$inet6_sctp(0xa, 0x0, 0x84) [ 178.499884] FAULT_INJECTION: forcing a failure. [ 178.499884] name failslab, interval 1, probability 0, space 0, times 0 [ 178.511378] CPU: 1 PID: 11767 Comm: syz-executor.0 Not tainted 4.14.151 #0 [ 178.518669] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 178.522480] FAULT_INJECTION: forcing a failure. [ 178.522480] name failslab, interval 1, probability 0, space 0, times 0 [ 178.528170] Call Trace: [ 178.528198] dump_stack+0x138/0x197 [ 178.528218] should_fail.cold+0x10f/0x159 [ 178.528233] should_failslab+0xdb/0x130 [ 178.528250] kmem_cache_alloc+0x47/0x780 [ 178.542122] ? __alloc_pages_slowpath+0x2930/0x2930 [ 178.542134] ? lock_downgrade+0x740/0x740 [ 178.542156] radix_tree_node_alloc.constprop.0+0x1c7/0x310 [ 178.542170] __radix_tree_create+0x337/0x4d0 [ 178.542192] __radix_tree_insert+0xab/0x570 [ 178.542205] ? __radix_tree_create+0x4d0/0x4d0 [ 178.542225] shmem_add_to_page_cache+0x5a4/0x860 [ 178.595784] ? shmem_writepage+0xbb0/0xbb0 [ 178.600016] ? __radix_tree_preload+0x1d2/0x260 [ 178.604856] shmem_getpage_gfp+0x1757/0x25d0 [ 178.609810] ? shmem_add_to_page_cache+0x860/0x860 [ 178.614731] ? iov_iter_fault_in_readable+0x1da/0x3c0 [ 178.619912] shmem_write_begin+0xfd/0x1b0 [ 178.624054] ? trace_hardirqs_on_caller+0x400/0x590 [ 178.629093] generic_perform_write+0x1f8/0x480 [ 178.633782] ? page_endio+0x530/0x530 [ 178.637583] ? current_time+0xb0/0xb0 [ 178.643812] ? generic_file_write_iter+0x9a/0x660 [ 178.648648] __generic_file_write_iter+0x239/0x5b0 [ 178.653965] generic_file_write_iter+0x303/0x660 [ 178.658717] __vfs_write+0x4a7/0x6b0 [ 178.662425] ? selinux_file_open+0x420/0x420 [ 178.667866] ? kernel_read+0x120/0x120 [ 178.671744] ? check_preemption_disabled+0x3c/0x250 [ 178.676783] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 178.682244] ? rcu_sync_lockdep_assert+0x6d/0xb0 [ 178.686997] ? __sb_start_write+0x153/0x2f0 [ 178.691314] vfs_write+0x198/0x500 [ 178.694895] SyS_pwrite64+0x115/0x140 [ 178.698688] ? SyS_pread64+0x140/0x140 [ 178.702565] ? do_syscall_64+0x53/0x640 [ 178.706530] ? SyS_pread64+0x140/0x140 [ 178.710408] do_syscall_64+0x1e8/0x640 [ 178.714284] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 178.719140] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 178.724320] RIP: 0033:0x414017 [ 178.727500] RSP: 002b:00007f46eab45a80 EFLAGS: 00000293 ORIG_RAX: 0000000000000012 [ 178.735233] RAX: ffffffffffffffda RBX: 0000000020000050 RCX: 0000000000414017 [ 178.742495] RDX: 0000000000000048 RSI: 00000000200002c0 RDI: 0000000000000004 [ 178.749759] RBP: 0000000000000000 R08: fe03f80fe03f80ff R09: 00000000fbad8001 [ 178.757049] R10: 0000000000010000 R11: 0000000000000293 R12: 0000000000000004 [ 178.764397] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 [ 178.772865] CPU: 0 PID: 11768 Comm: syz-executor.5 Not tainted 4.14.151 #0 [ 178.780027] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 178.789738] Call Trace: [ 178.792324] dump_stack+0x138/0x197 [ 178.796128] should_fail.cold+0x10f/0x159 [ 178.800298] should_failslab+0xdb/0x130 [ 178.804265] kmem_cache_alloc+0x2d7/0x780 [ 178.808404] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 178.814201] ? check_preemption_disabled+0x3c/0x250 [ 178.819324] selinux_file_alloc_security+0xb4/0x190 [ 178.824681] security_file_alloc+0x6d/0xa0 [ 178.828909] get_empty_filp+0x162/0x3f0 [ 178.833002] alloc_file+0x23/0x440 [ 178.836544] __shmem_file_setup.part.0+0x1b1/0x400 [ 178.841750] ? __alloc_fd+0x1d4/0x4a0 [ 178.845543] ? shmem_fill_super+0x8c0/0x8c0 [ 178.849860] SyS_memfd_create+0x1f9/0x3a0 [ 178.854003] ? shmem_fcntl+0x130/0x130 [ 178.857970] ? do_syscall_64+0x53/0x640 [ 178.862024] ? shmem_fcntl+0x130/0x130 [ 178.865944] do_syscall_64+0x1e8/0x640 [ 178.869822] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 178.874796] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 178.879975] RIP: 0033:0x45a219 [ 178.883362] RSP: 002b:00007f6768d5fa88 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 178.891148] RAX: ffffffffffffffda RBX: 0000000020000040 RCX: 000000000045a219 07:06:14 executing program 5 (fault-call:0 fault-nth:6): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) syz_open_procfs(0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) socket$inet6_sctp(0xa, 0x1, 0x84) 07:06:14 executing program 1: syz_open_dev$evdev(&(0x7f0000000080)='/dev/input/event#\x00', 0x67b1, 0xa0000) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) [ 178.898823] RDX: 0000000020000068 RSI: 0000000000000000 RDI: 00000000004bf2b7 [ 178.906124] RBP: 000000000075bf20 R08: fe03f80fe03f80ff R09: 00000000fbad8001 [ 178.913384] R10: 0000000000010000 R11: 0000000000000246 R12: 00007f6768d606d4 [ 178.920644] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 07:06:14 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) 07:06:14 executing program 2: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f00000000c0)=[{&(0x7f0000000200)="72dadc27eb0e5bf7e07af196afc844ec6e5fca8e89fc15afcfc5167815a84562cdf9022621df5601f9f2f80df4729772de46e151018c72ebb1fc3d8bb3bb0a78f0582df48e3e328dbc879f6bf13d7dd0", 0x50, 0x10000}, {&(0x7f0000000280)="0dbb2bbe1cb386679aeea13c58c0f01f8db3bcd848d7e92e876400251df4abb74a820307092ca15f21e6acbfb3ef6ffe58eba6c97389ba65d37186a8571195754315d746f720c35d8d6e6ba32776c0407223f66ce69f19bd7e117e54f1993a12a7dcdc754c98041883ad1296c13041937df37fff940cf3d06390c66b2b7eb3559318d94b4dfed5cf92982ccc1add9944d8c002d531e2678dc9190739ecd3d7aa134e84a7be9a3f07942b672f620a3d8fea9d5316329e4dd3d2699e91c3b988d6dc185eb96df7613d3f7170b04358f708446a68b3ab", 0xd5, 0x3f}], 0x210000, 0x0) ioctl$EVIOCGBITSND(0xffffffffffffffff, 0x80404532, &(0x7f0000000140)=""/139) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)) 07:06:14 executing program 4: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={&(0x7f0000000100), 0x3}, 0x0, 0xfffffffffffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x11) openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) r0 = socket$pptp(0x18, 0x1, 0x2) prctl$PR_SET_DUMPABLE(0x4, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, 0x0) r1 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) ioctl$VIDIOC_QUERYCAP(r1, 0x80685600, &(0x7f0000000040)) syz_open_dev$mouse(0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f00000000c0)) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xc) setresuid(0x0, r3, 0x0) setfsuid(r3) 07:06:14 executing program 0 (fault-call:0 fault-nth:8): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x0, 0x989680}) socket$inet6_sctp(0xa, 0x0, 0x84) [ 179.066965] FAULT_INJECTION: forcing a failure. [ 179.066965] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 179.153695] CPU: 0 PID: 11784 Comm: syz-executor.5 Not tainted 4.14.151 #0 [ 179.155620] FAULT_INJECTION: forcing a failure. [ 179.155620] name failslab, interval 1, probability 0, space 0, times 0 [ 179.160909] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 179.160915] Call Trace: [ 179.160934] dump_stack+0x138/0x197 [ 179.160952] should_fail.cold+0x10f/0x159 [ 179.160961] ? __might_sleep+0x93/0xb0 [ 179.160972] __alloc_pages_nodemask+0x1d6/0x7a0 [ 179.160986] ? __alloc_pages_slowpath+0x2930/0x2930 [ 179.160995] ? lock_downgrade+0x740/0x740 [ 179.161014] alloc_pages_vma+0xc9/0x4c0 [ 179.161028] shmem_alloc_page+0xf6/0x1a0 [ 179.161035] ? shmem_swapin+0x1a0/0x1a0 [ 179.161046] ? cred_has_capability+0x142/0x290 [ 179.161055] ? check_preemption_disabled+0x3c/0x250 [ 179.161067] ? __this_cpu_preempt_check+0x1d/0x30 [ 179.161075] ? percpu_counter_add_batch+0x112/0x160 [ 179.161091] ? __vm_enough_memory+0x26a/0x490 [ 179.246847] shmem_alloc_and_acct_page+0x12a/0x680 [ 179.251790] shmem_getpage_gfp+0x3e7/0x25d0 [ 179.256136] ? shmem_add_to_page_cache+0x860/0x860 [ 179.256151] ? iov_iter_fault_in_readable+0x1da/0x3c0 [ 179.256164] shmem_write_begin+0xfd/0x1b0 [ 179.266293] ? trace_hardirqs_on_caller+0x400/0x590 [ 179.266314] generic_perform_write+0x1f8/0x480 [ 179.266337] ? page_endio+0x530/0x530 [ 179.266348] ? current_time+0xb0/0xb0 [ 179.266363] ? generic_file_write_iter+0x9a/0x660 [ 179.293697] __generic_file_write_iter+0x239/0x5b0 [ 179.298898] generic_file_write_iter+0x303/0x660 [ 179.304237] __vfs_write+0x4a7/0x6b0 [ 179.308385] ? selinux_file_open+0x420/0x420 [ 179.313188] ? kernel_read+0x120/0x120 [ 179.317187] ? check_preemption_disabled+0x3c/0x250 [ 179.322198] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 179.327642] ? rcu_sync_lockdep_assert+0x6d/0xb0 [ 179.332420] ? __sb_start_write+0x153/0x2f0 [ 179.336909] vfs_write+0x198/0x500 [ 179.340443] SyS_pwrite64+0x115/0x140 [ 179.344232] ? SyS_pread64+0x140/0x140 [ 179.348746] ? do_syscall_64+0x53/0x640 [ 179.352714] ? SyS_pread64+0x140/0x140 [ 179.356711] do_syscall_64+0x1e8/0x640 [ 179.360589] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 179.365429] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 179.370641] RIP: 0033:0x414017 [ 179.373820] RSP: 002b:00007f6768d5fa80 EFLAGS: 00000293 ORIG_RAX: 0000000000000012 [ 179.381520] RAX: ffffffffffffffda RBX: 0000000020000050 RCX: 0000000000414017 [ 179.388955] RDX: 0000000000000048 RSI: 00000000200002c0 RDI: 0000000000000004 [ 179.396665] RBP: 0000000000000000 R08: fe03f80fe03f80ff R09: 00000000fbad8001 [ 179.403933] R10: 0000000000010000 R11: 0000000000000293 R12: 0000000000000004 [ 179.411747] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 [ 179.419376] CPU: 1 PID: 11803 Comm: syz-executor.0 Not tainted 4.14.151 #0 [ 179.426500] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 179.436043] Call Trace: [ 179.436063] dump_stack+0x138/0x197 [ 179.436080] should_fail.cold+0x10f/0x159 [ 179.436096] should_failslab+0xdb/0x130 [ 179.436114] kmem_cache_alloc+0x2d7/0x780 [ 179.436123] ? vfs_write+0x25f/0x500 [ 179.436136] getname_flags+0xcb/0x580 [ 179.442353] ? check_preemption_disabled+0x3c/0x250 [ 179.442370] getname+0x1a/0x20 [ 179.442381] do_sys_open+0x1e7/0x430 [ 179.442394] ? filp_open+0x70/0x70 [ 179.442402] ? fput+0xd4/0x150 [ 179.442414] ? SyS_pwrite64+0xca/0x140 [ 179.454692] SyS_open+0x2d/0x40 [ 179.454703] ? do_sys_open+0x430/0x430 [ 179.454717] do_syscall_64+0x1e8/0x640 [ 179.454726] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 179.454743] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 179.454753] RIP: 0033:0x413fb1 [ 179.463370] RSP: 002b:00007f46eab45a80 EFLAGS: 00000293 ORIG_RAX: 0000000000000002 [ 179.463381] RAX: ffffffffffffffda RBX: 0000000020000068 RCX: 0000000000413fb1 [ 179.463387] RDX: 00007f46eab45b0a RSI: 0000000000000002 RDI: 00007f46eab45b00 [ 179.463393] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 179.463398] R10: 0000000000000075 R11: 0000000000000293 R12: 0000000000000004 07:06:14 executing program 0 (fault-call:0 fault-nth:9): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x0, 0x989680}) socket$inet6_sctp(0xa, 0x0, 0x84) [ 179.463404] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 07:06:14 executing program 4: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, 0x0) r1 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) ioctl$VIDIOC_QUERYCAP(r1, 0x80685600, &(0x7f0000000040)) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) ioctl$EXT4_IOC_ALLOC_DA_BLKS(r2, 0x660c) setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f0000000380)="0c4f4d16cf2f3a2dd8a5046790a60c91e487dc9ca281434dbc169c6555a654da5e42c953490634b417ec9535653162fc5730d4c8dab3e136550ed7d31fa8d7094afd6e5154349155e6ef7e5fb08d79c283188a3f28548ab4366e6863ba5561aedbd1ee3f9a2c5646e4a9c2806b231528bca7ee2134e39966c40bcb1371a7e7691672a8dc9bda07175f11a9160cba3f0ddb78db3b2e184e1e9aa371691df9f49a5e3343bce4e4b8a2c80831b63d95ed57cf89982b317abf1cf8a71078d00dd5fa9151c142fa4bb765d503150f5f6f34284c7480a5091e9b246e", 0xd9) fsetxattr$trusted_overlay_nlink(r2, &(0x7f0000000240)='trusted.overlay.nlink\x00', &(0x7f0000000300)={'U+', 0x7}, 0x28, 0x3) fchmod(r2, 0x4) syz_open_dev$mouse(0x0, 0x0, 0x0) r3 = openat$selinux_avc_hash_stats(0xffffffffffffff9c, &(0x7f0000000140)='/selinux/avc/hash_stats\x00', 0x0, 0x0) ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffffff, 0x89e2, &(0x7f00000001c0)={0xffffffffffffffff}) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000080)='IPVS\x00') sendmsg$IPVS_CMD_NEW_DAEMON(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000240)={0x50, r6, 0x1, 0x0, 0x0, {}, [@IPVS_CMD_ATTR_DAEMON={0x3c, 0x3, [@IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @mcast2}, @IPVS_DAEMON_ATTR_SYNC_ID={0x8}, @IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'vcan0\x00'}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x50}}, 0x0) sendmsg$IPVS_CMD_SET_INFO(r4, &(0x7f0000000340)={&(0x7f0000000280), 0xc, &(0x7f00000002c0)={&(0x7f0000000480)={0x5c, r6, 0x10, 0x70bd2b, 0x25dfdbfd, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x290}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0xffff7fff}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x2}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x7fff}, @IPVS_CMD_ATTR_SERVICE={0x28, 0x1, [@IPVS_SVC_ATTR_TIMEOUT={0x8}, @IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv4=@broadcast}, @IPVS_SVC_ATTR_PROTOCOL={0x8, 0x2, 0x87}]}]}, 0x5c}, 0x1, 0x0, 0x0, 0x30}, 0xeb40fc19bc09c063) accept4$packet(r3, 0x0, &(0x7f0000000180), 0x1000) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r7, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$BINDER_SET_MAX_THREADS(r7, 0x40046205, &(0x7f0000000100)=0x4) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f00000000c0)) [ 179.591008] FAULT_INJECTION: forcing a failure. [ 179.591008] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 179.603013] CPU: 0 PID: 11824 Comm: syz-executor.0 Not tainted 4.14.151 #0 [ 179.610045] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 179.619483] Call Trace: [ 179.622096] dump_stack+0x138/0x197 [ 179.625758] should_fail.cold+0x10f/0x159 [ 179.629939] __alloc_pages_nodemask+0x1d6/0x7a0 [ 179.634784] ? fs_reclaim_acquire+0x20/0x20 [ 179.642050] ? __alloc_pages_slowpath+0x2930/0x2930 [ 179.648637] cache_grow_begin+0x80/0x400 [ 179.648652] kmem_cache_alloc+0x6a6/0x780 [ 179.648664] ? vfs_write+0x25f/0x500 [ 179.648679] getname_flags+0xcb/0x580 [ 179.648690] ? check_preemption_disabled+0x3c/0x250 [ 179.648701] getname+0x1a/0x20 [ 179.656907] do_sys_open+0x1e7/0x430 [ 179.656921] ? filp_open+0x70/0x70 [ 179.656930] ? fput+0xd4/0x150 [ 179.656941] ? SyS_pwrite64+0xca/0x140 [ 179.656954] SyS_open+0x2d/0x40 [ 179.656962] ? do_sys_open+0x430/0x430 [ 179.688531] IPVS: Error joining to the multicast group [ 179.691465] do_syscall_64+0x1e8/0x640 [ 179.691477] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 179.691495] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 179.691503] RIP: 0033:0x413fb1 [ 179.691509] RSP: 002b:00007f46eab45a80 EFLAGS: 00000293 ORIG_RAX: 0000000000000002 [ 179.691518] RAX: ffffffffffffffda RBX: 0000000020000068 RCX: 0000000000413fb1 [ 179.691523] RDX: 00007f46eab45b0a RSI: 0000000000000002 RDI: 00007f46eab45b00 07:06:14 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) 07:06:14 executing program 2: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = syz_open_dev$swradio(&(0x7f0000000140)='/dev/swradio#\x00', 0x0, 0x2) r1 = syz_open_procfs(0x0, &(0x7f00000006c0)='Net/3\x97OOT\x15\x00\xb6\xcf@e\xd3r\x82\x9fc') ioctl$VIDIOC_PREPARE_BUF(r1, 0xc058565d, &(0x7f00000005c0)={0x0, 0xb, 0x4, 0x0, {0x0, 0x7530}, {0x0, 0x2, 0x81, 0x10, 0x24, 0x6, "cf676f53"}, 0x80, 0x5, @offset=0x9, 0x4}) mq_timedsend(r1, &(0x7f0000000480)="c1cc3d2c05c16add6c964974e00652617b35c74bd5a620d3170df3c2f134d5beb838b0f00c6ca198401126d02772777a96ead8602a94c5450ea4e5c8b02fc6e876ee2383fc4faa682ed6a91a53a08a1fdd9839c170a6f81ede814c769cf15c688c8514b5f4f1dc0a50019813ce4459df629cd480519073a5f929cd5e59d0058ea64475a46e924294d5ef1b4b158e59d9c923a0", 0x93, 0x4, &(0x7f0000000540)={0x0, 0x989680}) getsockopt$inet_pktinfo(r1, 0x0, 0x8, &(0x7f0000000200)={0x0, @dev, @local}, &(0x7f0000000240)=0xc) setsockopt$packet_drop_memb(r0, 0x107, 0x2, &(0x7f0000000280)={r2, 0x1, 0x6, @local}, 0x10) r3 = syz_open_dev$vivid(&(0x7f0000000080)='/dev/video#\x00', 0x2, 0x2) clock_gettime(0x0, &(0x7f00000000c0)={0x0, 0x0}) ioctl$VIDIOC_QUERYBUF(r3, 0xc0585609, &(0x7f0000000180)={0x26c07f8b, 0x5, 0x4, 0x2000, {r4, r5/1000+10000}, {0x3, 0x0, 0x3f, 0xf9, 0x81, 0x9, "ba2c7b90"}, 0x6, 0x3, @userptr=0x4, 0x4}) [ 179.691527] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 179.691532] R10: 0000000000000075 R11: 0000000000000293 R12: 0000000000000004 [ 179.691537] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 07:06:14 executing program 5 (fault-call:0 fault-nth:7): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) syz_open_procfs(0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) socket$inet6_sctp(0xa, 0x1, 0x84) [ 179.873823] FAULT_INJECTION: forcing a failure. [ 179.873823] name failslab, interval 1, probability 0, space 0, times 0 [ 179.885068] CPU: 0 PID: 11848 Comm: syz-executor.5 Not tainted 4.14.151 #0 [ 179.892196] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 179.902985] Call Trace: [ 179.905592] dump_stack+0x138/0x197 [ 179.909232] should_fail.cold+0x10f/0x159 [ 179.914138] should_failslab+0xdb/0x130 [ 179.919000] kmem_cache_alloc+0x47/0x780 [ 179.932208] ? __alloc_pages_slowpath+0x2930/0x2930 [ 179.937274] ? lock_downgrade+0x740/0x740 [ 179.941424] radix_tree_node_alloc.constprop.0+0x1c7/0x310 [ 179.947086] __radix_tree_create+0x337/0x4d0 [ 179.951588] __radix_tree_insert+0xab/0x570 [ 179.957154] ? __radix_tree_create+0x4d0/0x4d0 [ 179.962168] shmem_add_to_page_cache+0x5a4/0x860 [ 179.966922] ? shmem_writepage+0xbb0/0xbb0 [ 179.971880] ? __radix_tree_preload+0x1d2/0x260 [ 179.976734] shmem_getpage_gfp+0x1757/0x25d0 [ 179.981140] ? shmem_add_to_page_cache+0x860/0x860 [ 179.986063] ? iov_iter_fault_in_readable+0x1da/0x3c0 [ 179.991338] shmem_write_begin+0xfd/0x1b0 [ 179.995587] ? trace_hardirqs_on_caller+0x400/0x590 [ 180.000685] generic_perform_write+0x1f8/0x480 [ 180.005261] ? page_endio+0x530/0x530 [ 180.009056] ? current_time+0xb0/0xb0 [ 180.012938] ? generic_file_write_iter+0x9a/0x660 [ 180.017861] __generic_file_write_iter+0x239/0x5b0 [ 180.022934] generic_file_write_iter+0x303/0x660 [ 180.027688] __vfs_write+0x4a7/0x6b0 [ 180.031431] ? selinux_file_open+0x420/0x420 [ 180.035867] ? kernel_read+0x120/0x120 [ 180.039862] ? check_preemption_disabled+0x3c/0x250 [ 180.044902] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 180.050376] ? rcu_sync_lockdep_assert+0x6d/0xb0 [ 180.055123] ? __sb_start_write+0x153/0x2f0 [ 180.059440] vfs_write+0x198/0x500 [ 180.062974] SyS_pwrite64+0x115/0x140 [ 180.066765] ? SyS_pread64+0x140/0x140 [ 180.070646] ? do_syscall_64+0x53/0x640 [ 180.074667] ? SyS_pread64+0x140/0x140 [ 180.078662] do_syscall_64+0x1e8/0x640 [ 180.082742] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 180.087585] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 180.092812] RIP: 0033:0x414017 [ 180.096020] RSP: 002b:00007f6768d5fa80 EFLAGS: 00000293 ORIG_RAX: 0000000000000012 [ 180.103843] RAX: ffffffffffffffda RBX: 0000000020000050 RCX: 0000000000414017 [ 180.111319] RDX: 0000000000000048 RSI: 00000000200002c0 RDI: 0000000000000004 [ 180.119028] RBP: 0000000000000000 R08: fe03f80fe03f80ff R09: 00000000fbad8001 07:06:15 executing program 1: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = syz_open_dev$vcsn(&(0x7f00000000c0)='/dev/vcs#\x00', 0x1, 0x4100) sendmsg$unix(r0, &(0x7f00000001c0)={&(0x7f0000000140)=@abs={0x1, 0x0, 0x4e24}, 0x6e, &(0x7f0000002540), 0x246, 0x0, 0x37f, 0x10}, 0x44) socket$inet6_sctp(0xa, 0x0, 0x84) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r2, &(0x7f0000008880), 0x400000000000249, 0x0, 0x0) getsockopt$inet6_buf(r2, 0x29, 0xe9, &(0x7f0000000240)=""/70, &(0x7f0000000340)=0x46) ioctl$PERF_EVENT_IOC_SET_FILTER(r1, 0x40082406, &(0x7f0000000080)='btrfs\x00') [ 180.127334] R10: 0000000000010000 R11: 0000000000000293 R12: 0000000000000004 [ 180.134857] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 07:06:15 executing program 0 (fault-call:0 fault-nth:10): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x0, 0x989680}) socket$inet6_sctp(0xa, 0x0, 0x84) [ 180.242648] FAULT_INJECTION: forcing a failure. [ 180.242648] name failslab, interval 1, probability 0, space 0, times 0 [ 180.276147] CPU: 0 PID: 11867 Comm: syz-executor.0 Not tainted 4.14.151 #0 [ 180.283553] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 180.294944] Call Trace: [ 180.303895] dump_stack+0x138/0x197 [ 180.307557] should_fail.cold+0x10f/0x159 [ 180.311736] should_failslab+0xdb/0x130 [ 180.320547] kmem_cache_alloc+0x2d7/0x780 [ 180.324939] ? save_stack+0xa9/0xd0 [ 180.329987] get_empty_filp+0x8c/0x3f0 [ 180.336130] path_openat+0x8f/0x3f70 [ 180.339872] ? trace_hardirqs_on+0x10/0x10 [ 180.344139] ? check_preemption_disabled+0x3c/0x250 [ 180.349188] ? path_lookupat.isra.0+0x7b0/0x7b0 [ 180.353883] ? find_held_lock+0x35/0x130 [ 180.357974] ? save_trace+0x290/0x290 [ 180.362235] ? __alloc_fd+0x1d4/0x4a0 [ 180.366062] do_filp_open+0x18e/0x250 [ 180.369892] ? may_open_dev+0xe0/0xe0 [ 180.373720] ? lock_downgrade+0x740/0x740 [ 180.378181] ? _raw_spin_unlock+0x2d/0x50 [ 180.382372] ? __alloc_fd+0x1d4/0x4a0 [ 180.386188] do_sys_open+0x2c5/0x430 [ 180.390134] ? filp_open+0x70/0x70 [ 180.393682] ? fput+0xd4/0x150 [ 180.397152] ? SyS_pwrite64+0xca/0x140 [ 180.401074] SyS_open+0x2d/0x40 [ 180.404348] ? do_sys_open+0x430/0x430 [ 180.408233] do_syscall_64+0x1e8/0x640 [ 180.412114] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 180.417233] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 180.422420] RIP: 0033:0x413fb1 [ 180.425700] RSP: 002b:00007f46eab45a80 EFLAGS: 00000293 ORIG_RAX: 0000000000000002 [ 180.433416] RAX: ffffffffffffffda RBX: 0000000020000068 RCX: 0000000000413fb1 07:06:15 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0), 0x0, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) 07:06:15 executing program 5 (fault-call:0 fault-nth:8): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) syz_open_procfs(0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) socket$inet6_sctp(0xa, 0x1, 0x84) [ 180.440712] RDX: 00007f46eab45b0a RSI: 0000000000000002 RDI: 00007f46eab45b00 [ 180.449974] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 180.457702] R10: 0000000000000075 R11: 0000000000000293 R12: 0000000000000004 [ 180.476341] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 07:06:15 executing program 4: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, 0x0) r1 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) ioctl$VIDIOC_QUERYCAP(r1, 0x80685600, &(0x7f0000000040)) syz_open_dev$mouse(0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f00000000c0)) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) write$selinux_load(r2, &(0x7f0000000900)={0xf97cff8c, 0x8, 'SE Linux', "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"}, 0x1010) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) 07:06:15 executing program 0 (fault-call:0 fault-nth:11): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x0, 0x989680}) socket$inet6_sctp(0xa, 0x0, 0x84) [ 180.562275] FAULT_INJECTION: forcing a failure. [ 180.562275] name failslab, interval 1, probability 0, space 0, times 0 [ 180.631067] CPU: 1 PID: 11892 Comm: syz-executor.5 Not tainted 4.14.151 #0 [ 180.638263] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 180.647719] Call Trace: [ 180.647743] dump_stack+0x138/0x197 [ 180.654022] should_fail.cold+0x10f/0x159 [ 180.658194] should_failslab+0xdb/0x130 [ 180.662189] kmem_cache_alloc+0x2d7/0x780 [ 180.666352] ? vfs_write+0x25f/0x500 [ 180.670089] getname_flags+0xcb/0x580 [ 180.673917] ? check_preemption_disabled+0x3c/0x250 [ 180.678962] getname+0x1a/0x20 [ 180.682186] do_sys_open+0x1e7/0x430 [ 180.685927] ? filp_open+0x70/0x70 [ 180.689487] ? fput+0xd4/0x150 [ 180.692703] ? SyS_pwrite64+0xca/0x140 [ 180.696705] SyS_open+0x2d/0x40 [ 180.703377] ? do_sys_open+0x430/0x430 [ 180.707640] do_syscall_64+0x1e8/0x640 [ 180.711910] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 180.716870] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 180.722166] RIP: 0033:0x413fb1 07:06:15 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0), 0x0, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) 07:06:15 executing program 2: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socket$inet_tcp(0x2, 0x1, 0x0) prctl$PR_GET_TSC(0x19, &(0x7f0000000080)) [ 180.725369] RSP: 002b:00007f6768d5fa80 EFLAGS: 00000293 ORIG_RAX: 0000000000000002 [ 180.733097] RAX: ffffffffffffffda RBX: 0000000020000068 RCX: 0000000000413fb1 [ 180.740443] RDX: 00007f6768d5fb0a RSI: 0000000000000002 RDI: 00007f6768d5fb00 [ 180.740451] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 180.740456] R10: 0000000000000075 R11: 0000000000000293 R12: 0000000000000004 [ 180.740462] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 [ 180.748444] FAULT_INJECTION: forcing a failure. [ 180.748444] name failslab, interval 1, probability 0, space 0, times 0 [ 180.807044] CPU: 1 PID: 11904 Comm: syz-executor.0 Not tainted 4.14.151 #0 [ 180.814725] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 180.814731] Call Trace: [ 180.814749] dump_stack+0x138/0x197 [ 180.814764] should_fail.cold+0x10f/0x159 [ 180.814778] should_failslab+0xdb/0x130 [ 180.814791] kmem_cache_alloc+0x2d7/0x780 [ 180.814802] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 180.814813] ? check_preemption_disabled+0x3c/0x250 [ 180.814826] selinux_file_alloc_security+0xb4/0x190 [ 180.814837] security_file_alloc+0x6d/0xa0 [ 180.814850] get_empty_filp+0x162/0x3f0 [ 180.814860] path_openat+0x8f/0x3f70 [ 180.814874] ? trace_hardirqs_on+0x10/0x10 [ 180.814883] ? check_preemption_disabled+0x3c/0x250 [ 180.814898] ? path_lookupat.isra.0+0x7b0/0x7b0 [ 180.814905] ? find_held_lock+0x35/0x130 [ 180.814914] ? save_trace+0x290/0x290 [ 180.814956] ? __alloc_fd+0x1d4/0x4a0 [ 180.897411] do_filp_open+0x18e/0x250 [ 180.901990] ? may_open_dev+0xe0/0xe0 [ 180.905793] ? lock_downgrade+0x740/0x740 [ 180.909937] ? _raw_spin_unlock+0x2d/0x50 [ 180.914074] ? __alloc_fd+0x1d4/0x4a0 [ 180.917871] do_sys_open+0x2c5/0x430 [ 180.921580] ? filp_open+0x70/0x70 [ 180.927486] ? fput+0xd4/0x150 [ 180.930671] ? SyS_pwrite64+0xca/0x140 [ 180.934640] SyS_open+0x2d/0x40 [ 180.937911] ? do_sys_open+0x430/0x430 [ 180.941876] do_syscall_64+0x1e8/0x640 [ 180.952996] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 180.957839] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 180.963023] RIP: 0033:0x413fb1 [ 180.966201] RSP: 002b:00007f46eab45a80 EFLAGS: 00000293 ORIG_RAX: 0000000000000002 07:06:16 executing program 5 (fault-call:0 fault-nth:9): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) syz_open_procfs(0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) socket$inet6_sctp(0xa, 0x1, 0x84) [ 180.974324] RAX: ffffffffffffffda RBX: 0000000020000068 RCX: 0000000000413fb1 [ 180.994056] RDX: 00007f46eab45b0a RSI: 0000000000000002 RDI: 00007f46eab45b00 [ 181.001347] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 181.008618] R10: 0000000000000075 R11: 0000000000000293 R12: 0000000000000004 [ 181.015888] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 07:06:16 executing program 1: pipe(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0x7, &(0x7f0000000080)={0x1, 0x6, 0x6, 0x2}, 0x10) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000040), 0x0, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) gettid() 07:06:16 executing program 0 (fault-call:0 fault-nth:12): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x0, 0x989680}) socket$inet6_sctp(0xa, 0x0, 0x84) 07:06:16 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0), 0x0, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) [ 181.090340] FAULT_INJECTION: forcing a failure. [ 181.090340] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 181.103327] CPU: 1 PID: 11930 Comm: syz-executor.5 Not tainted 4.14.151 #0 [ 181.110350] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 181.119719] Call Trace: [ 181.122321] dump_stack+0x138/0x197 [ 181.126055] should_fail.cold+0x10f/0x159 [ 181.130221] __alloc_pages_nodemask+0x1d6/0x7a0 [ 181.134963] ? fs_reclaim_acquire+0x20/0x20 [ 181.139277] ? __alloc_pages_slowpath+0x2930/0x2930 [ 181.144288] cache_grow_begin+0x80/0x400 [ 181.148339] kmem_cache_alloc+0x6a6/0x780 [ 181.152578] ? vfs_write+0x25f/0x500 [ 181.156298] getname_flags+0xcb/0x580 [ 181.160132] ? check_preemption_disabled+0x3c/0x250 [ 181.165149] getname+0x1a/0x20 [ 181.168337] do_sys_open+0x1e7/0x430 [ 181.172046] ? filp_open+0x70/0x70 [ 181.175574] ? fput+0xd4/0x150 [ 181.178772] ? SyS_pwrite64+0xca/0x140 [ 181.182653] SyS_open+0x2d/0x40 [ 181.185967] ? do_sys_open+0x430/0x430 [ 181.189846] do_syscall_64+0x1e8/0x640 [ 181.193724] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 181.198577] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 181.203772] RIP: 0033:0x413fb1 [ 181.206952] RSP: 002b:00007f6768d5fa80 EFLAGS: 00000293 ORIG_RAX: 0000000000000002 [ 181.214652] RAX: ffffffffffffffda RBX: 0000000020000068 RCX: 0000000000413fb1 [ 181.221912] RDX: 00007f6768d5fb0a RSI: 0000000000000002 RDI: 00007f6768d5fb00 [ 181.234925] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 181.242214] R10: 0000000000000075 R11: 0000000000000293 R12: 0000000000000004 [ 181.249496] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 [ 181.298462] FAULT_INJECTION: forcing a failure. [ 181.298462] name failslab, interval 1, probability 0, space 0, times 0 [ 181.339366] CPU: 1 PID: 11940 Comm: syz-executor.0 Not tainted 4.14.151 #0 [ 181.347172] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 181.356696] Call Trace: [ 181.359283] dump_stack+0x138/0x197 [ 181.362907] should_fail.cold+0x10f/0x159 [ 181.367055] should_failslab+0xdb/0x130 [ 181.371027] kmem_cache_alloc_trace+0x2e9/0x790 [ 181.375777] ? __lockdep_init_map+0x10c/0x570 [ 181.380258] ? loop_get_status64+0x120/0x120 [ 181.384736] __kthread_create_on_node+0xe3/0x3e0 [ 181.389999] ? kthread_park+0x140/0x140 [ 181.394075] ? __fget+0x210/0x370 [ 181.397520] ? loop_get_status64+0x120/0x120 [ 181.401975] kthread_create_on_node+0xa8/0xd0 [ 181.406685] ? __kthread_create_on_node+0x3e0/0x3e0 [ 181.411960] ? __lockdep_init_map+0x10c/0x570 [ 181.416450] lo_ioctl+0xcf7/0x1ce0 [ 181.420080] ? debug_check_no_obj_freed+0x2aa/0x7b7 [ 181.434384] ? loop_probe+0x160/0x160 [ 181.438169] blkdev_ioctl+0x96b/0x1860 [ 181.442039] ? blkpg_ioctl+0x980/0x980 [ 181.445913] ? __might_sleep+0x93/0xb0 [ 181.449782] ? __fget+0x210/0x370 [ 181.453223] block_ioctl+0xde/0x120 [ 181.456836] ? blkdev_fallocate+0x3b0/0x3b0 [ 181.461141] do_vfs_ioctl+0x7ae/0x1060 [ 181.465100] ? selinux_file_mprotect+0x5d0/0x5d0 [ 181.469838] ? lock_downgrade+0x740/0x740 [ 181.473972] ? ioctl_preallocate+0x1c0/0x1c0 [ 181.478368] ? __fget+0x237/0x370 [ 181.481815] ? security_file_ioctl+0x89/0xb0 [ 181.486557] SyS_ioctl+0x8f/0xc0 [ 181.489906] ? do_vfs_ioctl+0x1060/0x1060 [ 181.494226] do_syscall_64+0x1e8/0x640 [ 181.498107] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 181.502941] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 181.509593] RIP: 0033:0x45a087 [ 181.512767] RSP: 002b:00007f46eab45a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 181.520460] RAX: ffffffffffffffda RBX: 0000000020000068 RCX: 000000000045a087 [ 181.528359] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 181.535630] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 181.543336] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 181.551907] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 07:06:16 executing program 5 (fault-call:0 fault-nth:10): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) syz_open_procfs(0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) socket$inet6_sctp(0xa, 0x1, 0x84) 07:06:16 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2", 0x24, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) 07:06:16 executing program 0 (fault-call:0 fault-nth:13): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x0, 0x989680}) socket$inet6_sctp(0xa, 0x0, 0x84) 07:06:16 executing program 2: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) lsetxattr$trusted_overlay_opaque(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='trusted.overlay.opaque\x00', &(0x7f0000000140)='y\x00', 0x2, 0x0) 07:06:16 executing program 4: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = socket$pptp(0x18, 0x1, 0x2) openat$urandom(0xffffffffffffff9c, &(0x7f0000000100)='/dev/urandom\x00', 0x0, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000003c0)={{{@in6=@empty, @in6=@rand_addr="06060c16645ad7c394056f45dea8c851", 0x0, 0x0, 0x0, 0x0, 0xa}}, {{@in6=@rand_addr="09de0b543dab41918e64211f6500", 0x0, 0x6c}, 0x0, @in6=@mcast1}}, 0xe8) r2 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f00000003c0)={{{@in6=@empty, @in=@initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, 0xa}}, {{@in6=@loopback, 0x0, 0x6c}, 0x0, @in6=@mcast1}}, 0xe8) r3 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r3, 0x29, 0x23, &(0x7f00000003c0)={{{@in=@multicast2, @in=@initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, 0xa}}, {{@in6=@loopback, 0x0, 0x6c}, 0x0, @in6=@mcast1}}, 0xe8) r4 = socket$key(0xf, 0x3, 0x2) setsockopt$sock_int(r4, 0x1, 0x8, &(0x7f00000001c0), 0x4) sendmsg$key(r4, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000c80)=ANY=[@ANYBLOB="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"], 0x10}}, 0x0) ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, 0x0) r5 = socket$kcm(0x29, 0x5, 0x0) fcntl$dupfd(0xffffffffffffffff, 0x406, r5) r6 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) ioctl$VIDIOC_QUERYCAP(r6, 0x80685600, &(0x7f0000000040)) syz_open_dev$mouse(0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f00000000c0)) 07:06:16 executing program 1: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) r1 = socket$inet6_sctp(0xa, 0x1, 0x84) r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [0x0]}, &(0x7f000095dffc)=0x8) r4 = syz_open_dev$midi(&(0x7f00000000c0)='/dev/midi#\x00', 0x0, 0x40000) r5 = socket$inet6_sctp(0xa, 0x1, 0x84) r6 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r6, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [0x0]}, &(0x7f000095dffc)=0x8) getsockopt$inet_sctp6_SCTP_ASSOCINFO(r5, 0x84, 0x1, &(0x7f0000000000)={r7}, &(0x7f0000000040)=0x14) setsockopt$inet_sctp6_SCTP_DEFAULT_SEND_PARAM(r4, 0x84, 0xa, &(0x7f0000000240)={0x2, 0x6, 0x8609, 0x5, 0x5, 0x8, 0x7, 0x6e1b50f0, r7}, 0x20) getsockopt$inet_sctp6_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f0000000000)={r3}, &(0x7f0000000040)=0x14) getsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x1f, &(0x7f0000000140)={r3, @in={{0x2, 0x4e23, @remote}}, 0x81, 0x2}, &(0x7f0000000080)=0x90) [ 181.753179] FAULT_INJECTION: forcing a failure. [ 181.753179] name failslab, interval 1, probability 0, space 0, times 0 [ 181.806840] FAULT_INJECTION: forcing a failure. [ 181.806840] name failslab, interval 1, probability 0, space 0, times 0 [ 181.831768] CPU: 0 PID: 11977 Comm: syz-executor.0 Not tainted 4.14.151 #0 [ 181.838925] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 181.849012] Call Trace: [ 181.851613] dump_stack+0x138/0x197 [ 181.855263] should_fail.cold+0x10f/0x159 [ 181.859426] should_failslab+0xdb/0x130 [ 181.863501] kmem_cache_alloc+0x2d7/0x780 [ 181.867925] ? trace_hardirqs_on+0x10/0x10 [ 181.872810] ? save_trace+0x290/0x290 [ 181.876612] __kernfs_new_node+0x70/0x420 [ 181.880765] kernfs_new_node+0x80/0xf0 [ 181.884668] kernfs_create_dir_ns+0x41/0x140 [ 181.889075] internal_create_group+0xea/0x7b0 [ 181.893574] sysfs_create_group+0x20/0x30 [ 181.897722] lo_ioctl+0x1176/0x1ce0 [ 181.902308] ? loop_probe+0x160/0x160 [ 181.906636] blkdev_ioctl+0x96b/0x1860 [ 181.910524] ? blkpg_ioctl+0x980/0x980 [ 181.914414] ? __might_sleep+0x93/0xb0 [ 181.918316] ? __fget+0x210/0x370 [ 181.921785] block_ioctl+0xde/0x120 [ 181.925407] ? blkdev_fallocate+0x3b0/0x3b0 [ 181.929733] do_vfs_ioctl+0x7ae/0x1060 [ 181.933792] ? selinux_file_mprotect+0x5d0/0x5d0 [ 181.938542] ? lock_downgrade+0x740/0x740 [ 181.942692] ? ioctl_preallocate+0x1c0/0x1c0 [ 181.947102] ? __fget+0x237/0x370 [ 181.950563] ? security_file_ioctl+0x89/0xb0 [ 181.954974] SyS_ioctl+0x8f/0xc0 [ 181.958430] ? do_vfs_ioctl+0x1060/0x1060 [ 181.962586] do_syscall_64+0x1e8/0x640 [ 181.966484] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 181.971333] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 181.976513] RIP: 0033:0x45a087 [ 181.979692] RSP: 002b:00007f46eab45a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 181.987394] RAX: ffffffffffffffda RBX: 0000000020000068 RCX: 000000000045a087 [ 181.994658] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 182.001923] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 182.009188] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 182.016715] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 [ 182.024018] CPU: 1 PID: 11992 Comm: syz-executor.5 Not tainted 4.14.151 #0 [ 182.031040] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 182.031046] Call Trace: [ 182.031064] dump_stack+0x138/0x197 [ 182.031080] should_fail.cold+0x10f/0x159 [ 182.031094] should_failslab+0xdb/0x130 [ 182.031106] kmem_cache_alloc+0x2d7/0x780 [ 182.031116] ? save_stack+0xa9/0xd0 [ 182.031133] get_empty_filp+0x8c/0x3f0 [ 182.066468] path_openat+0x8f/0x3f70 [ 182.070217] ? trace_hardirqs_on+0x10/0x10 [ 182.070231] ? check_preemption_disabled+0x3c/0x250 [ 182.070247] ? path_lookupat.isra.0+0x7b0/0x7b0 [ 182.070255] ? find_held_lock+0x35/0x130 [ 182.070266] ? save_trace+0x290/0x290 [ 182.092061] ? __alloc_fd+0x1d4/0x4a0 [ 182.095891] do_filp_open+0x18e/0x250 [ 182.099711] ? may_open_dev+0xe0/0xe0 [ 182.103535] ? lock_downgrade+0x740/0x740 [ 182.108321] ? _raw_spin_unlock+0x2d/0x50 [ 182.113273] ? __alloc_fd+0x1d4/0x4a0 [ 182.117334] do_sys_open+0x2c5/0x430 [ 182.121069] ? filp_open+0x70/0x70 [ 182.124643] ? fput+0xd4/0x150 [ 182.124657] ? SyS_pwrite64+0xca/0x140 [ 182.124672] SyS_open+0x2d/0x40 [ 182.124682] ? do_sys_open+0x430/0x430 [ 182.134001] do_syscall_64+0x1e8/0x640 [ 182.134012] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 182.134027] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 182.134035] RIP: 0033:0x413fb1 [ 182.134041] RSP: 002b:00007f6768d5fa80 EFLAGS: 00000293 ORIG_RAX: 0000000000000002 [ 182.134052] RAX: ffffffffffffffda RBX: 0000000020000068 RCX: 0000000000413fb1 [ 182.134057] RDX: 00007f6768d5fb0a RSI: 0000000000000002 RDI: 00007f6768d5fb00 [ 182.134064] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 182.212961] R10: 0000000000000075 R11: 0000000000000293 R12: 0000000000000004 [ 182.220216] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 07:06:17 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2", 0x24, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) 07:06:17 executing program 5 (fault-call:0 fault-nth:11): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) syz_open_procfs(0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) socket$inet6_sctp(0xa, 0x1, 0x84) 07:06:17 executing program 2: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000040), 0x0, 0x0) 07:06:17 executing program 4: sched_setscheduler(0x0, 0x5, 0x0) r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = socket$pptp(0x18, 0x1, 0x2) r2 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000100)='/dev/mixer\x00', 0x280801, 0x0) ioctl$USBDEVFS_RESETEP(r2, 0x80045503, &(0x7f0000000140)={0xf, 0x1}) ioctl$sock_inet_SIOCSIFPFLAGS(r1, 0x8934, 0x0) mmap$perf(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2000002, 0x80010, r0, 0x3) r3 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) ioctl$VIDIOC_QUERYCAP(r3, 0x80685600, &(0x7f0000000040)) syz_open_dev$mouse(0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f00000000c0)) 07:06:17 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2", 0x24, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) [ 182.403398] FAULT_INJECTION: forcing a failure. [ 182.403398] name failslab, interval 1, probability 0, space 0, times 0 [ 182.441614] CPU: 1 PID: 12022 Comm: syz-executor.5 Not tainted 4.14.151 #0 [ 182.448680] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 182.458225] Call Trace: [ 182.458245] dump_stack+0x138/0x197 [ 182.458262] should_fail.cold+0x10f/0x159 [ 182.458277] should_failslab+0xdb/0x130 [ 182.472593] kmem_cache_alloc+0x2d7/0x780 [ 182.476818] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 182.483004] ? check_preemption_disabled+0x3c/0x250 [ 182.488024] selinux_file_alloc_security+0xb4/0x190 [ 182.493052] security_file_alloc+0x6d/0xa0 [ 182.497277] get_empty_filp+0x162/0x3f0 [ 182.501266] path_openat+0x8f/0x3f70 [ 182.504968] ? trace_hardirqs_on+0x10/0x10 [ 182.509194] ? check_preemption_disabled+0x3c/0x250 [ 182.514309] ? path_lookupat.isra.0+0x7b0/0x7b0 [ 182.518975] ? find_held_lock+0x35/0x130 [ 182.523023] ? save_trace+0x290/0x290 [ 182.526814] ? __alloc_fd+0x1d4/0x4a0 [ 182.535530] do_filp_open+0x18e/0x250 [ 182.539330] ? may_open_dev+0xe0/0xe0 [ 182.543217] ? lock_downgrade+0x740/0x740 [ 182.547352] ? _raw_spin_unlock+0x2d/0x50 [ 182.551484] ? __alloc_fd+0x1d4/0x4a0 [ 182.555281] do_sys_open+0x2c5/0x430 [ 182.559007] ? filp_open+0x70/0x70 [ 182.562532] ? fput+0xd4/0x150 [ 182.565723] ? SyS_pwrite64+0xca/0x140 [ 182.569600] SyS_open+0x2d/0x40 [ 182.572872] ? do_sys_open+0x430/0x430 [ 182.576749] do_syscall_64+0x1e8/0x640 [ 182.580623] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 182.585455] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 182.590630] RIP: 0033:0x413fb1 [ 182.593806] RSP: 002b:00007f6768d5fa80 EFLAGS: 00000293 ORIG_RAX: 0000000000000002 07:06:17 executing program 0 (fault-call:0 fault-nth:14): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x0, 0x989680}) socket$inet6_sctp(0xa, 0x0, 0x84) [ 182.601501] RAX: ffffffffffffffda RBX: 0000000020000068 RCX: 0000000000413fb1 [ 182.608771] RDX: 00007f6768d5fb0a RSI: 0000000000000002 RDI: 00007f6768d5fb00 [ 182.616026] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 182.623284] R10: 0000000000000075 R11: 0000000000000293 R12: 0000000000000004 [ 182.630553] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 07:06:17 executing program 5 (fault-call:0 fault-nth:12): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) syz_open_procfs(0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) socket$inet6_sctp(0xa, 0x1, 0x84) 07:06:17 executing program 1: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = socket$inet6_sctp(0xa, 0x0, 0x84) r1 = socket$inet6_sctp(0xa, 0x1, 0x84) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) ioctl$EXT4_IOC_ALLOC_DA_BLKS(r3, 0x660c) setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, &(0x7f0000000380)="0c4f4d16cf2f3a2dd8a5046790a60c91e487dc9ca281434dbc169c6555a654da5e42c953490634b417ec9535653162fc5730d4c8dab3e136550ed7d31fa8d7094afd6e5154349155e6ef7e5fb08d79c283188a3f28548ab4366e6863ba5561aedbd1ee3f9a2c5646e4a9c2806b231528bca7ee2134e39966c40bcb1371a7e7691672a8dc9bda07175f11a9160cba3f0ddb78db3b2e184e1e9aa371691df9f49a5e3343bce4e4b8a2c80831b63d95ed57cf89982b317abf1cf8a71078d00dd5fa9151c142fa4bb765d503150f5f6f34284c7480a5091e9b246e", 0xd9) fsetxattr$trusted_overlay_nlink(r3, &(0x7f0000000240)='trusted.overlay.nlink\x00', &(0x7f0000000300)={'U+', 0x7}, 0x28, 0x3) r4 = accept$packet(r3, &(0x7f0000000240)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @remote}, &(0x7f0000000280)=0x14) write$binfmt_script(r2, &(0x7f00000004c0)={'#! ', './file0', [{0x20, 'trusted.overlay.nlink\x00'}, {}, {0x20, 'btrfs\x00'}, {0x20, '~'}, {0x20, 'trusted.overlay.nlink\x00'}, {0x20, 'trusted.overlay.nlink\x00'}, {0x20, 'trusted.overlay.nlink\x00'}], 0xa, "b5ff286f5e23768d23972b9e5da7a166ca495796c5443d8b34990594f8218238a11112d8464d181e1c691258124f4fb0f96635a7686d0399cb7cc780b5227594c5654c585baf0d7f571c7d97569888e53599ed5ffcc93da84436dd7c5fdc4d2661d7dede213ca955e0e45783"}, 0xdd) ioctl$FS_IOC_ADD_ENCRYPTION_KEY(r4, 0xc0506617, &(0x7f0000000340)={{0x1, 0x0, @identifier="1de3818fd5b0e0c21d486578e2600843"}, 0xf7, [], "4743e0bd4f4f59d84e4bbf53b1fe030f611c619849d5ae1503376fb479c5f1997ae48311ebcc63324db708bd062543388dff2e2eb1ff532909c07b4f17fc5e89542897c24d71697aeff812631e1834d064a8874b3f5d77ae3517188c0be37d76199eb51fdb1cf760ad0b643eb81a312492c92f738816b50b5b5e431e708ca59ad7ba62f812275ecc1d7e2bf87e5bfe62c16815d280d2eeb5e54517de6dabdad4d0b60c6bd7bb9434a3a26ed4ae8685bd431c003d437836fe16e42ea081dc7bf488f55e2f1edc3c78a0e5c2202ab9c39fa07b2b9b7610907bee7f13f9107c32462e2004999ac097141ed23d81bfe8c327e3f480df737103"}) r5 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r5, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [0x0]}, &(0x7f000095dffc)=0x8) getsockopt$inet_sctp6_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f0000000000)={r6}, &(0x7f0000000040)=0x14) getsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, &(0x7f0000000080)={r6, 0x90, &(0x7f0000000140)=[@in6={0xa, 0x4e24, 0x89d0, @local, 0x2844ba44}, @in6={0xa, 0x4e21, 0x196f, @mcast2, 0x4}, @in={0x2, 0x9, @dev={0xac, 0x14, 0x14, 0x15}}, @in={0x2, 0x4e23, @broadcast}, @in6={0xa, 0x4e23, 0x3, @loopback, 0x1}, @in6={0xa, 0x4e21, 0x3, @loopback, 0x3ff}]}, &(0x7f00000000c0)=0x10) setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(r0, 0x84, 0x7c, &(0x7f0000000200)={r7, 0x1ff, 0xfff}, 0x8) 07:06:17 executing program 4: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, 0x0) r1 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) ioctl$VIDIOC_QUERYCAP(r1, 0x80685600, &(0x7f0000000040)) syz_open_dev$mouse(0x0, 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) ioctl$EXT4_IOC_ALLOC_DA_BLKS(r2, 0x660c) setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f0000000380)="0c4f4d16cf2f3a2dd8a5046790a60c91e487dc9ca281434dbc169c6555a654da5e42c953490634b417ec9535653162fc5730d4c8dab3e136550ed7d31fa8d7094afd6e5154349155e6ef7e5fb08d79c283188a3f28548ab4366e6863ba5561aedbd1ee3f9a2c5646e4a9c2806b231528bca7ee2134e39966c40bcb1371a7e7691672a8dc9bda07175f11a9160cba3f0ddb78db3b2e184e1e9aa371691df9f49a5e3343bce4e4b8a2c80831b63d95ed57cf89982b317abf1cf8a71078d00dd5fa9151c142fa4bb765d503150f5f6f34284c7480a5091e9b246e", 0xd9) fsetxattr$trusted_overlay_nlink(r2, &(0x7f0000000240)='trusted.overlay.nlink\x00', &(0x7f0000000300)={'U+', 0x7}, 0x28, 0x3) clock_gettime(0x0, &(0x7f0000000140)={0x0, 0x0}) futimesat(r2, &(0x7f0000000100)='./file0\x00', &(0x7f0000000180)={{r3, r4/1000+30000}, {0x77359400}}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f00000000c0)) [ 182.734333] FAULT_INJECTION: forcing a failure. [ 182.734333] name failslab, interval 1, probability 0, space 0, times 0 [ 182.759706] CPU: 1 PID: 12040 Comm: syz-executor.0 Not tainted 4.14.151 #0 [ 182.766785] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 182.776160] Call Trace: [ 182.779010] dump_stack+0x138/0x197 07:06:17 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000", 0x36, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) [ 182.782657] should_fail.cold+0x10f/0x159 [ 182.786829] should_failslab+0xdb/0x130 [ 182.790856] kmem_cache_alloc+0x2d7/0x780 [ 182.802137] ? __mutex_unlock_slowpath+0x71/0x800 [ 182.806987] ? __lock_is_held+0xb6/0x140 [ 182.811034] __kernfs_new_node+0x70/0x420 [ 182.815168] kernfs_new_node+0x80/0xf0 [ 182.819066] __kernfs_create_file+0x46/0x323 [ 182.823634] sysfs_add_file_mode_ns+0x1e4/0x450 [ 182.828376] internal_create_group+0x232/0x7b0 [ 182.833034] sysfs_create_group+0x20/0x30 [ 182.837181] lo_ioctl+0x1176/0x1ce0 [ 182.840847] ? loop_probe+0x160/0x160 [ 182.844679] blkdev_ioctl+0x96b/0x1860 [ 182.848996] ? blkpg_ioctl+0x980/0x980 [ 182.852968] ? __might_sleep+0x93/0xb0 [ 182.856966] ? __fget+0x210/0x370 [ 182.860666] block_ioctl+0xde/0x120 [ 182.872440] ? blkdev_fallocate+0x3b0/0x3b0 [ 182.876754] do_vfs_ioctl+0x7ae/0x1060 [ 182.880747] ? selinux_file_mprotect+0x5d0/0x5d0 [ 182.885490] ? lock_downgrade+0x740/0x740 [ 182.889624] ? ioctl_preallocate+0x1c0/0x1c0 [ 182.894164] ? __fget+0x237/0x370 [ 182.898463] ? security_file_ioctl+0x89/0xb0 [ 182.903297] SyS_ioctl+0x8f/0xc0 [ 182.913455] ? do_vfs_ioctl+0x1060/0x1060 [ 182.917595] do_syscall_64+0x1e8/0x640 [ 182.921465] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 182.926306] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 182.931488] RIP: 0033:0x45a087 [ 182.934666] RSP: 002b:00007f46eab45a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 182.942955] RAX: ffffffffffffffda RBX: 0000000020000068 RCX: 000000000045a087 [ 182.957135] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 182.964743] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 182.972705] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 07:06:18 executing program 2: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0xda, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$VIDIOC_S_INPUT(r0, 0xc0045627, &(0x7f0000000080)=0x1ff) r1 = creat(&(0x7f0000001340)='./file0\x00', 0xa14cd9a59db83f2b) getsockopt$inet_tcp_TCP_ZEROCOPY_RECEIVE(r1, 0x6, 0x23, &(0x7f0000001380)={&(0x7f0000ffc000/0x2000)=nil, 0x2000}, &(0x7f00000013c0)=0x10) [ 182.980440] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 [ 183.100723] FAULT_INJECTION: forcing a failure. [ 183.100723] name failslab, interval 1, probability 0, space 0, times 0 07:06:18 executing program 0 (fault-call:0 fault-nth:15): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x0, 0x989680}) socket$inet6_sctp(0xa, 0x0, 0x84) [ 183.149158] CPU: 1 PID: 12071 Comm: syz-executor.5 Not tainted 4.14.151 #0 [ 183.156768] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 183.156774] Call Trace: [ 183.156795] dump_stack+0x138/0x197 [ 183.156815] should_fail.cold+0x10f/0x159 [ 183.156833] should_failslab+0xdb/0x130 [ 183.156846] kmem_cache_alloc_trace+0x2e9/0x790 [ 183.156861] ? __lockdep_init_map+0x10c/0x570 [ 183.189866] ? loop_get_status64+0x120/0x120 [ 183.194311] __kthread_create_on_node+0xe3/0x3e0 [ 183.199098] ? kthread_park+0x140/0x140 [ 183.203099] ? __fget+0x210/0x370 [ 183.206585] ? loop_get_status64+0x120/0x120 [ 183.211024] kthread_create_on_node+0xa8/0xd0 [ 183.215551] ? __kthread_create_on_node+0x3e0/0x3e0 [ 183.220618] ? __lockdep_init_map+0x10c/0x570 [ 183.220641] lo_ioctl+0xcf7/0x1ce0 [ 183.220655] ? debug_check_no_obj_freed+0x2aa/0x7b7 [ 183.220671] ? loop_probe+0x160/0x160 [ 183.220684] blkdev_ioctl+0x96b/0x1860 [ 183.220692] ? blkpg_ioctl+0x980/0x980 [ 183.220709] ? __might_sleep+0x93/0xb0 [ 183.220718] ? __fget+0x210/0x370 [ 183.220732] block_ioctl+0xde/0x120 [ 183.226755] FAULT_INJECTION: forcing a failure. [ 183.226755] name failslab, interval 1, probability 0, space 0, times 0 [ 183.228815] ? blkdev_fallocate+0x3b0/0x3b0 [ 183.228828] do_vfs_ioctl+0x7ae/0x1060 [ 183.228842] ? selinux_file_mprotect+0x5d0/0x5d0 [ 183.228854] ? lock_downgrade+0x740/0x740 [ 183.228866] ? ioctl_preallocate+0x1c0/0x1c0 [ 183.228879] ? __fget+0x237/0x370 [ 183.228896] ? security_file_ioctl+0x89/0xb0 [ 183.300152] SyS_ioctl+0x8f/0xc0 [ 183.303537] ? do_vfs_ioctl+0x1060/0x1060 [ 183.307702] do_syscall_64+0x1e8/0x640 [ 183.311621] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 183.316511] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 183.321747] RIP: 0033:0x45a087 [ 183.325155] RSP: 002b:00007f6768d5fa88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 183.333297] RAX: ffffffffffffffda RBX: 0000000020000068 RCX: 000000000045a087 [ 183.340568] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 183.348374] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 183.355641] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 183.362906] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 [ 183.375243] CPU: 0 PID: 12087 Comm: syz-executor.0 Not tainted 4.14.151 #0 [ 183.382527] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 183.382533] Call Trace: [ 183.382553] dump_stack+0x138/0x197 [ 183.382568] should_fail.cold+0x10f/0x159 [ 183.382581] should_failslab+0xdb/0x130 [ 183.382596] kmem_cache_alloc+0x2d7/0x780 [ 183.394628] ? wait_for_completion+0x420/0x420 [ 183.402404] __kernfs_new_node+0x70/0x420 [ 183.412225] kernfs_new_node+0x80/0xf0 [ 183.412236] __kernfs_create_file+0x46/0x323 [ 183.412246] sysfs_add_file_mode_ns+0x1e4/0x450 [ 183.412259] internal_create_group+0x232/0x7b0 [ 183.412272] sysfs_create_group+0x20/0x30 [ 183.412282] lo_ioctl+0x1176/0x1ce0 [ 183.412295] ? loop_probe+0x160/0x160 [ 183.450408] blkdev_ioctl+0x96b/0x1860 [ 183.454289] ? blkpg_ioctl+0x980/0x980 [ 183.458190] ? __might_sleep+0x93/0xb0 [ 183.462083] ? __fget+0x210/0x370 [ 183.465605] block_ioctl+0xde/0x120 [ 183.469223] ? blkdev_fallocate+0x3b0/0x3b0 [ 183.473617] do_vfs_ioctl+0x7ae/0x1060 [ 183.477853] ? selinux_file_mprotect+0x5d0/0x5d0 [ 183.482716] ? lock_downgrade+0x740/0x740 [ 183.486874] ? ioctl_preallocate+0x1c0/0x1c0 [ 183.491285] ? __fget+0x237/0x370 [ 183.494754] ? security_file_ioctl+0x89/0xb0 [ 183.499159] SyS_ioctl+0x8f/0xc0 [ 183.502543] ? do_vfs_ioctl+0x1060/0x1060 [ 183.506692] do_syscall_64+0x1e8/0x640 [ 183.510590] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 183.515430] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 183.520612] RIP: 0033:0x45a087 [ 183.523807] RSP: 002b:00007f46eab45a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 183.531512] RAX: ffffffffffffffda RBX: 0000000020000068 RCX: 000000000045a087 [ 183.539035] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 07:06:18 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000", 0x36, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) 07:06:18 executing program 5 (fault-call:0 fault-nth:13): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) syz_open_procfs(0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) socket$inet6_sctp(0xa, 0x1, 0x84) [ 183.546323] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 183.556813] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 183.565207] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 [ 183.654131] FAULT_INJECTION: forcing a failure. [ 183.654131] name failslab, interval 1, probability 0, space 0, times 0 [ 183.675924] CPU: 0 PID: 12107 Comm: syz-executor.5 Not tainted 4.14.151 #0 [ 183.682984] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 183.682989] Call Trace: [ 183.683006] dump_stack+0x138/0x197 [ 183.683025] should_fail.cold+0x10f/0x159 [ 183.683041] should_failslab+0xdb/0x130 [ 183.683055] kmem_cache_alloc+0x2d7/0x780 [ 183.683064] ? trace_hardirqs_on+0x10/0x10 [ 183.683075] ? save_trace+0x290/0x290 [ 183.698703] __kernfs_new_node+0x70/0x420 [ 183.698719] kernfs_new_node+0x80/0xf0 [ 183.698733] kernfs_create_dir_ns+0x41/0x140 [ 183.698746] internal_create_group+0xea/0x7b0 [ 183.698764] sysfs_create_group+0x20/0x30 [ 183.698774] lo_ioctl+0x1176/0x1ce0 [ 183.698785] ? loop_probe+0x160/0x160 [ 183.748033] blkdev_ioctl+0x96b/0x1860 [ 183.752109] ? blkpg_ioctl+0x980/0x980 [ 183.756636] ? __might_sleep+0x93/0xb0 [ 183.760535] ? __fget+0x210/0x370 [ 183.764006] block_ioctl+0xde/0x120 [ 183.767694] ? blkdev_fallocate+0x3b0/0x3b0 [ 183.772033] do_vfs_ioctl+0x7ae/0x1060 [ 183.775936] ? selinux_file_mprotect+0x5d0/0x5d0 [ 183.780706] ? lock_downgrade+0x740/0x740 [ 183.784870] ? ioctl_preallocate+0x1c0/0x1c0 [ 183.789294] ? __fget+0x237/0x370 [ 183.792768] ? security_file_ioctl+0x89/0xb0 [ 183.797201] SyS_ioctl+0x8f/0xc0 [ 183.800583] ? do_vfs_ioctl+0x1060/0x1060 07:06:18 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000", 0x36, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) [ 183.804737] do_syscall_64+0x1e8/0x640 [ 183.808630] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 183.813491] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 183.819137] RIP: 0033:0x45a087 [ 183.822322] RSP: 002b:00007f6768d5fa88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 183.822332] RAX: ffffffffffffffda RBX: 0000000020000068 RCX: 000000000045a087 [ 183.822337] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 183.822341] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a 07:06:19 executing program 4: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCGIFADDR(r0, 0x8915, &(0x7f0000000100)={'nr0\x00', {0x2, 0x4e23, @rand_addr=0x7}}) ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, 0x0) r1 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) ioctl$VIDIOC_QUERYCAP(r1, 0x80685600, &(0x7f0000000040)) syz_open_dev$mouse(0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) r2 = socket$kcm(0x11, 0x3, 0x0) sendmsg$kcm(r2, &(0x7f0000000140)={&(0x7f0000000040)=@nfc={0x3b, 0x3}, 0x80, &(0x7f0000000000)=[{&(0x7f0000000200)="c1090004000000000101001aac141412e0", 0x11}], 0x1}, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f00000000c0)) [ 183.822346] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 183.822350] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 07:06:19 executing program 1: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000880)='oom_score\x00') preadv(r0, &(0x7f00000017c0), 0x199, 0x0) ioctl$UI_BEGIN_FF_UPLOAD(r0, 0xc06855c8, &(0x7f0000000640)={0x10, 0xd07, {0x52, 0x2db, 0x7f, {0x200}, {0x40, 0x4}, @cond=[{0x4, 0x12b3, 0x7, 0x1d, 0x6, 0x800}, {0x1, 0x8e39, 0x5, 0x3, 0x7fff, 0x840c}]}, {0xa5e136065a937c32, 0x5, 0xfff, {0x4, 0x3}, {0x4, 0xa5}, @ramp={0x800, 0x80, {0x100, 0x4c2, 0x800, 0x3}}}}) ioctl$KVM_GET_XSAVE(r0, 0x9000aea4, &(0x7f0000000340)) socket$inet6_sctp(0xa, 0x0, 0x84) 07:06:19 executing program 0 (fault-call:0 fault-nth:16): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x0, 0x989680}) socket$inet6_sctp(0xa, 0x0, 0x84) 07:06:19 executing program 5 (fault-call:0 fault-nth:14): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) syz_open_procfs(0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) socket$inet6_sctp(0xa, 0x1, 0x84) 07:06:19 executing program 2: syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0xfffffffffffffffd, 0x0, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x40010000}], 0x1, 0x0) 07:06:19 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000", 0x3f, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) [ 184.043990] FAULT_INJECTION: forcing a failure. [ 184.043990] name failslab, interval 1, probability 0, space 0, times 0 [ 184.056852] FAULT_INJECTION: forcing a failure. [ 184.056852] name failslab, interval 1, probability 0, space 0, times 0 [ 184.079681] CPU: 1 PID: 12145 Comm: syz-executor.5 Not tainted 4.14.151 #0 [ 184.086927] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 184.096285] Call Trace: [ 184.096310] dump_stack+0x138/0x197 [ 184.096329] should_fail.cold+0x10f/0x159 [ 184.096347] should_failslab+0xdb/0x130 [ 184.110707] kmem_cache_alloc+0x2d7/0x780 [ 184.114958] ? wait_for_completion+0x420/0x420 [ 184.119582] __kernfs_new_node+0x70/0x420 [ 184.123850] kernfs_new_node+0x80/0xf0 [ 184.128844] __kernfs_create_file+0x46/0x323 [ 184.133268] sysfs_add_file_mode_ns+0x1e4/0x450 [ 184.138715] internal_create_group+0x232/0x7b0 [ 184.144057] sysfs_create_group+0x20/0x30 [ 184.148742] lo_ioctl+0x1176/0x1ce0 [ 184.152395] ? loop_probe+0x160/0x160 [ 184.156214] blkdev_ioctl+0x96b/0x1860 [ 184.160122] ? blkpg_ioctl+0x980/0x980 [ 184.164034] ? __might_sleep+0x93/0xb0 [ 184.168455] ? __fget+0x210/0x370 [ 184.171908] block_ioctl+0xde/0x120 [ 184.176402] ? blkdev_fallocate+0x3b0/0x3b0 [ 184.180803] do_vfs_ioctl+0x7ae/0x1060 [ 184.184684] ? selinux_file_mprotect+0x5d0/0x5d0 [ 184.189452] ? lock_downgrade+0x740/0x740 [ 184.193600] ? ioctl_preallocate+0x1c0/0x1c0 [ 184.198204] ? __fget+0x237/0x370 [ 184.201683] ? security_file_ioctl+0x89/0xb0 [ 184.206087] SyS_ioctl+0x8f/0xc0 [ 184.209451] ? do_vfs_ioctl+0x1060/0x1060 [ 184.213683] do_syscall_64+0x1e8/0x640 [ 184.217564] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 184.222780] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 184.228228] RIP: 0033:0x45a087 [ 184.233412] RSP: 002b:00007f6768d5fa88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 184.241117] RAX: ffffffffffffffda RBX: 0000000020000068 RCX: 000000000045a087 [ 184.248377] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 184.255638] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 184.262919] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 184.270536] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 [ 184.277908] CPU: 0 PID: 12147 Comm: syz-executor.0 Not tainted 4.14.151 #0 [ 184.284950] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 184.294397] Call Trace: [ 184.296985] dump_stack+0x138/0x197 [ 184.300602] should_fail.cold+0x10f/0x159 [ 184.305087] should_failslab+0xdb/0x130 [ 184.309048] kmem_cache_alloc+0x2d7/0x780 [ 184.313267] ? wait_for_completion+0x420/0x420 [ 184.317856] __kernfs_new_node+0x70/0x420 [ 184.321994] kernfs_new_node+0x80/0xf0 [ 184.325878] __kernfs_create_file+0x46/0x323 [ 184.330620] sysfs_add_file_mode_ns+0x1e4/0x450 [ 184.335273] internal_create_group+0x232/0x7b0 [ 184.339928] sysfs_create_group+0x20/0x30 [ 184.344060] lo_ioctl+0x1176/0x1ce0 [ 184.347847] ? loop_probe+0x160/0x160 [ 184.351637] blkdev_ioctl+0x96b/0x1860 [ 184.355508] ? blkpg_ioctl+0x980/0x980 [ 184.359398] ? __might_sleep+0x93/0xb0 [ 184.363701] ? __fget+0x210/0x370 [ 184.367158] block_ioctl+0xde/0x120 [ 184.370769] ? blkdev_fallocate+0x3b0/0x3b0 [ 184.375093] do_vfs_ioctl+0x7ae/0x1060 [ 184.378966] ? selinux_file_mprotect+0x5d0/0x5d0 [ 184.384165] ? lock_downgrade+0x740/0x740 [ 184.388298] ? ioctl_preallocate+0x1c0/0x1c0 [ 184.392956] ? __fget+0x237/0x370 [ 184.396601] ? security_file_ioctl+0x89/0xb0 [ 184.400995] SyS_ioctl+0x8f/0xc0 [ 184.404343] ? do_vfs_ioctl+0x1060/0x1060 [ 184.408499] do_syscall_64+0x1e8/0x640 [ 184.413340] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 184.419049] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 184.433424] RIP: 0033:0x45a087 07:06:19 executing program 4: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, 0x0) r1 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) lremovexattr(&(0x7f0000000100)='\x00', &(0x7f0000000140)=@known='trusted.overlay.nlink\x00') ioctl$VIDIOC_QUERYCAP(r1, 0x80685600, &(0x7f0000000040)) syz_open_dev$mouse(0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f00000000c0)) 07:06:19 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000", 0x3f, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) [ 184.436597] RSP: 002b:00007f46eab45a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 184.452122] RAX: ffffffffffffffda RBX: 0000000020000068 RCX: 000000000045a087 [ 184.459376] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 184.466633] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 184.473887] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 184.481142] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 07:06:19 executing program 2: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = openat$selinux_enforce(0xffffffffffffff9c, &(0x7f0000000080)='/selinux/enforce\x00', 0x20001, 0x0) write$selinux_create(r0, &(0x7f00000000c0)=@access={'system_u:object_r:ptmx_t:s0', 0x20, '/sbin/dhclient', 0x20, 0xfff}, 0x40) 07:06:19 executing program 1: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0xaaaaaaaaaaaabaf, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004de5000000f03f000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff600eaff5e42485266535f4d", 0x48, 0x10000}], 0x2, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) 07:06:19 executing program 5 (fault-call:0 fault-nth:15): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) syz_open_procfs(0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) socket$inet6_sctp(0xa, 0x1, 0x84) 07:06:19 executing program 0 (fault-call:0 fault-nth:17): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x0, 0x989680}) socket$inet6_sctp(0xa, 0x0, 0x84) 07:06:19 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000", 0x3f, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) [ 184.684798] FAULT_INJECTION: forcing a failure. [ 184.684798] name failslab, interval 1, probability 0, space 0, times 0 [ 184.768887] CPU: 1 PID: 12194 Comm: syz-executor.5 Not tainted 4.14.151 #0 [ 184.776534] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 184.786370] Call Trace: [ 184.788976] dump_stack+0x138/0x197 [ 184.792628] should_fail.cold+0x10f/0x159 [ 184.797672] should_failslab+0xdb/0x130 [ 184.801870] kmem_cache_alloc+0x2d7/0x780 [ 184.801882] ? wait_for_completion+0x420/0x420 [ 184.801897] __kernfs_new_node+0x70/0x420 [ 184.801913] kernfs_new_node+0x80/0xf0 [ 184.811240] __kernfs_create_file+0x46/0x323 [ 184.811253] sysfs_add_file_mode_ns+0x1e4/0x450 [ 184.811267] internal_create_group+0x232/0x7b0 [ 184.811283] sysfs_create_group+0x20/0x30 [ 184.811295] lo_ioctl+0x1176/0x1ce0 [ 184.819318] ? loop_probe+0x160/0x160 [ 184.819330] blkdev_ioctl+0x96b/0x1860 [ 184.819341] ? blkpg_ioctl+0x980/0x980 [ 184.825805] FAULT_INJECTION: forcing a failure. [ 184.825805] name failslab, interval 1, probability 0, space 0, times 0 [ 184.829032] ? __might_sleep+0x93/0xb0 [ 184.829041] ? __fget+0x210/0x370 [ 184.829054] block_ioctl+0xde/0x120 [ 184.837767] ? blkdev_fallocate+0x3b0/0x3b0 [ 184.837779] do_vfs_ioctl+0x7ae/0x1060 [ 184.837789] ? selinux_file_mprotect+0x5d0/0x5d0 [ 184.837802] ? lock_downgrade+0x740/0x740 [ 184.893102] ? ioctl_preallocate+0x1c0/0x1c0 [ 184.897527] ? __fget+0x237/0x370 [ 184.901007] ? security_file_ioctl+0x89/0xb0 [ 184.905782] SyS_ioctl+0x8f/0xc0 [ 184.909247] ? do_vfs_ioctl+0x1060/0x1060 [ 184.914884] do_syscall_64+0x1e8/0x640 [ 184.918783] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 184.923660] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 184.928948] RIP: 0033:0x45a087 [ 184.932219] RSP: 002b:00007f6768d5fa88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 184.941836] RAX: ffffffffffffffda RBX: 0000000020000068 RCX: 000000000045a087 [ 184.949448] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 184.957147] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 184.964408] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 184.971857] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 [ 184.979136] CPU: 0 PID: 12212 Comm: syz-executor.0 Not tainted 4.14.151 #0 [ 184.986155] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 184.995707] Call Trace: [ 184.995723] dump_stack+0x138/0x197 [ 184.995739] should_fail.cold+0x10f/0x159 [ 184.995752] should_failslab+0xdb/0x130 07:06:20 executing program 4: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000006c0)='Net/3\x97OOT\x15\x00\xb6\xcf@e\xd3r\x82\x9fc') ioctl$VIDIOC_PREPARE_BUF(r0, 0xc058565d, &(0x7f00000005c0)={0x0, 0xb, 0x4, 0x0, {0x0, 0x7530}, {0x0, 0x2, 0x81, 0x10, 0x24, 0x6, "cf676f53"}, 0x80, 0x5, @offset=0x9, 0x4}) mq_timedsend(r0, &(0x7f0000000480)="c1cc3d2c05c16add6c964974e00652617b35c74bd5a620d3170df3c2f134d5beb838b0f00c6ca198401126d02772777a96ead8602a94c5450ea4e5c8b02fc6e876ee2383fc4faa682ed6a91a53a08a1fdd9839c170a6f81ede814c769cf15c688c8514b5f4f1dc0a50019813ce4459df629cd480519073a5f929cd5e59d0058ea64475a46e924294d5ef1b4b158e59d9c923a0", 0x93, 0x4, &(0x7f0000000540)={0x0, 0x989680}) recvmmsg(r0, &(0x7f0000006080)=[{{&(0x7f0000000100)=@caif=@dgm, 0x80, &(0x7f0000000280)=[{&(0x7f0000000180)=""/105, 0x69}, {&(0x7f0000000200)=""/91, 0x5b}], 0x2}, 0x200}, {{&(0x7f00000002c0)=@in6={0xa, 0x0, 0x0, @initdev}, 0x80, &(0x7f0000000800)=[{&(0x7f0000000340)=""/218, 0xda}, {&(0x7f0000000440)}, {&(0x7f0000000480)=""/220, 0xdc}, {&(0x7f0000000580)=""/210, 0xd2}, {&(0x7f0000000680)=""/179, 0xb3}, {&(0x7f0000000740)=""/127, 0x7f}, {&(0x7f0000000900)=""/4096, 0x1000}, {&(0x7f00000007c0)=""/30, 0x1e}, {&(0x7f0000001900)=""/237, 0xed}, {&(0x7f0000001a00)=""/212, 0xd4}], 0xa, &(0x7f0000001b00)=""/90, 0x5a}, 0x9}, {{&(0x7f0000001b80)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @empty}}}, 0x80, &(0x7f0000004180)=[{&(0x7f0000001c00)=""/123, 0x7b}, {&(0x7f0000001c80)=""/4096, 0x1000}, {&(0x7f0000002c80)=""/143, 0x8f}, {&(0x7f0000002d40)=""/241, 0xf1}, {&(0x7f0000002e40)=""/173, 0xad}, {&(0x7f0000002f00)=""/9, 0x9}, {&(0x7f0000002f40)=""/126, 0x7e}, {&(0x7f0000002fc0)=""/4096, 0x1000}, {&(0x7f0000003fc0)=""/245, 0xf5}, {&(0x7f00000040c0)=""/130, 0x82}], 0xa, &(0x7f0000004240)=""/155, 0x9b}, 0x1}, {{0x0, 0x0, &(0x7f0000004800)=[{&(0x7f0000004300)=""/226, 0xe2}, {&(0x7f0000004400)=""/67, 0x43}, {&(0x7f0000004480)=""/173, 0xad}, {&(0x7f0000004540)=""/136, 0x88}, {&(0x7f0000004600)=""/227, 0xe3}, {&(0x7f0000004700)=""/239, 0xef}], 0x6, &(0x7f0000004880)=""/87, 0x57}}, {{&(0x7f0000004900)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @dev}}}, 0x80, &(0x7f0000004a40)=[{&(0x7f0000004980)=""/153, 0x99}], 0x1, &(0x7f0000004a80)=""/181, 0xb5}, 0x1ff}, {{&(0x7f0000004b40)=@caif=@dgm, 0x80, &(0x7f0000004bc0), 0x0, &(0x7f0000004c00)=""/4096, 0x1000}, 0x1}, {{0x0, 0x0, &(0x7f0000005f80)=[{&(0x7f0000005c00)}, {&(0x7f0000005c40)=""/6, 0x6}, {&(0x7f0000005c80)=""/214, 0xd6}, {&(0x7f0000005d80)=""/51, 0x33}, {&(0x7f0000005dc0)=""/71, 0x47}, {&(0x7f0000005e40)=""/82, 0x52}, {&(0x7f0000005ec0)=""/145, 0x91}], 0x7, &(0x7f0000006000)=""/111, 0x6f}, 0x7}], 0x7, 0x1, &(0x7f0000006240)) setsockopt$TIPC_MCAST_BROADCAST(r1, 0x10f, 0x85) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r2 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r2, 0x8934, 0x0) r3 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) ioctl$VIDIOC_QUERYCAP(r3, 0x80685600, &(0x7f0000000040)) syz_open_dev$mouse(0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f00000000c0)) [ 184.995763] kmem_cache_alloc+0x2d7/0x780 [ 184.995773] ? wait_for_completion+0x420/0x420 [ 184.995789] __kernfs_new_node+0x70/0x420 [ 185.015654] kernfs_new_node+0x80/0xf0 [ 185.015667] __kernfs_create_file+0x46/0x323 [ 185.015685] sysfs_add_file_mode_ns+0x1e4/0x450 [ 185.015697] internal_create_group+0x232/0x7b0 [ 185.015711] sysfs_create_group+0x20/0x30 [ 185.015722] lo_ioctl+0x1176/0x1ce0 [ 185.015733] ? loop_probe+0x160/0x160 [ 185.015744] blkdev_ioctl+0x96b/0x1860 [ 185.015753] ? blkpg_ioctl+0x980/0x980 [ 185.015770] ? __might_sleep+0x93/0xb0 [ 185.015778] ? __fget+0x210/0x370 [ 185.015789] block_ioctl+0xde/0x120 [ 185.023914] ? blkdev_fallocate+0x3b0/0x3b0 [ 185.088468] do_vfs_ioctl+0x7ae/0x1060 [ 185.092347] ? selinux_file_mprotect+0x5d0/0x5d0 [ 185.097177] ? lock_downgrade+0x740/0x740 [ 185.101313] ? ioctl_preallocate+0x1c0/0x1c0 [ 185.105708] ? __fget+0x237/0x370 [ 185.109153] ? security_file_ioctl+0x89/0xb0 [ 185.113750] SyS_ioctl+0x8f/0xc0 [ 185.117193] ? do_vfs_ioctl+0x1060/0x1060 [ 185.121466] do_syscall_64+0x1e8/0x640 [ 185.125350] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 185.130284] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 185.135458] RIP: 0033:0x45a087 [ 185.138635] RSP: 002b:00007f46eab45a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 185.146343] RAX: ffffffffffffffda RBX: 0000000020000068 RCX: 000000000045a087 [ 185.159342] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 185.166776] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 185.174119] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 185.181592] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 07:06:20 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f424852", 0x44, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) 07:06:20 executing program 2: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000006c0)='Net/3\x97OOT\x15\x00\xb6\xcf@e\xd3r\x82\x9fc') ioctl$VIDIOC_PREPARE_BUF(r0, 0xc058565d, &(0x7f00000005c0)={0x0, 0xb, 0x4, 0x0, {0x0, 0x7530}, {0x0, 0x2, 0x81, 0x10, 0x24, 0x6, "cf676f53"}, 0x80, 0x5, @offset=0x9, 0x4}) mq_timedsend(r0, &(0x7f0000000480)="c1cc3d2c05c16add6c964974e00652617b35c74bd5a620d3170df3c2f134d5beb838b0f00c6ca198401126d02772777a96ead8602a94c5450ea4e5c8b02fc6e876ee2383fc4faa682ed6a91a53a08a1fdd9839c170a6f81ede814c769cf15c688c8514b5f4f1dc0a50019813ce4459df629cd480519073a5f929cd5e59d0058ea64475a46e924294d5ef1b4b158e59d9c923a0", 0x93, 0x4, &(0x7f0000000540)={0x0, 0x989680}) recvmsg$kcm(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000140)=""/242, 0xf2}, {&(0x7f0000000080)}, {&(0x7f00000000c0)=""/19, 0x13}, {&(0x7f0000000240)=""/41, 0x29}, {&(0x7f0000000280)=""/55, 0x37}, {&(0x7f0000000340)=""/118, 0x76}, {&(0x7f00000003c0)=""/19, 0x13}], 0x7}, 0x40002041) 07:06:20 executing program 5 (fault-call:0 fault-nth:16): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) syz_open_procfs(0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) socket$inet6_sctp(0xa, 0x1, 0x84) 07:06:20 executing program 0 (fault-call:0 fault-nth:18): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x0, 0x989680}) socket$inet6_sctp(0xa, 0x0, 0x84) [ 185.417993] FAULT_INJECTION: forcing a failure. [ 185.417993] name failslab, interval 1, probability 0, space 0, times 0 07:06:20 executing program 1: r0 = accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x80800) r1 = syz_open_procfs(0x0, &(0x7f00000006c0)='Net/3\x97OOT\x15\x00\xb6\xcf@e\xd3r\x82\x9fc') ioctl$VIDIOC_PREPARE_BUF(r1, 0xc058565d, &(0x7f00000005c0)={0x0, 0xb, 0x4, 0x0, {0x0, 0x7530}, {0x0, 0x2, 0x81, 0x10, 0x24, 0x6, "cf676f53"}, 0x80, 0x5, @offset=0x9, 0x4}) mq_timedsend(r1, &(0x7f0000000480)="c1cc3d2c05c16add6c964974e00652617b35c74bd5a620d3170df3c2f134d5beb838b0f00c6ca198401126d02772777a96ead8602a94c5450ea4e5c8b02fc6e876ee2383fc4faa682ed6a91a53a08a1fdd9839c170a6f81ede814c769cf15c688c8514b5f4f1dc0a50019813ce4459df629cd480519073a5f929cd5e59d0058ea64475a46e924294d5ef1b4b158e59d9c923a0", 0x93, 0x4, &(0x7f0000000540)={0x0, 0x989680}) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000080)='IPVS\x00') sendmsg$IPVS_CMD_NEW_DAEMON(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000240)={0x50, r3, 0x1, 0x0, 0x0, {}, [@IPVS_CMD_ATTR_DAEMON={0x3c, 0x3, [@IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @mcast2}, @IPVS_DAEMON_ATTR_SYNC_ID={0x8}, @IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'vcan0\x00'}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x50}}, 0x0) sendmsg$IPVS_CMD_DEL_DEST(r1, &(0x7f0000000380)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x337881e940cc242d}, 0xc, &(0x7f0000000340)={&(0x7f0000000280)={0x28, r3, 0x8, 0x70bd28, 0x25dfdbfc, {}, [@IPVS_CMD_ATTR_DEST={0x14, 0x2, [@IPVS_DEST_ATTR_L_THRESH={0x8, 0x6, 0x2}, @IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0x5}]}]}, 0x28}, 0x1, 0x0, 0x0, 0x48800}, 0x2000800) fsetxattr$security_smack_transmute(r0, &(0x7f0000000080)='security.SMACK64TRANSMUTE\x00', &(0x7f00000000c0)='TRUE', 0x4, 0x3) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r4, 0x407, 0x0) write(r4, &(0x7f0000000340), 0x41395527) ioctl$EXT4_IOC_ALLOC_DA_BLKS(r4, 0x660c) setsockopt$ALG_SET_KEY(r4, 0x117, 0x1, &(0x7f0000000380)="0c4f4d16cf2f3a2dd8a5046790a60c91e487dc9ca281434dbc169c6555a654da5e42c953490634b417ec9535653162fc5730d4c8dab3e136550ed7d31fa8d7094afd6e5154349155e6ef7e5fb08d79c283188a3f28548ab4366e6863ba5561aedbd1ee3f9a2c5646e4a9c2806b231528bca7ee2134e39966c40bcb1371a7e7691672a8dc9bda07175f11a9160cba3f0ddb78db3b2e184e1e9aa371691df9f49a5e3343bce4e4b8a2c80831b63d95ed57cf89982b317abf1cf8a71078d00dd5fa9151c142fa4bb765d503150f5f6f34284c7480a5091e9b246e", 0xd9) fsetxattr$trusted_overlay_nlink(r4, &(0x7f0000000240)='trusted.overlay.nlink\x00', &(0x7f0000000300)={'U+', 0x7}, 0x28, 0x3) sendmsg$IPVS_CMD_SET_CONFIG(r4, &(0x7f0000000640)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000580)={&(0x7f0000000400)={0x60, r3, 0x2, 0x70bd26, 0x25dfdbfc, {}, [@IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x7}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x8}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x7}, @IPVS_CMD_ATTR_DAEMON={0x2c, 0x3, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x8, 0x4, 0x7}, @IPVS_DAEMON_ATTR_SYNC_ID={0x8, 0x3, 0x1}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x8, 0x8, 0x75}, @IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @multicast1}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x8, 0x8, 0xf7}]}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0xcfa}]}, 0x60}, 0x1, 0x0, 0x0, 0x2c040000}, 0x4000) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) listxattr(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)=""/157, 0x9d) 07:06:20 executing program 4: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, 0x0) r1 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) syz_mount_image$ceph(&(0x7f0000000140)='ceph\x00', &(0x7f0000000180)='./file0\x00', 0x7, 0x6, &(0x7f0000000600)=[{&(0x7f0000000240)="52c5eaf43a959c3f783538c504d7f002c8b2ae2d66d0726f3aab254fb1a574abb1b81485642aab8a778368aad75625c84dd3d0d8871c53d90ef713bfa04c2f6c4ddd5d1eb9d35cd30b2151c0a56b748d08e3dcf2d29479c3d08d5488248faa52aaf3c173a5e47d487557661e3a828eba1db7585b62098bcb26ba0761478b5ad980ddc50df61b242d1322461413f3df039f2426d54ad3ee601066228f374c97de24dae50d4998626c8777bc56c96001404231b3dd6bf7339bf16432d644cad16455c5a86aa81b0734bc76d4ee6d5c", 0xce, 0x4}, {&(0x7f0000000340)="db4fb19b8d643a600148fcadb2ea3a818b212355128a93ff923241d93eb8f7286fe9f352d24911f7f9673df68c10c0fd7aa2f8a00e0b30e914b376bf8e541f6a8a27a0154c72edeb02f81494791d7e8a7dda5eec704d64ff0375117ae7bba28feac857883b8ff7bd1a28b0f191277530ac89a40d250571d4506dc8ef9f15ff82c116abbb5a046748ffb280d8f31b85c45f70", 0x92, 0x1}, {&(0x7f0000000400)="09b41ac65a13ada97ff5232ff4026a1aa61ee4924b83c9d94f570772c3933497d3dc6830182be5b95ab62f55dcd6628de1c80841051ba7aa736ed44a5f587c0b2542b58325363cec7dfc44005b165105", 0x50, 0x1}, {&(0x7f0000000480)="e01a7478afdf08db29d35531d72da52460d22125d683ad25b025114c3490e3950f1a5fa9d9fbc057a22698cace4e3d019bbd65d3b22b46e573b276feaffc9688c8c922448231e650b31f", 0x4a, 0x6}, {&(0x7f0000000500)="52d4b3430ac91f6921b1c48b4a6429879314e2e855434c06192e5f7aa10bb9beec43c3429b431eebf100d5567cced3a6f6c57cdf3a9ec3693092c43f5d472225da0d850b58f21c9a1ebf8eda944f941e018ee1f420083e39017b338620825636ceab7a67b3c2e846fcba6c2f4bbf3e5833f6788cdacc598fe3f3f2b56bd39f1cb35d4f1b3164e0640421bac64fd2fe428d66d781158242d61beaabe433d8af216e44fb28d384e7265dcf3576f7cb1bba34f253ab1e9699e0bf604192d33982d6ac402f", 0xc3, 0xfff8000000000000}, {&(0x7f00000001c0)}], 0x50011, &(0x7f00000006c0)='\x00') pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$SIOCX25SDTEFACILITIES(r2, 0x89eb, &(0x7f0000000100)={0x800, 0x8000, 0xc8, 0x3, 0x81, 0x2, 0x10, "800cfe4ecbbb0f0a1c09ec42d308d15f1a17364b", "3a346f6964562af5baeced8bc3dc951230160cfc"}) ioctl$VIDIOC_QUERYCAP(r1, 0x80685600, &(0x7f0000000040)) syz_open_dev$mouse(0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f00000000c0)) [ 185.473502] CPU: 0 PID: 12249 Comm: syz-executor.5 Not tainted 4.14.151 #0 [ 185.480592] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 185.490066] Call Trace: [ 185.492673] dump_stack+0x138/0x197 [ 185.496321] should_fail.cold+0x10f/0x159 [ 185.500493] should_failslab+0xdb/0x130 [ 185.504509] kmem_cache_alloc+0x2d7/0x780 [ 185.508685] ? __mutex_unlock_slowpath+0x71/0x800 [ 185.513540] ? __lock_is_held+0xb6/0x140 [ 185.518591] __kernfs_new_node+0x70/0x420 [ 185.522844] kernfs_new_node+0x80/0xf0 [ 185.526744] __kernfs_create_file+0x46/0x323 [ 185.531168] sysfs_add_file_mode_ns+0x1e4/0x450 [ 185.535944] internal_create_group+0x232/0x7b0 [ 185.540544] sysfs_create_group+0x20/0x30 [ 185.544710] lo_ioctl+0x1176/0x1ce0 [ 185.548359] ? loop_probe+0x160/0x160 [ 185.552167] blkdev_ioctl+0x96b/0x1860 [ 185.556064] ? blkpg_ioctl+0x980/0x980 [ 185.559984] ? __might_sleep+0x93/0xb0 [ 185.563969] ? __fget+0x210/0x370 [ 185.567437] block_ioctl+0xde/0x120 [ 185.571080] ? blkdev_fallocate+0x3b0/0x3b0 [ 185.575411] do_vfs_ioctl+0x7ae/0x1060 [ 185.579324] ? selinux_file_mprotect+0x5d0/0x5d0 [ 185.584098] ? lock_downgrade+0x740/0x740 [ 185.588262] ? ioctl_preallocate+0x1c0/0x1c0 [ 185.592813] ? __fget+0x237/0x370 [ 185.596310] ? security_file_ioctl+0x89/0xb0 [ 185.600737] SyS_ioctl+0x8f/0xc0 [ 185.604125] ? do_vfs_ioctl+0x1060/0x1060 [ 185.608286] do_syscall_64+0x1e8/0x640 [ 185.612185] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 185.617951] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 185.623323] RIP: 0033:0x45a087 [ 185.626517] RSP: 002b:00007f6768d5fa88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 185.634238] RAX: ffffffffffffffda RBX: 0000000020000068 RCX: 000000000045a087 [ 185.642069] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 185.650309] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 185.657850] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 185.665129] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 07:06:20 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f424852", 0x44, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) [ 185.695022] FAULT_INJECTION: forcing a failure. [ 185.695022] name failslab, interval 1, probability 0, space 0, times 0 [ 185.720525] IPVS: Error joining to the multicast group [ 185.727798] CPU: 0 PID: 12272 Comm: syz-executor.0 Not tainted 4.14.151 #0 [ 185.734851] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 185.744475] Call Trace: [ 185.744497] dump_stack+0x138/0x197 [ 185.744531] should_fail.cold+0x10f/0x159 [ 185.744544] should_failslab+0xdb/0x130 [ 185.744554] kmem_cache_alloc+0x2d7/0x780 [ 185.744563] ? wait_for_completion+0x420/0x420 [ 185.744578] __kernfs_new_node+0x70/0x420 [ 185.744589] kernfs_new_node+0x80/0xf0 [ 185.744599] __kernfs_create_file+0x46/0x323 [ 185.744609] sysfs_add_file_mode_ns+0x1e4/0x450 [ 185.744622] internal_create_group+0x232/0x7b0 [ 185.744638] sysfs_create_group+0x20/0x30 [ 185.744648] lo_ioctl+0x1176/0x1ce0 [ 185.744661] ? loop_probe+0x160/0x160 [ 185.744671] blkdev_ioctl+0x96b/0x1860 [ 185.744679] ? blkpg_ioctl+0x980/0x980 [ 185.744695] ? __might_sleep+0x93/0xb0 [ 185.744701] ? __fget+0x210/0x370 [ 185.744713] block_ioctl+0xde/0x120 [ 185.820636] ? blkdev_fallocate+0x3b0/0x3b0 [ 185.824948] do_vfs_ioctl+0x7ae/0x1060 [ 185.829320] ? selinux_file_mprotect+0x5d0/0x5d0 [ 185.834165] ? lock_downgrade+0x740/0x740 [ 185.838474] ? ioctl_preallocate+0x1c0/0x1c0 [ 185.842883] ? __fget+0x237/0x370 [ 185.846327] ? security_file_ioctl+0x89/0xb0 [ 185.850723] SyS_ioctl+0x8f/0xc0 [ 185.854262] ? do_vfs_ioctl+0x1060/0x1060 [ 185.858395] do_syscall_64+0x1e8/0x640 [ 185.862265] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 185.867104] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 185.873494] RIP: 0033:0x45a087 [ 185.876671] RSP: 002b:00007f46eab45a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 185.884375] RAX: ffffffffffffffda RBX: 0000000020000068 RCX: 000000000045a087 [ 185.891657] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 185.898922] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 185.906367] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 185.913622] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 07:06:21 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f424852", 0x44, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) 07:06:21 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f4248526653", 0x46, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) 07:06:21 executing program 5: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000040), 0xc1009, 0x0) syz_open_procfs(0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) socket$inet6_sctp(0xa, 0x1, 0x84) 07:06:21 executing program 2: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x1, 0x0) r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) syncfs(r0) 07:06:21 executing program 0 (fault-call:0 fault-nth:19): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x0, 0x989680}) socket$inet6_sctp(0xa, 0x0, 0x84) [ 186.314533] FAULT_INJECTION: forcing a failure. [ 186.314533] name failslab, interval 1, probability 0, space 0, times 0 [ 186.355386] BTRFS error (device loop2): superblock checksum mismatch [ 186.366590] CPU: 1 PID: 12320 Comm: syz-executor.0 Not tainted 4.14.151 #0 [ 186.374215] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 186.383688] Call Trace: [ 186.386294] dump_stack+0x138/0x197 [ 186.390004] should_fail.cold+0x10f/0x159 [ 186.390021] should_failslab+0xdb/0x130 [ 186.390035] kmem_cache_alloc+0x2d7/0x780 [ 186.390051] ? wait_for_completion+0x420/0x420 [ 186.398210] __kernfs_new_node+0x70/0x420 [ 186.398226] kernfs_new_node+0x80/0xf0 [ 186.398237] __kernfs_create_file+0x46/0x323 [ 186.398248] sysfs_add_file_mode_ns+0x1e4/0x450 [ 186.424196] internal_create_group+0x232/0x7b0 [ 186.428797] sysfs_create_group+0x20/0x30 [ 186.433094] lo_ioctl+0x1176/0x1ce0 [ 186.436754] ? loop_probe+0x160/0x160 [ 186.440545] blkdev_ioctl+0x96b/0x1860 [ 186.444562] ? blkpg_ioctl+0x980/0x980 [ 186.448441] ? __might_sleep+0x93/0xb0 [ 186.452321] ? __fget+0x210/0x370 [ 186.455759] block_ioctl+0xde/0x120 [ 186.459370] ? blkdev_fallocate+0x3b0/0x3b0 [ 186.463725] do_vfs_ioctl+0x7ae/0x1060 [ 186.467605] ? selinux_file_mprotect+0x5d0/0x5d0 [ 186.472349] ? lock_downgrade+0x740/0x740 [ 186.476496] ? ioctl_preallocate+0x1c0/0x1c0 [ 186.480901] ? __fget+0x237/0x370 [ 186.484512] ? security_file_ioctl+0x89/0xb0 [ 186.488983] SyS_ioctl+0x8f/0xc0 [ 186.492443] ? do_vfs_ioctl+0x1060/0x1060 [ 186.496763] do_syscall_64+0x1e8/0x640 [ 186.500644] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 186.505675] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 186.510885] RIP: 0033:0x45a087 [ 186.514083] RSP: 002b:00007f46eab45a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 186.522132] RAX: ffffffffffffffda RBX: 0000000020000068 RCX: 000000000045a087 [ 186.529515] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 186.537097] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 186.544367] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 07:06:21 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f4248526653", 0x46, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) 07:06:21 executing program 1: r0 = accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x80800) setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f0000000100)=0x73, 0x4) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000140)={@in={{0x2, 0x4e23, @multicast2}}, 0x0, 0x2, 0x0, "b79ae0f38aa810b2d8571c100318238fa0031a51d871c719dc898979cff9c5f645c33d57a6006b2642145235a0656d03b4a2a66c25b89e194e8d1fc92827e7cc73cc5081923ae17add6a2e2a9d140994"}, 0xd8) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) r1 = openat$selinux_status(0xffffffffffffff9c, &(0x7f0000000240)='/selinux/status\x00', 0x0, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f00000003c0)={0xa, 0x4e20, 0x1b3, @mcast2, 0x9}, 0x1c) bind$llc(r1, &(0x7f0000000280)={0x1a, 0x311, 0xff, 0x9, 0x40, 0x40, @local}, 0x10) r2 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000340)='/dev/btrfs-control\x00', 0x200, 0x0) ioctl$TIOCLINUX7(r2, 0x541c, &(0x7f0000000380)={0x7, 0x3}) r3 = syz_open_procfs(0x0, &(0x7f0000000880)='oom_score\x00') preadv(r3, &(0x7f00000017c0), 0x199, 0x0) ioctl$UI_BEGIN_FF_UPLOAD(r3, 0xc06855c8, &(0x7f0000000640)={0x10, 0xd17, {0x52, 0x2db, 0x7f, {0x200}, {0x40, 0x4}, @const={0x7ff, {0x8, 0xba, 0x1, 0x9150}}}, {0xa5e136065a937c32, 0x5, 0xfff, {0x4, 0x3}, {0x7, 0x1}, @ramp={0x800, 0x80, {0x100, 0x4c2, 0x800, 0x3}}}}) setsockopt$inet6_tcp_TCP_CONGESTION(r3, 0x6, 0xd, &(0x7f00000000c0)='htcp\x00', 0x5) ioctl$KDGKBENT(r3, 0x4b46, &(0x7f0000000080)={0x7, 0x5, 0x1}) 07:06:21 executing program 5: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) syz_open_procfs(0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000006c0)='Net/3\x97OOT\x15\x00\xb6\xcf@e\xd3r\x82\x9fc') ioctl$VIDIOC_PREPARE_BUF(r0, 0xc058565d, &(0x7f00000005c0)={0x0, 0xb, 0x4, 0x0, {0x0, 0x7530}, {0x0, 0x2, 0x81, 0x10, 0x24, 0x6, "cf676f53"}, 0x80, 0x5, @offset=0x9, 0x4}) mq_timedsend(r0, &(0x7f0000000480)="c1cc3d2c05c16add6c964974e00652617b35c74bd5a620d3170df3c2f134d5beb838b0f00c6ca198401126d02772777a96ead8602a94c5450ea4e5c8b02fc6e876ee2383fc4faa682ed6a91a53a08a1fdd9839c170a6f81ede814c769cf15c688c8514b5f4f1dc0a50019813ce4459df629cd480519073a5f929cd5e59d0058ea64475a46e924294d5ef1b4b158e59d9c923a0", 0x93, 0x4, &(0x7f0000000540)={0x0, 0x989680}) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) socket$inet6_sctp(0xa, 0x1, 0x84) [ 186.551860] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 07:06:21 executing program 4: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, 0x0) r1 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) getsockopt$IPT_SO_GET_REVISION_MATCH(0xffffffffffffffff, 0x0, 0x42, &(0x7f0000000100)={'ipvs\x00'}, &(0x7f0000000140)=0x1e) ioctl$VIDIOC_QUERYCAP(r1, 0x80685600, &(0x7f0000000040)) r2 = syz_open_dev$mouse(0x0, 0x0, 0x0) r3 = syz_open_dev$vcsn(&(0x7f0000000180)='/dev/vcs#\x00', 0x9, 0x4000) ioctl$VHOST_SET_VRING_KICK(r2, 0x4008af20, &(0x7f00000001c0)={0x2, r3}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f00000000c0)) [ 186.704040] BTRFS error (device loop2): open_ctree failed 07:06:21 executing program 0 (fault-call:0 fault-nth:20): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x0, 0x989680}) socket$inet6_sctp(0xa, 0x0, 0x84) [ 186.787966] BTRFS error (device loop2): superblock checksum mismatch 07:06:21 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f4248526653", 0x46, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) [ 186.860923] FAULT_INJECTION: forcing a failure. [ 186.860923] name failslab, interval 1, probability 0, space 0, times 0 [ 186.910738] BTRFS error (device loop2): open_ctree failed [ 186.917417] CPU: 1 PID: 12379 Comm: syz-executor.0 Not tainted 4.14.151 #0 [ 186.924478] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 186.933827] Call Trace: [ 186.936615] dump_stack+0x138/0x197 [ 186.940258] should_fail.cold+0x10f/0x159 [ 186.944486] should_failslab+0xdb/0x130 [ 186.948489] kmem_cache_alloc_trace+0x2e9/0x790 [ 186.953157] ? kernfs_put+0x35e/0x490 [ 186.956972] ? sysfs_add_file_mode_ns+0x1e4/0x450 [ 186.961805] ? devm_device_remove_groups+0x50/0x50 [ 186.966723] kobject_uevent_env+0x378/0xc23 [ 186.971031] ? internal_create_group+0x49a/0x7b0 [ 186.975776] kobject_uevent+0x20/0x26 [ 186.979563] lo_ioctl+0x11e7/0x1ce0 [ 186.983180] ? loop_probe+0x160/0x160 [ 186.986993] blkdev_ioctl+0x96b/0x1860 [ 186.990864] ? blkpg_ioctl+0x980/0x980 [ 186.994755] ? __might_sleep+0x93/0xb0 [ 186.998630] ? __fget+0x210/0x370 [ 187.003115] block_ioctl+0xde/0x120 [ 187.006743] ? blkdev_fallocate+0x3b0/0x3b0 [ 187.011175] do_vfs_ioctl+0x7ae/0x1060 [ 187.015138] ? selinux_file_mprotect+0x5d0/0x5d0 [ 187.019882] ? lock_downgrade+0x740/0x740 [ 187.024111] ? ioctl_preallocate+0x1c0/0x1c0 [ 187.028537] ? __fget+0x237/0x370 [ 187.031987] ? security_file_ioctl+0x89/0xb0 [ 187.036419] SyS_ioctl+0x8f/0xc0 [ 187.039798] ? do_vfs_ioctl+0x1060/0x1060 [ 187.043958] do_syscall_64+0x1e8/0x640 [ 187.047856] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 187.052713] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 187.057905] RIP: 0033:0x45a087 [ 187.061087] RSP: 002b:00007f46eab45a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 187.068805] RAX: ffffffffffffffda RBX: 0000000020000068 RCX: 000000000045a087 [ 187.076171] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 187.083537] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 187.090800] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 187.098053] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 07:06:22 executing program 2: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) syz_mount_image$nfs(&(0x7f0000000140)='nfs\x00', &(0x7f00000000c0)='./file1\x00', 0x1, 0x9, &(0x7f0000000740)=[{&(0x7f0000000200)="5fc6927d400bf9b7e74a72884f02e56116a8eb", 0x13, 0x1}, {&(0x7f0000000240)="3d4fdb4d9cc136", 0x7, 0x1}, {&(0x7f0000000340)="230e891704ea382a42198731c2d4f5f321d8389632b204e722c2868fc449505105627c6a6beb9740f4425707f9f15fb66747542d77a97d36c66469c4318b21c11861ecd095dcb920703a7a65e9b2813cdbd92b56512929f3faa60c74e907874867ac64448180b39412ed22ee43fea02c", 0x70, 0x25e8}, {&(0x7f00000003c0)="16583c84228f47b5beec8129229edbb71ea4cd972b2ed6eb39906da831236f2a7a41fec547edcdef7c4c4b257b2c91f0e2f9e91b9e86de71e031f939ed5cc94d072b82cafe050d4d6292efabe0c0bc56", 0x50, 0xa7da}, {&(0x7f0000000280)="3e241b5616c20f37d4753c4c64b5202d0666f1cefcd998a3857347130e557c0b6584cf0367b2d2b76d14aae817a0944d8ff9", 0x32, 0x3}, {&(0x7f0000000440)='o', 0x1, 0x10001}, {&(0x7f0000000480)="8bbd512ad539f7b8ed27e00cd57db9dd02d9daa82b14b138db14e1c7e17c4aa5ecc4c333fc73200f662bf0313374d9c9ca597771e3dd1f2ee3a789945fd3231508dd6cd1084dea82c73d1a510e9b468db95db554fe30117f3fd258d10ea422f721777ca428dfb3404bc29127599617a3c957d1831c9c22aa86b636ff1676a8c34bc0dbcebf0027dfbcf48e2ca4c7208b13b02123c21574e549b44a933721f179136fbf4209d1e439dad0c35600943e000f8f770bcab934bf7cb3cc75bd2b47dc40b5", 0xc2, 0x7fff}, {&(0x7f0000000580)="e2de28b60b5238041de80036f7b39a6c0c24ed8038fa8e1ba57aad4fc0523a3e6ddc8da6afd6d3ad429b2cccc4aaa3986307e42bd01ea8b6e1d26f72cde166fc5fb91022e0d1f1e5fc32d82f20f20086a69f52bec4d6bac0251bb464b41d3c2b8ab3e8c18ec184f2929904b06febb4c7b268ad8abb1b39a0689354002eb7faab74cc89153d9c3a9f40c6fc6fc3ba5d70cd55f6be09144821fea54f3673fca93d43694e98644e28706d03df47fa94783a3ba4905d7b0d8d885ca5dd", 0xbb, 0x200}, {&(0x7f0000000640)="e33eb1a98e4ffcdc000b1245b85598c1c698879928aa0a7d20498e35cb46cc34df9c01b2bee33694e718d83b2a5881c1f45125e7b48fec497b753aa04d9fdfc922935f5a5c8478764c3a5a39298b0f4b2636cc7a03e230ed04e630e6b8319f1a1228dc8805c018342d32336c38a7c9e96ffcddfe300d9a32da120c36880ee7a4e726bfec54752bd743bb2fcb2f9edd2b79f794001dd1a7157c85a821b4ac06438cc1af5264ab8efb77c272b836ef38b8c5f67356aaffaeae99868b481442619e3648a36e2b6902cb7e4164ac2b08424ca0faee657579beb55cea9a6a464b0fd4c0e2eff14d13", 0xe6, 0x1cf}], 0x4, &(0x7f00000001c0)='\x00') socket$inet(0x2, 0x5, 0x20) 07:06:22 executing program 4: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, 0x0) r1 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) ioctl$VIDIOC_QUERYCAP(r1, 0x80685600, &(0x7f0000000040)) socket$nl_route(0x10, 0x3, 0x0) syz_open_dev$mouse(0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f00000000c0)) 07:06:22 executing program 1: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) r0 = syz_open_procfs(0x0, &(0x7f00000006c0)='Net/3\x97OOT\x15\x00\xb6\xcf@e\xd3r\x82\x9fc') ioctl$VIDIOC_PREPARE_BUF(r0, 0xc058565d, &(0x7f00000005c0)={0x0, 0xb, 0x4, 0x0, {0x0, 0x7530}, {0x0, 0x2, 0x81, 0x10, 0x24, 0x6, "cf676f53"}, 0x80, 0x5, @offset=0x9, 0x4}) mq_timedsend(r0, &(0x7f0000000480)="c1cc3d2c05c16add6c964974e00652617b35c74bd5a620d3170df3c2f134d5beb838b0f00c6ca198401126d02772777a96ead8602a94c5450ea4e5c8b02fc6e876ee2383fc4faa682ed6a91a53a08a1fdd9839c170a6f81ede814c769cf15c688c8514b5f4f1dc0a50019813ce4459df629cd480519073a5f929cd5e59d0058ea64475a46e924294d5ef1b4b158e59d9c923a0", 0x93, 0x4, &(0x7f0000000540)={0x0, 0x989680}) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_REM(r0, 0x84, 0x65, &(0x7f0000000140), 0x0) r1 = openat$selinux_enforce(0xffffffffffffff9c, &(0x7f0000000080)='/selinux/enforce\x00', 0x189000, 0x0) write$selinux_user(r1, &(0x7f00000000c0)={'system_u:object_r:tmpfs_t:s0', 0x20, 'unconfined_u\x00'}, 0x2a) 07:06:22 executing program 5: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) syz_open_procfs(0x0, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ptmx\x00', 0x193000, 0x0) ioctl$TCGETX(r0, 0x5432, &(0x7f00000000c0)) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xc) setresuid(0x0, r2, 0x0) syz_mount_image$f2fs(&(0x7f0000000140)='f2fs\x00', &(0x7f0000000180)='./file0\x00', 0x4, 0x1, &(0x7f0000000280)=[{&(0x7f00000001c0)="767299741286af1c1d3d61c85dbe30dc2836ecc288d22b1765d83b4b7b0d486e8232ae379a7c742ab9de324de48ac2834f9fff20508377e3c2321c273980c722395ef608a46d22fb1eb9ddee6714ab14e93d11cb7859e27683666a88c700d1ade0ca6d70ed45ba2da08143d78d7205f9710f1912ec412e207d58ce0bf2d4db38417a23541ab8767c", 0x88, 0x3ff}], 0x4000, &(0x7f0000000340)={[{@noflush_merge='noflush_merge'}], [{@uid_eq={'uid', 0x3d, r2}}, {@appraise_type='appraise_type=imasig'}, {@dont_appraise='dont_appraise'}, {@obj_type={'obj_type'}}]}) socket$inet6_sctp(0xa, 0x1, 0x84) 07:06:22 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f", 0x47, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) 07:06:22 executing program 4: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, 0x0) r1 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) ioctl$VIDIOC_QUERYCAP(r1, 0x80685600, &(0x7f0000000040)) getsockopt$bt_hci(r1, 0x0, 0x3, &(0x7f0000000200)=""/73, &(0x7f0000000280)=0x49) r2 = syz_open_procfs(0x0, &(0x7f00000006c0)='Net/3\x97OOT\x15\x00\xb6\xcf@e\xd3r\x82\x9fc') ioctl$VIDIOC_PREPARE_BUF(r2, 0xc058565d, &(0x7f00000005c0)={0x0, 0xb, 0x4, 0x0, {0x0, 0x7530}, {0x0, 0x2, 0x81, 0x10, 0x24, 0x6, "cf676f53"}, 0x80, 0x5, @offset=0x9, 0x4}) mq_timedsend(r2, &(0x7f0000000480)="c1cc3d2c05c16add6c964974e00652617b35c74bd5a620d3170df3c2f134d5beb838b0f00c6ca198401126d02772777a96ead8602a94c5450ea4e5c8b02fc6e876ee2383fc4faa682ed6a91a53a08a1fdd9839c170a6f81ede814c769cf15c688c8514b5f4f1dc0a50019813ce4459df629cd480519073a5f929cd5e59d0058ea64475a46e924294d5ef1b4b158e59d9c923a0", 0x93, 0x4, &(0x7f0000000540)={0x0, 0x989680}) getsockopt$sock_buf(r2, 0x1, 0x1f, &(0x7f0000000100)=""/178, &(0x7f00000001c0)=0xb2) syz_open_dev$mouse(0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f00000000c0)) 07:06:22 executing program 0 (fault-call:0 fault-nth:21): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x0, 0x989680}) socket$inet6_sctp(0xa, 0x0, 0x84) [ 187.498077] FAULT_INJECTION: forcing a failure. [ 187.498077] name failslab, interval 1, probability 0, space 0, times 0 [ 187.572594] CPU: 0 PID: 12443 Comm: syz-executor.0 Not tainted 4.14.151 #0 [ 187.579672] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 187.589389] Call Trace: [ 187.592001] dump_stack+0x138/0x197 [ 187.597480] should_fail.cold+0x10f/0x159 [ 187.601659] should_failslab+0xdb/0x130 [ 187.605686] kmem_cache_alloc_trace+0x2e9/0x790 [ 187.610376] ? kernfs_put+0x35e/0x490 [ 187.614186] ? sysfs_add_file_mode_ns+0x1e4/0x450 [ 187.619051] ? devm_device_remove_groups+0x50/0x50 [ 187.624004] kobject_uevent_env+0x378/0xc23 [ 187.628355] ? internal_create_group+0x49a/0x7b0 [ 187.633135] kobject_uevent+0x20/0x26 [ 187.636953] lo_ioctl+0x11e7/0x1ce0 [ 187.640598] ? loop_probe+0x160/0x160 [ 187.644425] blkdev_ioctl+0x96b/0x1860 [ 187.648337] ? blkpg_ioctl+0x980/0x980 [ 187.652231] ? __might_sleep+0x93/0xb0 [ 187.656111] ? __fget+0x210/0x370 [ 187.659557] block_ioctl+0xde/0x120 [ 187.663177] ? blkdev_fallocate+0x3b0/0x3b0 [ 187.667480] do_vfs_ioctl+0x7ae/0x1060 [ 187.671351] ? selinux_file_mprotect+0x5d0/0x5d0 [ 187.676089] ? lock_downgrade+0x740/0x740 [ 187.680223] ? ioctl_preallocate+0x1c0/0x1c0 [ 187.684620] ? __fget+0x237/0x370 [ 187.688059] ? security_file_ioctl+0x89/0xb0 [ 187.692454] SyS_ioctl+0x8f/0xc0 [ 187.695805] ? do_vfs_ioctl+0x1060/0x1060 [ 187.699937] do_syscall_64+0x1e8/0x640 [ 187.703808] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 187.708660] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 187.713830] RIP: 0033:0x45a087 07:06:22 executing program 4: sched_setscheduler(0x0, 0x5, 0x0) r0 = syz_open_dev$sndpcmp(&(0x7f0000000100)='/dev/snd/pcmC#D#p\x00', 0x8, 0x101000) write$P9_RCREATE(r0, &(0x7f0000000140)={0x18, 0x73, 0x1, {{0x80, 0x3, 0x3}, 0x2}}, 0x18) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r1, 0x8934, 0x0) r2 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x2, 0x2) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) ioctl$EXT4_IOC_ALLOC_DA_BLKS(r3, 0x660c) setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, &(0x7f0000000380)="0c4f4d16cf2f3a2dd8a5046790a60c91e487dc9ca281434dbc169c6555a654da5e42c953490634b417ec9535653162fc5730d4c8dab3e136550ed7d31fa8d7094afd6e5154349155e6ef7e5fb08d79c283188a3f28548ab4366e6863ba5561aedbd1ee3f9a2c5646e4a9c2806b231528bca7ee2134e39966c40bcb1371a7e7691672a8dc9bda07175f11a9160cba3f0ddb78db3b2e184e1e9aa371691df9f49a5e3343bce4e4b8a2c80831b63d95ed57cf89982b317abf1cf8a71078d00dd5fa9151c142fa4bb765d503150f5f6f34284c7480a5091e9b246e", 0xd9) fsetxattr$trusted_overlay_nlink(r3, &(0x7f0000000240)='trusted.overlay.nlink\x00', &(0x7f0000000300)={'U+', 0x7}, 0x28, 0x3) ioctl$KVM_SET_SREGS(r3, 0x4138ae84, &(0x7f0000000180)={{0x4, 0x2, 0x1e, 0xc4, 0xc1, 0x0, 0xc1, 0x40, 0x3, 0x3, 0x7, 0x2}, {0x1, 0x9d4b2052be9dc5d0, 0x9, 0x7, 0x20, 0x0, 0x5, 0x0, 0x4, 0x6, 0x89, 0x39}, {0x5000, 0xd000, 0xd, 0x37, 0xa, 0x6, 0x0, 0x8, 0x5, 0xff, 0x80, 0x20}, {0x4, 0x0, 0xe, 0x0, 0x4, 0x3f, 0x1f, 0xf8, 0xf9, 0x9, 0xfe, 0x80}, {0x20000, 0x3000, 0xe, 0xff, 0x0, 0x3f, 0x0, 0x1f, 0x7, 0x8, 0x1, 0x7f}, {0x1, 0x80002, 0x2767c050531c134a, 0x1, 0x3, 0x7b, 0x5, 0x4, 0x6, 0x4, 0xff, 0x45}, {0x0, 0x1000, 0xc, 0x1, 0x1f, 0x57, 0x1f, 0x6, 0xae, 0x0, 0x2, 0x1}, {0x2804, 0x1, 0x3, 0x1, 0x50, 0x3f, 0xfe, 0x1, 0x2, 0x7, 0x1, 0x8}, {0xd000, 0x5000}, {0xbd739335af27ebc9, 0x2}, 0x80000001, 0x0, 0x4000, 0x2, 0x6, 0xb200, 0x6000, [0x4, 0x59de, 0x5, 0xfffffffffffffffb]}) ioctl$VIDIOC_QUERYCAP(r2, 0x80685600, &(0x7f0000000040)) syz_open_dev$mouse(0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$MON_IOCQ_RING_SIZE(r2, 0x9205) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f00000000c0)) 07:06:22 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f", 0x47, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) [ 187.717016] RSP: 002b:00007f46eab45a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 187.724708] RAX: ffffffffffffffda RBX: 0000000020000068 RCX: 000000000045a087 [ 187.731974] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 187.740673] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 187.747935] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 187.755401] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 07:06:22 executing program 2: r0 = socket$inet_dccp(0x2, 0x6, 0x0) r1 = getpid() sched_getscheduler(r1) getsockopt$inet_opts(r0, 0x0, 0x4, 0x0, &(0x7f0000000240)) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 07:06:22 executing program 1: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r1, 0x407, 0x0) write(r1, &(0x7f0000000340), 0x41395527) ioctl$EXT4_IOC_ALLOC_DA_BLKS(r1, 0x660c) setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000380)="0c4f4d16cf2f3a2dd8a5046790a60c91e487dc9ca281434dbc169c6555a654da5e42c953490634b417ec9535653162fc5730d4c8dab3e136550ed7d31fa8d7094afd6e5154349155e6ef7e5fb08d79c283188a3f28548ab4366e6863ba5561aedbd1ee3f9a2c5646e4a9c2806b231528bca7ee2134e39966c40bcb1371a7e7691672a8dc9bda07175f11a9160cba3f0ddb78db3b2e184e1e9aa371691df9f49a5e3343bce4e4b8a2c80831b63d95ed57cf89982b317abf1cf8a71078d00dd5fa9151c142fa4bb765d503150f5f6f34284c7480a5091e9b246e", 0xd9) openat$selinux_checkreqprot(0xffffffffffffff9c, &(0x7f00000001c0)='/selinux/checkreqprot\x00', 0x10000, 0x0) fsetxattr$trusted_overlay_nlink(r1, &(0x7f0000000240)='trusted.overlay.nlink\x00', &(0x7f0000000300)={'U+', 0x7}, 0x28, 0x3) pipe(&(0x7f0000000200)={0xffffffffffffffff}) r3 = syz_open_procfs(0x0, &(0x7f00000006c0)='Net/3\x97OOT\x15\x00\xb6\xcf@e\xd3r\x82\x9fc') ioctl$VIDIOC_PREPARE_BUF(r3, 0xc058565d, &(0x7f00000005c0)={0x0, 0xb, 0x4, 0x0, {0x0, 0x7530}, {0x0, 0x2, 0x81, 0x10, 0x24, 0x6, "cf676f53"}, 0x80, 0x5, @offset=0x9, 0x4}) mq_timedsend(r3, &(0x7f0000000480)="c1cc3d2c05c16add6c964974e00652617b35c74bd5a620d3170df3c2f134d5beb838b0f00c6ca198401126d02772777a96ead8602a94c5450ea4e5c8b02fc6e876ee2383fc4faa682ed6a91a53a08a1fdd9839c170a6f81ede814c769cf15c688c8514b5f4f1dc0a50019813ce4459df629cd480519073a5f929cd5e59d0058ea64475a46e924294d5ef1b4b158e59d9c923a0", 0x93, 0x4, &(0x7f0000000540)={0x0, 0x989680}) r4 = accept4$llc(r0, 0x0, &(0x7f0000002e80), 0x800) vmsplice(r4, &(0x7f0000002d40), 0x392, 0x0) getsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(r2, 0x84, 0x18, &(0x7f0000000080)={0x0, 0x9}, &(0x7f00000000c0)=0x8) setsockopt$inet_sctp_SCTP_ENABLE_STREAM_RESET(r1, 0x84, 0x76, &(0x7f0000000140)={r5, 0x800}, 0x8) r6 = syz_open_procfs(0x0, &(0x7f0000000880)='oom_score\x00') preadv(r6, &(0x7f00000017c0), 0x199, 0x0) ioctl$UI_BEGIN_FF_UPLOAD(r6, 0xc06855c8, &(0x7f0000000640)={0x10, 0xd17, {0x52, 0x2db, 0x7f, {0x200}, {0x40, 0x4}, @const={0x7ff, {0x8, 0xba, 0x1, 0x9150}}}, {0xa5e136065a937c32, 0x5, 0xfff, {0x4, 0x3}, {0x7, 0x1}, @ramp={0x800, 0x80, {0x100, 0x4c2, 0x800, 0x3}}}}) ioctl$VIDIOC_ENUM_FMT(r6, 0xc0405602, &(0x7f0000000180)={0x4, 0xb, 0x1, "62d702a6922cb50f0b0e0fb86a7f582ba07b8ec8167e7d67d747662f2549c8ef", 0x7b9f39d4}) socket$inet6_sctp(0xa, 0x0, 0x84) 07:06:23 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f", 0x47, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) 07:06:23 executing program 5: openat$selinux_context(0xffffffffffffff9c, &(0x7f0000000080)='/selinux/context\x00', 0x2, 0x0) syz_mount_image$btrfs(&(0x7f0000000000)='\x80\xcd\xff\xff\xff\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0xc3a6084cb94679c1, 0x0) syz_open_procfs(0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) socket$inet6_sctp(0xa, 0xb, 0x84) 07:06:23 executing program 0 (fault-call:0 fault-nth:22): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x0, 0x989680}) socket$inet6_sctp(0xa, 0x0, 0x84) [ 188.002393] FAULT_INJECTION: forcing a failure. [ 188.002393] name failslab, interval 1, probability 0, space 0, times 0 [ 188.046530] CPU: 1 PID: 12502 Comm: syz-executor.0 Not tainted 4.14.151 #0 [ 188.053596] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 188.062963] Call Trace: [ 188.065574] dump_stack+0x138/0x197 [ 188.069220] should_fail.cold+0x10f/0x159 [ 188.073363] should_failslab+0xdb/0x130 [ 188.077340] __kmalloc+0x2f0/0x7a0 [ 188.080865] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 188.086313] ? kobject_uevent_env+0x378/0xc23 [ 188.090791] ? rcu_read_lock_sched_held+0x110/0x130 [ 188.096166] ? kobject_get_path+0xbb/0x1a0 [ 188.101105] kobject_get_path+0xbb/0x1a0 [ 188.105178] ? devm_device_remove_groups+0x50/0x50 [ 188.110101] kobject_uevent_env+0x39c/0xc23 [ 188.114411] ? internal_create_group+0x49a/0x7b0 [ 188.119155] kobject_uevent+0x20/0x26 [ 188.123037] lo_ioctl+0x11e7/0x1ce0 [ 188.126648] ? loop_probe+0x160/0x160 [ 188.130708] blkdev_ioctl+0x96b/0x1860 [ 188.134582] ? blkpg_ioctl+0x980/0x980 [ 188.138474] ? __might_sleep+0x93/0xb0 [ 188.142347] ? __fget+0x210/0x370 [ 188.145972] block_ioctl+0xde/0x120 [ 188.149759] ? blkdev_fallocate+0x3b0/0x3b0 [ 188.154274] do_vfs_ioctl+0x7ae/0x1060 [ 188.158161] ? selinux_file_mprotect+0x5d0/0x5d0 [ 188.163008] ? lock_downgrade+0x740/0x740 [ 188.167273] ? ioctl_preallocate+0x1c0/0x1c0 [ 188.171693] ? __fget+0x237/0x370 [ 188.175435] ? security_file_ioctl+0x89/0xb0 [ 188.192336] SyS_ioctl+0x8f/0xc0 [ 188.195695] ? do_vfs_ioctl+0x1060/0x1060 [ 188.199833] do_syscall_64+0x1e8/0x640 [ 188.203742] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 188.208579] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 188.213772] RIP: 0033:0x45a087 [ 188.216961] RSP: 002b:00007f46eab45a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 188.224724] RAX: ffffffffffffffda RBX: 0000000020000068 RCX: 000000000045a087 [ 188.232003] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 188.239281] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a 07:06:23 executing program 5: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x20010000}], 0x0, 0x0) r0 = syz_open_procfs(0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) socket$inet6_sctp(0xa, 0x1, 0x84) r1 = socket$key(0xf, 0x3, 0x2) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f0000000080)=r0, 0x4) [ 188.247244] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 188.254499] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 07:06:23 executing program 2: 07:06:23 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) 07:06:23 executing program 0 (fault-call:0 fault-nth:23): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x0, 0x989680}) socket$inet6_sctp(0xa, 0x0, 0x84) 07:06:23 executing program 2: syz_mount_image$btrfs(&(0x7f0000000080)='bt&os\x00', &(0x7f0000000100)='./file0\x00', 0x1, 0x0, &(0x7f0000000040), 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000006c0)='Net/3\x97OOT\x15\x00\xb6\xcf@e\xd3r\x82\x9fc') ioctl$VIDIOC_PREPARE_BUF(r0, 0xc058565d, &(0x7f00000005c0)={0x0, 0xb, 0x4, 0x0, {0x0, 0x7530}, {0x0, 0x2, 0x81, 0x10, 0x24, 0x6, "cf676f53"}, 0x80, 0x5, @offset=0x9, 0x4}) mq_timedsend(r0, &(0x7f0000000480)="c1cc3d2c05c16add6c964974e00652617b35c74bd5a620d3170df3c2f134d5beb838b0f00c6ca198401126d02772777a96ead8602a94c5450ea4e5c8b02fc6e876ee2383fc4faa682ed6a91a53a08a1fdd9839c170a6f81ede814c769cf15c688c8514b5f4f1dc0a50019813ce4459df629cd480519073a5f929cd5e59d0058ea64475a46e924294d5ef1b4b158e59d9c923a0", 0x93, 0x4, &(0x7f0000000540)={0x0, 0x989680}) ioctl$BLKSECTGET(r0, 0x1267, &(0x7f0000000000)) 07:06:23 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f00000004c0)=ANY=[@ANYBLOB="b702000000000000bfa30000000000000703000000fefff67a0af0fff8ffffff79a4f0ff00000000b7060000ffffffff2d6405000000000065040400010000000404000001000000b7050000220000006a0a00fe00000000850000000b000000b70000000000000095000000000000009d357cee3be61b5862e47072932c5e465414a30756cdee907856c28d4b7765c342469804b3fcd46c8753a69306e690ceecf43e72a1effe5a204bb5"], &(0x7f0000000340)='GPL\x00'}, 0x48) ioctl$sock_inet_SIOCSIFDSTADDR(0xffffffffffffffff, 0x8918, 0x0) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000400)={r0, 0x0, 0x10, 0x0, &(0x7f0000000140)="a673f3ce05f1a282eeab0500000800f08102e63238f9cf8c0ccade00556e97d003cc298613f230d6841f3099e19fd903b2ffa5106c71ac91c7457b2d7f4157f069737d63ab32be2a651d7cee2970a9df488cae6702031c92a8b4b6376f9972f3848c104d413745d4c57253b2d61d64787c4de49fc5", 0x0, 0x3ff, 0x0, 0x0, 0xffffffffffffffbc, &(0x7f0000000040)="15396af9a72e96da8129ed1653da4c7f58430968e943c7415c1135cc832d158cfe31f78128c0f6ced392de7b250aa16a0837c05297e7c9d3db2466761815aeb216c263f7010b0d4de72c5f199f0be260a48e8c37d2ea3a52026012d3"}, 0x28) sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x4004, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}, 0x0, 0x0, 0x0, 0x0, 0x1000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r1, 0x407, 0x0) r2 = accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x80800) setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r2, 0x84, 0x13, &(0x7f0000000100)=0x73, 0x4) r3 = socket$inet6_sctp(0xa, 0x1, 0x84) r4 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r4, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [0x0]}, &(0x7f000095dffc)=0x8) getsockopt$inet_sctp6_SCTP_ASSOCINFO(r3, 0x84, 0x1, &(0x7f0000000000)={r5}, &(0x7f0000000040)=0x14) getsockopt$inet_sctp6_SCTP_ASSOCINFO(r2, 0x84, 0x1, &(0x7f00000001c0)={r5, 0x4, 0x3, 0x9, 0x4, 0x2}, &(0x7f0000000280)=0x14) write(r1, &(0x7f0000000340), 0x41395527) ioctl$EXT4_IOC_ALLOC_DA_BLKS(r1, 0x660c) setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000380)="0c4f4d16cf2f3a2dd8a5046790a60c91e487dc9ca281434dbc169c6555a654da5e42c953490634b417ec9535653162fc5730d4c8dab3e136550ed7d31fa8d7094afd6e5154349155e6ef7e5fb08d79c283188a3f28548ab4366e6863ba5561aedbd1ee3f9a2c5646e4a9c2806b231528bca7ee2134e39966c40bcb1371a7e7691672a8dc9bda07175f11a9160cba3f0ddb78db3b2e184e1e9aa371691df9f49a5e3343bce4e4b8a2c80831b63d95ed57cf89982b317abf1cf8a71078d00dd5fa9151c142fa4bb765d503150f5f6f34284c7480a5091e9b246e", 0xd9) fsetxattr$trusted_overlay_nlink(r1, &(0x7f0000000240)='trusted.overlay.nlink\x00', &(0x7f0000000300)={'U+', 0x7}, 0x28, 0x3) openat$cgroup_ro(r1, &(0x7f0000000100)='hugetlb.2MB.usage_in_bytes\x00', 0x0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r6 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r6, 0x8934, 0x0) r7 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) ioctl$VIDIOC_QUERYCAP(r7, 0x80685600, &(0x7f0000000040)) syz_open_dev$mouse(0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f00000000c0)) [ 188.473137] FAULT_INJECTION: forcing a failure. [ 188.473137] name failslab, interval 1, probability 0, space 0, times 0 [ 188.525270] CPU: 1 PID: 12539 Comm: syz-executor.0 Not tainted 4.14.151 #0 [ 188.532353] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 188.541802] Call Trace: [ 188.544404] dump_stack+0x138/0x197 [ 188.548055] should_fail.cold+0x10f/0x159 [ 188.552229] should_failslab+0xdb/0x130 [ 188.556207] kmem_cache_alloc_node+0x287/0x780 [ 188.560797] __alloc_skb+0x9c/0x500 [ 188.564430] ? skb_scrub_packet+0x4b0/0x4b0 [ 188.568752] ? netlink_has_listeners+0x20a/0x330 [ 188.573516] kobject_uevent_env+0x781/0xc23 [ 188.577841] ? internal_create_group+0x49a/0x7b0 [ 188.582606] kobject_uevent+0x20/0x26 [ 188.586411] lo_ioctl+0x11e7/0x1ce0 [ 188.590042] ? loop_probe+0x160/0x160 [ 188.593839] blkdev_ioctl+0x96b/0x1860 [ 188.597726] ? blkpg_ioctl+0x980/0x980 [ 188.601622] ? __might_sleep+0x93/0xb0 [ 188.605513] ? __fget+0x210/0x370 [ 188.608968] block_ioctl+0xde/0x120 [ 188.612595] ? blkdev_fallocate+0x3b0/0x3b0 [ 188.616916] do_vfs_ioctl+0x7ae/0x1060 [ 188.620895] ? selinux_file_mprotect+0x5d0/0x5d0 [ 188.625648] ? lock_downgrade+0x740/0x740 [ 188.629793] ? ioctl_preallocate+0x1c0/0x1c0 [ 188.634204] ? __fget+0x237/0x370 [ 188.637665] ? security_file_ioctl+0x89/0xb0 [ 188.642090] SyS_ioctl+0x8f/0xc0 [ 188.645467] ? do_vfs_ioctl+0x1060/0x1060 [ 188.649629] do_syscall_64+0x1e8/0x640 [ 188.653620] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 188.658471] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 188.663662] RIP: 0033:0x45a087 [ 188.666854] RSP: 002b:00007f46eab45a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 07:06:23 executing program 1: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) setsockopt$EBT_SO_SET_ENTRIES(0xffffffffffffffff, 0x0, 0x80, &(0x7f0000000140)=@filter={'filter\x00', 0xe, 0x4, 0x708, [0x0, 0x20000340, 0x2000062c, 0x200009e8], 0x0, &(0x7f0000000080), &(0x7f0000000340)=[{0x0, '\x00', 0x0, 0xfffffffffffffffc, 0x2, [{0x5, 0xcd, 0x0, 'bridge_slave_1\x00', '\x00', 'veth1\x00', 'veth1\x00', @local, [0x0, 0x7f, 0xff, 0xff, 0xff, 0xff], @empty, [0x0, 0x80, 0x7f, 0x1fe, 0x1fe, 0xff], 0xce, 0x14e, 0x17e, [@arp={'arp\x00', 0x38, {{0x0, 0xf9, 0x4, @dev={0xac, 0x14, 0x14, 0x1d}, 0xffff00, @multicast2, 0xff000000, @dev={[], 0x17}, [0xff, 0x0, 0x0, 0xff, 0xff, 0xff], @link_local, [0x0, 0xff, 0xff, 0x7f], 0x8d, 0x129}}}], [@common=@dnat={'dnat\x00', 0x10, {{@dev={[], 0x23}, 0xfffffffffffffffe}}}, @common=@RATEEST={'RATEEST\x00', 0x20, {{'syz0\x00', 0x66, 0x8, 0x80000000}}}], @common=@CONNSECMARK={'CONNSECMARK\x00', 0x8, {{0x1}}}}, {0x5, 0x45, 0x8035, 'vcan0\x00', 'vlan0\x00', 'veth0\x00', 'caif0\x00', @broadcast, [0xff, 0xff, 0xff, 0x2b26bf302b45caaa, 0x0, 0xff], @dev={[], 0x19}, [0x1fe, 0x0, 0xff, 0x7f], 0xee, 0xee, 0x13e, [@ip={'ip\x00', 0x20, {{@loopback, @broadcast, 0xffffff00, 0x0, 0x80, 0x1, 0x3, 0x0, 0x4e21, 0x4e23, 0x4e24, 0x4e21}}}, @mac={'mac\x00', 0x10, {{@random="e51f98567317"}}}], [], @common=@LED={'LED\x00', 0x28, {{'syz0\x00', 0x1, 0x7f, 0x6}}}}]}, {0x0, '\x00', 0x2, 0xfffffffffffffffe, 0x2, [{0xd7a0155a58cc01fb, 0x0, 0x6005, 'hsr0\x00', 'bond_slave_1\x00', 'tunl0\x00', 'team_slave_1\x00', @broadcast, [0xff, 0xff, 0x1fe, 0x1fe, 0xff], @dev={[], 0x26}, [0x0, 0x181, 0x0, 0xff, 0x7f], 0x6e, 0xb6, 0xee, [], [@common=@ERROR={'ERROR\x00', 0x20, {"69cf27b9a61ec3ea1792ab7d7d0efcb6ea1fa479fb4f48c5e878f07f0827"}}], @common=@dnat={'dnat\x00', 0x10, {{@remote, 0xfffffffffffffffc}}}}, {0x11, 0x2a, 0xb649c1e2b6dd709a, 'teql0\x00', 'veth0_to_bridge\x00', 'bridge_slave_0\x00', 'vcan0\x00', @dev={[], 0x14}, [0x17e, 0x0, 0xff, 0x1fe, 0x7f], @broadcast, [0xff, 0xff, 0x0, 0x0, 0xff, 0xff], 0xf6, 0x16e, 0x29e, [@nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x20000000000000}}}, @realm={'realm\x00', 0x10, {{0x20, 0x9, 0x1}}}], [@common=@nflog={'nflog\x00', 0x50, {{0x8001, 0x7e9, 0x7, 0x0, 0x0, "6d21326f24c6e436e1f30566864a96fd7fdc0942181010a8fa36889f39f6ca4673a4a4b3a888ecc903a03b526f2557a06836aab0753c0fce0a79fd00f7a13b34"}}}], @common=@SECMARK={'SECMARK\x00', 0x108, {{0x1, 0x4, '/usr/lib/telepathy/mission-control-5\x00'}}}}]}, {0x0, '\x00', 0x4, 0xfffffffffffffffe}, {0x0, '\x00', 0x4, 0xfffffffffffffffe}]}, 0x780) socket$inet6_sctp(0xa, 0x0, 0x84) [ 188.674563] RAX: ffffffffffffffda RBX: 0000000020000068 RCX: 000000000045a087 [ 188.681923] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 188.689217] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 188.696506] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 188.703774] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 07:06:23 executing program 5: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$USBDEVFS_RESET(0xffffffffffffffff, 0x5514) syz_open_procfs(0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) socket$inet6_sctp(0xa, 0x1, 0x84) r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000080)='/dXv/audio\x00', 0x100, 0x0) write$input_event(r0, &(0x7f00000000c0)={{0x77359400}, 0x11, 0x7f, 0x401}, 0x18) 07:06:23 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) 07:06:23 executing program 0 (fault-call:0 fault-nth:24): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x0, 0x989680}) socket$inet6_sctp(0xa, 0x0, 0x84) 07:06:24 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) [ 188.948478] FAULT_INJECTION: forcing a failure. [ 188.948478] name failslab, interval 1, probability 0, space 0, times 0 [ 188.976409] CPU: 1 PID: 12590 Comm: syz-executor.0 Not tainted 4.14.151 #0 [ 188.983464] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 188.992809] Call Trace: [ 188.995394] dump_stack+0x138/0x197 [ 188.999018] should_fail.cold+0x10f/0x159 [ 189.003158] should_failslab+0xdb/0x130 [ 189.007145] kmem_cache_alloc_node_trace+0x280/0x770 [ 189.012265] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 189.017726] __kmalloc_node_track_caller+0x3d/0x80 [ 189.022820] __kmalloc_reserve.isra.0+0x40/0xe0 [ 189.027577] __alloc_skb+0xcf/0x500 [ 189.031215] ? skb_scrub_packet+0x4b0/0x4b0 [ 189.035782] ? netlink_has_listeners+0x20a/0x330 [ 189.040529] kobject_uevent_env+0x781/0xc23 [ 189.045833] ? internal_create_group+0x49a/0x7b0 [ 189.051165] kobject_uevent+0x20/0x26 [ 189.057139] lo_ioctl+0x11e7/0x1ce0 [ 189.060796] ? loop_probe+0x160/0x160 [ 189.064668] blkdev_ioctl+0x96b/0x1860 [ 189.068538] ? blkpg_ioctl+0x980/0x980 [ 189.072414] ? __might_sleep+0x93/0xb0 [ 189.076301] ? __fget+0x210/0x370 [ 189.082348] block_ioctl+0xde/0x120 [ 189.086323] ? blkdev_fallocate+0x3b0/0x3b0 [ 189.091064] do_vfs_ioctl+0x7ae/0x1060 [ 189.096763] ? selinux_file_mprotect+0x5d0/0x5d0 [ 189.101943] ? lock_downgrade+0x740/0x740 [ 189.106168] ? ioctl_preallocate+0x1c0/0x1c0 [ 189.110861] ? __fget+0x237/0x370 [ 189.114417] ? security_file_ioctl+0x89/0xb0 [ 189.118931] SyS_ioctl+0x8f/0xc0 [ 189.122285] ? do_vfs_ioctl+0x1060/0x1060 [ 189.126418] do_syscall_64+0x1e8/0x640 [ 189.130617] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 189.135457] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 189.140633] RIP: 0033:0x45a087 07:06:24 executing program 2: r0 = syz_open_dev$admmidi(&(0x7f0000000200)='/dev/admmidi#\x00', 0x0, 0x80) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000004c0)={r0, 0xc0, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)=0x3, 0x0, 0x0, 0x0, &(0x7f0000000280)={0x1, 0x3}, 0x0, 0x0, &(0x7f0000000340)={0x2, 0x1, 0x5, 0x1}, &(0x7f0000000580)=0x6, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000540)=0xc3d1}}, 0x10) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000080)='./file0/file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200020000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r1, 0x407, 0x0) write(r1, &(0x7f0000000340), 0x41395527) ioctl$EXT4_IOC_ALLOC_DA_BLKS(r1, 0x660c) setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000380)="0c4f4d16cf2f3a2dd8a5046790a60c91e487dc9ca281434dbc169c6555a654da5e42c953490634b417ec9535653162fc5730d4c8dab3e136550ed7d31fa8d7094afd6e5154349155e6ef7e5fb08d79c283188a3f28548ab4366e6863ba5561aedbd1ee3f9a2c5646e4a9c2806b231528bca7ee2134e39966c40bcb1371a7e7691672a8dc9bda07175f11a9160cba3f0ddb78db3b2e184e1e9aa371691df9f49a5e3343bce4e4b8a2c80831b63d95ed57cf89982b317abf1cf8a71078d00dd5fa9151c142fa4bb765d503150f5f6f34284c7480a5091e9b246e", 0xd9) fsetxattr$trusted_overlay_nlink(r1, &(0x7f0000000240)='trusted.overlay.nlink\x00', &(0x7f0000000300)={'U+', 0x7}, 0x28, 0x3) ioctl$BINDER_SET_CONTEXT_MGR_EXT(r1, 0x4018620d, &(0x7f0000000500)={0x73622a85, 0x1, 0x3}) setxattr$security_selinux(&(0x7f00000000c0)='./file0/file0\x00', &(0x7f0000000100)='security.selinux\x00', &(0x7f0000000140)='system_u:object_r:hald_cache_t:s0\x00', 0x22, 0xdfe08546249e9fac) symlink(&(0x7f0000000180)='./file0/file0\x00', &(0x7f00000001c0)='./file0/file0\x00') [ 189.143807] RSP: 002b:00007f46eab45a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 189.151502] RAX: ffffffffffffffda RBX: 0000000020000068 RCX: 000000000045a087 [ 189.158771] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 189.166043] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 189.173315] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 189.180569] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 07:06:24 executing program 0 (fault-call:0 fault-nth:25): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x0, 0x989680}) socket$inet6_sctp(0xa, 0x0, 0x84) 07:06:24 executing program 5: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) syz_open_procfs(0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) socket$inet6_sctp(0xa, 0x1, 0x84) pkey_alloc(0x0, 0x3) 07:06:24 executing program 1: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) r0 = syz_open_procfs(0x0, &(0x7f0000000880)='oom_score\x00') preadv(r0, &(0x7f00000017c0), 0x199, 0x0) ioctl$UI_BEGIN_FF_UPLOAD(r0, 0xc06855c8, &(0x7f0000000640)={0x10, 0xd17, {0x52, 0x2db, 0x7f, {0x200}, {0x40, 0x4}, @const={0x7ff, {0x8, 0xba, 0x1, 0x9150}}}, {0xa5e136065a937c32, 0x5, 0xfff, {0x4, 0x3}, {0x7, 0x1}, @ramp={0x800, 0x80, {0x100, 0x4c2, 0x800, 0x3}}}}) write$P9_RFLUSH(r0, &(0x7f0000000080)={0x7, 0x6d, 0x1}, 0x7) r1 = syz_open_procfs(0x0, &(0x7f0000000880)='oom_score\x00') preadv(r1, &(0x7f00000017c0), 0x199, 0x0) ioctl$UI_BEGIN_FF_UPLOAD(r1, 0xc06855c8, &(0x7f0000000640)={0x10, 0xd17, {0x52, 0x2db, 0x7f, {0x200}, {0x40, 0x4}, @const={0x7ff, {0x8, 0xba, 0x1, 0x9150}}}, {0xa5e136065a937c32, 0x5, 0xfff, {0x4, 0x3}, {0x7, 0x1}, @ramp={0x800, 0x80, {0x100, 0x4c2, 0x800, 0x3}}}}) r2 = accept4$inet6(r1, 0x0, 0x0, 0x80800) setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r2, 0x84, 0x13, &(0x7f0000000100)=0x73, 0x4) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000200)='/dev/hwrng\x00', 0x20c01, 0x0) ioctl$SG_GET_SCSI_ID(r3, 0x2276, &(0x7f0000000240)) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_REM(r2, 0x84, 0x65, &(0x7f0000000140)=[@in6={0xa, 0x4e20, 0x4, @mcast2, 0xb4}, @in6={0xa, 0x4e22, 0x3ff, @loopback, 0x18258000}, @in6={0xa, 0x4e21, 0x2, @initdev={0xfe, 0x88, [], 0x1, 0x0}, 0x400}, @in={0x2, 0x4e21, @initdev={0xac, 0x1e, 0x0, 0x0}}, @in6={0xa, 0x4e22, 0x70000, @local, 0x2}, @in={0x2, 0x4e24, @multicast1}, @in6={0xa, 0x4e21, 0x6, @local, 0x3}], 0xac) r4 = syz_open_procfs(0x0, &(0x7f00000006c0)='Net/3\x97OOT\x15\x00\xb6\xcf@e\xd3r\x82\x9fc') ioctl$VIDIOC_PREPARE_BUF(r4, 0xc058565d, &(0x7f00000005c0)={0x0, 0xb, 0x4, 0x0, {0x0, 0x7530}, {0x0, 0x2, 0x81, 0x10, 0x24, 0x6, "cf676f53"}, 0x80, 0x5, @offset=0x9, 0x4}) mq_timedsend(r4, &(0x7f0000000480)="c1cc3d2c05c16add6c964974e00652617b35c74bd5a620d3170df3c2f134d5beb838b0f00c6ca198401126d02772777a96ead8602a94c5450ea4e5c8b02fc6e876ee2383fc4faa682ed6a91a53a08a1fdd9839c170a6f81ede814c769cf15c688c8514b5f4f1dc0a50019813ce4459df629cd480519073a5f929cd5e59d0058ea64475a46e924294d5ef1b4b158e59d9c923a0", 0x93, 0x4, &(0x7f0000000540)={0x0, 0x989680}) ioctl$SNDRV_RAWMIDI_IOCTL_PVERSION(r4, 0x80045700, &(0x7f00000000c0)) 07:06:24 executing program 4: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, 0x0) r1 = openat$selinux_avc_hash_stats(0xffffffffffffff9c, &(0x7f0000000100)='/selinux/avc/hash_stats\x00', 0x0, 0x0) getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000140)=ANY=[@ANYBLOB="020000000000c434"], &(0x7f0000000180)=0x8) ioctl$VFIO_IOMMU_MAP_DMA(0xffffffffffffffff, 0x3b71, &(0x7f00000001c0)={0x20, 0x0, 0x0, 0xde65, 0x200}) r2 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) ioctl$VIDIOC_QUERYCAP(r2, 0x80685600, &(0x7f0000000040)) syz_open_dev$mouse(0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f00000000c0)) 07:06:24 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$USBDEVFS_RESET(0xffffffffffffffff, 0x5514) syz_open_procfs(0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) socket$inet6_sctp(0xa, 0x1, 0x84) r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000080)='/dXv/audio\x00', 0x100, 0x0) write$input_event(r0, &(0x7f00000000c0)={{0x77359400}, 0x11, 0x7f, 0x401}, 0x18) [ 189.440789] FAULT_INJECTION: forcing a failure. [ 189.440789] name failslab, interval 1, probability 0, space 0, times 0 [ 189.518066] CPU: 0 PID: 12626 Comm: syz-executor.0 Not tainted 4.14.151 #0 [ 189.525944] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 189.525950] Call Trace: [ 189.525969] dump_stack+0x138/0x197 [ 189.525987] should_fail.cold+0x10f/0x159 [ 189.526004] should_failslab+0xdb/0x130 [ 189.526018] kmem_cache_alloc_node_trace+0x280/0x770 [ 189.526029] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 189.526042] __kmalloc_node_track_caller+0x3d/0x80 [ 189.526053] __kmalloc_reserve.isra.0+0x40/0xe0 [ 189.526064] __alloc_skb+0xcf/0x500 [ 189.526073] ? skb_scrub_packet+0x4b0/0x4b0 [ 189.526083] ? netlink_has_listeners+0x20a/0x330 [ 189.526096] kobject_uevent_env+0x781/0xc23 [ 189.526113] kobject_uevent+0x20/0x26 [ 189.526124] lo_ioctl+0x11e7/0x1ce0 [ 189.526136] ? loop_probe+0x160/0x160 [ 189.526145] blkdev_ioctl+0x96b/0x1860 [ 189.526153] ? blkpg_ioctl+0x980/0x980 [ 189.526167] ? __might_sleep+0x93/0xb0 [ 189.526175] ? __fget+0x210/0x370 [ 189.526187] block_ioctl+0xde/0x120 [ 189.526198] ? blkdev_fallocate+0x3b0/0x3b0 [ 189.546039] do_vfs_ioctl+0x7ae/0x1060 [ 189.625257] ? selinux_file_mprotect+0x5d0/0x5d0 [ 189.629997] ? lock_downgrade+0x740/0x740 [ 189.634149] ? ioctl_preallocate+0x1c0/0x1c0 [ 189.638556] ? __fget+0x237/0x370 [ 189.641997] ? security_file_ioctl+0x89/0xb0 [ 189.646399] SyS_ioctl+0x8f/0xc0 [ 189.649751] ? do_vfs_ioctl+0x1060/0x1060 [ 189.653921] do_syscall_64+0x1e8/0x640 [ 189.657810] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 189.662644] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 189.674420] RIP: 0033:0x45a087 [ 189.677609] RSP: 002b:00007f46eab45a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 189.685304] RAX: ffffffffffffffda RBX: 0000000020000068 RCX: 000000000045a087 [ 189.695516] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 189.702791] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 189.710072] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 189.719249] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 07:06:24 executing program 4: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, 0x0) syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) r1 = syz_open_procfs(0x0, &(0x7f00000006c0)='Net/3\x97OOT\x15\x00\xb6\xcf@e\xd3r\x82\x9fc') ioctl$VIDIOC_PREPARE_BUF(r1, 0xc058565d, &(0x7f00000005c0)={0x0, 0xb, 0x4, 0x0, {0x0, 0x7530}, {0x0, 0x2, 0x81, 0x10, 0x24, 0x6, "cf676f53"}, 0x80, 0x5, @offset=0x9, 0x4}) mq_timedsend(r1, &(0x7f0000000480)="c1cc3d2c05c16add6c964974e00652617b35c74bd5a620d3170df3c2f134d5beb838b0f00c6ca198401126d02772777a96ead8602a94c5450ea4e5c8b02fc6e876ee2383fc4faa682ed6a91a53a08a1fdd9839c170a6f81ede814c769cf15c688c8514b5f4f1dc0a50019813ce4459df629cd480519073a5f929cd5e59d0058ea64475a46e924294d5ef1b4b158e59d9c923a0", 0x93, 0x4, &(0x7f0000000540)={0x0, 0x989680}) r2 = syz_open_procfs(0x0, &(0x7f00000006c0)='Net/3\x97OOT\x15\x00\xb6\xcf@e\xd3r\x82\x9fc') ioctl$VIDIOC_PREPARE_BUF(r2, 0xc058565d, &(0x7f00000005c0)={0x0, 0xb, 0x4, 0x0, {0x0, 0x7530}, {0x0, 0x2, 0x81, 0x10, 0x24, 0x6, "cf676f53"}, 0x80, 0x5, @offset=0x9, 0x4}) mq_timedsend(r2, &(0x7f0000000480)="c1cc3d2c05c16add6c964974e00652617b35c74bd5a620d3170df3c2f134d5beb838b0f00c6ca198401126d02772777a96ead8602a94c5450ea4e5c8b02fc6e876ee2383fc4faa682ed6a91a53a08a1fdd9839c170a6f81ede814c769cf15c688c8514b5f4f1dc0a50019813ce4459df629cd480519073a5f929cd5e59d0058ea64475a46e924294d5ef1b4b158e59d9c923a0", 0x93, 0x4, &(0x7f0000000540)={0x0, 0x989680}) ioctl$VIDIOC_QUERYCAP(r2, 0x80685600, &(0x7f0000000040)) syz_open_dev$mouse(0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f00000000c0)) 07:06:24 executing program 1: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = socket$inet6_sctp(0xa, 0x0, 0x84) r1 = syz_open_procfs(0x0, &(0x7f0000000880)='oom_score\x00') r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000400)='uid_map\x00') ioctl$KVM_SET_ONE_REG(r2, 0x4010aeac, &(0x7f0000000480)={0x5424, 0x5}) preadv(r1, &(0x7f00000017c0), 0x199, 0x0) ioctl$UI_BEGIN_FF_UPLOAD(r1, 0xc06855c8, &(0x7f0000000640)={0x10, 0xd17, {0x52, 0x2db, 0x7f, {0x200}, {0x40, 0x4}, @const={0x7ff, {0x8, 0xba, 0x1, 0x914f}}}, {0xa5e136065a937c32, 0x5, 0xfff, {0x4, 0x3}, {0x7, 0x1}, @ramp={0x800, 0x80, {0xfc, 0x4c2, 0x800, 0x3}}}}) ioctl$ASHMEM_SET_NAME(0xffffffffffffffff, 0x41007701, &(0x7f00000004c0)='[^{-') write$FUSE_NOTIFY_RETRIEVE(r1, &(0x7f0000000140)={0x30, 0x5, 0x0, {0x0, 0x5, 0x0, 0x4}}, 0x30) ioctl$PIO_UNIMAPCLR(r1, 0x4b68, &(0x7f0000000080)={0x1000, 0xffc0, 0x81}) getsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000180), &(0x7f00000001c0)=0x4) r3 = syz_open_procfs(0x0, &(0x7f0000000880)='oom_score\x00') lsetxattr$trusted_overlay_opaque(&(0x7f0000000240)='./file1\x00', &(0x7f0000000280)='trusted.overlay.opaque\x00', &(0x7f0000000340)='y\x00', 0x2, 0x2) preadv(r3, &(0x7f00000017c0), 0x199, 0x0) ioctl$UI_BEGIN_FF_UPLOAD(r3, 0xc06855c8, &(0x7f0000000640)={0x10, 0xd17, {0x52, 0x2db, 0x7f, {0x200}, {0x40, 0x4}, @const={0x7ff, {0x8, 0xba, 0x1, 0x9150}}}, {0xa5e136065a937c32, 0x5, 0xfff, {0x4, 0x3}, {0x7, 0x1}, @ramp={0x800, 0x80, {0x100, 0x4c2, 0x800, 0x3}}}}) pipe(&(0x7f0000000440)={0xffffffffffffffff}) fsetxattr$security_smack_transmute(r4, &(0x7f0000000380)='security.SMACK64TRANSMUTE\x00', &(0x7f00000003c0)='TRUE', 0x4, 0x2) vmsplice(r4, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$PPPIOCSNPMODE(r4, 0x4008744b, &(0x7f0000000200)={0x402f}) ioctl$VIDIOC_SUBDEV_S_CROP(r3, 0xc038563c, &(0x7f00000000c0)={0x0, 0x0, {0x6, 0x8000, 0xc46, 0x7}}) 07:06:25 executing program 0 (fault-call:0 fault-nth:26): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x0, 0x989680}) socket$inet6_sctp(0xa, 0x0, 0x84) 07:06:25 executing program 4: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, 0x0) r1 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) ioctl$VIDIOC_QUERYCAP(r1, 0x80685600, &(0x7f0000000040)) syz_open_dev$mouse(0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) r2 = ioctl$TIOCGPTPEER(r1, 0x5441, 0x7fff) ioctl$TIOCSPTLCK(r2, 0x40045431, &(0x7f0000000100)=0x1) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f00000000c0)) [ 189.915424] FAULT_INJECTION: forcing a failure. [ 189.915424] name failslab, interval 1, probability 0, space 0, times 0 [ 189.938029] CPU: 0 PID: 12673 Comm: syz-executor.0 Not tainted 4.14.151 #0 [ 189.945418] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 189.954875] Call Trace: [ 189.957563] dump_stack+0x138/0x197 [ 189.961328] should_fail.cold+0x10f/0x159 07:06:25 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x1, 0x0) r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) syncfs(r0) [ 189.965538] should_failslab+0xdb/0x130 [ 189.969534] kmem_cache_alloc_node+0x287/0x780 [ 189.969554] __alloc_skb+0x9c/0x500 [ 189.969565] ? skb_scrub_packet+0x4b0/0x4b0 [ 189.977759] ? netlink_has_listeners+0x20a/0x330 [ 189.986824] kobject_uevent_env+0x781/0xc23 [ 189.991170] kobject_uevent+0x20/0x26 [ 189.994980] lo_ioctl+0x11e7/0x1ce0 [ 189.998616] ? loop_probe+0x160/0x160 [ 190.002411] blkdev_ioctl+0x96b/0x1860 [ 190.006286] ? blkpg_ioctl+0x980/0x980 [ 190.010170] ? __might_sleep+0x93/0xb0 [ 190.014149] ? __fget+0x210/0x370 [ 190.017692] block_ioctl+0xde/0x120 [ 190.021306] ? blkdev_fallocate+0x3b0/0x3b0 [ 190.025622] do_vfs_ioctl+0x7ae/0x1060 [ 190.029498] ? selinux_file_mprotect+0x5d0/0x5d0 [ 190.034241] ? lock_downgrade+0x740/0x740 [ 190.038390] ? ioctl_preallocate+0x1c0/0x1c0 [ 190.042787] ? __fget+0x237/0x370 [ 190.046272] ? security_file_ioctl+0x89/0xb0 [ 190.050676] SyS_ioctl+0x8f/0xc0 [ 190.054040] ? do_vfs_ioctl+0x1060/0x1060 [ 190.058176] do_syscall_64+0x1e8/0x640 [ 190.062061] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 190.066908] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 190.072189] RIP: 0033:0x45a087 [ 190.075371] RSP: 002b:00007f46eab45a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 190.083066] RAX: ffffffffffffffda RBX: 0000000020000068 RCX: 000000000045a087 [ 190.090327] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 190.097601] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 190.104867] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 07:06:25 executing program 2: pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$SIOCSIFMTU(r0, 0x8922, &(0x7f0000000100)={'bond0\x00', 0x2ccd}) syz_mount_image$btrfs(&(0x7f0000000000), &(0x7f0000000180)='./file0\x00', 0x0, 0x1, &(0x7f00000001c0), 0x0, 0x0) setxattr$trusted_overlay_nlink(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='trusted.overlay.nlink\x00', &(0x7f0000000140)={'U-', 0x1}, 0x28, 0x1) r1 = open(&(0x7f0000000040)='./file0\x00', 0xbad0f9962a27ffb5, 0x177) flistxattr(r1, &(0x7f0000000200)=""/81, 0x51) [ 190.112246] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 07:06:25 executing program 5: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = syz_open_procfs(0x0, 0x0) write$apparmor_exec(r0, &(0x7f0000000080)={'exec ', 'btrfs\x00'}, 0xb) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) socket$inet6_sctp(0xa, 0x1, 0x84) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x400000000000249, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_DELAYED_SACK(r1, 0x84, 0x10, &(0x7f00000000c0)=@sack_info={0x0, 0x1, 0xfffffffe}, &(0x7f0000000140)=0xc) getsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r0, 0x84, 0x76, &(0x7f0000000180)={r2, 0x6}, &(0x7f00000001c0)=0x8) [ 190.146438] BTRFS error (device loop1): superblock checksum mismatch 07:06:25 executing program 4: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = openat$selinux_avc_hash_stats(0xffffffffffffff9c, &(0x7f0000000180)='/selinux/avc/hash_stats\x00', 0x0, 0x0) ioctl$USBDEVFS_CONTROL(r0, 0xc0185500, &(0x7f0000000280)={0x20, 0x13, 0xd782, 0x4, 0xbc, 0x7c54, &(0x7f00000001c0)="35c969324e3d5827f5ad6d734636c985777bc8722c205aa97f1c73c7ad258debb0014369e62c49432a84c885f43ac53d8d49ef083ede423b30599cc74da55f997ab1d5ef49b74ce04d758a5bd8af78ef809c1407c24d4a9f677faeb462db57acb32c4d3045cc1bd953cd6b10a9b2400fae4518b9abeee18580eaae7567980ef815a4b8fabb7a81e55e0a874c08087cbde1db6f61bc7e758f2aed32a0bcff451ddbe8be16f95c37a11d48ea154aa95dbaa18cab5c85b1823a3b00e994"}) r1 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r1, 0x8934, 0x0) r2 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) ioctl$VIDIOC_QUERYCAP(r2, 0x80685600, &(0x7f0000000040)) syz_open_dev$mouse(0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f00000000c0)) 07:06:25 executing program 0 (fault-call:0 fault-nth:27): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x0, 0x989680}) socket$inet6_sctp(0xa, 0x0, 0x84) [ 190.240708] BTRFS error (device loop1): open_ctree failed [ 190.307366] FAULT_INJECTION: forcing a failure. [ 190.307366] name failslab, interval 1, probability 0, space 0, times 0 [ 190.346997] CPU: 0 PID: 12716 Comm: syz-executor.0 Not tainted 4.14.151 #0 [ 190.354060] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 190.363421] Call Trace: [ 190.366038] dump_stack+0x138/0x197 [ 190.369679] should_fail.cold+0x10f/0x159 [ 190.373845] should_failslab+0xdb/0x130 [ 190.377841] kmem_cache_alloc_node+0x287/0x780 [ 190.382450] __alloc_skb+0x9c/0x500 [ 190.386090] ? skb_scrub_packet+0x4b0/0x4b0 [ 190.390432] ? netlink_has_listeners+0x20a/0x330 [ 190.395211] kobject_uevent_env+0x781/0xc23 [ 190.399595] kobject_uevent+0x20/0x26 [ 190.403410] lo_ioctl+0x11e7/0x1ce0 [ 190.407035] ? loop_probe+0x160/0x160 [ 190.410843] blkdev_ioctl+0x96b/0x1860 [ 190.414746] ? blkpg_ioctl+0x980/0x980 [ 190.418656] ? __might_sleep+0x93/0xb0 [ 190.423863] ? __fget+0x210/0x370 [ 190.427422] block_ioctl+0xde/0x120 [ 190.431062] ? blkdev_fallocate+0x3b0/0x3b0 [ 190.435413] do_vfs_ioctl+0x7ae/0x1060 [ 190.439315] ? selinux_file_mprotect+0x5d0/0x5d0 [ 190.444082] ? lock_downgrade+0x740/0x740 [ 190.448353] ? ioctl_preallocate+0x1c0/0x1c0 [ 190.452889] ? __fget+0x237/0x370 [ 190.456338] ? security_file_ioctl+0x89/0xb0 [ 190.460743] SyS_ioctl+0x8f/0xc0 [ 190.464101] ? do_vfs_ioctl+0x1060/0x1060 [ 190.468582] do_syscall_64+0x1e8/0x640 [ 190.472459] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 190.477301] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 190.482481] RIP: 0033:0x45a087 [ 190.485662] RSP: 002b:00007f46eab45a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 190.493462] RAX: ffffffffffffffda RBX: 0000000020000068 RCX: 000000000045a087 [ 190.500735] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 07:06:25 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x1, 0x0) r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) syncfs(r0) [ 190.508002] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 190.515263] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 190.522522] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 07:06:25 executing program 4: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, 0x0) r1 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) socket$packet(0x11, 0x3, 0x300) ioctl$VIDIOC_QUERYCAP(r1, 0x80685600, &(0x7f0000000040)) syz_open_dev$mouse(0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f00000000c0)) 07:06:25 executing program 0 (fault-call:0 fault-nth:28): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x0, 0x989680}) socket$inet6_sctp(0xa, 0x0, 0x84) [ 190.609170] BTRFS error (device loop3): superblock checksum mismatch [ 190.675575] FAULT_INJECTION: forcing a failure. [ 190.675575] name failslab, interval 1, probability 0, space 0, times 0 [ 190.692704] CPU: 0 PID: 12747 Comm: syz-executor.0 Not tainted 4.14.151 #0 [ 190.699765] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 190.709120] Call Trace: [ 190.711706] dump_stack+0x138/0x197 [ 190.715328] should_fail.cold+0x10f/0x159 [ 190.719549] should_failslab+0xdb/0x130 [ 190.723511] kmem_cache_alloc_node+0x287/0x780 [ 190.728080] __alloc_skb+0x9c/0x500 [ 190.731688] ? skb_scrub_packet+0x4b0/0x4b0 [ 190.735990] ? netlink_has_listeners+0x20a/0x330 [ 190.740748] kobject_uevent_env+0x781/0xc23 [ 190.745058] kobject_uevent+0x20/0x26 [ 190.748840] lo_ioctl+0x11e7/0x1ce0 [ 190.752464] ? loop_probe+0x160/0x160 [ 190.756262] blkdev_ioctl+0x96b/0x1860 [ 190.760130] ? blkpg_ioctl+0x980/0x980 [ 190.764002] ? __might_sleep+0x93/0xb0 [ 190.767879] ? __fget+0x210/0x370 [ 190.771317] block_ioctl+0xde/0x120 [ 190.774925] ? blkdev_fallocate+0x3b0/0x3b0 [ 190.779227] do_vfs_ioctl+0x7ae/0x1060 [ 190.783100] ? selinux_file_mprotect+0x5d0/0x5d0 [ 190.787838] ? lock_downgrade+0x740/0x740 [ 190.791971] ? ioctl_preallocate+0x1c0/0x1c0 [ 190.796375] ? __fget+0x237/0x370 [ 190.799828] ? security_file_ioctl+0x89/0xb0 [ 190.804222] SyS_ioctl+0x8f/0xc0 [ 190.807577] ? do_vfs_ioctl+0x1060/0x1060 [ 190.811732] do_syscall_64+0x1e8/0x640 [ 190.815605] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 190.820435] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 190.825695] RIP: 0033:0x45a087 [ 190.828864] RSP: 002b:00007f46eab45a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 190.836557] RAX: ffffffffffffffda RBX: 0000000020000068 RCX: 000000000045a087 [ 190.843821] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 190.851075] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 190.858330] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 190.865609] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 [ 190.874059] BTRFS error (device loop3): open_ctree failed 07:06:26 executing program 4: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$sndseq(&(0x7f0000000180)='/dev/snd/seq\x00', 0x0, 0x0) ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r0, 0xc0a85320, &(0x7f0000001900)={{0x100000080}, 'port1\x00', 0xee, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}) ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(r0, 0x40505330, &(0x7f00000001c0)={{0x0, 0x1}, {0x80}}) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r1, 0x8934, 0x0) r2 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) ioctl$VIDIOC_QUERYCAP(r2, 0x80685600, &(0x7f0000000040)) r3 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000100)='/dev/uhid\x00', 0x802, 0x0) write$binfmt_elf64(r3, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"], 0x947) syz_open_dev$mouse(0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f00000000c0)) 07:06:26 executing program 1: socket$inet6_sctp(0xa, 0x0, 0x84) 07:06:26 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x1, 0x0) r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) syncfs(r0) 07:06:26 executing program 0 (fault-call:0 fault-nth:29): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x0, 0x989680}) socket$inet6_sctp(0xa, 0x0, 0x84) 07:06:26 executing program 2: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) utimes(&(0x7f0000000080)='./file0\x00', &(0x7f0000000140)={{0x0, 0x7530}, {0x77359400}}) sysfs$3(0x3) 07:06:26 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000880)='oom_score\x00') preadv(r0, &(0x7f00000017c0), 0x199, 0x0) ioctl$UI_BEGIN_FF_UPLOAD(r0, 0xc06855c8, &(0x7f0000000640)={0x10, 0xd17, {0x52, 0x2db, 0x7f, {0x200}, {0x40, 0x4}, @const={0x7ff, {0x8, 0xba, 0x1, 0x9150}}}, {0xa5e136065a937c32, 0x5, 0xfff, {0x4, 0x3}, {0x7, 0x1}, @ramp={0x800, 0x80, {0x100, 0x4c2, 0x800, 0x3}}}}) write$9p(r0, &(0x7f0000000100)="a6489cb52c9ce560e2f7d05af84b34b7bca8749656d9ea4db986202e", 0x1c) sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r1, 0x8934, 0x0) r2 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) ioctl$VIDIOC_QUERYCAP(r2, 0x80685600, &(0x7f0000000040)) syz_open_dev$mouse(0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f00000000c0)) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) r4 = openat$selinux_user(0xffffffffffffff9c, &(0x7f0000000180)='/selinux/user\x00', 0x2, 0x0) pwritev(r4, &(0x7f00000001c0), 0x0, 0x3) ioctl$EXT4_IOC_ALLOC_DA_BLKS(r3, 0x660c) setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, &(0x7f0000000380)="0c4f4d16cf2f3a2dd8a5046790a60c91e487dc9ca281434dbc169c6555a654da5e42c953490634b417ec9535653162fc5730d4c8dab3e136550ed7d31fa8d7094afd6e5154349155e6ef7e5fb08d79c283188a3f28548ab4366e6863ba5561aedbd1ee3f9a2c5646e4a9c2806b231528bca7ee2134e39966c40bcb1371a7e7691672a8dc9bda07175f11a9160cba3f0ddb78db3b2e184e1e9aa371691df9f49a5e3343bce4e4b8a2c80831b63d95ed57cf89982b317abf1cf8a71078d00dd5fa9151c142fa4bb765d503150f5f6f34284c7480a5091e9b246e", 0xd9) fsetxattr$trusted_overlay_nlink(r3, &(0x7f0000000240)='trusted.overlay.nlink\x00', &(0x7f0000000300)={'U+', 0x7}, 0x28, 0x3) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r5, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KDDISABIO(r5, 0x4b37) ioctl$KVM_TPR_ACCESS_REPORTING(r3, 0xc028ae92, &(0x7f0000000140)={0x6, 0xfffffffb}) [ 191.095277] FAULT_INJECTION: forcing a failure. [ 191.095277] name failslab, interval 1, probability 0, space 0, times 0 [ 191.144981] CPU: 1 PID: 12777 Comm: syz-executor.0 Not tainted 4.14.151 #0 [ 191.152042] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 191.161495] Call Trace: [ 191.164097] dump_stack+0x138/0x197 [ 191.167777] should_fail.cold+0x10f/0x159 [ 191.171944] should_failslab+0xdb/0x130 [ 191.175941] kmem_cache_alloc_node+0x287/0x780 [ 191.194352] __alloc_skb+0x9c/0x500 [ 191.197978] ? skb_scrub_packet+0x4b0/0x4b0 [ 191.202387] ? netlink_has_listeners+0x20a/0x330 [ 191.207168] kobject_uevent_env+0x781/0xc23 [ 191.211579] kobject_uevent+0x20/0x26 [ 191.215379] lo_ioctl+0x11e7/0x1ce0 [ 191.218990] ? loop_probe+0x160/0x160 [ 191.222785] blkdev_ioctl+0x96b/0x1860 [ 191.226663] ? blkpg_ioctl+0x980/0x980 [ 191.230538] ? __might_sleep+0x93/0xb0 [ 191.234423] ? __fget+0x210/0x370 [ 191.237900] block_ioctl+0xde/0x120 [ 191.241527] ? blkdev_fallocate+0x3b0/0x3b0 [ 191.245841] do_vfs_ioctl+0x7ae/0x1060 [ 191.249715] ? selinux_file_mprotect+0x5d0/0x5d0 [ 191.254464] ? lock_downgrade+0x740/0x740 [ 191.258606] ? ioctl_preallocate+0x1c0/0x1c0 [ 191.263002] ? __fget+0x237/0x370 [ 191.266663] ? security_file_ioctl+0x89/0xb0 [ 191.271082] SyS_ioctl+0x8f/0xc0 [ 191.274453] ? do_vfs_ioctl+0x1060/0x1060 [ 191.278603] do_syscall_64+0x1e8/0x640 [ 191.282491] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 191.287349] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 191.292528] RIP: 0033:0x45a087 07:06:26 executing program 5: r0 = openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x12040, 0x0) ioctl$RTC_WIE_OFF(r0, 0x7010) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) syz_open_procfs(0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r1, 0x407, 0x0) write(r1, &(0x7f0000000140)="c097f8a267aa44a24eff910d377d7ab8f5413a33b5438271bae62d9a6cafaf850a9cdf120ba13611e942f9ab3b497d62438f19a9a532cbfc5fdf6cd7607f7582428cb0580c9bc786f9950000000000", 0x4f) ioctl$EXT4_IOC_ALLOC_DA_BLKS(r1, 0x660c) setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000380)="0c4f4d16cf2f3a2dd8a5046790a60c91e487dc9ca281434dbc169c6555a654da5e42c953490634b417ec9535653162fc5730d4c8dab3e136550ed7d31fa8d7094afd6e5154349155e6ef7e5fb08d79c283188a3f28548ab4366e6863ba5561aedbd1ee3f9a2c5646e4a9c2806b231528bca7ee2134e39966c40bcb1371a7e7691672a8dc9bda07175f11a9160cba3f0ddb78db3b2e184e1e9aa371691df9f49a5e3343bce4e4b8a2c80831b63d95ed57cf89982b317abf1cf8a71078d00dd5fa9151c142fa4bb765d503150f5f6f34284c7480a5091e9b246e", 0xd9) fsetxattr$trusted_overlay_nlink(r1, &(0x7f0000000240)='trusted.overlay.nlink\x00', &(0x7f0000000300)={'U+', 0x7}, 0x28, 0x3) ioctl$KVM_SET_CLOCK(r1, 0x4030ae7b, &(0x7f0000000080)={0x899, 0x4}) socket$inet6_sctp(0xa, 0x1, 0x84) [ 191.295707] RSP: 002b:00007f46eab45a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 191.303552] RAX: ffffffffffffffda RBX: 0000000020000068 RCX: 000000000045a087 [ 191.310810] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 191.318065] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 191.325345] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 191.332596] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 [ 191.388392] BTRFS error (device loop3): superblock checksum mismatch 07:06:26 executing program 0 (fault-call:0 fault-nth:30): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x0, 0x989680}) socket$inet6_sctp(0xa, 0x0, 0x84) 07:06:26 executing program 1: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = socket$inet6_sctp(0xa, 0x0, 0x84) r1 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240)='nbd\x00') sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f00000002c0)={&(0x7f0000000000)=ANY=[@ANYRES16=r1, @ANYBLOB="00020000388d4737bd322f45834f7e3b042c5c5951b4386e653fdbaaf9d0c14eaa00000000000000"], 0x2}}, 0x4000) r2 = syz_open_dev$vcsa(&(0x7f00000000c0)='/dev/vcsa#\x00', 0x0, 0x2000) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) ioctl$EXT4_IOC_ALLOC_DA_BLKS(r3, 0x660c) setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, &(0x7f0000000380)="0c4f4d16cf2f3a2dd8a5046790a60c91e487dc9ca281434dbc169c6555a654da5e42c953490634b417ec9535653162fc5730d4c8dab3e136550ed7d31fa8d7094afd6e5154349155e6ef7e5fb08d79c283188a3f28548ab4366e6863ba5561aedbd1ee3f9a2c5646e4a9c2806b231528bca7ee2134e39966c40bcb1371a7e7691672a8dc9bda07175f11a9160cba3f0ddb78db3b2e184e1e9aa371691df9f49a5e3343bce4e4b8a2c80831b63d95ed57cf89982b317abf1cf8a71078d00dd5fa9151c142fa4bb765d503150f5f6f34284c7480a5091e9b246e", 0xd9) fsetxattr$trusted_overlay_nlink(r3, &(0x7f0000000240)='trusted.overlay.nlink\x00', &(0x7f0000000300)={'U+', 0x7}, 0x28, 0x3) r4 = syz_open_dev$adsp(&(0x7f0000000140)='/dev/adsp#\x00', 0x0, 0x80000) r5 = socket$inet6_sctp(0xa, 0x1, 0x84) r6 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r6, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [0x0]}, &(0x7f000095dffc)=0x8) getsockopt$inet_sctp6_SCTP_ASSOCINFO(r5, 0x84, 0x1, &(0x7f0000000000)={r7}, &(0x7f0000000040)=0x14) setsockopt$inet_sctp_SCTP_PR_SUPPORTED(r2, 0x84, 0x71, &(0x7f0000000580)={r7, 0x137}, 0x8) r8 = creat(&(0x7f0000000180)='./file0\x00', 0x1) r9 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/ubi_ctrl\x00', 0x850401, 0x0) r10 = syz_open_procfs(0x0, &(0x7f00000006c0)='Net/3\x97OOT\x15\x00\xb6\xcf@e\xd3r\x82\x9fc') ioctl$VIDIOC_PREPARE_BUF(r10, 0xc058565d, &(0x7f00000005c0)={0x0, 0xb, 0x4, 0x0, {0x0, 0x7530}, {0x0, 0x2, 0x81, 0x10, 0x24, 0x6, "cf676f53"}, 0x80, 0x5, @offset=0x9, 0x4}) mq_timedsend(r10, &(0x7f0000000480)="c1cc3d2c05c16add6c964974e00652617b35c74bd5a620d3170df3c2f134d5beb838b0f00c6ca198401126d02772777a96ead8602a94c5450ea4e5c8b02fc6e876ee2383fc4faa682ed6a91a53a08a1fdd9839c170a6f81ede814c769cf15c688c8514b5f4f1dc0a50019813ce4459df629cd480519073a5f929cd5e59d0058ea64475a46e924294d5ef1b4b158e59d9c923a0", 0x93, 0x4, &(0x7f0000000540)={0x0, 0x989680}) r11 = openat$audio(0xffffffffffffff9c, &(0x7f0000000200)='/dev/audio\x00', 0x0, 0x0) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000240)={&(0x7f0000000340)={0x84, r1, 0x8, 0x70bd26, 0x25dfdbfe, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x2}, @NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x2}, @NBD_ATTR_SOCKETS={0x4c, 0x7, [{0x8, 0x1, r2}, {0x8, 0x1, r3}, {0x8}, {0x8, 0x1, r4}, {0x8, 0x1, r0}, {0x8, 0x1, r8}, {0x8, 0x1, r9}, {0x8, 0x1, r10}, {0x8, 0x1, r11}]}]}, 0x84}, 0x1, 0x0, 0x0, 0x80}, 0x8000) [ 191.480448] BTRFS error (device loop3): open_ctree failed 07:06:26 executing program 2: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) prctl$PR_GET_FPEMU(0x9, &(0x7f0000000080)) 07:06:26 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x1, 0x0) syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) [ 191.554695] FAULT_INJECTION: forcing a failure. [ 191.554695] name failslab, interval 1, probability 0, space 0, times 0 [ 191.576168] CPU: 1 PID: 12819 Comm: syz-executor.0 Not tainted 4.14.151 #0 [ 191.583226] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 191.592589] Call Trace: [ 191.595196] dump_stack+0x138/0x197 [ 191.598868] should_fail.cold+0x10f/0x159 [ 191.603033] should_failslab+0xdb/0x130 [ 191.607020] kmem_cache_alloc_node+0x287/0x780 [ 191.611622] __alloc_skb+0x9c/0x500 [ 191.615247] ? skb_scrub_packet+0x4b0/0x4b0 [ 191.619567] ? netlink_has_listeners+0x20a/0x330 [ 191.624328] kobject_uevent_env+0x781/0xc23 [ 191.628756] kobject_uevent+0x20/0x26 [ 191.632936] lo_ioctl+0x11e7/0x1ce0 [ 191.636557] ? loop_probe+0x160/0x160 [ 191.640345] blkdev_ioctl+0x96b/0x1860 [ 191.644264] ? blkpg_ioctl+0x980/0x980 [ 191.648138] ? __might_sleep+0x93/0xb0 [ 191.652051] ? __fget+0x210/0x370 [ 191.655489] block_ioctl+0xde/0x120 [ 191.659100] ? blkdev_fallocate+0x3b0/0x3b0 [ 191.663663] do_vfs_ioctl+0x7ae/0x1060 [ 191.667605] ? selinux_file_mprotect+0x5d0/0x5d0 [ 191.672364] ? lock_downgrade+0x740/0x740 [ 191.676675] ? ioctl_preallocate+0x1c0/0x1c0 [ 191.681764] ? __fget+0x237/0x370 [ 191.685892] ? security_file_ioctl+0x89/0xb0 [ 191.690332] SyS_ioctl+0x8f/0xc0 [ 191.693687] ? do_vfs_ioctl+0x1060/0x1060 [ 191.697821] do_syscall_64+0x1e8/0x640 [ 191.701715] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 191.706812] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 191.711985] RIP: 0033:0x45a087 [ 191.715162] RSP: 002b:00007f46eab45a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 191.722884] RAX: ffffffffffffffda RBX: 0000000020000068 RCX: 000000000045a087 [ 191.730159] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 191.737526] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 191.744791] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 191.752138] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 07:06:26 executing program 5: syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0xffffffffffffff80, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d58d492180fc09c3b763ffc2cc3abbc9528a15c2538418192042a75c038764de6ff2703df64bbcd300274d478d5f311f98b982ea9617873c00016e48bc9918ccd656e483ed85b6e6a49fd84c3b109c1c5316b519619054018d0890b7cfb79989a71965dd2d1d4dbcad48a91f48467e32bf44c562e281160245e139d77271918bd5cb2a3", 0xcb, 0xffff}], 0x0, 0x0) syz_open_procfs(0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) socket$inet6_sctp(0xa, 0x1, 0x84) 07:06:27 executing program 0 (fault-call:0 fault-nth:31): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x0, 0x989680}) socket$inet6_sctp(0xa, 0x0, 0x84) [ 191.869467] BTRFS error (device loop3): superblock checksum mismatch [ 191.914114] BTRFS error (device loop3): open_ctree failed 07:06:27 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x1, 0x0) 07:06:27 executing program 4: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, 0x0) r1 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) ioctl$VIDIOC_QUERYCAP(r1, 0x80685600, &(0x7f0000000040)) syz_open_dev$mouse(0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f00000000c0)) [ 191.956952] FAULT_INJECTION: forcing a failure. [ 191.956952] name failslab, interval 1, probability 0, space 0, times 0 [ 191.969171] CPU: 0 PID: 12863 Comm: syz-executor.0 Not tainted 4.14.151 #0 [ 191.976205] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 191.985574] Call Trace: [ 191.988183] dump_stack+0x138/0x197 [ 191.991835] should_fail.cold+0x10f/0x159 [ 191.996000] should_failslab+0xdb/0x130 [ 191.999999] kmem_cache_alloc_node_trace+0x280/0x770 [ 192.005119] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 192.010588] __kmalloc_node_track_caller+0x3d/0x80 [ 192.015552] __kmalloc_reserve.isra.0+0x40/0xe0 [ 192.020246] __alloc_skb+0xcf/0x500 [ 192.023891] ? skb_scrub_packet+0x4b0/0x4b0 [ 192.028240] ? netlink_has_listeners+0x20a/0x330 [ 192.028258] kobject_uevent_env+0x781/0xc23 [ 192.028284] kobject_uevent+0x20/0x26 [ 192.028295] lo_ioctl+0x11e7/0x1ce0 [ 192.028308] ? loop_probe+0x160/0x160 [ 192.037393] blkdev_ioctl+0x96b/0x1860 [ 192.037404] ? blkpg_ioctl+0x980/0x980 [ 192.037423] ? __might_sleep+0x93/0xb0 [ 192.037433] ? __fget+0x210/0x370 [ 192.037447] block_ioctl+0xde/0x120 [ 192.037455] ? blkdev_fallocate+0x3b0/0x3b0 [ 192.037467] do_vfs_ioctl+0x7ae/0x1060 [ 192.075748] ? selinux_file_mprotect+0x5d0/0x5d0 [ 192.081097] ? lock_downgrade+0x740/0x740 [ 192.085282] ? ioctl_preallocate+0x1c0/0x1c0 [ 192.089691] ? __fget+0x237/0x370 [ 192.093165] ? security_file_ioctl+0x89/0xb0 [ 192.097591] SyS_ioctl+0x8f/0xc0 [ 192.100973] ? do_vfs_ioctl+0x1060/0x1060 [ 192.105135] do_syscall_64+0x1e8/0x640 [ 192.109034] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 192.113995] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 192.119520] RIP: 0033:0x45a087 [ 192.122713] RSP: 002b:00007f46eab45a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 192.130430] RAX: ffffffffffffffda RBX: 0000000020000068 RCX: 000000000045a087 [ 192.137702] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 192.145339] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 192.152628] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 192.159909] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 [ 192.186249] BTRFS error (device loop3): superblock checksum mismatch 07:06:27 executing program 5: syz_mount_image$btrfs(&(0x7f0000000000)='\x00\x00\x00\x00s\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = syz_open_procfs(0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) r1 = syz_open_dev$audion(&(0x7f0000000080)='/dev/audio#\x00', 0x8, 0x402080) bind$inet(r1, &(0x7f00000000c0)={0x2, 0x4e24, @remote}, 0x10) r2 = semget(0x1, 0x0, 0x1) setsockopt$inet_sctp_SCTP_INITMSG(r0, 0x84, 0x2, &(0x7f0000000200)={0x200, 0x627d, 0xf801, 0x20}, 0x8) semctl$IPC_INFO(r2, 0x2, 0x3, &(0x7f0000000140)=""/160) socket$inet6_sctp(0xa, 0x1, 0x84) 07:06:27 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f00000006c0)='Net/3\x97OOT\x15\x00\xb6\xcf@e\xd3r\x82\x9fc') ioctl$VIDIOC_PREPARE_BUF(r0, 0xc058565d, &(0x7f00000005c0)={0x0, 0x1, 0x4, 0x40, {0x0, 0x7530}, {0x0, 0x1, 0x81, 0x10, 0xff, 0x3, "cf676f53"}, 0xfff, 0x5, @offset=0x9}) mq_timedsend(r0, &(0x7f0000000480)="c1cc3d2c05c16add6c964974e00652617b35c74bd5a620d3170df3c2f134d5beb838b0f00c6ca198401126d02772777a96ead8602a94c5450ea4e5c8b02fc6e876ee2383fc4faa682ed6a91a53a08a1fdd9839c170a6f81ede814c769cf15c688c8514b5f4f1dc0a50019813ce4459df629cd480519073a5f929cd5e59d0058ea64475a46e924294d5ef1b4b158e59d9c923a0", 0x93, 0x4, &(0x7f0000000540)={0x0, 0x989680}) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x2400, 0x4caf) openat$selinux_user(0xffffffffffffff9c, &(0x7f00000000c0)='/selinux/user\x00', 0x2, 0x0) ioctl$TIOCSCTTY(r0, 0x540e, 0x1f) r1 = openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f0000000140)='/selinux/commit_pending_bools\x00', 0x1, 0x0) ioctl$PIO_FONT(r1, 0x4b61, &(0x7f0000000180)="537cd37b6cd81837bc85db08cb1e433c8f07a8275b4241f0c5bb38a897e3d28dbbc67193034359ef367a647e650b35f73d759c4146524d4ebed22c41254f94d8c6d1081aa91434cf2ef46ad3304a7d07bca5e21f9868f7526d2e3bc0825434d079659c0c157189af6280667c1f751672b86a8a8837705d71e5be46fa4b191316ff9420ce4911c10ddae4948ea0f706e065c57cfbbf5a89620f06ade3bee176c4c092950be34fbae02fded82a5f2a8046b9d520517d53a73b8f57066564a1d7e355") syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) gettid() r2 = syz_open_procfs(0x0, &(0x7f0000000880)='oom_score\x00') preadv(r2, &(0x7f00000017c0), 0x199, 0x0) ioctl$UI_BEGIN_FF_UPLOAD(r2, 0xc06855c8, &(0x7f0000000640)={0x10, 0xd17, {0x52, 0x2db, 0x7f, {0x200}, {0x40, 0x4}, @const={0x7ff, {0x8, 0xba, 0x1, 0x9150}}}, {0xa5e136065a937c32, 0x5, 0xfff, {0x4, 0x3}, {0x7, 0x1}, @ramp={0x800, 0x80, {0x100, 0x4c2, 0x800, 0x3}}}}) ioctl$VIDIOC_SUBDEV_S_CROP(r2, 0xc038563c, &(0x7f0000000080)={0x1, 0x0, {0x702, 0x6, 0x6, 0x9e}}) 07:06:27 executing program 4: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x532f7271e63eb32a, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, 0x0) r1 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) r2 = syz_open_dev$sndpcmc(&(0x7f0000000100)='/dev/snd/pcmC#D#c\x00', 0x5, 0x200000) write$RDMA_USER_CM_CMD_RESOLVE_ADDR(r2, &(0x7f0000000140)={0x15, 0x110, 0xfa00, {0xffffffffffffffff, 0x5, 0x0, 0x0, 0x0, @ib={0x1b, 0xffff, 0x9, {"851d985ae57e7c1158bbd5c2e3212eca"}, 0x2, 0xf8a, 0x4}, @ib={0x1b, 0xfff8, 0x5, {"b9688f825ebecb0f61ad764d7d9914ee"}, 0x100000000, 0x1, 0x6}}}, 0x118) ioctl$VIDIOC_QUERYCAP(r1, 0x80685600, &(0x7f0000000040)) syz_open_dev$mouse(0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f0000000300)="66b9550300000f320fc79e0000baf80c66b8f48c598166efbafc0cb80f22ef0fc758bdd146002e2e0f09f30f1ee1660fc7b000000f01c20f4c02"}], 0x1, 0x41, 0x0, 0x36f) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f00000000c0)) r3 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r3, &(0x7f0000008880), 0x400000000000249, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_ADD(r3, 0x40286608, &(0x7f0000000280)={0x33a, 0x2, 0x7, 0x49, 0xff, 0x8}) [ 192.290526] BTRFS error (device loop3): open_ctree failed 07:06:27 executing program 0 (fault-call:0 fault-nth:32): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x0, 0x989680}) socket$inet6_sctp(0xa, 0x0, 0x84) 07:06:27 executing program 3: syz_mount_image$btrfs(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x1, 0x0) 07:06:27 executing program 1: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) syz_open_dev$vcsa(&(0x7f0000000080)='\'\xb5<}Vpo\xcfa#\x00', 0x57, 0x98400) r0 = openat(0xffffffffffffffff, &(0x7f00000000c0)='./file0\x00', 0x2040, 0x100) accept4$netrom(r0, &(0x7f0000000140)={{}, [@null, @netrom, @default, @default, @null, @bcast, @rose, @null]}, &(0x7f0000000200)=0x48, 0x800) socket$inet6_sctp(0xa, 0x0, 0x84) [ 192.453550] FAULT_INJECTION: forcing a failure. [ 192.453550] name failslab, interval 1, probability 0, space 0, times 0 [ 192.482524] CPU: 0 PID: 12903 Comm: syz-executor.0 Not tainted 4.14.151 #0 [ 192.489584] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 192.499758] Call Trace: [ 192.502555] dump_stack+0x138/0x197 [ 192.506201] should_fail.cold+0x10f/0x159 [ 192.510459] should_failslab+0xdb/0x130 [ 192.515049] kmem_cache_alloc_node_trace+0x280/0x770 [ 192.520156] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 192.525613] __kmalloc_node_track_caller+0x3d/0x80 [ 192.530545] __kmalloc_reserve.isra.0+0x40/0xe0 [ 192.535216] __alloc_skb+0xcf/0x500 [ 192.538827] ? skb_scrub_packet+0x4b0/0x4b0 [ 192.543455] ? netlink_has_listeners+0x20a/0x330 [ 192.548286] kobject_uevent_env+0x781/0xc23 [ 192.552633] kobject_uevent+0x20/0x26 [ 192.556439] lo_ioctl+0x11e7/0x1ce0 [ 192.560067] ? loop_probe+0x160/0x160 [ 192.563882] blkdev_ioctl+0x96b/0x1860 [ 192.567802] ? blkpg_ioctl+0x980/0x980 [ 192.571789] ? __might_sleep+0x93/0xb0 [ 192.575762] ? __fget+0x210/0x370 [ 192.579352] block_ioctl+0xde/0x120 [ 192.582988] ? blkdev_fallocate+0x3b0/0x3b0 [ 192.587331] do_vfs_ioctl+0x7ae/0x1060 [ 192.591237] ? selinux_file_mprotect+0x5d0/0x5d0 [ 192.595997] ? lock_downgrade+0x740/0x740 [ 192.600146] ? ioctl_preallocate+0x1c0/0x1c0 [ 192.604576] ? __fget+0x237/0x370 [ 192.608205] ? security_file_ioctl+0x89/0xb0 [ 192.612741] SyS_ioctl+0x8f/0xc0 [ 192.616121] ? do_vfs_ioctl+0x1060/0x1060 [ 192.620269] do_syscall_64+0x1e8/0x640 [ 192.624178] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 192.629015] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 192.634193] RIP: 0033:0x45a087 [ 192.637421] RSP: 002b:00007f46eab45a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 192.645923] RAX: ffffffffffffffda RBX: 0000000020000068 RCX: 000000000045a087 [ 192.653195] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 192.660472] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 192.667756] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 192.675033] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 07:06:27 executing program 3: syz_mount_image$btrfs(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x1, 0x0) 07:06:27 executing program 5: r0 = syz_open_dev$audion(&(0x7f0000000340)='/dev/audio#\x00', 0x4, 0x4ea7e684c3d8c703) ioctl$CAPI_SET_FLAGS(r0, 0x80044324, &(0x7f0000000480)) syz_mount_image$btrfs(&(0x7f00000004c0)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000080)=[{&(0x7f0000000140)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x3c1, 0x10000}], 0x2, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000040)={0x0}, &(0x7f00000000c0)=0xc) syz_open_procfs(r1, 0x0) socket$bt_rfcomm(0x1f, 0x44b14b3197a8204f, 0x3) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) ioctl$EXT4_IOC_ALLOC_DA_BLKS(r2, 0x660c) setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f0000000380)="0c4f4d16cf2f3a2dd8a5046790a60c91e487dc9ca281434dbc169c6555a654da5e42c953490634b417ec9535653162fc5730d4c8dab3e136550ed7d31fa8d7094afd6e5154349155e6ef7e5fb08d79c283188a3f28548ab4366e6863ba5561aedbd1ee3f9a2c5646e4a9c2806b231528bca7ee2134e39966c40bcb1371a7e7691672a8dc9bda07175f11a9160cba3f0ddb78db3b2e184e1e9aa371691df9f49a5e3343bce4e4b8a2c80831b63d95ed57cf89982b317abf1cf8a71078d00dd5fa9151c142fa4bb765d503150f5f6f34284c7480a5091e9b246e", 0xd9) fsetxattr$trusted_overlay_nlink(r2, &(0x7f0000000240)='trusted.overlay.nlink\x00', &(0x7f0000000300)={'U+', 0x7}, 0x28, 0x3) ioctl$VIDIOC_S_AUDOUT(r2, 0x40345632, &(0x7f00000001c0)={0x8, "5e82f2730a9502a4a322cf507f20bef65efd0ec820c1baed658df39afcfa9bae", 0x1, 0x2}) getsockopt$inet6_buf(0xffffffffffffffff, 0x29, 0x2c, &(0x7f0000000280)=""/12, &(0x7f00000002c0)=0xc) socket$inet6_sctp(0xa, 0x1, 0x84) 07:06:27 executing program 0 (fault-call:0 fault-nth:33): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x0, 0x989680}) socket$inet6_sctp(0xa, 0x0, 0x84) 07:06:28 executing program 1: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x7, 0x0, &(0x7f0000000040), 0x0, 0x0) lsetxattr$security_smack_entry(&(0x7f0000000080)='./file0/file0\x00', &(0x7f0000000280)='sec;\x00\xa7|y.SMACK64T\x00\x00\x00\x00\x00\xaeK\v\xc6=\xb7\xa2*f\x9b\xaa\x8az\x94\xc1\x97\xbd\xec:\x9e\x04\x8b\xd5`\x10w\xee\xa4', &(0x7f00000000c0)='GPLGPLcgroup}\x00', 0xe, 0x72421e0317339293) r0 = socket$inet6_sctp(0xa, 0x0, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, &(0x7f0000000200)=ANY=[@ANYBLOB="00002000488bf67708f02f8b65e30001faff26508a99def763cb8a90e1a5687f00000000000000bdcb9cc72a5c967e7c56c32be42fb69d11dbe26f", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0], &(0x7f00000001c0)=0x10) r1 = syz_open_procfs(0x0, &(0x7f0000000880)='oom_score\x00') preadv(r1, &(0x7f00000017c0), 0x199, 0x0) setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000180)=0x5, 0x4) [ 192.951290] FAULT_INJECTION: forcing a failure. [ 192.951290] name failslab, interval 1, probability 0, space 0, times 0 [ 192.981879] CPU: 1 PID: 12951 Comm: syz-executor.0 Not tainted 4.14.151 #0 [ 192.988932] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 192.999430] Call Trace: [ 193.002041] dump_stack+0x138/0x197 [ 193.005872] should_fail.cold+0x10f/0x159 [ 193.010044] should_failslab+0xdb/0x130 [ 193.014036] kmem_cache_alloc_node_trace+0x280/0x770 [ 193.019161] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 193.024636] __kmalloc_node_track_caller+0x3d/0x80 [ 193.029706] __kmalloc_reserve.isra.0+0x40/0xe0 [ 193.034397] __alloc_skb+0xcf/0x500 [ 193.038045] ? skb_scrub_packet+0x4b0/0x4b0 [ 193.042380] ? netlink_has_listeners+0x20a/0x330 [ 193.047160] kobject_uevent_env+0x781/0xc23 07:06:28 executing program 2: syz_mount_image$btrfs(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0xfffd}], 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = msgget$private(0x0, 0x0) msgctl$IPC_SET(r1, 0x1, 0x0) msgsnd(r1, 0x0, 0x0, 0x0) msgctl$IPC_INFO(r1, 0x3, &(0x7f0000000080)=""/34) msgrcv(r1, &(0x7f0000000480)={0x0, ""/63}, 0x47, 0x2, 0x4000) fcntl$setpipe(r0, 0x407, 0x0) r2 = syz_open_procfs(0x0, &(0x7f00000006c0)='Net/3\x97OOT\x15\x00\xb6\xcf@e\xd3r\x82\x9fc') ioctl$VIDIOC_PREPARE_BUF(r2, 0xc058565d, &(0x7f00000005c0)={0x0, 0xb, 0x4, 0x0, {0x0, 0x7530}, {0x0, 0x2, 0x81, 0x10, 0x24, 0x6, "cf676f53"}, 0x80, 0x5, @offset=0x9, 0x4}) mq_timedsend(r2, &(0x7f0000000480)="c1cc3d2c05c16add6c964974e00652617b35c74bd5a620d3170df3c2f134d5beb838b0f00c6ca198401126d02772777a96ead8602a94c5450ea4e5c8b02fc6e876ee2383fc4faa682ed6a91a53a08a1fdd9839c170a6f81ede814c769cf15c688c8514b5f4f1dc0a50019813ce4459df629cd480519073a5f929cd5e59d0058ea64475a46e924294d5ef1b4b158e59d9c923a0", 0x93, 0x4, &(0x7f0000000540)={0x0, 0x989680}) ioctl$KDSETMODE(r2, 0x4b3a, 0xaa1b) write(r0, &(0x7f0000000340), 0x41395527) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) ioctl$EXT4_IOC_ALLOC_DA_BLKS(r3, 0x660c) setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, &(0x7f0000000700)="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", 0x137) fsetxattr$trusted_overlay_nlink(r3, &(0x7f0000000240)='trusted.overlay.nlink\x00', &(0x7f0000000300)={'U+', 0x7}, 0x28, 0x3) ioctl$DRM_IOCTL_MARK_BUFS(r3, 0x40206417, &(0x7f00000000c0)={0x100, 0x6, 0x0, 0x8, 0x10, 0x56}) ioctl$EXT4_IOC_ALLOC_DA_BLKS(r0, 0x660c) r4 = msgget$private(0x0, 0x0) msgctl$IPC_SET(r4, 0x1, 0x0) msgsnd(r4, 0x0, 0x0, 0x0) msgctl$IPC_INFO(r4, 0x3, &(0x7f0000000080)=""/34) msgctl$IPC_INFO(r4, 0x3, &(0x7f00000000c0)) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000380)="0c4f4d16cf2f3a2dd8a5046790a60c91e487dc9ca281434dbc169c6555a654da5e42c953490634b417ec9535653162fc5730d4c8dab3e136550ed7d31fa8d7094afd6e5154349155e6ef7e5fb08d79c283188a3f28548ab4366e6863ba5561aedbd1ee3f9a2c5646e4a9c2806b231528bca7ee2134e39966c40bcb1371a7e7691672a8dc9bda07175f11a9160cba3f0ddb78db3b2e184e1e9aa371691df9f49a5e3343bce4e4b8a2c80831b63d95ed57cf89982b317abf1cf8a71078d00dd5fa9151c142fa4bb765d503150f5f6f34284c7480a5091e9b246e", 0xd9) r5 = ioctl$NS_GET_PARENT(0xffffffffffffffff, 0xb702, 0x0) fsetxattr$trusted_overlay_nlink(r5, &(0x7f0000000240)='t\x00\x04\x00\x00\x00\x00\x0f\r\x00', &(0x7f0000000300)={'\x00', 0x7}, 0xfffffffffffffe7a, 0x3) sendto$inet6(r0, &(0x7f0000000140)="dbbc78e6507551224e32d06cf40190abf9b5126c90df3c058b228670662e742f19e7e744fc31da3aa9a81292c0419c04674ea3162e33a580b90f1ba086693bb587e2ebc4f2d8ef9ca495af4105275911ce0ca9205a26d4d0732d0385de292d78b37db5fba91c668d84411f3477f0243fd23fce4eab55aacb1f8ae7e70494e78f189ac0b50a79efa6a4907e6d7a11318c23a677c1d612e2e365ab0508372e170293f8dc114d962eb515cee5d5f447b3f3c0c5", 0xb2, 0x4008005, &(0x7f0000000080)={0xa, 0x4e21, 0xf78, @rand_addr="f46a8901aa96a9595ce389d88edd8a23", 0x8000}, 0x1c) [ 193.051511] kobject_uevent+0x20/0x26 [ 193.055332] lo_ioctl+0x11e7/0x1ce0 [ 193.058985] ? loop_probe+0x160/0x160 [ 193.062806] blkdev_ioctl+0x96b/0x1860 [ 193.066723] ? blkpg_ioctl+0x980/0x980 [ 193.070643] ? __might_sleep+0x93/0xb0 [ 193.076459] ? __fget+0x210/0x370 [ 193.079931] block_ioctl+0xde/0x120 [ 193.083579] ? blkdev_fallocate+0x3b0/0x3b0 [ 193.087916] do_vfs_ioctl+0x7ae/0x1060 [ 193.091819] ? selinux_file_mprotect+0x5d0/0x5d0 [ 193.096593] ? lock_downgrade+0x740/0x740 [ 193.100766] ? ioctl_preallocate+0x1c0/0x1c0 [ 193.105192] ? __fget+0x237/0x370 [ 193.108671] ? security_file_ioctl+0x89/0xb0 [ 193.113117] SyS_ioctl+0x8f/0xc0 [ 193.117815] ? do_vfs_ioctl+0x1060/0x1060 [ 193.122157] do_syscall_64+0x1e8/0x640 [ 193.126091] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 193.131047] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 193.136253] RIP: 0033:0x45a087 [ 193.139444] RSP: 002b:00007f46eab45a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 193.147347] RAX: ffffffffffffffda RBX: 0000000020000068 RCX: 000000000045a087 [ 193.154796] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 193.162230] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 193.175852] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 193.183118] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 07:06:28 executing program 3: syz_mount_image$btrfs(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x1, 0x0) 07:06:28 executing program 0 (fault-call:0 fault-nth:34): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x0, 0x989680}) socket$inet6_sctp(0xa, 0x0, 0x84) 07:06:28 executing program 4: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, 0x0) r1 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) ioctl$VIDIOC_QUERYCAP(r1, 0x80685600, &(0x7f0000000040)) syz_open_dev$mouse(0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) r2 = syz_open_procfs(0x0, &(0x7f0000000880)='oom_score\x00') preadv(r2, &(0x7f00000017c0), 0x199, 0x0) ioctl$UI_BEGIN_FF_UPLOAD(r2, 0xc06855c8, &(0x7f0000000640)={0x10, 0xd17, {0x52, 0x2db, 0x7f, {0x200}, {0x40, 0x4}, @const={0x7ff, {0x8, 0xba, 0x1, 0x9150}}}, {0xa5e136065a937c32, 0x5, 0xfff, {0x4, 0x3}, {0x7, 0x1}, @ramp={0x800, 0x80, {0x100, 0x4c2, 0x800, 0x3}}}}) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r3, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_HYPERV_EVENTFD(r2, 0x4018aebd, &(0x7f0000000100)={0x1, r3, 0x1}) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f00000000c0)) 07:06:28 executing program 1: syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x3f, 0x1) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000080)="6a7fe0558094156c69", 0x0, 0x1}], 0x208080, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) [ 193.398227] FAULT_INJECTION: forcing a failure. [ 193.398227] name failslab, interval 1, probability 0, space 0, times 0 [ 193.428845] CPU: 0 PID: 12991 Comm: syz-executor.0 Not tainted 4.14.151 #0 [ 193.438720] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 193.448078] Call Trace: [ 193.450687] dump_stack+0x138/0x197 [ 193.454337] should_fail.cold+0x10f/0x159 [ 193.459092] should_failslab+0xdb/0x130 [ 193.463463] kmem_cache_alloc_node+0x287/0x780 [ 193.468071] __alloc_skb+0x9c/0x500 [ 193.471713] ? skb_scrub_packet+0x4b0/0x4b0 [ 193.476225] ? netlink_has_listeners+0x20a/0x330 [ 193.481011] kobject_uevent_env+0x781/0xc23 [ 193.485359] kobject_uevent+0x20/0x26 [ 193.489177] lo_ioctl+0x11e7/0x1ce0 [ 193.492821] ? loop_probe+0x160/0x160 [ 193.496684] blkdev_ioctl+0x96b/0x1860 [ 193.500564] ? blkpg_ioctl+0x980/0x980 [ 193.504626] ? __might_sleep+0x93/0xb0 [ 193.508518] ? __fget+0x210/0x370 [ 193.512022] block_ioctl+0xde/0x120 [ 193.515687] ? blkdev_fallocate+0x3b0/0x3b0 [ 193.519994] do_vfs_ioctl+0x7ae/0x1060 [ 193.523877] ? selinux_file_mprotect+0x5d0/0x5d0 [ 193.528633] ? lock_downgrade+0x740/0x740 [ 193.532842] ? ioctl_preallocate+0x1c0/0x1c0 [ 193.537255] ? __fget+0x237/0x370 [ 193.540709] ? security_file_ioctl+0x89/0xb0 [ 193.545309] SyS_ioctl+0x8f/0xc0 [ 193.548815] ? do_vfs_ioctl+0x1060/0x1060 [ 193.553175] do_syscall_64+0x1e8/0x640 [ 193.557061] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 193.561938] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 193.567140] RIP: 0033:0x45a087 [ 193.570332] RSP: 002b:00007f46eab45a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 193.578188] RAX: ffffffffffffffda RBX: 0000000020000068 RCX: 000000000045a087 [ 193.585455] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 07:06:28 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', 0x0, 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x1, 0x0) [ 193.592719] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 193.599984] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 193.607252] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 07:06:28 executing program 1: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) unlink(&(0x7f0000000080)='./file0\x00') 07:06:28 executing program 5: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) syz_open_procfs(0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) socket$inet6_sctp(0xa, 0x1, 0x84) r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000080)='/dev/cachefiles\x00', 0x101001, 0x0) ioctl$BLKGETSIZE(r0, 0x1260, &(0x7f00000000c0)) 07:06:28 executing program 0 (fault-call:0 fault-nth:35): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x0, 0x989680}) socket$inet6_sctp(0xa, 0x0, 0x84) 07:06:28 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', 0x0, 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x1, 0x0) [ 193.776631] FAULT_INJECTION: forcing a failure. [ 193.776631] name failslab, interval 1, probability 0, space 0, times 0 [ 193.789553] CPU: 0 PID: 13037 Comm: syz-executor.0 Not tainted 4.14.151 #0 [ 193.796594] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 193.796602] Call Trace: [ 193.796622] dump_stack+0x138/0x197 [ 193.796640] should_fail.cold+0x10f/0x159 [ 193.796655] should_failslab+0xdb/0x130 [ 193.808863] kmem_cache_alloc+0x2d7/0x780 [ 193.808877] ? selinux_file_mprotect+0x5d0/0x5d0 [ 193.829557] ? lock_downgrade+0x740/0x740 [ 193.833694] ? ioctl_preallocate+0x1c0/0x1c0 [ 193.838200] getname_flags+0xcb/0x580 [ 193.841991] SyS_mkdir+0x7e/0x200 [ 193.845605] ? SyS_mkdirat+0x210/0x210 [ 193.849562] ? do_syscall_64+0x53/0x640 [ 193.853535] ? SyS_mkdirat+0x210/0x210 [ 193.857406] do_syscall_64+0x1e8/0x640 [ 193.861391] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 193.866234] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 193.871413] RIP: 0033:0x459637 07:06:29 executing program 2: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000080)='/dev/dsp\x00', 0x10000, 0x0) getsockopt$inet_sctp6_SCTP_FRAGMENT_INTERLEAVE(r0, 0x84, 0x12, &(0x7f00000000c0), &(0x7f0000000140)=0x4) [ 193.874588] RSP: 002b:00007f46eab45a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 193.882282] RAX: ffffffffffffffda RBX: 0000000020000068 RCX: 0000000000459637 [ 193.889535] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 0000000020000100 [ 193.896790] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 193.904045] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 193.911418] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 07:06:29 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', 0x0, 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x1, 0x0) 07:06:29 executing program 1: r0 = syz_open_procfs(0x0, &(0x7f0000000880)='oom_score\x00') preadv(r0, &(0x7f00000017c0), 0x199, 0x0) ioctl$UI_BEGIN_FF_UPLOAD(r0, 0xc06855c8, &(0x7f0000000640)={0x10, 0xd17, {0x52, 0x2db, 0x7f, {0x200}, {0x40, 0x4}, @const={0x7ff, {0x8, 0xba, 0x1, 0x9150}}}, {0xa5e136065a937c32, 0x5, 0xfff, {0x4, 0x3}, {0x7, 0x1}, @ramp={0x800, 0x80, {0x100, 0x4c2, 0x800, 0x3}}}}) ioctl$TIOCGPKT(r0, 0x80045438, &(0x7f00000000c0)) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x8, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) openat$vhci(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vhci\x00', 0x210400) msync(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x3185165e05950b20) setsockopt$bt_BT_DEFER_SETUP(r0, 0x112, 0x7, &(0x7f0000000140), 0x4) socket$inet6_sctp(0xa, 0x0, 0x84) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r1, 0x407, 0x0) write(r1, &(0x7f0000000340), 0x41395527) r2 = syz_open_procfs(0x0, &(0x7f00000006c0)='Net/3\x97OOT\x15\x00\xb6\xcf@e\xd3r\x82\x9fc') ioctl$VIDIOC_PREPARE_BUF(r2, 0xc058565d, &(0x7f00000005c0)={0x0, 0xb, 0x4, 0x0, {0x0, 0x7530}, {0x0, 0x2, 0x81, 0x10, 0x24, 0x6, "cf676f53"}, 0x80, 0x5, @offset=0x9, 0x4}) mq_timedsend(r2, &(0x7f0000000480)="c1cc3d2c05c16add6c964974e00652617b35c74bd5a620d3170df3c2f134d5beb838b0f00c6ca198401126d02772777a96ead8602a94c5450ea4e5c8b02fc6e876ee2383fc4faa682ed6a91a53a08a1fdd9839c170a6f81ede814c769cf15c688c8514b5f4f1dc0a50019813ce4459df629cd480519073a5f929cd5e59d0058ea64475a46e924294d5ef1b4b158e59d9c923a0", 0x93, 0x4, &(0x7f0000000540)={0x0, 0x989680}) ioctl$MON_IOCG_STATS(r2, 0x80089203, &(0x7f0000000280)) ioctl$EXT4_IOC_ALLOC_DA_BLKS(r1, 0x660c) setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000380)="0c4f4d16cf2f3a2dd8a5046790a60c91e487dc9ca281434dbc169c6555a654da5e42c953490634b417ec9535653162fc5730d4c8dab3e136550ed7d31fa8d7094afd6e5154349155e6ef7e5fb08d79c283188a3f28548ab4366e6863ba5561aedbd1ee3f9a2c5646e4a9c2806b231528bca7ee2134e39966c40bcb1371a7e7691672a8dc9bda07175f11a9160cba3f0ddb78db3b2e184e1e9aa371691df9f49a5e3343bce4e4b8a2c80831b63d95ed57cf89982b317abf1cf8a71078d00dd5fa9151c142fa4bb765d503150f5f6f34284c7480a5091e9b246e", 0xd9) fsetxattr$trusted_overlay_nlink(r1, &(0x7f0000000240)='trusted.overlay.nlink\x00', &(0x7f0000000300)={'U+', 0x7}, 0x28, 0x3) ioctl$sock_kcm_SIOCKCMCLONE(r1, 0x89e2, &(0x7f0000000180)={r0}) setsockopt$bt_hci_HCI_FILTER(r3, 0x0, 0x2, &(0x7f00000001c0)={0x9, 0x3f, 0x6, 0x101}, 0x10) 07:06:29 executing program 0 (fault-call:0 fault-nth:36): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x0, 0x989680}) socket$inet6_sctp(0xa, 0x0, 0x84) 07:06:29 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x1, 0x0) [ 194.229973] FAULT_INJECTION: forcing a failure. [ 194.229973] name failslab, interval 1, probability 0, space 0, times 0 [ 194.243260] CPU: 1 PID: 13075 Comm: syz-executor.0 Not tainted 4.14.151 #0 [ 194.250861] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 194.261759] Call Trace: [ 194.266955] dump_stack+0x138/0x197 [ 194.270616] should_fail.cold+0x10f/0x159 [ 194.275649] should_failslab+0xdb/0x130 [ 194.279623] kmem_cache_alloc+0x2d7/0x780 [ 194.283871] ? selinux_file_mprotect+0x5d0/0x5d0 [ 194.288804] ? lock_downgrade+0x740/0x740 [ 194.293424] ? ioctl_preallocate+0x1c0/0x1c0 [ 194.298661] getname_flags+0xcb/0x580 [ 194.302543] SyS_mkdir+0x7e/0x200 [ 194.306160] ? SyS_mkdirat+0x210/0x210 [ 194.310162] ? do_syscall_64+0x53/0x640 [ 194.314140] ? SyS_mkdirat+0x210/0x210 [ 194.318014] do_syscall_64+0x1e8/0x640 [ 194.321995] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 194.326833] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 194.333449] RIP: 0033:0x459637 [ 194.336810] RSP: 002b:00007f46eab45a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 194.346430] RAX: ffffffffffffffda RBX: 0000000020000068 RCX: 0000000000459637 [ 194.354398] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 0000000020000100 [ 194.361764] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 194.369034] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 194.376575] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 07:06:29 executing program 4: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='\x00\x00@\x80\x00', 0x20a000, 0x0) r0 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, 0x0) r1 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) ioctl$VIDIOC_QUERYCAP(r1, 0x80685600, &(0x7f0000000040)) syz_open_dev$mouse(0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0xffffffffffffffd6) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f00000000c0)) 07:06:29 executing program 2: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000080)='/dev/mixer\x00', 0x200, 0x0) sync_file_range(r0, 0xa1f, 0x6, 0x2) r1 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/btrfs-control\x00', 0x880, 0x0) ioctl$SNDRV_TIMER_IOCTL_GINFO(r1, 0xc0f85403, &(0x7f0000000140)={{0xffffffffffffffff, 0x3, 0x80000001, 0x1, 0xa93}, 0x8, 0x100, 'id0\x00', 'timer1\x00', 0x0, 0x7, 0x95fa, 0x0, 0x3f}) 07:06:29 executing program 5: r0 = syz_open_dev$audion(&(0x7f0000000080)='/dev/audio#\x00', 0xffffffff80000001, 0x4100) r1 = socket$l2tp(0x18, 0x1, 0x1) epoll_ctl$EPOLL_CTL_MOD(r0, 0x3, r1, &(0x7f00000000c0)={0x1}) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r2 = syz_open_procfs(0x0, 0x0) ioctl$VIDIOC_G_DV_TIMINGS(r2, 0xc0845658, &(0x7f0000000140)={0x0, @reserved}) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) socket$inet6_sctp(0xa, 0x1, 0x84) 07:06:29 executing program 0 (fault-call:0 fault-nth:37): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x0, 0x989680}) socket$inet6_sctp(0xa, 0x0, 0x84) 07:06:29 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x1, 0x0) [ 194.523709] FAULT_INJECTION: forcing a failure. [ 194.523709] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 194.536948] CPU: 1 PID: 13107 Comm: syz-executor.0 Not tainted 4.14.151 #0 [ 194.558817] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 194.558823] Call Trace: [ 194.558842] dump_stack+0x138/0x197 [ 194.558858] should_fail.cold+0x10f/0x159 [ 194.558872] __alloc_pages_nodemask+0x1d6/0x7a0 [ 194.558883] ? fs_reclaim_acquire+0x20/0x20 [ 194.558894] ? __alloc_pages_slowpath+0x2930/0x2930 [ 194.558913] cache_grow_begin+0x80/0x400 [ 194.558924] kmem_cache_alloc+0x6a6/0x780 [ 194.558933] ? selinux_file_mprotect+0x5d0/0x5d0 [ 194.558947] ? lock_downgrade+0x740/0x740 [ 194.570880] getname_flags+0xcb/0x580 [ 194.570895] SyS_mkdir+0x7e/0x200 [ 194.570906] ? SyS_mkdirat+0x210/0x210 [ 194.570917] ? do_syscall_64+0x53/0x640 [ 194.570925] ? SyS_mkdirat+0x210/0x210 [ 194.570936] do_syscall_64+0x1e8/0x640 [ 194.570944] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 194.570961] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 194.642901] RIP: 0033:0x459637 [ 194.646098] RSP: 002b:00007f46eab45a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 194.655994] RAX: ffffffffffffffda RBX: 0000000020000068 RCX: 0000000000459637 [ 194.663278] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 0000000020000100 [ 194.670565] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 194.680281] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 194.687566] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 07:06:29 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x1, 0x0) 07:06:29 executing program 4: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x2c}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x400000000000249, 0x0, 0x0) pipe(&(0x7f0000000340)={0xffffffffffffffff, 0xffffffffffffffff}) openat$tun(0xffffffffffffff9c, &(0x7f0000000100)='/dev/net/tun\x00', 0x88000, 0x0) fcntl$setpipe(r3, 0x407, 0x0) memfd_create(&(0x7f00000000c0)='queue1\x00\x00\x00\x00\x00\x00\x00\x001;\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x06\x00\x00\x00\x00\x00\xcc\xbf}\xdd\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xb2\x1e\x00', 0x0) r4 = syz_open_dev$mouse(&(0x7f0000000300)='/dev/input/mouse#\x00', 0x5, 0x443d107da17a39e8) ioctl$CAPI_GET_FLAGS(r4, 0x80044323, &(0x7f0000000380)) syz_open_dev$swradio(&(0x7f0000000080)='/dev/swradio#\x00', 0x0, 0x2) write(r3, &(0x7f0000000340), 0x41395527) r5 = syz_open_dev$midi(&(0x7f00000001c0)='/dev/midi#\x00', 0xffffffffffffff98, 0x20000) write$capi20_data(r5, &(0x7f0000000440)={{0x10, 0x0, 0x3, 0x82, 0x52}, 0xaa, "4e925d5455b132e7a44f3972685f093654d5ab872037fbbe3c54a45bd82f37c558bb27d0fcf880bc981a9b177752273512d57c9337663600c08b6232bfdc22328af76073b30c0a456949f6296d518e769d848dbe8900ac1791516ce33b2bd4a5c946137c8db0bae5f9ffb9fa4c789fada032348f3d342147d485d47b5d21f848b1eabf5fe6af7c98353167632783ec1e884278bacc1c23ed5562200e3b95d6d4d9ad1ec850b60abf1530"}, 0xbc) clock_gettime(0x0, &(0x7f0000000180)={0x0, 0x0}) sched_setattr(0x0, &(0x7f0000000400)={0x30, 0x1, 0x0, 0x0, 0x1}, 0x0) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b4}, &(0x7f0000000200)={0x0, r6+30000000}, 0x0) syz_open_dev$mouse(&(0x7f00000002c0)='/dev/input/mouse#\x00', 0x8, 0x11a00) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r7 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r7, 0x8934, 0x0) r8 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) ioctl$VIDIOC_QUERYCAP(r8, 0x80685600, &(0x7f0000000040)) syz_open_dev$mouse(0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f00000000c0)) 07:06:29 executing program 5: pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r0, 0x407, 0x0) write(r0, &(0x7f0000000340), 0x41395527) ioctl$EXT4_IOC_ALLOC_DA_BLKS(r0, 0x660c) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000380)="0c4f4d16cf2f3a2dd8a5046790a60c91e487dc9ca281434dbc169c6555a654da5e42c953490634b417ec9535653162fc5730d4c8dab3e136550ed7d31fa8d7094afd6e5154349155e6ef7e5fb08d79c283188a3f28548ab4366e6863ba5561aedbd1ee3f9a2c5646e4a9c2806b231528bca7ee2134e39966c40bcb1371a7e7691672a8dc9bda07175f11a9160cba3f0ddb78db3b2e184e1e9aa371691df9f49a5e3343bce4e4b8a2c80831b63d95ed57cf89982b317abf1cf8a71078d00dd5fa9151c142fa4bb765d503150f5f6f34284c7480a5091e9b246e", 0xd9) fsetxattr$trusted_overlay_nlink(r0, &(0x7f0000000240)='trusted.overlay.nlink\x00', &(0x7f0000000300)={'U+', 0x7}, 0x28, 0x3) fstat(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0}) write$FUSE_CREATE_OPEN(r0, &(0x7f0000000400)={0xa0, 0x0, 0x2, {{0x1, 0x0, 0x512, 0x1, 0x7, 0x8, {0x1, 0x6, 0x100000000, 0x5, 0x5, 0x7fff, 0x2f2a, 0x9, 0x10000, 0x4, 0xffffff7f, r1, 0x0, 0xfffff6a2}}, {0x0, 0x14}}}, 0xa0) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed00000000000005a400007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001ff0000000000005f42485266535f4d00"/72, 0x48, 0x10000}], 0x0, 0x0) setrlimit(0xd, &(0x7f00000001c0)={0x3}) syz_open_procfs(0x0, 0x0) r2 = socket$inet6_sctp(0xa, 0x1, 0x84) r3 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r3, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [0x0]}, &(0x7f000095dffc)=0x8) r5 = syz_open_procfs(0x0, &(0x7f0000000880)='oom_score\x00') preadv(r5, &(0x7f00000017c0), 0x199, 0x0) ioctl$UI_BEGIN_FF_UPLOAD(r5, 0xc06855c8, &(0x7f0000000640)={0x10, 0xd17, {0x52, 0x2db, 0x7f, {0x200}, {0x40, 0x4}, @const={0x7ff, {0x8, 0xba, 0x1, 0x9150}}}, {0xa5e136065a937c32, 0x5, 0xfff, {0x4, 0x3}, {0x7, 0x1}, @ramp={0x800, 0x80, {0x100, 0x4c2, 0x800, 0x3}}}}) getpeername$packet(r5, &(0x7f0000000540)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, &(0x7f0000000580)=0x14) getsockopt$inet_sctp6_SCTP_ASSOCINFO(r2, 0x84, 0x1, &(0x7f0000000000)={r4}, &(0x7f0000000040)=0x14) getsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(0xffffffffffffffff, 0x84, 0x75, &(0x7f00000004c0)={r4, 0xff}, &(0x7f0000000500)=0x8) r6 = syz_open_procfs(0x0, &(0x7f0000000880)='oom_score\x00') preadv(r6, &(0x7f00000017c0), 0x199, 0x0) ioctl$UI_BEGIN_FF_UPLOAD(r6, 0xc06855c8, &(0x7f0000000640)={0x10, 0xd17, {0x52, 0x2db, 0x7f, {0x200}, {0x40, 0x4}, @const={0x7ff, {0x8, 0xba, 0x1, 0x9150}}}, {0xa5e136065a937c32, 0x5, 0xfff, {0x4, 0x3}, {0x7, 0x1}, @ramp={0x800, 0x80, {0x100, 0x4c2, 0x800, 0x3}}}}) r7 = socket$inet6_sctp(0xa, 0x1, 0x84) r8 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r8, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [0x0]}, &(0x7f000095dffc)=0x8) getsockopt$inet_sctp6_SCTP_ASSOCINFO(r7, 0x84, 0x1, &(0x7f0000000000)={r9}, &(0x7f0000000040)=0x14) getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER_VALUE(r6, 0x84, 0x7c, &(0x7f00000005c0)={r9, 0x0, 0x9}, &(0x7f0000000600)=0x8) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r10, &(0x7f0000000000)=[{&(0x7f0000000340)="6c0000000066fb0e31b79b06c1f1e0ecd265fc6540c7bcfcf30327605f1da14edddf4a51f5060a9384ff5a96f06bab8e63cc38884d167e01f2f9627fc7126cd9b99bf6c10100000045db17ecdc207fa28362ec6828d7e3f65375587a4460b049d14358c6204f95fe180d9a53203d956b7ca022a0b2f778b6b4a61df43edcbb9c539d6aa7ee6d2355b9218916ca", 0x8d}], 0x1, 0x0) getsockname$tipc(r10, &(0x7f0000000080)=@name, &(0x7f00000000c0)=0x10) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) socket$inet6_sctp(0xa, 0x1, 0x84) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r11, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) fsetxattr$security_capability(r11, &(0x7f0000000140)='security.capability\x00', &(0x7f0000000180)=@v2={0x2000000, [{0x78, 0x3ff}, {0x1d88, 0x9}]}, 0x14, 0x7f4392175fbe4d7f) 07:06:29 executing program 2: syz_mount_image$btrfs(&(0x7f0000000000)='\x00\x00\b\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0xaaaaaaaaaaaadcd, &(0x7f0000000040), 0x0, 0x0) 07:06:30 executing program 1: openat$ion(0xffffffffffffff9c, &(0x7f0000000380)='/dev/ion\x00', 0x101000, 0x0) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) execve(&(0x7f0000000080)='./file0\x00', &(0x7f0000000200)=[&(0x7f00000000c0)='btrfs\x00', &(0x7f0000000140)='!*\x00', &(0x7f0000000180)='btrfs\x00', &(0x7f00000001c0)='btrfs\x00'], &(0x7f0000000340)=[&(0x7f0000000240)='cgroup[]!.-\x00', &(0x7f0000000280)='md5sum-\"\'!#\x00']) socket$inet6_sctp(0xa, 0x0, 0x84) ioctl$KVM_ASSIGN_SET_INTX_MASK(0xffffffffffffffff, 0x4040aea4, &(0x7f0000000440)={0x9, 0xfffffff8, 0x5, 0x4, 0x8000}) r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/vsock\x00', 0x408802, 0x0) r1 = open(&(0x7f0000000400)='./file0\x00', 0xc000, 0x20) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) 07:06:30 executing program 0 (fault-call:0 fault-nth:38): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x0, 0x989680}) socket$inet6_sctp(0xa, 0x0, 0x84) 07:06:30 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000040), 0x1, 0x0) 07:06:30 executing program 2: pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r0, 0x407, 0x0) write(r0, &(0x7f0000000340), 0x41395527) ioctl$EXT4_IOC_ALLOC_DA_BLKS(r0, 0x660c) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000380)="0c4f4d16cf2f3a2dd8a5046790a60c91e487dc9ca281434dbc169c6555a654da5e42c953490634b417ec9535653162fc5730d4c8dab3e136550ed7d31fa8d7094afd6e5154349155e6ef7e5fb08d79c283188a3f28548ab4366e6863ba5561aedbd1ee3f9a2c5646e4a9c2806b231528bca7ee2134e39966c40bcb1371a7e7691672a8dc9bda07175f11a9160cba3f0ddb78db3b2e184e1e9aa371691df9f49a5e3343bce4e4b8a2c80831b63d95ed57cf89982b317abf1cf8a71078d00dd5fa9151c142fa4bb765d503150f5f6f34284c7480a5091e9b246e", 0xd9) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) write$capi20_data(r1, &(0x7f00000000c0)={{0x10, 0x2, 0x0, 0x82, 0x0, 0x7fff}, 0xb, "7e51097e36e5b91e7548cc"}, 0x1d) fsetxattr$trusted_overlay_nlink(r0, &(0x7f0000000240)='trusted.overlay.nlink\x00', &(0x7f0000000300)={'U+', 0x7}, 0x28, 0x3) sendto$rxrpc(r0, &(0x7f0000000140)="b9ea5c4e4ccbe54c6a8d5a5f1c63f9ba6dd880e8cfdac08070ddd4a91cd75509b6469d1909b1f91b470f0a139f6cc31bc7186db027aaa4c4d84073bed44c9956ee86197a4979635b3d173d46abd931d5860207430ca1b8f9d44f0927b70c946ddddb886eaf5a35df3a3a9c671691567e0a845aa1f76876ad6fa16f9990b767d214fddd8e56489d7135edcd93db763cc12408bfb6", 0x94, 0x2005000, &(0x7f0000000080)=@in4={0x21, 0x1, 0x2, 0x10, {0x2, 0x4e21, @local}}, 0x24) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 195.205472] FAULT_INJECTION: forcing a failure. [ 195.205472] name failslab, interval 1, probability 0, space 0, times 0 [ 195.217995] CPU: 0 PID: 13177 Comm: syz-executor.0 Not tainted 4.14.151 #0 [ 195.225138] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 195.234510] Call Trace: [ 195.237135] dump_stack+0x138/0x197 [ 195.240797] should_fail.cold+0x10f/0x159 [ 195.244969] should_failslab+0xdb/0x130 [ 195.248959] kmem_cache_alloc+0x2d7/0x780 [ 195.253137] ? selinux_file_mprotect+0x5d0/0x5d0 [ 195.257917] ? lock_downgrade+0x740/0x740 [ 195.262074] ? ioctl_preallocate+0x1c0/0x1c0 [ 195.266473] getname_flags+0xcb/0x580 [ 195.270266] SyS_mkdir+0x7e/0x200 [ 195.273708] ? SyS_mkdirat+0x210/0x210 [ 195.277585] ? do_syscall_64+0x53/0x640 [ 195.281549] ? SyS_mkdirat+0x210/0x210 [ 195.285430] do_syscall_64+0x1e8/0x640 [ 195.289307] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 195.294195] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 195.300678] RIP: 0033:0x459637 [ 195.303856] RSP: 002b:00007f46eab45a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 195.311769] RAX: ffffffffffffffda RBX: 0000000020000068 RCX: 0000000000459637 [ 195.319158] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 0000000020000100 [ 195.326506] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 195.333868] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 07:06:30 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000040), 0x1, 0x0) [ 195.352278] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 07:06:30 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000040), 0x1, 0x0) 07:06:30 executing program 1: syz_mount_image$btrfs(&(0x7f0000000200)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x1, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8dda000000000000000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4da10e5c0e3980b4b0bab8fa9a9fa0f5361ddaa00803e02ada76f0df50fb8b9670d3598c01315f364577cb5f35538299669095705f106a90ffb0aabaf083138dbe7627dfc62373aa913e995d04a6af1f", 0x97, 0x8}], 0x0, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) r0 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000080)='/dev/dsp\x00', 0x60640, 0x0) setsockopt$inet_sctp_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f00000000c0)=0xea, 0x4) 07:06:30 executing program 0 (fault-call:0 fault-nth:39): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x0, 0x989680}) socket$inet6_sctp(0xa, 0x0, 0x84) 07:06:30 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x10000}], 0x1, 0x0) [ 195.659186] FAULT_INJECTION: forcing a failure. [ 195.659186] name failslab, interval 1, probability 0, space 0, times 0 [ 195.728356] CPU: 1 PID: 13215 Comm: syz-executor.0 Not tainted 4.14.151 #0 [ 195.735598] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 195.744965] Call Trace: [ 195.747568] dump_stack+0x138/0x197 [ 195.751276] should_fail.cold+0x10f/0x159 [ 195.755444] should_failslab+0xdb/0x130 [ 195.759441] kmem_cache_alloc+0x2d7/0x780 [ 195.763642] ? __d_lookup+0x3a2/0x670 [ 195.767546] ? mark_held_locks+0xb1/0x100 [ 195.771742] ? d_lookup+0xe5/0x240 [ 195.775829] __d_alloc+0x2d/0x9f0 [ 195.779386] d_alloc+0x4d/0x270 [ 195.782685] __lookup_hash+0x58/0x180 [ 195.787022] filename_create+0x16c/0x430 [ 195.791100] ? kern_path_mountpoint+0x40/0x40 [ 195.795704] SyS_mkdir+0x92/0x200 [ 195.799163] ? SyS_mkdirat+0x210/0x210 [ 195.803058] ? do_syscall_64+0x53/0x640 [ 195.807390] ? SyS_mkdirat+0x210/0x210 [ 195.813817] do_syscall_64+0x1e8/0x640 [ 195.817719] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 195.822951] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 195.829010] RIP: 0033:0x459637 [ 195.832446] RSP: 002b:00007f46eab45a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 195.841223] RAX: ffffffffffffffda RBX: 0000000020000068 RCX: 0000000000459637 [ 195.850276] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 0000000020000100 [ 195.859172] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 195.867790] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 07:06:31 executing program 5: syz_mount_image$btrfs(&(0x7f0000000000)='\x00\x00\x00\x00\x02\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) syz_open_procfs(0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) socket$inet6_sctp(0xa, 0x1, 0x84) 07:06:31 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x10000}], 0x1, 0x0) [ 195.875073] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 07:06:31 executing program 4: sched_setscheduler(0x0, 0x5, 0x0) r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r1, 0x8934, 0x0) syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) r2 = dup(r0) ioctl$DRM_IOCTL_AGP_BIND(r2, 0x40106436, &(0x7f0000000100)={0x0, 0x10}) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r3, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) r4 = syz_open_procfs(0x0, &(0x7f00000006c0)='Net/3\x97OOT\x15\x00\xb6\xcf@e\xd3r\x82\x9fc') ioctl$VIDIOC_PREPARE_BUF(r4, 0xc058565d, &(0x7f00000005c0)={0x0, 0xb, 0x4, 0x0, {0x0, 0x7530}, {0x0, 0x2, 0x81, 0x10, 0x24, 0x6, "cf676f53"}, 0x80, 0x5, @offset=0x9, 0x4}) mq_timedsend(r4, &(0x7f0000000480)="c1cc3d2c05c16add6c964974e00652617b35c74bd5a620d3170df3c2f134d5beb838b0f00c6ca198401126d02772777a96ead8602a94c5450ea4e5c8b02fc6e876ee2383fc4faa682ed6a91a53a08a1fdd9839c170a6f81ede814c769cf15c688c8514b5f4f1dc0a50019813ce4459df629cd480519073a5f929cd5e59d0058ea64475a46e924294d5ef1b4b158e59d9c923a0", 0x93, 0x4, &(0x7f0000000540)={0x0, 0x989680}) ioctl$VIDIOC_QUERYCAP(r4, 0x80685600, &(0x7f0000000040)) syz_open_dev$mouse(0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f00000000c0)) 07:06:31 executing program 0 (fault-call:0 fault-nth:40): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x0, 0x989680}) socket$inet6_sctp(0xa, 0x0, 0x84) 07:06:31 executing program 1: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x800, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) r0 = syz_open_procfs(0x0, &(0x7f00000006c0)='Net/3\x97OOT\x15\x00\xb6\xcf@e\xd3r\x82\x9fc') ioctl$VIDIOC_PREPARE_BUF(r0, 0xc058565d, &(0x7f00000005c0)={0x0, 0xb, 0x4, 0x0, {0x0, 0x7530}, {0x0, 0x2, 0x81, 0x10, 0x24, 0x6, "cf676f53"}, 0x80, 0x5, @offset=0x9, 0x4}) mq_timedsend(r0, &(0x7f0000000480)="c1cc3d2c05c16add6c964974e00652617b35c74bd5a620d3170df3c2f134d5beb838b0f00c6ca198401126d02772777a96ead8602a94c5450ea4e5c8b02fc6e876ee2383fc4faa682ed6a91a53a08a1fdd9839c170a6f81ede814c769cf15c688c8514b5f4f1dc0a50019813ce4459df629cd480519073a5f929cd5e59d0058ea64475a46e924294d5ef1b4b158e59d9c923a0", 0x93, 0x4, &(0x7f0000000540)={0x0, 0x989680}) r1 = socket$inet6_sctp(0xa, 0x1, 0x84) r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [0x0]}, &(0x7f000095dffc)=0x8) getsockopt$inet_sctp6_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f0000000000)={r3}, &(0x7f0000000040)=0x14) getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(r0, 0x84, 0x7c, &(0x7f0000000080)={r3, 0x71aa, 0x5}, &(0x7f00000000c0)=0x8) 07:06:31 executing program 2: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x7, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000080)='/\x00\x00v/mi:\xd9\x8e\xbc', 0x20000, 0x0) ioctl$TCSETSF(r0, 0x5404, &(0x7f00000000c0)={0x2, 0x93, 0x7, 0x8, 0x9, 0x3f, 0x3, 0x8, 0x7, 0x2, 0x3f, 0x10001}) chmod(&(0x7f0000000180)='./file0/file0\x00', 0x2) setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000340)=ANY=[@ANYBLOB="66696c74657200000000000000000000000000000000000000000000000000000e00000004000000b8050000f0000000f000000000000000f000000000000000e8040000e8040000e8040000e8040000e804000004000000", @ANYPTR=&(0x7f0000000980)=ANY=[@ANYBLOB="00000000000000f802000000bc94000080000000000000000000400000000000000000000000000000000000000000000000000000000000008fb018320cf98c22a362651d1084884900b400b9dbf4573a4e3db88c1fdf436c6d81ef8eb23b34dd4ad01b39eafaa1f7831a33b1f2e6a9556dbf246f1ddc9b4a8cf8218d8ac745ef77c6c93c3c05975176f26a680e80f93a37714e2801f9d9abd7cbec99f51fdbc56d949e737de819fa9dfbd383"], @ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000c800f00000000000000000000000000000000000000000000000000028004e46515545554500000000000000000000000000000000000000000000030900ff7f3bb9000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000180140010000000000000000000000000000000000000000000000002800657569363400000000000000000000000000000000000000000000000000000000000000000028006d68000000000000000000000000000000000000000000000000000000001ffd010000000000280052454a45435400000000000000000000000000000000000000000000000005000000000000004df943b40f7a080e54ba94d738dcec8800000000000000000000ffff7f000001ff000000ffffffffffffffff000000ffffffff00000000ffffffffff000000ff7465616d5f736c6176655f31000000007665746830000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000090c400000000000000000000000000000009002b80200000000000000000000000000000000000000000000000090007372680000000000000000000000000000000000000000000000000000012c0202008575000000000000000000000000000000000001d9edbc60cfa90e3b457de84d2f5f563cff010000000000000000000000000001ffffffff000000ff000000ffff000000ffffffffff000000000000ffffffff0000000000ffffffffff0000ffffffff00000004200000000038017274000000000000000000000000000000000000000000000000000000004701000005000000010100000600000020010000fe8000000000000000000000000000aa00000000000000000000ffffac1414aa66545890684287c5e36ae2b0004de8a5fe80000000000000000000000000000afe8000000000000000000000000000bb0000000000000000000000000000000028bb2db7ed2276f75f605d5c054549c6fe80000000000000000000000000001cfe8000000000000000000000000000bb00000000000000000000ffff00000000fe80f2ceada63f04ee427f25e894c8c0fe800000000000000000000000000011ff02000000000000000000000000000100000000000000000000000000000001fe8000000000000000000000000000aafe8000000000000000000000000000aa09000000280052454a45435400000000000000000000000000000000000000000000000005000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a800d0000000000000000000000000000000000000000000000000002800000000000000000000000000000000000000000000000000000000000000feffffff00000000"], 0x618) r1 = add_key(&(0x7f0000000140)='pkcs7_test\x00', 0xffffffffffffffff, 0x0, 0x0, 0xfffffffffffffffa) keyctl$restrict_keyring(0x1d, r1, 0x0, 0x0) 07:06:31 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x10000}], 0x1, 0x0) [ 196.050406] FAULT_INJECTION: forcing a failure. [ 196.050406] name failslab, interval 1, probability 0, space 0, times 0 [ 196.146530] CPU: 0 PID: 13261 Comm: syz-executor.0 Not tainted 4.14.151 #0 [ 196.153610] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 196.162983] Call Trace: [ 196.165579] dump_stack+0x138/0x197 [ 196.169221] should_fail.cold+0x10f/0x159 [ 196.173390] should_failslab+0xdb/0x130 [ 196.177375] kmem_cache_alloc+0x2d7/0x780 [ 196.181670] ? mark_held_locks+0xb1/0x100 [ 196.185838] ? ext4_sync_fs+0x800/0x800 [ 196.189821] ext4_alloc_inode+0x1d/0x610 [ 196.193875] alloc_inode+0x64/0x180 [ 196.197504] new_inode_pseudo+0x19/0xf0 [ 196.201482] new_inode+0x1f/0x40 [ 196.204845] __ext4_new_inode+0x32c/0x4860 [ 196.209084] ? avc_has_perm+0x2df/0x4b0 [ 196.213562] ? ext4_free_inode+0x1210/0x1210 [ 196.232145] ? dquot_get_next_dqblk+0x160/0x160 [ 196.236849] ext4_mkdir+0x331/0xc20 [ 196.240504] ? ext4_init_dot_dotdot+0x4c0/0x4c0 [ 196.245205] ? security_inode_mkdir+0xd0/0x110 [ 196.249792] vfs_mkdir+0x3ca/0x610 [ 196.253360] SyS_mkdir+0x1b7/0x200 [ 196.256895] ? SyS_mkdirat+0x210/0x210 [ 196.260797] ? do_syscall_64+0x53/0x640 [ 196.264798] ? SyS_mkdirat+0x210/0x210 [ 196.268834] do_syscall_64+0x1e8/0x640 [ 196.272739] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 196.278083] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 196.283283] RIP: 0033:0x459637 [ 196.287618] RSP: 002b:00007f46eab45a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 07:06:31 executing program 5: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) syz_open_procfs(0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000006c0)='Net/3\x97OOT\x15\x00\xb6\xcf@e\xd3r\x82\x9fc') ioctl$VIDIOC_PREPARE_BUF(r0, 0xc058565d, &(0x7f00000005c0)={0x0, 0xb, 0x4, 0x0, {0x0, 0x7530}, {0x0, 0x2, 0x81, 0x10, 0x24, 0x6, "cf676f53"}, 0x80, 0x5, @offset=0x9, 0x4}) mq_timedsend(r0, &(0x7f0000000480)="c1cc3d2c05c16add6c964974e00652617b35c74bd5a620d3170df3c2f134d5beb838b0f00c6ca198401126d02772777a96ead8602a94c5450ea4e5c8b02fc6e876ee2383fc4faa682ed6a91a53a08a1fdd9839c170a6f81ede814c769cf15c688c8514b5f4f1dc0a50019813ce4459df629cd480519073a5f929cd5e59d0058ea64475a46e924294d5ef1b4b158e59d9c923a0", 0x93, 0x4, &(0x7f0000000540)={0x0, 0x989680}) getsockopt$bt_BT_CHANNEL_POLICY(r0, 0x112, 0xa, &(0x7f0000000080)=0x2, &(0x7f00000000c0)=0x4) socket$inet6_sctp(0xa, 0x1, 0x84) [ 196.296798] RAX: ffffffffffffffda RBX: 0000000020000068 RCX: 0000000000459637 [ 196.304262] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 0000000020000100 [ 196.311537] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 196.318799] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 196.326058] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 07:06:31 executing program 1: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) sync() socket$inet6_sctp(0xa, 0x0, 0x84) r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000080)='/dev/dlm-control\x00', 0x1400, 0x0) getdents64(r0, &(0x7f0000000140)=""/205, 0xcd) setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r0, 0x84, 0x6e, &(0x7f0000000340)=[@in6={0xa, 0x4e23, 0x1000, @initdev={0xfe, 0x88, [], 0x0, 0x0}}, @in6={0xa, 0x4e23, 0x400, @rand_addr="da5a8c0e93490115e10e8e9088ef289b", 0x4}, @in={0x2, 0x4e24, @broadcast}, @in6={0xa, 0x4e22, 0x38f9, @rand_addr="2f3edc8d095a71d91145516c8e985114", 0x8}, @in6={0xa, 0x4e23, 0x3f, @remote, 0x5}, @in6={0xa, 0x4e23, 0x0, @mcast2, 0x5}], 0x9c) 07:06:31 executing program 0 (fault-call:0 fault-nth:41): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x0, 0x989680}) socket$inet6_sctp(0xa, 0x0, 0x84) 07:06:31 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0), 0x0, 0x10000}], 0x1, 0x0) [ 196.569891] FAULT_INJECTION: forcing a failure. [ 196.569891] name failslab, interval 1, probability 0, space 0, times 0 [ 196.582064] CPU: 1 PID: 13311 Comm: syz-executor.0 Not tainted 4.14.151 #0 [ 196.589204] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 196.598831] Call Trace: [ 196.598872] dump_stack+0x138/0x197 [ 196.598889] should_fail.cold+0x10f/0x159 [ 196.598902] should_failslab+0xdb/0x130 [ 196.598913] __kmalloc+0x71/0x7a0 [ 196.598921] ? mls_compute_context_len+0x3f6/0x5e0 [ 196.598932] ? context_struct_to_string+0x33a/0x630 [ 196.598944] context_struct_to_string+0x33a/0x630 [ 196.598955] ? security_load_policycaps+0x320/0x320 [ 196.598970] security_sid_to_context_core+0x18a/0x200 [ 196.598982] security_sid_to_context_force+0x2b/0x40 [ 196.598994] selinux_inode_init_security+0x493/0x700 [ 196.599005] ? selinux_inode_create+0x30/0x30 [ 196.599012] ? kfree+0x20a/0x270 [ 196.599026] security_inode_init_security+0x18d/0x360 [ 196.599036] ? ext4_init_acl+0x1f0/0x1f0 [ 196.599046] ? security_kernel_post_read_file+0xd0/0xd0 [ 196.599054] ? posix_acl_create+0xf5/0x3a0 [ 196.599066] ? ext4_set_acl+0x400/0x400 [ 196.682502] ? lock_downgrade+0x740/0x740 [ 196.686642] ext4_init_security+0x34/0x40 [ 196.690773] __ext4_new_inode+0x3385/0x4860 [ 196.695086] ? ext4_free_inode+0x1210/0x1210 [ 196.699481] ? dquot_get_next_dqblk+0x160/0x160 [ 196.704137] ext4_mkdir+0x331/0xc20 [ 196.707749] ? ext4_init_dot_dotdot+0x4c0/0x4c0 [ 196.712402] ? security_inode_mkdir+0xd0/0x110 [ 196.716966] vfs_mkdir+0x3ca/0x610 [ 196.720492] SyS_mkdir+0x1b7/0x200 [ 196.724016] ? SyS_mkdirat+0x210/0x210 [ 196.727884] ? do_syscall_64+0x53/0x640 [ 196.731838] ? SyS_mkdirat+0x210/0x210 [ 196.735708] do_syscall_64+0x1e8/0x640 [ 196.739584] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 196.744414] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 196.749590] RIP: 0033:0x459637 [ 196.752780] RSP: 002b:00007f46eab45a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 196.760469] RAX: ffffffffffffffda RBX: 0000000020000068 RCX: 0000000000459637 07:06:31 executing program 2: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='btrfs\x00', r0}, 0x10) [ 196.767724] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 0000000020000100 [ 196.774977] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 196.782227] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 196.789488] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 07:06:31 executing program 4: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0x1, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) socket$pptp(0x18, 0x1, 0x2) read$char_usb(0xffffffffffffffff, 0x0, 0x0) write$P9_RXATTRWALK(0xffffffffffffffff, 0x0, 0x0) ioctl$DRM_IOCTL_RES_CTX(0xffffffffffffffff, 0xc0106426, &(0x7f00000001c0)={0x0, 0x0}) write$P9_RSTAT(0xffffffffffffffff, 0x0, 0x0) openat$pfkey(0xffffffffffffff9c, 0x0, 0x200a01, 0x0) socket(0x10, 0x80002, 0x0) sendmmsg$alg(0xffffffffffffffff, &(0x7f0000000140)=[{0x0, 0x0, 0x0}], 0x1, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x800000, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) prctl$PR_SET_THP_DISABLE(0x29, 0x10000000000001) socket(0x0, 0x80002, 0x0) fstat(0xffffffffffffffff, &(0x7f0000000280)) geteuid() openat$apparmor_task_exec(0xffffffffffffff9c, &(0x7f0000000440)='/proc/self//exe\x00', 0x3, 0x0) r0 = syz_open_dev$media(0x0, 0x0, 0x0) ioctl$RTC_EPOCH_READ(r0, 0xc0287c02, &(0x7f0000000040)) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f0000000d40)={{{@in6=@empty, @in=@remote}}, {{@in=@local}}}, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000000)='system.posix_acl_access\x00', 0x0, 0x0, 0x0) openat$apparmor_task_exec(0xffffffffffffff9c, &(0x7f0000000440)='/proc/self//exe\x00', 0x3, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f0000000d40)={{{@in6=@empty, @in=@remote}}, {{@in=@local}}}, 0x0) openat$apparmor_task_exec(0xffffffffffffff9c, &(0x7f0000000440)='/proc/self//exe\x00', 0x3, 0x0) ioctl$RTC_EPOCH_READ(0xffffffffffffffff, 0xc0287c02, &(0x7f0000000040)) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f0000000d40)={{{@in6=@empty, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@local}}}, &(0x7f0000000240)=0xfffffcf7) r2 = socket(0x0, 0x0, 0x0) fsetxattr$system_posix_acl(r2, 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="c65f7a77de57a1f8e6230fab08761ed0349262be80407df9761fd57c208272fd99f0055b5a38fc5b6ab5906c46abfdce829afa6b79541013d1426cc2d86be982c850d3a8ba5f8afacdc1a6c138ae7bc38f19b6ee11da3596269654165a47ecca7b42aa4ea3572025b468619b579cfa4811af5ed6d2cecd486ee6ca8801e6e511ceff88c306b9baf42c86c9078e40472eea626b7bc17c7e81d48b7db69fc33691ca34a3fbec3acebade9af257", @ANYBLOB, @ANYRES32=0x0, @ANYRES32=r1, @ANYBLOB, @ANYRES32=0x0], 0xa, 0x0) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mincore(&(0x7f0000ffe000/0x2000)=nil, 0x2000, &(0x7f0000000580)=""/229) 07:06:32 executing program 1: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) set_thread_area(&(0x7f0000000080)={0x8, 0x20001000, 0xffffffffffffffff, 0x1, 0x3, 0x0, 0x1, 0x0, 0x1}) socket$inet6_sctp(0xa, 0x0, 0x84) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x400000000000249, 0x0, 0x0) fsetxattr$security_smack_transmute(r0, &(0x7f0000000480)='security.SMACK64TRANSMUTE\x00', &(0x7f00000004c0)='TRUE', 0x4, 0xf35f90c5055c695a) r1 = getpid() sched_setattr(r1, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000400)={0xffffffffffffffff, 0xc0, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000180), 0x0, 0x0, 0x0, &(0x7f00000001c0)={0x0, 0x1}, 0x0, 0x0, &(0x7f0000000200)={0x0, 0xc, 0x1, 0x1}, &(0x7f0000000240), 0x0, 0x0, 0x0, 0x0, &(0x7f0000000280)=0xfffffffffffffff7}}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={r1, r2, 0x0, 0x6, &(0x7f0000000140)='btrfs\x00', r3}, 0x30) 07:06:32 executing program 0 (fault-call:0 fault-nth:42): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x0, 0x989680}) socket$inet6_sctp(0xa, 0x0, 0x84) 07:06:32 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0), 0x0, 0x10000}], 0x1, 0x0) 07:06:32 executing program 5: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) syz_open_procfs(0x0, 0x0) r0 = socket$inet_sctp(0x2, 0x1, 0x84) getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(0xffffffffffffffff, 0x84, 0x6d, &(0x7f0000000080)={0x0, 0x36, "a483e869adb2620b969f5678e097826776932f98c88f4ca09d24d67db1f730360cab444a345efdd5f4c3af675805194243593265a262"}, &(0x7f00000000c0)=0x3e) getsockopt$inet_sctp_SCTP_PEER_AUTH_CHUNKS(r0, 0x84, 0x1a, &(0x7f0000000140)={r1, 0xdf, "553210329e5768d8a3a866f51db7e31e06566f817f61f39b050964c2871cf8254bde12b10c53e35b49198346e1abf8ef8deb8f77524c73db73c0e940ba5f62e46b9b7c48dad63de0efdf0aa7274b51620722fb7380ee2f0c79c926a4e4082d1222e11b3e7796696ee8992522ab89c3816c39d5bd48d1457692378df50f95b274a7ba826b85d8944e9a37a89ed38533c19e7d05d4abe9f4953535e710cdad6bbe669d8fef86cf377d62291cc452e14ccf1542d6907305993fd10d1ce30721450e8eb01a0496ed84573efe8e84a64032f3549d08031f4f1d23bcdc9ad226f52a"}, &(0x7f0000000240)=0xe7) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) getcwd(&(0x7f0000000340)=""/144, 0x90) socket$inet6_sctp(0xa, 0x1, 0x84) [ 197.026116] FAULT_INJECTION: forcing a failure. [ 197.026116] name failslab, interval 1, probability 0, space 0, times 0 07:06:32 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0), 0x0, 0x10000}], 0x1, 0x0) 07:06:32 executing program 2: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r0, 0x407, 0x0) write(r0, &(0x7f0000000340), 0x41395527) ioctl$EXT4_IOC_ALLOC_DA_BLKS(r0, 0x660c) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000380)="0c4f4d16cf2f3a2dd8a5046790a60c91e487dc9ca281434dbc169c6555a654da5e42c953490634b417ec9535653162fc5730d4c8dab3e136550ed7d31fa8d7094afd6e5154349155e6ef7e5fb08d79c283188a3f28548ab4366e6863ba5561aedbd1ee3f9a2c5646e4a9c2806b231528bca7ee2134e39966c40bcb1371a7e7691672a8dc9bda07175f11a9160cba3f0ddb78db3b2e184e1e9aa371691df9f49a5e3343bce4e4b8a2c80831b63d95ed57cf89982b317abf1cf8a71078d00dd5fa9151c142fa4bb765d503150f5f6f34284c7480a5091e9b246e", 0xd9) fsetxattr$trusted_overlay_nlink(r0, &(0x7f0000000240)='trusted.overlay.nlink\x00', &(0x7f0000000300)={'U+', 0x7}, 0x28, 0x3) ioctl$KVM_X86_GET_MCE_CAP_SUPPORTED(r0, 0x8008ae9d, &(0x7f0000000140)=""/209) [ 197.150154] CPU: 0 PID: 13351 Comm: syz-executor.0 Not tainted 4.14.151 #0 [ 197.157220] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 197.166584] Call Trace: [ 197.169198] dump_stack+0x138/0x197 [ 197.172951] should_fail.cold+0x10f/0x159 [ 197.177122] should_failslab+0xdb/0x130 [ 197.181216] __kmalloc+0x2f0/0x7a0 [ 197.184783] ? check_preemption_disabled+0x3c/0x250 [ 197.189822] ? ext4_find_extent+0x709/0x960 [ 197.194173] ext4_find_extent+0x709/0x960 [ 197.198340] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 197.203819] ext4_ext_map_blocks+0x1a3/0x4fa0 [ 197.208711] ? save_trace+0x290/0x290 [ 197.212547] ? ext4_find_delalloc_cluster+0xb0/0xb0 [ 197.217768] ? __lock_is_held+0xb6/0x140 [ 197.221873] ? lock_acquire+0x16f/0x430 [ 197.225877] ? ext4_map_blocks+0x829/0x17c0 [ 197.230226] ext4_map_blocks+0x881/0x17c0 [ 197.234675] ? ext4_issue_zeroout+0x160/0x160 [ 197.239311] ? __brelse+0x50/0x60 [ 197.242794] ext4_getblk+0xac/0x450 [ 197.246441] ? ext4_iomap_begin+0x8a0/0x8a0 [ 197.250780] ? ext4_free_inode+0x1210/0x1210 [ 197.255208] ext4_bread+0x6e/0x1a0 [ 197.258769] ? ext4_getblk+0x450/0x450 [ 197.262683] ext4_append+0x14b/0x360 [ 197.266416] ext4_mkdir+0x531/0xc20 [ 197.270064] ? ext4_init_dot_dotdot+0x4c0/0x4c0 [ 197.275823] ? security_inode_mkdir+0xd0/0x110 [ 197.280426] vfs_mkdir+0x3ca/0x610 [ 197.283996] SyS_mkdir+0x1b7/0x200 [ 197.287553] ? SyS_mkdirat+0x210/0x210 [ 197.291454] ? do_syscall_64+0x53/0x640 [ 197.295445] ? SyS_mkdirat+0x210/0x210 [ 197.299351] do_syscall_64+0x1e8/0x640 [ 197.303279] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 197.308137] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 197.308148] RIP: 0033:0x459637 [ 197.308155] RSP: 002b:00007f46eab45a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 197.308167] RAX: ffffffffffffffda RBX: 0000000020000068 RCX: 0000000000459637 [ 197.308174] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 0000000020000100 [ 197.308179] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 197.308189] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 197.353379] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 07:06:32 executing program 0 (fault-call:0 fault-nth:43): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x0, 0x989680}) socket$inet6_sctp(0xa, 0x0, 0x84) 07:06:32 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2", 0x24, 0x10000}], 0x1, 0x0) 07:06:32 executing program 4: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, 0x0) r1 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x1, 0x2) ioctl$VIDIOC_QUERYCAP(r1, 0x80685600, &(0x7f0000000040)) syz_open_dev$mouse(0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) syz_open_dev$sndtimer(&(0x7f0000000840)='/dev/snd/timer\x00', 0x0, 0x10000) r2 = memfd_create(&(0x7f0000000540)='\x00', 0x17) r3 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000480)='Cpuacct.stE\xae\x00', 0x275a, 0x0) r4 = creat(&(0x7f00000001c0)='./bus\x00', 0x0) fallocate(r4, 0x0, 0x0, 0x2000002) read$eventfd(r4, &(0x7f00000003c0), 0x8) fallocate(r2, 0xe, 0x6, 0xffffffffffff5a11) creat(&(0x7f00000000c0)='./bus\x00', 0x0) r5 = socket$inet6(0xa, 0x400000000001, 0x0) r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r6, 0x40045431, &(0x7f00003b9fdc)={0x0, 0x0, 0x0, 0x0, 0x7, 0x3f, 0x0, 0x0, 0xfffffffe}) syz_open_pts(r6, 0x0) close(r6) ioctl$TIOCGWINSZ(r6, 0x5413, &(0x7f0000000080)) ioctl$TIOCLINUX7(r3, 0x541c, &(0x7f0000000380)={0x7, 0x8}) r7 = dup(r5) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, r5) setsockopt$inet6_tcp_int(r7, 0x6, 0x12, &(0x7f0000000000)=0x4, 0x4) bind$inet6(r5, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendto$inet6(r5, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) setsockopt$SO_BINDTODEVICE(r5, 0x1, 0x19, &(0x7f0000000180)='syz_tun\x00', 0x10) [ 197.503941] FAULT_INJECTION: forcing a failure. [ 197.503941] name failslab, interval 1, probability 0, space 0, times 0 [ 197.515764] CPU: 1 PID: 13408 Comm: syz-executor.0 Not tainted 4.14.151 #0 [ 197.522806] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 197.532196] Call Trace: [ 197.534829] dump_stack+0x138/0x197 [ 197.539125] should_fail.cold+0x10f/0x159 [ 197.543288] ? __es_tree_search.isra.0+0x15f/0x1c0 [ 197.548244] should_failslab+0xdb/0x130 [ 197.552238] kmem_cache_alloc+0x47/0x780 [ 197.556326] __es_insert_extent+0x26c/0xe60 [ 197.560674] ext4_es_insert_extent+0x1f0/0x590 [ 197.565275] ? check_preemption_disabled+0x3c/0x250 [ 197.570307] ? ext4_es_find_delayed_extent_range+0x960/0x960 [ 197.576115] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 197.581787] ? ext4_es_find_delayed_extent_range+0x31d/0x960 [ 197.587597] ext4_ext_put_gap_in_cache+0xcb/0x110 [ 197.592683] ? ext4_zeroout_es+0x170/0x170 [ 197.596951] ? ext4_find_extent+0x64c/0x960 [ 197.596969] ext4_ext_map_blocks+0x1d4b/0x4fa0 [ 197.596984] ? save_trace+0x290/0x290 [ 197.596999] ? ext4_find_delalloc_cluster+0xb0/0xb0 [ 197.597008] ? __lock_is_held+0xb6/0x140 [ 197.597025] ? lock_acquire+0x16f/0x430 [ 197.597034] ? ext4_map_blocks+0x402/0x17c0 [ 197.597050] ext4_map_blocks+0xd3c/0x17c0 [ 197.631667] ? __lock_is_held+0xb6/0x140 [ 197.635733] ? check_preemption_disabled+0x3c/0x250 [ 197.640748] ? ext4_issue_zeroout+0x160/0x160 [ 197.645231] ? __brelse+0x50/0x60 [ 197.648672] ext4_getblk+0xac/0x450 [ 197.652296] ? ext4_iomap_begin+0x8a0/0x8a0 [ 197.656616] ? ext4_free_inode+0x1210/0x1210 [ 197.661028] ext4_bread+0x6e/0x1a0 [ 197.664575] ? ext4_getblk+0x450/0x450 [ 197.668512] ext4_append+0x14b/0x360 [ 197.672224] ext4_mkdir+0x531/0xc20 [ 197.675839] ? ext4_init_dot_dotdot+0x4c0/0x4c0 [ 197.680530] ? security_inode_mkdir+0xd0/0x110 [ 197.685112] vfs_mkdir+0x3ca/0x610 [ 197.688652] SyS_mkdir+0x1b7/0x200 [ 197.692184] ? SyS_mkdirat+0x210/0x210 [ 197.696054] ? do_syscall_64+0x53/0x640 [ 197.700021] ? SyS_mkdirat+0x210/0x210 [ 197.703935] do_syscall_64+0x1e8/0x640 [ 197.707835] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 197.712676] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 197.717862] RIP: 0033:0x459637 [ 197.721042] RSP: 002b:00007f46eab45a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 197.728755] RAX: ffffffffffffffda RBX: 0000000020000068 RCX: 0000000000459637 [ 197.736020] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 0000000020000100 [ 197.743272] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a 07:06:32 executing program 5: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) syz_open_procfs(0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) r0 = socket$inet6_sctp(0xa, 0x1, 0x84) r1 = socket$inet6_sctp(0xa, 0x1, 0x84) r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [0x0]}, &(0x7f000095dffc)=0x8) getsockopt$inet_sctp6_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f0000000000)={r3}, &(0x7f0000000040)=0x14) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, &(0x7f0000000080)={r3, 0x2, 0x10, 0x7ff, 0x7fff}, &(0x7f00000000c0)=0x18) getsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(r0, 0x84, 0x6, &(0x7f0000000140)={r4, @in={{0x2, 0x4e21, @remote}}}, &(0x7f0000000200)=0x84) [ 197.750563] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 197.757924] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 07:06:32 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2", 0x24, 0x10000}], 0x1, 0x0) 07:06:32 executing program 1: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r0, 0x407, 0x0) write(r0, &(0x7f0000000340), 0x41395527) ioctl$EXT4_IOC_ALLOC_DA_BLKS(r0, 0x660c) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000380)="0c4f4d16cf2f3a2dd8a5046790a60c91e487dc9ca281434dbc169c6555a654da5e42c953490634b417ec9535653162fc5730d4c8dab3e136550ed7d31fa8d7094afd6e5154349155e6ef7e5fb08d79c283188a3f28548ab4366e6863ba5561aedbd1ee3f9a2c5646e4a9c2806b231528bca7ee2134e39966c40bcb1371a7e7691672a8dc9bda07175f11a9160cba3f0ddb78db3b2e184e1e9aa371691df9f49a5e3343bce4e4b8a2c80831b63d95ed57cf89982b317abf1cf8a71078d00dd5fa9151c142fa4bb765d503150f5f6f34284c7480a5091e9b246e", 0xd9) fsetxattr$trusted_overlay_nlink(r0, &(0x7f0000000240)='trusted.overlay.nlink\x00', &(0x7f0000000300)={'U+', 0x7}, 0x28, 0x3) r1 = openat$cgroup_ro(r0, &(0x7f0000000080)='hugetlb.2MB.usage_in_bytes\x00', 0x0, 0x0) write$P9_ROPEN(r1, &(0x7f00000000c0)={0x18, 0x71, 0x2, {{0x1, 0x1, 0x8}, 0x5}}, 0x18) 07:06:33 executing program 4: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, 0x0) r1 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) ioctl$VIDIOC_QUERYCAP(r1, 0x80685600, &(0x7f0000000040)) syz_open_dev$mouse(0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f00000000c0)) ioctl$VIDIOC_DV_TIMINGS_CAP(r1, 0xc0905664, &(0x7f0000000100)={0x0, 0x0, [], @raw_data=[0x10000, 0x4, 0x8001, 0x1, 0x80000001, 0x7, 0x8, 0x1, 0x6, 0x10, 0x3, 0x8, 0xffffffff, 0x9, 0x3, 0x80000000, 0x13, 0xffffffff, 0xfffffffa, 0x7, 0x4, 0xffff, 0xfff, 0x9, 0x6, 0x5, 0x1, 0x5, 0x6, 0xffffff27, 0x0, 0x9]}) 07:06:33 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2", 0x24, 0x10000}], 0x1, 0x0) 07:06:33 executing program 0 (fault-call:0 fault-nth:44): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x0, 0x989680}) socket$inet6_sctp(0xa, 0x0, 0x84) 07:06:33 executing program 5: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r0, 0x407, 0x0) write(r0, &(0x7f0000000340), 0x41395527) ioctl$EXT4_IOC_ALLOC_DA_BLKS(r0, 0x660c) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000380)="0c4f4d16cf2f3a2dd8a5046790a60c91e487dc9ca281434dbc169c6555a654da5e42c953490634b417ec9535653162fc5730d4c8dab3e136550ed7d31fa8d7094afd6e5154349155e6ef7e5fb08d79c283188a3f28548ab4366e6863ba5561aedbd1ee3f9a2c5646e4a9c2806b231528bca7ee2134e39966c40bcb1371a7e7691672a8dc9bda07175f11a9160cba3f0ddb78db3b2e184e1e9aa371691df9f49a5e3343bce4e4b8a2c80831b63d95ed57cf89982b317abf1cf8a71078d00dd5fa9151c142fa4bb765d503150f5f6f34284c7480a5091e9b246e", 0xd9) fsetxattr$trusted_overlay_nlink(r0, &(0x7f0000000240)='trusted.overlay.nlink\x00', &(0x7f0000000300)={'U+', 0x7}, 0x28, 0x3) r1 = syz_genetlink_get_family_id$tipc(&(0x7f00000000c0)='TIPC\x00') sendmsg$TIPC_CMD_SET_LINK_PRI(r0, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x40010}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)={0x68, r1, 0x400, 0x70bd2a, 0x25dfdbfd, {{}, 0x0, 0x4108, 0x0, {0x4c, 0x18, {0x5, @media='eth\x00'}}}, ["", ""]}, 0x68}, 0x1, 0x0, 0x0, 0x80d0}, 0x15) syz_open_procfs(0x0, 0x0) r2 = syz_open_procfs(0x0, &(0x7f00000006c0)='Net/3\x97OOT\x15\x00\xb6\xcf@e\xd3r\x82\x9fc') ioctl$VIDIOC_PREPARE_BUF(r2, 0xc058565d, &(0x7f00000005c0)={0x0, 0xb, 0x4, 0x0, {0x0, 0x7530}, {0x0, 0x2, 0x81, 0x10, 0x24, 0x6, "cf676f53"}, 0x80, 0x5, @offset=0x9, 0x4}) mq_timedsend(r2, &(0x7f0000000480)="c1cc3d2c05c16add6c964974e00652617b35c74bd5a620d3170df3c2f134d5beb838b0f00c6ca198401126d02772777a96ead8602a94c5450ea4e5c8b02fc6e876ee2383fc4faa682ed6a91a53a08a1fdd9839c170a6f81ede814c769cf15c688c8514b5f4f1dc0a50019813ce4459df629cd480519073a5f929cd5e59d0058ea64475a46e924294d5ef1b4b158e59d9c923a0", 0x93, 0x4, &(0x7f0000000540)={0x0, 0x989680}) getsockopt$inet_mreqn(r2, 0x0, 0x20, &(0x7f0000000280)={@initdev, @empty}, &(0x7f0000000340)=0xc) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) socket$inet6_sctp(0xa, 0x1, 0x84) [ 198.059827] FAULT_INJECTION: forcing a failure. [ 198.059827] name failslab, interval 1, probability 0, space 0, times 0 [ 198.092296] CPU: 0 PID: 13454 Comm: syz-executor.0 Not tainted 4.14.151 #0 [ 198.099486] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 07:06:33 executing program 4: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0xca00, 0x7, 0x0, 0x0, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, @perf_config_ext={0x80, 0xffff000000000003}, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xfffffffffffffffc, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, 0x0) r1 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) ioctl$VIDIOC_QUERYCAP(r1, 0x80685600, &(0x7f0000000040)) syz_open_dev$mouse(0x0, 0x0, 0x0) r2 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/qat_adf_ctl\x00', 0x4080, 0x0) setsockopt$RDS_CANCEL_SENT_TO(r2, 0x114, 0x1, &(0x7f0000000200)={0x2, 0x4e23, @local}, 0x10) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f00000000c0)) [ 198.108899] Call Trace: [ 198.111508] dump_stack+0x138/0x197 [ 198.115157] should_fail.cold+0x10f/0x159 [ 198.119324] should_failslab+0xdb/0x130 [ 198.123405] __kmalloc+0x2f0/0x7a0 [ 198.126959] ? check_preemption_disabled+0x3c/0x250 [ 198.131972] ? ext4_find_extent+0x709/0x960 [ 198.131983] ext4_find_extent+0x709/0x960 [ 198.131994] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 198.132005] ext4_ext_map_blocks+0x1a3/0x4fa0 [ 198.132016] ? save_trace+0x290/0x290 07:06:33 executing program 2: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) syz_mount_image$ceph(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x8000, 0x7, &(0x7f0000002500)=[{&(0x7f0000000140)="ea75e85951d17ef5bf7f3b43050000007578258df01dbf4063238e6a3ca9ca58cb6846f167ae62e9e4cfa1a2edb51d66d30c8e4e8d88dc745ece32a127c6ad2257de80b6474616d6f7384748b483be8c6f639a94bb2353f172c4207da045f2cd2a2a5cae107da31b9cc561f553bfa51a", 0x70, 0x8}, {&(0x7f00000001c0)="956567c39c6d8911e776620a971a370a543ec5981480e06787479fc41a71d543b2234835f976f2f1037e731eb282f15033d6d93b0598229105fa491964ebc8a0543cf4dbe5015f2d2d0629fa963037eaa81357487fbf94f7fbb37cfedcc21e81cdce5fb1", 0x64, 0xf000000000000000}, {&(0x7f0000000340)="0db98d0c6c3dcbf964e4115c2e289920f360d5b5b4090dab616ac46081ea46f01eed4af5ad5b0d716c8c32bbbf9fd2fa923aa0f00db7a284411bc56de4d2a537c05c7ac9f129490c08d7a083f11854cb38183c5787aac1a1dbfb1ce37dbcc4b3b5d0f062218c7f9eadacc1191449d41951f2569584a0f017b3a2b39e6f6996be1c85b01885fd626ea50492b08cebcf23304a6a59d497dc2f0722329e29d81883e5b31389e052117fe617201d07a081061a97c89b885a2abd2cfa5b24892fb33b5f1e62e1d6847f", 0xc7, 0x800000401}, {&(0x7f0000000240)="599b0bf80526b63c562b1f2477e135ab2c233009310af2e43f9fbf1ef4270b235d174887f76e33074fee95891c8488d11c48846d8721e4af810088b51e5f8dc9e809cdf1b39b40813e0e7126e1623f70b51a0fd911880a894426938c2243fe4199c3dcf2822d89f02a0515ca2a0059ab80", 0x71, 0x2}, {&(0x7f0000000440)="f8013b6e5aab64e6ba113c9699864e1c076ab7974d569ae09c44b8c4e6ee63b58f46a162cb608904d27218715e8e31180e9821a972651b530f117291d8345b3814291bd82c608656fe00a83f83c1a72dc7706dd8a2f49a310c15190bfbc24cfa95db2ec1edb760f5f74382462b0819bfa13df6a1d34fe697dc11d010e43ddee94a9c5df6b84552072dd1e3825f77ca72921bac93722a24008df5616cee59e65b57c22dd13084149940918af3a59e9404ccb501cab60e5f15789cdce19c774f9b8f968e59a48d5acb833f90b966fe14d5b3ff73a767a150ddfdbfe308f74cbdd28638588b8acd2ae0c4f20febbe12e838b64a508d23527be9e9ad1b247141c180ebde8214a6ec1fda794fd4b78b07429d2a2a2c38fcff72729f471ea8d3657fb20118c7e6bfe6768e4172fa6dcef39ac51f53a6224d1151a7f11c67c5cc6cff9da54153e1494460ad8daf017f487bb89c53d996ffaad19747b378c99a68ccceb00568f35ff1f6bfd249486da0b5bd6327f5b1beac7db16a16c6e8a5a3d2aaa6c66b63570aeba868378933a754b0d554928bfd3acd5f4f036f8cdeea6880c2e56f7725cb387f424d544af74f3603ca89ed7d8a6056a94808fa4d541b6b46b71e7a1cedd2096a371479ad4138643bc7347b96eabb178957c9b9eae621673ee5c30557eac38d4ec412a97908b8e82fad8814fea65cd06cc0795703f4fb40f5b1f727d7766944b52e76d80032351293a549106f80679e982ebd3b23fdbc5cd96fb6c39db3e04b9789c95b7c6d39d14414e6bdc0723fa848fe562ca9504c0bf6d97ddeebb3e0c8664c53eb6bcd0feaf2565c2aa3ba0b7ee2a2f0e02293c25bfb9fcbb19e8e47f1ab0fb75259ef0e6320b6e9d51abcff40b58cd75b17020d548f1872f36e96148a0d06b53d89de59043204c3b55f8d0cc97006fb7748fcc57f890c0d69bba6d5672ee6a6016f351d6e2a27f0ade0e4fd6d2c19735a6a64034af950c41fc8ac4b4e0d0a3d003dcf9a46735f76c0b8128ea65850cef18b7d511ca219b07f18f4e1745ddc5ff78bcd6881de08585620037d36b872c4a09fdb75a6421508e0d62b788c54815abae88ee7a1df89b5c3dcd9411f531443ef74dc13d189e241d8a7fdda0b2cf3fa417bb4b7225aed456ac3115a48ece766c71a5f75301d02e76df618feca7673df1a1eb83b0a1ede1134293b41041be1353d9886f1812bb4d7480825cfb16a017d692ff74a4e623e3df6dccbc744f11d81579a7898e2c89f69eaeee2a3bf272c1b18ce1170dc4729de924714b9629c5fada759f0a3267032a168f7b26e550ed0b489264a7b0efa41a9604252a68039c52e597a39cf863bf8d7f516d343ef63ececbca3d705b8085d78bad18759c8ff782104e8e3736df11a26e1230f1d794ec088582432d102f1f6ac3b7c53c141c3604cebd67635e844c478cf7bec3cfd7805c70f97ee127971cc02866a378222d55d7ba70e03f92e58fd04d1b1afe2ab56688df030ac414f98be5ed7c362156463f5ace4289d1bf5081df29c54869fa80cff91e0d0d248a4dea616e51353e86a8aefcae20e19f931bc1506e9aa9280f63392ba366fcd98852674c546c970c468e0283da067ec5423be1901daa9bc175ecdbb79fdc4d349dcf7af5d2a5d2d8aebbe7d58c4681a1d67b5c508c94527dc1faef04a187469da967ccd5d4523023150f8ffb1d71ce9a576aec6f247ef8a44518ff1188749899def3d24cef2b11614f97b3a4803bfb02b94d17a50e651e51267cfb5b5aae242e8a671b4d0856e30d88e804938d154eab25a0efe5f68e252baef276a62bc21f4e45f10347258b3795a6817eb5f31739a390cca36ebcb33b585902d135db976a84a6d8dcfbebce43f553afc2559186e82c9e369493d76cba4d67241c2ed38b1901ffafe607413a0d2bc571bd1a030bb46798abae686ed108ce03dece4a9b270f6bad8ba72d9e2c2ecb2d30a77812f13839f2167684d6c43a37bf05bdb69b9541e0eae100383c4ec030404453483945d3a0467dede1c53435bf7015e9d97777da4253b45c6f93105862cf801e42de29f66ea064a5315656bf2b49b527668e1cf663708b4ebbccf12b6ce356f1148b3ffe16c658fa60fbcd455d53c26965316142f8c73beaf0c97fa0a47aec67d5c0f9b866859d8121cc738dd86e75e34d35e1cd0f8ad9cb75fa2ba89d2f3b555c4ddf5f07a1f58e829892cf768be5503a803097953416942f0bc538c7e85094e17469dea153b88b3b1e2cb02b9a4fb857e7e4b3f84bbda1585bac98de69ad38daec3aee77963be7630efffdcd0345de2e1371fcebfea57bc6df12493aeb59b678cb7b66a2413d5be438a92a597093b9868b2dc55d238e0c63f10cf5808dfe508c09156701317cc02a0d84b8bac1103d7145366a5dfe20df5c430a62bc682f0287fa69076d5e1514cafa4c4857d5f8abb1a9db037eb117b1099dfd62f5a95c38f16d0cd238af521b6c6658b29149cf1e90f0d8749be6314ecd06dea5f4094b97f5bbb3032964138c67952bfd72af69e1095d178761de52636583fca692d7ee6100bef48c247a6748fff4e2dffdb61e5cedd0d6692e0b74426dadb9f41f1e3f99d0767b3350d24bcba2941a265f44d3abef9fa89859086ef58392012a4903aee3356d368fe9a93b9397d670c847d0d053549cfb793468a9731cee3685944e720bd1454d259da8a204288a0a7aa23dcc9f821026000d8b2e3947b28cae8e0942e95b1d634a5383c811e3c0bb5a6cb49a2d3407222756a1178401540aa07e2c8e2a307d09ae03099c994e2d5bc8669b2669adbf09c4b4e8f532a2f7290765987d60bea2e2150595379c97cdd82521fb6712d486beedcd19af9a47bb269902d5ad0747d6c488bb09c42313f13c9e2609f3151f6d95f556edc0832f87ed8eccf2bdaccf33437637d68383c9cc3317f047ff54ff1db567fcafc91305e1204fc354a732d81dcefd2f8705d54e2af30757d177a4cb31b9740a8ccd4c951244cea14baca97ce9480f2de69990b2071fd988bef6ec19273a361ab374b19db38f1de783363c9123fc032b29e72c1bafadbd11899ebc9c01ece259b43cd10ffdb2d252f2c2ae03fbeed763b60659476462b848cdc19ac14fc16b960135106d906999b419ed75196ef599cd82987a830151c7a3c3fabc3db279e5aca8755378607686b3c041af252915bc15f244e97b5c118288094203ebdc783f4883919b9d94c368b3105be31bf9fdc01f49e9d997dc63d16a13131e4c8e311276ebe920661e63f8f6451c8b1f7874f3437bf28b8d6bc04554b5ae6f46aa46c2374f878d21b72f28c15c80f0b1fbffee174ebb35796ea3b19982634823b0826ad360d5d2ec1cd0f71093696d508e44e2e82e1924d1b11fc76e0b3cb6068470b9dd7049ff24bebda2b1772ff7ab1da35eb071fc64a670937cc405d0140d779d2a1eaf7c44d9c5a3cccb51137f2307353db4a57fdf652a14021726aeb24dac8437dfd2ab99fb488ebbbbe7a10707f7dfab14d1a4cce6ee58a16a946d421214e82a026705a568c986f61625cfdbf18ae8079e4eac9ded72db18c4705fd3bf5b392347342b9cabf7fa9f9bcae2ad115f26cbc30095856c58ff301d4d4d8fea4e21547136cdfb3da28ce20df83d539b562c441c0375374db1e6ca942cbeca3a194d29ec48aea572a66335ddd2266d1228bf4c576eec1f4af9ec4114286f558770d9bd07c6e902f09007a6973689ab1ee8394d64a793e9c428aaf6f103b878dae6739bc0a8a138accf4fdcca1ba7fbe95a0aa88050f413bb57c6adfaa0cc2f155075affe79950255c6c056c17b38a831dc64ccb11474ca7fccdd0b9e42f5dea0ec8b4fba71e204f1b9e8b55dc3d01bab95bba22e79736da10b12176ab2d3ba2e323dea6e8983328065fc4024a0d10e760e181353f99311551676a87fb4d25bddee7d41bbdb1fbc9b90552e0b972e63cfae229cd95d9d62f10eb0435d5d65b3ece2babcdcf810f315c5e2b34a0ac256eeefd7eee709b150fc9f6a20b5f8a47b16054bc8ec9166fd97c448aa9ae5cbe3e35fd5532c313219f19438eb3f2fe612498a67f7cfe90a89b41e529f61700b8b4f8530f906e19070df647171b9ba54d639500ab0295dc80a083811a13c1d8ec7f14fe9c707b3342e947d04a492688afea6301c31f817de25caea80980a7ba18e2b054e9cfeb9bf0e60f98859d924b35c68b437482d86e760e740b3ed9ef7a0565cf5cf636dd3a6c3b6117146b08a79d6a01c4f89127868981c5ebdc39e9aaa7ec7d190ee5c6afe39b313d2b045f4b4ee76033836b2d04e6ce6f8d341f98323f563131c21f72bba84e6afa27c54ba497c1053e6027f84f788ab8fba6c2b0e547dbbcc9dcf8e81c507e16e674d47b74cd46bd709da55ecbf1a1a8385805675d4a605fe0cda07993f447062dd0d2aeab98b3f1c732c9747cdde11fc23c4b621cd076160562b08557e66d2b34e7fecaefff5c960d9a22fc4dcde135c467f69f71de02c559426b3ae8515bbef02a5cdfad7c8e13e79d61fb658b6d507b2d276c8c59d27557c63a0e437291fb72b94b079d1390ef4c24653d7bcafae78a02f8062dfc244a201abefc160bb899237b4f147707b4cd081801c0f0c5382f5fe3b6268866330aac4dfea168c23efe30ca8746ab9bfdf4d818f67f16d5400737aa42b7eacf6baeadfe95b379abe39c3f46184ef51d4d1fe52c6a3d930ac3ecf64f03034c5f501cbf6047be2f29893cda7251efeb882bff9a70c5911c4456dddae9bfe18b5c2e283ea5dd3e90e1420812bf53538d1a284734fc8a52745cae4c590e894494e892961b95c7a24aaceecc23f81121be5b9ea2c2d33231958843cb566987abef5eed5a15fb0bbd115c96d8d8cfc780e7223e5681e70b82a9c1cda04899d8b89decb28b691960741d05a5b0df2f2026ceb0f278f5d3c5cbb6dfb4772568d04cbf510be3ffdc927e4589c042fea59e9d53909125f522af9a7cb68f39b3373d2800f61cb26a79933402da0d0879a9093ed572c934cecccf7b83c570e608b072425e8d4c51dda7049170fde5d88cd43c8eedb15baf2230d703298720efdb193692535becaa151c0aa5aace6cda016258aba1b76015155087ce48b1ef7418135cfc97d805440e80367474b8769409df480a2f73bd62abaad2e1255f50d03c31588692e44c590a536e45fac2c6a8741f592edc56eed1f7428e161bd565ea73e6a8f7689917687fbbbb4e81149f2a402ae4fc78351b5ef8ba5ad7afb304cf31de3724ca47821f2422609f76f0c8fb701a48845150dd79bd328ddd52fe2467ec2a923df645c7f7dba5591cb1230ae85f2332c04c1ce8187e22d9e04c27bf85a9f4450f7c5656ea67615d98ecd8757f640f16eaa48e0a0350cb74f9c0702b8936a1169698a7e821fb09da12ee15c0e3a053b80f55ee7d987542e57f5c6ae46fdb85db6a8a12fb7bcae02cee0fe220446b2a2eae9a0828f5c216dcfa6ae2fecbbdb888e012d4c20d6313f2ef9087b01f3fa059089794cddd5d04ff4c49b5bfad3e4c9733da9b216a61405d4b8c08fb9017557f4ea4e003318675910150bdafbdf87823a68d2d72ad313f01be40a4123f5cc5d5947f9399b2d8444cd893d8f17913ff0c7058a65e5a03d5f9eab8f2bb178f8431c53ef28fb61bae74d5fb243d2209fa5fdd6de4e7f90f85d5d88a40cb4860fe4c509895e789ca0dd7efa4f4ee6052e7ce221e3a77fd148adfea3de200975570752c32baacd8d273e30759b978bd193dc8b3d7561a731cb04091fe65200ab8", 0x1000, 0x3}, {&(0x7f0000001440)="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", 0x1000, 0x8}, {&(0x7f0000002440)="a48a4fe7be4d453d097be3595dace7241a84d1547913c3a2f6e43399807e5039e6181d8fb9e51a9dd7b60b7ca55482e2a7f43e8ee66865aa4ac281c050600fa2d355dcf081a1d36d32c5920d9c1de24ddb1085819833b85e8455deed0d96869bd56c1cf1cb2fa3571609c0b78488229570f878c1629fc7aef641a88a72ae2629d555f02f6fc24c95bbcff4f35975eafcd93cf555", 0x94, 0x5}], 0x400, &(0x7f00000025c0)='btrfs\x00') mlock2(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000880)='oom_score\x00') setxattr$security_capability(&(0x7f0000002740)='./file0\x00', &(0x7f0000002780)='security.capability\x00', &(0x7f00000027c0)=@v1={0x1000000, [{0x8, 0x200}]}, 0xc, 0x2) preadv(r0, &(0x7f00000017c0), 0x199, 0x0) shmget(0x2, 0x1000, 0x0, &(0x7f0000ffe000/0x1000)=nil) r1 = syz_open_procfs(0x0, &(0x7f00000006c0)='Net/3\x97OOT\x15\x00\xb6\xcf@e\xd3r\x82\x9fc') ioctl$VIDIOC_PREPARE_BUF(r1, 0xc058565d, &(0x7f00000005c0)={0x0, 0xb, 0x4, 0x0, {0x0, 0x7530}, {0x0, 0x2, 0x81, 0x10, 0x24, 0x6, "cf676f53"}, 0x80, 0x5, @offset=0x9, 0x4}) mq_timedsend(r1, &(0x7f0000000480)="c1cc3d2c05c16add6c964974e00652617b35c74bd5a620d3170df3c2f134d5beb838b0f00c6ca198401126d02772777a96ead8602a94c5450ea4e5c8b02fc6e876ee2383fc4faa682ed6a91a53a08a1fdd9839c170a6f81ede814c769cf15c688c8514b5f4f1dc0a50019813ce4459df629cd480519073a5f929cd5e59d0058ea64475a46e924294d5ef1b4b158e59d9c923a0", 0x93, 0x4, &(0x7f0000000540)={0x0, 0x989680}) r2 = openat$cgroup_ro(r1, &(0x7f0000002700)='memory.current\x00', 0x0, 0x0) ioctl$UI_BEGIN_FF_UPLOAD(r2, 0xc06855c8, &(0x7f0000000640)={0x10, 0xd17, {0x52, 0x2db, 0x7f, {0x200}, {0x40, 0x4}, @const={0x7ff, {0x8, 0xba, 0x1, 0x9150}}}, {0xa5e136065a937c32, 0x5, 0xfff, {0x4, 0x3}, {0x7ff, 0x1}, @ramp={0x840, 0x80, {0x100, 0x4c2, 0x800, 0x3}}}}) getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER(0xffffffffffffffff, 0x84, 0x7b, &(0x7f0000002600)={0x0, 0x40b0d131}, &(0x7f0000002640)=0x8) getsockopt$inet_sctp6_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f0000002680)={0x20, 0xb313, 0x0, 0x73f0, 0x3f, 0x40, 0xfffffff7, 0xfff, r3}, &(0x7f00000026c0)=0x20) 07:06:33 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000", 0x36, 0x10000}], 0x1, 0x0) [ 198.132030] ? ext4_find_delalloc_cluster+0xb0/0xb0 [ 198.132037] ? __lock_is_held+0xb6/0x140 [ 198.132052] ? lock_acquire+0x16f/0x430 [ 198.169816] ? ext4_map_blocks+0x829/0x17c0 [ 198.174193] ext4_map_blocks+0x881/0x17c0 [ 198.179332] ? ext4_issue_zeroout+0x160/0x160 [ 198.183848] ? __brelse+0x50/0x60 [ 198.187327] ext4_getblk+0xac/0x450 [ 198.190977] ? ext4_iomap_begin+0x8a0/0x8a0 [ 198.195312] ? ext4_free_inode+0x1210/0x1210 [ 198.199746] ext4_bread+0x6e/0x1a0 [ 198.203301] ? ext4_getblk+0x450/0x450 [ 198.203321] ext4_append+0x14b/0x360 [ 198.203338] ext4_mkdir+0x531/0xc20 [ 198.210952] ? ext4_init_dot_dotdot+0x4c0/0x4c0 [ 198.210966] ? security_inode_mkdir+0xd0/0x110 [ 198.210978] vfs_mkdir+0x3ca/0x610 [ 198.210991] SyS_mkdir+0x1b7/0x200 [ 198.211002] ? SyS_mkdirat+0x210/0x210 [ 198.211012] ? do_syscall_64+0x53/0x640 [ 198.211023] ? SyS_mkdirat+0x210/0x210 [ 198.211037] do_syscall_64+0x1e8/0x640 [ 198.246896] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 198.251804] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 198.257013] RIP: 0033:0x459637 [ 198.260317] RSP: 002b:00007f46eab45a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 198.268042] RAX: ffffffffffffffda RBX: 0000000020000068 RCX: 0000000000459637 [ 198.275319] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 0000000020000100 [ 198.282600] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 198.290171] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 198.297449] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 07:06:33 executing program 0 (fault-call:0 fault-nth:45): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x0, 0x989680}) socket$inet6_sctp(0xa, 0x0, 0x84) 07:06:33 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000", 0x36, 0x10000}], 0x1, 0x0) 07:06:33 executing program 4: sched_setscheduler(0x0, 0x5, 0x0) r0 = getpid() perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x4, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000300), 0x1}, 0x0, 0x0, 0x0, 0x0, 0x3}, r0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = socket$pptp(0x18, 0x1, 0x2) openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000340)='/dev/ubi_ctrl\x00', 0x204800, 0x0) r2 = syz_open_procfs(0x0, &(0x7f0000000880)='oom_score\x00') preadv(r2, &(0x7f00000017c0), 0x199, 0x0) ioctl$UI_BEGIN_FF_UPLOAD(r2, 0xc06855c8, &(0x7f0000000640)={0x10, 0xd17, {0x52, 0x2db, 0x7f, {0x200}, {0x40, 0x4}, @const={0x7ff, {0x8, 0xba, 0x1, 0x9150}}}, {0xa5e136065a937c32, 0x17, 0xfff, {0x4, 0x3}, {0x7, 0x1}, @ramp={0x800, 0x80, {0x100, 0x4c2, 0x800, 0x3}}}}) ioctl$SECCOMP_IOCTL_NOTIF_RECV(r2, 0xc0502100, &(0x7f0000000100)={0x0, 0x0}) ptrace$getregset(0x4204, r3, 0x2, &(0x7f0000000200)={&(0x7f0000000180)=""/73, 0x49}) ioctl$sock_inet_SIOCSIFPFLAGS(r1, 0x8934, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000880)='oom_score\x00') preadv(r4, &(0x7f00000017c0), 0x199, 0x0) ioctl$UI_BEGIN_FF_UPLOAD(r4, 0xc06855c8, &(0x7f0000000640)={0x10, 0xd17, {0x52, 0x2db, 0x7f, {0x200}, {0x40, 0x4}, @const={0x7ff, {0x8, 0xba, 0x1, 0x9150}}}, {0xa5e136065a937c32, 0x5, 0xfff, {0x4, 0x3}, {0x7, 0x1}, @ramp={0x800, 0x80, {0x100, 0x4c2, 0x800, 0x3}}}}) r5 = syz_open_procfs(0x0, &(0x7f0000000880)='oom_score\x00') preadv(r5, &(0x7f00000017c0), 0x199, 0x0) ioctl$UI_BEGIN_FF_UPLOAD(r5, 0xc06855c8, &(0x7f0000000640)={0x10, 0xd17, {0x52, 0x2db, 0x7f, {0x200}, {0x40, 0x4}, @const={0x7ff, {0x8, 0xba, 0x1, 0x9150}}}, {0xa5e136065a937c32, 0x5, 0xfff, {0x4, 0x3}, {0x7, 0x1}, @ramp={0x800, 0x80, {0x100, 0x4c2, 0x800, 0x3}}}}) r6 = socket$inet6_sctp(0xa, 0x1, 0x84) r7 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r7, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [0x0]}, &(0x7f000095dffc)=0x8) getsockopt$inet_sctp6_SCTP_ASSOCINFO(r6, 0x84, 0x1, &(0x7f0000000000)={r8}, &(0x7f0000000040)=0x14) getsockopt$inet_sctp_SCTP_LOCAL_AUTH_CHUNKS(r5, 0x84, 0x1b, &(0x7f0000000380)={r8, 0x24, "a4dc5f5108ae82409ee7a6784fdd6fbe6d9758479a268c2e8449466be67ae20f0fd0111a"}, &(0x7f00000003c0)=0x2c) getsockopt$inet_sctp6_SCTP_CONTEXT(r4, 0x84, 0x11, &(0x7f0000000400)={r9, 0x8}, &(0x7f0000000440)=0x8) r10 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) ioctl$VIDIOC_QUERYCAP(r10, 0x80685600, &(0x7f0000000040)) syz_open_dev$mouse(0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) r11 = openat$selinux_avc_hash_stats(0xffffffffffffff9c, &(0x7f0000000240)='/selinux/avc/hash_stats\x00', 0x0, 0x0) getsockopt$inet_sctp_SCTP_AUTO_ASCONF(r11, 0x84, 0x1e, &(0x7f0000000280), &(0x7f00000002c0)=0x4) ioctl$KVM_CREATE_IRQCHIP(r10, 0xae60) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f00000000c0)) [ 198.439123] FAULT_INJECTION: forcing a failure. [ 198.439123] name failslab, interval 1, probability 0, space 0, times 0 [ 198.465332] CPU: 0 PID: 13496 Comm: syz-executor.0 Not tainted 4.14.151 #0 [ 198.472400] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 198.481762] Call Trace: [ 198.484371] dump_stack+0x138/0x197 [ 198.488107] should_fail.cold+0x10f/0x159 [ 198.492269] should_failslab+0xdb/0x130 [ 198.496269] kmem_cache_alloc+0x2d7/0x780 [ 198.500435] ? rcu_read_lock_sched_held+0x110/0x130 [ 198.505464] ? __mark_inode_dirty+0x2b7/0x1040 [ 198.510039] ext4_mb_new_blocks+0x509/0x3990 [ 198.514434] ? ext4_find_extent+0x709/0x960 [ 198.518745] ext4_ext_map_blocks+0x26cd/0x4fa0 [ 198.523327] ? ext4_find_delalloc_cluster+0xb0/0xb0 [ 198.528339] ? __lock_is_held+0xb6/0x140 [ 198.532387] ? lock_acquire+0x16f/0x430 [ 198.536356] ext4_map_blocks+0x881/0x17c0 [ 198.540507] ? ext4_issue_zeroout+0x160/0x160 [ 198.545009] ? __brelse+0x50/0x60 [ 198.548465] ext4_getblk+0xac/0x450 [ 198.552082] ? ext4_iomap_begin+0x8a0/0x8a0 [ 198.556386] ? ext4_free_inode+0x1210/0x1210 [ 198.560787] ext4_bread+0x6e/0x1a0 [ 198.564311] ? ext4_getblk+0x450/0x450 [ 198.568184] ext4_append+0x14b/0x360 [ 198.571883] ext4_mkdir+0x531/0xc20 [ 198.575496] ? ext4_init_dot_dotdot+0x4c0/0x4c0 [ 198.580152] ? security_inode_mkdir+0xd0/0x110 [ 198.584718] vfs_mkdir+0x3ca/0x610 [ 198.588329] SyS_mkdir+0x1b7/0x200 [ 198.591851] ? SyS_mkdirat+0x210/0x210 [ 198.595722] ? do_syscall_64+0x53/0x640 [ 198.599684] ? SyS_mkdirat+0x210/0x210 [ 198.603563] do_syscall_64+0x1e8/0x640 [ 198.607430] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 198.612288] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 198.620162] RIP: 0033:0x459637 [ 198.623337] RSP: 002b:00007f46eab45a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 198.631032] RAX: ffffffffffffffda RBX: 0000000020000068 RCX: 0000000000459637 07:06:33 executing program 2: r0 = msgget$private(0x0, 0x200) msgctl$MSG_INFO(r0, 0xc, &(0x7f0000000140)=""/218) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 07:06:33 executing program 1: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000080)='/dev/full\x00', 0x200, 0x0) ioctl$DRM_IOCTL_FREE_BUFS(r0, 0x4010641a, &(0x7f0000000140)={0x6, &(0x7f00000000c0)=[0x1, 0x3, 0x2, 0x80000001, 0x1, 0xffffffff]}) socket$inet6_sctp(0xa, 0x0, 0x84) 07:06:33 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000", 0x36, 0x10000}], 0x1, 0x0) [ 198.638286] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 0000000020000100 [ 198.645536] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 198.652800] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 198.660051] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 07:06:33 executing program 0 (fault-call:0 fault-nth:46): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x0, 0x989680}) socket$inet6_sctp(0xa, 0x0, 0x84) 07:06:33 executing program 4: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, 0x0) r1 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) ioctl$VIDIOC_QUERYCAP(r1, 0x80685600, &(0x7f0000000040)) syz_open_dev$mouse(0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f00000000c0)) setsockopt$inet_sctp6_SCTP_RECVNXTINFO(0xffffffffffffffff, 0x84, 0x21, &(0x7f0000000100)=0x10000, 0x4) [ 198.803442] FAULT_INJECTION: forcing a failure. [ 198.803442] name failslab, interval 1, probability 0, space 0, times 0 [ 198.867923] CPU: 0 PID: 13525 Comm: syz-executor.0 Not tainted 4.14.151 #0 [ 198.875004] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 198.884357] Call Trace: [ 198.886942] dump_stack+0x138/0x197 [ 198.890647] should_fail.cold+0x10f/0x159 [ 198.894786] should_failslab+0xdb/0x130 [ 198.899179] kmem_cache_alloc+0x2d7/0x780 [ 198.903319] ? rcu_read_lock_sched_held+0x110/0x130 [ 198.908320] ? __mark_inode_dirty+0x2b7/0x1040 [ 198.912900] ext4_mb_new_blocks+0x509/0x3990 [ 198.917400] ? ext4_find_extent+0x709/0x960 [ 198.921724] ext4_ext_map_blocks+0x26cd/0x4fa0 [ 198.926313] ? ext4_find_delalloc_cluster+0xb0/0xb0 [ 198.931337] ? __lock_is_held+0xb6/0x140 [ 198.935384] ? lock_acquire+0x16f/0x430 [ 198.939348] ext4_map_blocks+0x881/0x17c0 [ 198.943490] ? ext4_issue_zeroout+0x160/0x160 [ 198.948008] ? __brelse+0x50/0x60 [ 198.951463] ext4_getblk+0xac/0x450 [ 198.955087] ? ext4_iomap_begin+0x8a0/0x8a0 [ 198.959407] ? ext4_free_inode+0x1210/0x1210 [ 198.963844] ext4_bread+0x6e/0x1a0 [ 198.967369] ? ext4_getblk+0x450/0x450 [ 198.971261] ext4_append+0x14b/0x360 [ 198.974970] ext4_mkdir+0x531/0xc20 [ 198.978585] ? ext4_init_dot_dotdot+0x4c0/0x4c0 [ 198.983251] ? security_inode_mkdir+0xd0/0x110 [ 198.987831] vfs_mkdir+0x3ca/0x610 [ 198.991360] SyS_mkdir+0x1b7/0x200 [ 198.994888] ? SyS_mkdirat+0x210/0x210 [ 198.998762] ? do_syscall_64+0x53/0x640 [ 199.002728] ? SyS_mkdirat+0x210/0x210 [ 199.006611] do_syscall_64+0x1e8/0x640 [ 199.010483] ? trace_hardirqs_off_thunk+0x1a/0x1c 07:06:34 executing program 5: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) syz_open_procfs(0x0, 0x0) fstat(0xffffffffffffffff, &(0x7f0000000800)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) syz_mount_image$hfs(&(0x7f0000000080)='hfs\x00', &(0x7f00000000c0)='./file0\x00', 0xb38, 0x9, &(0x7f0000000700)=[{&(0x7f0000000140)="38a0ff1a253a69e3497c842c077ada915aca3e8a3fe54deda30767cfd880a9be2e8576d144eea6455b6c07ca6f06d19688a1b62964ce930b5c36b8b7638528aadb71a787834988b1ba854da471e5286d18a5f5c405385fe621f9a09ad961f7e6d663395d6621d6ef42d7c8b8437a332fde0c906dd6c8c7e55ffa9e9215ff9bc13625437ea8233c91dcc1fc0af2", 0x8d}, {&(0x7f0000000200)="c88d033ea4dfa3b3d76345ec84595b0633fb963155909589c1d30d8b5b541f6aa33cf5851ef7b4fb70516c8a4bb1980dcca813ac92b13d0174130036c7976e8132e8d1e5db30db9ed1dce4e19d86db15c5c9dc7a74be92a581dfb59d99d61e497723fdff71d7ee1071b6d08f4b5a5bcab45a87786ee5c48324376e69a1b76a3436854abcadfc16a774419219", 0x8c, 0x6}, {&(0x7f0000000340)="38381efb4c8705ea82f0550bfe064203afd2061f559c8d914575ffc7a59fc28ac718141a591acd849c145fe8654f52ca10bbe36ec556b5c95ed2d6a5ce3d65d41f4c6c5bf49a0c5a8fc57d306d7c4487fa5eb99164f2281c20af8b950ab15ba6bded22e9d85db4fc304ba30e16426cad39f22ae6f403713ae4e45a4d94081542c7079ccd2dc3abf59b0f6268d329108680bf3fd21d29012d10482a01d8dd63171ee8759e323807464148b41c7997c63708853c75f2662d61b9d703845d4d20d9e27d95d62b75ffb0a31e62a0d6f5e1fd1407ff10", 0xd4}, {&(0x7f0000000440)="67ed4914d60aded00850080bfbaea6c3b8ce937052aa274b60a9a7fc32b36c1447b5b3f1ab3e8f9f5dccbcb85b78c3ff6aed842c23c928fa75dceae93ea277d01b604c06dd65bd4d73c1b4154a0fe14bd294ea5299c5154a95221bd65bbd3c137a0ea0b835138c400f7540314723281160e5", 0x72, 0x2}, {&(0x7f00000004c0)="347443ca88153c4f745b2289e2676684006ac3bfa5c166b5fad8446702f4a6da4d5e865fd8a1f22b9260cb1e67be3fce58da2bdf538ada1f52cc68", 0x3b, 0xb6d}, {&(0x7f0000000500)="ff49c0cff400ffc85887f716985d310b1cd898d7a0a54877198708b332d3c97c668b32c59dd35814c9824668958a2d0f5e93904ceb505f7ec22049ad8fbaec35fd7a69d3d18b1353a59d88d21aafb80b870add0a2a3e99f50293cc79a1759547603fd08576a71de55b654cd4bca832f94adb96799d85d6876e6b3e2ea8a099f8fe9f152fb661a79787baa0f6bba087d8799519928449054f3cac5de47784a4966a3d1687ef71cb07aad9ceba5a8a3ffc75a648b094ea75e30fa3e883b7d24a7f28d31b7a2088c38b952200c3", 0xcc, 0x5}, {&(0x7f0000000600)="56b75fd15ce886bc208efc0935a4890b55bc620c80170efff41ae32373378a587ae42adcda4b2d04250ea489b1292fa95cb8a08848d11b9cd0b4", 0x3a, 0x40}, {&(0x7f0000000640)="fa5e82e9ebe93eb47de197b2e349334762369a036065682e03142075a175314a0c4a3eb0764adad06f116aab2799622e17661a904d0c598556fb98664d92e4580cd29277bbb2d447c0003589e2ba6e425d826aa1c50480e7b6ddfb7cb9674caeafa222d157b2011e6109fdce38e39a7767531d4496b32e5944b75b", 0x7b, 0x872}, {&(0x7f00000006c0)='C', 0x1, 0x100000000}], 0x18, &(0x7f0000000880)={[{@session={'session', 0x3d, 0x1afb8785}}, {@dir_umask={'dir_umask', 0x3d, 0x20}}, {@gid={'gid', 0x3d, r0}}, {@type={'type', 0x3d, "7e92c09f"}}, {@dir_umask={'dir_umask', 0x3d, 0x1}}, {@file_umask={'file_umask', 0x3d, 0x5}}, {@iocharset={'iocharset', 0x3d, 'cp862'}}, {@dir_umask={'dir_umask', 0x3d, 0x2}}], [{@hash='hash'}]}) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) socket$inet6_sctp(0xa, 0x1, 0x84) 07:06:34 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000", 0x3f, 0x10000}], 0x1, 0x0) [ 199.015316] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 199.020572] RIP: 0033:0x459637 [ 199.023750] RSP: 002b:00007f46eab45a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 199.031443] RAX: ffffffffffffffda RBX: 0000000020000068 RCX: 0000000000459637 [ 199.038696] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 0000000020000100 [ 199.045946] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a [ 199.053325] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 199.060592] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 07:06:34 executing program 4: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, 0x0) r1 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) ioctl$VIDIOC_QUERYCAP(r1, 0x80685600, &(0x7f0000000040)) syz_open_dev$mouse(0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f00000000c0)) 07:06:34 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000", 0x3f, 0x10000}], 0x1, 0x0) 07:06:34 executing program 0 (fault-call:0 fault-nth:47): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x0, 0x989680}) socket$inet6_sctp(0xa, 0x0, 0x84) [ 199.277745] FAULT_INJECTION: forcing a failure. [ 199.277745] name failslab, interval 1, probability 0, space 0, times 0 [ 199.289398] CPU: 0 PID: 13570 Comm: syz-executor.0 Not tainted 4.14.151 #0 [ 199.289423] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 199.289427] Call Trace: [ 199.289445] dump_stack+0x138/0x197 [ 199.289463] should_fail.cold+0x10f/0x159 [ 199.289478] should_failslab+0xdb/0x130 [ 199.289492] kmem_cache_alloc+0x47/0x780 [ 199.289505] ? lock_downgrade+0x740/0x740 [ 199.289521] __sigqueue_alloc+0x1da/0x400 [ 199.321713] __send_signal+0x1a2/0x1280 [ 199.321735] ? lock_acquire+0x16f/0x430 [ 199.342044] send_signal+0x49/0xc0 [ 199.345614] force_sig_info+0x243/0x350 [ 199.349628] force_sig_info_fault.constprop.0+0x1c6/0x2b0 [ 199.355219] ? is_prefetch.isra.0+0x350/0x350 [ 199.359755] ? trace_raw_output_x86_exceptions+0x140/0x140 [ 199.365416] __bad_area_nosemaphore+0x1dc/0x2a0 [ 199.370118] bad_area+0x69/0x80 [ 199.373426] __do_page_fault+0x86f/0xb80 [ 199.377522] ? vmalloc_fault+0xe30/0xe30 [ 199.381707] ? page_fault+0x2f/0x50 [ 199.385374] do_page_fault+0x71/0x511 [ 199.389279] ? page_fault+0x2f/0x50 [ 199.392924] page_fault+0x45/0x50 [ 199.392935] RIP: 0033:0x453e1f [ 199.392945] RSP: 002b:00007f46eab45a88 EFLAGS: 00010283 [ 199.399575] RAX: 00007f46eab45b40 RBX: 0000000020000068 RCX: 0000000000000000 [ 199.399580] RDX: 00000000000000e0 RSI: 0000000000000000 RDI: 00007f46eab45b40 [ 199.399587] RBP: 0000000000000001 R08: 00000000000000e0 R09: 000000000000000a [ 199.399594] R10: 0000000000000075 R11: 00000000004e7280 R12: 0000000000000004 [ 199.399599] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 07:06:34 executing program 4: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1, 0x5}, 0x0, 0x0, 0x80}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, 0x0) r1 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) ioctl$VIDIOC_QUERYCAP(r1, 0x80685600, &(0x7f0000000040)) syz_open_dev$mouse(0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f00000000c0)) setsockopt$bt_BT_POWER(r1, 0x112, 0x9, &(0x7f0000000100)=0x81, 0x1) 07:06:34 executing program 2: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x2180083, 0x0) 07:06:34 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000", 0x3f, 0x10000}], 0x1, 0x0) 07:06:34 executing program 5: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0xfffffffffffffffc, 0x1, &(0x7f0000000080)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0xffd6, 0x10000}], 0x0, 0x0) syz_open_procfs(0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) socket$inet6_sctp(0xa, 0x1, 0x84) 07:06:34 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f424852", 0x44, 0x10000}], 0x1, 0x0) 07:06:34 executing program 0 (fault-call:0 fault-nth:48): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x0, 0x989680}) socket$inet6_sctp(0xa, 0x0, 0x84) 07:06:34 executing program 4: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = socket$pptp(0x18, 0x1, 0x2) pipe(&(0x7f0000000200)={0xffffffffffffffff}) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000000140)={0x0, 0x0, 0x0}, &(0x7f0000000180)=0xc) setgid(r3) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$VIDIOC_RESERVED(r1, 0x5601, 0x0) ioctl$SG_GET_PACK_ID(r1, 0x227c, &(0x7f0000000100)) ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, 0x0) r4 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) ioctl$VIDIOC_QUERYCAP(r4, 0x80685600, &(0x7f0000000040)) syz_open_dev$mouse(0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f00000000c0)) 07:06:35 executing program 2: syz_mount_image$btrfs(&(0x7f0000000000)='@\x00\x003\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0xaaaaaaaaaaaaabd, &(0x7f0000000040), 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000006c0)='Net/3\x97OOT\x15\x00\xb6\xcf@e\xd3r\x82\x9fc') ioctl$VIDIOC_PREPARE_BUF(r0, 0xc058565d, &(0x7f00000005c0)={0x0, 0xb, 0x4, 0x0, {0x0, 0x7530}, {0x0, 0x2, 0x81, 0x10, 0x24, 0x6, "cf676f53"}, 0x80, 0x5, @offset=0x9, 0x4}) openat$zero(0xffffffffffffff9c, &(0x7f0000000180)='/dev/zero\x00', 0x40000, 0x0) mq_timedsend(r0, &(0x7f0000000480)="c1cc3d2c05c16add6c964974e00652617b35c74bd5a620d3170df3c2f134d5beb838b0f00c6ca198401126d02772777a96ead8602a94c5450ea4e5c8b02fc6e876ee2383fc4faa682ed6a91a53a08a1fdd9839c170a6f81ede814c769cf15c688c8514b5f4f1dc0a50019813ce4459df629cd480519073a5f929cd5e59d0058ea64475a46e924294d5ef1b4b158e59d9c923a0", 0x93, 0x4, &(0x7f0000000540)={0x0, 0x989680}) r1 = accept4(0xffffffffffffffff, &(0x7f00000001c0)=@llc, &(0x7f0000000240)=0x80, 0x80800) pwrite64(r1, &(0x7f0000000280)="f48845f41585957f09fab965f0bb0e24f490046d9922c527066241ebd87ebf547d63b1cd4d79326a18cf728ae5348d51622cad43d50b3d252a0cef75e5e5d18b06dd8c95515a7eb555dbf728bd074ddf9e0072ddf8f412a51b30d20e33123078fa78aedeb3f4333b6150ba0a0d6b23983133d9384c90efa6d203cfc71f1d9ea3fda424c4ac323e8f268dd75d24bd44446ad89060", 0x94, 0x3) setsockopt$ax25_SO_BINDTODEVICE(r0, 0x101, 0x19, &(0x7f00000000c0)=@bpq0='bpq0\x00', 0x10) ioctl$void(r0, 0xc0045878) r2 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vsock\x00', 0x60306, 0x0) ioctl$SIOCX25SDTEFACILITIES(r2, 0x89eb, &(0x7f0000000080)={0x6, 0x1, 0x6, 0x22, 0x6, 0x21, 0x12, "2cf2325184f734f562c5eeb85a8426ab41593c0f", "9bf55c7a430a5da6dba3fcffc610dea44c62d947"}) openat$mixer(0xffffffffffffff9c, &(0x7f0000000140)='/dev/mixer\x00', 0x0, 0x0) [ 199.889019] FAULT_INJECTION: forcing a failure. [ 199.889019] name failslab, interval 1, probability 0, space 0, times 0 [ 199.900262] CPU: 0 PID: 13615 Comm: syz-executor.0 Not tainted 4.14.151 #0 [ 199.907289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 199.916653] Call Trace: [ 199.919262] dump_stack+0x138/0x197 [ 199.922917] should_fail.cold+0x10f/0x159 [ 199.927088] should_failslab+0xdb/0x130 [ 199.931078] kmem_cache_alloc+0x47/0x780 [ 199.935161] ? lock_downgrade+0x740/0x740 [ 199.939417] __sigqueue_alloc+0x1da/0x400 [ 199.943598] __send_signal+0x1a2/0x1280 [ 199.947682] ? lock_acquire+0x16f/0x430 [ 199.951673] send_signal+0x49/0xc0 [ 199.955226] force_sig_info+0x243/0x350 [ 199.959229] force_sig_info_fault.constprop.0+0x1c6/0x2b0 [ 199.964790] ? is_prefetch.isra.0+0x350/0x350 [ 199.969314] ? trace_raw_output_x86_exceptions+0x140/0x140 [ 199.974991] __bad_area_nosemaphore+0x1dc/0x2a0 [ 199.979687] bad_area+0x69/0x80 [ 199.982992] __do_page_fault+0x86f/0xb80 [ 199.987071] ? vmalloc_fault+0xe30/0xe30 [ 199.991145] ? page_fault+0x2f/0x50 [ 199.994798] do_page_fault+0x71/0x511 [ 199.998614] ? page_fault+0x2f/0x50 [ 200.002256] page_fault+0x45/0x50 [ 200.005718] RIP: 0033:0x453e1f [ 200.008916] RSP: 002b:00007f46eab45a88 EFLAGS: 00010283 [ 200.014290] RAX: 00007f46eab45b40 RBX: 0000000020000068 RCX: 0000000000000000 [ 200.021568] RDX: 00000000000000e0 RSI: 0000000000000000 RDI: 00007f46eab45b40 [ 200.028862] RBP: 0000000000000001 R08: 00000000000000e0 R09: 000000000000000a [ 200.036144] R10: 0000000000000075 R11: 00000000004e7280 R12: 0000000000000004 [ 200.043424] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 [ 200.081243] Unknown ioctl 35307 07:06:35 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f424852", 0x44, 0x10000}], 0x1, 0x0) 07:06:35 executing program 5: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = syz_open_procfs(0x0, 0x0) fsync(r0) r1 = syz_open_procfs(0x0, &(0x7f0000000880)='oom_score\x00') preadv(r1, &(0x7f00000017c0), 0x199, 0x0) ioctl$UI_BEGIN_FF_UPLOAD(r1, 0xc06855c8, &(0x7f0000000640)={0x10, 0xd17, {0x52, 0x2db, 0x7f, {0x200}, {0x40, 0x4}, @const={0x7ff, {0x8, 0xba, 0x1, 0x9150}}}, {0xa5e136065a937c32, 0x5, 0xfff, {0x4, 0x3}, {0x7, 0x1}, @ramp={0x800, 0x80, {0x100, 0x4c2, 0x800, 0x3}}}}) setsockopt$inet_sctp_SCTP_ADAPTATION_LAYER(r1, 0x84, 0x7, &(0x7f0000000080)={0x5}, 0x4) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) getsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(0xffffffffffffffff, 0x84, 0x18, &(0x7f00000000c0)={0x0, 0x1}, &(0x7f0000000140)=0x8) r2 = socket$inet6_sctp(0xa, 0x1, 0x84) r3 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r3, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [0x0]}, &(0x7f000095dffc)=0x8) getsockopt$inet_sctp6_SCTP_ASSOCINFO(r2, 0x84, 0x1, &(0x7f0000000000)={r4}, &(0x7f0000000040)=0x14) setsockopt$inet_sctp6_SCTP_AUTH_DELETE_KEY(r0, 0x84, 0x19, &(0x7f00000001c0)={r4}, 0x8) socket$inet6_sctp(0xa, 0x1, 0x84) r5 = syz_open_procfs(0x0, &(0x7f00000006c0)='Net/3\x97OOT\x15\x00\xb6\xcf@e\xd3r\x82\x9fc') ioctl$VIDIOC_PREPARE_BUF(r5, 0xc058565d, &(0x7f00000005c0)={0x0, 0xb, 0x4, 0x0, {0x0, 0x7530}, {0x0, 0x2, 0x81, 0x10, 0x24, 0x6, "cf676f53"}, 0x80, 0x5, @offset=0x9, 0x4}) mq_timedsend(r5, &(0x7f0000000480)="c1cc3d2c05c16add6c964974e00652617b35c74bd5a620d3170df3c2f134d5beb838b0f00c6ca198401126d02772777a96ead8602a94c5450ea4e5c8b02fc6e876ee2383fc4faa682ed6a91a53a08a1fdd9839c170a6f81ede814c769cf15c688c8514b5f4f1dc0a50019813ce4459df629cd480519073a5f929cd5e59d0058ea64475a46e924294d5ef1b4b158e59d9c923a0", 0x93, 0x4, &(0x7f0000000540)={0x0, 0x989680}) ioctl$SNDRV_SEQ_IOCTL_PVERSION(r5, 0x80045300, &(0x7f0000000180)) ioctl$KVM_CHECK_EXTENSION(r0, 0xae03, 0x8) 07:06:35 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f424852", 0x44, 0x10000}], 0x1, 0x0) [ 200.267939] Unknown ioctl 35307 07:06:35 executing program 0 (fault-call:0 fault-nth:49): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x0, 0x989680}) socket$inet6_sctp(0xa, 0x0, 0x84) 07:06:35 executing program 2: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x333a00c, 0x0) 07:06:35 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f4248526653", 0x46, 0x10000}], 0x1, 0x0) [ 200.375866] FAULT_INJECTION: forcing a failure. [ 200.375866] name failslab, interval 1, probability 0, space 0, times 0 [ 200.391749] CPU: 1 PID: 13664 Comm: syz-executor.0 Not tainted 4.14.151 #0 [ 200.398812] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 200.408175] Call Trace: [ 200.410787] dump_stack+0x138/0x197 [ 200.414528] should_fail.cold+0x10f/0x159 [ 200.418708] should_failslab+0xdb/0x130 [ 200.422705] __kmalloc_track_caller+0x2ec/0x790 [ 200.427392] ? strndup_user+0x62/0xf0 [ 200.431214] memdup_user+0x26/0xa0 [ 200.434782] strndup_user+0x62/0xf0 [ 200.438438] SyS_mount+0x3c/0x120 [ 200.441916] ? copy_mnt_ns+0x8c0/0x8c0 [ 200.445830] do_syscall_64+0x1e8/0x640 [ 200.449739] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 200.454608] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 200.459832] RIP: 0033:0x45cc6a [ 200.463031] RSP: 002b:00007f46eab45a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 200.470753] RAX: ffffffffffffffda RBX: 00007f46eab45b40 RCX: 000000000045cc6a [ 200.478034] RDX: 00007f46eab45ae0 RSI: 0000000020000100 RDI: 00007f46eab45b00 [ 200.485405] RBP: 0000000000000001 R08: 00007f46eab45b40 R09: 00007f46eab45ae0 [ 200.492693] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000004 [ 200.500060] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 07:06:35 executing program 5: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) syz_open_procfs(0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) getsockopt$MISDN_TIME_STAMP(r0, 0x0, 0x1, &(0x7f0000000080), &(0x7f00000000c0)=0x4) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) socket$inet6_sctp(0xa, 0x5, 0x84) 07:06:35 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f4248526653", 0x46, 0x10000}], 0x1, 0x0) 07:06:35 executing program 2: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) setxattr(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)=@known='system.sockprotoname\x00', &(0x7f0000000140)='btrfs\x00', 0x6, 0x2) 07:06:35 executing program 0 (fault-call:0 fault-nth:50): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x0, 0x989680}) socket$inet6_sctp(0xa, 0x0, 0x84) [ 200.687620] FAULT_INJECTION: forcing a failure. [ 200.687620] name failslab, interval 1, probability 0, space 0, times 0 [ 200.739892] CPU: 1 PID: 13690 Comm: syz-executor.0 Not tainted 4.14.151 #0 [ 200.746972] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 200.756341] Call Trace: [ 200.758942] dump_stack+0x138/0x197 [ 200.762678] should_fail.cold+0x10f/0x159 [ 200.766849] should_failslab+0xdb/0x130 [ 200.770849] __kmalloc_track_caller+0x2ec/0x790 [ 200.775540] ? kasan_check_write+0x14/0x20 [ 200.779794] ? strndup_user+0x62/0xf0 [ 200.783614] memdup_user+0x26/0xa0 [ 200.787172] strndup_user+0x62/0xf0 [ 200.790816] SyS_mount+0x6b/0x120 [ 200.794312] ? copy_mnt_ns+0x8c0/0x8c0 [ 200.798217] do_syscall_64+0x1e8/0x640 [ 200.802116] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 200.806980] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 200.812188] RIP: 0033:0x45cc6a [ 200.815407] RSP: 002b:00007f46eab45a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 200.823130] RAX: ffffffffffffffda RBX: 00007f46eab45b40 RCX: 000000000045cc6a [ 200.830412] RDX: 00007f46eab45ae0 RSI: 0000000020000100 RDI: 00007f46eab45b00 [ 200.837696] RBP: 0000000000000001 R08: 00007f46eab45b40 R09: 00007f46eab45ae0 [ 200.846805] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000004 [ 200.854088] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 07:06:36 executing program 4: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0xfe, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, 0x0) r1 = syz_open_dev$radio(&(0x7f0000000200)='/dev/radio#\x00', 0x0, 0x2) ioctl$VIDIOC_QUERYCAP(r1, 0x80685600, &(0x7f0000000040)) syz_open_dev$mouse(0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) setsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0xf, &(0x7f0000000180)="77471fcc6af237dde8a8fa15f70831b60baf8f3e5435de1535848cc6ecabb468225216ab67d6cd8a9014892e7eec50d84b9325febc8e5e867ff884e049acfc6ca28161b63cf764ecb4e70337c93957a976860d1e6750a6ee24a845297e7fbc21a9955f33cfb5", 0x66) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f00000000c0)) getsockopt$bt_BT_DEFER_SETUP(0xffffffffffffffff, 0x112, 0x7, &(0x7f0000000100), &(0x7f0000000140)=0x4) 07:06:36 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f4248526653", 0x46, 0x10000}], 0x1, 0x0) 07:06:36 executing program 0 (fault-call:0 fault-nth:51): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x0, 0x989680}) socket$inet6_sctp(0xa, 0x0, 0x84) 07:06:36 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f", 0x47, 0x10000}], 0x1, 0x0) [ 200.996487] FAULT_INJECTION: forcing a failure. [ 200.996487] name failslab, interval 1, probability 0, space 0, times 0 07:06:36 executing program 2: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) openat$proc_capi20(0xffffffffffffff9c, &(0x7f0000000080)='/proc/capi/capi20\x00', 0x1, 0x0) [ 201.071267] CPU: 1 PID: 13721 Comm: syz-executor.0 Not tainted 4.14.151 #0 [ 201.078338] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 201.087712] Call Trace: [ 201.090340] dump_stack+0x138/0x197 [ 201.093999] should_fail.cold+0x10f/0x159 [ 201.098166] should_failslab+0xdb/0x130 [ 201.102331] kmem_cache_alloc+0x2d7/0x780 [ 201.106497] ? fs_reclaim_acquire+0x20/0x20 [ 201.110842] ? find_held_lock+0x35/0x130 [ 201.114922] getname_flags+0xcb/0x580 [ 201.118765] user_path_at_empty+0x2f/0x50 [ 201.123363] do_mount+0x12b/0x27d0 [ 201.127008] ? copy_mount_options+0x5c/0x2f0 [ 201.131430] ? rcu_read_lock_sched_held+0x110/0x130 [ 201.136766] ? copy_mount_string+0x40/0x40 [ 201.141033] ? _copy_from_user+0x99/0x110 [ 201.145385] ? copy_mount_options+0x1fe/0x2f0 [ 201.150002] SyS_mount+0xab/0x120 [ 201.153483] ? copy_mnt_ns+0x8c0/0x8c0 [ 201.157409] do_syscall_64+0x1e8/0x640 [ 201.161662] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 201.166538] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 201.171891] RIP: 0033:0x45cc6a [ 201.175443] RSP: 002b:00007f46eab45a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 201.183187] RAX: ffffffffffffffda RBX: 00007f46eab45b40 RCX: 000000000045cc6a [ 201.190556] RDX: 00007f46eab45ae0 RSI: 0000000020000100 RDI: 00007f46eab45b00 [ 201.197839] RBP: 0000000000000001 R08: 00007f46eab45b40 R09: 00007f46eab45ae0 [ 201.205297] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000004 [ 201.212662] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 07:06:36 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f", 0x47, 0x10000}], 0x1, 0x0) 07:06:36 executing program 0 (fault-call:0 fault-nth:52): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x0, 0x989680}) socket$inet6_sctp(0xa, 0x0, 0x84) 07:06:36 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f", 0x47, 0x10000}], 0x1, 0x0) [ 201.459429] FAULT_INJECTION: forcing a failure. [ 201.459429] name failslab, interval 1, probability 0, space 0, times 0 [ 201.499419] CPU: 0 PID: 13755 Comm: syz-executor.0 Not tainted 4.14.151 #0 [ 201.506497] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 201.515850] Call Trace: [ 201.518446] dump_stack+0x138/0x197 [ 201.522064] should_fail.cold+0x10f/0x159 [ 201.526215] should_failslab+0xdb/0x130 [ 201.530174] __kmalloc_track_caller+0x2ec/0x790 [ 201.534833] ? kstrdup_const+0x48/0x60 [ 201.538706] kstrdup+0x3a/0x70 [ 201.541893] kstrdup_const+0x48/0x60 [ 201.545612] alloc_vfsmnt+0xe5/0x7d0 [ 201.549516] vfs_kern_mount.part.0+0x2a/0x3d0 [ 201.554024] do_mount+0x417/0x27d0 [ 201.557601] ? copy_mount_options+0x5c/0x2f0 [ 201.562466] ? rcu_read_lock_sched_held+0x110/0x130 [ 201.567493] ? copy_mount_string+0x40/0x40 [ 201.571723] ? copy_mount_options+0x1fe/0x2f0 [ 201.576207] SyS_mount+0xab/0x120 [ 201.579764] ? copy_mnt_ns+0x8c0/0x8c0 [ 201.583651] do_syscall_64+0x1e8/0x640 [ 201.587526] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 201.592365] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 201.597554] RIP: 0033:0x45cc6a [ 201.600729] RSP: 002b:00007f46eab45a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 201.608533] RAX: ffffffffffffffda RBX: 00007f46eab45b40 RCX: 000000000045cc6a [ 201.615992] RDX: 00007f46eab45ae0 RSI: 0000000020000100 RDI: 00007f46eab45b00 [ 201.623340] RBP: 0000000000000001 R08: 00007f46eab45b40 R09: 00007f46eab45ae0 [ 201.630613] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000004 [ 201.637873] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 07:06:36 executing program 2: r0 = openat$selinux_enforce(0xffffffffffffff9c, &(0x7f0000000080)='/selinux/enforce\x00', 0x1, 0x0) ioctl$DRM_IOCTL_AUTH_MAGIC(r0, 0x40046411, &(0x7f00000000c0)=0x8820) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 07:06:36 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48}], 0x1, 0x0) 07:06:36 executing program 4: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, 0x0) r1 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) socket$inet6_sctp(0xa, 0x5, 0x84) ioctl$VIDIOC_QUERYCAP(r1, 0x80685600, &(0x7f0000000040)) syz_open_dev$mouse(0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) getsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0xfffffffffffffffd, 0x0) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f00000000c0)) r2 = syz_open_procfs(0x0, &(0x7f00000006c0)='Net/3\x97OOT\x15\x00\xb6\xcf@e\xd3r\x82\x9fc') ioctl$VIDIOC_PREPARE_BUF(r2, 0xc058565d, &(0x7f00000005c0)={0x0, 0xb, 0x4, 0x0, {0x0, 0x7530}, {0x0, 0x2, 0x81, 0x10, 0x24, 0x6, "cf676f53"}, 0x80, 0x5, @offset=0x9, 0x4}) mq_timedsend(r2, &(0x7f0000000480)="c1cc3d2c05c16add6c964974e00652617b35c74bd5a620d3170df3c2f134d5beb838b0f00c6ca198401126d02772777a96ead8602a94c5450ea4e5c8b02fc6e876ee2383fc4faa682ed6a91a53a08a1fdd9839c170a6f81ede814c769cf15c688c8514b5f4f1dc0a50019813ce4459df629cd480519073a5f929cd5e59d0058ea64475a46e924294d5ef1b4b158e59d9c923a0", 0x93, 0x4, &(0x7f0000000540)={0x0, 0x989680}) r3 = socket$inet6_sctp(0xa, 0x1, 0x84) r4 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r4, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [0x0]}, &(0x7f000095dffc)=0x8) getsockopt$inet_sctp6_SCTP_ASSOCINFO(r3, 0x84, 0x1, &(0x7f0000000000)={r5}, &(0x7f0000000040)=0x14) getsockopt$inet_sctp6_SCTP_RTOINFO(r2, 0x84, 0x0, &(0x7f0000000100)={r5, 0xffffff73, 0x0, 0xf91}, &(0x7f0000000140)=0x10) 07:06:36 executing program 0 (fault-call:0 fault-nth:53): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x0, 0x989680}) socket$inet6_sctp(0xa, 0x0, 0x84) 07:06:36 executing program 5: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000040), 0x0, 0x0) syz_open_procfs(0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f0000000200)={{{@in6=@ipv4={[], [], @initdev}, @in=@broadcast, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@loopback}, 0x0, @in6=@empty}}, &(0x7f00000000c0)=0xe8) r1 = getegid() lchown(&(0x7f0000000080)='./file0\x00', r0, r1) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) socket$inet6_sctp(0xa, 0x1, 0x84) lsetxattr$trusted_overlay_origin(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='trusted.overlay.origin\x00', &(0x7f00000001c0)='y\x00', 0x2, 0x0) r2 = syz_open_procfs(0x0, &(0x7f0000000880)='oom_score\x00') preadv(r2, &(0x7f00000017c0), 0x199, 0x0) ioctl$UI_BEGIN_FF_UPLOAD(r2, 0xc06855c8, &(0x7f0000000640)={0x10, 0xd17, {0x52, 0x2db, 0x7f, {0x200}, {0x40, 0x4}, @const={0x7ff, {0x8, 0xba, 0x1, 0x9150}}}, {0xa5e136065a937c32, 0x5, 0xfff, {0x4, 0x3}, {0x7, 0x1}, @ramp={0x800, 0x80, {0x100, 0x4c2, 0x800, 0x3}}}}) ioctl$UI_GET_SYSNAME(r2, 0x8040552c, &(0x7f0000000040)) 07:06:36 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48}], 0x1, 0x0) [ 201.909989] FAULT_INJECTION: forcing a failure. [ 201.909989] name failslab, interval 1, probability 0, space 0, times 0 [ 201.990221] CPU: 0 PID: 13788 Comm: syz-executor.0 Not tainted 4.14.151 #0 [ 201.997274] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 202.006641] Call Trace: [ 202.009328] dump_stack+0x138/0x197 [ 202.013003] should_fail.cold+0x10f/0x159 [ 202.017173] should_failslab+0xdb/0x130 [ 202.021171] __kmalloc_track_caller+0x2ec/0x790 [ 202.025859] ? unwind_get_return_address+0x61/0xa0 [ 202.030812] ? __save_stack_trace+0x7b/0xd0 [ 202.035150] ? btrfs_parse_early_options+0xa3/0x310 [ 202.040182] kstrdup+0x3a/0x70 [ 202.043413] btrfs_parse_early_options+0xa3/0x310 [ 202.048284] ? btrfs_freeze+0xc0/0xc0 [ 202.052102] ? find_next_bit+0x28/0x30 [ 202.056099] ? pcpu_alloc+0xcf0/0x1050 [ 202.060011] ? find_held_lock+0x35/0x130 [ 202.064080] ? pcpu_alloc+0xcf0/0x1050 [ 202.067994] btrfs_mount+0x11d/0x2b28 [ 202.068010] ? lock_downgrade+0x740/0x740 [ 202.068019] ? find_held_lock+0x35/0x130 [ 202.068030] ? pcpu_alloc+0x3af/0x1050 [ 202.068051] ? _find_next_bit+0xee/0x120 [ 202.075983] ? check_preemption_disabled+0x3c/0x250 [ 202.093046] ? btrfs_remount+0x11f0/0x11f0 [ 202.093071] ? rcu_read_lock_sched_held+0x110/0x130 [ 202.102314] ? __lockdep_init_map+0x10c/0x570 [ 202.102324] ? __lockdep_init_map+0x10c/0x570 [ 202.102338] mount_fs+0x97/0x2a1 [ 202.102352] vfs_kern_mount.part.0+0x5e/0x3d0 [ 202.102363] do_mount+0x417/0x27d0 [ 202.102373] ? copy_mount_options+0x5c/0x2f0 [ 202.102384] ? rcu_read_lock_sched_held+0x110/0x130 [ 202.102396] ? copy_mount_string+0x40/0x40 [ 202.102411] ? copy_mount_options+0x1fe/0x2f0 [ 202.102423] SyS_mount+0xab/0x120 [ 202.102430] ? copy_mnt_ns+0x8c0/0x8c0 [ 202.102441] do_syscall_64+0x1e8/0x640 [ 202.102456] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 202.122821] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 202.122830] RIP: 0033:0x45cc6a [ 202.122835] RSP: 002b:00007f46eab45a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 202.122844] RAX: ffffffffffffffda RBX: 00007f46eab45b40 RCX: 000000000045cc6a [ 202.122849] RDX: 00007f46eab45ae0 RSI: 0000000020000100 RDI: 00007f46eab45b00 07:06:37 executing program 4: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000240), 0x1}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, 0x0) r1 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) ioctl$VIDIOC_QUERYCAP(r1, 0x80685600, &(0x7f0000000040)) r2 = syz_open_procfs(0x0, &(0x7f0000000880)='oom_score\x00') preadv(r2, &(0x7f00000017c0), 0x199, 0x0) ioctl$UI_BEGIN_FF_UPLOAD(r2, 0xc06855c8, &(0x7f0000000640)={0x10, 0xd17, {0x52, 0x2db, 0x7f, {0x200}, {0x40, 0x4}, @const={0x7ff, {0x8, 0xba, 0x1, 0x9150}}}, {0xa5e136065a937c32, 0x5, 0xfff, {0x4, 0x3}, {0x7, 0x1}, @ramp={0x800, 0x80, {0x100, 0x4c2, 0x800, 0x3}}}}) getsockopt$IP_VS_SO_GET_INFO(r2, 0x0, 0x481, &(0x7f0000000280), &(0x7f00000002c0)=0xc) syz_open_dev$mouse(0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) r3 = syz_open_procfs(0x0, &(0x7f0000000880)='oom_score\x00') preadv(r3, &(0x7f00000017c0), 0x199, 0x0) ioctl$UI_BEGIN_FF_UPLOAD(r3, 0xc06855c8, &(0x7f0000000640)={0x10, 0xd17, {0x52, 0x2db, 0x7f, {0x200}, {0x40, 0x4}, @const={0x7ff, {0x8, 0xba, 0x1, 0x9150}}}, {0xa5e136065a937c32, 0x5, 0xfff, {0x4, 0x3}, {0x7, 0x1}, @ramp={0x800, 0x80, {0x100, 0x4c2, 0x800, 0x3}}}}) ioctl$MON_IOCQ_URB_LEN(r3, 0x9201) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f00000000c0)) r4 = syz_open_dev$audion(&(0x7f0000000100)='/dev/audio#\x00', 0x0, 0xc8100) r5 = syz_open_procfs(0x0, &(0x7f0000000880)='oom_score\x00') preadv(r5, &(0x7f00000017c0), 0x199, 0x0) ioctl$UI_BEGIN_FF_UPLOAD(r5, 0xc06855c8, &(0x7f0000000640)={0x10, 0xd17, {0x52, 0x2db, 0x7f, {0x200}, {0x40, 0x4}, @const={0x7ff, {0x8, 0xba, 0x1, 0x9150}}}, {0xa5e136065a937c32, 0x5, 0xfff, {0x4, 0x3}, {0x7, 0x1}, @ramp={0x800, 0x80, {0x100, 0x4c2, 0x800, 0x3}}}}) r6 = socket$inet6_sctp(0xa, 0x1, 0x84) r7 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r7, 0x84, 0x1d, &(0x7f0000000200)=ANY=[@ANYBLOB="e285318b38f3c8480bf1504499bce7bacee0b72fb3fe6806f5f521f231d041bb701e", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) getsockopt$inet_sctp6_SCTP_ASSOCINFO(r6, 0x84, 0x1, &(0x7f0000000000)={r8}, &(0x7f0000000040)=0x14) getsockopt$inet_sctp_SCTP_DELAYED_SACK(r5, 0x84, 0x10, &(0x7f0000000140)=@sack_info={r8, 0x0, 0x6}, &(0x7f0000000180)=0xc) setsockopt$inet_sctp6_SCTP_ASSOCINFO(r4, 0x84, 0x1, &(0x7f00000001c0)={r9, 0x7f, 0x9, 0x8, 0xc4b0, 0x4}, 0x14) 07:06:37 executing program 5: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vsock\x00', 0x105001, 0x0) mmap$binder(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x11, r0, 0x26) r1 = syz_open_procfs(0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) setsockopt$RDS_CONG_MONITOR(0xffffffffffffffff, 0x114, 0x6, &(0x7f00000000c0)=0x1, 0x4) r2 = syz_open_procfs(0x0, &(0x7f00000006c0)='Net/3\x97OOT\x15\x00\xb6\xcf@e\xd3r\x82\x9fc') ioctl$KVM_GET_LAPIC(r1, 0x8400ae8e, &(0x7f0000000700)={"0fa1f3c36fde8b1d49f66589a6f5cd46cde013cf5630b24ebe3a5186d97f16292976c1f22cb11bf9787b1bdc5f2e5d85141d356cbf0606464a422167f77e53baea8e3d4786f3401ab66cb45f732909081061dc44bbc0c2d13e4c863af722fb97bc000f26a820a6458cf87385714561559a5ac48ebb859884bbbea6f3877d4cfecf2110b65f00668325ebb80102574521df50979d094dec92eededa7cd16c7708aafd6e20a505ccbe24380e220e9efbfcf0253d0afbe584c73b17a5cf8aca21dbaa778b53e0ed6330ef9d015b0c59c38ef4707598f40f69a3b726e1f40f6b0b676451279d6ef783b90dd8f5b987f9c8753682e2b9d431314185b49fa5fd0fc7ae1ccb234332ed29c4856bf3bcde014336c2ecbb14a07a3decd3fabbf74dc5a43de74cd42555591d349a114e7d5bf6d58e0c03137b9849e62714607899e38107534767712758f3e07711f9c4b05e9e7d54a46c4269263aba602df2f15ef8c8f76fd2983677c711ac0542f51e89f705ddc1414db2ba82959a93eb5e24040a2231154049ed2183d28ebecc44486dda133269abd1b1229433fcee5f2c9654446cbc84de64df32e519779254d8601a4ac9db4d70138a29a82b9c5362fd15689732c2a67ff892b84040f67255c29ef1b384aed4dc34d5fdf6a6c8f931a3164cbe75cbfaf858102a67a4c36cdb06d03c8ada6b1a2bae2fce4522e573747d64311eab662243916a3d4d0eb7a7eb91511b8cccc9dbba7f9332c78af3aaf4165290ed0cd9b9764bb203530a30a41a265e6d888d3bb85a40ed38ab92ac2dacbca416d0f018bd07d017241d81f96762da34d7e803b79664d16805d7eec0cfdff1c486a73b288cf5972fb248b2580457927c9753c50ec54fe5688da8795f6a3f937bf8080d2e06370240df6c9e8e120e073b843268a8453376b5ac288918d801eeac3feb2dcd1df7e8193816d44eb35b138c097d4d75cce6bba99af3a8ebb6deda13583d4561974d7f3932494f70294cd58387adf8875c0043874d3dd8c5b131fcb5256f00837ef5ecea34fd5d2aede5eaa519a30497aa4b90f519775337b24bb683a2a801e2161799cfd4d411e00aab83a072d019a85748809c6522d2d5f3be9060dbe6ada7735345d374202bbae247f6725fe9b19acd29ebe4a612bdade8cbfc1a6ed894f5a00981dd5c2f2f4cb906a1752c1099664f40e98aec554fc37e1b027f32e7b0b2d36288159af301b3453ad3aea288ea71eb78b1accf2c869e2cfe1289ca5df702f612240bbde6c6aefa7c8d10d7eedd9c3b0a4a7ed92853c5a37387a01e0539bbefada49e0ea008002ad2c59e0ade698271893a523f72d1357ba64c7285d275bc47651d3270ac9fad2dabfc630a5d1b07a3e5003abcc8e4e25c8870d98eaadf0ec8a5ed650a1fcc9791f679698f38a16a2e50a70f7f67fa4b8a1a7c3fe9855f8975"}) ioctl$VIDIOC_PREPARE_BUF(r2, 0xc058565d, &(0x7f00000005c0)={0x0, 0xb, 0x4, 0x0, {0x0, 0x7530}, {0x0, 0x2, 0x81, 0x10, 0x24, 0x6, "cf676f53"}, 0x80, 0x5, @offset=0x9, 0x4}) mq_timedsend(r2, &(0x7f0000000480)="c1cc3d2c05c16add6c964974e00652617b35c74bd5a620d3170df3c2f134d5beb838b0f00c6ca198401126d02772777a96ead8602a94c5450ea4e5c8b02fc6e876ee2383fc4faa682ed6a91a53a08a1fdd9839c170a6f81ede814c769cf15c688c8514b5f4f1dc0a50019813ce4459df629cd480519073a5f929cd5e59d0058ea64475a46e924294d5ef1b4b158e59d9c923a0", 0x93, 0x4, &(0x7f0000000540)={0x0, 0x989680}) ioctl$sock_inet_SIOCDARP(r2, 0x8953, &(0x7f0000000140)={{0x2, 0x4e20, @remote}, {0x306, @local}, 0x0, {0x2, 0x4e24, @multicast1}, 'veth0_to_bond\x00'}) socket$inet6_sctp(0xa, 0x1, 0x84) [ 202.122854] RBP: 0000000000000001 R08: 00007f46eab45b40 R09: 00007f46eab45ae0 [ 202.122860] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000004 [ 202.122865] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 07:06:37 executing program 0 (fault-call:0 fault-nth:54): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x0, 0x989680}) socket$inet6_sctp(0xa, 0x0, 0x84) 07:06:37 executing program 2: r0 = syz_open_dev$midi(&(0x7f0000000080)='/dev/midi#\x00', 0x5, 0x40000) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41be, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, 0x0, 0x0) r4 = syz_open_procfs(0x0, &(0x7f00000006c0)='Net/3\x97OOT\x15\x00\xb6\xcf@e\xd3r\x82\x9fc') ioctl$VIDIOC_PREPARE_BUF(r4, 0xc058565d, &(0x7f00000005c0)={0x0, 0xb, 0x4, 0x0, {0x0, 0x7530}, {0x0, 0x2, 0x81, 0x10, 0x24, 0x6, "cf676f53"}, 0x80, 0x5, @offset=0x9, 0x4}) mq_timedsend(r4, &(0x7f0000000480)="c1cc3d2c05c16add6c964974e00652617b35c74bd5a620d3170df3c2f134d5beb838b0f00c6ca198401126d02772777a96ead8602a94c5450ea4e5c8b02fc6e876ee2383fc4faa682ed6a91a53a08a1fdd9839c170a6f81ede814c769cf15c688c8514b5f4f1dc0a50019813ce4459df629cd480519073a5f929cd5e59d0058ea64475a46e924294d5ef1b4b158e59d9c923a0", 0x93, 0x4, &(0x7f0000000540)={0x0, 0x989680}) fcntl$setpipe(r4, 0x407, 0x5) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000080)=[@textreal={0x8, &(0x7f0000000040)="b800088ee8b800008ee8262e670fae0c5513000000f3ab3666660f3a16f4090f060f01d12e663e0f0174a90f30b808018ec0", 0x32}], 0xaaaaaaaaaaaa97d, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_ASSIGN_SET_MSIX_ENTRY(r0, 0x4010ae74, &(0x7f00000000c0)={0x5f, 0x4, 0xb34}) syz_mount_image$btrfs(&(0x7f0000000140)='Mtrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0xaaaaaaaaaaaa962, &(0x7f0000000180), 0x20000, 0x0) 07:06:37 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48}], 0x1, 0x0) [ 202.357874] FAULT_INJECTION: forcing a failure. [ 202.357874] name failslab, interval 1, probability 0, space 0, times 0 07:06:37 executing program 5: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x1, 0x2, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) syz_open_procfs(0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000880)='oom_score\x00') r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x400000000000249, 0x0, 0x0) r2 = syz_open_dev$mice(&(0x7f0000000080)='/dev/input/mice\x00', 0x0, 0x97916173875135e6) ioctl$SNDRV_RAWMIDI_IOCTL_PVERSION(r2, 0x80045700, &(0x7f00000000c0)) preadv(r1, &(0x7f00000017c0), 0xb7af88bb4628dcfe, 0x1000) ioctl$UI_BEGIN_FF_UPLOAD(r0, 0xc06855c8, &(0x7f0000000640)={0x10, 0xd17, {0x52, 0x2db, 0x7f, {0x200}, {0x40, 0x4}, @const={0x7ff, {0x8, 0xba, 0x1, 0x9150}}}, {0xa5e136065a937c32, 0x5, 0xfff, {0x4, 0x3}, {0x7, 0x1}, @ramp={0x800, 0x80, {0x100, 0x4c2, 0x800, 0x3}}}}) r3 = getuid() fchown(r0, r3, 0xffffffffffffffff) socket$inet6_sctp(0xa, 0x1, 0x84) [ 202.469058] CPU: 1 PID: 13830 Comm: syz-executor.0 Not tainted 4.14.151 #0 [ 202.476126] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 202.485484] Call Trace: [ 202.485509] dump_stack+0x138/0x197 [ 202.485527] should_fail.cold+0x10f/0x159 [ 202.485543] should_failslab+0xdb/0x130 [ 202.485554] kmem_cache_alloc+0x2d7/0x780 [ 202.485566] ? cache_grow_end.part.0+0x92/0x160 [ 202.509188] getname_flags+0xcb/0x580 [ 202.513011] ? lock_downgrade+0x740/0x740 07:06:37 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 202.517626] user_path_at_empty+0x2f/0x50 [ 202.521798] do_mount+0x12b/0x27d0 [ 202.525361] ? copy_mount_options+0x5c/0x2f0 [ 202.529791] ? rcu_read_lock_sched_held+0x110/0x130 [ 202.534835] ? copy_mount_string+0x40/0x40 [ 202.534856] ? copy_mount_options+0x1fe/0x2f0 [ 202.534871] SyS_mount+0xab/0x120 [ 202.534881] ? copy_mnt_ns+0x8c0/0x8c0 [ 202.534897] do_syscall_64+0x1e8/0x640 [ 202.547519] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 202.547540] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 202.547548] RIP: 0033:0x45cc6a [ 202.547553] RSP: 002b:00007f46eab45a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 202.547565] RAX: ffffffffffffffda RBX: 00007f46eab45b40 RCX: 000000000045cc6a [ 202.547571] RDX: 00007f46eab45ae0 RSI: 0000000020000100 RDI: 00007f46eab45b00 [ 202.547576] RBP: 0000000000000001 R08: 00007f46eab45b40 R09: 00007f46eab45ae0 [ 202.547580] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000004 [ 202.547594] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 07:06:37 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 202.646878] audit: type=1400 audit(1573023997.748:64): avc: denied { setattr } for pid=13847 comm="syz-executor.5" name="oom_score" dev="proc" ino=48260 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=file permissive=1 07:06:38 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 07:06:38 executing program 0 (fault-call:0 fault-nth:55): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x0, 0x989680}) socket$inet6_sctp(0xa, 0x0, 0x84) 07:06:38 executing program 4: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, 0x0) r1 = msgget$private(0x0, 0x0) msgctl$IPC_SET(r1, 0x1, 0x0) msgsnd(r1, 0x0, 0x0, 0x0) msgctl$IPC_INFO(r1, 0x3, &(0x7f0000000080)=""/34) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000000100)={{{@in6=@loopback, @in6=@dev}}, {{@in6=@mcast1}, 0x0, @in=@local}}, &(0x7f0000000200)=0xe8) r3 = socket(0x10, 0x2, 0x0) getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, 0x0}, &(0x7f0000cab000)=0xc) syz_mount_image$hfsplus(&(0x7f00000000c0)='hfsplus\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='gid=', @ANYRESHEX=r4, @ANYBLOB="2c00cb3f1bdded29abe8a095d6590cfa0594cd55cff03f21ba35a4b3eccc18ff915d752c15c4134ca3b71045b2e32f81936b9661919f835c49d992b7e5be7a5dc2827996dbf766829ad21176989c07e2b3d7361af4717278aec552a7d3d00b0a82b00a9a5dd1a2bd2ed14d178c37acc13dd8b79ea3447f3fc16d89cb4dbb36981320044cb2f3e00d87b9b0dddafcff5612a9c2b5457b52aa0f40124faf4dfb90a42d33c7790e81e3c1665b467cebe237b418e48caac5de391d775b9f079a25bda1c7f25e002fcca9f9cbdb992304c5c46a9c95498db3f0b308"]) getgroups(0x1, &(0x7f0000000240)=[r4]) lstat(&(0x7f0000000280)='./file0\x00', &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x0}) r7 = socket(0x10, 0x2, 0x0) getsockopt$sock_cred(r7, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, 0x0}, &(0x7f0000cab000)=0xc) syz_mount_image$hfsplus(&(0x7f00000000c0)='hfsplus\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRESHEX=r8, @ANYBLOB=',\x00']) r9 = gettid() r10 = getpid() sched_setattr(r10, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0) r11 = msgget$private(0x0, 0x0) msgctl$IPC_SET(r11, 0x1, 0x0) msgsnd(r11, 0x0, 0x0, 0x0) msgctl$IPC_INFO(r11, 0x3, &(0x7f0000000080)=""/34) msgctl$IPC_SET(r11, 0x1, &(0x7f0000000340)={{0x9, 0xee00, r5, r6, r8, 0x31, 0x4}, 0x0, 0x7fd8, 0x9, 0x7fff, 0x2, 0x7c, r9, r10}) r12 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) ioctl$VIDIOC_QUERYCAP(r12, 0x80685600, &(0x7f0000000040)) syz_open_dev$mouse(0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f00000000c0)) 07:06:38 executing program 1: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000080)={0x0, 0xfdc3a35cb81bd053, 0xffffffffffffffff}) r1 = syz_open_dev$media(&(0x7f0000000400)='/dev/media#\x00', 0x1, 0x187000) accept$nfc_llcp(r1, &(0x7f0000000440), &(0x7f00000004c0)=0x60) pipe(&(0x7f0000000200)={0xffffffffffffffff}) r3 = add_key$user(&(0x7f00000001c0)='user\x00', &(0x7f0000000240)={'syz', 0x2}, &(0x7f0000000340)="8e8b40705b0b73be4ee10101318ac285570e57fd05da7569a66ebab8bedb81f950b64896710de45be4c78f5114f2f651dbc89824c93be8b95d9f78cfb632aedd31423f6b031623b0af1810401629efd139ace97ea13b2b3b759e74b32580e7af7f4a1e747457389cb388fe3fdf507f8df9784df2f048ffa8b1bc5093620b917c70bfa5e6b8b4eab99eead29d790ff7e2d222668c77c8584199eae074b0f40e1e7eed31de612bcf52577ad96f", 0xac, 0xfffffffffffffffa) keyctl$link(0x8, r3, 0x0) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$DRM_IOCTL_AGP_ALLOC(r2, 0xc0206434, &(0x7f00000000c0)={0xfb, 0x0, 0x0, 0x8000002}) setsockopt$netlink_NETLINK_CAP_ACK(r2, 0x10e, 0xa, &(0x7f0000000180)=0x6f2, 0x4) ioctl$TUNSETOFFLOAD(0xffffffffffffffff, 0x400454d0, 0x1) write$FUSE_IOCTL(0xffffffffffffffff, &(0x7f0000000280)={0x20, 0x0, 0x8, {0x0, 0x0, 0x800, 0x5}}, 0x20) ioctl$DRM_IOCTL_SG_ALLOC(r0, 0xc0106438, &(0x7f0000000140)={0x6, r4}) [ 203.027272] FAULT_INJECTION: forcing a failure. [ 203.027272] name failslab, interval 1, probability 0, space 0, times 0 [ 203.101044] CPU: 1 PID: 13876 Comm: syz-executor.0 Not tainted 4.14.151 #0 [ 203.108110] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 203.117484] Call Trace: [ 203.120085] dump_stack+0x138/0x197 [ 203.123730] should_fail.cold+0x10f/0x159 [ 203.123747] should_failslab+0xdb/0x130 [ 203.123761] kmem_cache_alloc+0x2d7/0x780 [ 203.131883] ? lock_downgrade+0x740/0x740 [ 203.131901] alloc_vfsmnt+0x28/0x7d0 [ 203.143891] vfs_kern_mount.part.0+0x2a/0x3d0 [ 203.148404] do_mount+0x417/0x27d0 [ 203.151993] ? copy_mount_options+0x5c/0x2f0 [ 203.156411] ? rcu_read_lock_sched_held+0x110/0x130 [ 203.161530] ? copy_mount_string+0x40/0x40 [ 203.165778] ? copy_mount_options+0x1fe/0x2f0 [ 203.170267] SyS_mount+0xab/0x120 [ 203.173703] ? copy_mnt_ns+0x8c0/0x8c0 [ 203.177586] do_syscall_64+0x1e8/0x640 [ 203.181469] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 203.186302] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 203.191476] RIP: 0033:0x45cc6a [ 203.194650] RSP: 002b:00007f46eab45a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 203.202433] RAX: ffffffffffffffda RBX: 00007f46eab45b40 RCX: 000000000045cc6a [ 203.209688] RDX: 00007f46eab45ae0 RSI: 0000000020000100 RDI: 00007f46eab45b00 [ 203.216941] RBP: 0000000000000001 R08: 00007f46eab45b40 R09: 00007f46eab45ae0 [ 203.224198] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000004 [ 203.231458] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 [ 203.287917] hfsplus: gid requires an argument [ 203.317984] hfsplus: unable to parse mount options 07:06:38 executing program 3: 07:06:38 executing program 2: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r0, 0x407, 0x0) write(r0, &(0x7f0000000340), 0x41395527) ioctl$EXT4_IOC_ALLOC_DA_BLKS(r0, 0x660c) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000380)="0c4f4d16cf2f3a2dd8a5046790a60c91e487dc9ca281434dbc169c6555a654da5e42c953490634b417ec9535653162fc5730d4c8dab3e136550ed7d31fa8d7094afd6e5154349155e6ef7e5fb08d79c283188a3f28548ab4366e6863ba5561aedbd1ee3f9a2c5646e4a9c2806b231528bca7ee2134e39966c40bcb1371a7e7691672a8dc9bda07175f11a9160cba3f0ddb78db3b2e184e1e9aa371691df9f49a5e3343bce4e4b8a2c80831b63d95ed57cf89982b317abf1cf8a71078d00dd5fa9151c142fa4bb765d503150f5f6f34284c7480a5091e9b246e", 0xd9) fsetxattr$trusted_overlay_nlink(r0, &(0x7f0000000240)='trusted.overlay.nlink\x00', &(0x7f0000000300)={'U+', 0x7}, 0x28, 0x3) r1 = syz_genetlink_get_family_id$ipvs(&(0x7f00000000c0)='IPVS\x00') sendmsg$IPVS_CMD_NEW_SERVICE(r0, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)={0x48, r1, 0x10, 0x70bd29, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_DEST={0x34, 0x2, [@IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0x48a1}, @IPVS_DEST_ATTR_TUN_TYPE={0x8}, @IPVS_DEST_ATTR_INACT_CONNS={0x8, 0x8, 0x4}, @IPVS_DEST_ATTR_TUN_TYPE={0x8, 0xd, 0x2}, @IPVS_DEST_ATTR_WEIGHT={0x8}, @IPVS_DEST_ATTR_ACTIVE_CONNS={0x8, 0x7, 0x8}]}]}, 0x48}, 0x1, 0x0, 0x0, 0x10}, 0x1) 07:06:38 executing program 3: 07:06:38 executing program 0 (fault-call:0 fault-nth:56): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x0, 0x989680}) socket$inet6_sctp(0xa, 0x0, 0x84) 07:06:38 executing program 3: 07:06:38 executing program 5: syz_mount_image$btrfs(&(0x7f0000000000)='\x00\x00\x00\b\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0xfffffffffffffee3, 0x10000}], 0x10, 0x0) syz_open_procfs(0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) socket$inet6_sctp(0xa, 0x1, 0x84) [ 203.558672] FAULT_INJECTION: forcing a failure. [ 203.558672] name failslab, interval 1, probability 0, space 0, times 0 [ 203.583029] CPU: 1 PID: 13923 Comm: syz-executor.0 Not tainted 4.14.151 #0 [ 203.590085] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 203.599451] Call Trace: [ 203.602057] dump_stack+0x138/0x197 [ 203.605705] should_fail.cold+0x10f/0x159 [ 203.609974] should_failslab+0xdb/0x130 [ 203.613971] kmem_cache_alloc+0x2d7/0x780 [ 203.618143] ? check_preemption_disabled+0x3c/0x250 [ 203.623181] alloc_vfsmnt+0x28/0x7d0 [ 203.626914] vfs_kern_mount.part.0+0x2a/0x3d0 [ 203.631422] ? find_held_lock+0x35/0x130 [ 203.635505] vfs_kern_mount+0x40/0x60 [ 203.639336] btrfs_mount+0x3ce/0x2b28 [ 203.643150] ? lock_downgrade+0x740/0x740 [ 203.647313] ? find_held_lock+0x35/0x130 [ 203.651390] ? pcpu_alloc+0x3af/0x1050 [ 203.655301] ? btrfs_remount+0x11f0/0x11f0 [ 203.659561] ? rcu_read_lock_sched_held+0x110/0x130 [ 203.664616] ? __lockdep_init_map+0x10c/0x570 [ 203.669130] ? __lockdep_init_map+0x10c/0x570 [ 203.673643] mount_fs+0x97/0x2a1 [ 203.677026] vfs_kern_mount.part.0+0x5e/0x3d0 [ 203.681543] do_mount+0x417/0x27d0 [ 203.685098] ? copy_mount_options+0x5c/0x2f0 [ 203.689521] ? rcu_read_lock_sched_held+0x110/0x130 [ 203.694560] ? copy_mount_string+0x40/0x40 [ 203.698819] ? copy_mount_options+0x1fe/0x2f0 [ 203.703340] SyS_mount+0xab/0x120 [ 203.706825] ? copy_mnt_ns+0x8c0/0x8c0 [ 203.710753] do_syscall_64+0x1e8/0x640 [ 203.714625] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 203.719517] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 203.724696] RIP: 0033:0x45cc6a [ 203.727875] RSP: 002b:00007f46eab45a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 203.735569] RAX: ffffffffffffffda RBX: 00007f46eab45b40 RCX: 000000000045cc6a [ 203.742908] RDX: 00007f46eab45ae0 RSI: 0000000020000100 RDI: 00007f46eab45b00 [ 203.750169] RBP: 0000000000000001 R08: 00007f46eab45b40 R09: 00007f46eab45ae0 07:06:38 executing program 3: 07:06:38 executing program 3: [ 203.757426] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000004 [ 203.764681] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 07:06:38 executing program 0 (fault-call:0 fault-nth:57): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x0, 0x989680}) socket$inet6_sctp(0xa, 0x0, 0x84) 07:06:38 executing program 3: [ 203.897950] hfsplus: gid requires an argument [ 203.899092] FAULT_INJECTION: forcing a failure. [ 203.899092] name failslab, interval 1, probability 0, space 0, times 0 [ 203.903068] hfsplus: unable to parse mount options [ 203.958661] CPU: 1 PID: 13951 Comm: syz-executor.0 Not tainted 4.14.151 #0 [ 203.965726] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 203.975084] Call Trace: [ 203.977670] dump_stack+0x138/0x197 [ 203.981313] should_fail.cold+0x10f/0x159 [ 203.985475] should_failslab+0xdb/0x130 [ 203.989462] kmem_cache_alloc+0x2d7/0x780 [ 203.993611] ? check_preemption_disabled+0x3c/0x250 [ 203.998634] alloc_vfsmnt+0x28/0x7d0 [ 204.002368] vfs_kern_mount.part.0+0x2a/0x3d0 [ 204.006866] ? find_held_lock+0x35/0x130 [ 204.010915] vfs_kern_mount+0x40/0x60 [ 204.014725] btrfs_mount+0x3ce/0x2b28 [ 204.018514] ? lock_downgrade+0x740/0x740 [ 204.022641] ? find_held_lock+0x35/0x130 [ 204.026683] ? pcpu_alloc+0x3af/0x1050 [ 204.030592] ? btrfs_remount+0x11f0/0x11f0 [ 204.034811] ? rcu_read_lock_sched_held+0x110/0x130 [ 204.039825] ? __lockdep_init_map+0x10c/0x570 [ 204.044421] ? __lockdep_init_map+0x10c/0x570 [ 204.048914] mount_fs+0x97/0x2a1 [ 204.052288] vfs_kern_mount.part.0+0x5e/0x3d0 [ 204.056766] do_mount+0x417/0x27d0 [ 204.060312] ? copy_mount_options+0x5c/0x2f0 [ 204.064732] ? rcu_read_lock_sched_held+0x110/0x130 [ 204.069756] ? copy_mount_string+0x40/0x40 [ 204.073988] ? copy_mount_options+0x1fe/0x2f0 [ 204.078497] SyS_mount+0xab/0x120 [ 204.081951] ? copy_mnt_ns+0x8c0/0x8c0 [ 204.085838] do_syscall_64+0x1e8/0x640 [ 204.089719] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 204.094550] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 204.099725] RIP: 0033:0x45cc6a [ 204.102903] RSP: 002b:00007f46eab45a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 204.110604] RAX: ffffffffffffffda RBX: 00007f46eab45b40 RCX: 000000000045cc6a [ 204.117877] RDX: 00007f46eab45ae0 RSI: 0000000020000100 RDI: 00007f46eab45b00 [ 204.125133] RBP: 0000000000000001 R08: 00007f46eab45b40 R09: 00007f46eab45ae0 [ 204.132393] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000004 [ 204.139698] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 07:06:39 executing program 3: r0 = syz_open_dev$midi(&(0x7f0000000080)='/dev/midi#\x00', 0x5, 0x40000) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41be, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, 0x0, 0x0) r4 = syz_open_procfs(0x0, &(0x7f00000006c0)='Net/3\x97OOT\x15\x00\xb6\xcf@e\xd3r\x82\x9fc') ioctl$VIDIOC_PREPARE_BUF(r4, 0xc058565d, &(0x7f00000005c0)={0x0, 0xb, 0x4, 0x0, {0x0, 0x7530}, {0x0, 0x2, 0x81, 0x10, 0x24, 0x6, "cf676f53"}, 0x80, 0x5, @offset=0x9, 0x4}) mq_timedsend(r4, &(0x7f0000000480)="c1cc3d2c05c16add6c964974e00652617b35c74bd5a620d3170df3c2f134d5beb838b0f00c6ca198401126d02772777a96ead8602a94c5450ea4e5c8b02fc6e876ee2383fc4faa682ed6a91a53a08a1fdd9839c170a6f81ede814c769cf15c688c8514b5f4f1dc0a50019813ce4459df629cd480519073a5f929cd5e59d0058ea64475a46e924294d5ef1b4b158e59d9c923a0", 0x93, 0x4, &(0x7f0000000540)={0x0, 0x989680}) fcntl$setpipe(r4, 0x407, 0x5) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000080)=[@textreal={0x8, &(0x7f0000000040)="b800088ee8b800008ee8262e670fae0c5513000000f3ab3666660f3a16f4090f060f01d12e663e0f0174a90f30b808018ec0", 0x32}], 0xaaaaaaaaaaaa97d, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_ASSIGN_SET_MSIX_ENTRY(r0, 0x4010ae74, &(0x7f00000000c0)={0x5f, 0x4, 0xb34}) syz_mount_image$btrfs(&(0x7f0000000140)='Mtrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0xaaaaaaaaaaaa962, &(0x7f0000000180), 0x20000, 0x0) 07:06:39 executing program 1: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r0, 0x407, 0x0) write(r0, &(0x7f0000000340), 0x41395527) ioctl$EXT4_IOC_ALLOC_DA_BLKS(r0, 0x660c) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000380)="0c4f4d16cf2f3a2dd8a5046790a60c91e487dc9ca281434dbc169c6555a654da5e42c953490634b417ec9535653162fc5730d4c8dab3e136550ed7d31fa8d7094afd6e5154349155e6ef7e5fb08d79c283188a3f28548ab4366e6863ba5561aedbd1ee3f9a2c5646e4a9c2806b231528bca7ee2134e39966c40bcb1371a7e7691672a8dc9bda07175f11a9160cba3f0ddb78db3b2e184e1e9aa371691df9f49a5e3343bce4e4b8a2c80831b63d95ed57cf89982b317abf1cf8a71078d00dd5fa9151c142fa4bb765d503150f5f6f34284c7480a5091e9b246e", 0xd9) fsetxattr$trusted_overlay_nlink(r0, &(0x7f0000000240)='trusted.overlay.nlink\x00', &(0x7f0000000300)={'U+', 0x7}, 0x28, 0x3) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0xa) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)=@newlink={0x20, 0x11, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, r3}}, 0x20}}, 0x0) setsockopt$packet_drop_memb(r0, 0x107, 0x2, &(0x7f0000000180)={r3, 0x1, 0x6, @link_local}, 0x10) r4 = openat$selinux_mls(0xffffffffffffff9c, &(0x7f0000000080)='/selinux/mls\x00', 0x0, 0x0) ioctl$PPPIOCSPASS(r4, 0x40107447, &(0x7f0000000140)={0x1, &(0x7f00000000c0)=[{0xfffe, 0x2, 0x8, 0x9000}]}) socket$inet6_sctp(0xa, 0x0, 0x84) 07:06:39 executing program 0 (fault-call:0 fault-nth:58): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x0, 0x989680}) socket$inet6_sctp(0xa, 0x0, 0x84) 07:06:39 executing program 4: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) open$dir(&(0x7f0000000100)='./file0\x00', 0x101020, 0xc4d8e92771c950a7) r0 = syz_open_dev$sndpcmc(&(0x7f0000000580)='/dev/snd/pcmC#D#c\x00', 0x7ff, 0x0) getsockopt$inet_sctp_SCTP_AUTO_ASCONF(r0, 0x84, 0x1e, &(0x7f0000000640), &(0x7f0000000680)=0x4) r1 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r1, 0x8934, 0x0) r2 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) ioctl$VIDIOC_QUERYCAP(r2, 0x80685600, &(0x7f0000000040)) syz_open_dev$mouse(0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) ioctl$EXT4_IOC_ALLOC_DA_BLKS(r3, 0x660c) setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, &(0x7f0000000380)="0c4f4d16cf2f3a2dd8a5046790a60c91e487dc9ca281434dbc169c6555a654da5e42c953490634b417ec9535653162fc5730d4c8dab3e136550ed7d31fa8d7094afd6e5154349155e6ef7e5fb08d79c283188a3f28548ab4366e6863ba5561aedbd1ee3f9a2c5646e4a9c2806b231528bca7ee2134e39966c40bcb1371a7e7691672a8dc9bda07175f11a9160cba3f0ddb78db3b2e184e1e9aa371691df9f49a5e3343bce4e4b8a2c80831b63d95ed57cf89982b317abf1cf8a71078d00dd5fa9151c142fa4bb765d503150f5f6f34284c7480a5091e9b246e", 0xd9) r4 = syz_open_procfs(0x0, &(0x7f00000006c0)='Net/3\x97OOT\x15\x00\xb6\xcf@e\xd3r\x82\x9fc') ioctl$VIDIOC_PREPARE_BUF(r4, 0xc058565d, &(0x7f00000005c0)={0x0, 0xb, 0x4, 0x0, {0x0, 0x7530}, {0x0, 0x2, 0x81, 0x10, 0x24, 0x6, "cf676f53"}, 0x80, 0x5, @offset=0x9, 0x4}) mq_timedsend(r4, &(0x7f0000000480)="c1cc3d2c05c16add6c964974e00652617b35c74bd5a620d3170df3c2f134d5beb838b0f00c6ca198401126d02772777a96ead8602a94c5450ea4e5c8b02fc6e876ee2383fc4faa682ed6a91a53a08a1fdd9839c170a6f81ede814c769cf15c688c8514b5f4f1dc0a50019813ce4459df629cd480519073a5f929cd5e59d0058ea64475a46e924294d5ef1b4b158e59d9c923a0", 0x93, 0x4, &(0x7f0000000540)={0x0, 0x989680}) ioctl$VHOST_VSOCK_SET_RUNNING(r4, 0x4004af61, &(0x7f0000000340)=0x1) fsetxattr$trusted_overlay_nlink(r3, &(0x7f0000000240)='trusted.overlay.nlink\x00', &(0x7f0000000300)={'U+', 0x7}, 0x28, 0x3) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000080)='IPVS\x00') sendmsg$IPVS_CMD_NEW_DAEMON(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000240)={0x50, r6, 0x1, 0x0, 0x0, {}, [@IPVS_CMD_ATTR_DAEMON={0x3c, 0x3, [@IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @mcast2}, @IPVS_DAEMON_ATTR_SYNC_ID={0x8}, @IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'vcan0\x00'}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x50}}, 0x0) sendmsg$IPVS_CMD_NEW_DAEMON(r3, &(0x7f00000002c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80004000}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0xdc, r6, 0x100, 0x70bd26, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x7fffffff}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0xdfbe}, @IPVS_CMD_ATTR_SERVICE={0x48, 0x1, [@IPVS_SVC_ATTR_SCHED_NAME={0x8, 0x6, 'sed\x00'}, @IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0xffffffe1}, @IPVS_SVC_ATTR_PE_NAME={0x8, 0xb, 'sip\x00'}, @IPVS_SVC_ATTR_NETMASK={0x8, 0x9, 0x73}, @IPVS_SVC_ATTR_PROTOCOL={0x8, 0x2, 0x50}, @IPVS_SVC_ATTR_PROTOCOL={0x8, 0x2, 0xff}, @IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x2319f19aa7baf8c9, 0x75}}, @IPVS_SVC_ATTR_PROTOCOL={0x8, 0x2, 0x4}]}, @IPVS_CMD_ATTR_DEST={0x28, 0x2, [@IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv4=@remote}, @IPVS_DEST_ATTR_TUN_PORT={0x8, 0xe, 0x4e20}, @IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0x3ff}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x9}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x7fffffff}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x4}, @IPVS_CMD_ATTR_DAEMON={0x30, 0x3, [@IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @multicast2}, @IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @multicast2}, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x8, 0x4, 0xc9d4}, @IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'veth0_to_bond\x00'}]}]}, 0xdc}}, 0x181) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f00000000c0)) 07:06:39 executing program 2: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) prctl$PR_GET_DUMPABLE(0x3) r0 = open(&(0x7f0000000080)='./file0\x00', 0x0, 0x4) r1 = syz_open_procfs(0x0, &(0x7f0000000880)='oom_score\x00') r2 = openat$selinux_checkreqprot(0xffffffffffffff9c, &(0x7f00000013c0)='/selinux/checkreqprot\x00', 0x80, 0x0) ioctl$FS_IOC_GETFSMAP(r2, 0xc0c0583b, &(0x7f0000001680)={0x0, 0x0, 0x9, 0x0, [], [{0xdb3, 0x2, 0xf07e, 0x80, 0x71, 0x7}, {0x40, 0x1, 0xe29, 0x2, 0x9, 0x1}], [[], [], [], [], [], [], [], [], []]}) preadv(r1, &(0x7f00000017c0), 0x199, 0x0) r3 = syz_open_procfs(0x0, &(0x7f0000000880)='oom_score\x00') preadv(r3, &(0x7f00000017c0), 0x199, 0x0) ioctl$UI_BEGIN_FF_UPLOAD(r3, 0xc06855c8, &(0x7f0000000640)={0x10, 0xd17, {0x52, 0x2db, 0x7f, {0x200}, {0x40, 0x4}, @const={0x7ff, {0x8, 0xba, 0x1, 0x9150}}}, {0xa5e136065a937c32, 0x5, 0xfff, {0x4, 0x3}, {0x7, 0x1}, @ramp={0x800, 0x80, {0x100, 0x4c2, 0x800, 0x3}}}}) ioctl$TIOCMSET(r3, 0x5418, &(0x7f0000001340)=0x400) ioctl$UI_BEGIN_FF_UPLOAD(r1, 0xc06855c8, &(0x7f0000000640)={0x10, 0xd17, {0x52, 0x2db, 0x7f, {0x200}, {0x40, 0x4}, @const={0x7ff, {0x8, 0xba, 0x1, 0x9150}}}, {0xa5e136065a937c32, 0x5, 0xfff, {0x4, 0x3}, {0x7, 0x1}, @ramp={0x800, 0x80, {0x100, 0x4c2, 0x800, 0x3}}}}) ioctl$UI_SET_RELBIT(r1, 0x40045566, 0x4) syz_mount_image$btrfs(&(0x7f00000001c0)='btrfs\x00', &(0x7f0000000200)='./file0\x00', 0x3, 0x2, &(0x7f0000000280)=[{&(0x7f0000001580)="98b827961eca7925262635dde69b95be5116a4d478b372b851e221cbc7a0e7a9766fb7ca4e7361a1dc94d4949acde10ec75f5a4dde3d2e6bea0221dd10a87ae471d582df0be2134e4c0b82c378eafdf0aa5c18bc953a2c3e9c5afbc35b2b6c77e7aad097cd3b09b6569b2c34ee608f2875e06dec02f223d0d193cf120c4993c98bbc05d343270161cfc0d6ee92a8a0dc504ffd396734354af17144fb9f73dec6ae2555c4fd79cd680bfef5d40b16f2b67155b862eb77a08f61c4fbcc7c1aacd8a9fbf765cad917d3d2e176db4d4ffe4b553bed9438ce67515e164cd5a4a404a0ef", 0xe1, 0x1}, {&(0x7f0000000240)="7247526b4dd453bda2db7fb7c57528a878", 0x11, 0x34c}], 0x2900010, &(0x7f0000001440)={[{@nodatacow='nodatacow'}], [{@subj_user={'subj_user', 0x3d, 'btrfs\x00'}}, {@mask={'mask', 0x3d, '^MAY_APPEND'}}, {@pcr={'pcr', 0x3d, 0x28}}, {@smackfsroot={'smackfsroot', 0x3d, 'btrfs\x00'}}, {@dont_measure='dont_measure'}]}) r4 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000001380)='/dev/btrfs-control\x00', 0x400, 0x0) ioctl$SIOCAX25GETINFO(r4, 0x89ed, &(0x7f0000001500)) bpf$BPF_MAP_LOOKUP_AND_DELETE_ELEM(0x15, &(0x7f00000000c0)={r0, &(0x7f0000000340)="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", &(0x7f0000000140)=""/94}, 0x20) [ 204.352460] FAULT_INJECTION: forcing a failure. [ 204.352460] name failslab, interval 1, probability 0, space 0, times 0 [ 204.408233] IPVS: Error joining to the multicast group [ 204.432757] CPU: 0 PID: 13979 Comm: syz-executor.0 Not tainted 4.14.151 #0 [ 204.439818] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 204.449191] Call Trace: [ 204.451885] dump_stack+0x138/0x197 [ 204.455543] should_fail.cold+0x10f/0x159 [ 204.459717] should_failslab+0xdb/0x130 [ 204.463719] __kmalloc_track_caller+0x2ec/0x790 [ 204.468505] ? unwind_get_return_address+0x61/0xa0 [ 204.473444] ? __save_stack_trace+0x7b/0xd0 [ 204.477771] ? btrfs_parse_early_options+0xa3/0x310 [ 204.482876] kstrdup+0x3a/0x70 [ 204.482892] btrfs_parse_early_options+0xa3/0x310 [ 204.482910] ? save_trace+0x290/0x290 [ 204.482921] ? btrfs_freeze+0xc0/0xc0 [ 204.490929] ? pcpu_alloc+0xcf0/0x1050 [ 204.490938] ? find_held_lock+0x35/0x130 [ 204.490945] ? pcpu_alloc+0xcf0/0x1050 [ 204.490959] btrfs_mount+0x11d/0x2b28 [ 204.490968] ? lock_downgrade+0x740/0x740 [ 204.490975] ? find_held_lock+0x35/0x130 [ 204.490983] ? pcpu_alloc+0x3af/0x1050 [ 204.490995] ? _find_next_bit+0xee/0x120 [ 204.530670] ? check_preemption_disabled+0x3c/0x250 [ 204.535687] ? btrfs_remount+0x11f0/0x11f0 [ 204.539931] ? rcu_read_lock_sched_held+0x110/0x130 [ 204.544953] ? __lockdep_init_map+0x10c/0x570 [ 204.549440] ? __lockdep_init_map+0x10c/0x570 [ 204.553933] mount_fs+0x97/0x2a1 [ 204.557295] vfs_kern_mount.part.0+0x5e/0x3d0 [ 204.561784] ? find_held_lock+0x35/0x130 [ 204.565843] vfs_kern_mount+0x40/0x60 [ 204.569665] btrfs_mount+0x3ce/0x2b28 [ 204.573455] ? lock_downgrade+0x740/0x740 [ 204.577603] ? find_held_lock+0x35/0x130 [ 204.581657] ? pcpu_alloc+0x3af/0x1050 [ 204.585542] ? btrfs_remount+0x11f0/0x11f0 [ 204.589782] ? rcu_read_lock_sched_held+0x110/0x130 [ 204.594815] ? __lockdep_init_map+0x10c/0x570 [ 204.599300] ? __lockdep_init_map+0x10c/0x570 [ 204.603792] mount_fs+0x97/0x2a1 [ 204.607156] vfs_kern_mount.part.0+0x5e/0x3d0 [ 204.611651] do_mount+0x417/0x27d0 [ 204.615185] ? retint_kernel+0x2d/0x2d [ 204.619065] ? copy_mount_string+0x40/0x40 [ 204.623400] ? copy_mount_options+0x19e/0x2f0 [ 204.627885] ? copy_mount_options+0x1fe/0x2f0 [ 204.632402] SyS_mount+0xab/0x120 [ 204.635868] ? copy_mnt_ns+0x8c0/0x8c0 [ 204.639773] do_syscall_64+0x1e8/0x640 [ 204.643686] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 204.648539] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 204.653811] RIP: 0033:0x45cc6a [ 204.657002] RSP: 002b:00007f46eab45a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 204.664710] RAX: ffffffffffffffda RBX: 00007f46eab45b40 RCX: 000000000045cc6a [ 204.671983] RDX: 00007f46eab45ae0 RSI: 0000000020000100 RDI: 00007f46eab45b00 [ 204.679248] RBP: 0000000000000001 R08: 00007f46eab45b40 R09: 00007f46eab45ae0 [ 204.686516] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000004 [ 204.693783] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 07:06:39 executing program 0 (fault-call:0 fault-nth:59): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x0, 0x989680}) socket$inet6_sctp(0xa, 0x0, 0x84) 07:06:39 executing program 5: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x2000000000, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) syz_open_procfs(0x0, 0x0) timer_create(0x7, &(0x7f0000000080)={0x0, 0x23, 0x3, @tid=0xffffffffffffffff}, &(0x7f00000000c0)=0x0) clock_gettime(0x0, &(0x7f0000000140)={0x0, 0x0}) timer_settime(r0, 0x1, &(0x7f0000000180)={{r1, r2+30000000}, {0x77359400}}, &(0x7f00000001c0)) r3 = syz_open_procfs(0x0, &(0x7f0000000880)='oom_score\x00') preadv(r3, &(0x7f00000017c0), 0x199, 0x0) ioctl$UI_BEGIN_FF_UPLOAD(r3, 0xc06855c8, &(0x7f0000000640)={0x10, 0xd17, {0x52, 0x2db, 0x7f, {0x200}, {0x40, 0x4}, @const={0x7ff, {0x8, 0xba, 0x1, 0x9150}}}, {0xa5e136065a937c32, 0x5, 0xfff, {0x4, 0x3}, {0x7, 0x1}, @ramp={0x800, 0x80, {0x100, 0x4c2, 0x800, 0x3}}}}) ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000200)=0x0) getpriority(0x5, r4) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) socket$inet6_sctp(0xa, 0x5, 0x84) [ 204.859453] FAULT_INJECTION: forcing a failure. [ 204.859453] name failslab, interval 1, probability 0, space 0, times 0 [ 204.876133] CPU: 1 PID: 14017 Comm: syz-executor.0 Not tainted 4.14.151 #0 [ 204.883206] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 204.892569] Call Trace: [ 204.892591] dump_stack+0x138/0x197 [ 204.892609] should_fail.cold+0x10f/0x159 [ 204.892625] should_failslab+0xdb/0x130 [ 204.892638] __kmalloc_track_caller+0x2ec/0x790 [ 204.892648] ? unwind_get_return_address+0x61/0xa0 [ 204.892658] ? __save_stack_trace+0x7b/0xd0 [ 204.892670] ? btrfs_parse_early_options+0xa3/0x310 [ 204.892680] kstrdup+0x3a/0x70 [ 204.892690] btrfs_parse_early_options+0xa3/0x310 [ 204.892702] ? save_trace+0x290/0x290 [ 204.892710] ? btrfs_freeze+0xc0/0xc0 [ 204.892720] ? find_next_bit+0x28/0x30 [ 204.945425] ? pcpu_alloc+0xcf0/0x1050 [ 204.949303] ? find_held_lock+0x35/0x130 [ 204.953349] ? pcpu_alloc+0xcf0/0x1050 [ 204.957228] btrfs_mount+0x11d/0x2b28 [ 204.961014] ? lock_downgrade+0x740/0x740 [ 204.965142] ? find_held_lock+0x35/0x130 [ 204.969187] ? pcpu_alloc+0x3af/0x1050 [ 204.973069] ? _find_next_bit+0xee/0x120 [ 204.977117] ? check_preemption_disabled+0x3c/0x250 [ 204.982115] ? btrfs_remount+0x11f0/0x11f0 [ 204.986339] ? rcu_read_lock_sched_held+0x110/0x130 [ 204.991442] ? __lockdep_init_map+0x10c/0x570 [ 204.995937] ? __lockdep_init_map+0x10c/0x570 [ 205.000431] mount_fs+0x97/0x2a1 [ 205.003800] vfs_kern_mount.part.0+0x5e/0x3d0 [ 205.008301] ? find_held_lock+0x35/0x130 [ 205.012347] vfs_kern_mount+0x40/0x60 [ 205.016131] btrfs_mount+0x3ce/0x2b28 [ 205.019915] ? lock_downgrade+0x740/0x740 [ 205.024045] ? find_held_lock+0x35/0x130 [ 205.028099] ? pcpu_alloc+0x3af/0x1050 [ 205.031974] ? btrfs_remount+0x11f0/0x11f0 [ 205.036195] ? rcu_read_lock_sched_held+0x110/0x130 [ 205.041210] ? __lockdep_init_map+0x10c/0x570 [ 205.045710] ? __lockdep_init_map+0x10c/0x570 [ 205.050293] mount_fs+0x97/0x2a1 [ 205.053926] vfs_kern_mount.part.0+0x5e/0x3d0 [ 205.058406] do_mount+0x417/0x27d0 [ 205.061932] ? copy_mount_options+0x5c/0x2f0 [ 205.066499] ? rcu_read_lock_sched_held+0x110/0x130 [ 205.071510] ? copy_mount_string+0x40/0x40 [ 205.075736] ? copy_mount_options+0x1fe/0x2f0 [ 205.080217] SyS_mount+0xab/0x120 [ 205.084269] ? copy_mnt_ns+0x8c0/0x8c0 [ 205.088230] do_syscall_64+0x1e8/0x640 [ 205.092100] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 205.097038] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 205.102227] RIP: 0033:0x45cc6a 07:06:40 executing program 1: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0xaaaaaaaaaaaad5c, &(0x7f0000000040), 0x6000, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x100, 0x0) lsetxattr$trusted_overlay_upper(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='trusted.overlay.upper\x00', &(0x7f0000000140)={0x0, 0xfb, 0x39, 0x2, 0x6, "aa689461ecfd6dddd71284c1e87a96e6", "98ccd372c56140f329369c73111c2e5e47180921d9cea7a40ddd498f591de9a49c421747"}, 0x39, 0x1) 07:06:40 executing program 4: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, 0x0) r1 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) ioctl$VIDIOC_QUERYCAP(r1, 0x80685600, &(0x7f0000000040)) syz_open_dev$mouse(0x0, 0x0, 0x0) r2 = syz_open_dev$dspn(&(0x7f0000000100)='/dev/dsp#\x00', 0x7fff, 0x101003) ioctl$EVIOCGABS0(r2, 0x80184540, &(0x7f0000000140)=""/75) sysfs$2(0x2, 0x7, &(0x7f00000001c0)=""/203) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_PIT2(r2, 0x4040ae77, &(0x7f00000002c0)) [ 205.105405] RSP: 002b:00007f46eab45a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 205.113096] RAX: ffffffffffffffda RBX: 00007f46eab45b40 RCX: 000000000045cc6a [ 205.120357] RDX: 00007f46eab45ae0 RSI: 0000000020000100 RDI: 00007f46eab45b00 [ 205.127631] RBP: 0000000000000001 R08: 00007f46eab45b40 R09: 00007f46eab45ae0 [ 205.134914] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000004 [ 205.142172] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 07:06:40 executing program 2: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x7f}], 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r0, 0x407, 0x0) write(r0, &(0x7f0000000340), 0x41395527) ioctl$EXT4_IOC_ALLOC_DA_BLKS(r0, 0x660c) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000380)="0c4f4d16cf2f3a2dd8a5046790a60c91e487dc9ca281434dbc169c6555a654da5e42c953490634b417ec9535653162fc5730d4c8dab3e136550ed7d31fa8d7094afd6e5154349155e6ef7e5fb08d79c283188a3f28548ab4366e6863ba5561aedbd1ee3f9a2c5646e4a9c2806b231528bca7ee2134e39966c40bcb1371a7e7691672a8dc9bda07175f11a9160cba3f0ddb78db3b2e184e1e9aa371691df9f49a5e3343bce4e4b8a2c80831b63d95ed57cf89982b317abf1cf8a71078d00dd5fa9151c142fa4bb765d503150f5f6f34284c7480a5091e9b246e", 0xd9) fsetxattr$trusted_overlay_nlink(r0, &(0x7f0000000240)='trusted.overlay.nlink\x00', &(0x7f0000000300)={'U+', 0x7}, 0x28, 0x3) ioctl$sock_inet6_tcp_SIOCOUTQ(r0, 0x5411, &(0x7f0000000080)) getsockopt$ARPT_SO_GET_REVISION_TARGET(r0, 0x0, 0x63, &(0x7f00000000c0)={'NETMAP\x00'}, &(0x7f0000000140)=0x1e) 07:06:40 executing program 3: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, 0x0) r1 = msgget$private(0x0, 0x0) msgctl$IPC_SET(r1, 0x1, 0x0) msgsnd(r1, 0x0, 0x0, 0x0) msgctl$IPC_INFO(r1, 0x3, &(0x7f0000000080)=""/34) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000000100)={{{@in6=@loopback, @in6=@dev}}, {{@in6=@mcast1}, 0x0, @in=@local}}, &(0x7f0000000200)=0xe8) r3 = socket(0x10, 0x2, 0x0) getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, 0x0}, &(0x7f0000cab000)=0xc) syz_mount_image$hfsplus(&(0x7f00000000c0)='hfsplus\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='gid=', @ANYRESHEX=r4, @ANYBLOB="2c00cb3f1bdded29abe8a095d6590cfa0594cd55cff03f21ba35a4b3eccc18ff915d752c15c4134ca3b71045b2e32f81936b9661919f835c49d992b7e5be7a5dc2827996dbf766829ad21176989c07e2b3d7361af4717278aec552a7d3d00b0a82b00a9a5dd1a2bd2ed14d178c37acc13dd8b79ea3447f3fc16d89cb4dbb36981320044cb2f3e00d87b9b0dddafcff5612a9c2b5457b52aa0f40124faf4dfb90a42d33c7790e81e3c1665b467cebe237b418e48caac5de391d775b9f079a25bda1c7f25e002fcca9f9cbdb992304c5c46a9c95498db3f0b308"]) getgroups(0x1, &(0x7f0000000240)=[r4]) lstat(&(0x7f0000000280)='./file0\x00', &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x0}) r7 = socket(0x10, 0x2, 0x0) getsockopt$sock_cred(r7, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, 0x0}, &(0x7f0000cab000)=0xc) syz_mount_image$hfsplus(&(0x7f00000000c0)='hfsplus\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRESHEX=r8, @ANYBLOB=',\x00']) r9 = gettid() r10 = getpid() sched_setattr(r10, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0) r11 = msgget$private(0x0, 0x0) msgctl$IPC_SET(r11, 0x1, 0x0) msgsnd(r11, 0x0, 0x0, 0x0) msgctl$IPC_INFO(r11, 0x3, &(0x7f0000000080)=""/34) msgctl$IPC_SET(r11, 0x1, &(0x7f0000000340)={{0x9, 0xee00, r5, r6, r8, 0x31, 0x4}, 0x0, 0x7fd8, 0x9, 0x7fff, 0x2, 0x7c, r9, r10}) r12 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) ioctl$VIDIOC_QUERYCAP(r12, 0x80685600, &(0x7f0000000040)) syz_open_dev$mouse(0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f00000000c0)) 07:06:40 executing program 4: sched_setscheduler(0x0, 0x5, 0x0) r0 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dlm-monitor\x00', 0x10002, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, r0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r1, 0x8934, 0x0) r2 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) ioctl$VIDIOC_QUERYCAP(r2, 0x80685600, &(0x7f0000000040)) r3 = syz_open_dev$mouse(0x0, 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r4, 0x407, 0x0) write(r4, &(0x7f0000000340), 0x41395527) ioctl$EXT4_IOC_ALLOC_DA_BLKS(r4, 0x660c) setsockopt$ALG_SET_KEY(r4, 0x117, 0x1, &(0x7f0000000380)="0c4f4d16cf2f3a2dd8a5046790a60c91e487dc9ca281434dbc169c6555a654da5e42c953490634b417ec9535653162fc5730d4c8dab3e136550ed7d31fa8d7094afd6e5154349155e6ef7e5fb08d79c283188a3f28548ab4366e6863ba5561aedbd1ee3f9a2c5646e4a9c2806b231528bca7ee2134e39966c40bcb1371a7e7691672a8dc9bda07175f11a9160cba3f0ddb78db3b2e184e1e9aa371691df9f49a5e3343bce4e4b8a2c80831b63d95ed57cf89982b317abf1cf8a71078d00dd5fa9151c142fa4bb765d503150f5f6f34284c7480a5091e9b246e", 0xd9) fsetxattr$trusted_overlay_nlink(r4, &(0x7f0000000240)='trusted.overlay.nlink\x00', &(0x7f0000000300)={'U+', 0x7}, 0x28, 0x3) getsockopt$TIPC_GROUP_JOIN(r4, 0x10f, 0x87, &(0x7f0000000140), &(0x7f0000000180)=0x4) setsockopt$ALG_SET_AEAD_AUTHSIZE(r2, 0x117, 0x5, 0x0, 0x40) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) setsockopt$RDS_GET_MR(0xffffffffffffffff, 0x114, 0x2, &(0x7f0000000500)={{&(0x7f00000002c0)=""/24, 0x18}, &(0x7f0000000340), 0x4}, 0x20) setsockopt$IP_VS_SO_SET_DELDEST(r3, 0x0, 0x488, &(0x7f0000000480)={{0x88, @broadcast, 0x4e20, 0x3, 'rr\x00', 0x74, 0x80000000, 0x35}, {@broadcast, 0x4e21, 0x0, 0x6, 0xffffffe1, 0x1f}}, 0x44) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f00000000c0)) r5 = syz_open_procfs(0x0, &(0x7f0000000880)='oom_score\x00') preadv(r5, &(0x7f00000017c0), 0x199, 0x0) ioctl$UI_BEGIN_FF_UPLOAD(r5, 0xc06855c8, &(0x7f0000000640)={0x10, 0xd17, {0x52, 0x2db, 0x7f, {0x200}, {0x40, 0x4}, @const={0x7ff, {0x8, 0xba, 0x1, 0x9150}}}, {0xa5e136065a937c32, 0x5, 0xfff, {0x4, 0x3}, {0x7, 0x1}, @ramp={0x800, 0x80, {0x100, 0x4c2, 0x800, 0x3}}}}) r6 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r6, &(0x7f0000008880), 0x400000000000249, 0x0, 0x0) connect$inet6(r6, &(0x7f0000000280)={0xa, 0x4e23, 0x4, @loopback, 0xff}, 0x1c) sendto$llc(r5, &(0x7f00000001c0)="e0496735546188d6d9299b8f5684", 0xe, 0x4048, 0x0, 0x0) 07:06:40 executing program 5: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) syz_open_procfs(0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) socket$inet6_sctp(0xa, 0x1, 0x84) r0 = syz_open_procfs(0x0, &(0x7f0000000880)='oom_score\x00') preadv(r0, &(0x7f00000017c0), 0x199, 0x0) ioctl$UI_BEGIN_FF_UPLOAD(r0, 0xc06855c8, &(0x7f0000000640)={0x10, 0xd17, {0x52, 0x2db, 0x7f, {0x200}, {0x40, 0x4}, @const={0x7ff, {0x8, 0xba, 0x1, 0x9150}}}, {0xa5e136065a937c32, 0x5, 0xfff, {0x4, 0x3}, {0x7, 0x1}, @ramp={0x800, 0x80, {0x100, 0x4c2, 0x800, 0x3}}}}) fsetxattr$security_smack_entry(r0, &(0x7f0000000080)='security.SMACK64IPOUT\x00', &(0x7f00000000c0)='trusted.overlay.nlink\x00', 0x16, 0x2) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r1, 0x407, 0x0) write(r1, &(0x7f0000000340), 0x41395527) ioctl$EXT4_IOC_ALLOC_DA_BLKS(r1, 0x660c) setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000380)="0c4f4d16cf2f3a2dd8a5046790a60c91e487dc9ca281434dbc169c6555a654da5e42c953490634b417ec9535653162fc5730d4c8dab3e136550ed7d31fa8d7094afd6e5154349155e6ef7e5fb08d79c283188a3f28548ab4366e6863ba5561aedbd1ee3f9a2c5646e4a9c2806b231528bca7ee2134e39966c40bcb1371a7e7691672a8dc9bda07175f11a9160cba3f0ddb78db3b2e184e1e9aa371691df9f49a5e3343bce4e4b8a2c80831b63d95ed57cf89982b317abf1cf8a71078d00dd5fa9151c142fa4bb765d503150f5f6f34284c7480a5091e9b246e", 0xd9) fsetxattr$trusted_overlay_nlink(r1, &(0x7f0000000240)='trusted.overlay.nlink\x00', &(0x7f0000000300)={'U+', 0x7}, 0x28, 0x3) r2 = dup3(0xffffffffffffffff, r1, 0x5fedf5067ec04ebc) ioctl$RTC_IRQP_SET(r2, 0x4008700c, 0x121d) 07:06:40 executing program 0 (fault-call:0 fault-nth:60): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x0, 0x989680}) socket$inet6_sctp(0xa, 0x0, 0x84) [ 205.472341] hfsplus: gid requires an argument [ 205.476892] hfsplus: unable to parse mount options [ 205.502872] FAULT_INJECTION: forcing a failure. [ 205.502872] name fail_page_alloc, interval 1, probability 0, space 0, times 0 07:06:40 executing program 1: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x40000000000000, 0x0, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0) r1 = syz_open_procfs(0x0, &(0x7f00000006c0)='Net/3\x97OOT\x15\x00\xb6\xcf@e\xd3r\x82\x9fc') ioctl$VIDIOC_PREPARE_BUF(r1, 0xc058565d, &(0x7f00000005c0)={0x0, 0xb, 0x4, 0x0, {0x0, 0x7530}, {0x0, 0x2, 0x81, 0x10, 0x24, 0x6, "cf676f53"}, 0x80, 0x5, @offset=0x9, 0x4}) mq_timedsend(r1, &(0x7f0000000480)="c1cc3d2c05c16add6c964974e00652617b35c74bd5a620d3170df3c2f134d5beb838b0f00c6ca198401126d02772777a96ead8602a94c5450ea4e5c8b02fc6e876ee2383fc4faa682ed6a91a53a08a1fdd9839c170a6f81ede814c769cf15c688c8514b5f4f1dc0a50019813ce4459df629cd480519073a5f929cd5e59d0058ea64475a46e924294d5ef1b4b158e59d9c923a0", 0x93, 0x4, &(0x7f0000000540)={0x0, 0x989680}) r2 = socket$inet6_sctp(0xa, 0x1, 0x84) r3 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r3, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [0x0]}, &(0x7f000095dffc)=0x8) getsockopt$inet_sctp6_SCTP_ASSOCINFO(r2, 0x84, 0x1, &(0x7f0000000000)={r4}, &(0x7f0000000040)=0x14) setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r1, 0x84, 0x72, &(0x7f0000000180)={r4, 0x2, 0x50}, 0xc) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000000c0)={r0, 0xffffffffffffffff, 0x0, 0x6, &(0x7f0000000080)='btrfs\x00', 0xffffffffffffffff}, 0x30) sched_getparam(r5, &(0x7f0000000140)) ioctl$TCSETAW(0xffffffffffffffff, 0x5407, &(0x7f00000001c0)={0x480, 0x3, 0x16, 0xcc08, 0x16, 0x9, 0xff, 0x1, 0xfffff001, 0x3f}) [ 205.579495] CPU: 0 PID: 14065 Comm: syz-executor.0 Not tainted 4.14.151 #0 [ 205.586569] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 205.596111] Call Trace: [ 205.598712] dump_stack+0x138/0x197 [ 205.602360] should_fail.cold+0x10f/0x159 [ 205.606527] ? __might_sleep+0x93/0xb0 [ 205.610442] __alloc_pages_nodemask+0x1d6/0x7a0 [ 205.615129] ? trace_hardirqs_on+0xd/0x10 [ 205.619288] ? __alloc_pages_slowpath+0x2930/0x2930 [ 205.624319] ? btrfs_parse_early_options+0x1a2/0x310 [ 205.629467] alloc_pages_current+0xec/0x1e0 [ 205.629487] __get_free_pages+0xf/0x40 [ 205.629496] get_zeroed_page+0x11/0x20 [ 205.629513] parse_security_options+0x1f/0xa0 [ 205.637720] btrfs_mount+0x2bb/0x2b28 [ 205.637735] ? lock_downgrade+0x740/0x740 [ 205.637744] ? find_held_lock+0x35/0x130 [ 205.637752] ? pcpu_alloc+0x3af/0x1050 [ 205.637768] ? btrfs_remount+0x11f0/0x11f0 [ 205.666198] ? rcu_read_lock_sched_held+0x110/0x130 [ 205.671240] ? __lockdep_init_map+0x10c/0x570 [ 205.675759] mount_fs+0x97/0x2a1 [ 205.679146] vfs_kern_mount.part.0+0x5e/0x3d0 [ 205.683661] ? find_held_lock+0x35/0x130 [ 205.687754] vfs_kern_mount+0x40/0x60 [ 205.691571] btrfs_mount+0x3ce/0x2b28 [ 205.695649] ? lock_downgrade+0x740/0x740 [ 205.699839] ? find_held_lock+0x35/0x130 [ 205.703943] ? pcpu_alloc+0x3af/0x1050 [ 205.707858] ? btrfs_remount+0x11f0/0x11f0 [ 205.712107] ? rcu_read_lock_sched_held+0x110/0x130 [ 205.717169] ? __lockdep_init_map+0x10c/0x570 [ 205.721675] ? __lockdep_init_map+0x10c/0x570 [ 205.726199] mount_fs+0x97/0x2a1 [ 205.729559] vfs_kern_mount.part.0+0x5e/0x3d0 [ 205.734169] do_mount+0x417/0x27d0 [ 205.737720] ? copy_mount_options+0x5c/0x2f0 [ 205.742117] ? rcu_read_lock_sched_held+0x110/0x130 [ 205.747300] ? copy_mount_string+0x40/0x40 [ 205.751538] ? copy_mount_options+0x1fe/0x2f0 [ 205.756020] SyS_mount+0xab/0x120 [ 205.759456] ? copy_mnt_ns+0x8c0/0x8c0 [ 205.763333] do_syscall_64+0x1e8/0x640 [ 205.767217] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 205.772058] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 205.777241] RIP: 0033:0x45cc6a [ 205.780417] RSP: 002b:00007f46eab45a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 205.788221] RAX: ffffffffffffffda RBX: 00007f46eab45b40 RCX: 000000000045cc6a [ 205.795478] RDX: 00007f46eab45ae0 RSI: 0000000020000100 RDI: 00007f46eab45b00 [ 205.802744] RBP: 0000000000000001 R08: 00007f46eab45b40 R09: 00007f46eab45ae0 [ 205.810012] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000004 [ 205.817275] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 07:06:40 executing program 0 (fault-call:0 fault-nth:61): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x0, 0x989680}) socket$inet6_sctp(0xa, 0x0, 0x84) [ 205.909993] FAULT_INJECTION: forcing a failure. [ 205.909993] name failslab, interval 1, probability 0, space 0, times 0 [ 205.945053] CPU: 0 PID: 14098 Comm: syz-executor.0 Not tainted 4.14.151 #0 [ 205.952135] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 205.961482] Call Trace: [ 205.964062] dump_stack+0x138/0x197 [ 205.967680] should_fail.cold+0x10f/0x159 [ 205.971832] should_failslab+0xdb/0x130 [ 205.975805] __kmalloc_track_caller+0x2ec/0x790 [ 205.980464] ? kstrdup_const+0x48/0x60 [ 205.984351] kstrdup+0x3a/0x70 [ 205.987526] kstrdup_const+0x48/0x60 [ 205.991228] alloc_vfsmnt+0xe5/0x7d0 [ 205.995023] vfs_kern_mount.part.0+0x2a/0x3d0 [ 205.999502] ? find_held_lock+0x35/0x130 [ 206.003576] vfs_kern_mount+0x40/0x60 [ 206.007365] btrfs_mount+0x3ce/0x2b28 [ 206.011148] ? lock_downgrade+0x740/0x740 [ 206.015284] ? find_held_lock+0x35/0x130 [ 206.019331] ? pcpu_alloc+0x3af/0x1050 [ 206.023210] ? btrfs_remount+0x11f0/0x11f0 [ 206.027438] ? rcu_read_lock_sched_held+0x110/0x130 [ 206.032453] ? __lockdep_init_map+0x10c/0x570 [ 206.036931] ? __lockdep_init_map+0x10c/0x570 [ 206.041420] mount_fs+0x97/0x2a1 [ 206.044776] vfs_kern_mount.part.0+0x5e/0x3d0 [ 206.049261] do_mount+0x417/0x27d0 [ 206.052799] ? copy_mount_options+0x5c/0x2f0 [ 206.057203] ? rcu_read_lock_sched_held+0x110/0x130 [ 206.062208] ? copy_mount_string+0x40/0x40 [ 206.066468] ? copy_mount_options+0x1fe/0x2f0 [ 206.071064] SyS_mount+0xab/0x120 [ 206.074616] ? copy_mnt_ns+0x8c0/0x8c0 [ 206.079113] do_syscall_64+0x1e8/0x640 [ 206.082985] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 206.087822] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 206.092998] RIP: 0033:0x45cc6a [ 206.096187] RSP: 002b:00007f46eab45a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 07:06:41 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000880)='oom_score\x00') preadv(r0, &(0x7f00000017c0), 0x199, 0x0) ioctl$UI_BEGIN_FF_UPLOAD(r0, 0xc06855c8, &(0x7f0000000640)={0x10, 0xd17, {0x52, 0x2db, 0x7f, {0x200}, {0x40, 0x4}, @const={0x7ff, {0x8, 0xba, 0x1, 0x9150}}}, {0xa5e136065a937c32, 0x5, 0xfff, {0x4, 0x3}, {0x7, 0x1}, @ramp={0x800, 0x80, {0x100, 0x4c2, 0x800, 0x3}}}}) ioctl$PIO_FONTRESET(r0, 0x4b6d, 0x0) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 07:06:41 executing program 1: r0 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vga_arbiter\x00', 0x10200, 0x0) read$eventfd(r0, &(0x7f0000000080), 0x8) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x6, &(0x7f0000001680)=[{&(0x7f0000000140)="b51016b09dc8e930d54b4b46bd53b18712b812db602ebf9afb316fc77bb515b30f0bfff5de7ba6c89ddf925be2f4c3bec8b724813a5cf51a492801ce576b9238bad3e3ff7c13b8d913892eb84d204b7ac5189407bf3e0b38636ee8274fee594eae0e52823183425115e2075140ee906452d27dfd8a557a3bf6efeec5fa46520dc5c5de6a747c1333545d15aa6bd290ea4daee5e4ac719c25ee3d6ceab9156e4f244908159b45514934d82cda9019ab11d1ba19c5f6c7756180ecbcd707abe54f07b2a9e85f96e44e04f574219038bce951bcd0a42be1dcfd154b46fd7d394997dd57f6fe0d99c15265ae38a51494225cd5b120b3", 0xf4, 0x7}, {&(0x7f0000000340)="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", 0xff, 0x1ff}, {&(0x7f0000000440)="25151dba82ef2a1e03997161f14df3b6bd7facd0f788a3171a20ac74aa88287e6208b359effbe35e03b1e5faeb60a445053e0079b88f5199a33a00320df347a9e40190f117ea41e42a766df8259fe5ce2836bc11433e07611ba69b5b7795252d20f80aab78be199a16d77b22bc4d28ac8acbc895930bf969471cdf4217a186a95124a02ee10fc25c65fb8483063201d0ffa86c8479a36f6968ff3cf5ae1fcd1ac2c6358a06d34c9cc6cdeae2", 0xac, 0x6}, {&(0x7f0000000500)="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", 0x1000, 0x9}, {&(0x7f0000001500)="8ea725bb50ae1bc0834ab9193c5ae14522734a7d12c4b8a847596e42aaa82d5999b7e97a34a461a194e130b909414dc72fd877f81b4f938a24e955233e2c40161eb4e7f3a515d8903023f5c03721f9e4b2e16d578c639303f84177f9f3b8c7be435752d80bfad10e99b275d25188d8dcce1933a8b2cdbd0baee52f0000000000000000", 0x83, 0x6}, {&(0x7f00000015c0)="b1e83ce2281ed906284ad270f841ca9c00a58a24d9bd636a5f8ec0e327965c921cbe2ca0cd2ef3f481979137e345f5e2bea105f1f33e30897cc0deefc81853020635bc37a75fe1c20df96f5c59164d0a3c226471582bdfa23a65976adc01a4a6bfd3952eddbf05d71507203fe325b80822ef55c55ed170fb55286ab64478eeb79548b528f39ab94eed4df2", 0x8b, 0x20}], 0x8000, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) [ 206.103894] RAX: ffffffffffffffda RBX: 00007f46eab45b40 RCX: 000000000045cc6a [ 206.111151] RDX: 00007f46eab45ae0 RSI: 0000000020000100 RDI: 00007f46eab45b00 [ 206.118407] RBP: 0000000000000001 R08: 00007f46eab45b40 R09: 00007f46eab45ae0 [ 206.125658] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000004 [ 206.132918] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 07:06:41 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x2000000000, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) syz_open_procfs(0x0, 0x0) timer_create(0x7, &(0x7f0000000080)={0x0, 0x23, 0x3, @tid=0xffffffffffffffff}, &(0x7f00000000c0)=0x0) clock_gettime(0x0, &(0x7f0000000140)={0x0, 0x0}) timer_settime(r0, 0x1, &(0x7f0000000180)={{r1, r2+30000000}, {0x77359400}}, &(0x7f00000001c0)) r3 = syz_open_procfs(0x0, &(0x7f0000000880)='oom_score\x00') preadv(r3, &(0x7f00000017c0), 0x199, 0x0) ioctl$UI_BEGIN_FF_UPLOAD(r3, 0xc06855c8, &(0x7f0000000640)={0x10, 0xd17, {0x52, 0x2db, 0x7f, {0x200}, {0x40, 0x4}, @const={0x7ff, {0x8, 0xba, 0x1, 0x9150}}}, {0xa5e136065a937c32, 0x5, 0xfff, {0x4, 0x3}, {0x7, 0x1}, @ramp={0x800, 0x80, {0x100, 0x4c2, 0x800, 0x3}}}}) ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000200)=0x0) getpriority(0x5, r4) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) socket$inet6_sctp(0xa, 0x5, 0x84) 07:06:41 executing program 0 (fault-call:0 fault-nth:62): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x0, 0x989680}) socket$inet6_sctp(0xa, 0x0, 0x84) 07:06:41 executing program 5: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) syz_open_procfs(0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) socket$inet6_sctp(0xa, 0x1, 0x84) r0 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080)='/dev/snapshot\x00', 0x400000, 0x0) r1 = socket$inet6_sctp(0xa, 0x1, 0x84) r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [0x0]}, &(0x7f000095dffc)=0x8) getsockopt$inet_sctp6_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f0000000000)={r3}, &(0x7f0000000040)=0x14) getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r0, 0x84, 0x66, &(0x7f00000000c0)={r3, 0x101}, &(0x7f0000000140)=0x8) 07:06:41 executing program 3: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, 0x0) r1 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) ioctl$VIDIOC_QUERYCAP(r1, 0x80685600, &(0x7f0000000040)) syz_open_dev$mouse(0x0, 0x0, 0x0) r2 = syz_open_dev$dspn(&(0x7f0000000100)='/dev/dsp#\x00', 0x7fff, 0x101003) ioctl$EVIOCGABS0(r2, 0x80184540, &(0x7f0000000140)=""/75) sysfs$2(0x2, 0x7, &(0x7f00000001c0)=""/203) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_PIT2(r2, 0x4040ae77, &(0x7f00000002c0)) 07:06:41 executing program 4: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, 0x0) r1 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) ioctl$VIDIOC_QUERYCAP(r1, 0x80685600, &(0x7f0000000040)) syz_open_dev$mouse(0x0, 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) getresuid(&(0x7f0000000100), &(0x7f0000000140), &(0x7f0000000180)=0x0) ioctl$SIOCAX25GETUID(r2, 0x89e0, &(0x7f00000001c0)={0x3, @null, r3}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f00000000c0)) 07:06:41 executing program 2: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = syz_open_dev$sndpcmc(&(0x7f0000000080)='/dev/snd/pcmC#D#c\x00', 0x8, 0x400000) ioctl$KVM_GET_MP_STATE(r0, 0x8004ae98, &(0x7f00000000c0)) [ 206.412492] FAULT_INJECTION: forcing a failure. [ 206.412492] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 206.461527] CPU: 1 PID: 14142 Comm: syz-executor.0 Not tainted 4.14.151 #0 [ 206.468590] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 206.478044] Call Trace: [ 206.480653] dump_stack+0x138/0x197 [ 206.484304] should_fail.cold+0x10f/0x159 [ 206.488472] ? __might_sleep+0x93/0xb0 [ 206.492386] __alloc_pages_nodemask+0x1d6/0x7a0 [ 206.497063] ? trace_hardirqs_on+0xd/0x10 [ 206.501207] ? __alloc_pages_slowpath+0x2930/0x2930 [ 206.501220] ? btrfs_parse_early_options+0x1a2/0x310 [ 206.501241] alloc_pages_current+0xec/0x1e0 [ 206.501258] __get_free_pages+0xf/0x40 [ 206.501267] get_zeroed_page+0x11/0x20 [ 206.501277] parse_security_options+0x1f/0xa0 [ 206.501289] btrfs_mount+0x2bb/0x2b28 [ 206.501298] ? lock_downgrade+0x740/0x740 [ 206.501310] ? find_held_lock+0x35/0x130 [ 206.511425] ? pcpu_alloc+0x3af/0x1050 [ 206.511446] ? btrfs_remount+0x11f0/0x11f0 [ 206.511464] ? rcu_read_lock_sched_held+0x110/0x130 [ 206.511486] ? __lockdep_init_map+0x10c/0x570 [ 206.511502] mount_fs+0x97/0x2a1 [ 206.511516] vfs_kern_mount.part.0+0x5e/0x3d0 [ 206.511523] ? find_held_lock+0x35/0x130 [ 206.511534] vfs_kern_mount+0x40/0x60 [ 206.511545] btrfs_mount+0x3ce/0x2b28 [ 206.520699] ? lock_downgrade+0x740/0x740 [ 206.520709] ? find_held_lock+0x35/0x130 [ 206.520720] ? pcpu_alloc+0x3af/0x1050 [ 206.520741] ? btrfs_remount+0x11f0/0x11f0 [ 206.520757] ? rcu_read_lock_sched_held+0x110/0x130 [ 206.520774] ? __lockdep_init_map+0x10c/0x570 [ 206.520787] ? __lockdep_init_map+0x10c/0x570 [ 206.529245] mount_fs+0x97/0x2a1 [ 206.529262] vfs_kern_mount.part.0+0x5e/0x3d0 [ 206.529282] do_mount+0x417/0x27d0 [ 206.529302] ? copy_mount_string+0x40/0x40 [ 206.529310] ? copy_mount_options+0x151/0x2f0 [ 206.529326] ? __sanitizer_cov_trace_pc+0x41/0x60 [ 206.633448] ? copy_mount_options+0x1fe/0x2f0 [ 206.637930] SyS_mount+0xab/0x120 [ 206.641366] ? copy_mnt_ns+0x8c0/0x8c0 [ 206.645267] do_syscall_64+0x1e8/0x640 [ 206.649224] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 206.654051] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 206.659395] RIP: 0033:0x45cc6a 07:06:41 executing program 1: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xc) setresuid(0x0, r1, 0x0) mount$9p_virtio(&(0x7f0000000080)='\x00', &(0x7f00000000c0)='./file0\x00', &(0x7f0000000140)='9p\x00', 0x8000c0, &(0x7f0000000180)={'trans=virtio,', {[{@access_client='access=client'}, {@access_client='access=client'}], [{@fowner_eq={'fowner', 0x3d, r1}}, {@measure='measure'}]}}) [ 206.662564] RSP: 002b:00007f46eab45a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 206.670256] RAX: ffffffffffffffda RBX: 00007f46eab45b40 RCX: 000000000045cc6a [ 206.677510] RDX: 00007f46eab45ae0 RSI: 0000000020000100 RDI: 00007f46eab45b00 [ 206.684766] RBP: 0000000000000001 R08: 00007f46eab45b40 R09: 00007f46eab45ae0 [ 206.692027] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000004 [ 206.699277] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 07:06:41 executing program 3: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, 0x0) r1 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) ioctl$VIDIOC_QUERYCAP(r1, 0x80685600, &(0x7f0000000040)) syz_open_dev$mouse(0x0, 0x0, 0x0) r2 = syz_open_dev$dspn(&(0x7f0000000100)='/dev/dsp#\x00', 0x7fff, 0x101003) ioctl$EVIOCGABS0(r2, 0x80184540, &(0x7f0000000140)=""/75) sysfs$2(0x2, 0x7, &(0x7f00000001c0)=""/203) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_PIT2(r2, 0x4040ae77, &(0x7f00000002c0)) 07:06:41 executing program 2: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) syz_mount_image$hfsplus(&(0x7f0000000080)='hfsplus\x00', &(0x7f00000000c0)='./file0\x00', 0x4, 0x6, &(0x7f0000001400)=[{&(0x7f0000000140), 0x0, 0x1}, {&(0x7f0000000180)="172d0b", 0x3, 0x43}, {&(0x7f00000001c0)="353680adb0eef804c23180b4346879bf30d635137fcc3eccdccdde61c882f3c2e2ec2717bb6864ff3197d8378e79dbd3a468038d97f582d8c91af40ccd34adeb77e6ce05580f2f7e73c058760b8e80fef40bad42a8c1b3106a6e58edcb9f0bf3d6eaffd4afbbcfb783e764375209306dd5a0c5769900e4a3585b7b6ecd1ede534218ad4565a8cbaedb4baae2525d1451d8a5911d9b9320709b4ada444f64c7db35edc61edee734a48426777fc784cfd0ba9309831821e397818e237909ed5a4133b2ec2ddc0d2ddcf82184f424b17035d775919ec3c00ec7f6677a272329db7428ad69c49a82f3f63442989b1117de6987f7f414d942fa0c32", 0xf9, 0x400}, {&(0x7f0000000340)="2027fb29d0f2fee36f1f6ce387fed2955432178384395fe530c7a137f99734c14691e935e1000c797c30a5733de7b8e558a61492964c8e588de3f40cb261a65e688d1c82fe8b6b71a7e97e01fe04c09b35b3d376", 0x54}, {&(0x7f00000003c0)="74c5da9457df53131b5e3d6ac3a3bf046d81018f0455eb1cacdd4cbc9bcca8cac778936120274978fde913a07b507c30bed76f7eb5d925ada01631a61dbfa4452ba1e31a6f0a85b8ae5f2ccbc9c75b7fd995e2c83bcff9c8e91a8b42afeeff620e94034b481667244598cf407a2b64fdde7930d4e4eb3593a68ee38c27fa035f674c90d3f27a1764864660bd7937c2c28e8fd0886777ae198e6c46957715e03bcc650e731b139840e492b19e6eaf0a7880a1e6cc4682bacd11935a448b303a9adf8fc4ce9a1193244e83d514c76a43c9df43f811459fe6def1dd23ff3005476bab98acd0f175d0ab918f8e2f7f3e74a13164bd8c73cb939db6516fbb7ee2b3387fb171892db796a8e610fe4870861034308745a6d224bc21f17c26c05d8586ab2b843d69f3038682f5e36cc6986f7011cd550f89e4f8f0636d09b7474d66c763fec4307ead334ce5051721bf261cb3b0f26d49a5ce8075f3109b2bcbd6bd9e467ead459e97f352e12c216d95721dc49f28842d032fec6fc29fb465ee1fce6d7caa24dfd8a093c7813d88e140a179d2a9f184e824f46216623fcb96c485556cb088ac6db7bc0cfbd5910d34ca6547cf7444507e3056b29527635d9b9ef8afe3bc64ae7df4fa227bdb5205b70bb5c107af2b7e53907b6208fb9e75a6fef03b93f033a3dd7a053bd328778def3bde998c3f5fc072eecbfda87e0554ea7b48df186eb98684e5879c9b859b9ac18e28616ab20b1405a3a0b13ccf07cc40c6e9a77fa869f1ced7900805bc2e6bf95765d0c36d6410dce37e859ad2104d7050baa521d1b72cbd9da566f67ccfdfb1a0c64f64cb249afae3522499a8afe50ee89f85162875cd01a185229390524e05ee6f95c10bc8803c49f48310febf79dd09611ae88b18bce54d2b79656cacb255e03e9bfe2c5319a294b2c54068976f2fffff45befe4ad59f572f791bc4c16b96608ce0d445456b75a986b6d5e5f01c4fe4b964aade08489bc747bed7dbbf339e16ca5dacc136958262df30b6216a3591df05b9216efbbc52450a93c68f41fe332036b2fe217f032c45f1b4556294bd236650bed459a46e338d02643d8c11b7f3582b5257990f9f52ca67416aad18f5de4dbf62fc4941cfe29fb534d58a53dce108312d715fec6103147676e6f79a516a295cad3c6e0610e1cd584f312b629f7def8e2f47523675b830683804adce3e9a30837988e37d9523279ae9cc80b9ae2e7e6eb0ba46b0bb74d4c54143850d780e6374f641ed9005e9304d7b0605e22b3f7678d22bb5e12845ca461bddd37564faa34706fefdf1839850c8ffab467fb82e561cb3f5b16b947a6dd8a46d2b60ed376d1d2a2753f38a090d9cd99701065db1c2017d04d262354ccbb3b68176902421bde438da56e5156d22f6a6b1f3aa4c753258d76212f3e4e046a820f5065ad8c3b875a36386ceedbae852ed89e670c98788ae203219a9229e8a3f988ba1eaac55ec080e0fbc478d934cede21dbcb3d000940ec61127c894605e02bd2f7400fadbd144c41da403cadc094f4a9e5d84898c48c2e8ec9b2f78ffadcb01ce36804c1bc5cfa79d00d9ba5a3fcd04bea0478fcdc391ed2c93f88238c3d9d7b8d44cf9741826ee5923387f9204dccbfe72f006cf74343764a6fe6ce868b6e74e1653537bf91b9aa4e3e29ec5ea303d97acb22605c0f3abd12297eb67eb7461a85b2c8da0cedb33dc6b7e6d35ff8f6b35bf7966dba603df36efd330d3fd90add8567be46613dde9091c8e4883774518222d29e5056059e3642d7088a91fe8370e4862d94b757817d6ace7933c0fc0c3e5b771f138509949e8a8f14397419e27d37a02bfad41ec58fe3a6245e9e54916734ad488c32049b5cf4551caf0737da30487f244af064e30350de31ada6af1c94c7173331a128442e69da72f10cebda5ac331aa7f0dd079741900962060211088ddfed73a546182740ada02b85c28138b1d79526dc8c268e376d63db22edf8ae610cb12d02a545974e45853c93087bc2c299c35a2f2c2170a66ab6df3a41b7e713b0b6d1430a2962edda589acf2d2335ea65ea4d56883a7b8f4fb8bb1202d441e161095a0b0f7f95798c26f241fb41d3f0423788c94f9d44ccc7f4bc60207896b2bb82ba5bdfe5099fea44d412c99322ec989224884c6657e155b109d8711f937d8e01913067296dc84141620114b32def45a4a85e557bc09cdc32fa51331a3529dad7b482aebef12b6170af109d9bca8d036ff646a758230cb55bbfede61a2e97aed3677708deb04229f1c460828ae7cfa74a37ec90b5e7c9b48a621862bc478b1cfda22f9efd39b1ebb3a7ed469a9daa778c435fad5427e3883a347872a59ef464a896baeb5238b5ff02c33924ab272362068cfe476a633b510f6246e3521a1f472350a3f2140d0bd5e3b68d0642851e94fdd19712b2c663c694b2da9d32e2d532f5b810e876660e88d1f07febd98d152e5b7e7331fdd8b9b20bb8f71ec73f45e04807fcfe8601eaca34dd251608c6ad060efdb4767a8aec81880abe43062acf9ebf97e57bf8377a784019f44dd3c7efaa1ba2600b9a05d847af77619080e8ec69ab7f4f6135b2b0700c06f8e1e0f38ca4bf3ec76098c70db9aaf32655b6bef8b7e974569f8abc517c3d04dfd51d2977fa881fddef1fb45d2abc2dd320466f9e4098828786da9e8fbaf822a3b68990c28edcaae31cf7fb7413309d8d365d0ee77e004f64a962246d35532aa8f516a926e6a9579d091b8846991add2d2bedf8999796219e82895000e38120300388ff4d3aef132daa89569e1538eab89e0ed0650c08a217af39f27303f219745bd5e3ba6a58d1443777add47163f4de779a3b99c65b5e24b8c94b1e3fef9fc072e08ad8093b77331e6e2d6ba1aa6f1edcfe1b7664d75208ddd96764451b5838e278f190b9eb161f1ff788873234531bc98eb528f80527b1e0a11492fe39f172a364702b24f175cfeca60179a42d6d27707893ae0e5e1a1ead6938b1528dbdbcb978a2568adb72c1bcf76b1203861676fe699bb7798cb887065de7f69e8cbe42874e35b542e9f6d80247777ac2b54956beecb36a9a425f59a10e225de4c3413a2900eb12577547f6bccd6fd9c8f54011c224ae58fa4e21607bb95eb1375d7a5fb812bd9fe3ce82b1546952058b469982ed4b141b4bdd1fb22ae43b4151bd2530523bb947f15067506cd71d7bae386a8c19f9ca48620113bc976f2cadd7349c198a9fbe9da0535aa58e1b059d2ea13582138c00d2fc59df69482b7a024f57377561621caf74356e64baa33c2ef9f7f5f56ac54e238671fcff968605105923b33ff557a3e383767858afb95bc79eb7310f3ae2aa51732cee7356ee90cbad8152832f37269abc0c1290983756b93a5d4c00c3e447401521c1eebaf472e4521c7b634ac55845d21bedc4220c352ea515ee4fc2703a9e61c238580db4f7e787c8ad2b36b1785729d809bff2691bdc07d7e997f0e7f8a2fbcbcbe681791eeb17cdd4162eec9ca9e1192b117f2f17886e65319ba628b0fd376656098cf2f90dfeadea4f0c7d0da2f8f5c03caa26584f72ee4a5c8d6123384840b411b3904553ced9e060a3c320b1f1ba9e1cd81fb5c6c7b461c80782395533c1f2dd2fdf1ce81e4ed2390b13da3ac110878af39fca8f3b3910d58431c728b7174d1d9ead174020136c51ca4e7fb87c57b63376445b77744d022bd930f16a3fe19a3121fbd79ab73d77a3efc4bbb38dea600ce2835a32761ca02e814bae8a710e14f06a009b9bd592952f79b575012c2b41e1e5427ba519a63845f1ffee504bf9cdcd66379f3468978891b3339b5f90d69125fe0f2d9c14f4f01ea3ca5f87b644f7b6282a1a6e6ac494a30f923e837e6d8d87deed8b22722d44d37fc9a3153699a1326e6726b5142da8b9eadbddf3e62e3e5850036cbbc24703a83cbfe8a8e4574e624acc843d12b329735c78737aad8f3770de226a0d480feaa385521b1aff121a19d636d1ed2442141adac4211c23b673464782e5a72fb8d0c0851f2e2518e0c2b26e2ee11b4c606a63113d79b9781f67b9f5bb28c5798ba0854b9496e2ba8f144da3a2f132ab11678cca97ce91be9a87294d2698053cecc08b30f096b70d6c54a9385c86a98aad9102919efa22bfdf73cf93a72e9592cb87fff5c7d8fb73282ad767eb53d4c8cce52d9c95e372c7c3527c86c1fe3deb9aa6c2735e840f8b7e4ae7148fdadb1e66781f56c9641c93c9d590ee7ee355cbb7c5588856d354a43f5c477c50d2de3fed908e98d80f7631235ec33fa496cccb027c6a2a247a3eb51f874c0d48ebf48470723a5ab5171281ee1640cb66a98b15fb4a195b551b6e467876b9e9fd0e81db1c25198f21fbfc332b249a49edbf405355deba428bc2598379c00039408fe3551908dd3d93c1271bd81d6dd8c77d530a97bcf8c43475c2fa2d301b4a3a0ef79f59ec43496b45889d59aced6c5868b9e60dd96e0e04ed0253b077b609690fb7540e26cb9e0b2b57c895f7484802ecc1e39a83153459c7b2390dfd117cabe84fa8fe1c524e75805453295ba01bc262c722cbf8be5d8dff235462f574775e5cb57b633e96872f1212faeb8b2c6b6ec151f7bf95fa6b0454d62ba8b93f908a19b9e761e63f0dfd57ff7fe520418af7f6eb847733828e87295a70fef1c5faded8ff6354942f9dc6840a154645855b3be4ffe8758f1605b93ccd5678a43e6ae6d41350a99f5aac99d899dcd30055a6751f80af1ff0a5e232373296d45e920270a3d36dfb0fc896207ea888c2d21103a5fc522b58c2449c263ba67e6a3b67395d058f07330b197037af2352319d0f3db44857068afc71956485459ab87382233e468dfcfb27b433302111b8c7f7be38ee103f6f25ceabeacd3043388a476576291e39214dfd9553ad1240d2a1c7f3cda57161da488467e7e4573be46876ff430df50dd88957c3562c1fbebddb8c429b106498a23bef6e871de71f7f4e95c389f1184cfe89c12698652713b69e774de6bf1fac846f61dc07e5f9ca28aabd882cdeccbfb869a4cf1772f9f01ec27b7886f91cc3990a17078e22d50f895f2e5915361603666094e5e069d6cf972b0893bd4e3ca0cb160127b080ee7dd9381b7da678545f6e3fae887df1a96856f4989e36983c6fd6e96539ed105f33c80f0edf59ef9a81c29e931cf9b438bc9494aa07cde3e91a8b524d666f8ca6f59bc8ea870c4c3623742ca38b939160b971bf52bc70e27e99e2dab56a3ff589a48b78c730fec8d2665878020c3eacf54c1c55f8202df47d28d1de45c2cac86f0c6d02bc112ddc9c10bac78ccdd22c6cf5949056e357acc7db1bb2f766c7442e726e359295ababc7b8a7c8078d79b275afb47697ddc575b2fbe6829ef58060186121b3b0f4f8cf0fc8aba0c1af51883a4df4844bd94b8fa6ee8ab028025d17954e531337f3d7e3ae9827d7a19e37a034cffb148b99c7d7870dc2fc5b00ea34400177506b991dd7072302b1560e2408806e63fa7aa6749c63d8d6a2c13c10a64c196747b9927c0e989fc36a1903ff711a747a0d956a1b3eef82f651b498d635828f3539d315eda2f63ac32aacfa00482682c99c1e91fd2ccde54364d185becac3f78ed051542c13b6ec94f2a24c8bbd9d11665d89cbd6fb1afdbe1bbc9f337a5273b657bd317d3283845cdcf8b6f979ebc13e0b12fac67533a39ab7382232587207ad071279219d39c3d743662a96e855e73a66f3ca84bcea37de7674f25baaf6ae3afcdb0d06e3afd449e417f2a392a0ea02e8a67e996930ea11", 0x1000, 0x5}, {&(0x7f00000013c0)="b66a838fe7409c7e77e1737f2e7cd5532ae055d2033b7c51d4164628bc1e", 0x1e, 0x802}], 0x0, &(0x7f00000014c0)={[{@part={'part', 0x3d, 0x100000001}}, {@nls={'nls', 0x3d, 'macgreek'}}, {@creator={'creator', 0x3d, "8e5ef41e"}}, {@nobarrier='nobarrier'}, {@decompose='decompose'}, {@session={'session', 0x3d, 0x3}}, {@part={'part', 0x3d, 0xffff}}], [{@fsname={'fsname', 0x3d, 'btrfs\x00'}}]}) 07:06:41 executing program 4: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}, 0x2a0c}, 0x0, 0xa, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x80800) setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f0000000100)=0x73, 0x4) ioctl$DRM_IOCTL_SET_VERSION(0xffffffffffffffff, 0xc0106407, &(0x7f0000000240)={0x80000000, 0x27, 0x4, 0x7fffffff}) r1 = dup(r0) mmap$usbfs(&(0x7f0000008000/0x4000)=nil, 0x4000, 0xbfb5af573c81a755, 0x80010, r1, 0xffffffffffffc4d3) ioctl$sock_inet_SIOCSIFPFLAGS(0xffffffffffffffff, 0x8934, 0x0) r2 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) ioctl$VIDIOC_QUERYCAP(r2, 0x80685600, &(0x7f0000000040)) clock_gettime(0x0, &(0x7f0000000140)={0x0, 0x0}) nanosleep(&(0x7f0000000180)={r3, r4+10000000}, &(0x7f00000001c0)) syz_open_dev$mouse(0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) r5 = syz_open_procfs(0x0, &(0x7f00000006c0)='Net/3\x97OOT\x15\x00\xb6\xcf@e\xd3r\x82\x9fc') ioctl$VIDIOC_PREPARE_BUF(r5, 0xc058565d, &(0x7f00000005c0)={0x0, 0xb, 0x4, 0x0, {0x0, 0x7530}, {0x0, 0x2, 0x81, 0x10, 0x24, 0x6, "cf676f53"}, 0x80, 0x5, @offset=0x9, 0x4}) syz_open_dev$dri(&(0x7f0000000200)='/dev/dri/card#\x00', 0x5, 0x200) mq_timedsend(r5, &(0x7f0000000480)="c1cc3d2c05c16add6c964974e00652617b35c74bd5a620d3170df3c2f134d5beb838b0f00c6ca198401126d02772777a96ead8602a94c5450ea4e5c8b02fc6e876ee2383fc4faa682ed6a91a53a08a1fdd9839c170a6f81ede814c769cf15c688c8514b5f4f1dc0a50019813ce4459df629cd480519073a5f929cd5e59d0058ea64475a46e924294d5ef1b4b158e59d9c923a0", 0x93, 0x4, &(0x7f0000000540)={0x0, 0x989680}) ioctl$TUNSETLINK(r5, 0x400454cd, 0x4) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f00000000c0)) 07:06:41 executing program 5: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) syz_open_procfs(0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) socket$inet6_sctp(0xa, 0x1, 0x84) openat$proc_capi20(0xffffffffffffff9c, &(0x7f0000000080)='/proc/capi/capi20\x00', 0x200, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000880)='oom_score\x00') preadv(r0, &(0x7f00000017c0), 0x199, 0x0) syz_open_dev$radio(&(0x7f0000000140)='/dev/radio#\x00', 0x0, 0x2) ioctl$UI_BEGIN_FF_UPLOAD(r0, 0xc06855c8, &(0x7f0000000640)={0x10, 0xd17, {0x52, 0x401, 0x7f, {0x200}, {0x40, 0x4}, @const={0x7ff, {0x8, 0xba, 0x1, 0x9150}}}, {0xa5e136065a937c32, 0x5, 0xfff, {0x4, 0x3}, {0x7, 0x1}, @ramp={0x800, 0x80, {0x100, 0x4c2, 0x800, 0x3}}}}) bind$isdn(r0, &(0x7f00000000c0)={0x22, 0x0, 0xff, 0x4, 0x1f}, 0x6) 07:06:41 executing program 0 (fault-call:0 fault-nth:63): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x0, 0x989680}) socket$inet6_sctp(0xa, 0x0, 0x84) 07:06:42 executing program 3: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, 0x0) r1 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) ioctl$VIDIOC_QUERYCAP(r1, 0x80685600, &(0x7f0000000040)) syz_open_dev$mouse(0x0, 0x0, 0x0) r2 = syz_open_dev$dspn(&(0x7f0000000100)='/dev/dsp#\x00', 0x7fff, 0x101003) ioctl$EVIOCGABS0(r2, 0x80184540, &(0x7f0000000140)=""/75) sysfs$2(0x2, 0x7, &(0x7f00000001c0)=""/203) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_PIT2(r2, 0x4040ae77, &(0x7f00000002c0)) 07:06:42 executing program 4: sched_setscheduler(0x0, 0x5, 0x0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000200)={0x0, 0xffffffffffffffff, 0x0, 0x9, &(0x7f00000001c0)='/dev/kvm\x00'}, 0x30) r1 = syz_open_dev$cec(&(0x7f0000000240)='/dev/cec#\x00', 0x1, 0x2) perf_event_open(&(0x7f0000000140)={0x3, 0x70, 0x81, 0x9, 0x1, 0x3, 0x0, 0x6, 0x8548, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x2, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10001, 0x2, @perf_bp={&(0x7f0000000100), 0x8}, 0x2cc44, 0x6, 0x9, 0x1, 0x9, 0x800, 0x6}, r0, 0x6, r1, 0x8) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) ioctl$EXT4_IOC_ALLOC_DA_BLKS(r2, 0x660c) setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f0000000380)="0c4f4d16cf2f3a2dd8a5046790a60c91e487dc9ca281434dbc169c6555a654da5e42c953490634b417ec9535653162fc5730d4c8dab3e136550ed7d31fa8d7094afd6e5154349155e6ef7e5fb08d79c283188a3f28548ab4366e6863ba5561aedbd1ee3f9a2c5646e4a9c2806b231528bca7ee2134e39966c40bcb1371a7e7691672a8dc9bda07175f11a9160cba3f0ddb78db3b2e184e1e9aa371691df9f49a5e3343bce4e4b8a2c80831b63d95ed57cf89982b317abf1cf8a71078d00dd5fa9151c142fa4bb765d503150f5f6f34284c7480a5091e9b246e", 0xd9) fsetxattr$trusted_overlay_nlink(r2, &(0x7f0000000240)='trusted.overlay.nlink\x00', &(0x7f0000000300)={'U+', 0x7}, 0x28, 0x3) ioctl$TIOCMGET(r2, 0x5415, &(0x7f0000000380)) r3 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r3, 0x8934, 0x0) r4 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) ioctl$VIDIOC_QUERYCAP(r4, 0x80685600, &(0x7f0000000040)) syz_open_dev$mouse(0x0, 0x4, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f00000000c0)) r5 = syz_open_procfs(0x0, &(0x7f0000000880)='oom_score\x00') preadv(r5, &(0x7f00000017c0), 0x199, 0x0) ioctl$UI_BEGIN_FF_UPLOAD(r5, 0xc06855c8, &(0x7f0000000640)={0x10, 0xd17, {0x52, 0x2db, 0x7f, {0x200}, {0x40, 0x4}, @const={0x7ff, {0x8, 0xba, 0x1, 0x9150}}}, {0xa5e136065a937c32, 0x5, 0xfff, {0x4, 0x3}, {0x7, 0x1}, @ramp={0x800, 0x80, {0x100, 0x4c2, 0x800, 0x3}}}}) setsockopt$packet_buf(r5, 0x107, 0x2, &(0x7f0000000280)="cc19a3479dcc06f1dec57d6c94fa92ba3fcfac7081c693ecde206d123479eaf9c7d3c4231d8ea3afd75d25d23fbc89812c53ac728402c5b0ec25e0d71c497d2d14959469d4caca0b3cf0041d3f372ec7ba19da309b4c3786ce2142aac40f939a465e57256d9141d463700581d0fc2ac7e4d93aac4dca7f6b51674e5c24ca7f71c5f8b71b8fd1a649c6d0fdc1133cd0c3c79a1695cee92ef2181b1b0fd2d364e613e2ee526978dc5108426b7648d69a036393e7b77ff2a7f5883db091ae17364a5bfa20155d8f62bac8a32c01019fc4cd6ae8a5b1cbdd56b78b88ac4cad8b9d46bc8ec559a988e3c6f02265fdf8", 0xed) 07:06:42 executing program 1: syz_mount_image$btrfs(&(0x7f00000000c0)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x40, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0xfffffe76, 0x3ff}], 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r0, 0x407, 0x0) write(r0, &(0x7f0000000340), 0x41395527) ioctl$EXT4_IOC_ALLOC_DA_BLKS(r0, 0x660c) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000380)="0c4f4d16cf2f3a2dd8a5046790a60c91e487dc9ca281434dbc169c6555a654da5e42c953490634b417ec9535653162fc5730d4c8dab3e136550ed7d31fa8d7094afd6e5154349155e6ef7e5fb08d79c283188a3f28548ab4366e6863ba5561aedbd1ee3f9a2c5646e4a9c2806b231528bca7ee2134e39966c40bcb1371a7e7691672a8dc9bda07175f11a9160cba3f0ddb78db3b2e184e1e9aa371691df9f49a5e3343bce4e4b8a2c80831b63d95ed57cf89982b317abf1cf8a71078d00dd5fa9151c142fa4bb765d503150f5f6f34284c7480a5091e9b246e", 0xd9) r1 = socket$inet6_sctp(0xa, 0x1, 0x84) r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [0x0]}, &(0x7f000095dffc)=0x8) getsockopt$inet_sctp6_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f0000000000)={r3}, &(0x7f0000000040)=0x14) setsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(r0, 0x84, 0x18, &(0x7f0000000080)={r3, 0x7}, 0x8) r4 = syz_open_procfs(0x0, &(0x7f0000000880)='oom_score\x00') preadv(r4, &(0x7f00000017c0), 0x199, 0x0) ioctl$UI_BEGIN_FF_UPLOAD(r4, 0xc06855c8, &(0x7f0000000640)={0x10, 0xd17, {0x52, 0x2db, 0x7f, {0x200}, {0x40, 0x4}, @const={0x7ff, {0x8, 0xba, 0x1, 0x9150}}}, {0xa5e136065a937c32, 0x5, 0xfff, {0x4, 0x3}, {0x7, 0x1}, @ramp={0x800, 0x80, {0x100, 0x4c2, 0x800, 0x3}}}}) ioctl$VIDIOC_SUBDEV_S_FMT(r4, 0xc0585605, &(0x7f0000000140)={0x1, 0x0, {0x1, 0x8, 0x2024, 0x5, 0x9, 0x6, 0x2, 0x1}}) socket$inet6_sctp(0xa, 0x0, 0x84) 07:06:42 executing program 3: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, 0x0) r1 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) ioctl$VIDIOC_QUERYCAP(r1, 0x80685600, &(0x7f0000000040)) syz_open_dev$mouse(0x0, 0x0, 0x0) r2 = syz_open_dev$dspn(&(0x7f0000000100)='/dev/dsp#\x00', 0x7fff, 0x101003) ioctl$EVIOCGABS0(r2, 0x80184540, &(0x7f0000000140)=""/75) sysfs$2(0x2, 0x7, &(0x7f00000001c0)=""/203) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) [ 207.001800] FAULT_INJECTION: forcing a failure. [ 207.001800] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 207.053783] CPU: 0 PID: 14199 Comm: syz-executor.0 Not tainted 4.14.151 #0 [ 207.060854] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 207.070218] Call Trace: [ 207.072822] dump_stack+0x138/0x197 [ 207.076475] should_fail.cold+0x10f/0x159 [ 207.080639] ? __might_sleep+0x93/0xb0 [ 207.084548] __alloc_pages_nodemask+0x1d6/0x7a0 [ 207.089242] ? check_preemption_disabled+0x3c/0x250 [ 207.094277] ? __alloc_pages_slowpath+0x2930/0x2930 [ 207.099309] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 207.104836] ? __alloc_pages_nodemask+0x639/0x7a0 [ 207.109714] alloc_pages_current+0xec/0x1e0 [ 207.114131] ? btrfs_parse_early_options+0x1a2/0x310 [ 207.119360] __get_free_pages+0xf/0x40 [ 207.123293] get_zeroed_page+0x11/0x20 [ 207.127200] selinux_sb_copy_data+0x2a/0x390 [ 207.131630] security_sb_copy_data+0x75/0xb0 [ 207.136059] parse_security_options+0x37/0xa0 [ 207.140573] btrfs_mount+0x2bb/0x2b28 [ 207.144475] ? lock_downgrade+0x740/0x740 [ 207.148646] ? find_held_lock+0x35/0x130 [ 207.152810] ? pcpu_alloc+0x3af/0x1050 [ 207.156717] ? btrfs_remount+0x11f0/0x11f0 [ 207.160974] ? rcu_read_lock_sched_held+0x110/0x130 [ 207.166016] ? __lockdep_init_map+0x10c/0x570 [ 207.170533] mount_fs+0x97/0x2a1 [ 207.174347] vfs_kern_mount.part.0+0x5e/0x3d0 [ 207.178854] ? find_held_lock+0x35/0x130 [ 207.182939] vfs_kern_mount+0x40/0x60 [ 207.186756] btrfs_mount+0x3ce/0x2b28 [ 207.190571] ? lock_downgrade+0x740/0x740 [ 207.194726] ? find_held_lock+0x35/0x130 [ 207.198800] ? pcpu_alloc+0x3af/0x1050 [ 207.202711] ? btrfs_remount+0x11f0/0x11f0 [ 207.206968] ? rcu_read_lock_sched_held+0x110/0x130 [ 207.212138] ? __lockdep_init_map+0x10c/0x570 [ 207.216779] ? __lockdep_init_map+0x10c/0x570 [ 207.221301] mount_fs+0x97/0x2a1 [ 207.224777] vfs_kern_mount.part.0+0x5e/0x3d0 [ 207.229291] do_mount+0x417/0x27d0 [ 207.233454] ? copy_mount_options+0x5c/0x2f0 [ 207.237969] ? rcu_read_lock_sched_held+0x110/0x130 [ 207.243107] ? copy_mount_string+0x40/0x40 [ 207.247363] ? copy_mount_options+0x1fe/0x2f0 [ 207.251885] SyS_mount+0xab/0x120 [ 207.255344] ? copy_mnt_ns+0x8c0/0x8c0 [ 207.259242] do_syscall_64+0x1e8/0x640 [ 207.263209] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 207.268078] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 207.273261] RIP: 0033:0x45cc6a [ 207.276451] RSP: 002b:00007f46eab45a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 207.284176] RAX: ffffffffffffffda RBX: 00007f46eab45b40 RCX: 000000000045cc6a [ 207.291555] RDX: 00007f46eab45ae0 RSI: 0000000020000100 RDI: 00007f46eab45b00 07:06:42 executing program 3: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, 0x0) r1 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) ioctl$VIDIOC_QUERYCAP(r1, 0x80685600, &(0x7f0000000040)) syz_open_dev$mouse(0x0, 0x0, 0x0) r2 = syz_open_dev$dspn(&(0x7f0000000100)='/dev/dsp#\x00', 0x7fff, 0x101003) ioctl$EVIOCGABS0(r2, 0x80184540, &(0x7f0000000140)=""/75) sysfs$2(0x2, 0x7, &(0x7f00000001c0)=""/203) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) [ 207.298826] RBP: 0000000000000001 R08: 00007f46eab45b40 R09: 00007f46eab45ae0 [ 207.298832] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000004 [ 207.298837] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 07:06:42 executing program 0 (fault-call:0 fault-nth:64): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x0, 0x989680}) socket$inet6_sctp(0xa, 0x0, 0x84) 07:06:42 executing program 2: pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r0, 0x407, 0x0) write(r0, &(0x7f0000000340), 0x41395527) ioctl$EXT4_IOC_ALLOC_DA_BLKS(r0, 0x660c) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000380)="0c4f4d16cf2f3a2dd8a5046790a60c91e487dc9ca281434dbc169c6555a654da5e42c953490634b417ec9535653162fc5730d4c8dab3e136550ed7d31fa8d7094afd6e5154349155e6ef7e5fb08d79c283188a3f28548ab4366e6863ba5561aedbd1ee3f9a2c5646e4a9c2806b231528bca7ee2134e39966c40bcb1371a7e7691672a8dc9bda07175f11a9160cba3f0ddb78db3b2e184e1e9aa371691df9f49a5e3343bce4e4b8a2c80831b63d95ed57cf89982b317abf1cf8a71078d00dd5fa9151c142fa4bb765d503150f5f6f34284c7480a5091e9b246e", 0xd9) fsetxattr$trusted_overlay_nlink(r0, &(0x7f0000000240)='trusted.overlay.nlink\x00', &(0x7f0000000300)={'U+', 0x18}, 0x28, 0x3) ioctl$TIOCMBIC(r0, 0x5417, &(0x7f0000000080)=0x549024c6) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 07:06:42 executing program 3: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, 0x0) r1 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) ioctl$VIDIOC_QUERYCAP(r1, 0x80685600, &(0x7f0000000040)) syz_open_dev$mouse(0x0, 0x0, 0x0) r2 = syz_open_dev$dspn(&(0x7f0000000100)='/dev/dsp#\x00', 0x7fff, 0x101003) ioctl$EVIOCGABS0(r2, 0x80184540, &(0x7f0000000140)=""/75) sysfs$2(0x2, 0x7, &(0x7f00000001c0)=""/203) 07:06:42 executing program 1: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) r0 = syz_open_dev$dmmidi(&(0x7f0000000080)='/dev/dmmidi#\x00', 0x0, 0x40) geteuid() ioctl$VIDIOC_G_FMT(r0, 0xc0d05604, &(0x7f0000000340)={0xc, @win={{0x7101, 0x7f, 0x8, 0x6d4a}, 0x4, 0x1f, &(0x7f0000000180)={{0xa, 0x3f, 0x3ff, 0x3}, &(0x7f0000000140)={{0x2, 0x3, 0x20, 0x8}, &(0x7f00000000c0)={{0x7, 0x7, 0x40, 0x800}}}}, 0x0, &(0x7f00000001c0)="1d0b9b754b773452dff96820a5f602615521a9fa4c72001327061164b5e6f80096194bb49834e6469fdec69fa32b520eceaf6868b126b54bbbd578680952363c56a46877998c50b707dd5ce2d53ce0372419a90f191f223bba5423046868c4c07e0a9752bce5efec3124a5d9e44c5a24b09ce94535d6ac9760f7e6e30ef3f06f668a32353318fd4db952222c0411de9b6777aa62ad04a622341870a2d8e80d03d48d72cfb3e61d6f1b1f9aff82683a3d46defeb7ac6334e4f01565a8c90ecdabb63278120a653db32b4876c089ff9f52bd777169adfa4ade7a9d7badfaa8213bef7e276a6f1f0af7", 0xff}}) [ 207.540907] FAULT_INJECTION: forcing a failure. [ 207.540907] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 207.553215] CPU: 0 PID: 14246 Comm: syz-executor.0 Not tainted 4.14.151 #0 [ 207.560248] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 207.560271] Call Trace: [ 207.560289] dump_stack+0x138/0x197 [ 207.560306] should_fail.cold+0x10f/0x159 [ 207.560319] __alloc_pages_nodemask+0x1d6/0x7a0 [ 207.560330] ? __alloc_pages_slowpath+0x2930/0x2930 [ 207.560353] cache_grow_begin+0x80/0x400 [ 207.560365] kmem_cache_alloc+0x6a6/0x780 [ 207.560381] getname_kernel+0x53/0x350 [ 207.560390] kern_path+0x20/0x40 [ 207.560401] lookup_bdev.part.0+0x63/0x160 [ 207.560407] ? blkdev_open+0x260/0x260 [ 207.560419] ? free_hot_cold_page+0x763/0xca0 [ 207.585075] blkdev_get_by_path+0x76/0xf0 [ 207.585093] btrfs_scan_one_device+0x97/0x400 [ 207.585109] ? device_list_add+0x8d0/0x8d0 [ 207.585121] ? __free_pages+0x54/0x90 [ 207.585132] ? free_pages+0x46/0x50 [ 207.585155] btrfs_mount+0x2e3/0x2b28 [ 207.585167] ? lock_downgrade+0x740/0x740 [ 207.585178] ? find_held_lock+0x35/0x130 [ 207.598482] ? pcpu_alloc+0x3af/0x1050 [ 207.598507] ? btrfs_remount+0x11f0/0x11f0 [ 207.598526] ? rcu_read_lock_sched_held+0x110/0x130 [ 207.598551] ? __lockdep_init_map+0x10c/0x570 [ 207.598572] mount_fs+0x97/0x2a1 [ 207.610051] vfs_kern_mount.part.0+0x5e/0x3d0 [ 207.610065] ? find_held_lock+0x35/0x130 [ 207.610080] vfs_kern_mount+0x40/0x60 [ 207.610098] btrfs_mount+0x3ce/0x2b28 [ 207.610109] ? lock_downgrade+0x740/0x740 [ 207.610117] ? find_held_lock+0x35/0x130 [ 207.610126] ? pcpu_alloc+0x3af/0x1050 [ 207.610143] ? btrfs_remount+0x11f0/0x11f0 [ 207.610164] ? rcu_read_lock_sched_held+0x110/0x130 [ 207.610186] ? __lockdep_init_map+0x10c/0x570 [ 207.610198] ? __lockdep_init_map+0x10c/0x570 [ 207.610214] mount_fs+0x97/0x2a1 [ 207.610230] vfs_kern_mount.part.0+0x5e/0x3d0 [ 207.727399] do_mount+0x417/0x27d0 [ 207.731041] ? copy_mount_options+0x5c/0x2f0 [ 207.735461] ? rcu_read_lock_sched_held+0x110/0x130 [ 207.740494] ? copy_mount_string+0x40/0x40 [ 207.744752] ? copy_mount_options+0x1fe/0x2f0 [ 207.749265] SyS_mount+0xab/0x120 [ 207.752725] ? copy_mnt_ns+0x8c0/0x8c0 [ 207.756633] do_syscall_64+0x1e8/0x640 [ 207.760530] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 207.765399] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 207.770588] RIP: 0033:0x45cc6a [ 207.773764] RSP: 002b:00007f46eab45a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 207.784072] RAX: ffffffffffffffda RBX: 00007f46eab45b40 RCX: 000000000045cc6a 07:06:42 executing program 5: syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x804000, 0x0) syz_open_procfs(0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) socket$inet6_sctp(0xa, 0x1, 0x84) [ 207.791326] RDX: 00007f46eab45ae0 RSI: 0000000020000100 RDI: 00007f46eab45b00 [ 207.798576] RBP: 0000000000000001 R08: 00007f46eab45b40 R09: 00007f46eab45ae0 [ 207.805862] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000004 [ 207.813127] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 07:06:43 executing program 4: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @perf_config_ext={0x1}, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, 0x0) r1 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) ioctl$VIDIOC_QUERYCAP(r1, 0x80685600, &(0x7f0000000040)) syz_open_dev$mouse(0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f00000000c0)) 07:06:43 executing program 3: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, 0x0) r1 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) ioctl$VIDIOC_QUERYCAP(r1, 0x80685600, &(0x7f0000000040)) syz_open_dev$mouse(0x0, 0x0, 0x0) syz_open_dev$dspn(&(0x7f0000000100)='/dev/dsp#\x00', 0x7fff, 0x101003) sysfs$2(0x2, 0x7, &(0x7f00000001c0)=""/203) 07:06:43 executing program 0 (fault-call:0 fault-nth:65): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x0, 0x989680}) socket$inet6_sctp(0xa, 0x0, 0x84) 07:06:43 executing program 3: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, 0x0) r1 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) ioctl$VIDIOC_QUERYCAP(r1, 0x80685600, &(0x7f0000000040)) syz_open_dev$mouse(0x0, 0x0, 0x0) sysfs$2(0x2, 0x7, &(0x7f00000001c0)=""/203) 07:06:43 executing program 1: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f00000000c0)=[{&(0x7f0000000080)="5ce3f979b0bd01033d6ec38bad11b34e6599e212b682f6d48f8d98641325ea60c5", 0x21, 0xffffffffffff8001}, {&(0x7f0000000140)="61186efe6792d89bd9dd2f24db9d0f696d809fab881ba83bdab6d33178907487825a4f85ad0c767cc51b08fd5604f4a7a5b556a4d2cbdd14f2fcd8cc3e96475305d9fbb9d3d93340ffa18902899b2d24aee3c3d61c88b95124301a3f11acfa20fad3b863c6474552cf37efcddbc792dae8023a3f9dff7e39dddb324223411533265181cc335592795cb802f535a199f390d9537abb3406120d4c054189fc3945aa9b729eec9a37325ed4731789fea35d22ae001b1a5231af1d975c792e568ab6748788fa5eaa3a69d22b1e9de48863ad219be3484189fbd6", 0xd8, 0x3f}], 0x0, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) 07:06:43 executing program 4: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000006c0)='Net/3\x97OOT\x15\x00\xb6\xcf@e\xd3r\x82\x9fc') ioctl$VIDIOC_PREPARE_BUF(r0, 0xc058565d, &(0x7f00000005c0)={0xfffffffc, 0xb, 0x315, 0x0, {0x0, 0x7530}, {0x5, 0x2, 0x7e, 0x10, 0x24, 0x6, "cf676f53"}, 0x80, 0x3, @offset=0x9, 0x4}) mq_timedsend(r0, &(0x7f0000000480)="c1cc3d2c05c16add6c964974e00652617b35c74bd5a620d3170df3c2f134d5beb838b0f00c6ca198401126d02772777a96ead8602a94c5450ea4e5c8b02fc6e876ee2383fc4faa682ed6a91a53a08a1fdd9839c170a6f81ede814c769cf15c688c8514b5f4f1dc0a50019813ce4459df629cd480519073a5f929cd5e59d0058ea64475a46e924294d5ef1b4b158e59d9c923a0", 0x93, 0x4, &(0x7f0000000540)={0x0, 0x989680}) r1 = dup2(0xffffffffffffffff, r0) setsockopt$ARPT_SO_SET_ADD_COUNTERS(r1, 0x0, 0x61, &(0x7f0000000100)={'filter\x00', 0x4}, 0x68) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) ioctl$VT_RESIZEX(r1, 0x560a, &(0x7f0000000200)={0x2b85, 0x49, 0x1, 0x8, 0xf2bd, 0x1}) r2 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r2, 0x8934, 0x0) r3 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) ioctl$VIDIOC_QUERYCAP(r3, 0x80685600, &(0x7f0000000040)) syz_open_dev$mouse(0x0, 0x0, 0x0) r4 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000240)='/dev/qat_adf_ctl\x00', 0x10000, 0x0) ioctl$KDSKBLED(r4, 0x4b65, 0x1) r5 = syz_open_procfs(0x0, &(0x7f00000006c0)='Net/3\x97OOT\x15\x00\xb6\xcf@e\xd3r\x82\x9fc') ioctl$VIDIOC_PREPARE_BUF(r5, 0xc058565d, &(0x7f00000005c0)={0x0, 0xb, 0x4, 0x0, {0x0, 0x7530}, {0x0, 0x2, 0x81, 0x10, 0x24, 0x6, "cf676f53"}, 0x80, 0x5, @offset=0x9, 0x4}) mq_timedsend(r5, &(0x7f0000000480)="c1cc3d2c05c16add6c964974e00652617b35c74bd5a620d3170df3c2f134d5beb838b0f00c6ca198401126d02772777a96ead8602a94c5450ea4e5c8b02fc6e876ee2383fc4faa682ed6a91a53a08a1fdd9839c170a6f81ede814c769cf15c688c8514b5f4f1dc0a50019813ce4459df629cd480519073a5f929cd5e59d0058ea64475a46e924294d5ef1b4b158e59d9c923a0", 0x93, 0x4, &(0x7f0000000540)={0x0, 0x989680}) clock_gettime(0x0, &(0x7f0000000380)={0x0, 0x0}) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r8, 0x407, 0x0) write(r8, &(0x7f0000000340), 0x41395527) ioctl$EXT4_IOC_ALLOC_DA_BLKS(r8, 0x660c) setsockopt$ALG_SET_KEY(r8, 0x117, 0x1, &(0x7f0000000380)="0c4f4d16cf2f3a2dd8a5046790a60c91e487dc9ca281434dbc169c6555a654da5e42c953490634b417ec9535653162fc5730d4c8dab3e136550ed7d31fa8d7094afd6e5154349155e6ef7e5fb08d79c283188a3f28548ab4366e6863ba5561aedbd1ee3f9a2c5646e4a9c2806b231528bca7ee2134e39966c40bcb1371a7e7691672a8dc9bda07175f11a9160cba3f0ddb78db3b2e184e1e9aa371691df9f49a5e3343bce4e4b8a2c80831b63d95ed57cf89982b317abf1cf8a71078d00dd5fa9151c142fa4bb765d503150f5f6f34284c7480a5091e9b246e", 0xd9) fsetxattr$trusted_overlay_nlink(r8, &(0x7f0000000240)='trusted.overlay.nlink\x00', &(0x7f0000000300)={'U+', 0x7}, 0x28, 0x3) r9 = socket$inet6_sctp(0xa, 0x1, 0x84) r10 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r10, 0x84, 0x1d, &(0x7f0000000580)=ANY=[@ANYBLOB="010000a541a41060ed661b85b649816d29bea8648ec8a4f221d1f83c21803147", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) getsockopt$inet_sctp6_SCTP_ASSOCINFO(r9, 0x84, 0x1, &(0x7f0000000000)={r11}, &(0x7f0000000040)=0x14) getsockopt$inet_sctp_SCTP_GET_ASSOC_STATS(r8, 0x84, 0x70, &(0x7f0000000900)={r11, @in6={{0xa, 0x4e24, 0x5, @dev={0xfe, 0x80, [], 0x19}, 0xfffffff7}}, [0x40008, 0x80, 0x3f, 0x40, 0x9, 0x5, 0x81, 0x81, 0xfffffffffffffffe, 0x10002, 0x8, 0x800, 0x4, 0x0, 0x4]}, &(0x7f0000000640)=0x100) mq_timedreceive(r5, &(0x7f0000000280)=""/215, 0xd7, 0x100000000, &(0x7f00000003c0)={r6, r7+30000000}) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) syz_kvm_setup_cpu$x86(r12, 0xffffffffffffffff, &(0x7f000000d000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f00000000c0)) ioctl$SIOCGETNODEID(r0, 0x89e1, &(0x7f0000000180)={0x1}) [ 208.133004] FAULT_INJECTION: forcing a failure. [ 208.133004] name failslab, interval 1, probability 0, space 0, times 0 [ 208.144788] CPU: 1 PID: 14300 Comm: syz-executor.0 Not tainted 4.14.151 #0 [ 208.151818] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 208.161197] Call Trace: [ 208.163882] dump_stack+0x138/0x197 [ 208.167520] should_fail.cold+0x10f/0x159 [ 208.171779] should_failslab+0xdb/0x130 [ 208.175787] kmem_cache_alloc+0x47/0x780 [ 208.179877] radix_tree_node_alloc.constprop.0+0x1c7/0x310 [ 208.185531] __radix_tree_create+0x337/0x4d0 [ 208.189960] page_cache_tree_insert+0xa7/0x2d0 [ 208.194553] ? file_check_and_advance_wb_err+0x380/0x380 [ 208.200027] ? debug_smp_processor_id+0x1c/0x20 [ 208.204720] __add_to_page_cache_locked+0x2ab/0x7e0 [ 208.209755] ? find_lock_entry+0x3f0/0x3f0 [ 208.214089] add_to_page_cache_lru+0xf4/0x310 [ 208.214102] ? add_to_page_cache_locked+0x40/0x40 [ 208.214112] ? __page_cache_alloc+0xdd/0x3e0 [ 208.214126] do_read_cache_page+0x64e/0xfc0 [ 208.214137] ? blkdev_writepages+0xd0/0xd0 [ 208.214151] ? find_get_pages_contig+0xaa0/0xaa0 [ 208.214161] ? blkdev_get+0xb0/0x8e0 [ 208.245785] ? dput.part.0+0x170/0x750 [ 208.249789] ? bd_may_claim+0xd0/0xd0 [ 208.254054] ? path_put+0x50/0x70 [ 208.257524] ? lookup_bdev.part.0+0xe1/0x160 [ 208.261935] read_cache_page_gfp+0x6e/0x90 [ 208.266170] btrfs_read_disk_super+0xdd/0x440 [ 208.270785] btrfs_scan_one_device+0xc6/0x400 [ 208.275277] ? device_list_add+0x8d0/0x8d0 [ 208.280547] ? __free_pages+0x54/0x90 07:06:43 executing program 3: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, 0x0) r1 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) ioctl$VIDIOC_QUERYCAP(r1, 0x80685600, &(0x7f0000000040)) syz_open_dev$mouse(0x0, 0x0, 0x0) sysfs$2(0x2, 0x7, &(0x7f00000001c0)=""/203) [ 208.284350] ? free_pages+0x46/0x50 [ 208.287998] btrfs_mount+0x2e3/0x2b28 [ 208.291813] ? lock_downgrade+0x740/0x740 [ 208.295971] ? find_held_lock+0x35/0x130 [ 208.300041] ? pcpu_alloc+0x3af/0x1050 [ 208.303945] ? btrfs_remount+0x11f0/0x11f0 [ 208.308184] ? rcu_read_lock_sched_held+0x110/0x130 [ 208.313208] ? __lockdep_init_map+0x10c/0x570 [ 208.317832] mount_fs+0x97/0x2a1 [ 208.321198] vfs_kern_mount.part.0+0x5e/0x3d0 [ 208.325676] ? find_held_lock+0x35/0x130 [ 208.329721] vfs_kern_mount+0x40/0x60 [ 208.333551] btrfs_mount+0x3ce/0x2b28 [ 208.337337] ? lock_downgrade+0x740/0x740 [ 208.341465] ? find_held_lock+0x35/0x130 [ 208.345507] ? pcpu_alloc+0x3af/0x1050 [ 208.349380] ? btrfs_remount+0x11f0/0x11f0 [ 208.353599] ? rcu_read_lock_sched_held+0x110/0x130 [ 208.358603] ? __lockdep_init_map+0x10c/0x570 [ 208.363090] ? __lockdep_init_map+0x10c/0x570 [ 208.367589] mount_fs+0x97/0x2a1 [ 208.370958] vfs_kern_mount.part.0+0x5e/0x3d0 [ 208.375487] do_mount+0x417/0x27d0 [ 208.379008] ? copy_mount_options+0x5c/0x2f0 [ 208.383402] ? rcu_read_lock_sched_held+0x110/0x130 [ 208.388401] ? copy_mount_string+0x40/0x40 [ 208.392620] ? copy_mount_options+0x1fe/0x2f0 [ 208.397116] SyS_mount+0xab/0x120 [ 208.400554] ? copy_mnt_ns+0x8c0/0x8c0 [ 208.404428] do_syscall_64+0x1e8/0x640 [ 208.408304] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 208.413166] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 208.418354] RIP: 0033:0x45cc6a [ 208.421873] RSP: 002b:00007f46eab45a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 07:06:43 executing program 3: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, 0x0) r1 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) ioctl$VIDIOC_QUERYCAP(r1, 0x80685600, &(0x7f0000000040)) syz_open_dev$mouse(0x0, 0x0, 0x0) sysfs$2(0x2, 0x7, &(0x7f00000001c0)=""/203) [ 208.429917] RAX: ffffffffffffffda RBX: 00007f46eab45b40 RCX: 000000000045cc6a [ 208.437175] RDX: 00007f46eab45ae0 RSI: 0000000020000100 RDI: 00007f46eab45b00 [ 208.444438] RBP: 0000000000000001 R08: 00007f46eab45b40 R09: 00007f46eab45ae0 [ 208.451693] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000004 [ 208.458950] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 07:06:43 executing program 5: syz_mount_image$btrfs(&(0x7f0000000000)='\b\x00\x00\x00r\x00', &(0x7f0000000100)='./file0\x00', 0x5, 0x0, &(0x7f0000001340), 0x1000, 0x0) syz_open_procfs(0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) 07:06:43 executing program 0 (fault-call:0 fault-nth:66): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x0, 0x989680}) socket$inet6_sctp(0xa, 0x0, 0x84) 07:06:43 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000880)='oom_score\x00') preadv(r0, &(0x7f00000017c0), 0x199, 0x0) ioctl$UI_BEGIN_FF_UPLOAD(r0, 0xc06855c8, &(0x7f0000000640)={0x10, 0xd17, {0x52, 0x2db, 0x7f, {0x200}, {0x40, 0x4}, @const={0x7ff, {0x8, 0xba, 0x1, 0x9150}}}, {0xa5e136065a937c32, 0x5, 0xfff, {0x4, 0x3}, {0x7, 0x1}, @ramp={0x800, 0x80, {0x100, 0x4c2, 0x800, 0x3}}}}) epoll_wait(r0, &(0x7f0000000040)=[{}], 0x1, 0xffffffff) syz_mount_image$btrfs(&(0x7f0000000000)='\xf78ss\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000040), 0x20000, 0x0) ioctl$VIDIOC_ENUM_FRAMESIZES(r0, 0xc02c564a, &(0x7f00000000c0)={0x3f, 0x59565955, 0x2, @stepwise={0xcc2, 0x0, 0x3, 0x9, 0xfff, 0x771}}) r1 = syz_open_dev$swradio(&(0x7f0000000080)='/dev/swradio#\x00', 0x0, 0x2) r2 = syz_open_dev$cec(&(0x7f0000000200)='/dev/cec#\x00', 0x0, 0x2) ioctl$NBD_SET_FLAGS(r2, 0xab0a, 0x3ff) setsockopt$inet6_MCAST_JOIN_GROUP(r1, 0x29, 0x2a, &(0x7f0000000140)={0xff, {{0xa, 0x4e21, 0x8, @rand_addr="df316b26b5c7c1ff055c9b909cda26ad", 0x9}}}, 0x88) 07:06:43 executing program 1: syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000040), 0x40, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) [ 208.673718] FAULT_INJECTION: forcing a failure. [ 208.673718] name failslab, interval 1, probability 0, space 0, times 0 [ 208.692133] CPU: 0 PID: 14347 Comm: syz-executor.0 Not tainted 4.14.151 #0 [ 208.699215] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 208.708577] Call Trace: [ 208.711187] dump_stack+0x138/0x197 [ 208.714828] should_fail.cold+0x10f/0x159 [ 208.718967] should_failslab+0xdb/0x130 [ 208.722953] kmem_cache_alloc_trace+0x2e9/0x790 [ 208.727632] selinux_parse_opts_str+0x42c/0xa30 [ 208.732287] ? selinux_sb_show_options+0xd50/0xd50 [ 208.737201] ? free_pages+0x46/0x50 [ 208.740814] ? selinux_sb_copy_data+0x21e/0x390 [ 208.745468] security_sb_parse_opts_str+0x75/0xb0 [ 208.750298] parse_security_options+0x4e/0xa0 [ 208.754778] btrfs_mount+0x2bb/0x2b28 [ 208.758560] ? lock_downgrade+0x740/0x740 [ 208.762689] ? find_held_lock+0x35/0x130 [ 208.766741] ? pcpu_alloc+0x3af/0x1050 [ 208.770617] ? btrfs_remount+0x11f0/0x11f0 [ 208.774837] ? rcu_read_lock_sched_held+0x110/0x130 [ 208.779931] ? __lockdep_init_map+0x10c/0x570 [ 208.784413] mount_fs+0x97/0x2a1 [ 208.787777] vfs_kern_mount.part.0+0x5e/0x3d0 [ 208.792264] ? find_held_lock+0x35/0x130 [ 208.796308] vfs_kern_mount+0x40/0x60 [ 208.800100] btrfs_mount+0x3ce/0x2b28 [ 208.803897] ? lock_downgrade+0x740/0x740 [ 208.808059] ? find_held_lock+0x35/0x130 [ 208.812104] ? pcpu_alloc+0x3af/0x1050 [ 208.815992] ? btrfs_remount+0x11f0/0x11f0 [ 208.821341] ? rcu_read_lock_sched_held+0x110/0x130 [ 208.826349] ? __lockdep_init_map+0x10c/0x570 [ 208.830831] ? __lockdep_init_map+0x10c/0x570 [ 208.835322] mount_fs+0x97/0x2a1 [ 208.838686] vfs_kern_mount.part.0+0x5e/0x3d0 [ 208.843167] do_mount+0x417/0x27d0 [ 208.846690] ? copy_mount_options+0x5c/0x2f0 [ 208.851081] ? rcu_read_lock_sched_held+0x110/0x130 [ 208.856092] ? copy_mount_string+0x40/0x40 [ 208.860313] ? copy_mount_options+0x1fe/0x2f0 [ 208.864792] SyS_mount+0xab/0x120 [ 208.868241] ? copy_mnt_ns+0x8c0/0x8c0 [ 208.872118] do_syscall_64+0x1e8/0x640 [ 208.875989] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 208.880819] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 208.886000] RIP: 0033:0x45cc6a [ 208.889180] RSP: 002b:00007f46eab45a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 208.896972] RAX: ffffffffffffffda RBX: 00007f46eab45b40 RCX: 000000000045cc6a [ 208.904226] RDX: 00007f46eab45ae0 RSI: 0000000020000100 RDI: 00007f46eab45b00 [ 208.911478] RBP: 0000000000000001 R08: 00007f46eab45b40 R09: 00007f46eab45ae0 07:06:44 executing program 3: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, 0x0) r1 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) ioctl$VIDIOC_QUERYCAP(r1, 0x80685600, &(0x7f0000000040)) syz_open_dev$dspn(&(0x7f0000000100)='/dev/dsp#\x00', 0x7fff, 0x101003) sysfs$2(0x2, 0x7, &(0x7f00000001c0)=""/203) 07:06:44 executing program 5: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x370, &(0x7f0000000040), 0x0, 0x0) syz_open_procfs(0x0, 0x0) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000180)=0x0) timer_create(0x7, &(0x7f00000001c0)={0x0, 0x2c, 0x1, @tid=r0}, &(0x7f0000000200)) r1 = syz_open_dev$adsp(&(0x7f0000000080)='/dev/adsp#\x00', 0x2, 0x440000) r2 = syz_open_procfs(0x0, &(0x7f00000006c0)='Net/3\x97OOT\x15\x00\xb6\xcf@e\xd3r\x82\x9fc') ioctl$VIDIOC_PREPARE_BUF(r2, 0xc058565d, &(0x7f00000005c0)={0x0, 0xb, 0x4, 0x0, {0x0, 0x7530}, {0x0, 0x2, 0x81, 0x10, 0x24, 0x6, "cf676f53"}, 0x80, 0x5, @offset=0x9, 0x4}) mq_timedsend(r2, &(0x7f0000000480)="c1cc3d2c05c16add6c964974e00652617b35c74bd5a620d3170df3c2f134d5beb838b0f00c6ca198401126d02772777a96ead8602a94c5450ea4e5c8b02fc6e876ee2383fc4faa682ed6a91a53a08a1fdd9839c170a6f81ede814c769cf15c688c8514b5f4f1dc0a50019813ce4459df629cd480519073a5f929cd5e59d0058ea64475a46e924294d5ef1b4b158e59d9c923a0", 0x93, 0x4, &(0x7f0000000540)={0x0, 0x989680}) r3 = socket$inet6_sctp(0xa, 0x1, 0x84) r4 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r4, 0x84, 0x1d, &(0x7f000095dff8)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES32=0x0], &(0x7f000095dffc)=0x8) getsockopt$inet_sctp6_SCTP_ASSOCINFO(r3, 0x84, 0x1, &(0x7f0000000000)={r5}, &(0x7f0000000040)=0x14) getsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(0xffffffffffffffff, 0x84, 0x75, &(0x7f0000000040)={r5, 0x66}, &(0x7f0000000240)=0x8) setsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r2, 0x84, 0x1f, &(0x7f0000000280)={r6, @in={{0x2, 0x4e20, @initdev={0xac, 0x1e, 0x1, 0x0}}}, 0x81, 0x3}, 0x90) ioctl$VIDIOC_SUBDEV_G_EDID(r1, 0xc0285628, &(0x7f0000000140)={0x0, 0xfffffff9, 0x3, [], &(0x7f00000000c0)}) socket$inet6_sctp(0xa, 0x1, 0x84) 07:06:44 executing program 2: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r0, 0x407, 0x0) write(r0, &(0x7f0000000340), 0x41395527) ioctl$EXT4_IOC_ALLOC_DA_BLKS(r0, 0x660c) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000380)="0c4f4d16cf2f3a2dd8a5046790a60c91e487dc9ca281434dbc169c6555a654da5e42c953490634b417ec9535653162fc5730d4c8dab3e136550ed7d31fa8d7094afd6e5154349155e6ef7e5fb08d79c283188a3f28548ab4366e6863ba5561aedbd1ee3f9a2c5646e4a9c2806b231528bca7ee2134e39966c40bcb1371a7e7691672a8dc9bda07175f11a9160cba3f0ddb78db3b2e184e1e9aa371691df9f49a5e3343bce4e4b8a2c80831b63d95ed57cf89982b317abf1cf8a71078d00dd5fa9151c142fa4bb765d503150f5f6f34284c7480a5091e9b246e", 0xd9) fsetxattr$trusted_overlay_nlink(r0, &(0x7f0000000240)='trusted.overlay.nlink\x00', &(0x7f0000000300)={'U+', 0x7}, 0x28, 0x3) recvfrom(r0, &(0x7f0000000080)=""/35, 0x23, 0x10302, &(0x7f0000000140)=@ax25={{0x3, @bcast, 0x4}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @bcast, @default, @bcast, @null, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}]}, 0x80) 07:06:44 executing program 4: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}, 0x0, 0x0, 0x0, 0x5, 0xfffffffffffffffe, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, 0x0) r1 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) ioctl$VIDIOC_QUERYCAP(r1, 0x80685600, &(0x7f0000000040)) syz_open_dev$mouse(0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f00000000c0)) [ 208.918743] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000004 [ 208.925998] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 07:06:44 executing program 0 (fault-call:0 fault-nth:67): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x0, 0x989680}) socket$inet6_sctp(0xa, 0x0, 0x84) 07:06:44 executing program 1: prctl$PR_GET_NAME(0x10, &(0x7f0000000340)=""/205) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x20801, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) r1 = openat$selinux_enforce(0xffffffffffffff9c, &(0x7f0000000140)='/selinux/enforce\x00', 0x8000, 0x0) setsockopt$CAIFSO_LINK_SELECT(r0, 0x116, 0x7f, &(0x7f00000001c0)=0x2, 0x4) ioctl$KVM_HYPERV_EVENTFD(r0, 0x4018aebd, &(0x7f0000000180)={0x2, r1}) r2 = syz_open_procfs(0x0, &(0x7f0000000880)='oom_score\x00') preadv(r2, &(0x7f00000017c0), 0x199, 0x0) ioctl$UI_BEGIN_FF_UPLOAD(r2, 0xc06855c8, &(0x7f0000000640)={0x10, 0xd17, {0x52, 0x2db, 0x7f, {0x200}, {0x40, 0x4}, @const={0x7ff, {0x8, 0xba, 0x1, 0x9150}}}, {0xa5e136065a937c32, 0x5, 0xfff, {0x4, 0x3}, {0x7, 0x1}, @ramp={0x800, 0x80, {0x100, 0x4c2, 0x800, 0x3}}}}) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) ioctl$EXT4_IOC_ALLOC_DA_BLKS(r3, 0x660c) r4 = socket$inet6_sctp(0xa, 0x1, 0x84) r5 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r5, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [0x0]}, &(0x7f000095dffc)=0x8) getsockopt$inet_sctp6_SCTP_ASSOCINFO(r4, 0x84, 0x1, &(0x7f0000000000)={r6}, &(0x7f0000000040)=0x14) setsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(0xffffffffffffffff, 0x84, 0x22, &(0x7f0000000280)={0x24ef, 0x1, 0x8000, 0x3, r6}, 0x10) setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, &(0x7f0000000380)="0c4f4d16cf2f3a2dd8a5046790a60c91e487dc9ca281434dbc169c6555a654da5e42c953490634b417ec9535653162fc5730d4c8dab3e136550ed7d31fa8d7094afd6e5154349155e6ef7e5fb08d79c283188a3f28548ab4366e6863ba5561aedbd1ee3f9a2c5646e4a9c2806b231528bca7ee2134e39966c40bcb1371a7e7691672a8dc9bda07175f11a9160cba3f0ddb78db3b2e184e1e9aa371691df9f49a5e3343bce4e4b8a2c80831b63d95ed57cf89982b317abf1cf8a71078d00dd5fa9151c142fa4bb765d503150f5f6f34284c7480a5091e9b246e", 0xd9) fsetxattr$trusted_overlay_nlink(r3, &(0x7f0000000240)='trusted.overlay.nlink\x00', &(0x7f0000000300)={'U+', 0x7}, 0x28, 0x3) ioctl$CAPI_SET_FLAGS(r3, 0x80044324, &(0x7f00000000c0)) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r7, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$UI_SET_PHYS(r7, 0x4008556c, &(0x7f0000000080)='syz1\x00') r8 = syz_open_procfs(0x0, &(0x7f0000000880)='oom_score\x00') preadv(r8, &(0x7f00000017c0), 0x199, 0x0) ioctl$UI_BEGIN_FF_UPLOAD(r8, 0xc06855c8, &(0x7f0000000640)={0x10, 0xd17, {0x52, 0x2db, 0x7f, {0x200}, {0x40, 0x4}, @const={0x7ff, {0x8, 0xba, 0x1, 0x9150}}}, {0xa5e136065a937c32, 0x5, 0xfff, {0x4, 0x3}, {0x7, 0x1}, @ramp={0x800, 0x80, {0x100, 0x4c2, 0x800, 0x3}}}}) ioctl$EVIOCGKEYCODE_V2(r8, 0x80284504, &(0x7f0000000480)=""/253) 07:06:44 executing program 3: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, 0x0) syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) syz_open_dev$dspn(&(0x7f0000000100)='/dev/dsp#\x00', 0x7fff, 0x101003) sysfs$2(0x2, 0x7, &(0x7f00000001c0)=""/203) [ 209.149506] FAULT_INJECTION: forcing a failure. [ 209.149506] name failslab, interval 1, probability 0, space 0, times 0 [ 209.209102] CPU: 1 PID: 14383 Comm: syz-executor.0 Not tainted 4.14.151 #0 [ 209.216157] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 209.225519] Call Trace: [ 209.228126] dump_stack+0x138/0x197 [ 209.231785] should_fail.cold+0x10f/0x159 [ 209.236084] should_failslab+0xdb/0x130 [ 209.240073] kmem_cache_alloc_trace+0x2e9/0x790 [ 209.244768] selinux_parse_opts_str+0x42c/0xa30 [ 209.249471] ? selinux_sb_show_options+0xd50/0xd50 [ 209.254422] ? free_pages+0x46/0x50 [ 209.258067] ? selinux_sb_copy_data+0x21e/0x390 [ 209.262759] security_sb_parse_opts_str+0x75/0xb0 [ 209.267633] parse_security_options+0x4e/0xa0 [ 209.272184] btrfs_mount+0x2bb/0x2b28 [ 209.276017] ? lock_downgrade+0x740/0x740 [ 209.280181] ? find_held_lock+0x35/0x130 [ 209.284438] ? pcpu_alloc+0x3af/0x1050 [ 209.288353] ? btrfs_remount+0x11f0/0x11f0 [ 209.292613] ? rcu_read_lock_sched_held+0x110/0x130 [ 209.297663] ? __lockdep_init_map+0x10c/0x570 [ 209.302187] mount_fs+0x97/0x2a1 [ 209.305577] vfs_kern_mount.part.0+0x5e/0x3d0 [ 209.310090] ? find_held_lock+0x35/0x130 [ 209.314175] vfs_kern_mount+0x40/0x60 [ 209.318009] btrfs_mount+0x3ce/0x2b28 [ 209.322005] ? lock_downgrade+0x740/0x740 [ 209.326174] ? find_held_lock+0x35/0x130 [ 209.330385] ? pcpu_alloc+0x3af/0x1050 [ 209.334391] ? btrfs_remount+0x11f0/0x11f0 [ 209.338652] ? rcu_read_lock_sched_held+0x110/0x130 [ 209.343792] ? __lockdep_init_map+0x10c/0x570 [ 209.348512] ? __lockdep_init_map+0x10c/0x570 [ 209.353071] mount_fs+0x97/0x2a1 [ 209.356566] vfs_kern_mount.part.0+0x5e/0x3d0 [ 209.361173] do_mount+0x417/0x27d0 [ 209.364738] ? copy_mount_options+0x5c/0x2f0 [ 209.369350] ? rcu_read_lock_sched_held+0x110/0x130 [ 209.374406] ? copy_mount_string+0x40/0x40 [ 209.378708] ? copy_mount_options+0x1fe/0x2f0 [ 209.383237] SyS_mount+0xab/0x120 [ 209.386710] ? copy_mnt_ns+0x8c0/0x8c0 [ 209.390623] do_syscall_64+0x1e8/0x640 [ 209.395328] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 209.400459] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 209.405664] RIP: 0033:0x45cc6a 07:06:44 executing program 4: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, 0x0) r1 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) ioctl$VIDIOC_QUERYCAP(r1, 0x80685600, &(0x7f0000000040)) io_setup(0x4, &(0x7f0000000100)=0x0) io_cancel(r2, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x7, 0x1, r0, &(0x7f0000000140)="c907fe0990021fdad3b18f422a8b0dc36245c4bbe39fe3be313fb09d025d7d9c60d1172bf1a6e4d7fa0ac9c4748edaacb4f1c5a4949d9fe407f87cad770d9df6a85ad9c166a14f73e310d5025e7b607d68db32826f3e93617542bceb90d472e28d204c8e9f86aa6ec739e7c8c4f57562e370446bb555746db8875af51da7fc923e7b72bf02739dff2d48400ab125fcd874b5c5ed8e21f49070c7c5122016c099079c23cdc06e2de4a919419e964120498bacd982d531c673c46b1086631d59b66e28d7af498d9b41f472ea4adef3e3c33b9bdd27706bcef6b36520dd9ada17864219e2e18ebd86a218382c1e7c4b053b385f", 0xf2, 0x9, 0x0, 0x1}, &(0x7f0000000280)) syz_open_dev$mouse(0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f00000000c0)) 07:06:44 executing program 5: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000080)=0x0) syz_open_procfs(r0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) socket$inet6_sctp(0xa, 0x1, 0x84) [ 209.408872] RSP: 002b:00007f46eab45a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 209.416591] RAX: ffffffffffffffda RBX: 00007f46eab45b40 RCX: 000000000045cc6a [ 209.423978] RDX: 00007f46eab45ae0 RSI: 0000000020000100 RDI: 00007f46eab45b00 [ 209.431249] RBP: 0000000000000001 R08: 00007f46eab45b40 R09: 00007f46eab45ae0 [ 209.438633] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000004 [ 209.446306] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 07:06:44 executing program 3: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, 0x0) syz_open_dev$dspn(&(0x7f0000000100)='/dev/dsp#\x00', 0x7fff, 0x101003) sysfs$2(0x2, 0x7, &(0x7f00000001c0)=""/203) 07:06:44 executing program 0 (fault-call:0 fault-nth:68): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x0, 0x989680}) socket$inet6_sctp(0xa, 0x0, 0x84) 07:06:44 executing program 3: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) socket$pptp(0x18, 0x1, 0x2) syz_open_dev$dspn(&(0x7f0000000100)='/dev/dsp#\x00', 0x7fff, 0x101003) sysfs$2(0x2, 0x7, &(0x7f00000001c0)=""/203) [ 209.611252] FAULT_INJECTION: forcing a failure. [ 209.611252] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 209.643739] CPU: 0 PID: 14437 Comm: syz-executor.0 Not tainted 4.14.151 #0 [ 209.650794] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 209.660155] Call Trace: [ 209.662749] dump_stack+0x138/0x197 [ 209.666404] should_fail.cold+0x10f/0x159 [ 209.670566] ? __might_sleep+0x93/0xb0 [ 209.674468] __alloc_pages_nodemask+0x1d6/0x7a0 [ 209.679330] ? __alloc_pages_slowpath+0x2930/0x2930 [ 209.684370] ? lock_downgrade+0x740/0x740 [ 209.688538] alloc_pages_current+0xec/0x1e0 [ 209.692875] __page_cache_alloc+0x248/0x3e0 [ 209.697215] do_read_cache_page+0x625/0xfc0 [ 209.701637] ? blkdev_writepages+0xd0/0xd0 [ 209.705889] ? find_get_pages_contig+0xaa0/0xaa0 [ 209.710661] ? blkdev_get+0xb0/0x8e0 [ 209.714382] ? dput.part.0+0x170/0x750 [ 209.718252] ? bd_may_claim+0xd0/0xd0 [ 209.722039] ? path_put+0x50/0x70 [ 209.725499] ? lookup_bdev.part.0+0xe1/0x160 [ 209.729922] read_cache_page_gfp+0x6e/0x90 [ 209.734175] btrfs_read_disk_super+0xdd/0x440 [ 209.738687] btrfs_scan_one_device+0xc6/0x400 [ 209.743199] ? device_list_add+0x8d0/0x8d0 [ 209.747441] ? __free_pages+0x54/0x90 [ 209.751330] ? free_pages+0x46/0x50 [ 209.755068] btrfs_mount+0x2e3/0x2b28 [ 209.758990] ? lock_downgrade+0x740/0x740 [ 209.763136] ? find_held_lock+0x35/0x130 [ 209.767369] ? pcpu_alloc+0x3af/0x1050 [ 209.771253] ? btrfs_remount+0x11f0/0x11f0 [ 209.775484] ? rcu_read_lock_sched_held+0x110/0x130 [ 209.780505] ? __lockdep_init_map+0x10c/0x570 [ 209.785001] mount_fs+0x97/0x2a1 [ 209.788356] vfs_kern_mount.part.0+0x5e/0x3d0 [ 209.792841] ? find_held_lock+0x35/0x130 [ 209.796899] vfs_kern_mount+0x40/0x60 [ 209.800697] btrfs_mount+0x3ce/0x2b28 [ 209.804505] ? lock_downgrade+0x740/0x740 [ 209.808636] ? find_held_lock+0x35/0x130 [ 209.812680] ? pcpu_alloc+0x3af/0x1050 [ 209.816567] ? btrfs_remount+0x11f0/0x11f0 [ 209.820807] ? rcu_read_lock_sched_held+0x110/0x130 [ 209.825836] ? __lockdep_init_map+0x10c/0x570 [ 209.830329] ? __lockdep_init_map+0x10c/0x570 [ 209.834821] mount_fs+0x97/0x2a1 [ 209.838191] vfs_kern_mount.part.0+0x5e/0x3d0 [ 209.842683] do_mount+0x417/0x27d0 [ 209.846218] ? copy_mount_options+0x5c/0x2f0 [ 209.850621] ? rcu_read_lock_sched_held+0x110/0x130 [ 209.855640] ? copy_mount_string+0x40/0x40 [ 209.859863] ? copy_mount_options+0x1fe/0x2f0 [ 209.864347] SyS_mount+0xab/0x120 [ 209.867784] ? copy_mnt_ns+0x8c0/0x8c0 [ 209.871657] do_syscall_64+0x1e8/0x640 [ 209.875528] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 209.880374] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 209.885574] RIP: 0033:0x45cc6a [ 209.888757] RSP: 002b:00007f46eab45a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 209.896494] RAX: ffffffffffffffda RBX: 00007f46eab45b40 RCX: 000000000045cc6a [ 209.903758] RDX: 00007f46eab45ae0 RSI: 0000000020000100 RDI: 00007f46eab45b00 07:06:45 executing program 4: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0x10, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000100)='/dev/vsock\x00', 0x200001, 0x0) r1 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r1, 0x8934, 0x0) r2 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) ioctl$VIDIOC_QUERYCAP(r2, 0x80685600, &(0x7f0000000040)) r3 = syz_open_dev$mouse(0x0, 0x1000, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) getsockopt$bt_rfcomm_RFCOMM_CONNINFO(r0, 0x12, 0x2, &(0x7f0000000240)=""/227, &(0x7f0000000340)=0xe3) write(0xffffffffffffffff, &(0x7f0000000140)="f8f9100a102de9b7624df65e3f1769005b4ed7fccc52f28d1fd2d5b1595c6a73b367f95b825014927e0dce5cb55df5e166c64a2da34d277b3fa5be0e6f97d110024f1bdb58f60ce88971eada8eef06ffd6e296762fbe84e5dc067c7647491f14a5e4f3da043f4dd218a43e305dec3287ec0a738744fa6a44bc023e18fc1134dcf360b6993da5de742d730a0ae5757420c25b2350bec58b631f3a118bdba9b0284829a11fece882dce1e89e713052ccfa0af79fa42e48bda131d08610fc97f7f96d9827019ba3342237c8426a4e836cf170805632fa7c3b81ddde905b3347e39beb4aeb39a5832dee36b2", 0xea) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) r4 = syz_open_procfs(0x0, &(0x7f0000000880)='oom_score\x00') r5 = syz_open_procfs(0x0, &(0x7f00000006c0)='Net/3\x97OOT\x15\x00\xb6\xcf@e\xd3r\x82\x9fc') ioctl$VIDIOC_PREPARE_BUF(r5, 0xc058565d, &(0x7f00000005c0)={0x0, 0xb, 0x4, 0x0, {0x0, 0x7530}, {0x0, 0x2, 0x81, 0x10, 0x24, 0x6, "cf676f53"}, 0x80, 0x5, @offset=0x9, 0x4}) mq_timedsend(r5, &(0x7f0000000480)="c1cc3d2c05c16add6c964974e00652617b35c74bd5a620d3170df3c2f134d5beb838b0f00c6ca198401126d02772777a96ead8602a94c5450ea4e5c8b02fc6e876ee2383fc4faa682ed6a91a53a08a1fdd9839c170a6f81ede814c769cf15c688c8514b5f4f1dc0a50019813ce4459df629cd480519073a5f929cd5e59d0058ea64475a46e924294d5ef1b4b158e59d9c923a0", 0x93, 0x4, &(0x7f0000000540)={0x0, 0x989680}) ioctl$KVM_GET_REGS(r5, 0x8090ae81, &(0x7f00000003c0)) preadv(r4, &(0x7f00000017c0), 0x199, 0x0) ioctl$DRM_IOCTL_AGP_ENABLE(r3, 0x40086432, &(0x7f00000000c0)=0xc2) ioctl$UI_BEGIN_FF_UPLOAD(r4, 0xc06855c8, &(0x7f0000000640)={0x10, 0xd17, {0x52, 0x2db, 0x7f, {0x200}, {0x40, 0x4}, @const={0x7ff, {0x8, 0xba, 0x1, 0x9150}}}, {0xa5e136065a937c32, 0x5, 0xfff, {0x4, 0x3}, {0x7, 0x1}, @ramp={0x800, 0x80, {0x100, 0x4c2, 0x800, 0x3}}}}) signalfd4(r4, &(0x7f0000000380)={0x2}, 0x8, 0x1000) 07:06:45 executing program 1: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000040), 0x0, 0x0) syz_mount_image$vfat(&(0x7f0000000040)='vfat\x00', &(0x7f0000000080)='./file0\x00', 0xa5e, 0x8, &(0x7f0000001680)=[{&(0x7f0000000140)="741c960ff7ccaa66a22a7f7da8058cc8c495b8710bd04a0adff78da190c12f48157bb9303163055d8e6c849247eb22f8399dfcfe907d32a3a9e3768ea135306e57a2620b73e13177543e2065a2da26efc2887236e8456f0fa73de07a76497222c5caf449d16ea73c54f16eb98a36093bf2100b697f57f2d03e1105a521e029d8c474adb414f9e0f77bb527657ae0a257c2fba6b47494777d65822926de66b0f95351c61a162e603c0812070e712da7f4120171fd4da8eaa5f8d4", 0xba, 0x200}, {&(0x7f0000000200)="4468fbc814f298d943ff551e932aa0d7c0899141197c994c805520ea135f8028924d868ad0564108683b2939fd493642209fb5973dc3aff89574a66f55f4b149a92c9dbd6e00d0eac6d7727e4cd41f2054eb9e14c4db5089ad564a337c64daa1884a8c5f437187aad80c3f96af4c720eaffcd384567c0819b2f1c98714e5badd2c17a5c659a2dd7e15e395ed1b500ab115bc36a0c470b8828a06d6cb69303df4de405764bb1841d816b9bdd7f2aba4735b408b0a6a5f050ab182ed93839ea0e31d831e0f8e6dfd6b9a859695de288201691a0dd624b98f5f37d8bdb5", 0xdc, 0x1}, {&(0x7f0000000300)="f59e727e0f7f06ec823378e53406b8ce2d2c38fd92b50f80b76883f97b37b3d387ecd84deb7b83d3f032fd446026b28afc081e9566cd00f23c05265da4f913a7eee85eabc63fe53e5c18e7c747c413ec8c20b340831019a2a82eb25b25e32be887903b42bf48e8a1084639f8277f0e9afd76396dfe460bbd1819eb2c0de0b1f01bf566f8245084360bc7140d06133c04e53d5c70048b7d4761e6c605c4d652fe2b267fc647101d43849a330ec1c010bd45964e601518b0fb4f6237e619a8e1679d43eeef362b", 0xc6, 0x100}, {&(0x7f0000000400)="8a6143b2a5e368d7e806ec6d64d5a4bf45e899d7e497529ca4e6cc219b9f739ab5c2b972e38c0dcfb605ed818a8e754a4b842b63d9f40112ffac7719c5e8a613d5d69cdc53f986c8780f47fd6d2f05755f0a811ea7b61ceb18bca9798e63fb8ea6a3c5feddf20c5bacabb4a7abf97520928177be45fae0ada24aff01cd11188e8a25546b88d2a5a69637b069ade25df274289533bb4ef53ec196ba2f2459728c158e8065fd279a1ef259b3fa153c", 0xae, 0x3}, {&(0x7f00000000c0)="b1fd9c295143bac3ed9772f20a978fb2797970", 0x13, 0x20}, {&(0x7f00000004c0)="d53b7f64d93fb4b644ab1d0825648cea3befd6775bbcb68d98794c7cb8ee5dcd2b46673927ec8b2e472482573b0547f52b7893789d8d75c30f046aa071f98d0ecdd3cb5c7eefa76e98535f7c14d178449b65a2f096881b23b9cb86ffc8b719610e6497f0f86fa2bdd156f7329f4aaceb10f5e4e664fad8dd69ddb50ea429fd7791eeddb469b3439f6bbbec71c96f9180ca69862858390a7e9c5b4a5cace61a9e3510c26a7778a3f18bd336a8141383f7b73a061d7cd39d62339db1bf9b78df832998d37a07d892", 0xc7, 0x3}, {&(0x7f00000005c0)="2b20a16192c6715d76f52919b4ab5b0c46140166cd5078aa6d0f2457f85a3cef1a77dfcd8475e0b1efd92f78a05ebc003e61db694355f25eb7cc8831328f02b44027e8897c0375f3e25ce5f70642ec504c137a763196c0435ebed4d27174fcc6895a4364b4667f32aaa44733508f38ecf562eb9171b8c821c3808b241270b4aefe724b2a44d0e8fb3609545e58235366d0a36b1a2bea00b4cb9fbe", 0x9b, 0xfffffffffffffffb}, {&(0x7f0000000680)="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", 0x1000, 0x8}], 0x140500, &(0x7f0000001740)={[{@shortname_lower='shortname=lower'}], [{@measure='measure'}, {@obj_role={'obj_role'}}, {@func={'func', 0x3d, 'FILE_MMAP'}}, {@hash='hash'}, {@seclabel='seclabel'}]}) socket$inet6_sctp(0xa, 0x0, 0x84) [ 209.911058] RBP: 0000000000000001 R08: 00007f46eab45b40 R09: 00007f46eab45ae0 [ 209.918315] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000004 [ 209.925653] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 07:06:45 executing program 3: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) syz_open_dev$dspn(&(0x7f0000000100)='/dev/dsp#\x00', 0x7fff, 0x101003) sysfs$2(0x2, 0x7, &(0x7f00000001c0)=""/203) 07:06:45 executing program 0 (fault-call:0 fault-nth:69): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x0, 0x989680}) socket$inet6_sctp(0xa, 0x0, 0x84) 07:06:45 executing program 2: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) syz_mount_image$ceph(&(0x7f0000000080)='ceph\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x5d5, 0xa, &(0x7f0000002780)=[{&(0x7f0000000140)="7a2ad8e617fa255839fecafc15c601922161545a2e94c6d03442fd51b59d03fb9d7dafeff936911032ef5dfa31cd2ec817b4e5c9c9b48774796018146310aac605b35bb6c73a4fe36ec2cfade3197e1a312bf85d3618aa72b889b74196ecbaf9067bb917ed785a5388ba49d6a41bc3f7b8d48cbecaeea639f634b4cc", 0x7c, 0xc919}, {&(0x7f00000001c0)="9929a5366c5f26bc684493badbf8d420de29ae16d89f0113eb2e5858710f07529be91238f4a08f4862", 0x29, 0x2}, {&(0x7f0000000340)="9df85b5f841398314717672599607556c48da0f5b5afbcee289523a4b3b9c62f7d6fade5014e562a662cf186e5345d4ef08b3cb3e9dd0654d8651bde92dbfc625730e6e7574868839285b54722ddffa12df2e6938e55008fe8009b63092cd65b1cf77c8858473093a80788bda7a0676849adb2f919cf98e5dfd8f2f46290579708cebce599b56a87e0bf6cff43084febcbd29e286198ee5a4c2e2e1d32bd093e0eae90ce5813f892bf125d2420f64e5038ee865af653beb17fcab75f23702e98a5a1d0d6fdbb24634d0a81b9c2fcdd8785f41aa242dc60212712bbe1e7418e", 0xdf, 0x6}, {&(0x7f0000000200)="b88b74c70e4949b913cdf59b3af2f3dc439ec74723139690712c541a95c478f94d34bc3b84ff292eddf523c7d8df8f4feb4f947f2cec03329cbff6221c59609ef81712d4f3e9cf5e5eb99bc53e776d6a4aafa7f9b87231cb87845909bc2f953896e31ffbdf2b62a125a2bc118c3ca4d01653852b6a616aa46576292ceac40be455ea9f8e08d0bc20024c014208a05e3a04a98e596c54d84a63e9f4067f", 0x9d, 0x3}, {&(0x7f0000000440)="0f6a7fce9cbe0404638f8b3de9f330a44cc5a9e94ced614313b4c884006ad5770614342de262780c798ce31f158bb42066b852b4bd1e857becd70f9457b94efd79a6585a023fca94ffca08cae9ec7a02ef4a8277845200e60c2f0652862726da6e72a9229071a8acae1f648d1bd2bd9fc06c80626386857f537c89df973da443013b010febc5b40e646c6993bc44ed91", 0x90, 0x3f}, {&(0x7f0000000500)="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", 0x1000, 0x1ff}, {&(0x7f0000001500)="e8d00d5dd17273a048d77b33fb55fb8d4d73be4a1808f58d095824b87c1e4b1c4c396e405c5dc7a6c78c2d2a7d877d9db089f53e38fa279fc965c927d6d28928a8eede9af8ad5f68d6da51d0e02a4ec5bd64037ae862fa66f0f5939e1d681565d00c682749eb620fcd7afc6f3db66a590cf7e41e0316f37220ad8d", 0x7b, 0x1}, {&(0x7f0000001580)="47052aa59777858c28d7d636b379d56842aa6f1ebf5cb05f004ee148de4b1cce4f21f00a58fcf98cf1ed3d62f8690cdb8fc4c5c433f5b1838f7c28f5a9f66ad798451a8c576dc737c185b169bc39d7266e88721a1654875190d4e53c11d6e5b8e3e1b076c23ee15325d8be0d9782fda9073303cd659aefe3b6c932e558e97949ef8c9ec5cb74fa80bda8e6849ba067440be6105f54bc7a6f08e79886c281e63cff21ab967e51860ea262b731146016b4989f08629601db21fc8e261bb4f44c6c19440fe520e72b1323790289fac83af6421ab083", 0xd4, 0x4}, {&(0x7f0000001680)="f60877beae7ac21ea6bb00dffbef120a9d58479361f5bf087dba35db31ac818abd6ff99a42768955ab2957f3e52efc5af45351fe75a14964210939b327bc6825fde5709b9a9a557eb6aab8ef8a6a7fbcd1cf2e6388d75709cf4494a23451123e98e51d0c872a6b322dce4130277610ec03208b72a07d2e29fef4f76e378522c4bff6e6ee5b8277ba5416b12a681b0e0629ec5851c1fabaeb4d6d9cd063dc9ef1b641c8e664a06cfb1aea3130d67594ac1cd028486472f500558cc9c7fb36f5053a9ec4b633da7ffd36bfe766982b53", 0xcf, 0x4}, {&(0x7f0000001780)="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", 0x1000, 0x3}], 0x4000, &(0x7f0000002880)='btrfs\x00') r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f00000028c0)='/dev/sequencer\x00', 0x400, 0x0) r1 = socket(0x10, 0x2, 0x0) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, 0x0}, &(0x7f0000cab000)=0xc) syz_mount_image$hfsplus(&(0x7f00000000c0)='hfsplus\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000280)={[{@gid={'gid', 0x3d, r2}}]}) setgid(r2) ioctl$VIDIOC_SUBDEV_S_SELECTION(r0, 0xc040563e, &(0x7f0000002900)={0x1, 0x0, 0x2, 0x2, {0x5, 0xfffff9fd, 0x3, 0x7}}) r3 = syz_genetlink_get_family_id$ipvs(&(0x7f0000002980)='IPVS\x00') sendmsg$IPVS_CMD_GET_CONFIG(0xffffffffffffffff, &(0x7f0000002b80)={&(0x7f0000002940)={0x10, 0x0, 0x0, 0xc3215091}, 0xc, &(0x7f0000002b40)={&(0x7f00000029c0)={0x154, r3, 0x200, 0x70bd25, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x400}, @IPVS_CMD_ATTR_SERVICE={0x34, 0x1, [@IPVS_SVC_ATTR_PROTOCOL={0x8}, @IPVS_SVC_ATTR_PROTOCOL={0x8, 0x2, 0x2f}, @IPVS_SVC_ATTR_PE_NAME={0x8, 0xb, 'sip\x00'}, @IPVS_SVC_ATTR_PE_NAME={0x8, 0xb, 'sip\x00'}, @IPVS_SVC_ATTR_PROTOCOL={0x8, 0x2, 0x16}, @IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x2}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x7}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x2}, @IPVS_CMD_ATTR_DAEMON={0x4c, 0x3, [@IPVS_DAEMON_ATTR_MCAST_TTL={0x8, 0x8, 0xad}, @IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'ipddp0\x00'}, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x8, 0x4, 0x50}, @IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'ip6gretap0\x00'}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x8, 0x8, 0x6}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x8, 0x8, 0x3}]}, @IPVS_CMD_ATTR_DAEMON={0x54, 0x3, [@IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x1}, @IPVS_DAEMON_ATTR_SYNC_ID={0x8, 0x3, 0x3}, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x8, 0x4, 0x1f}, @IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'erspan0\x00'}, @IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @remote}, @IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'ip6gre0\x00'}, @IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @multicast2}]}, @IPVS_CMD_ATTR_SERVICE={0x4c, 0x1, [@IPVS_SVC_ATTR_NETMASK={0x8, 0x9, 0x33}, @IPVS_SVC_ATTR_NETMASK={0x8, 0x9, 0x70}, @IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv4=@empty}, @IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x10, 0x2}}, @IPVS_SVC_ATTR_PE_NAME={0x8, 0xb, 'sip\x00'}, @IPVS_SVC_ATTR_PROTOCOL={0x8, 0x2, 0x4}, @IPVS_SVC_ATTR_PORT={0x8, 0x4, 0x4e23}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x93}]}, 0x154}, 0x1, 0x0, 0x0, 0x40000}, 0x9e88b6666d3ba062) 07:06:45 executing program 5: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = syz_open_procfs(0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) fcntl$getflags(r0, 0xb) socket$inet6_sctp(0xa, 0x1, 0x84) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r1, 0x407, 0x0) write(r1, &(0x7f0000000340), 0x41395527) r2 = syz_open_procfs(0x0, &(0x7f00000006c0)='Net/3\x97OOT\x15\x00\xb6\xcf@e\xd3r\x82\x9fc') ioctl$VIDIOC_PREPARE_BUF(r2, 0xc058565d, &(0x7f00000005c0)={0x0, 0xb, 0x4, 0x0, {0x0, 0x7530}, {0x0, 0x2, 0x81, 0x10, 0x24, 0x6, "cf676f53"}, 0x80, 0x5, @offset=0x9, 0x4}) mq_timedsend(r2, &(0x7f0000000480)="c1cc3d2c05c16add6c964974e00652617b35c74bd5a620d3170df3c2f134d5beb838b0f00c6ca198401126d02772777a96ead8602a94c5450ea4e5c8b02fc6e876ee2383fc4faa682ed6a91a53a08a1fdd9839c170a6f81ede814c769cf15c688c8514b5f4f1dc0a50019813ce4459df629cd480519073a5f929cd5e59d0058ea64475a46e924294d5ef1b4b158e59d9c923a0", 0x93, 0x4, &(0x7f0000000540)={0x0, 0x989680}) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f00000001c0)={0x0, 0x18, 0xfa00, {0x4, &(0x7f0000000180)={0xffffffffffffffff}, 0x1be}}, 0x20) write$RDMA_USER_CM_CMD_NOTIFY(r2, &(0x7f0000000280)={0xf, 0x8, 0xfa00, {r3, 0x5}}, 0x10) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r4, 0x407, 0x0) write(r4, &(0x7f0000000340), 0x41395527) ioctl$EXT4_IOC_ALLOC_DA_BLKS(r4, 0x660c) setsockopt$ALG_SET_KEY(r4, 0x117, 0x1, &(0x7f0000000380)="0c4f4d16cf2f3a2dd8a5046790a60c91e487dc9ca281434dbc169c6555a654da5e42c953490634b417ec9535653162fc5730d4c8dab3e136550ed7d31fa8d7094afd6e5154349155e6ef7e5fb08d79c283188a3f28548ab4366e6863ba5561aedbd1ee3f9a2c5646e4a9c2806b231528bca7ee2134e39966c40bcb1371a7e7691672a8dc9bda07175f11a9160cba3f0ddb78db3b2e184e1e9aa371691df9f49a5e3343bce4e4b8a2c80831b63d95ed57cf89982b317abf1cf8a71078d00dd5fa9151c142fa4bb765d503150f5f6f34284c7480a5091e9b246e", 0xd9) fsetxattr$trusted_overlay_nlink(r4, &(0x7f0000000240)='trusted.overlay.nlink\x00', &(0x7f0000000300)={'U+', 0x7}, 0x28, 0x3) r5 = socket(0xa, 0x3, 0x8) r6 = syz_open_dev$amidi(&(0x7f0000000340)='/dev/amidi#\x00', 0x9c4, 0x70000) ioctl$sock_inet_SIOCSIFFLAGS(r5, 0x89a2, &(0x7f0000000180)={'bridge0\x00\x00\x01\x00', 0x4}) write$RDMA_USER_CM_CMD_CREATE_ID(r6, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040)={0xffffffffffffffff}}}, 0x20) sendmsg$key(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000080)=ANY=[], 0x1de}}, 0x0) r8 = gettid() waitid(0x83b895581628fca4, r8, &(0x7f0000000040), 0x2, &(0x7f0000000480)) sendmsg$key(r5, &(0x7f00000006c0)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000540)=ANY=[@ANYPTR64=&(0x7f0000000640)=ANY=[@ANYRES64, @ANYRESHEX=r7, @ANYRESDEC=r8]], 0xfffffffffffffe56}}, 0x20004850) write$RDMA_USER_CM_CMD_JOIN_MCAST(r4, &(0x7f0000000700)={0x16, 0x98, 0xfa00, {&(0x7f0000000340), 0x3, r7, 0x30, 0x0, @ib={0x1b, 0x288, 0x9, {"ac10ddf1df8167728b525dc4d5055871"}, 0x76, 0xffffffff, 0x2}}}, 0xa0) ioctl$EXT4_IOC_ALLOC_DA_BLKS(r1, 0x660c) setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000380)="0c4f4d16cf2f3a2dd8a5046790a60c91e487dc9ca281434dbc169c6555a654da5e42c953490634b417ec9535653162fc5730d4c8dab3e136550ed7d31fa8d7094afd6e5154349155e6ef7e5fb08d79c283188a3f28548ab4366e6863ba5561aedbd1ee3f9a2c5646e4a9c2806b231528bca7ee2134e39966c40bcb1371a7e7691672a8dc9bda07175f11a9160cba3f0ddb78db3b2e184e1e9aa371691df9f49a5e3343bce4e4b8a2c80831b63d95ed57cf89982b317abf1cf8a71078d00dd5fa9151c142fa4bb765d503150f5f6f34284c7480a5091e9b246e", 0xd9) fsetxattr$trusted_overlay_nlink(r1, &(0x7f0000000240)='trusted.overlay.nlink\x00', &(0x7f0000000300)={'U+', 0x4}, 0x28, 0x3) setsockopt$inet6_icmp_ICMP_FILTER(r1, 0x1, 0x1, &(0x7f0000000140)={0x7fffffff}, 0x4) ioctl$sock_ax25_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f0000000080)={@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}, @default, 0x5, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @null, @null, @null, @bcast, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null]}) 07:06:45 executing program 3: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_open_dev$dspn(&(0x7f0000000100)='/dev/dsp#\x00', 0x7fff, 0x101003) sysfs$2(0x2, 0x7, &(0x7f00000001c0)=""/203) 07:06:45 executing program 4: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, 0x0) r1 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) ioctl$VIDIOC_QUERYCAP(r1, 0x80685600, &(0x7f0000000040)) syz_open_dev$mouse(0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f00000000c0)) 07:06:45 executing program 3: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_open_dev$dspn(&(0x7f0000000100)='/dev/dsp#\x00', 0x7fff, 0x101003) sysfs$2(0x2, 0x7, &(0x7f00000001c0)=""/203) [ 210.228864] hfsplus: gid requires an argument [ 210.239080] hfsplus: unable to parse mount options [ 210.271324] FAULT_INJECTION: forcing a failure. [ 210.271324] name fail_page_alloc, interval 1, probability 0, space 0, times 0 07:06:45 executing program 4: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, 0x0) r1 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) ioctl$VIDIOC_QUERYCAP(r1, 0x80685600, &(0x7f0000000040)) syz_open_dev$mouse(0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) r3 = openat$cgroup_ro(r2, &(0x7f0000000100)='cpu.stat\x00', 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r4, 0x407, 0x0) write(r4, &(0x7f0000000340), 0x41395527) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000180)) ioctl$EXT4_IOC_ALLOC_DA_BLKS(r4, 0x660c) setsockopt$ALG_SET_KEY(r4, 0x117, 0x1, &(0x7f0000000380)="0c4f4d16cf2f3a2dd8a5046790a60c91e487dc9ca281434dbc169c6555a654da5e42c953490634b417ec9535653162fc5730d4c8dab3e136550ed7d31fa8d7094afd6e5154349155e6ef7e5fb08d79c283188a3f28548ab4366e6863ba5561aedbd1ee3f9a2c5646e4a9c2806b231528bca7ee2134e39966c40bcb1371a7e7691672a8dc9bda07175f11a9160cba3f0ddb78db3b2e184e1e9aa371691df9f49a5e3343bce4e4b8a2c80831b63d95ed57cf89982b317abf1cf8a71078d00dd5fa9151c142fa4bb765d503150f5f6f34284c7480a5091e9b246e", 0xd9) fsetxattr$trusted_overlay_nlink(r4, &(0x7f0000000240)='trusted.overlay.nlink\x00', &(0x7f0000000300)={'U+', 0x7}, 0x28, 0x3) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) write$FUSE_NOTIFY_DELETE(r3, &(0x7f0000000140)={0x32, 0x6, 0x0, {0x5, 0x6, 0x9, 0x0, '/dev/kvm\x00'}}, 0x32) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f00000000c0)) [ 210.335876] CPU: 1 PID: 14491 Comm: syz-executor.0 Not tainted 4.14.151 #0 [ 210.342939] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 210.352296] Call Trace: [ 210.354893] dump_stack+0x138/0x197 [ 210.358568] should_fail.cold+0x10f/0x159 [ 210.362919] ? __might_sleep+0x93/0xb0 [ 210.366829] __alloc_pages_nodemask+0x1d6/0x7a0 [ 210.371514] ? __alloc_pages_slowpath+0x2930/0x2930 [ 210.376541] ? lock_downgrade+0x740/0x740 [ 210.380708] alloc_pages_current+0xec/0x1e0 [ 210.385057] __page_cache_alloc+0x248/0x3e0 [ 210.389391] do_read_cache_page+0x625/0xfc0 [ 210.393745] ? blkdev_writepages+0xd0/0xd0 [ 210.398008] ? find_get_pages_contig+0xaa0/0xaa0 [ 210.402777] ? blkdev_get+0xb0/0x8e0 [ 210.406506] ? dput.part.0+0x170/0x750 [ 210.410407] ? bd_may_claim+0xd0/0xd0 [ 210.414220] ? path_put+0x50/0x70 [ 210.417685] ? lookup_bdev.part.0+0xe1/0x160 [ 210.422112] read_cache_page_gfp+0x6e/0x90 [ 210.426386] btrfs_read_disk_super+0xdd/0x440 [ 210.430896] btrfs_scan_one_device+0xc6/0x400 [ 210.435395] ? device_list_add+0x8d0/0x8d0 [ 210.439618] ? __free_pages+0x54/0x90 [ 210.443402] ? free_pages+0x46/0x50 [ 210.447011] btrfs_mount+0x2e3/0x2b28 [ 210.450808] ? lock_downgrade+0x740/0x740 [ 210.455219] ? find_held_lock+0x35/0x130 [ 210.459421] ? pcpu_alloc+0x3af/0x1050 [ 210.463314] ? btrfs_remount+0x11f0/0x11f0 [ 210.467549] ? rcu_read_lock_sched_held+0x110/0x130 [ 210.472565] ? __lockdep_init_map+0x10c/0x570 [ 210.477058] mount_fs+0x97/0x2a1 [ 210.480409] vfs_kern_mount.part.0+0x5e/0x3d0 [ 210.484924] ? find_held_lock+0x35/0x130 [ 210.488980] vfs_kern_mount+0x40/0x60 [ 210.492773] btrfs_mount+0x3ce/0x2b28 [ 210.496554] ? lock_downgrade+0x740/0x740 [ 210.500679] ? find_held_lock+0x35/0x130 [ 210.504722] ? pcpu_alloc+0x3af/0x1050 [ 210.508594] ? btrfs_remount+0x11f0/0x11f0 [ 210.512812] ? rcu_read_lock_sched_held+0x110/0x130 [ 210.517819] ? __lockdep_init_map+0x10c/0x570 [ 210.522310] ? __lockdep_init_map+0x10c/0x570 [ 210.526809] mount_fs+0x97/0x2a1 [ 210.530161] vfs_kern_mount.part.0+0x5e/0x3d0 [ 210.534730] do_mount+0x417/0x27d0 [ 210.538250] ? retint_kernel+0x2d/0x2d [ 210.542125] ? copy_mount_string+0x40/0x40 [ 210.546355] ? copy_mount_options+0x195/0x2f0 [ 210.550843] ? copy_mount_options+0x1fe/0x2f0 [ 210.555322] SyS_mount+0xab/0x120 [ 210.558768] ? copy_mnt_ns+0x8c0/0x8c0 [ 210.562640] do_syscall_64+0x1e8/0x640 [ 210.566511] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 210.571861] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 210.577047] RIP: 0033:0x45cc6a 07:06:45 executing program 3: sched_setscheduler(0x0, 0x5, 0x0) syz_open_dev$dspn(&(0x7f0000000100)='/dev/dsp#\x00', 0x7fff, 0x101003) sysfs$2(0x2, 0x7, &(0x7f00000001c0)=""/203) 07:06:45 executing program 3: sched_setscheduler(0x0, 0x5, 0x0) syz_open_dev$dspn(&(0x7f0000000100)='/dev/dsp#\x00', 0x7fff, 0x101003) sysfs$2(0x2, 0x7, &(0x7f00000001c0)=""/203) [ 210.580218] RSP: 002b:00007f46eab45a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 210.587998] RAX: ffffffffffffffda RBX: 00007f46eab45b40 RCX: 000000000045cc6a [ 210.595260] RDX: 00007f46eab45ae0 RSI: 0000000020000100 RDI: 00007f46eab45b00 [ 210.602511] RBP: 0000000000000001 R08: 00007f46eab45b40 R09: 00007f46eab45ae0 [ 210.609761] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000004 [ 210.617040] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 07:06:45 executing program 2: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000880)='oom_score\x00') preadv(r1, &(0x7f00000017c0), 0x199, 0x0) ioctl$UI_BEGIN_FF_UPLOAD(r1, 0xc06855c8, &(0x7f0000000640)={0x10, 0xd17, {0x52, 0x2db, 0x7f, {0x200}, {0x40, 0x4}, @const={0x7ff, {0x8, 0xba, 0x1, 0x9150}}}, {0xa5e136065a937c32, 0x5, 0xfff, {0x4, 0x3}, {0x7, 0x1}, @ramp={0x800, 0x80, {0x100, 0x4c2, 0x800, 0x3}}}}) ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_INFO(r1, 0xc08c5334, &(0x7f0000000140)={0x1, 0x7, 0x800, 'queue1\x00'}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000080)=0x1) 07:06:45 executing program 1: r0 = syz_open_procfs(0x0, &(0x7f0000000400)='oom_sco\xa00-\x93\x06\x03\xc8\xcd4H7\xd8\x86\x84\x8e\xe9\xdf3\xc8D\xce\x89;\xf8YT\xb4\xbb\x88$\xebL\xe4B6L\r\x14\xfbQ7\xd0t\xb6HR\x8c\xba\x06\xdf\x82\xfd\x1c\xd7\xbe\xaa\xf2\x7f\xf2~\xd5\x91\x80\x19\x1e \xb6\x1d\xf6\xd1\aP)%,Wt\x94\xaa\xaf\xc5/\x9f\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8f\xc6Y\xd9\x9e\xf9uu\x04\x9e\xef\xca\x16J\xf4-\xed&\x8e\x96.\x93\aG/R\xf4\x17\xf9pM\xd8A\x04\x12B;\xf5&li\xd1\xb7\xfd:\xe3\x0f\x18a\x84\xdde\xc3X~\a\x01\xe7\xa2\f\xd8 \x9f&\xc4\x13\xfbp\xe5W') preadv(r0, &(0x7f00000017c0), 0x199, 0x0) ioctl$UI_BEGIN_FF_UPLOAD(r0, 0xc06855c8, &(0x7f0000000640)={0x5, 0xd17, {0x52, 0x2db, 0x7f, {0x200}, {0x40, 0x4}, @cond=[{0x8, 0x6, 0x42, 0x8, 0x1, 0xffff}, {0x3, 0x1e5, 0x1, 0xc5, 0x6, 0x657}]}, {0xa5e136065a937c32, 0x5, 0xfff, {0x4, 0x3}, {0x7, 0x1}, @period={0x5, 0xfffc, 0x8000, 0x9bb, 0x8, {0x4, 0x401, 0x8, 0x3ff}, 0x0, &(0x7f0000000040)}}}) ioctl$USBDEVFS_BULK(r0, 0xc0185502, &(0x7f00000000c0)={{0x4, 0x1}, 0x3, 0x8, 0x1b, 0x0, &(0x7f0000000080)="08f8665e84e739e93b990b730e959c52a22c6d3985b002b29babc0"}) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x200, 0x1, &(0x7f0000000140)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x40, 0x10000}], 0x18000, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r1, 0x407, 0x0) write(r1, &(0x7f0000000340), 0x41395527) openat$dsp(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/dsp\x00', 0x400001, 0x0) ioctl$EXT4_IOC_ALLOC_DA_BLKS(r1, 0x660c) r2 = openat$selinux_mls(0xffffffffffffff9c, &(0x7f0000000380)='/selinux/mls\x00', 0x0, 0x0) ioctl$NBD_SET_SIZE_BLOCKS(r2, 0xab07, 0x7) ioctl$DRM_IOCTL_AGP_ALLOC(r1, 0xc0206434, &(0x7f0000000040)={0x1ff, 0x0, 0x20002, 0x2}) setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f00000006c0)="0c4f4d0175cdab07d8a5046790a60c91e487dc9ca281434dbc169c6555a654da5e42c953490634b417ecdd85d2222ad1fc953530d4c8dab3e136550ed7d31fa8d7094afd6e5154349155e6ef7e5fb08d79c283188a3f28548ab4366e6863ba5561aedbd1ee3f9a2c5646e4a9c2806b231528bca7a7e5691672a8dc9bda07175f4871cf1311a9160cba3f0ddb78db3b2e184e1e9aa371691df9f49a5e3343bce4e4b897640da2c85f5b960000000095ed57cf89982b317abf1cf8a71078d00dd5f759658e42fa4bb765d503150f5f6f34284c7480a5091e9be7aad960fd19c8870331942868ad079802bbe8e4c030140888366daf80788079818fe334a39886e58dc1995649149ffe3f7f6390e9756428cad006500d47b3f8c58443", 0xffffff14) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r3, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) getsockopt$netrom_NETROM_T2(r3, 0x103, 0x2, &(0x7f0000000280)=0x81, &(0x7f0000000340)=0x4) fsetxattr$trusted_overlay_nlink(r1, &(0x7f0000000240)='trusted.overlay.nlink\x00', &(0x7f0000000300)={'U+', 0x7}, 0x28, 0x3) ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TIMER(r1, 0x40605346, &(0x7f0000000180)={0x1, 0x2, {0x8ef8c574c9f1d84, 0x1, 0x6, 0x3, 0x4}}) 07:06:45 executing program 0 (fault-call:0 fault-nth:70): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x0, 0x989680}) socket$inet6_sctp(0xa, 0x0, 0x84) [ 210.703138] bridge0: port 3(gretap0) entered blocking state [ 210.721570] bridge0: port 3(gretap0) entered disabled state 07:06:45 executing program 3: sched_setscheduler(0x0, 0x5, 0x0) syz_open_dev$dspn(&(0x7f0000000100)='/dev/dsp#\x00', 0x7fff, 0x101003) sysfs$2(0x2, 0x7, &(0x7f00000001c0)=""/203) [ 210.758738] device gretap0 entered promiscuous mode [ 210.802654] bridge0: port 3(gretap0) entered blocking state [ 210.808478] bridge0: port 3(gretap0) entered forwarding state [ 210.837384] FAULT_INJECTION: forcing a failure. [ 210.837384] name failslab, interval 1, probability 0, space 0, times 0 [ 210.882920] CPU: 0 PID: 14550 Comm: syz-executor.0 Not tainted 4.14.151 #0 [ 210.889966] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 210.899462] Call Trace: [ 210.902277] dump_stack+0x138/0x197 [ 210.905929] should_fail.cold+0x10f/0x159 [ 210.910097] should_failslab+0xdb/0x130 [ 210.914093] kmem_cache_alloc+0x2d7/0x780 [ 210.918260] ? delete_node+0x1fb/0x690 [ 210.922339] ? save_trace+0x290/0x290 [ 210.926160] alloc_buffer_head+0x24/0xe0 [ 210.930237] alloc_page_buffers+0xb7/0x200 [ 210.934504] create_empty_buffers+0x39/0x480 [ 210.938924] ? __lock_is_held+0xb6/0x140 [ 210.942999] ? check_preemption_disabled+0x3c/0x250 [ 210.948045] create_page_buffers+0x153/0x1c0 [ 210.952470] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 210.958467] block_read_full_page+0xcd/0x960 [ 210.962908] ? set_init_blocksize+0x220/0x220 [ 210.967417] ? __lru_cache_add+0x18a/0x250 [ 210.971673] ? __bread_gfp+0x290/0x290 [ 210.975574] ? add_to_page_cache_lru+0x159/0x310 [ 210.980347] ? add_to_page_cache_locked+0x40/0x40 [ 210.985217] blkdev_readpage+0x1d/0x30 [ 210.989118] do_read_cache_page+0x671/0xfc0 [ 210.993470] ? blkdev_writepages+0xd0/0xd0 [ 210.997728] ? find_get_pages_contig+0xaa0/0xaa0 [ 211.002500] ? blkdev_get+0xb0/0x8e0 [ 211.006228] ? dput.part.0+0x170/0x750 [ 211.010132] ? bd_may_claim+0xd0/0xd0 [ 211.013944] ? path_put+0x50/0x70 [ 211.017406] ? lookup_bdev.part.0+0xe1/0x160 [ 211.021839] read_cache_page_gfp+0x6e/0x90 [ 211.026092] btrfs_read_disk_super+0xdd/0x440 [ 211.030602] btrfs_scan_one_device+0xc6/0x400 [ 211.035104] ? device_list_add+0x8d0/0x8d0 [ 211.039340] ? __free_pages+0x54/0x90 [ 211.043151] ? free_pages+0x46/0x50 [ 211.046789] btrfs_mount+0x2e3/0x2b28 [ 211.050601] ? lock_downgrade+0x740/0x740 [ 211.054751] ? find_held_lock+0x35/0x130 [ 211.058819] ? pcpu_alloc+0x3af/0x1050 [ 211.062719] ? btrfs_remount+0x11f0/0x11f0 [ 211.066966] ? rcu_read_lock_sched_held+0x110/0x130 [ 211.071993] ? __lockdep_init_map+0x10c/0x570 [ 211.072014] mount_fs+0x97/0x2a1 07:06:46 executing program 3: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_open_dev$dspn(&(0x7f0000000100)='/dev/dsp#\x00', 0x7fff, 0x101003) sysfs$2(0x2, 0x7, &(0x7f00000001c0)=""/203) 07:06:46 executing program 5: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = socket(0x10, 0x2, 0x0) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, 0x0}, &(0x7f0000cab000)=0xc) syz_mount_image$hfsplus(&(0x7f00000000c0)='hfsplus\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000280)={[{@gid={'gid', 0x3d, r1}}]}) mount$9p_tcp(&(0x7f0000000080)='\x10 \x00\x00\x10\xfd\xff\b!\x00', &(0x7f00000000c0)='./file0\x00', &(0x7f0000000140)='9p\x00', 0x80000, &(0x7f0000000340)={'trans=tcp,', {'port', 0x3d, 0x4e24}, 0x2c, {[{@dfltgid={'dfltgid', 0x3d, r1}}, {@cache_mmap='cache=mmap'}, {@afid={'afid', 0x3d, 0x6}}, {@version_9p2000='version=9p2000'}], [{@smackfstransmute={'smackfstransmute', 0x3d, 'btrfs\x00'}}, {@dont_measure='dont_measure'}, {@fsname={'fsname', 0x3d, 'btrfs\x00'}}, {@rootcontext={'rootcontext', 0x3d, 'root'}}, {@obj_role={'obj_role', 0x3d, 'btrfs\x00'}}, {@pcr={'\x80\x06\x00', 0x3d, 0x23}}, {@seclabel='seclabel'}]}}) syz_open_procfs(0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) socket$inet6_sctp(0xa, 0x1, 0x84) [ 211.072027] vfs_kern_mount.part.0+0x5e/0x3d0 [ 211.072037] ? find_held_lock+0x35/0x130 [ 211.080042] vfs_kern_mount+0x40/0x60 [ 211.080056] btrfs_mount+0x3ce/0x2b28 [ 211.080065] ? lock_downgrade+0x740/0x740 [ 211.080073] ? find_held_lock+0x35/0x130 [ 211.080082] ? pcpu_alloc+0x3af/0x1050 [ 211.080097] ? btrfs_remount+0x11f0/0x11f0 [ 211.080113] ? rcu_read_lock_sched_held+0x110/0x130 [ 211.080131] ? __lockdep_init_map+0x10c/0x570 [ 211.080142] ? __lockdep_init_map+0x10c/0x570 [ 211.080155] mount_fs+0x97/0x2a1 [ 211.080168] vfs_kern_mount.part.0+0x5e/0x3d0 [ 211.080179] do_mount+0x417/0x27d0 [ 211.080189] ? copy_mount_options+0x5c/0x2f0 [ 211.122124] ? rcu_read_lock_sched_held+0x110/0x130 [ 211.122142] ? copy_mount_string+0x40/0x40 [ 211.122158] ? copy_mount_options+0x1fe/0x2f0 [ 211.122169] SyS_mount+0xab/0x120 [ 211.122177] ? copy_mnt_ns+0x8c0/0x8c0 [ 211.122188] do_syscall_64+0x1e8/0x640 [ 211.122198] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 211.122213] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 211.122220] RIP: 0033:0x45cc6a 07:06:46 executing program 3: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_open_dev$dspn(&(0x7f0000000100)='/dev/dsp#\x00', 0x7fff, 0x101003) sysfs$2(0x2, 0x7, &(0x7f00000001c0)=""/203) 07:06:46 executing program 3: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_open_dev$dspn(&(0x7f0000000100)='/dev/dsp#\x00', 0x7fff, 0x101003) sysfs$2(0x2, 0x7, &(0x7f00000001c0)=""/203) [ 211.122225] RSP: 002b:00007f46eab45a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 211.122235] RAX: ffffffffffffffda RBX: 00007f46eab45b40 RCX: 000000000045cc6a [ 211.122241] RDX: 00007f46eab45ae0 RSI: 0000000020000100 RDI: 00007f46eab45b00 [ 211.122246] RBP: 0000000000000001 R08: 00007f46eab45b40 R09: 00007f46eab45ae0 [ 211.122252] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000004 [ 211.122257] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 07:06:46 executing program 4: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, 0x0) r1 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) r2 = syz_open_procfs(0x0, &(0x7f0000000880)='oom_score\x00') preadv(r2, &(0x7f00000017c0), 0x199, 0x0) ioctl$UI_BEGIN_FF_UPLOAD(r2, 0xc06855c8, &(0x7f0000000640)={0x10, 0xd17, {0x52, 0x2db, 0x7f, {0x200}, {0x40, 0x4}, @const={0x7ff, {0x8, 0xba, 0x1, 0x9150}}}, {0xa5e136065a937c32, 0x5, 0xfff, {0x4, 0x3}, {0x7, 0x1}, @ramp={0x800, 0x80, {0x100, 0x4c2, 0x800, 0x3}}}}) ioctl$VIDIOC_QUERYCAP(r2, 0x80685600, &(0x7f0000000280)) syz_open_dev$mouse(0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f00000000c0)) setsockopt$inet_tcp_TCP_MD5SIG(r1, 0x6, 0xe, &(0x7f0000000100)={@in6={{0xa, 0x4e20, 0x0, @initdev={0xfe, 0x88, [], 0x0, 0x0}, 0x81}}, 0x0, 0x41d5, 0x0, "b366237b06b786858907764f513dead113ab46a3c7e85717592413adb7b41386036688cd9868fc2d9a4a6f536c06d37766bea863ab801d4d7a65e97cf47c579833df9cbf3f990015c189397bd7654282"}, 0xd8) 07:06:46 executing program 3: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_open_dev$dspn(&(0x7f0000000100)='/dev/dsp#\x00', 0x7fff, 0x101003) sysfs$2(0x2, 0x7, &(0x7f00000001c0)=""/203) 07:06:46 executing program 3: perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_open_dev$dspn(&(0x7f0000000100)='/dev/dsp#\x00', 0x7fff, 0x101003) sysfs$2(0x2, 0x7, &(0x7f00000001c0)=""/203) 07:06:46 executing program 0 (fault-call:0 fault-nth:71): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x0, 0x989680}) socket$inet6_sctp(0xa, 0x0, 0x84) [ 211.369869] FAULT_INJECTION: forcing a failure. [ 211.369869] name failslab, interval 1, probability 0, space 0, times 0 [ 211.406732] CPU: 1 PID: 14592 Comm: syz-executor.0 Not tainted 4.14.151 #0 [ 211.413794] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 211.423287] Call Trace: [ 211.425873] dump_stack+0x138/0x197 [ 211.429680] should_fail.cold+0x10f/0x159 [ 211.433910] should_failslab+0xdb/0x130 [ 211.437879] kmem_cache_alloc_node+0x56/0x780 [ 211.442465] ? mount_fs+0x97/0x2a1 [ 211.446006] create_task_io_context+0x31/0x3d0 [ 211.450692] generic_make_request_checks+0x1505/0x1ac0 [ 211.456074] ? rcu_read_lock_sched_held+0x110/0x130 [ 211.461177] ? blk_cleanup_queue+0x610/0x610 [ 211.465574] ? trace_hardirqs_on+0x10/0x10 [ 211.469793] generic_make_request+0x7d/0xa40 [ 211.474192] ? save_trace+0x290/0x290 [ 211.478016] ? blk_queue_enter+0x520/0x520 [ 211.482284] ? find_held_lock+0x35/0x130 [ 211.486330] ? guard_bio_eod+0x161/0x530 [ 211.490488] submit_bio+0x1a5/0x3f0 [ 211.494111] ? submit_bio+0x1a5/0x3f0 [ 211.497898] ? generic_make_request+0xa40/0xa40 [ 211.502584] ? guard_bio_eod+0x1fd/0x530 [ 211.506637] submit_bh_wbc+0x550/0x720 [ 211.510509] block_read_full_page+0x7a2/0x960 [ 211.514986] ? set_init_blocksize+0x220/0x220 [ 211.519464] ? __bread_gfp+0x290/0x290 [ 211.523336] ? add_to_page_cache_lru+0x159/0x310 [ 211.528074] ? add_to_page_cache_locked+0x40/0x40 [ 211.532900] blkdev_readpage+0x1d/0x30 [ 211.536785] do_read_cache_page+0x671/0xfc0 [ 211.541108] ? blkdev_writepages+0xd0/0xd0 [ 211.545351] ? find_get_pages_contig+0xaa0/0xaa0 [ 211.545363] ? blkdev_get+0xb0/0x8e0 [ 211.545378] ? dput.part.0+0x170/0x750 [ 211.553829] ? bd_may_claim+0xd0/0xd0 [ 211.553842] ? path_put+0x50/0x70 [ 211.553852] ? lookup_bdev.part.0+0xe1/0x160 [ 211.553866] read_cache_page_gfp+0x6e/0x90 [ 211.573782] btrfs_read_disk_super+0xdd/0x440 [ 211.578296] btrfs_scan_one_device+0xc6/0x400 [ 211.582785] ? device_list_add+0x8d0/0x8d0 [ 211.587011] ? __free_pages+0x54/0x90 [ 211.590802] ? free_pages+0x46/0x50 [ 211.594440] btrfs_mount+0x2e3/0x2b28 [ 211.598230] ? lock_downgrade+0x740/0x740 [ 211.602447] ? find_held_lock+0x35/0x130 [ 211.606488] ? pcpu_alloc+0x3af/0x1050 [ 211.610369] ? btrfs_remount+0x11f0/0x11f0 [ 211.614658] ? rcu_read_lock_sched_held+0x110/0x130 [ 211.619682] ? __lockdep_init_map+0x10c/0x570 [ 211.624216] mount_fs+0x97/0x2a1 [ 211.627587] vfs_kern_mount.part.0+0x5e/0x3d0 [ 211.632069] ? find_held_lock+0x35/0x130 [ 211.636124] vfs_kern_mount+0x40/0x60 [ 211.639926] btrfs_mount+0x3ce/0x2b28 [ 211.643722] ? lock_downgrade+0x740/0x740 [ 211.647855] ? find_held_lock+0x35/0x130 [ 211.651900] ? pcpu_alloc+0x3af/0x1050 [ 211.655876] ? btrfs_remount+0x11f0/0x11f0 [ 211.660099] ? rcu_read_lock_sched_held+0x110/0x130 [ 211.665111] ? __lockdep_init_map+0x10c/0x570 [ 211.669591] ? __lockdep_init_map+0x10c/0x570 [ 211.674593] mount_fs+0x97/0x2a1 [ 211.678035] vfs_kern_mount.part.0+0x5e/0x3d0 [ 211.682528] do_mount+0x417/0x27d0 [ 211.686049] ? copy_mount_options+0x5c/0x2f0 [ 211.690439] ? rcu_read_lock_sched_held+0x110/0x130 [ 211.695442] ? copy_mount_string+0x40/0x40 [ 211.699676] ? copy_mount_options+0x1fe/0x2f0 [ 211.704158] SyS_mount+0xab/0x120 [ 211.707766] ? copy_mnt_ns+0x8c0/0x8c0 [ 211.711643] do_syscall_64+0x1e8/0x640 [ 211.715528] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 211.720360] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 211.725531] RIP: 0033:0x45cc6a [ 211.728714] RSP: 002b:00007f46eab45a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 211.736408] RAX: ffffffffffffffda RBX: 00007f46eab45b40 RCX: 000000000045cc6a [ 211.743662] RDX: 00007f46eab45ae0 RSI: 0000000020000100 RDI: 00007f46eab45b00 [ 211.750922] RBP: 0000000000000001 R08: 00007f46eab45b40 R09: 00007f46eab45ae0 [ 211.758181] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000004 [ 211.765606] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 07:06:47 executing program 2: r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x4, 0x1ff, 0x6, 0x1ff, 0x2b0, 0x1, 0x1, [], 0x0, 0xffffffffffffffff, 0x2, 0x1}, 0x3c) bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000140)={r0, &(0x7f00000000c0)="e4ef97ebb3e0c02128bd16d07de8dd7e1125023e450910136eb2577dcce947da84d8ef456406033385a7f9abb6fbab0bc33073869fde"}, 0x20) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200), 0x0, 0x0) r1 = openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f0000000180)='/selinux/commit_pending_bools\x00', 0x1, 0x0) setsockopt$netrom_NETROM_T1(r1, 0x103, 0x1, &(0x7f00000001c0)=0x7ff, 0x4) 07:06:47 executing program 3: perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_open_dev$dspn(&(0x7f0000000100)='/dev/dsp#\x00', 0x7fff, 0x101003) sysfs$2(0x2, 0x7, &(0x7f00000001c0)=""/203) 07:06:47 executing program 1: r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/sequencer2\x00', 0x400, 0x0) ioctl$VIDIOC_STREAMOFF(r0, 0x40045613, &(0x7f00000001c0)=0x9) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r1 = socket$inet6_sctp(0xa, 0x5, 0x84) r2 = syz_open_dev$vcsa(&(0x7f0000000080)='/dev/vcsa#\x00', 0xf646, 0x500) write$selinux_create(r2, &(0x7f0000000140)=@objname={'system_u:object_r:user_cron_spool_t:s0', 0x20, '/usr/sbin/ntpd', 0x20, 0xb212, 0x20, './file0\x00'}, 0x53) r3 = getpid() sched_setattr(r3, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0) r4 = socket$inet_icmp_raw(0x2, 0x3, 0x1) getsockopt$sock_cred(r4, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xc) setresuid(0x0, r5, 0x0) stat(&(0x7f0000000280)='./file0\x00', &(0x7f0000000b40)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) r7 = syz_open_procfs(0x0, &(0x7f0000000880)='oom_score\x00') preadv(r7, &(0x7f00000017c0), 0x199, 0x0) ioctl$UI_BEGIN_FF_UPLOAD(r7, 0xc06855c8, &(0x7f0000000640)={0x10, 0xd17, {0x52, 0x2db, 0x7f, {0x200}, {0x40, 0x4}, @const={0x7ff, {0x8, 0xba, 0x1, 0x9150}}}, {0xa5e136065a937c32, 0x5, 0xfff, {0x4, 0x3}, {0x7, 0x1}, @ramp={0x800, 0x80, {0x100, 0x4c2, 0x800, 0x3}}}}) r8 = accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x80800) setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r8, 0x84, 0x13, &(0x7f0000000100)=0x73, 0x4) sendmsg$unix(r0, &(0x7f0000000c40)={&(0x7f0000000200)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000000a80)=[{&(0x7f0000000340)="8d6d68c748b61fff6d94a2d9a591b20fe5dc3c23853f299b18f262b2338bbf830f5840b262c3f2d720786ca42aac3b9bf253a2b553672fecfc9adf5fd8cb9b3bc1011860ac808829f58929c1078d6d06562f30eb8b9df77068f0fdbd09ebac5d565beeaccc7a50bb1ef0336bc24f4f07", 0x70}, {&(0x7f00000003c0)="4bffbcc246c482ff8145601c3bf52a5e4e46b72b464745ac451a47a5f208ea33a71ec3281738695fa468e5ce7a58e464c443040b842fbea726a9d39a6df2e1bacacb357e2806f4614e8c0dde5bd4180bf7e253a94e09d4c2bfb3050f99beb4c71d54e54ef651076110ad3308b2108a3a724b0b17894e6ae55b7aabae60be673ab5ae6f8c98b393c7f3ff37c4178de5aeece43eb3efb705795026bcd6", 0x9c}, {&(0x7f0000000480)="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", 0xfd}, {&(0x7f0000000580)="499e0549d22389ade9780fb333d669f7cde7c8adc703ca14307369d6bba761cf877544df3ca4c066498e0be0cc71dc74fa6a34f94202117f0aac9c560ee46b40283e0314cbc6", 0x46}, {&(0x7f0000000600)="a9fbd50360e7268566a73e56e19cbe4d9d6ef4309169f997ab411c77e00f0072981d273bc0353dfba573fcc596f220b7fd3e82a75aa2e1be2a93404592fb0718703bbb71ec349e4a03cbfdfe43e2031194690415b6ce93414e11a4a16d540a1cdfb4227d39644c13c9409adc88bf0f1988f85e52de822bdc083ba00c6ae67fb5e16030d01bad444e7aaa527b66b9c63972edfb8011de3b2645740e853c592d97a697843a36cae297555ba493397fce13861ee0", 0xb3}, {&(0x7f00000006c0)="5dd16ec17e5be4ef75c4ea49596dcb552e3d2cf1ae97dbf84c6c9d7e1f4df28a311522cc16a3190a2b25dda67289cb329b42d3805b698b0fa5c1c43aba418ad91729a8d9c091f695d9720ae4606d9cca1a2c0c7db70483cc6bf1da65d171a25d2d87eddf8bf15bb2a1262e325e39d640a23983ffb38e4ad188e7b3b5881a87131c08eaff8f435072f3b14673cf007999039870ce3140a645dd3904030d362fab518e685a3f051ab7dbe052b51591d229f595332ad9c13e2db99b849865fe7a82a7fc1db7b714909b92a2609460ad92e75957ee61d00234237fefd5168b635505048fc34ff8ab54b646a2d0824d9ae367a1", 0xf1}, {&(0x7f00000007c0)="7972929b30f60dc57a8d989ec7a9e176c5736fe7457722d2fd5363a7fadcaf3467e2dc178b75d87f6fdd54cc892064601022b1cf50f2c32b86125571b2e2fb90d006720b48dddb9d8557079e45f2dbe28a1c9178ecf1072b5ec9e3917ca329dbb6bba66bf315ee1cdb9d90e213b831564fda8d30b5e3", 0x76}, {&(0x7f0000000840)="a8db9a2b14509aa78ebb70e3158f05ed069aa6c8177d633b584fb01b17f39481f9f7fc0d873ce3429155cf7ca04d9c82b36cb9c1429b859af83247f88735da076d1e5631b835a7b021a2d805794e46e6a7fbcbc0a1d650a1b9d13ea051b9acd42534b77e4c701a7d4d06b0538fe0e23bbb5074a683ea2fa663fd3b3cef2a91877797f44f075bc04d3c8e58c7db0cd598036976a8efc17718e6", 0x99}, {&(0x7f0000000900)="10ab2f42b4f1e5b190e97b534e327f01cd708024dcd58e8402174f41d1c95bcd6cd509508a8a981b04cab6dc77db7708c3e0bfac97f09098f85609150c5f9fa2ef7460d7bb22ea369a4d8075c49b5f8c720fe80075bb4163eb64a8379bab1b30dd5f4889a7f3bf203faae0ee2bd3da9d53621fda8b330caf4de1673ec099e696c1bc018fb83936e89b98d9ccc767f471df51add50cd30e26b660fd7438272e428784ad091e7d86e6cebf52891ec49e38d2ec064ca9cb4c", 0xb7}, {&(0x7f00000009c0)="c1980cd443ff34abad80bce79d0544a08adfeb8a5a26540641c75c3951c0684c005ecebff9619a03b0e3b454540c16521c704da8db7441f338c8b722e982b8619bc567f46a38199122676a2d5e0bdc1a9a39561480383ca8102ebc3698e2cf48a08fe4eac5216161d02eb7c32fe57263e85176f4484ba382616ca58f8f28de53c362312d221ad9462e5a90fe91406b6ecf7ca7a88f96afb4", 0x98}], 0xa, &(0x7f0000000bc0)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {r3, r5, r6}}}, @rights={{0x1c, 0x1, 0x1, [r7, r8, r0]}}, @rights={{0x14, 0x1, 0x1, [r1]}}], 0x70, 0x4008804}, 0xd0) 07:06:47 executing program 4: sched_setscheduler(0x0, 0x5, 0x0) r0 = syz_open_dev$dmmidi(&(0x7f00000001c0)='/dev/dmmidi#\x00', 0x1, 0x51491f1d1dc5c2eb) ioctl$sock_rose_SIOCRSCLRRT(r0, 0x89e4) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r1, 0x8934, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) r3 = syz_open_procfs(0x0, &(0x7f0000000880)='oom_score\x00') preadv(r3, &(0x7f00000017c0), 0x199, 0x0) ioctl$UI_BEGIN_FF_UPLOAD(r3, 0xc06855c8, &(0x7f0000000640)={0x10, 0xd17, {0x52, 0x2db, 0x7f, {0x200}, {0x40, 0x4}, @const={0x7ff, {0x8, 0xba, 0x1, 0x9150}}}, {0xa5e136065a937c32, 0x5, 0xfff, {0x4, 0x3}, {0x7, 0x1}, @ramp={0x800, 0x80, {0x100, 0x4c2, 0x800, 0x3}}}}) ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000880)='oom_score\x00') preadv(r4, &(0x7f00000017c0), 0x199, 0x0) ioctl$UI_BEGIN_FF_UPLOAD(r4, 0xc06855c8, &(0x7f0000000640)={0x10, 0xd17, {0x52, 0x2db, 0x7f, {0x200}, {0x40, 0x4}, @const={0x7ff, {0x8, 0xba, 0x1, 0x9150}}}, {0xa5e136065a937c32, 0x5, 0xfff, {0x4, 0x3}, {0x7, 0x1}, @ramp={0x800, 0x80, {0x100, 0x4c2, 0x800, 0x3}}}}) r5 = syz_open_procfs(0x0, &(0x7f0000000880)='oom_score\x00') preadv(r5, &(0x7f00000017c0), 0x199, 0x0) ioctl$UI_BEGIN_FF_UPLOAD(r5, 0xc06855c8, &(0x7f0000000640)={0x10, 0xd17, {0x52, 0x2db, 0x7f, {0x200}, {0x40, 0x4}, @const={0x7ff, {0x8, 0xba, 0x1, 0x9150}}}, {0xa5e136065a937c32, 0x5, 0xfff, {0x4, 0x3}, {0x7, 0x1}, @ramp={0x800, 0x80, {0x100, 0x4c2, 0x800, 0x3}}}}) ioctl$KVM_INTERRUPT(r5, 0x4004ae86, &(0x7f0000000180)=0x8) write$apparmor_current(r4, &(0x7f0000000300)=@profile={'changeprofile ', '}$\x00'}, 0x11) ioctl$SG_SET_RESERVED_SIZE(r2, 0x2275, &(0x7f0000000100)=0x1) r6 = syz_open_procfs(0x0, &(0x7f0000000880)='oom_score\x00') preadv(r6, &(0x7f00000017c0), 0x199, 0x0) ioctl$UI_BEGIN_FF_UPLOAD(r6, 0xc06855c8, &(0x7f0000000640)={0x10, 0xd17, {0x52, 0x2db, 0x7f, {0x200}, {0x40, 0x4}, @const={0x7ff, {0x8, 0xba, 0x1, 0x9150}}}, {0xa5e136065a937c32, 0x5, 0xfff, {0x4, 0x3}, {0x7, 0x1}, @ramp={0x800, 0x80, {0x100, 0x4c2, 0x800, 0x3}}}}) write$selinux_create(r6, &(0x7f0000000240)=ANY=[@ANYBLOB="73797374656d5f753a6f626a6563745f723a6170745f7661725f63616367655f743a7330202f7362696e2f6468636c69656e74003030303030303030303009c4be1d111053737946e48dd530302a30303332373637202e2f66696c653002"], 0x51) r7 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) ioctl$VIDIOC_QUERYCAP(r7, 0x80685600, &(0x7f0000000040)) syz_open_dev$mouse(0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f00000000c0)={0xfffffffe}) 07:06:47 executing program 5: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_S_CTRL(0xffffffffffffffff, 0xc008561c, &(0x7f0000000080)={0xe8, 0x8}) syz_open_procfs(0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) socket$inet6_sctp(0xa, 0x1, 0x84) r0 = syz_open_procfs(0x0, &(0x7f00000006c0)='Net/3\x97OOT\x15\x00\xb6\xcf@e\xd3r\x82\x9fc') ioctl$VIDIOC_PREPARE_BUF(r0, 0xc058565d, &(0x7f00000005c0)={0x0, 0xb, 0x4, 0x0, {0x0, 0x7530}, {0x0, 0x2, 0x81, 0x10, 0x24, 0x6, "cf676f53"}, 0x80, 0x5, @offset=0x9, 0x4}) mq_timedsend(r0, &(0x7f0000000480)="c1cc3d2c05c16add6c964974e00652617b35c74bd5a620d3170df3c2f134d5beb838b0f00c6ca198401126d02772777a96ead8602a94c5450ea4e5c8b02fc6e876ee2383fc4faa682ed6a91a53a08a1fdd9839c170a6f81ede814c769cf15c688c8514b5f4f1dc0a50019813ce4459df629cd480519073a5f929cd5e59d0058ea64475a46e924294d5ef1b4b158e59d9c923a0", 0x93, 0x4, &(0x7f0000000540)={0x0, 0x989680}) ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_CLIENT(r0, 0xc04c5349, &(0x7f0000000140)={0x7ff, 0x3, 0x80}) 07:06:47 executing program 0 (fault-call:0 fault-nth:72): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x0, 0x989680}) socket$inet6_sctp(0xa, 0x0, 0x84) 07:06:47 executing program 3: perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_open_dev$dspn(&(0x7f0000000100)='/dev/dsp#\x00', 0x7fff, 0x101003) sysfs$2(0x2, 0x7, &(0x7f00000001c0)=""/203) 07:06:47 executing program 3: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_open_dev$dspn(&(0x7f0000000100)='/dev/dsp#\x00', 0x7fff, 0x101003) sysfs$2(0x2, 0x7, &(0x7f00000001c0)=""/203) [ 212.133813] FAULT_INJECTION: forcing a failure. [ 212.133813] name failslab, interval 1, probability 0, space 0, times 0 [ 212.185339] CPU: 0 PID: 14633 Comm: syz-executor.0 Not tainted 4.14.151 #0 [ 212.192390] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 212.201751] Call Trace: [ 212.204355] dump_stack+0x138/0x197 [ 212.208001] should_fail.cold+0x10f/0x159 [ 212.212178] should_failslab+0xdb/0x130 [ 212.216174] kmem_cache_alloc+0x2d7/0x780 [ 212.220335] ? save_stack_trace+0x16/0x20 [ 212.224492] ? save_stack+0x45/0xd0 [ 212.228133] ? kasan_kmalloc+0xce/0xf0 07:06:47 executing program 1: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) socket$inet6_dccp(0xa, 0x6, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000880)='oom_score\x00') preadv(r0, &(0x7f00000017c0), 0x199, 0x0) ioctl$UI_BEGIN_FF_UPLOAD(r0, 0xc06855c8, &(0x7f0000000640)={0x10, 0xd17, {0x52, 0x2db, 0x7f, {0x200}, {0x40, 0x4}, @const={0x7ff, {0x8, 0xba, 0x1, 0x9150}}}, {0xa5e136065a937c32, 0x5, 0xfff, {0x4, 0x3}, {0x9, 0x1}, @ramp={0x800, 0x80, {0x100, 0x4c2, 0x800, 0x3}}}}) pipe(&(0x7f0000000340)={0xffffffffffffffff}) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) write$selinux_validatetrans(r1, &(0x7f0000000140)={'system_u:object_r:pinentry_exec_t:s0', 0x20, 'system_u:object_r:hald_keymap_exec_t:s0', 0x20, 0x4000000000, 0x20, '/usr/lib/telepathy/mission-control-5\x00'}, 0x87) r2 = openat$cgroup_ro(r0, &(0x7f0000000080)='cpuacct.usage_percpu_sys\x00', 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) ioctl$EXT4_IOC_ALLOC_DA_BLKS(r3, 0x660c) setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, &(0x7f0000000380)="0c4f4d16cf2f3a2dd8a5046790a60c91e487dc9ca281434dbc169c6555a654da5e42c953490634b417ec9535653162fc5730d4c8dab3e136550ed7d31fa8d7094afd6e5154349155e6ef7e5fb08d79c283188a3f28548ab4366e6863ba5561aedbd1ee3f9a2c5646e4a9c2806b231528bca7ee2134e39966c40bcb1371a7e7691672a8dc9bda07175f11a9160cba3f0ddb78db3b2e184e1e9aa371691df9f49a5e3343bce4e4b8a2c80831b63d95ed57cf89982b317abf1cf8a71078d00dd5fa9151c142fa4bb765d503150f5f6f34284c7480a5091e9b246e", 0xd9) fsetxattr$trusted_overlay_nlink(r3, &(0x7f0000000240)='trusted.overlay.nlink\x00', &(0x7f0000000300)={'U+', 0x7}, 0x28, 0x3) ioctl$VIDIOC_S_AUDIO(r3, 0x40345622, &(0x7f0000000240)={0x9, "eb5b0fb20e27dacb22a11d60287eeb8af0479a1cf63ca199fc580bc4b7e944c3", 0x0, 0x2}) ioctl$KVM_INTERRUPT(r2, 0x4004ae86, &(0x7f00000000c0)=0xc9a7) [ 212.232035] ? kmem_cache_alloc_trace+0x152/0x790 [ 212.236890] ? btrfs_mount+0x1069/0x2b28 [ 212.240955] ? mount_fs+0x97/0x2a1 [ 212.244513] getname_kernel+0x53/0x350 [ 212.248407] kern_path+0x20/0x40 [ 212.251783] lookup_bdev.part.0+0x63/0x160 [ 212.256032] ? blkdev_open+0x260/0x260 [ 212.259926] ? btrfs_open_devices+0x27/0xb0 [ 212.264261] blkdev_get_by_path+0x76/0xf0 [ 212.268422] btrfs_get_bdev_and_sb+0x38/0x2e0 [ 212.272934] __btrfs_open_devices+0x194/0xab0 [ 212.277530] ? check_preemption_disabled+0x3c/0x250 07:06:47 executing program 3: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_open_dev$dspn(&(0x7f0000000100)='/dev/dsp#\x00', 0x7fff, 0x101003) sysfs$2(0x2, 0x7, &(0x7f00000001c0)=""/203) [ 212.282744] ? find_device+0x100/0x100 [ 212.286924] ? btrfs_mount+0x1069/0x2b28 [ 212.291005] ? rcu_read_lock_sched_held+0x110/0x130 [ 212.296033] btrfs_open_devices+0xa4/0xb0 [ 212.300191] btrfs_mount+0x11b4/0x2b28 [ 212.304098] ? lock_downgrade+0x740/0x740 [ 212.308260] ? find_held_lock+0x35/0x130 [ 212.312373] ? pcpu_alloc+0x3af/0x1050 [ 212.316282] ? btrfs_remount+0x11f0/0x11f0 [ 212.320532] ? rcu_read_lock_sched_held+0x110/0x130 [ 212.325666] ? __lockdep_init_map+0x10c/0x570 [ 212.330184] mount_fs+0x97/0x2a1 [ 212.333605] vfs_kern_mount.part.0+0x5e/0x3d0 [ 212.338184] ? find_held_lock+0x35/0x130 [ 212.342360] vfs_kern_mount+0x40/0x60 [ 212.346208] btrfs_mount+0x3ce/0x2b28 [ 212.349996] ? lock_downgrade+0x740/0x740 [ 212.354181] ? find_held_lock+0x35/0x130 [ 212.358228] ? pcpu_alloc+0x3af/0x1050 [ 212.362104] ? btrfs_remount+0x11f0/0x11f0 [ 212.366368] ? rcu_read_lock_sched_held+0x110/0x130 [ 212.371389] ? __lockdep_init_map+0x10c/0x570 [ 212.375883] ? __lockdep_init_map+0x10c/0x570 [ 212.380413] mount_fs+0x97/0x2a1 [ 212.383768] vfs_kern_mount.part.0+0x5e/0x3d0 [ 212.388424] do_mount+0x417/0x27d0 [ 212.391953] ? copy_mount_options+0x5c/0x2f0 [ 212.396354] ? rcu_read_lock_sched_held+0x110/0x130 [ 212.401353] ? copy_mount_string+0x40/0x40 [ 212.405570] ? copy_mount_options+0x1fe/0x2f0 [ 212.410057] SyS_mount+0xab/0x120 [ 212.413504] ? copy_mnt_ns+0x8c0/0x8c0 [ 212.417467] do_syscall_64+0x1e8/0x640 [ 212.421337] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 212.426166] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 212.431343] RIP: 0033:0x45cc6a [ 212.434525] RSP: 002b:00007f46eab45a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 212.442245] RAX: ffffffffffffffda RBX: 00007f46eab45b40 RCX: 000000000045cc6a [ 212.449508] RDX: 00007f46eab45ae0 RSI: 0000000020000100 RDI: 00007f46eab45b00 [ 212.456772] RBP: 0000000000000001 R08: 00007f46eab45b40 R09: 00007f46eab45ae0 [ 212.464980] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000004 [ 212.472305] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 07:06:47 executing program 3: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_open_dev$dspn(&(0x7f0000000100)='/dev/dsp#\x00', 0x7fff, 0x101003) sysfs$2(0x2, 0x7, &(0x7f00000001c0)=""/203) 07:06:47 executing program 2: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0xaaaaaaaaaaaab3f, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 07:06:47 executing program 0 (fault-call:0 fault-nth:73): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x0, 0x989680}) socket$inet6_sctp(0xa, 0x0, 0x84) 07:06:47 executing program 5: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) chdir(0x0) openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x275a, 0x0) r0 = socket(0x2, 0x1, 0x0) r1 = syz_open_dev$ndb(&(0x7f0000000000)='/dev/nbd#\x00', 0x0, 0x0) ioctl$NBD_SET_SOCK(r1, 0xab00, r0) ioctl$SIOCRSGCAUSE(0xffffffffffffffff, 0x89e0, 0x0) syz_open_procfs(0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) socket$inet6_sctp(0xa, 0x1, 0x84) 07:06:47 executing program 3: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_open_dev$dspn(&(0x7f0000000100)='/dev/dsp#\x00', 0x7fff, 0x101003) sysfs$2(0x2, 0x7, &(0x7f00000001c0)=""/203) [ 212.685012] FAULT_INJECTION: forcing a failure. [ 212.685012] name failslab, interval 1, probability 0, space 0, times 0 [ 212.717785] CPU: 0 PID: 14677 Comm: syz-executor.0 Not tainted 4.14.151 #0 [ 212.724853] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 212.734218] Call Trace: [ 212.736823] dump_stack+0x138/0x197 [ 212.740472] should_fail.cold+0x10f/0x159 [ 212.744638] should_failslab+0xdb/0x130 [ 212.748633] kmem_cache_alloc_trace+0x2e9/0x790 [ 212.753323] ? __kmalloc_node+0x51/0x80 [ 212.757288] btrfs_mount+0x1001/0x2b28 [ 212.761181] ? lock_downgrade+0x740/0x740 [ 212.766807] ? find_held_lock+0x35/0x130 [ 212.770877] ? pcpu_alloc+0x3af/0x1050 [ 212.775055] ? btrfs_remount+0x11f0/0x11f0 [ 212.779287] ? rcu_read_lock_sched_held+0x110/0x130 [ 212.784305] ? __lockdep_init_map+0x10c/0x570 [ 212.788819] mount_fs+0x97/0x2a1 [ 212.792265] vfs_kern_mount.part.0+0x5e/0x3d0 [ 212.796945] ? find_held_lock+0x35/0x130 [ 212.801009] vfs_kern_mount+0x40/0x60 [ 212.804812] btrfs_mount+0x3ce/0x2b28 [ 212.808614] ? lock_downgrade+0x740/0x740 [ 212.812751] ? find_held_lock+0x35/0x130 [ 212.816809] ? pcpu_alloc+0x3af/0x1050 [ 212.820692] ? btrfs_remount+0x11f0/0x11f0 [ 212.824934] ? rcu_read_lock_sched_held+0x110/0x130 [ 212.829948] ? __lockdep_init_map+0x10c/0x570 [ 212.834439] ? __lockdep_init_map+0x10c/0x570 [ 212.839020] mount_fs+0x97/0x2a1 [ 212.842389] vfs_kern_mount.part.0+0x5e/0x3d0 [ 212.846886] do_mount+0x417/0x27d0 [ 212.850419] ? copy_mount_options+0x5c/0x2f0 [ 212.854823] ? rcu_read_lock_sched_held+0x110/0x130 [ 212.859829] ? copy_mount_string+0x40/0x40 [ 212.864053] ? copy_mount_options+0x1fe/0x2f0 [ 212.868548] SyS_mount+0xab/0x120 [ 212.871989] ? copy_mnt_ns+0x8c0/0x8c0 [ 212.876058] do_syscall_64+0x1e8/0x640 [ 212.879938] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 212.884794] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 212.889981] RIP: 0033:0x45cc6a [ 212.893154] RSP: 002b:00007f46eab45a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 212.900847] RAX: ffffffffffffffda RBX: 00007f46eab45b40 RCX: 000000000045cc6a [ 212.908105] RDX: 00007f46eab45ae0 RSI: 0000000020000100 RDI: 00007f46eab45b00 [ 212.915356] RBP: 0000000000000001 R08: 00007f46eab45b40 R09: 00007f46eab45ae0 [ 212.922617] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000004 07:06:48 executing program 3: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_open_dev$dspn(&(0x7f0000000100)='/dev/dsp#\x00', 0x7fff, 0x101003) sysfs$2(0x2, 0x7, &(0x7f00000001c0)=""/203) [ 212.929879] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 07:06:48 executing program 0 (fault-call:0 fault-nth:74): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x0, 0x989680}) socket$inet6_sctp(0xa, 0x0, 0x84) 07:06:48 executing program 4: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x8, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x800000, 0x0, @perf_config_ext={0x1}, 0x8000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, 0x0) syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) syz_open_dev$video(&(0x7f0000000100)='/dev/video#\x00', 0x7fffffff, 0x908000) r1 = syz_open_procfs(0x0, &(0x7f0000000880)='oom_score\x00') preadv(r1, &(0x7f00000017c0), 0x199, 0x0) ioctl$UI_BEGIN_FF_UPLOAD(r1, 0xc06855c8, &(0x7f0000000640)={0x10, 0xd17, {0x52, 0x2db, 0x7f, {0x200}, {0x40, 0x4}, @const={0x7ff, {0x8, 0xba, 0x1, 0x9150}}}, {0xa5e136065a937c32, 0x5, 0xfff, {0x4, 0x3}, {0x7, 0x1}, @ramp={0x800, 0x80, {0x100, 0x4c2, 0x800, 0x3}}}}) r2 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000140)='/dev/dsp\x00', 0x28c0, 0x0) bind$inet6(r2, &(0x7f0000000180)={0xa, 0x4e23, 0x2, @loopback, 0x8}, 0x1c) ioctl$VIDIOC_QUERYCAP(r1, 0x80685600, &(0x7f0000000040)) syz_open_dev$mouse(0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f00000000c0)) 07:06:48 executing program 2: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000880)='oom_score\x00') preadv(r0, &(0x7f00000017c0), 0x199, 0x0) ioctl$UI_BEGIN_FF_UPLOAD(r0, 0xc06855c8, &(0x7f0000000640)={0x10, 0xd17, {0x52, 0x2db, 0x7f, {0x200}, {0x40, 0x4}, @const={0x7ff, {0x8, 0xba, 0x1, 0x9150}}}, {0xa5e136065a937c32, 0x5, 0xfff, {0x4, 0x3}, {0x7, 0x1}, @ramp={0x800, 0x80, {0x100, 0x4c2, 0x800, 0x3}}}}) getsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(r0, 0x84, 0x75, &(0x7f0000000080)={0x0, 0x9}, &(0x7f00000000c0)=0x8) 07:06:48 executing program 3: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_open_dev$dspn(&(0x7f0000000100)='/dev/dsp#\x00', 0x7fff, 0x101003) sysfs$2(0x2, 0x7, &(0x7f00000001c0)=""/203) [ 213.064940] block nbd5: shutting down sockets [ 213.139677] FAULT_INJECTION: forcing a failure. [ 213.139677] name failslab, interval 1, probability 0, space 0, times 0 [ 213.163942] CPU: 0 PID: 14710 Comm: syz-executor.0 Not tainted 4.14.151 #0 [ 213.171002] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 213.180386] Call Trace: [ 213.182992] dump_stack+0x138/0x197 [ 213.186639] should_fail.cold+0x10f/0x159 [ 213.190792] should_failslab+0xdb/0x130 [ 213.194784] kmem_cache_alloc_trace+0x2e9/0x790 [ 213.199532] ? __kmalloc_node+0x51/0x80 [ 213.203506] btrfs_mount+0x1001/0x2b28 [ 213.207383] ? lock_downgrade+0x740/0x740 [ 213.211514] ? find_held_lock+0x35/0x130 [ 213.215568] ? pcpu_alloc+0x3af/0x1050 [ 213.219444] ? btrfs_remount+0x11f0/0x11f0 [ 213.223671] ? rcu_read_lock_sched_held+0x110/0x130 [ 213.228707] ? __lockdep_init_map+0x10c/0x570 [ 213.233212] mount_fs+0x97/0x2a1 [ 213.236565] vfs_kern_mount.part.0+0x5e/0x3d0 [ 213.241043] ? find_held_lock+0x35/0x130 [ 213.245091] vfs_kern_mount+0x40/0x60 [ 213.248883] btrfs_mount+0x3ce/0x2b28 [ 213.252846] ? lock_downgrade+0x740/0x740 [ 213.256978] ? find_held_lock+0x35/0x130 [ 213.261033] ? pcpu_alloc+0x3af/0x1050 [ 213.264911] ? btrfs_remount+0x11f0/0x11f0 [ 213.269135] ? rcu_read_lock_sched_held+0x110/0x130 [ 213.274142] ? __lockdep_init_map+0x10c/0x570 [ 213.278648] ? __lockdep_init_map+0x10c/0x570 [ 213.283155] mount_fs+0x97/0x2a1 07:06:48 executing program 3: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_open_dev$dspn(&(0x7f0000000100)='/dev/dsp#\x00', 0x7fff, 0x101003) sysfs$2(0x2, 0x7, &(0x7f00000001c0)=""/203) 07:06:48 executing program 5: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) syz_open_procfs(0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) msgget(0x1, 0x80bc98226fd01be1) socket$inet6_sctp(0xa, 0x1, 0x84) 07:06:48 executing program 1: syz_mount_image$btrfs(&(0x7f0000000000)='bvD\xb0s\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x38, 0x10000}], 0x0, 0x0) r0 = accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x80800) setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f0000000100)=0x73, 0x4) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x400000000000249, 0x0, 0x0) setsockopt$inet6_MCAST_JOIN_GROUP(r1, 0x29, 0x2a, &(0x7f0000000340)={0x7, {{0xa, 0x4623, 0x9, @empty, 0x30}}}, 0xfffffffffffffeaa) r2 = socket$inet6_sctp(0xa, 0x0, 0x84) r3 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r3, &(0x7f0000008880), 0x400000000000249, 0x0, 0x0) getsockopt$sock_buf(r3, 0x1, 0x2b, &(0x7f0000000240)=""/58, &(0x7f0000000280)=0x3a) r4 = accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x80800) setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r4, 0x84, 0x13, &(0x7f0000000100)=0x73, 0x4) r5 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000400)='/dev/sequencer\x00', 0x8000, 0x0) getsockopt$inet6_mreq(r5, 0x29, 0x12, &(0x7f0000000440)={@initdev}, &(0x7f0000000480)=0x14) getsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r4, 0x84, 0x72, &(0x7f0000000080)={0x0, 0x81, 0x10}, &(0x7f00000000c0)=0xc) getsockopt$inet_sctp6_SCTP_STATUS(r2, 0x84, 0xe, &(0x7f0000000140)={0x0, 0x380000, 0x200, 0x5, 0x7, 0x3d2, 0x40, 0x7, {r6, @in6={{0xa, 0x4e22, 0x3, @dev={0xfe, 0x80, [], 0x1a}, 0x2}}, 0x8, 0x2, 0x6, 0xd323, 0x7}}, &(0x7f0000000200)=0xb0) [ 213.286535] vfs_kern_mount.part.0+0x5e/0x3d0 [ 213.291046] do_mount+0x417/0x27d0 [ 213.294586] ? copy_mount_options+0x5c/0x2f0 [ 213.299086] ? rcu_read_lock_sched_held+0x110/0x130 [ 213.304119] ? copy_mount_string+0x40/0x40 [ 213.308441] ? copy_mount_options+0x1fe/0x2f0 [ 213.312951] SyS_mount+0xab/0x120 [ 213.316424] ? copy_mnt_ns+0x8c0/0x8c0 [ 213.320336] do_syscall_64+0x1e8/0x640 [ 213.324248] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 213.329135] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 213.334457] RIP: 0033:0x45cc6a [ 213.337648] RSP: 002b:00007f46eab45a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 213.345354] RAX: ffffffffffffffda RBX: 00007f46eab45b40 RCX: 000000000045cc6a [ 213.352771] RDX: 00007f46eab45ae0 RSI: 0000000020000100 RDI: 00007f46eab45b00 [ 213.360252] RBP: 0000000000000001 R08: 00007f46eab45b40 R09: 00007f46eab45ae0 [ 213.367522] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000004 [ 213.374779] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 07:06:48 executing program 4: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, 0x0) r1 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) ioctl$VIDIOC_QUERYCAP(r1, 0x80685600, &(0x7f0000000040)) syz_open_dev$mouse(0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, 0x0}], 0x1, 0x10, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f00000000c0)) 07:06:48 executing program 0 (fault-call:0 fault-nth:75): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x0, 0x989680}) socket$inet6_sctp(0xa, 0x0, 0x84) 07:06:48 executing program 3: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_open_dev$dspn(&(0x7f0000000100)='/dev/dsp#\x00', 0x7fff, 0x101003) sysfs$2(0x2, 0x7, &(0x7f00000001c0)=""/203) 07:06:48 executing program 2: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) clock_getres(0x1, &(0x7f0000000080)) [ 213.561412] FAULT_INJECTION: forcing a failure. [ 213.561412] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 213.574209] CPU: 0 PID: 14749 Comm: syz-executor.0 Not tainted 4.14.151 #0 [ 213.581865] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 213.591408] Call Trace: [ 213.594026] dump_stack+0x138/0x197 [ 213.597686] should_fail.cold+0x10f/0x159 [ 213.601878] __alloc_pages_nodemask+0x1d6/0x7a0 [ 213.606567] ? fs_reclaim_acquire+0x20/0x20 [ 213.610910] ? __alloc_pages_slowpath+0x2930/0x2930 [ 213.616046] cache_grow_begin+0x80/0x400 [ 213.620161] kmem_cache_alloc_trace+0x6b2/0x790 [ 213.625026] btrfs_mount+0x1001/0x2b28 [ 213.628931] ? lock_downgrade+0x740/0x740 [ 213.633181] ? find_held_lock+0x35/0x130 [ 213.637258] ? pcpu_alloc+0x3af/0x1050 [ 213.641168] ? btrfs_remount+0x11f0/0x11f0 [ 213.645430] ? rcu_read_lock_sched_held+0x110/0x130 [ 213.650479] ? __lockdep_init_map+0x10c/0x570 [ 213.654998] mount_fs+0x97/0x2a1 07:06:48 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f00000006c0)='Net/3\x97OOT\x15\x00\xb6\xcf@e\xd3r\x82\x9fc') r1 = openat$proc_capi20ncci(0xffffffffffffff9c, &(0x7f0000000200)='/proc/capi/capi20ncci\x00', 0x204000, 0x0) ioctl$VIDIOC_PREPARE_BUF(r1, 0xc058565d, &(0x7f00000005c0)={0x0, 0x7, 0x4, 0x4000, {0x0, 0x2710}, {0x5, 0x2, 0x81, 0x90, 0x24, 0x6, "9bad950d"}, 0x7, 0x5, @offset=0x9, 0xfffffffffffffec9}) mq_timedsend(r0, &(0x7f0000000140)="c1cc3d2c05c16add6c964974e00652617b35c74bd5a620d3170df3c2f134d5beb838b0f00c6ca198401126d02772777a96ead8602a94c5450ea4e5c8b02fc6e876ee2383fc4faa682ed6a91a53a08a1fdd9839c170a6f81ede814c769cf15c688c8514b5f4f1dc0a50019813ce4459df629cd480519073a5f929cd5e59d0058ea64475a46e924294d5ef1b4b158e59d9c923a0", 0xffffffffffffffeb, 0x3, &(0x7f0000000540)={0x0, 0x989680}) ioctl$USBDEVFS_GETDRIVER(r0, 0x41045508, &(0x7f0000000000)={0x9, "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"}) [ 213.658391] vfs_kern_mount.part.0+0x5e/0x3d0 [ 213.662895] ? find_held_lock+0x35/0x130 [ 213.662912] vfs_kern_mount+0x40/0x60 [ 213.670809] btrfs_mount+0x3ce/0x2b28 [ 213.674633] ? lock_downgrade+0x740/0x740 [ 213.678788] ? find_held_lock+0x35/0x130 [ 213.678801] ? pcpu_alloc+0x3af/0x1050 [ 213.678819] ? btrfs_remount+0x11f0/0x11f0 [ 213.692727] ? rcu_read_lock_sched_held+0x110/0x130 [ 213.697860] ? __lockdep_init_map+0x10c/0x570 [ 213.702395] ? __lockdep_init_map+0x10c/0x570 [ 213.707262] mount_fs+0x97/0x2a1 [ 213.710654] vfs_kern_mount.part.0+0x5e/0x3d0 [ 213.715349] do_mount+0x417/0x27d0 [ 213.719018] ? copy_mount_string+0x40/0x40 [ 213.723273] ? copy_mount_options+0x18f/0x2f0 [ 213.734429] ? __sanitizer_cov_trace_pc+0x4e/0x60 [ 213.739296] ? copy_mount_options+0x1fe/0x2f0 [ 213.743991] SyS_mount+0xab/0x120 [ 213.753860] ? copy_mnt_ns+0x8c0/0x8c0 [ 213.757769] do_syscall_64+0x1e8/0x640 07:06:48 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ptmx\x00', 0x200, 0x0) ioctl$FIONREAD(r0, 0x541b, &(0x7f00000000c0)) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000140)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x307, 0x10000}], 0x1080001, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000880)='oom_score\x00') preadv(r1, &(0x7f00000017c0), 0x199, 0x0) r2 = syz_open_procfs(0x0, &(0x7f0000000880)='oom_score\x00') preadv(r2, &(0x7f00000017c0), 0x199, 0x0) ioctl$UI_BEGIN_FF_UPLOAD(r2, 0xc06855c8, &(0x7f0000000640)={0x10, 0xd17, {0x52, 0x2db, 0x7f, {0x200}, {0x40, 0x4}, @const={0x7ff, {0x8, 0xba, 0x1, 0x9150}}}, {0xa5e136065a937c32, 0x5, 0xfff, {0x4, 0x3}, {0x7, 0x1}, @ramp={0x800, 0x80, {0x100, 0x4c2, 0x800, 0x3}}}}) ioctl$TCSETS(r2, 0x5402, &(0x7f0000000200)={0x3, 0x7, 0x9, 0x7, 0x5, 0x1, 0x14, 0x40, 0x1, 0x4, 0x4, 0x80000000}) ioctl$UI_BEGIN_FF_UPLOAD(r1, 0xc06855c8, &(0x7f0000000640)={0x10, 0xd17, {0x52, 0x2db, 0x7f, {0x200}, {0x40, 0x4}, @const={0x7ff, {0x8, 0xba, 0x1, 0x9150}}}, {0xa5e136065a937c32, 0x5, 0xfff, {0x4, 0x3}, {0x7, 0x1}, @ramp={0x800, 0x80, {0x100, 0x4c2, 0x800, 0x3}}}}) sendmsg(r1, &(0x7f0000000740)={&(0x7f0000000180)=@rc={0x1f, {0x0, 0x9, 0x8, 0x2, 0x5, 0x4}, 0xf5}, 0x80, &(0x7f0000000580), 0x0, &(0x7f0000000a00)=ANY=[@ANYBLOB="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"], 0x112}, 0x0) syz_genetlink_get_family_id$SEG6(&(0x7f0000000040)='SEG6\x00') 07:06:48 executing program 5: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000080)) r0 = getpid() r1 = getpid() sched_setattr(r1, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0) sched_setattr(r1, &(0x7f00000000c0)={0x30, 0x1, 0x0, 0x7ffffffe, 0xabac, 0xffffffffffffff0f, 0x2}, 0x0) sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0) r2 = getpid() sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0) r3 = syz_open_dev$vcsn(&(0x7f0000000140)='/dev/vcs#\x00', 0x9, 0x8043) ioctl$KDGKBMETA(r3, 0x4b62, &(0x7f0000000180)) syz_open_procfs(r2, 0x0) openat$capi20(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/capi20\x00', 0x200, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) socket$inet6_sctp(0xa, 0x1, 0x84) 07:06:48 executing program 3: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_open_dev$dspn(&(0x7f0000000100)='/dev/dsp#\x00', 0x7fff, 0x101003) sysfs$2(0x2, 0x7, &(0x7f00000001c0)=""/203) [ 213.761799] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 213.766661] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 213.771961] RIP: 0033:0x45cc6a [ 213.775161] RSP: 002b:00007f46eab45a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 213.782871] RAX: ffffffffffffffda RBX: 00007f46eab45b40 RCX: 000000000045cc6a [ 213.782878] RDX: 00007f46eab45ae0 RSI: 0000000020000100 RDI: 00007f46eab45b00 [ 213.782882] RBP: 0000000000000001 R08: 00007f46eab45b40 R09: 00007f46eab45ae0 [ 213.782887] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000004 07:06:48 executing program 4: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, 0x0) r1 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) ioctl$VIDIOC_QUERYCAP(r1, 0x80685600, &(0x7f0000000040)) r2 = syz_open_dev$vcsa(&(0x7f0000000ac0)='/dev/vcsa#\x00', 0x1, 0x80800) r3 = syz_open_procfs(0x0, &(0x7f0000000880)='oom_score\x00') preadv(r3, &(0x7f00000017c0), 0x199, 0x0) ioctl$UI_BEGIN_FF_UPLOAD(r3, 0xc06855c8, &(0x7f0000000640)={0x10, 0xd17, {0x52, 0x2db, 0x7f, {0x200}, {0x40, 0x4}, @const={0x7ff, {0x8, 0xba, 0x1, 0x9150}}}, {0xa5e136065a937c32, 0x5, 0xfff, {0x4, 0x3}, {0x7, 0x1}, @ramp={0x800, 0x80, {0x100, 0x4c2, 0x800, 0x3}}}}) r4 = syz_open_procfs(0x0, &(0x7f0000000880)='oom_score\x00') preadv(r4, &(0x7f00000017c0), 0x199, 0x0) ioctl$UI_BEGIN_FF_UPLOAD(r4, 0xc06855c8, &(0x7f0000000640)={0x10, 0xd17, {0x52, 0x2db, 0x7f, {0x200}, {0x40, 0x4}, @const={0x7ff, {0x8, 0xba, 0x1, 0x9150}}}, {0xa5e136065a937c32, 0x5, 0xfff, {0x4, 0x3}, {0x7, 0x1}, @ramp={0x800, 0x80, {0x100, 0x4c2, 0x800, 0x3}}}}) sendmmsg(r2, &(0x7f0000005b00)=[{{&(0x7f0000000b00)=@nfc_llcp={0x27, 0x0, 0x0, 0x4, 0x7, 0x3, "18f18b06847799e5c6644b24ff3022c21c43a963be57dacc59e394421c88c1ca66872c84e3f021dccfafab8d1487b84c1e1b5f4d93d3cb3c19bbbe39cc6a7c", 0x33}, 0x80, &(0x7f0000000dc0)=[{&(0x7f0000000b80)="0ff7042f41dea8e5f51ec5c4db08b3a08b6966224b4c894ba4e06c1d913e4ab8dc918f597a6836e49fd269f3c21ad98d2be876e30cd1dc38dfa8504b6c5f3de41db691cc078e61934e25945e1160f9b7a6a6b40a3803480d6ea96fdf100c32076c065baaf0fda71b17cb3b3b0a8ebe35da211bee2943316b41de9de892b432c0b6fb97fdd71d123127258d431662a7c62d45", 0x92}, {&(0x7f0000000c40)="6fc5d533199634de6f576a2878d5468e28db549fd8d21a5c5f56f4a117213961b5b84f32ca234bca6b8baffbc543cbbe93265b0e5adc2a0edae174d099d4c548998bb463d446f5fa33217922125d0cfa4ffc122b604a11fafb4f8b9a90141053d4d55c5d312fc23a21cd4ae64e6ff033798f955d26eb2ae7d109c030fb4632e3af5ffb0f", 0x84}, {&(0x7f0000000d00)="f67a238b6d2778ed56686bf27d2e9159cf3e43fda44c7bfc0feb6d8dee178adc1dba11e043e1bbdf100c7943531e0c997fcd21583f03c817328565f28a7420b61055a2de4b7968e7eb1a6eb6527380a86efe1f77d706fffd4b5467687e92208d33a1a9e7a966e01e37bc51ff43f9deab91e77e84c4c3e82925ff2ce6f5d05446f84c630582a6b1e7c77d1cb3f7d027e0bec59fe5642334c4b826f152468c3994f115c22375", 0xa5}], 0x3, &(0x7f0000000e00)=[{0xe8, 0x185, 0x20, "d6f64b15804483ddf2d0185be5641e1a9497d56b0fc2974a8124c5b46b11f53b0555d5f81b1444ca206c31c7ad2f2e977ad70d0b23f28aff3ffaf6b8f0297a248a364fe6012c824d3ff095a1063ac86946a5e71203e556d4aea5713a588dce4dde3de6e4c5fb4ac368da49a2bf38c907d34916e9248e1b52e99c8bd7695204cc33740ac260304f44320af6db6a5a105038fcbfc4f62d47b29bb43374661297be9011e6b9b6fc0867607a658138073ae785e3a80d2fd4d02049ecf014f431a894444b0bcfcb9b3b5690f0b886927b0c892f66a6f2040aac36"}, {0x48, 0x115, 0x5, "ecf1cd0becc0cd24c16042091d82c84322b04b9d4591f8b015ac79d7b3c306161ce7e0e81bb3c50eab89bcf334c81cec58f3dbae8aca4e"}, {0x50, 0x102, 0x7f34, "6c91104ca1090ae9c85562b52cedbd2c66038121e916dff952e2444299bb1eb7cecafe8e1d14ff83564f9911305bd2c65712878a20556a0e0e5f"}, {0x108, 0x117, 0x3, "6e4c83ee195ed938366f608c5ed3bbae1ffe1c6af9ca0d6ae4340bdc8b431c151a6dc779eff71a451482912c967615b955d779be21f52f76e24f6454c09ff21c9f66e4412918605029b65b4883646f66d30f261fc5c4a29ebaed72b68bff5af96957484fb42dc3192c270b9f046dc2751d791cf02c4040bb48d04f83141d9c0459c6defedc0f1f350c68a512ecbd197929c8c09b3e10fbe5cb98f40325b0306c67acbcd0926e97fd9b6ca5ab03ddeb0ed870b2c4880e1538bcf85d543bb116f55d9129eaa5950d39a6123a5a6e304a363ef35097235d4777774f63c6b3377f8fb7bf3cfc7cba986474b9d8e6ee5b42895a2c4ed75a"}, {0x40, 0x115, 0x3, "e370857484a3a634ace8cc237079d8a65d607f42bff46e34d1544bb32aaccb05825c4e2db3e4d1d8198ed6"}], 0x2c8}}, {{&(0x7f0000001100)=@pppol2tp={0x18, 0x1, {0x0, r3, {0x2, 0x4e23, @local}, 0x1, 0x0, 0x0, 0x2}}, 0x80, &(0x7f0000002640)=[{&(0x7f0000001180)="5e2180a20a20f725acb8d4954047a0c02411c8cbf0aff623a00722a14216891fec7af0ff7f994e51b2ddd9859f6da937b7eea858b0a0953ed3ecec857f4720ca5fde1533a087154a0f4582390ad394a4834e7435081b9e5d3f6f8cda62344c072b3798ffc705e56c536ba9a689cc4e93", 0x70}, {&(0x7f0000001200)="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", 0xff}, {&(0x7f0000001300)}, {&(0x7f0000001340)="b9b708d4f029b72d95039bea0a007a201aed40f87964fe669235ee6eeb793297481d883af07f0dce112d9c7e8a2cad615271fee08ee238d35352ae504a4b1aa61a413113a0fbbe5466523cd46ed6f5c5304bd30f5309f778796b954a4acab8011375433b584450f8fa209aa8b21b8ddb3523dd0cc0ef7b8f13740c32df837f505fc180b300deb1846c7f0be1aacdf769b450113dbc0bce01ebfe7ee933d61cd28d84963f576c28b9e15023e3f9e7b13a", 0xb0}, {&(0x7f0000001400)="b17a919dc636afd9c4ddc3eaa9499e60c1f15cf1a83b0fca4bad0f5620ec2b8c714e0b4dc68626cdabb870a16019744a1a0224682c9f755418d979d4edcd6e60213c9542522767017e4ef555581455b012422379cb591b613465d9a8708e923ca7429a616f1c3d5c4c8a9f3f4e0d0672c040992e5d44a7688ef501c441dcca56930d8524901d8663a4992989ecd1de4c6114db", 0x93}, {&(0x7f00000014c0)="ec5276562fb86e11c4e7", 0xa}, {&(0x7f0000001500)="8fe4b365be64e28c47d656afcaa916de11b315702eea70701fee9db991a84047244685d8c0a244bfbf0546dcad660febc7d20a4d6f1171d937c9fe8c22a5d04793ba85f86c823839c41ef4472381691f4e08b0aec8bd1ef5baa5cc8852a8ad7bbc56b1247aabc1ab79baa222ce1e271b83bf0ce56308a326ba1fb1e1980c75fd9da22497c6bbdc48493de1fc29351e48dcb83c9565a2ff94d1e9448b83b9167807fe656119c9e6d21b53eda661ce0cc036d0f57db654e09ae3e0f9bebbee0dd0cc603dbd080636f685753cb51b97842487c0fcd00ac919394cea3469dae8b80d172310535fea3d36165e0bbdc04c", 0xee}, {&(0x7f0000001600)="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", 0x1000}, {&(0x7f0000002600)="f81feb731de3d5bbf6ae58b11be00c8e269ec9ac19a15fd34d9fe164688a1abdb6416cf11651e98ec944f6d167b89a23515d814b2e547d51d8ee00", 0x3b}], 0x9}}, {{&(0x7f0000002700)=@ax25={{0x3, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}}, [@null, @bcast, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default]}, 0x80, &(0x7f0000002940)=[{&(0x7f0000002780)="8bcf7e62", 0x4}, {&(0x7f00000027c0)="67f750371535e4b3eb41aaf6e0976c0e2656d9b7da923c6390dcbf3f67713f2533edc9dc24f5d8ebf85c2db7228359afb430985169095e315261cfb60ad39e019de628858bf74e23", 0x48}, {&(0x7f0000002840)="956e88277998c1afa49a296f8dfeeaab4b5ca4a6d342fc62631b8240f06a3ba90fb4a1b08a6db5bdb86fa93a54ee9ed7890aa1ab891efea21f2b31d3cf77002e2f15bd8d09a8ab412e5ee1d18aec8cfe0bc837b982ed22e9aac8e5010fd5263e34ab351736fffda0e67b73e9a3b70ff393a452a6c8abf4d4660e7c8a991726a47f94a24a3f37d53d0d6379565addc1fdf1fafcd3ae915491cecf7017ea2827901f4f53c3aee1e3b538b85c14b0828a8afa9c71b10ec717be442aa5c031cb6cae8dd1f27bc9fe4ad29a2f3bd2f6960d95c251052abcee159654fcbe6019fdc6692c2ba6", 0xe3}], 0x3, &(0x7f0000002980)=[{0x70, 0x9cb58a724de5369b, 0x0, "7a92e6473a0a54ff366c72b694c10c78d1b75bf3d1425d29240318217cb058ce5f4664c60c60c53e5a1a9a527ea0dffc070455bcc53e2f1e744b369f0eb811856d4bf76afb92a7531dd9457d16ff6d9d6f5d0174cd281618c61c96b96d"}], 0x70}}, {{&(0x7f0000002a00)=@nl, 0x80, &(0x7f0000002c00)=[{&(0x7f0000002a80)="33036b83f4f6ccbd3b661a9a31742d6332a4f960171eabeb77ffb67b9d17c59a709862c801fd104984dee49e221ba65f118f18c407f2f59cc475b8bb9a1e7b836cad7163424752b802c6894805bc4c72c16732b88c7a", 0x56}, {&(0x7f0000002b00)="9a5501980d7452c30833a56b062b974fd773315fa3fdf35f1230d438a78ea9bc35ef602384be0516ed68744e5d7556883e3943ebd24e964f1a257c0593712d031043ee9f53cbdf374c3046bfdae5947c2a14c81f52276d70fd8512248a0e191e52430857920dd8ef5acc7291ef3a6e6dbaa0c43b587abdab7612bd08503c2d374385a16324f6604392cdc6da95de1c0027024cfbb1b24f2ba74ccd0a413b71fae89d52b30d66eadbc09c03761a9e3ccdff6869cd908677541eafb6e0989da00037c97eb6b4b51dcd6d4e0815b8ce35582cbc6feb465119890e6fecd3a2a89a688281", 0xe2}], 0x2, &(0x7f0000002c40)=[{0x80, 0x0, 0x80000000, "b7e7197cef066ff9ac7d2b7a00d4a524b03411eabe5c47e8a56663c292c14be03a3b7d0bf71709d3fcc74abdadf34244abda3fdc2d970a85b7b069daf2cee19273fcc49dda19e2d8ea5a6f4b3023e8ddcf08135be939bf77aa44cb59561f0ee7c57ba7fb687c62c1d62be3308bf45b"}], 0x80}}, {{0x0, 0x0, &(0x7f0000002e00)=[{&(0x7f0000002cc0)="5939ddab13e31606d8176825de389265046efd", 0x13}, {&(0x7f0000002d00)="9619f75d8251f4c0fab894ba71df3fe9afb2871bd26a9c45d5b42c819e1b58245427c4633a32564c311d2406bf695946dbf89764cc2afa7cd7117f0b5771f5d1d6610202d9602ea828aa21cad3be8eb3e89cf35cc576f89d2affebbcdb25608d8204c6a054be64c3091f97969f0edd8943ffaa0f35ab981b9071852f441950bf9dfabdb809a21dfd03d3220adb7ca074f8383b3bbfbfe1a93e4ef0014149bc850ead09c0025bd85342a668b06c9cfec45b0631d227e3cef5e63b3f26234abfa25f77b744", 0xc4}], 0x2, &(0x7f0000002e40)=[{0xd8, 0x115, 0x0, "0332ea7125d4c55fcdaba0f12f37bf56a539ba63e85d881b4e2c84966741310ec8dbcbcec648fdf1b7726b69b1e3bb72c0c20e07c94962f7977bf1d7713fec39eda23596c63cc70f9008afe0ede5d25adcb6975ec10af011b5ec79b2e4db3309e8a4ef780251a9749f8d228bd18de454f517eaa8d4818d89b000dad8ca02e40c44cfbda29d9c8623e55597dc91c7dfef15d337e267d91d938a427d89a100f56c9f04eea2a1ba1575584b3ee36c181ec5b4fa92ad885ea5827a4c45cc488f6b5edac7"}, {0xd0, 0x111, 0x2, "925d3811993873053e75955e5c1b5e4f495e75544406357d71471fa45c2f7620596fa16df56eb4532bad23e35d1351e46b2484225fbb26fc80668a0946904172d167a7a297a8569ba637bf83bb1594465893f95117f119f59f66697f3358ff815db1ffdf010b2077a806252b88c2f823191bbeae41a15481038ee63d107a54db31e18a1c5dd57f049fd997b148507f5925b93e297aeb9d5cda6806588d17ae50ddc70cbefd4439d8d2f516bdcdd86ace9fb4a4ea2c0d800f860d"}], 0x1a8}}, {{&(0x7f0000003000)=@pppol2tp={0x18, 0x1, {0x0, r4, {0x2, 0x4e23, @multicast2}, 0x2, 0x2, 0x4, 0x3}}, 0x80, &(0x7f00000044c0)=[{&(0x7f0000003080)="daa1218d448105ef4e9e39ff321f738a", 0x10}, {&(0x7f00000030c0)="008b59f0aa14b1a582727a196dcfa39e41fbc5365eae75465d33344b7cc744bf68b5e3ce0379925d649cc9a1ec8cba62576fb7a9aa7b051513eeea2dd82af2bca765d75258873dbaede1a0a93ab7b1e92326dc0ac2ac630c7add01405a2c8cb6fb01ce811d9a95153cad81dd8483f1b7859ad5d53bf7f30c370179c1a372b008ff6f5a0ea3768d943d77e2be6bf0abd7638aca9917bd41fc5006a03a6bc23842a4c3207021165b09993f18087f9b319468c7e5c2a83327fb31f4edbc8f84462e62f7a38cc6afd97fae3a580a9417b12ae1b84191769d6ef78d12b61bfc276e633de626184b5eb1c355e8f9ad", 0xec}, {&(0x7f00000031c0)="6480d17956ad11372c5f64f238db4bda3ddc8477332af76204d572985807fbbbf0d6c890aafc3d5d7bc7d125e5113b1c5810ea426965d0db7c27", 0x3a}, {&(0x7f0000003200)="48bffd5da9db345d98f26a9bbd1a8d12c2503330170fe5826585db7b292ccce8dfca3d399244f338a288a1deee2db01479d83c9b1a841e5bb34d5df3c3361d0b13989dec9bfe131ced56bbfa4cfdf7d026fde9d0ed37387f3a194591a22e8be37ab8f7fa313412d6cb2ec45ce1d9bbeffd11c05b61f867cb14d34eb109745812de45856c0d3424cf729b291849b215bea4ee3315cfd18d962e7b31268072278842bf09752f000ef6074416bb2eb0a1cb9af9c2c31957f37e497de33c30c0b1284fbcdeaf5c2343e2d9702e560705fc9f3116aa716604c4e4c39c7d20", 0xdc}, {&(0x7f0000003300)='`', 0x1}, {&(0x7f0000003340)="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", 0x1000}, {&(0x7f0000004340)="ee3fd0b81d8667ebe3168e3d377b176d870e9cd48483", 0x16}, {&(0x7f0000004380)="b7b58579f30646a15c0bcbd97324a99d5088b82e6b1ea903981e77034c79f5c6d0f384a6276390ebfed5dbe249ece8e9417af6b99ba58bfa9dca86b278395048e7d47688732ca9e92a2d0ecb0921386a4d650728186aab43bcfc4e5640d5a9fa91b66ff2a539d006e220e911793ee422fb1daa2d80d6289293a21cf24076e7db404ff5646546cd907d9f55c7480c45738e27", 0x92}, {&(0x7f0000004440)="e1c4521fa9898064846949dad3e30db224a1d9892dce316359f85291617e4af732807c377fcb1d36ba6bf40a4d5c1173d530e38f622a13216c8667826730ecf15b5eeb639f8cc3f079d4392cf2e8f8", 0x4f}], 0x9}}, {{0x0, 0x0, &(0x7f0000005580)=[{&(0x7f0000004580)="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", 0x1000}], 0x1, &(0x7f00000055c0)=[{0x110, 0x0, 0x20, "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"}, {0x58, 0x1db, 0x80, "ded8327d40b61c09a73752f9ffcc929958502c16d2c28d27ea899afd2fc493157b65fe04f993fe77c3b4ff12c446030938c176a2db24964bfe2d9022e1ff43306707252f5317bf"}, {0xb0, 0x119, 0x6, "9487ce0b130413df4e6016485a0e5af880033d084b81bd35e83edf6a5c09b685a0fef52c740ee522be4ea8a1a742eee354ce5239e8f50398a2ddb080c9a20186e1e3945e70dfc246ae0df709593dbdab57b93b6099ea2fafe6de763701a5f86e1dcbc062ed8bd6f8f6f9b2c828675453fca6d07b1415f03780b90322438a5b44345c73586b2665cb3eddda023427420025cb28e31a0143635c6a1e"}, {0xd0, 0x117, 0x4, "b53ac33c41850656272742da360fea4fb8f84fb11e341d6d08990ac11b06b1050962fcb72ca5af03c6b12b926feb33a3a3bdf23fa13b40c2c245331f0429047fb2176cebe8290c06b34d0f1045e71ce783cfd6ee943438ea4592f8ed8ef3c7f8473a8cb572c4f52d1519a5c5b4179204a1b2236df4073e66f0956881a86066aaeadcff4df608721216ea7d7de76397349a8f05d37be7e909cde5f98bd0e36a86c8177a3cf7cedd8337a802c8ba314634c90e5551d10c4673c7376a2018c027"}, {0x88, 0x102, 0x80, "b0dbb7f02942f00f1c2e3c7fef89df782a782c2941b6ee93ce155ed74363405c8acc52235ed37f04f486ecc092dbe693b58f622410d16e669a0043fd2d89bfaad0efcc05eed7f8b55ca4344618c058c21586a29530c0a3652f09f6a3a13d45a6b734f492f8abaaecd41abf774c666c604132"}, {0x30, 0x104, 0x4f2c450f, "12d96bfdc679cf84d70348fd8c39e4045ad56480386dd07b648c"}, {0xc0, 0x112, 0x5, "e402ee71dfae729187c76e69d2dc87da202b8c3cbe6a24ccd17b6bfa6686a2f36422ad91ff5fbb4f761c4facf320c3882e7f99bc96f65ce72c3a34ec1ebb24fb2adf3fa898ff51f12387d33d8a96c6454b47a85cb667196755cdbfb76d5e200ca93bc33fa24a90efc494a86871a6072bff0e65af5ec4cfe3c2dd6c34477cb1151e444f91707e96287944e922401f2ac20220192e12ec8f46fe50863e4df0f0fb0f40805544103745a225"}, {0x18, 0x14, 0xd48, "b6"}, {0x40, 0x99ade71e7a649680, 0x7f, "8d60b85e77e8caaf1df39e8f67912c6a16c254a0354e9cb58ecbc06d23f904d42a2ab2003d0cc55c099e25"}, {0x68, 0xb3, 0x8, "38f201d9bd102a7dde1ecbddfaaae68e17af8aff908a22a67c8e997a296bc102c42c60f1db3cab0cfd558751ca2e462cbe32227a12831d42646cf41b5df47f063c2c99f1a229cae6fe6b1551bea57f57ea364160cdc4cb"}], 0x520}}], 0x7, 0x60) syz_open_dev$mouse(0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f00000000c0)) [ 213.782891] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 07:06:49 executing program 0 (fault-call:0 fault-nth:76): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x0, 0x989680}) socket$inet6_sctp(0xa, 0x0, 0x84) 07:06:49 executing program 2: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = syz_open_dev$amidi(&(0x7f0000000080)='/dev/amidi#\x00', 0x1ff, 0x22200) r1 = syz_open_dev$mice(&(0x7f0000000140)='/dev/input/mice\x00', 0x0, 0x501100) renameat2(r0, &(0x7f00000000c0)='./file0/file0\x00', r1, &(0x7f0000000180)='./file0\x00', 0x1) [ 213.986665] FAULT_INJECTION: forcing a failure. [ 213.986665] name failslab, interval 1, probability 0, space 0, times 0 [ 214.019120] CPU: 0 PID: 14803 Comm: syz-executor.0 Not tainted 4.14.151 #0 [ 214.026259] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 214.035642] Call Trace: [ 214.038227] dump_stack+0x138/0x197 [ 214.041852] should_fail.cold+0x10f/0x159 [ 214.046004] ? __lock_is_held+0xb6/0x140 [ 214.050057] ? mempool_free+0x1d0/0x1d0 [ 214.054018] should_failslab+0xdb/0x130 [ 214.057992] kmem_cache_alloc+0x47/0x780 [ 214.062052] ? mempool_free+0x1d0/0x1d0 [ 214.066036] mempool_alloc_slab+0x47/0x60 [ 214.070182] mempool_alloc+0x138/0x300 [ 214.074064] ? __find_get_block+0x5c4/0xb10 [ 214.078462] ? remove_element.isra.0+0x1b0/0x1b0 [ 214.083224] ? mark_held_locks+0xb1/0x100 [ 214.087371] ? save_trace+0x290/0x290 [ 214.091335] ? trace_hardirqs_on_caller+0x400/0x590 [ 214.096543] bio_alloc_bioset+0x368/0x680 [ 214.100780] ? bvec_alloc+0x2e0/0x2e0 [ 214.104769] ? __getblk_gfp+0x5c/0x710 [ 214.108663] submit_bh_wbc+0xf6/0x720 [ 214.112543] __bread_gfp+0x106/0x290 [ 214.116267] btrfs_read_dev_one_super+0x9f/0x270 [ 214.121016] btrfs_read_dev_super+0x5d/0xb0 [ 214.125323] ? btrfs_read_dev_one_super+0x270/0x270 [ 214.131284] btrfs_get_bdev_and_sb+0xdc/0x2e0 [ 214.135804] __btrfs_open_devices+0x194/0xab0 [ 214.140905] ? check_preemption_disabled+0x3c/0x250 [ 214.147420] ? find_device+0x100/0x100 [ 214.151302] ? btrfs_mount+0x1069/0x2b28 [ 214.155459] ? rcu_read_lock_sched_held+0x110/0x130 [ 214.160468] btrfs_open_devices+0xa4/0xb0 [ 214.164603] btrfs_mount+0x11b4/0x2b28 [ 214.168477] ? lock_downgrade+0x740/0x740 [ 214.172608] ? find_held_lock+0x35/0x130 [ 214.176746] ? pcpu_alloc+0x3af/0x1050 [ 214.180640] ? btrfs_remount+0x11f0/0x11f0 [ 214.184882] ? rcu_read_lock_sched_held+0x110/0x130 [ 214.189890] ? __lockdep_init_map+0x10c/0x570 [ 214.199256] mount_fs+0x97/0x2a1 [ 214.202616] vfs_kern_mount.part.0+0x5e/0x3d0 [ 214.207218] ? find_held_lock+0x35/0x130 [ 214.211266] vfs_kern_mount+0x40/0x60 [ 214.215056] btrfs_mount+0x3ce/0x2b28 [ 214.220687] ? lock_downgrade+0x740/0x740 [ 214.224821] ? find_held_lock+0x35/0x130 [ 214.228894] ? pcpu_alloc+0x3af/0x1050 [ 214.232871] ? btrfs_remount+0x11f0/0x11f0 [ 214.237489] ? rcu_read_lock_sched_held+0x110/0x130 [ 214.242596] ? __lockdep_init_map+0x10c/0x570 [ 214.249546] ? __lockdep_init_map+0x10c/0x570 [ 214.254043] mount_fs+0x97/0x2a1 [ 214.257454] vfs_kern_mount.part.0+0x5e/0x3d0 [ 214.261938] do_mount+0x417/0x27d0 [ 214.265571] ? copy_mount_options+0x5c/0x2f0 [ 214.269965] ? rcu_read_lock_sched_held+0x110/0x130 [ 214.274993] ? copy_mount_string+0x40/0x40 [ 214.279221] ? copy_mount_options+0x1fe/0x2f0 [ 214.283717] SyS_mount+0xab/0x120 [ 214.287416] ? copy_mnt_ns+0x8c0/0x8c0 [ 214.291290] do_syscall_64+0x1e8/0x640 [ 214.295185] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 214.300032] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 214.305505] RIP: 0033:0x45cc6a [ 214.308686] RSP: 002b:00007f46eab45a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 214.316409] RAX: ffffffffffffffda RBX: 00007f46eab45b40 RCX: 000000000045cc6a [ 214.323667] RDX: 00007f46eab45ae0 RSI: 0000000020000100 RDI: 00007f46eab45b00 [ 214.331010] RBP: 0000000000000001 R08: 00007f46eab45b40 R09: 00007f46eab45ae0 [ 214.338265] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000004 [ 214.345865] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 07:06:49 executing program 0 (fault-call:0 fault-nth:77): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x0, 0x989680}) socket$inet6_sctp(0xa, 0x0, 0x84) 07:06:49 executing program 3: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_open_dev$dspn(&(0x7f0000000100)='/dev/dsp#\x00', 0x7fff, 0x101003) sysfs$2(0x2, 0x7, &(0x7f00000001c0)=""/203) 07:06:49 executing program 5: syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0xaaaaaaaaaaaad5c, &(0x7f00000000c0)=[{&(0x7f00000001c0)="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", 0x0, 0x8001}], 0x44082, 0x0) socket$inet_icmp_raw(0x2, 0x3, 0x1) syz_open_procfs(0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000006c0)='Net/3\x97OOT\x15\x00\xb6\xcf@e\xd3r\x82\x9fc') ioctl$VIDIOC_PREPARE_BUF(r0, 0xc058565d, &(0x7f00000005c0)={0x0, 0xb, 0x4, 0x0, {0x0, 0x7530}, {0x0, 0x2, 0x81, 0x10, 0x24, 0x6, "cf676f53"}, 0x80, 0x5, @offset=0x9, 0x4}) mq_timedsend(r0, &(0x7f0000000480)="c1cc3d2c05c16add6c964974e00652617b35c74bd5a620d3170df3c2f134d5beb838b0f00c6ca198401126d02772777a96ead8602a94c5450ea4e5c8b02fc6e876ee2383fc4faa682ed6a91a53a08a1fdd9839c170a6f81ede814c769cf15c688c8514b5f4f1dc0a50019813ce4459df629cd480519073a5f929cd5e59d0058ea64475a46e924294d5ef1b4b158e59d9c923a0", 0x93, 0x4, &(0x7f0000000540)={0x0, 0x989680}) fcntl$getown(r0, 0x9) munlock(&(0x7f0000ffc000/0x1000)=nil, 0x1000) socket$inet6_sctp(0xa, 0x1, 0x84) stat(&(0x7f0000000000)='./file0\x00', &(0x7f0000000140)) 07:06:49 executing program 1: r0 = syz_open_procfs(0x0, &(0x7f0000000880)='oom_score\x00') preadv(r0, &(0x7f00000017c0), 0x199, 0x0) ioctl$UI_BEGIN_FF_UPLOAD(r0, 0xc06855c8, &(0x7f0000000640)={0x10, 0xd17, {0x52, 0x2db, 0x7f, {0x200}, {0x40, 0x4}, @const={0x7ff, {0x8, 0xba, 0x1, 0x9150}}}, {0xa5e136065a937c32, 0x5, 0xfff, {0x4, 0x3}, {0x7, 0x1}, @ramp={0x800, 0x80, {0x100, 0x4c2, 0x800, 0x3}}}}) ioctl$SNDRV_CTL_IOCTL_HWDEP_INFO(r0, 0x80dc5521, &(0x7f0000000080)=""/66) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) 07:06:49 executing program 4: sched_setscheduler(0x0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, 0x0) r1 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) ioctl$EXT4_IOC_ALLOC_DA_BLKS(r3, 0x660c) setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, &(0x7f0000000380)="0c4f4d16cf2f3a2dd8a5046790a60c91e487dc9ca281434dbc169c6555a654da5e42c953490634b417ec9535653162fc5730d4c8dab3e136550ed7d31fa8d7094afd6e5154349155e6ef7e5fb08d79c283188a3f28548ab4366e6863ba5561aedbd1ee3f9a2c5646e4a9c2806b231528bca7ee2134e39966c40bcb1371a7e7691672a8dc9bda07175f11a9160cba3f0ddb78db3b2e184e1e9aa371691df9f49a5e3343bce4e4b8a2c80831b63d95ed57cf89982b317abf1cf8a71078d00dd5fa9151c142fa4bb765d503150f5f6f34284c7480a5091e9b246e", 0xd9) getsockopt(r2, 0x0, 0x735a, &(0x7f0000000180)=""/84, &(0x7f0000000280)=0x54) fsetxattr$trusted_overlay_nlink(r3, &(0x7f0000000240)='trusted.overlay.nlink\x00', &(0x7f0000000300)={'U+', 0x7}, 0x28, 0x3) ioctl$SIOCGSTAMP(r3, 0x8906, &(0x7f0000000100)) ioctl$VIDIOC_QUERYCAP(r1, 0x80685600, &(0x7f0000000040)) syz_open_dev$mouse(0x0, 0x0, 0x0) r4 = syz_open_dev$cec(&(0x7f0000000140)='/dev/cec#\x00', 0x3, 0x2) ioctl$VIDIOC_QUERY_DV_TIMINGS(r4, 0x80845663, &(0x7f0000000480)) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f00000000c0)) 07:06:49 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f00000006c0)='Net/3\x97OOT\x15\x00\xb6\xcf@e\xd3r\x82\x9fc') socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000000c0)) ioctl$VIDIOC_PREPARE_BUF(r0, 0xc058565d, &(0x7f00000005c0)={0x0, 0xb, 0x4, 0x0, {0x0, 0x7530}, {0x0, 0x2, 0x81, 0x10, 0x24, 0x6, "cf676f53"}, 0x80, 0x5, @offset=0x9, 0x4}) mq_timedsend(r0, &(0x7f0000000480)="c1cc3d2c05c16add6c964974e00652617b35c74bd5a620d3170df3c2f134d5beb838b0f00c6ca198401126d02772777a96ead8602a94c5450ea4e5c8b02fc6e876ee2383fc4faa682ed6a91a53a08a1fdd9839c170a6f81ede814c769cf15c688c8514b5f4f1dc0a50019813ce4459df629cd480519073a5f929cd5e59d0058ea64475a46e924294d5ef1b4b158e59d9c923a0", 0x93, 0x4, &(0x7f0000000540)={0x0, 0x989680}) r1 = socket(0xa, 0x3, 0x8) r2 = syz_open_dev$amidi(&(0x7f0000000340)='/dev/amidi#\x00', 0x9c4, 0x70000) ioctl$sock_inet_SIOCSIFFLAGS(r1, 0x89a2, &(0x7f0000000180)={'bridge0\x00\x00\x01\x00', 0x4}) write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040)={0xffffffffffffffff}}}, 0x20) sendmsg$key(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000080)=ANY=[], 0x1de}}, 0x0) r4 = gettid() waitid(0x83b895581628fca4, r4, &(0x7f0000000040), 0x2, &(0x7f0000000480)) sendmsg$key(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000540)=ANY=[@ANYPTR64=&(0x7f0000000640)=ANY=[@ANYRES64, @ANYRESHEX=r3, @ANYRESDEC=r4]], 0xfffffffffffffe56}}, 0x20004850) write$RDMA_USER_CM_CMD_INIT_QP_ATTR(r0, &(0x7f0000000080)={0xb, 0x10, 0xfa00, {&(0x7f0000000140), r3, 0x5}}, 0x18) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000040), 0x0, 0x0) [ 214.585785] FAULT_INJECTION: forcing a failure. [ 214.585785] name failslab, interval 1, probability 0, space 0, times 0 [ 214.597019] CPU: 1 PID: 14840 Comm: syz-executor.0 Not tainted 4.14.151 #0 [ 214.604046] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 214.613499] Call Trace: [ 214.616104] dump_stack+0x138/0x197 [ 214.620563] should_fail.cold+0x10f/0x159 [ 214.625113] should_failslab+0xdb/0x130 [ 214.629283] kmem_cache_alloc+0x47/0x780 [ 214.633467] radix_tree_node_alloc.constprop.0+0x1c7/0x310 [ 214.639114] __radix_tree_create+0x337/0x4d0 [ 214.643545] page_cache_tree_insert+0xa7/0x2d0 [ 214.648149] ? file_check_and_advance_wb_err+0x380/0x380 [ 214.653628] ? debug_smp_processor_id+0x1c/0x20 [ 214.658323] __add_to_page_cache_locked+0x2ab/0x7e0 [ 214.663551] ? find_lock_entry+0x3f0/0x3f0 [ 214.667803] ? lock_downgrade+0x740/0x740 [ 214.671976] add_to_page_cache_lru+0xf4/0x310 [ 214.676481] ? add_to_page_cache_locked+0x40/0x40 [ 214.681315] ? __page_cache_alloc+0xdd/0x3e0 [ 214.681326] pagecache_get_page+0x1f5/0x750 [ 214.681341] __getblk_gfp+0x24b/0x710 [ 214.681351] ? lru_add_drain_all+0x18/0x20 [ 214.681366] __bread_gfp+0x2e/0x290 [ 214.681377] btrfs_read_dev_one_super+0x9f/0x270 [ 214.681388] btrfs_read_dev_super+0x5d/0xb0 [ 214.690137] ? btrfs_read_dev_one_super+0x270/0x270 [ 214.690153] btrfs_get_bdev_and_sb+0xdc/0x2e0 [ 214.690169] __btrfs_open_devices+0x194/0xab0 [ 214.690182] ? check_preemption_disabled+0x3c/0x250 [ 214.701382] ? find_device+0x100/0x100 [ 214.701392] ? btrfs_mount+0x1069/0x2b28 [ 214.701404] ? rcu_read_lock_sched_held+0x110/0x130 [ 214.701418] btrfs_open_devices+0xa4/0xb0 [ 214.701429] btrfs_mount+0x11b4/0x2b28 [ 214.701439] ? lock_downgrade+0x740/0x740 [ 214.701449] ? find_held_lock+0x35/0x130 [ 214.767662] ? pcpu_alloc+0x3af/0x1050 [ 214.771544] ? btrfs_remount+0x11f0/0x11f0 [ 214.775788] ? rcu_read_lock_sched_held+0x110/0x130 [ 214.780799] ? __lockdep_init_map+0x10c/0x570 [ 214.785283] mount_fs+0x97/0x2a1 [ 214.788641] vfs_kern_mount.part.0+0x5e/0x3d0 [ 214.793310] ? find_held_lock+0x35/0x130 [ 214.797359] vfs_kern_mount+0x40/0x60 [ 214.801147] btrfs_mount+0x3ce/0x2b28 [ 214.808006] ? lock_downgrade+0x740/0x740 [ 214.812920] ? find_held_lock+0x35/0x130 [ 214.817859] ? pcpu_alloc+0x3af/0x1050 [ 214.822270] ? btrfs_remount+0x11f0/0x11f0 [ 214.827014] ? rcu_read_lock_sched_held+0x110/0x130 [ 214.832023] ? __lockdep_init_map+0x10c/0x570 [ 214.836589] ? __lockdep_init_map+0x10c/0x570 [ 214.841333] mount_fs+0x97/0x2a1 [ 214.844784] vfs_kern_mount.part.0+0x5e/0x3d0 [ 214.849354] do_mount+0x417/0x27d0 [ 214.852968] ? copy_mount_string+0x40/0x40 [ 214.857194] ? copy_mount_options+0x18f/0x2f0 [ 214.861673] ? __sanitizer_cov_trace_pc+0x4e/0x60 [ 214.866506] ? copy_mount_options+0x1fe/0x2f0 [ 214.871175] SyS_mount+0xab/0x120 [ 214.874878] ? copy_mnt_ns+0x8c0/0x8c0 [ 214.878755] do_syscall_64+0x1e8/0x640 [ 214.882899] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 214.887732] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 214.894222] RIP: 0033:0x45cc6a [ 214.897395] RSP: 002b:00007f46eab45a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 214.905868] RAX: ffffffffffffffda RBX: 00007f46eab45b40 RCX: 000000000045cc6a [ 214.913123] RDX: 00007f46eab45ae0 RSI: 0000000020000100 RDI: 00007f46eab45b00 [ 214.920380] RBP: 0000000000000001 R08: 00007f46eab45b40 R09: 00007f46eab45ae0 [ 214.927635] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000004 07:06:50 executing program 3: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_open_dev$dspn(&(0x7f0000000100)='/dev/dsp#\x00', 0x7fff, 0x101003) sysfs$2(0x2, 0x7, &(0x7f00000001c0)=""/203) [ 214.936032] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 07:06:50 executing program 3: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_open_dev$dspn(&(0x7f0000000100)='/dev/dsp#\x00', 0x7fff, 0x101003) sysfs$2(0x2, 0x7, &(0x7f00000001c0)=""/203) [ 214.993800] bridge0: port 3(gretap0) entered blocking state [ 215.014985] bridge0: port 3(gretap0) entered disabled state 07:06:50 executing program 3: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_open_dev$dspn(0x0, 0x7fff, 0x101003) sysfs$2(0x2, 0x7, &(0x7f00000001c0)=""/203) [ 215.075175] device gretap0 entered promiscuous mode [ 215.081321] bridge0: port 3(gretap0) entered blocking state [ 215.088273] bridge0: port 3(gretap0) entered forwarding state 07:06:50 executing program 0 (fault-call:0 fault-nth:78): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x0, 0x989680}) socket$inet6_sctp(0xa, 0x0, 0x84) 07:06:50 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000880)='oom_score\x00') preadv(r0, &(0x7f00000017c0), 0x199, 0x0) r1 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000140)='/dev/vfio/vfio\x00', 0x400000, 0x0) signalfd4(r1, &(0x7f0000000180)={0x10000}, 0x8, 0x800) ioctl$UI_BEGIN_FF_UPLOAD(r0, 0xc06855c8, &(0x7f0000000640)={0x10, 0xd17, {0x52, 0x2db, 0x7f, {0x200}, {0x40, 0x4}, @const={0x7ff, {0x8, 0xba, 0x1, 0x9150}}}, {0xa5e136065a937c32, 0x5, 0xfff, {0x4, 0x3}, {0x3, 0x1}, @ramp={0x800, 0x80, {0x100, 0x4c2, 0x800, 0x3}}}}) mq_timedreceive(r0, &(0x7f0000000080)=""/43, 0x2b, 0x9, &(0x7f00000000c0)) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 07:06:50 executing program 1: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = syz_open_dev$radio(&(0x7f0000000140)='/dev/radio#\x00', 0x2, 0x2) recvmsg$can_raw(r0, &(0x7f0000001440)={&(0x7f0000000180)=@alg, 0x80, &(0x7f0000000280)=[{&(0x7f0000000200)=""/105, 0x69}, {&(0x7f0000000340)=""/4096, 0x1000}, {&(0x7f0000001340)=""/65, 0x1b}], 0x3, &(0x7f00000013c0)=""/113, 0x71}, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) r1 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000080)='/dev/dlm-control\x00', 0x81457e4ed462850a, 0x0) ioctl$EVIOCGRAB(r1, 0x40044590, &(0x7f00000000c0)=0x9) mount(&(0x7f0000001540)=@filename='./file0\x00', &(0x7f0000001580)='./file0\x00', &(0x7f00000015c0)='fuseblk\x00', 0x84040, &(0x7f0000001600)) shmget$private(0x0, 0x2000, 0x1000, &(0x7f0000ffc000/0x2000)=nil) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) ioctl$EXT4_IOC_ALLOC_DA_BLKS(r2, 0x660c) setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f0000000380)="0c4f4d16cf2f3a2dd8a5046790a60c91e487dc9ca281434dbc169c6555a654da5e42c953490634b417ec9535653162fc5730d4c8dab3e136550ed7d31fa8d7094afd6e5154349155e6ef7e5fb08d79c283188a3f28548ab4366e6863ba5561aedbd1ee3f9a2c5646e4a9c2806b231528bca7ee2134e39966c40bcb1371a7e7691672a8dc9bda07175f11a9160cba3f0ddb78db3b2e184e1e9aa371691df9f49a5e3343bce4e4b8a2c80831b63d95ed57cf89982b317abf1cf8a71078d00dd5fa9151c142fa4bb765d503150f5f6f34284c7480a5091e9b246e", 0xd9) fsetxattr$trusted_overlay_nlink(r2, &(0x7f0000000240)='trusted.overlay.nlink\x00', &(0x7f0000000300)={'U+', 0x7}, 0x28, 0x3) setsockopt$kcm_KCM_RECV_DISABLE(r2, 0x119, 0x1, &(0x7f0000001480)=0x8, 0x4) r3 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f00000014c0)='/dev/dlm-monitor\x00', 0x101000, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000880)='oom_score\x00') preadv(r4, &(0x7f00000017c0), 0x199, 0x0) ioctl$UI_BEGIN_FF_UPLOAD(r4, 0xc06855c8, &(0x7f0000000640)={0x10, 0xd17, {0x52, 0x2db, 0x7f, {0x200}, {0x40, 0x4}, @const={0x7ff, {0x8, 0xba, 0x1, 0x9150}}}, {0xa5e136065a937c32, 0x5, 0xfff, {0x4, 0x3}, {0x7, 0x1}, @ramp={0x800, 0x80, {0x100, 0x4c2, 0x800, 0x3}}}}) ioctl$EVIOCSKEYCODE_V2(r4, 0x40284504, &(0x7f0000001600)={0x4, 0x10, 0x694, 0x1663, "11e42b7d4ddd8063bc0d4b967f6dd96de7f56e34c23fa9cc58d5f0b0d7e428c6"}) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r5, 0x407, 0x0) write(r5, &(0x7f0000000340), 0x41395527) ioctl$EXT4_IOC_ALLOC_DA_BLKS(r5, 0x660c) setsockopt$ALG_SET_KEY(r5, 0x117, 0x1, &(0x7f0000000380)="0c4f4d16cf2f3a2dd8a5046790a60c91e487dc9ca281434dbc169c6555a654da5e42c953490634b417ec9535653162fc5730d4c8dab3e136550ed7d31fa8d7094afd6e5154349155e6ef7e5fb08d79c283188a3f28548ab4366e6863ba5561aedbd1ee3f9a2c5646e4a9c2806b231528bca7ee2134e39966c40bcb1371a7e7691672a8dc9bda07175f11a9160cba3f0ddb78db3b2e184e1e9aa371691df9f49a5e3343bce4e4b8a2c80831b63d95ed57cf89982b317abf1cf8a71078d00dd5fa9151c142fa4bb765d503150f5f6f34284c7480a5091e9b246e", 0xd9) fsetxattr$trusted_overlay_nlink(r5, &(0x7f0000000240)='trusted.overlay.nlink\x00', &(0x7f0000000300)={'U+', 0x7}, 0x28, 0x3) setsockopt$inet_icmp_ICMP_FILTER(r5, 0x1, 0x1, &(0x7f0000001640)={0x6}, 0x4) setsockopt$inet_tcp_TCP_QUEUE_SEQ(r3, 0x6, 0x15, &(0x7f0000001500)=0xfffffffd, 0x4) 07:06:50 executing program 5: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000002c0)="8da4363ac0ed0200000000000001004d010000000040000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) syz_open_procfs(0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, 0x0) socket$inet6_sctp(0xa, 0x1, 0x84) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r0, 0x407, 0x0) write(r0, &(0x7f0000000340), 0x41395527) ioctl$EXT4_IOC_ALLOC_DA_BLKS(r0, 0x660c) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000380)="0c4f4d16cf2f3a2dd8a5046790a60c91e487dc9ca281434dbc169c6555a654da5e42c953490634b417ec9535653162fc5730d4c8dab3e136550ed7d31fa8d7094afd6e5154349155e6ef7e5fb08d79c283188a3f28548ab4366e6863ba5561aedbd1ee3f9a2c5646e4a9c2806b231528bca7ee2134e39966c40bcb1371a7e7691672a8dc9bda07175f11a9160cba3f0ddb78db3b2e184e1e9aa371691df9f49a5e3343bce4e4b8a2c80831b63d95ed57cf89982b317abf1cf8a71078d00dd5fa9151c142fa4bb765d503150f5f6f34284c7480a5091e9b246e", 0xd9) fsetxattr$trusted_overlay_nlink(r0, &(0x7f0000000240)='trusted.overlay.nlink\x00', &(0x7f0000000300)={'U+', 0x7}, 0x28, 0x3) ioctl$TIOCLINUX5(r0, 0x541c, &(0x7f0000000080)={0x5, 0x80, 0x4, 0x3f, 0x3f}) 07:06:50 executing program 3: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_open_dev$dspn(0x0, 0x7fff, 0x101003) sysfs$2(0x2, 0x7, &(0x7f00000001c0)=""/203) [ 215.257058] FAULT_INJECTION: forcing a failure. [ 215.257058] name failslab, interval 1, probability 0, space 0, times 0 [ 215.335712] CPU: 0 PID: 14889 Comm: syz-executor.0 Not tainted 4.14.151 #0 [ 215.342789] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 215.352150] Call Trace: [ 215.354760] dump_stack+0x138/0x197 [ 215.358411] should_fail.cold+0x10f/0x159 [ 215.362597] should_failslab+0xdb/0x130 [ 215.366589] kmem_cache_alloc_trace+0x2e9/0x790 [ 215.371271] ? mutex_trylock+0x1c0/0x1c0 [ 215.375350] ? btrfs_close_devices+0x21/0x140 [ 215.379863] btrfs_alloc_device+0xa4/0x6a0 [ 215.384145] ? btrfs_find_device_by_devspec+0xf0/0xf0 [ 215.389445] __btrfs_close_devices+0x2c6/0xa90 [ 215.394047] ? __mutex_unlock_slowpath+0x71/0x800 [ 215.398911] ? btrfs_alloc_device+0x6a0/0x6a0 [ 215.403433] btrfs_close_devices+0x29/0x140 [ 215.407781] btrfs_mount+0x1fd9/0x2b28 [ 215.411688] ? lock_downgrade+0x740/0x740 [ 215.415853] ? find_held_lock+0x35/0x130 [ 215.419927] ? pcpu_alloc+0x3af/0x1050 [ 215.423828] ? btrfs_remount+0x11f0/0x11f0 [ 215.428069] ? rcu_read_lock_sched_held+0x110/0x130 07:06:50 executing program 3: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_open_dev$dspn(0x0, 0x7fff, 0x101003) sysfs$2(0x2, 0x7, &(0x7f00000001c0)=""/203) [ 215.428097] ? __lockdep_init_map+0x10c/0x570 [ 215.437621] mount_fs+0x97/0x2a1 [ 215.441008] vfs_kern_mount.part.0+0x5e/0x3d0 [ 215.445508] ? find_held_lock+0x35/0x130 [ 215.445521] vfs_kern_mount+0x40/0x60 [ 215.445534] btrfs_mount+0x3ce/0x2b28 [ 215.457187] ? lock_downgrade+0x740/0x740 [ 215.461357] ? find_held_lock+0x35/0x130 [ 215.461378] ? pcpu_alloc+0x3af/0x1050 [ 215.461395] ? btrfs_remount+0x11f0/0x11f0 [ 215.461410] ? rcu_read_lock_sched_held+0x110/0x130 [ 215.461428] ? __lockdep_init_map+0x10c/0x570 [ 215.461439] ? __lockdep_init_map+0x10c/0x570 [ 215.461454] mount_fs+0x97/0x2a1 [ 215.461469] vfs_kern_mount.part.0+0x5e/0x3d0 [ 215.461481] do_mount+0x417/0x27d0 [ 215.469445] ? copy_mount_options+0x5c/0x2f0 [ 215.469457] ? rcu_read_lock_sched_held+0x110/0x130 [ 215.469478] ? copy_mount_string+0x40/0x40 [ 215.512722] ? copy_mount_options+0x1fe/0x2f0 [ 215.517242] SyS_mount+0xab/0x120 [ 215.520707] ? copy_mnt_ns+0x8c0/0x8c0 [ 215.524607] do_syscall_64+0x1e8/0x640 [ 215.528507] ? trace_hardirqs_off_thunk+0x1a/0x1c 07:06:50 executing program 3: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_open_dev$dspn(&(0x7f0000000100)='/dev/dsp#\x00', 0x0, 0x101003) sysfs$2(0x2, 0x7, &(0x7f00000001c0)=""/203) [ 215.533366] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 215.538566] RIP: 0033:0x45cc6a [ 215.541766] RSP: 002b:00007f46eab45a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 215.541778] RAX: ffffffffffffffda RBX: 00007f46eab45b40 RCX: 000000000045cc6a [ 215.541784] RDX: 00007f46eab45ae0 RSI: 0000000020000100 RDI: 00007f46eab45b00 [ 215.541792] RBP: 0000000000000001 R08: 00007f46eab45b40 R09: 00007f46eab45ae0 [ 215.556750] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000004 [ 215.556755] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 [ 215.565554] ------------[ cut here ]------------ [ 215.591283] kernel BUG at fs/btrfs/volumes.c:890! [ 215.596708] invalid opcode: 0000 [#1] PREEMPT SMP KASAN [ 215.602070] Modules linked in: [ 215.605260] CPU: 0 PID: 14889 Comm: syz-executor.0 Not tainted 4.14.151 #0 [ 215.612289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 215.621634] task: ffff8880804be000 task.stack: ffff888067f88000 [ 215.627686] RIP: 0010:__btrfs_close_devices+0x7d8/0xa90 [ 215.633071] RSP: 0018:ffff888067f8f700 EFLAGS: 00010246 [ 215.638420] RAX: 0000000000040000 RBX: ffff888096844480 RCX: ffffc90008c44000 [ 215.645681] RDX: 0000000000040000 RSI: ffffffff82659518 RDI: 0000000000000282 [ 215.653002] RBP: ffff888067f8f7c8 R08: ffff8880804be000 R09: ffff8880804be8c8 [ 215.660360] R10: 0000000000000000 R11: 0000000000000000 R12: ffff88807d820340 [ 215.667618] R13: ffff888096844548 R14: fffffffffffffff4 R15: dffffc0000000000 [ 215.674877] FS: 00007f46eab46700(0000) GS:ffff8880aee00000(0000) knlGS:0000000000000000 [ 215.683082] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 215.688942] CR2: 00007ffce8780338 CR3: 000000009c6a6000 CR4: 00000000001406f0 [ 215.696197] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 215.703452] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 215.710702] Call Trace: [ 215.713291] ? __mutex_unlock_slowpath+0x71/0x800 [ 215.718138] ? btrfs_alloc_device+0x6a0/0x6a0 [ 215.722628] btrfs_close_devices+0x29/0x140 [ 215.727112] btrfs_mount+0x1fd9/0x2b28 [ 215.730987] ? lock_downgrade+0x740/0x740 [ 215.735131] ? find_held_lock+0x35/0x130 [ 215.739169] ? pcpu_alloc+0x3af/0x1050 [ 215.743077] ? btrfs_remount+0x11f0/0x11f0 [ 215.747319] ? rcu_read_lock_sched_held+0x110/0x130 [ 215.752328] ? __lockdep_init_map+0x10c/0x570 [ 215.756811] mount_fs+0x97/0x2a1 [ 215.760266] vfs_kern_mount.part.0+0x5e/0x3d0 [ 215.764769] ? find_held_lock+0x35/0x130 [ 215.768828] vfs_kern_mount+0x40/0x60 [ 215.772616] btrfs_mount+0x3ce/0x2b28 [ 215.776397] ? lock_downgrade+0x740/0x740 [ 215.780532] ? find_held_lock+0x35/0x130 [ 215.784588] ? pcpu_alloc+0x3af/0x1050 [ 215.788467] ? btrfs_remount+0x11f0/0x11f0 [ 215.792705] ? rcu_read_lock_sched_held+0x110/0x130 [ 215.797716] ? __lockdep_init_map+0x10c/0x570 [ 215.802341] ? __lockdep_init_map+0x10c/0x570 [ 215.807533] mount_fs+0x97/0x2a1 [ 215.810902] vfs_kern_mount.part.0+0x5e/0x3d0 [ 215.815395] do_mount+0x417/0x27d0 [ 215.818921] ? copy_mount_options+0x5c/0x2f0 [ 215.823323] ? rcu_read_lock_sched_held+0x110/0x130 [ 215.828328] ? copy_mount_string+0x40/0x40 [ 215.832550] ? copy_mount_options+0x1fe/0x2f0 [ 215.837034] SyS_mount+0xab/0x120 [ 215.840644] ? copy_mnt_ns+0x8c0/0x8c0 [ 215.844517] do_syscall_64+0x1e8/0x640 [ 215.848385] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 215.853218] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 215.858393] RIP: 0033:0x45cc6a [ 215.861568] RSP: 002b:00007f46eab45a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 215.869267] RAX: ffffffffffffffda RBX: 00007f46eab45b40 RCX: 000000000045cc6a [ 215.876538] RDX: 00007f46eab45ae0 RSI: 0000000020000100 RDI: 00007f46eab45b00 [ 215.883810] RBP: 0000000000000001 R08: 00007f46eab45b40 R09: 00007f46eab45ae0 [ 215.891072] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000004 [ 215.898338] R13: 00000000004c9a22 R14: 00000000004e1710 R15: 0000000000000003 [ 215.905596] Code: c1 ea 03 0f b6 04 02 84 c0 74 08 3c 03 0f 8e 59 02 00 00 48 8b 45 80 c7 80 10 01 00 00 00 00 00 00 e9 e2 f8 ff ff e8 e8 5e f7 fe <0f> 0b e8 e1 5e f7 fe 0f 0b 48 89 f7 e8 d7 10 21 ff e9 ad f8 ff [ 215.924709] RIP: __btrfs_close_devices+0x7d8/0xa90 RSP: ffff888067f8f700 [ 215.933480] kobject: 'loop3' (ffff8880a49f0160): kobject_uevent_env [ 215.940009] kobject: 'loop3' (ffff8880a49f0160): fill_kobj_path: path = '/devices/virtual/block/loop3' [ 215.941635] ---[ end trace 1397cccb9880daf7 ]--- [ 215.956006] Kernel panic - not syncing: Fatal exception [ 215.962689] Kernel Offset: disabled [ 215.966335] Rebooting in 86400 seconds..